Jeffrey Altman wrote: > The code is the same in both 0.9.6- and 0.9.7-beta4. in 0.9.7-b4 > there is an assertion added that is being triggered because the buf > size is considered too small. However, tracing through the calls > shows that even with a 160bit input only the first byte is ever > touched. > > That does not mean other bytes could not be touched in the future > though.
That depends on the OpenSSL ASN1 code. But as far as I understand the code I don't know a possible reason to use any other value of the 'buf' array. In DSA_size() i2d_ASN1_INTEGER() is only called to get the max. possible length of the DER encoded integer (r and s) => only the first byte (with data[0] == 0xff) is needed. Regards, Nils ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
