Jörn Heissler

@vpiserchia, thanks for the PR! The use case of your change isn't clear to me. Could you describe it? And please implement tests.

Best to track down which software generates the bad ASN.1 and have it fixed. Adding workaround to decoders only encourages encoders to implement even more bugs, forcing other decoders to...

An alternative would be to split the file into small chunks, a few kilobytes each. Info about the chunks would be encrypted with CMS. There is a tradeoff between the...

Sounds related to #33. https://github.com/wbond/asn1crypto/blob/master/asn1crypto/_iri.py should contain the code which modifies your URIs.

A full test case, or even just a certificate, would help too.

Hello! Does this help? Not sure if this is the best way though. ```python #!/usr/bin/env python3 from asn1crypto.core import Sequence, SequenceOf, Integer import json class ManyFoo(SequenceOf): _child_spec = None class...

``` $ dumpasn1 -ade info1.der 0 89: SEQUENCE { 2 19: . SEQUENCE { 4 7: . . OBJECT IDENTIFIER ecPublicKey (1 2 840 10045 2 1) 13 8: ....

Technically, `SignerInfo['sid']` cannot point at any Certificate. They are in a different branch of the SignedData object. Building something into SignedData to create this link feels wrong to me. Also...

A `SignerInfo` object does not hold (contain? include?) any `Certificate`. Neither does a `SignerIdentifier` object. Maybe "cannot point at any Certificate" was badly worded. I meant "point" like "memory address"...

Hi, got a small example to demonstrate why this is actually bad? This could then serve as a test case to prevent regressions.