Michael D'Errico wrote:
Hi,
I read somewhere that it is a good idea to
cryptographically hash your key material to
generate a key, so I wrote a function to do
that.
it's an even better idea to use well known/tested
algorithm for key generation
I'm not exactly sure I'm doing what
they suggest, so if anyone cares to, can
you check over my work and see if there are
any weaknesses? Thanks in advance.
unless your random source isn't broken I think simply
using RAND_bytes is sufficient (actually your alg is a
kind of prng)
Nils
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
