[openssl-dev] [openssl.org #4301] [BUG] OpenSSL 1.1.0-pre2 fails to parse x509 certificate in DER format
Kurt Roeckx
kurt at roeckx.be
Thu Feb 11 20:45:50 UTC 2016
See X.690, 8.3.2:
If the contents octets of an integer value encoding consist of more than
one octet, then the bits of the first octet and bit 8 of the second octet:
a) shall not all be ones; and
b) shall not all be zero.
NOTE - These rules ensure that an integer value is always encoded
in the smallest possible number of octets.
Kurt
More information about the openssl-dev
mailing list