Skip to content

W
wine-cw
Commit 8fcaa52d authored by Juan Lang's avatar Juan Lang Committed by Alexandre Julliard
Browse files
Options

crypt32: Add support for CRL_FIND_ISSUED_BY_AKI_FLAG to CertFindCRLInStore.

parent b2781556
Hide whitespace changes
Inline Side-by-side
Showing with 25 additions and 2 deletions
dlls/crypt32/crl.c
View file @ 8fcaa52d
......@@ -121,6 +121,31 @@ static BOOL compare_crl_issued_by(PCCRL_CONTEXT pCrlContext, DWORD dwType,
issuer->dwCertEncodingType,
CRYPT_VERIFY_CERT_SIGN_SUBJECT_CRL, (void *)pCrlContext,
CRYPT_VERIFY_CERT_SIGN_ISSUER_CERT, (void *)issuer, 0, NULL);
if (ret && (dwFlags & CRL_FIND_ISSUED_BY_AKI_FLAG))
{
PCERT_EXTENSION aki = CertFindExtension(
szOID_AUTHORITY_KEY_IDENTIFIER2, pCrlContext->pCrlInfo->cExtension,
pCrlContext->pCrlInfo->rgExtension);
if (aki)
{
CERT_EXTENSION *ski;
if ((ski = CertFindExtension(szOID_SUBJECT_KEY_IDENTIFIER,
issuer->pCertInfo->cExtension,
issuer->pCertInfo->rgExtension)))
{
if (aki->Value.cbData == ski->Value.cbData)
ret = !memcmp(aki->Value.pbData, ski->Value.pbData,
aki->Value.cbData);
else
ret = FALSE;
}
else
ret = FALSE;
}
/* else: a CRL without an AKI matches any cert */
}
}
else
ret = TRUE;
......
dlls/crypt32/tests/crl.c
View file @ 8fcaa52d
......@@ -683,11 +683,9 @@ static void testFindCRL(void)
revoked_count++;
}
} while (context);
todo_wine {
ok(count == 0, "expected 0 matching CRLs, got %d\n", count);
ok(revoked_count == 0, "expected 0 matching CRL entries, got %d\n",
revoked_count);
}
count = revoked_count = 0;
do {
context = pCertFindCRLInStore(store, 0, CRL_FIND_ISSUED_BY_AKI_FLAG,
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment