[Mono-bugs] [Bug 346536] New: X509Certificate2 doos not consider google certificate valid
bugzilla_noreply at novell.com
bugzilla_noreply at novell.com
Thu Dec 6 10:11:15 EST 2007
https://bugzilla.novell.com/show_bug.cgi?id=346536
Summary: X509Certificate2 doos not consider google certificate
valid
Product: Mono: Class Libraries
Version: SVN
Platform: All
OS/Version: Windows XP
Status: NEW
Severity: Normal
Priority: P5 - None
Component: System
AssignedTo: mono-bugs at ximian.com
ReportedBy: gert.driesen at pandora.be
QAContact: mono-bugs at ximian.com
Found By: ---
X509Certificate.Verify returns false even though the root CA (Verisign) is
actually trusted (as a result of running mozroots).
To reproduce, compile and run the following code:
using System;
using System.Security.Cryptography.X509Certificates;
class Program
{
static void Main ()
{
X509Certificate2 cer = new X509Certificate2 ("google.cer");
Console.WriteLine ("GOOGLE CERT VALID: " + cer.Verify ());
X509Chain chain = new X509Chain ();
Console.WriteLine ("CHAIN VALID: " + chain.Build (cer));
foreach (X509ChainElement element in chain.ChainElements) {
Console.WriteLine ("Subject: {0}", element.Certificate.Subject);
Console.WriteLine ("===");
}
Console.WriteLine (cer.Verify ());
}
}
Expected result:
GOOGLE CERT VALID: True
CHAIN VALID: True
Subject: CN=www.google.com, O=Google Inc, L=Mountain View, S=California, C=US
===
Subject: CN=Thawte SGC CA, O=Thawte Consulting (Pty) Ltd., C=ZA
===
Subject: OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.",
C=US
===
Actual result:
GOOGLE CERT VALID: False
CHAIN VALID: False
Subject: CN=www.google.com, O=Google Inc, L=Mountain View, S=California, C=US
===
--
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug.
You are the assignee for the bug.
More information about the mono-bugs
mailing list