View Issue Details

IDProjectCategoryView StatusLast Update
000186510000-006: Mappingspublic2012-06-12 17:10
ReporterNathan PocockAssigned ToRandy Armstrong  
PrioritynormalSeverityminorReproducibilityalways
Status closedResolutionfixed 
Fixed in Version1.02 
Summary0001865: D6 CertificateValidationOptions inheritence and priority
Description

The CertifiateValidationOptions are defined in D6, but they're used by:

  • Certificate (D3)
  • CertificateStoreIdentifier (D4)
  • CertificateList (D5)

This means that there's a potential conflict when validation settings are defined in two or more of the above mentioned locations.

If validation options were specified at a Certificate Store, but were configured differently at the certificate level then which would win?

TagsNo tags attached.
Commit Version
Fix Due Date

Activities

Jim Luth

2012-02-14 16:03

administrator   ~0003305

Reverting to "new" for disposition by working group.

Jim Luth

2012-02-14 17:18

administrator   ~0003307

Last edited: 2012-02-14 17:51

Agreed that the text will be updated to describe the order of precedence.

Randy Armstrong

2012-05-03 08:21

administrator   ~0003628

Added text to CertificateList indicating that the ValidationOptions are ORed together in RC 1.02.10.

Jim Luth

2012-05-08 19:58

administrator   ~0003657

Reviewed text in telecon – agreed to this, but Nate should review before closing.

Nathan Pocock

2012-05-10 19:25

viewer   ~0003678

CMPWG 5/10/2012:

We reviewed the text and have several requests/suggestions:

  1. The text in D6 should (when the text has been finalized) be copied to D5.
  2. The numbers for CertificationValidationOptions should be padded to look like 32-bit values (currently resembles 16-bit).

We are also unsure of the proposed logic. When you review D6 we have 2 categories of options, the top-3 are for suppressing messages, whereas the bottom-2 are for configuring behavior. Therefore, we think that there should be a difference in how they are administered and have 3 possible suggestions for consideration:

a) top-3 items should be AND'ed, whereas bottom-2 should be OR'ed.
b) In addition with (a), change the bottom-2 bits to be in the high-word.
c) break-apart these value into 2 different bitmasks.

Randy Armstrong

2012-05-10 20:14

administrator   ~0003679

Added a UseDefaultOptions to ValidationOptions enum.

Added text that indicates that the CertificateList options only apply to Certifictates with the UseDefaultOptions bit set.

The data type is clearly an Int32. There is no need to pad with extra zeros.

Randy Armstrong

2012-05-10 20:16

administrator   ~0003680

Changed ValidationOptions to use bit number instead of numeric value to be consistent with how other bit masks are described in Part 4.

Jim Luth

2012-06-12 17:10

administrator   ~0003728

Reviewed and made online edits in 1.02.13 and agreed to changes.

Issue History

Date Modified Username Field Change
2012-02-02 19:53 Nathan Pocock New Issue
2012-02-02 19:53 Nathan Pocock Status new => assigned
2012-02-02 19:53 Nathan Pocock Assigned To => Randy Armstrong
2012-02-14 16:03 Jim Luth Note Added: 0003305
2012-02-14 16:03 Jim Luth Assigned To Randy Armstrong =>
2012-02-14 16:03 Jim Luth Status assigned => new
2012-02-14 17:18 Jim Luth Note Added: 0003307
2012-02-14 17:18 Jim Luth Assigned To => Randy Armstrong
2012-02-14 17:18 Jim Luth Status new => assigned
2012-02-14 17:51 Jim Luth Note Edited: 0003307
2012-05-03 08:21 Randy Armstrong Status assigned => resolved
2012-05-03 08:21 Randy Armstrong Resolution open => fixed
2012-05-03 08:21 Randy Armstrong Note Added: 0003628
2012-05-08 19:58 Jim Luth Note Added: 0003657
2012-05-10 19:25 Nathan Pocock Assigned To Randy Armstrong => Jim Luth
2012-05-10 19:25 Nathan Pocock Status resolved => feedback
2012-05-10 19:25 Nathan Pocock Resolution fixed => reopened
2012-05-10 19:25 Nathan Pocock Note Added: 0003678
2012-05-10 20:14 Randy Armstrong Status feedback => resolved
2012-05-10 20:14 Randy Armstrong Resolution reopened => fixed
2012-05-10 20:14 Randy Armstrong Note Added: 0003679
2012-05-10 20:16 Randy Armstrong Assigned To Jim Luth => Randy Armstrong
2012-05-10 20:16 Randy Armstrong Status resolved => feedback
2012-05-10 20:16 Randy Armstrong Resolution fixed => reopened
2012-05-10 20:16 Randy Armstrong Status feedback => resolved
2012-05-10 20:16 Randy Armstrong Resolution reopened => fixed
2012-05-10 20:16 Randy Armstrong Note Added: 0003680
2012-06-12 17:10 Jim Luth Status resolved => closed
2012-06-12 17:10 Jim Luth Note Added: 0003728
2012-06-12 17:10 Jim Luth Fixed in Version => 1.02