first commit

wp-content/plugins/sitepress-multilingual-cms/inc/utilities/wpml-data-encryptor.class.php

@@ -0,0 +1,154 @@
+<?php
+// phpcs:disable PHPCompatibility.Constants.NewConstants.openssl_raw_dataFound -- This and the following exceptions are made as function and version checks are also made
+// phpcs:disable PHPCompatibility.Constants.RemovedConstants.mcrypt_mode_ecbDeprecatedRemoved
+// phpcs:disable PHPCompatibility.Constants.RemovedConstants.mcrypt_randDeprecatedRemoved
+// phpcs:disable PHPCompatibility.Constants.RemovedConstants.mcrypt_rijndael_256DeprecatedRemoved
+// phpcs:disable PHPCompatibility.Extensions.RemovedExtensions.mcryptDeprecatedRemoved
+// phpcs:disable PHPCompatibility.FunctionUse.NewFunctionParameters.openssl_decrypt_ivFound
+// phpcs:disable PHPCompatibility.FunctionUse.NewFunctionParameters.openssl_encrypt_ivFound
+// phpcs:disable PHPCompatibility.FunctionUse.RemovedFunctions.mcrypt_create_ivDeprecatedRemoved
+// phpcs:disable PHPCompatibility.FunctionUse.RemovedFunctions.mcrypt_decryptDeprecatedRemoved
+// phpcs:disable PHPCompatibility.FunctionUse.RemovedFunctions.mcrypt_encryptDeprecatedRemoved
+// phpcs:disable PHPCompatibility.FunctionUse.RemovedFunctions.mcrypt_get_iv_sizeDeprecatedRemoved
+
+class WPML_Data_Encryptor {
+
+	const SALT_CHARS  = 'abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789!@#$%^&*()-_ []{}<>~`+=,.;:/?|';
+	const SALT_LENGTH = 64;
+
+	/**
+	 * @var string $method
+	 */
+	private $method;
+	/**
+	 * @var string $key
+	 */
+	private $key;
+	/**
+	 * @var string $iv
+	 */
+	private $iv;
+
+	/**
+	 * @var string
+	 */
+	private $library = false;
+
+	/**
+	 * WPML_Data_Encryptor constructor.
+	 *
+	 * @param string $key_salt
+	 * @param string $method
+	 */
+	public function __construct( $key_salt = '', $method = 'AES-256-CTR' ) {
+
+		if ( ! $key_salt ) {
+			$key_salt = $this->get_key_salt();
+		}
+
+		if ( function_exists( 'openssl_encrypt' ) && function_exists( 'openssl_decrypt' )
+			 && version_compare( phpversion(), '5.3.2', '>' ) ) {
+
+			$methods = openssl_get_cipher_methods();
+			if ( ! in_array( $method, $methods ) && ! empty( $methods ) ) {
+				$this->method = $methods[0];
+			} else {
+				$this->method = $method;
+			}
+			$this->library = 'openssl';
+			$this->key     = substr( sha1( $key_salt, true ), 0, 16 );
+			$this->iv      = substr( $key_salt, 0, 16 );
+
+		} elseif ( function_exists( 'mcrypt_encrypt' ) && function_exists( 'mcrypt_decrypt' ) ) { // PHP 5.2 support
+			$this->library = 'mcrypt';
+			$this->key     = substr( NONCE_KEY, 0, 24 );
+			$this->iv      = mcrypt_create_iv( mcrypt_get_iv_size( MCRYPT_RIJNDAEL_256, MCRYPT_MODE_ECB ), MCRYPT_RAND );
+
+		}
+	}
+
+	/**
+	 * @param string $data
+	 *
+	 * @return string
+	 */
+	public function encrypt( $data ) {
+		if ( $this->library === 'openssl' ) {
+			$encrypted_data = openssl_encrypt( $data, $this->method, $this->key, OPENSSL_RAW_DATA, $this->iv );
+		} elseif ( $this->library === 'mcrypt' ) { // PHP 5.2 support
+			$encrypted_data = mcrypt_encrypt( MCRYPT_RIJNDAEL_256, $this->key, $data, MCRYPT_MODE_ECB, $this->iv );
+			$encrypted_data = preg_replace( '/\x00/', '', $encrypted_data ); // strip padding added to match the block size
+		} else {
+			$encrypted_data = $data;
+		}
+
+		return $encrypted_data;
+	}
+
+	/**
+	 * @param string $encrypted_data
+	 *
+	 * @return string
+	 */
+	public function decrypt( $encrypted_data ) {
+
+		if ( $this->library === 'openssl' ) {
+			$data = openssl_decrypt( $encrypted_data, $this->method, $this->key, OPENSSL_RAW_DATA, $this->iv );
+		} elseif ( $this->library === 'mcrypt' ) { // PHP 5.2 support
+			$data = mcrypt_decrypt( MCRYPT_RIJNDAEL_256, $this->key, $encrypted_data, MCRYPT_MODE_ECB, $this->iv );
+			$data = preg_replace( '/\x00/', '', $data );
+		} else {
+			$data = $encrypted_data;
+		}
+
+		return $data;
+	}
+
+	/**
+	 * @param string $library
+	 */
+	public function set_crypt_library( $library ) {
+		$this->library = $library;
+	}
+
+	/**
+	 * @return string
+	 */
+	public function get_crypt_library() {
+		return $this->library;
+	}
+
+	/**
+	 * @return string
+	 */
+	private function get_key_salt() {
+		if ( defined( 'NONCE_SALT' ) ) {
+			return NONCE_SALT;
+		}
+
+		return $this->generate_salt_key();
+	}
+
+	/**
+	 * @return string
+	 */
+	private function generate_salt_key() {
+		$salt_key = '';
+		for ( $i = 0; $i < self::SALT_LENGTH; $i++ ) {
+			$salt_key .= substr( self::SALT_CHARS, mt_rand( 0, strlen( self::SALT_CHARS ) - 1 ), 1 );
+		}
+
+		return $salt_key;
+	}
+}
+// phpcs:enable PHPCompatibility.FunctionUse.RemovedFunctions.mcrypt_get_iv_sizeDeprecatedRemoved
+// phpcs:enable PHPCompatibility.FunctionUse.RemovedFunctions.mcrypt_encryptDeprecatedRemoved
+// phpcs:enable PHPCompatibility.FunctionUse.RemovedFunctions.mcrypt_decryptDeprecatedRemoved
+// phpcs:enable PHPCompatibility.FunctionUse.RemovedFunctions.mcrypt_create_ivDeprecatedRemoved
+// phpcs:enable PHPCompatibility.FunctionUse.NewFunctionParameters.openssl_encrypt_ivFound
+// phpcs:enable PHPCompatibility.FunctionUse.NewFunctionParameters.openssl_decrypt_ivFound
+// phpcs:enable PHPCompatibility.Extensions.RemovedExtensions.mcryptDeprecatedRemoved
+// phpcs:enable PHPCompatibility.Constants.RemovedConstants.mcrypt_rijndael_256DeprecatedRemoved
+// phpcs:enable PHPCompatibility.Constants.RemovedConstants.mcrypt_randDeprecatedRemoved
+// phpcs:enable PHPCompatibility.Constants.RemovedConstants.mcrypt_mode_ecbDeprecatedRemoved
+// phpcs:enable PHPCompatibility.Constants.NewConstants.openssl_raw_dataFound