On Wed, Feb 06, 2002 at 04:40:10PM +0100, Richard Levitte - VMS Whacker wrote:
>> This looks like an incompatible change (not just a bugfix), so it >> definitely should be documented in CHANGES. (Or, if compatibility is >> important here, the change should not be done at all.) > I'm a little unsure about how it is "incompatible". So, the resulting > keys will possibly differ in the last byte. In what way does that > become a problem If you previously used this function with a string that was mapped to a weak key, it will now be mapped to a different key, so decryption won't work as expected. (Arguably you don't need decryption if it was a weak key, but it's in incompatibility nevertheless.) -- Bodo Möller <[EMAIL PROTECTED]> PGP http://www.informatik.tu-darmstadt.de/TI/Mitarbeiter/moeller/0x36d2c658.html * TU Darmstadt, Theoretische Informatik, Alexanderstr. 10, D-64283 Darmstadt * Tel. +49-6151-16-6628, Fax +49-6151-16-6036 ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]