optionally use openssl encryption functions (higher performance over mcrypt, but potentially more likely to have been compromised)

2015-01-11 15:13:45 -08:00 · 2015-01-11 15:13:45 -08:00 · 381f8a1b42
commit 381f8a1b42
parent 6f7b1960af
1 changed files with 2 additions and 2 deletions
--- a/include/crypto.php
+++ b/include/crypto.php
@ -40,7 +40,7 @@ function pkcs5_unpad($text)

 function AES256CBC_encrypt($data,$key,$iv) {
 	if(get_config('system','openssl_encrypt')) {
-		return openssl_encrypt(pkcs5_pad($data,16),'aes-256-cbc',str_pad($key,32,"\0"),OPENSSL_RAW_DATA,str_pad($iv,16,"\0"));
+		return openssl_encrypt($data,'aes-256-cbc',str_pad($key,32,"\0"),OPENSSL_RAW_DATA,str_pad($iv,16,"\0"));
 	}
 	return mcrypt_encrypt(
 		MCRYPT_RIJNDAEL_128, 
@ -52,7 +52,7 @@ function AES256CBC_encrypt($data,$key,$iv) {

 function AES256CBC_decrypt($data,$key,$iv) {
 	if(get_config('system','openssl_encrypt')) {
-		return openssl_decrypt(pkcs5_unpad($data,16),'aes-256-cbc',str_pad($key,32,"\0"),OPENSSL_RAW_DATA,str_pad($iv,16,"\0"));
+		return openssl_decrypt($data,'aes-256-cbc',str_pad($key,32,"\0"),OPENSSL_RAW_DATA,str_pad($iv,16,"\0"));
 	}
 	return pkcs5_unpad(mcrypt_decrypt(
 		MCRYPT_RIJNDAEL_128,