[gnutls-dev] Re: non-ASCII ASN.1 string types

Joe Orton joe at manyfish.co.uk
Sun Oct 24 17:19:45 CEST 2004


On Sun, Oct 24, 2004 at 04:49:27PM +0200, Simon Josefsson wrote:
> Joe Orton <joe at manyfish.co.uk> writes:
> > Well I guess the interface is simply not flexible enough for this to be
> > decided by the app, where ultimately it should be.  I have no need for
> > 2253-style formatting in neon, I'd prefer to be able to skip RDNs which
> > I can't produce human-readable strings from than show random hex strings
> > to the user.
> 
> That is a worthy goal, and if you want to work on adding some
> interface in GnuTLS, similar to the OpenSSL X509_NAME, to achieve it,
> I think it could be incorporated.

I doubt I will have time to work on this, sorry.

> For what it's worth, I agree with Nikos that adding UCS2->UTF8
> conversion is to enter a problematic road.  For non-ASCII handling, I
> believe that GnuTLS should use some external library, that is focused
> on that problem.  There are so many pitfalls in charset handling that
> I wouldn't want the GnuTLS code to have to deal with them too.  TLS is
> complex enough as it is.  GNU Libidn can do charset conversion, but
> there may be other candidates.
> 
> I'm sorry I don't have free time to help with the OID code you posted.
> If you debug it further, and submit your code as a new self test
> (possibly together with a patch to fix any bugs), I will try to work
> on integrating it.

It's OK, Nikos fixed that in CVS already.

joe



More information about the Gnutls-dev mailing list