Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

MCrypt rijndael-256 to OpenSSL aes-256-ecb conversion

Tags:

php

openssl

php-7.2

Since Mcrypt is deprecated, I want to use OpenSSL instead in my code since we already using php 7.2.4 in our server.

I have used following code for Encryption/Decryption.

//ENCRYPTION

function encrypt($text, $salt='') {
    if ($text == "") {
        return "";
    }

    if ($salt == "") {
        $salt = 'DiAo74dOO09T48YESmuvbS0T';
    }

    return trim(base64_encode(mcrypt_encrypt(MCRYPT_RIJNDAEL_256, $salt, $text, MCRYPT_MODE_ECB, mcrypt_create_iv(mcrypt_get_iv_size(MCRYPT_RIJNDAEL_256, MCRYPT_MODE_ECB), MCRYPT_RAND))));
}

//DECRYPTION

function decrypt($text, $salt = '') {
    if ($text == "") {
        return "";
    }

    if ($salt == "") {
        $salt = 'DiAo74dOO09T48YESmuvbS0T';
    }

    return trim(mcrypt_decrypt(MCRYPT_RIJNDAEL_256, $salt, base64_decode($text), MCRYPT_MODE_ECB, mcrypt_create_iv(mcrypt_get_iv_size(MCRYPT_RIJNDAEL_256, MCRYPT_MODE_ECB), MCRYPT_RAND)));
}

AFdT9sa81krHkp/GoYCSwh7/lZn/gLZLHJSldi5/QCU= this string I had encrypted using the above encryption function, but I want it to decrypt it using OPENSSL. I used the following code to decrypt it:

$string = 'AFdT9sa81krHkp/GoYCSwh7/lZn/gLZLHJSldi5/QCU=';   
$output = false;
$secret_key = 'DiAo74dOO09T48YESmuvbS0T';   
$secret_iv1 = openssl_random_pseudo_bytes(openssl_cipher_iv_length('AES-256-ECB'));
$secret_iv = bin2hex($secret_iv1);
$key = hash('sha256', $secret_key);    
$iv = substr(hash('sha256', $secret_iv), 0, 16);

$output = base64_encode(openssl_encrypt($string, 'aes-256-ecb', $key, OPENSSL_RAW_DATA));

I want decrypted output as: durhs-14767-w0163j1-89047 Thanks in advance for your reply.

like image 317
Mahesh Mirase Avatar asked Apr 24 '18 08:04

Mahesh Mirase

1 Answers

Saddly, you are on the wrong way.

Refer to :

http://php.net/manual/en/function.mcrypt-encrypt.php#117667

MCRYPT_RIJNDAEL_256 is not AES-256, it's a different variant of the Rijndael block cipher.

https://en.wikipedia.org/wiki/Advanced_Encryption_Standard

AES is a variant of Rijndael which has a fixed block size of 128 bits, and a key size of 128, 192, or 256 bits. By contrast, the Rijndael specification per se is specified with block and key sizes that may be any multiple of 32 bits, with a minimum of 128 and a maximum of 256 bits.

So you can not use OpenSSL's AES-256 to decrypt the MCrypt's output.

Some possible methods:

  1. Keep using mcrypt by PECL's mcrypt extension (luckily, it is still there), until you can replace the legacy data totally.

  2. Rewrite a correct RIJNDAEL-256 cipher in PHP.

like image 165
shawn Avatar answered Oct 16 '22 23:10

shawn
Sign in to Comment

Related questions

Connecting, authorizing and getting data for a web application using PHP
Test Queue functionality?
Laravel Pagination links vs render
Laravel method that can be used by multiple controllers and commands. Where should it be?
Narrow return type in PHP7
Symfony 3 connection to multiple databases
Composer won't update due to changes on the current branch
Running tests of a composer package in vendor directory
Getting an error Peer fingerprint did not match after running composer update
How to use PHP Runkit_Sandbox safely
Trim country code from phone number in php
How do I make one of the several fields required?
Symfony 4 Doctrine not working from console [2002] No such file or directory
PHP Unicode codepoint to character
How to send an file with $http.post in Vue.Js
How to make a public directory restricted in laravel?
FB App This method must be called with a Page Access Token
Image upload not working in byethost server
Symfony 4 - how to use service tags when autowiring an entire path
Slider for product thumbnails in WooCommerce

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!