How I can save encrypted data into mysql table?

Question

How I can save encrypted data into mysql table?

mia0x75 Nov '13

Created Nov '13	Last Reply Nov '13	Replies 2	Views 2541	Votes 1

mia0x75 29.1k

Nov '13

I got the following error when I try to save encrypted data into mysql table, the column type is varchar(200)

$crypto = new Phalcon\Crypt();
$crypto->setKey($securekey);
$member->password = $crypto->encrypt($password);
$member->update();

Uncaught exception 'PDOException' with message 'SQLSTATE[HY000]: General error: 1366 Incorrect string value: '\x87 \xD7\xD7\xD3\xAC...' for column ...

bin2hex can convert the encrypted data to hex string and save into varchar column also.

1

Maxim Borzov
6.9k

Accepted
answer

Nov '13

You may need to change your varchar(200) to a varbinary(200) (or larger).

mia0x75 · Answer 1 · 2013-11-25T20:39:56-07:00

OK, it works after I changed the column to varbinary(200).

3 more questions:

$password is 6-16 characters, so do I need varbinary(200)? What is the min length for it?
I need to use trim after decrypted, does it intend?
I also saved hash value for $password, what is the max length for hash value?

$secure = new Phalcon\Security();
$secure->setWorkFactor(12);
$secure->hash($password);

Any help will be appreciated.

Maxim Borzov · Answer 2 · 2013-11-26T02:01:46-07:00

Phalcon\Security() use BCrypt who always generates 60 character hashes. So, you can change VARBINARY(200) to VARBINARY(60), CHAR(60) or BINARY(60). I offered 200 with a reserve, just in case :)
No.
Total length for BCrypt is 59 or 60 bytes respectively.

mia0x75 · Answer 3 · 2013-11-26T18:51:55-07:00

mia0x75
29.1k

Nov '13

Thanks Max :)