[openssl-users] DES3 CFB1 mode

Marcus Vinicius do Nascimento m.vinicius at samsung.com
Tue Jun 16 19:19:11 UTC 2015


Hi there,

 

I've been trying to use DES_EDE3_CFB1 encryption in openssl version 1.0.1f
but I couldn't make it work correctly.

My understanding is that EVP_CipherUpdate is expecting the input data length
(inl) in bytes, not bits as expected.

 

I tried digging a little the GitHub repository but I'm not sure if it has
already been fixed in newer versions.

 

According to the link below, AES seems to be handling CFB1 as an exception
in crypto/evp/e_aes.c file. However I couldn't find similar exception for
DES.

 

https://github.com/openssl/openssl/search?utf8=%E2%9C%93
<https://github.com/openssl/openssl/search?utf8=%E2%9C%93&q=EVP_CIPH_FLAG_LE
NGTH_BITS> &q=EVP_CIPH_FLAG_LENGTH_BITS

 

Anyone here could ever encode data with bit length which is not a multiple
of 8?

 

Example from FIPS tests:

 

KEY1 = 04f16e92fd3b463e

KEY2 = 04f16e92fd3b463e

KEY3 = 04f16e92fd3b463e

IV = c7203aec8a805910

PLAINTEXT = 011

CIPHERTEXT = 110

 

Thanks very much,

 

Marcus

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20150616/b4071555/attachment.html>


More information about the openssl-users mailing list