Commit Graph

710 Commits

Author SHA1 Message Date
Juan Lang d6c9c7a08b crypt32: Honor SECURITY_FLAG_IGNORE_CERT_CN_INVALID. 2010-08-16 17:28:55 +02:00
Juan Lang e922faec4a crypt32/tests: Add a test of SSL_EXTRA_CERT_CHAIN_POLICY_PARA's fdwChecks field. 2010-08-16 17:28:55 +02:00
Alexandre Julliard b86d515ed6 dlls: Remove explicit imports of kernel32 and ntdll. 2010-07-21 17:38:36 +02:00
Francois Gouget fea384cea4 crypt32/tests: Add a trailing '\n' to ok() calls. 2010-06-22 20:03:27 +02:00
Juan Lang 88a016184d crypt32: Add support for CERT_STORE_PROV_SERIALIZED to CertOpenStore. 2010-06-16 11:44:48 +02:00
Juan Lang ecbb3c3f18 crypt32/tests: Test opening serialized stores. 2010-06-16 11:44:21 +02:00
Juan Lang 1d94702431 crypt32/tests: Always compare serialized stores in memory. 2010-05-26 10:10:10 +02:00
Juan Lang 6451b9621e crypt32/tests: Test an otherwise unused return value. 2010-05-26 10:10:05 +02:00
Juan Lang d0b7cc5bb9 crypt32/tests: Improve granularity of testing a store's serialized form. 2010-05-26 10:10:01 +02:00
Juan Lang c79aad51cd crypt32: Implement wildcard domain name matching in subject alternative names. 2010-05-21 14:37:52 +02:00
Juan Lang 1d79e5de9a crypt32/tests: Test wildcards in subject alternative name. 2010-05-20 13:47:53 +02:00
Juan Lang fbd3a1dd7b crypt32/tests: Allow specifying a chain engine when verifying a chain policy. 2010-05-20 13:47:53 +02:00
Juan Lang 742b4f37c8 crypt32/tests: Allow specifying a chain engine when creating a certificate chain. 2010-05-20 13:47:53 +02:00
Juan Lang d3db308853 crypt32: Update definition of CERT_CHAIN_ENGINE_CONFIG. 2010-05-20 13:47:53 +02:00
Juan Lang d728169d97 crypt32: Implement CertAddCertificateLinkToStore on top of CertAddCertificateContextToStore. 2010-05-17 12:42:31 +02:00
Juan Lang 99b9e1ae36 crypt32: Prohibit adding links to collection stores. 2010-05-17 12:42:31 +02:00
Juan Lang 0dfb0299f6 crypt32/tests: Test CertAddCertificateLinkToStore. 2010-05-17 12:42:31 +02:00
Gerald Pfeifer 52ead99288 crypt32/tests: Remove variable entry which is not really used from test_decodeCRLToBeSigned. 2010-05-05 10:52:03 +02:00
Gerald Pfeifer abae415487 crypt32/tests: Tighten tests in testPortPublicKeyInfo. 2010-05-03 16:48:56 +02:00
Alexandre Julliard bef5645eb1 makefiles: Remove the no longer needed explicit separators for dependencies. 2010-03-16 13:28:19 +01:00
Reece Dunn a15dbfac22 crypt32: Fix CryptFreeTls when calling with a freed index. 2010-03-03 11:50:04 +01:00
Alexandre Julliard 6164ce2d82 makefiles: Use the standard C_SRCS variable as the list of test files.
This enables it to be auto-updated by make_makefiles.
2010-02-22 10:47:11 +01:00
Michael Stefaniuc 0a866d0e45 crypt32: Avoid using HIWORD() on a string pointer.
The stray IS_INTRESOURCE() is applied to a true resource. The other
strings are OIDs and not resources.
2010-01-29 14:59:02 +01:00
Michael Stefaniuc b4448d9b77 crypt32/tests: Add a win_skip(). 2010-01-20 15:29:50 +01:00
Alexandre Julliard 4f83f9a120 crypt32/tests: Avoid size_t in traces. 2009-12-09 12:19:38 +01:00
Francois Gouget d1e592ad20 crypt32/tests: Fix compilation on systems that don't support nameless unions. 2009-12-08 17:42:25 +01:00
Juan Lang bab1c652ae crypt32/tests: Fix memory leak in test. 2009-12-07 09:49:07 +01:00
Juan Lang cdbf6e8614 crypt32/tests: Don't pass as a parameter a variable that could be local. 2009-12-07 09:49:07 +01:00
Juan Lang 6acd82fa79 crypt32: Correct AKI extension used in end certificate and CRL when checking revocation. 2009-12-04 12:01:16 +01:00
Juan Lang 865669eeb3 crypt32: Fix test failures on Win2k. 2009-12-03 10:11:54 +01:00
Juan Lang 63383baed4 crypt32: Fix test failure on Win7. 2009-12-03 10:11:46 +01:00
Alexandre Julliard b402b78780 rsaenh: Fix padding bytes check for 0-byte payload. 2009-12-02 14:59:56 +01:00
Juan Lang 9f5a554de0 crypt32: Correct AKI extension used in end certificate and CRL when checking revocation. 2009-12-02 12:18:02 +01:00
Juan Lang 9c56314e3d crypt32: Further fix test failures. 2009-12-02 12:12:50 +01:00
Juan Lang 6b8c053218 crypt32: Fix test failures. 2009-12-01 12:24:00 +01:00
Juan Lang 90c160c3d8 crypt32: Revert 8ed5a777de.
Ordinarily removing tests seems like a bad idea, but in this case it
seems the only rational response to the test failures the tests
produce.  The tests check the state of three bits with a variety of
certificate and CRL combinations.  One of these bits is apparently not
set by any version of Windows for any of the tests.  Testing its
absence doesn't seem correct, and I'll explain why in more detail in a
second.  Every permutation of the remaining two bits appears on at
least one Windows version, and no Windows version is obviously more
correct than the rest, so testing them doesn't seem worthwhile.

The one bit that doesn't appear to be set is the bit saying that a
certificate is revoked.  I created CRLs that do in fact revoke some of
the tested certificates, so it appears to me that the bit should be
set.  It's possible that Windows doesn't bother checking the
revocation status of a certificate whose anchor isn't trusted, but
it's impossible to test this in an automated regression test suite,
because adding a trusted certificate requires clicking OK (or its
equivalent) in a dialog.  The dialog is invoked by the system process,
so I can't use a dialog hook to suppress it.  I can test this
hypothesis manually, but it isn't possible to do so in an automated
way.
2009-11-30 12:57:53 +01:00
Juan Lang 8e51a866b7 crypt32: When searching for a CRL by the AKI extension, the extension has to be decoded to match. 2009-11-21 14:31:46 +01:00
Juan Lang 7dee971809 crypt32/tests: Fix a typo. 2009-11-21 14:31:46 +01:00
Juan Lang 8646c39bdb crypt32: Finding a CRL issued by a cert should compare the cert's subject, not its issuer. 2009-11-21 14:31:46 +01:00
Juan Lang 6bc8237c63 crypt32/tests: Test one more certificate against the Verisign CRL. 2009-11-21 14:31:46 +01:00
Juan Lang 22206b909a crypt32/tests: Fix a typo. 2009-11-21 14:31:46 +01:00
Juan Lang eee179206e crypt32/tests: Fix tests on Win9x/ME. 2009-11-21 14:31:44 +01:00
Juan Lang 1a392e1a30 crypt32: Support checking the requested usage for a chain. 2009-11-21 14:31:44 +01:00
Juan Lang e611a83962 crypt32: Test verifying the enhanced key usage of a chain. 2009-11-21 14:31:44 +01:00
Juan Lang 9d9070ae3c crypt32: CertFindCRLInStore with find type CRL_FIND_ISSUED_FOR shouldn't check whether the CRL is valid for the subject certificate. 2009-11-20 11:15:11 +01:00
Juan Lang f378394acd crypt32: Correct CertIsValidCRLForCertificate for certificates that do not contain a CRL dist points extension. 2009-11-20 11:15:06 +01:00
Juan Lang bcbfddd82a crypt32: Fix tests on older Windows versions. 2009-11-20 11:15:01 +01:00
Juan Lang a3c6bc68c8 crypt32: Assume revocation server is offline if revocation status isn't known. 2009-11-20 11:14:52 +01:00
Juan Lang 8ed5a777de crypt32: Test revocation checking with CertGetCertificateChain. 2009-11-20 11:14:41 +01:00
Juan Lang 27128bb2f8 crypt32: Add more tests for CertVerifyRevocation. 2009-11-20 11:14:00 +01:00