2 - Rethink and possibly add verification of output buffer lengths.
3 In other words check whether the user won't cause a buffer overflow.
4 - Support for OCB mode was added in OpenSSL 1.1.0
5 - We need a way to import keys encrypted with hw (or other) keys. New
6 function like yaca_key_load or sth?
7 - Add extended description and examples in documentation.