Gitiles
Code Review Sign In
www.giggi.me / code-igniter-v3-giggi / fafe28bec4f414e48f63e01ed9105ae5c2c99802 / . / system / libraries / Encrypt.php
blob: b7dba2523ceff1dd09e7951ff3b84df47f6b62ac [file] [log] [blame]
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]1<?php if (!defined('BASEPATH')) exit('No direct script access allowed');
2/**
3 * Code Igniter
4 *
5 * An open source application development framework for PHP 4.3.2 or newer
6 *
7 * @package CodeIgniter
8 * @author Rick Ellis
9 * @copyright Copyright (c) 2006, pMachine, Inc.
10 * @license http://www.codeignitor.com/user_guide/license.html
11 * @link http://www.codeigniter.com
12 * @since Version 1.0
13 * @filesource
14 */
admine79dc712006-09-26 03:52:45 +0000[diff] [blame]15
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]16// ------------------------------------------------------------------------
17
18/**
19 * Code Igniter Encryption Class
20 *
21 * Provides two-way keyed encoding using XOR Hashing and Mcrypt
22 *
23 * @package CodeIgniter
24 * @subpackage Libraries
25 * @category Libraries
26 * @author Rick Ellis
27 * @link http://www.codeigniter.com/user_guide/libraries/encryption.html
28 */
29class CI_Encrypt {
admin10c3f412006-10-08 07:21:12 +0000[diff] [blame]30
admin3ed8c512006-09-29 23:26:28 +0000[diff] [blame]31 var $encryption_key = '';
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]32 var $_hash_type = 'sha1';
33 var $_mcrypt_exists = FALSE;
34 var $_mcrypt_cipher;
35 var $_mcrypt_mode;
36
37 /**
38 * Constructor
39 *
40 * Simply determines whether the mcrypt library exists.
41 *
42 */
43 function CI_Encrypt()
44 {
45 $this->_mcrypt_exists = ( ! function_exists('mcrypt_encrypt')) ? FALSE : TRUE;
46 log_message('debug', "Encrypt Class Initialized");
47 }
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]48
49 // --------------------------------------------------------------------
50
51 /**
52 * Fetch the encryption key
53 *
54 * Returns it as MD5 in order to have an exact-length 128 bit key.
55 * Mcrypt is sensitive to keys that are not the correct length
56 *
57 * @access public
58 * @param string
59 * @return string
60 */
61 function get_key($key = '')
62 {
63 if ($key == '')
64 {
admin3ed8c512006-09-29 23:26:28 +0000[diff] [blame]65 if ($this->encryption_key != '')
66 {
67 return $this->encryption_key;
68 }
69
admin88a8ad12006-10-07 03:16:32 +0000[diff] [blame]70 $CI =& get_instance();
71 $key = $CI->config->item('encryption_key');
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]72
73 if ($key === FALSE)
74 {
75 show_error('In order to use the encryption class requires that you set an encryption key in your config file.');
76 }
77 }
78
79 return md5($key);
80 }
admin3ed8c512006-09-29 23:26:28 +0000[diff] [blame]81
82 // --------------------------------------------------------------------
83
84 /**
85 * Set the encryption key
86 *
87 * @access public
88 * @param string
89 * @return void
90 */
91 function set_key($key = '')
92 {
93 $this->encryption_key = $key;
94 }
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]95
96 // --------------------------------------------------------------------
97
98 /**
99 * Encode
100 *
101 * Encodes the message string using bitwise XOR encoding.
102 * The key is combined with a random hash, and then it
103 * too gets converted using XOR. The whole thing is then run
104 * through mcrypt (if supported) using the randomized key.
105 * The end result is a double-encrypted message string
106 * that is randomized with each call to this function,
107 * even if the supplied message and key are the same.
108 *
109 * @access public
110 * @param string the string to encode
111 * @param string the key
112 * @return string
113 */
114 function encode($string, $key = '')
115 {
116 $key = $this->get_key($key);
117 $enc = $this->_xor_encode($string, $key);
118
119 if ($this->_mcrypt_exists === TRUE)
120 {
121 $enc = $this->mcrypt_encode($enc, $key);
122 }
123 return base64_encode($enc);
124 }
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]125
126 // --------------------------------------------------------------------
127
128 /**
129 * Decode
130 *
131 * Reverses the above process
132 *
133 * @access public
134 * @param string
135 * @param string
136 * @return string
137 */
138 function decode($string, $key = '')
139 {
140 $key = $this->get_key($key);
141 $dec = base64_decode($string);
142
143 if ($dec === FALSE)
144 {
145 return FALSE;
146 }
147
148 if ($this->_mcrypt_exists === TRUE)
149 {
150 $dec = $this->mcrypt_decode($dec, $key);
151 }
152
153 return $this->_xor_decode($dec, $key);
154 }
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]155
156 // --------------------------------------------------------------------
157
158 /**
159 * XOR Encode
160 *
161 * Takes a plain-text string and key as input and generates an
162 * encoded bit-string using XOR
163 *
164 * @access private
165 * @param string
166 * @param string
167 * @return string
168 */
169 function _xor_encode($string, $key)
170 {
171 $rand = '';
172 while (strlen($rand) < 32)
173 {
174 $rand .= mt_rand(0, mt_getrandmax());
175 }
176
177 $rand = $this->hash($rand);
178
179 $enc = '';
180 for ($i = 0; $i < strlen($string); $i++)
181 {
182 $enc .= substr($rand, ($i % strlen($rand)), 1).(substr($rand, ($i % strlen($rand)), 1) ^ substr($string, $i, 1));
183 }
184
185 return $this->_xor_merge($enc, $key);
186 }
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]187
188 // --------------------------------------------------------------------
189
190 /**
191 * XOR Decode
192 *
193 * Takes an encoded string and key as input and generates the
194 * plain-text original message
195 *
196 * @access private
197 * @param string
198 * @param string
199 * @return string
200 */
201 function _xor_decode($string, $key)
202 {
203 $string = $this->_xor_merge($string, $key);
204
205 $dec = '';
206 for ($i = 0; $i < strlen($string); $i++)
207 {
208 $dec .= (substr($string, $i++, 1) ^ substr($string, $i, 1));
209 }
210
211 return $dec;
212 }
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]213
214 // --------------------------------------------------------------------
215
216 /**
217 * XOR key + string Combiner
218 *
219 * Takes a string and key as input and computes the difference using XOR
220 *
221 * @access private
222 * @param string
223 * @param string
224 * @return string
225 */
226 function _xor_merge($string, $key)
227 {
228 $hash = $this->hash($key);
229 $str = '';
230 for ($i = 0; $i < strlen($string); $i++)
231 {
232 $str .= substr($string, $i, 1) ^ substr($hash, ($i % strlen($hash)), 1);
233 }
234
235 return $str;
236 }
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]237
238 // --------------------------------------------------------------------
239
240 /**
241 * Encrypt using Mcrypt
242 *
243 * @access public
244 * @param string
245 * @param string
246 * @return string
247 */
248 function mcrypt_encode($data, $key)
249 {
admin10c3f412006-10-08 07:21:12 +0000[diff] [blame]250 $init_size = mcrypt_get_iv_size($this->_get_cipher(), $this->_get_mode());
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]251 $init_vect = mcrypt_create_iv($init_size, MCRYPT_RAND);
admin10c3f412006-10-08 07:21:12 +0000[diff] [blame]252 return mcrypt_encrypt($this->_get_cipher(), $key, $data, $this->_get_mode(), $init_vect);
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]253 }
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]254
255 // --------------------------------------------------------------------
256
257 /**
258 * Decrypt using Mcrypt
259 *
260 * @access public
261 * @param string
262 * @param string
263 * @return string
264 */
265 function mcrypt_decode($data, $key)
266 {
admin10c3f412006-10-08 07:21:12 +0000[diff] [blame]267 $init_size = mcrypt_get_iv_size($this->_get_cipher(), $this->_get_mode());
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]268 $init_vect = mcrypt_create_iv($init_size, MCRYPT_RAND);
admin10c3f412006-10-08 07:21:12 +0000[diff] [blame]269 return rtrim(mcrypt_decrypt($this->_get_cipher(), $key, $data, $this->_get_mode(), $init_vect), "\0");
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]270 }
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]271
272 // --------------------------------------------------------------------
273
274 /**
admin9fa00372006-10-12 18:20:13 +0000[diff] [blame]275 * Set the Mcrypt Cipher
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]276 *
277 * @access public
278 * @param constant
279 * @return string
280 */
admin9fa00372006-10-12 18:20:13 +0000[diff] [blame]281 function set_cipher($cipher)
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]282 {
admin9fa00372006-10-12 18:20:13 +0000[diff] [blame]283 $this->_mcrypt_cipher = $cipher;
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]284 }
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]285
286 // --------------------------------------------------------------------
287
288 /**
289 * Set the Mcrypt Mode
290 *
291 * @access public
292 * @param constant
293 * @return string
294 */
295 function set_mode($mode)
296 {
297 $this->_mcrypt_mode = $mode;
298 }
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]299
300 // --------------------------------------------------------------------
301
302 /**
admin9fa00372006-10-12 18:20:13 +0000[diff] [blame]303 * Get Mcrypt cipher Value
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]304 *
305 * @access private
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]306 * @return string
307 */
admin9fa00372006-10-12 18:20:13 +0000[diff] [blame]308 function _get_cipher()
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]309 {
310 if ($this->_mcrypt_cipher == '')
311 {
312 $this->_mcrypt_cipher = MCRYPT_RIJNDAEL_256;
313 }
admin10c3f412006-10-08 07:21:12 +0000[diff] [blame]314
315 return $this->_mcrypt_cipher;
316 }
317
318 // --------------------------------------------------------------------
319
320 /**
321 * Get Mcrypt MOde Value
322 *
323 * @access private
324 * @return string
325 */
326 function _get_mode()
327 {
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]328 if ($this->_mcrypt_mode == '')
329 {
330 $this->_mcrypt_mode = MCRYPT_MODE_ECB;
331 }
admin10c3f412006-10-08 07:21:12 +0000[diff] [blame]332
333 return $this->_mcrypt_mode;
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]334 }
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]335
336 // --------------------------------------------------------------------
337
338 /**
339 * Set the Hash type
340 *
341 * @access public
342 * @param string
343 * @return string
344 */
345 function set_hash($type = 'sha1')
346 {
admin141808a2006-08-27 01:52:51 +0000[diff] [blame]347 $this->_hash_type = ($type != 'sha1' AND $type != 'md5') ? 'sha1' : $type;
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]348 }
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]349
350 // --------------------------------------------------------------------
351
352 /**
353 * Hash encode a string
354 *
355 * @access public
356 * @param string
357 * @return string
358 */
359 function hash($str)
360 {
361 return ($this->_hash_type == 'sha1') ? $this->sha1($str) : md5($str);
362 }
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]363
364 // --------------------------------------------------------------------
365
366 /**
367 * Generate an SHA1 Hash
368 *
369 * @access public
370 * @param string
371 * @return string
372 */
373 function sha1($str)
374 {
375 if ( ! function_exists('sha1'))
376 {
377 if ( ! function_exists('mhash'))
378 {
379 require_once(BASEPATH.'libraries/Sha1'.EXT);
380 $SH = new CI_SHA;
381 return $SH->generate($str);
382 }
383 else
384 {
385 return bin2hex(mhash(MHASH_SHA1, $str));
386 }
387 }
388 else
389 {
390 return sha1($str);
391 }
392 }
adminb0dd10f2006-08-25 17:25:49 +0000[diff] [blame]393
394}
395
396// END CI_Encrypt class
397?>