Parse RSAPrivateKey with CBS.

This removes the version field from RSA and instead handles versioning
as part of parsing. (As a bonus, we now correctly limit multi-prime RSA
to version 1 keys.)

Most consumers are also converted. old_rsa_priv_{de,en}code are left
alone for now. Those hooks are passed in parameters which match the old
d2i/i2d pattern (they're only used in d2i_PrivateKey and

Include a test which, among other things, checks that public keys being
serialized as private keys are handled properly.


Change-Id: Icdd5f0382c4a84f9c8867024f29756e1a306ba08
Reviewed-by: Adam Langley <>
11 files changed