libaes_siv release candidate

[Hal Murray]

There is a rough edge that I don't fully understand.

The man page for AES_SIV_Decrypt says:
       These functions return 1 on success and 0 on failure.

There are 2 types of errors: the CMAC check failed, or there was a problem in 
some underlying machinery.

Is there any way to distinguish between the two?

It seems like you have inherited a general OpenSSL problem.  You might be able 
to solve it by storing a magic value in out_len.

-- 
These are my opinions.  I hate spam.