> I guess the real problem is that the PKIX idiots decided to use
> bitstrings instead of octetstrings for signatures, unique identifiers,
> etc.! I cannot find any valid reason why they would do this. If it
> would up to me, I would replaced all bitstrings containing unnamed
> bits with octetstrings, since they are only binary blobs of data.
Bingo. This has annoyed the hell out of me too. The biggest nuisance
for me
is when my analysis tools display them as long strings of ones and zeroes.
DS
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [email protected]
Automated List Manager [EMAIL PROTECTED]
