C#
An object-oriented and type-safe programming language that has its roots in the C family of languages and includes support for component-oriented programming.
10,240 questions
C# .net 6.0 ChainPolicy.Build allows a CRL with a not before date in the future to pass
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(102.4, 55.00000000000001%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERT%3C/text%3E%3C/svg%3E)
Richard Turbeville
1
Reputation point
There is a test in the Fault Bridge Test stack for the FIPS 201/Ficam Testing program that has a certificate chain that includes one with a CRL with a not before date in the future.
ChainPolicy.Build is allowing this to pass when it shouldn't.
How can I fix this?
Thanks
C#
.NET Runtime
.NET Runtime
.NET: Microsoft Technologies based on the .NET software framework.Runtime: An environment required to run apps that aren't compiled to machine language.
1,119 questions
{count} votes
-
Jack J Jun 24,286 Reputation points Microsoft Vendor2022-04-28T06:05:57.587+00:00 @Richard Turbeville , Welcome to Microsoft Q&A, What is your kind of your certificate? Do you use the X509Chain.Build(X509Certificate2) Method?
-
Richard Turbeville 1 Reputation point
2022-04-28T11:45:53.357+00:00 Hi,
Yes, I am using the X509Chain.Build method.
Not sure exactly what you mean about "kind of your certificate". The certificates I am verifying are off of the FICAM test cards used for the FIPS 201/Ficam Testing.
In this particular test there is a chain of test certificates one of which has a CRL that has a not before date in the future. The chain build allows this to pass when it appears it should not.
There is not enough allowable characters to include a sample certificate or chain in a reply. If there is a way to get them to you I would be happy to send them.
Thanks.
Sign in to comment