Closed GoogleCodeExporter closed 9 years ago
hmm, if you don't want to expose GeneralName, another option would be to change
both methods to return a list of (string,value) tuples, where 'value' is either
a string or another list of (string,value) tuples.
Original comment by nickgsup...@gmail.com
on 14 Oct 2013 at 3:40
Yeah, this API needs work.
I need to verify how browsers handle names but I've been thinking about
something like this:
[1] Higher-level API for those who just want to extract mappings to domains:
[1a] domain_names() for a union of common names, dnsNames and everything else
that browsers may recognize as a domain (i.e., drop the ASN.1 information and
just return a flat list of strings).
[1b] similar API for country_names(), email_addresses(), ip_addresses() etc.
[2] raw (copy of the?) ASN.1 structure for anything else - given how
complicated the name format is, giving full power to those few who really need
it seems like the best option.
Anyway it's on my TODO list and am happy to take more suggestions for a better
API.
Original comment by ekasper@google.com
on 14 Oct 2013 at 7:06
Note to self when addressing this issue: RDN handling in GeneralName is bust,
too, as it's only considering the first component of each set.
Original comment by ekasper@google.com
on 19 Nov 2013 at 11:02
New API for subject names committed in
https://code.google.com/p/certificate-transparency/source/detail?r=8c76f1c8965df
68efe9b90da763aed4dbf07ce63
(This is a breaking change.)
Marking the issue fixed as I think the original issue has been solved. But
further feature requests for the cert/names API are welcome!
Original comment by ekasper@google.com
on 9 Dec 2013 at 3:33
Original issue reported on code.google.com by
nickgsup...@gmail.com
on 14 Oct 2013 at 3:32