Edit

AUTHENTICODE_TS_EXTRA_CERT_CHAIN_POLICY_PARA structure (wincrypt.h)

  • Article

The AUTHENTICODE_TS_EXTRA_CERT_CHAIN_POLICY_PARA structure contains time stamp policy information that can be used in certificate chain verification of files.

Syntax

typedef struct _AUTHENTICODE_TS_EXTRA_CERT_CHAIN_POLICY_PARA {
  DWORD cbSize;
  DWORD dwRegPolicySettings;
  BOOL  fCommercial;
} AUTHENTICODE_TS_EXTRA_CERT_CHAIN_POLICY_PARA, *PAUTHENTICODE_TS_EXTRA_CERT_CHAIN_POLICY_PARA;

Members

cbSize

The size, in bytes, of this structure.

dwRegPolicySettings

Flag set during installation that can be modified by a user. The SetReg tool found in the Authenticode Tool Pack can be used to select or cancel the selection of each value. Flag values can be combined using a bitwise-OR operation.

Value Meaning
WTPF_TRUSTTEST
 Trust any "TEST" certificate.
WTPF_TESTCANBEVALID
 Check any "TEST" certificate for validity.
WTPF_IGNOREEXPIRATION
 Use expiration date.
WTPF_IGNOREREVOKATION
 Do revocation check.
WTPF_OFFLINEOK_IND
 If the source is offline, trust any individual certificates.
WTPF_OFFLINEOK_COM
 If the source is offline, trust any commercial certificates.
WTPF_OFFLINEOKNBU_IND
 If the source is offline, trust any individual certificates. Do not use UI.
WTPF_OFFLINEOKNBU_COM
 If the source is offline, trust any commercial certificates. Do not use checking UI.
WTPF_VERIFY_V1_OFF
 Turn off verification of v1 certificates.
WTPF_IGNOREREVOCATIONONTS
 Ignore time stamp revocation checks.
WTPF_ALLOWONLYPERTRUST
 Allow only items in personal trust database.

fCommercial

BOOL flag. If TRUE, a signer has been verified by a certification authority (CA) as meeting certain minimum financial standards.

Requirements

Requirement Value
Minimum supported client Windows XP [desktop apps only]
Minimum supported server Windows Server 2003 [desktop apps only]
Header wincrypt.h