Strange behaviour in php hash_hmac











up vote
1
down vote

favorite












I am creating a simple api in php.



$signature_string = "MARCIGETapi/v1/test/636779232000000000FIXXISOFTRGllcyBpc3QgZWluIFRlc3Q="
$new_sig = hash_hmac("sha256", $signature_string, $api_key, false);
echo $new_sig;



24f305d19cad2e848b3407f64bc21ada0ff1978a2487a23f26aa35f3a1c8204a




Now explain me this:



$new_sig = hash_hmac("sha256", "MARCIGETapi/v1/test/636779232000000000FIXXISOFTRGllcyBpc3QgZWluIFRlc3Q=" , $api_key, false);
echo $new_sig;



c1d2347e60a648838fd8a98a41174fc9a4b18371e18261931f3337951b8a6cdf




The second one is the expected one I was able to generate on the c# client.










share|improve this question


















  • 1




    Please provide a MCVE of this problem. It shouldn't create a different hash just because the value is saved in a variable first. Maybe the $signature_string variable or the $api_key variable is changing.
    – Progman
    13 mins ago










  • i am pretty sure this can me reproduced using any string as api_key. I am 100% sure the data is the same (api_key is used both times). the 2 snippets are right after each other and api_key is never altered.
    – Felix D.
    10 mins ago












  • It can not be reproduced with just these code blocks. They will return the same hash, regardless if the message is written directly in the hash_hmac() call or via a variable. Please provide a MCVE.
    – Progman
    7 mins ago






  • 1




    WFM: 3v4l.org/okmLH
    – Sammitch
    5 mins ago















up vote
1
down vote

favorite












I am creating a simple api in php.



$signature_string = "MARCIGETapi/v1/test/636779232000000000FIXXISOFTRGllcyBpc3QgZWluIFRlc3Q="
$new_sig = hash_hmac("sha256", $signature_string, $api_key, false);
echo $new_sig;



24f305d19cad2e848b3407f64bc21ada0ff1978a2487a23f26aa35f3a1c8204a




Now explain me this:



$new_sig = hash_hmac("sha256", "MARCIGETapi/v1/test/636779232000000000FIXXISOFTRGllcyBpc3QgZWluIFRlc3Q=" , $api_key, false);
echo $new_sig;



c1d2347e60a648838fd8a98a41174fc9a4b18371e18261931f3337951b8a6cdf




The second one is the expected one I was able to generate on the c# client.










share|improve this question


















  • 1




    Please provide a MCVE of this problem. It shouldn't create a different hash just because the value is saved in a variable first. Maybe the $signature_string variable or the $api_key variable is changing.
    – Progman
    13 mins ago










  • i am pretty sure this can me reproduced using any string as api_key. I am 100% sure the data is the same (api_key is used both times). the 2 snippets are right after each other and api_key is never altered.
    – Felix D.
    10 mins ago












  • It can not be reproduced with just these code blocks. They will return the same hash, regardless if the message is written directly in the hash_hmac() call or via a variable. Please provide a MCVE.
    – Progman
    7 mins ago






  • 1




    WFM: 3v4l.org/okmLH
    – Sammitch
    5 mins ago













up vote
1
down vote

favorite









up vote
1
down vote

favorite











I am creating a simple api in php.



$signature_string = "MARCIGETapi/v1/test/636779232000000000FIXXISOFTRGllcyBpc3QgZWluIFRlc3Q="
$new_sig = hash_hmac("sha256", $signature_string, $api_key, false);
echo $new_sig;



24f305d19cad2e848b3407f64bc21ada0ff1978a2487a23f26aa35f3a1c8204a




Now explain me this:



$new_sig = hash_hmac("sha256", "MARCIGETapi/v1/test/636779232000000000FIXXISOFTRGllcyBpc3QgZWluIFRlc3Q=" , $api_key, false);
echo $new_sig;



c1d2347e60a648838fd8a98a41174fc9a4b18371e18261931f3337951b8a6cdf




The second one is the expected one I was able to generate on the c# client.










share|improve this question













I am creating a simple api in php.



$signature_string = "MARCIGETapi/v1/test/636779232000000000FIXXISOFTRGllcyBpc3QgZWluIFRlc3Q="
$new_sig = hash_hmac("sha256", $signature_string, $api_key, false);
echo $new_sig;



24f305d19cad2e848b3407f64bc21ada0ff1978a2487a23f26aa35f3a1c8204a




Now explain me this:



$new_sig = hash_hmac("sha256", "MARCIGETapi/v1/test/636779232000000000FIXXISOFTRGllcyBpc3QgZWluIFRlc3Q=" , $api_key, false);
echo $new_sig;



c1d2347e60a648838fd8a98a41174fc9a4b18371e18261931f3337951b8a6cdf




The second one is the expected one I was able to generate on the c# client.







php sha256 hmac






share|improve this question













share|improve this question











share|improve this question




share|improve this question










asked 21 mins ago









Felix D.

2,58421946




2,58421946








  • 1




    Please provide a MCVE of this problem. It shouldn't create a different hash just because the value is saved in a variable first. Maybe the $signature_string variable or the $api_key variable is changing.
    – Progman
    13 mins ago










  • i am pretty sure this can me reproduced using any string as api_key. I am 100% sure the data is the same (api_key is used both times). the 2 snippets are right after each other and api_key is never altered.
    – Felix D.
    10 mins ago












  • It can not be reproduced with just these code blocks. They will return the same hash, regardless if the message is written directly in the hash_hmac() call or via a variable. Please provide a MCVE.
    – Progman
    7 mins ago






  • 1




    WFM: 3v4l.org/okmLH
    – Sammitch
    5 mins ago














  • 1




    Please provide a MCVE of this problem. It shouldn't create a different hash just because the value is saved in a variable first. Maybe the $signature_string variable or the $api_key variable is changing.
    – Progman
    13 mins ago










  • i am pretty sure this can me reproduced using any string as api_key. I am 100% sure the data is the same (api_key is used both times). the 2 snippets are right after each other and api_key is never altered.
    – Felix D.
    10 mins ago












  • It can not be reproduced with just these code blocks. They will return the same hash, regardless if the message is written directly in the hash_hmac() call or via a variable. Please provide a MCVE.
    – Progman
    7 mins ago






  • 1




    WFM: 3v4l.org/okmLH
    – Sammitch
    5 mins ago








1




1




Please provide a MCVE of this problem. It shouldn't create a different hash just because the value is saved in a variable first. Maybe the $signature_string variable or the $api_key variable is changing.
– Progman
13 mins ago




Please provide a MCVE of this problem. It shouldn't create a different hash just because the value is saved in a variable first. Maybe the $signature_string variable or the $api_key variable is changing.
– Progman
13 mins ago












i am pretty sure this can me reproduced using any string as api_key. I am 100% sure the data is the same (api_key is used both times). the 2 snippets are right after each other and api_key is never altered.
– Felix D.
10 mins ago






i am pretty sure this can me reproduced using any string as api_key. I am 100% sure the data is the same (api_key is used both times). the 2 snippets are right after each other and api_key is never altered.
– Felix D.
10 mins ago














It can not be reproduced with just these code blocks. They will return the same hash, regardless if the message is written directly in the hash_hmac() call or via a variable. Please provide a MCVE.
– Progman
7 mins ago




It can not be reproduced with just these code blocks. They will return the same hash, regardless if the message is written directly in the hash_hmac() call or via a variable. Please provide a MCVE.
– Progman
7 mins ago




1




1




WFM: 3v4l.org/okmLH
– Sammitch
5 mins ago




WFM: 3v4l.org/okmLH
– Sammitch
5 mins ago












1 Answer
1






active

oldest

votes

















up vote
0
down vote



accepted










I`ve had the same problems in one of my projects.
Just try:



$new_sig = hash_hmac("sha256", trim($signatur_string," "), $api_key);




share





















  • Then this is a completely different problem with your input.
    – Sammitch
    5 mins ago











Your Answer






StackExchange.ifUsing("editor", function () {
StackExchange.using("externalEditor", function () {
StackExchange.using("snippets", function () {
StackExchange.snippets.init();
});
});
}, "code-snippets");

StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "1"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});

function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});


}
});














 

draft saved


draft discarded


















StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53343753%2fstrange-behaviour-in-php-hash-hmac%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown

























1 Answer
1






active

oldest

votes








1 Answer
1






active

oldest

votes









active

oldest

votes






active

oldest

votes








up vote
0
down vote



accepted










I`ve had the same problems in one of my projects.
Just try:



$new_sig = hash_hmac("sha256", trim($signatur_string," "), $api_key);




share





















  • Then this is a completely different problem with your input.
    – Sammitch
    5 mins ago















up vote
0
down vote



accepted










I`ve had the same problems in one of my projects.
Just try:



$new_sig = hash_hmac("sha256", trim($signatur_string," "), $api_key);




share





















  • Then this is a completely different problem with your input.
    – Sammitch
    5 mins ago













up vote
0
down vote



accepted







up vote
0
down vote



accepted






I`ve had the same problems in one of my projects.
Just try:



$new_sig = hash_hmac("sha256", trim($signatur_string," "), $api_key);




share












I`ve had the same problems in one of my projects.
Just try:



$new_sig = hash_hmac("sha256", trim($signatur_string," "), $api_key);





share











share


share










answered 6 mins ago









Marcel Merz

9511




9511












  • Then this is a completely different problem with your input.
    – Sammitch
    5 mins ago


















  • Then this is a completely different problem with your input.
    – Sammitch
    5 mins ago
















Then this is a completely different problem with your input.
– Sammitch
5 mins ago




Then this is a completely different problem with your input.
– Sammitch
5 mins ago


















 

draft saved


draft discarded



















































 


draft saved


draft discarded














StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53343753%2fstrange-behaviour-in-php-hash-hmac%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown





















































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown

































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown







Popular posts from this blog

"Incorrect syntax near the keyword 'ON'. (on update cascade, on delete cascade,)

Alcedinidae

Origin of the phrase “under your belt”?