[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: RFC - support for subjectUniqueID and issuerUniqueID
|
From: |
Nikos Mavrogiannopoulos |
|
Subject: |
Re: RFC - support for subjectUniqueID and issuerUniqueID |
|
Date: |
Tue, 17 Aug 2010 20:22:50 +0200 |
|
User-agent: |
Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.1.11) Gecko/20100713 Thunderbird/3.0.6 |
On 08/10/2010 08:30 AM, Brad Hards wrote:
> Hi,
>
> During investigation into some windows protocols, we've found that windows
> servers create certificates that make use of the subjectUniqueID and
> issuerUniqueID fields. They seem to contain GUID values.
>
> The attached patch (which I'm looking for feedback on, not to be applied at
> this stage) allows fetching / display of those fields. I have a second patch
> for setting / writing those fields, but I haven't tested it yet. A sample
> certificate is also attached.
> I recognise that they aren't normally used (and are deprecated), but for
> interop purposes, I'd like to be able to access them if necessary.
> Thoughts and comments?
They look useful and anyway they should be added for completeness. As of
the implementation, I'd prefer a version that doesn't return an
allocated string but rather something that writes a user buffer such as
gnutls_x509_crt_get_dn() does. If you have such a version we could add it.
Thanks,
Nikos