Don't use mcrypt_create_iv in password_hash docs

Also reference sodium_crypto_pwhash_str (patch by Marcus Bointon). Merged into this commit because I don't understand edit.php.net git-svn-id: https://svn.php.net/repository/phpdoc/en/trunk@345734 c90b9560-bf6c-de11-be94-00142212c4b1
2025-03-17 01:18:55 +00:00 · 2018-09-29 20:12:28 +00:00 · 2018-09-29 20:12:28 +00:00 · 99d1ecc2f4
commit 99d1ecc2f4
parent be96542e25
1 changed files with 2 additions and 1 deletions
--- a/reference/password/functions/password-hash.xml
+++ b/reference/password/functions/password-hash.xml
@ -231,7 +231,7 @@ $2y$12$QjSH496pcT5CEbzjD/vtVeH03tfHKFy36d4J0Ltp3lRtee9HDxY3K
 */
 $options = [
    'cost' => 11,
-    'salt' => mcrypt_create_iv(22, MCRYPT_DEV_URANDOM),
+    'salt' => random_bytes(22),
 ];
 echo password_hash("rasmuslerdorf", PASSWORD_BCRYPT, $options);
 ?>
@ -381,6 +381,7 @@ Argon2 hash: $argon2i$v=19$m=1024,t=2,p=2$YzJBSzV4TUhkMzc3d3laeg$zqU/1IN0/AogfP4
    <member><function>password_verify</function></member>
    <member><function>crypt</function></member>
    <member><link xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="&url.password.compat;">userland implementation</link></member>
+    <member><function>sodium_crypto_pwhash_str</function></member>
   </simplelist>
  </para>
 </refsect1>