@@ -754,44 +754,64 @@ function decryptPrivateKey($file, $mnemonic) {
754754 $ saltbase64_decode ($ parts2 ]);
755755 $ tagsubstr (base64_decode ($ parts0 ]), -TAGSIZE );
756756
757- // derive actual secret
758- $ mnemonichash_pbkdf2 ("sha1 " ,
759- $ mnemonic
760- $ salt
761- 1024 ,
762- 32 ,
763- true );
764-
765- // migrate GCM nonce to CTR counter,
766- // we don't use GCM so that broken
767- // integrity data do not break the
768- // decryption
769- $ nonceconvertGCMtoCTR ($ nonce$ mnemonic"aes-256-ecb " );
770-
771- // decrypt private key
772- $ privatekeyopenssl_decrypt ($ ciphertext
773- "aes-256-ctr " ,
774- $ mnemonic
775- OPENSSL_RAW_DATA ,
776- $ nonce
777- if (false !== $ privatekey
778- // base64-decode again just for good measure
779- $ privatekeybase64_decode ($ privatekey
757+ // try to decrypt private key with different methods
758+ $ methods"algorithm " => "sha256 " , "iterations " => 600000 ],
759+ ["algorithm " => "sha1 " , "iterations " => 600000 ],
760+ ["algorithm " => "sha1 " , "iterations " => 1024 ]];
761+ foreach ($ methodsas $ method
762+ // take method parameters
763+ $ algorithm$ method"algorithm " ];
764+ $ iterations$ method"iterations " ];
765+
766+ // derive actual secret
767+ $ secrethash_pbkdf2 ($ algorithm
768+ $ mnemonic
769+ $ salt
770+ $ iterations
771+ 32 ,
772+ true );
773+
774+ // migrate GCM nonce to CTR counter,
775+ // we don't use GCM so that broken
776+ // integrity data do not break the
777+ // decryption
778+ $ counterconvertGCMtoCTR ($ nonce$ secret"aes-256-ecb " );
779+
780+ // decrypt private key
781+ $ privatekeyopenssl_decrypt ($ ciphertext
782+ "aes-256-ctr " ,
783+ $ secret
784+ OPENSSL_RAW_DATA ,
785+ $ counter
780786 if (false !== $ privatekey
781- $ resopenssl_pkey_get_private ($ privatekey
782- if (is_resource ($ res$ resinstanceof OpenSSLAsymmetricKey)) {
783- $ sslInfoopenssl_pkey_get_details ($ res
784- if (array_key_exists ("key " , $ sslInfo
785- $ result$ privatekey
787+ // base64-decode again just for good measure
788+ $ privatekeybase64_decode ($ privatekey
789+ if (false !== $ privatekey
790+ $ resopenssl_pkey_get_private ($ privatekey
791+ if (is_resource ($ res$ resinstanceof OpenSSLAsymmetricKey)) {
792+ $ sslInfoopenssl_pkey_get_details ($ res
793+ if (array_key_exists ("key " , $ sslInfo
794+ $ result$ privatekey
795+ }
796+ } else {
797+ debug ("decrypted content is not a privatekey " );
786798 }
787799 } else {
788- debug ("decrypted content is not a privatekey " );
800+ debug ("decrypted content is not base64-encoded " );
789801 }
790802 } else {
791- debug ("decrypted content is not base64-encoded " );
803+ debug ("privatekey could not be decrypted: " . openssl_error_string () );
792804 }
793- } else {
794- debug ("privatekey could not be decrypted: " .openssl_error_string ());
805+
806+ // take a shortcut
807+ if (false !== $ result
808+ break ;
809+ }
810+ }
811+
812+ // if we do not have a result then print a debug message
813+ if (false === $ result
814+ debug ("privatekey is encrypted with an unsupported method " );
795815 }
796816 } else {
797817 debug ("privatekey file has wrong structure " );
0 commit comments