CertGetNameString throws heap corruption

Question

CertGetNameString() throws heap corruption error randomly, using the function CertGetNameStringW() does the same

LPCWSTR pszName = (LPCWSTR)malloc(cbSize * sizeof(TCHAR));
if (CertGetNameString( pCurrentCertContext, dwType, dwFlags, nullptr, pszName, cbSize)) {}

Don't mix `LPCWSTR` and `TCHAR`. You may not be compiling with the correct `UNICODE` and `_UNICODE` definitions, which makes `TCHAR` == `char` instead of `wchar_t` and your `malloc` half the expected size. Use `LPCWSTR`, `WCHAR` and `CertGetNameStringW` consistently. — Mark Tolonen, Jun 21 '21 at 16:53

score 0 · Answer 1 · answered Jun 21 '21 at 06:12

0

The code which involves usage of CertGetNameString() cyrpt api requires the code be built using preprocessor directive UNICODE enabled.

answered Jun 21 '21 at 06:12

namus

Or use `CertGetNameStringW` and `WCHAR` explicitly along with `LPCWSTR`. – Mark Tolonen Jun 21 '21 at 16:50

1 Answers1