Respect the CheckCertificateRevocation property.

JoeShook · jstedfast · commit f2404c005f14 · 2024-12-12T09:51:14.000-05:00
diff --git a/MimeKit/Cryptography/BouncyCastleSecureMimeContext.cs b/MimeKit/Cryptography/BouncyCastleSecureMimeContext.cs
@@ -694,11 +694,12 @@ protected IList<X509Certificate> BuildCertificateChain (X509Certificate certific
 
 			var parameters = new PkixBuilderParameters (GetTrustedAnchors (), selector) {
 				ValidityModel = PkixParameters.PkixValidityModel,
-				IsRevocationEnabled = false,
+				IsRevocationEnabled = CheckCertificateRevocation,
 				Date = DateTime.UtcNow
 			};
 			parameters.AddStoreCert (intermediates);
 			parameters.AddStoreCert (GetIntermediateCertificates ());
+			parameters.AddStoreCrl (GetCertificateRevocationLists ());
 
 			var builder = new PkixCertPathBuilder ();
 			var result = builder.Build (parameters);
@@ -725,7 +726,7 @@ PkixCertPath BuildCertPath (ISet<TrustAnchor> anchors, IStore<X509Certificate> c
 
 			var parameters = new PkixBuilderParameters (anchors, selector) {
 				ValidityModel = PkixParameters.PkixValidityModel,
-				IsRevocationEnabled = false
+				IsRevocationEnabled = CheckCertificateRevocation
 			};
 			parameters.AddStoreCert (intermediates);
 			parameters.AddStoreCrl (crls);
diff --git a/UnitTests/Cryptography/ApplicationPkcs7MimeTests.cs b/UnitTests/Cryptography/ApplicationPkcs7MimeTests.cs
@@ -927,7 +927,7 @@ public async Task TestSignAndEncryptDnsNamesAsync ()
 	[TestFixture]
 	public class ApplicationPkcs7MimeTests : ApplicationPkcs7MimeTestsBase
 	{
-		readonly TemporarySecureMimeContext ctx = new TemporarySecureMimeContext (new SecureRandom (new CryptoApiRandomGenerator ())) { CheckCertificateRevocation = true };
+		readonly TemporarySecureMimeContext ctx = new TemporarySecureMimeContext (new SecureRandom (new CryptoApiRandomGenerator ())) { CheckCertificateRevocation = false };
 
 		public ApplicationPkcs7MimeTests ()
 		{
@@ -947,7 +947,7 @@ class MySecureMimeContext : DefaultSecureMimeContext
 		{
 			public MySecureMimeContext () : base ("pkcs7.db", "no.secret")
 			{
-				CheckCertificateRevocation = true;
+				CheckCertificateRevocation = false;
 			}
 		}
 
diff --git a/UnitTests/Cryptography/SecureMimeTests.cs b/UnitTests/Cryptography/SecureMimeTests.cs
@@ -2734,7 +2734,7 @@ public async Task TestSecureMimeVerifyMixedLineEndingsAsync ()
 	[TestFixture]
 	public class SecureMimeTests : SecureMimeTestsBase
 	{
-		readonly TemporarySecureMimeContext ctx = new TemporarySecureMimeContext (new SecureRandom (new CryptoApiRandomGenerator ())) { CheckCertificateRevocation = true };
+		readonly TemporarySecureMimeContext ctx = new TemporarySecureMimeContext (new SecureRandom (new CryptoApiRandomGenerator ())) { CheckCertificateRevocation = false };
 
 		protected override SecureMimeContext CreateContext ()
 		{
@@ -2749,7 +2749,7 @@ class MySecureMimeContext : DefaultSecureMimeContext
 		{
 			public MySecureMimeContext () : base ("smime.db", "no.secret")
 			{
-				CheckCertificateRevocation = true;
+				CheckCertificateRevocation = false;
 			}
 		}
 

Original file line number	Diff line number	Diff line change
`@@ -927,7 +927,7 @@ public async Task TestSignAndEncryptDnsNamesAsync ()`
`927`	`927`	`[TestFixture]`
`928`	`928`	`public class ApplicationPkcs7MimeTests : ApplicationPkcs7MimeTestsBase`
`929`	`929`	`{`
`930`		`- readonly TemporarySecureMimeContext ctx = new TemporarySecureMimeContext (new SecureRandom (new CryptoApiRandomGenerator ())) { CheckCertificateRevocation = true };`
	`930`	`+ readonly TemporarySecureMimeContext ctx = new TemporarySecureMimeContext (new SecureRandom (new CryptoApiRandomGenerator ())) { CheckCertificateRevocation = false };`
`931`	`931`
`932`	`932`	`public ApplicationPkcs7MimeTests ()`
`933`	`933`	`{`
`@@ -947,7 +947,7 @@ class MySecureMimeContext : DefaultSecureMimeContext`
`947`	`947`	`{`
`948`	`948`	`public MySecureMimeContext () : base ("pkcs7.db", "no.secret")`
`949`	`949`	`{`
`950`		`- CheckCertificateRevocation = true;`
	`950`	`+ CheckCertificateRevocation = false;`
`951`	`951`	`}`
`952`	`952`	`}`
`953`	`953`
Original file line number	Diff line number	Diff line change
`@@ -2734,7 +2734,7 @@ public async Task TestSecureMimeVerifyMixedLineEndingsAsync ()`
`2734`	`2734`	`[TestFixture]`
`2735`	`2735`	`public class SecureMimeTests : SecureMimeTestsBase`
`2736`	`2736`	`{`
`2737`		`- readonly TemporarySecureMimeContext ctx = new TemporarySecureMimeContext (new SecureRandom (new CryptoApiRandomGenerator ())) { CheckCertificateRevocation = true };`
	`2737`	`+ readonly TemporarySecureMimeContext ctx = new TemporarySecureMimeContext (new SecureRandom (new CryptoApiRandomGenerator ())) { CheckCertificateRevocation = false };`
`2738`	`2738`
`2739`	`2739`	`protected override SecureMimeContext CreateContext ()`
`2740`	`2740`	`{`
`@@ -2749,7 +2749,7 @@ class MySecureMimeContext : DefaultSecureMimeContext`
`2749`	`2749`	`{`
`2750`	`2750`	`public MySecureMimeContext () : base ("smime.db", "no.secret")`
`2751`	`2751`	`{`
`2752`		`- CheckCertificateRevocation = true;`
	`2752`	`+ CheckCertificateRevocation = false;`
`2753`	`2753`	`}`
`2754`	`2754`	`}`
`2755`	`2755`