From 643f0de422907c471db2c7b56ae43b2ee76bafa8 Mon Sep 17 00:00:00 2001 From: ayeteadoe Date: Thu, 21 Aug 2025 18:27:12 -0700 Subject: [PATCH] RequestServer: Instruct curl to use Windows CA cert store This is required for supporting HTTPS requests. Otherwise we fail with CURLE_PEER_FAILED_VERIFICATION. --- Services/RequestServer/Request.cpp | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/Services/RequestServer/Request.cpp b/Services/RequestServer/Request.cpp index 5eb2828c67..6ce383c365 100644 --- a/Services/RequestServer/Request.cpp +++ b/Services/RequestServer/Request.cpp @@ -350,6 +350,11 @@ void Request::handle_fetch_state() set_option(CURLOPT_CUSTOMREQUEST, m_method.characters()); set_option(CURLOPT_FOLLOWLOCATION, 0); +#if defined(AK_OS_WINDOWS) + // Without explicitly using the OS Native CA cert store on Windows, https requests timeout with CURLE_PEER_FAILED_VERIFICATION + set_option(CURLOPT_SSL_OPTIONS, CURLSSLOPT_NATIVE_CA); +#endif + curl_slist* curl_headers = nullptr; if (m_method.is_one_of("POST"sv, "PUT"sv, "PATCH"sv, "DELETE"sv)) {