> Also, what happens if the strings contain a '/'
character? Or is that
> not possible?
So apparently openssl has some \ unescaping support for these strings
when you generate the certificate and probably the characters are
escaped again when you extract this string from a cert. We could
replicate this but in terms of security I think it doesn't add
anything, users will just need to remember to not escape the
characters in the iwd configs.
This response doesn't fill me with a lot of confidence :) How is domain
name suffix matching code (for example) going to deal with random '/'
characters if they serve as delimiters?