While we're at this, shouldn't we then also check the length in oct2priv? (And either reject or reduce mod n.) Afaics it accepts arbitrary BNs currently, which means some keys can be parsed but cannot be re-encoded?
-- Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4393 Please log in as guest with password guest if prompted -- openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev
