In order to resolve this problem, we will need to enable blowfish encryption so you can convert your encrypted data to a new method. More information on converting below.

Blowfish is not enabled on your system

Your system's version of OpenSSL may not configured to provide the Blowfish algorithm. You may need to follow these steps to enable the legacy provider in OpenSSL.

Identify the location of your OpenSSL configuration
```
php -i | grep "Openssl default config"
```
copyToClipboardButton('find-openssl') ?>
Edit the OpenSSL config (most likely /usr/lib/ssl/openssl.cnf) and find the Providers configuration. Under Ubuntu, you need to find a [providers_sect] section, and add the line:
```
legacy = legacy_sect
```
Find the section for the default provider and make sure to uncomment activate = 1 in that section
```
[provider_sect]
default = default_sect
legacy = legacy_sect

[default_sect]
activate = 1
```
Add a new section somewhere below:
```
[legacy_sect]
activate = 1
```
Restart Apache
Refresh this page or move on to the conversion step below.

Here is a complete example of the changes you will need to make to your OpenSSL configuration file.

# /usr/lib/ssl/openssl.cnf or /etc/ssl/openssl.cnf

[openssl_init]
providers = provider_sect

[provider_sect]
default = default_sect
legacy = legacy_sect

[default_sect]
activate = 1

[legacy_sect]
activate = 1

2. Convert existing data to a new encryption method

You can use VuFind's CLI tool switch_db_hash to convert all passwords from blowfish to another encryption method. Below, you can find a pre-filled example command that will convert your encryption to escapeHtml($newAlgorithm)?> (the new recommended VuFind encryption method) with a random key. You can use openssl_get_cipher_methods() to see all encryption methods available on your system.

Critical Issue: Replace blowfish encryption

1. Enable blowfish

2. Convert existing data to a new encryption method