[openssl-dev] [openssl.org #4697] Bug in 1.1.0 (lost compatibility with previous releases)
Stephen Henson via RT
rt at openssl.org
Wed Oct 5 11:24:48 UTC 2016
On Wed Oct 05 07:05:06 2016, sgbrazhnikov at gmail.com wrote:
> Hi, guys.
>
> Just figured out that files encrypted with OpenSSL 1.1.0-stable can not be
> decrypted with previous releases and vice versa.
> Tested aes256, cast5-cfb, camellia128 on 1.1.0-stable, 1.0.2-stable and
> 0.9.8(cast5-cfb only)
>
> All built without errors, passed all tests.
> Configuration VC-WIN32, os Windows 8.1 Pro x64, compiler vs2015.
>
In case you're referring to files encrypted using the "enc" utility this is
because the default digest used for key derivation was changed from MD5 to
SHA256 in OpenSSL 1.1.0.
You can change this using the -md option. So supplying "-md md5" should retain
compatibility.
Steve.
--
Dr Stephen N. Henson. OpenSSL project core developer.
Commercial tech support now available see: http://www.openssl.org
--
Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4697
Please log in as guest with password guest if prompted
More information about the openssl-dev
mailing list