[EMAIL PROTECTED] - Sat Sep 27 20:42:33 2003]: > I have an application using the OpenSSL S/MIME interface. When I > generate an encryptred message using DES, the DES key generated > does not have odd parity. The key is generated in > pk7_doit.c:PKCS7_dataInit by calling RAND_bytes(). > > In testing interoperability with the NIST S/MIME test center, the > message is rejected. I know that odd parity is not a DES > requirement, but DES keys should have odd parity. > > Dr Stephen N. Henson suggested the following solution and that this > problem be reported as a bug to be fixed in an upcoming release: > > Probably the best way is to add a flag to EVP_CIPHER which indicates > that the > key needs odd parity and then check the flag when a random key is > generated > and fix it up appropriately. > >
I've checked in a fix to OpenSSL 0.9.8-dev let me know of any problems. Steve. ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
