Hello,
> The results are amazing to me.
>
> CryptoAPI derived key
> ca ee 31 f5 5e d5 65 00 e9 60 c2 eb 79 58 68 b8 b6 fd d5 26 8d 3c 21 f7
> cb ef 31 f4 5e d5 64 01 e9 61 c2 ea 79 58 68 b9 b6 fd d5 26 8c 3d 20 f7
> keyWin32 value
>
> As you can see, these keys are a little bit equal. :)
>
> But
As you said, CryptDeriveKey() has some "specific" indeed :) If it obtains a
key (from the hash object) with a smaller length than required, then it
applies some extra steps to derive the key.
http://msdn2.microsoft.com/en-us/library/aa379916.aspx wrote:
>
> Let n be the required derived key len
The certs are below.
The SKID & AKID look like they are never updated in the extensions, just
copied across verbatum.
In ocspss2 they are still as they were in the original ocspss which was
self-signed.
ocspss2:
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40 (0x28)
