On 02.02.2018 19:27, phi...@apache.org wrote: > Author: philip > Date: Fri Feb 2 18:27:44 2018 > New Revision: 1822996 > > URL: http://svn.apache.org/viewvc?rev=1822996&view=rev > Log: > Fix x509 parser to accept RSASSA-PSS certs by no longer assuming that > algorithm parameters are NULL for all algorithms. This change doesn't > affect whether clients can verify RSASSA-PSS certs, that decision is > delegated to OpenSSL, but it does allow JavaHL clients to accept a > failure to verify such certs.
Backport for 1.10? -- Brane
