On 2016-11-03 21:12:10PM +0100, Sebastian Andrzej Siewior wrote: > On 2016-11-03 15:59:25 [+0100], Marek Lukaszuk wrote: > > passphrase I'm getting below error: > > > > > cat file_encrypted.dat | openssl enc -d -aes-256-cbc > > enter aes-256-cbc decryption password: > > bad decrypt > > 139814539760704:error:06065064:digital envelope > > routines:EVP_DecryptFinal_ex:bad decrypt:crypto/evp/evp_enc.c:529: > > bah. They changed the default digest from md5 to sha256 to create the > key. If you add '-md md5' to your 1.1. openssl then it will work. The > other way around you need '-md sha256' to keep 1.0 happy.
Thanks, it works, I feel like an idiot for not finding this. > Let me see what upstream says… It is a bit of a surprise, normally I would argue for a bit more clear error message but in this case I'm not sure if that would be ok. Either way, thank you for a very quick answer. Marek
