3 namespace CoreFramework\Stream\Crypto;
5 // Import framework stuff
6 use CoreFramework\Crypto\RandomNumber\RandomNumberGenerator;
7 use CoreFramework\Generic\UnsupportedOperationException;
8 use CoreFramework\Stream\BaseStream;
11 * An OpenSSL-based encryption stream
13 * @author Roland Haeder <webmaster@shipsimu.org>
15 * @copyright Copyright (c) 2007, 2008 Roland Haeder, 2009 - 2017 Core Developer Team
16 * @license GNU GPL 3.0 or any newer version
17 * @link http://www.shipsimu.org
19 * This program is free software: you can redistribute it and/or modify
20 * it under the terms of the GNU General Public License as published by
21 * the Free Software Foundation, either version 3 of the License, or
22 * (at your option) any later version.
24 * This program is distributed in the hope that it will be useful,
25 * but WITHOUT ANY WARRANTY; without even the implied warranty of
26 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
27 * GNU General Public License for more details.
29 * You should have received a copy of the GNU General Public License
30 * along with this program. If not, see <http://www.gnu.org/licenses/>.
32 class OpenSslStream extends BaseStream implements EncryptableStream {
34 * Protected constructor
38 protected function __construct () {
39 // Call parent constructor
40 parent::__construct(__CLASS__);
44 * Creates an instance of this node class
46 * @param $rngInstance An RNG instance
47 * @return $streamInstance An instance of this node class
49 public static final function createOpenSslStream (RandomNumberGenerator $rngInstance) {
51 $streamInstance = new OpenSslStream();
53 // Set the RNG instance
54 $streamInstance->setRngInstance($rngInstance);
56 // Return the instance
57 return $streamInstance;
61 * Encrypt the string with fixed salt
63 * @param $str The unencrypted string
64 * @param $key Optional key, if none provided, a random key will be generated
65 * @return $encrypted Encrypted string
67 public function encryptStream ($str, $key = NULL) {
72 //* NOISY-DEBUG: */ self::createDebugInstance(__CLASS__, __LINE__)->debugOutput('[' . __METHOD__ . ':' . __LINE__ . ']: key[' . gettype($key) . ']=' . $key);
75 $iv_size = mcrypt_get_iv_size(MCRYPT_RIJNDAEL_256, MCRYPT_MODE_ECB);
76 $iv = mcrypt_create_iv($iv_size, MCRYPT_RAND);
78 // Generate key, if none provided
81 $key = $this->getRngInstance()->generateKey();
84 // Add some "payload" to the string
85 switch ($this->getRngInstance()->randomNumber(0, 8)) {
87 $payloadString = crc32($this->getRngInstance()->randomString(10)) . EncryptableStream::DATA_PAYLOAD_SEPARATOR . base64_encode($str) . EncryptableStream::DATA_PAYLOAD_SEPARATOR . crc32($this->getRngInstance()->randomString(20));
91 $payloadString = crc32($this->getRngInstance()->randomString(10)) . EncryptableStream::DATA_PAYLOAD_SEPARATOR . base64_encode($str) . EncryptableStream::DATA_PAYLOAD_SEPARATOR . md5($this->getRngInstance()->randomString(20));
95 $payloadString = crc32($this->getRngInstance()->randomString(10)) . EncryptableStream::DATA_PAYLOAD_SEPARATOR . base64_encode($str) . EncryptableStream::DATA_PAYLOAD_SEPARATOR . sha1($this->getRngInstance()->randomString(20));
99 $payloadString = md5($this->getRngInstance()->randomString(10)) . EncryptableStream::DATA_PAYLOAD_SEPARATOR . base64_encode($str) . EncryptableStream::DATA_PAYLOAD_SEPARATOR . crc32($this->getRngInstance()->randomString(20));
103 $payloadString = md5($this->getRngInstance()->randomString(10)) . EncryptableStream::DATA_PAYLOAD_SEPARATOR . base64_encode($str) . EncryptableStream::DATA_PAYLOAD_SEPARATOR . md5($this->getRngInstance()->randomString(20));
107 $payloadString = md5($this->getRngInstance()->randomString(10)) . EncryptableStream::DATA_PAYLOAD_SEPARATOR . base64_encode($str) . EncryptableStream::DATA_PAYLOAD_SEPARATOR . sha1($this->getRngInstance()->randomString(20));
111 $payloadString = sha1($this->getRngInstance()->randomString(10)) . EncryptableStream::DATA_PAYLOAD_SEPARATOR . base64_encode($str) . EncryptableStream::DATA_PAYLOAD_SEPARATOR . crc32($this->getRngInstance()->randomString(20));
115 $payloadString = sha1($this->getRngInstance()->randomString(10)) . EncryptableStream::DATA_PAYLOAD_SEPARATOR . base64_encode($str) . EncryptableStream::DATA_PAYLOAD_SEPARATOR . md5($this->getRngInstance()->randomString(20));
119 $payloadString = sha1($this->getRngInstance()->randomString(10)) . EncryptableStream::DATA_PAYLOAD_SEPARATOR . base64_encode($str) . EncryptableStream::DATA_PAYLOAD_SEPARATOR . sha1($this->getRngInstance()->randomString(20));
123 // Encrypt the string
124 $encrypted = mcrypt_encrypt(MCRYPT_RIJNDAEL_256, $key, $payloadString, MCRYPT_MODE_ECB, $iv);
131 * Decrypt the string with fixed salt
133 * @param $encrypted Encrypted string
134 * @param $key Optional key, if none provided, a random key will be generated
135 * @return $str The unencrypted string
137 public function decryptStream ($encrypted, $key = NULL) {
141 // Init crypto module
142 $iv_size = mcrypt_get_iv_size(MCRYPT_RIJNDAEL_256, MCRYPT_MODE_ECB);
143 $iv = mcrypt_create_iv($iv_size, MCRYPT_RAND);
145 // Shall we use a default key or custom?
147 // Generate (default) key
148 $key = $this->getRngInstance()->generateKey();
151 // Decrypt the string
152 $payloadString = mcrypt_decrypt(MCRYPT_RIJNDAEL_256, $key, $encrypted, MCRYPT_MODE_ECB, $iv);
154 // Get the real string out
155 $strArray = explode(EncryptableStream::DATA_PAYLOAD_SEPARATOR, $payloadString);
157 // Does the element count match?
158 assert(count($strArray) == 3);
161 $str = base64_decode($strArray[1]);
163 // Trim trailing nulls away
164 $str = rtrim($str, "\0");
171 * Streams the data and maybe does something to it
173 * @param $data The data (string mostly) to "stream"
174 * @return $data The data (string mostly) to "stream"
175 * @throws UnsupportedOperationException If this method is called (which is a mistake)
177 public function streamData ($data) {
178 self::createDebugInstance(__CLASS__, __LINE__)->debugOutput('Unhandled ' . strlen($data) . ' bytes in this stream.');
179 throw new UnsupportedOperationException(array($this, __FUNCTION__), self::EXCEPTION_UNSPPORTED_OPERATION);