Issue 54279 - SecurityEnvironment::verify returns unnessicaryly INVALID
Summary: SecurityEnvironment::verify returns unnessicaryly INVALID
Alias: None
Product: xml
Classification: Code
Component: code (show other issues)
Version: 680m125
Hardware: All Windows XP
: P3 Trivial (vote)
Target Milestone: 4.x
Assignee: AOO issues mailing list
QA Contact:
Keywords: security
Depends on:
Reported: 2005-09-06 17:23 UTC by joachim.lingner
Modified: 2013-02-07 21:57 UTC (History)
1 user (show)

See Also:
Issue Type: DEFECT
Latest Confirmation in: ---
Developer Difficulty: ---


Note You need to log in before you can comment on or make changes to this issue.
Description joachim.lingner 2005-09-06 17:23:37 UTC
The service com::sun::star::xml::crypto::SecurityEnvironment can be used to
verify certificates. Verification of a certificate can return a combination of
these values:


When one examines the certificate in the internet options dialog then the
certificate and its root certificate are displayed as valid.

The reason for this return value is a mapping from the platform dependent error

I suppose that this is the result of a missing Certificate Distribution Point
extension in the certificates. The Windows certificate dialog seems to ignore this.
I propose to change the service so that CERT_TRUST_REVOCATION_STATUS_UNKNOWN 
does not result in returning CertificateValidity::Invalid. So that the calling
application can decide if it regards the certificate as trustworthy.

I've found a good article about the certificate handling in Windows:
Comment 1 malte_timmermann 2005-10-04 17:43:38 UTC
Your task now ;)
Comment 2 malte_timmermann 2005-10-04 17:51:21 UTC
but now...
Comment 3 kai.sommerfeld 2006-02-14 15:01:44 UTC
Comment 4 joachim.lingner 2006-03-21 16:16:24 UTC
Comment 5 kai.sommerfeld 2006-06-15 15:35:45 UTC
Comment 6 joachim.lingner 2008-01-24 10:50:06 UTC
Retargeted to 3.0