Re: How to do encryption using AES in Openssl

[Ken Goldman]

On 3/29/2012 1:40 AM, Prashanth kumar N wrote:
Thanks Ken for pointing out the mistake...  after changing to
AES_Decrypt(), it worked but i still see issue when i print the
decrypted output as it has extra non-ascii characters in it.

That's what happens in C if you try to printf an array that's not NUL 
terminated.  The printf just keeps going, right past the end of the 
buffer, until it either hits a \0 or segfaults.

You encrypted 16 bytes, not nul terminated, decrypted to the same 16 
bytes, then pretended that it was nul terminated and tried to printf.

Below is the input
  unsigned char text[]="test12345678abc2";
After decryption, i get the following string: Decrypted o/p:
test12345678abc2Ȳu�z�B�����A��S��
Few questions...

1. If we use AES, will decrypted files have same number of bytes as
encrypted file? (I assume it should be same)

It depends on the mode and padding scheme.  Some (CTR, OFB) don't pad, 
some (CFC) do pad.

If you're just playing, fine.  But if this is a real product you're 
designing, you shouldn't be asking this question.  It's time to hire a 
crypto expert.  Otherwise, your product will be insecure.







______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           majord...@openssl.org