Re: [openssl-dev] openssl enc changed behaviour between 1.1.0 and earlear
On Fri, Nov 04, 2016 at 09:59:33PM +0100, Sebastian Andrzej Siewior wrote: > On 2016-11-03 22:12:44 [+0100], Richard Levitte wrote: > > > > That would be quite a job. The correctness of the key can't be > > discovered before the last encrypted block, where the decrypted > > padding will either be correct (because it was the right key) or not > > (because it was the wrong key). Take into account a pipe with a 10MB > > file, I'm sure you see where that takes us. > > > > The solution in that bug report seems sane, even though unfortunate. > okay. And since the encrypted file has no header there is nothing we > could hide. And if we add one now then it won't work with older openssl. > > So I will try to put this in the release notes for the Debian package. > Do you have an idea where this would fit best in the Wiki? A new page > with one entry does not make sense and it does not look like it belongs > to Would it be useful to document this in the manpage? Are there other places we should document it? Kurt -- openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev
Re: [openssl-dev] openssl enc changed behaviour between 1.1.0 and earlear
In message <20161104205933.gw7pyvclnmdkv...@breakpoint.cc> on Fri, 4 Nov 2016 21:59:33 +0100, Sebastian Andrzej Siewior said: openssl-dev> On 2016-11-03 22:12:44 [+0100], Richard Levitte wrote: openssl-dev> > openssl-dev> > That would be quite a job. The correctness of the key can't be openssl-dev> > discovered before the last encrypted block, where the decrypted openssl-dev> > padding will either be correct (because it was the right key) or not openssl-dev> > (because it was the wrong key). Take into account a pipe with a 10MB openssl-dev> > file, I'm sure you see where that takes us. openssl-dev> > openssl-dev> > The solution in that bug report seems sane, even though unfortunate. openssl-dev> okay. And since the encrypted file has no header there is nothing we openssl-dev> could hide. And if we add one now then it won't work with older openssl. openssl-dev> openssl-dev> So I will try to put this in the release notes for the Debian package. openssl-dev> Do you have an idea where this would fit best in the Wiki? A new page openssl-dev> with one entry does not make sense and it does not look like it belongs openssl-dev> to openssl-dev>https://wiki.openssl.org/index.php/1.1_API_Changes Actually, I would think that a parallell page for the openssl app (program?) would be the perfect place. It shouldn't matter if it starts with just one item, it has to start somewhere (if you look at the history of 1.1_API_Changes, you'll notice that it started small as well). Other things I can think of putting on such a page is the that the 1.1.0 'openssl' app takes all options before all non-option arguments, there's no mixing them like there was in versions before 1.1.0. I.e., this doesn't work any more: openssl ciphers AES -V while this does: openssl ciphers -V AES Cheers, Richard -- Richard Levitte levi...@openssl.org OpenSSL Project http://www.openssl.org/~levitte/ -- openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev
Re: [openssl-dev] openssl enc changed behaviour between 1.1.0 and earlear
On 2016-11-03 22:12:44 [+0100], Richard Levitte wrote: > > That would be quite a job. The correctness of the key can't be > discovered before the last encrypted block, where the decrypted > padding will either be correct (because it was the right key) or not > (because it was the wrong key). Take into account a pipe with a 10MB > file, I'm sure you see where that takes us. > > The solution in that bug report seems sane, even though unfortunate. okay. And since the encrypted file has no header there is nothing we could hide. And if we add one now then it won't work with older openssl. So I will try to put this in the release notes for the Debian package. Do you have an idea where this would fit best in the Wiki? A new page with one entry does not make sense and it does not look like it belongs to https://wiki.openssl.org/index.php/1.1_API_Changes Sebastian -- openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev
Re: [openssl-dev] openssl enc changed behaviour between 1.1.0 and earlear
In message <20161103202349.ub4aq27wzv4wh...@breakpoint.cc> on Thu, 3 Nov 2016
21:23:50 +0100, Sebastian Andrzej Siewior said:
openssl-dev> Commit f8547f62c21 ("Use SHA256 not MD5 as default digest")
changed the
openssl-dev> default hash from md5 to sha256.
openssl-dev> This leads to bug reports like this [0] where people can't access
their
openssl-dev> old encrypted files.
openssl-dev> Would it work for if MD5 is tried if the now default options fails
the
openssl-dev> encryption? I see some output on the console before openssl's error
openssl-dev> shows up so it does not look like a one liner.
openssl-dev>
openssl-dev> [0] bugs.debian.org/843064
That would be quite a job. The correctness of the key can't be
discovered before the last encrypted block, where the decrypted
padding will either be correct (because it was the right key) or not
(because it was the wrong key). Take into account a pipe with a 10MB
file, I'm sure you see where that takes us.
The solution in that bug report seems sane, even though unfortunate.
--
Richard Levitte levi...@openssl.org
OpenSSL Project http://www.openssl.org/~levitte/
--
openssl-dev mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev
Re: [openssl-dev] openssl enc changed behaviour between 1.1.0 and earlear
On 2016-11-03 20:25:03 [+], Salz, Rich wrote: > You can decrypt old files by adding -md5 flag. Yes, I know. That is what suggested in Debian bug report. But if I close this bug report with this information someone will run into it again. The problem is that scripts will fail without a proper explanation. So I ask here if it would be okay add a fallback. If not, the worstcase scenario would be to add this hint to the error message. But if it can work without it, it would be great. Sebastian -- openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev
Re: [openssl-dev] openssl enc changed behaviour between 1.1.0 and earlear
You can decrypt old files by adding -md5 flag. -- openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev
