mcrypt_decrypt

(PHP 4 >= 4.0.2, PHP 5)

mcrypt_decrypt — 指定したパラメータで暗号化されたテキストを復号する

説明

string mcrypt_decrypt ( string $cipher , string $key , string $data , string $mode [, string $iv ] )

data を復号し、復号されたデータを返します。

パラメータ

cipher: MCRYPT_暗号名 定数のいずれか、あるいはアルゴリズム名をあらわす文字列。
key: データを暗号化する際のキー。必要なキー長よりも短い場合には、'\0' で埋められます。
data: このデータが、指定した cipher および mode で復号されます。データの大きさが n * blocksize でない場合、データは、 '\0' で埋められます。
mode: 定数 MCRYPT_MODE_モード名、あるいは文字列 "ecb", "cbc", "cfb", "ofb", "nofb" ,"stream" のいずれか。
iv: パラメータ IV は、CBC, CFB, OFB モードおよび STREAM モードのいくつかのアルゴリズムの初期化の際に使用されます。アルゴリズムで必要とする IV を指定しない場合、この関数は警告を発生し、全てのバイトを '\0' に設定した IV を使用します。

返り値

復号されたデータを文字列で返します。

mcrypt_ecb

mcrypt_create_iv

[edit] Last updated: Fri, 25 May 2012

add a note User Contributed Notes mcrypt_decrypt

beltrachi 29-Sep-2011 06:34


Caution, MCRYPT_RIJNDAEL_256 is not equivalent to AES_256.





The way to make RIJNDAEL be decrypted from AES with openssl is to use MCRYPT_RIJNDAEL_128 and padd the string to encrypt before encrypting with the follwing function:





<?php


function pkcs5_pad ($text, $blocksize) {


    $pad = $blocksize - (strlen($text) % $blocksize);


    return $text . str_repeat(chr($pad), $pad);


}


?>





On the decryption, the choosing of AES_256 or AES_128, etc. is based on the keysize used in the crypting. In my case it was a 128bit key so I used AES_128.

evangelion207 at hotmail dot com 17-Apr-2011 02:24


Be careful, sometimes mcrypt_decrypt return additional white spaces to the uncrypted string; use trim() for deleting them. I was like 2 hours searching the error and it was that..

maciej at wiercinski dot net 09-Apr-2011 06:59


If you want to combine mcrypt with MySQL's AES_DECRYPT / AES_ENCRYPT function, please keep in mind that it uses PKCS5 padding (code from note above works just fine), what is not mentioned in MySQL's documentation at all.

Anonymous 23-Nov-2010 08:41


To remove PKCS7 padding:





<?php


    $decrypted = mdecrypt_generic($td, base64_decode($enc_auth_token));


    $dec_s = strlen($decrypted);


    $padding = ord($decrypted[$dec_s-1]);


    $decrypted = substr($decrypted, 0, -$padding);


?>

david at sickmiller dot com 02-Oct-2008 04:15


If you happen to be decrypting something encrypted in ColdFusion, you'll discover that its encrypt function apparently pads the plaintext with ASCII 4, the "end of transmission" character.



Building on eddiec's code, you can remove both nulls and EOTs with this:



<?php

    $retval = mcrypt_decrypt( ...etc ...);

    $retval = rtrim($retval, "\0\4");     // trim ONLY the nulls and EOTs at the END

?>

smp_info at yahoo dot com 10-Oct-2007 05:27


Since the returned data seems to be still padded with extra characters, you can get *only* the original data that was encrypted by str_replace()'ing the \x0 characters.



<?php

$decryptedData = str_replace("\x0", '', $encryptedData);

?>

eddiec at stararcher dot com 13-Jul-2005 12:26


It appears that mcrypt_decrypt pads the *RETURN STRING* with nulls ('\0') to fill out to n * blocksize.  For old C-programmers, like myself, it is easy to believe the string ends at the first null.  In PHP it does not:





    strlen("abc\0\0") returns 5 and *NOT* 3


    strcmp("abc", "abc\0\0") returns -2 and *NOT* 0





I learned this lesson painfully when I passed a string returned from mycrypt_decrypt into a NuSoap message, which happily passed the nulls along to the receiver, who couldn't figure out what I was talking about.





My solution was:


<?php


    $retval = mcrypt_decrypt( ...etc ...);


    $retval = rtrim($retval, "\0");     // trim ONLY the nulls at the END


?>

add a note