> Does OUTSIZE not function as a guard to make it easier to avoid > overflowing the 'out' buffer?
Yes, it is true. But I mean, we can provide a function or macro which return the size of the encrypted output buffer. So we avoid caller need know about padding, for example. Do that function always fill the output buffer? Or it is possible to calculate the size of the output buffer that is going to be filled?
