| Server IP : 192.64.118.117 / Your IP : 18.191.125.73 Web Server : LiteSpeed System : Linux premium56.web-hosting.com 4.18.0-513.24.1.lve.1.el8.x86_64 #1 SMP Thu May 9 15:10:09 UTC 2024 x86_64 User : thecgapy ( 1160) PHP Version : 7.4.33 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : OFF | Pkexec : OFF Directory : /home/thecgapy/mcprintingandpromotions.com/wp-content/plugins/fluentform/app/Helpers/ |
Upload File : |
<?php
namespace FluentForm\App\Helpers;
class Protector
{
/**
* Get the salt for the encryption and decryption.
*/
public static function getSalt()
{
$salt = get_option('_fluentform_security_salt');
if (!$salt) {
$salt = wp_generate_password();
update_option('_fluentform_security_salt', $salt, 'no');
}
return $salt;
}
/**
* Encryp a text using a predefined salt.
*
* @param string $text
*
* @return string $text
*/
public static function encrypt($text)
{
$key = static::getSalt();
$cipher = 'AES-128-CBC';
$ivlen = openssl_cipher_iv_length($cipher);
$iv = openssl_random_pseudo_bytes($ivlen);
$ciphertext_raw = openssl_encrypt($text, $cipher, $key, $options = OPENSSL_RAW_DATA, $iv);
$hmac = hash_hmac('sha256', $ciphertext_raw, $key, $as_binary = true);
return base64_encode($iv . $hmac . $ciphertext_raw);
}
/**
* Decrypt a text using a predefined salt.
*
* @param string $text
*
* @return string $text
*/
public static function decrypt($text)
{
$key = static::getSalt();
$c = base64_decode($text);
$cipher = 'AES-128-CBC';
$ivlen = openssl_cipher_iv_length($cipher);
$iv = substr($c, 0, $ivlen);
$hmac = substr($c, $ivlen, $sha2len = 32);
$ciphertext_raw = substr($c, $ivlen + $sha2len);
$original_plaintext = openssl_decrypt($ciphertext_raw, $cipher, $key, $options = OPENSSL_RAW_DATA, $iv);
$calcmac = hash_hmac('sha256', $ciphertext_raw, $key, $as_binary = true);
if (hash_equals($hmac, $calcmac)) { // timing attack safe comparison
return $original_plaintext;
}
}
}