James Yonan wrote: > > Given that the EVP level is supposed to offer callers a cipher-independent > interface, where the caller doesn't necessarily know the idiosyncracies of > the underlying cipher, wouldn't it make sense for evp/e_des3.c to call > des_set_key_checked() instead of des_set_key_unchecked() and return an error > status in the case of a weak key?
Makes sense to me! Cheers, Ben. -- http://www.apache-ssl.org/ben.html http://www.thebunker.net/ "There is no limit to what a man can do or how far he can go if he doesn't mind who gets the credit." - Robert Woodruff ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]