Re: RE : Old mail currently unaccessible to me...

Wed, 28 May 2003 20:25:58 -0700 

In message <[EMAIL PROTECTED]> on Wed, 28 May 2003 08:22:57 +0200, "p b" <[EMAIL 
PROTECTED]> said:

phbgt> openssl-0.9.7-stable-SNAP-20030522 and openssl-SNAP-20030522 can't build
phbgt> under WindowsXPsp1 with VisualStudio2003 because there's un uncompatibility
phbgt> signed/unsigned in crypto/bn/bn_mul.c
phbgt> 
phbgt> line 709 for SNAP, and line 379 for stable-SNAP
phbgt> It's still true with the latest snap (20030527)

OK, I'll commit a fix in a moment.  The funny part, at least in SNAP,
is that the exact same condition exists in bn_mul_recursive() as well,
but with a cast that avoids the problem.

phbgt> Second :
phbgt> 
phbgt> I want to encyrpt and decrypt a file, using aes-256-cbc.
phbgt> 
phbgt> First I use 
phbgt> type = EVP_get_cipherbyname("aes-256-cbc") to set the cipher type.
phbgt> 
phbgt> Then I use EVP_CipherInit(ctx,type,key,iv,enc) to set the key and the iv.
phbgt> 
phbgt> My problem is that I always succed in decrypt the file, even if the iv has
phbgt> not the good value.

Hmm, do you have possibility to check what the IV becomes after you
initialise?  And possibly what low-level function actually does the
encryption and decryption?  If not, make some example code that we can
test with and send it to us.

phbgt> In the man, when you write EVP_CipherInit " always use the
phbgt> default cipher implementation", is that mean that even using
phbgt> EVP_get_cipherbyname("aes-256-cbc"), the cipher is not set to 
phbgt> "aes-256-cbc"?

If that's the meaning in practice, you've uncovered a bug.

-- 
Richard Levitte   \ Tunnlandsv�gen 3  \ [EMAIL PROTECTED]
[EMAIL PROTECTED]  \ S-168 36  BROMMA  \ T: +46-8-26 52 47
                    \      SWEDEN       \ or +46-708-26 53 44
Procurator Odiosus Ex Infernis                -- [EMAIL PROTECTED]
Member of the OpenSSL development team: http://www.openssl.org/

Unsolicited commercial email is subject to an archival fee of $400.
See <http://www.stacken.kth.se/~levitte/mail/> for more info.
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
Development Mailing List                       [EMAIL PROTECTED]
Automated List Manager                           [EMAIL PROTECTED]

Reply via email to