DataFlex
DataFlex
Duplicate PHP's openssl_encrypt and openssl_random_pseudo_bytes
See more OpenSSL Examples
Demonstrates how to duplicate PHP's openssl_encrypt function. (https://www.php.net/manual/en/function.openssl-encrypt.php)Chilkat DataFlex Downloads
Use ChilkatAx-win32.pkg
Procedure Test
Boolean iSuccess
Handle hoCrypt
String sText
String sPassphrase
String sIvBase64
Key Handle hoBdKey
Integer iSz
String sCipherText64
Handle hoBd
String sResult
Result Handle hoBdResult
String sOriginalText
String sTemp1
Move False To iSuccess
// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
// Duplicates thw following PHP script:
// $text = "This is a test";
// $passphrase = "my password";
// $iv = openssl_random_pseudo_bytes(openssl_cipher_iv_length("AES-256-CBC"));
// $crypted = base64_encode($iv.openssl_encrypt($text, "AES-256-CBC", $passphrase, OPENSSL_RAW_DATA, $iv));
// echo $crypted;
Get Create (RefClass(cComChilkatCrypt2)) To hoCrypt
If (Not(IsComObjectCreated(hoCrypt))) Begin
Send CreateComObject of hoCrypt
End
Move "This is a test" To sText
Move "my password" To sPassphrase
// AES is a block cipher. The IV size for any block cipher is the size of the block, which is defined by the encryption algorithm.
// For AES, the block size is always 16 bytes, regardless of key size (i.e. 128-bits, 192-bits, or 256-bits).
// Therefore, generate 16 random bytes for the IV.
Set ComEncodingMode Of hoCrypt To "base64"
Get ComGenRandomBytesENC Of hoCrypt 16 To sIvBase64
Showln "Generated IV = " sIvBase64
// Because we're doing AES-256-CBC, the key length must be 256-bits (i.e. 32 bytes).
// Given that our passphrase is a us-ascii string that can be shorter or longer than 32-bytes, we need to
// somehow transform the passphrase to a 32-byte secret key. We need to know what openssl_encrypt does.
// Here's the answer from the openssl_encrypt documentation:
//
// "If the passphrase is shorter than expected, it is silently padded with NUL characters;
// if the passphrase is longer than expected, it is silently truncated."
// OK.... so let's pad or shorten to get a 32-byte key.
Get Create (RefClass(cComChilkatBinData)) To hoBdKey
If (Not(IsComObjectCreated(hoBdKey))) Begin
Send CreateComObject of hoBdKey
End
Get ComAppendString Of hoBdKey sPassphrase "utf-8" To iSuccess
Get ComNumBytes Of hoBdKey To iSz
If (iSz > 32) Begin
Get ComRemoveChunk Of hoBdKey 32 (iSz - 32) To iSuccess
End
Else Begin
Get ComClear Of hoBdKey To iSuccess
Get ComAppendPadded Of hoBdKey sPassphrase "utf-8" False 32 To iSuccess
End
// Setup for encryption.
Set ComCryptAlgorithm Of hoCrypt To "aes"
Set ComKeyLength Of hoCrypt To 256
Send ComSetEncodedIV To hoCrypt sIvBase64 "base64"
Get ComGetEncoded Of hoBdKey "base64" To sTemp1
Send ComSetEncodedKey To hoCrypt sTemp1 "base64"
// Encrypt and base64 encode.
Get ComEncryptStringENC Of hoCrypt sText To sCipherText64
// The PHP code fragment above returns the base64 encoded bytes of the IV and the encrypted text.
// So let's do that..
Get Create (RefClass(cComChilkatBinData)) To hoBd
If (Not(IsComObjectCreated(hoBd))) Begin
Send CreateComObject of hoBd
End
Get ComAppendEncoded Of hoBd sIvBase64 "base64" To iSuccess
Get ComAppendEncoded Of hoBd sCipherText64 "base64" To iSuccess
Get ComGetEncoded Of hoBd "base64" To sResult
Showln "result = " sResult
// Sample output:
// dN0vS1O0cWi5BbLAAY+NTf7bs3S27xzPf11RkG47sjs=
// Now let's decrypt from the output...
// Setup for decryption.
Set ComCryptAlgorithm Of hoCrypt To "aes"
Set ComKeyLength Of hoCrypt To 256
Get ComGetEncoded Of hoBdKey "base64" To sTemp1
Send ComSetEncodedKey To hoCrypt sTemp1 "base64"
Get Create (RefClass(cComChilkatBinData)) To hoBdResult
If (Not(IsComObjectCreated(hoBdResult))) Begin
Send CreateComObject of hoBdResult
End
Get ComAppendEncoded Of hoBdResult sResult "base64" To iSuccess
Get ComGetEncodedChunk Of hoBdResult 0 16 "base64" To sTemp1
Send ComSetEncodedIV To hoCrypt sTemp1 "base64"
// Remove the IV (first 16 bytes) from the result.
Get ComRemoveChunk Of hoBdResult 0 16 To iSuccess
Get pvComObject of hoBdResult to vBdResult
Get ComDecryptBd Of hoCrypt vBdResult To iSuccess
Get ComGetString Of hoBdResult "utf-8" To sOriginalText
Showln "original text = " sOriginalText
End_Procedure