diff options
| author | Nicola Tuveri <nic.tuv@gmail.com> | 2019-10-10 20:30:58 +0300 |
|---|---|---|
| committer | Nicola Tuveri <nic.tuv@gmail.com> | 2019-10-15 15:06:02 +0300 |
| commit | f97a8af2f3f3573f0759693117c9d33d2a63c27e (patch) | |
| tree | 52dec18ec633105080107705d92858b40bb20e4d /crypto/md5 | |
| parent | a397aca43598ef20c84e69f6d6e5d95652aa0325 (diff) | |
| download | openssl-f97a8af2f3f3573f0759693117c9d33d2a63c27e.zip openssl-f97a8af2f3f3573f0759693117c9d33d2a63c27e.tar.gz openssl-f97a8af2f3f3573f0759693117c9d33d2a63c27e.tar.bz2 | |
[ec_asn1.c] Avoid injecting seed when built-in matches
An unintended consequence of https://github.com/openssl/openssl/pull/9808
is that when an explicit parameters curve is matched against one of the
well-known builtin curves we automatically inherit also the associated
seed parameter, even if the input parameters excluded such
parameter.
This later affects the serialization of such parsed keys, causing their
input DER encoding and output DER encoding to differ due to the
additional optional field.
This does not cause problems internally but could affect external
applications, as reported in
https://github.com/openssl/openssl/pull/9811#issuecomment-536153288
This commit fixes the issue by conditionally clearing the seed field if
the original input parameters did not include it.
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/10140)
Diffstat (limited to 'crypto/md5')
0 files changed, 0 insertions, 0 deletions