* X509Certificate.cs: Do not throw a CryptographicException for "unknown
hash algorithm" when asked to verify a RSA certificate with dsaSHA1 since
this can happen when a bad/incomplete chain is being tested.
case "1.2.840.113549.1.1.11":
v.SetHashAlgorithm ("SHA256");
break;
+ // SHA1-1 with DSA
+ case "1.2.840.10040.4.3":
+ // invalid but this can occurs when building a bad chain - e.g. missing certificate(s)
+ // we return false so we can report the "chain" error to the user (not an exception)
+ return false;
default:
throw new CryptographicException ("Unsupported hash algorithm: " + m_signaturealgo);
}