> From: owner-openssl-us...@openssl.org On Behalf Of Prashanth kumar N
> Sent: Thursday, 29 March, 2012 10:02
> Bit confusing... are you saying that i need to add NULL termination
> at the end of encrypted data? Isn't this wrong? I assume i shouldn't be
> NULL terminating the
On Thu, Mar 29, 2012, Prashanth kumar N wrote:
> Thanks Marek. If i select CBC mode encryption and i have data which is
> not aligned to block, i assume padding will be taken by the API's itself.
>
Only if you use EVP. For low level APIs you have to manually add and remove
padding.
Steve.
--
Dr
Thanks Marek. If i select CBC mode encryption and i have data which is
not aligned to block, i assume padding will be taken by the API's itself.
-Prashanth
On Thu, Mar 29, 2012 at 7:50 PM, wrote:
> Hello,
>
> If your data to encrypt is not exactly 16 bytes (AES block length), you
> should add b
Hello,
If your data to encrypt is not exactly 16 bytes (AES block length), you
should add block
padding before encryption and remove padding after decryption.
In your case you have string "virident" (8bytes), you should add 16-8=8
bytes
of padding before encryption (fill last 8 bytes with value
Bit confusing... are you saying that i need to add NULL termination at the
end of encrypted data? Isn't this wrong? I assume i shouldn't be NULL
terminating the input string which needs to be encrypted.
On Thu, Mar 29, 2012 at 7:10 PM, Ken Goldman wrote:
> On 3/29/2012 1:40 AM, Prashanth kumar
Stephen,
Does it mean we can't use AES without IV ?
As per XTS support in Openssl, i find the following function but don't see
any implementation for the same
AES_xts_encrypt(). I found the below link form which what i understand is
new file called e_aes_xts.c
should be present... am i missing so
On 3/29/2012 1:40 AM, Prashanth kumar N wrote:
Thanks Ken for pointing out the mistake... after changing to
AES_Decrypt(), it worked but i still see issue when i print the
decrypted output as it has extra non-ascii characters in it.
That's what happens in C if you try to printf an array that's
On Thu, Mar 29, 2012, Prashanth kumar N wrote:
> Thanks Marek. I will try the attached code in the attached files.
> In many of the examples i have come across, i see IV is always being. Is it
> not possible to use this API by setting IV to NULL? (As i understand for
> CBC IV is a must) . In AES_E
Hi,
On further investigation, we have found that the addition of the following
piece of code enables the CRL checking.
X509_STORE *store = getStore();
// Enable CRL checking
X509_VERIFY_PARAM *param = X509_VERIFY_PARAM_new();
X509_VERIFY_PARAM_set_flags(param, X509_V_FLAG_CRL_CHECK);
X509_S