[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Photuris
Page 11: Section 2.5 (Variable-Precision Numbers)
You might also leave an "escape" for longer numbers. I always
worry about fixed upper bounds on the lengths of things. In the
case of Photuris, for example, a single such variable-length
number is supposed to be able to contain a certificate chain.
When everyone is done throwing everything they think they want
in the certificates (e.g. explicit statements of certification
policies translated into all languages), certificates might be
a lot bigger than we expect, and we might overrun this limit with
a long certificate chain. (I hope not, but I see no reason to
needlessly restrict this here...)
There are lots of standard techniques for handling such things
(presumably ASN.1 DER has one such technique), or you could
do something ad-hoc (reserve 0xFFFF to mean that the length
is in the next four bytes, followed by the value, etc..)