Bug 1520084 - Incompatibility with previous version of openssl -- decrypt impossible.
Summary: Incompatibility with previous version of openssl -- decrypt impossible.
Keywords:
Status: CLOSED NOTABUG
Alias: None
Product: Fedora
Classification: Fedora
Component: openssl
Version: 27
Hardware: x86_64
OS: Linux
unspecified
high
Target Milestone: ---
Assignee: Tomas Mraz
QA Contact: Fedora Extras Quality Assurance
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2017-12-02 18:51 UTC by guilde.nt
Modified: 2017-12-04 08:56 UTC (History)
2 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed: 2017-12-04 08:56:25 UTC
Type: Bug
Embargoed:

Attachments (Terms of Use)

Description guilde.nt 2017-12-02 18:51:13 UTC 
Description of problem:

In September 2017, using openssl-1.0.2j-3.fc25.x86_64, I encrypted a file ;
 in November 2017, using openssl-1.1.0g-1.fc27.x86_64, decrypting, I get :

  bad decrypt
  140138754258752:error:06065064:digital envelope 
  routines:EVP_DecryptFinal_ex:bad decrypt:crypto/evp/evp_enc.c:569:

The file decrypts correctly with openssl-1.0.2j-1.fc24.i686.

Version-Release number of selected component (if applicable):

  openssl-1.1.0g-1.fc27.x86_64

How reproducible:

  At each attempt to decrypt.

Steps to Reproduce:

1. With openssl-1.0.2j-3.fc25.x86_64 :

   $ openssl bf -a <clear >crypted

2. With openssl-1.1.0g-1.fc27.x86_64 :

   $ openssl bf -d -a <crypted >clear

Actual results:

bad decrypt
140135393576768:error:06065064:digital envelope routines:EVP_DecryptFinal_ex:bad decrypt:crypto/evp/evp_enc.c:569:

Expected results:

  Uneventful decryption.

Additional info:

  With openssl-1.1.0g-1.fc27.x86_64, encrypted files are larger than with
openssl-1.0.2j-3.fc25.x86_64.
Comment 1 Tomas Mraz 2017-12-04 08:56:25 UTC 
Just add -md md5 to the openssl 1.1.0 command line. See the HISTORY section of the enc(1) manual page.
Note You need to log in before you can comment on or make changes to this bug.