Closed tekezo closed 9 years ago
Tekezo,
thank you for your contributions. I modified StateFactory
to be able to accept a hash optionally through the constructor. If no value has been passed, the openssl_random_pseudo_bytes()
function is used for implicit hash generation. And I threw out the usage of ZF's Hash class completely.
Thank you for excellent modification!
The current 'state' hash can be inferred. We should use openssl_random_pseudo_bytes in order to use secure hash.