I have code in C#
which encrypts and decrypts string:
private readonly UTF8Encoding _encoder; private readonly ICryptoTransform _encryptor; private readonly RijndaelManaged _rijndael; public Crypter() { _rijndael = new RijndaelManaged { Key = { 1, 2, 3, 4, ..., 16 } }; _rijndael.GenerateIV(); _encryptor = _rijndael.CreateEncryptor(); _encoder = new UTF8Encoding(); } public string Encrypt(string unencrypted) => Convert.ToBase64String(Encrypt(_encoder.GetBytes(unencrypted))); private byte[] Encrypt(byte[] buffer) { byte[] inputBuffer = _encryptor.TransformFinalBlock(buffer, 0, buffer.Length); return _rijndael.IV.Concat(inputBuffer).ToArray(); } public string Decrypt(string encrypted) => _encoder.GetString(Decrypt(Convert.FromBase64String(encrypted))); private byte[] Decrypt(byte[] buffer) { byte[] iv = buffer.Take(16).ToArray(); using (ICryptoTransform decryptor = _rijndael.CreateDecryptor(_rijndael.Key, iv)) { return decryptor.TransformFinalBlock(buffer, 16, buffer.Length - 16); } }
If you check Decrypt(byte[] buffer)
, I take first 16 bytes which is IV.
Now I similar want to implement in PHP (imagine, that I will encode on C#
side and send it to server which runs on php, where I want to decrypt it back). As the param to my PHP decrypt function will be output of C# public string Encrypt(string unencrypted)
. I somehow need to get those 16 bytes to get IV and the rest part, which I respectively will pass as $data
and $iv
params to $decrypted_data = openssl_decrypt($data, $cipher, $encryption_key, 0, $iv);
function
I have tried to use something like this (using unpack):
$stringValue = base64_decode($encrypted_data, true); $integers = unpack("s*", $stringValue);
and then tried to take 16 first numbers and somehow convert them back with pack method. But probably I have lack of knowledge.
Could you please help me with this?
P.S. This one I have tried based on Ilya’s answer and comments.
$cipher = "aes-256-cbc"; $encryption_key = hex2bin(env("ENCRYPTION_KEY")); $base64decoded = base64_decode($encrypted_data, true); $iv = substr($base64decoded, 0, 16); $data = substr($base64decoded, 16, strlen($base64decoded) - 16); $decrypted_data = openssl_decrypt($data, $cipher, $encryption_key, OPENSSL_RAW_DATA, $iv); dd($decrypted_data);
also if I debug code and check which bytes are in $iv
using this code:
$stringValue = base64_decode($iv, true); $integers = unpack("C*", $encrypted_data);
and comparing with C#
this byte array byte[] iv = buffer.Take(16).ToArray();
, they are equals, then I expect, that I am using wrongly openssl_decrypt
method
Advertisement
Answer
Firstly, I was having an issue how to correct retrieve 16 first bytes from string, because I thought I was doing it incorrectly. Thanks from @Ilia Yatsenko for his answer:
$first16Bytes = substr($str, 0, 16);
But then I have realised, that I am wrongly using openssl_decrypt()
method. After having conversation in comments, particularly with @Topaco, we found what was the proble. Here is working code:
$cipher = "aes-256-cbc"; $encryption_key = hex2bin(env("ENCRYPTION_KEY")); $base64decoded = base64_decode($encrypted_data, true); $iv = substr($base64decoded, 0, 16); $data = substr($base64decoded, 16, strlen($base64decoded) - 16); $decrypted_data = openssl_decrypt($data, $cipher, $encryption_key, OPENSSL_RAW_DATA, $iv); dd($decrypted_data);