Can’t decrypt using pgcrypto from AES-256-CBC but AES-128-CBC is OK

by

MCRYPT_RIJNDAEL_256 isn’t AES-256. It’s the Rijndael cipher with a block size of 256 (hence the error). AES is a subset of the Rijndael cipher using block size of 128 bits and key sizes of 128, 192 and 256 bits. This is also reflected in the IV size.

To create an AES-256 encrypted ciphertext you can use MCRYPT_RIJNDAEL_128 with the correct key size (256 bits is 32 bytes). The _128 postfix indicates the block size to be used; you can still use it with any valid key size of 128, 192 or 256 bit.

Beware that mcrypt – especially the underlying C-library – is not maintained anymore. You’re better off using the openssl or later crypto libraries.

The mcrypt and OpenSSL wrappers will also happily allow invalid key sizes, only warning you – if you’re lucky. That’s of course not compatible with about any well defined AES library.

More Related Contents:

  1. Cannot simply use PostgreSQL table name (“relation does not exist”)
  2. Best way to get result count before LIMIT was applied
  3. How to add/remove PKCS7 padding from an AES encrypted string?
  4. PHP AES encrypt / decrypt
  5. Simple Postgresql Statement – column name does not exists
  6. Laravel: Error [PDOException]: Could not Find Driver in PostgreSQL
  7. Get last insert id after a prepared insert with PDO
  8. mcrypt_encrypt to openssl_encrypt, and OPENSSL_ZERO_PADDING problems
  9. pg_query result contains strings instead of integer, numeric
  10. MCrypt rijndael-128 to OpenSSL aes-128-ecb conversion
  11. Enabling PostgreSQL support in PHP on Mac OS X
  12. How to pass custom type array to Postgres function
  13. How to bind SQL variables in PHP?
  14. How do I enable php to work with postgresql?
  15. How to do AES256 decryption in PHP?
  16. Setting a connect timeout with PDO
  17. How to prevent PDO from interpreting a question mark as a placeholder?
  18. How to enable PHP’s openssl extension to install Composer?
  19. Pass array literal to PostgreSQL function
  20. Use openssl_encrypt to replace Mcrypt for 3DES-ECB encryption
  21. Postgres now() timestamp doesn’t change, when script works
  22. mysql_insert_id alternative for postgresql
  23. Supplied key param cannot be coerced into a private key with Google APIs
  24. Convert PostgreSQL array to PHP array
  25. Different timezone_types on DateTime object
  26. php regex to match outside of html tags
  27. LIMIT keyword on MySQL with prepared statement [duplicate]
  28. Group array by subarray values
  29. What is # next to object(someClass) in var_dump of an object? I have an inference. Am I right?
  30. How do I use two submit buttons, and differentiate between which one was used to submit the form? [duplicate]

Leave a Comment