M K Saravanan <[email protected]> writes: >Is this allowed? i.e. stripping the leading zero of the RSA signature and >marking the length as 255? It is not clear to me from the RFC5246 whether >it is allowed or not.
It's not allowed according to the spec but a number of implementations do it because their underlying bignum libraries perform leading-zero truncation, so you're better off allowing it to avoid breakage. Peter. _______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
