Given that the EVP level is supposed to offer callers a cipher-independent interface, where the caller doesn't necessarily know the idiosyncracies of the underlying cipher, wouldn't it make sense for evp/e_des3.c to call des_set_key_checked() instead of des_set_key_unchecked() and return an error status in the case of a weak key?
Thanks, James Yonan ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
