wininet: Don't continue to connect to a secure server without SSL support since it won't work.

Don't continue to connect to a secure server without SSL support since it won't work. Return an error back to the application instead.
2006-03-06 17:31:09 +00:00 · 2006-03-06 17:31:09 +00:00 · 9981f337e3
parent 8bfc85957a
commit 9981f337e3
3 changed files with 28 additions and 16 deletions
--- a/dlls/wininet/http.c
+++ b/dlls/wininet/http.c
@ -1016,7 +1016,12 @@ HINTERNET WINAPI HTTP_HttpOpenRequestW(LPWININETHTTPSESSIONW lpwhs,
        goto lend;
    }

-    NETCON_init(&lpwhr->netConnection, dwFlags & INTERNET_FLAG_SECURE);
+    if (!NETCON_init(&lpwhr->netConnection, dwFlags & INTERNET_FLAG_SECURE))
+    {
+        InternetCloseHandle( handle );
+        handle = NULL;
+        goto lend;
+    }

    if (NULL != lpszObjectName && strlenW(lpszObjectName)) {
        HRESULT rc;
@ -2077,7 +2082,9 @@ static BOOL HTTP_HandleRedirect(LPWININETHTTPREQW lpwhr, LPCWSTR lpszUrl, LPCWST
                              szaddr, strlen(szaddr)+1);

        NETCON_close(&lpwhr->netConnection);
-        NETCON_init(&lpwhr->netConnection,lpwhr->hdr.dwFlags & INTERNET_FLAG_SECURE);
+
+        if (!NETCON_init(&lpwhr->netConnection,lpwhr->hdr.dwFlags & INTERNET_FLAG_SECURE))
+            return FALSE;
    }

    HeapFree(GetProcessHeap(), 0, lpwhr->lpszPath);
--- a/dlls/wininet/internet.h
+++ b/dlls/wininet/internet.h
@ -468,7 +468,7 @@ VOID INTERNET_SendCallback(LPWININETHANDLEHEADER hdr, DWORD dwContext,
 LPHTTPHEADERW HTTP_GetHeader(LPWININETHTTPREQW lpwhr, LPCWSTR header);

 BOOL NETCON_connected(WININET_NETCONNECTION *connection);
-void NETCON_init(WININET_NETCONNECTION *connnection, BOOL useSSL);
+BOOL NETCON_init(WININET_NETCONNECTION *connnection, BOOL useSSL);
 BOOL NETCON_create(WININET_NETCONNECTION *connection, int domain,
 	      int type, int protocol);
 BOOL NETCON_close(WININET_NETCONNECTION *connection);
--- a/dlls/wininet/netconnection.c
+++ b/dlls/wininet/netconnection.c
@ -111,7 +111,7 @@ MAKE_FUNCPTR(ERR_error_string);

 #endif

-void NETCON_init(WININET_NETCONNECTION *connection, BOOL useSSL)
+BOOL NETCON_init(WININET_NETCONNECTION *connection, BOOL useSSL)
 {
    connection->useSSL = FALSE;
    connection->socketFD = -1;
@ -119,23 +119,23 @@ void NETCON_init(WININET_NETCONNECTION *connection, BOOL useSSL)
    {
 #if defined HAVE_OPENSSL_SSL_H && defined HAVE_OPENSSL_ERR_H
        TRACE("using SSL connection\n");
-	if (OpenSSL_ssl_handle) /* already initilzed everything */
-            return;
+	if (OpenSSL_ssl_handle) /* already initialized everything */
+            return TRUE;
 	OpenSSL_ssl_handle = wine_dlopen(SONAME_LIBSSL, RTLD_NOW, NULL, 0);
 	if (!OpenSSL_ssl_handle)
 	{
 	    ERR("trying to use a SSL connection, but couldn't load %s. Expect trouble.\n",
 		SONAME_LIBSSL);
-            connection->useSSL = FALSE;
-            return;
+            INTERNET_SetLastError(ERROR_INTERNET_SECURITY_CHANNEL_ERROR);
+            return FALSE;
 	}
 	OpenSSL_crypto_handle = wine_dlopen(SONAME_LIBCRYPTO, RTLD_NOW, NULL, 0);
 	if (!OpenSSL_crypto_handle)
 	{
 	    ERR("trying to use a SSL connection, but couldn't load %s. Expect trouble.\n",
 		SONAME_LIBCRYPTO);
-            connection->useSSL = FALSE;
-            return;
+            INTERNET_SetLastError(ERROR_INTERNET_SECURITY_CHANNEL_ERROR);
+            return FALSE;
 	}

        /* mmm nice ugly macroness */
@ -144,8 +144,8 @@ void NETCON_init(WININET_NETCONNECTION *connection, BOOL useSSL)
    if (!p##x) \
    { \
        ERR("failed to load symbol %s\n", #x); \
-        connection->useSSL = FALSE; \
-        return; \
+        INTERNET_SetLastError(ERROR_INTERNET_SECURITY_CHANNEL_ERROR); \
+        return FALSE; \
    }

 	DYNSSL(SSL_library_init);
@ -172,8 +172,8 @@ void NETCON_init(WININET_NETCONNECTION *connection, BOOL useSSL)
    if (!p##x) \
    { \
        ERR("failed to load symbol %s\n", #x); \
-        connection->useSSL = FALSE; \
-        return; \
+        INTERNET_SetLastError(ERROR_INTERNET_SECURITY_CHANNEL_ERROR); \
+        return FALSE; \
    }
 	DYNCRYPTO(BIO_new_fp);
 	DYNCRYPTO(ERR_get_error);
@ -189,9 +189,11 @@ void NETCON_init(WININET_NETCONNECTION *connection, BOOL useSSL)
        connection->peek_msg_mem = NULL;
 #else
 	FIXME("can't use SSL, not compiled in.\n");
-        connection->useSSL = FALSE;
+        INTERNET_SetLastError(ERROR_INTERNET_SECURITY_CHANNEL_ERROR);
+        return FALSE;
 #endif
    }
+    return TRUE;
 }

 BOOL NETCON_connected(WININET_NETCONNECTION *connection)
@ -353,6 +355,7 @@ BOOL NETCON_secure_connect(WININET_NETCONNECTION *connection, LPCWSTR hostname)
    {
        ERR("SSL_CTX_set_default_verify_paths failed: %s\n",
            pERR_error_string(pERR_get_error(), 0));
+        INTERNET_SetLastError(ERROR_OUTOFMEMORY);
        return FALSE;
    }
    connection->ssl_s = pSSL_new(ctx);
@ -360,6 +363,7 @@ BOOL NETCON_secure_connect(WININET_NETCONNECTION *connection, LPCWSTR hostname)
    {
        ERR("SSL_new failed: %s\n",
            pERR_error_string(pERR_get_error(), 0));
+        INTERNET_SetLastError(ERROR_OUTOFMEMORY);
        goto fail;
    }

@ -367,6 +371,7 @@ BOOL NETCON_secure_connect(WININET_NETCONNECTION *connection, LPCWSTR hostname)
    {
        ERR("SSL_set_fd failed: %s\n",
            pERR_error_string(pERR_get_error(), 0));
+        INTERNET_SetLastError(ERROR_INTERNET_SECURITY_CHANNEL_ERROR);
        goto fail;
    }

@ -397,7 +402,7 @@ BOOL NETCON_secure_connect(WININET_NETCONNECTION *connection, LPCWSTR hostname)
    hostname_unix = HeapAlloc(GetProcessHeap(), 0, len);
    if (!hostname_unix)
    {
-        INTERNET_SetLastError(ERROR_NOT_ENOUGH_MEMORY);
+        INTERNET_SetLastError(ERROR_OUTOFMEMORY);
        goto fail;
    }
    WideCharToMultiByte(CP_UNIXCP, 0, hostname, -1, hostname_unix, len, NULL, NULL);