diff options
author | Dr. Stephen Henson <steve@openssl.org> | 2004-03-28 17:38:00 +0000 |
---|---|---|
committer | Dr. Stephen Henson <steve@openssl.org> | 2004-03-28 17:38:00 +0000 |
commit | 216659eb87485402a8e861a6de77233d1f5d7425 (patch) | |
tree | fb761bda98537dffb5029f9b7ad71b63a4e0530a /CHANGES | |
parent | 5d6383c83f34a9c8612a6eedd484d41e4be4974c (diff) |
Enhance EVP code to generate random symmetric keys of the
appropriate form, for example correct DES parity.
Update S/MIME code and EVP_SealInit to use new functions.
PR: 700
Diffstat (limited to 'CHANGES')
-rw-r--r-- | CHANGES | 10 |
1 files changed, 10 insertions, 0 deletions
@@ -4,6 +4,16 @@ Changes between 0.9.7c and 0.9.8 [xx XXX xxxx] + *) Add new EVP function EVP_CIPHER_CTX_rand_key and associated functionality. + This will generate a random key of the appropriate length based on the + cipher context. The EVP_CIPHER can provide its own random key generation + routine to support keys of a specific form. This is used in the des and + 3des routines to generate a key of the correct parity. Update S/MIME + code to use new functions and hence generate correct parity DES keys. + Add EVP_CHECK_DES_KEY #define to return an error if the key is not + valid (weak or incorrect parity). + [Steve Henson] + *) Add a local set of CRLs that can be used by X509_verify_cert() as well as looking them up. This is useful when the verified structure may contain CRLs, for example PKCS#7 signedData. Modify PKCS7_verify() to use any CRLs |