On 07/13/2014 06:33 PM, Matt Caswell via RT wrote:
> I propose the following patch to deal with this ticket (for master, 1.0.2 and
> 1.0.1), i.e. disable XTS for the enc utility.
>
> Any objections?
>
> Matt
>
> diff --git a/apps/enc.c b/apps/enc.c
> index 928d16b..48f1f8b 100644
> --- a/apps/enc.c
> +++ b/apps/enc.c
> @@ -339,6 +339,12 @@ bad:
> goto end;
> }
>
> + if (cipher && (EVP_CIPHER_mode(cipher) == EVP_CIPH_XTS_MODE))
> + {
> + BIO_printf(bio_err, "XTS ciphers are not supported by the enc utility\n");
> + goto end;
> + }
> +
> if (md && (dgst=EVP_get_digestbyname(md)) == NULL)
> {
> BIO_printf(bio_err,"%s is an unsupported message digest type\n",md);
shouldn't the error text be "ciphers in XTS mode are not supported by
the enc utility"?
--dkg
signature.asc
Description: PGP signature
