PHP : mcrypt & openssl producing different output

Question

Hoping someone can shed some light on this.

I am updating some older code which uses the mcrypt_generic function, utilizing a DES-CBC cipher

When I update this code to use the openssl_encrypt, I get the same output, but with 8 bytes appended to the end of my encoded string.

Before

$this->_cipher = mcrypt_module_open(MCRYPT_DES, '', MCRYPT_MODE_CBC,'');
mcrypt_generic_init($this->_cipher, $this->_key, $this->_iv) 
mcrypt_generic($this->_cipher, $text)

Before method output:

27049189e7e08db6

After

openssl_encrypt($text, "DES-CBC", $this->_key,  OPENSSL_RAW_DATA , $this->_iv);

After method output:

27049189e7e08db6d504d16516e1c567

Why is this happening, and what (other then a substring) can be done to prevent it?

Answer 1

According to this:

1.3. Data Size

The DES algorithm operates on blocks of eight octets. This often requires padding after the end of the unencrypted payload data.

It's possible that it's simply padding the input.

mcrypt_encrypt() seems to pad by 0 by default (based on code example in docs):

# creates a cipher text compatible with AES (Rijndael block size = 128)
# to keep the text confidential 
# only suitable for encoded input that never ends with value 00h
# (because of default zero padding)
$ciphertext = mcrypt_encrypt(MCRYPT_RIJNDAEL_128, $key,
$plaintext, MCRYPT_MODE_CBC, $iv);

which would explain the difference in length.

Answer 2

So I manage to find a solution

openssl_encrypt($text, "DES-CBC", $this->_key,  OPENSSL_NO_PADDING, $this->_iv);

This mode,

OPENSSL_NO_PADDING

seems to produce the output I was expecting