--_845454fc-0e88-453f-8ffc-5500debbc238_
Content-Type: text/plain; charset="gb2312"
Content-Transfer-Encoding: 8bit

Hi developers,

I find a bug of aes-128-cfb1: If key is "2b7e151628aed2a6abf7158809cf4f3c" , iv is "000102030405060708090a0b0c0d0e0f", plain-text is "a" or "abc", aes-128-cfb1 can not encrypt/decrypt correctly. The following is the log file. We can see that decryption result is different from original plain-text.

root@sshia1# uname -allHP-UX sshia1 B.11.23 U ia64 3432702471 unlimited-user licenseroot@sshia1# openssl versionOpenSSL 0.9.7m 23 Feb 2007root@sshia1# echo "a\c" > filearoot@sshia1# cat fileaaroot@sshia1# od -x filea0000000 61000000001root@sshia1# openssl enc -aes-128-cfb1 -in filea -out filea.enc.97m \> -K 2b7e151628aed2a6abf7158809cf4f3c -iv 000102030405060708090a0b0c0d0e0froot@sshia1# openssl enc -aes-128-cfb1 -d -in filea.enc.97m -out filea.dec.97m \> -K 2b7e151628aed2a6abf7158809cf4f3c -iv 000102030405060708090a0b0c0d0e0froot@sshia1# cat filea.dec.97mroot@sshia1# od -x filea.dec.97m0000000 00000001root@sshia1#root@sshia1# echo "abc\c" > fileabcroot@sshia1# cat fileabcabcroot@sshia1# od -x fileabc0000000 6162 63000000003root@sshia1# openssl enc -aes-128-cfb1 -in fileabc -out fileabc.enc.97m \> -K 2b7e151628aed2a6abf7158809cf4f3c -iv 000102030405060708090a0b0c0d0e0froot@sshia1# openssl enc -aes-128-cfb1 -d -in fileabc.enc.97m -out fileabc.dec.97m \> -K 2b
7e151628aed2a6abf7158809cf4f3c -iv 000102030405060708090a0b0c0d0e0froot@sshia1# cat fileabc.dec.97m`onroot@sshia1# od -x fileabc.dec.97m0000000 606f 6e000000003root@sshia1#

The bug at least exists in openssl-0.9.7m, openssl-0.9.7l and openssl-0.9.8b.I do the test on following platformpenssl-0.9.7m + HP-UX 11.23 + Itanium CPUopenssl-0.9.7m + HP-UX 11.23 + PA-RISC CPUopenssl-0.9.7l + HP-UX 11.11 + PA-RISC CPUopenssl-0.9.8b + Redhat Enterprise Linux 5 + x86 CPU

Would you please study this bug?

Best RegardsYiqun Ren

__________________________________________________ _______________
Windows Live Custom Domain,您的免费电子邮局。
https://domains.live.com/default.aspx
--_845454fc-0e88-453f-8ffc-5500debbc238_
Content-Type: text/html; charset="gb2312"
Content-Transfer-Encoding: 8bit





Hi developers,

 

I find a bug of aes-128-cfb1: If key is "2b7e151628aed2a6abf7158809cf4f3c" , iv is "000102030405060708090a0b0c0d0e0f", plain-text is "a" or "abc", aes-128-cfb1 can not encrypt/decrypt correctly.
The following is the log file. We can see that decryption result is different from original plain-text.


 

root@sshia1# uname -all
HP-UX sshia1 B.11.23 U ia64 3432702471 unlimited-user license
root@sshia1# openssl version
OpenSSL 0.9.7m 23 Feb 2007
root@sshia1# echo "a\c" > filea
root@sshia1# cat filea
aroot@sshia1# od -x filea
0000000     6100
0000001
root@sshia1# openssl enc -aes-128-cfb1 -in filea -out filea.enc.97m \
> -K 2b7e151628aed2a6abf7158809cf4f3c -iv 000102030405060708090a0b0c0d0e0f
root@sshia1# openssl enc -aes-128-cfb1 -d -in filea.enc.97m -out filea.dec.97m \
> -K 2b7e151628aed2a6abf7158809cf4f3c -iv 000102030405060708090a0b0c0d0e0f
root@sshia1# cat filea.dec.97m
root@sshia1# od -x filea.dec.97m
0000000        0
0000001
root@sshia1#
root@sshia1# echo "abc\c" > fileabc
root@sshia1# cat fileabc
abcroot@sshia1 0># od -x fileabc
0000000     6162    6300
0000003
root@sshia1# openssl enc -aes-128-cfb1 -in fileabc -out fileabc.enc.97m \
> -K 2b7e151628aed2a6abf7158809cf4f3c -iv 000102030405060708090a0b0c0d0e0f
root@sshia1# openssl enc -aes-128-cfb1 -d -in fileabc.enc.97m -out fileabc.dec.97m \
> -K 2b7e151628aed2a6abf7158809cf4f3c -iv 000102030405060708090a0b0c0d0e0f
root@sshia1# cat fileabc.dec.97m
`onroot@sshia1# od -x fileabc.dec.97m
0000000     606f    6e00
0000003
root@sshi
a1
#

 

The bug at least exists in openssl-0.9.7m, openssl-0.9.7l and openssl-0.9.8b.
I do the test on following platform:
openssl-0.9.7m + HP-UX 11.23 + Itanium CPU
openssl-0.9.7m + HP-UX 11.23 + PA-RISC CPU
openssl-0.9.7l + HP-UX 11.11 + PA-RISC CPU
openssl-0.9.8b + Redhat Enterprise Linux 5 + x86 CPU


 

Would you please study this bug?

 

Best Regards
Yiqun Ren


 


使用新一代 Windows Live Messenger 轻松交流和共享! 立即体验!

--_845454fc-0e88-453f-8ffc-5500debbc238_--
__________________________________________________ ____________________
OpenSSL Project http://www.openssl.org
Development Mailing List openssl-dev@openssl.org
Automated List Manager majordomo@openssl.org