On 2 Apr 2012, at 10:21 AM, Tamir Khason via RT wrote: > Please see attached good and bad example + plain dump for both
The attached file was corrupted at some point in the mail ... perhaps you could put it on your website? I couldn't read the PEM file you posted either because it was encrypted. I looked at your blog post and I agree with other posters that it looks as if you are misunderstanding the ASN.1 integer format. For example, the "bad exponent1", which starts with 00:9a:2e:9c:..... If you remove the 00 octet, the resulting number would be a negative number, because ASN.1 INTEGERs are always signed. But cryptography code does not usually use negative integers, so it is easy to forget this and wonder why there are extra 00 octets. Many people have made this mistake (perhaps most people). ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org
