forked from igorsantos07/Yii-Extensions
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathcryptastic.php
executable file
·113 lines (86 loc) · 3.16 KB
/
cryptastic.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
<?php
class cryptastic {
/** Encryption Procedure
*
* @param mixed msg message/data
* @param string k encryption key
* @param boolean base64 base64 encode result
*
* @return string iv+ciphertext+mac or
* boolean false on error
*/
public function encrypt( $msg, $k, $base64 = false ) {
# open cipher module (do not change cipher/mode)
if ( ! $td = mcrypt_module_open('rijndael-256', '', 'ctr', '') )
return false;
$msg = serialize($msg); # serialize
$iv = mcrypt_create_iv(32, MCRYPT_RAND); # create iv
if ( mcrypt_generic_init($td, $k, $iv) !== 0 ) # initialize buffers
return false;
$msg = mcrypt_generic($td, $msg); # encrypt
$msg = $iv . $msg; # prepend iv
$mac = $this->pbkdf2($msg, $k, 1000, 32); # create mac
$msg .= $mac; # append mac
mcrypt_generic_deinit($td); # clear buffers
mcrypt_module_close($td); # close cipher module
if ( $base64 ) $msg = base64_encode($msg); # base64 encode?
return $msg; # return iv+ciphertext+mac
}
/** Decryption Procedure
*
* @param string msg output from encrypt()
* @param string k encryption key
* @param boolean base64 base64 decode msg
*
* @return string original message/data or
* boolean false on error
*/
public function decrypt( $msg, $k, $base64 = false ) {
if ( $base64 ) $msg = base64_decode($msg); # base64 decode?
# open cipher module (do not change cipher/mode)
if ( ! $td = mcrypt_module_open('rijndael-256', '', 'ctr', '') )
return false;
$iv = substr($msg, 0, 32); # extract iv
$mo = strlen($msg) - 32; # mac offset
$em = substr($msg, $mo); # extract mac
$msg = substr($msg, 32, strlen($msg)-64); # extract ciphertext
$mac = $this->pbkdf2($iv . $msg, $k, 1000, 32); # create mac
if ( $em !== $mac ) # authenticate mac
return false;
if ( mcrypt_generic_init($td, $k, $iv) !== 0 ) # initialize buffers
return false;
$msg = mdecrypt_generic($td, $msg); # decrypt
$msg = unserialize($msg); # unserialize
mcrypt_generic_deinit($td); # clear buffers
mcrypt_module_close($td); # close cipher module
return $msg; # return original msg
}
/** PBKDF2 Implementation (as described in RFC 2898);
*
* @param string p password
* @param string s salt
* @param int c iteration count (use 1000 or higher)
* @param int kl derived key length
* @param string a hash algorithm
*
* @return string derived key
*/
public function pbkdf2( $p, $s, $c, $kl, $a = 'sha256' ) {
$hl = strlen(hash($a, null, true)); # Hash length
$kb = ceil($kl / $hl); # Key blocks to compute
$dk = ''; # Derived key
# Create key
for ( $block = 1; $block <= $kb; $block ++ ) {
# Initial hash for this block
$ib = $b = hash_hmac($a, $s . pack('N', $block), $p, true);
# Perform block iterations
for ( $i = 1; $i < $c; $i ++ )
# XOR each iterate
$ib ^= ($b = hash_hmac($a, $b, $p, true));
$dk .= $ib; # Append iterated block
}
# Return derived key of correct length
return substr($dk, 0, $kl);
}
}
?>