{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 唯我独甜 的问题《PDO and openssl_public_decrypt failing》','https://www.manongdao.com/q-904792.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I am trying to decrypt and update password into a mysql database table. while doing it is giving me a weird error.
PHP Warning: PDO::exec(): SSL operation failed with code 1. OpenSSL Error messages: error:0906D06C:PEM routines:PEM_read_bio:no start line in .../vendor/robmorgan/phinx/src/Phinx/Db/Adapter/PdoAdapter.php on line 306 PHP Warning: PDO::exec(): MySQL server has gone away in .../vendor/robmorgan/phinx/src/Phinx/Db/Adapter/PdoAdapter.php on line 306 PHP Warning: PDO::exec(): Error reading result set's header in ../vendor/robmorgan/phinx/src/Phinx/Db/Adapter/PdoAdapter.php on line 306
- passwords are encrypted using private key.
- openssl_private_encrypt function is used for encryption.
- decryption is done using openssl_public_decrypt
- encryption along with insertion into databse works fine
- decryption along with update does not work. PDO::exec fails for some reason
- Platform i am using is Ubuntu, PHP 5.6.24-1+deb.sury.org~xenial+1
- Encrypt-Insert, Decrypt-Update is the order of operations.
- Mysql connection is open before encryption and decryption is performed
code for encryption decryption:
function processPlainText($plainText, $action) {
$cryptText = '';
$res = 'encrypt' == $action ? openssl_get_privatekey($this->keyContents) : openssl_get_publickey($this->keyContents);
$action = 'encrypt' == $action ? 'openssl_private_' . $action : 'openssl_public_'.$action;
$action($plainText, $cryptText, $res);
openssl_free_key($res);
return $cryptText;
}
Any insight on this problem would be much appreciated.
Code that works:
$pdo = getMysqlPdoInstance(); //get pdo instance using ssl
$id = 101;
$plainText = 'abcd';
$password = processPlainText($plainText, 'encrypt');
$count = $pdo->exec(sprintf("UPDATE table set password = '%s' WHERE id = %d", $password, $id));
print("Updated $count rows.\n");
Code that fails:
$pdo = getMysqlPdoInstance(); //get pdo instance using ssl
$id = 101;
$password = processPlainText($encryptedPassword, 'decrypt');
$count = $pdo->exec(sprintf("UPDATE table set password = '%s' WHERE id = %d", $password, $id));
print("Updated $count rows.\n");
Thanks
Using SSL for the Mysql connection made you hit a bug, resolved with a patch ("openssl_decrypt triggers bug in PDO") to PHP 7.1, with no backports yet. In the last comment at the time of writing, instructions to a workaround can be found:
in your function, place
while(openssl_error_string() !== false);above openssl_free_key() if you cannot move to PHP7.1.In your comments you suspected properly, that "PDO in some way is facing [a] problem when openssl_public_decrypt is used.."