Mailing Lists: Apple Mailing Lists
Image of Mac OS face in stamp
 
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

SFCertificateView sometimes shows a cert is expired when it isn't

Sometimes SFCertificateView shows that a certificate is expired when the certificate is still valid.

See http://www.thoughtstuff.com/rme/expired.png for an example of this.

Much to my dismay, this happens only occasionally, and I haven't been able to find a way to duplicate the failure on demand. Would anyone have any suggestions on how to track this down?

My application allows users to browse for certificates in a directory, and optionally add them to the login keychain.

I get the certificate data via an LDAP query, and use SecCertificateCreateFromData to create a SecCertificateRef.

I also re-use the SFCertificateView, sometimes passing NULL to - setCertificate.

The time on the local system is set correctly.

A user also reported that even when my application shows the certificate expiration status incorrectly, when my app adds the certificate is added to a keychain, the SFCertificateView in Keychain Access displays the certificate expiration status correctly.

Again, things usually work fine, but sometimes, for no reason that I can determine, the certificate is shown as expired when it plainly isn't.



_______________________________________________
Do not post admin requests to the list. They will be ignored.
Apple-cdsa mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/apple-cdsa/email@hidden

This email sent to email@hidden


Visit the Apple Store online or at retail locations.
1-800-MY-APPLE

Contact Apple | Terms of Use | Privacy Policy

Copyright © 2007 Apple Inc. All rights reserved.