You are here

Home » API reference » Lockr 7.2 » LockrAesCbcKeyWrapper.php

class LockrAesCbcKeyWrapper in Lockr 7.2

Same name and namespace in other branches
  1. 7.3 vendor/lockr/lockr/src/KeyWrapper/LockrAesCbcKeyWrapper.php \Lockr\KeyWrapper\LockrAesCbcKeyWrapper

Hierarchy

Expanded class hierarchy of LockrAesCbcKeyWrapper

File

vendor/lockr/lockr-client/src/KeyWrapper/LockrAesCbcKeyWrapper.php, line 6

Namespace

Lockr\KeyWrapper
View source 
class LockrAesCbcKeyWrapper implements KeyWrapperInterface {

  /**
   * {@inheritdoc}
   */
  public static function enabled() {
    return function_exists('mcrypt_encrypt') && function_exists('openssl_encrypt');
  }

  /**
   * {@inheritdoc}
   */
  public static function encrypt($plaintext) {
    if (version_compare(PHP_VERSION, '7.2', '<')) {
      $cipher = MCRYPT_RIJNDAEL_256;
      $mode = MCRYPT_MODE_CBC;
      $key = openssl_random_pseudo_bytes(32);
      $iv_len = mcrypt_get_iv_size($cipher, $mode);
      $iv = mcrypt_create_iv($iv_len);
      $ciphertext = mcrypt_encrypt($cipher, $key, $plaintext, $mode, $iv);
      $ciphertext = base64_encode($ciphertext);
      $encoded = self::encode($cipher, $mode, $iv, $key);
      return array(
        'ciphertext' => $ciphertext,
        'encoded' => $encoded,
      );
    }
  }

  /**
   * {@inheritdoc}
   */
  public static function decrypt($ciphertext, $encoded) {
    $parts = self::decode($encoded);
    if (!$parts) {
      return false;
    }
    list($cipher, $mode, $iv, $key) = $parts;
    $ciphertext = base64_decode($ciphertext);
    $key = mcrypt_decrypt($cipher, $key, $ciphertext, $mode, $iv);
    if ($key === false) {
      return false;
    }
    return trim($key);
  }

  /**
   * {@inheritdoc}
   */
  public static function reencrypt($plaintext, $encoded) {
    $parts = self::decode($encoded);
    if (!$parts) {
      return false;
    }
    list($cipher, $mode, $iv, $key) = $parts;
    $ciphertext = mcrypt_encrypt($cipher, $key, $plaintext, $mode, $iv);
    $ciphertext = base64_encode($ciphertext);
    return array(
      'ciphertext' => $ciphertext,
      'encoded' => $encoded,
    );
  }
  protected static function encode($cipher, $mode, $iv, $key) {
    $parts = array(
      $cipher,
      $mode,
      base64_encode($iv),
      base64_encode($key),
    );
    return implode('$', $parts);
  }
  protected static function decode($encoded) {
    $parts = explode('$', $encoded, 4);
    if (!$parts || count($parts) != 4) {
      return false;
    }
    list($cipher, $mode, $iv, $key) = $parts;
    $iv = base64_decode($iv);
    $key = base64_decode($key);
    return array(
      $cipher,
      $mode,
      $iv,
      $key,
    );
  }

}

Members

Namesort descending Modifiers Type Description Overrides
LockrAesCbcKeyWrapper::decode protected static function
LockrAesCbcKeyWrapper::decrypt public static function Decrypt the given ciphertext using encoded. Overrides KeyWrapperInterface::decrypt
LockrAesCbcKeyWrapper::enabled public static function Overrides KeyWrapperInterface::enabled
LockrAesCbcKeyWrapper::encode protected static function
LockrAesCbcKeyWrapper::encrypt public static function Encrypt the given plaintext. Overrides KeyWrapperInterface::encrypt
LockrAesCbcKeyWrapper::reencrypt public static function Encrypt the given plaintext using the same initial state as defined by encoded. Overrides KeyWrapperInterface::reencrypt