HostForge-Systems/wordpress
Template
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
05770e25c32e415a9f26383d80ed9a0a904fd3a0
wordpress/wp-admin/includes
History
John Blackbourn 05770e25c3 Security: Switch to using bcrypt for hashing user passwords and BLAKE2b for hashing application passwords and security keys. 
Passwords and security keys that were saved in prior versions of WordPress will continue to work. Each user's password will be opportunistically rehashed and resaved when they next subsequently log in using a valid password.

The following new functions have been introduced:

* `wp_password_needs_rehash()`
* `wp_fast_hash()`
* `wp_verify_fast_hash()`

The following new filters have been introduced:

* `password_needs_rehash`
* `wp_hash_password_algorithm`
* `wp_hash_password_options`

Props ayeshrajans, bgermann, dd32, deadduck169, desrosj, haozi, harrym, iandunn, jammycakes, joehoyle, johnbillion, mbijon, mojorob, mslavco, my1xt, nacin, otto42, paragoninitiativeenterprises, paulkevan, rmccue, ryanhellyer, scribu, swalkinshaw, synchro, th23, timothyblynjacobs, tomdxw, westi, xknown.

Additional thanks go to the Roots team, Soatok, Calvin Alkan, and Raphael Ahrens.

Fixes #21022, #44628
Built from https://develop.svn.wordpress.org/trunk@59828


git-svn-id: http://core.svn.wordpress.org/trunk@59170 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2025-02-17 11:24:21 +00:00
..
admin-filters.php
Security: Enable the referrer policy header on the login screen.
2025-01-27 14:41:22 +00:00
admin.php
ajax-actions.php
Docs: Adjust comments about set_time_limit() per the documentation standards.
2024-10-25 20:26:20 +00:00
bookmark.php
class-automatic-upgrader-skin.php
class-bulk-plugin-upgrader-skin.php
Docs: Add missing documentation for various upgrade/install class methods.
2024-05-02 17:20:10 +00:00
class-bulk-theme-upgrader-skin.php
Docs: Add missing documentation for various upgrade/install class methods.
2024-05-02 17:20:10 +00:00
class-bulk-upgrader-skin.php
Docs: Add missing documentation for various upgrade/install class methods.
2024-05-02 17:20:10 +00:00
class-core-upgrader.php
Docs: Fix note about not using new functions in update-core.php and class-core-upgrader.php.
2024-10-05 23:25:12 +00:00
class-custom-background.php
Themes: Avoid double hashed value for background-color in custom backgrounds.
2025-02-11 21:06:25 +00:00
class-custom-image-header.php
Administration: Error messages improvements in WP Admin.
2025-02-08 15:53:17 +00:00
class-file-upload-upgrader.php
Upload: Add links back to installer pages.
2024-03-07 05:58:15 +00:00
class-ftp-pure.php
class-ftp-sockets.php
class-ftp.php
class-language-pack-upgrader-skin.php
Docs: Add missing documentation for various upgrade/install class methods.
2024-05-02 17:20:10 +00:00
class-language-pack-upgrader.php
I18N: Actually add all the files for [58061], not just the test fixtures.
2024-04-30 08:39:07 +00:00
class-pclzip.php
Filesystem API: Check PHP_OS_FAMILY instead of php_uname() in PclZip.
2024-12-12 22:23:16 +00:00
class-plugin-installer-skin.php
General: Expand use of wp_get_wp_version().
2024-10-03 00:25:15 +00:00
class-plugin-upgrader-skin.php
class-plugin-upgrader.php
General: Expand use of wp_get_wp_version().
2024-10-03 00:25:15 +00:00
class-theme-installer-skin.php
Themes: Replace "Active" wording with "Installed" in the theme install checks page.
2024-12-13 23:53:17 +00:00
class-theme-upgrader-skin.php
Upgrade/Install: Improve localized strings related to plugin/theme installation and activation.
2024-02-26 20:35:08 +00:00
class-theme-upgrader.php
General: Expand use of wp_get_wp_version().
2024-10-03 00:25:15 +00:00
class-walker-category-checklist.php
Bulk/Quick Edit: Remove duplicate HTML IDs from post list tables.
2024-08-13 23:37:16 +00:00
class-walker-nav-menu-checklist.php
class-walker-nav-menu-edit.php
Menus: A11y: Set the parent and order using select fields.
2024-10-21 19:55:16 +00:00
class-wp-ajax-upgrader-skin.php
class-wp-application-passwords-list-table.php
Docs: Various improvements and corrections to inline documentation.
2024-02-16 21:47:12 +00:00
class-wp-automatic-updater.php
I18N: Switch locale to admin locale when sending auto update emails.
2024-11-26 10:03:17 +00:00
class-wp-comments-list-table.php
Coding Standards: Bring some consistency to setting up comment moderation links.
2024-08-12 21:28:13 +00:00
class-wp-community-events.php
class-wp-debug-data.php
Site Health: Update inline docs following refactor of debug data.
2024-10-25 01:20:17 +00:00
class-wp-filesystem-base.php
Docs: Various improvements and corrections to inline documentation.
2024-02-16 21:47:12 +00:00
class-wp-filesystem-direct.php
Docs: Various improvements and corrections to inline documentation.
2024-02-16 21:47:12 +00:00
class-wp-filesystem-ftpext.php
Docs: Various improvements and corrections to inline documentation.
2024-02-16 21:47:12 +00:00
class-wp-filesystem-ftpsockets.php
Docs: Various improvements and corrections to inline documentation.
2024-02-16 21:47:12 +00:00
class-wp-filesystem-ssh2.php
Docs: Various improvements and corrections to inline documentation.
2024-02-16 21:47:12 +00:00
class-wp-importer.php
Security: Add the SensitiveParameter attribute to sensitive parameters.
2025-02-03 19:52:24 +00:00
class-wp-internal-pointers.php
class-wp-links-list-table.php
Docs: Add missing description for the display_rows() method in list table classes.
2024-07-17 15:43:15 +00:00
class-wp-list-table-compat.php
class-wp-list-table.php
Coding Standards: Use strict comparison in media_upload_library_form().
2025-02-06 12:24:24 +00:00
class-wp-media-list-table.php
Docs: Add missing description for the display_rows() method in list table classes.
2024-07-17 15:43:15 +00:00
class-wp-ms-sites-list-table.php
Docs: Add missing description for the display_rows() method in list table classes.
2024-07-17 15:43:15 +00:00
class-wp-ms-themes-list-table.php
Docs: Add missing description for the display_rows() method in list table classes.
2024-07-17 15:43:15 +00:00
class-wp-ms-users-list-table.php
Docs: Add missing description for the display_rows() method in list table classes.
2024-07-17 15:43:15 +00:00
class-wp-plugin-install-list-table.php
Docs: Add missing description for the display_rows() method in list table classes.
2024-07-17 15:43:15 +00:00
class-wp-plugins-list-table.php
Options, Meta APIs: Explicitly pass $autoload parameter to when potentially adding new options.
2024-09-03 18:19:14 +00:00
class-wp-post-comments-list-table.php
class-wp-posts-list-table.php
Docs: Correct parameter reference for manage_posts_columns and related filters.
2024-09-09 14:37:17 +00:00
class-wp-privacy-data-export-requests-list-table.php
class-wp-privacy-data-removal-requests-list-table.php
class-wp-privacy-policy-content.php
Coding standards: Remove unused variables from privacy_policy_guide() function.
2025-01-29 21:54:23 +00:00
class-wp-privacy-requests-table.php
Docs: Add missing void to DocBlock @return types.
2024-11-02 15:01:19 +00:00
class-wp-screen.php
Docs: Add missing description for a few globals in the admin.
2024-06-15 12:34:13 +00:00
class-wp-site-health-auto-updates.php
Coding Standards: Use explicit returns in WP_Site_Health_Auto_Updates::test_*().
2024-11-04 15:25:17 +00:00
class-wp-site-health.php
Security: Explicitly require the hash PHP extension and add requirement checks during installation and upgrade.
2025-02-11 11:14:21 +00:00
class-wp-site-icon.php
Media: Accessibility: Copy attachment properties on site icon crop.
2024-03-02 20:15:13 +00:00
class-wp-terms-list-table.php
Docs: Add missing description for a few globals in the admin.
2024-06-15 12:34:13 +00:00
class-wp-theme-install-list-table.php
Themes: Remove title attributes from theme list tables.
2025-01-21 21:49:22 +00:00
class-wp-themes-list-table.php
Themes: Remove title attributes from theme list tables.
2025-01-21 21:49:22 +00:00
class-wp-upgrader-skin.php
Docs: Add missing documentation for various upgrade/install class methods.
2024-05-02 17:20:10 +00:00
class-wp-upgrader-skins.php
class-wp-upgrader.php
Docs: Adjust comments about set_time_limit() per the documentation standards.
2024-10-25 20:26:20 +00:00
class-wp-users-list-table.php
comment.php
continents-cities.php
credits.php
Privacy: Replace hardcoded MD5 references in wp_credits_section_list().
2024-12-19 03:44:24 +00:00
dashboard.php
General: Expand use of wp_get_wp_version().
2024-10-03 00:25:15 +00:00
deprecated.php
edit-tag-messages.php
export.php
Code Modernization: Fix implicit nullable parameter type deprecation on PHP 8.4.
2024-04-15 20:03:09 +00:00
file.php
Administration: Error messages improvements in WP Admin.
2025-02-08 15:53:17 +00:00
image-edit.php
Media: Update file size meta data when editing images.
2024-10-09 23:32:21 +00:00
image.php
Media: Remove dimension suffix from full size converted HEIC images.
2024-11-10 21:41:13 +00:00
import.php
General: Introduce wp_get_wp_version() to get unmodified version.
2024-07-27 00:27:16 +00:00
list-table.php
media.php
Coding Standards: Use strict comparison in media_upload_library_form().
2025-02-06 12:24:24 +00:00
menu.php
meta-boxes.php
Administration: Replace "Add New {Item}" wording with "Add {Item}" across the administration.
2025-02-08 11:44:24 +00:00
misc.php
Administration: Correct the capitalisation of "site administrator" for consistency with other instances within WordPress.
2025-02-10 17:06:23 +00:00
ms-admin-filters.php
ms-deprecated.php
ms.php
Docs: Update a HelpHub link on Edit Site screen to avoid unnecessary redirection.
2024-05-11 14:47:06 +00:00
nav-menu.php
Coding Standards: Cast wp_count_terms() result to int before using in ceil().
2024-11-26 21:17:25 +00:00
network.php
Bootstrap/Load: Take the port number into consideration when determining whether a subdomain installation of Multisite is allowed.
2024-05-09 23:09:13 +00:00
noop.php
options.php
Site icon: Polish up Site Icon on the general settings screen.
2024-02-26 20:18:09 +00:00
plugin-install.php
Docs: Remove unsupported values in plugins_api() DocBlocks.
2024-08-09 00:18:16 +00:00
plugin.php
Plugins: Load wp-admin/includes/plugin.php earlier.
2024-12-05 12:13:17 +00:00
post.php
Posts, Post Types: Check if the post type exists in _admin_notice_post_locked().
2024-09-03 22:43:14 +00:00
privacy-tools.php
revision.php
Administration: Error messages improvements in WP Admin.
2025-02-08 15:53:17 +00:00
schema.php
Cron API: Clear the recovery_mode_clean_expired_keys cron event when converting a single site installation to Multisite.
2025-02-10 15:01:23 +00:00
screen.php
Docs: Add missing description for a few globals in the admin.
2024-06-15 12:34:13 +00:00
taxonomy.php
template.php
Administration: Replace "Add New {Item}" wording with "Add {Item}" across the administration.
2025-02-08 11:44:24 +00:00
theme-install.php
Upgrade/Install: Improve localized strings related to plugin/theme installation and activation.
2024-02-26 20:35:08 +00:00
theme.php
General: Introduce wp_get_wp_version() to get unmodified version.
2024-07-27 00:27:16 +00:00
translation-install.php
Docs: Various docblock improvements and corrections.
2024-09-11 12:08:19 +00:00
update-core.php
Security: Explicitly require the hash PHP extension and add requirement checks during installation and upgrade.
2025-02-11 11:14:21 +00:00
update.php
General: Introduce wp_get_wp_version() to get unmodified version.
2024-07-27 00:27:16 +00:00
upgrade.php
Security: Switch to using bcrypt for hashing user passwords and BLAKE2b for hashing application passwords and security keys.
2025-02-17 11:24:21 +00:00
user.php
widgets.php