PageRenderTime 46ms CodeModel.GetById 16ms RepoModel.GetById 0ms app.codeStats 0ms

/includes/qcodo/framework_objects/QCryptography.inc

https://github.com/eliego/oqtopus
PHP | 199 lines | 114 code | 32 blank | 53 comment | 22 complexity | 102f1e9429ad66428435ae4c05fde80f MD5 | raw file
    

  1. <?php
    2. 

  2. 	// Requires libmcrypt v2.4.x or higher
    3. 

  3. 

  4. 	class QCryptographyException extends QCallerException {}
    5. 

  5. 

  6. 	class QCryptography extends QBaseClass {
    7. 

  7. 		protected $objMcryptModule;
    8. 

  8. 		protected $blnBase64;
    9. 

  9. 		
    10. 

  10. 		protected $strKey;
    11. 

  11. 		protected $strIv;
    12. 

  12. 

  13. 		/**
    14. 

  14. 		 * Default Cipher for any new QCryptography instances that get constructed
    15. 

  15. 		 * @var string Cipher
    16. 

  16. 		 */
    17. 

  17. 		public static $Cipher = MCRYPT_TRIPLEDES;
    18. 

  18. 

  19. 		/**
    20. 

  20. 		 * Default Mode for any new QCryptography instances that get constructed
    21. 

  21. 		 * @var string Mode
    22. 

  22. 		 */
    23. 

  23. 		public static $Mode = MCRYPT_MODE_ECB;
    24. 

  24. 

  25. 		/**
    26. 

  26. 		 * The Random Number Generator the library uses to generate the IV:
    27. 

  27. 		 *  - MCRYPT_DEV_RANDOM = /dev/random (only on *nix systems)
    28. 

  28. 		 *  - MCRYPT_DEV_URANDOM = /dev/urandom (only on *nix systems)
    29. 

  29. 		 *  - MCRYPT_RAND = the internal PHP srand() mechanism
    30. 

  30. 		 * (on Windows, you *must* use MCRYPT_RAND, b/c /dev/random and /dev/urandom doesn't exist)
    31. 

  31. 		 * 
    32. 

  32. 		 * TODO: there appears to be some /dev/random locking issues on the Qcodo development
    33. 

  33. 		 * environment (using Fedora Core 3 with PHP 5.0.4 and LibMcrypt 2.5.7).  Because of this,
    34. 

  34. 		 * we are using MCRYPT_RAND be default.  Feel free to change to to /dev/*random at your own risk.
    35. 

  35. 		 * 
    36. 

  36. 		 * @var string RandomSource
    37. 

  37. 		 */
    38. 

  38. 		public static $RandomSource = MCRYPT_RAND;
    39. 

  39. 

  40. 		/**
    41. 

  41. 		 * Default Base64 mode for any new QCryptography instances that get constructed.
    42. 

  42. 		 * 
    43. 

  43. 		 * This is similar to MIME-based Base64 encoding/decoding, but is safe to use
    44. 

  44. 		 * in URLs, POST/GET data, and any other text-based stream.
    45. 

  45. 		 * 
    46. 

  46. 		 * Note that by setting Base64 to true, it will result in an encrypted data string
    47. 

  47. 		 * that is 33% larger.
    48. 

  48. 		 * @var string Base64
    49. 

  49. 		 */
    50. 

  50. 		public static $Base64 = true;
    51. 

  51. 

  52. 		/**
    53. 

  53. 		 * Default Key for any new QCryptography instances that get constructed
    54. 

  54. 		 * @var string Key
    55. 

  55. 		 */
    56. 

  56. 		public static $Key = "Default!Key";
    57. 

  57. 

  58. 		public function __construct($strKey = null, $blnBase64 = null, $strCipher = null, $strMode = null) {
    59. 

  59. 			// Get the Key
    60. 

  60. 			if (is_null($strKey))
    61. 

  61. 				$strKey = self::$Key;
    62. 

  62. 

  63. 			// Get the Base64 Flag
    64. 

  64. 			try {
    65. 

  65. 				if (is_null($blnBase64))
    66. 

  66. 					$this->blnBase64 = QType::Cast(self::$Base64, QType::Boolean);
    67. 

  67. 				else
    68. 

  68. 					$this->blnBase64 = QType::Cast($blnBase64, QType::Boolean);
    69. 

  69. 			} catch (QCallerException $objExc) {
    70. 

  70. 				$objExc->IncrementOffset();
    71. 

  71. 				throw $objExc;
    72. 

  72. 			}
    73. 

  73. 

  74. 			// Get the Cipher
    75. 

  75. 			if (is_null($strCipher))
    76. 

  76. 				$strCipher = self::$Cipher;
    77. 

  77. 

  78. 			// Get the Mode
    79. 

  79. 			if (is_null($strMode))
    80. 

  80. 				$strMode = self::$Mode;
    81. 

  81. 

  82. 			$this->objMcryptModule = mcrypt_module_open($strCipher, null, $strMode, null);
    83. 

  83. 			if (!$this->objMcryptModule)
    84. 

  84. 				throw new QCryptographyException('Unable to open LibMcrypt Module');
    85. 

  85. 

  86. 			// Determine IV Size
    87. 

  87. 			$intIvSize = mcrypt_enc_get_iv_size($this->objMcryptModule);
    88. 

  88. 

  89. 			// Create the IV
    90. 

  90. 			if (self::$RandomSource != MCRYPT_RAND) {
    91. 

  91. 				// Ignore All Warnings
    92. 

  92. 				set_error_handler('QcodoHandleError', 0);
    93. 

  93. 				$intCurrentLevel = error_reporting();
    94. 

  94. 				error_reporting(0);
    95. 

  95. 				$strIv = mcrypt_create_iv($intIvSize, self::$RandomSource);
    96. 

  96. 				error_reporting($intCurrentLevel);
    97. 

  97. 				restore_error_handler();
    98. 

  98. 

  99. 				// If the RandomNumGenerator didn't work, we revert back to using MCRYPT_RAND
    100. 

  100. 				if (strlen($strIv) != $intIvSize) {
    101. 

  101. 					srand();
    102. 

  102. 					$strIv = mcrypt_create_iv($intIvSize, MCRYPT_RAND);
    103. 

  103. 				}
    104. 

  104. 			} else {
    105. 

  105. 				srand();
    106. 

  106. 				$strIv = mcrypt_create_iv($intIvSize, MCRYPT_RAND);				
    107. 

  107. 			}
    108. 

  108. 

  109. 			$this->strIv = $strIv;
    110. 

  110. 

  111. 			// Determine KeySize length
    112. 

  112. 			$intKeySize = mcrypt_enc_get_key_size($this->objMcryptModule);
    113. 

  113. 

  114. 			// Create the Key Based on Key Passed In
    115. 

  115. 			$this->strKey = substr(md5($strKey), 0, $intKeySize);
    116. 

  116. 		}
    117. 

  117. 

  118. 		public function Encrypt($strData) {
    119. 

  119. 			// Initialize Encryption
    120. 

  120. 			$intReturnValue = mcrypt_generic_init($this->objMcryptModule, $this->strKey, $this->strIv);
    121. 

  121. 			if (($intReturnValue === false) || ($intReturnValue < 0))
    122. 

  122. 				throw new QCryptographyException('Incorrect Parameters used in LibMcrypt Initialization');
    123. 

  123. 			// Add Length to strData
    124. 

  124. 			$strData = strlen($strData) . '/' . $strData;
    125. 

  125. 

  126. 			$strEncryptedData =  mcrypt_generic($this->objMcryptModule, $strData);
    127. 

  127. 			if ($this->blnBase64) {
    128. 

  128. 				$strEncryptedData = base64_encode($strEncryptedData);
    129. 

  129. 				$strEncryptedData = str_replace('+', '-', $strEncryptedData);
    130. 

  130. 				$strEncryptedData = str_replace('/', '_', $strEncryptedData);
    131. 

  131. 				$strEncryptedData = str_replace('=', '', $strEncryptedData);
    132. 

  132. 			}
    133. 

  133. 

  134. 

  135. 			// Deinitialize Encryption
    136. 

  136. 			if (!mcrypt_generic_deinit($this->objMcryptModule))
    137. 

  137. 				throw new QCryptographyException('Unable to deinitialize encryption buffer');
    138. 

  138. 

  139. 			return $strEncryptedData;
    140. 

  140. 		}
    141. 

  141. 

  142. 		public function Decrypt($strEncryptedData) {
    143. 

  143. 			// Initialize Encryption
    144. 

  144. 			$intReturnValue = mcrypt_generic_init($this->objMcryptModule, $this->strKey, $this->strIv);
    145. 

  145. 			if (($intReturnValue === false) || ($intReturnValue < 0))
    146. 

  146. 				throw new QCryptographyException('Incorrect Parameters used in LibMcrypt Initialization');
    147. 

  147. 

  148. 			if ($this->blnBase64) {
    149. 

  149. 				$strEncryptedData = str_replace('_', '/', $strEncryptedData);
    150. 

  150. 				$strEncryptedData = str_replace('-', '+', $strEncryptedData);
    151. 

  151. 				$strEncryptedData = base64_decode($strEncryptedData);
    152. 

  152. 			}
    153. 

  153. 			$intBlockSize = mcrypt_enc_get_block_size($this->objMcryptModule);
    154. 

  154. 			$strDecryptedData = mdecrypt_generic($this->objMcryptModule, $strEncryptedData);
    155. 

  155. 

  156. 			// Figure Out Length and Truncate
    157. 

  157. 			$intPosition = strpos($strDecryptedData, '/');
    158. 

  158. 			if (!$intPosition)
    159. 

  159. 				throw new QCryptographyException('Invalid Length Header in Decrypted Data');
    160. 

  160. 			$intLength = substr($strDecryptedData, 0, $intPosition);
    161. 

  161. 			$strDecryptedData = substr($strDecryptedData, $intPosition + 1);			
    162. 

  162. 			$strDecryptedData = substr($strDecryptedData, 0, $intLength);
    163. 

  163. 

  164. 			// Deinitialize Encryption
    165. 

  165. 			if (!mcrypt_generic_deinit($this->objMcryptModule))
    166. 

  166. 				throw new QCryptographyException('Unable to deinitialize encryption buffer');
    167. 

  167. 

  168. 			return $strDecryptedData;
    169. 

  169. 		}
    170. 

  170. 

  171. 		public function EncryptFile($strFile) {
    172. 

  172. 			if (file_exists($strFile)) {
    173. 

  173. 				$strData = file_get_contents($strFile);
    174. 

  174. 				return $this->Encrypt($strData);
    175. 

  175. 			} else
    176. 

  176. 				throw new QCallerException('File does not exist: ' . $strFile);
    177. 

  177. 		}
    178. 

  178. 

  179. 		public function DecryptFile($strFile) {
    180. 

  180. 			if (file_exists($strFile)) {
    181. 

  181. 				$strEncryptedData = file_get_contents($strFile);
    182. 

  182. 				return $this->Decrypt($strEncryptedData);
    183. 

  183. 			} else
    184. 

  184. 				throw new QCallerException('File does not exist: ' . $strFile);
    185. 

  185. 		}
    186. 

  186. 

  187. 		public function __destruct() {
    188. 

  188. 			if ($this->objMcryptModule) {
    189. 

  189. 				// Ignore All Warnings
    190. 

  190. 				set_error_handler('QcodoHandleError', 0);
    191. 

  191. 				$intCurrentLevel = error_reporting();
    192. 

  192. 				error_reporting(0);
    193. 

  193. 				mcrypt_module_close($this->objMcryptModule);
    194. 

  194. 				error_reporting($intCurrentLevel);
    195. 

  195. 				restore_error_handler();
    196. 

  196. 			}
    197. 

  197. 		}
    198. 

  198. 	}
    199. 

  199. ?>
    200.