<?php

[0] Fix | Delete

[1] Fix | Delete

namespace WPForms\Helpers;

[2] Fix | Delete

[3] Fix | Delete

/**

[4] Fix | Delete

* Class for encryption functionality.

[5] Fix | Delete

*

[6] Fix | Delete

* @since 1.6.1.2

[7] Fix | Delete

*

[8] Fix | Delete

* @link https://www.php.net/manual/en/intro.sodium.php

[9] Fix | Delete

*/

[10] Fix | Delete

class Crypto {

[11] Fix | Delete

[12] Fix | Delete

/**

[13] Fix | Delete

* Get a secret key for encrypt/decrypt.

[14] Fix | Delete

*

[15] Fix | Delete

* @since 1.6.1.2

[16] Fix | Delete

*

[17] Fix | Delete

* @return string

[18] Fix | Delete

*/

[19] Fix | Delete

public static function get_secret_key() {

[20] Fix | Delete

[21] Fix | Delete

$secret_key = get_option( 'wpforms_crypto_secret_key' );

[22] Fix | Delete

[23] Fix | Delete

// If we already have the secret, send it back.

[24] Fix | Delete

if ( false !== $secret_key ) {

[25] Fix | Delete

return base64_decode( $secret_key ); // phpcs:ignore WordPress.PHP.DiscouragedPHPFunctions.obfuscation_base64_decode

[26] Fix | Delete

}

[27] Fix | Delete

[28] Fix | Delete

// We don't have a secret, so let's generate one.

[29] Fix | Delete

$secret_key = sodium_crypto_secretbox_keygen();

[30] Fix | Delete

add_option( 'wpforms_crypto_secret_key', base64_encode( $secret_key ) ); // phpcs:ignore WordPress.PHP.DiscouragedPHPFunctions.obfuscation_base64_encode

[31] Fix | Delete

[32] Fix | Delete

return $secret_key;

[33] Fix | Delete

}

[34] Fix | Delete

[35] Fix | Delete

/**

[36] Fix | Delete

* Encrypt a message.

[37] Fix | Delete

*

[38] Fix | Delete

* @since 1.6.1.2

[39] Fix | Delete

*

[40] Fix | Delete

* @param string $message Message to encrypt.

[41] Fix | Delete

* @param string $key Encryption key.

[42] Fix | Delete

*

[43] Fix | Delete

* @return string

[44] Fix | Delete

*/

[45] Fix | Delete

public static function encrypt( $message, $key = '' ) {

[46] Fix | Delete

[47] Fix | Delete

// Create a nonce for this operation. It will be stored and recovered in the message itself.

[48] Fix | Delete

$nonce = random_bytes(

[49] Fix | Delete

SODIUM_CRYPTO_SECRETBOX_NONCEBYTES

[50] Fix | Delete

);

[51] Fix | Delete

[52] Fix | Delete

if ( empty( $key ) ) {

[53] Fix | Delete

$key = self::get_secret_key();

[54] Fix | Delete

}

[55] Fix | Delete

[56] Fix | Delete

// Encrypt message and combine with nonce.

[57] Fix | Delete

$cipher = base64_encode( // phpcs:ignore WordPress.PHP.DiscouragedPHPFunctions.obfuscation_base64_encode

[58] Fix | Delete

$nonce .

[59] Fix | Delete

sodium_crypto_secretbox(

[60] Fix | Delete

$message,

[61] Fix | Delete

$nonce,

[62] Fix | Delete

$key

[63] Fix | Delete

)

[64] Fix | Delete

);

[65] Fix | Delete

[66] Fix | Delete

try {

[67] Fix | Delete

sodium_memzero( $message );

[68] Fix | Delete

sodium_memzero( $key );

[69] Fix | Delete

} catch ( \Exception $e ) {

[70] Fix | Delete

return $cipher;

[71] Fix | Delete

}

[72] Fix | Delete

[73] Fix | Delete

return $cipher;

[74] Fix | Delete

}

[75] Fix | Delete

[76] Fix | Delete

/**

[77] Fix | Delete

* Decrypt a message.

[78] Fix | Delete

*

[79] Fix | Delete

* @since 1.6.1.2

[80] Fix | Delete

*

[81] Fix | Delete

* @param string $encrypted Encrypted message.

[82] Fix | Delete

* @param string $key Encryption key.

[83] Fix | Delete

*

[84] Fix | Delete

* @return string

[85] Fix | Delete

*/

[86] Fix | Delete

public static function decrypt( $encrypted, $key = '' ) {

[87] Fix | Delete

[88] Fix | Delete

// Unpack base64 message.

[89] Fix | Delete

$decoded = base64_decode( (string) $encrypted ); // phpcs:ignore WordPress.PHP.DiscouragedPHPFunctions.obfuscation_base64_decode

[90] Fix | Delete

[91] Fix | Delete

if ( false === $decoded ) {

[92] Fix | Delete

return false;

[93] Fix | Delete

}

[94] Fix | Delete

[95] Fix | Delete

if ( mb_strlen( $decoded, '8bit' ) < ( SODIUM_CRYPTO_SECRETBOX_NONCEBYTES + SODIUM_CRYPTO_SECRETBOX_MACBYTES ) ) {

[96] Fix | Delete

return false;

[97] Fix | Delete

}

[98] Fix | Delete

[99] Fix | Delete

// Pull nonce and ciphertext out of unpacked message.

[100] Fix | Delete

$nonce = mb_substr( $decoded, 0, SODIUM_CRYPTO_SECRETBOX_NONCEBYTES, '8bit' );

[101] Fix | Delete

$ciphertext = mb_substr( $decoded, SODIUM_CRYPTO_SECRETBOX_NONCEBYTES, null, '8bit' );

[102] Fix | Delete

[103] Fix | Delete

if ( empty( $key ) ) {

[104] Fix | Delete

$key = self::get_secret_key();

[105] Fix | Delete

}

[106] Fix | Delete

[107] Fix | Delete

// Decrypt it.

[108] Fix | Delete

$message = sodium_crypto_secretbox_open(

[109] Fix | Delete

$ciphertext,

[110] Fix | Delete

$nonce,

[111] Fix | Delete

$key

[112] Fix | Delete

);

[113] Fix | Delete

[114] Fix | Delete

// Check for decrpytion failures.

[115] Fix | Delete

if ( false === $message ) {

[116] Fix | Delete

return false;

[117] Fix | Delete

}

[118] Fix | Delete

[119] Fix | Delete

try {

[120] Fix | Delete

sodium_memzero( $ciphertext );

[121] Fix | Delete

sodium_memzero( $key );

[122] Fix | Delete

} catch ( \Exception $e ) {

[123] Fix | Delete

return $message;

[124] Fix | Delete

}

[125] Fix | Delete

[126] Fix | Delete

return $message;

[127] Fix | Delete

}

[128] Fix | Delete

}

[129] Fix | Delete

[130] Fix | Delete