Commit b9b97119 by Taylor Otwell

added more comments to crypter class.

parent 600e411a
...@@ -26,6 +26,9 @@ class Crypter { ...@@ -26,6 +26,9 @@ class Crypter {
/** /**
* Create a new Crypter instance. * Create a new Crypter instance.
* *
* A valid cipher and mode supported by the Mcrypt extension must be given to the constructor.
* Also, an encryption key (typically from the application configuration) must be specified.
*
* @param string $cipher * @param string $cipher
* @param string $mode * @param string $mode
* @param string $key * @param string $key
...@@ -33,9 +36,9 @@ class Crypter { ...@@ -33,9 +36,9 @@ class Crypter {
*/ */
public function __construct($cipher, $mode, $key) public function __construct($cipher, $mode, $key)
{ {
$this->cipher = $cipher;
$this->mode = $mode;
$this->key = $key; $this->key = $key;
$this->mode = $mode;
$this->cipher = $cipher;
if (trim((string) $this->key) === '') if (trim((string) $this->key) === '')
{ {
...@@ -46,48 +49,62 @@ class Crypter { ...@@ -46,48 +49,62 @@ class Crypter {
/** /**
* Encrypt a string using Mcrypt. * Encrypt a string using Mcrypt.
* *
* The string will be encrypted using the cipher and mode specified when the crypter
* instance was created, and the final result will be base64 encoded.
*
* <code>
* // Encrypt a string using the Mcrypt PHP extension
* $encrypted = Crypter::encrpt('secret');
* </code>
*
* @param string $value * @param string $value
* @return string * @return string
*/ */
public function encrypt($value) public function encrypt($value)
{ {
$iv = mcrypt_create_iv($this->iv_size(), $this->randomizer()); // Determine the most appropriate random number generator for the operating
// system and environment the application is running on.
return base64_encode($iv.mcrypt_encrypt($this->cipher, $this->key, $value, $this->mode, $iv));
}
/**
* Get the random number source available to the OS.
*
* @return int
*/
protected function randomizer()
{
if (defined('MCRYPT_DEV_URANDOM')) if (defined('MCRYPT_DEV_URANDOM'))
{ {
return MCRYPT_DEV_URANDOM; $randomizer = MCRYPT_DEV_URANDOM;
} }
elseif (defined('MCRYPT_DEV_RANDOM')) elseif (defined('MCRYPT_DEV_RANDOM'))
{ {
return MCRYPT_DEV_RANDOM; $randomizer = MCRYPT_DEV_RANDOM;
} }
else
{
$randomizer = MCRYPT_RAND;
}
$iv = mcrypt_create_iv($this->iv_size(), $randomizer);
return MCRYPT_RAND; return base64_encode($iv.mcrypt_encrypt($this->cipher, $this->key, $value, $this->mode, $iv));
} }
/** /**
* Decrypt a string using Mcrypt. * Decrypt a string using Mcrypt.
* *
* The string will be decrypted using the cipher and mode specified when the crypter was created.
*
* <code>
* // Decrypt a string using the Mcrypt PHP extension
* $decrypted = Crypter::decrypt($secret);
* </code>
*
* @param string $value * @param string $value
* @return string * @return string
*/ */
public function decrypt($value) public function decrypt($value)
{ {
// Since all encrypted strings generated by this class are base64 encoded, we will
// first attempt to base64 decode the string. If we can't do it, we'll bail out.
if ( ! is_string($value = base64_decode($value, true))) if ( ! is_string($value = base64_decode($value, true)))
{ {
throw new \Exception('Decryption error. Input value is not valid base64 data.'); throw new \Exception('Decryption error. Input value is not valid base64 data.');
} }
// Extract the input vector and the encrypted string from the value
list($iv, $value) = array(substr($value, 0, $this->iv_size()), substr($value, $this->iv_size())); list($iv, $value) = array(substr($value, 0, $this->iv_size()), substr($value, $this->iv_size()));
return rtrim(mcrypt_decrypt($this->cipher, $this->key, $value, $this->mode, $iv), "\0"); return rtrim(mcrypt_decrypt($this->cipher, $this->key, $value, $this->mode, $iv), "\0");
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment