oxen-io
/
session-ios
mirror of https://github.com/oxen-io/session-ios.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Respond to CR.

This commit is contained in:
Matthew Chen 2018-07-26 11:20:40 -04:00
parent c0022eceac
commit 3cac5bbfee
1 changed files with 10 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
SignalServiceKit/src/Contacts/CDSSigningCertificate.m
View File

@ -260,7 +260,6 @@ NS_ASSUME_NONNULL_BEGIN
+ (BOOL)verifyDistinguishedNameOfCertificate:(NSData *)certificateData
{
OWSAssert(certificate);
OWSAssert(certificateData);
// The Security framework doesn't offer access to certificate properties
@ -275,11 +274,16 @@ NS_ASSUME_NONNULL_BEGIN
// NOTE: "Intel SGX Attestation Report Signing CA" is not the same as:
// "Intel SGX Attestation Report Signing"
NSDictionary<NSString *, NSString *> *expectedProperties = @{
@"CN" : @"Intel SGX Attestation Report Signing CA",
@"O" : @"Intel Corporation",
@"L" : @"Santa Clara",
@"ST" : @"CA",
@"C" : @"US",
@(SN_commonName) : // "CN"
@"Intel SGX Attestation Report Signing CA",
@(SN_organizationName) : // "O"
@"Intel Corporation",
@(SN_localityName) : // "L"
@"Santa Clara",
@(SN_stateOrProvinceName) : // "ST"
@"CA",
@(SN_countryName) : // "C"
@"US",
};
if (![properties isEqualToDictionary:expectedProperties]) {
OWSFail(@"%@ Unexpected certificate properties. %@ != %@", self.logTag, expectedProperties, properties);