Home Explore Help
Register Sign In
RNCryptor
/
RNCryptor-php
mirror of https://github.com/RNCryptor/RNCryptor-php.git
1
0
Fork 0
Files Issues 0 Wiki
Tree: 0008f8daad
Branches Tags
RNCryptor-php
/
lib
/
RNCryptor
/
Encryptor.php

Encryptor.php 3.8 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116 
  1. <?php
    2. 

  2. namespace RNCryptor;
    3. 

  3. 

  4. /**
    5. 

  5.  * RNEncryptor for PHP
    6. 

  6.  * 
    7. 

  7.  * Encrypt data interchangeably with Rob Napier's Objective-C implementation
    8. 

  8.  * of RNCryptor
    9. 

  9.  */
    10. 

  10. class Encryptor extends Cryptor {
    11. 

  11. 

  12. 	/**
    13. 

  13. 	 * Encrypt plaintext using RNCryptor's algorithm
    14. 

  14. 	 * 
    15. 

  15. 	 * @param string $plaintext Text to be encrypted
    16. 

  16. 	 * @param string $password Password to use
    17. 

  17. 	 * @param int $version (Optional) RNCryptor schema version to use.
    18. 

  18. 	 * @throws \Exception If the provided version (if any) is unsupported
    19. 

  19. 	 * @return string Encrypted, Base64-encoded string
    20. 

  20. 	 */
    21. 

  21. 	public function encrypt($plaintext, $password, $version = Cryptor::DEFAULT_SCHEMA_VERSION) {
    22. 

  22. 

  23. 		$this->_configureSettings($version);
    24. 

  24. 

  25. 		$components = $this->_generateInitializedComponents($version);
    26. 

  26. 		$components->headers->encSalt = $this->_generateSalt();
    27. 

  27. 		$components->headers->hmacSalt = $this->_generateSalt();
    28. 

  28. 		$components->headers->iv = $this->_generateIv($this->_settings->ivLength);
    29. 

  29. 

  30. 		$encKey = $this->_generateKey($components->headers->encSalt, $password);
    31. 

  31. 		$hmacKey = $this->_generateKey($components->headers->hmacSalt, $password);
    32. 

  32. 

  33. 		return $this->_encrypt($plaintext, $components, $encKey, $hmacKey);
    34. 

  34. 	}
    35. 

  35. 

  36. 	public function encryptWithArbitrarySalts($plaintext, $password, $encSalt, $hmacSalt, $iv, $version = Cryptor::DEFAULT_SCHEMA_VERSION) {
    37. 

  37. 	
    38. 

  38. 		$this->_configureSettings($version);
    39. 

  39. 

  40. 		$components = $this->_generateInitializedComponents($version);
    41. 

  41. 		$components->headers->encSalt = $encSalt;
    42. 

  42. 		$components->headers->hmacSalt = $hmacSalt;
    43. 

  43. 		$components->headers->iv = $iv;
    44. 

  44. 

  45. 		$encKey = $this->_generateKey($components->headers->encSalt, $password);
    46. 

  46. 		$hmacKey = $this->_generateKey($components->headers->hmacSalt, $password);
    47. 

  47. 

  48. 		return $this->_encrypt($plaintext, $components, $encKey, $hmacKey);
    49. 

  49. 	}
    50. 

  50. 

  51. 	public function encryptWithArbitraryKeys($plaintext, $encKey, $hmacKey, $iv, $version = Cryptor::DEFAULT_SCHEMA_VERSION) {
    52. 

  52. 

  53. 		$this->_configureSettings($version);
    54. 

  54. 

  55. 		$this->_settings->options = 0;
    56. 

  56. 

  57. 		$components = $this->_generateInitializedComponents($version);
    58. 

  58. 		$components->headers->iv = $iv;
    59. 

  59. 

  60. 		return $this->_encrypt($plaintext, $components, $encKey, $hmacKey);
    61. 

  61. 	}
    62. 

  62. 

  63. 	private function _generateInitializedComponents($version) {
    64. 

  64. 

  65. 		$components = new \stdClass();
    66. 

  66. 		$components->headers = new \stdClass();
    67. 

  67. 		$components->headers->version = chr($version);
    68. 

  68. 		$components->headers->options = chr($this->_settings->options);
    69. 

  69. 

  70. 		return $components;
    71. 

  71. 	}
    72. 

  72. 

  73. 	private function _encrypt($plaintext, \stdClass $components, $encKey, $hmacKey) {
    74. 

  74. 	
    75. 

  75. 		switch ($this->_settings->mode) {
    76. 

  76. 			case 'ctr':
    77. 

  77. 				$components->ciphertext = $this->_aesCtrLittleEndianCrypt($plaintext, $encKey, $components->headers->iv);
    78. 

  78. 				break;
    79. 

  79. 	
    80. 

  80. 			case 'cbc':
    81. 

  81. 				$paddedPlaintext = $this->_addPKCS7Padding($plaintext, strlen($components->headers->iv));
    82. 

  82. 				$components->ciphertext = mcrypt_encrypt($this->_settings->algorithm, $encKey, $paddedPlaintext, 'cbc', $components->headers->iv);
    83. 

  83. 				break;
    84. 

  84. 		}
    85. 

  85. 

  86. 		$binaryData = ''
    87. 

  87. 				. $components->headers->version
    88. 

  88. 				. $components->headers->options
    89. 

  89. 				. (isset($components->headers->encSalt) ? $components->headers->encSalt : '')
    90. 

  90. 				. (isset($components->headers->hmacSalt) ? $components->headers->hmacSalt : '')
    91. 

  91. 				. $components->headers->iv
    92. 

  92. 				. $components->ciphertext;
    93. 

  93. 	
    94. 

  94. 		$hmac = $this->_generateHmac($components, $hmacKey);
    95. 

  95. 	
    96. 

  96. 		return base64_encode($binaryData . $hmac);
    97. 

  97. 	}
    98. 

  98. 

  99. 	private function _addPKCS7Padding($plaintext, $blockSize) {
    100. 

  100. 		$padSize = $blockSize - (strlen($plaintext) % $blockSize);
    101. 

  101. 		return $plaintext . str_repeat(chr($padSize), $padSize);
    102. 

  102. 	}
    103. 

  103. 

  104. 	private function _generateSalt() {
    105. 

  105. 		return $this->_generateIv($this->_settings->saltLength);
    106. 

  106. 	}
    107. 

  107. 

  108. 	private function _generateIv($blockSize) {
    109. 

  109. 		if (strtoupper(substr(PHP_OS, 0, 3)) === 'WIN') {
    110. 

  110. 			$randomSource = MCRYPT_RAND;
    111. 

  111. 		} else {
    112. 

  112. 			$randomSource = MCRYPT_DEV_URANDOM;
    113. 

  113. 		}
    114. 

  114. 		return mcrypt_create_iv($blockSize, $randomSource);
    115. 

  115. 	}
    116. 

  116. }
    117.