Usage of X509_NAME_oneline is ``strongly discouraged'' #745

jcrowgey · 2018-03-28T15:53:26Z

From the openssl 1.1.0f manual page for X509_NAME_PRINT_EX(3SSL)

NOTES
       The functions X509_NAME_oneline() and X509_NAME_print() are legacy functions which produce a non standard output form, they don't handle multi character fields and
       have various quirks and inconsistencies. Their use is strongly discouraged in new applications.

I noticed that pyopenssl.crypto.X509Name.repr uses X509_NAME_oneline to generate part of the repr:

pyopenssl/src/OpenSSL/crypto.py

Line 647 in 57c2f03

format_result = _lib.X509_NAME_oneline(

The text was updated successfully, but these errors were encountered:

Additionally, makes stringified part conformant to RFC2253

alex · 2024-10-26T11:29:13Z

We intended to deprecate this entire class (#1321) in favor of pyca/cryptography's APIs, so this is overtaken by events.

jcrowgey mentioned this issue Mar 28, 2018

add X509_NAME_print_ex pyca/cryptography#4174

Merged

alex added enhancement beginner-friendly waiting-for-bindings labels Mar 28, 2018

alex modified the milestones: 17.3.0, 18.0.0 Mar 28, 2018

jcrowgey pushed a commit to jcrowgey/pyopenssl that referenced this issue Mar 28, 2018

Change X509_NAME_oneline for X509_NAME_print_ex [Fixes pyca#745]

e7d62e2

Additionally, makes stringified part conformant to RFC2253

reaperhulk removed this from the 18.0.0 milestone May 16, 2018

pyca deleted a comment Jun 11, 2019

alex closed this as completed Oct 26, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Usage of X509_NAME_oneline is ``strongly discouraged'' #745

Usage of X509_NAME_oneline is ``strongly discouraged'' #745

jcrowgey commented Mar 28, 2018

alex commented Oct 26, 2024

Usage of X509_NAME_oneline is ``strongly discouraged'' #745

Usage of X509_NAME_oneline is ``strongly discouraged'' #745

Comments

jcrowgey commented Mar 28, 2018

alex commented Oct 26, 2024