archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/ds/security/cryptoapi/pki/activex/capicom/certificatestatus.cpp

975 lines
22 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  3. Microsoft Windows, Copyright (C) Microsoft Corporation, 2000
  5. File: CertificateStatus.cpp
  7. Contents: Implementation of CCertificateStatus
  9. Remarks: This object is not creatable by user directly. It can only be
  10. created via property/method of other CAPICOM objects.
  12. History: 11-15-99 dsie created
  14. ------------------------------------------------------------------------------*/
  16. #include "StdAfx.h"
  17. #include "CAPICOM.h"
  18. #include "CertificateStatus.h"
  20. #include "Chain.h"
  21. #include "OIDs.h"
  23. ///////////////
  24. //
  25. // Local
  26. //
  28. #define DEFAULT_CHECK_FLAGS ((CAPICOM_CHECK_FLAG) (CAPICOM_CHECK_SIGNATURE_VALIDITY | \
  29. CAPICOM_CHECK_TIME_VALIDITY | \
  30. CAPICOM_CHECK_TRUSTED_ROOT))
  33. ////////////////////////////////////////////////////////////////////////////////
  34. //
  35. // Exported functions.
  36. //
  38. /*++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  40. Function : CreateCertificateStatusObject
  42. Synopsis : Create an ICertificateStatus object.
  44. Parameter: PCCERT_CONTEXT pCertContext - Pointer to CERT_CONTEXT.
  46. ICertificateStatus ** ppICertificateStatus - Pointer to pointer
  47. ICertificateStatus
  48. object.
  49. Remark :
  51. ------------------------------------------------------------------------------*/
  53. HRESULT CreateCertificateStatusObject (PCCERT_CONTEXT pCertContext,
  54. ICertificateStatus ** ppICertificateStatus)
  55. {
  56. HRESULT hr = S_OK;
  57. CComObject<CCertificateStatus> * pCCertificateStatus = NULL;
  59. DebugTrace("Entering CreateCertificateStatusObject().\n");
  61. //
  62. // Sanity check.
  63. //
  64. ATLASSERT(pCertContext);
  65. ATLASSERT(ppICertificateStatus);
  67. try
  68. {
  69. //
  70. // Create the object. Note that the ref count will still be 0
  71. // after the object is created.
  72. //
  73. if (FAILED(hr = CComObject<CCertificateStatus>::CreateInstance(&pCCertificateStatus)))
  74. {
  75. DebugTrace("Error [%#x]: CComObject<CCertificateStatus>::CreateInstance() failed.\n", hr);
  76. goto ErrorExit;
  77. }
  79. //
  80. // Initialize the object.
  81. //
  82. if (FAILED(hr = pCCertificateStatus->Init(pCertContext)))
  83. {
  84. DebugTrace("Error [%#x]: pCCertificateStatus->Init() failed.\n", hr);
  85. goto ErrorExit;
  86. }
  88. //
  89. // Return ICertificateStatus pointer to caller.
  90. //
  91. if (FAILED(hr = pCCertificateStatus->QueryInterface(ppICertificateStatus)))
  92. {
  93. DebugTrace("Error [%#x]: pCCertificateStatus->QueryInterface() failed.\n", hr);
  94. goto ErrorExit;
  95. }
  96. }
  98. catch(...)
  99. {
  100. hr = E_POINTER;
  102. DebugTrace("Exception: invalid parameter.\n");
  103. goto ErrorExit;
  104. }
  106. CommonExit:
  108. DebugTrace("Leaving CreateCertificateStatusObject().\n");
  110. return hr;
  112. ErrorExit:
  113. //
  114. // Sanity check.
  115. //
  116. ATLASSERT(FAILED(hr));
  118. //
  119. // Free resource.
  120. //
  121. if (pCCertificateStatus)
  122. {
  123. delete pCCertificateStatus;
  124. }
  126. goto CommonExit;
  127. }
  130. ////////////////////////////////////////////////////////////////////////////////
  131. //
  132. // CCertificateStatus
  133. //
  135. /*++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  137. Function : CCertificateStatus::get_Result
  139. Synopsis : Return the overall validity result of the cert, based on the
  140. currently set check flags and EKU.
  142. Parameter: VARIANT_BOOL * pVal - Pointer to VARIANT_BOOL to receive result.
  144. Remark :
  146. ------------------------------------------------------------------------------*/
  148. STDMETHODIMP CCertificateStatus::get_Result (VARIANT_BOOL * pVal)
  149. {
  150. HRESULT hr = S_OK;
  151. CComPtr<IChain> pIChain = NULL;
  153. DebugTrace("Entering CCertificateStatus::get_Result().\n");
  155. try
  156. {
  157. //
  158. // Lock access to this object.
  159. //
  160. m_Lock.Lock();
  162. //
  163. // Check parameters.
  164. //
  165. if (NULL == pVal)
  166. {
  167. hr = E_INVALIDARG;
  169. DebugTrace("Error [%#x]: Parameter pVal is NULL.\n", hr);
  170. goto ErrorExit;
  171. }
  173. //
  174. // Sanity check.
  175. //
  176. ATLASSERT(m_pCertContext);
  178. //
  179. // Build the chain and return the result.
  180. //
  181. if (FAILED(hr = ::CreateChainObject(m_pCertContext, this, NULL, pVal, &pIChain)))
  182. {
  183. DebugTrace("Error [%#x]: CreateChainObject() failed.\n", hr);
  184. goto ErrorExit;
  185. }
  186. }
  188. catch(...)
  189. {
  190. hr = E_POINTER;
  192. DebugTrace("Exception: invalid parameter.\n");
  193. goto ErrorExit;
  194. }
  196. UnlockExit:
  197. //
  198. // Unlock access to this object.
  199. //
  200. m_Lock.Unlock();
  202. DebugTrace("Leaving CCertificateStatus::get_Result().\n");
  204. return hr;
  206. ErrorExit:
  207. //
  208. // Sanity check.
  209. //
  210. ATLASSERT(FAILED(hr));
  212. ReportError(hr);
  214. goto UnlockExit;
  215. }
  217. /*++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  219. Function : CCertificateStatus::get_CheckFlag
  221. Synopsis : Return the currently set validity check flag.
  223. Parameter: CAPICOM_CHECK_FLAG * pVal - Pointer to CAPICOM_CHECK_FLAG to
  224. receive check flag.
  226. Remark :
  228. ------------------------------------------------------------------------------*/
  230. STDMETHODIMP CCertificateStatus::get_CheckFlag (CAPICOM_CHECK_FLAG * pVal)
  231. {
  232. HRESULT hr = S_OK;
  234. DebugTrace("Entering CCertificateStatus::get_CheckFlag().\n");
  236. try
  237. {
  238. //
  239. // Lock access to this object.
  240. //
  241. m_Lock.Lock();
  243. //
  244. // Check parameters.
  245. //
  246. if (NULL == pVal)
  247. {
  248. hr = E_INVALIDARG;
  250. DebugTrace("Error [%#x]: Parameter pVal is NULL.\n", hr);
  251. goto ErrorExit;
  252. }
  254. //
  255. // Return flag to user.
  256. //
  257. *pVal = m_CheckFlag;
  258. }
  260. catch(...)
  261. {
  262. hr = E_POINTER;
  264. DebugTrace("Exception: invalid parameter.\n");
  265. goto ErrorExit;
  266. }
  268. UnlockExit:
  269. //
  270. // Unlock access to this object.
  271. //
  272. m_Lock.Unlock();
  274. DebugTrace("Leaving CCertificateStatus::get_CheckFlag().\n");
  276. return hr;
  278. ErrorExit:
  279. //
  280. // Sanity check.
  281. //
  282. ATLASSERT(FAILED(hr));
  284. ReportError(hr);
  286. goto UnlockExit;
  287. }
  289. /*++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  291. Function : CCertificateStatus::put_CheckFlag
  293. Synopsis : Set validity check flag.
  295. Parameter: CAPICOM_CHECK_FLAG newVal - Check flag.
  297. Remark : Note that CHECK_ONLINE_REVOCATION_STATUS and
  298. CHECK_OFFLINE_REVOCATION_STATUS is mutually exclusive.
  300. ------------------------------------------------------------------------------*/
  302. STDMETHODIMP CCertificateStatus::put_CheckFlag (CAPICOM_CHECK_FLAG newVal)
  303. {
  304. HRESULT hr = S_OK;
  306. DebugTrace("Entering CCertificateStatus::put_CheckFlag().\n");
  308. //
  309. // Lock access to this object.
  310. //
  311. m_Lock.Lock();
  313. //
  314. // Make sure flag is valid (maximum is CAPICOM_CHECK_OFFLINE_ALL).
  315. //
  316. if ((newVal & CAPICOM_CHECK_FLAG_LO_MASK) > CAPICOM_CHECK_OFFLINE_ALL)
  317. {
  318. hr = E_INVALIDARG;
  320. DebugTrace("Error [%#x]: invalid check flag (%#x).\n", hr, newVal);
  321. goto ErrorExit;
  322. }
  324. //
  325. // Store check flag.
  326. //
  327. m_CheckFlag = newVal;
  329. UnlockExit:
  330. //
  331. // Unlock access to this object.
  332. //
  333. m_Lock.Unlock();
  335. DebugTrace("Leaving CCertificateStatus::put_CheckFlag().\n");
  337. return hr;
  339. ErrorExit:
  340. //
  341. // Sanity check.
  342. //
  343. ATLASSERT(FAILED(hr));
  345. ReportError(hr);
  347. goto UnlockExit;
  348. }
  350. /*++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  352. Function : CCertificateStatus::EKU
  354. Synopsis : Return the EKU object.
  356. Parameter: IEKU ** pVal - Pointer to pointer to IEKU to receive the
  357. interface pointer.
  359. Remark :
  361. ------------------------------------------------------------------------------*/
  363. STDMETHODIMP CCertificateStatus::EKU (IEKU ** pVal)
  364. {
  365. HRESULT hr = S_OK;
  367. DebugTrace("Entering CCertificateStatus::EKU().\n");
  369. try
  370. {
  371. //
  372. // Lock access to this object.
  373. //
  374. m_Lock.Lock();
  376. //
  377. // Check parameters.
  378. //
  379. if (NULL == pVal)
  380. {
  381. hr = E_INVALIDARG;
  383. DebugTrace("Error [%#x]: Parameter pVal is NULL.\n", hr);
  384. goto ErrorExit;
  385. }
  387. //
  388. // Sanity check.
  389. //
  390. ATLASSERT(m_pIEKU);
  392. //
  393. // Return interface pointer to user.
  394. //
  395. if (FAILED(hr = m_pIEKU->QueryInterface(pVal)))
  396. {
  397. DebugTrace("Error [%#x]: m_pIEKU->QueryInterface() failed.\n", hr);
  398. goto ErrorExit;
  399. }
  400. }
  402. catch(...)
  403. {
  404. hr = E_POINTER;
  406. DebugTrace("Exception: invalid parameter.\n");
  407. goto ErrorExit;
  408. }
  410. UnlockExit:
  411. //
  412. // Unlock access to this object.
  413. //
  414. m_Lock.Unlock();
  416. DebugTrace("Leaving CCertificateStatus::EKU().\n");
  418. return hr;
  420. ErrorExit:
  421. //
  422. // Sanity check.
  423. //
  424. ATLASSERT(FAILED(hr));
  426. ReportError(hr);
  428. goto UnlockExit;
  429. }
  431. /*++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  433. Function : CCertificateStatus::get_VerificationTime
  435. Synopsis : Return the verification time.
  437. Parameter: DATE * pVal - Pointer to DATE to receive the value.
  439. Remark :
  441. ------------------------------------------------------------------------------*/
  443. STDMETHODIMP CCertificateStatus::get_VerificationTime (DATE * pVal)
  444. {
  445. HRESULT hr = S_OK;
  446. SYSTEMTIME st = {0};
  448. DebugTrace("Entering CCertificateStatus::get_VerificationTime().\n");
  450. try
  451. {
  452. //
  453. // Lock access to this object.
  454. //
  455. m_Lock.Lock();
  457. //
  458. // Make sure paremeters are valid.
  459. //
  460. if (NULL == pVal)
  461. {
  462. hr = E_INVALIDARG;
  464. DebugTrace("Error [%#x]: Paremeter pVal is NULL.\n", hr);
  465. goto ErrorExit;
  466. }
  468. //
  469. // If the time was never explicit set by user, return the current time.
  470. //
  471. if ((DATE) 0 == m_VerificationTime)
  472. {
  473. ::GetLocalTime(&st);
  475. //
  476. // Convert to DATE.
  477. //
  478. if (0 == ::SystemTimeToVariantTime(&st, pVal))
  479. {
  480. hr = E_INVALIDARG;
  482. DebugTrace("Error [%#x]: SystemTimeToVariantTime() failed.\n", hr);
  483. goto ErrorExit;
  484. }
  485. }
  486. else
  487. {
  488. //
  489. // Return previously set verification time to caller.
  490. //
  491. *pVal = m_VerificationTime;
  492. }
  493. }
  495. catch(...)
  496. {
  497. hr = E_POINTER;
  499. DebugTrace("Exception: invalid parameter.\n");
  500. goto ErrorExit;
  501. }
  503. UnlockExit:
  504. //
  505. // Unlock access to this object.
  506. //
  507. m_Lock.Unlock();
  509. DebugTrace("Leaving CCertificateStatus::get_VerificationTime().\n");
  511. return hr;
  513. ErrorExit:
  514. //
  515. // Sanity check.
  516. //
  517. ATLASSERT(FAILED(hr));
  519. ReportError(hr);
  521. goto UnlockExit;
  522. }
  524. /*++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  526. Function : CCertificateStatus::put_VerificationTime
  528. Synopsis : Set the verification time.
  530. Parameter: DATE newVal - New DATE value.
  532. Remark :
  534. ------------------------------------------------------------------------------*/
  536. STDMETHODIMP CCertificateStatus::put_VerificationTime (DATE newVal)
  537. {
  538. HRESULT hr = S_OK;
  540. DebugTrace("Entering CCertificateStatus::put_VerificationTime().\n");
  542. try
  543. {
  544. //
  545. // Lock access to this object.
  546. //
  547. m_Lock.Lock();
  549. //
  550. // Update verification time.
  551. //
  552. m_VerificationTime = newVal;
  553. }
  555. catch(...)
  556. {
  557. hr = E_POINTER;
  559. DebugTrace("Exception: invalid parameter.\n");
  560. goto ErrorExit;
  561. }
  563. UnlockExit:
  564. //
  565. // Unlock access to this object.
  566. //
  567. m_Lock.Unlock();
  569. DebugTrace("Leaving CCertificateStatus::put_VerificationTime().\n");
  571. return hr;
  573. ErrorExit:
  574. //
  575. // Sanity check.
  576. //
  577. ATLASSERT(FAILED(hr));
  579. ReportError(hr);
  581. goto UnlockExit;
  582. }
  584. /*++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  586. Function : CCertificateStatus::get_UrlRetrievalTimeout
  588. Synopsis : Get the URL retrieval timeout value in seconds.
  590. Parameter: long * pVal - Pointer to long to receive the value.
  592. Remark :
  594. ------------------------------------------------------------------------------*/
  596. STDMETHODIMP CCertificateStatus::get_UrlRetrievalTimeout (long * pVal)
  597. {
  598. HRESULT hr = S_OK;
  600. DebugTrace("Entering CCertificateStatus::get_UrlRetrievalTimeout().\n");
  602. try
  603. {
  604. //
  605. // Lock access to this object.
  606. //
  607. m_Lock.Lock();
  609. //
  610. // Make sure paremeters are valid.
  611. //
  612. if (NULL == pVal)
  613. {
  614. hr = E_INVALIDARG;
  616. DebugTrace("Error [%#x]: Paremeter pVal is NULL.\n", hr);
  617. goto ErrorExit;
  618. }
  620. //
  621. // Return previously set URL retrieval timeout to caller.
  622. //
  623. *pVal = m_dwUrlRetrievalTimeout;
  624. }
  626. catch(...)
  627. {
  628. hr = E_POINTER;
  630. DebugTrace("Exception: invalid parameter.\n");
  631. goto ErrorExit;
  632. }
  634. UnlockExit:
  635. //
  636. // Unlock access to this object.
  637. //
  638. m_Lock.Unlock();
  640. DebugTrace("Leaving CCertificateStatus::get_UrlRetrievalTimeout().\n");
  642. return hr;
  644. ErrorExit:
  645. //
  646. // Sanity check.
  647. //
  648. ATLASSERT(FAILED(hr));
  650. ReportError(hr);
  652. goto UnlockExit;
  653. }
  656. /*++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  658. Function : CCertificateStatus::put_UrlRetrievalTimeout
  660. Synopsis : Set the URL retrieval timeout value in seconds.
  662. Parameter: long newVal - New URL retrieval timeout value..
  664. Remark :
  666. ------------------------------------------------------------------------------*/
  668. STDMETHODIMP CCertificateStatus::put_UrlRetrievalTimeout (long newVal)
  669. {
  670. HRESULT hr = S_OK;
  672. DebugTrace("Entering CCertificateStatus::put_UrlRetrievalTimeout().\n");
  674. try
  675. {
  676. //
  677. // Lock access to this object.
  678. //
  679. m_Lock.Lock();
  681. //
  682. // Make sure paremeters are valid.
  683. //
  684. if (CAPICOM_MAX_URL_RETRIEVAL_TIMEOUT < (DWORD) newVal)
  685. {
  686. hr = E_INVALIDARG;
  688. DebugTrace("Error [%#x]: newVal (%#x) is greater than max retrieval timeout allowed.\n",
  689. hr, newVal);
  690. goto ErrorExit;
  691. }
  693. //
  694. // Update URL retrieval timeout.
  695. //
  696. m_dwUrlRetrievalTimeout = newVal;
  697. }
  699. catch(...)
  700. {
  701. hr = E_POINTER;
  703. DebugTrace("Exception: invalid parameter.\n");
  704. goto ErrorExit;
  705. }
  707. UnlockExit:
  708. //
  709. // Unlock access to this object.
  710. //
  711. m_Lock.Unlock();
  713. DebugTrace("Leaving CCertificateStatus::put_UrlRetrievalTimeout().\n");
  715. return hr;
  717. ErrorExit:
  718. //
  719. // Sanity check.
  720. //
  721. ATLASSERT(FAILED(hr));
  723. ReportError(hr);
  725. goto UnlockExit;
  726. }
  728. /*++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  730. Function : CCertificateStatus::CertificatePolicies
  732. Synopsis : Return the certificate policies OIDs collection for which this
  733. chain is valid.
  735. Parameter: IOID ** pVal - Pointer to pointer to IOIDs to receive the
  736. interface pointer.
  738. Remark :
  740. ------------------------------------------------------------------------------*/
  742. STDMETHODIMP CCertificateStatus::CertificatePolicies (IOIDs ** pVal)
  743. {
  744. HRESULT hr = S_OK;
  746. DebugTrace("Entering CCertificateStatus::CertificatePolicies().\n");
  748. try
  749. {
  750. //
  751. // Lock access to this object.
  752. //
  753. m_Lock.Lock();
  755. //
  756. // Check parameters.
  757. //
  758. if (NULL == pVal)
  759. {
  760. hr = E_INVALIDARG;
  762. DebugTrace("Error [%#x]: Parameter pVal is NULL.\n", hr);
  763. goto ErrorExit;
  764. }
  766. //
  767. // Sanity check.
  768. //
  769. ATLASSERT(m_pICertificatePolicies);
  771. //
  772. // Return interface pointer to user.
  773. //
  774. if (FAILED(hr = m_pICertificatePolicies->QueryInterface(pVal)))
  775. {
  776. DebugTrace("Error [%#x]: m_pICertificatePolicies->QueryInterface() failed.\n", hr);
  777. goto ErrorExit;
  778. }
  779. }
  781. catch(...)
  782. {
  783. hr = E_POINTER;
  785. DebugTrace("Exception: invalid parameter.\n");
  786. goto ErrorExit;
  787. }
  789. UnlockExit:
  790. //
  791. // Unlock access to this object.
  792. //
  793. m_Lock.Unlock();
  795. DebugTrace("Leaving CCertificateStatus::CertificatePolicies().\n");
  797. return hr;
  799. ErrorExit:
  800. //
  801. // Sanity check.
  802. //
  803. ATLASSERT(FAILED(hr));
  805. ReportError(hr);
  807. goto UnlockExit;
  808. }
  810. /*++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  812. Function : CCertificateStatus::ApplicationPolicies
  814. Synopsis : Return the application policies OIDs collection for which this
  815. chain is valid.
  817. Parameter: IOID ** pVal - Pointer to pointer to IOIDs to receive the
  818. interface pointer.
  820. Remark :
  822. ------------------------------------------------------------------------------*/
  824. STDMETHODIMP CCertificateStatus::ApplicationPolicies (IOIDs ** pVal)
  825. {
  826. HRESULT hr = S_OK;
  828. DebugTrace("Entering CCertificateStatus::ApplicationPolicies().\n");
  830. try
  831. {
  832. //
  833. // Lock access to this object.
  834. //
  835. m_Lock.Lock();
  837. //
  838. // Check parameters.
  839. //
  840. if (NULL == pVal)
  841. {
  842. hr = E_INVALIDARG;
  844. DebugTrace("Error [%#x]: Parameter pVal is NULL.\n", hr);
  845. goto ErrorExit;
  846. }
  848. //
  849. // Sanity check.
  850. //
  851. ATLASSERT(m_pIApplicationPolicies);
  853. //
  854. // Return interface pointer to user.
  855. //
  856. if (FAILED(hr = m_pIApplicationPolicies->QueryInterface(pVal)))
  857. {
  858. DebugTrace("Error [%#x]: m_pIApplicationPolicies->QueryInterface() failed.\n", hr);
  859. goto ErrorExit;
  860. }
  861. }
  863. catch(...)
  864. {
  865. hr = E_POINTER;
  867. DebugTrace("Exception: invalid parameter.\n");
  868. goto ErrorExit;
  869. }
  871. UnlockExit:
  872. //
  873. // Unlock access to this object.
  874. //
  875. m_Lock.Unlock();
  877. DebugTrace("Leaving CCertificateStatus::ApplicationPolicies().\n");
  879. return hr;
  881. ErrorExit:
  882. //
  883. // Sanity check.
  884. //
  885. ATLASSERT(FAILED(hr));
  887. ReportError(hr);
  889. goto UnlockExit;
  890. }
  892. ////////////////////////////////////////////////////////////////////////////////
  893. //
  894. // Private methods.
  895. //
  897. /*++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  899. Function : CCertificateStatus::Init
  901. Synopsis : Initialize the object.
  903. Parameter: PCCERT_CONTEXT pCertContext - Pointer to CERT_CONTEXT.
  905. Remark : This method is not part of the COM interface (it is a normal C++
  906. member function). We need it to initialize the object created
  907. internally by us with CERT_CONTEXT.
  909. Since it is only a normal C++ member function, this function can
  910. only be called from a C++ class pointer, not an interface pointer.
  912. ------------------------------------------------------------------------------*/
  914. STDMETHODIMP CCertificateStatus::Init (PCCERT_CONTEXT pCertContext)
  915. {
  916. HRESULT hr = S_OK;
  917. CERT_ENHKEY_USAGE eku = {0, NULL};
  919. DebugTrace("Entering CCertificateStatus::Init().\n");
  921. //
  922. // Sanity check.
  923. //
  924. ATLASSERT(pCertContext);
  926. //
  927. // Set default check flags.
  928. //
  929. m_CheckFlag = DEFAULT_CHECK_FLAGS;
  931. //
  932. // Create the EKU object (default no EKU check).
  933. //
  934. if (FAILED(hr = ::CreateEKUObject(NULL, &m_pIEKU)))
  935. {
  936. DebugTrace("Error [%#x]: CreateEKUObject() failed.\n", hr);
  937. goto CommonExit;
  938. }
  940. //
  941. // Create the OIDs collection for certificate policies.
  942. //
  943. if (FAILED(hr = ::CreateOIDsObject(&eku, TRUE, &m_pICertificatePolicies)))
  944. {
  945. DebugTrace("Error [%#x]: CreateOIDsObject() failed.\n", hr);
  946. goto CommonExit;
  947. }
  949. //
  950. // Create the OIDs collection for application policies.
  951. //
  952. if (FAILED(hr = ::CreateOIDsObject(&eku, FALSE, &m_pIApplicationPolicies)))
  953. {
  954. DebugTrace("Error [%#x]: CreateOIDsObject() failed.\n", hr);
  955. goto CommonExit;
  956. }
  958. //
  959. // Save cert context.
  960. //
  961. if (!(m_pCertContext = ::CertDuplicateCertificateContext(pCertContext)))
  962. {
  963. hr = HRESULT_FROM_WIN32(::GetLastError());
  964. DebugTrace("Error [%#x]: CertDuplicateCertificateContext() failed.\n", hr);
  965. }
  967. m_VerificationTime = (DATE) 0;
  968. m_dwUrlRetrievalTimeout = 0;
  970. CommonExit:
  972. DebugTrace("Leaving CCertificateStatus::Init().\n");
  974. return hr;
  975. }