Previous topic |
Next topic |
Contents |
Contact z/OS |
Library |
PDF
gsk_dn_to_name() z/OS Cryptographic Services System SSL Programming SC14-7495-00 |
|||||||||||||||||||||||||||||||||||||||||||||||||
Converts a DN string to an X.509 name.
Format
Parameters
ResultsThe function return value will be
0 if no error is detected. Otherwise, it will be one of the return
codes listed in the gskcms.h include file. These are some
possible errors:
UsageThe gsk_dn_to_name() routine converts a distinguished name (DN) string to an X.509 name in accordance with RFC 2253: UTF-8 String Representation of Distinguished Names. The input string consists of single-byte characters in the local code page. A double-byte character is represented using the escaped UTF-8 encoding of the double-byte character in the Unicode character set. Attribute types may be specified using either attribute names or numeric object identifiers. Attribute values must represent string values. These DN attribute names are recognized by the System SSL run time. An error is returned if the DN contains an unrecognized attribute name.
This is an example of a DN using attribute names and string
values:
This
is the same DN using object identifiers and encoded string values.
The encoded string values represent the ASN.1 DER encoding of the
string. The System SSL run time supports these ASN.1 string types:
PRINTABLE, VISIBLE, TELETEX, IA5, UTF8, BMP, and UCS.
Individual
characters can be represented using escape sequences. This is useful
when the character cannot be represented in a single-byte character
set. The hexadecimal value for the escape sequence is the UTF-8 encoding
of the character in the Unicode character set.
An escape sequence can also be
used for special characters which are part of the name and are not
to be interpreted as delimiters. For example:
|
Copyright IBM Corporation 1990, 2014
|