I've seen this issue come up and wanted to clarify. Openssl's implementation appears to not follow pkcs#5's recommendation on block cipher padding. (padding is done with the value of 'length_needed -1' as opposed to 'length_needed').
This would break functionality with ssl stacks using the standard. Hopefully I've missed something obvious though ;^) Thanks, cheers, -Eric ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
