Bug 1352064, certutil --extNC includes an explicit encoding for minimum value zero, r=rrelyea
authorKai Engert <kaie@kuix.de>
Wed, 05 Apr 2017 22:47:53 +0200
changeset 13286 1feb89a254de8d4ecd669b2c7bf80ff26784aadf
parent 13279 8ec9d2171d186ec931e81af06d691a54c8526d0f
child 13290 7e62307b5cf413080b399a45edb18082a9b71f6e
push id2142
push userkaie@kuix.de
push dateWed, 05 Apr 2017 20:47:57 +0000
reviewersrrelyea
bugs1352064
Bug 1352064, certutil --extNC includes an explicit encoding for minimum value zero, r=rrelyea
cmd/certutil/certext.c
--- a/cmd/certutil/certext.c
+++ b/cmd/certutil/certext.c
@@ -975,18 +975,16 @@ AddNameConstraints(void *extHandle)
     constraints->permited = constraints->excluded = NULL;
 
     do {
         current = PORT_ArenaZNew(arena, CERTNameConstraint);
         if (!current) {
             GEN_BREAK(SECFailure);
         }
 
-        (void)SEC_ASN1EncodeInteger(arena, &current->min, 0);
-
         if (!GetGeneralName(arena, &current->name, PR_TRUE)) {
             GEN_BREAK(SECFailure);
         }
 
         if (PrintChoicesAndGetAnswer("Type of Name Constraint?\n"
                                      "\t1 - permitted\n\t2 - excluded\n\tAny"
                                      "other number to finish\n\tChoice",
                                      buffer, sizeof(buffer)) !=