ReceiveTempSMS
/
Sweden-Number
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

winhttp: Treat a partial certificate chain as having an unknown/invalid CA. 

Wine-Bug: https://bugs.winehq.org/show_bug.cgi?id=46726
Signed-off-by: Brendan Shanks <bshanks@codeweavers.com>
Signed-off-by: Hans Leidekker <hans@codeweavers.com>
Signed-off-by: Alexandre Julliard <julliard@winehq.org>
This commit is contained in:
Brendan Shanks 2020-06-16 13:48:22 -07:00 committed by Alexandre Julliard
parent da91507491
commit aa80ef2050
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
dlls/winhttp/net.c
View File

@ -84,8 +84,10 @@ static DWORD netconn_verify_cert( PCCERT_CONTEXT cert, WCHAR *server, DWORD secu
if (!(security_flags & SECURITY_FLAG_IGNORE_CERT_DATE_INVALID)) if (!(security_flags & SECURITY_FLAG_IGNORE_CERT_DATE_INVALID))
err = ERROR_WINHTTP_SECURE_CERT_DATE_INVALID; err = ERROR_WINHTTP_SECURE_CERT_DATE_INVALID;
} }
else if (chain->TrustStatus.dwErrorStatus & else if ((chain->TrustStatus.dwErrorStatus &
CERT_TRUST_IS_UNTRUSTED_ROOT) CERT_TRUST_IS_UNTRUSTED_ROOT) ||
(chain->TrustStatus.dwErrorStatus &
CERT_TRUST_IS_PARTIAL_CHAIN))
{ {
if (!(security_flags & SECURITY_FLAG_IGNORE_UNKNOWN_CA)) if (!(security_flags & SECURITY_FLAG_IGNORE_UNKNOWN_CA))
err = ERROR_WINHTTP_SECURE_INVALID_CA; err = ERROR_WINHTTP_SECURE_INVALID_CA;