Re: CertGetCertificateChain() vs CertVerifyRevocation()
From: prem (anonymous_at_discussions.microsoft.com)
Date: 05/27/04
- Next message: Paolo: "Re: Cryptoapi Add Signature CryptMsgControl (CMSG_CTRL_ADD_SIGNER) Windows 98"
- Previous message: Rob Swofford: "LoadUserProfile fails"
- In reply to: Vishal Agarwal[MSFT]: "Re: CertGetCertificateChain() vs CertVerifyRevocation()"
- Next in thread: Vishal Agarwal[MSFT]: "Re: CertGetCertificateChain() vs CertVerifyRevocation()"
- Reply: Vishal Agarwal[MSFT]: "Re: CertGetCertificateChain() vs CertVerifyRevocation()"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 27 May 2004 08:21:06 -0700
Hi,
I tried out CertGetCertificateChain() with fCheckRevocationFreshnessTime as you mentioned. I got the CRL quickly but for those of the unrevoked certificates I am getting 0x1000040 in the pChainContext->TrustStatus.dwErrorStatus ( where pChainContext is of type PCCERT_CHAIN_CONTEXT ). Whereas in the same program if I remove fCheckRevocationFreshnessTime logic I get pChainContext->TrustStatus.dwErrorStatus as CERT_TRUST_NO_ERROR. Why do I get this different kind of behaviour for unrevoked certificates. I also dont fine as entry for 0x1000040 in Wincrypt.h
As metioned in the help I set the CERT_CHAIN_PARA to 0 by doing memset(&ChainPara,0,sizeof(CERT_CHAIN_PARA));
Thanks,
Prem
- Next message: Paolo: "Re: Cryptoapi Add Signature CryptMsgControl (CMSG_CTRL_ADD_SIGNER) Windows 98"
- Previous message: Rob Swofford: "LoadUserProfile fails"
- In reply to: Vishal Agarwal[MSFT]: "Re: CertGetCertificateChain() vs CertVerifyRevocation()"
- Next in thread: Vishal Agarwal[MSFT]: "Re: CertGetCertificateChain() vs CertVerifyRevocation()"
- Reply: Vishal Agarwal[MSFT]: "Re: CertGetCertificateChain() vs CertVerifyRevocation()"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
