>    *must* do when getting '-pass8bit' is to do a naïve UTF-8 encode of
    the input pass phrase string.  PKCS12_generate_mac() will then decode
  
I disagree.

There are two reasons why users enter "illegal" passwords now, and by now 
requiring them to make it explicit we can (a) check only for ASCII on current 
inputs; (b) make them thing about what they're doing and require them to 
specify; (c) set the expectation that something will change in the future.


_______________________________________________
openssl-project mailing list
openssl-project@openssl.org
https://mta.openssl.org/mailman/listinfo/openssl-project

Reply via email to