Title: WP_DEBUG – PHP Deprecated: crypt() Last modified: November 6, 2020 --- # WP_DEBUG – PHP Deprecated: crypt() * [Clifford Paulick](https://wordpress.org/support/users/cliffpaulick/) * (@cliffpaulick) * [5 years, 6 months ago](https://wordpress.org/support/topic/wp_debug-php-deprecated-crypt/) * Multiple unique WP_DEBUG notices on PHP 7.4.1 with latest version of WP core and all plugins and themes up to date: * > PHP Deprecated: crypt(): Supplied salt is not valid for DES. Possible bug in > provided salt format. in /wp-includes/class-phpass.php on line 272 > PHP Stack > trace: PHP 1. {main}() /wp-login.php:0 PHP 2. wp_signon() /wp-login.php:1248 > PHP 3. wp_authenticate() /wp-includes/user.php:95 PHP 4. apply_filters() /wp- > includes/pluggable.php:549 PHP 5. WP_Hook->apply_filters() /wp-includes/plugin. > php:206 PHP 6. wp_authenticate_username_password() /wp-includes/class-wp-hook. > php:287 PHP 7. wp_check_password() /wp-includes/user.php:170 PHP 8. PasswordsEvolved\ > Password\Hasher\PasswordHasherChain->is_password_valid() /wp-content/plugins/ > passwords-evolved/pluggable.php:35 PHP 9. array_reduce() /wp-content/plugins/ > passwords-evolved/src/Password/Hasher/PasswordHasherChain.php:93 PHP 10. PasswordsEvolved\ > Password\Hasher\PasswordHasherChain->PasswordsEvolved\Password\Hasher\{closure:/ > wp-content/plugins/passwords-evolved/src/Password/Hasher/PasswordHasherChain. > php:87-93}() /wp-content/plugins/passwords-evolved/src/Password/Hasher/PasswordHasherChain. > php:93 PHP 11. PasswordsEvolved\Password\Hasher\WordPressPasswordHasher->is_password_valid()/ > wp-content/plugins/passwords-evolved/src/Password/Hasher/PasswordHasherChain. > php:89 PHP 12. PasswordHash->CheckPassword() /wp-content/plugins/passwords- > evolved/src/Password/Hasher/WordPressPasswordHasher.php:68 PHP 13. crypt() / > wp-includes/class-phpass.php:272 * > PHP Deprecated: crypt(): Supplied salt is not valid for DES. Possible bug in > provided salt format. in /Users/cliff/Local Sites/calc/app/public/wp-includes/ > class-phpass.php on line 272 > PHP Stack trace: PHP 1. {main}() /Users/cliff/ > Local Sites/calc/app/public/wp-login.php:0 PHP 2. wp_signon() /Users/cliff/ > Local Sites/calc/app/public/wp-login.php:1248 PHP 3. wp_authenticate() /Users/ > cliff/Local Sites/calc/app/public/wp-includes/user.php:95 PHP 4. apply_filters()/ > Users/cliff/Local Sites/calc/app/public/wp-includes/pluggable.php:549 PHP 5. > WP_Hook->apply_filters() /Users/cliff/Local Sites/calc/app/public/wp-includes/ > plugin.php:206 PHP 6. wp_authenticate_username_password() /Users/cliff/Local > Sites/calc/app/public/wp-includes/class-wp-hook.php:287 PHP 7. wp_check_password()/ > Users/cliff/Local Sites/calc/app/public/wp-includes/user.php:170 PHP 8. PasswordHash- > >CheckPassword() /Users/cliff/Local Sites/calc/app/public/wp-includes/pluggable. > php:2416 PHP 9. crypt() /Users/cliff/Local Sites/calc/app/public/wp-includes/ > class-phpass.php:272 Viewing 6 replies - 1 through 6 (of 6 total) * [alirsyad.malang](https://wordpress.org/support/users/alirsyad19/) * (@alirsyad19) * [5 years, 6 months ago](https://wordpress.org/support/topic/wp_debug-php-deprecated-crypt/#post-13635408) * thankyou * Plugin Author [Carl Alexander](https://wordpress.org/support/users/carlalexander/) * (@carlalexander) * [5 years, 2 months ago](https://wordpress.org/support/topic/wp_debug-php-deprecated-crypt/#post-14137439) * Heya! * Sorry I just saw this. I want to do a release soon. I’ll fix it by then. I opened an issue on GitHub: [https://github.com/carlalexander/passwords-evolved/issues/7](https://github.com/carlalexander/passwords-evolved/issues/7) * Thread Starter [Clifford Paulick](https://wordpress.org/support/users/cliffpaulick/) * (@cliffpaulick) * [5 years, 2 months ago](https://wordpress.org/support/topic/wp_debug-php-deprecated-crypt/#post-14140349) * thanks! * Plugin Author [Carl Alexander](https://wordpress.org/support/users/carlalexander/) * (@carlalexander) * [5 years, 1 month ago](https://wordpress.org/support/topic/wp_debug-php-deprecated-crypt/#post-14214770) * Heya [@cliffpaulick](https://wordpress.org/support/users/cliffpaulick/)! * So looking at this, I’ll need more information about the issue. It seems like the password checker falls back to the default WordPress one. So that tells me that the plugin couldn’t detect the hashing algorithm. * Could you share the starting part of the hashed password when this happened. For example, a bcrypt password starts with `$2b$10$`. * This would help me see what might have happened. * Thread Starter [Clifford Paulick](https://wordpress.org/support/users/cliffpaulick/) * (@cliffpaulick) * [5 years, 1 month ago](https://wordpress.org/support/topic/wp_debug-php-deprecated-crypt/#post-14220722) * I’m unsure which site this was for but I’ll update you if I find out. I’d guess not very soon though. * Thread Starter [Clifford Paulick](https://wordpress.org/support/users/cliffpaulick/) * (@cliffpaulick) * [5 years ago](https://wordpress.org/support/topic/wp_debug-php-deprecated-crypt/#post-14434895) * OK, got it on a site with latest versions of WP core and plugins: * > PHP Deprecated: crypt(): Supplied salt is not valid for DES. Possible bug in > provided salt format. in /wp-includes/class-phpass.php on line 272 > PHP Stack > trace: PHP 1. {main}() /wp-login.php:0 PHP 2. wp_signon() /wp-login.php:1128 > PHP 3. wp_authenticate() /wp-includes/user.php:95 PHP 4. apply_filters() /wp- > includes/pluggable.php:582 PHP 5. WP_Hook->apply_filters() /wp-includes/plugin. > php:212 PHP 6. wp_authenticate_username_password() /wp-includes/class-wp-hook. > php:292 PHP 7. wp_check_password() /wp-includes/user.php:170 PHP 8. PasswordsEvolved\ > Password\Hasher\PasswordHasherChain->is_password_valid() /wp-content/plugins/ > passwords-evolved/pluggable.php:35 PHP 9. array_reduce() /wp-content/plugins/ > passwords-evolved/src/Password/Hasher/PasswordHasherChain.php:93 PHP 10. PasswordsEvolved\ > Password\Hasher\PasswordHasherChain->PasswordsEvolved\Password\Hasher\{closure:/ > wp-content/plugins/passwords-evolved/src/Password/Hasher/PasswordHasherChain. > php:87-93}() /wp-content/plugins/passwords-evolved/src/Password/Hasher/PasswordHasherChain. > php:93 PHP 11. PasswordsEvolved\Password\Hasher\WordPressPasswordHasher->is_password_valid()/ > wp-content/plugins/passwords-evolved/src/Password/Hasher/PasswordHasherChain. > php:89 PHP 12. PasswordHash->CheckPassword() /wp-content/plugins/passwords- > evolved/src/Password/Hasher/WordPressPasswordHasher.php:68 PHP 13. crypt() / > wp-includes/class-phpass.php:272 * So I tried to replicate using the only login I use on this site and couldn’t… so I tried purposefully incorrect password (failed login attempt) and that didn’t trigger it either. * The only thing I can think of is when I cloned the site (latest version of Local Flywheel, nginx, PHP 7.4.1) as a blank start and then imported an [All-in-One WP Migration](https://wordpress.org/plugins/all-in-one-wp-migration/) export file, then trying to login with the correct credentials says cookies in my browser are disabled (which they’re not) – and I clear the site’s cookies/ cache and then my same credentials work. * So maybe it’s during that cache/cookie error thing that this notice generates in `debug.log`? * Screenshot of all passwords in my database: [https://share.getcloudapp.com/WnuYgd1Y](https://share.getcloudapp.com/WnuYgd1Y) * Does any of this help? Viewing 6 replies - 1 through 6 (of 6 total) The topic ‘WP_DEBUG – PHP Deprecated: crypt()’ is closed to new replies. * ![](https://ps.w.org/passwords-evolved/assets/icon-256x256.png?rev=2707531) * [Passwords Evolved](https://wordpress.org/plugins/passwords-evolved/) * [Frequently Asked Questions](https://wordpress.org/plugins/passwords-evolved/#faq) * [Support Threads](https://wordpress.org/support/plugin/passwords-evolved/) * [Active Topics](https://wordpress.org/support/plugin/passwords-evolved/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/passwords-evolved/unresolved/) * [Reviews](https://wordpress.org/support/plugin/passwords-evolved/reviews/) * 6 replies * 3 participants * Last reply from: [Clifford Paulick](https://wordpress.org/support/users/cliffpaulick/) * Last activity: [5 years ago](https://wordpress.org/support/topic/wp_debug-php-deprecated-crypt/#post-14434895) * Status: not resolved