fix: hash collision after a game has been cancled and the gameid is being reused.

[e-DoKo.git] / index.php

diff --git a/index.php b/index.php
index 8e303ad28b12aafd9b4c6f25688e86e802a97bd9..83c8cb7c2a553480ab8c4f05bb4982b9a6ff081d 100644 (file)
--- a/index.php
+++ b/index.php
@@ -109,10 +109,11 @@ if(myisset("new"))
     $game_id = mysql_insert_id();
     
     /* create hash */
-    $hashA = md5("AGameOfDoko".$game_id.$PlayerA.$EmailA);
-    $hashB = md5("AGameOfDoko".$game_id.$PlayerB.$EmailB);
-    $hashC = md5("AGameOfDoko".$game_id.$PlayerC.$EmailC);
-    $hashD = md5("AGameOfDoko".$game_id.$PlayerD.$EmailD);
+    $TIME  = (string) time(); /* to avoid collisions */
+    $hashA = md5("AGameOfDoko".$game_id.$PlayerA.$EmailA.$TIME);
+    $hashB = md5("AGameOfDoko".$game_id.$PlayerB.$EmailB.$TIME);
+    $hashC = md5("AGameOfDoko".$game_id.$PlayerC.$EmailC.$TIME);
+    $hashD = md5("AGameOfDoko".$game_id.$PlayerD.$EmailD.$TIME);
     
     /* create hands */
     mysql_query("INSERT INTO Hand VALUES (NULL,".DB_quote_smart($game_id).",".DB_quote_smart($useridA).
@@ -1053,6 +1054,7 @@ else if(myisset("me"))
              /* mark card as played */
              mysql_query("UPDATE Hand_Card SET played='true' WHERE hand_id='$handid' AND card_id=".
                          DB_quote_smart($card));
+
              /* update Game timestamp */
              DB_update_game_timestamp($gameid);