Hi
I have narrowed down the problem now.
This function { des_ede3_cbc_encrypt(input,output1,...) } will encrypt
and update the encrypted output in the array output1.
While printing the array values ,the array value at the end of
encryption before returning back to the place where it is called and the
array value after this encrypt function call are the same.
The array value is updated to a file from where I read the encrypted
data and this is fed to
des_ede3_cbc_encrypt(, , , ...,DES_DECRYPT) function call.
While decrypting the array output1 is fetched and used as input for
decryption. While printing the array values before decryption, it is
same as the encrypted password array for all inputs except for the
number sequence "12345678". For this sequence alone, the encrypted
values and the input to decryption are different and hence the junk
password is printed as output.
I am not sure why for this sequence alone, the encrypted values are
corrupted before decryption.
Hope you can help me at this point of time.
Regards,
Swathika
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Nils Larsch via
RT
Sent: Friday, September 23, 2005 2:39 PM
To: Swathika Subramaniam (WT01 - Embedded Systems)
Cc: openssl-dev@openssl.org
Subject: Re: [openssl.org #1206] FTP USER Authentication
[EMAIL PROTECTED] via RT wrote:
> We use DES encryption algorithm.When the user try to add an user with
> the password 12345678 ,user couldn't login. So itried printing the
> DES decrypted password, it returns junk password. Since it is junk
> user couldn't login. Basically we maintain a file which will have the
> list of users added and their password, this is a junk user couldn't
> login
as I still don't know what you are doing (an example source code showing
the bug would be very helpful !) => it's still not really possible to
help you. Anyway this sounds more like a bug in your application than a
bug in the openssl code.
Cheers,
Nils
PS: you need to reply to [EMAIL PROTECTED] as otherwise the message
is not appended to the ticket.
Confidentiality Notice
The information contained in this electronic message and any attachments to
this message are intended
for the exclusive use of the addressee(s) and may contain confidential or
privileged information. If
you are not the intended recipient, please notify the sender at Wipro or [EMAIL
PROTECTED] immediately
and destroy all copies of this message and any attachments.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List openssl-dev@openssl.org
Automated List Manager [EMAIL PROTECTED]
