Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.
user_pass_rehash() requires a 4th uid arg
Missing argument 4 for user_pass_rehash(), called in
login_one_time/login_one_time.module
on line 671 and defined in /modules/user/user.module
on line 1490.
Comment | File | Size | Author |
---|---|---|---|
#9 | user_pass_rehash-2672008-9.patch | 801 bytes | KarlShea |
#2 | user_pass_rehash-2672008-2.patch | 862 bytes | joelpittet |
Comments
Comment #2
joelpittetComment #3
vaibhav29 CreditAttribution: vaibhav29 commentedHi joelpittet,
Thanks for the working patch. Its already implemented in D7.
If you are still using D6, Please try to upgrade in D7 or D8.
Comment #4
bapi_22 CreditAttribution: bapi_22 at Cybage Software Pvt Ltd. commentedComment #6
bapi_22 CreditAttribution: bapi_22 at Cybage Software Pvt Ltd. commentedMerged the patch with 6.x-2.x-dev.
Comment #7
joelpittetThanks for committing this. I'm planning an upgrade, that's why I touched this;)
Comment #9
KarlSheaThis is still broken. The email sends a link with a hash generated by login_one_time_get_hash, which is then compared to the hash returned by user_pass_rehash which now doesn't match.
Attached is a patch against dev that removes login_one_time_get_hash and updates the email to use user_pass_rehash to match the comparison.
Comment #10
KarlSheaComment #11
bapi_22 CreditAttribution: bapi_22 at Cybage Software Pvt Ltd. commentedHi KarlShea,
Thanks for the update & patch. I think it was not related to the issue related to 4th arguments.
In earlier version of drupal 6 user_pass_rehash function returns md5 hash. So Its was working. But in latest version of drupal 6 the logic has been changed and returns drupal_hmac_base64 instead of md5. It has already implemented in drupal 7. So you can create another issue regarding the same and submit the patch again.
Comment #12
KarlShea