Home >Backend Development >PHP Tutorial >Share 2 classic PHP encryption and decryption functions

Share 2 classic PHP encryption and decryption functions

WBOY
WBOYOriginal
2016-07-25 08:43:00816browse

This article mainly introduces the sharing of two more classic PHP encryption and decryption functions, one is Discuz!'s authcode encryption function (with detailed decomposition), and the other is the encrypt() function, both of which are relatively classic. Friends in need can refer to it

Sometimes in the project, we need to use PHP to encrypt specific information, that is, to generate an encrypted string through the encryption algorithm. This encrypted string can be decrypted through the decryption algorithm, so that the program can process the decrypted information.
The most common applications are in user login and some API data exchange scenarios.

The author has collected some classic PHP encryption and decryption function codes to share with you. The principle of encryption and decryption is generally to use a certain encryption and decryption algorithm, add the key to the algorithm, and finally obtain the encryption and decryption results.
1. Very powerful authcode encryption function, Discuz! Classic code (with detailed explanation):
  1. function authcode($string, $operation = 'DECODE', $key = '', $expiry = 0) {
  2. // Dynamic key length, the same plaintext will generate different ciphertext, relying on the dynamic key
  3. $ckey_length = 4;
  4. // Key
  5. $key = md5($key ? $key : $ GLOBALS['discuz_auth_key']);
  6. // Key a will participate in encryption and decryption
  7. $keya = md5(substr($key, 0, 16));
  8. // Key b will be used for Data integrity verification
  9. $keyb = md5(substr($key, 16, 16));
  10. // Key c is used to change the generated ciphertext
  11. $keyc = $ckey_length ? ($operation == ' DECODE' ? substr($string, 0, $ckey_length):
  12. substr(md5(microtime()), -$ckey_length)) : '';
  13. // The key involved in the operation
  14. $cryptkey = $keya .md5($keya.$keyc);
  15. $key_length = strlen($cryptkey);
  16. // Plain text, the first 10 bits are used to save the timestamp, and the data validity is verified during decryption, and 10 to 26 bits are used to save $keyb (key b),
  17. //This key will be used to verify data integrity when decrypting
  18. // If it is decoding, it will start from the $ckey_length bit, because the $ckey_length bit before the ciphertext saves the dynamic secret key key to ensure correct decryption
  19. $string = $operation == 'DECODE' ? base64_decode(substr($string, $ckey_length)) :
  20. sprintf('%010d', $expiry ? $expiry + time() : 0).substr(md5($string.$keyb), 0, 16).$string;
  21. $string_length = strlen($string);
  22. $result = '';
  23. $box = range(0, 255);
  24. $rndkey = array();
  25. // Generate key book
  26. for($i = 0; $i <= 255; $i++) {
  27. $rndkey[$i] = ord ($cryptkey[$i % $key_length]);
  28. }
  29. // Use a fixed algorithm to scramble the key book and increase randomness. It seems very complicated, but in fact it will not increase the strength of the ciphertext
  30. for($j = $i = 0; $i < 256; $i++) {
  31. $j = ($j + $box[$i] + $rndkey[$i]) % 256;
  32. $ tmp = $box[$i];
  33. $box[$i] = $box[$j];
  34. $box[$j] = $tmp;
  35. }
  36. // Core encryption and decryption part
  37. for($a = $j = $i = 0; $i < $string_length; $i++) {
  38. $a = ($a + 1) % 256;
  39. $j = ($j + $box[ $a]) % 256;
  40. $tmp = $box[$a];
  41. $box[$a] = $box[$j];
  42. $box[$j] = $tmp;
  43. / / Get the key from the key book, perform XOR, and then convert it into characters
  44. $result .= chr(ord($string[$i]) ^ ($box[($box[$a] + $box[ $j]) % 256]));
  45. }
  46. if($operation == 'DECODE') {
  47. // To verify data validity, please see the format of unencrypted plaintext
  48. if((substr($ result, 0, 10) == 0 || substr($result, 0, 10) - time() > 0) &&
  49. substr($result, 10, 16) == substr(md5(substr($result , 26).$keyb), 0, 16)) {
  50. return substr($result, 26);
  51. } else {
  52. return '';
  53. }
  54. } else {
  55. // Change the dynamic The key is stored in the ciphertext, which is why the same plaintext can be decrypted after producing different ciphertexts
  56. // Because the encrypted ciphertext may contain some special characters and may be lost during the copying process, it is encoded with base64
  57. return $keyc.str_replace('=', '', base64_encode($result));
  58. }
  59. }
Copy code

$string in function authcode($string, $operation, $key, $expiry): string, plaintext or ciphertext; $operation: DECODE means decryption, others means encryption; $key: encryption key; $expiry: password Document validity period.

Usage:
  1. $str = 'abcdef';
  2. $key = 'www.helloweba.com';
  3. echo authcode($str,'ENCODE',$key,0); //Encryption
  4. $str = '56f4yER1DI2WTzWMqsfPpS9hwyoJnFP2MpC8SOhRrxO7BOk';
  5. echo authcode($str,'DECODE',$key,0); //Decrypt
Copy code

2. Encryption and decryption function encrypt():
  1. function encrypt($string,$operation,$key=''){
  2. $key=md5($key);
  3. $ key_length=strlen($key);
  4. $string=$operation=='D'?base64_decode($string):substr(md5($string.$key),0,8).$string;
  5. $string_length =strlen($string);
  6. $rndkey=$box=array();
  7. $result='';
  8. for($i=0;$i<=255;$i++){
  9. $rndkey [$i]=ord($key[$i%$key_length]);
  10. $box[$i]=$i;
  11. }
  12. for($j=$i=0;$i<256; $i++){
  13. $j=($j+$box[$i]+$rndkey[$i])%256;
  14. $tmp=$box[$i];
  15. $box[$i]= $box[$j];
  16. $box[$j]=$tmp;
  17. }
  18. for($a=$j=$i=0;$i<$string_length;$i++){
  19. $ a=($a+1)%256;
  20. $j=($j+$box[$a])%256;
  21. $tmp=$box[$a];
  22. $box[$a]= $box[$j];
  23. $box[$j]=$tmp;
  24. $result.=chr(ord($string[$i])^($box[($box[$a]+$ box[$j])%256]));
  25. }
  26. if($operation=='D'){
  27. if(substr($result,0,8)==substr(md5(substr($ result,8).$key),0,8)){
  28. return substr($result,8);
  29. }else{
  30. return'';
  31. }
  32. }else{
  33. return str_replace( '=','',base64_encode($result));
  34. }
  35. }
  36. ?>
Copy code

In function encrypt($string,$operation,$key), $string: the string that needs to be encrypted and decrypted; $operation: determine whether to encrypt or decrypt, E means encryption, D means decryption; $key: key.
Usage:
  1. $str = 'abc';
  2. $key = 'www.helloweba.com';
  3. $token = encrypt($str, 'E', $key);
  4. echo 'Encryption:'. encrypt($str, 'E', $key);
  5. echo 'Decrypt:'.encrypt($str, 'D', $key);
Copy code

Encryption and decryption, PHP


Statement:
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn
Previous article:php draws histogramNext article:php draws histogram