1 2005-11-18 Sebastien Pouliot <sebastien@ximian.com>
3 * X509Extension.cs: Changed default ctor to protected to help
4 extensibility outside of Mono.Security.dll (fix bug #76742).
6 2005-11-04 Sebastien Pouliot <sebastien@ximian.com>
8 * PKCS12.cs: It's now possible to add multiple keys of the same size
9 inside a pkcs12 file. Fix bug #76627.
11 2005-11-04 Sebastien Pouliot <sebastien@ximian.com>
13 * PKCS12.cs: Added MaximumPasswordLength property to allow decoding
14 the password with a length limits like MS PFXImportCertStore does.
15 In this case you just have to assign the value CryptoApiPasswordLimit
16 to the new static property.
18 2005-10-11 Sebastien Pouliot <sebastien@ximian.com>
20 * X509Certificate.cs: Fixed bug #76407. ValidFrom and ValidUntil are
21 local date/time so IsCurrent most also use a local date/time.
22 * X509CRL.cs: ValidFrom and ValidUntil are local date/time so
23 IsCurrent most also use a local date/time.
25 2005-10-06 Sebastien Pouliot <sebastien@ximian.com>
27 * X509Chain.cs: Fixed the case where no chain is present (self signed)
29 2005-09-09 Sebastien Pouliot <sebastien@ximian.com>
31 * X509Certificate.cs: Fixed version property (bug #76012). Added
32 ISerializable (for 2.0 so we're not breaking current compatibility).
34 2005-08-29 Sebastien Pouliot <sebastien@ximian.com>
36 * X501Name.cs: Fixed quoted (bug #75780) and escaped values. Added
37 parsing for "direct" OID values. Plugged DC and UID with new X520
39 * X520Attributes.cs: Added support for SerialNumber (fix bug #75783),
40 DomainComponent, UserId and Oid.
42 2005-08-12 Sebastien Pouliot <sebastien@ximian.com>
44 * X520Attributes.cs: Don't select PRINTABLESTRING for non 7bits
45 values. Fix bug #75782. Based on patch from Daniel Granath.
47 2005-06-29 Sebastien Pouliot <sebastien@ximian.com>
49 * X509CRL.cs: Fix the case where no entry are present in the CRL (as
50 the structure is optional).
52 2005-04-26 Sebastien Pouliot <sebastien@ximian.com>
54 * X509Certificate.cs: DSA and RSA properties are now cached. In 2.0
55 they also have a set accessor.
56 * PKCS12.cs: Modified code to allow providing the password as a byte
57 array (the new constructor is available in 2.0).
59 2005-02-25 Sebastien Pouliot <sebastien@ximian.com>
61 * X501Name.cs: Added support for multiple entries in a same set.
63 2005-01-11 Sebastien Pouliot <sebastien@ximian.com>
65 * X509Certificate.cs: Fixed NullReferenceException when asking for
66 data that wasn't a proper X.509 certificate.
68 2004-12-13 Sebastien Pouliot <sebastien@ximian.com>
70 * X509Certificate.cs: Directly use the MD2 class when compiled in
71 Mono.Security.dll assembly (even if not configured in machine.config).
73 2004-09-17 Sebastien Pouliot <sebastien@ximian.com>
75 * PKCS12.cs: Fixed all level 4 compilation warnings.
76 * X501Name.cs: Fixed all level 4 compilation warnings.
77 * X509Certificate.cs: Fixed all level 4 compilation warnings.
78 * X509CertificateBuilder.cs: Fixed all level 4 compilation warnings.
79 * X509Extension.cs: In synch with corlib version. Fixed all level 4
81 * X520Attributes.cs: Updated to check upperbounds - which fixed level
82 4 compilation warnings.
84 2004-09-07 Sebastien Pouliot <sebastien@ximian.com>
86 * X509Chain.cs: Fixed a bug when constructing a certificate chain from
87 a collection (endless loop). Fixed bug when Reset-ing an empty chain.
89 2004-08-10 Sebastien Pouliot <sebastien@ximian.com>
91 * X509Store.cs: Now returns empty collection/list for certificates/
92 CRL when access to a store is denied.
94 2004-07-15 Sebastien Pouliot <sebastien@ximian.com>
96 * X501Name.cs: Support for E (email) in FromString.
97 * X520Attributes.cs: Added X520.EmailAddress.
98 Both patches fix bug #61241 and were contributed by Ianier Munoz.
100 2004-05-27 Sebastien Pouliot <sebastien@ximian.com>
102 * X509Certificate.cs: Rethrow original exception when parsing X.509
103 certificates (inside a CryptographicException) so people can see if
104 their changes affects certificate decoding.
106 2004-05-12 Jesper Pedersen <jep@itplus.dk>
108 * PKCS12.cs: Removed file exists check from SaveToFile(). Removed
109 Equals() and GetHashCode(). Clone the original iteration count.
111 2004-05-06 Jesper Pedersen <jep@itplus.dk>
113 * PKCS12.cs: Fixed synchronization with X509CertificateCollection in
116 2004-05-05 Jesper Pedersen <jep@itplus.dk>
118 * PKCS12.cs: Added support for SafeBag attributes. Added support for
119 Clone() (ICloneable), Equals and GetHashCode. New methods:
120 - AddCertificate (X509Certificate cert)
121 - AddCertificate (X509Certificate cert, IDictionary attributes)
122 - RemoveCertificate (X509Certificate cert)
123 - RemoveCertificate (X509Certificate cert, IDictionary attributes)
124 - AddPkcs8ShroudedKeyBag (AsymmetricAlgorithm aa)
125 - AddPkcs8ShroudedKeyBag (AsymmetricAlgorithm aa, IDictionary attributes)
126 - RemovePkcs8ShroudedKeyBag (AsymmetricAlgorithm aa)
127 - AddKeyBag (AsymmetricAlgorithm aa)
128 - AddKeyBag (AsymmetricAlgorithm aa, IDictionary attributes)
129 - RemoveKeyBag (AsymmetricAlgorithm aa)
130 - AsymmetricAlgorithm GetAsymmetricAlgorithm (IDictionary attrs)
131 - X509Certificate GetCertificate (IDictionary attrs)
132 - IDictionary GetAttributes (AsymmetricAlgorithm aa)
133 - IDictionary GetAttributes (X509Certificate cert)
135 2004-04-22 Sebastien Pouliot <sebastien@ximian.com>
137 * PKCS12.cs: FxCop-ized. CLS compliance.
138 * X501Name.cs: FxCop-ized.
139 * X509Builder.cs: FxCop-ized. Replaced Array.Copy with
141 * X509CRL.cs: FxCop-ized. Replaced Array.Copy with Buffer.BlockCopy.
142 * X509Certificate.cs: FxCop-ized. Replaced Array.Copy with
143 Buffer.BlockCopy. Removed unused private method GetHash.
144 * X509CertificateBuilder.cs: Ajusted with changes. Replaced
145 Array.Copy with Buffer.BlockCopy.
146 * X509CertificateCollection.cs: Added INSIDE_CORLIB as the class is
147 shared with corlib assembly.
148 * X509Chain.cs: FxCop-ized. Removed old ITrustAnchor support.
149 * X509ChainStatusFlags.cs: Added missing [Flags].
150 * X509Extension.cs: FxCop-ized. Added Equals, GetHashCode methods.
151 * X509Extensions.cs: FxCop-ized. Sealed class, renamed to
152 X509ExtensionCollection and inherit from CollectionBase. Added missing
154 * X509Store.cs: FxCop-ized.
155 * X509StoreManager.cs: FxCop-ized. Sealed class.
156 * X509Stores.cs: Added INSIDE_CORLIB as the class is shared with
158 * X520Attributes.cs: FxCop-ized. Added INSIDE_CORLIB.
160 2004-04-02 Lluis Sanchez Gual <lluis@ximian.com>
162 * X509Chain.cs: Fixed build for net_1_0 profile.
164 2004-03-17 Jesper Pedersen <jep@itplus.dk>
166 * PKCS12.cs: Fixed sequence problem in Pkcs8ShroudedKeyBag. Fixed key
167 bag implementation in GetBytes. Moved key bag implementation in
168 GetBytes to fit OpenSSL. Added NULL digest in MAC (GetBytes) to fit
169 OpenSSL. Added SaveToFile method.
171 2004-03-10 Sebastien Pouliot <sebastien@ximian.com>
173 * PKCS12.cs: Completed GetBytes() so it is now possible to encode
174 / encrypt PKCS12 files.
176 2004-02-26 Sebastien Pouliot <sebastien@ximian.com>
178 * X509Store.cs: Changed not to use base64 in filenames as it can
179 conflict with path separators. Now use plain hex. Now catch
180 incorrectly encoded certificates / CRL in stores. Added Name property.
182 2004-02-24 Sebastien Pouliot <sebastien@ximian.com>
184 * X509Certificate.cs: Add support for the OID "1.3.14.3.2.29" (SHA1
185 with RSA). Added a fix for "really" null algorithm parameters.
186 * X509CertificateCollection.cs: Fixed Contains and IndexOf (worked
187 on objects but not for the same certificate in a different object).
189 2004-02-23 Sebastien Pouliot <sebastien@ximian.com>
191 * TestAnchors.cs: Removed - no need to be hardcoded anymore.
192 * X509Chain.cs: Updated to use the new store for trusted roots.
193 * X509CRL.cs: New. Certificate Revocation List v1/v2 support.
194 * X509Store.cs: New. Managed each individual store (with or
195 without CRL support).
196 * X509StoreManager.cs: New. Certificate Store Manager to access
197 user and machine stores and to merge them when required.
198 * X509Stores.cs: New. Certificate stores group for either the
199 current user or the local machine.
201 2004-02-20 Sebastien Pouliot <sebastien@ximian.com>
203 * X509Chain.cs: Added an option to use a pre-built chain (like TLS
204 offers) to save time rebuilding it. Added some validations and more
205 detailled status. Still a LOT to do!
206 * X509ChainStatusFlags.cs: New. Status code for the results of the
207 chain building and verification.
209 2003-12-15 Sebastien Pouliot <spouliot@videotron.ca>
211 * TrustAnchors.cs: Added a new trusted root, Thawte, for code signing.
213 2003-12-07 Sebastien Pouliot <spouliot@videotron.ca>
215 * PKCS12.cs: New. PKCS#12 implementation. Only decoding is working
218 2003-09-01 Sebastien Pouliot <spouliot@videotron.ca>
220 * ITrustAnchors.cs: New. Interface to trust anchors.
221 * TestAnchors.cs: New. Include 2 tests anchors: Microsoft Root Agency
222 (for Windows compatibility) and Mono Test Root.
223 * TrustAnchors.cs: New. Include some widely used (commercial) code
224 signing root certificates.
225 * X509CertificateCollection.cs: New. Collection for Mono's X509
227 * X509Chain.cs: New. MINIMAL certificate chaining engine to support
228 Authenticode(tm). VERY PARTIAL IMPLEMENTATION!!!
230 2003-03-15 Sebastien Pouliot <spouliot@videotron.ca>
232 * X501Name.cs: New. X.501 Distinguished Names stuff
233 * X509Builder.cs: New. Abstract class for building X.509 related
234 structures (like certificates and CRLs).
235 * X509Certificate.cs: New. A more complete class to handle X.509
237 * X509CertificateBuilder.cs: New. Class to build X.509 certificates.
238 * X509Extension.cs: New. A base class for all X.509 extensions.
239 * X509Extensions.cs: New. X509Extension collection.
240 * X520Attributes.cs: New. X.520 attributes (mainly for X501 names)