https://bugs.openldap.org/show_bug.cgi?id=9920
--- Comment #12 from NikoPLP info@parlepeuple.fr --- If I recommend to toss away the code, it is because we are talking about encryption. If it is wrongly implemented, as it seems it is, this will have bad consequences to the safety of the encrypted data. If he author of the code is unreachable and didn't document his work, If the current maintainer is not fully aware of how the code works, it should be removed and redone. I wouldn't use an encryption library that isn't maintained or that has a codebase that nobody knows how it works. And I am under the impression that this part of the code isn't really under the control of anyone. Where is the contributor who submitted this code and then disappeared? Is Howard totally in control of that part of the code? It is encryption. And I am now worried it hasn't been implemented well.