MCrypt rijndael-128 到 OpenSSL aes-128-ecb 的转换
由于 Mcrypt 已被弃用,我想在我的代码中使用 OpenSSL,因为我们已经在我们的服务器中使用了 php 7.0.17 并且不知道他们何时升级它.
Since Mcrypt is deprecated, I want to use OpenSSL instead in my code since we already using php 7.0.17 in our server and there's no tell when they upgrade it.
某些第三方 API(可能托管在 PHP 5.x 上并使用 mcrypt)正在获取加密数据.他们提供了用于加密/解密字符串的方法.
Some third party API (hosted on PHP 5.x probably and using mcrypt), is taking encrypted data. They've provided methods which they are using to encrypt/decrypt strings.
他们在这里
$secret = 'a0a7e7997b6d5fcd55f4b5c32611b87c' ;
public function encrypt128($str)
{
$block = mcrypt_get_block_size("rijndael_128", "ecb");
$pad = $block - (strlen($str) % $block);
$str .= str_repeat(chr($pad), $pad);
return base64_encode(mcrypt_encrypt(MCRYPT_RIJNDAEL_128, $secret, $str, MCRYPT_MODE_ECB));
}
public function decrypt128($str)
{
$str = base64_decode($str);
$str = mcrypt_decrypt(MCRYPT_RIJNDAEL_128, $secret, $str, MCRYPT_MODE_ECB);
$len = strlen($str);
$pad = ord($str[$len - 1]);
return substr($str, 0, strlen($str) - $pad);
}
使用这些方法字符串 small1
如果加密变成 v7IXp5vVaFVXXlt/MN8BVw==
using these methods string small1
if encrypted becomes v7IXp5vVaFVXXlt/MN8BVw==
我们想在我们这边使用 openssl_encrypt
这样如果我们用 OpenSSL 加密相同的字符串,它必须给出与 Mcrypt 相同的结果.我研究过使用 rijndael-128 模式 ecb 的 mcrypt 应该与 OpenSSL aes-128-ecb
兼容.
We want to use openssl_encrypt
in our side such that if we encrypt same string with OpenSSL it must give same results as Mcrypt. I've researched that mcrypt using rijndael-128 Mode ecb should be compatible with OpenSSL aes-128-ecb
.
在过去的几个小时里,我一直在尝试使用自己的方法来加密使用 OpenSSL 提供相同结果的字符串.到目前为止,我已经到了这个
For last few hours, I've been trying to make my own method to encrypt strings serving same result by using OpenSSL. So far I've come to this
public function sslEncrypt128($str)
{
$secret = 'a0a7e7997b6d5fcd55f4b5c32611b87c';
return base64_encode(openssl_encrypt($str, 'aes-128-ecb', $secret, OPENSSL_RAW_DATA));
}
但它产生不同的字符串 SxJ3+EdaeItZx3/EwGTUbw==
与上述输入相同.不知道是flag的问题还是padding的问题,欢迎指点.
But it produces different string SxJ3+EdaeItZx3/EwGTUbw==
for same as above input. I don't know if it is flag's problem or padding's, any pointers will be welcome.
我在此处添加了代码以进行在线测试 https://3v4l.org/v2J2N
I've added the code here to test online https://3v4l.org/v2J2N
提前致谢.
推荐答案
在您的具体示例中,我发现通过将 aes-128-ecb
更改为 aes-256-ecb
,它产生与传统 mcrypt_encrypt
相同的输出.
In your specific example I've found that by changing aes-128-ecb
to aes-256-ecb
, it produces the same output as the legacy mcrypt_encrypt
.
相关文章