Join GitHub today
Openssl 1.1.1-pre9 no longer accepts RSA private key accepted by openssl-1.1.0i #7134
We have a few RSA private keys where integer 0 was serialized as
Example private key:
With openssl-1.1.1-pre9 or git master, I get:
It looks like this change was introduced in 6a32a3c, the LONG parsing functions didn't check for zero length and accepted them while the INT32 parsing functions fails with zero length.
Your analysis is correct, that is the causing commit. I think that the easiest (and best) way to fix this is to make it so