1// Copyright 2014 The Chromium Authors. All rights reserved. 2// Use of this source code is governed by a BSD-style license that can be 3// found in the LICENSE file. 4 5// This is the list of CertStatus flags and their values. 6// 7// Defines the values using a macro CERT_STATUS_FLAG, 8// so it can be expanded differently in some places 9 10// The possible status bits for CertStatus. 11// Bits 0 to 15 are for errors. 12CERT_STATUS_FLAG(COMMON_NAME_INVALID, 1 << 0) 13CERT_STATUS_FLAG(DATE_INVALID, 1 << 1) 14CERT_STATUS_FLAG(AUTHORITY_INVALID, 1 << 2) 15// 1 << 3 is reserved for ERR_CERT_CONTAINS_ERRORS (not useful with WinHTTP). 16CERT_STATUS_FLAG(NO_REVOCATION_MECHANISM, 1 << 4) 17CERT_STATUS_FLAG(UNABLE_TO_CHECK_REVOCATION, 1 << 5) 18CERT_STATUS_FLAG(REVOKED, 1 << 6) 19CERT_STATUS_FLAG(INVALID, 1 << 7) 20CERT_STATUS_FLAG(WEAK_SIGNATURE_ALGORITHM, 1 << 8) 21// 1 << 9 was used for CERT_STATUS_NOT_IN_DNS 22CERT_STATUS_FLAG(NON_UNIQUE_NAME, 1 << 10) 23CERT_STATUS_FLAG(WEAK_KEY, 1 << 11) 24// 1 << 12 was used for CERT_STATUS_WEAK_DH_KEY 25CERT_STATUS_FLAG(PINNED_KEY_MISSING, 1 << 13) 26CERT_STATUS_FLAG(NAME_CONSTRAINT_VIOLATION, 1 << 14) 27 28// Bits 16 to 31 are for non-error statuses. 29CERT_STATUS_FLAG(IS_EV, 1 << 16) 30CERT_STATUS_FLAG(REV_CHECKING_ENABLED, 1 << 17) 31// Bit 18 was CERT_STATUS_IS_DNSSEC 32CERT_STATUS_FLAG(SHA1_SIGNATURE_PRESENT, 1 << 19) 33