drygauost253590142 2018-09-18 12:37
浏览 631
已采纳

AES-128-CTR加密在PHP(openssl_encrypt)和Node.js(加密)上给出不同的结果

I have an API that requires me to encode data that I send to it through an AES-cipher.

However, the only example code I have been given is Node.js code.

I thought, how hard can it be to reimplement it in PHP as well ?

Pretty hard apparently.

Below you can see both approaches, yet you can also see different results.

Anyone an idea what might be going wrong ?

NODE.js version

var crypto = require('crypto');
var algorithm = 'aes-128-ctr';

function encrypt(text, password) {
  const key = Buffer.from(password, "hex").slice(0, 16);
  const ivBuffer = Buffer.alloc(16);
  const cipher = crypto.createCipheriv(algorithm, key, ivBuffer);
  let crypted = cipher.update(text, "utf8", 'hex');
  crypted += cipher.final('hex');
  console.log(crypted);
}

encrypt('test','ed8f68b144f94c30b8add43276f0fa14');

RESULT : 3522ca23

PHP version

function encrypt($text, $password) {
  $iv = "0000000000000000";
  $encrypted = openssl_encrypt($text, 'aes-128-ctr', $password, OPENSSL_RAW_DATA, $iv);
  return bin2hex($encrypted);
}

echo encrypt('test', 'ed8f68b144f94c30b8add43276f0fa14');

RESULT: 8faa39d2

  • 写回答

1条回答 默认 最新

  • dqeznd1697 2018-09-18 14:31
    关注

    While browsing the related section (after my post) I came across this one: C# and PHP have different AES encryption results

    As mentioned by t-m-adam above as well, apparently I need to align the iv and password in both examples. In PHP my iv and password were 'regular' strings, where they should have been binary strings of the same length as the cipher’s block size. My iv should (in my case) be 16 zero bytes instead of 16x the 0 character. You can see the difference by doing an echo of the code below:

    $iv = "00000000000000000000000000000000";
    echo $iv;
    echo strlen($iv);
    
    $iv = pack("H*", "00000000000000000000000000000000");
    echo $iv;
    echo strlen($iv);
    

    Both $iv variables are of length 16 (as requested by AES) , yet the second version is composed of 0-bytes, effectively unprintable.

    Without further ado, the end result, working in PHP:

    function encrypt($text, $password) {
      $iv = pack("H*", "00000000000000000000000000000000");
      $password = pack("H*", $password);
      $encrypted = openssl_encrypt($text, 'aes-128-ctr', $inputKey, OPENSSL_RAW_DATA, $iv);
       return bin2hex($encrypted);
    }
    
    echo encrypt('test', 'ed8f68b144f94c30b8add43276f0fa14');
    

    RESULT: 3522ca23

    Success !!

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论

报告相同问题?

悬赏问题

  • ¥15 seatunnel-web使用SQL组件时候后台报错,无法找到表格
  • ¥15 fpga自动售货机数码管(相关搜索:数字时钟)
  • ¥15 用前端向数据库插入数据,通过debug发现数据能走到后端,但是放行之后就会提示错误
  • ¥30 3天&7天&&15天&销量如何统计同一行
  • ¥30 帮我写一段可以读取LD2450数据并计算距离的Arduino代码
  • ¥15 飞机曲面部件如机翼,壁板等具体的孔位模型
  • ¥15 vs2019中数据导出问题
  • ¥20 云服务Linux系统TCP-MSS值修改?
  • ¥20 关于#单片机#的问题:项目:使用模拟iic与ov2640通讯环境:F407问题:读取的ID号总是0xff,自己调了调发现在读从机数据时,SDA线上并未有信号变化(语言-c语言)
  • ¥20 怎么在stm32门禁成品上增加查询记录功能