Submit a Pull Request Report a Bug

    sodium_crypto_secretbox_open

    (PHP 7 >= 7.2.0, PHP 8)

    sodium_crypto_secretbox_openAuthenticated shared-key decryption

    Description

    sodium_crypto_secretbox_open(string $ciphertext, string $nonce, string $key): string|false

    Decrypt an encrypted message with a symmetric (shared) key.

    Parameters

    ciphertext

    Must be in the format provided by sodium_crypto_secretbox() (ciphertext and tag, concatenated).

    nonce

    A number that must be only used once, per message. 24 bytes long. This is a large enough bound to generate randomly (i.e. random_bytes()).

    key

    Encryption key (256-bit).

    Return Values

    add a note add a note

    User Contributed Notes 1 note

    up
    5
    khalyomede at gmail dot com
    5 years ago
    This method will return a string, or false if the data failed to be decrypted.

    $key = 'secret';
    $data = 'binarydata';
    $nonce = random_bytes(SODIUM_CRYPT_SECRETBOX_NONCEBYTES);

    $decrypted = sodium_crypto_secretbox_open($data, $nonce, $key);

    if ($decrypted === false) {
      throw new Exception('failed to decrypt data');
    }
    add a note add a note
    To Top