I fail to see how it is not wrong to get 17 bytes instead of 16 you requested in the certificate? -- Regards, Igor
On 01.09.2014. 23:21, Rich Salz via RT wrote: > This is not wrong. Serial numbers are unsigned, and the leading zero byte is > to > avoid confusing the high-bit with a sign bit. > -- > Rich Salz, OpenSSL dev team; [email protected] > ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [email protected]
