Enano CMS (1.1.x): comparison includes/rijndael.php

equal deleted inserted replaced

-:bb3e6c3bd4f4
+:c1c7fa6b329f
 $this->debug = $debug;
 }
 public static function singleton($key_size, $block_size)
 {
-global $_aes_objcache;
+static $_aes_objcache;
 if ( isset($_aes_objcache["$key_size,$block_size"]) )
 {
 return $_aes_objcache["$key_size,$block_size"];
 }
 }
 else
 {
 $key = $this->prepare_string($key);
 $text = $this->prepare_string($text);
+profiler_log('AES: Started encryption of a string');
 $cryptext = $this->rijndaelEncrypt($text, $key, 'ECB');
+profiler_log('AES: Finished encryption of a string');
 if(!is_array($cryptext))
 {
 echo 'Warning: encryption failed for string: '.print_r($text,true).'<br />';
 return false;
 }
 function decrypt($text, $key, $input_encoding = ENC_HEX)
 {
 if ( $text == '' )
 return '';
-$text_orig = $text;
-if ( isset($this->decrypt_cache[$key]) && is_array($this->decrypt_cache[$key]) )
-{
-if ( isset($this->decrypt_cache[$key][$text]) )
-{
-return $this->decrypt_cache[$key][$text];
-}
-}
 switch($input_encoding)
 {
 case ENC_BINARY:
 default:
 break;
 break;
 case ENC_BASE64:
 $text = base64_decode($text);
 break;
 }
-//$mod = strlen($text) % $this->blockSizeInBits;
-//if($mod != 96)
+// Run memory-cache check
-//die('modulus check failed: '.$mod);
+if ( isset($this->decrypt_cache[$key]) && is_array($this->decrypt_cache[$key]) )
+{
+if ( isset($this->decrypt_cache[$key][$text]) )
+{
+return $this->decrypt_cache[$key][$text];
+}
+}
+// Run disk-cache check
+$hash = sha1($text . '::' . $key);
+if ( $dypt = aes_decrypt_cache_fetch($hash) )
+return $dypt;
+$text_bin = $text;
+$key_bin = $key;
 if ( $this->mcrypt )
 {
 $iv_size = mcrypt_get_iv_size($this->mcrypt, MCRYPT_MODE_ECB);
 $iv = mcrypt_create_iv($iv_size, MCRYPT_RAND);
 $dypt = mcrypt_decrypt($this->mcrypt, $key, $text, MCRYPT_MODE_ECB, $iv);
 else
 {
 $etext = $this->prepare_string($text);
 $ekey  = $this->prepare_string($key);
 $mod = count($etext) % $this->blockSizeInBits;
+profiler_log('AES: Started decryption of a string');
 $dypt = $this->rijndaelDecrypt($etext, $ekey, 'ECB');
+profiler_log('AES: Finished decryption of a string');
 if(!$dypt)
 {
 echo '<pre>'.print_r($dypt, true).'</pre>';
 $this->trigger_error('Rijndael main decryption routine failed', E_USER_ERROR);
 }
 $dypt = $this->byteArrayToString($dypt);
 }
-if ( !isset($this->decrypt_cache[$key]) )
+if ( !isset($this->decrypt_cache[$key_bin]) )
-$this->decrypt_cache[$key] = array();
+$this->decrypt_cache[$key_bin] = array();
-$this->decrypt_cache[$key][$text_orig] = $dypt;
+$this->decrypt_cache[$key_bin][$text_bin] = $dypt;
+aes_decrypt_cache_store($text_bin, $dypt, $key_bin);
 return $dypt;
 }
 /**
 }
 return $bin_key;
 }
 }
-/**
+function aes_decrypt_cache_store($encrypted, $decrypted, $key)
-* XXTEA encryption arithmetic library.
+{
-*
+$cache_file = ENANO_ROOT . '/cache/aes_decrypt.php';
-* Copyright (C) 2006 Ma Bingyao <andot@ujn.edu.cn>
+// only cache if $decrypted is long enough to actually warrant caching
-* Version:      1.5
+if ( strlen($decrypted) < 32 )
-* LastModified: Dec 5, 2006
+{
-* This library is free.  You can redistribute it and/or modify it.
+profiler_log("AES: Skipped caching a string (probably a password, we dunno) because it's too short");
-*
+return false;
-* From dandaman32: I am treating this code as GPL, as implied by the license statement above.
+}
-*/
+if ( file_exists($cache_file) )
-class TEACrypt extends AESCrypt {
+{
-function long2str($v, $w) {
+require_once($cache_file);
-$len = count($v);
+global $aes_decrypt_cache;
-$n = ($len - 1) << 2;
+$cachekey = sha1($encrypted . '::' . $key);
-if ($w) {
+$aes_decrypt_cache[$cachekey] = $decrypted;
-$m = $v[$len - 1];
-if (($m < $n - 3) || ($m > $n)) return false;
+if ( count($aes_decrypt_cache) > 5000 )
-$n = $m;
+{
-}
+// we've got a lot of strings in the cache, clear out a few
-$s = array();
+$keys = array_keys($aes_decrypt_cache);
-for ($i = 0; $i < $len; $i++) {
+for ( $i = 0; $i < 2500; $i++ )
-$s[$i] = pack("V", $v[$i]);
+{
-}
+unset($aes_decrypt_cache[$keys[$i]]);
-if ($w) {
+unset($aes_decrypt_cache[$keys[$i]]);
-return substr(join('', $s), 0, $n);
+}
 }
-else {
+}
-return join('', $s);
+else
-}
+{
-}
+$aes_decrypt_cache = array(
+sha1($encrypted . '::' . $key) => $decrypted
-function str2long($s, $w) {
+);
-$v = unpack("V*", $s. str_repeat("\0", (4 - strlen($s) % 4) & 3));
+}
-$v = array_values($v);
+// call var_export and collect contents
-if ($w) {
+ob_start();
-$v[count($v)] = strlen($s);
+var_export($aes_decrypt_cache);
-}
+$dec_cache_string = ob_get_contents();
-return $v;
+ob_end_clean();
-}
+$f = @fopen($cache_file, 'w');
+if ( !$f )
-function int32($n) {
+return false;
-while ($n >= 2147483648) $n -= 4294967296;
+fwrite($f, "<?php
-while ($n <= -2147483649) $n += 4294967296;
+\$GLOBALS['aes_decrypt_cache'] = $dec_cache_string;
-return (int)$n;
+");
-}
+fclose($f);
+return true;
-function encrypt($str, $key, $return_encoding = ENC_HEX) {
+}
-if ($str == "")
-{
+function aes_decrypt_cache_fetch($hash)
-return "";
+{
-}
+$cache_file = ENANO_ROOT . '/cache/aes_decrypt.php';
-$v = $this->str2long($str, true);
+if ( !file_exists($cache_file) )
-$k = $this->str2long($key, false);
+return false;
-if (count($k) < 4) {
-for ($i = count($k); $i < 4; $i++) {
+require_once($cache_file);
-$k[$i] = 0;
+global $aes_decrypt_cache;
-}
+if ( isset($aes_decrypt_cache[$hash]) )
-}
+{
-$n = count($v) - 1;
+profiler_log("AES: Loaded cached decrypted string, hash is $hash");
+return $aes_decrypt_cache[$hash];
-$z = $v[$n];
+}
-$y = $v[0];
-$delta = 0x9E3779B9;
+return false;
-$q = floor(6 + 52 / ($n + 1));
+}
-$sum = 0;
-while (0 < $q--) {
+function aes_decrypt_cache_destroy($hash)
-$sum = $this->int32($sum + $delta);
+{
-$e = $sum >> 2 & 3;
+$cache_file = ENANO_ROOT . '/cache/aes_decrypt.php';
-for ($p = 0; $p < $n; $p++) {
+if ( !file_exists($cache_file) )
-$y = $v[$p + 1];
+return false;
-$mx = $this->int32((($z >> 5 & 0x07ffffff) ^ $y << 2) + (($y >> 3 & 0x1fffffff) ^ $z << 4)) ^ $this->int32(($sum ^ $y) + ($k[$p & 3 ^ $e] ^ $z));
-$z = $v[$p] = $this->int32($v[$p] + $mx);
+require_once($cache_file);
-}
+global $aes_decrypt_cache;
-$y = $v[0];
-$mx = $this->int32((($z >> 5 & 0x07ffffff) ^ $y << 2) + (($y >> 3 & 0x1fffffff) ^ $z << 4)) ^ $this->int32(($sum ^ $y) + ($k[$p & 3 ^ $e] ^ $z));
+if ( isset($aes_decrypt_cache[$hash]) )
-$z = $v[$n] = $this->int32($v[$n] + $mx);
+unset($aes_decrypt_cache[$hash]);
-}
-return $this->long2str($v, false);
+// call var_export and collect contents
-}
+ob_start();
+var_export($aes_decrypt_cache);
-function decrypt($str, $key, $encoding = ENC_HEX) {
+$dec_cache_string = ob_get_contents();
-if ($str == "") {
+ob_end_clean();
-return "";
+$f = @fopen($cache_file, 'w');
-}
+if ( !$f )
-$v = $this->str2long($str, false);
+return false;
-$k = $this->str2long($key, false);
+fwrite($f, "<?php
-if (count($k) < 4) {
+\$GLOBALS['aes_decrypt_cache'] = $dec_cache_string;
-for ($i = count($k); $i < 4; $i++) {
+");
-$k[$i] = 0;
+fclose($f);
-}
+return true;
-}
-$n = count($v) - 1;
-$z = $v[$n];
-$y = $v[0];
-$delta = 0x9E3779B9;
-$q = floor(6 + 52 / ($n + 1));
-$sum = $this->int32($q * $delta);
-while ($sum != 0) {
-$e = $sum >> 2 & 3;
-for ($p = $n; $p > 0; $p--) {
-$z = $v[$p - 1];
-$mx = $this->int32((($z >> 5 & 0x07ffffff) ^ $y << 2) + (($y >> 3 & 0x1fffffff) ^ $z << 4)) ^ $this->int32(($sum ^ $y) + ($k[$p & 3 ^ $e] ^ $z));
-$y = $v[$p] = $this->int32($v[$p] - $mx);
-}
-$z = $v[$n];
-$mx = $this->int32((($z >> 5 & 0x07ffffff) ^ $y << 2) + (($y >> 3 & 0x1fffffff) ^ $z << 4)) ^ $this->int32(($sum ^ $y) + ($k[$p & 3 ^ $e] ^ $z));
-$y = $v[0] = $this->int32($v[0] - $mx);
-$sum = $this->int32($sum - $delta);
-}
-return $this->long2str($v, true);
-}
 }
 ?>

changeset 378	c1c7fa6b329f
parent 348	87e08a6e4fec
child 458	c433348f3628