CERT_TRUST_STATUS Structure (Windows)

MSDN Home

MSDN
MSDN Library
Win32 and COM Development
Security
Cryptography
Cryptography Reference
Cryptography Structures

Cryptography Structures

AUTHENTICODE_EXTRA_CERT_CHAIN_ ...
AUTHENTICODE_EXTRA_CERT_CHAIN_ ...
AUTHENTICODE_TS_EXTRA_CERT_CHA ...
CATALOG_INFO
CERT_ACCESS_DESCRIPTION
CERT_ALT_NAME_ENTRY
CERT_ALT_NAME_INFO
CERT_AUTHORITY_INFO_ACCESS
CERT_AUTHORITY_KEY_ID_INFO
CERT_AUTHORITY_KEY_ID2_INFO
CERT_BASIC_CONSTRAINTS_INFO
CERT_BASIC_CONSTRAINTS2_INFO
CERT_BIOMETRIC_DATA
CERT_BIOMETRIC_EXT_INFO
CERT_CHAIN_CONTEXT
CERT_CHAIN_ELEMENT
CERT_CHAIN_ENGINE_CONFIG
CERT_CHAIN_FIND_BY_ISSUER_PARA
CERT_CHAIN_PARA
CERT_CHAIN_POLICY_PARA
CERT_CHAIN_POLICY_STATUS
CERT_CONTEXT
CERT_CREATE_CONTEXT_PARA
CERT_CRL_CONTEXT_PAIR
CERT_DH_PARAMETERS
CERT_DSS_PARAMETERS
CERT_ECC_SIGNATURE
CERT_EXTENSION
CERT_EXTENSIONS
CERT_GENERAL_SUBTREE
CERT_HASHED_URL
CERT_ID
CERT_INFO
CERT_ISSUER_SERIAL_NUMBER
CERT_KEY_ATTRIBUTES_INFO
CERT_KEY_CONTEXT
CERT_KEY_USAGE_RESTRICTION_INF ...
CERT_KEYGEN_REQUEST_INFO
CERT_LDAP_STORE_OPENED_PARA
CERT_LOGOTYPE_AUDIO
CERT_LOGOTYPE_AUDIO_INFO
CERT_LOGOTYPE_DATA
CERT_LOGOTYPE_DETAILS
CERT_LOGOTYPE_EXT_INFO
CERT_LOGOTYPE_IMAGE
CERT_LOGOTYPE_IMAGE_INFO
CERT_LOGOTYPE_INFO
CERT_LOGOTYPE_REFERENCE
CERT_NAME_CONSTRAINTS_INFO
CERT_NAME_INFO
CERT_NAME_VALUE
CERT_OR_CRL_BLOB
CERT_OR_CRL_BUNDLE
CERT_OTHER_LOGOTYPE_INFO
CERT_PAIR
CERT_PHYSICAL_STORE_INFO
CERT_POLICIES_INFO
CERT_POLICY_CONSTRAINTS_INFO
CERT_POLICY_ID
CERT_POLICY_INFO
CERT_POLICY_MAPPING
CERT_POLICY_MAPPINGS_INFO
CERT_POLICY_QUALIFIER_INFO
CERT_PRIVATE_KEY_VALIDITY
CERT_PUBLIC_KEY_INFO
CERT_QC_STATEMENT
CERT_QC_STATEMENTS_EXT_INFO
CERT_RDN
CERT_RDN_ATTR
CERT_REQUEST_INFO
CERT_REVOCATION_CHAIN_PARA
CERT_REVOCATION_CRL_INFO
CERT_REVOCATION_INFO
CERT_REVOCATION_PARA
CERT_REVOCATION_STATUS
CERT_SELECT_CHAIN_PARA
CERT_SELECT_CRITERIA
CERT_SELECT_STRUCT
CERT_SERVER_OCSP_RESPONSE_CONT ...
CERT_SIGNED_CONTENT_INFO
CERT_SIMPLE_CHAIN
CERT_STORE_PROV_FIND_INFO
CERT_STORE_PROV_INFO
CERT_SYSTEM_STORE_INFO
CERT_SYSTEM_STORE_RELOCATE_PAR ...
CERT_TEMPLATE_EXT
CERT_TRUST_LIST_INFO
CERT_TRUST_STATUS
CERT_USAGE_MATCH
CERT_VIEWPROPERTIES_STRUCT
CERT_X942_DH_PARAMETERS
CERT_X942_DH_VALIDATION_PARAMS
CMC_ADD_ATTRIBUTES_INFO
CMC_ADD_EXTENSIONS_INFO
CMC_DATA_INFO
CMC_PEND_INFO
CMC_RESPONSE_INFO
CMC_STATUS_INFO
CMC_TAGGED_ATTRIBUTE
CMC_TAGGED_CERT_REQUEST
CMC_TAGGED_CONTENT_INFO
CMC_TAGGED_OTHER_MSG
CMC_TAGGED_REQUEST
CMS_DH_KEY_INFO
CMS_KEY_INFO
CMSG_CMS_RECIPIENT_INFO
CMSG_CMS_SIGNER_INFO
CMSG_CNG_CONTENT_DECRYPT_INFO
CMSG_CONTENT_ENCRYPT_INFO
CMSG_CTRL_ADD_SIGNER_UNAUTH_AT ...
CMSG_CTRL_DECRYPT_PARA
CMSG_CTRL_DEL_SIGNER_UNAUTH_AT ...
CMSG_CTRL_KEY_AGREE_DECRYPT_PA ...
CMSG_CTRL_KEY_TRANS_DECRYPT_PA ...
CMSG_CTRL_MAIL_LIST_DECRYPT_PA ...
CMSG_CTRL_VERIFY_SIGNATURE_EX_ ...
CMSG_ENVELOPED_ENCODE_INFO
CMSG_HASHED_ENCODE_INFO
CMSG_KEY_AGREE_ENCRYPT_INFO
CMSG_KEY_AGREE_KEY_ENCRYPT_INF ...
CMSG_KEY_AGREE_RECIPIENT_ENCOD ...
CMSG_KEY_AGREE_RECIPIENT_INFO
CMSG_KEY_TRANS_ENCRYPT_INFO
CMSG_KEY_TRANS_RECIPIENT_ENCOD ...
CMSG_KEY_TRANS_RECIPIENT_INFO
CMSG_MAIL_LIST_ENCRYPT_INFO
CMSG_MAIL_LIST_RECIPIENT_ENCOD ...
CMSG_MAIL_LIST_RECIPIENT_INFO
CMSG_RC2_AUX_INFO
CMSG_RC4_AUX_INFO
CMSG_RECIPIENT_ENCODE_INFO
CMSG_RECIPIENT_ENCRYPTED_KEY_E ...
CMSG_RECIPIENT_ENCRYPTED_KEY_I ...
CMSG_SIGNED_ENCODE_INFO
CMSG_SIGNER_ENCODE_INFO
CMSG_SIGNER_INFO
CMSG_SP3_COMPATIBLE_AUX_INFO
CMSG_STREAM_INFO
CRL_CONTEXT
CRL_DIST_POINT
CRL_DIST_POINT_NAME
CRL_DIST_POINTS_INFO
CRL_ENTRY
CRL_FIND_ISSUED_FOR_PARA
CRL_INFO
CRL_ISSUING_DIST_POINT
CROSS_CERT_DIST_POINTS_INFO
CRYPT_AES_128_KEY_STATE
CRYPT_AES_256_KEY_STATE
CRYPT_ALGORITHM_IDENTIFIER
CRYPT_ATTRIBUTE
CRYPT_ATTRIBUTE_TYPE_VALUE
CRYPT_ATTRIBUTES
CRYPT_BIT_BLOB
CRYPT_BLOB_ARRAY
CRYPT_CONTENT_INFO
CRYPT_CONTENT_INFO_SEQUENCE_OF ...
CRYPT_CREDENTIALS
CRYPT_DECODE_PARA
CRYPT_DECRYPT_MESSAGE_PARA
CRYPT_DEFAULT_CONTEXT_MULTI_OI ...
CRYPT_ECC_CMS_SHARED_INFO
CRYPT_ENCODE_PARA
CRYPT_ENCRYPT_MESSAGE_PARA
CRYPT_ENCRYPTED_PRIVATE_KEY_IN ...
CRYPT_ENROLLMENT_NAME_VALUE_PA ...
CRYPT_GET_TIME_VALID_OBJECT_EX ...
CRYPT_HASH_MESSAGE_PARA
CRYPT_INTEGER_BLOB
CRYPT_KEY_LIMITS
CRYPT_KEY_PROV_INFO
CRYPT_KEY_PROV_PARAM
CRYPT_KEY_SIGN_MESSAGE_PARA
CRYPT_KEY_VERIFY_MESSAGE_PARA
CRYPT_MASK_GEN_ALGORITHM
CRYPT_OID_FUNC_ENTRY
CRYPT_OID_INFO
CRYPT_PASSWORD_CREDENTIALS
CRYPT_PKCS8_EXPORT_PARAMS
CRYPT_PKCS8_IMPORT_PARAMS
CRYPT_PKCS12_PBE_PARAMS
CRYPT_PRIVATE_KEY_INFO
CRYPT_PROVIDER_CERT
CRYPT_PROVIDER_DATA
CRYPT_PROVIDER_FUNCTIONS
CRYPT_PROVIDER_PRIVDATA
CRYPT_PROVIDER_SGNR
CRYPT_PROVUI_DATA
CRYPT_PROVUI_FUNCS
CRYPT_PSOURCE_ALGORITHM
CRYPT_RC2_CBC_PARAMETERS
CRYPT_REGISTER_ACTIONID
CRYPT_RETRIEVE_AUX_INFO
CRYPT_RSA_SSA_PSS_PARAMETERS
CRYPT_RSAES_OAEP_PARAMETERS
CRYPT_SEQUENCE_OF_ANY
CRYPT_SIGN_MESSAGE_PARA
CRYPT_SMART_CARD_ROOT_INFO
CRYPT_SMIME_CAPABILITIES
CRYPT_SMIME_CAPABILITY
CRYPT_TIME_STAMP_REQUEST_INFO
CRYPT_TIMESTAMP_ACCURACY
CRYPT_TIMESTAMP_CONTEXT
CRYPT_TIMESTAMP_INFO
CRYPT_TIMESTAMP_PARA
CRYPT_TIMESTAMP_REQUEST
CRYPT_TIMESTAMP_RESPONSE
CRYPT_TRUST_REG_ENTRY
CRYPT_URL_INFO
CRYPT_VERIFY_MESSAGE_PARA
CRYPT_X942_OTHER_INFO
CRYPT_XML_ALGORITHM
CRYPT_XML_ALGORITHM_INFO
CRYPT_XML_BLOB
CRYPT_XML_CRYPTOGRAPHIC_INTERF ...
CRYPT_XML_DATA_PROVIDER
CRYPT_XML_DATA_BLOB
CRYPT_XML_DOC_CTXT
CRYPT_XML_ISSUER_SERIAL
CRYPT_XML_KEY_DSA_KEY_VALUE
CRYPT_XML_KEY_ECDSA_KEY_VALUE
CRYPT_XML_KEY_INFO
CRYPT_XML_KEY_INFO_ITEM
CRYPT_XML_KEY_RSA_KEY_VALUE
CRYPT_XML_KEY_VALUE
CRYPT_XML_KEYINFO_PARAM
CRYPT_XML_OBJECT
CRYPT_XML_PROPERTY
CRYPT_XML_REFERENCE
CRYPT_XML_REFERENCES
CRYPT_XML_SIGNATURE
CRYPT_XML_SIGNED_INFO
CRYPT_XML_STATUS
CRYPT_XML_TRANSFORM_INFO
CRYPT_XML_TRANSFORM_CHAIN_CONF ...
CRYPT_XML_X509DATA
CRYPT_XML_X509DATA_ITEM
CRYPTCATATTRIBUTE
CRYPTCATCDF
CRYPTCATMEMBER
CRYPTCATSTORE
CRYPTNET_URL_CACHE_FLUSH_INFO
CRYPTNET_URL_CACHE_PRE_FETCH_I ...
CRYPTNET_URL_CACHE_RESPONSE_IN ...
CRYPTOAPI_BLOB
CRYPTPROTECT_PROMPTSTRUCT
CRYPTUI_CERT_MGR_STRUCT
CRYPTUI_INITDIALOG_STRUCT
CRYPTUI_SELECTCERTIFICATE_STRU ...
CRYPTUI_VIEWCERTIFICATE_STRUCT
CRYPTUI_VIEWSIGNERINFO_STRUCT
CRYPTUI_WIZ_DIGITAL_SIGN_BLOB_ ...
CRYPTUI_WIZ_DIGITAL_SIGN_CERT_ ...
CRYPTUI_WIZ_DIGITAL_SIGN_CONTE ...
CRYPTUI_WIZ_DIGITAL_SIGN_EXTEN ...
CRYPTUI_WIZ_DIGITAL_SIGN_INFO
CRYPTUI_WIZ_DIGITAL_SIGN_PVK_F ...
CRYPTUI_WIZ_DIGITAL_SIGN_STORE ...
CRYPTUI_WIZ_EXPORT_CERTCONTEXT ...
CRYPTUI_WIZ_EXPORT_INFO
CRYPTUI_WIZ_IMPORT_SRC_INFO
CTL_ANY_SUBJECT_INFO
CTL_CONTEXT
CTL_ENTRY
CTL_FIND_SUBJECT_PARA
CTL_FIND_USAGE_PARA
CTL_INFO
CTL_MODIFY_REQUEST
CTL_USAGE
CTL_USAGE_MATCH
CTL_VERIFY_USAGE_PARA
CTL_VERIFY_USAGE_STATUS
DHPRIVKEY_VER3
DHPUBKEY
DHPUBKEY_VER3
Diffie-Hellman Version 3 Priva ...
Diffie-Hellman Version 3 Publi ...
DSS Version 3 Private Key BLOB ...
DSS Version 3 Public Key BLOBs
DSSPRIVKEY_VER3
DSSPUBKEY
DSSPUBKEY_VER3
DSSSEED
EV_EXTRA_CERT_CHAIN_POLICY_PAR ...
EV_EXTRA_CERT_CHAIN_POLICY_STA ...
HMAC_INFO
KEYSVC_BLOB
KEYSVC_UNICODE_STRING
MS_ADDINFO_FLAT
MS_ADDINFO_CATALOGMEMBER
MS_ADDINFO_BLOB
OCSP_BASIC_RESPONSE_ENTRY
OCSP_BASIC_RESPONSE_INFO
OCSP_BASIC_REVOKED_INFO
OCSP_BASIC_SIGNED_RESPONSE_INF ...
OCSP_CERT_ID
OCSP_REQUEST_ENTRY
OCSP_REQUEST_INFO
OCSP_RESPONSE_INFO
OCSP_SIGNATURE_INFO
OCSP_SIGNED_REQUEST_INFO
PROV_ENUMALGS
PROV_ENUMALGS_EX
PUBLICKEYSTRUC
ROOT_INFO_LUID
RSAPUBKEY
SCHANNEL_ALG
SIGNER_ATTR_AUTHCODE
SIGNER_BLOB_INFO
SIGNER_CERT
SIGNER_CERT_STORE_INFO
SIGNER_CONTEXT
SIGNER_FILE_INFO
SIGNER_PROVIDER_INFO
SIGNER_SIGNATURE_INFO
SIGNER_SPC_CHAIN_INFO
SIGNER_SUBJECT_INFO
SIP_ADD_NEWPROVIDER
SIP_DISPATCH_INFO
SIP_INDIRECT_DATA
SIP_SUBJECTINFO
SSL_EXTRA_CERT_CHAIN_POLICY_PA ...
VTableProvStruc
WINTRUST_BLOB_INFO
WINTRUST_CATALOG_INFO
WINTRUST_CERT_INFO
WINTRUST_DATA
WINTRUST_FILE_INFO
WINTRUST_SGNR_INFO

Switch View :

Classic

Lightweight Beta

ScriptFree

Feedback

CERT_TRUST_STATUS Structure

The CERT_TRUST_STATUS structure contains trust information about a certificate in a certificate chain, summary trust information about a simple chain of certificates, or summary information about an array of simple chains.

Syntax

C++

typedef struct _CERT_TRUST_STATUS {
  DWORD dwErrorStatus;
  DWORD dwInfoStatus;
}CERT_TRUST_STATUS, *PCERT_TRUST_STATUS;

Members

dwErrorStatus

The following error status codes are defined for certificates and chains.

Value	Meaning
CERT_TRUST_NO_ERROR 0x00000000	No error found for this certificate or chain.
CERT_TRUST_IS_NOT_TIME_VALID 0x00000001	This certificate or one of the certificates in the certificate chain is not time valid.
CERT_TRUST_IS_NOT_TIME_NESTED 0x00000002	Certificates in the chain are not properly time nested.
CERT_TRUST_IS_REVOKED 0x00000004	Trust for this certificate or one of the certificates in the certificate chain has been revoked.
CERT_TRUST_IS_NOT_SIGNATURE_VALID 0x00000008	The certificate or one of the certificates in the certificate chain does not have a valid signature.
CERT_TRUST_IS_NOT_VALID_FOR_USAGE 0x00000010	The certificate or certificate chain is not valid for its proposed usage.
CERT_TRUST_IS_UNTRUSTED_ROOT 0x00000020	The certificate or certificate chain is based on an untrusted root.
CERT_TRUST_REVOCATION_STATUS_UNKNOWN 0x00000040	The revocation status of the certificate or one of the certificates in the certificate chain is unknown.
CERT_TRUST_IS_CYCLIC 0x00000080	One of the certificates in the chain was issued by a certification authority that the original certificate had certified.
CERT_TRUST_INVALID_EXTENSION 0x00000100	One of the certificates has an extension that is not valid.
CERT_TRUST_INVALID_POLICY_CONSTRAINTS 0x00000200	The certificate or one of the certificates in the certificate chain has a policy constraints extension, and one of the issued certificates has a disallowed policy mapping extension or does not have a required issuance policies extension.
CERT_TRUST_INVALID_BASIC_CONSTRAINTS 0x00000400	The certificate or one of the certificates in the certificate chain has a basic constraints extension, and either the certificate cannot be used to issue other certificates, or the chain path length has been exceeded.
CERT_TRUST_INVALID_NAME_CONSTRAINTS 0x00000800	The certificate or one of the certificates in the certificate chain has a name constraints extension that is not valid.
CERT_TRUST_HAS_NOT_SUPPORTED_NAME_CONSTRAINT 0x00001000	The certificate or one of the certificates in the certificate chain has a name constraints extension that contains unsupported fields. The minimum and maximum fields are not supported. Thus minimum must always be zero and maximum must always be absent. Only UPN is supported for an Other Name. The following alternative name choices are not supported: X400 Address EDI Party Name Registered Id
CERT_TRUST_HAS_NOT_DEFINED_NAME_CONSTRAINT 0x00002000	The certificate or one of the certificates in the certificate chain has a name constraints extension and a name constraint is missing for one of the name choices in the end certificate.
CERT_TRUST_HAS_NOT_PERMITTED_NAME_CONSTRAINT 0x00004000	The certificate or one of the certificates in the certificate chain has a name constraints extension, and there is not a permitted name constraint for one of the name choices in the end certificate.
CERT_TRUST_HAS_EXCLUDED_NAME_CONSTRAINT 0x00008000	The certificate or one of the certificates in the certificate chain has a name constraints extension, and one of the name choices in the end certificate is explicitly excluded.
CERT_TRUST_IS_OFFLINE_REVOCATION 0x01000000	The revocation status of the certificate or one of the certificates in the certificate chain is either offline or stale.
CERT_TRUST_NO_ISSUANCE_CHAIN_POLICY 0x02000000	The end certificate does not have any resultant issuance policies, and one of the issuing certification authority certificates has a policy constraints extension requiring it.
CERT_TRUST_IS_EXPLICIT_DISTRUST 0x04000000	The certificate is explicitly distrusted. Windows Server 2003, Windows XP, and Windows 2000: This flag is not supported.
CERT_TRUST_HAS_NOT_SUPPORTED_CRITICAL_EXT 0x08000000	The certificate does not support a critical extension. Windows Server 2003, Windows XP, and Windows 2000: This flag is not supported.

The following codes are defined for chains only.

Value	Meaning
CERT_TRUST_IS_PARTIAL_CHAIN 0x00010000	The certificate chain is not complete.
CERT_TRUST_CTL_IS_NOT_TIME_VALID 0x00020000	A certificate trust list (CTL) used to create this chain was not time valid.
CERT_TRUST_CTL_IS_NOT_SIGNATURE_VALID 0x00040000	A CTL used to create this chain did not have a valid signature.
CERT_TRUST_CTL_IS_NOT_VALID_FOR_USAGE 0x00080000	A CTL used to create this chain is not valid for this usage.

dwInfoStatus

The following information status codes are defined.

Value	Meaning
CERT_TRUST_HAS_EXACT_MATCH_ISSUER 0x00000001	An exact match issuer certificate has been found for this certificate. This status code applies to certificates only.
CERT_TRUST_HAS_KEY_MATCH_ISSUER 0x00000002	A key match issuer certificate has been found for this certificate. This status code applies to certificates only.
CERT_TRUST_HAS_NAME_MATCH_ISSUER 0x00000004	A name match issuer certificate has been found for this certificate. This status code applies to certificates only.
CERT_TRUST_IS_SELF_SIGNED 0x00000008	This certificate is self-signed. This status code applies to certificates only.
CERT_TRUST_HAS_PREFERRED_ISSUER 0x00000100	The certificate or chain has a preferred issuer. This status code applies to certificates and chains.
CERT_TRUST_HAS_ISSUANCE_CHAIN_POLICY 0x00000400	An issuance chain policy exists. This status code applies to certificates and chains.
CERT_TRUST_HAS_VALID_NAME_CONSTRAINTS 0x00000400	A valid name constraints for all namespaces, including UPN. This status code applies to certificates and chains.
CERT_TRUST_IS_PEER_TRUSTED 0x00000800	This certificate is peer trusted. This status code applies to certificates only. Windows Server 2003, Windows XP, and Windows 2000: This flag is not supported.
CERT_TRUST_HAS_CRL_VALIDITY_EXTENDED 0x00001000	This certificate's certificate revocation list (CRL) validity has been extended. This status code applies to certificates only. Windows Server 2003, Windows XP, and Windows 2000: This flag is not supported.
CERT_TRUST_IS_FROM_EXCLUSIVE_TRUST_STORE 0x00002000	The certificate was found in either a store pointed to by the hExclusiveRoot or hExclusiveTrustedPeople member of the CERT_CHAIN_ENGINE_CONFIG structure. Windows Server 2008, Windows Vista, Windows Server 2003, Windows XP, and Windows 2000: This flag is not supported.
CERT_TRUST_IS_COMPLEX_CHAIN 0x00010000	The certificate chain created is a complex chain. This status code applies to chains only.

Requirements

Minimum supported client	Windows 2000 Professional
Minimum supported server	Windows 2000 Server
Header	Wincrypt.h

Syntax

Members

Requirements

See Also