On some newer systems blowfish is not supported anymore

[immerda]

In particular Centos 9 does not support this option.

This causes some very hard to debug issues, since openssl_encrypt just returns false and empty data is stored in the session. This causes for instance the login to fail, as reported by others in https://www.mail-archive.com/imp@lists.horde.org/msg11031.html.

[mrubinsk]

Openssl 3 moves older ciphers to the "Legacy" provider. Unfortunately there doesn't seem to be a way to have PHP load other providers in code. I believe you can utilize a combination of OPENSSL_CONF environment variable pointing to a custom openssl config file that enables the legacy provider (note I have not tested this).

That being said, we should still check for the presence of this cipher since having the extension no longer means you also have the cipher.

[mrubinsk]

Fixing in a slightly different way. Since we support both bf-cbc as well as bf-ecb and the supported() method is static, we need to check for both.

[pannal]

Hey, I still seem to have this issue. I've just upgraded to Ubuntu Server LTS 22.04 from 20.04 and can't use IMP in Horde Webmail Edition anymore. The logs state:

IMP is marked as authenticated, but no credentials can be found in the session.

I've confirmed that I'm using this version of the file affected. Any ideas? Thank you!