Ticket #368 (closed defect: fixed)
[PATCH] Decryption fails with Crypt::CBC 2.17 and later
|Reported by:||rjl||Owned by:||rjl|
|Severity:||normal||Keywords:||Crypt::CBC decrypt decryption|
Newer versions of Crypt::CBC (2.17 and later) fail to decrypt the text they encrypt for some reason most likely related to the initialization vector changes introduced in 2.17. Ticket #280 addressed these changes in a partial form to ensure that compatibility with Mcrypt (at the PHP end of things) remained intact, but evidently further changes are needed in order to make the process-quarantine-sub.pl decrypt things properly before reporting takes place.
Some experimentation with options to the Crypt::CBC->new() method may be needed to determine the correct way to prepare that object for the decrypt() method. Until this ticket is closed, however, users should limit themselves to version 2.15 or earlier of Crypt::CBC.