[openssl-users] Specify algorithm for openssl smime decrypt

Dr. Stephen Henson steve at openssl.org
Tue Jan 6 12:38:59 UTC 2015

On Tue, Jan 06, 2015, Fred wrote:

> Hi,
> I need to decrypt some  S/MIME content with an invalid key length
> for the AlgOID specified in the PCKS7 content.
> AES-256 is specified as the AlgOID, but a key length of 192 bits is
> being used.
> Is there anyway to get openssl to decrypt this using the openssl
> smime command? i.e. override the cipher used so that is uses
> aes-192-cbc ?

Not using the smime command no. There are ways to handle this either with a
short program or by using a binary cut+paste using asn1parse.

Another alternative is to use a modified version of OpenSSL which detects this
and works around the problem.

Dr Stephen N. Henson. OpenSSL project core developer.
Commercial tech support now available see: http://www.openssl.org

More information about the openssl-users mailing list