mcrypt_encrypt
(PHP 4 >= 4.0.2, PHP 5, PHP 7)
mcrypt_encrypt — 用给定的参数加密明文
警告
这个函数从PHP 7.1.0开始已经被DEPRECATED了。依靠这个功能是非常不鼓励的。
描述
string mcrypt_encrypt ( string $cipher , string $key , string $data , string $mode [, string $iv ] )加密数据并返回。
参数
cipher
其中一个MCRYPT_ciphername常量或算法的名称作为字符串。
key
数据将被加密的密钥。如果密码不支持提供的密钥大小,则该函数将发出警告并返回FALSE
data
将用给定的cipher和将加密的数据mode。如果数据的大小不是n *块大小,数据将被填充' \ 0 '。
返回的加密文本可能大于给定的数据大小data。
mode
其中一个MCRYPT_MODE_modename常量或以下字符串之一:"ecb", "cbc", "cfb", "ofb", "nofb" 或"stream"。
iv
用于CBC,CFB,OFB模式的初始化,以及STREAM模式下的某些算法。如果提供的IV尺寸不受链接模式支持,或者未提供IV,但链接模式需要一个,则该函数将发出警告并返回FALSE。
返回值
以字符串或FALSE失败的形式返回加密的数据。
更新日志
版本 | 描述 |
|---|---|
5.6.0 | 无效的密钥和iv大小不再被接受。如果输入无效,mcrypt_encrypt()现在将引发警告并返回FALSE。以前,键和IV用'\ 0'字节填充到下一个有效大小。 |
例子
示例#1 mcrypt_encrypt()示例
<?php
# --- ENCRYPTION ---
# the key should be random binary, use scrypt, bcrypt or PBKDF2 to
# convert a string into a key
# key is specified using hexadecimal
$key = pack('H*', "bcb04b7e103a0cd8b54763051cef08bc55abe029fdebae5e1d417e2ffb2a00a3");
# show key size use either 16, 24 or 32 byte keys for AES-128, 192
# and 256 respectively
$key_size = strlen($key);
echo "Key size: " . $key_size . "\n";
$plaintext = "This string was AES-256 / CBC / ZeroBytePadding encrypted.";
# create a random IV to use with CBC encoding
$iv_size = mcrypt_get_iv_size(MCRYPT_RIJNDAEL_128, MCRYPT_MODE_CBC);
$iv = mcrypt_create_iv($iv_size, MCRYPT_RAND);
# creates a cipher text compatible with AES (Rijndael block size = 128)
# to keep the text confidential
# only suitable for encoded input that never ends with value 00h
# (because of default zero padding)
$ciphertext = mcrypt_encrypt(MCRYPT_RIJNDAEL_128, $key,
$plaintext, MCRYPT_MODE_CBC, $iv);
# prepend the IV for it to be available for decryption
$ciphertext = $iv . $ciphertext;
# encode the resulting cipher text so it can be represented by a string
$ciphertext_base64 = base64_encode($ciphertext);
echo $ciphertext_base64 . "\n";
# === WARNING ===
# Resulting cipher text has no integrity or authenticity added
# and is not protected against padding oracle attacks.
# --- DECRYPTION ---
$ciphertext_dec = base64_decode($ciphertext_base64);
# retrieves the IV, iv_size should be created using mcrypt_get_iv_size()
$iv_dec = substr($ciphertext_dec, 0, $iv_size);
# retrieves the cipher text (everything except the $iv_size in the front)
$ciphertext_dec = substr($ciphertext_dec, $iv_size);
# may remove 00h valued characters from end of plain text
$plaintext_dec = mcrypt_decrypt(MCRYPT_RIJNDAEL_128, $key,
$ciphertext_dec, MCRYPT_MODE_CBC, $iv_dec);
echo $plaintext_dec . "\n";
?>上面的例子将输出:
Key size: 32
ENJW8mS2KaJoNB5E5CoSAAu0xARgsR1bdzFWpEn+poYw45q+73az5kYi4j+0haevext1dGrcW8Qi59txfCBV8BBj3bzRP3dFCp3CPQSJ8eU=
This string was AES-256 / CBC / ZeroBytePadding encrypted.本文档系腾讯云开发者社区成员共同维护,如有问题请联系 cloudcommunity@tencent.com
