Revert "schannel: when importing PFX, disable key persistence"

This reverts commit 70d010d285. Due to further reports in #9300 that indicate this commit might introduce problems.
2025-01-18 14:04:30 +08:00 · 2022-08-29 08:16:16 +02:00 · 2022-08-29 08:16:16 +02:00 · aec8d30624
commit aec8d30624
parent 7632c0d25a
1 changed files with 1 additions and 11 deletions
--- a/lib/vtls/schannel.c
+++ b/lib/vtls/schannel.c
@ -186,10 +186,6 @@
 #define ALG_CLASS_DHASH ALG_CLASS_HASH
 #endif

-#ifndef PKCS12_NO_PERSIST_KEY
-#define PKCS12_NO_PERSIST_KEY 0x00008000
-#endif
-
 static Curl_recv schannel_recv;
 static Curl_send schannel_send;

@ -680,13 +676,7 @@ schannel_acquire_credential_handle(struct Curl_easy *data,
        else
          pszPassword[0] = 0;

-        if(curlx_verify_windows_version(6, 0, 0, PLATFORM_WINNT,
-                                        VERSION_GREATER_THAN_EQUAL))
-          cert_store = PFXImportCertStore(&datablob, pszPassword,
-                                          PKCS12_NO_PERSIST_KEY);
-        else
-          cert_store = PFXImportCertStore(&datablob, pszPassword, 0);
-
+        cert_store = PFXImportCertStore(&datablob, pszPassword, 0);
        free(pszPassword);
      }
      if(!blob)