[Pkg-openssl-devel] Bug#843064: Bug#843064: openssl: incompatibility for enc command between openssl 1.1.0b-2 and previous 1.0.x versions
Marek Lukaszuk
m.lukaszuk at gmail.com
Thu Nov 3 21:15:50 UTC 2016
On 2016-11-03 21:12:10PM +0100, Sebastian Andrzej Siewior wrote:
> On 2016-11-03 15:59:25 [+0100], Marek Lukaszuk wrote:
> > passphrase I'm getting below error:
> >
> > > cat file_encrypted.dat | openssl enc -d -aes-256-cbc
> > enter aes-256-cbc decryption password:
> > bad decrypt
> > 139814539760704:error:06065064:digital envelope
> > routines:EVP_DecryptFinal_ex:bad decrypt:crypto/evp/evp_enc.c:529:
>
> bah. They changed the default digest from md5 to sha256 to create the
> key. If you add '-md md5' to your 1.1. openssl then it will work. The
> other way around you need '-md sha256' to keep 1.0 happy.
Thanks, it works, I feel like an idiot for not finding this.
> Let me see what upstream says…
It is a bit of a surprise, normally I would argue for a bit more clear error
message but in this case I'm not sure if that would be ok.
Either way, thank you for a very quick answer.
Marek
More information about the Pkg-openssl-devel
mailing list