this post was submitted on 16 Jul 2023
1 points (100.0% liked)

openssl

1 readers
0 users here now

openssl.

founded 1 year ago
MODERATORS
[email protected]
1
Two different versions of OpenSSL produce two different key/IV pairs for the same given password. One decrypts TripleDES successfully, the other doesn't. (zerobytes.monster)
submitted 1 year ago by [email protected] to c/[email protected]
0 comments fedilink hide all child comments
 
This is an automated archive.

The original was posted on /r/openssl by /u/FixYourOwnStates on 2023-06-02 16:57:20+00:00.

I am using openssl with des-ede3-cbc and a given password to decrypt some files. The command used is:

openssl.exe enc -d -des-ede3-cbc -pass pass:<password> -salt -in infile -out outfile -P

Using openssl-1.1.1t it generates one Key/IV pair, and using openssl-1.0.2u it generates totally different Key/IV pair even though I am using the exact same command. The decryption only works with 1.0.2u and fails with the newer version.

What is the reason behind this?

no comments (yet)
sorted by: hot top controversial new old
there doesn't seem to be anything here