Commit Graph

88 Commits

Author SHA1 Message Date
Jacek Caban 59bcbb2d8b wininet: Fixed race in SSL connection handling. 2011-01-20 12:19:30 +01:00
David Hedberg 3ce9304592 wininet: Respect SECURITY_FLAG_IGNORE_CERT_DATE_INVALID. 2010-12-20 12:47:39 +01:00
Juan Lang c2b42758da wininet: Verify revocation status of certificate chain. 2010-11-16 11:44:11 +01:00
Andrew Nguyen 7591563885 wininet: Fix misleading OpenSSL version number check. 2010-10-25 14:33:23 +02:00
Andrew Nguyen b20e111088 wininet: Fix const qualifier warning when compiling with OpenSSL 1.0.0. 2010-10-25 14:33:12 +02:00
Alexandre Julliard 0cc9c52f8c wininet: Load X509_STORE_CTX_get_ex_data from libcrypto not libssl. 2010-10-08 19:15:45 +02:00
Juan Lang 887aeb6a09 wininet: Support querying the cipher strength of an SSL connection. 2010-10-01 15:20:49 +02:00
Juan Lang 9f6cd2663e wininet: Let CertVerifyCertificateChainPolicy handle certain security flags. 2010-10-01 15:20:27 +02:00
Juan Lang 6808c1c684 wininet: Remove unneeded error message. 2010-09-30 11:14:31 +02:00
Juan Lang 44112c367f wininet: Honor security flags when verifying certificates. 2010-09-30 11:14:16 +02:00
Juan Lang 98dbdadcda wininet: Don't call SSL_connect until initialization is complete. 2010-09-30 11:14:01 +02:00
Juan Lang 181a367a1f wininet: Don't retrieve a certificate that isn't used. 2010-09-30 11:13:55 +02:00
Juan Lang ce0164c3f7 wininet: Store WININET_NETCONNECTION * in SSL context. 2010-09-30 11:13:35 +02:00
Juan Lang 3e51313e37 wininet: Don't make use of OpenSSL's security checks, as crypt32 also verifies certificate chain. 2010-09-30 11:13:12 +02:00
Uwe Bonnes 53391a3445 wininet: Add const qualifier after openssl version check. 2010-08-02 17:39:20 +02:00
Piotr Caban ee68473fe5 wininet: Reconnect if persistent connection was closed by server. 2010-06-29 15:20:56 +02:00
Piotr Caban 8dde5c5168 wininet: Combine certificate errors in HTTP_OpenConnection. 2010-05-19 15:01:00 +02:00
Piotr Caban c6097cafdd wininet: Deal with reading over the end in NETCON_recv. 2010-05-17 13:20:22 +02:00
Hans Leidekker 8858fc9b66 wininet: Don't call libcrypto function after closing the library.
Spotted by Paul Vriens.
2010-02-08 17:14:44 +01:00
Alexandre Julliard 5ded71ff43 wininet: Fix pointer cast warnings on 64-bit. 2009-12-24 12:15:40 +01:00
Juan Lang 09246aa1a7 wininet: Set error and fail if a secure connection's certificate couldn't be verified. 2009-12-16 12:20:26 +01:00
Juan Lang bd5c5953f3 wininet: Return error directly from netconn_verify_cert. 2009-12-16 12:20:21 +01:00
Juan Lang 03fe473ad7 wininet: Check the certificate in an https connection using the crypto api. 2009-12-14 12:06:04 +01:00
Juan Lang 6217326a09 wininet: Set callback to verify hostname with peer's certificate. 2009-12-14 12:05:52 +01:00
Juan Lang 880133d248 wininet: Store hostname for secure connection in its SSL context. 2009-12-14 12:05:45 +01:00
Juan Lang 1350e9d1c0 wininet: Free OpenSSL error strings at unload. 2009-12-14 12:05:37 +01:00
Juan Lang 33e68268a4 wininet: Don't unnecessarily convert hostname to ANSI to check it. 2009-12-14 12:05:31 +01:00
Jacek Caban b01d58428b wininet: Directly return error status from NETCON_init. 2009-12-01 12:58:58 +01:00
Jacek Caban 358e7b7c8a wininet: Directly return error status from NETCON_recv. 2009-12-01 12:58:34 +01:00
Jacek Caban c55d0a8516 wininet: Directly return error status from NETCON_close. 2009-11-30 12:48:46 +01:00
Jacek Caban 1ee3ad476e wininet: Directly return error status from WriteFile implementations. 2009-11-30 12:48:33 +01:00
Jacek Caban b77868cbfd wininet: Dorectly return error status from NETCON_secure_connect and NETCON_send. 2009-11-30 12:48:27 +01:00
Jacek Caban bf1da4c857 wininet: Directly return error status from NETCON_connect. 2009-11-30 12:48:20 +01:00
Jacek Caban cff77d602c wininet: Directly return error status from NETCON_create. 2009-11-30 12:48:09 +01:00
Hans Leidekker 248939d358 wininet: Clean up locks after closing libssl and libcrypto.
Found by valgrind.
2009-10-27 10:53:32 +01:00
Juan Lang 3c98992f55 wininet: Set callbacks needed by OpenSSL for multithreaded use. 2009-10-02 17:12:13 +02:00
Juan Lang 41592569fd wininet: Unload OpenSSL when unloading wininet. 2009-10-02 17:11:49 +02:00
Juan Lang a001ed7686 wininet: Protect OpenSSL initialization with critical section. 2009-10-01 13:59:12 +02:00
Juan Lang 5c6f47f7a7 wininet: Move initialization of SSL_CTX to library initialization time. 2009-10-01 13:59:03 +02:00
Alexandre Julliard d1de5f37d0 wininet: Get rid of the SSL-specific read-ahead buffer. 2009-05-14 16:55:29 +02:00
Hans Leidekker a7b70911b3 winhttp, wininet: Load i2d_X509 from libcrypto.so. 2009-03-05 13:26:11 +01:00
Aric Stewart 32c3cf1db7 wininet: use debugstr_a in NETCON_getNextLine TRACE to avoid overflow on long lines. 2009-02-16 15:35:14 +01:00
Jacek Caban 4a43c308b5 wininet: Use SSL_pending in NETCON_query_data_available. 2009-01-12 13:01:25 +01:00
Jacek Caban 5bf719690a wininet: Improve NETCON_recv over SSL implementation.
Current implementation uses only peek buffer if there is any data,
which causes reads one byte per call in common
InternetQueryDataAvailable/InternetReadFile scenario.
2009-01-12 13:01:20 +01:00
Alexandre Julliard 82280618db wininet: Include ws2tcpip.h before anything else for the Windows build. 2008-12-09 11:33:25 +01:00
Francois Gouget c1b2008d0c wininet & winhttp: Fix a pointer type mismatch warning when compiling on Windows. On Windows setsockopt() expects a char* while on Unix it accepts anything. 2008-12-08 12:05:57 +01:00
Michael Stefaniuc 61d77284ae wininet: Remove duplicated header includes. 2008-10-16 11:28:08 +02:00
Alexandre Julliard 220bc61c21 Include sys/filio.h to get the FIONREAD definition on Solaris. 2008-08-26 20:40:57 +02:00
Alexandre Julliard 9bded7bb2a wininet: Avoid testing errno when it isn't set. Simplify NETCON_getNextLine a bit. 2008-08-26 20:40:09 +02:00
Alexandre Julliard 7c61679989 wininet: Include openssl/ssl.h before Windows headers. 2008-06-02 12:14:37 +02:00