Obsolete X509Certificate{2} constructors and X509Certificate2Collection.Import #104165

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Merged

vcsjones merged 11 commits into dotnet:main from vcsjones:x509-obs-ctor

Jul 5, 2024

Member

vcsjones commented Jun 28, 2024

This obsoletes X.509 loading APIs that

Take raw bytes
Take a path to a file

This also changes product code to use the new X509CertificateLoader. Unit tests currently suppress the new obsoletion diagnostic. There are literally 1000s of unit tests changes that need to be updated to use the new loader. This will be done in a subsequent pull request, project-by-project, to make review easier, and to keep this pull request focused on shipping code.

Contributes to #91763.

vcsjones added 6 commits

June 27, 2024 14:04

WIP

77a9baf


          Get back to a building state

150e9e9


          Obsolete on X509Certificate

6e452f3


          Finish obsoletion in source

fc9a4ee


          Fix SYSLIB in list

3333d7f


          Tweak obsolete message

2fb4fa8

vcsjones requested a review from jeffhandley as a code owner

June 28, 2024 16:09

vcsjones marked this pull request as draft

June 28, 2024 16:09

ghost added area-System.Security new-api-needs-documentation labels

ghost commented Jun 28, 2024

Note regarding the new-api-needs-documentation label:

This serves as a reminder for when your PR is modifying a ref *.cs file and adding/modifying public APIs, please make sure the API implementation in the src *.cs file is documented with triple slash comments, so the PR reviewers can sign off that change.

1 similar comment

This comment was marked as duplicate.

Sign in to view

dotnet-policy-service bot assigned vcsjones

vcsjones added this to the 9.0.0 milestone

bartonjs reviewed

View reviewed changes

src/libraries/System.Security.Cryptography.Pkcs/src/System.Security.Cryptography.Pkcs.csproj Outdated Show resolved Hide resolved

bartonjs reviewed

View reviewed changes

src/libraries/System.Security.Cryptography.Pkcs/src/System.Security.Cryptography.Pkcs.csproj Show resolved Hide resolved

bartonjs reviewed

View reviewed changes

src/libraries/Common/src/System/Obsoletions.cs Show resolved Hide resolved

bartonjs reviewed

View reviewed changes

src/libraries/System.Security.Cryptography/ref/System.Security.Cryptography.cs Outdated Show resolved Hide resolved

bartonjs reviewed

View reviewed changes

...raphy/src/System/Security/Cryptography/X509Certificates/OpenSslCertificateAssetDownloader.cs Show resolved Hide resolved

vcsjones added 4 commits

June 28, 2024 15:06


          Fix whitespace

8f9def2


          Remove NoWarn that is not needed

41394c1


          Fix KeyInfoX509Data tests

b096de8


          Fix Quic

c0986c5

build-analysis bot mentioned this pull request

[6.0, 7.0, 8.0] Connection reset assert failure in System.Net.Sockets.Tests.SendReceive_SyncForceNonBlocking.TcpReceiveSendGetsCanceledByDispose #92423

Closed

vcsjones marked this pull request as ready for review

June 29, 2024 18:14

vcsjones commented

View reviewed changes

...ies/System.Security.Cryptography.Xml/src/System/Security/Cryptography/Xml/KeyInfoX509Data.cs Show resolved Hide resolved

vcsjones commented

View reviewed changes

src/libraries/System.Security.Cryptography/ref/System.Security.Cryptography.cs Outdated Show resolved Hide resolved


          Revert IntPtr -> nint

d0f0d99

vcsjones requested a review from bartonjs

July 2, 2024 16:49

bartonjs approved these changes

View reviewed changes

vcsjones added the breaking-change label

vcsjones merged commit 02bd1da into dotnet:main

vcsjones deleted the x509-obs-ctor branch

July 5, 2024 17:37

Contributor

dotnet-policy-service bot commented Jul 5, 2024 •

edited by vcsjones

Loading

Added needs-breaking-change-doc-created label because this PR has the breaking-change label.

When you commit this breaking change:

Create and link to this PR and the issue a matching issue in the dotnet/docs repo using the breaking change documentation template, then remove this needs-breaking-change-doc-created label.
Ask a committer to mail the .NET Breaking Change Notification DL.

Tagging @dotnet/compat for awareness of the breaking change.

dotnet-policy-service bot added the needs-breaking-change-doc-created label

Member Author

vcsjones commented Jul 5, 2024

Doc: dotnet/docs#41662

vcsjones mentioned this pull request

Update System.Net.* unit tests to react to SYSLIB0057 obsoletion #104487

Merged

rchauhan18 mentioned this pull request

Replace X509Certificate2 ctor with X509CertificateLoader.LoadCertificate dotnet/wpf#9368

Merged

This was referenced Jul 8, 2024

VMR Stage 2 Builds Failing in Arcade with Obsolete Reference dotnet/source-build#4494

Closed

VMR Stage 2 Builds Failing in Nuget Client with Obsolete Reference dotnet/source-build#4495

Closed

Use of Obsolete X509Certificate2 ctor NuGet/Home#13612

Closed

ViktorHofer mentioned this pull request

Don't use obsolete X509Certificate2 ctor on .NET 9.0 dotnet/arcade#14935

Closed

github-actions bot locked and limited conversation to collaborators

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Labels

area-System.Security breaking-change needs-breaking-change-doc-created new-api-needs-documentation