202 instantiations of X509Certificate2
Aspire.Dashboard (1)
ResourceService\DashboardClient.cs (1)
183return [new X509Certificate2(filePath, password)];
Aspire.Dashboard.Tests (1)
tests\Shared\TestCertificateLoader.cs (1)
36return new X509Certificate2(GetCertPath(certName), password);
Binding.UDS.IntegrationTests (1)
ServiceHelper.cs (1)
64foundCert = new X509Certificate2(cert);
dotnet-dev-certs (4)
src\Shared\CertificateGeneration\CertificateManager.cs (1)
420certificate = new X509Certificate2(certificatePath, password, X509KeyStorageFlags.Exportable | X509KeyStorageFlags.EphemeralKeySet);
src\Shared\CertificateGeneration\MacOSCertificateManager.cs (1)
445var certificate = new X509Certificate2(file);
src\Shared\CertificateGeneration\UnixCertificateManager.cs (1)
156certificate = new X509Certificate2(export, "", X509KeyStorageFlags.PersistKeySet | X509KeyStorageFlags.Exportable);
src\Shared\CertificateGeneration\WindowsCertificateManager.cs (1)
60certificate = new X509Certificate2(export, "", X509KeyStorageFlags.PersistKeySet | X509KeyStorageFlags.Exportable);
dotnet-svcutil-lib (11)
FrameworkFork\System.ServiceModel\System\IdentityModel\Claims\X509CertificateClaimSet.cs (2)
34_certificate = clone ? new X509Certificate2(certificate.Handle) : certificate; 512_certificate = clone ? new X509Certificate2(certificate.Handle) : certificate;
FrameworkFork\System.ServiceModel\System\IdentityModel\Selectors\X509SecurityTokenProvider.cs (2)
24_certificate = new X509Certificate2(certificate.Handle); 49_certificate = new X509Certificate2(certificates[0].Handle);
FrameworkFork\System.ServiceModel\System\IdentityModel\Tokens\X509SecurityToken.cs (1)
56_certificate = clone ? new X509Certificate2(certificate.Handle) : certificate;
FrameworkFork\System.ServiceModel\System\ServiceModel\Channels\SslStreamSecurityUpgradeProvider.cs (3)
266_serverCertificate = new X509Certificate2(x509Token.Certificate.Handle); 402X509Certificate2 certificate2 = new X509Certificate2(certificate.Handle); 640X509Certificate2 certificate2 = new X509Certificate2(certificate.Handle);
FrameworkFork\System.ServiceModel\System\ServiceModel\Security\SecurityUtils.cs (2)
859certificate = (rawData == null || rawData.Length == 0) ? null : new X509Certificate2(rawData); 915return new X509Certificate2(certs[0].Handle);
FrameworkFork\System.ServiceModel\System\ServiceModel\X509CertificateEndpointIdentity.cs (1)
59X509Certificate2 certificate = new X509Certificate2(Convert.FromBase64String(reader.ReadElementString()));
HttpClientApp (3)
src\Shared\TestResources.cs (3)
31return new X509Certificate2(GetCertPath(certName), "testPassword"); 41return new X509Certificate2(GetCertPath(certName), password); 51return new X509Certificate2(cert.Export(X509ContentType.Pkcs12));
HttpStress (1)
Program.cs (1)
405cert = new X509Certificate2(cert.Export(X509ContentType.Pfx));
IIS.FunctionalTests (1)
src\Servers\IIS\IIS\test\Common.FunctionalTests\Infrastructure\ClientCertificateFixture.cs (1)
56imported = new X509Certificate2(export, "", X509KeyStorageFlags.PersistKeySet | X509KeyStorageFlags.Exportable);
IIS.LongTests (1)
src\Servers\IIS\IIS\test\Common.FunctionalTests\Infrastructure\ClientCertificateFixture.cs (1)
56imported = new X509Certificate2(export, "", X509KeyStorageFlags.PersistKeySet | X509KeyStorageFlags.Exportable);
IIS.NewHandler.FunctionalTests (1)
src\Servers\IIS\IIS\test\Common.FunctionalTests\Infrastructure\ClientCertificateFixture.cs (1)
56imported = new X509Certificate2(export, "", X509KeyStorageFlags.PersistKeySet | X509KeyStorageFlags.Exportable);
IIS.NewShim.FunctionalTests (1)
src\Servers\IIS\IIS\test\Common.FunctionalTests\Infrastructure\ClientCertificateFixture.cs (1)
56imported = new X509Certificate2(export, "", X509KeyStorageFlags.PersistKeySet | X509KeyStorageFlags.Exportable);
IIS.ShadowCopy.Tests (1)
src\Servers\IIS\IIS\test\Common.FunctionalTests\Infrastructure\ClientCertificateFixture.cs (1)
56imported = new X509Certificate2(export, "", X509KeyStorageFlags.PersistKeySet | X509KeyStorageFlags.Exportable);
IISExpress.FunctionalTests (1)
src\Servers\IIS\IIS\test\Common.FunctionalTests\Infrastructure\ClientCertificateFixture.cs (1)
56imported = new X509Certificate2(export, "", X509KeyStorageFlags.PersistKeySet | X509KeyStorageFlags.Exportable);
Infrastructure.Common (6)
CertificateManager.cs (1)
151var publicOnly = new X509Certificate2(certificate.RawData);
ServiceUtilHelper.cs (5)
151X509Certificate2 rootCertificate = new X509Certificate2(GetResourceFromServiceAsByteArray(RootCertificateResource)); 157return new X509Certificate2(await GetResourceFromServiceAsByteArrayAsync(MachineCertificateResource)); 362X509Certificate2 clientCertificate = new X509Certificate2(GetResourceFromServiceAsByteArray(ClientCertificateResource), "test", storageFlags); 371X509Certificate2 peerCertificate = new X509Certificate2(GetResourceFromServiceAsByteArray(PeerCertificateResource), "test", X509KeyStorageFlags.DefaultKeySet); 380X509Certificate2 peerCertificate = new X509Certificate2(GetResourceFromServiceAsByteArray(PeerCertificateResource), "test", X509KeyStorageFlags.PersistKeySet | X509KeyStorageFlags.UserKeySet);
InMemory.FunctionalTests (14)
CertificateLoaderTests.cs (4)
21var cert = new X509Certificate2(certPath, "testPassword"); 34var cert = new X509Certificate2(certPath, "testPassword"); 49var cert = new X509Certificate2(certPath, "testPassword"); 64var cert = new X509Certificate2(certPath, "testPassword");
HttpsConnectionMiddlewareTests.cs (4)
1311var cert = new X509Certificate2(certPath, "testPassword"); 1324var cert = new X509Certificate2(certPath, "testPassword"); 1343var cert = new X509Certificate2(certPath, "testPassword"); 1364var cert = new X509Certificate2(certPath, "testPassword");
HttpsTests.cs (1)
376o.ServerCertificate = new X509Certificate2(_x509Certificate2);
src\Servers\Kestrel\shared\test\CertHelper.cs (1)
165endEntity = new X509Certificate2(endEntity.Export(X509ContentType.Pfx), (string?)null, X509KeyStorageFlags.Exportable);
src\Servers\Kestrel\shared\test\CertificateAuthority.cs (1)
129return new X509Certificate2(_cert.RawData);
src\Shared\TestResources.cs (3)
31return new X509Certificate2(GetCertPath(certName), "testPassword"); 41return new X509Certificate2(GetCertPath(certName), password); 51return new X509Certificate2(cert.Export(X509ContentType.Pkcs12));
Interop.FunctionalTests (4)
Http3\Http3TlsTests.cs (1)
433var expectedCertificate = new X509Certificate2(TestResources.GetCertPath("aspnetdevcert.pfx"), "testPassword", X509KeyStorageFlags.Exportable);
src\Shared\TestResources.cs (3)
31return new X509Certificate2(GetCertPath(certName), "testPassword"); 41return new X509Certificate2(GetCertPath(certName), password); 51return new X509Certificate2(cert.Export(X509ContentType.Pkcs12));
InteropClient (1)
InteropClient.cs (1)
165var cert = new X509Certificate2(certData!);
Microsoft.AspNetCore.DataProtection.Extensions.Tests (7)
DataProtectionProviderTests.cs (7)
122using (var imported = new X509Certificate2(filePath, "password", X509KeyStorageFlags.Exportable)) 148var certWithoutKey = new X509Certificate2(Path.Combine(GetTestFilesPath(), "TestCertWithoutPrivateKey.pfx"), "password"); 176var certWithoutKey = new X509Certificate2(Path.Combine(GetTestFilesPath(), "TestCert3WithoutPrivateKey.pfx"), "password3", X509KeyStorageFlags.Exportable); 193var certWithKey = new X509Certificate2(Path.Combine(GetTestFilesPath(), "TestCert3.pfx"), "password3"); 217var certificate = new X509Certificate2(filePath, "password"); 246var certificate = new X509Certificate2(filePath, "password"); 288var certificate = new X509Certificate2(filePath, "password");
Microsoft.AspNetCore.DataProtection.Tests (7)
XmlEncryption\EncryptedXmlDecryptorTests.cs (7)
18var testCert1 = new X509Certificate2(Path.Combine(AppContext.BaseDirectory, "TestFiles", "TestCert1.pfx"), "password"); 32var testCert1 = new X509Certificate2(Path.Combine(AppContext.BaseDirectory, "TestFiles", "TestCert1.pfx"), "password"); 33var testCert2 = new X509Certificate2(Path.Combine(AppContext.BaseDirectory, "TestFiles", "TestCert2.pfx"), "password"); 50var fullCert = new X509Certificate2(Path.Combine(AppContext.BaseDirectory, "TestFiles", "TestCert1.pfx"), "password"); 51var publicKeyOnly = new X509Certificate2(Path.Combine(AppContext.BaseDirectory, "TestFiles", "TestCert1.PublicKeyOnly.cer"), ""); 68var testCert1 = new X509Certificate2(Path.Combine(AppContext.BaseDirectory, "TestFiles", "TestCert1.pfx"), "password"); 69var testCert2 = new X509Certificate2(Path.Combine(AppContext.BaseDirectory, "TestFiles", "TestCert2.pfx"), "password");
Microsoft.AspNetCore.DeveloperCertificates.XPlat (4)
src\Shared\CertificateGeneration\CertificateManager.cs (1)
420certificate = new X509Certificate2(certificatePath, password, X509KeyStorageFlags.Exportable | X509KeyStorageFlags.EphemeralKeySet);
src\Shared\CertificateGeneration\MacOSCertificateManager.cs (1)
445var certificate = new X509Certificate2(file);
src\Shared\CertificateGeneration\UnixCertificateManager.cs (1)
156certificate = new X509Certificate2(export, "", X509KeyStorageFlags.PersistKeySet | X509KeyStorageFlags.Exportable);
src\Shared\CertificateGeneration\WindowsCertificateManager.cs (1)
60certificate = new X509Certificate2(export, "", X509KeyStorageFlags.PersistKeySet | X509KeyStorageFlags.Exportable);
Microsoft.AspNetCore.DeveloperCertificates.XPlat.Tests (3)
CertificateManagerTests.cs (3)
52var exportedCertificate = new X509Certificate2(File.ReadAllBytes(CertificateName)); 151var exportedCertificate = new X509Certificate2(File.ReadAllBytes(CertificateName), certificatePassword); 218var exportedCertificate = new X509Certificate2(CertificateName);
Microsoft.AspNetCore.Http.Extensions.Tests (1)
RequestDelegateGenerator\RequestDelegateCreationTests.Forms.cs (1)
497var clientCertificate = new X509Certificate2();
Microsoft.AspNetCore.HttpOverrides (1)
CertificateForwardingOptions.cs (1)
27public Func<string, X509Certificate2> HeaderConverter = (headerValue) => new X509Certificate2(Convert.FromBase64String(headerValue));
Microsoft.AspNetCore.Server.HttpSys (2)
RequestProcessing\ClientCertLoader.cs (1)
280asyncResult.Complete((int)pClientCertInfo->CertFlags, new X509Certificate2(certEncoded));
src\Shared\HttpSys\RequestProcessing\NativeRequestContext.cs (1)
812return new X509Certificate2(certEncoded);
Microsoft.AspNetCore.Server.HttpSys.FunctionalTests (3)
src\Shared\TestResources.cs (3)
31return new X509Certificate2(GetCertPath(certName), "testPassword"); 41return new X509Certificate2(GetCertPath(certName), password); 51return new X509Certificate2(cert.Export(X509ContentType.Pkcs12));
Microsoft.AspNetCore.Server.IIS (2)
Core\IISHttpContext.FeatureCollection.cs (1)
396_certificate = new X509Certificate2(rawCertificateCopy);
src\Shared\HttpSys\RequestProcessing\NativeRequestContext.cs (1)
812return new X509Certificate2(certEncoded);
Microsoft.AspNetCore.Server.IISIntegration (1)
ForwardedTlsConnectionFeature.cs (1)
32_certificate = new X509Certificate2(bytes);
Microsoft.AspNetCore.Server.Kestrel.Core (13)
Internal\Certificates\CertificateConfigLoader.cs (3)
74return (new X509Certificate2(Path.Combine(HostEnvironment.ContentRootPath, certInfo.Path!), certInfo.Password), fullChain); 89return new X509Certificate2(certificateBytes, "", X509KeyStorageFlags.DefaultKeySet); 159return new X509Certificate2(certificatePath);
Internal\TlsConnectionFeature.cs (1)
128_ => new X509Certificate2(certificate),
ListenOptionsHttpsExtensions.cs (3)
39return listenOptions.UseHttps(new X509Certificate2(Path.Combine(env.ContentRootPath, fileName))); 53return listenOptions.UseHttps(new X509Certificate2(Path.Combine(env.ContentRootPath, fileName), password)); 68return listenOptions.UseHttps(new X509Certificate2(Path.Combine(env.ContentRootPath, fileName), password), configureOptions);
Middleware\HttpsConnectionMiddleware.cs (1)
492return new X509Certificate2(certificate);
src\Shared\CertificateGeneration\CertificateManager.cs (1)
420certificate = new X509Certificate2(certificatePath, password, X509KeyStorageFlags.Exportable | X509KeyStorageFlags.EphemeralKeySet);
src\Shared\CertificateGeneration\MacOSCertificateManager.cs (1)
445var certificate = new X509Certificate2(file);
src\Shared\CertificateGeneration\UnixCertificateManager.cs (1)
156certificate = new X509Certificate2(export, "", X509KeyStorageFlags.PersistKeySet | X509KeyStorageFlags.Exportable);
src\Shared\CertificateGeneration\WindowsCertificateManager.cs (1)
60certificate = new X509Certificate2(export, "", X509KeyStorageFlags.PersistKeySet | X509KeyStorageFlags.Exportable);
TlsConfigurationLoader.cs (1)
157var certificate = new X509Certificate2(certificatePath, certificateConfig.Password);
Microsoft.AspNetCore.Server.Kestrel.Core.Tests (9)
SniOptionsSelectorTests.cs (4)
474ServerCertificate = new X509Certificate2(Array.Empty<byte>()), 534ServerCertificate = new X509Certificate2(TestResources.GetCertPath("aspnetdevcert.pfx"), "testPassword") 561ServerCertificate = new X509Certificate2(Array.Empty<byte>()), 852ServerCertificate = new X509Certificate2(Array.Empty<byte>()),
src\Servers\Kestrel\shared\test\CertHelper.cs (1)
165endEntity = new X509Certificate2(endEntity.Export(X509ContentType.Pfx), (string?)null, X509KeyStorageFlags.Exportable);
src\Servers\Kestrel\shared\test\CertificateAuthority.cs (1)
129return new X509Certificate2(_cert.RawData);
src\Shared\TestResources.cs (3)
31return new X509Certificate2(GetCertPath(certName), "testPassword"); 41return new X509Certificate2(GetCertPath(certName), password); 51return new X509Certificate2(cert.Export(X509ContentType.Pkcs12));
Microsoft.AspNetCore.Server.Kestrel.Tests (22)
HttpsConfigurationTests.cs (3)
28serverOptions.TestOverrideDefaultCertificate = new X509Certificate2(Path.Combine("shared", "TestCertificates", "aspnetdevcert.pfx"), "testPassword"); 193serverOptions.TestOverrideDefaultCertificate = new X509Certificate2(Path.Combine("shared", "TestCertificates", "aspnetdevcert.pfx"), "testPassword"); 222ServerCertificate = new X509Certificate2(Path.Combine("shared", "TestCertificates", "aspnetdevcert.pfx"), "testPassword"),
KestrelConfigurationLoaderTests.cs (16)
249var certificate = new X509Certificate2(TestResources.GetCertPath("aspnetdevcert.pfx"), "testPassword", X509KeyStorageFlags.Exportable); 290var devCert = new X509Certificate2(TestResources.GetCertPath("aspnetdevcert.pfx"), "testPassword", X509KeyStorageFlags.Exportable); 381var otherCertificate = new X509Certificate2(otherCertificatePath, "testPassword"); 416var certificate = new X509Certificate2(TestResources.GetCertPath("aspnetdevcert.pfx"), "testPassword", X509KeyStorageFlags.Exportable); 463var certificate = new X509Certificate2(TestResources.GetCertPath("aspnetdevcert.pfx"), "testPassword", X509KeyStorageFlags.Exportable); 512var certificate = new X509Certificate2(TestResources.GetCertPath("aspnetdevcert.pfx"), "testPassword", X509KeyStorageFlags.Exportable); 563var certificate = new X509Certificate2(TestResources.GetCertPath("https-aspnet.crt")); 587var certificate = new X509Certificate2(TestResources.GetCertPath("https-aspnet.crt")); 612var certificate = new X509Certificate2(TestResources.GetCertPath("https-aspnet.crt")); 637var certificate = new X509Certificate2(TestResources.GetCertPath("https-aspnet.crt")); 675var certificate = new X509Certificate2(TestResources.GetCertPath(Path.ChangeExtension(certificateFile, "crt"))); 706var certificate = new X509Certificate2(TestResources.GetCertPath("aspnetdevcert.pfx"), "testPassword", X509KeyStorageFlags.Exportable); 859var oldCertificate = new X509Certificate2(TestResources.GetCertPath("aspnetdevcert.pfx"), "testPassword", X509KeyStorageFlags.Exportable); 862var newCertificate = new X509Certificate2(TestResources.TestCertificatePath, "testPassword", X509KeyStorageFlags.Exportable); 957var oldCertificate = new X509Certificate2(TestResources.GetCertPath("aspnetdevcert.pfx"), "testPassword", X509KeyStorageFlags.Exportable); 962var newCertificate = new X509Certificate2(TestResources.TestCertificatePath, "testPassword", X509KeyStorageFlags.Exportable);
src\Shared\TestResources.cs (3)
31return new X509Certificate2(GetCertPath(certName), "testPassword"); 41return new X509Certificate2(GetCertPath(certName), password); 51return new X509Certificate2(cert.Export(X509ContentType.Pkcs12));
Microsoft.AspNetCore.Server.Kestrel.Transport.Quic (1)
Internal\QuicConnectionContext.FeatureCollection.cs (1)
53_ => new X509Certificate2(certificate),
Microsoft.AspNetCore.Server.Kestrel.Transport.Quic.Tests (3)
src\Shared\TestResources.cs (3)
31return new X509Certificate2(GetCertPath(certName), "testPassword"); 41return new X509Certificate2(GetCertPath(certName), password); 51return new X509Certificate2(cert.Export(X509ContentType.Pkcs12));
Microsoft.AspNetCore.Shared.Tests (1)
src\Shared\HttpSys\RequestProcessing\NativeRequestContext.cs (1)
812return new X509Certificate2(certEncoded);
Microsoft.AspNetCore.SignalR.Client.FunctionalTests (2)
src\SignalR\common\Shared\TestCertificates.cs (2)
36return new X509Certificate2(certPath, "testPassword"); 42return new X509Certificate2(certPath, "testPassword");
Microsoft.Build.Tasks.Core (1)
ManifestUtil\SecurityUtil.cs (1)
613using X509Certificate2 cert = new X509Certificate2(certPath, certPassword, X509KeyStorageFlags.PersistKeySet);
Microsoft.Build.Tasks.UnitTests (1)
SecurityUtil_Tests.cs (1)
59var certificate = new X509Certificate2(pathToCertificate);
Microsoft.DotNet.Deployment.Tasks.Links (1)
Microsoft.DotNet.SignCheckLibrary (2)
Verification\VsixVerifier.cs (2)
100X509Certificate2 certificate = new X509Certificate2(packageSignature.Signer); 161X509Certificate2 certificate = new X509Certificate2(packageSignature.Signer);
Microsoft.DotNet.SignTool (1)
src\VerifySignatures.cs (1)
222certificate = new X509Certificate2(signer);
SignalR.Client.FunctionalTestApp (2)
src\SignalR\common\Shared\TestCertificates.cs (2)
36return new X509Certificate2(certPath, "testPassword"); 42return new X509Certificate2(certPath, "testPassword");
Sockets.BindTests (3)
src\Shared\TestResources.cs (3)
31return new X509Certificate2(GetCertPath(certName), "testPassword"); 41return new X509Certificate2(GetCertPath(certName), password); 51return new X509Certificate2(cert.Export(X509ContentType.Pkcs12));
Sockets.FunctionalTests (3)
src\Shared\TestResources.cs (3)
31return new X509Certificate2(GetCertPath(certName), "testPassword"); 41return new X509Certificate2(GetCertPath(certName), password); 51return new X509Certificate2(cert.Export(X509ContentType.Pkcs12));
System.Net.Quic (1)
System\Net\Quic\QuicConnection.SslConnectionOptions.cs (1)
88certificate = new X509Certificate2(certificatePtr);
System.Net.Security (5)
System\Net\CertificateValidationPal.Unix.cs (2)
47result = new X509Certificate2(remoteCertificate); 71X509Certificate2 chainCert = new X509Certificate2(certPtr);
System\Net\Security\SslStream.Protocol.cs (1)
292certificateEx = new X509Certificate2(certificate);
System\Net\Security\SslStreamCertificateContext.cs (1)
172return new SslStreamCertificateContext(new X509Certificate2(TargetCertificate), IntermediateCertificates, Trust);
System\Net\Security\SslStreamCertificateContext.Linux.cs (1)
67_privateIntermediateCertificates[i] = new X509Certificate2(intermediates[i]);
System.Security.Cryptography (17)
System\Security\Cryptography\X509Certificates\CertCollectionLoader.cs (1)
35collection.Add(new X509Certificate2(certPal));
System\Security\Cryptography\X509Certificates\DSACertificateExtensions.cs (1)
59return new X509Certificate2(pal);
System\Security\Cryptography\X509Certificates\ECDsaCertificateExtensions.cs (1)
50return new X509Certificate2(pal);
System\Security\Cryptography\X509Certificates\OpenSslCachedSystemStoreProvider.cs (2)
61X509Certificate2 clone = new X509Certificate2(Interop.Crypto.GetX509StackField(nativeColl, i)); 242X509Certificate2 cert = new X509Certificate2(pal);
System\Security\Cryptography\X509Certificates\OpenSslCertificateAssetDownloader.cs (1)
37certificate = new X509Certificate2(data);
System\Security\Cryptography\X509Certificates\OpenSslCertificateFinder.cs (1)
28return new X509Certificate2(certPal.DuplicateHandles());
System\Security\Cryptography\X509Certificates\OpenSslDirectoryBasedStoreProvider.cs (2)
140using (X509Certificate2 copy = new X509Certificate2(cert.DuplicateHandles())) 228using (X509Certificate2 copy = new X509Certificate2(cert.DuplicateHandles()))
System\Security\Cryptography\X509Certificates\OpenSslSingleCertLoader.cs (1)
31collection.Add(new X509Certificate2(localCert));
System\Security\Cryptography\X509Certificates\OpenSslX509ChainProcessor.cs (1)
892X509Certificate2 elementCert = new X509Certificate2(elementCertPtr);
System\Security\Cryptography\X509Certificates\RSACertificateExtensions.cs (1)
54return new X509Certificate2(pal);
System\Security\Cryptography\X509Certificates\X509Certificate2.cs (2)
770return new X509Certificate2(pal); 1077/// For PEM-encoded certificates in a file, use <see cref="X509Certificate2(string)" />.
System\Security\Cryptography\X509Certificates\X509CertificateLoader.netcore.cs (3)
27return new X509Certificate2(pal); 36return new X509Certificate2(pal); 142return new X509Certificate2(_pal);
System.Security.Cryptography.Pkcs (1)
Internal\Cryptography\PkcsHelpers.cs (1)
175X509Certificate2 certCopy = new X509Certificate2(originalCert.Handle);
System.Security.Cryptography.Xml (3)
System\Security\Cryptography\Xml\KeyInfoX509Data.cs (3)
38new X509Certificate2((byte[])null!) : 57X509Certificate2 certificate = new X509Certificate2(cert); 122X509Certificate2 x509 = new X509Certificate2(certificate);
System.ServiceModel.Http.Tests (1)
ServiceModel\BasicHttpsBindingTest.cs (1)
75var certificate = new X509Certificate2(certificateBytes);
System.ServiceModel.NetFramingBase (2)
System\ServiceModel\Channels\SslStreamSecurityUpgradeProvider.cs (2)
191ServerCertificate = new X509Certificate2(x509Token.Certificate); 406X509Certificate2 certificate2 = new X509Certificate2(certificate);
Templates.Blazor.Tests (4)
src\Shared\CertificateGeneration\CertificateManager.cs (1)
420certificate = new X509Certificate2(certificatePath, password, X509KeyStorageFlags.Exportable | X509KeyStorageFlags.EphemeralKeySet);
src\Shared\CertificateGeneration\MacOSCertificateManager.cs (1)
445var certificate = new X509Certificate2(file);
src\Shared\CertificateGeneration\UnixCertificateManager.cs (1)
156certificate = new X509Certificate2(export, "", X509KeyStorageFlags.PersistKeySet | X509KeyStorageFlags.Exportable);
src\Shared\CertificateGeneration\WindowsCertificateManager.cs (1)
60certificate = new X509Certificate2(export, "", X509KeyStorageFlags.PersistKeySet | X509KeyStorageFlags.Exportable);
Templates.Blazor.WebAssembly.Auth.Tests (4)
src\Shared\CertificateGeneration\CertificateManager.cs (1)
420certificate = new X509Certificate2(certificatePath, password, X509KeyStorageFlags.Exportable | X509KeyStorageFlags.EphemeralKeySet);
src\Shared\CertificateGeneration\MacOSCertificateManager.cs (1)
445var certificate = new X509Certificate2(file);
src\Shared\CertificateGeneration\UnixCertificateManager.cs (1)
156certificate = new X509Certificate2(export, "", X509KeyStorageFlags.PersistKeySet | X509KeyStorageFlags.Exportable);
src\Shared\CertificateGeneration\WindowsCertificateManager.cs (1)
60certificate = new X509Certificate2(export, "", X509KeyStorageFlags.PersistKeySet | X509KeyStorageFlags.Exportable);
Templates.Blazor.WebAssembly.Tests (4)
src\Shared\CertificateGeneration\CertificateManager.cs (1)
420certificate = new X509Certificate2(certificatePath, password, X509KeyStorageFlags.Exportable | X509KeyStorageFlags.EphemeralKeySet);
src\Shared\CertificateGeneration\MacOSCertificateManager.cs (1)
445var certificate = new X509Certificate2(file);
src\Shared\CertificateGeneration\UnixCertificateManager.cs (1)
156certificate = new X509Certificate2(export, "", X509KeyStorageFlags.PersistKeySet | X509KeyStorageFlags.Exportable);
src\Shared\CertificateGeneration\WindowsCertificateManager.cs (1)
60certificate = new X509Certificate2(export, "", X509KeyStorageFlags.PersistKeySet | X509KeyStorageFlags.Exportable);
Templates.Mvc.Tests (4)
src\Shared\CertificateGeneration\CertificateManager.cs (1)
420certificate = new X509Certificate2(certificatePath, password, X509KeyStorageFlags.Exportable | X509KeyStorageFlags.EphemeralKeySet);
src\Shared\CertificateGeneration\MacOSCertificateManager.cs (1)
445var certificate = new X509Certificate2(file);
src\Shared\CertificateGeneration\UnixCertificateManager.cs (1)
156certificate = new X509Certificate2(export, "", X509KeyStorageFlags.PersistKeySet | X509KeyStorageFlags.Exportable);
src\Shared\CertificateGeneration\WindowsCertificateManager.cs (1)
60certificate = new X509Certificate2(export, "", X509KeyStorageFlags.PersistKeySet | X509KeyStorageFlags.Exportable);
Templates.Tests (4)
src\Shared\CertificateGeneration\CertificateManager.cs (1)
420certificate = new X509Certificate2(certificatePath, password, X509KeyStorageFlags.Exportable | X509KeyStorageFlags.EphemeralKeySet);
src\Shared\CertificateGeneration\MacOSCertificateManager.cs (1)
445var certificate = new X509Certificate2(file);
src\Shared\CertificateGeneration\UnixCertificateManager.cs (1)
156certificate = new X509Certificate2(export, "", X509KeyStorageFlags.PersistKeySet | X509KeyStorageFlags.Exportable);
src\Shared\CertificateGeneration\WindowsCertificateManager.cs (1)
60certificate = new X509Certificate2(export, "", X509KeyStorageFlags.PersistKeySet | X509KeyStorageFlags.Exportable);
WebTransportInteractiveSampleApp (1)
Program.cs (1)
195cert = new(crt.Export(X509ContentType.Pfx));
WebTransportSampleApp (1)
Program.cs (1)
81cert = new(crt.Export(X509ContentType.Pfx));
WsFedSample (1)
Program.cs (1)
57return new X509Certificate2(certificatePayload, "testPassword");
1848 references to X509Certificate2
Aspire.Dashboard.Tests (14)
Integration\IntegrationTestHelpers.cs (6)
24private static readonly X509Certificate2 s_testCertificate = TestCertificateLoader.GetTestCertificate(); 114Action<X509Certificate2?>? validationCallback = null, 123validationCallback?.Invoke((X509Certificate2)cert!); 139Action<X509Certificate2?>? validationCallback = null, 155Action<X509Certificate2?>? validationCallback = null, 184validationCallback?.Invoke((X509Certificate2)cert!);
Integration\OtlpGrpcServiceTests.cs (5)
238X509Certificate2? clientCallbackCert = null; 312var clientCertificate = TestCertificateLoader.GetTestCertificate("eku.client.pfx"); 331var clientCertificate = TestCertificateLoader.GetTestCertificate("eku.client.pfx"); 332X509Certificate2? clientCallbackCert = null; 371X509Certificate2? clientCallbackCert = null;
Integration\OtlpHttpServiceTests.cs (1)
188X509Certificate2? clientCallbackCert = null;
tests\Shared\TestCertificateLoader.cs (2)
20public static X509Certificate2 GetTestCertificate(string certName = "testCert.pfx") 25public static X509Certificate2 GetTestCertificate(string certName, string password)
Binding.UDS.IntegrationTests (5)
ServiceHelper.cs (4)
46public static X509Certificate2 GetServiceCertificate() 49X509Certificate2 foundCert = null; 57foreach (var cert in certificates) 75foreach (var cert in certificates)
UDSBindingTests.cs (1)
113var cert = ServiceHelper.GetServiceCertificate();
Certificate.Optional.Sample (1)
Program.cs (1)
26var serverCertificate = CertificateLoader.LoadFromStoreCert(
Client.ExpectedExceptions.IntegrationTests (1)
ExpectedExceptionTests.4.0.0.cs (1)
399public override void Validate(X509Certificate2 certificate)
ConfigurationSchemaGenerator.Tests (1)
GeneratorTests.cs (1)
455MetadataReference.CreateFromFile(typeof(X509Certificate2).Assembly.Location)
dotnet-dev-certs (106)
Program.cs (4)
279var validCertificates = new List<X509Certificate2>(); 287foreach (var certificate in certificates) 328private static void ReportCertificates(IReporter reporter, IReadOnlyList<X509Certificate2> certificates, string certificateState) 345foreach (var certificate in certificates)
src\Shared\CertificateGeneration\CertificateManager.cs (49)
69public static bool IsHttpsDevelopmentCertificate(X509Certificate2 certificate) 81public IList<X509Certificate2> ListCertificates( 88var certificates = new List<X509Certificate2>(); 94IEnumerable<X509Certificate2> matchingCertificates = certificates; 133return (IList<X509Certificate2>)matchingCertificates; 146bool HasOid(X509Certificate2 certificate, string oid) => 150static byte GetCertificateVersion(X509Certificate2 c) 169bool IsValidCertificate(X509Certificate2 certificate, DateTimeOffset currentDate, bool requireExportable) => 176protected virtual void PopulateCertificatesFromStore(X509Store store, List<X509Certificate2> certificates, bool requireExportable) 178certificates.AddRange(store.Certificates.OfType<X509Certificate2>()); 181public IList<X509Certificate2> GetHttpsCertificates() => 211X509Certificate2? certificate = null; 221foreach (var candidate in currentUserCertificates) 416X509Certificate2 certificate; 475foreach (var certificate in filteredCertificates) 483public abstract TrustLevel GetTrustLevel(X509Certificate2 certificate); 485protected abstract X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation); 488protected abstract TrustLevel TrustCertificateCore(X509Certificate2 certificate); 490protected abstract bool IsExportable(X509Certificate2 c); 492protected abstract void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate); 494protected abstract IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation); 502internal void ExportCertificate(X509Certificate2 certificate, string path, bool includePrivateKey, string? password, CertificateKeyExportFormat format) 646internal X509Certificate2 CreateAspNetCoreHttpsDevelopmentCertificate(DateTimeOffset notBefore, DateTimeOffset notAfter) 692var certificate = CreateSelfSignedCertificate(subject, extensions, notBefore, notAfter); 696internal X509Certificate2 SaveCertificate(X509Certificate2 certificate) 712internal TrustLevel TrustCertificate(X509Certificate2 certificate) 739foreach (var certificate in certificates) 747internal void RemoveCertificate(X509Certificate2 certificate, RemoveLocations locations) 768internal abstract CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate); 770internal abstract void CorrectCertificateState(X509Certificate2 candidate); 772internal static X509Certificate2 CreateSelfSignedCertificate( 786var result = request.CreateSelfSigned(notBefore, notAfter); 801internal static void DisposeCertificates(IEnumerable<X509Certificate2> disposables) 803foreach (var disposable in disposables) 815protected void RemoveCertificateFromUserStore(X509Certificate2 certificate) 833protected virtual void RemoveCertificateFromUserStoreCore(X509Certificate2 certificate) 837var matching = store.Certificates 838.OfType<X509Certificate2>() 844internal static string ToCertificateDescription(IEnumerable<X509Certificate2> certificates) 857internal static string GetDescription(X509Certificate2 c) => 863internal static bool AreCertificatesEqual(X509Certificate2 cert1, X509Certificate2 cert2) 877internal static bool TryFindCertificateInStore(X509Store store, X509Certificate2 certificate, [NotNullWhen(true)] out X509Certificate2? foundCertificate) 888var certificatesToDispose = new List<X509Certificate2>(); 889foreach (var candidate in certificatesWithSubjectName.OfType<X509Certificate2>())
src\Shared\CertificateGeneration\MacOSCertificateManager.cs (28)
15/// Normally, we avoid the use of <see cref="X509Certificate2.Thumbprint"/> because it's a SHA-1 hash and, therefore, 85protected override TrustLevel TrustCertificateCore(X509Certificate2 publicCertificate) 129internal override CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate) 136internal override void CorrectCertificateState(X509Certificate2 candidate) 151public override TrustLevel GetTrustLevel(X509Certificate2 certificate) 177protected override void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate) 198private static void RemoveAdminTrustRule(X509Certificate2 certificate) 237private static void RemoveCertificateFromKeychain(string keychain, X509Certificate2 certificate) 274private static bool IsCertOnKeychain(string keychain, X509Certificate2 certificate) 305protected override bool IsExportable(X509Certificate2 c) => true; 307protected override X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation) 336private static void SaveCertificateToUserKeychain(X509Certificate2 certificate) 373private static string GetCertificateFilePath(X509Certificate2 certificate) => 376protected override IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation) 381protected override void PopulateCertificatesFromStore(X509Store store, List<X509Certificate2> certificates, bool requireExportable) 387var certsFromStore = new List<X509Certificate2>(); 418private sealed class ThumbprintComparer : IEqualityComparer<X509Certificate2> 420public static readonly IEqualityComparer<X509Certificate2> Instance = new ThumbprintComparer(); 423bool IEqualityComparer<X509Certificate2>.Equals(X509Certificate2 x, X509Certificate2 y) => 427int IEqualityComparer<X509Certificate2>.GetHashCode([DisallowNull] X509Certificate2 obj) => 431private static ICollection<X509Certificate2> GetCertsFromDisk() 433var certsFromDisk = new List<X509Certificate2>(); 445var certificate = new X509Certificate2(file); 459protected override void RemoveCertificateFromUserStoreCore(X509Certificate2 certificate)
src\Shared\CertificateGeneration\UnixCertificateManager.cs (14)
51public override TrustLevel GetTrustLevel(X509Certificate2 certificate) 97var candidate = X509CertificateLoader.LoadCertificateFromFile(certPath); 152protected override X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation) 169internal override CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate) 176internal override void CorrectCertificateState(X509Certificate2 candidate) 182protected override bool IsExportable(X509Certificate2 c) => true; 184protected override TrustLevel TrustCertificateCore(X509Certificate2 certificate) 200using var publicCertificate = X509CertificateLoader.LoadCertificate(certificate.Export(X509ContentType.Cert)); 231using var existingCert = X509CertificateLoader.LoadCertificateFromFile(certPath); 359protected override void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate) 366if (TryFindCertificateInStore(store, certificate, out var matching)) 451protected override IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation) 548private static string GetCertificateNickname(X509Certificate2 certificate)
src\Shared\CertificateGeneration\WindowsCertificateManager.cs (11)
30protected override bool IsExportable(X509Certificate2 c) 44internal override CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate) 49internal override void CorrectCertificateState(X509Certificate2 candidate) 54protected override X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation) 74protected override TrustLevel TrustCertificateCore(X509Certificate2 certificate) 89using var publicCertificate = X509CertificateLoader.LoadCertificate(certificate.Export(X509ContentType.Cert)); 101protected override void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate) 108if (TryFindCertificateInStore(store, certificate, out var matching)) 120public override TrustLevel GetTrustLevel(X509Certificate2 certificate) 127protected override IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation)
dotnet-svcutil-lib (71)
CmdCredentialsProvider.cs (6)
81foreach (X509Certificate2 certificate in certificateStore.Certificates) 131X509Certificate2 cert = null; 141private X509Certificate2 SelectCertificateFromCollection(X509Certificate2Collection selectedCerts, Uri serviceUri) 149var candidateCerts = new List<X509Certificate2>(); 151foreach (var cert in selectedCerts) 171var selectedCert = candidateCerts[idx - 1];
FrameworkFork\System.ServiceModel\System\IdentityModel\Claims\X509CertificateClaimSet.cs (8)
16private X509Certificate2 _certificate; 25public X509CertificateClaimSet(X509Certificate2 certificate) 30internal X509CertificateClaimSet(X509Certificate2 certificate, bool clone) 122public X509Certificate2 X509Certificate 299private static string[] GetDnsFromExtensions(X509Certificate2 cert) 493private X509Certificate2 _certificate; 498public X509Identity(X509Certificate2 certificate) 509internal X509Identity(X509Certificate2 certificate, bool clone, bool disposable)
FrameworkFork\System.ServiceModel\System\IdentityModel\SecurityUtils.cs (3)
286internal static string GetCertificateId(X509Certificate2 certificate) 293internal static void AppendCertificateIdentityName(StringBuilder str, X509Certificate2 certificate) 385internal static void ResetCertificate(X509Certificate2 certificate)
FrameworkFork\System.ServiceModel\System\IdentityModel\Selectors\X509CertificateValidator.cs (3)
45public abstract void Validate(X509Certificate2 certificate); 49public override void Validate(X509Certificate2 certificate) 76public override void Validate(X509Certificate2 certificate)
FrameworkFork\System.ServiceModel\System\IdentityModel\Selectors\X509SecurityTokenProvider.cs (3)
15private X509Certificate2 _certificate; 17public X509SecurityTokenProvider(X509Certificate2 certificate) 58public X509Certificate2 Certificate
FrameworkFork\System.ServiceModel\System\IdentityModel\Tokens\X509SecurityToken.cs (8)
15private X509Certificate2 _certificate; 22public X509SecurityToken(X509Certificate2 certificate) 27public X509SecurityToken(X509Certificate2 certificate, string id) 32internal X509SecurityToken(X509Certificate2 certificate, bool clone) 37internal X509SecurityToken(X509Certificate2 certificate, bool clone, bool disposable) 42internal X509SecurityToken(X509Certificate2 certificate, string id, bool clone) 47internal X509SecurityToken(X509Certificate2 certificate, string id, bool clone, bool disposable) 104public X509Certificate2 Certificate
FrameworkFork\System.ServiceModel\System\IdentityModel\Tokens\X509WindowsSecurityToken.cs (5)
17public X509WindowsSecurityToken(X509Certificate2 certificate, WindowsIdentity windowsIdentity) 22public X509WindowsSecurityToken(X509Certificate2 certificate, WindowsIdentity windowsIdentity, string id) 27public X509WindowsSecurityToken(X509Certificate2 certificate, WindowsIdentity windowsIdentity, string authenticationType, string id) 32internal X509WindowsSecurityToken(X509Certificate2 certificate, WindowsIdentity windowsIdentity, string authenticationType, bool clone) 37internal X509WindowsSecurityToken(X509Certificate2 certificate, WindowsIdentity windowsIdentity, string authenticationType, string id, bool clone)
FrameworkFork\System.ServiceModel\System\ServiceModel\Channels\ClientWebSocketTransportDuplexSessionChannel.cs (2)
81X509Certificate2 clientCertificate = null; 190private async Task<WebSocket> CreateWebSocketWithFactoryAsync(X509Certificate2 certificate, TimeoutHelper timeoutHelper)
FrameworkFork\System.ServiceModel\System\ServiceModel\Channels\HttpsChannelFactory.cs (2)
23private Func<HttpRequestMessage, X509Certificate2, X509Chain, SslPolicyErrors, bool> _remoteCertificateValidationCallback; 186private bool RemoteCertificateValidationCallback(HttpRequestMessage sender, X509Certificate2 certificate, X509Chain chain, SslPolicyErrors sslPolicyErrors)
FrameworkFork\System.ServiceModel\System\ServiceModel\Channels\ServiceModelHttpMessageHandler.CoreClr.cs (1)
72public Func<HttpRequestMessage, X509Certificate2, X509Chain, SslPolicyErrors, bool>
FrameworkFork\System.ServiceModel\System\ServiceModel\Channels\SslStreamSecurityUpgradeProvider.cs (5)
31private X509Certificate2 _serverCertificate; 108public X509Certificate2 ServerCertificate 312private X509Certificate2 _clientCertificate = null; 402X509Certificate2 certificate2 = new X509Certificate2(certificate.Handle); 640X509Certificate2 certificate2 = new X509Certificate2(certificate.Handle);
FrameworkFork\System.ServiceModel\System\ServiceModel\Channels\TransportSecurityHelpers.cs (5)
373private static Func<HttpRequestMessage, X509Certificate2, X509Chain, SslPolicyErrors, bool> ChainValidator(Func<HttpRequestMessage, X509Certificate2, X509Chain, SslPolicyErrors, bool> previousValidator) 380Func<HttpRequestMessage, X509Certificate2, X509Chain, SslPolicyErrors, bool> chained = 393private static bool OnValidateServerCertificate(HttpRequestMessage request, X509Certificate2 certificate, X509Chain chain, 427private static void ValidateServerCertificate(X509Certificate2 certificate, string thumbprint)
FrameworkFork\System.ServiceModel\System\ServiceModel\Security\SecurityUtils.cs (7)
597internal static void AppendCertificateIdentityName(StringBuilder str, X509Certificate2 certificate) 857internal static bool TryCreateX509CertificateFromRawData(byte[] rawData, out X509Certificate2 certificate) 882internal static X509Certificate2 GetCertificateFromStore(StoreName storeName, StoreLocation storeLocation, 885X509Certificate2 certificate = GetCertificateFromStoreCore(storeName, storeLocation, findType, findValue, target, true); 893X509FindType findType, object findValue, EndpointAddress target, out X509Certificate2 certificate) 899private static X509Certificate2 GetCertificateFromStoreCore(StoreName storeName, StoreLocation storeLocation, 1006internal static void ResetCertificate(X509Certificate2 certificate)
FrameworkFork\System.ServiceModel\System\ServiceModel\Security\WSSecurityJan2004.cs (1)
485X509Certificate2 certificate;
FrameworkFork\System.ServiceModel\System\ServiceModel\Security\X509CertificateInitiatorClientCredential.cs (2)
15private X509Certificate2 _certificate; 29public X509Certificate2 Certificate
FrameworkFork\System.ServiceModel\System\ServiceModel\Security\X509CertificateRecipientClientCredential.cs (7)
19private X509Certificate2 _defaultCertificate; 20private Dictionary<Uri, X509Certificate2> _scopedCertificates; 26_scopedCertificates = new Dictionary<Uri, X509Certificate2>(); 38_scopedCertificates = new Dictionary<Uri, X509Certificate2>(); 46public X509Certificate2 DefaultCertificate 59public Dictionary<Uri, X509Certificate2> ScopedCertificates 127X509Certificate2 certificate = SecurityUtils.GetCertificateFromStore(storeName, storeLocation, findType, findValue, null);
FrameworkFork\System.ServiceModel\System\ServiceModel\X509CertificateEndpointIdentity.cs (3)
19public X509CertificateEndpointIdentity(X509Certificate2 certificate) 29public X509CertificateEndpointIdentity(X509Certificate2 primaryCertificate, X509Certificate2Collection supportingCertificates) 59X509Certificate2 certificate = new X509Certificate2(Convert.FromBase64String(reader.ReadElementString()));
Http3SampleApp (1)
Program.cs (1)
27var cert = CertificateLoader.LoadFromStoreCert("localhost", StoreName.My.ToString(), StoreLocation.CurrentUser, false);
HttpClientApp (5)
src\Shared\TestResources.cs (5)
20public static X509Certificate2 GetTestCertificate(string certName = "testCert.pfx") 39public static X509Certificate2 GetTestCertificate(string certName, string password) 44public static X509Certificate2 GetTestCertificateWithKey(string certName, string keyName) 46var cert = X509Certificate2.CreateFromPemFile(GetCertPath(certName), GetCertPath(keyName));
HttpStress (1)
Program.cs (1)
402X509Certificate2 cert = certReq.CreateSelfSigned(DateTimeOffset.UtcNow.AddMonths(-1), DateTimeOffset.UtcNow.AddMonths(1));
IIS.FunctionalTests (7)
src\Servers\IIS\IIS\test\Common.FunctionalTests\HttpsTests.cs (2)
79X509Certificate2 cert = null; 111foreach (var otherCert in store.Certificates)
src\Servers\IIS\IIS\test\Common.FunctionalTests\Infrastructure\ClientCertificateFixture.cs (5)
13private X509Certificate2 _certificate; 16public X509Certificate2 GetOrCreateCertificate() 50var parentCert = parentRequest.CreateSelfSigned(notBefore, notAfter); 53var imported = parentCert; 83var cert = store.Certificates[i];
IIS.LongTests (5)
src\Servers\IIS\IIS\test\Common.FunctionalTests\Infrastructure\ClientCertificateFixture.cs (5)
13private X509Certificate2 _certificate; 16public X509Certificate2 GetOrCreateCertificate() 50var parentCert = parentRequest.CreateSelfSigned(notBefore, notAfter); 53var imported = parentCert; 83var cert = store.Certificates[i];
IIS.NewHandler.FunctionalTests (5)
src\Servers\IIS\IIS\test\Common.FunctionalTests\Infrastructure\ClientCertificateFixture.cs (5)
13private X509Certificate2 _certificate; 16public X509Certificate2 GetOrCreateCertificate() 50var parentCert = parentRequest.CreateSelfSigned(notBefore, notAfter); 53var imported = parentCert; 83var cert = store.Certificates[i];
IIS.NewShim.FunctionalTests (5)
src\Servers\IIS\IIS\test\Common.FunctionalTests\Infrastructure\ClientCertificateFixture.cs (5)
13private X509Certificate2 _certificate; 16public X509Certificate2 GetOrCreateCertificate() 50var parentCert = parentRequest.CreateSelfSigned(notBefore, notAfter); 53var imported = parentCert; 83var cert = store.Certificates[i];
IIS.ShadowCopy.Tests (5)
src\Servers\IIS\IIS\test\Common.FunctionalTests\Infrastructure\ClientCertificateFixture.cs (5)
13private X509Certificate2 _certificate; 16public X509Certificate2 GetOrCreateCertificate() 50var parentCert = parentRequest.CreateSelfSigned(notBefore, notAfter); 53var imported = parentCert; 83var cert = store.Certificates[i];
IISExpress.FunctionalTests (7)
src\Servers\IIS\IIS\test\Common.FunctionalTests\HttpsTests.cs (2)
79X509Certificate2 cert = null; 111foreach (var otherCert in store.Certificates)
src\Servers\IIS\IIS\test\Common.FunctionalTests\Infrastructure\ClientCertificateFixture.cs (5)
13private X509Certificate2 _certificate; 16public X509Certificate2 GetOrCreateCertificate() 50var parentCert = parentRequest.CreateSelfSigned(notBefore, notAfter); 53var imported = parentCert; 83var cert = store.Certificates[i];
Infrastructure.Common (43)
CertificateManager.cs (24)
88public static X509Certificate2 AddToStoreIfNeeded(StoreName storeName, 90X509Certificate2 certificate) 92X509Certificate2 resultCert = null; 134public static X509Certificate2 AddToOSXKeyChainIfNeeded(SafeKeychainHandle keychain, 135X509Certificate2 certificate) 137X509Certificate2 resultCert = null; 151var publicOnly = new X509Certificate2(certificate.RawData); 168private static X509Certificate2 CertificateFromThumbprint(X509Store store, string thumbprint, bool validOnly) 174private static X509Certificate2 CertificateFromThumbprint(StoreName storeName, 179X509Certificate2 resultCert = null; 189private static X509Certificate2 KeychainCertificateFromThumbprint(string thumbprint, bool validOnly) 191X509Certificate2 resultCert = null; 204public static X509Certificate2 RootCertificateFromThumprint(string thumbprint, bool validOnly) 210public static X509Certificate2 ClientCertificateFromThumprint(string thumbprint, bool validOnly) 216public static X509Certificate2 PeerCertificateFromThumprint(string thumbprint, bool validOnly) 222public static X509Certificate2 OSXLocalKeychainCertificateFromThumprint(string thumbprint, bool validOnly) 230public static X509Certificate2 InstallCertificateToRootStore(X509Certificate2 certificate) 240public static X509Certificate2 InstallCertificateToMyStore(X509Certificate2 certificate) 253public static X509Certificate2 InstallCertificateToTrustedPeopleStore(X509Certificate2 certificate) 268public static X509Certificate2 InstallCertificateToOSXKeychainStore(X509Certificate2 certificate)
ServiceUtilHelper.cs (19)
33private static X509Certificate2 s_rootCertificate = null; 34private static X509Certificate2 s_clientCertificate = null; 35private static X509Certificate2 s_peerCertificate = null; 41public static X509Certificate2 RootCertificate 53public static X509Certificate2 ClientCertificate 65public static X509Certificate2 PeerCertificate 101X509Certificate2 rootCertificate = null; 149private static X509Certificate2 InstallRootCertificateFromServer() 151X509Certificate2 rootCertificate = new X509Certificate2(GetResourceFromServiceAsByteArray(RootCertificateResource)); 155public static async Task<X509Certificate2> GetServiceMacineCertFromServerAsync() 175X509Certificate2 clientCertificate = null; 249X509Certificate2 peerCertificate = null; 303X509Certificate2 peerCertificate = null; 350private static X509Certificate2 InstallClientCertificateFromServer() 362X509Certificate2 clientCertificate = new X509Certificate2(GetResourceFromServiceAsByteArray(ClientCertificateResource), "test", storageFlags); 369private static X509Certificate2 InstallOSXPeerCertificateFromServer() 371X509Certificate2 peerCertificate = new X509Certificate2(GetResourceFromServiceAsByteArray(PeerCertificateResource), "test", X509KeyStorageFlags.DefaultKeySet); 378private static X509Certificate2 InstallPeerCertificateFromServer() 380X509Certificate2 peerCertificate = new X509Certificate2(GetResourceFromServiceAsByteArray(PeerCertificateResource), "test", X509KeyStorageFlags.PersistKeySet | X509KeyStorageFlags.UserKeySet);
InMemory.FunctionalTests (54)
CertificateLoaderTests.cs (4)
21var cert = new X509Certificate2(certPath, "testPassword"); 34var cert = new X509Certificate2(certPath, "testPassword"); 49var cert = new X509Certificate2(certPath, "testPassword"); 64var cert = new X509Certificate2(certPath, "testPassword");
EventSourceTests.cs (1)
25private static readonly X509Certificate2 _x509Certificate2 = TestResources.GetTestCertificate();
Http2\TlsTests.cs (1)
27private static readonly X509Certificate2 _x509Certificate2 = TestResources.GetTestCertificate();
HttpsConnectionMiddlewareTests.cs (15)
31private static readonly X509Certificate2 _x509Certificate2 = TestResources.GetTestCertificate(); 32private static readonly X509Certificate2 _x509Certificate2NoExt = TestResources.GetTestCertificate("no_extensions.pfx"); 557var clientCert = await context.Connection.GetClientCertificateAsync(); 601var clientCert = await context.Connection.GetClientCertificateAsync(); 685var clientCert = await context.Connection.GetClientCertificateAsync(); 733var clientCert = await context.Connection.GetClientCertificateAsync(); 775var clientCert = await context.Connection.GetClientCertificateAsync(); 808(var clientCertificate, var clientChain) = CertHelper.GenerateCertificates(nameof(ServerCertificateChainInExtraStore), longChain: true, serverCertificate: false); 1042var clientCert = await context.Connection.GetClientCertificateAsync(); 1311var cert = new X509Certificate2(certPath, "testPassword"); 1324var cert = new X509Certificate2(certPath, "testPassword"); 1343var cert = new X509Certificate2(certPath, "testPassword"); 1364var cert = new X509Certificate2(certPath, "testPassword"); 1468private static HttpsConnectionMiddleware CreateMiddleware(X509Certificate2 serverCertificate) 1514private static SslStream OpenSslStreamWithCert(Stream rawStream, X509Certificate2 clientCertificate = null)
HttpsTests.cs (3)
29private static readonly X509Certificate2 _x509Certificate2 = TestResources.GetTestCertificate(); 716var testCert = _x509Certificate2; 752var testCert = _x509Certificate2;
KestrelMetricsTests.cs (1)
29private static readonly X509Certificate2 _x509Certificate2 = TestResources.GetTestCertificate();
src\Servers\Kestrel\shared\test\CertHelper.cs (5)
72foreach (X509Certificate2 cert in store.Certificates) 89foreach (X509Certificate2 cert in store.Certificates) 121internal static (X509Certificate2 certificate, X509Certificate2Collection) GenerateCertificates(string targetName, [CallerMemberName] string? testName = null, bool longChain = false, bool serverCertificate = true) 137out X509Certificate2 endEntity, 164X509Certificate2 ephemeral = endEntity;
src\Servers\Kestrel\shared\test\CertificateAuthority.cs (19)
78private X509Certificate2 _cert; 88private X509Certificate2 _ocspResponder; 106X509Certificate2 cert, 127internal X509Certificate2 CloneIssuerCert() 132internal void Revoke(X509Certificate2 certificate, DateTimeOffset revocationTime) 149internal X509Certificate2 CreateSubordinateCA( 167internal X509Certificate2 CreateEndEntity(string subject, RSA publicKey, X509ExtensionCollection extensions) 176internal X509Certificate2 CreateOcspSigner(string subject, RSA publicKey) 222X509Certificate2 dispose = _cert; 226using (X509Certificate2 tmp = req.Create( 237private X509Certificate2 CreateCertificate( 500internal void DesignateOcspResponder(X509Certificate2 responder) 513X509Certificate2 responder = (_ocspResponder ?? _cert); 793out X509Certificate2 endEntityCert, 838X509Certificate2 rootCert = rootReq.CreateSelfSigned(start.AddDays(-2), end.AddDays(2)); 859X509Certificate2 intermedCert; 862X509Certificate2 intermedPub = issuingAuthority.CreateSubordinateCA( 891X509Certificate2 tmp = endEntityCert; 912out X509Certificate2 endEntityCert,
src\Shared\TestResources.cs (5)
20public static X509Certificate2 GetTestCertificate(string certName = "testCert.pfx") 39public static X509Certificate2 GetTestCertificate(string certName, string password) 44public static X509Certificate2 GetTestCertificateWithKey(string certName, string keyName) 46var cert = X509Certificate2.CreateFromPemFile(GetCertPath(certName), GetCertPath(keyName));
InProcessWebSite (1)
src\Servers\IIS\IIS\test\testassets\InProcessWebSite\Startup.cs (1)
144var clientCert = context.Connection.ClientCertificate;
Interop.FunctionalTests (6)
Http3\Http3TlsTests.cs (1)
433var expectedCertificate = new X509Certificate2(TestResources.GetCertPath("aspnetdevcert.pfx"), "testPassword", X509KeyStorageFlags.Exportable);
src\Shared\TestResources.cs (5)
20public static X509Certificate2 GetTestCertificate(string certName = "testCert.pfx") 39public static X509Certificate2 GetTestCertificate(string certName, string password) 44public static X509Certificate2 GetTestCertificateWithKey(string certName, string keyName) 46var cert = X509Certificate2.CreateFromPemFile(GetCertPath(certName), GetCertPath(keyName));
InteropClient (1)
InteropClient.cs (1)
165var cert = new X509Certificate2(certData!);
Kestrel.SampleApp (4)
ClientCertBufferingFeature.cs (2)
51public X509Certificate2 ClientCertificate 57public async Task<X509Certificate2> GetClientCertificateAsync(CancellationToken cancellationToken)
Startup.cs (2)
51var cert = await context.Connection.GetClientCertificateAsync(); 128var localhostCert = CertificateLoader.LoadFromStoreCert("localhost", "My", StoreLocation.CurrentUser, allowInvalid: true);
Microsoft.AspNetCore.Authentication.Certificate (13)
CertificateAuthenticationHandler.cs (4)
59var clientCertificate = await Context.Connection.GetClientCertificateAsync(); 115private async Task<AuthenticateResult> ValidateCertificateAsync(X509Certificate2 clientCertificate) 187private X509ChainPolicy BuildChainPolicy(X509Certificate2 certificate, bool isCertificateSelfSigned) 237private ClaimsPrincipal CreatePrincipal(X509Certificate2 certificate)
CertificateValidationCache.cs (3)
41public AuthenticateResult? Get(HttpContext context, X509Certificate2 certificate) 50public void Put(HttpContext context, X509Certificate2 certificate, AuthenticateResult result) 65private static string ComputeKey(X509Certificate2 certificate)
Events\CertificateValidatedContext.cs (1)
31public X509Certificate2 ClientCertificate { get; set; } = default!;
ICertificateValidationCache.cs (2)
20AuthenticateResult? Get(HttpContext context, X509Certificate2 certificate); 28void Put(HttpContext context, X509Certificate2 certificate, AuthenticateResult result);
X509CertificateExtensions.cs (3)
10/// Extension methods for <see cref="X509Certificate2"/>. 17/// <param name="certificate">The <see cref="X509Certificate2"/>.</param> 19public static bool IsSelfSigned(this X509Certificate2 certificate)
Microsoft.AspNetCore.Authentication.Test (11)
CertificateTests.cs (1)
789X509Certificate2 clientCertificate = null,
src\Shared\test\Certificates\Certificates.cs (10)
66private static X509Certificate2 MakeCert( 74private static X509Certificate2 MakeCert( 101public static X509Certificate2 SelfSignedPrimaryRoot { get; private set; } 103public static X509Certificate2 SignedSecondaryRoot { get; private set; } 105public static X509Certificate2 SignedClient { get; private set; } 107public static X509Certificate2 SelfSignedValidWithClientEku { get; private set; } 109public static X509Certificate2 SelfSignedValidWithNoEku { get; private set; } 111public static X509Certificate2 SelfSignedValidWithServerEku { get; private set; } 113public static X509Certificate2 SelfSignedNotYetValid { get; private set; } 115public static X509Certificate2 SelfSignedExpired { get; private set; }
Microsoft.AspNetCore.DataProtection (27)
DataProtectionBuilderExtensions.cs (3)
215public static IDataProtectionBuilder ProtectKeysWithCertificate(this IDataProtectionBuilder builder, X509Certificate2 certificate) 274public static IDataProtectionBuilder UnprotectKeysWithAnyCertificate(this IDataProtectionBuilder builder, params X509Certificate2[] certificates) 282foreach (var certificate in certificates)
XmlEncryption\CertificateResolver.cs (4)
18/// Locates an <see cref="X509Certificate2"/> given its thumbprint. 21/// <returns>The resolved <see cref="X509Certificate2"/>, or null if the certificate cannot be found.</returns> 22public virtual X509Certificate2? ResolveCertificate(string thumbprint) 35private static X509Certificate2? GetCertificateFromStore(StoreLocation location, string thumbprint)
XmlEncryption\CertificateXmlEncryptor.cs (6)
21private readonly Func<X509Certificate2> _certFactory; 40/// Creates a <see cref="CertificateXmlEncryptor"/> given an <see cref="X509Certificate2"/> instance 43public CertificateXmlEncryptor(X509Certificate2 certificate, ILoggerFactory loggerFactory) 101private Func<X509Certificate2> CreateCertFactory(string thumbprint, ICertificateResolver resolver) 107var cert = resolver.ResolveCertificate(thumbprint); 126?? CryptoUtil.Fail<X509Certificate2>("Cert factory returned null.");
XmlEncryption\EncryptedXmlDecryptor.cs (3)
87/// Can decrypt the XML key data from an <see cref="X509Certificate2"/> that is not in stored in <see cref="X509Store"/>. 139if (!(certEnum.Current is X509Certificate2 certInfo)) 149foreach (var keyDecryptionCert in keyDecryptionCerts)
XmlEncryption\ICertificateResolver.cs (4)
9/// Provides services for locating <see cref="X509Certificate2"/> instances. 14/// Locates an <see cref="X509Certificate2"/> given its thumbprint. 17/// <returns>The resolved <see cref="X509Certificate2"/>, or null if the certificate cannot be found.</returns> 18X509Certificate2? ResolveCertificate(string thumbprint);
XmlEncryption\XmlKeyDecryptionOptions.cs (7)
16private readonly Dictionary<string, List<X509Certificate2>> _certs = new Dictionary<string, List<X509Certificate2>>(StringComparer.Ordinal); 20public bool TryGetKeyDecryptionCertificates(X509Certificate2 certInfo, [NotNullWhen(true)] out IReadOnlyList<X509Certificate2>? keyDecryptionCerts) 28public void AddKeyDecryptionCertificate(X509Certificate2 certificate) 33certificates = _certs[key] = new List<X509Certificate2>(); 38private static string GetKey(X509Certificate2 cert) => cert.Thumbprint;
Microsoft.AspNetCore.DataProtection.Extensions (10)
DataProtectionProvider.cs (10)
67/// the platform and operating system and uses the given <see cref="X509Certificate2"/> to encrypt the keys. 71/// <param name="certificate">The <see cref="X509Certificate2"/> to be used for encryption.</param> 72public static IDataProtectionProvider Create(string applicationName, X509Certificate2 certificate) 85/// and a <see cref="X509Certificate2"/> used to encrypt the keys. 89/// <param name="certificate">The <see cref="X509Certificate2"/> to be used for encryption.</param> 92X509Certificate2 certificate) 102/// optional configuration callback and a <see cref="X509Certificate2"/> used to encrypt the keys. 108/// <param name="certificate">The <see cref="X509Certificate2"/> to be used for encryption.</param> 112X509Certificate2 certificate) 124X509Certificate2? certificate)
Microsoft.AspNetCore.DataProtection.Extensions.Tests (10)
DataProtectionProviderTests.cs (10)
122using (var imported = new X509Certificate2(filePath, "password", X509KeyStorageFlags.Exportable)) 135var certificate = certificateStore.Certificates.Find(X509FindType.FindBySubjectName, "TestCert", false)[0]; 148var certWithoutKey = new X509Certificate2(Path.Combine(GetTestFilesPath(), "TestCertWithoutPrivateKey.pfx"), "password"); 176var certWithoutKey = new X509Certificate2(Path.Combine(GetTestFilesPath(), "TestCert3WithoutPrivateKey.pfx"), "password3", X509KeyStorageFlags.Exportable); 187var certInStore = certificateStore.Certificates.Find(X509FindType.FindBySubjectName, "TestCert", false)[0]; 193var certWithKey = new X509Certificate2(Path.Combine(GetTestFilesPath(), "TestCert3.pfx"), "password3"); 217var certificate = new X509Certificate2(filePath, "password"); 246var certificate = new X509Certificate2(filePath, "password"); 266private static void AssetStoreDoesNotContain(X509Certificate2 certificate) 288var certificate = new X509Certificate2(filePath, "password");
Microsoft.AspNetCore.DataProtection.Tests (7)
XmlEncryption\EncryptedXmlDecryptorTests.cs (7)
18var testCert1 = new X509Certificate2(Path.Combine(AppContext.BaseDirectory, "TestFiles", "TestCert1.pfx"), "password"); 32var testCert1 = new X509Certificate2(Path.Combine(AppContext.BaseDirectory, "TestFiles", "TestCert1.pfx"), "password"); 33var testCert2 = new X509Certificate2(Path.Combine(AppContext.BaseDirectory, "TestFiles", "TestCert2.pfx"), "password"); 50var fullCert = new X509Certificate2(Path.Combine(AppContext.BaseDirectory, "TestFiles", "TestCert1.pfx"), "password"); 51var publicKeyOnly = new X509Certificate2(Path.Combine(AppContext.BaseDirectory, "TestFiles", "TestCert1.PublicKeyOnly.cer"), ""); 68var testCert1 = new X509Certificate2(Path.Combine(AppContext.BaseDirectory, "TestFiles", "TestCert1.pfx"), "password"); 69var testCert2 = new X509Certificate2(Path.Combine(AppContext.BaseDirectory, "TestFiles", "TestCert2.pfx"), "password");
Microsoft.AspNetCore.DeveloperCertificates.XPlat (102)
src\Shared\CertificateGeneration\CertificateManager.cs (49)
69public static bool IsHttpsDevelopmentCertificate(X509Certificate2 certificate) 81public IList<X509Certificate2> ListCertificates( 88var certificates = new List<X509Certificate2>(); 94IEnumerable<X509Certificate2> matchingCertificates = certificates; 133return (IList<X509Certificate2>)matchingCertificates; 146bool HasOid(X509Certificate2 certificate, string oid) => 150static byte GetCertificateVersion(X509Certificate2 c) 169bool IsValidCertificate(X509Certificate2 certificate, DateTimeOffset currentDate, bool requireExportable) => 176protected virtual void PopulateCertificatesFromStore(X509Store store, List<X509Certificate2> certificates, bool requireExportable) 178certificates.AddRange(store.Certificates.OfType<X509Certificate2>()); 181public IList<X509Certificate2> GetHttpsCertificates() => 211X509Certificate2? certificate = null; 221foreach (var candidate in currentUserCertificates) 416X509Certificate2 certificate; 475foreach (var certificate in filteredCertificates) 483public abstract TrustLevel GetTrustLevel(X509Certificate2 certificate); 485protected abstract X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation); 488protected abstract TrustLevel TrustCertificateCore(X509Certificate2 certificate); 490protected abstract bool IsExportable(X509Certificate2 c); 492protected abstract void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate); 494protected abstract IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation); 502internal void ExportCertificate(X509Certificate2 certificate, string path, bool includePrivateKey, string? password, CertificateKeyExportFormat format) 646internal X509Certificate2 CreateAspNetCoreHttpsDevelopmentCertificate(DateTimeOffset notBefore, DateTimeOffset notAfter) 692var certificate = CreateSelfSignedCertificate(subject, extensions, notBefore, notAfter); 696internal X509Certificate2 SaveCertificate(X509Certificate2 certificate) 712internal TrustLevel TrustCertificate(X509Certificate2 certificate) 739foreach (var certificate in certificates) 747internal void RemoveCertificate(X509Certificate2 certificate, RemoveLocations locations) 768internal abstract CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate); 770internal abstract void CorrectCertificateState(X509Certificate2 candidate); 772internal static X509Certificate2 CreateSelfSignedCertificate( 786var result = request.CreateSelfSigned(notBefore, notAfter); 801internal static void DisposeCertificates(IEnumerable<X509Certificate2> disposables) 803foreach (var disposable in disposables) 815protected void RemoveCertificateFromUserStore(X509Certificate2 certificate) 833protected virtual void RemoveCertificateFromUserStoreCore(X509Certificate2 certificate) 837var matching = store.Certificates 838.OfType<X509Certificate2>() 844internal static string ToCertificateDescription(IEnumerable<X509Certificate2> certificates) 857internal static string GetDescription(X509Certificate2 c) => 863internal static bool AreCertificatesEqual(X509Certificate2 cert1, X509Certificate2 cert2) 877internal static bool TryFindCertificateInStore(X509Store store, X509Certificate2 certificate, [NotNullWhen(true)] out X509Certificate2? foundCertificate) 888var certificatesToDispose = new List<X509Certificate2>(); 889foreach (var candidate in certificatesWithSubjectName.OfType<X509Certificate2>())
src\Shared\CertificateGeneration\MacOSCertificateManager.cs (28)
15/// Normally, we avoid the use of <see cref="X509Certificate2.Thumbprint"/> because it's a SHA-1 hash and, therefore, 85protected override TrustLevel TrustCertificateCore(X509Certificate2 publicCertificate) 129internal override CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate) 136internal override void CorrectCertificateState(X509Certificate2 candidate) 151public override TrustLevel GetTrustLevel(X509Certificate2 certificate) 177protected override void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate) 198private static void RemoveAdminTrustRule(X509Certificate2 certificate) 237private static void RemoveCertificateFromKeychain(string keychain, X509Certificate2 certificate) 274private static bool IsCertOnKeychain(string keychain, X509Certificate2 certificate) 305protected override bool IsExportable(X509Certificate2 c) => true; 307protected override X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation) 336private static void SaveCertificateToUserKeychain(X509Certificate2 certificate) 373private static string GetCertificateFilePath(X509Certificate2 certificate) => 376protected override IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation) 381protected override void PopulateCertificatesFromStore(X509Store store, List<X509Certificate2> certificates, bool requireExportable) 387var certsFromStore = new List<X509Certificate2>(); 418private sealed class ThumbprintComparer : IEqualityComparer<X509Certificate2> 420public static readonly IEqualityComparer<X509Certificate2> Instance = new ThumbprintComparer(); 423bool IEqualityComparer<X509Certificate2>.Equals(X509Certificate2 x, X509Certificate2 y) => 427int IEqualityComparer<X509Certificate2>.GetHashCode([DisallowNull] X509Certificate2 obj) => 431private static ICollection<X509Certificate2> GetCertsFromDisk() 433var certsFromDisk = new List<X509Certificate2>(); 445var certificate = new X509Certificate2(file); 459protected override void RemoveCertificateFromUserStoreCore(X509Certificate2 certificate)
src\Shared\CertificateGeneration\UnixCertificateManager.cs (14)
51public override TrustLevel GetTrustLevel(X509Certificate2 certificate) 97var candidate = X509CertificateLoader.LoadCertificateFromFile(certPath); 152protected override X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation) 169internal override CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate) 176internal override void CorrectCertificateState(X509Certificate2 candidate) 182protected override bool IsExportable(X509Certificate2 c) => true; 184protected override TrustLevel TrustCertificateCore(X509Certificate2 certificate) 200using var publicCertificate = X509CertificateLoader.LoadCertificate(certificate.Export(X509ContentType.Cert)); 231using var existingCert = X509CertificateLoader.LoadCertificateFromFile(certPath); 359protected override void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate) 366if (TryFindCertificateInStore(store, certificate, out var matching)) 451protected override IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation) 548private static string GetCertificateNickname(X509Certificate2 certificate)
src\Shared\CertificateGeneration\WindowsCertificateManager.cs (11)
30protected override bool IsExportable(X509Certificate2 c) 44internal override CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate) 49internal override void CorrectCertificateState(X509Certificate2 candidate) 54protected override X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation) 74protected override TrustLevel TrustCertificateCore(X509Certificate2 certificate) 89using var publicCertificate = X509CertificateLoader.LoadCertificate(certificate.Export(X509ContentType.Cert)); 101protected override void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate) 108if (TryFindCertificateInStore(store, certificate, out var matching)) 120public override TrustLevel GetTrustLevel(X509Certificate2 certificate) 127protected override IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation)
Microsoft.AspNetCore.DeveloperCertificates.XPlat.Tests (20)
CertificateManagerTests.cs (20)
52var exportedCertificate = new X509Certificate2(File.ReadAllBytes(CertificateName)); 57var httpsCertificate = Assert.Single(httpsCertificates, c => c.Subject == TestCertificateSubject); 117foreach (var certificate in certificates) 143var httpsCertificate = _manager.ListCertificates(StoreName.My, StoreLocation.CurrentUser, isValid: false).Single(c => c.Subject == TestCertificateSubject); 151var exportedCertificate = new X509Certificate2(File.ReadAllBytes(CertificateName), certificatePassword); 175var httpsCertificate = _manager.ListCertificates(StoreName.My, StoreLocation.CurrentUser, isValid: false).Single(c => c.Subject == TestCertificateSubject); 185var exportedCertificate = X509Certificate2.CreateFromEncryptedPemFile(CertificateName, certificatePassword, Path.ChangeExtension(CertificateName, "key")); 208var httpsCertificate = _manager.ListCertificates(StoreName.My, StoreLocation.CurrentUser, isValid: false).Single(c => c.Subject == TestCertificateSubject); 218var exportedCertificate = new X509Certificate2(CertificateName); 239var httpsCertificate = _manager.ListCertificates(StoreName.My, StoreLocation.CurrentUser, isValid: false).Single(c => c.Subject == TestCertificateSubject); 251var importedCertificate = Assert.Single(_manager.ListCertificates(StoreName.My, StoreLocation.CurrentUser, isValid: false)); 272var httpsCertificate = _manager.ListCertificates(StoreName.My, StoreLocation.CurrentUser, isValid: false).Single(c => c.Subject == TestCertificateSubject); 299var httpsCertificate = _manager.ListCertificates(StoreName.My, StoreLocation.CurrentUser, isValid: false).Single(c => c.Subject == TestCertificateSubject); 309var wrongSubjectCertificate = csr.CreateSelfSigned(httpsCertificate.NotBefore, httpsCertificate.NotAfter); 339var httpsCertificate = _manager.ListCertificates(StoreName.My, StoreLocation.CurrentUser, isValid: false).Single(c => c.Subject == TestCertificateSubject); 347var exportedCertificate = X509Certificate2.CreateFromPemFile(CertificateName, Path.ChangeExtension(CertificateName, "key")); 471var firstCertificate = httpsCertificateList[0]; 472var secondCertificate = httpsCertificateList[1];
Microsoft.AspNetCore.Grpc.JsonTranscoding (3)
Internal\JsonTranscodingServerCallContext.cs (1)
188var clientCertificate = HttpContext.Connection.ClientCertificate;
src\Grpc\JsonTranscoding\src\Shared\AuthContextHelpers.cs (1)
27public static AuthContext CreateAuthContext(X509Certificate2 clientCertificate)
src\Grpc\JsonTranscoding\src\Shared\X509CertificateHelpers.cs (1)
33public static string[] GetDnsFromExtensions(X509Certificate2 cert)
Microsoft.AspNetCore.Http (4)
Features\TlsConnectionFeature.cs (2)
14public X509Certificate2? ClientCertificate { get; set; } 17public Task<X509Certificate2?> GetClientCertificateAsync(CancellationToken cancellationToken)
Internal\DefaultConnectionInfo.cs (2)
80public override X509Certificate2? ClientCertificate 86public override Task<X509Certificate2?> GetClientCertificateAsync(CancellationToken cancellationToken = default)
Microsoft.AspNetCore.Http.Abstractions (4)
ConnectionInfo.cs (4)
48public abstract X509Certificate2? ClientCertificate { get; set; } 53/// <returns>Asynchronously returns an <see cref="X509Certificate2" />. Can be null.</returns> 54public abstract Task<X509Certificate2?> GetClientCertificateAsync(CancellationToken cancellationToken = new CancellationToken()); 85public X509Certificate2? ClientCertificate => _info.ClientCertificate;
Microsoft.AspNetCore.Http.Extensions.Tests (7)
RequestDelegateFactoryTests.cs (3)
3794public TlsConnectionFeature(X509Certificate2 clientCertificate) 3799public X509Certificate2? ClientCertificate { get; set; } 3801public Task<X509Certificate2?> GetClientCertificateAsync(CancellationToken cancellationToken)
RequestDelegateGenerator\RequestDelegateCreationTests.Forms.cs (1)
497var clientCertificate = new X509Certificate2();
RequestDelegateGenerator\SharedTypes.cs (3)
542public TlsConnectionFeature(X509Certificate2 clientCertificate) 547public X509Certificate2 ClientCertificate { get; set; } 549public Task<X509Certificate2> GetClientCertificateAsync(CancellationToken cancellationToken)
Microsoft.AspNetCore.Http.Features (2)
ITlsConnectionFeature.cs (2)
16X509Certificate2? ClientCertificate { get; set; } 21Task<X509Certificate2?> GetClientCertificateAsync(CancellationToken cancellationToken);
Microsoft.AspNetCore.Http.Microbenchmarks (3)
src\Http\Http.Extensions\test\RequestDelegateGenerator\SharedTypes.cs (3)
542public TlsConnectionFeature(X509Certificate2 clientCertificate) 547public X509Certificate2 ClientCertificate { get; set; } 549public Task<X509Certificate2> GetClientCertificateAsync(CancellationToken cancellationToken)
Microsoft.AspNetCore.HttpOverrides (9)
CertificateForwardingFeature.cs (7)
16private Task<X509Certificate2?>? _certificateTask; 25public X509Certificate2? ClientCertificate 28set => _certificateTask = value is not null ? Task.FromResult<X509Certificate2?>(value) : null; 31public Task<X509Certificate2?> GetClientCertificateAsync(CancellationToken cancellationToken) 37var certificate = _options.HeaderConverter(_header.ToString()); 38_certificateTask = Task.FromResult<X509Certificate2?>(certificate); 44return Task.FromResult<X509Certificate2?>(null);
CertificateForwardingOptions.cs (2)
22/// The function used to convert the header to an instance of <see cref="X509Certificate2"/>. 27public Func<string, X509Certificate2> HeaderConverter = (headerValue) => new X509Certificate2(Convert.FromBase64String(headerValue));
Microsoft.AspNetCore.HttpOverrides.Tests (10)
src\Shared\test\Certificates\Certificates.cs (10)
66private static X509Certificate2 MakeCert( 74private static X509Certificate2 MakeCert( 101public static X509Certificate2 SelfSignedPrimaryRoot { get; private set; } 103public static X509Certificate2 SignedSecondaryRoot { get; private set; } 105public static X509Certificate2 SignedClient { get; private set; } 107public static X509Certificate2 SelfSignedValidWithClientEku { get; private set; } 109public static X509Certificate2 SelfSignedValidWithNoEku { get; private set; } 111public static X509Certificate2 SelfSignedValidWithServerEku { get; private set; } 113public static X509Certificate2 SelfSignedNotYetValid { get; private set; } 115public static X509Certificate2 SelfSignedExpired { get; private set; }
Microsoft.AspNetCore.Owin (5)
OwinEnvironment.cs (1)
122(feature, value) => feature.ClientCertificate = (X509Certificate2)value));
OwinFeatureCollection.cs (4)
256X509Certificate2 ITlsConnectionFeature.ClientCertificate 258get { return Prop<X509Certificate2>(OwinConstants.CommonKeys.ClientCertificate); } 262async Task<X509Certificate2> ITlsConnectionFeature.GetClientCertificateAsync(CancellationToken cancellationToken) 269return Prop<X509Certificate2>(OwinConstants.CommonKeys.ClientCertificate);
Microsoft.AspNetCore.Server.HttpSys (14)
RequestProcessing\ClientCertLoader.cs (3)
29private X509Certificate2? _clientCert; 49internal X509Certificate2? ClientCert 201private void Complete(int certErrors, X509Certificate2? cert)
RequestProcessing\Request.cs (3)
23private X509Certificate2? _clientCert; 375public X509Certificate2? ClientCertificate 404public async Task<X509Certificate2?> GetClientCertificateAsync(CancellationToken cancellationToken = default(CancellationToken))
RequestProcessing\RequestContext.FeatureCollection.cs (6)
59private X509Certificate2? _clientCert; 60private Task<X509Certificate2?>? _clientCertTask; 326X509Certificate2? ITlsConnectionFeature.ClientCertificate 350Task<X509Certificate2?> ITlsConnectionFeature.GetClientCertificateAsync(CancellationToken cancellationToken) 358var clientCert = tlsFeature.ClientCertificate; // Lazy initialized 369async Task<X509Certificate2?> GetCertificateAsync(CancellationToken cancellation)
src\Shared\HttpSys\RequestProcessing\NativeRequestContext.cs (2)
771internal X509Certificate2? GetClientCertificate() 788private X509Certificate2? GetClientCertificate(IntPtr baseAddress, HTTP_REQUEST_V2* nativeRequest)
Microsoft.AspNetCore.Server.HttpSys.FunctionalTests (10)
HttpsTests.cs (5)
22private static readonly X509Certificate2 _x509Certificate2 = TestResources.GetTestCertificate("eku.client.pfx"); 84var cert = await tls.GetClientCertificateAsync(CancellationToken.None); 109var cert = await tls.GetClientCertificateAsync(CancellationToken.None); 297private X509Certificate2 FindClientCert() 302foreach (var cert in store.Certificates)
src\Shared\TestResources.cs (5)
20public static X509Certificate2 GetTestCertificate(string certName = "testCert.pfx") 39public static X509Certificate2 GetTestCertificate(string certName, string password) 44public static X509Certificate2 GetTestCertificateWithKey(string certName, string keyName) 46var cert = X509Certificate2.CreateFromPemFile(GetCertPath(certName), GetCertPath(keyName));
Microsoft.AspNetCore.Server.IIS (5)
Core\IISHttpContext.FeatureCollection.cs (3)
45private X509Certificate2? _certificate; 378Task<X509Certificate2?> ITlsConnectionFeature.GetClientCertificateAsync(CancellationToken cancellationToken) 383unsafe X509Certificate2? ITlsConnectionFeature.ClientCertificate
src\Shared\HttpSys\RequestProcessing\NativeRequestContext.cs (2)
771internal X509Certificate2? GetClientCertificate() 788private X509Certificate2? GetClientCertificate(IntPtr baseAddress, HTTP_REQUEST_V2* nativeRequest)
Microsoft.AspNetCore.Server.IISIntegration (3)
ForwardedTlsConnectionFeature.cs (3)
14private X509Certificate2? _certificate; 23public X509Certificate2? ClientCertificate 48public Task<X509Certificate2?> GetClientCertificateAsync(CancellationToken cancellationToken)
Microsoft.AspNetCore.Server.Kestrel.Core (163)
CertificateLoader.cs (9)
31public static X509Certificate2 LoadFromStoreCert(string subject, string storeName, StoreLocation storeLocation, bool allowInvalid) 36X509Certificate2? foundCertificate = null; 42foreach (var certificate in storeCertificates.Find(X509FindType.FindBySubjectName, subject, !allowInvalid) 43.OfType<X509Certificate2>() 72internal static bool IsCertificateAllowedForServerAuth(X509Certificate2 certificate) 106internal static bool DoesCertificateHaveAnAccessiblePrivateKey(X509Certificate2 certificate) 109internal static bool DoesCertificateHaveASubjectAlternativeName(X509Certificate2 certificate) 112private static void DisposeCertificates(X509Certificate2Collection? certificates, X509Certificate2? except) 116foreach (var certificate in certificates)
HttpsConnectionAdapterOptions.cs (3)
38public X509Certificate2? ServerCertificate { get; set; } 56public Func<ConnectionContext?, string?, X509Certificate2?>? ServerCertificateSelector { get; set; } 72public Func<X509Certificate2, X509Chain?, SslPolicyErrors, bool>? ClientCertificateValidation { get; set; }
IHttpsConfigurationService.cs (2)
92public readonly X509Certificate2 Certificate; 95public CertificateAndConfig(X509Certificate2 certificate, CertificateConfig certificateConfig)
Internal\Certificates\CertificateConfigLoader.cs (9)
26public (X509Certificate2?, X509Certificate2Collection?) LoadCertificate(CertificateConfig? certInfo, string endpointName) 46var certificate = GetCertificate(certificatePath); 84private static X509Certificate2 PersistKey(X509Certificate2 fullCertificate) 92private static X509Certificate2 LoadCertificateKey(X509Certificate2 certificate, string keyPath, string? password) 155private static X509Certificate2? GetCertificate(string certificatePath) 157if (X509Certificate2.GetCertContentType(certificatePath) == X509ContentType.Cert) 177private static X509Certificate2 LoadFromStoreCert(CertificateConfig certInfo)
Internal\Certificates\ICertificateConfigLoader.cs (1)
12(X509Certificate2?, X509Certificate2Collection?) LoadCertificate(CertificateConfig? certInfo, string endpointName);
Internal\LoggerExtensions.cs (1)
18public static void LocatedDevelopmentCertificate(this ILogger<KestrelServer> logger, X509Certificate2 certificate) => LocatedDevelopmentCertificate(logger, certificate.Subject, certificate.Thumbprint);
Internal\SniOptionsSelector.cs (4)
25private readonly Func<ConnectionContext, string?, X509Certificate2?>? _fallbackServerCertificateSelector; 75sslOptions.ServerCertificateContext = SslStreamCertificateContext.Create((X509Certificate2)sslOptions.ServerCertificate, additionalCertificates: fullChain); 78if (!certifcateConfigLoader.IsTestMock && sslOptions.ServerCertificate is X509Certificate2 cert2) 159var fallbackCertificate = _fallbackServerCertificateSelector(connection, serverName);
Internal\TlsConnectionFeature.cs (7)
19private X509Certificate2? _clientCert; 20private Task<X509Certificate2?>? _clientCertTask; 33public X509Certificate2? ClientCertificate 76public Task<X509Certificate2?> GetClientCertificateAsync(CancellationToken cancellationToken) 95private async Task<X509Certificate2?> GetClientCertificateAsyncCore(CancellationToken cancellationToken) 122private static X509Certificate2? ConvertToX509Certificate2(X509Certificate? certificate) 127X509Certificate2 cert2 => cert2,
KestrelConfigurationLoader.cs (1)
78internal X509Certificate2? DefaultCertificate { get; set; }
KestrelServerOptions.cs (6)
207internal X509Certificate2? DevelopmentCertificate { get; private set; } 212internal X509Certificate2? TestOverrideDefaultCertificate { get; set; } 297if (TestOverrideDefaultCertificate is X509Certificate2 certificateFromTest) 303if (ConfigurationLoader?.DefaultCertificate is X509Certificate2 certificateFromLoader) 374private static X509Certificate2? GetDevelopmentCertificateFromStore(ILogger<KestrelServer> logger) 380var cert = certs.Count > 0 ? certs[0] : null;
ListenOptionsHttpsExtensions.cs (2)
126public static ListenOptions UseHttps(this ListenOptions listenOptions, X509Certificate2 serverCertificate) 143public static ListenOptions UseHttps(this ListenOptions listenOptions, X509Certificate2 serverCertificate,
Middleware\HttpsConnectionMiddleware.cs (14)
40private readonly X509Certificate2? _serverCertificate; 41private readonly Func<ConnectionContext, string?, X509Certificate2?>? _serverCertificateSelector; 97var certificate = _serverCertificate; 251private X509Certificate2 LocateCertificateWithPrivateKey(X509Certificate2 certificate) 327var cert = _serverCertificateSelector(context, name); 377Func<X509Certificate2, X509Chain?, SslPolicyErrors, bool>? clientCertificateValidation, 395var certificate2 = ConvertToX509Certificate2(certificate); 468internal static void EnsureCertificateIsAllowedForServerAuth(X509Certificate2 certificate, ILogger<HttpsConnectionMiddleware> logger) 480private static X509Certificate2? ConvertToX509Certificate2(X509Certificate? certificate) 487if (certificate is X509Certificate2 cert2) 556var cert = httpsOptions.ServerCertificateSelector(null, host); 599public static void LocatingCertWithPrivateKey(this ILogger<HttpsConnectionMiddleware> logger, X509Certificate2 certificate) => LocatingCertWithPrivateKey(logger, certificate.Thumbprint); 604public static void FoundCertWithPrivateKey(this ILogger<HttpsConnectionMiddleware> logger, X509Certificate2 certificate, StoreLocation storeLocation)
src\Shared\CertificateGeneration\CertificateManager.cs (49)
69public static bool IsHttpsDevelopmentCertificate(X509Certificate2 certificate) 81public IList<X509Certificate2> ListCertificates( 88var certificates = new List<X509Certificate2>(); 94IEnumerable<X509Certificate2> matchingCertificates = certificates; 133return (IList<X509Certificate2>)matchingCertificates; 146bool HasOid(X509Certificate2 certificate, string oid) => 150static byte GetCertificateVersion(X509Certificate2 c) 169bool IsValidCertificate(X509Certificate2 certificate, DateTimeOffset currentDate, bool requireExportable) => 176protected virtual void PopulateCertificatesFromStore(X509Store store, List<X509Certificate2> certificates, bool requireExportable) 178certificates.AddRange(store.Certificates.OfType<X509Certificate2>()); 181public IList<X509Certificate2> GetHttpsCertificates() => 211X509Certificate2? certificate = null; 221foreach (var candidate in currentUserCertificates) 416X509Certificate2 certificate; 475foreach (var certificate in filteredCertificates) 483public abstract TrustLevel GetTrustLevel(X509Certificate2 certificate); 485protected abstract X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation); 488protected abstract TrustLevel TrustCertificateCore(X509Certificate2 certificate); 490protected abstract bool IsExportable(X509Certificate2 c); 492protected abstract void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate); 494protected abstract IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation); 502internal void ExportCertificate(X509Certificate2 certificate, string path, bool includePrivateKey, string? password, CertificateKeyExportFormat format) 646internal X509Certificate2 CreateAspNetCoreHttpsDevelopmentCertificate(DateTimeOffset notBefore, DateTimeOffset notAfter) 692var certificate = CreateSelfSignedCertificate(subject, extensions, notBefore, notAfter); 696internal X509Certificate2 SaveCertificate(X509Certificate2 certificate) 712internal TrustLevel TrustCertificate(X509Certificate2 certificate) 739foreach (var certificate in certificates) 747internal void RemoveCertificate(X509Certificate2 certificate, RemoveLocations locations) 768internal abstract CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate); 770internal abstract void CorrectCertificateState(X509Certificate2 candidate); 772internal static X509Certificate2 CreateSelfSignedCertificate( 786var result = request.CreateSelfSigned(notBefore, notAfter); 801internal static void DisposeCertificates(IEnumerable<X509Certificate2> disposables) 803foreach (var disposable in disposables) 815protected void RemoveCertificateFromUserStore(X509Certificate2 certificate) 833protected virtual void RemoveCertificateFromUserStoreCore(X509Certificate2 certificate) 837var matching = store.Certificates 838.OfType<X509Certificate2>() 844internal static string ToCertificateDescription(IEnumerable<X509Certificate2> certificates) 857internal static string GetDescription(X509Certificate2 c) => 863internal static bool AreCertificatesEqual(X509Certificate2 cert1, X509Certificate2 cert2) 877internal static bool TryFindCertificateInStore(X509Store store, X509Certificate2 certificate, [NotNullWhen(true)] out X509Certificate2? foundCertificate) 888var certificatesToDispose = new List<X509Certificate2>(); 889foreach (var candidate in certificatesWithSubjectName.OfType<X509Certificate2>())
src\Shared\CertificateGeneration\MacOSCertificateManager.cs (28)
15/// Normally, we avoid the use of <see cref="X509Certificate2.Thumbprint"/> because it's a SHA-1 hash and, therefore, 85protected override TrustLevel TrustCertificateCore(X509Certificate2 publicCertificate) 129internal override CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate) 136internal override void CorrectCertificateState(X509Certificate2 candidate) 151public override TrustLevel GetTrustLevel(X509Certificate2 certificate) 177protected override void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate) 198private static void RemoveAdminTrustRule(X509Certificate2 certificate) 237private static void RemoveCertificateFromKeychain(string keychain, X509Certificate2 certificate) 274private static bool IsCertOnKeychain(string keychain, X509Certificate2 certificate) 305protected override bool IsExportable(X509Certificate2 c) => true; 307protected override X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation) 336private static void SaveCertificateToUserKeychain(X509Certificate2 certificate) 373private static string GetCertificateFilePath(X509Certificate2 certificate) => 376protected override IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation) 381protected override void PopulateCertificatesFromStore(X509Store store, List<X509Certificate2> certificates, bool requireExportable) 387var certsFromStore = new List<X509Certificate2>(); 418private sealed class ThumbprintComparer : IEqualityComparer<X509Certificate2> 420public static readonly IEqualityComparer<X509Certificate2> Instance = new ThumbprintComparer(); 423bool IEqualityComparer<X509Certificate2>.Equals(X509Certificate2 x, X509Certificate2 y) => 427int IEqualityComparer<X509Certificate2>.GetHashCode([DisallowNull] X509Certificate2 obj) => 431private static ICollection<X509Certificate2> GetCertsFromDisk() 433var certsFromDisk = new List<X509Certificate2>(); 445var certificate = new X509Certificate2(file); 459protected override void RemoveCertificateFromUserStoreCore(X509Certificate2 certificate)
src\Shared\CertificateGeneration\UnixCertificateManager.cs (14)
51public override TrustLevel GetTrustLevel(X509Certificate2 certificate) 97var candidate = X509CertificateLoader.LoadCertificateFromFile(certPath); 152protected override X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation) 169internal override CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate) 176internal override void CorrectCertificateState(X509Certificate2 candidate) 182protected override bool IsExportable(X509Certificate2 c) => true; 184protected override TrustLevel TrustCertificateCore(X509Certificate2 certificate) 200using var publicCertificate = X509CertificateLoader.LoadCertificate(certificate.Export(X509ContentType.Cert)); 231using var existingCert = X509CertificateLoader.LoadCertificateFromFile(certPath); 359protected override void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate) 366if (TryFindCertificateInStore(store, certificate, out var matching)) 451protected override IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation) 548private static string GetCertificateNickname(X509Certificate2 certificate)
src\Shared\CertificateGeneration\WindowsCertificateManager.cs (11)
30protected override bool IsExportable(X509Certificate2 c) 44internal override CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate) 49internal override void CorrectCertificateState(X509Certificate2 candidate) 54protected override X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation) 74protected override TrustLevel TrustCertificateCore(X509Certificate2 certificate) 89using var publicCertificate = X509CertificateLoader.LoadCertificate(certificate.Export(X509ContentType.Cert)); 101protected override void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate) 108if (TryFindCertificateInStore(store, certificate, out var matching)) 120public override TrustLevel GetTrustLevel(X509Certificate2 certificate) 127protected override IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation)
TlsConfigurationLoader.cs (2)
157var certificate = new X509Certificate2(certificatePath, certificateConfig.Password); 177private static bool IsDevelopmentCertificate(X509Certificate2 certificate)
Microsoft.AspNetCore.Server.Kestrel.Core.Tests (34)
SniOptionsSelectorTests.cs (5)
22private static readonly X509Certificate2 _x509Certificate2 = TestResources.GetTestCertificate(); 470var selectorCertificate = _x509Certificate2; 557var selectorCertificate = _x509Certificate2; 920public (X509Certificate2, X509Certificate2Collection) LoadCertificate(CertificateConfig certInfo, string endpointName) 927var cert = TestResources.GetTestCertificate();
src\Servers\Kestrel\shared\test\CertHelper.cs (5)
72foreach (X509Certificate2 cert in store.Certificates) 89foreach (X509Certificate2 cert in store.Certificates) 121internal static (X509Certificate2 certificate, X509Certificate2Collection) GenerateCertificates(string targetName, [CallerMemberName] string? testName = null, bool longChain = false, bool serverCertificate = true) 137out X509Certificate2 endEntity, 164X509Certificate2 ephemeral = endEntity;
src\Servers\Kestrel\shared\test\CertificateAuthority.cs (19)
78private X509Certificate2 _cert; 88private X509Certificate2 _ocspResponder; 106X509Certificate2 cert, 127internal X509Certificate2 CloneIssuerCert() 132internal void Revoke(X509Certificate2 certificate, DateTimeOffset revocationTime) 149internal X509Certificate2 CreateSubordinateCA( 167internal X509Certificate2 CreateEndEntity(string subject, RSA publicKey, X509ExtensionCollection extensions) 176internal X509Certificate2 CreateOcspSigner(string subject, RSA publicKey) 222X509Certificate2 dispose = _cert; 226using (X509Certificate2 tmp = req.Create( 237private X509Certificate2 CreateCertificate( 500internal void DesignateOcspResponder(X509Certificate2 responder) 513X509Certificate2 responder = (_ocspResponder ?? _cert); 793out X509Certificate2 endEntityCert, 838X509Certificate2 rootCert = rootReq.CreateSelfSigned(start.AddDays(-2), end.AddDays(2)); 859X509Certificate2 intermedCert; 862X509Certificate2 intermedPub = issuingAuthority.CreateSubordinateCA( 891X509Certificate2 tmp = endEntityCert; 912out X509Certificate2 endEntityCert,
src\Shared\TestResources.cs (5)
20public static X509Certificate2 GetTestCertificate(string certName = "testCert.pfx") 39public static X509Certificate2 GetTestCertificate(string certName, string password) 44public static X509Certificate2 GetTestCertificateWithKey(string certName, string keyName) 46var cert = X509Certificate2.CreateFromPemFile(GetCertPath(certName), GetCertPath(keyName));
Microsoft.AspNetCore.Server.Kestrel.Tests (26)
KestrelConfigurationLoaderTests.cs (21)
249var certificate = new X509Certificate2(TestResources.GetCertPath("aspnetdevcert.pfx"), "testPassword", X509KeyStorageFlags.Exportable); 290var devCert = new X509Certificate2(TestResources.GetCertPath("aspnetdevcert.pfx"), "testPassword", X509KeyStorageFlags.Exportable); 297var defaultCert = TestResources.GetTestCertificate(); 348void CheckCertificates(X509Certificate2 expectedCert) 378var testCertificate = TestResources.GetTestCertificate(); 381var otherCertificate = new X509Certificate2(otherCertificatePath, "testPassword"); 403void CheckListenOptions(X509Certificate2 expectedCert) 416var certificate = new X509Certificate2(TestResources.GetCertPath("aspnetdevcert.pfx"), "testPassword", X509KeyStorageFlags.Exportable); 463var certificate = new X509Certificate2(TestResources.GetCertPath("aspnetdevcert.pfx"), "testPassword", X509KeyStorageFlags.Exportable); 512var certificate = new X509Certificate2(TestResources.GetCertPath("aspnetdevcert.pfx"), "testPassword", X509KeyStorageFlags.Exportable); 518var defaultCertificate = TestResources.GetTestCertificate(); 563var certificate = new X509Certificate2(TestResources.GetCertPath("https-aspnet.crt")); 587var certificate = new X509Certificate2(TestResources.GetCertPath("https-aspnet.crt")); 612var certificate = new X509Certificate2(TestResources.GetCertPath("https-aspnet.crt")); 637var certificate = new X509Certificate2(TestResources.GetCertPath("https-aspnet.crt")); 675var certificate = new X509Certificate2(TestResources.GetCertPath(Path.ChangeExtension(certificateFile, "crt"))); 706var certificate = new X509Certificate2(TestResources.GetCertPath("aspnetdevcert.pfx"), "testPassword", X509KeyStorageFlags.Exportable); 859var oldCertificate = new X509Certificate2(TestResources.GetCertPath("aspnetdevcert.pfx"), "testPassword", X509KeyStorageFlags.Exportable); 862var newCertificate = new X509Certificate2(TestResources.TestCertificatePath, "testPassword", X509KeyStorageFlags.Exportable); 957var oldCertificate = new X509Certificate2(TestResources.GetCertPath("aspnetdevcert.pfx"), "testPassword", X509KeyStorageFlags.Exportable); 962var newCertificate = new X509Certificate2(TestResources.TestCertificatePath, "testPassword", X509KeyStorageFlags.Exportable);
src\Shared\TestResources.cs (5)
20public static X509Certificate2 GetTestCertificate(string certName = "testCert.pfx") 39public static X509Certificate2 GetTestCertificate(string certName, string password) 44public static X509Certificate2 GetTestCertificateWithKey(string certName, string keyName) 46var cert = X509Certificate2.CreateFromPemFile(GetCertPath(certName), GetCertPath(keyName));
Microsoft.AspNetCore.Server.Kestrel.Transport.Quic (6)
Internal\QuicConnectionContext.FeatureCollection.cs (6)
12private X509Certificate2? _clientCert; 13private Task<X509Certificate2?>? _clientCertTask; 26public X509Certificate2? ClientCertificate 36public Task<X509Certificate2?> GetClientCertificateAsync(CancellationToken cancellationToken) 47private static X509Certificate2? ConvertToX509Certificate2(X509Certificate? certificate) 52X509Certificate2 cert2 => cert2,
Microsoft.AspNetCore.Server.Kestrel.Transport.Quic.Tests (8)
QuicConnectionListenerTests.cs (2)
118var testCert = TestResources.GetTestCertificate(); 139static void AssertTlsConnectionFeature(IFeatureCollection features, X509Certificate2 testCert)
QuicTestHelpers.cs (1)
82var cert = TestResources.GetTestCertificate();
src\Shared\TestResources.cs (5)
20public static X509Certificate2 GetTestCertificate(string certName = "testCert.pfx") 39public static X509Certificate2 GetTestCertificate(string certName, string password) 44public static X509Certificate2 GetTestCertificateWithKey(string certName, string keyName) 46var cert = X509Certificate2.CreateFromPemFile(GetCertPath(certName), GetCertPath(keyName));
Microsoft.AspNetCore.Shared.Tests (2)
src\Shared\HttpSys\RequestProcessing\NativeRequestContext.cs (2)
771internal X509Certificate2? GetClientCertificate() 788private X509Certificate2? GetClientCertificate(IntPtr baseAddress, HTTP_REQUEST_V2* nativeRequest)
Microsoft.AspNetCore.SignalR.Client.FunctionalTests (1)
src\SignalR\common\Shared\TestCertificates.cs (1)
12internal static X509Certificate2 GetTestCert()
Microsoft.AspNetCore.Testing (7)
FakeCertificateHttpClientHandler.cs (1)
12public FakeCertificateHttpClientHandler(X509Certificate2 certificate)
FakeCertificateOptions.cs (1)
10public X509Certificate2? Certificate { get; set; }
FakeSslCertificateFactory.cs (3)
19/// Creates a self-signed <see cref="X509Certificate2"/> instance for testing. 21/// <returns>An <see cref="X509Certificate2"/> instance for testing.</returns> 23public static X509Certificate2 CreateSslCertificate()
ServiceFakesHostExtensions.cs (1)
45var certificate = host.Services.GetService<IOptions<FakeCertificateOptions>>()?.Value.Certificate;
ServiceFakesWebHostExtensions.cs (1)
46public static IWebHostBuilder ListenHttpsOnAnyPort(this IWebHostBuilder builder, X509Certificate2? sslCertificate = null)
Microsoft.AspNetCore.Testing.Tests (5)
FakeCertificateFactoryTests.cs (1)
17using var certificate = FakeSslCertificateFactory.CreateSslCertificate();
FakeCertificateHttpClientHandlerTests.cs (2)
16private readonly X509Certificate2 _certificate = FakeSslCertificateFactory.CreateSslCertificate(); 17private readonly X509Certificate2 _anotherCertificate = FakeSslCertificateFactory.CreateSslCertificate();
FakesExtensionsTests.cs (2)
56var certificate = host.Services.GetRequiredService<IOptions<FakeCertificateOptions>>().Value.Certificate; 71var certificate = FakeSslCertificateFactory.CreateSslCertificate();
Microsoft.Build.Tasks.Core (13)
ManifestUtil\mansign2.cs (4)
400private static void InsertPublisherIdentity(XmlDocument manifestDom, X509Certificate2 signerCert) 1093private X509Certificate2 _certificate; 1107internal CmiManifestSigner2(AsymmetricAlgorithm strongNameKey, X509Certificate2 certificate, bool useSha256) 1145internal X509Certificate2 Certificate
ManifestUtil\SecurityUtil.cs (9)
566X509Certificate2 cert = GetCert(certThumbprint); 613using X509Certificate2 cert = new X509Certificate2(certPath, certPassword, X509KeyStorageFlags.PersistKeySet); 617private static bool UseSha256Algorithm(X509Certificate2 cert) 636public static void SignFile(X509Certificate2 cert, Uri timestampUrl, string path) 644private static void SignFileInternal(X509Certificate2 cert, 766private static void SignPEFile(X509Certificate2 cert, Uri timestampUrl, string path, System.Resources.ResourceManager resources, bool useSha256) 780private static void SignPEFileInternal(X509Certificate2 cert, Uri timestampUrl, 886internal static X509Certificate2 GetCert(string thumbprint) 905private static bool IsCertInStore(X509Certificate2 cert)
Microsoft.Build.Tasks.UnitTests (6)
SecurityUtil_Tests.cs (6)
38using X509Certificate2 certificate = TestCertHelper.MockCertificate(pathToCertificate); 57internal static X509Certificate2 MockCertificate(string pathToCertificate) 59var certificate = new X509Certificate2(pathToCertificate); 65internal static void RemoveCertificate(X509Certificate2 certificate) => UpdateCertificateState(certificate, s_personalStore.Remove); 67private static void UpdateCertificateState(X509Certificate2 certificate, Action<X509Certificate2> updateAction)
Microsoft.DotNet.Build.Tasks.Feed (1)
src\common\LatestLinksManager.cs (1)
33X509Certificate2 certificate,
Microsoft.DotNet.Deployment.Tasks.Links (1)
Microsoft.DotNet.SignCheckLibrary (7)
Verification\AuthentiCode.cs (1)
162X509Certificate2 cert = counterSign.Certificate;
Verification\Jar\JarSignatureFile.cs (1)
273X509Certificate2 timestampSignerCert = timestampSigner.Certificate;
Verification\VsixVerifier.cs (2)
100X509Certificate2 certificate = new X509Certificate2(packageSignature.Signer); 161X509Certificate2 certificate = new X509Certificate2(packageSignature.Signer);
Verification\XmlVerifier.cs (3)
24X509Certificate2 xmlCertificate; 37private bool IsSigned(string path, out X509Certificate2 signingCertificate) 65foreach (X509Certificate2 certificate in certificates)
Microsoft.DotNet.SignTool (3)
src\VerifySignatures.cs (3)
209X509Certificate2 certificate; 214var certContentType = X509Certificate2.GetCertContentType(fullPath); 221X509Certificate signer = X509Certificate2.CreateFromSignedFile(fullPath);
netstandard (1)
netstandard.cs (1)
1955[assembly: System.Runtime.CompilerServices.TypeForwardedTo(typeof(System.Security.Cryptography.X509Certificates.X509Certificate2))]
PresentationUI (29)
MS\Internal\Documents\DigitalSignature.cs (2)
161internal X509Certificate2 Certificate 235private X509Certificate2 _x509Certificate2;
MS\Internal\Documents\DigitalSignatureProvider.cs (12)
312IList<X509Certificate2> IDigitalSignatureProvider.GetAllCertificates() 314List<X509Certificate2> certificateList = new List<X509Certificate2>(); 318X509Certificate2 certificate = signature.Certificate; 332IDictionary<X509Certificate2, CertificatePriorityStatus> IDigitalSignatureProvider.GetCertificateStatus( 333IList<X509Certificate2> certificates) 335Dictionary<X509Certificate2, CertificatePriorityStatus> certificateStatusTable = 336new Dictionary<X509Certificate2, CertificatePriorityStatus>(); 338foreach (X509Certificate2 certificate in certificates) 497X509Certificate2 x509Certificate2 = 498xpsDigitalSignature.SignerCertificate as X509Certificate2; 597private static CertificatePriorityStatus GetCertificateStatus(X509Certificate2 certificate)
MS\Internal\Documents\DocumentSignatureManager.cs (9)
216new Dictionary<X509Certificate2, CertificatePriorityStatus>(); 229IList<X509Certificate2> certificateList = 452X509Certificate2 x509Certificate2; 732X509Certificate2 certificate = null; 903private static X509Certificate2 ShowCertificatePickerDialog(IntPtr parentWindow) 905X509Certificate2 x509cert = null; 997private void StartCertificateStatusCheck(IList<X509Certificate2> certificateList) 1350private IDictionary<X509Certificate2, CertificatePriorityStatus> _certificateStatusTable; 1376internal IList<X509Certificate2> CertificateList;
MS\Internal\Documents\IDigitalSignatureProvider.cs (3)
37IList<X509Certificate2> GetAllCertificates(); 45IDictionary<X509Certificate2, CertificatePriorityStatus> GetCertificateStatus(IList<X509Certificate2> certificates);
MS\Internal\Documents\SigningDialog.cs (3)
32internal SigningDialog(X509Certificate2 x509Certificate2, DigitalSignature digitalSignatureRequest, DocumentSignatureManager docSigManager) 313internal X509Certificate2 Certificate 332private X509Certificate2 _x509Certificate2;
ScenarioTests.Common.Tests (1)
ScenarioTestTypes.cs (1)
1270public override void Validate(X509Certificate2 certificate)
Security.TransportSecurity.IntegrationTests (7)
Https\HttpsTests.4.1.0.cs (1)
278X509Certificate2 serviceCertificate = null;
Tcp\ClientCredentialTypeTests.OSX.cs (6)
93public override void Validate(X509Certificate2 certificate) 103static bool StoreContainsCertificate(X509Store store, X509Certificate2 certificate) 117internal bool TryValidate(X509Certificate2 certificate, out Exception exception) 179internal static void ResetCertificate(X509Certificate2 certificate) 184internal static string GetCertificateId(X509Certificate2 certificate) 191internal static void AppendCertificateIdentityName(StringBuilder str, X509Certificate2 certificate)
SignalR.Client.FunctionalTestApp (1)
src\SignalR\common\Shared\TestCertificates.cs (1)
12internal static X509Certificate2 GetTestCert()
Sockets.BindTests (5)
src\Shared\TestResources.cs (5)
20public static X509Certificate2 GetTestCertificate(string certName = "testCert.pfx") 39public static X509Certificate2 GetTestCertificate(string certName, string password) 44public static X509Certificate2 GetTestCertificateWithKey(string certName, string keyName) 46var cert = X509Certificate2.CreateFromPemFile(GetCertPath(certName), GetCertPath(keyName));
Sockets.FunctionalTests (8)
src\Servers\Kestrel\test\FunctionalTests\Http2\HandshakeTests.cs (1)
27private static readonly X509Certificate2 _x509Certificate2 = TestResources.GetTestCertificate();
src\Servers\Kestrel\test\FunctionalTests\Http2\ShutdownTests.cs (1)
25private static readonly X509Certificate2 _x509Certificate2 = TestResources.GetTestCertificate();
src\Servers\Kestrel\test\FunctionalTests\ResponseTests.cs (1)
614var certificate = TestResources.GetTestCertificate();
src\Shared\TestResources.cs (5)
20public static X509Certificate2 GetTestCertificate(string certName = "testCert.pfx") 39public static X509Certificate2 GetTestCertificate(string certName, string password) 44public static X509Certificate2 GetTestCertificateWithKey(string certName, string keyName) 46var cert = X509Certificate2.CreateFromPemFile(GetCertPath(certName), GetCertPath(keyName));
System (1)
src\libraries\shims\System\ref\System.cs (1)
864[assembly: System.Runtime.CompilerServices.TypeForwardedTo(typeof(System.Security.Cryptography.X509Certificates.X509Certificate2))]
System.Net.Http (13)
src\libraries\Common\src\System\Net\Security\CertificateHelper.cs (4)
16internal static X509Certificate2? GetEligibleClientCertificate(X509CertificateCollection? candidateCerts) 29internal static X509Certificate2? GetEligibleClientCertificate(X509Certificate2Collection? candidateCerts) 36foreach (X509Certificate2 cert in candidateCerts) 64private static bool IsValidClientCertificate(X509Certificate2 cert)
src\libraries\Common\src\System\Net\Security\CertificateHelper.Unix.cs (1)
10internal static X509Certificate2? GetEligibleClientCertificate()
System\Net\Http\HttpClientHandler.cs (3)
305public Func<HttpRequestMessage, X509Certificate2?, X509Chain?, SslPolicyErrors, bool>? ServerCertificateCustomValidationCallback 371private static Func<HttpRequestMessage, X509Certificate2?, X509Chain?, SslPolicyErrors, bool>? s_dangerousAcceptAnyServerCertificateValidator; 373public static Func<HttpRequestMessage, X509Certificate2?, X509Chain?, SslPolicyErrors, bool> DangerousAcceptAnyServerCertificateValidator =>
System\Net\Http\SocketsHttpHandler\ConnectHelper.cs (5)
25public readonly Func<HttpRequestMessage, X509Certificate2?, X509Chain?, SslPolicyErrors, bool> FromHttpClientHandler; 28public CertificateCallbackMapper(Func<HttpRequestMessage, X509Certificate2?, X509Chain?, SslPolicyErrors, bool> fromHttpClientHandler) 32FromHttpClientHandler((HttpRequestMessage)sender, certificate as X509Certificate2, chain, sslPolicyErrors); 44Func<HttpRequestMessage, X509Certificate2?, X509Chain?, SslPolicyErrors, bool> localFromHttpClientHandler = mapper.FromHttpClientHandler; 49bool result = localFromHttpClientHandler(localRequest, certificate as X509Certificate2, chain, sslPolicyErrors);
System.Net.Http.WinHttpHandler (1)
artifacts\obj\System.Net.Http.WinHttpHandler\Debug\net10.0\System.Net.Http.WinHttpHandler.notsupported.cs (1)
44public System.Func<System.Net.Http.HttpRequestMessage, System.Security.Cryptography.X509Certificates.X509Certificate2, System.Security.Cryptography.X509Certificates.X509Chain, System.Net.Security.SslPolicyErrors, bool>? ServerCertificateValidationCallback { get { throw new System.PlatformNotSupportedException(System.SR.PlatformNotSupported_WinHttpHandler); } set { throw new System.PlatformNotSupportedException(System.SR.PlatformNotSupported_WinHttpHandler); } }
System.Net.HttpListener (9)
System\Net\HttpListenerRequest.cs (3)
230public X509Certificate2? GetClientCertificate() 254public Task<X509Certificate2?> GetClientCertificateAsync() 263internal X509Certificate2? ClientCertificate { get; set; }
System\Net\Managed\HttpConnection.cs (3)
68private X509Certificate2? _clientCert; 94_clientCert = c as X509Certificate2 ?? X509CertificateLoader.LoadCertificate(c.GetRawCertData()); 117internal X509Certificate2? ClientCertificate
System\Net\Managed\HttpListenerRequest.Managed.cs (3)
288private X509Certificate2? GetClientCertificateCore() => ClientCertificate = _context.Connection.ClientCertificate; 356public X509Certificate2? EndGetClientCertificate(IAsyncResult asyncResult) 371return (X509Certificate2?)clientCertAsyncResult.Result;
System.Net.Quic (16)
src\libraries\Common\src\System\Net\Security\CertificateValidation.Unix.cs (2)
16internal static SslPolicyErrors BuildChainAndVerifyProperties(X509Chain chain, X509Certificate2 remoteCertificate, bool checkCertName, bool isServer, string? hostName, Span<byte> certificateBuffer) 20internal static SslPolicyErrors BuildChainAndVerifyProperties(X509Chain chain, X509Certificate2 remoteCertificate, bool checkCertName, bool _ /*isServer*/, string? hostName)
System\Net\Quic\Internal\MsQuicConfiguration.Cache.cs (3)
54public CacheKey(QUIC_SETTINGS settings, QUIC_CREDENTIAL_FLAGS flags, X509Certificate? certificate, ReadOnlyCollection<X509Certificate2>? intermediates, List<SslApplicationProtocol> alpnProtocols, QUIC_ALLOWED_CIPHER_SUITE_FLAGS allowedCipherSuites) 60foreach (X509Certificate2 intermediate in intermediates) 132private static MsQuicConfigurationSafeHandle GetCachedCredentialOrCreate(QUIC_SETTINGS settings, QUIC_CREDENTIAL_FLAGS flags, X509Certificate? certificate, ReadOnlyCollection<X509Certificate2>? intermediates, List<SslApplicationProtocol> alpnProtocols, QUIC_ALLOWED_CIPHER_SUITE_FLAGS allowedCipherSuites)
System\Net\Quic\Internal\MsQuicConfiguration.cs (7)
17=> certificate is X509Certificate2 certificate2 && certificate2.Handle != IntPtr.Zero && certificate2.HasPrivateKey; 34ReadOnlyCollection<X509Certificate2>? intermediates = null; 99ReadOnlyCollection<X509Certificate2>? intermediates = default; 124private static MsQuicConfigurationSafeHandle Create(QuicConnectionOptions options, QUIC_CREDENTIAL_FLAGS flags, X509Certificate? certificate, ReadOnlyCollection<X509Certificate2>? intermediates, List<SslApplicationProtocol>? alpnProtocols, CipherSuitesPolicy? cipherSuitesPolicy, EncryptionPolicy encryptionPolicy) 204private static unsafe MsQuicConfigurationSafeHandle CreateInternal(QUIC_SETTINGS settings, QUIC_CREDENTIAL_FLAGS flags, X509Certificate? certificate, ReadOnlyCollection<X509Certificate2>? intermediates, List<SslApplicationProtocol> alpnProtocols, QUIC_ALLOWED_CIPHER_SUITE_FLAGS allowedCipherSuites) 206if (!MsQuicApi.UsesSChannelBackend && certificate is X509Certificate2 cert && intermediates is null) 260foreach (X509Certificate2 intermediate in intermediates)
System\Net\Quic\QuicConnection.cs (1)
212private X509Certificate2? _remoteCertificate;
System\Net\Quic\QuicConnection.SslConnectionOptions.cs (3)
76X509Certificate2? certificate = null; 176private QUIC_TLS_ALERT_CODES ValidateCertificate(X509Certificate2? certificate, Span<byte> certData, Span<byte> chainData) 208Debug.Assert(X509Certificate2.GetCertContentType(chainData) is X509ContentType.Pkcs7);
System.Net.Security (53)
src\libraries\Common\src\Interop\Unix\System.Security.Cryptography.Native\Interop.Ssl.cs (1)
281internal static bool AddExtraChainCertificates(SafeSslHandle ssl, ReadOnlyCollection<X509Certificate2> chain)
src\libraries\Common\src\Interop\Unix\System.Security.Cryptography.Native\Interop.SslCtx.cs (1)
47internal static bool AddExtraChainCertificates(SafeSslContextHandle ctx, ReadOnlyCollection<X509Certificate2> chain)
src\libraries\Common\src\System\Net\Security\CertificateValidation.Unix.cs (2)
16internal static SslPolicyErrors BuildChainAndVerifyProperties(X509Chain chain, X509Certificate2 remoteCertificate, bool checkCertName, bool isServer, string? hostName, Span<byte> certificateBuffer) 20internal static SslPolicyErrors BuildChainAndVerifyProperties(X509Chain chain, X509Certificate2 remoteCertificate, bool checkCertName, bool _ /*isServer*/, string? hostName)
System\Net\CertificateValidationPal.cs (2)
21internal static X509Certificate2? GetRemoteCertificate(SafeDeleteContext? securityContext) => 24internal static X509Certificate2? GetRemoteCertificate(SafeDeleteContext? securityContext, ref X509Chain? chain, X509ChainPolicy? chainPolicy) =>
System\Net\CertificateValidationPal.Unix.cs (4)
16X509Certificate2 remoteCertificate, 27private static X509Certificate2? GetRemoteCertificate( 38X509Certificate2? result = null; 71X509Certificate2 chainCert = new X509Certificate2(certPtr);
System\Net\Security\Pal.Managed\EndpointChannelBindingToken.cs (2)
14using (X509Certificate2? cert = CertificateValidationPal.GetRemoteCertificate(securityContext)) 28private static byte[] GetHashForChannelBinding(X509Certificate2 cert)
System\Net\Security\SslAuthenticationOptions.cs (2)
119X509Certificate2? certificateWithKey = sslServerAuthenticationOptions.ServerCertificate as X509Certificate2;
System\Net\Security\SslStream.Protocol.cs (19)
57private X509Certificate2? _remoteCertificate; 182internal static X509Certificate2? FindCertificateWithPrivateKey(object instance, bool isServer, X509Certificate certificate) 195X509Certificate2? certEx = MakeEx(certificate); 217X509Certificate2? found = 225X509Certificate2? FindCertWithPrivateKey(bool isServer) 231X509Certificate2? cert = null; 252X509Certificate2 toDispose = found[i]; 278private static X509Certificate2? MakeEx(X509Certificate certificate) 282if (certificate.GetType() == typeof(X509Certificate2)) 284return (X509Certificate2)certificate; 287X509Certificate2? certificateEx = null; 316internal X509Certificate2? SelectClientCertificate() 319X509Certificate2? selectedCert = null; // final selected cert (ensured that it does have private key with it). 342X509Certificate2? remoteCert = null; 415X509Certificate2? certificateEx = null; 577X509Certificate2? selectedCert = SelectClientCertificate(); 676X509Certificate2? selectedCert = null; 801foreach (X509Certificate2 cert in certificateContext.IntermediateCertificates) 1049X509Certificate2? certificate = CertificateValidationPal.GetRemoteCertificate(_securityContext, ref chain, _sslAuthenticationOptions.CertificateChainPolicy);
System\Net\Security\SslStreamCertificateContext.cs (11)
17public X509Certificate2 TargetCertificate { get; } 22public ReadOnlyCollection<X509Certificate2> IntermediateCertificates { get; } 25public static SslStreamCertificateContext Create(X509Certificate2 target, X509Certificate2Collection? additionalCertificates, bool offline) 30public static SslStreamCertificateContext Create(X509Certificate2 target, X509Certificate2Collection? additionalCertificates, bool offline = false, SslCertificateTrust? trust = null) 36X509Certificate2 target, 47X509Certificate2[] intermediates = Array.Empty<X509Certificate2>(); 48X509Certificate2? root = null; 127intermediates = new X509Certificate2[count]; 150SslStreamCertificateContext ctx = new SslStreamCertificateContext(target, new ReadOnlyCollection<X509Certificate2>(intermediates), trust); 167partial void AddRootCertificate(X509Certificate2? rootCertificate, ref bool transferredOwnership);
System\Net\Security\SslStreamCertificateContext.Linux.cs (9)
53private X509Certificate2[] _privateIntermediateCertificates; 54private X509Certificate2? _rootCertificate; 58private SslStreamCertificateContext(X509Certificate2 target, ReadOnlyCollection<X509Certificate2> intermediates, SslCertificateTrust? trust) 63_privateIntermediateCertificates = new X509Certificate2[intermediates.Count]; 72_privateIntermediateCertificates = Array.Empty<X509Certificate2>(); 105internal static SslStreamCertificateContext Create(X509Certificate2 target) => 115partial void AddRootCertificate(X509Certificate2? rootCertificate, ref bool transferredOwnership) 262X509Certificate2? caCert = _privateIntermediateCertificates.Length > 0 ? _privateIntermediateCertificates[0] : _rootCertificate;
System.Security.Cryptography (171)
src\libraries\Common\src\System\Security\Cryptography\Pkcs\Pkcs12CertBag.cs (2)
57internal Pkcs12CertBag(X509Certificate2 cert) 80public X509Certificate2 GetCertificate()
src\libraries\Common\src\System\Security\Cryptography\Pkcs\Pkcs12SafeContents.cs (1)
78public Pkcs12CertBag AddCertificate(X509Certificate2 certificate)
src\libraries\Common\src\System\Security\Cryptography\X509Certificates\Pkcs12LoaderLimits.cs (1)
303/// <seealso cref="X509Certificate2.FriendlyName"/>
src\libraries\Common\src\System\Security\Cryptography\X509Certificates\X509CertificateLoader.cs (17)
36/// <see cref="X509ContentType.Cert" /> by <see cref="X509Certificate2.GetCertContentType(byte[])"/>. 38/// <seealso cref="X509Certificate2.GetCertContentType(string)"/> 39public static partial X509Certificate2 LoadCertificate(ReadOnlySpan<byte> data); 57/// <see cref="X509ContentType.Cert" /> by <see cref="X509Certificate2.GetCertContentType(byte[])"/>. 59/// <seealso cref="X509Certificate2.GetCertContentType(string)"/> 60public static partial X509Certificate2 LoadCertificate(byte[] data); 81/// <see cref="X509ContentType.Cert" /> by <see cref="X509Certificate2.GetCertContentType(string)"/>. 83/// <seealso cref="X509Certificate2.GetCertContentType(string)"/> 84public static partial X509Certificate2 LoadCertificateFromFile(string path); 122/// certificate where <see cref="X509Certificate2.HasPrivateKey" /> is 129public static X509Certificate2 LoadPkcs12( 181/// certificate where <see cref="X509Certificate2.HasPrivateKey" /> is 188public static X509Certificate2 LoadPkcs12( 252/// certificate where <see cref="X509Certificate2.HasPrivateKey" /> is 259public static X509Certificate2 LoadPkcs12FromFile( 314/// certificate where <see cref="X509Certificate2.HasPrivateKey" /> is 321public static X509Certificate2 LoadPkcs12FromFile(
src\libraries\Common\src\System\Security\Cryptography\X509Certificates\X509CertificateLoader.Pkcs12.cs (1)
588internal partial X509Certificate2 ToCertificate();
System\Security\Cryptography\X509Certificates\CertificateExtensionsCommon.cs (4)
11this X509Certificate2 certificate, 12Predicate<X509Certificate2>? matchesConstraints = null) 47this X509Certificate2 certificate, 48Predicate<X509Certificate2>? matchesConstraints = null)
System\Security\Cryptography\X509Certificates\CertificatePolicy.cs (3)
39public CertificatePolicyChain(List<X509Certificate2> chain) 156private void ReadPolicies(List<X509Certificate2> chain) 226private static CertificatePolicy ReadPolicy(X509Certificate2 cert)
System\Security\Cryptography\X509Certificates\CertificateRequest.cs (23)
126/// The RSA signature padding to apply if self-signing or being signed with an <see cref="X509Certificate2" />. 159/// The RSA signature padding to apply if self-signing or being signed with an <see cref="X509Certificate2" />. 484/// An <see cref="X509Certificate2"/> with the specified values. The returned object will 485/// assert <see cref="X509Certificate2.HasPrivateKey" />. 496public X509Certificate2 CreateSelfSigned(DateTimeOffset notBefore, DateTimeOffset notAfter) 508using (X509Certificate2 certificate = Create( 553/// An <see cref="X509Certificate2"/> with the specified values. The returned object will 554/// not assert <see cref="X509Certificate2.HasPrivateKey" />. 558/// The <see cref="X509Certificate2.HasPrivateKey"/> value for <paramref name="issuerCertificate"/> is false. 574public X509Certificate2 Create( 575X509Certificate2 issuerCertificate, 604/// An <see cref="X509Certificate2"/> with the specified values. The returned object will 605/// not assert <see cref="X509Certificate2.HasPrivateKey" />. 609/// The <see cref="X509Certificate2.HasPrivateKey"/> value for <paramref name="issuerCertificate"/> is false. 625public X509Certificate2 Create( 626X509Certificate2 issuerCertificate, 752/// An <see cref="X509Certificate2"/> with the specified values. The returned object will 753/// not assert <see cref="X509Certificate2.HasPrivateKey" />. 762public X509Certificate2 Create( 793/// An <see cref="X509Certificate2"/> with the specified values. The returned object will 794/// not assert <see cref="X509Certificate2.HasPrivateKey" />. 803public X509Certificate2 Create( 893X509Certificate2 ret = writer.Encode(X509CertificateLoader.LoadCertificate);
System\Security\Cryptography\X509Certificates\CertificateRequest.Load.cs (1)
248X509Certificate2.CreateCustomExtensionIfAny(extAsn.ExtnId);
System\Security\Cryptography\X509Certificates\CertificateRevocationListBuilder.Build.cs (2)
109X509Certificate2 issuerCertificate, 126X509Certificate2 issuerCertificate,
System\Security\Cryptography\X509Certificates\CertificateRevocationListBuilder.cs (1)
64X509Certificate2 certificate,
System\Security\Cryptography\X509Certificates\ChainPal.OpenSsl.cs (5)
142List<X509Certificate2>? tmp = null; 157foreach (X509Certificate2 downloaded in tmp) 195X509Certificate2 reportedLeaf = chainPal.ChainElements[0].Certificate; 203private static void SaveIntermediateCertificates(List<X509Certificate2> downloadedCerts) 223foreach (X509Certificate2 cert in downloadedCerts)
System\Security\Cryptography\X509Certificates\DSACertificateExtensions.cs (5)
11/// public and private keys of a <see cref="X509Certificate2" />. 20public static DSA? GetDSAPublicKey(this X509Certificate2 certificate) 28public static DSA? GetDSAPrivateKey(this X509Certificate2 certificate) 33public static X509Certificate2 CopyWithPrivateKey(this X509Certificate2 certificate, DSA privateKey)
System\Security\Cryptography\X509Certificates\ECDsaCertificateExtensions.cs (6)
10/// public and private keys of a <see cref="X509Certificate2" />. 17public static ECDsa? GetECDsaPublicKey(this X509Certificate2 certificate) 25public static ECDsa? GetECDsaPrivateKey(this X509Certificate2 certificate) 30public static X509Certificate2 CopyWithPrivateKey(this X509Certificate2 certificate, ECDsa privateKey) 53private static bool HasECDsaKeyUsage(X509Certificate2 certificate)
System\Security\Cryptography\X509Certificates\ManagedCertificateFinder.cs (9)
42static bool FindPredicate(byte[] thumbprint, X509Certificate2 certificate) 268protected abstract byte[] GetSubjectPublicKeyInfo(X509Certificate2 cert); 314private static X509Extension? FindExtension(X509Certificate2 cert, string extensionOid) 334protected abstract X509Certificate2 CloneCertificate(X509Certificate2 cert); 336private void FindCore<TState>(TState state, Func<TState, X509Certificate2, bool> predicate) 342X509Certificate2 cert = findFrom[i]; 347X509Certificate2 clone = CloneCertificate(cert); 356private static bool IsCertValid(X509Certificate2 cert)
System\Security\Cryptography\X509Certificates\OpenSslCachedSystemStoreProvider.cs (6)
61X509Certificate2 clone = new X509Certificate2(Interop.Crypto.GetX509StackField(nativeColl, i)); 153var uniqueRootCerts = new HashSet<X509Certificate2>(); 154var uniqueIntermediateCerts = new HashSet<X509Certificate2>(); 242X509Certificate2 cert = new X509Certificate2(pal); 296foreach (X509Certificate2 cert in uniqueRootCerts) 301foreach (X509Certificate2 cert in uniqueIntermediateCerts)
System\Security\Cryptography\X509Certificates\OpenSslCertificateAssetDownloader.cs (3)
16internal static X509Certificate2? DownloadCertificate(string uri, TimeSpan downloadTimeout) 27X509ContentType contentType = X509Certificate2.GetCertContentType(data); 28X509Certificate2 certificate;
System\Security\Cryptography\X509Certificates\OpenSslCertificateFinder.cs (3)
13protected override byte[] GetSubjectPublicKeyInfo(X509Certificate2 cert) 25protected override X509Certificate2 CloneCertificate(X509Certificate2 cert)
System\Security\Cryptography\X509Certificates\OpenSslDirectoryBasedStoreProvider.cs (7)
82var loadedCerts = new HashSet<X509Certificate2>(); 88X509Certificate2 cert = X509CertificateLoader.LoadPkcs12FromFile(filePath, null); 140using (X509Certificate2 copy = new X509Certificate2(cert.DuplicateHandles())) 157using (X509Certificate2 fromFile = X509CertificateLoader.LoadPkcs12FromFile(existingFilename, null)) 228using (X509Certificate2 copy = new X509Certificate2(cert.DuplicateHandles())) 257private static string? FindExistingFilename(X509Certificate2 cert, string storePath, out bool hadCandidates) 267using (X509Certificate2 candidate = X509CertificateLoader.LoadPkcs12FromFile(maybeMatch, null))
System\Security\Cryptography\X509Certificates\OpenSslExportProvider.cs (1)
65foreach (X509Certificate2 cert in _certs!)
System\Security\Cryptography\X509Certificates\OpenSslX509ChainEventSource.cs (1)
666internal void CachingIntermediate(X509Certificate2 certificate)
System\Security\Cryptography\X509Certificates\OpenSslX509ChainProcessor.cs (10)
156foreach (X509Certificate2 cert in customTrustStore) 191foreach (X509Certificate2 cert in extraCerts) 216ref List<X509Certificate2>? downloadedCerts) 253X509Certificate2? downloaded = DownloadCertificate( 265downloadedCerts ??= new List<X509Certificate2>(); 313X509Certificate2 downloadedCert = downloadedCerts[i]; 892X509Certificate2 elementCert = new X509Certificate2(elementCertPtr); 906List<X509Certificate2> certsToRead = new List<X509Certificate2>(); 1198private static X509Certificate2? DownloadCertificate(
System\Security\Cryptography\X509Certificates\RSACertificateExtensions.cs (5)
10/// public and private keys of a <see cref="X509Certificate2" />. 17public static RSA? GetRSAPublicKey(this X509Certificate2 certificate) 25public static RSA? GetRSAPrivateKey(this X509Certificate2 certificate) 30public static X509Certificate2 CopyWithPrivateKey(this X509Certificate2 certificate, RSA privateKey)
System\Security\Cryptography\X509Certificates\StorePal.cs (1)
49foreach (X509Certificate2 cert in coll)
System\Security\Cryptography\X509Certificates\UnixChainVerifier.cs (1)
86private static bool IsSelfSigned(X509Certificate2 cert)
System\Security\Cryptography\X509Certificates\UnixExportProvider.cs (1)
113X509Certificate2 cert = _certs[i];
System\Security\Cryptography\X509Certificates\X509AuthorityKeyIdentifierExtension.cs (3)
105/// Gets the <see cref="X509Certificate2.IssuerName"/> value from this certificate's 109/// The <see cref="X509Certificate2.IssuerName"/> value from this certificate's 461X509Certificate2 certificate,
System\Security\Cryptography\X509Certificates\X509Certificate2.cs (18)
88/// Initializes a new instance of the <see cref="X509Certificate2"/> class from certificate data. 102/// Initializes a new instance of the <see cref="X509Certificate2"/> class from certificate data, 749public X509Certificate2 CopyWithPrivateKey(ECDiffieHellman privateKey) 829public static X509Certificate2 CreateFromPemFile(string certPemFilePath, string? keyPemFilePath = default) 895public static X509Certificate2 CreateFromEncryptedPemFile(string certPemFilePath, ReadOnlySpan<char> password, string? keyPemFilePath = default) 945public static X509Certificate2 CreateFromPem(ReadOnlySpan<char> certPem, ReadOnlySpan<char> keyPem) 947using (X509Certificate2 certificate = CreateFromPem(certPem)) 1016public static X509Certificate2 CreateFromEncryptedPem(ReadOnlySpan<char> certPem, ReadOnlySpan<char> keyPem, ReadOnlySpan<char> password) 1018using (X509Certificate2 certificate = CreateFromPem(certPem)) 1043private static bool IsECDsa(X509Certificate2 certificate) 1051private static bool IsECDiffieHellman(X509Certificate2 certificate) 1081public static X509Certificate2 CreateFromPem(ReadOnlySpan<char> certPem) 1112X509Certificate2 ret = X509CertificateLoader.LoadCertificate(certData.Span); 1429private static X509Certificate2 ExtractKeyFromPem<TAlg>( 1433Func<TAlg, X509Certificate2> import) where TAlg : AsymmetricAlgorithm 1463private static X509Certificate2 ExtractKeyFromEncryptedPem<TAlg>( 1467Func<TAlg, X509Certificate2> import) where TAlg : AsymmetricAlgorithm 1510private static bool HasECDiffieHellmanKeyUsage(X509Certificate2 certificate)
System\Security\Cryptography\X509Certificates\X509Certificate2Collection.cs (14)
15public class X509Certificate2Collection : X509CertificateCollection, IEnumerable<X509Certificate2> 21public X509Certificate2Collection(X509Certificate2 certificate) 26public X509Certificate2Collection(X509Certificate2[] certificates) 36public new X509Certificate2 this[int index] 40return (X509Certificate2)(base[index]); 48public int Add(X509Certificate2 certificate) 55public void AddRange(X509Certificate2[] certificates) 99public bool Contains(X509Certificate2 certificate) 137IEnumerator<X509Certificate2> IEnumerable<X509Certificate2>.GetEnumerator() => GetEnumerator(); 263public void Insert(int index, X509Certificate2 certificate) 270public void Remove(X509Certificate2 certificate) 277public void RemoveRange(X509Certificate2[] certificates) 722foreach (X509Certificate2 cert in this)
System\Security\Cryptography\X509Certificates\X509Certificate2Enumerator.cs (3)
10public sealed class X509Certificate2Enumerator : IEnumerator, IEnumerator<X509Certificate2> 21public X509Certificate2 Current 23get { return (X509Certificate2)_enumerator.Current!; }
System\Security\Cryptography\X509Certificates\X509CertificateLoader.netcore.cs (4)
11public static partial X509Certificate2 LoadCertificate(byte[] data) 18public static partial X509Certificate2 LoadCertificate(ReadOnlySpan<byte> data) 30public static partial X509Certificate2 LoadCertificateFromFile(string path) 138internal partial X509Certificate2 ToCertificate()
System\Security\Cryptography\X509Certificates\X509Chain.cs (3)
89public bool Build(X509Certificate2 certificate) 94internal bool Build(X509Certificate2 certificate, bool throwOnException) 108foreach (X509Certificate2 customCertificate in _chainPolicy.CustomTrustStore)
System\Security\Cryptography\X509Certificates\X509ChainElement.cs (2)
16internal X509ChainElement(X509Certificate2 certificate, X509ChainStatus[] chainElementStatus, string information) 23public X509Certificate2 Certificate { get; }
System\Security\Cryptography\X509Certificates\X509Store.cs (4)
126public void Add(X509Certificate2 certificate) 146foreach (X509Certificate2 certificate in certificates) 164public void Remove(X509Certificate2 certificate) 184foreach (X509Certificate2 certificate in certificates)
System.Security.Cryptography.Pkcs (73)
Internal\Cryptography\DecryptorPal.cs (1)
35X509Certificate2? cert,
Internal\Cryptography\Pal\AnyOS\ManagedPal.cs (4)
33public override byte[] GetSubjectKeyIdentifier(X509Certificate2 certificate) 67public override T? GetPrivateKeyForSigning<T>(X509Certificate2 certificate, bool silent) where T : class 72public override T? GetPrivateKeyForDecryption<T>(X509Certificate2 certificate, bool silent) where T : class 77private static T? GetPrivateKey<T>(X509Certificate2 certificate) where T : AsymmetricAlgorithm
Internal\Cryptography\Pal\AnyOS\ManagedPal.Decrypt.cs (1)
34X509Certificate2? cert,
Internal\Cryptography\Pal\AnyOS\ManagedPal.KeyTrans.cs (2)
35internal byte[]? DecryptCek(X509Certificate2? cert, RSA? privateKey, out Exception? exception) 64X509Certificate2? cert,
Internal\Cryptography\PkcsHelpers.cs (5)
174X509Certificate2 originalCert = recipient.Certificate; 175X509Certificate2 certCopy = new X509Certificate2(originalCert.Handle); 210public static X509Certificate2? TryFindMatchingCertificate(this X509Certificate2Collection certs, SubjectIdentifier recipientIdentifier) 225foreach (X509Certificate2 candidate in certs) 238foreach (X509Certificate2 cert in certs)
Internal\Cryptography\PkcsPal.cs (3)
74public abstract byte[] GetSubjectKeyIdentifier(X509Certificate2 certificate); 79public abstract T? GetPrivateKeyForSigning<T>(X509Certificate2 certificate, bool silent) where T : AsymmetricAlgorithm; 84public abstract T? GetPrivateKeyForDecryption<T>(X509Certificate2 certificate, bool silent) where T : AsymmetricAlgorithm;
src\libraries\Common\src\System\Security\Cryptography\Pkcs\Pkcs12CertBag.cs (2)
57internal Pkcs12CertBag(X509Certificate2 cert) 80public X509Certificate2 GetCertificate()
src\libraries\Common\src\System\Security\Cryptography\Pkcs\Pkcs12SafeContents.cs (1)
78public Pkcs12CertBag AddCertificate(X509Certificate2 certificate)
System\Security\Cryptography\Pkcs\CmsRecipient.cs (6)
12public CmsRecipient(X509Certificate2 certificate) 22CmsRecipient(X509Certificate2 certificate, RSAEncryptionPadding rsaEncryptionPadding) 39CmsRecipient(SubjectIdentifierType recipientIdentifierType, X509Certificate2 certificate, RSAEncryptionPadding rsaEncryptionPadding) 51public CmsRecipient(SubjectIdentifierType recipientIdentifierType, X509Certificate2 certificate) 82public X509Certificate2 Certificate { get; } 84private static void ValidateRSACertificate(X509Certificate2 certificate)
System\Security\Cryptography\Pkcs\CmsSignature.cs (3)
43X509Certificate2 certificate); 52X509Certificate2 certificate, 121X509Certificate2 certificate,
System\Security\Cryptography\Pkcs\CmsSignature.DSA.cs (2)
56X509Certificate2 certificate) 110X509Certificate2 certificate,
System\Security\Cryptography\Pkcs\CmsSignature.ECDsa.cs (2)
57X509Certificate2 certificate) 114X509Certificate2 certificate,
System\Security\Cryptography\Pkcs\CmsSignature.RSA.cs (4)
58X509Certificate2 certificate) 106X509Certificate2 certificate, 206X509Certificate2 certificate, 326X509Certificate2 certificate,
System\Security\Cryptography\Pkcs\CmsSigner.cs (7)
23public X509Certificate2? Certificate { get; set; } 71public CmsSigner(X509Certificate2? certificate) 82public CmsSigner(SubjectIdentifierType signerIdentifierType, X509Certificate2? certificate) : this(signerIdentifierType, certificate, null) 86public CmsSigner(SubjectIdentifierType signerIdentifierType, X509Certificate2? certificate, AsymmetricAlgorithm? privateKey) 110X509Certificate2? certificate, 119X509Certificate2? certificate, 377X509Certificate2 cert = elements[i].Certificate;
System\Security\Cryptography\Pkcs\EnvelopedCms.cs (1)
261X509Certificate2? cert = certs.TryFindMatchingCertificate(recipientInfo.RecipientIdentifier);
System\Security\Cryptography\Pkcs\Rfc3161TimestampToken.cs (13)
42private X509Certificate2? GetSignerCertificate(X509Certificate2Collection? extraCandidates) 45X509Certificate2? signerCert = _signerInfo.Certificate; 63foreach (X509Certificate2 candidate in extraCandidates) 76[NotNullWhen(true)] out X509Certificate2? signerCertificate, 81X509Certificate2? cert = GetSignerCertificate(extraCandidates); 100[NotNullWhen(true)] out X509Certificate2? signerCertificate, 105X509Certificate2? cert = GetSignerCertificate(extraCandidates); 124[NotNullWhen(true)] out X509Certificate2? signerCertificate, 134X509Certificate2? cert = GetSignerCertificate(extraCandidates); 156[NotNullWhen(true)] out X509Certificate2? signerCertificate, 204X509Certificate2 tsaCertificate, 367X509Certificate2? signerCert = signer.Certificate; 484private static bool CertMatchesIds(X509Certificate2 signerCert, in EssCertId? certId, in EssCertIdV2? certId2)
System\Security\Cryptography\Pkcs\SignedCms.cs (5)
571var certs = new HashSet<X509Certificate2>(Certificates.OfType<X509Certificate2>()); 575X509Certificate2 candidate = newCerts[i]; 673public void AddCertificate(X509Certificate2 certificate) 707public void RemoveCertificate(X509Certificate2 certificate)
System\Security\Cryptography\Pkcs\SignerInfo.cs (10)
32private X509Certificate2? _signerCertificate; 71public X509Certificate2? Certificate => 444X509Certificate2? certificate = Certificate; 487private X509Certificate2? FindSignerCertificate() 492private static X509Certificate2? FindSignerCertificate( 502X509Certificate2? match = null; 511foreach (X509Certificate2 cert in filtered) 537foreach (X509Certificate2 cert in filtered) 684X509Certificate2 certificate, 758X509Certificate2 certificate,
System\Security\Cryptography\Pkcs\SubjectIdentifier.cs (1)
100public bool MatchesCertificate(X509Certificate2 certificate)
System.Security.Cryptography.X509Certificates (1)
System.Security.Cryptography.X509Certificates.cs (1)
18[assembly: System.Runtime.CompilerServices.TypeForwardedTo(typeof(System.Security.Cryptography.X509Certificates.X509Certificate2))]
System.Security.Cryptography.Xml (13)
System\Security\Cryptography\Xml\EncryptedXml.cs (2)
445foreach (X509Certificate2 certificate in collection) 546public EncryptedData Encrypt(XmlElement inputElement, X509Certificate2 certificate)
System\Security\Cryptography\Xml\KeyInfoX509Data.cs (3)
37X509Certificate2 certificate = rgbCert is null ? 57X509Certificate2 certificate = new X509Certificate2(cert); 122X509Certificate2 x509 = new X509Certificate2(certificate);
System\Security\Cryptography\Xml\SignedXml.cs (3)
339public bool CheckSignature(X509Certificate2 certificate, bool verifySignatureOnly) 544X509Certificate2? certificate = (X509Certificate2?)_x509Enum.Current;
System\Security\Cryptography\Xml\SignedXmlDebugLog.cs (2)
216X509Certificate2? certificate2 = key as X509Certificate2;
System\Security\Cryptography\Xml\Utils.cs (3)
642foreach (X509Certificate2 certificate in keyInfoX509Data.Certificates) 754X509Certificate2 certificate = elements[0].Certificate; 760internal static AsymmetricAlgorithm? GetAnyPublicKey(X509Certificate2 certificate)
System.ServiceModel.Http.Tests (1)
ServiceModel\BasicHttpsBindingTest.cs (1)
75var certificate = new X509Certificate2(certificateBytes);
System.ServiceModel.NetFramingBase (2)
System\ServiceModel\Channels\SslStreamSecurityUpgradeProvider.cs (2)
74public X509Certificate2 ServerCertificate { get; private set; } 406X509Certificate2 certificate2 = new X509Certificate2(certificate);
System.ServiceModel.Primitives (10)
netstandard.cs (10)
137public X509CertificateClaimSet(Security.Cryptography.X509Certificates.X509Certificate2 certificate) { } 142public Security.Cryptography.X509Certificates.X509Certificate2 X509Certificate => default; 267public abstract void Validate(System.Security.Cryptography.X509Certificates.X509Certificate2 certificate); 401public X509SecurityToken(System.Security.Cryptography.X509Certificates.X509Certificate2 certificate) { } 402public X509SecurityToken(System.Security.Cryptography.X509Certificates.X509Certificate2 certificate, string id) { } 407public System.Security.Cryptography.X509Certificates.X509Certificate2 Certificate => default; 1134public X509CertificateEndpointIdentity(System.Security.Cryptography.X509Certificates.X509Certificate2 certificate) { } 2302public System.Security.Cryptography.X509Certificates.X509Certificate2 Certificate { get { return default; } set { } } 2310public System.Security.Cryptography.X509Certificates.X509Certificate2 DefaultCertificate { get { return default; } set { } } 2311public System.Collections.Generic.Dictionary<System.Uri, System.Security.Cryptography.X509Certificates.X509Certificate2> ScopedCertificates { get { return default; } }
System.Windows.Extensions (2)
artifacts\obj\System.Windows.Extensions\Debug\net10.0\System.Windows.Extensions.notsupported.cs (2)
58public static void DisplayCertificate(System.Security.Cryptography.X509Certificates.X509Certificate2 certificate) { throw new System.PlatformNotSupportedException(System.SR.PlatformNotSupported_System_Windows_Extensions); } 59public static void DisplayCertificate(System.Security.Cryptography.X509Certificates.X509Certificate2 certificate, System.IntPtr hwndParent) { throw new System.PlatformNotSupportedException(System.SR.PlatformNotSupported_System_Windows_Extensions); }
Templates.Blazor.Tests (102)
src\Shared\CertificateGeneration\CertificateManager.cs (49)
69public static bool IsHttpsDevelopmentCertificate(X509Certificate2 certificate) 81public IList<X509Certificate2> ListCertificates( 88var certificates = new List<X509Certificate2>(); 94IEnumerable<X509Certificate2> matchingCertificates = certificates; 133return (IList<X509Certificate2>)matchingCertificates; 146bool HasOid(X509Certificate2 certificate, string oid) => 150static byte GetCertificateVersion(X509Certificate2 c) 169bool IsValidCertificate(X509Certificate2 certificate, DateTimeOffset currentDate, bool requireExportable) => 176protected virtual void PopulateCertificatesFromStore(X509Store store, List<X509Certificate2> certificates, bool requireExportable) 178certificates.AddRange(store.Certificates.OfType<X509Certificate2>()); 181public IList<X509Certificate2> GetHttpsCertificates() => 211X509Certificate2? certificate = null; 221foreach (var candidate in currentUserCertificates) 416X509Certificate2 certificate; 475foreach (var certificate in filteredCertificates) 483public abstract TrustLevel GetTrustLevel(X509Certificate2 certificate); 485protected abstract X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation); 488protected abstract TrustLevel TrustCertificateCore(X509Certificate2 certificate); 490protected abstract bool IsExportable(X509Certificate2 c); 492protected abstract void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate); 494protected abstract IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation); 502internal void ExportCertificate(X509Certificate2 certificate, string path, bool includePrivateKey, string? password, CertificateKeyExportFormat format) 646internal X509Certificate2 CreateAspNetCoreHttpsDevelopmentCertificate(DateTimeOffset notBefore, DateTimeOffset notAfter) 692var certificate = CreateSelfSignedCertificate(subject, extensions, notBefore, notAfter); 696internal X509Certificate2 SaveCertificate(X509Certificate2 certificate) 712internal TrustLevel TrustCertificate(X509Certificate2 certificate) 739foreach (var certificate in certificates) 747internal void RemoveCertificate(X509Certificate2 certificate, RemoveLocations locations) 768internal abstract CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate); 770internal abstract void CorrectCertificateState(X509Certificate2 candidate); 772internal static X509Certificate2 CreateSelfSignedCertificate( 786var result = request.CreateSelfSigned(notBefore, notAfter); 801internal static void DisposeCertificates(IEnumerable<X509Certificate2> disposables) 803foreach (var disposable in disposables) 815protected void RemoveCertificateFromUserStore(X509Certificate2 certificate) 833protected virtual void RemoveCertificateFromUserStoreCore(X509Certificate2 certificate) 837var matching = store.Certificates 838.OfType<X509Certificate2>() 844internal static string ToCertificateDescription(IEnumerable<X509Certificate2> certificates) 857internal static string GetDescription(X509Certificate2 c) => 863internal static bool AreCertificatesEqual(X509Certificate2 cert1, X509Certificate2 cert2) 877internal static bool TryFindCertificateInStore(X509Store store, X509Certificate2 certificate, [NotNullWhen(true)] out X509Certificate2? foundCertificate) 888var certificatesToDispose = new List<X509Certificate2>(); 889foreach (var candidate in certificatesWithSubjectName.OfType<X509Certificate2>())
src\Shared\CertificateGeneration\MacOSCertificateManager.cs (28)
15/// Normally, we avoid the use of <see cref="X509Certificate2.Thumbprint"/> because it's a SHA-1 hash and, therefore, 85protected override TrustLevel TrustCertificateCore(X509Certificate2 publicCertificate) 129internal override CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate) 136internal override void CorrectCertificateState(X509Certificate2 candidate) 151public override TrustLevel GetTrustLevel(X509Certificate2 certificate) 177protected override void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate) 198private static void RemoveAdminTrustRule(X509Certificate2 certificate) 237private static void RemoveCertificateFromKeychain(string keychain, X509Certificate2 certificate) 274private static bool IsCertOnKeychain(string keychain, X509Certificate2 certificate) 305protected override bool IsExportable(X509Certificate2 c) => true; 307protected override X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation) 336private static void SaveCertificateToUserKeychain(X509Certificate2 certificate) 373private static string GetCertificateFilePath(X509Certificate2 certificate) => 376protected override IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation) 381protected override void PopulateCertificatesFromStore(X509Store store, List<X509Certificate2> certificates, bool requireExportable) 387var certsFromStore = new List<X509Certificate2>(); 418private sealed class ThumbprintComparer : IEqualityComparer<X509Certificate2> 420public static readonly IEqualityComparer<X509Certificate2> Instance = new ThumbprintComparer(); 423bool IEqualityComparer<X509Certificate2>.Equals(X509Certificate2 x, X509Certificate2 y) => 427int IEqualityComparer<X509Certificate2>.GetHashCode([DisallowNull] X509Certificate2 obj) => 431private static ICollection<X509Certificate2> GetCertsFromDisk() 433var certsFromDisk = new List<X509Certificate2>(); 445var certificate = new X509Certificate2(file); 459protected override void RemoveCertificateFromUserStoreCore(X509Certificate2 certificate)
src\Shared\CertificateGeneration\UnixCertificateManager.cs (14)
51public override TrustLevel GetTrustLevel(X509Certificate2 certificate) 97var candidate = X509CertificateLoader.LoadCertificateFromFile(certPath); 152protected override X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation) 169internal override CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate) 176internal override void CorrectCertificateState(X509Certificate2 candidate) 182protected override bool IsExportable(X509Certificate2 c) => true; 184protected override TrustLevel TrustCertificateCore(X509Certificate2 certificate) 200using var publicCertificate = X509CertificateLoader.LoadCertificate(certificate.Export(X509ContentType.Cert)); 231using var existingCert = X509CertificateLoader.LoadCertificateFromFile(certPath); 359protected override void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate) 366if (TryFindCertificateInStore(store, certificate, out var matching)) 451protected override IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation) 548private static string GetCertificateNickname(X509Certificate2 certificate)
src\Shared\CertificateGeneration\WindowsCertificateManager.cs (11)
30protected override bool IsExportable(X509Certificate2 c) 44internal override CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate) 49internal override void CorrectCertificateState(X509Certificate2 candidate) 54protected override X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation) 74protected override TrustLevel TrustCertificateCore(X509Certificate2 certificate) 89using var publicCertificate = X509CertificateLoader.LoadCertificate(certificate.Export(X509ContentType.Cert)); 101protected override void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate) 108if (TryFindCertificateInStore(store, certificate, out var matching)) 120public override TrustLevel GetTrustLevel(X509Certificate2 certificate) 127protected override IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation)
Templates.Blazor.WebAssembly.Auth.Tests (102)
src\Shared\CertificateGeneration\CertificateManager.cs (49)
69public static bool IsHttpsDevelopmentCertificate(X509Certificate2 certificate) 81public IList<X509Certificate2> ListCertificates( 88var certificates = new List<X509Certificate2>(); 94IEnumerable<X509Certificate2> matchingCertificates = certificates; 133return (IList<X509Certificate2>)matchingCertificates; 146bool HasOid(X509Certificate2 certificate, string oid) => 150static byte GetCertificateVersion(X509Certificate2 c) 169bool IsValidCertificate(X509Certificate2 certificate, DateTimeOffset currentDate, bool requireExportable) => 176protected virtual void PopulateCertificatesFromStore(X509Store store, List<X509Certificate2> certificates, bool requireExportable) 178certificates.AddRange(store.Certificates.OfType<X509Certificate2>()); 181public IList<X509Certificate2> GetHttpsCertificates() => 211X509Certificate2? certificate = null; 221foreach (var candidate in currentUserCertificates) 416X509Certificate2 certificate; 475foreach (var certificate in filteredCertificates) 483public abstract TrustLevel GetTrustLevel(X509Certificate2 certificate); 485protected abstract X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation); 488protected abstract TrustLevel TrustCertificateCore(X509Certificate2 certificate); 490protected abstract bool IsExportable(X509Certificate2 c); 492protected abstract void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate); 494protected abstract IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation); 502internal void ExportCertificate(X509Certificate2 certificate, string path, bool includePrivateKey, string? password, CertificateKeyExportFormat format) 646internal X509Certificate2 CreateAspNetCoreHttpsDevelopmentCertificate(DateTimeOffset notBefore, DateTimeOffset notAfter) 692var certificate = CreateSelfSignedCertificate(subject, extensions, notBefore, notAfter); 696internal X509Certificate2 SaveCertificate(X509Certificate2 certificate) 712internal TrustLevel TrustCertificate(X509Certificate2 certificate) 739foreach (var certificate in certificates) 747internal void RemoveCertificate(X509Certificate2 certificate, RemoveLocations locations) 768internal abstract CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate); 770internal abstract void CorrectCertificateState(X509Certificate2 candidate); 772internal static X509Certificate2 CreateSelfSignedCertificate( 786var result = request.CreateSelfSigned(notBefore, notAfter); 801internal static void DisposeCertificates(IEnumerable<X509Certificate2> disposables) 803foreach (var disposable in disposables) 815protected void RemoveCertificateFromUserStore(X509Certificate2 certificate) 833protected virtual void RemoveCertificateFromUserStoreCore(X509Certificate2 certificate) 837var matching = store.Certificates 838.OfType<X509Certificate2>() 844internal static string ToCertificateDescription(IEnumerable<X509Certificate2> certificates) 857internal static string GetDescription(X509Certificate2 c) => 863internal static bool AreCertificatesEqual(X509Certificate2 cert1, X509Certificate2 cert2) 877internal static bool TryFindCertificateInStore(X509Store store, X509Certificate2 certificate, [NotNullWhen(true)] out X509Certificate2? foundCertificate) 888var certificatesToDispose = new List<X509Certificate2>(); 889foreach (var candidate in certificatesWithSubjectName.OfType<X509Certificate2>())
src\Shared\CertificateGeneration\MacOSCertificateManager.cs (28)
15/// Normally, we avoid the use of <see cref="X509Certificate2.Thumbprint"/> because it's a SHA-1 hash and, therefore, 85protected override TrustLevel TrustCertificateCore(X509Certificate2 publicCertificate) 129internal override CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate) 136internal override void CorrectCertificateState(X509Certificate2 candidate) 151public override TrustLevel GetTrustLevel(X509Certificate2 certificate) 177protected override void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate) 198private static void RemoveAdminTrustRule(X509Certificate2 certificate) 237private static void RemoveCertificateFromKeychain(string keychain, X509Certificate2 certificate) 274private static bool IsCertOnKeychain(string keychain, X509Certificate2 certificate) 305protected override bool IsExportable(X509Certificate2 c) => true; 307protected override X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation) 336private static void SaveCertificateToUserKeychain(X509Certificate2 certificate) 373private static string GetCertificateFilePath(X509Certificate2 certificate) => 376protected override IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation) 381protected override void PopulateCertificatesFromStore(X509Store store, List<X509Certificate2> certificates, bool requireExportable) 387var certsFromStore = new List<X509Certificate2>(); 418private sealed class ThumbprintComparer : IEqualityComparer<X509Certificate2> 420public static readonly IEqualityComparer<X509Certificate2> Instance = new ThumbprintComparer(); 423bool IEqualityComparer<X509Certificate2>.Equals(X509Certificate2 x, X509Certificate2 y) => 427int IEqualityComparer<X509Certificate2>.GetHashCode([DisallowNull] X509Certificate2 obj) => 431private static ICollection<X509Certificate2> GetCertsFromDisk() 433var certsFromDisk = new List<X509Certificate2>(); 445var certificate = new X509Certificate2(file); 459protected override void RemoveCertificateFromUserStoreCore(X509Certificate2 certificate)
src\Shared\CertificateGeneration\UnixCertificateManager.cs (14)
51public override TrustLevel GetTrustLevel(X509Certificate2 certificate) 97var candidate = X509CertificateLoader.LoadCertificateFromFile(certPath); 152protected override X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation) 169internal override CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate) 176internal override void CorrectCertificateState(X509Certificate2 candidate) 182protected override bool IsExportable(X509Certificate2 c) => true; 184protected override TrustLevel TrustCertificateCore(X509Certificate2 certificate) 200using var publicCertificate = X509CertificateLoader.LoadCertificate(certificate.Export(X509ContentType.Cert)); 231using var existingCert = X509CertificateLoader.LoadCertificateFromFile(certPath); 359protected override void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate) 366if (TryFindCertificateInStore(store, certificate, out var matching)) 451protected override IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation) 548private static string GetCertificateNickname(X509Certificate2 certificate)
src\Shared\CertificateGeneration\WindowsCertificateManager.cs (11)
30protected override bool IsExportable(X509Certificate2 c) 44internal override CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate) 49internal override void CorrectCertificateState(X509Certificate2 candidate) 54protected override X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation) 74protected override TrustLevel TrustCertificateCore(X509Certificate2 certificate) 89using var publicCertificate = X509CertificateLoader.LoadCertificate(certificate.Export(X509ContentType.Cert)); 101protected override void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate) 108if (TryFindCertificateInStore(store, certificate, out var matching)) 120public override TrustLevel GetTrustLevel(X509Certificate2 certificate) 127protected override IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation)
Templates.Blazor.WebAssembly.Tests (102)
src\Shared\CertificateGeneration\CertificateManager.cs (49)
69public static bool IsHttpsDevelopmentCertificate(X509Certificate2 certificate) 81public IList<X509Certificate2> ListCertificates( 88var certificates = new List<X509Certificate2>(); 94IEnumerable<X509Certificate2> matchingCertificates = certificates; 133return (IList<X509Certificate2>)matchingCertificates; 146bool HasOid(X509Certificate2 certificate, string oid) => 150static byte GetCertificateVersion(X509Certificate2 c) 169bool IsValidCertificate(X509Certificate2 certificate, DateTimeOffset currentDate, bool requireExportable) => 176protected virtual void PopulateCertificatesFromStore(X509Store store, List<X509Certificate2> certificates, bool requireExportable) 178certificates.AddRange(store.Certificates.OfType<X509Certificate2>()); 181public IList<X509Certificate2> GetHttpsCertificates() => 211X509Certificate2? certificate = null; 221foreach (var candidate in currentUserCertificates) 416X509Certificate2 certificate; 475foreach (var certificate in filteredCertificates) 483public abstract TrustLevel GetTrustLevel(X509Certificate2 certificate); 485protected abstract X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation); 488protected abstract TrustLevel TrustCertificateCore(X509Certificate2 certificate); 490protected abstract bool IsExportable(X509Certificate2 c); 492protected abstract void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate); 494protected abstract IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation); 502internal void ExportCertificate(X509Certificate2 certificate, string path, bool includePrivateKey, string? password, CertificateKeyExportFormat format) 646internal X509Certificate2 CreateAspNetCoreHttpsDevelopmentCertificate(DateTimeOffset notBefore, DateTimeOffset notAfter) 692var certificate = CreateSelfSignedCertificate(subject, extensions, notBefore, notAfter); 696internal X509Certificate2 SaveCertificate(X509Certificate2 certificate) 712internal TrustLevel TrustCertificate(X509Certificate2 certificate) 739foreach (var certificate in certificates) 747internal void RemoveCertificate(X509Certificate2 certificate, RemoveLocations locations) 768internal abstract CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate); 770internal abstract void CorrectCertificateState(X509Certificate2 candidate); 772internal static X509Certificate2 CreateSelfSignedCertificate( 786var result = request.CreateSelfSigned(notBefore, notAfter); 801internal static void DisposeCertificates(IEnumerable<X509Certificate2> disposables) 803foreach (var disposable in disposables) 815protected void RemoveCertificateFromUserStore(X509Certificate2 certificate) 833protected virtual void RemoveCertificateFromUserStoreCore(X509Certificate2 certificate) 837var matching = store.Certificates 838.OfType<X509Certificate2>() 844internal static string ToCertificateDescription(IEnumerable<X509Certificate2> certificates) 857internal static string GetDescription(X509Certificate2 c) => 863internal static bool AreCertificatesEqual(X509Certificate2 cert1, X509Certificate2 cert2) 877internal static bool TryFindCertificateInStore(X509Store store, X509Certificate2 certificate, [NotNullWhen(true)] out X509Certificate2? foundCertificate) 888var certificatesToDispose = new List<X509Certificate2>(); 889foreach (var candidate in certificatesWithSubjectName.OfType<X509Certificate2>())
src\Shared\CertificateGeneration\MacOSCertificateManager.cs (28)
15/// Normally, we avoid the use of <see cref="X509Certificate2.Thumbprint"/> because it's a SHA-1 hash and, therefore, 85protected override TrustLevel TrustCertificateCore(X509Certificate2 publicCertificate) 129internal override CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate) 136internal override void CorrectCertificateState(X509Certificate2 candidate) 151public override TrustLevel GetTrustLevel(X509Certificate2 certificate) 177protected override void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate) 198private static void RemoveAdminTrustRule(X509Certificate2 certificate) 237private static void RemoveCertificateFromKeychain(string keychain, X509Certificate2 certificate) 274private static bool IsCertOnKeychain(string keychain, X509Certificate2 certificate) 305protected override bool IsExportable(X509Certificate2 c) => true; 307protected override X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation) 336private static void SaveCertificateToUserKeychain(X509Certificate2 certificate) 373private static string GetCertificateFilePath(X509Certificate2 certificate) => 376protected override IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation) 381protected override void PopulateCertificatesFromStore(X509Store store, List<X509Certificate2> certificates, bool requireExportable) 387var certsFromStore = new List<X509Certificate2>(); 418private sealed class ThumbprintComparer : IEqualityComparer<X509Certificate2> 420public static readonly IEqualityComparer<X509Certificate2> Instance = new ThumbprintComparer(); 423bool IEqualityComparer<X509Certificate2>.Equals(X509Certificate2 x, X509Certificate2 y) => 427int IEqualityComparer<X509Certificate2>.GetHashCode([DisallowNull] X509Certificate2 obj) => 431private static ICollection<X509Certificate2> GetCertsFromDisk() 433var certsFromDisk = new List<X509Certificate2>(); 445var certificate = new X509Certificate2(file); 459protected override void RemoveCertificateFromUserStoreCore(X509Certificate2 certificate)
src\Shared\CertificateGeneration\UnixCertificateManager.cs (14)
51public override TrustLevel GetTrustLevel(X509Certificate2 certificate) 97var candidate = X509CertificateLoader.LoadCertificateFromFile(certPath); 152protected override X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation) 169internal override CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate) 176internal override void CorrectCertificateState(X509Certificate2 candidate) 182protected override bool IsExportable(X509Certificate2 c) => true; 184protected override TrustLevel TrustCertificateCore(X509Certificate2 certificate) 200using var publicCertificate = X509CertificateLoader.LoadCertificate(certificate.Export(X509ContentType.Cert)); 231using var existingCert = X509CertificateLoader.LoadCertificateFromFile(certPath); 359protected override void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate) 366if (TryFindCertificateInStore(store, certificate, out var matching)) 451protected override IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation) 548private static string GetCertificateNickname(X509Certificate2 certificate)
src\Shared\CertificateGeneration\WindowsCertificateManager.cs (11)
30protected override bool IsExportable(X509Certificate2 c) 44internal override CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate) 49internal override void CorrectCertificateState(X509Certificate2 candidate) 54protected override X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation) 74protected override TrustLevel TrustCertificateCore(X509Certificate2 certificate) 89using var publicCertificate = X509CertificateLoader.LoadCertificate(certificate.Export(X509ContentType.Cert)); 101protected override void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate) 108if (TryFindCertificateInStore(store, certificate, out var matching)) 120public override TrustLevel GetTrustLevel(X509Certificate2 certificate) 127protected override IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation)
Templates.Mvc.Tests (102)
src\Shared\CertificateGeneration\CertificateManager.cs (49)
69public static bool IsHttpsDevelopmentCertificate(X509Certificate2 certificate) 81public IList<X509Certificate2> ListCertificates( 88var certificates = new List<X509Certificate2>(); 94IEnumerable<X509Certificate2> matchingCertificates = certificates; 133return (IList<X509Certificate2>)matchingCertificates; 146bool HasOid(X509Certificate2 certificate, string oid) => 150static byte GetCertificateVersion(X509Certificate2 c) 169bool IsValidCertificate(X509Certificate2 certificate, DateTimeOffset currentDate, bool requireExportable) => 176protected virtual void PopulateCertificatesFromStore(X509Store store, List<X509Certificate2> certificates, bool requireExportable) 178certificates.AddRange(store.Certificates.OfType<X509Certificate2>()); 181public IList<X509Certificate2> GetHttpsCertificates() => 211X509Certificate2? certificate = null; 221foreach (var candidate in currentUserCertificates) 416X509Certificate2 certificate; 475foreach (var certificate in filteredCertificates) 483public abstract TrustLevel GetTrustLevel(X509Certificate2 certificate); 485protected abstract X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation); 488protected abstract TrustLevel TrustCertificateCore(X509Certificate2 certificate); 490protected abstract bool IsExportable(X509Certificate2 c); 492protected abstract void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate); 494protected abstract IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation); 502internal void ExportCertificate(X509Certificate2 certificate, string path, bool includePrivateKey, string? password, CertificateKeyExportFormat format) 646internal X509Certificate2 CreateAspNetCoreHttpsDevelopmentCertificate(DateTimeOffset notBefore, DateTimeOffset notAfter) 692var certificate = CreateSelfSignedCertificate(subject, extensions, notBefore, notAfter); 696internal X509Certificate2 SaveCertificate(X509Certificate2 certificate) 712internal TrustLevel TrustCertificate(X509Certificate2 certificate) 739foreach (var certificate in certificates) 747internal void RemoveCertificate(X509Certificate2 certificate, RemoveLocations locations) 768internal abstract CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate); 770internal abstract void CorrectCertificateState(X509Certificate2 candidate); 772internal static X509Certificate2 CreateSelfSignedCertificate( 786var result = request.CreateSelfSigned(notBefore, notAfter); 801internal static void DisposeCertificates(IEnumerable<X509Certificate2> disposables) 803foreach (var disposable in disposables) 815protected void RemoveCertificateFromUserStore(X509Certificate2 certificate) 833protected virtual void RemoveCertificateFromUserStoreCore(X509Certificate2 certificate) 837var matching = store.Certificates 838.OfType<X509Certificate2>() 844internal static string ToCertificateDescription(IEnumerable<X509Certificate2> certificates) 857internal static string GetDescription(X509Certificate2 c) => 863internal static bool AreCertificatesEqual(X509Certificate2 cert1, X509Certificate2 cert2) 877internal static bool TryFindCertificateInStore(X509Store store, X509Certificate2 certificate, [NotNullWhen(true)] out X509Certificate2? foundCertificate) 888var certificatesToDispose = new List<X509Certificate2>(); 889foreach (var candidate in certificatesWithSubjectName.OfType<X509Certificate2>())
src\Shared\CertificateGeneration\MacOSCertificateManager.cs (28)
15/// Normally, we avoid the use of <see cref="X509Certificate2.Thumbprint"/> because it's a SHA-1 hash and, therefore, 85protected override TrustLevel TrustCertificateCore(X509Certificate2 publicCertificate) 129internal override CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate) 136internal override void CorrectCertificateState(X509Certificate2 candidate) 151public override TrustLevel GetTrustLevel(X509Certificate2 certificate) 177protected override void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate) 198private static void RemoveAdminTrustRule(X509Certificate2 certificate) 237private static void RemoveCertificateFromKeychain(string keychain, X509Certificate2 certificate) 274private static bool IsCertOnKeychain(string keychain, X509Certificate2 certificate) 305protected override bool IsExportable(X509Certificate2 c) => true; 307protected override X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation) 336private static void SaveCertificateToUserKeychain(X509Certificate2 certificate) 373private static string GetCertificateFilePath(X509Certificate2 certificate) => 376protected override IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation) 381protected override void PopulateCertificatesFromStore(X509Store store, List<X509Certificate2> certificates, bool requireExportable) 387var certsFromStore = new List<X509Certificate2>(); 418private sealed class ThumbprintComparer : IEqualityComparer<X509Certificate2> 420public static readonly IEqualityComparer<X509Certificate2> Instance = new ThumbprintComparer(); 423bool IEqualityComparer<X509Certificate2>.Equals(X509Certificate2 x, X509Certificate2 y) => 427int IEqualityComparer<X509Certificate2>.GetHashCode([DisallowNull] X509Certificate2 obj) => 431private static ICollection<X509Certificate2> GetCertsFromDisk() 433var certsFromDisk = new List<X509Certificate2>(); 445var certificate = new X509Certificate2(file); 459protected override void RemoveCertificateFromUserStoreCore(X509Certificate2 certificate)
src\Shared\CertificateGeneration\UnixCertificateManager.cs (14)
51public override TrustLevel GetTrustLevel(X509Certificate2 certificate) 97var candidate = X509CertificateLoader.LoadCertificateFromFile(certPath); 152protected override X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation) 169internal override CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate) 176internal override void CorrectCertificateState(X509Certificate2 candidate) 182protected override bool IsExportable(X509Certificate2 c) => true; 184protected override TrustLevel TrustCertificateCore(X509Certificate2 certificate) 200using var publicCertificate = X509CertificateLoader.LoadCertificate(certificate.Export(X509ContentType.Cert)); 231using var existingCert = X509CertificateLoader.LoadCertificateFromFile(certPath); 359protected override void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate) 366if (TryFindCertificateInStore(store, certificate, out var matching)) 451protected override IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation) 548private static string GetCertificateNickname(X509Certificate2 certificate)
src\Shared\CertificateGeneration\WindowsCertificateManager.cs (11)
30protected override bool IsExportable(X509Certificate2 c) 44internal override CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate) 49internal override void CorrectCertificateState(X509Certificate2 candidate) 54protected override X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation) 74protected override TrustLevel TrustCertificateCore(X509Certificate2 certificate) 89using var publicCertificate = X509CertificateLoader.LoadCertificate(certificate.Export(X509ContentType.Cert)); 101protected override void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate) 108if (TryFindCertificateInStore(store, certificate, out var matching)) 120public override TrustLevel GetTrustLevel(X509Certificate2 certificate) 127protected override IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation)
Templates.Tests (102)
src\Shared\CertificateGeneration\CertificateManager.cs (49)
69public static bool IsHttpsDevelopmentCertificate(X509Certificate2 certificate) 81public IList<X509Certificate2> ListCertificates( 88var certificates = new List<X509Certificate2>(); 94IEnumerable<X509Certificate2> matchingCertificates = certificates; 133return (IList<X509Certificate2>)matchingCertificates; 146bool HasOid(X509Certificate2 certificate, string oid) => 150static byte GetCertificateVersion(X509Certificate2 c) 169bool IsValidCertificate(X509Certificate2 certificate, DateTimeOffset currentDate, bool requireExportable) => 176protected virtual void PopulateCertificatesFromStore(X509Store store, List<X509Certificate2> certificates, bool requireExportable) 178certificates.AddRange(store.Certificates.OfType<X509Certificate2>()); 181public IList<X509Certificate2> GetHttpsCertificates() => 211X509Certificate2? certificate = null; 221foreach (var candidate in currentUserCertificates) 416X509Certificate2 certificate; 475foreach (var certificate in filteredCertificates) 483public abstract TrustLevel GetTrustLevel(X509Certificate2 certificate); 485protected abstract X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation); 488protected abstract TrustLevel TrustCertificateCore(X509Certificate2 certificate); 490protected abstract bool IsExportable(X509Certificate2 c); 492protected abstract void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate); 494protected abstract IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation); 502internal void ExportCertificate(X509Certificate2 certificate, string path, bool includePrivateKey, string? password, CertificateKeyExportFormat format) 646internal X509Certificate2 CreateAspNetCoreHttpsDevelopmentCertificate(DateTimeOffset notBefore, DateTimeOffset notAfter) 692var certificate = CreateSelfSignedCertificate(subject, extensions, notBefore, notAfter); 696internal X509Certificate2 SaveCertificate(X509Certificate2 certificate) 712internal TrustLevel TrustCertificate(X509Certificate2 certificate) 739foreach (var certificate in certificates) 747internal void RemoveCertificate(X509Certificate2 certificate, RemoveLocations locations) 768internal abstract CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate); 770internal abstract void CorrectCertificateState(X509Certificate2 candidate); 772internal static X509Certificate2 CreateSelfSignedCertificate( 786var result = request.CreateSelfSigned(notBefore, notAfter); 801internal static void DisposeCertificates(IEnumerable<X509Certificate2> disposables) 803foreach (var disposable in disposables) 815protected void RemoveCertificateFromUserStore(X509Certificate2 certificate) 833protected virtual void RemoveCertificateFromUserStoreCore(X509Certificate2 certificate) 837var matching = store.Certificates 838.OfType<X509Certificate2>() 844internal static string ToCertificateDescription(IEnumerable<X509Certificate2> certificates) 857internal static string GetDescription(X509Certificate2 c) => 863internal static bool AreCertificatesEqual(X509Certificate2 cert1, X509Certificate2 cert2) 877internal static bool TryFindCertificateInStore(X509Store store, X509Certificate2 certificate, [NotNullWhen(true)] out X509Certificate2? foundCertificate) 888var certificatesToDispose = new List<X509Certificate2>(); 889foreach (var candidate in certificatesWithSubjectName.OfType<X509Certificate2>())
src\Shared\CertificateGeneration\MacOSCertificateManager.cs (28)
15/// Normally, we avoid the use of <see cref="X509Certificate2.Thumbprint"/> because it's a SHA-1 hash and, therefore, 85protected override TrustLevel TrustCertificateCore(X509Certificate2 publicCertificate) 129internal override CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate) 136internal override void CorrectCertificateState(X509Certificate2 candidate) 151public override TrustLevel GetTrustLevel(X509Certificate2 certificate) 177protected override void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate) 198private static void RemoveAdminTrustRule(X509Certificate2 certificate) 237private static void RemoveCertificateFromKeychain(string keychain, X509Certificate2 certificate) 274private static bool IsCertOnKeychain(string keychain, X509Certificate2 certificate) 305protected override bool IsExportable(X509Certificate2 c) => true; 307protected override X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation) 336private static void SaveCertificateToUserKeychain(X509Certificate2 certificate) 373private static string GetCertificateFilePath(X509Certificate2 certificate) => 376protected override IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation) 381protected override void PopulateCertificatesFromStore(X509Store store, List<X509Certificate2> certificates, bool requireExportable) 387var certsFromStore = new List<X509Certificate2>(); 418private sealed class ThumbprintComparer : IEqualityComparer<X509Certificate2> 420public static readonly IEqualityComparer<X509Certificate2> Instance = new ThumbprintComparer(); 423bool IEqualityComparer<X509Certificate2>.Equals(X509Certificate2 x, X509Certificate2 y) => 427int IEqualityComparer<X509Certificate2>.GetHashCode([DisallowNull] X509Certificate2 obj) => 431private static ICollection<X509Certificate2> GetCertsFromDisk() 433var certsFromDisk = new List<X509Certificate2>(); 445var certificate = new X509Certificate2(file); 459protected override void RemoveCertificateFromUserStoreCore(X509Certificate2 certificate)
src\Shared\CertificateGeneration\UnixCertificateManager.cs (14)
51public override TrustLevel GetTrustLevel(X509Certificate2 certificate) 97var candidate = X509CertificateLoader.LoadCertificateFromFile(certPath); 152protected override X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation) 169internal override CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate) 176internal override void CorrectCertificateState(X509Certificate2 candidate) 182protected override bool IsExportable(X509Certificate2 c) => true; 184protected override TrustLevel TrustCertificateCore(X509Certificate2 certificate) 200using var publicCertificate = X509CertificateLoader.LoadCertificate(certificate.Export(X509ContentType.Cert)); 231using var existingCert = X509CertificateLoader.LoadCertificateFromFile(certPath); 359protected override void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate) 366if (TryFindCertificateInStore(store, certificate, out var matching)) 451protected override IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation) 548private static string GetCertificateNickname(X509Certificate2 certificate)
src\Shared\CertificateGeneration\WindowsCertificateManager.cs (11)
30protected override bool IsExportable(X509Certificate2 c) 44internal override CheckCertificateStateResult CheckCertificateState(X509Certificate2 candidate) 49internal override void CorrectCertificateState(X509Certificate2 candidate) 54protected override X509Certificate2 SaveCertificateCore(X509Certificate2 certificate, StoreName storeName, StoreLocation storeLocation) 74protected override TrustLevel TrustCertificateCore(X509Certificate2 certificate) 89using var publicCertificate = X509CertificateLoader.LoadCertificate(certificate.Export(X509ContentType.Cert)); 101protected override void RemoveCertificateFromTrustedRoots(X509Certificate2 certificate) 108if (TryFindCertificateInStore(store, certificate, out var matching)) 120public override TrustLevel GetTrustLevel(X509Certificate2 certificate) 127protected override IList<X509Certificate2> GetCertificatesToRemove(StoreName storeName, StoreLocation storeLocation)
WebTransportInteractiveSampleApp (4)
Program.cs (4)
17var certificate = GenerateManualCertificate(); 162static X509Certificate2 GenerateManualCertificate() 164X509Certificate2 cert; 194using var crt = req.CreateSelfSigned(now, now.AddDays(14)); // 14 days is the max duration of a certificate for this
WebTransportSampleApp (3)
Program.cs (3)
47static X509Certificate2 GenerateManualCertificate() 49X509Certificate2 cert = null; 80using var crt = req.CreateSelfSigned(now, now.AddDays(14)); // 14 days is the max duration of a certificate for this
WsFedSample (2)
Program.cs (2)
23var serverCertificate = LoadCertificate(); 43private static X509Certificate2 LoadCertificate()