what I use here to make this function decoded data by the legacy encrypt library?
I use the blowfish cipher, and for me this worked:
PHP Code:
<?php /** * If we encoded (encypted) something using the old Encrypt class, * and we no longer have mcrypt on the server, we still may need * to decrypt the data. In that case, this class * should be able to decrypt the data for us. */
defined('BASEPATH') OR exit('No direct script access allowed');
class Legacy_decrypt {
/** * Initialize class */ public function __construct() { if( ! function_exists('openssl_decrypt') ) show_error('Legacy_decrypt library requires the OpenSSL extension.');
log_message('info', 'Legacy Decrypt Class Initialized'); }
/** * Blowfish CBC decryption through OpenSSL, accounting for * differences in padding between mcrypt and OpenSSL. * * @param string the base64 encoded string to decrypt * @param string the key, which may need to be md5ed */ public function blowfish_cbc_decrypt( $base64_encoded, $key ) { // Ensure data is base64 encoded if( preg_match('/[^a-zA-Z0-9\/\+=]/', $base64_encoded ) OR base64_encode( base64_decode( $base64_encoded ) ) !== $base64_encoded ) return FALSE;
// Turn the base64 encoded string back into binary data $pre_noise_removal = base64_decode( $base64_encoded );
// Remove permuted noise from the IV + encrypted data $cleaned_string = $this->_remove_cipher_noise( $pre_noise_removal, $key );
// Initialization vector for blowfish is 8 $iv_size = 8;
/** * Removes permuted noise from the IV + encrypted data, reversing * _add_cipher_noise() that happened in the Encrypt class. * * When noise was added to the data, each character was basically * replaced with an ASCII character, using the key to randomize * the replacements via ord and chr functions. */ private function _remove_cipher_noise($data, $key) { $keyhash = sha1( $key ); $keylen = strlen( $keyhash ); $str = '';
