core/Tracker/FingerprintSalt.php


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88

<?php
/**
 * Matomo - free/libre analytics platform
 *
 * @link https://matomo.org
 * @license http://www.gnu.org/licenses/gpl-3.0.html GPL v3 or later
 *
 */

namespace Piwik\Tracker;

use Piwik\Common;
use Piwik\Date;
use Piwik\Exception\InvalidRequestParameterException;
use Piwik\Exception\UnexpectedWebsiteFoundException;
use Piwik\Option;
use Piwik\Piwik;
use Piwik\SettingsServer;
use Piwik\Site;
use Piwik\Db as PiwikDb;

class FingerprintSalt
{
    const OPTION_PREFIX = 'fingerprint_salt_';
    const DELETE_FINGERPRINT_OLDER_THAN_SECONDS = 432000; // 5 days in seconds

    public function generateSalt()
    {
        return Common::getRandomString(32);
    }

    public function deleteOldSalts()
    {
        // we want to make sure to delete salts that were created more than three days ago as they are likely not in
        // use anymore. We should delete them to ensure the fingerprint is truly random for each day because if we used
        // eg the regular salt then it would technically still be possible to try and regenerate the fingerprint based
        // on certain information.
        // Typically, only the salts for today and yesterday are used. However, if someone was to import historical data
        // for the same day and this takes more than five days, then it could technically happen that we delete a
        // fingerprint that is still in use now and as such after deletion a few visitors would have a new configId
        // within one visit and such a new visit would be created. That should be very much edge case though.
        $deleteSaltsCreatedBefore = Date::getNowTimestamp() - self::DELETE_FINGERPRINT_OLDER_THAN_SECONDS;
        $options = Option::getLike(self::OPTION_PREFIX . '%');
        $deleted = array();
        foreach ($options as $name => $value) {
            $value = $this->decode($value);
            if (empty($value['time']) || $value['time'] < $deleteSaltsCreatedBefore) {
                Option::delete($name);
                $deleted[] = $name;
            }
        }

        return $deleted;
    }

    public function getDateString(Date $date, $timezone)
    {
        $dateString = Date::factory($date->getTimestampUTC(), $timezone)->toString();
        return $dateString;
    }

    private function encode($value)
    {
        return json_encode($value);
    }

    private function decode($value)
    {
        return @json_decode($value, true);
    }

    public function getSalt($dateString, $idSite)
    {
        $fingerprintSaltKey = self::OPTION_PREFIX . (int) $idSite . '_' . $dateString;
        $salt = Option::get($fingerprintSaltKey);
        if (!empty($salt)) {
            $salt = $this->decode($salt);
        }
        if (empty($salt['value'])) {
            $salt = array(
                'value' => $this->generateSalt(),
                'time' => Date::getNowTimestamp()
            );
            Option::set($fingerprintSaltKey, $this->encode($salt));
        }
        return $salt['value'];
    }
}