Fix the BIT STRING encoding of EC points or parameter seeds

(need to prevent the removal of trailing zero bits).
author: Bodo Möller <bodo@openssl.org> 2006-12-19 15:11:37 +0000
committer: Bodo Möller <bodo@openssl.org> 2006-12-19 15:11:37 +0000
commit: 772e3c07b4b09f2e59d35da3ce67410b625a39d4 (patch)
tree: a8d44c584b48f84b9a618d1097bab7b619a096a1 /CHANGES
parent: 360ff3cf58df504e4fdef7cfa5505f55103cd51a (diff)
1 files changed, 8 insertions, 0 deletions
diff --git a/CHANGES b/CHANGES
index 3607fe9f39..4eba78a60d 100644
--- a/CHANGES
+++ b/CHANGES
@@ -418,6 +418,14 @@
 
  Changes between 0.9.8d and 0.9.8e  [XX xxx XXXX]
 
+  *) Fix the BIT STRING encoding generated by crypto/ec/ec_asn1.c
+     (within i2d_ECPrivateKey, i2d_ECPKParameters, i2d_ECParameters):
+     When a point or a seed is encoded in a BIT STRING, we need to
+     prevent the removal of trailing zero bits to get the proper DER
+     encoding.  (By default, crypto/asn1/a_bitstr.c assumes the case
+     of a NamedBitList, for which trailing 0 bits need to be removed.)
+     [Bodo Moeller]
+
   *) Have SSL/TLS server implementation tolerate "mismatched" record
      protocol version while receiving ClientHello even if the
      ClientHello is fragmented.  (The server can't insist on the
author	Bodo Möller <bodo@openssl.org>	2006-12-19 15:11:37 +0000
committer	Bodo Möller <bodo@openssl.org>	2006-12-19 15:11:37 +0000
commit	772e3c07b4b09f2e59d35da3ce67410b625a39d4 (patch)
tree	a8d44c584b48f84b9a618d1097bab7b619a096a1 /CHANGES
parent	360ff3cf58df504e4fdef7cfa5505f55103cd51a (diff)