每天laravel-20160824|Base Encrypter

最新推荐文章于 2021-09-03 16:18:19 发布

李景山-编程者

最新推荐文章于 2021-09-03 16:18:19 发布

阅读量2.3k

点赞数

分类专栏： php

本文链接：https://blog.csdn.net/lijingshan34/article/details/51601213

版权

php 专栏收录该内容

496 篇文章 1 订阅

订阅专栏

<?php

namespace Illuminate\Encryption;

use Illuminate\Contracts\Encryption\DecryptException;

abstract class BaseEncrypter
{
    /**
     * The encryption key.
     *
     * @var string
     */
    protected $key;// a BaseEncrypter key set for ready

    /**
     * Create a MAC for the given value.
     *
     * @param  string  $iv
     * @param  string  $value
     * @return string
     */
    protected function hash($iv, $value)
    {
        return hash_hmac('sha256', $iv.$value, $this->key);
    }// hash, this function is a hash_hmac function

    /**
     * Get the JSON array from the given payload.
     *
     * @param  string  $payload
     * @return array
     *
     * @throws \Illuminate\Contracts\Encryption\DecryptException
     */
    protected function getJsonPayload($payload)
    {// a payload way to set
        $payload = json_decode(base64_decode($payload), true);// use a way to get the payload

        // If the payload is not valid JSON or does not have the proper keys set we will
        // assume it is invalid and bail out of the routine since we will not be able
        // to decrypt the given value. We'll also check the MAC for this encryption.
        if (! $payload || $this->invalidPayload($payload)) {// if it is not has payload or the payload is invalid
            throw new DecryptException('The payload is invalid.');// throw new DecryptException
        }

        if (! $this->validMac($payload)) {// if check the payload by validMac
            throw new DecryptException('The MAC is invalid.');
        }

        return $payload;// return the right value.
    }

    /**
     * Verify that the encryption payload is valid.
     *
     * @param  array|mixed  $data
     * @return bool
     */
    protected function invalidPayload($data)
    {
        return ! is_array($data) || ! isset($data['iv']) || ! isset($data['value']) || ! isset($data['mac']);
    }// check valid,through check mode about it

    /**
     * Determine if the MAC for the given payload is valid.
     *
     * @param  array  $payload
     * @return bool
     *
     * @throws \RuntimeException
     */
    protected function validMac(array $payload)
    {
        $bytes = random_bytes(16);// get a random

        $calcMac = hash_hmac('sha256', $this->hash($payload['iv'], $payload['value']), $bytes, true);

        return hash_equals(hash_hmac('sha256', $payload['mac'], $bytes, true), $calcMac);
    }// through the random 
}