[PATCH v3 0/2] MR10357: winhttp: Implement WINHTTP_OPTION_SERVER_CERT_CHAIN_CONTEXT - Wine-GitLab - list.winehq.org

newer
Re: [PATCH v6 0/1] MR10293: Fix...

[PATCH v3 0/2] MR10357: winhttp: Implement WINHTTP_OPTION_SERVER_CERT_CHAIN_CONTEXT

older
[PATCH 0/1] MR10357: Implement...

Michael Green (＠m-green39)

March 18, 2026

8:47 a.m.

-- v3: winhttp: Use cert directly instead of duplicating https://gitlab.winehq.org/wine/wine/-/merge_requests/10357

Reply

Sign in to reply online Use email software

Show replies by date

Michael Green

March 2026

8:47 a.m.

New subject: [PATCH v3 1/2] winhttp: Implement WINHTTP_OPTION_SERVER_CERT_CHAIN_CONTEXT

From: Michael Green <bsmntoid@gmail.com> --- dlls/winhttp/session.c | 23 +++++++++++++++++++++++ 1 file changed, 23 insertions(+) diff --git a/dlls/winhttp/session.c b/dlls/winhttp/session.c index a3c8bb91010..de34e7c862c 100644 --- a/dlls/winhttp/session.c +++ b/dlls/winhttp/session.c @@ -832,6 +832,29 @@ static BOOL request_query_option( struct object_header *hdr, DWORD option, void *buflen = sizeof(cert); return TRUE; } + case WINHTTP_OPTION_SERVER_CERT_CHAIN_CONTEXT: + { + const CERT_CONTEXT *cert; + const CERT_CHAIN_CONTEXT *cert_chain; + + char oid_server_auth[] = szOID_PKIX_KP_SERVER_AUTH; + char *server_auth[] = { oid_server_auth }; + + CERT_CHAIN_PARA chainPara = { sizeof(chainPara), { 0 } }; + + chainPara.RequestedUsage.Usage.cUsageIdentifier = 1; + chainPara.RequestedUsage.Usage.rgpszUsageIdentifier = server_auth; + + if (!validate_buffer( buffer, buflen, sizeof(cert) )) return FALSE; + if (!(cert = CertDuplicateCertificateContext( request -> server_cert ))) return FALSE; + + if (!CertGetCertificateChain(NULL, cert, NULL, NULL, &chainPara, 0, NULL, &cert_chain)) return FALSE; + + *(CERT_CHAIN_CONTEXT **)buffer = (CERT_CHAIN_CONTEXT *)cert_chain; + *buflen = sizeof(cert_chain); + + return TRUE; + } case WINHTTP_OPTION_SECURITY_CERTIFICATE_STRUCT: { const CERT_CONTEXT *cert = request->server_cert; -- GitLab https://gitlab.winehq.org/wine/wine/-/merge_requests/10357

Reply

Sign in to reply online Use email software

bsmntoid

8:47 a.m.

New subject: [PATCH v3 2/2] winhttp: Use cert directly instead of duplicating

From: bsmntoid <bsmntoid@gmail.com> --- dlls/winhttp/session.c | 6 +----- 1 file changed, 1 insertion(+), 5 deletions(-) diff --git a/dlls/winhttp/session.c b/dlls/winhttp/session.c index de34e7c862c..6e94c252c73 100644 --- a/dlls/winhttp/session.c +++ b/dlls/winhttp/session.c @@ -834,7 +834,6 @@ static BOOL request_query_option( struct object_header *hdr, DWORD option, void } case WINHTTP_OPTION_SERVER_CERT_CHAIN_CONTEXT: { - const CERT_CONTEXT *cert; const CERT_CHAIN_CONTEXT *cert_chain; char oid_server_auth[] = szOID_PKIX_KP_SERVER_AUTH; @@ -845,10 +844,7 @@ static BOOL request_query_option( struct object_header *hdr, DWORD option, void chainPara.RequestedUsage.Usage.cUsageIdentifier = 1; chainPara.RequestedUsage.Usage.rgpszUsageIdentifier = server_auth; - if (!validate_buffer( buffer, buflen, sizeof(cert) )) return FALSE; - if (!(cert = CertDuplicateCertificateContext( request -> server_cert ))) return FALSE; - - if (!CertGetCertificateChain(NULL, cert, NULL, NULL, &chainPara, 0, NULL, &cert_chain)) return FALSE; + if (!CertGetCertificateChain(NULL, request->server_cert, NULL, NULL, &chainPara, 0, NULL, &cert_chain)) return FALSE; *(CERT_CHAIN_CONTEXT **)buffer = (CERT_CHAIN_CONTEXT *)cert_chain; *buflen = sizeof(cert_chain); -- GitLab https://gitlab.winehq.org/wine/wine/-/merge_requests/10357

Reply

Sign in to reply online Use email software

9

Age (days ago)

9

Last active (days ago)

2 comments

3 participants

tags

participants (3)

bsmntoid
Michael Green
Michael Green (＠m-green39)