#105 closed Bug / Defect (fixed)
Lack of support for characters above the 7-bit range in Common Name, X509 Subject and username strings
Reported by: | Samuli Seppänen | Owned by: | |
---|---|---|---|
Priority: | minor | Milestone: | beta 2.3 |
Component: | Certificates | Version: | OpenVPN git master branch (Community Ed) |
Severity: | Not set (select this one, unless your'e a OpenVPN developer) | Keywords: | |
Cc: |
Description
This ticket is migrated from SF.net. Dazo's analysis:
I just checked the source code, and it will allow the lower 7bits to pass through when --no-name-remapping is done. The 7bit range are between the value between 0 and 127 (0x7F). For non-English based names/data, this can be too restrictive as they might expect 8bit width (0-255/0xFF) or support for UTF-8/UTF-16 character sets. CR (0x0D) and LF (0x0A) are replaced with '_' (underbar). Tabs, despite what the documentation says, are passed through, as far as I can understand. In general characters below the value of 32 (0x20) should not need to be passed through at all - but that's
another discussion.
However, to widen up this range further needs to be investigated much closer. Especially to support multi-byte characters via UTF-8/UTF-16. Anyhow, I think the core issue of this ticket is lack of support for characters above the 7bit range.
Change History (2)
comment:1 Changed 12 years ago by
Resolution: | → fixed |
---|---|
Status: | new → closed |
comment:2 Changed 12 years ago by
Milestone: | → beta 2.3 |
---|
This support should be covered in OpenVPN 2.3. Please re-open if this is not solved.