wintrust: Store the error status and confidence for each element in the chain.
This commit is contained in:
parent
49fdba4768
commit
a9dbc17d50
|
@ -552,6 +552,20 @@ BOOL WINAPI SoftpubCheckCert(CRYPT_PROVIDER_DATA *data, DWORD idxSigner,
|
||||||
return ret;
|
return ret;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
static DWORD WINTRUST_TrustStatusToConfidence(DWORD errorStatus)
|
||||||
|
{
|
||||||
|
DWORD confidence = 0;
|
||||||
|
|
||||||
|
confidence = 0;
|
||||||
|
if (!(errorStatus & CERT_TRUST_IS_NOT_SIGNATURE_VALID))
|
||||||
|
confidence |= CERT_CONFIDENCE_SIG;
|
||||||
|
if (!(errorStatus & CERT_TRUST_IS_NOT_TIME_VALID))
|
||||||
|
confidence |= CERT_CONFIDENCE_TIME;
|
||||||
|
if (!(errorStatus & CERT_TRUST_IS_NOT_TIME_NESTED))
|
||||||
|
confidence |= CERT_CONFIDENCE_TIMENEST;
|
||||||
|
return confidence;
|
||||||
|
}
|
||||||
|
|
||||||
static BOOL WINTRUST_CopyChain(CRYPT_PROVIDER_DATA *data, DWORD signerIdx)
|
static BOOL WINTRUST_CopyChain(CRYPT_PROVIDER_DATA *data, DWORD signerIdx)
|
||||||
{
|
{
|
||||||
BOOL ret;
|
BOOL ret;
|
||||||
|
@ -559,6 +573,11 @@ static BOOL WINTRUST_CopyChain(CRYPT_PROVIDER_DATA *data, DWORD signerIdx)
|
||||||
data->pasSigners[signerIdx].pChainContext->rgpChain[0];
|
data->pasSigners[signerIdx].pChainContext->rgpChain[0];
|
||||||
DWORD i;
|
DWORD i;
|
||||||
|
|
||||||
|
data->pasSigners[signerIdx].pasCertChain[0].dwConfidence =
|
||||||
|
WINTRUST_TrustStatusToConfidence(
|
||||||
|
simpleChain->rgpElement[0]->TrustStatus.dwErrorStatus);
|
||||||
|
data->pasSigners[signerIdx].pasCertChain[0].dwError =
|
||||||
|
simpleChain->rgpElement[0]->TrustStatus.dwErrorStatus;
|
||||||
data->pasSigners[signerIdx].pasCertChain[0].pChainElement =
|
data->pasSigners[signerIdx].pasCertChain[0].pChainElement =
|
||||||
simpleChain->rgpElement[0];
|
simpleChain->rgpElement[0];
|
||||||
ret = TRUE;
|
ret = TRUE;
|
||||||
|
@ -567,8 +586,15 @@ static BOOL WINTRUST_CopyChain(CRYPT_PROVIDER_DATA *data, DWORD signerIdx)
|
||||||
ret = data->psPfns->pfnAddCert2Chain(data, signerIdx, FALSE, 0,
|
ret = data->psPfns->pfnAddCert2Chain(data, signerIdx, FALSE, 0,
|
||||||
simpleChain->rgpElement[i]->pCertContext);
|
simpleChain->rgpElement[i]->pCertContext);
|
||||||
if (ret)
|
if (ret)
|
||||||
|
{
|
||||||
data->pasSigners[signerIdx].pasCertChain[i].pChainElement =
|
data->pasSigners[signerIdx].pasCertChain[i].pChainElement =
|
||||||
simpleChain->rgpElement[i];
|
simpleChain->rgpElement[i];
|
||||||
|
data->pasSigners[signerIdx].pasCertChain[i].dwConfidence =
|
||||||
|
WINTRUST_TrustStatusToConfidence(
|
||||||
|
simpleChain->rgpElement[i]->TrustStatus.dwErrorStatus);
|
||||||
|
data->pasSigners[signerIdx].pasCertChain[i].dwError =
|
||||||
|
simpleChain->rgpElement[i]->TrustStatus.dwErrorStatus;
|
||||||
|
}
|
||||||
}
|
}
|
||||||
return ret;
|
return ret;
|
||||||
}
|
}
|
||||||
|
|
Loading…
Reference in New Issue