functions.php

satopian · satopian · commit 7cf126177174 · 2025-05-23T14:31:20.000+09:00
diff --git a/petitnote/functions.php b/petitnote/functions.php
@@ -123,7 +123,7 @@ function age_check_required_to_view(): void {
 function is_adminpass($pwd): bool {
 	global $admin_pass,$second_pass;
 	$pwd=(string)$pwd;
-	return ($pwd && $admin_pass && $second_pass && !hash_equals($second_pass,$admin_pass) && hash_equals($pwd,$admin_pass));
+	return ($pwd && $admin_pass && $second_pass && !hash_equals($admin_pass,$second_pass) && hash_equals($admin_pass,$pwd));
 }
 
 function admin_in(): void {
@@ -217,12 +217,12 @@ function userdel_mode(): void {
 function adminpost_valid(): bool {
 	global $second_pass;
 	session_sta();
-	return isset($_SESSION['adminpost']) && ($second_pass && hash_equals($_SESSION['adminpost'],$second_pass));
+	return isset($_SESSION['adminpost']) && ($second_pass && hash_equals($second_pass,$_SESSION['adminpost']));
 }
 function admindel_valid(): bool {
 	global $second_pass;
 	session_sta();
-	return isset($_SESSION['admindel']) && ($second_pass && hash_equals($_SESSION['admindel'],$second_pass));
+	return isset($_SESSION['admindel']) && ($second_pass && hash_equals($second_pass,$_SESSION['admindel']));
 }
 function userdel_valid(): bool {
 	session_sta();
@@ -890,7 +890,7 @@ function check_csrf_token(): void {
 	$token=(string)filter_input_data('POST','token');
 	$session_token=isset($_SESSION['token']) ? (string)$_SESSION['token'] : '';
 
-	if(!$token||!$session_token||!hash_equals($token,$session_token)){//タイミング攻撃対策としてhash_equals()を使用
+	if(!$token||!$session_token||!hash_equals($session_token,$token)){//タイミング攻撃対策としてhash_equals()を使用
 		error($en?"CSRF token mismatch.\nPlease reload.":"CSRFトークンが一致しません。\nリロードしてください。");
 	}
 }

Original file line number	Diff line number	Diff line change
`@@ -123,7 +123,7 @@ function age_check_required_to_view(): void {`
`123`	`123`	`function is_adminpass($pwd): bool {`
`124`	`124`	`global $admin_pass,$second_pass;`
`125`	`125`	`$pwd=(string)$pwd;`
`126`		`- return ($pwd && $admin_pass && $second_pass && !hash_equals($second_pass,$admin_pass) && hash_equals($pwd,$admin_pass));`
	`126`	`+ return ($pwd && $admin_pass && $second_pass && !hash_equals($admin_pass,$second_pass) && hash_equals($admin_pass,$pwd));`
`127`	`127`	`}`
`128`	`128`
`129`	`129`	`function admin_in(): void {`
`@@ -217,12 +217,12 @@ function userdel_mode(): void {`
`217`	`217`	`function adminpost_valid(): bool {`
`218`	`218`	`global $second_pass;`
`219`	`219`	`session_sta();`
`220`		`- return isset($_SESSION['adminpost']) && ($second_pass && hash_equals($_SESSION['adminpost'],$second_pass));`
	`220`	`+ return isset($_SESSION['adminpost']) && ($second_pass && hash_equals($second_pass,$_SESSION['adminpost']));`
`221`	`221`	`}`
`222`	`222`	`function admindel_valid(): bool {`
`223`	`223`	`global $second_pass;`
`224`	`224`	`session_sta();`
`225`		`- return isset($_SESSION['admindel']) && ($second_pass && hash_equals($_SESSION['admindel'],$second_pass));`
	`225`	`+ return isset($_SESSION['admindel']) && ($second_pass && hash_equals($second_pass,$_SESSION['admindel']));`
`226`	`226`	`}`
`227`	`227`	`function userdel_valid(): bool {`
`228`	`228`	`session_sta();`
`@@ -890,7 +890,7 @@ function check_csrf_token(): void {`
`890`	`890`	`$token=(string)filter_input_data('POST','token');`
`891`	`891`	`$session_token=isset($_SESSION['token']) ? (string)$_SESSION['token'] : '';`
`892`	`892`
`893`		`- if(!$token\|\|!$session_token\|\|!hash_equals($token,$session_token)){//タイミング攻撃対策としてhash_equals()を使用`
	`893`	`+ if(!$token\|\|!$session_token\|\|!hash_equals($session_token,$token)){//タイミング攻撃対策としてhash_equals()を使用`
`894`	`894`	`error($en?"CSRF token mismatch.\nPlease reload.":"CSRFトークンが一致しません。\nリロードしてください。");`
`895`	`895`	`}`
`896`	`896`	`}`