projects / platform / upstream / dotnet / runtime.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 92cd5cd) | patch
Handle additional X509 chain statuses for macOS
authorKevin Jones <kevin@vcsjones.com>
Mon, 27 Apr 2020 21:25:48 +0000 (17:25 -0400)
committerGitHub <noreply@github.com>
Mon, 27 Apr 2020 21:25:48 +0000 (14:25 -0700)
commitfeddac7de43999c3f5f9073205d36fd551d746e1
tree1d3db0ef17cd8a4a95c5f605818f691ecc732a68tree | snapshot
parent92cd5cde62aa7f8d85ab886677a4b674c847ac95commit | diff
Handle additional X509 chain statuses for macOS

MacOS returns a different status string for certificates that are in a special
database that are explicitly distrusted. Windows has similar behavior, which
reports the certificates as PAL_X509ChainExplicitDistrust. This makes macOS
do the same instead of throwing an exception.

Linux does not appear to have any special distrusting for these
certificates.
src/libraries/Native/Unix/System.Security.Cryptography.Native.Apple/pal_x509chain.c diff | blob | history
src/libraries/System.Security.Cryptography.X509Certificates/tests/ChainTests.cs diff | blob | history
Domain: Dotnet / Core;