Sdk: Add a `data` getter to X509Certificate

Created on 14 May 2018  路  12Comments  路  Source: dart-lang/sdk

Add a data getter to X509Certificate that returns the DER encoded bytes of the certificate from i2d_X509() as an UnmodifiableUint8List.

This is to enable SSL pinning.

/cc @mit-mit @a-siva

area-library library-io type-enhancement
Source
picture zanderso
👍1

Most helpful comment

Hi,
what about public key pinning (HPKP). Can the SecurityContext validate a public key instead of a certificate? This is more future proof as certificate pinning comes with issues of certificate expiry
Cheers

picture qwilbird on 21 Nov 2018
👍5

All 12 comments

Related Flutter bug: https://github.com/flutter/flutter/issues/16066

mit-mit picture mit-mit on 14 May 2018

https://dart-review.googlesource.com/c/sdk/+/55505

I'll land after adding a getter for the sha1, which is what I think you mean by fingerprint.

zanderso picture zanderso on 17 May 2018

It should make it in the next roll into Flutter top-of-tree. I'll link the pull request to follow when it shows up.

zanderso picture zanderso on 17 May 2018
👍2

Is this available in the beta release of Flutter yet? or where can I pull this source?

linuxjet picture linuxjet on 2 Aug 2018

Sorry for not updating. This is now available in Flutter.

zanderso picture zanderso on 2 Aug 2018

I'm pretty new to flutter. Can someone point me towards a tutorial or a doc that describes how to use this.

linuxjet picture linuxjet on 3 Aug 2018

@linuxjet did you check the test https://github.com/dart-lang/sdk/blob/e7495e427c2b0ce76546c946da5f5b9f6f580214/tests/standalone_2/io/secure_client_server_test.dart#L44-L73 (can't help more)

zoechi picture zoechi on 3 Aug 2018

HA!.. no I didn't. because I didn't see it. thx

linuxjet picture linuxjet on 3 Aug 2018

Hi,
what about public key pinning (HPKP). Can the SecurityContext validate a public key instead of a certificate? This is more future proof as certificate pinning comes with issues of certificate expiry
Cheers

qwilbird picture qwilbird on 21 Nov 2018
👍5

any update on SSL pinning with public key?

daadu picture daadu on 16 Feb 2019

Can we file a new feature request for SLL pinning with public key, this issue was opened for adding 'data' getter which is done and the issue closed.

a-siva picture a-siva on 19 Feb 2019

issue opened for ssl public key pinning support. https://github.com/dart-lang/sdk/issues/35981

sandeepcmsm picture sandeepcmsm on 19 Feb 2019
Was this page helpful?
0 / 5 - 0 ratings

Related issues

nex3 picture nex3  路  3Comments
matanlurey picture matanlurey  路  3Comments
brooth picture brooth  路  3Comments
gspencergoog picture gspencergoog  路  3Comments
DartBot picture DartBot  路  3Comments