phpmcryptphp-openssl
mcrypt_create_iv returns undefined variable
My encryption/iv code doesn't work. Whenever I test the login I get this error
Warning: openssl_encrypt(): Using an empty Initialization Vector (iv) is potentially insecure and not recommended in /Users/luke/Sites/user.php on line 174
I have tracked it down to this line
$size = mcrypt_get_iv_size(MCRYPT_CAST_256, MCRYPT_MODE_CFB);
$iv = mcrypt_create_iv($size, MCRYPT_DEV_URANDOM);
$method = "aes-128-cbc";
$passWord = mcrypt_create_iv($size, MCRYPT_DEV_URANDOM);
$verificationNumber = openssl_encrypt($passWord, $method, $iv);
Mcrypt is installed fine as shown by this.
Can you help or do i possibly need to provide more code?
Solution
You are getting the iv size for "CAST": MCRYPT_CAST_256 but you are encryption with "aes-128-cbc". That is an algorithm mis-match.
The CAST block size is 64-bits, the AES block size if 128-bits. Instead use MCRYPT_RIJNDAEL_128, AES is a subset of Rijndael with a block of 128-bits.
- Laravel retrieving data from REST API
- PHP round to integer
- Is there something like for i in range(length) in PHP?
- Redirecting mobile users according to their OS
- Show only featured products in Woocommerce shop page
- create regex to match format of 00:00:00 for duration (not time)
- How can I figure out why cURL is hanging and unresponsive?
- Composer Curl error 60: SSL certificate problem: unable to get local issuer certificate
- PHP encrypt and decrypt in node JS
- Expand PHP Stack Trace Arguments
- Internal server error when trying to send an email using Microsoft Graph API
- How to identify if an option was supplied without a value with Symfony Console?
- case-insensitive array_unique
- Get environment value in controller
- What are my options to check for viruses on a PHP upload?
- Increasing the chance on a daily basis
- Different results for function() and fn(). PHP
- Sorting an array of directory filenames in descending natural order
- How to modify the php source code and recompile it?
- How can i automatically insert the current user_id after submitting a form in Filament v3.0
- Magento 2 URL rewrite Issue : URL key already exists for specified store
- Is there an easy way of seeing PHP info?
- Group 2d array of dates and values by contiguous dates with the same value
- Laravel Socialite dynamic server url for provider?
- Fatal error: Using $this when not in object context but everything looks fine
- wordpress plugin : Call to undefined function add_menu_page()
- Populate a 2d array with qualifying data from a multi-line txt file containing comma-separated values
- How to parse an ini-formatted string into an associative array?
- Split string by new line characters
- Extending singletons in PHP