php and blowfish encription

lordgreg

i'm creating a program that would send some info to server thru sockets. but, server should first let me in, so server admin suggested using blowfish encription with which i have one problem nad here it is:

when he uses blowfish with string "testtest" and key (salt) "1234567890ABCDEF" (16 chars), he gets this: d5fb49d55b9f3687

so, for proper working and communication thru sockets, i should be able to get the same result. so i do:

$string = "testtest";

$key = '1234567890ABCDEF';

echo crypt($string, $key);

what i get is: 12SddsiYCoHyw which is, as you can se false.

i checked php manual (http://www.php.net/manual/en/function.crypt.php) and saw this statement there:

CRYPT_BLOWFISH - Blowfish encryption with a sixteen character salt starting with $2$

so i tried to put $2$ before $key itself, but even that didn't work. i also checked if CRYPT_BLOWFISH constant is defined with defined('CRYPT_BLOWFISH') and it returned 1, which means, it is. but i still don't get the right result!!! i even tried bin2hex() function on both variables and still didn't get correct result. can someone PLEASE help me out with this because it's killing me!!!

and no, i cannot use any other decription!!!

thanks for all your help!

regards ,)

The_Chancer

I use this for encryption / decryption - you can use blowfish instead of the MCAST..

<~4~>function decrypt($key,$cryptstring)
<~5~>{
<~6~>    $td2 = mcrypt_module_open ('cast-256', '', 'ecb', '');
<~7~>    $iv2 = mcrypt_create_iv (mcrypt_enc_get_iv_size ($td2), MCRYPT_RAND);
<~8~>    mcrypt_generic_init ($td2, $key, $iv2);
<~9~>    $output = mdecrypt_generic ($td2, $cryptstring);
<~10~>   // mcrypt_generic_deinit ($td2);
<~11~>    mcrypt_module_close ($td2);
<~12~>    return base64_decode(trim($output));
<~13~>}
<~14~>


<~27~>function encode($pass,$varchars)
<~28~>{
<~29~>	if (version_compare(phpversion(), "4.2.0", "<"))
<~30~>	{
<~31~>		mt_srand(make_seed());
<~32~>	}
<~33~>	$encrypt[0] = $keys = htmlentities(make_key($varchars));
<~34~>	$td2 = mcrypt_module_open ('cast-256', '', 'ecb', '');
<~35~>	$iv2 = mcrypt_create_iv (mcrypt_enc_get_iv_size ($td2), MCRYPT_RAND);
<~36~>	mcrypt_generic_init ($td2, $keys, $iv2);
<~37~>	$encrypt[1] = mcrypt_generic ($td2, base64_encode(trim($pass)));
<~38~>	// mcrypt_generic_deinit ($td2);
<~39~>	mcrypt_module_close ($td2);
<~40~>	return $encrypt;
<~41~>}

Just ignore the line numbers...

There is a difference between the mcrypt and crypt functions though - dependant on whether you want it to be decoded or not - or there simply as a check - you will not be able to decode the crypt version as it is a one way hash.

jenni

Chancer,
I am trying to use your encrypt/decrypt functions, but I am having trouble getting them to work. When I call encode(), it bonks out the remainder of the page. (When I have the function there, but I don't call it the page displays fine so I don't think it is a parse error) I have cast-256 and ecb.

Any ideas?

Also, just to be sure, what is the $varchars variable?