|
Hi
I had send the same problem to the RT but the
message in the mailing list did not
contain any text. I
am not sure why that happened. Hence I am resending the
mail
here. More details
are available at the RT with
ID no. #624, where sample files
are
available.
We detected a peculiar problem with SMIME
encryption and decryption. We had
encrypted a messsage of size 6434 and the out file was of size 9383. But when we decrypted this file we were getting some junk at the end of the decrypted file, as a result of which verification of a checksum (out-of-band from openssl) failed. We did some experiments with the encrypted file and
observed the following:
- different verisons of openssl show similar
results, the latest we tried
was 0.9.7a - changing the encrypted file to DOS format
(LF --> CRLF) works
- changing the size of the input file (by
adding or deleting just a few
characters) changed the encrypted out file size and then the decryption works, as long as the change is significant enough to change the output size away from 9383 bytes. (adding just 1-2 characters may not do this; try adding 7 or 8 characters) - 9383 bytes of encrypted text seems to be
the magic number for failure
(we've no clue why!) - the problem seems to be in the Base64
decoding of the encrypted file of
size 9383, perhaps somewhere in BIO_f_base64(), *but this is just a guess on our part*. We're not sure how to go about fixing this; it is
certainly causing us some
amount of trouble! Please take a look at this and let us know if it can be fixed. If you'd like us to run any more tests we'd be glad to do so. Regards, George
|
