CertCreateCTLEntryFromCertificateContextProperties function (wincrypt.h)
The CertCreateCTLEntryFromCertificateContextProperties function creates a certificate trust list (CTL) entry whose attributes are the properties of the certificate context. The SubjectIdentifier in the CTL entry is the SHA1 hash of the certificate.
The certificate properties are added as attributes. The property attribute OID is the decimal PROP_ID preceded by szOID_CERT_PROP_ID_PREFIX. Each property value is copied as a single attribute value.
Additional attributes can be included in the CTL entry by using the cOptAttr and rgOptAttr parameters.
Syntax
BOOL CertCreateCTLEntryFromCertificateContextProperties(
[in] PCCERT_CONTEXT pCertContext,
[in] DWORD cOptAttr,
[in] PCRYPT_ATTRIBUTE rgOptAttr,
[in] DWORD dwFlags,
[in] void *pvReserved,
[out] PCTL_ENTRY pCtlEntry,
[in, out] DWORD *pcbCtlEntry
);
Parameters
[in] pCertContext
A pointer to the CERT_CONTEXT used to create the CTL.
[in] cOptAttr
A DWORD that specifies the number of additional attributes to be added.
[in] rgOptAttr
A pointer to any array of CRYPT_ATTRIBUTE attributes to be added to the CTL.
[in] dwFlags
A DWORD. Can be set to CTL_ENTRY_FROM_PROP_CHAIN_FLAG to force the inclusion of the chain building hash properties as attributes.
[in] pvReserved
A pointer to a VOID. Reserved for future use.
[out] pCtlEntry
Address of a pointer to a CTL_ENTRY structure. Call this function twice to retrieve a CTL entry. Set this parameter to NULL on the first call. When the function returns, use the number of bytes retrieved from the pcbCtlEntry parameter to allocate memory. Call the function again, setting this parameter to the address of the allocated memory.
[in, out] pcbCtlEntry
Pointer to a DWORD that contains the number of bytes that must be allocated for the CTL_ENTRY structure. Call this function twice to retrieve the number of bytes. For the first call, set this parameter to the address of a DWORD value that contains zero and set the pCtlEntry parameter to NULL. If the first call succeeds, the DWORD value will contain the number of bytes that you must allocate for the CTL_ENTRY structure. Allocate the required memory and call the function again, supplying the address of the memory in the pCtlEntry parameter.
Return value
If the function succeeds, the function returns nonzero (TRUE).
If the function fails, it returns zero (FALSE). For extended error information, call GetLastError.
Requirements
| Requirement | Value |
|---|---|
| Minimum supported client | Windows XP [desktop apps only] |
| Minimum supported server | Windows Server 2003 [desktop apps only] |
| Target Platform | Windows |
| Header | wincrypt.h |
| Library | Crypt32.lib |
| DLL | Crypt32.dll |
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for