wininet: Let CertVerifyCertificateChainPolicy handle certain security flags.

commit: 9f6cd2663e53f3617656a5462fdae7a78e3975c3 [log] [tgz]
author: Juan Lang <juan.lang@gmail.com> Wed Sep 29 14:19:23 2010 -0700
committer: Alexandre Julliard <julliard@winehq.org> Fri Oct 01 15:20:27 2010 +0200
tree: 572cc80a90dcae1f359751c4c33fac4b7b26b869
parent: 15c1670a5cdfa6660ff284f3a875e44c75d74881 [diff]
diff --git a/dlls/wininet/netconnection.c b/dlls/wininet/netconnection.c
index e06a253..004b213 100644
--- a/dlls/wininet/netconnection.c
+++ b/dlls/wininet/netconnection.c

@@ -282,6 +282,7 @@
             sslExtraPolicyPara.u.cbSize = sizeof(sslExtraPolicyPara);
             sslExtraPolicyPara.dwAuthType = AUTHTYPE_SERVER;
             sslExtraPolicyPara.pwszServerName = server;
+            sslExtraPolicyPara.fdwChecks = security_flags;
             policyPara.cbSize = sizeof(policyPara);
             policyPara.dwFlags = 0;
             policyPara.pvExtraPolicyPara = &sslExtraPolicyPara;
@@ -293,11 +294,7 @@
             if (ret && policyStatus.dwError)
             {
                 if (policyStatus.dwError == CERT_E_CN_NO_MATCH)
-                {
-                    if (!(security_flags &
-                          SECURITY_FLAG_IGNORE_CERT_CN_INVALID))
-                        err = ERROR_INTERNET_SEC_CERT_CN_INVALID;
-                }
+                    err = ERROR_INTERNET_SEC_CERT_CN_INVALID;
                 else
                     err = ERROR_INTERNET_SEC_INVALID_CERT;
             }
commit	9f6cd2663e53f3617656a5462fdae7a78e3975c3	[log] [tgz]
author	Juan Lang <juan.lang@gmail.com>	Wed Sep 29 14:19:23 2010 -0700
committer	Alexandre Julliard <julliard@winehq.org>	Fri Oct 01 15:20:27 2010 +0200
tree	572cc80a90dcae1f359751c4c33fac4b7b26b869
parent	15c1670a5cdfa6660ff284f3a875e44c75d74881 [diff]