> I wonder why my buffer of iv is overwritten. What can I use it for? To continue encrypting or decrypting.
> If the overwritten iv is useless, why doesn't the library make a > clone of it > for its own purposes? It's not useless, it's the next IV to use. > I am not sure about overwriting the iv by encrypting process > (EVP_EncryptInit() accepts pointer to const), but > EVP_BytesToKey() does it. It is only the very rare case where you would want to use the same IV more than once. An IV *should* be computed, used, and discarded. DS ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
