On Fri, Sep 12, 2014 at 04:31:13AM -0400, Dave Thompson wrote: > > It's my understanding that for the encoding of the number without > > the leading 00 we need to go and add the 00 in front of it because > > we would otherwise create a negative number and those aren't allowed > > by RFC5280, so we would write that one with the leading 00. But I > > don't see a reason why the encoding can't have multiple leading 00s > > in it, and for instance always have a fixed size. > > > X.690 8.3.2.
This is a very good point which I actually knew but forgot about. So I'm just going to close this ticket. Kurt ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org
