Mcrypt 函数
在线手册:中文 英文
PHP手册

mcrypt_decrypt

(PHP 4 >= 4.0.2, PHP 5)

mcrypt_decryptDecrypts crypttext with given parameters

说明

string mcrypt_decrypt ( string $cipher , string $key , string $data , string $mode [, string $iv ] )

Decrypts the data and returns the unencrypted data.

参数

cipher

One of the MCRYPT_ciphername constants, or the name of the algorithm as string.

key

The key with which the data was encrypted. If it's smaller than the required keysize, it is padded with '\0'.

data

The data that will be decrypted with the given cipher and mode. If the size of the data is not n * blocksize, the data will be padded with '\0'.

mode

One of the MCRYPT_MODE_modename constants, or one of the following strings: "ecb", "cbc", "cfb", "ofb", "nofb" or "stream".

iv

The iv parameter is used for the initialization in CBC, CFB, OFB modes, and in some algorithms in STREAM mode. If you do not supply an IV, while it is needed for an algorithm, the function issues a warning and uses an IV with all its bytes set to '\0'.

返回值

Returns the decrypted data as a string.


Mcrypt 函数
在线手册:中文 英文
PHP手册
PHP手册 - N: Decrypts crypttext with given parameters

用户评论:

beltrachi (30-Sep-2011 08:34)

Caution, MCRYPT_RIJNDAEL_256 is not equivalent to AES_256.

The way to make RIJNDAEL be decrypted from AES with openssl is to use MCRYPT_RIJNDAEL_128 and padd the string to encrypt before encrypting with the follwing function:

<?php
function pkcs5_pad ($text, $blocksize) {
   
$pad = $blocksize - (strlen($text) % $blocksize);
    return
$text . str_repeat(chr($pad), $pad);
}
?>

On the decryption, the choosing of AES_256 or AES_128, etc. is based on the keysize used in the crypting. In my case it was a 128bit key so I used AES_128.

evangelion207 at hotmail dot com (17-Apr-2011 04:24)

Be careful, sometimes mcrypt_decrypt return additional white spaces to the uncrypted string; use trim() for deleting them. I was like 2 hours searching the error and it was that..

maciej at wiercinski dot net (09-Apr-2011 08:59)

If you want to combine mcrypt with MySQL's AES_DECRYPT / AES_ENCRYPT function, please keep in mind that it uses PKCS5 padding (code from note above works just fine), what is not mentioned in MySQL's documentation at all.

Anonymous (24-Nov-2010 11:41)

To remove PKCS7 padding:

<?php
    $decrypted
= mdecrypt_generic($td, base64_decode($enc_auth_token));
   
$dec_s = strlen($decrypted);
   
$padding = ord($decrypted[$dec_s-1]);
   
$decrypted = substr($decrypted, 0, -$padding);
?>

david at sickmiller dot com (02-Oct-2008 06:15)

If you happen to be decrypting something encrypted in ColdFusion, you'll discover that its encrypt function apparently pads the plaintext with ASCII 4, the "end of transmission" character.

Building on eddiec's code, you can remove both nulls and EOTs with this:

<?php
    $retval
= mcrypt_decrypt( ...etc ...);
   
$retval = rtrim($retval, "\0\4");     // trim ONLY the nulls and EOTs at the END
?>

smp_info at yahoo dot com (11-Oct-2007 07:27)

Since the returned data seems to be still padded with extra characters, you can get *only* the original data that was encrypted by str_replace()'ing the \x0 characters.

<?php
$decryptedData
= str_replace("\x0", '', $encryptedData);
?>

eddiec at stararcher dot com (14-Jul-2005 02:26)

It appears that mcrypt_decrypt pads the *RETURN STRING* with nulls ('\0') to fill out to n * blocksize.  For old C-programmers, like myself, it is easy to believe the string ends at the first null.  In PHP it does not:

    strlen("abc\0\0") returns 5 and *NOT* 3
    strcmp("abc", "abc\0\0") returns -2 and *NOT* 0

I learned this lesson painfully when I passed a string returned from mycrypt_decrypt into a NuSoap message, which happily passed the nulls along to the receiver, who couldn't figure out what I was talking about.

My solution was:
<?php
    $retval
= mcrypt_decrypt( ...etc ...);
   
$retval = rtrim($retval, "\0");     // trim ONLY the nulls at the END
?>