← Back to branch summary

~ubuntu-branches/ubuntu/natty/gnupg/natty-security

~ubuntu-branches/ubuntu/natty/gnupg/natty-security

« back to all changes in this revision

Viewing changes to keyserver/gpgkeys_curl.c

Committer: Bazaar Package Importer
Author(s): Michael Bienia
Date: 2010-01-04 20:06:01 UTC
mfrom: (1.1.11 squeeze)
Revision ID: james.westby@ubuntu.com-20100104200601-0rble341i2xns9xw

Tags: 1.4.10-2ubuntu1

https://launchpad.net/bugs/503064

https://launchpad.net/bugs/477818

* Merge from Debian testing (lp: #503064, #477818). Remaining changes:
  - Add 'debian/patches/50_disable_mlock_test.dpatch': Disable mlock() test
    since it fails with ulimit 0 (on buildds).
  - Add 'debian/patches/61_use_agent_default.dpatch': Patch to set gpg
    (or gpg2) and gpgsm to use a passphrase agent by default (lp: 15485)
  - Fix udeb build failure on powerpc, building with -O2 instead of -Os.

files added:
debian/README.BUGS.Debian

debian/gnupg-curl.postrm

debian/gnupg-curl.preinst

debian/gnupg.bug-presubj

debian/gnupg.doc-base.faq

doc/gpg-zip.1

include/estream-printf.h

include/srv.h

keyserver/ksmalloc.c

m4/estream.m4

util/convert.c

util/estream-printf.c

files removed:
debian/gnupg.links

debian/patches/24_gpgv_manpage_cleanup.dpatch

debian/patches/25_de.po_fixes.dpatch

debian/patches/25_fr.po_fixes.dpatch

debian/patches/25_it.po_fixes.dpatch

debian/patches/55_curl_typefix.dpatch

debian/patches/99_yat2m_fix_samp_handling.dpatch

util/srv.h

files modified:
AUTHORS

ChangeLog

Makefile.am

Makefile.in

NEWS

README

VERSION

acinclude.m4

aclocal.m4

checks/Makefile.in

checks/conventional-mdc.test

checks/defs.inc

cipher/ChangeLog

cipher/Makefile.in

cipher/camellia-glue.c

cipher/cipher.c

cipher/idea-stub.c

cipher/rndunix.c

config.h.in

configure

configure.ac

debian/TODO

debian/changelog

debian/compat

debian/control

debian/copyright

debian/gnupg.docs

debian/patches/00list

debian/rules

doc/ChangeLog

doc/Makefile.am

doc/Makefile.in

doc/faq.html

doc/gnupg1.info

doc/gpg.ru.1

doc/gpg.texi

doc/gpgv.texi

doc/opt-homedir.texi

doc/see-also-note.texi

doc/stamp-vti

doc/version.texi

doc/yat2m.c

g10/ChangeLog

g10/Makefile.in

g10/apdu.c

g10/apdu.h

g10/app-common.h

g10/app-openpgp.c

g10/card-util.c

g10/cardglue.c

g10/cardglue.h

g10/ccid-driver.c

g10/ccid-driver.h

g10/compress-bz2.c

g10/compress.c

g10/encode.c

g10/exec.c

g10/getkey.c

g10/gpg.c

g10/gpgv.c

g10/iso7816.c

g10/iso7816.h

g10/keydb.c

g10/keyedit.c

g10/keygen.c

g10/keylist.c

g10/keyring.c

g10/keyserver.c

g10/main.h

g10/mainproc.c

g10/misc.c

g10/options.h

g10/parse-packet.c

g10/passphrase.c

g10/photoid.c

g10/photoid.h

g10/pkclist.c

g10/progress.c

g10/revoke.c

g10/sig-check.c

g10/sign.c

g10/signal.c

g10/skclist.c

g10/tdbio.c

g10/trustdb.c

g10/trustdb.h

gnupg.spec

include/ChangeLog

include/cipher.h

include/compat.h

include/distfiles

include/http.h

include/memory.h

include/ttyio.h

include/types.h

include/util.h

keyserver/ChangeLog

keyserver/Makefile.am

keyserver/Makefile.in

keyserver/curl-shim.c

keyserver/curl-shim.h

keyserver/gpgkeys_curl.c

keyserver/gpgkeys_finger.c

keyserver/gpgkeys_hkp.c

keyserver/gpgkeys_ldap.c

keyserver/gpgkeys_mailto.in

keyserver/ksutil.h

m4/ChangeLog

m4/Makefile.am

m4/Makefile.in

mpi/Makefile.in

po/ChangeLog

po/be.gmo

po/be.po

po/ca.gmo

po/ca.po

po/cs.gmo

po/cs.po

po/da.gmo

po/da.po

po/de.gmo

po/de.po

po/el.gmo

po/el.po

po/en@boldquot.gmo

po/en@boldquot.po

po/en@quot.gmo

po/en@quot.po

po/eo.gmo

po/eo.po

po/es.gmo

po/es.po

po/et.gmo

po/et.po

po/fi.gmo

po/fi.po

po/fr.gmo

po/fr.po

po/gl.gmo

po/gl.po

po/gnupg.pot

po/hu.gmo

po/hu.po

po/id.gmo

po/id.po

po/it.gmo

po/it.po

po/ja.gmo

po/ja.po

po/nb.gmo

po/nb.po

po/nl.gmo

po/nl.po

po/pl.gmo

po/pl.po

po/pt.gmo

po/pt.po

po/pt_BR.gmo

po/pt_BR.po

po/ro.gmo

po/ro.po

po/ru.gmo

po/ru.po

po/sk.gmo

po/sk.po

po/sv.gmo

po/sv.po

po/tr.gmo

po/tr.po

po/zh_CN.gmo

po/zh_CN.po

po/zh_TW.gmo

po/zh_TW.po

scripts/w32installer.nsi

tools/Makefile.in

tools/lspgpot *

tools/mail-signed-keys *

tools/ring-a-party *

util/ChangeLog

util/Makefile.am

util/Makefile.in

util/compat.c

util/dotlock.c

util/http.c

util/iobuf.c

util/memory.c

util/miscutil.c

util/srv.c

util/strgutil.c

util/ttyio.c

zlib/Makefile.in

Show diffs side-by-side

added added

removed removed

keyserver/gpgkeys_curl.c

1

1

/* gpgkeys_curl.c - fetch a key via libcurl

2

* Copyright (C) 2004, 2005, 2006, 2007 Free Software Foundation, Inc.

2

* Copyright (C) 2004, 2005, 2006, 2007, 2008 Free Software Foundation, Inc.

3

3

*

4

4

* This file is part of GnuPG.

5

5

*

103

103

static void

104

104

show_help (FILE *fp)

105

105

{

106

fprintf (fp,"-h\thelp\n");

107

fprintf (fp,"-V\tversion\n");

108

fprintf (fp,"-o\toutput to this file\n");

106

fprintf (fp,"-h, --help\thelp\n");

107

fprintf (fp,"-V\t\tmachine readable version\n");

108

fprintf (fp,"--version\thuman readable version\n");

109

fprintf (fp,"-o\t\toutput to this file\n");

109

110

}

110

111

111

112

int

117

118

long follow_redirects=5;

118

119

char *proxy=NULL;

119

120

curl_version_info_data *curldata;

121

struct curl_slist *headers=NULL;

120

122

121

123

console=stderr;

122

124

123

125

/* Kludge to implement standard GNU options. */

124

126

if (argc > 1 && !strcmp (argv[1], "--version"))

125

127

{

126

fputs ("gpgkeys_curl (GnuPG) " VERSION"\n", stdout);

128

printf ("gpgkeys_curl (GnuPG) %s\n", VERSION);

129

printf ("Uses: %s\n", curl_version());

127

130

return 0;

128

131

}

129

132

else if (argc > 1 && !strcmp (argv[1], "--help"))

286

289

287

290

if(follow_redirects)

288

291

{

289

curl_easy_setopt(curl,CURLOPT_FOLLOWLOCATION,1);

292

curl_easy_setopt(curl,CURLOPT_FOLLOWLOCATION,1L);

290

293

if(follow_redirects>0)

291

294

curl_easy_setopt(curl,CURLOPT_MAXREDIRS,follow_redirects);

292

295

}

298

301

{

299

302

fprintf(console,"gpgkeys: curl version = %s\n",curl_version());

300

303

curl_easy_setopt(curl,CURLOPT_STDERR,console);

301

curl_easy_setopt(curl,CURLOPT_VERBOSE,1);

304

curl_easy_setopt(curl,CURLOPT_VERBOSE,1L);

302

305

}

303

306

304

curl_easy_setopt(curl,CURLOPT_SSL_VERIFYPEER,opt->flags.check_cert);

307

curl_easy_setopt(curl,CURLOPT_SSL_VERIFYPEER,(long)opt->flags.check_cert);

305

308

curl_easy_setopt(curl,CURLOPT_CAINFO,opt->ca_cert_file);

306

309

310

/* Avoid caches to get the most recent copy of the key. This is bug

311

#1061. In pre-curl versions of the code, we didn't do it. Then

312

we did do it (as a curl default) until curl changed the default.

313

Now we're doing it again, but in such a way that changing

314

defaults in the future won't impact us. We set both the Pragma

315

and Cache-Control versions of the header, so we're good with both

316

HTTP 1.0 and 1.1. */

317

headers=curl_slist_append(headers,"Pragma: no-cache");

318

if(headers)

319

headers=curl_slist_append(headers,"Cache-Control: no-cache");

320

321

if(!headers)

322

{

323

fprintf(console,"gpgkeys: out of memory when building HTTP headers\n");

324

ret=KEYSERVER_NO_MEMORY;

325

goto fail;

326

}

327

328

curl_easy_setopt(curl,CURLOPT_HTTPHEADER,headers);

329

307

330

if(proxy)

308

331

curl_easy_setopt(curl,CURLOPT_PROXY,proxy);

309

332

384

407

385

408

free_ks_options(opt);

386

409

410

curl_slist_free_all(headers);

411

387

412

if(curl)

388

413

curl_easy_cleanup(curl);

389

414

Older »