Validate x.509 cert value is a valid certificate before inlining contents into signature

[msetina]

If you set cert parameter of sign call to empty string, signature will produce an empty ds:X509Data/ in KeyInfo and even ignore public key data. Removing cert parameter form sign call will produce problem #250

[kislyuk]

Can you provide a specific example of what application you need to interoperate with that requires the X.509 certificate to be absent?

[msetina]

My code was faulty and produced empty string for ca chain. The cert parameter was no cecked, so the undesired result. Will provide the example....

[kislyuk]

I see, thanks. Yes, we need some validation here to ensure the certificate string to be inserted is an actual X.509 certificate.