ReceiveTempSMS
/
Sweden-Number
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

crypt32: Accept end certificates with no extended key usage extension if a particular key usage is requested.

This commit is contained in:
Juan Lang 2009-12-11 08:12:54 -08:00 committed by Alexandre Julliard
parent 350cdd2fe5
commit 01a7cbf843
1 changed files with 4 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
dlls/crypt32/chain.c
View File

@ -2541,10 +2541,11 @@ static void CRYPT_CheckUsages(PCERT_CHAIN_CONTEXT chain,
* key usage extension be present and that a particular purpose * key usage extension be present and that a particular purpose
* be indicated in order for the certificate to be acceptable to * be indicated in order for the certificate to be acceptable to
* that application." * that application."
* For now I'm being more conservative and disallowing it. * Not all web sites include the extended key usage extension, so
* accept chains without it.
*/ */
WARN_(chain)("requested usage from a certificate with no usages\n"); TRACE_(chain)("requested usage from certificate with no usages\n");
validForUsage = FALSE; validForUsage = TRUE;
} }
if (!validForUsage) if (!validForUsage)
{ {