From 44928c6e006e0263bcb54472d6cae2794e75da67 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Remko=20Tron=C3=A7on?= <git@el-tramo.be>
Date: Mon, 30 Apr 2012 23:05:54 +0200
Subject: Revert "* Added additional cert store to chain validation. * Turned
 off revocation checking."

This reverts commit e33b7a309e0424450ab00bc6180df95c6c049195.

diff --git a/Swiften/TLS/Schannel/SchannelContext.cpp b/Swiften/TLS/Schannel/SchannelContext.cpp
index 2f2f2ae..13b57b4 100644
--- a/Swiften/TLS/Schannel/SchannelContext.cpp
+++ b/Swiften/TLS/Schannel/SchannelContext.cpp
@@ -192,9 +192,7 @@ SECURITY_STATUS SchannelContext::validateServerCertificate() {
 	chainParams.RequestedUsage.Usage.cUsageIdentifier = ARRAYSIZE(usage);
 	chainParams.RequestedUsage.Usage.rgpszUsageIdentifier = const_cast<LPSTR*>(usage);
 
-	// NOTE: We've turned off revocation checking due to some certificate providers causing timeouts when attempting
-	// to talk to their revocation server, such as Starfield)
-	DWORD chainFlags = CERT_CHAIN_CACHE_END_CERT /*| CERT_CHAIN_REVOCATION_CHECK_CHAIN_EXCLUDE_ROOT*/;
+	DWORD chainFlags = CERT_CHAIN_CACHE_END_CERT | CERT_CHAIN_REVOCATION_CHECK_CHAIN_EXCLUDE_ROOT;
 
 	ScopedCertChainContext pChainContext;
 
@@ -202,7 +200,7 @@ SECURITY_STATUS SchannelContext::validateServerCertificate() {
 		NULL, // Use the chain engine for the current user (assumes a user is logged in)
 		pServerCert->getCertContext(),
 		NULL,
-		pServerCert->getCertContext()->hCertStore,
+		NULL,
 		&chainParams,
 		chainFlags,
 		NULL,
-- 
cgit v0.10.2-6-g49f6