You can always change PW_MIN_LENGTH in apps.h. Or specify the password on the
command-line as mentioned in the ticket. We could have a separate callback for
'decrypt' vs 'encrypt' but have no plans to do so. Closing ticket.
--
Rich Salz, OpenSSL dev team; rs...@openssl.org
OpenSSL enforces the minimum password length to be 4 characters. However,
this enforcement should be only applied during encryption, not decryption.
The current version does not allow decrypting when the prompted-for
password is too short:
$ openssl rsa -check -in rsa.key -noout
Enter pass phrase