[Vm-dev] SqueakSSL + SAN certificates

Norbert Hartl norbert at hartl.name
Wed May 27 18:59:42 UTC 2015 

> Am 27.05.2015 um 20:56 schrieb Tobias Pape <Das.Linux at gmx.de>:
> 
> 
> 
> On 27.05.2015, at 19:58, Norbert Hartl <norbert at hartl.name <mailto:norbert at hartl.name>> wrote:
> 
>> 
>>> Am 27.05.2015 um 19:22 schrieb Levente Uzonyi <leves at elte.hu>:
>>> 
>>> I thought you wanted to access the parsed data, which is not easily accessible. It's possible to export the certificate in some form (PEM or DER), but then you'd have to write a parser for that in Smalltalk.
>>> 
>> I've written an ASN.1 parser [1]. I have also a draft version for X.509 module. I can read DER/BER formats which I do already in the GSM stack stuff we did [2]. The ASN.1 implementation has only a runtime model (no generated classes). I usually export the runtime model with Fuel if I don't want to generate it. It wouldn't be a very performant approach but maybe it will be usable in some way. I'd give it a shot.
>> 
> 
> Well, it probably is a good idea to hand certs up to the image, i suppose :)
> Try to give that a shot?
> 
Sure! If it comes in DER/BER format it shouldn't be to hard to adapt my code to expose the complete certificate structure. I've done it once already shown at ESUG …. 2013 I guess. I implemented even an old ASN.1 type (any) for that.

Norbert

> best regards
> 	-Tobias
> 
>> Norbert
>> 
>> [1] http://smalltalkhub.com/#!/~NorbertHartl/ASN1
>> [2] http://smalltalkhub.com/#!/~osmocom
>> 
>> 
>> 
>> 
>>> Levente
>>> 
>>> On Wed, 27 May 2015, Norbert Hartl wrote:
>>> 
>>>> 
>>>> I don't understand. You are returning a field of the cert so you are parsing it somehow natively. Where is the difficulty just to return to whole binary certificate data?
>>>> 
>>>> Norbert
>>>> 
>>>> 
>>>>> Am 27.05.2015 um 03:23 schrieb Levente Uzonyi <leves at elte.hu>:
>>>>> 
>>>>> If it were possible, then there would be no need to add this.
>>>>> 
>>>>> Levente
>>>>> 
>>>>> On Wed, 27 May 2015, Norbert Hartl wrote:
>>>>> 
>>>>>> 
>>>>>> Sounds great! Is it possible to access to whole certificate data as well?
>>>>>> 
>>>>>> Norbert

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.squeakfoundation.org/pipermail/vm-dev/attachments/20150527/d10de1f6/attachment.htm

More information about the Vm-dev mailing list