Finding similar code in PHP from C # code (AES-256 decryption)

Question

Finding similar code in PHP from C # code (AES-256 decryption)

I am trying a similar pattern in PHP following C # code. I spent 7 days trying to implement a simple encrypted communication in my EPin API application. The thing is, the answer from the php script gives me Blank

public static string AESDecryptText(string input, string key)
{
    // Get the bytes of the string
    byte[] bytesToBeDecrypted = Convert.FromBase64String(input);
    byte[] keyBytes = Encoding.UTF8.GetBytes(key);
    keyBytes = SHA256.Create().ComputeHash(keyBytes);

    byte[] bytesDecrypted = AESDecrypt(bytesToBeDecrypted, keyBytes);

    string result = Encoding.UTF8.GetString(bytesDecrypted);

    return result;
}

public static byte[] AESDecrypt(byte[] bytesToBeDecrypted, byte[] keyBytes)
{
    byte[] decryptedBytes = null;

    // Set your salt here, change it to meet your flavor:
    // The salt bytes must be at least 8 bytes.
    byte[] saltBytes = new byte[] { 1, 2, 3, 4, 5, 6, 7, 8 };

    using (MemoryStream ms = new MemoryStream())
    {
        using (RijndaelManaged AES = new RijndaelManaged())
        {
            AES.KeySize = 256;
            AES.BlockSize = 128;

            var key = new Rfc2898DeriveBytes(keyBytes, saltBytes, 1000);
            AES.Key = key.GetBytes(AES.KeySize / 8);
            AES.IV = key.GetBytes(AES.BlockSize / 8);

            AES.Mode = CipherMode.CBC;

            using (var cs = new CryptoStream(ms, AES.CreateDecryptor(), CryptoStreamMode.Write))
            {
                cs.Write(bytesToBeDecrypted, 0, bytesToBeDecrypted.Length);
                cs.Close();
            }
            decryptedBytes = ms.ToArray();
        }
    }

    return decryptedBytes;
}

MY PHP Code from another topic ..

function DecryptString($content, $password = 
 '4J2lh3Lz4q6ACo16VrL1oLDnh3k7G1KaXliUPVPV8o0='){


 $password = mb_convert_encoding($password, "utf-16le");
        $padding = 32 - (strlen($password) % 32);
        $password .= str_repeat("\0", $padding);
        $iv = substr($password, 0, 8);
        $data = base64_decode($content);

       $decrypted  = openssl_decrypt($data, 'AES-256-CBC', $password, 
 OPENSSL_RAW_DATA, $iv);
        $decrypted = mb_convert_encoding($decrypted, "utf-8", "utf-16le");
        return $decrypted;
}


 function decryption(){

    $password = "4J2lh3Lz4q6ACo16VrL1oLDnh3k7G1KaXliUPVPV8o0=";
    $content = "wKamNpehMEqJQ4NcUueNuXq1PbupsxwEvwcJ0CeI+8Q=";
    echo $this->DecryptString($content, $password);

    }

Each time I print, an empty space is displayed. Please help on this.

+3

c # php encryption aes

VMG Dev Team Oct 17 '17 at 7:04

source share

1 answer

t.m.adam · Answer 1 · 2017-10-17T19:53:09+0000

In C # code, you use SHA256to hash the password and Rfc2898DeriveBytesto create the key and IV. Similar PHP functions hash(with sha256) and hash_pbkdf2.

PHP equivalent of your C # method AESDecryptText:

function AESDecryptText($content, $password){
    $password = hash('sha256', $password, true);
    $salt = pack("C*",1,2,3,4,5,6,7,8);
    $bytes = hash_pbkdf2("sha1", $password, $salt, 1000, 48, true);
    $key = substr($bytes, 0, 32);
    $iv = substr($bytes, 32, 16);
    return openssl_decrypt($content, 'AES-256-CBC', $key, 0, $iv);
}

Some notes:

The salt must be unique for each password.
IV .
openssl_random_pseudo_bytes .
IV , .
HMAC .
hash_hmac .

Finding similar code in PHP from C # code (AES-256 decryption)

More articles: