Is this an error in documentation? According to Applied Crypto,
Schneier, p 194, the IV in CBC mode ciphers should be different for
each message. Looking at the source for BF_cbc_encrypt(), it looks
like iv can be initialized with any 64 bytes.
from the blowfish(3) man page
(http://www.openssl.org/docs/crypto/blowfish.html)
BF_cbc_encrypt() is the Cipher Block Chaining function for
Blowfish. It encrypts or decrypts the 64 bits chunks of in using
the key schedule, putting the result in out. enc decides if
encryption (BF_ENCRYPT) or decryption (BF_DECRYPT) shall be
performed. ivec must point at an 8 byte long initialisation
vector, which must be initially filled with zeros.
Also, it looks like this code will fail unless the processor's word
size is 32 bits. Does openssl work on an Alpha?
--Noel
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]