none
Question about X509Store RRS feed

  • Question

  • Hi,

    I am facing the following issue, please tell me what's the appropriate forum for this:

     

    X509Store returning removed certificates from store

    I have code like this to enumerate certificates from user's personal
    store:

                X509Store personalStore = new X509Store(StoreName.My,
    StoreLocation.CurrentUser);
                personalStore.Open(OpenFlags.OpenExistingOnly |
    OpenFlags.ReadOnly);
                // read all certificates from personalStore.Certificates

    To add or remove certificates from "My" store I invoke the shell's
    certificate manager dialog using the API CryptUIDlgCertMgr of the
    CRYPTUI.DLL

    If I add new certificates to store using the CryptUIDlgCertMgr UI then
    it is reflected in the collection that I get from X509Store. But if I
    delete a certificate from same UI then it is still there in the
    collection that I get from X509Store.

    Any idea what I am missing here?

    Thanks,
    Sandeep

    Wednesday, December 13, 2006 8:29 AM

Answers

  • I got the problem here. A certificate with extension of type CertificateAuthority (key usage "Basic Constraints") was also getting added while I was adding my certificate to the personal store. This is not visible in shell's certificate dialog's personal store and hence it is always there in personalStore collection above.

    Thanks...

    Thursday, December 28, 2006 1:22 PM