I have an application using the OpenSSL S/MIME interface. When
I generate an encryptred message using DES, the DES key generated does not have
odd parity. The key is generated in pk7_doit.c:PKCS7_dataInit by
calling RAND_bytes().
In testing interoperability with the NIST S/MIME test center,
the message is rejected. I know that odd parity is not a DES requirement, but
DES keys should have odd parity.
What is the best way to fix this problem? Can some code be
added to the next OpenSSL release to do this?
|
- Re: PKCS7 Des key parity Robin Ehrlich
- Re: PKCS7 Des key parity Dr. Stephen Henson