Alot of people seem to have problems with this one. Nowhere is it mentioned that the input to this function has to be a mulitple of AES_BLOCK_SIZE. If it's not the second loop in the function overruns the input buffer and creates hard to analyze program crashes.
I propse someone put an "assert(length%AES_BLOCK_SIZE==0);" at the start of this function to avoid problems. Sincerely, Danijel Korzinek ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [email protected]
