would have to be taxed as hypothetical statement, but not based on tested Facts, asI really wouldn't suggest to v1.5x releases for the latest release of PHP ...
I demonstrated already by working links. But it also might depend on Extensions used,
some of them possibly don't work anymore, or at least present Warnings, like in later
OC Versions as well. At least up to php v.7.2.x, but if it still functions in latest PHP v.7.3
cannot be judged on yet ..., for those, eager to always run the latest Things
---
PHP v.7.2.7 TestSite Default OC 1.5.6.5_rc: http://www.jti.li/shop/
PHP v.7.2.7 TestSite OC 1.5.6.5_rc Merkent Bootstrap Theme: http://www.bigmax.ch/shop/
---
shop\system\library\encryption.php (OC v.1.5.6.1 ? - 1.5.6.5_rc Replacement File !)
Code: Select all
<?php
final class Encryption {
private $cipher = 'aes-256-ctr';
private $digest = 'sha256';
private $key;
public function __construct($key) {
$this->key = $key;
}
public function encrypt($value) {
$key = openssl_digest($this->key, $this->digest, true);
$iv_length = openssl_cipher_iv_length($this->cipher);
$iv = openssl_random_pseudo_bytes($iv_length);
return base64_encode($iv . openssl_encrypt($value, $this->cipher, $key, OPENSSL_RAW_DATA, $iv));
}
public function decrypt($value) {
$key = openssl_digest($this->key, $this->digest, true);
$iv_length = openssl_cipher_iv_length($this->cipher);
$value = base64_decode($value);
$iv = substr($value, 0, $iv_length);
$value = substr($value, $iv_length);
return openssl_decrypt($value, $this->cipher, $key, OPENSSL_RAW_DATA, $iv);
}
}
?>
1-liner-file onto my Sites, but without any comments to it:
AddHandler application/x-httpd-php70to72 .php
to possibly be used instead of normally using one of those:
Code: Select all
AddHandler application/x-httpd-php70 .php
AddHandler application/x-httpd-php71 .php
AddHandler application/x-httpd-php72 .php
it could be possible, that it will select automatically, wich version
matches best ... Just to have it mentioned too !
Good Luck, keep the original file, just in case !
Ernie