From 69386014408ffe25ccd81c7ff02e7b4650b56073 Mon Sep 17 00:00:00 2001
From: dpeca <peca@mycity.rs>
Date: Wed, 19 Apr 2017 20:32:22 +0200
Subject: [PATCH] Revert "Patch insecure CSRF token crypto vulnerability"

---
 web/inc/main.php    | 4 ++--
 web/login/index.php | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/web/inc/main.php b/web/inc/main.php
index 22722b32f..38d478922 100644
--- a/web/inc/main.php
+++ b/web/inc/main.php
@@ -59,10 +59,10 @@ if ((!isset($_SESSION['user'])) && (!defined('NO_AUTH_REQUIRED'))) {
     exit;
 }
 
-// Generate CSRF token
 if (isset($_SESSION['user'])) {
     if(!isset($_SESSION['token'])){
-        $_SESSION['token'] = bin2hex(openssl_random_pseudo_bytes(16));
+        $token = uniqid(mt_rand(), true);
+        $_SESSION['token'] = $token;
     }
 }
 
diff --git a/web/login/index.php b/web/login/index.php
index d2aacefd7..4be64eccb 100644
--- a/web/login/index.php
+++ b/web/login/index.php
@@ -126,7 +126,7 @@ if (empty($_SESSION['language'])) {
 }
 
 // Generate CSRF token
-$_SESSION['token'] = bin2hex(openssl_random_pseudo_bytes(16)); // generate 32-character cryptographically secure token
+$_SESSION['token'] = md5(uniqid(mt_rand(), true));
 
 require_once($_SERVER['DOCUMENT_ROOT'].'/inc/i18n/'.$_SESSION['language'].'.php');
 require_once('../templates/header.html');