/[winpt]/trunk/Src/wptKeyserver.cpp

Diff of /trunk/Src/wptKeyserver.cpp

Parent Directory | Revision Log | View Patch Patch

-revision 2 by twoaday,
Mon Jan 31 11:02:21 2005 UTC
+revision 144 by twoaday,
Thu Jan 12 16:28:06 2006 UTC
 Line 1
  /* wptKeyserver.cpp - W32 Keyserver Access
   *      Copyright (C) 2000-2005 Timo Schulz
   *      Copyright (C) 2001 Marco Cunha
   *
   * This file is part of WinPT.
   *
   * WinPT is free software; you can redistribute it and/or
   * modify it under the terms of the GNU General Public License
   * as published by the Free Software Foundation; either version 2
   * of the License, or (at your option) any later version.
   *
   * WinPT is distributed in the hope that it will be useful,
   * but WITHOUT ANY WARRANTY; without even the implied warranty of
   * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
   * General Public License for more details.
   *
   * You should have received a copy of the GNU General Public License
   * along with WinPT; if not, write to the Free Software Foundation,
   * Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
   */
- #include <windows.h>
+ #ifdef HAVE_CONFIG_H
- #include <stdio.h>
+ #include <config.h>
- #include <sys/stat.h>
+ #endif
- #include <ctype.h>
+ #include <windows.h>
- #include "wptKeyserver.h"
+ #include <stdio.h>
- #include "wptErrors.h"
+ #include <sys/stat.h>
- #include "wptTypes.h"
+ #include <ctype.h>
- #include "wptNLS.h"
- #include "wptW32API.h"
+ #include "wptKeyserver.h"
- #include "wptVersion.h"
+ #include "wptErrors.h"
- #include "wptGPG.h"
+ #include "wptTypes.h"
- #include "wptRegistry.h"
+ #include "wptNLS.h"
+ #include "wptW32API.h"
- static char base64code[] =
+ #include "wptVersion.h"
-   "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/";
+ #include "wptGPG.h"
+ #include "wptRegistry.h"
- keyserver server[MAX_KEYSERVERS] = {0};
- static keyserver_proxy_ctx proxy = {0};
+ #define net_errno ((int)WSAGetLastError ())
- static const char * server_list[] = {
-     "hkp://wwwkeys.nl.pgp.net",
+ static char base64code[] =
-     "hkp://wwwkeys.pl.pgp.net",
+   "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/";
-     "hkp://wwwkeys.at.pgp.net",
-     "hkp://wwwkeys.ch.pgp.net",
+ keyserver server[MAX_KEYSERVERS] = {0};
-     "hkp://wwwkeys.de.pgp.net",
+ static keyserver_proxy_ctx proxy = {0};
-     "hkp://wwwkeys.dk.pgp.net",
+ static const char *server_list[] = {
-     "hkp://wwwkeys.cz.pgp.net",
+     "hkp://wwwkeys.nl.pgp.net",
-     "hkp://wwwkeys.es.pgp.net",
+     "hkp://wwwkeys.pl.pgp.net",
-     "hkp://wwwkeys.eu.pgp.net",
+     "hkp://wwwkeys.at.pgp.net",
-     "hkp://wwwkeys.uk.pgp.net",
+     "hkp://wwwkeys.ch.pgp.net",
-     "hkp://wwwkeys.us.pgp.net",
+     "hkp://wwwkeys.de.pgp.net",
-     "hkp://gnv.us.ks.cryptnet.net",
+     "hkp://wwwkeys.dk.pgp.net",
-     "hkp://subkeys.pgp.net",
+     "hkp://wwwkeys.cz.pgp.net",
-     "ldap://keyserver.pgp.com",
+     "hkp://wwwkeys.es.pgp.net",
-     NULL
+     "hkp://wwwkeys.eu.pgp.net",
- };
+     "hkp://wwwkeys.uk.pgp.net",
- static char hkp_errmsg[1024];
+     "hkp://wwwkeys.us.pgp.net",
- static int hkp_err = 0;
+     "hkp://gnv.us.ks.cryptnet.net",
- static u32 conf_timestamp = 0;
+     "hkp://subkeys.pgp.net",
- char * default_keyserver = NULL;
+     "ldap://keyserver.pgp.com",
- unsigned short default_keyserver_port = 0;
+     NULL
+ };
- static void
- base64_encode( const char *inputstr, char *outputstr, int maxlen )
+ static char  hkp_errmsg[1024];  /* Holds the error message from the server */
- {
+ static int   hkp_err = 0;       /* != 0 indicates an error occurred. */
-     int index = 0, temp = 0, res = 0, i = 0, inputlen = 0, len = 0;
+ static DWORD conf_timestamp = 0;/* timestamp of the configuration fiele. */
-     inputlen = strlen (inputstr); /* fixme: check if len > maxlen */
+ char    *default_keyserver = NULL;
-     for (i = 0; i <inputlen; i++) {
+ WORD    default_keyserver_port = 0;
-         res = temp;
-         res = (res << 8) | (inputstr[i] & 0xFF);
-         switch (index++) {
+ /* Basic64 encode the input @inputstr to @outputstr. */
-         case 0: outputstr[len++] = base64code[res >> 2 & 0x3F]; res &= 0x3; break;
+ static void
-         case 1: outputstr[len++] = base64code[res >> 4 & 0x3F]; res &= 0xF; break;
+ base64_encode (const char *inputstr, char *outputstr, int maxlen)
-         case 2: outputstr[len++] = base64code[res >> 6 & 0x3F];
+ {
-                 outputstr[len++] = base64code[res & 0x3F]; res = index = 0; break;
+     int index = 0, temp = 0, res = 0, i = 0, inputlen = 0, len = 0;
-         }
-         temp = res;
+     /* XXX: check len < maxlen. */
-     }
+     inputlen = strlen (inputstr);
+     for (i = 0; i <inputlen; i++) {
-     switch( index ) {
+         res = temp;
-     case 0: break;
+         res = (res << 8) | (inputstr[i] & 0xFF);
-     case 2: outputstr[len++] = base64code[temp << 2 & 0x3F];
+         switch (index++) {
-             outputstr[len++] = '='; break;
+         case 0: outputstr[len++] = base64code[res >> 2 & 0x3F]; res &= 0x3; break;
-     case 1: outputstr[len++] = base64code[temp << 4 & 0x3F];
+         case 1: outputstr[len++] = base64code[res >> 4 & 0x3F]; res &= 0xF; break;
-             outputstr[len++] = '=';
+         case 2: outputstr[len++] = base64code[res >> 6 & 0x3F];
-             outputstr[len++] = '=';
+                 outputstr[len++] = base64code[res & 0x3F]; res = index = 0; break;
-     }
+         }
+         temp = res;
-     outputstr[len] = '\0';
+     }
- } /* base64_encode */
+     switch (index) {
+     case 0: break;
- static const char *
+     case 2: outputstr[len++] = base64code[temp << 2 & 0x3F];
- skip_type_prefix (const char * hostname)
+             outputstr[len++] = '='; break;
- {
+     case 1: outputstr[len++] = base64code[temp << 4 & 0x3F];
-     if (hostname && !strncmp (hostname, "http://", 7))
+             outputstr[len++] = '=';
-         hostname += 7;
+             outputstr[len++] = '=';
-     else if (hostname && !strncmp (hostname, "hkp://", 6))
+     }
-         hostname += 6;
-     else if (hostname && !strncmp (hostname, "finger://", 9))
+     outputstr[len] = '\0';
-         hostname += 9;
+ }
-     else if (hostname && !strncmp (hostname, "ldap://", 7))
-         hostname += 7;
-     return hostname;
+ /* Skip the URL schema and return only the host part of it. */
- }
+ static const char*
+ skip_type_prefix (const char *hostname)
+ {
- static int
+     if (hostname && !strncmp (hostname, "http://", 7))
- check_hkp_response (const char *resp, int recv)
+         hostname += 7;
- {
+     else if (hostname && !strncmp (hostname, "hkp://", 6))
-     int ec, len;
+         hostname += 6;
-     char *p, * end;
+     else if (hostname && !strncmp (hostname, "finger://", 9))
+         hostname += 9;
-     ec = recv ? WPTERR_WINSOCK_RECVKEY : WPTERR_WINSOCK_SENDKEY;
+     else if (hostname && !strncmp (hostname, "ldap://", 7))
-     if (!strstr (resp, "HTTP/1.0 200 OK")) /* http error */
+         hostname += 7;
-         return ec;
+     return hostname;
-     if (strstr (resp, "Public Key Server -- Error")
+ }
-         || strstr (resp, "Public Key Server -- Error")
-         || strstr (resp, "No matching keys in database")) {
-         p = strstr (resp, "<p>");
+ /* Check that the keyserver response indicates an OK.
-         if (p && strlen (p) < sizeof (hkp_errmsg)) {
+    Return 0 on success. */
-             end = strstr (p, "</p>");
+ static int
-             len = end? (end - p + 1) : strlen (p);
+ check_hkp_response (const char *resp, int recv)
-             strncpy (hkp_errmsg, p, len);
+ {
-             hkp_err = 1;
+     char *p, *end;
-         }
+     int ec, len;
-         return ec;
-     }
+     ec = recv ? WPTERR_WINSOCK_RECVKEY : WPTERR_WINSOCK_SENDKEY;
-     return 0;
+     if (!strstr (resp, "HTTP/1.0 200 OK") &&
- } /* check_hkp_response */
+         !strstr (resp, "HTTP/1.1 200 OK")) /* http error */
+         return ec;
+     if (strstr (resp, "Public Key Server -- Error")
- static int
+         || strstr (resp, "Public Key Server -- Error")
- sock_getline (int fd, char *buf, int buflen, int *nbytes)
+         || strstr (resp, "No matching keys in database")) {
- {
+         p = strstr (resp, "<p>");
-     char ch;
+         if (p && strlen (p) < sizeof (hkp_errmsg)) {
-     int count = 0;
+             end = strstr (p, "</p>");
+             len = end? (end - p + 1) : strlen (p);
-     if (nbytes)
+             memset (hkp_errmsg, 0, sizeof (hkp_errmsg));
-         *nbytes = 0;
+             strncpy (hkp_errmsg, p, len);
-     *buf = 0;
+             hkp_err = 1;
-     while (recv (fd, &ch, 1, 0) > 0) {
+         }
-         *buf++ = ch;
+         return ec;
-         count++;
+     }
-         if (ch == '\n' || count == (buflen - 1)) {
+     return 0;
-             *buf = 0;
+ }
-             if (nbytes)
-                 *nbytes = count;
-             return 0;
+ /* Read a single line (\r\n) from a socket.
-         }
+    Return 0 on success. */
-     }
+ static int
+ sock_getline (int fd, char *buf, int buflen, int *nbytes)
-     return -1;
+ {
- } /* sock_getline */
+     char ch;
+     int count = 0;
- static int
+     if (nbytes)
- sock_select( int fd )
+         *nbytes = 0;
- {
+     *buf = 0;
-     FD_SET rfd;
+     while (recv (fd, &ch, 1, 0) > 0) {
-     timeval tv = {1, 0};
+         *buf++ = ch;
+         count++;
-     FD_ZERO( &rfd );
+         /* XXX: remove the '\r' */
-     FD_SET( fd, &rfd );
+         if (ch == '\n' || count == (buflen - 1)) {
-     if( select( fd + 1, &rfd, NULL, NULL, &tv ) == SOCKET_ERROR )
+             *buf = 0;
-         return SOCKET_ERROR;
+             if (nbytes)
-     if( FD_ISSET( fd, &rfd ) )
+                 *nbytes = count;
-         return 1;
+             return 0;
-     return 0;
+         }
- } /* sock_select */
+     }
+     return -1;
- static int
+ }
- sock_read( int fd, char *buf, int buflen, int *nbytes )
- {
-     DWORD nread;
+ /* Perform a select() on the given fd to find out
-     int nleft = buflen;
+    is there is data for reading. Wait at least @nsecs seconds. */
-     int rc, n = 0;
+ static int
+ sock_select (int fd, int nsecs)
-     while (nleft > 0) {
+ {
-         if (n >= 10)
+     FD_SET rfd;
-             return WPTERR_WINSOCK_TIMEOUT;
+     timeval tv = {nsecs, 0};
-         if ( (rc = sock_select( fd )) == SOCKET_ERROR )
-             return SOCKET_ERROR;
+     FD_ZERO (&rfd);
-         else if( !rc )
+     FD_SET (fd, &rfd);
-             n++;
+     if (select (fd + 1, &rfd, NULL, NULL, &tv) == SOCKET_ERROR) {
-         else {
+         log_debug ("sock_select: select() failed ec=%d.\r\n", net_errno);
-             nread = recv(fd, buf, nleft, 0);
+         return SOCKET_ERROR;
-             if (nread == SOCKET_ERROR)
+     }
-                 return SOCKET_ERROR;
+     if (FD_ISSET (fd, &rfd))
-             else if (!nread)
+         return 1;
-                 break;
+     return 0;
-             nleft -= nread;
+ }
-             buf += nread;
-         }
-     }
+ /* Read from a socket @fd to buffer @buf with a fixed timeout
-     if (nbytes)
+    of 10 seconds. The amount of bytes which were read are
-         *nbytes = buflen - nleft;
+    returned in @nbytes.
+    Return value: 0 on success. */
-     return 0;
+ static int
- } /* sock_read */
+ sock_read (int fd, char *buf, int buflen, int *nbytes)
+ {
+     DWORD nread;
- static int
+     int nleft = buflen;
- sock_write( int fd, const char *buf, int buflen )
+     int rc, n = 0;
- {
-     DWORD nwritten;
+     while (nleft > 0) {
-     int nleft = buflen;
+         if (n >= 10)
+             return WPTERR_WINSOCK_TIMEOUT;
-     while (nleft > 0) {
+         rc = sock_select (fd, 1);
-         nwritten = send (fd, buf, nleft, 0);
+         if (rc == SOCKET_ERROR)
-         if (nwritten == SOCKET_ERROR)
+             return rc;
-             return SOCKET_ERROR;
+         else if (!rc)
-         nleft -= nwritten;
+             n++;
-         buf += nwritten;
+         else {
-     }
+             nread = recv (fd, buf, nleft, 0);
+             if (nread == SOCKET_ERROR) {
-     return 0;
+                 log_debug ("sock_read: recv() failed ec=%d.\r\n", net_errno);
- } /* sock_write */
+                 return SOCKET_ERROR;
+             }
+             else if (!nread)
- void
+                 break;
- set_default_kserver (void)
+             nleft -= nread;
- {
+             buf += nread;
-     char * p = get_reg_entry_keyserver ("Default");
+         }
-     free_if_alloc (default_keyserver);
+     }
-     default_keyserver = p && *p != ' ' ? p : m_strdup (DEF_HKP_KEYSERVER);
+     if (nbytes)
-     p = get_reg_entry_keyserver ("Default_Port");
+         *nbytes = buflen - nleft;
-     if (p && *p) {
-         default_keyserver_port = (u16)strtoul (p, NULL, 10);
+     return 0;
-         free_if_alloc (p);
+ }
-     }
-     else
-         default_keyserver_port = HKP_PORT;
+ /* Write the buffer @buf with the length @buflen to a socket @fd. */
- } /* set_default_kserver */
+ static int
+ sock_write (int fd, const char *buf, int buflen)
+ {
- /*
+     DWORD nwritten;
-  * Initialize the Winsock2 interface.
+     int nleft = buflen;
-  */
- int
+     while (nleft > 0) {
- wsock_init (void)
+         nwritten = send (fd, buf, nleft, 0);
- {
+         if (nwritten == SOCKET_ERROR) {
-     WSADATA wsa;
+             log_debug ("sock_write: send() failed ec=%d\r\n", net_errno);
+             return SOCKET_ERROR;
-     if (WSAStartup (0x202, &wsa))
+         }
-         return WPTERR_WINSOCK_INIT;
+         nleft -= nwritten;
-     set_default_kserver ();
+         buf += nwritten;
-     return 0;
+     }
- } /* wsock_init */
+     return 0;
+ }
- /*
-  * Should be called after the keyserver access.
-  */
+ /* Set the default keyserver. */
  void
- wsock_end (void)
+ set_default_kserver (void)
  {
-     int i;
+     char *p = get_reg_entry_keyserver ("Default");
+     free_if_alloc (default_keyserver);
-     free_if_alloc (default_keyserver);
+     default_keyserver = p && *p != ' ' ? p : m_strdup (DEF_HKP_KEYSERVER);
-     default_keyserver = NULL;
+     p = get_reg_entry_keyserver ("Default_Port");
-     for (i=0; i < MAX_KEYSERVERS; i++) {
+     if (p && *p) {
-         if (server[i].used)
+         default_keyserver_port = (WORD)strtoul (p, NULL, 10);
-             free_if_alloc (server[i].name);
+         free_if_alloc (p);
      }
-     WSACleanup ();
+     else
- } /* wsock_end */
+         default_keyserver_port = HKP_PORT;
+ }
- const char*
- wsock_strerror( void )
+ /* Initialize the Winsock2 interface.*/
- {
+ int
-     static char buf[384];
+ wsock_init (void)
-     int ec = WSAGetLastError( );
+ {
+     WSADATA wsa;
-     switch ( ec ) {
-     case WSAENETDOWN: return _("The network subsystem has failed");
+     if (WSAStartup (0x202, &wsa)) {
-     case WSAHOST_NOT_FOUND: return _("Authoritative Answer Host not found");
+         log_debug ("wsock_init: WSAStartup failed ec=%d\r\n", net_errno);
-     case WSAETIMEDOUT: return _("The connection has been dropped because of a network failure");
+         return WPTERR_WINSOCK_INIT;
-     default: _snprintf( buf, sizeof (buf) -1, _("Unknown Winsock error ec=%d"),ec); return buf;
+     }
-     }
+     set_default_kserver ();
-     return NULL;
+     return 0;
- } /* wsock_strerror */
+ }
- const char*
+ /* Cleanup the Winsock2 interface. */
- kserver_strerror( void )
+ void
- {
+ wsock_end (void)
-     if( hkp_err )
+ {
-         return hkp_errmsg;
+     int i;
-     return NULL;
- } /* kserver_strerror */
+     free_if_alloc (default_keyserver);
+     default_keyserver = NULL;
+     for (i=0; i < MAX_KEYSERVERS; i++) {
- const char *
+         if (server[i].used)
- kserver_get_hostname (int idx, int type, u16 *port)
+             free_if_alloc (server[i].name);
- {
+     }
-     if (type == -1) {
+     WSACleanup ();
-         *port = default_keyserver_port;
+ }
-         return default_keyserver;
-     }
-     else if (!type && idx < DIM (server_list)) {
+ /* Return a string representation of a winsock error. */
-         *port = HKP_PORT;
+ const char*
-         return server_list[idx];
+ wsock_strerror (void)
-     }
+ {
-     return NULL;
+     static char buf[384];
- }
+     int ec = WSAGetLastError ();
+     switch (ec) {
- int
+     case WSAENETDOWN:
- kserver_check_inet_connection (void)
+         return _("The network subsystem has failed");
- {
+     case WSAHOST_NOT_FOUND:
-     int fd;
+         return _("Authoritative Answer Host not found");
+     case WSAETIMEDOUT:
-     if (!kserver_connect (default_keyserver, default_keyserver_port, &fd)) {
+         return _("The connection has been dropped because of a network failure");
-         closesocket (fd);
+     default:
-         return 0;
+         _snprintf (buf, sizeof (buf) -1, _("Unknown Winsock error ec=%d"),ec);
-     }
+         return buf;
-     return -1;
+     }
- }
+     return NULL;
+ }
- /*
-  * If the request contains the keyid, it have to be
+ /* Return the last keyserver error as a string. */
-  * always postfix with '0x'+keyid. This code checks
+ const char*
-  * if the keyid is a decimal value and if so if it contains
+ kserver_strerror (void)
-  * the '0x'. If not it is inserted.
+ {
-  */
+     if (hkp_err)
- const char*
+         return hkp_errmsg;
- kserver_check_keyid (const char *keyid)
+     return NULL;
- {
+ }
-     static char id[20];
-     if (strstr (keyid, "@"))
+ /* Read a keyserver from the list at index @idx.
-         return keyid; /* email address */
+    Return value: keyserver name at the given position. */
-     if (strncmp (keyid, "0x", 2)) {
+ const char*
-         memset (&id, 0, sizeof (id));
+ kserver_get_hostname (int idx, int type, WORD *port)
-         _snprintf (id, sizeof (id)-1, "0x%s", keyid);
+ {
-         return id;
+     if (type == -1) {
-     }
+         *port = default_keyserver_port;
-     return keyid;
+         return default_keyserver;
- } /* kserver_check_keyid */
+     }
+     else if (!type && idx < DIM (server_list)) {
+         *port = HKP_PORT;
- static void
+         return server_list[idx];
- kserver_update_proxyuser (const char *proxy_user, const char *proxy_pass)
+     }
- {
+     return NULL;
-     char t[257]; /* user:pass = 127+1+127+1 = 257 */
+ }
-     free_if_alloc (proxy.base64_user);
-     proxy.base64_user = new char[4*strlen( proxy_user ) / 3 + 32];
+ /* Check if the computer is connected to the internet.
-     if( !proxy.base64_user )
+    Return 0 on success -1 otherwise. */
-         BUG (0);
+ int
-     _snprintf (t, sizeof (t)-1, "%s:%s", proxy_user, proxy_pass);
+ kserver_check_inet_connection (void)
-     base64_encode (t, proxy.base64_user, 257);
+ {
-     free_if_alloc (proxy.user);
+     int fd;
-     free_if_alloc (proxy.pass);
-     proxy.user = m_strdup (proxy_user);
+     if (!kserver_connect (default_keyserver, default_keyserver_port, &fd)) {
-     proxy.pass = m_strdup (proxy_pass);
+         closesocket (fd);
- } /* kserver_update_proxyuser */
+         return 0;
+     }
+     return -1;
- static int
+ }
- check_URL (const char * buf)
- {
-     if (strlen (buf) < 7)
+ /* If the request contains the keyid, it have to be
-         return -1;
+    always postfix with '0x'+keyid. This code checks
-     if( !strstr (buf, "ldap://")
+    if the keyid is a decimal value and if so if it contains
-         && !strstr (buf, "http://")
+   the '0x'. If not it is inserted. */
-         && !strstr (buf, "finger://")
+ const char*
-         && !strstr (buf, "hkp://"))
+ kserver_check_keyid (const char *keyid)
-         return -1;
+ {
-     return 0;
+     static char id[21];
- } /* check_URL */
+     if (strstr (keyid, "@"))
+         return keyid; /* email address */
- static int
+     if (strncmp (keyid, "0x", 2)) {
- proto_from_URL (const char * buf)
+         memset (&id, 0, sizeof (id));
- {
+         _snprintf (id, sizeof (id)-1, "0x%s", keyid);
-     if (strstr( buf, "ldap"))
+         return id;
-         return KSPROTO_LDAP;
+     }
-     else if (strstr( buf, "finger"))
+     return keyid;
-         return KSPROTO_FINGER;
+ }
-     return KSPROTO_HTTP;
- } /* proto_from_URL */
+ /* Update the keyserver proxy user. */
+ static void
- void
+ kserver_update_proxyuser (const char *proxy_user, const char *proxy_pass)
- keyserver_set_default (const char * hostname, u16 port)
+ {
- {
+     char t[257]; /* user:pass = 127+1+127+1 = 257 */
-     if (hostname) {
+     int n = 0;
-         free_if_alloc (default_keyserver);
-         default_keyserver = m_strdup (hostname);
+     n = 4*strlen (proxy_user) / 3 + 32 + strlen (proxy_pass) + 2;
-         if (!default_keyserver)
+     free_if_alloc (proxy.base64_user);
-             BUG (0);
+     proxy.base64_user = new char[n];
-         default_keyserver_port = port;
+     if (!proxy.base64_user)
-     }
+         BUG (0);
-     server[0].name =  default_keyserver;
+     _snprintf (t, sizeof (t)-1, "%s:%s", proxy_user, proxy_pass);
-     server[0].used = 1;
+     base64_encode (t, proxy.base64_user, 257);
-     server[0].port = port;
+     free_if_alloc (proxy.user);
-     server[0].proto = proto_from_URL (default_keyserver);
+     free_if_alloc (proxy.pass);
- } /* keyserver_set_default */
+     proxy.user = m_strdup (proxy_user);
+     proxy.pass = m_strdup (proxy_pass);
+ }
- static const char *
- skip_whitespace (const char * str)
- {
+ /* Check that the given buffer contains a valid keyserver URL. */
-     while (str && *str)
+ static int
-     {
+ check_URL (const char * buf)
-         if (*str == ' ' ||
+ {
-             *str == '\t' ||
+     if (strlen (buf) < 7)
-             *str == '\n' ||
+         return -1;
-             *str == '\r')
+     if (!strstr (buf, "ldap://")
-         {
+         && !strstr (buf, "http://")
-             str++;
+         && !strstr (buf, "finger://")
-             continue;
+         && !strstr (buf, "hkp://"))
-         }
+         return -1;
-         break;
+     return 0;
-     }
+ }
-     return str;
- }
+ /* Get the port number from the given protocol. */
+ static int
- int
+ port_from_proto (int proto)
- kserver_load_conf (const char * conf)
+ {
- {
+     switch (proto) {
-     struct stat statbuf;
+     case KSPROTO_LDAP: return 0;
-     FILE *fp;
+     case KSPROTO_FINGER: return FINGER_PORT;
-     char buf[1024], * s, * p;
+     case KSPROTO_HTTP: return HKP_PORT;
-     char *user = NULL, *pass = NULL;
+     }
-     int pos, proxy_auth = 0;
+     return 0;
-     int no_config=0;
+ }
-     for (pos = 0; pos < MAX_KEYSERVERS; pos++) {
-         server[pos].used = 0;
+ /* Get the port number from the given URL. */
-         server[pos].port = HKP_PORT;
+ static int
-     }
+ proto_from_URL (const char * buf)
+ {
-     fp = fopen (conf, "rb");
+     if (strstr( buf, "ldap"))
-     if (!fp) {
+         return KSPROTO_LDAP;
-         for( pos = 0; server_list[pos]; pos++ ) {
+     else if (strstr( buf, "finger"))
-             server[pos].used = 1;
+         return KSPROTO_FINGER;
-             server[pos].name = (char *)server_list[pos];
+     return KSPROTO_HKP;
-             server[pos].proto = proto_from_URL( server_list[pos] );
+ }
-         }
-         no_config=1;
-     }
+ void
-     get_reg_proxy_prefs( &proxy.host, &proxy.port, &user, &pass );
+ keyserver_set_default (const char *hostname, WORD port)
-     if( user && pass )
+ {
-         kserver_update_proxyuser( user, pass );
+     if (hostname) {
-     else if( user && !pass || !user && pass ) {
+         free_if_alloc (default_keyserver);
-         msg_box( NULL, _("Invalid proxy configuration."
+         default_keyserver = m_strdup (hostname);
-                          "You need to set a user and a password"
+         if (!default_keyserver)
-                          "to use proxy authentication!"), _("Proxy Error"), MB_ERR );
+             BUG (0);
-     }
+         default_keyserver_port = port;
-     /* check if the host has a http:// prefix and skip it */
+     }
-     if( proxy.host && !strncmp( proxy.host, "http://", 7 ) ) {
+     server[0].name =  m_strdup (default_keyserver);
-         const char *s = proxy.host+7;
+     server[0].used = 1;
-         char * p = m_strdup (s);
+     server[0].port = port;
-         if (!p)
+     server[0].proto = proto_from_URL (default_keyserver);
-             BUG (0);
+ }
-         free_if_alloc (proxy.host);
-         proxy.host = p;
-     }
+ /* Skip all kind of whitespace chars in @str. */
-     free_if_alloc (user);
+ static const char*
-     free_if_alloc (pass);
+ skip_whitespace (const char *str)
+ {
-     pos = 0;
+     while (str && *str) {
-     while( fp && !feof( fp ) ) {
+         if (*str == ' ' ||
-         s = fgets (buf, sizeof (buf)-1, fp);
+             *str == '\t' ||
-         if (!s)
+             *str == '\n' ||
-             break;
+             *str == '\r') {
-         if (strstr (buf, "\r\n"))
+             str++;
-             buf[strlen (buf)-2] = '\0';
+             continue;
-         if (strstr (buf, "\n"))
+         }
-             buf[strlen (buf)-1] = '\0';
+         break;
-         s = (char *)skip_whitespace (buf);
+     }
-         if (*s == '#' || strlen (s) < 7)
+     return str;
-             continue;
+ }
-         if (check_URL (s)) {
-             msg_box (NULL, _("All entries of this file must have a valid prefix.\n"
-                              "Currently HKP/HTTP, LDAP and FINGER are supported.\n"),
+ int
-                              _("Keyserver Error"), MB_ERR);
+ kserver_load_conf (const char * conf)
-             continue;
+ {
-         }
+     struct stat statbuf;
-         p = strchr (s+6, ':');
+     FILE *fp;
-         server[pos].used = 1;
+     char buf[1024], * s, * p;
-         server[pos].proto = proto_from_URL (s);
+     char *user = NULL, *pass = NULL;
-         if (!p)
+     int no_config=0, chk_pos=0;
-             server[pos].name = m_strdup (s);
+     int pos;
-         else {
-             server[pos].port = atol (p+1);
+     for (pos = 0; pos < MAX_KEYSERVERS; pos++) {
-             if (server[pos].port < 0 || server[pos].port > 65536)
+         server[pos].used = 0;
-                 server[pos].port = HKP_PORT;
+         server[pos].port = HKP_PORT;
-             server[pos].name = new char [(p-s)+2];
+     }
-             if (!server[pos].name)
-                 BUG (0);
+     fp = fopen (conf, "rb");
-             memset (server[pos].name, 0, (p-s)+2);
+     if (!fp) {
-             memcpy (server[pos].name, s, (p-s));
+         for (pos = 0; server_list[pos]; pos++) {
-         }
+             server[pos].used = 1;
-         pos++;
+             server[pos].name = m_strdup (server_list[pos]);
-         if (pos > MAX_KEYSERVERS)
+             server[pos].proto = proto_from_URL (server_list[pos]);
-         {
+         }
-             msg_box (NULL, _("The keyserver limit is exceeded"), _("Keyserver Warning"), MB_INFO);
+         no_config=1;
-             break;
+     }
-         }
+     get_reg_proxy_prefs (&proxy.host, &proxy.port, &user, &pass);
-     }
+     if (user && pass)
-     if (fp)
+         kserver_update_proxyuser (user, pass);
-         fclose (fp);
+     else if (user && !pass || !user && pass) {
-     if (!pos)
+         msg_box( NULL, _("Invalid proxy configuration."
-     {
+                          "You need to set a user and a password"
-         /* only issue an error if the config file exist but it has no valid entries. */
+                          "to use proxy authentication!"), _("Proxy Error"), MB_ERR );
-         keyserver_set_default (NULL, HKP_PORT);
+     }
-         if (!no_config)
+     /* check if the host has a http:// prefix and skip it */
-             return WPTERR_CONFIG_FILE;
+     if( proxy.host && !strncmp( proxy.host, "http://", 7 ) ) {
-     }
+         char *host = m_strdup (proxy.host+7);
+         if (!host)
-     if (!stat (conf, &statbuf))
+             BUG (0);
-         conf_timestamp = statbuf.st_mtime;
+         free_if_alloc (proxy.host);
-     return 0;
+         proxy.host = host;
- } /* kserver_load_conf */
+     }
+     free_if_alloc (user);
+     free_if_alloc (pass);
- const char *
- kserver_get_proxy (int * r_port)
+     pos = 0;
- {
+     while( fp && !feof( fp ) ) {
-     if (proxy.host)
+         s = fgets (buf, sizeof (buf)-1, fp);
-     {
+         if (!s)
-         if (r_port)
+             break;
-             *r_port = proxy.port;
+         if (strstr (buf, "\r\n"))
-         return proxy.host;
+             buf[strlen (buf)-2] = '\0';
-     }
+         if (strstr (buf, "\n"))
-     return NULL;
+             buf[strlen (buf)-1] = '\0';
- } /* kserver_get_proxy */
+         s = (char *)skip_whitespace (buf);
+         if (*s == '#' || strlen (s) < 7)
+             continue;
- const char *
+         if (check_URL (s)) {
- kserver_get_proxy_info( int id )
+             msg_box (NULL, _("All entries of this file must have a valid prefix.\n"
- {
+                              "Currently HKP/HTTP, LDAP and FINGER are supported.\n"),
-     switch( id ) {
+                              _("Keyserver Error"), MB_ERR);
-     case PROXY_USER: return proxy.user;
+             continue;
-     case PROXY_PASS: return proxy.pass;
+         }
-     }
+         chk_pos=6;
-     return NULL;
+         if (strstr (s, "finger"))
- } /* kserver_get_proxy_info */
+             chk_pos = 10;
+         p = strchr (s+chk_pos, ':');
+         server[pos].used = 1;
- /*
+         server[pos].proto = proto_from_URL (s);
-  * Connect to the keyserver 'hostname'.
+         server[pos].port = port_from_proto (server[pos].proto);
-  * We always use the HKP port.
+         if (!p)
-  */
+             server[pos].name = m_strdup (s);
- int
+         else {
- kserver_connect (const char *hostname, u16 port, int *conn_fd)
+             server[pos].port = atol (p+1);
- {
+             if (server[pos].port < 0 || server[pos].port > 65536)
-     int rc, fd;
+                 server[pos].port = HKP_PORT;
-     u32 iaddr;
+             server[pos].name = new char [(p-s)+2];
-     char host[128] = {0};
+             if (!server[pos].name)
-     struct hostent *hp;
+                 BUG (0);
-     struct sockaddr_in sock;
+             memset (server[pos].name, 0, (p-s)+2);
+             memcpy (server[pos].name, s, (p-s));
-     if (debug)
+         }
-         log_f ("kserver_connect: %s:%d\r\n", hostname, port);
+         pos++;
-     if (!port)
+         if (pos > MAX_KEYSERVERS)
-         port = HKP_PORT;
+         {
-     if (conn_fd)
+             msg_box (NULL, _("The keyserver limit is exceeded"), _("Keyserver Warning"), MB_INFO);
-         *conn_fd = 0;
+             break;
-     hostname = skip_type_prefix (hostname);
+         }
+     }
-     memset (&sock, 0, sizeof (sock));
+     if (fp)
-     sock.sin_family = AF_INET;
+         fclose (fp);
-     sock.sin_port = proxy.host? htons (proxy.port) : htons (port);
+     if (!pos) {
-     if (proxy.host)
+         /* only issue an error if the config file exist but it has no valid entries. */
-         strncpy (host, proxy.host, 127);
+         keyserver_set_default (NULL, HKP_PORT);
-     else
+         if (!no_config)
-         strncpy (host, hostname, 127);
+             return WPTERR_CONFIG_FILE;
+     }
-     if ((iaddr = inet_addr (host)) != INADDR_NONE)
-         memcpy (&sock.sin_addr, &iaddr, sizeof (iaddr));
+     if (!stat (conf, &statbuf))
-     else if ((hp = gethostbyname (host))) {
+         conf_timestamp = statbuf.st_mtime;
-         if (hp->h_addrtype != AF_INET)
+     return 0;
-             return WPTERR_WINSOCK_RESOLVE;
+ } /* kserver_load_conf */
-         else if (hp->h_length != 4)
-             return WPTERR_WINSOCK_RESOLVE;
-         memcpy (&sock.sin_addr, hp->h_addr, hp->h_length);
+ /* Return the proxy host and port if available. Null otherwise. */
-     }
+ const char*
-     else {
+ kserver_get_proxy (int *r_port)
-         if (debug)
+ {
-             log_f ("gethostbyname: failed.\r\n");
+     if (proxy.host) {
-         return WPTERR_WINSOCK_RESOLVE;
+         if (r_port)
-     }
+             *r_port = proxy.port;
-     fd = socket (AF_INET, SOCK_STREAM, 0);
+         return proxy.host;
-     if (fd == INVALID_SOCKET)
+     }
-         return WPTERR_WINSOCK_SOCKET;
+     return NULL;
-     rc = connect (fd, (struct sockaddr *) &sock, sizeof (sock));
+ }
-     if (rc == SOCKET_ERROR) {
-         if (debug)
-             log_f ("connect: failed.\r\n");
+ /* Return a requested item from the proxy environment. */
-         closesocket(fd);
+ const char*
-         return WPTERR_WINSOCK_CONNECT;
+ kserver_get_proxy_info (int id)
-     }
+ {
+     switch (id) {
-     if (conn_fd)
+     case PROXY_USER: return proxy.user;
-         *conn_fd = fd;
+     case PROXY_PASS: return proxy.pass;
-     WSASetLastError(0);
+     }
-     return 0;
+     return NULL;
- } /* kserver_connect */
+ }
- static char*
+ /* Connect to the keyserver @hostname (port @port).
- kserver_urlencode (const char *pubkey, int octets, int *newlen)
+    Return value: 0 on success */
- {
+ int
-     char *p, numbuf[5];
+ kserver_connect (const char *hostname, WORD port, int *conn_fd)
-     size_t j = 0;
+ {
-     int i, size;
+     int rc, fd;
+     DWORD iaddr;
-     p = new char [2*octets];
+     char host[128] = {0};
-     if (!p)
+     struct hostent *hp;
-         BUG (0);
+     struct sockaddr_in sock;
-     for (size=0, i=0; i<octets; i++) {
+     log_debug ("kserver_connect: %s:%d\r\n", hostname, port);
-         if (isalnum (pubkey[i]) || pubkey[i] == '-') {
-             p[size] = pubkey[i];
+     if (!port)
-             size++;
+         port = HKP_PORT;
-         }
+     if (conn_fd)
-         else if (pubkey[i] == ' ') {
+         *conn_fd = 0;
-             p[size] = '+';
+     hostname = skip_type_prefix (hostname);
-             size++;
-         }
+     memset (&sock, 0, sizeof (sock));
-         else {
+     sock.sin_family = AF_INET;
-             sprintf(numbuf, "%%%02X", pubkey[i]);
+     sock.sin_port = proxy.host? htons (proxy.port) : htons (port);
-             for (j = 0; j<strlen(numbuf); j++) {
+     if (proxy.host)
-                 p[size] = numbuf[j];
+         strncpy (host, proxy.host, 127);
-                 size++;
+     else
-             }
+         strncpy (host, hostname, 127);
-         }
-     }
+     if ((iaddr = inet_addr (host)) != INADDR_NONE)
-     p[size] = '\0';
+         memcpy (&sock.sin_addr, &iaddr, sizeof (iaddr));
-     *newlen = size;
+     else if ((hp = gethostbyname (host))) {
-     return p;
+         if (hp->h_addrtype != AF_INET || hp->h_length != 4) {
- } /* kserver_urlencode */
+             log_debug ("gethostbyname: unknown address type.\r\n");
+             return WPTERR_WINSOCK_RESOLVE;
+         }
- /*
+         memcpy (&sock.sin_addr, hp->h_addr, hp->h_length);
-  * Format a request for the given keyid (send).
+     }
-  */
+     else {
- static char*
+         log_debug ("gethostbyname: failed ec=%d.\r\n", net_errno);
- kserver_send_request (const char *hostname, u16 port, const char *pubkey, int octets)
+         return WPTERR_WINSOCK_RESOLVE;
- {
+     }
-     char *request = NULL, *enc_pubkey = NULL;
+     fd = socket (AF_INET, SOCK_STREAM, 0);
-     int reqlen, enc_octets;
+     if (fd == INVALID_SOCKET)
+         return WPTERR_WINSOCK_SOCKET;
-     if (debug)
+     rc = connect (fd, (struct sockaddr *) &sock, sizeof (sock));
-         log_f ("kserver_send_request: %s:%d\n", hostname, port);
+     if (rc == SOCKET_ERROR) {
-     if (!port)
+         log_debug ("connect: failed ec=%d.\r\n", net_errno);
-         port = HKP_PORT;
+         closesocket (fd);
-     reqlen = 512 + strlen (hostname) + 2*strlen (pubkey);
+         return WPTERR_WINSOCK_CONNECT;
-     request = new char[reqlen];
+     }
-     if (!request)
-         BUG (0);
+     if (conn_fd)
-     enc_pubkey = kserver_urlencode (pubkey, octets, &enc_octets);
+         *conn_fd = fd;
-     if (!enc_pubkey || !enc_octets) {
+     WSASetLastError (0);
-         free_if_alloc (request);
+     return 0;
-         return NULL;
+ }
-     }
-     if (proxy.user) {
+ static bool
-         _snprintf (request, reqlen-1,
+ URL_must_encoded (const char *url)
-                    "POST http://%s:%d/pks/add HTTP/1.0\r\n"
+ {
-                    "Referer: \r\n"
+     if (strchr (url, '.') || strchr (url, '@') || strchr (url, ' '))
-                    "User-Agent: WinPT/W32\r\n"
+         return true;
-                    "Host: %s:%d\r\n"
+     return false;
-                    "Proxy-Authorization: Basic %s\r\n"
+ }
-                    "Content-type: application/x-www-form-urlencoded\r\n"
-                    "Content-length: %d\r\n"
-                    "\r\n"
+ /* Perform URL encoding of the given data. */
-                    "keytext=%s"
+ static char*
-                    "\n",
+ URL_encode (const char *url, size_t ulen, size_t *ret_nlen)
-                    skip_type_prefix (hostname), port, hostname, port,
+ {
-                    proxy.base64_user, enc_octets+9, enc_pubkey);
+     gpgme_data_t hd;
-     }
+     char numbuf[5], *pp, *p;
-     else {
+     size_t i, n;
-         _snprintf (request, reqlen-1,
-                    "POST /pks/add HTTP/1.0\r\n"
+     gpgme_data_new (&hd);
-                    "Referer: \r\n"
+     for (i=0; i < ulen; i++) {
-                    "User-Agent: WinPT/W32\r\n"
+         if (isalnum (url[i]) || url[i] == '-')
-                    "Host: %s:%d\r\n"
+             gpg_data_putc (hd, url[i]);
-                    "Content-type: application/x-www-form-urlencoded\r\n"
+         else if (url[i] == ' ')
-                    "Content-length: %d\r\n"
+             gpg_data_putc (hd, '+');
-                    "\r\n"
+         else {
-                    "keytext=%s"
+             sprintf (numbuf, "%%%02X", url[i]);
-                    "\n",
+             gpgme_data_write (hd, numbuf, strlen (numbuf));
-                    skip_type_prefix (hostname), port, enc_octets+9, enc_pubkey);
+         }
      }
-     free_if_alloc (enc_pubkey);
+     gpg_data_putc (hd, '\0');
-     if (debug)
-         log_f("%s\n", request);
+     /* Copy memory to avoid that we need to use gpgme_free later. */
-     return request;
+     pp = gpgme_data_release_and_get_mem (hd, &n);
- } /* kserver_send_request */
+     p = m_strdup (pp);
+     gpgme_free (pp);
+     if (ret_nlen)
- /*
+         *ret_nlen = n;
-  * Interface receiving a public key.
+     return p;
-  */
+ }
- int
- kserver_recvkey (const char *hostname, u16 port, const char *keyid, char *key, int maxkeylen)
- {
+ /* Format a request for the given keyid (send). */
-     int rc, n;
+ static char*
-     int conn_fd;
+ kserver_send_request (const char *hostname, WORD port,
-     char *request = NULL;
+                       const char *pubkey, int octets)
+ {
-     if (!port)
+     char *request = NULL;
-         port = HKP_PORT;
+     char *enc_pubkey = NULL;
-     hkp_err = 0; /* reset */
+     size_t enc_octets;
-     rc = kserver_connect (hostname, port, &conn_fd);
+     int reqlen;
-     if (rc)
-         goto leave;
+     log_debug ("kserver_send_request: %s:%d\r\n", hostname, port);
-     request = new char[300+1];
+     if (!port)
-     if (!request)
+         port = HKP_PORT;
-         BUG (0);
+     reqlen = 512 + strlen (hostname) + 2*strlen (pubkey);
+     request = new char[reqlen];
-     if (proxy.host && proxy.user) {
+     if (!request)
-         _snprintf (request, 300,
+         BUG (0);
-             "GET http://%s:%d/pks/lookup?op=get&search=%s HTTP/1.0\r\n"
+     enc_pubkey = URL_encode (pubkey, octets, &enc_octets);
-             "Proxy-Authorization: Basic %s\r\n\r\n",
+     if (!enc_pubkey || !enc_octets) {
-             skip_type_prefix (hostname), port, keyid, proxy.base64_user);
+         free_if_alloc (request);
-     }
+         return NULL;
-     else if (proxy.host) {
+     }
-         _snprintf (request, 300,
-             "GET http://%s:%d/pks/lookup?op=get&search=%s HTTP/1.0\r\n\r\n",
+     if (proxy.user) {
-             skip_type_prefix (hostname), port, keyid);
+         _snprintf (request, reqlen-1,
-     }
+                    "POST http://%s:%d/pks/add HTTP/1.0\r\n"
-     else {
+                    "Referer: \r\n"
-         _snprintf (request, 300,
+                    "User-Agent: WinPT/W32\r\n"
-             "GET /pks/lookup?op=get&search=%s HTTP/1.0\r\n\r\n", keyid);
+                    "Host: %s:%d\r\n"
-     }
+                    "Proxy-Authorization: Basic %s\r\n"
-     if (debug)
+                    "Content-type: application/x-www-form-urlencoded\r\n"
-         log_f ("%s\n", request);
+                    "Content-length: %d\r\n"
+                    "\r\n"
-     rc = sock_write (conn_fd, request, strlen (request));
+                    "keytext=%s"
-     if (rc == SOCKET_ERROR) {
+                    "\n",
-         rc = WPTERR_WINSOCK_RECVKEY;
+                    skip_type_prefix (hostname), port, hostname, port,
-         goto leave;
+                    proxy.base64_user, enc_octets+9, enc_pubkey);
      }
+     else {
-     rc = sock_read( conn_fd, key, maxkeylen, &n );
+         _snprintf (request, reqlen-1,
-     if( rc == SOCKET_ERROR ) {
+                    "POST /pks/add HTTP/1.0\r\n"
-         rc = WPTERR_WINSOCK_RECVKEY;
+                    "Referer: \r\n"
-         goto leave;
+                    "User-Agent: WinPT/W32\r\n"
-     }
+                    "Host: %s:%d\r\n"
+                    "Content-type: application/x-www-form-urlencoded\r\n"
-     if( debug )
+                    "Content-length: %d\r\n"
-         log_f("%s\n", key);
+                    "\r\n"
+                    "keytext=%s"
-     rc = check_hkp_response( key, 1 );
+                    "\n",
-     if( rc )
+                    skip_type_prefix (hostname), port,
-         goto leave;
+                    enc_octets+9, enc_pubkey);
+     }
-     WSASetLastError( 0 );
+     free_if_alloc (enc_pubkey);
- leave:
+     log_debug ("%s\r\n", request);
-     closesocket( conn_fd );
+     return request;
-     free_if_alloc( request );
+ }
-     return rc;
- } /* kserver_recvkey */
+ /* Interface for receiving a public key. */
+ int
- /*
+ kserver_recvkey (const char *hostname, WORD port, const char *keyid,
-  * Interface to send a public key.
+                  char *key, int maxkeylen)
-  */
+ {
- int
+     char *request = NULL;
- kserver_sendkey (const char *hostname, u16 port, const char *pubkey, int len )
+     int conn_fd;
- {
+     int rc, n;
-     int n, rc;
-     int conn_fd;
+     if (!port)
-     char *request = NULL;
+         port = HKP_PORT;
-     char log[2048];
+     hkp_err = 0; /* reset */
+     rc = kserver_connect (hostname, port, &conn_fd);
-     hkp_err = 0; /* reset */
+     if (rc)
-     rc = kserver_connect (hostname, port, &conn_fd);
+         goto leave;
-     if (rc)
-         goto leave;
+     request = new char[300+1];
+     if (!request)
-     request = kserver_send_request (hostname, port, pubkey, len);
+         BUG (0);
-     if( request == NULL ) {
-         rc = WPTERR_GENERAL;
+     if (proxy.host && proxy.user) {
-         goto leave;
+         _snprintf (request, 300,
-     }
+             "GET http://%s:%d/pks/lookup?op=get&search=%s HTTP/1.0\r\n"
+             "Proxy-Authorization: Basic %s\r\n\r\n",
-     rc = sock_write( conn_fd, request, lstrlen(request) );
+             skip_type_prefix (hostname), port, keyid, proxy.base64_user);
-     if( rc == SOCKET_ERROR ) {
+     }
-         rc = WPTERR_WINSOCK_SENDKEY;
+     else if (proxy.host) {
-         goto leave;
+         _snprintf (request, 300,
-     }
+             "GET http://%s:%d/pks/lookup?op=get&search=%s HTTP/1.0\r\n\r\n",
+             skip_type_prefix (hostname), port, keyid);
-     rc = sock_read( conn_fd, log, sizeof (log)-1, &n );
+     }
-     if( rc == SOCKET_ERROR ) {
+     else {
-         rc = WPTERR_WINSOCK_SENDKEY;
+         _snprintf (request, 300,
-         goto leave;
+             "GET /pks/lookup?op=get&search=%s HTTP/1.0\r\n\r\n", keyid);
      }
-     if (debug)
-         log_f("%s\n", log);
+     log_debug ("%s\r\n", request);
-     rc = check_hkp_response( log, 0 );
+     rc = sock_write (conn_fd, request, strlen (request));
-     if( rc )
+     if (rc == SOCKET_ERROR) {
-         goto leave;
+         rc = WPTERR_WINSOCK_RECVKEY;
+         goto leave;
-     WSASetLastError( 0 );
+     }
- leave:
+     rc = sock_read( conn_fd, key, maxkeylen, &n );
-     closesocket( conn_fd );
+     if( rc == SOCKET_ERROR ) {
-     free_if_alloc( request );
+         rc = WPTERR_WINSOCK_RECVKEY;
-     return rc;
+         goto leave;
- } /* kserver_sendkey */
+     }
+     log_debug("%s\r\n", key);
- int
+     rc = check_hkp_response (key, 1);
- kserver_search_init (const char * hostname, u16 port, const char * keyid, int * conn_fd)
+     if (rc)
- {
+         goto leave;
-     int rc, sock_fd;
-     char * request = NULL;
+     WSASetLastError (0);
-     rc = kserver_connect (hostname, port, &sock_fd);
+ leave:
-     if (rc) {
+     closesocket (conn_fd);
-         *conn_fd = 0;
+     free_if_alloc (request);
-         goto leave;
+     return rc;
-     }
+ }
-     request = new char[300+1];
-     if (!request)
+ /* Interface to send a public key. */
-         BUG (0);
+ int
+ kserver_sendkey (const char *hostname, WORD port, const char *pubkey, int len )
-     if (proxy.host && proxy.user) {
+ {
-         _snprintf (request, 300,
+     char *request = NULL;
-             "GET http://%s:%d/pks/lookup?op=index&search=%s HTTP/1.0\r\n"
+     char log[2048];
-             "Proxy-Authorization: Basic %s\r\n\r\n",
+     int conn_fd, n;
-             skip_type_prefix (hostname), port, keyid, proxy.base64_user);
+     int rc;
-     }
-     else if (proxy.host) {
+     hkp_err = 0; /* reset */
-         _snprintf (request, 300,
+     rc = kserver_connect (hostname, port, &conn_fd);
-             "GET http://%s:%d/pks/lookup?op=index&search=%s HTTP/1.0\r\n\r\n",
+     if (rc)
-             skip_type_prefix (hostname), port, keyid);
+         goto leave;
-     }
-     else {
+     request = kserver_send_request (hostname, port, pubkey, len);
-         _snprintf (request, 300,
+     if (request == NULL) {
-                    "GET /pks/lookup?op=index&search=%s HTTP/1.0\r\n\r\n", keyid);
+         rc = WPTERR_GENERAL;
-     }
+         goto leave;
+     }
-     if (debug)
-         log_f("%s\n", request);
+     rc = sock_write (conn_fd, request, strlen (request));
+     if (rc == SOCKET_ERROR) {
-     if (sock_write (sock_fd, request, strlen (request)) == SOCKET_ERROR) {
+         rc = WPTERR_WINSOCK_SENDKEY;
-         rc = WPTERR_GENERAL;
+         goto leave;
-         goto leave;
+     }
-     }
+     rc = sock_read (conn_fd, log, sizeof (log)-1, &n);
-     *conn_fd = sock_fd;
+     if (rc == SOCKET_ERROR) {
+         rc = WPTERR_WINSOCK_SENDKEY;
- leave:
+         goto leave;
-     free_if_alloc (request);
+     }
-     return rc;
- } /* kserver_search_init */
+     log_debug ("kserver_sendkey:\r\n%s\r\n", log);
+     rc = check_hkp_response (log, 0);
+     if (rc)
- int
+         goto leave;
- kserver_search_chkresp (int fd)
- {
+     WSASetLastError (0);
-     char buf[128];
-     int n=0, i=0;
+ leave:
+     closesocket (conn_fd);
-     /* parse response 'HTTP/1.0 500 OK' */
+     free_if_alloc (request);
-     if (sock_getline (fd, buf, 127, &n))
+     return rc;
-         return WPTERR_KEYSERVER_NOTFOUND;
+ }
-     if (strncmp (buf, "HTTP/1.", 7))
-         return WPTERR_KEYSERVER_NOTFOUND;
-     i = 8+1;
+ int
-     if (strncmp (buf+i, "200", 3))
+ kserver_search_init (const char *hostname, WORD port,
-         return WPTERR_KEYSERVER_NOTFOUND;
+                      const char *keyid, int *conn_fd)
-     return 0;
+ {
- } /* kserver_search_chkresp */
+     char *request = NULL;
+     char *enc_keyid = NULL;
+     int n = 0;
- int
+     int rc, sock_fd;
- kserver_search (int fd, keyserver_key * key)
- {
+     rc = kserver_connect (hostname, port, &sock_fd);
-     char buf[1024], *p;
+     if (rc) {
-     int uid_len, nbytes, pos = 0;
+         *conn_fd = 0;
+         goto leave;
-     if (debug)
+     }
-         log_f ("keyserver_search:\n");
+     enc_keyid = URL_encode (keyid, strlen (keyid), NULL);
-     if (sock_getline (fd, buf, sizeof (buf), &nbytes))
+     n=300;
-         return WPTERR_GENERAL;
+     request = new char[n+1];
+     if (!request)
-     if (debug)
+         BUG (0);
-         log_f ("%s\n", buf);
+     if (proxy.host && proxy.user) {
-     if (!strncmp (buf, "pub", 3)) {
+         _snprintf (request, n,
-         key->bits = atol (buf+3);
+             "GET http://%s:%d/pks/lookup?op=index&search=%s HTTP/1.0\r\n"
-         p = strchr (buf, '>');
+             "Proxy-Authorization: Basic %s\r\n\r\n",
-         if (p)
+             skip_type_prefix (hostname), port, enc_keyid, proxy.base64_user);
-             pos = p-buf+1;
+     }
-         memcpy (key->keyid, buf+pos, 8);
+     else if (proxy.host) {
-         key->keyid[8] = '\0';
+         _snprintf (request, n,
-         p = strstr (buf, "</a>");
+             "GET http://%s:%d/pks/lookup?op=index&search=%s HTTP/1.0\r\n\r\n",
-         if (p)
+             skip_type_prefix (hostname), port, enc_keyid);
-             pos = p-buf+5;
+     }
-         memcpy (key->date, buf+pos, 10);
+     else {
-         key->date[10] = '\0';
+         _snprintf (request, n,
-         pos += 10;
+                    "GET /pks/lookup?op=index&search=%s HTTP/1.0\r\n\r\n", enc_keyid);
-         p = buf+pos+1;
+     }
-         while (p && *p != '>')
-             p++;
+     log_debug ("kserver_search_init:\r\n%s\r\n", request);
-         p++;
-         uid_len = strlen (p) - 10;
+     if (sock_write (sock_fd, request, strlen (request)) == SOCKET_ERROR) {
-         memcpy (key->uid, p, uid_len);
+         rc = WPTERR_GENERAL;
-         key->uid[uid_len] = '\0';
+         goto leave;
-         strcat (key->uid, ">");
+     }
-         p = strchr (key->uid, '&');
-         if (p) {
+     *conn_fd = sock_fd;
-             key->uid[(p-key->uid)] = '<';
-             memmove (key->uid+(p-key->uid)+1, key->uid+(p-key->uid)+4, strlen (key->uid)-3);
+ leave:
-         }
+     free_if_alloc (request);
-     }
+     free_if_alloc (enc_keyid);
-     else {
+     return rc;
-         key->bits = 0;
+ }
-         memset (key, 0, sizeof *key);
-     }
+ /* Check keyserver response. */
-     return 0;
+ int
- } /* kserver_search */
+ kserver_search_chkresp (int fd)
+ {
+     char buf[128];
- static int
+     int n=0;
- add_node( keyserver_cfgfile *cfg, const char *entry )
- {
+     /* parse response 'HTTP/1.0 500 OK' */
-     keyserver_node *node;
+     if (sock_getline (fd, buf, 127, &n))
-     char *p = NULL;
+         return WPTERR_KEYSERVER_NOTFOUND;
-     p = strchr( entry, '=' );
+     log_debug ("kserver_search_chkpresp: %s\r\n", buf);
-     if( p == NULL )
+     if (strncmp (buf, "HTTP/1.", 7))
-         return WPTERR_GENERAL;
+         return WPTERR_KEYSERVER_NOTFOUND;
-     node = new keyserver_node;
+     if (strncmp (buf+(8+1), "200", 3))
-     if( !node )
+         return WPTERR_KEYSERVER_NOTFOUND;
-         BUG( NULL );
+     return 0;
+ }
-     memset( node, 0, sizeof *node );
-     node->used = 1;
+ /* Convert an iso date @iso_date (YYYY-MM-DD) into the locale
-     node->host.used = 1;
+    representation and store it into @loc_date.
-     node->host.proto = proto_from_URL( entry );
+    Return value: 0 on success. */
-     memcpy( node->host.name, entry+7, p-entry-7 );
+ static int
-     node->next = cfg->list;
+ parse_iso_date (const char *iso_date, char *loc_date, size_t loclen)
-     cfg->list = node;
+ {
+     SYSTEMTIME st;
-     return 0;
+     char buf[16] = {0}, *p;
- } /* add_node */
+     int pos=0;
+     strncpy (buf, iso_date, sizeof (buf)-1);
- void
+     p = strtok (buf, "-");
- kserver_change_proxy( keyserver_proxy_ctx *ctx )
+     while (p != NULL) {
- {
+         switch (pos) {
-     proxy.port = ctx->port;
+         case 0: st.wYear = (WORD)atoi (p); pos++; break;
-     free_if_alloc (proxy.host);
+         case 1: st.wMonth = (WORD)atoi (p); pos++; break;
-     proxy.host = ctx->host? m_strdup( ctx->host ) : NULL;
+         case 2: st.wDay = (WORD)atoi (p); pos++; break;
-     free_if_alloc( proxy.pass );
+         default: break;
-     proxy.pass = ctx->pass? m_strdup( ctx->pass ) : NULL;
+         }
-     free_if_alloc( proxy.user );
+         p = strtok (NULL, "-");
-     proxy.user = ctx->user? m_strdup( ctx->user ) : NULL;
+     }
-     set_reg_proxy_prefs( proxy.host, proxy.port, proxy.user, proxy.pass );
+     if (pos != 3)
- } /* kserver_change_proxy */
+         return -1;
+     if (!GetDateFormat (LOCALE_USER_DEFAULT, DATE_SHORTDATE, &st,
- int
+                         NULL, loc_date, loclen))
- kserver_read_config( const char *fname, keyserver_cfgfile **ret_cfg )
+         return -1;
- {
+     return 0;
-     FILE *fp;
+ }
-     keyserver_cfgfile *cfg;
-     char buf[256];
-     int rc = 0;
+ int
+ kserver_search (int fd, keyserver_key *key)
-     *ret_cfg = NULL;
+ {
-     fp = fopen( fname, "rb" );
+     char buf[1024], *p;
-     if( fp == NULL )
+     int uidlen, nbytes, pos = 0;
-         return WPTERR_FILE_OPEN;
+     log_debug ("keyserver_search:\r\n");
-     cfg = new keyserver_cfgfile;
-     if ( !cfg )
+     if (sock_getline (fd, buf, sizeof (buf) - 1, &nbytes))
-         BUG( NULL );
+         return WPTERR_GENERAL;
-     memset( cfg, 0, sizeof *cfg );
+     log_debug ("%s\r\n", buf);
-     while ( !feof( fp ) ) {
-         if ( fgets( buf, sizeof(buf)-1, fp ) == NULL )
+     if (!strncmp (buf, "pub", 3)) {
-             break;
+         int revoked = strstr (buf, "KEY REVOKED") != NULL? 1 : 0;
-         if ( *buf == '\r' || *buf == '\n' || *buf == '#' )
+         key->bits = atol (buf+3);
-             continue;
+         p = strchr (buf, '>');
-         buf[strlen(buf) -2] = '\0';
+         if (!p)
-         if ( !strncmp( buf, "use_proxy=", 10 ) ) {
+             goto fail;
-             char *p = strchr(buf, ':');
+         pos = p - buf + 1;
-             if (!p)
+         memcpy (key->keyid, buf + pos, 8);
-                 continue;
+         key->keyid[8] = '\0';
-             cfg->proxy.port = atol( buf+(p-buf+1) );
+         p = strstr (buf, "</a>");
-             buf[p-buf] = '\0';
+         if (!p)
-             cfg->proxy.host = m_strdup( buf+10 );
+             goto fail;
-         }
+         pos = p - buf + 5;
-         else if ( !strncmp( buf, "proxy_user=", 11 ) )
+         memcpy (key->date, buf + pos, 10);
-             cfg->proxy.user = m_strdup( buf+11 );
+         key->date[10] = '\0';
-         else if ( !strncmp( buf, "proxy_pass=", 11 ) )
+         parse_iso_date (key->date, key->date, sizeof (key->date)-1);
-             cfg->proxy.pass = m_strdup( buf+11 );
+         if (revoked) {
-         if ( !strncmp( buf, "http://", 7 )
+             strcpy (key->uid, "KEY REVOKED: not checked");
-             || !strncmp( buf, "hkp://", 6 )
+             return 0;
-             || !strncmp( buf, "ldap://", 7 ) ) {
+         }
-             add_node( cfg, buf );
+         pos += 10;
-             cfg->nlist++;
+         p = buf + pos + 1;
-         }
+         while (p && *p != '>')
-     }
+             p++;
+         p++;
-     fclose( fp );
+         uidlen = strlen (p) - 10;
-     *ret_cfg = cfg;
+         if (!strstr (p, "&lt;") && !strstr (p, "&gt;")) {
+             pos=0;
-     return rc;
+             while (p && *p && pos < sizeof (key->uid)-1) {
- } /* kserver_read_config */
+                 if (*p == '<')
+                     break;
+                 key->uid[pos++] = *p++;
- int
+             }
- kserver_write_config( const char * fname, keyserver_cfgfile * cfg )
+             key->uid[pos] ='\0';
- {
+             return 0;
+         }
-     return 0;
- }
+         if (uidlen > sizeof (key->uid)-1)
+             uidlen = sizeof (key->uid)-1;
+         memcpy (key->uid, p, uidlen);
- void
+         key->uid[uidlen] = '\0';
- kserver_cfgfile_release( keyserver_cfgfile *cfg )
+         strcat (key->uid, ">");
- {
+         p = strchr (key->uid, '&');
-     keyserver_node *k, *k2;
+         if (p) {
+             key->uid[(p-key->uid)] = '<';
-     proxy_release( &cfg->proxy );
+             memmove (key->uid+(p-key->uid)+1, key->uid+(p-key->uid)+4,
-     for( k = cfg->list; cfg->nlist--; k = k2 ) {
+                      strlen (key->uid)-3);
-         k2 = k->next;
+         }
-         free_if_alloc( k );
+         return 0;
      }
-     free_if_alloc( cfg );
- } /* kserver_cfgfile_release */
+ fail:
+     key->bits = 0;
+     memset (key, 0, sizeof *key);
- void
+     return 0;
- proxy_release( keyserver_proxy_ctx *ctx )
+ }
- {
-     free_if_alloc( ctx->host );
-     free_if_alloc( ctx->pass );
+ static int
-     free_if_alloc( ctx->user );
+ add_node( keyserver_cfgfile *cfg, const char *entry )
- } /* proxy_release */
+ {
+     keyserver_node *node;
+     char *p = NULL;
- int
- ldap_recvkey (const char * host, const char * keyid, char * key, int maxkeylen)
+     p = strchr( entry, '=' );
- {
+     if( p == NULL )
-     const char *s;
+         return WPTERR_GENERAL;
-     char *ksprg = NULL, *p = NULL;
+     node = new keyserver_node;
-     char temp[512], outf[512];
+     if( !node )
-     FILE * inp;
+         BUG (NULL);
-     int rc, start_key = 0;
-     STARTUPINFO si;
+     memset( node, 0, sizeof *node );
-     PROCESS_INFORMATION pi;
+     node->used = 1;
-     p = get_gnupg_path ();
+     node->host.used = 1;
-     ksprg = new char[strlen (p) + 1 + 128];
+     node->host.proto = proto_from_URL( entry );
-     if (!ksprg)
+     memcpy( node->host.name, entry+7, p-entry-7 );
-         BUG (0);
+     node->next = cfg->list;
-     strcpy (ksprg, p);
+     cfg->list = node;
-     strcat (ksprg, "\\");
-     strcat (ksprg, "gpgkeys_ldap.exe");
+     return 0;
-     free_if_alloc (p);
+ } /* add_node */
-     if (file_exist_check (ksprg)) {
-         log_box ( "LDAP Keyserver Plugin", MB_ERR, "Could not find LDAP keyserver module!");
-         rc = -1;
+ void
-         goto leave;
+ kserver_change_proxy( keyserver_proxy_ctx *ctx )
-     }
+ {
-     GetTempPath (sizeof (temp)-1, temp);
+     proxy.port = ctx->port;
-     strcpy (outf, temp);
+     free_if_alloc (proxy.host);
-     strcat (outf, keyid);
+     proxy.host = ctx->host? m_strdup( ctx->host ) : NULL;
-     strcat (outf, ".out");
+     free_if_alloc( proxy.pass );
-     strcat (temp, keyid);
+     proxy.pass = ctx->pass? m_strdup( ctx->pass ) : NULL;
-     inp = fopen (temp, "w+b");
+     free_if_alloc( proxy.user );
-     if( !inp ) {
+     proxy.user = ctx->user? m_strdup( ctx->user ) : NULL;
-         log_box ("LDAP Keyserver Plugin", MB_ERR, "%s: %s", temp,
+     set_reg_proxy_prefs( proxy.host, proxy.port, proxy.user, proxy.pass );
-                  winpt_strerror (WPTERR_FILE_OPEN));
+ } /* kserver_change_proxy */
-         rc = -1;
-         goto leave;
-     }
+ int
-     fprintf (inp,
+ kserver_read_config( const char *fname, keyserver_cfgfile **ret_cfg )
-         "VERSION 0\n"
+ {
-         "HOST %s\n"
+     FILE *fp;
-         "OPTION verbose\n"
+     keyserver_cfgfile *cfg;
-         "COMMAND GET\n"
+     char buf[256];
-         "\n"
+     int rc = 0;
-         "%s\n", host? skip_type_prefix (host): "64.94.85.200", keyid);
-     fclose (inp);
+     *ret_cfg = NULL;
+     fp = fopen( fname, "rb" );
-     memset (&si, 0, sizeof (si));
+     if( fp == NULL )
-     si.cb = sizeof (si);
+         return WPTERR_FILE_OPEN;
-     si.dwFlags = STARTF_USESHOWWINDOW;
-     si.wShowWindow = SW_HIDE;
+     cfg = new keyserver_cfgfile;
-     memset (&pi, 0, sizeof (pi));
+     if ( !cfg )
-     p = new char[strlen (ksprg) + strlen (temp) + strlen (outf) + 32];
+         BUG( NULL );
-     sprintf (p, "%s -o %s %s", ksprg, outf, temp);
+     memset( cfg, 0, sizeof *cfg );
-     rc = CreateProcess (NULL, p, NULL, NULL, FALSE, 0, NULL, NULL, &si, &pi);
-     if (!rc) {
+     while ( !feof( fp ) ) {
-         log_box ("LDAP Keyserver Plugin", MB_ERR, "Could not spawn process");
+         if ( fgets( buf, sizeof(buf)-1, fp ) == NULL )
-         rc = -1;
+             break;
-         goto leave;
+         if ( *buf == '\r' || *buf == '\n' || *buf == '#' )
-     }
+             continue;
-     CloseHandle (pi.hThread);
+         buf[strlen(buf) -2] = '\0';
-     WaitForSingleObject (pi.hProcess, INFINITE);
+         if ( !strncmp( buf, "use_proxy=", 10 ) ) {
-     CloseHandle (pi.hProcess);
+             char *p = strchr(buf, ':');
+             if (!p)
-     inp = fopen (outf, "rb");
+                 continue;
-     if (!inp) {
+             cfg->proxy.port = atol( buf+(p-buf+1) );
-         log_box ("LDAP Keyserver Plugin", MB_ERR, "%s: %s", outf,
+             buf[p-buf] = '\0';
-                  winpt_strerror (WPTERR_FILE_OPEN));
+             cfg->proxy.host = m_strdup( buf+10 );
-         rc = -1;
+         }
-         goto leave;
+         else if ( !strncmp( buf, "proxy_user=", 11 ) )
-     }
+             cfg->proxy.user = m_strdup( buf+11 );
-     memset (key, 0, maxkeylen);
+         else if ( !strncmp( buf, "proxy_pass=", 11 ) )
-     while( !feof( inp ) ) {
+             cfg->proxy.pass = m_strdup( buf+11 );
-         s = fgets( temp, sizeof (temp)-1, inp );
+         if ( !strncmp( buf, "http://", 7 )
-         if( !s )
+             || !strncmp( buf, "hkp://", 6 )
-             break;
+             || !strncmp( buf, "ldap://", 7 ) ) {
-         if( !start_key && strstr( s, "KEY" ) && strstr( s, "BEGIN" ) ) {
+             add_node( cfg, buf );
-             start_key = 1;
+             cfg->nlist++;
-             continue;
+         }
-         }
+     }
-         if( !start_key )
-             continue;
+     fclose( fp );
-         strcat( key, temp );
+     *ret_cfg = cfg;
-         maxkeylen -= strlen( temp );
-         if( maxkeylen < 0 || (strstr( s, "KEY" ) && strstr( s, "END" )) )
+     return rc;
-             break;
+ } /* kserver_read_config */
-     }
-     fclose( inp );
+ int
- leave:
+ kserver_write_config( const char * fname, keyserver_cfgfile * cfg )
-     if( !strlen( key ) )
+ {
-         rc = WPTERR_WINSOCK_RECVKEY;
-     free_if_alloc( p );
+     return 0;
-     free_if_alloc( ksprg );
+ }
-     return rc;
- } /* ldap_recvkey */
+ void
+ kserver_cfgfile_release( keyserver_cfgfile *cfg )
- static int
+ {
- finger_readline (int fd, char * buf, int nbytes)
+     keyserver_node *k, *k2;
- {
-     char c = 0;
+     proxy_release( &cfg->proxy );
-     int n, pos = 0;
+     for( k = cfg->list; cfg->nlist--; k = k2 ) {
+         k2 = k->next;
-     while (nbytes > 0) {
+         free_if_alloc( k );
-         n = recv (fd, &c, 1, 0);
+     }
-         if (n <= 0)
+     free_if_alloc( cfg );
-             break;
+ } /* kserver_cfgfile_release */
-         if (c == '\n')
-             break;
-         buf[pos++] = c;
+ /* Release mbmers in the proxy context @ctx. */
-         nbytes--;
+ void
-     }
+ proxy_release( keyserver_proxy_ctx *ctx )
-     if (nbytes > 0)
+ {
-         buf[pos++] = '\0';
+     free_if_alloc (ctx->host);
-     if (n <= 0)
+     free_if_alloc (ctx->pass);
-         pos = n;
+     free_if_alloc (ctx->user);
-     return pos;
+ }
- }
+ /* Spawn a process given by @cmdl. */
- int
+ static int
- finger_recvkey (const char * host, const char * user, char * key, int maxkeylen)
+ spawn_application (char *cmdl)
  {
-     struct hostent * hp;
+     STARTUPINFO si;
-     struct sockaddr_in saddr;
+     PROCESS_INFORMATION pi;
-     char buf[128];
+     int rc = 0;
-     int fd, nread;
-     int start_key = 0;
+     memset (&si, 0, sizeof (si));
-     int rc=0;
+     si.cb = sizeof (si);
+     si.dwFlags = STARTF_USESHOWWINDOW;
-     fd = socket (PF_INET, SOCK_STREAM, 0);
+     si.wShowWindow = SW_HIDE;
-     if (fd == -1)
+     memset (&pi, 0, sizeof (pi));
-         return WPTERR_WINSOCK_SOCKET;
-     hp = gethostbyname (skip_type_prefix (host));
+     if (!CreateProcess (NULL, cmdl, NULL, NULL, FALSE, 0,
-     if (!hp) {
+                         NULL, NULL, &si, &pi)) {
-         closesocket (fd);
+         log_box ("Keyserver Plugin", MB_ERR, "Could not spawn helper process");
-         return WPTERR_WINSOCK_RESOLVE;
+         rc = -1;
      }
-     memset (&saddr, 0, sizeof (saddr));
+     CloseHandle (pi.hThread);
-     saddr.sin_family = AF_INET;
+     WaitForSingleObject (pi.hProcess, INFINITE);
-     saddr.sin_port = htons (FINGER_PORT);
+     CloseHandle (pi.hProcess);
-     saddr.sin_addr = *(struct in_addr *)hp->h_addr;
+     return rc;
-     if (connect (fd, (struct sockaddr *)&saddr, sizeof (saddr))) {
+ }
-         closesocket (fd);
-         return WPTERR_WINSOCK_CONNECT;
-     }
+ /* Receive an key via LDAP from host @host with the keyid @keyid.
-     send (fd, user, strlen (user), 0);
+    @key contains the key on success. */
-     send (fd, "\r\n", 2, 0);
+ int
+ ldap_recvkey (const char *host, const char *keyid, char *key, int maxkeylen)
-     memset (key, 0, maxkeylen);
+ {
-     while (maxkeylen > 0) {
+     FILE *inp;
-         nread = finger_readline (fd, buf, sizeof (buf)-1);
+     DWORD n;
-         if (nread <= 0)
+     const char *s;
-             break;
+     char *ksprg = NULL, *p = NULL, *sep;
-         strcat (buf, "\n");
+     char temp[512], outf[512];
-         if (strstr (buf, "BEGIN PGP PUBLIC KEY BLOCK")) {
+     int start_key = 0, failed = 0;
-             strcat (key, buf);
+     int rc = 0;
-             start_key = 1;
-             maxkeylen -= nread;
+     p = get_gnupg_prog ();
-         }
+     n = strlen (p) + 1 + 128;
-         else if (strstr (buf, "END PGP PUBLIC KEY BLOCK" ) && start_key) {
+     ksprg = new char[n+1];
-             strcat (key, buf);
+     if (!ksprg)
-             start_key--;
+         BUG (0);
-             maxkeylen -= nread;
+     sep = strrchr (p, '\\');
-             break;
+     if (sep != NULL)
-         }
+         p[(sep-p)] = 0;
-         else if (start_key) {
-             strcat (key, buf);
+     _snprintf (ksprg, n, "%s\\gpgkeys_ldap.exe", p);
-             maxkeylen -= nread;
+     free_if_alloc (p);
-         }
+     if (file_exist_check (ksprg)) {
-     }
+         log_box ("LDAP Keyserver Plugin", MB_ERR,
-     closesocket (fd);
+                  "%s: could not find LDAP keyserver module!", ksprg);
-     if (start_key != 0)
+         rc = -1;
-         rc = WPTERR_WINSOCK_RECVKEY;
+         goto leave;
-     return rc;
+     }
- }
+     GetTempPath (sizeof (temp)-1, temp);
+     _snprintf (outf, sizeof (outf)-1, "%s%s.out", temp, keyid);
+     strcat (temp, keyid);
+     inp = fopen (temp, "w+b");
+     if (!inp) {
+         log_box ("LDAP Keyserver Plugin", MB_ERR, "%s: %s", temp,
+                  winpt_strerror (WPTERR_FILE_OPEN));
+         rc = -1;
+         goto leave;
+     }
+     fprintf (inp,
+         "VERSION 1\n"
+         "PROGRAM 1.4.3-cvs\n"
+         "SCHEME ldap\n"
+         "HOST %s\n"
+         "COMMAND GET\n"
+         "\n"
+         "%s\n",
+         host? skip_type_prefix (host): "64.94.85.200", keyid);
+     fclose (inp);
+     p = new char[strlen (ksprg) + strlen (temp) + strlen (outf) + 32];
+     if (!p)
+         BUG (NULL);
+     sprintf (p, "%s -o %s %s", ksprg, outf, temp);
+     if (spawn_application (p)) {
+         rc = -1;
+         goto leave;
+     }
+     DeleteFile (temp);
+     inp = fopen (outf, "rb");
+     if (!inp) {
+         log_box ("LDAP Keyserver Plugin", MB_ERR, "%s: %s", outf,
+                  winpt_strerror (WPTERR_FILE_OPEN));
+         rc = -1;
+         goto leave;
+     }
+     memset (key, 0, maxkeylen);
+     while (!feof (inp)) {
+         s = fgets (temp, sizeof (temp)-1, inp);
+         if (!s)
+             break;
+         if (strstr (s, "KEY") && strstr (s, "FAILED")) {
+             failed = 1;
+             break;
+         }
+         if (!start_key && strstr (s, "KEY") && strstr (s, "BEGIN")) {
+             start_key = 1;
+             continue;
+         }
+         if (!start_key)
+             continue;
+         strcat (key, temp);
+         maxkeylen -= strlen (temp);
+         if (maxkeylen < 0 || (strstr (s, "KEY") && strstr (s, "END")))
+             break;
+     }
+     fclose (inp);
+ leave:
+     if (failed || !strlen (key))
+         rc = WPTERR_WINSOCK_RECVKEY;
+     DeleteFile (outf);
+     free_if_alloc (p);
+     free_if_alloc (ksprg);
+     return rc;
+ }
+ static int
+ finger_readline (int fd, char *buf, int nbytes)
+ {
+     char c = 0;
+     int n, pos = 0;
+     while (nbytes > 0) {
+         n = recv (fd, &c, 1, 0);
+         if (n <= 0)
+             break;
+         if (c == '\n')
+             break;
+         buf[pos++] = c;
+         nbytes--;
+     }
+     if (nbytes > 0)
+         buf[pos++] = '\0';
+     if (n <= 0)
+         pos = n;
+     return pos;
+ }
+ /* Receive an key via FINGER from host @host with the user @user.
+    On success @key contains the key. */
+ int
+ finger_recvkey (const char *host, const char *user, char *key, int maxkeylen)
+ {
+     struct hostent * hp;
+     struct sockaddr_in saddr;
+     char buf[128];
+     int fd, nread;
+     int start_key = 0;
+     int rc=0;
+     fd = socket (PF_INET, SOCK_STREAM, 0);
+     if (fd == -1)
+         return WPTERR_WINSOCK_SOCKET;
+     hp = gethostbyname (skip_type_prefix (host));
+     if (!hp) {
+         closesocket (fd);
+         return WPTERR_WINSOCK_RESOLVE;
+     }
+     memset (&saddr, 0, sizeof (saddr));
+     saddr.sin_family = AF_INET;
+     saddr.sin_port = htons (FINGER_PORT);
+     saddr.sin_addr = *(struct in_addr *)hp->h_addr;
+     if (connect (fd, (struct sockaddr *)&saddr, sizeof (saddr))) {
+         closesocket (fd);
+         return WPTERR_WINSOCK_CONNECT;
+     }
+     send (fd, user, strlen (user), 0);
+     send (fd, "\r\n", 2, 0);
+     memset (key, 0, maxkeylen);
+     while (maxkeylen > 0) {
+         nread = finger_readline (fd, buf, sizeof (buf)-1);
+         if (nread <= 0)
+             break;
+         strcat (buf, "\n");
+         if (strstr (buf, "BEGIN PGP PUBLIC KEY BLOCK")) {
+             strcat (key, buf);
+             start_key = 1;
+             maxkeylen -= nread;
+         }
+         else if (strstr (buf, "END PGP PUBLIC KEY BLOCK" ) && start_key) {
+             strcat (key, buf);
+             start_key--;
+             maxkeylen -= nread;
+             break;
+         }
+         else if (start_key) {
+             strcat (key, buf);
+             maxkeylen -= nread;
+         }
+     }
+     closesocket (fd);
+     if (start_key != 0)
+         rc = WPTERR_WINSOCK_RECVKEY;
+     return rc;
+ }
+ /* Check if the given name @name is a valid hostname. */
+ int
+ check_IP_or_hostname (const char *name)
+ {
+     const char *not_allowed = "=!�$%&@#*~\\/}][{<>|,;:'";
+     size_t i, j;
+     for (i=0; i < strlen (name); i++) {
+         for (j =0; j < strlen (not_allowed); j++) {
+             if (name[i] == not_allowed[j])
+                 return -1;
+         }
+     }
+     return 0;
+ }

 Legend:



Removed from v.2
 


changed lines


 
Added in v.144
 Legend:



Removed from v.2
 


changed lines


 
Added in v.144
-Removed from v.2
+Added in v.144

[email protected]	ViewVC Help
Powered by ViewVC 1.1.26