Skip to content

[btls]: Cleanup certificate store initialization#4683

Merged
baulig merged 4 commits intomasterfrom
work-btls-cleanups
Apr 13, 2017
Merged

[btls]: Cleanup certificate store initialization#4683
baulig merged 4 commits intomasterfrom
work-btls-cleanups

Conversation

@baulig
Copy link
Contributor

@baulig baulig commented Apr 12, 2017

  • Kill unused MonoBtlsX509Store.AddTrustedRoots().

  • In server-mode, MonoBtlsProvider.SetupCertificateStore() now only adds
    certificates explicitly trused via MonoTlsSettings.TrustAnchors.

  • MonoTlsProvider.ValidateCertificate() - which is called from
    X509Certificate2.Verify() via X509CertificateImplBtls.Verify() - now
    uses MonoTlsSettings.DefaultSettings and assumes client-mode.

  • Add new MonoTlsSettings.CertificateValidationTime property to allow
    setting a custom time for certificate expiration checks.

Martin Baulig added 4 commits April 12, 2017 13:27
[BTLS]: Cleanup certificate store initialization.
d088e9b 
* Kill unused MonoBtlsX509Store.AddTrustedRoots().

* In server-mode, MonoBtlsProvider.SetupCertificateStore() now only adds
  certificates explicitly trused via MonoTlsSettings.TrustAnchors.

* MonoTlsProvider.ValidateCertificate() - which is called from
  X509Certificate2.Verify() via X509CertificateImplBtls.Verify() - now
  uses MonoTlsSettings.DefaultSettings and assumes client-mode.
[appletls]: Actually use the new code that was added in PR #4671.
998f76f
[btls]: Add new MonoTlsSettings.CertificateValidationTime property.
f94fa7c 
This allows you to set a custom time for certificate expiration checks.
[appletls]: Bind SecTrustSetVerifyDate() and check MonoTlsSettings.Ce…
642d1ff 
…rtificateValidationTime.
@baulig baulig self-assigned this Apr 12, 2017
@baulig
Copy link
Contributor Author

baulig commented Apr 13, 2017

build

@baulig baulig merged commit d8ce8b8 into master Apr 13, 2017
@baulig baulig deleted the work-btls-cleanups branch April 13, 2017 17:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@baulig baulig

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@baulig @dnfclas