Also, the way I read the current code (crypto/asn1/a_type.c, line 120 - it would (incorrectly) reject a certificate where both algorithms are encoded with absent parameter lists:
if (!a || !b || a->type != b->type) return -1; I think we all agree that such a certificate would be valid/legal? -- Uri Blumenthal u...@mit.edu<mailto:u...@mit.edu> _______________________________________________ openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev
