Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Bad Magic Number error when trying to Decrypt file in OpenSSL

Tags:

openssl

I'm using Latest version of OpenSSL for Windows, I'm trying to decrypt a message U2FsdGVkX18ztmw81FTK/c+jAf8xtcZdIpesuV2PLDM= encrypted using DES (password is: pass) for which I'm using the following command

des -d -in Encrypted.txt -out normal.txt

for which I'm getting bad magic number error after entering the password: pass

Encrypted.txt contains the encrypted message U2FsdGVkX18ztmw81FTK/c+jAf8xtcZdIpesuV2PLDM= and normal.txt is empty

I searched all the posts in stack overflow and found no article which could solve my problem, Please help get this issue solved.

like image 821
NaN Avatar asked Oct 03 '13 14:10

NaN

2 Answers

Openssl can base64 decode and decrypt in the same step with the -a or -base64 switch. But there is a bug in openssl's base64 processing, it expects a newline at the end of the base64 encoded data.

The easiest solution is to base64 --decode before decrypting.

For example, consider this base64 encrypted output:

# echo foo | openssl enc -aes256 -md sha512 -pass pass:pass -e -base64

U2FsdGVkX182tdJx07S5YoPzi9XhyONdR8Xbc6V1jiw=

If this is sent with a newline, it works fine. But if not, it fails.

# echo 'U2FsdGVkX182tdJx07S5YoPzi9XhyONdR8Xbc6V1jiw=' | openssl enc -aes256 -md sha512 -pass pass:pass -d -base64

foo

# echo -n 'U2FsdGVkX182tdJx07S5YoPzi9XhyONdR8Xbc6V1jiw=' | openssl enc -aes256 -md sha512 -pass pass:pass -d -base64

error reading input file

You can insert the newline with cat, or decode the base64 with another utility first:

# echo -n 'U2FsdGVkX182tdJx07S5YoPzi9XhyONdR8Xbc6V1jiw=' | cat - <(echo "") | openssl enc -aes256 -md sha512 -pass pass:pass -d -base64

foo

# echo -n 'U2FsdGVkX182tdJx07S5YoPzi9XhyONdR8Xbc6V1jiw=' | base64 --decode | openssl enc -aes256 -md sha512 -pass pass:pass -d

foo
like image 121
Jonah Braun Avatar answered Sep 16 '22 17:09

Jonah Braun

The input to the des command shouldn't be in base64. Instead, you need to first decode the base64 output and then provide it to the OpenSSL des command. For instance, when I run the following on Linux:

echo U2FsdGVkX18ztmw81FTK/c+jAf8xtcZdIpesuV2PLDM= | openssl enc -base64 -d | openssl des -d

I get the correct output:

hello world

Since Windows is not great with pipes, you have to redirect the output to intermediate files and then run individual openssl commands.

like image 36
Karthik Avatar answered Sep 19 '22 17:09

Karthik
Sign in to Comment

Related questions

How to give a multiline certificate name (CN) for a certificate generated using OpenSSL
OpenSSL: can't build in VC++ 2010
Python pip install requires server_hostname
OpenSSL v1.1.1 Ubuntu 20 TLSv1 - no protocols available
How to create own self-signed root certificate and intermediate CA to be imported in Java keystore?
install perl module Net::SSLeay through cpan
(Installing Python 3.6.1) SSLError: SSL: TLSV1_ALERT_UNKNOWN_CA tlsv1 alert unknown ca
IOS Mutual Authentication
Robot Framework test scripts fail with SSLError
OpenSSL Error messages: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed
How do I create 256 bit self-signed certificate key with OpenSSL?
How to update OpenSSL on mac?
Android HttpsUrlConnection javax.net.ssl.SSLException Connection closed by peer handshake error when using local truststore
Verifying RSA Signature iOS
Interoperability between RSACryptoServiceProvider and openSSL
OpenSSL version mismatch. Built against 1000105f, you have 10001080
Error installing Ruby 2.3.8 in OSX 10.15.2 Catalina using RVM; OpenSSL not found
Digitally signing a PDF, using PHP, Zend, and openssl

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!