php pkcs 7 填充解密,如何从AES加密字符串中添加/删除PKCS 7填充？

最新推荐文章于 2022-11-30 09:11:54 发布

3622022

最新推荐文章于 2022-11-30 09:11:54 发布

阅读量553

点赞数

文章标签： php pkcs 7 填充解密

我创建了两个方法来执行填充和取消填充。使用phpdoc需要PHP 5。正如您注意到的，unpad函数包含大量异常处理，为每个可能的错误生成不少于4条不同的消息。

要获得PHP mcrypt的块大小，可以使用mcrypt_get_block_size，它还将块大小定义为字节而不是位。/**

* Right-pads the data string with 1 to n bytes according to PKCS#7,

* where n is the block size.

* The size of the result is x times n, where x is at least 1.

*

* The version of PKCS#7 padding used is the one defined in RFC 5652 chapter 6.3.

* This padding is identical to PKCS#5 padding for 8 byte block ciphers such as DES.

*

* @param string $plaintext the plaintext encoded as a string containing bytes

* @param integer $blocksize the block size of the cipher in bytes

* @return string the padded plaintext

*/function pkcs7pad($plaintext, $blocksize){

$padsize = $blocksize - (strlen($plaintext) % $blocksize);

return $plaintext . str_repeat(chr($padsize), $padsize);}/**

* Validates and unpads the padded plaintext according to PKCS#7.

* The resulting plaintext will be 1 to n bytes smaller depending on the amount of padding,

* where n is the block size.

*

* The user is required to make sure that plaintext and padding oracles do not apply,

* for instance by providing integrity and authenticity to the IV and ciphertext using a HMAC.

*

* Note that errors during uppadding may occur if the integrity of the ciphertext

* is not validated or if the key is incorrect. A wrong key, IV or ciphertext may all

* lead to errors within this method.

*

* The version of PKCS#7 padding used is the one defined in RFC 5652 chapter 6.3.

* This padding is identical to PKCS#5 padding for 8 byte block ciphers such as DES.

*

* @param string padded the padded plaintext encoded as a string containing bytes

* @param integer $blocksize the block size of the cipher in bytes

* @return string the unpadded plaintext

* @throws Exception if the unpadding failed

*/function pkcs7unpad($padded, $blocksize){

$l = strlen($padded);

if ($l % $blocksize != 0)

{

throw new Exception("Padded plaintext cannot be divided by the block size");

}

$padsize = ord($padded[$l - 1]);

if ($padsize === 0)

{

throw new Exception("Zero padding found instead of PKCS#7 padding");

}

if ($padsize > $blocksize)

{

throw new Exception("Incorrect amount of PKCS#7 padding for blocksize");

}

// check the correctness of the padding bytes by counting the occurance

$padding = substr($padded, -1 * $padsize);

if (substr_count($padding, chr($padsize)) != $padsize)

{

throw new Exception("Invalid PKCS#7 padding encountered");

}

return substr($padded, 0, $l - $padsize);}

这在任何方面都不会使Paŭlo Ebermann的答案失效，它基本上是代码&phpdoc中的相同答案，而不是描述。

请注意，向攻击者返回填充错误可能会导致填充甲骨文攻击它完全破坏了CBC(当使用CBC代替欧洲央行或安全认证密码时)。

关注

0
点赞
踩
0

收藏

觉得还不错? 一键收藏
0
评论
php pkcs 7 填充解密,如何从AES加密字符串中添加/删除PKCS 7填充？

我创建了两个方法来执行填充和取消填充。使用phpdoc需要PHP 5。正如您注意到的，unpad函数包含大量异常处理，为每个可能的错误生成不少于4条不同的消息。要获得PHP mcrypt的块大小，可以使用mcrypt_get_block_size，它还将块大小定义为字节而不是位。/***Right-padsthedatastringwith1tonbytesaccording...
复制链接

扫一扫

评论

被折叠的条评论为什么被折叠?

到【灌水乐园】发言

查看更多评论

添加红包

成就一亿技术人!

hope_wisdom

发出的红包

实付元

使用余额支付

点击重新获取

扫码支付

钱包余额 0

抵扣说明：

1.余额是钱包充值的虚拟货币，按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载，可以购买VIP、付费专栏及课程。