/[winpt]/trunk/Src/wptKeyserver.cpp

Diff of /trunk/Src/wptKeyserver.cpp

Parent Directory | Revision Log | View Patch Patch

-revision 214 by twoaday,
Sun May 14 18:40:36 2006 UTC
+revision 290 by twoaday,
Sat Mar 10 11:18:34 2007 UTC
 Line 1
  /* wptKeyserver.cpp - W32 Keyserver Access
-  *      Copyright (C) 2000-2006 Timo Schulz
+  *      Copyright (C) 2000-2007 Timo Schulz
   *      Copyright (C) 2001 Marco Cunha
   *
   * This file is part of WinPT.
 Line 13
   * but WITHOUT ANY WARRANTY; without even the implied warranty of
   * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
   * General Public License for more details.
-  *
-  * You should have received a copy of the GNU General Public License
-  * along with WinPT; if not, write to the Free Software Foundation,
-  * Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
   */
  #ifdef HAVE_CONFIG_H
  #include <config.h>
  #endif
-Line 29
+Line 24
  #include <sys/stat.h>
  #include <ctype.h>
+ #include "wptGPG.h"
  #include "wptKeyserver.h"
  #include "wptErrors.h"
  #include "wptTypes.h"
  #include "wptNLS.h"
  #include "wptW32API.h"
- #include "wptGPG.h"
  #include "wptRegistry.h"
+ #include "wptUTF8.h"
+ #include "wptVersion.h"
+ #include "StringBuffer.h"
  /* Map net_errno to a winsock error. */
  #define net_errno ((int)WSAGetLastError ())
-Line 44
+Line 43
  keyserver server[MAX_KEYSERVERS] = {0};
  keyserver_proxy_s proxy = {0};
  static const char *server_list[] = {
-     "hkp://gnv.us.ks.cryptnet.net",
-     "hkp://keyserver.kjsl.com",
      "hkp://sks.keyserver.penguin.de",
      "hkp://subkeys.pgp.net",
      "ldap://keyserver.pgp.com",
-Line 60 
 static int   hkp_err = 0;      /* != 0 indica
+Line 57 
 static int   hkp_err = 0;      /* != 0 indica
  char *default_keyserver = NULL;
  WORD default_keyserver_port = 0;
- /* Default socket timeout. */
+ /* Default socket timeout (secs). */
- static int default_socket_timeout = 6;
+ static size_t default_socket_timeout = 6;
  /* Wrapper for safe memory allocation. */
-Line 84 
 base64_encode (const char *inbuf, char *
+Line 81 
 base64_encode (const char *inbuf, char *
      char base64code[] =
          "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/";
      int index = 0, temp = 0, res = 0;
-     int i = 0, inputlen = 0, len = 0;
+     int i, inputlen, len = 0;
      inputlen = strlen (inbuf);
      for (i = 0; i < inputlen; i++) {
-Line 122 
 base64_encode (const char *inbuf, char *
+Line 119 
 base64_encode (const char *inbuf, char *
  }
+ /* Check that the given buffer contains a valid keyserver URL
+    and return the prefix length, 0 in case of an error. */
+ static int
+ check_URL (const char *buf)
+ {
+     const char *proto[] = {
+         "ldap://",
+         "http://",
+         "finger://",
+         "hkp://",
+         NULL};
+     int i;
+     if (strlen (buf) < 7)
+         return 0;
+     for (i=0; proto[i] != NULL; i++) {
+         if (strstr (buf, proto[i]))
+             return strlen (proto[i]);
+     }
+     return 0;
+ }
  /* Skip the URL schema and return only the host part of it. */
  static const char*
  skip_type_prefix (const char *hostname)
  {
-     if (hostname && !strncmp (hostname, "http://", 7))
+     int pos;
-         hostname += 7;
-     else if (hostname && !strncmp (hostname, "hkp://", 6))
+     if (!hostname)
-         hostname += 6;
+         return hostname;
-     else if (hostname && !strncmp (hostname, "finger://", 9))
-         hostname += 9;
+     pos = check_URL (hostname);
-     else if (hostname && !strncmp (hostname, "ldap://", 7))
+     if (pos > 0)
-         hostname += 7;
+         hostname += pos;
      return hostname;
  }
+ /* Parse the keyserver response and extract the human
+    readable text passages. */
+ static int
+ parse_keyserver_error (const char *resp, char *txt, size_t txtlen)
+ {
+     char *p, *p2;
+     /* If we find no 'Error' substring, we assume a success. */
+     if (!stristr (resp, "Error"))
+         return -1;
+     memset (txt, 0, txtlen);
+     p = strstr (resp, "\r\n\r\n");
+     if (!p)
+         return -1;
+     resp += (p-resp);
+     p = strstr (resp, "<h1>");
+     if (!p)
+         return -1;
+     resp += (p-resp)+strlen ("<h1>");
+     p = strstr (resp, "</h1>");
+     if (!p)
+         return -1;
+     resp += (p-resp)+strlen ("</h1>");
+     p2 = strstr (resp, "</body>");
+     if (p2 != NULL)
+         memcpy (txt, resp, (p2-resp));
+     else {
+         if (!strnicmp (resp, "<p>", 3))
+             resp += 3;
+         while (resp && *resp == '\r' || *resp == '\n')
+             resp++;
+         memcpy (txt, resp, strlen (resp));
+     }
+     return 0;
+ }
  /* Check that the keyserver response indicates an OK.
     Return 0 on success. */
  static int
  check_hkp_response (const char *resp, int recv)
  {
-     char *p, *end;
+     int ec;
-     int ec, len;
+     log_debug ("check_hkp_response: '%s'\r\n", resp);
      ec = recv ? WPTERR_WINSOCK_RECVKEY : WPTERR_WINSOCK_SENDKEY;
      if (!strstr (resp, "HTTP/1.0 200 OK") &&
-         !strstr (resp, "HTTP/1.1 200 OK")) /* http error */
+         !strstr (resp, "HTTP/1.1 200 OK") &&
-         return ec;
+         !strstr (resp, "HTTP/1.0 500 OK") &&
-     if (strstr (resp, "Public Key Server -- Error")
+         !strstr (resp, "HTTP/1.1 500 OK"))
-         || strstr (resp, "Public Key Server -- Error")
+         return ec; /* http error */
-         || strstr (resp, "No matching keys in database")) {
-         p = strstr (resp, "<p>");
+     if (!parse_keyserver_error (resp, hkp_errmsg, DIM (hkp_errmsg)-2)) {
-         if (p && strlen (p) < sizeof (hkp_errmsg)) {
+         if (!strlen (hkp_errmsg))
-             end = strstr (p, "</p>");
+             _snprintf (hkp_errmsg, DIM (hkp_errmsg)-1,
-             len = end? (end - p + 1) : strlen (p);
+                         "Unknown keyserver error");
-             memset (hkp_errmsg, 0, sizeof (hkp_errmsg));
+         hkp_err = 1;
-             strncpy (hkp_errmsg, p, len);
-             hkp_err = 1;
-         }
          return ec;
      }
      return 0;
-Line 220 
 sock_select (int fd, int nsecs)
+Line 275 
 sock_select (int fd, int nsecs)
     returned in @nbytes.
     Return value: 0 on success. */
  static int
- sock_read (int fd, char *buf, int buflen, int *nbytes)
+ sock_read (int fd, char *buf, size_t buflen, int *nbytes)
  {
-     DWORD nread;
+     int nread;
-     int nleft = buflen;
+     size_t nleft = buflen;
-     int rc, n = 0;
+     size_t n = 0;
+     int rc;
      if (nbytes)
          *nbytes = 0;
-Line 258 
 sock_read (int fd, char *buf, int buflen
+Line 314 
 sock_read (int fd, char *buf, int buflen
  /* Helper to create a string from the gpgme data and
     then release the gpgme data object. */
  char*
- data_release_and_get_mem (gpgme_data_t in, int *r_bufferlen)
+ data_release_and_get_mem (gpgme_data_t in, size_t *r_bufferlen)
  {
      size_t n;
      char *buffer, *p;
-Line 267 
 data_release_and_get_mem (gpgme_data_t i
+Line 323 
 data_release_and_get_mem (gpgme_data_t i
      p = gpgme_data_release_and_get_mem (in, &n);
      buffer = m_strdup (p);
      if (r_bufferlen)
-         *r_bufferlen = (int)n;
+         *r_bufferlen = n;
      gpgme_free (p);
      return buffer;
  }
-Line 277 
 data_release_and_get_mem (gpgme_data_t i
+Line 333 
 data_release_and_get_mem (gpgme_data_t i
     return the data in @buffer. Caller must free data.
     Return value: 0 on success. */
  int
- sock_read_ext (int fd, char **buffer, int *r_bufferlen)
+ sock_read_ext (int fd, char **buffer, size_t *r_bufferlen)
  {
      gpgme_data_t dh;
      char buf[1024];
-     size_t n=0;
+     size_t timeout=0;
      int nread, rc;
      if (gpgme_data_new (&dh))
-         BUG (0);
+         return SOCKET_ERROR;
-     while (n < 10) {
+     while (timeout < default_socket_timeout) {
          rc = sock_select (fd, 1);
          if (rc == SOCKET_ERROR) {
              gpgme_data_release (dh);
              return rc;
          }
          else if (!rc)
-             n++;
+             timeout++; /* socket not ready yet. */
          else {
-             nread = recv (fd, buf, sizeof (buf), 0);
+             nread = recv (fd, buf, DIM (buf), 0);
              if (nread == SOCKET_ERROR)
                  return SOCKET_ERROR;
              else if (!nread)
-Line 303 
 sock_read_ext (int fd, char **buffer, in
+Line 359 
 sock_read_ext (int fd, char **buffer, in
              gpgme_data_write (dh, buf, nread);
          }
      }
+     if (timeout >= default_socket_timeout)
+         return WPTERR_WINSOCK_TIMEOUT;
      *buffer = data_release_and_get_mem (dh, r_bufferlen);
      return 0;
  }
-Line 311 
 sock_read_ext (int fd, char **buffer, in
+Line 368 
 sock_read_ext (int fd, char **buffer, in
  /* Write the buffer @buf with the length @buflen to a socket @fd. */
  static int
- sock_write (int fd, const char *buf, int buflen)
+ sock_write (int fd, const char *buf, size_t buflen)
  {
-     DWORD nwritten;
+     int nwritten;
      int nleft = buflen;
      while (nleft > 0) {
-Line 351 
 wsock_end (void)
+Line 408 
 wsock_end (void)
      char *p;
      int i;
+ #ifdef WINPT_MOBILE
+     p = m_strdup ("keyserver.conf");
+ #else
      p = make_special_filename (CSIDL_APPDATA, "winpt\\keyserver.conf", NULL);
+ #endif
      kserver_save_conf (p);
      free_if_alloc (p);
      free_if_alloc (default_keyserver);
      for (i=0; i < MAX_KEYSERVERS; i++) {
-         if (server[i].used && server[i].name != NULL)
+         if (server[i].name != NULL)
              free_if_alloc (server[i].name);
      }
      kserver_proxy_release (&proxy);
      WSACleanup ();
+     log_debug ("wsock_end: cleanup finished.\r\n");
  }
-Line 406 
 wsock_strerror (void)
+Line 468 
 wsock_strerror (void)
  /* Set default socket timeout for all reading operations. */
  void
- kserver_set_socket_timeout (int nsec)
+ kserver_set_socket_timeout (size_t nsec)
  {
-     if (nsec < 0)
+     if (nsec < 0 || nsec > 3600)
          nsec = 0;
      default_socket_timeout = nsec;
  }
-Line 433 
 kserver_get_hostname (int idx, int type,
+Line 495 
 kserver_get_hostname (int idx, int type,
          *port = default_keyserver_port;
          return default_keyserver;
      }
-     else if (!type && idx < DIM (server_list)) {
+     else if (!type && (size_t)idx < DIM (server_list)) {
+         /* XXX: handle non HKP servers. */
          *port = HKP_PORT;
          return server_list[idx];
      }
-Line 452 
 kserver_check_inet_connection (void)
+Line 515 
 kserver_check_inet_connection (void)
          closesocket (fd);
          return 0;
      }
+     log_debug ("kserver_check_inet_connection: no inet connection.\r\n");
      return -1;
  }
-Line 463 
 kserver_check_inet_connection (void)
+Line 527 
 kserver_check_inet_connection (void)
  const char*
  kserver_check_keyid (const char *keyid)
  {
-     static char id[21];
+     static char id[22];
      if (strstr (keyid, "@"))
          return keyid; /* email address */
      if (strncmp (keyid, "0x", 2)) {
          memset (&id, 0, sizeof (id));
-         _snprintf (id, sizeof (id)-1, "0x%s", keyid);
+         _snprintf (id, DIM (id)-1, "0x%s", keyid);
          return id;
      }
      return keyid;
-Line 486 
 update_proxy_user (const char *proxy_use
+Line 550 
 update_proxy_user (const char *proxy_use
      n = 4*strlen (proxy_user) / 3 + 32 + strlen (proxy_pass) + 2;
      free_if_alloc (proxy.base64_user);
      proxy.base64_user = safe_alloc (n+1);
-     _snprintf (t, sizeof (t)-1, "%s:%s", proxy_user, proxy_pass);
+     _snprintf (t, DIM (t)-1, "%s:%s", proxy_user, proxy_pass);
      base64_encode (t, proxy.base64_user);
      free_if_alloc (proxy.user);
      free_if_alloc (proxy.pass);
      proxy.user = m_strdup (proxy_user);
      proxy.pass = m_strdup (proxy_pass);
  }
- /* Check that the given buffer contains a valid keyserver URL. */
- static int
- check_URL (const char * buf)
- {
-     if (strlen (buf) < 7)
-         return -1;
-     if (!strstr (buf, "ldap://")
-         && !strstr (buf, "http://")
-         && !strstr (buf, "finger://")
-         && !strstr (buf, "hkp://"))
-         return -1;
-     return 0;
- }
  /* Get the port number from the given protocol. */
-Line 515 
 static int
+Line 564 
 static int
  port_from_proto (int proto)
  {
      switch (proto) {
-     case KSPROTO_LDAP:   return 0;
+     case KSPROTO_LDAP:   return LDAP_PORT;
      case KSPROTO_FINGER: return FINGER_PORT;
      case KSPROTO_HTTP:   return HKP_PORT;
      }
-Line 529 
 proto_from_URL (const char *buf)
+Line 578 
 proto_from_URL (const char *buf)
  {
      if (strstr (buf, "ldap"))
          return KSPROTO_LDAP;
-     else if (strstr( buf, "finger"))
+     else if (strstr (buf, "finger"))
          return KSPROTO_FINGER;
      return KSPROTO_HKP;
  }
+ /* Set the default keyserver.
+    If @hostname is NULL, use the predefined keyserver. */
  void
  keyserver_set_default (const char *hostname, WORD port)
  {
+     if (!port)
+         port = HKP_PORT;
      if (hostname != NULL) {
          free_if_alloc (default_keyserver);
          default_keyserver = m_strdup (hostname);
          default_keyserver_port = port;
      }
-     if (!port)
+     if (!default_keyserver) {
-         port = HKP_PORT;
-     if (!default_keyserver)
          default_keyserver = m_strdup (DEF_HKP_KEYSERVER);
+         default_keyserver_port = HKP_PORT;
+     }
      server[0].name =  m_strdup (default_keyserver);
      server[0].used = 1;
      server[0].port = port;
-Line 598 
 kserver_save_conf (const char *conf)
+Line 651 
 kserver_save_conf (const char *conf)
  }
+ /* Return the specified keyserver config setting @key as an integer. */
+ static int
+ get_conf_kserver_int (const char *key)
+ {
+     char *p;
+     int val = 0;
+     p = get_reg_entry_keyserver (key);
+     if (p && *p)
+         val = atoi (p);
+     free_if_alloc (p);
+     return val;
+ }
+ /* Read the proxy configuration and store it into @prox. */
+ static void
+ read_proxy_config (keyserver_proxy_t prox)
+ {
+     char *proto;
+     if (!prox)
+         return;
+     proto = get_reg_entry_keyserver("Proto");
+     if (proto != NULL && strlen (proto) > 0)
+         prox->proto = atoi (proto);
+     else
+         prox->proto = PROXY_PROTO_NONE;
+     free_if_alloc (proto);
+     free_if_alloc (prox->host);
+     prox->host = get_reg_entry_keyserver ("Host");
+     free_if_alloc (prox->user);
+     prox->user = get_reg_entry_keyserver ("User");
+     free_if_alloc (prox->pass);
+     prox->pass = get_reg_entry_keyserver ("Pass");
+     prox->port = get_conf_kserver_int ("Port");
+ }
  /* Load the keyserver config file @conf. */
  int
  kserver_load_conf (const char *conf)
-Line 605 
 kserver_load_conf (const char *conf)
+Line 698 
 kserver_load_conf (const char *conf)
      FILE *fp;
      char buf[1024], *s, *p;
      char *user = NULL, *pass = NULL;
-     int no_config=0, chk_pos=0;
+     int no_config=0, chk_pos;
      int pos;
      for (pos = 0; pos < MAX_KEYSERVERS; pos++) {
          server[pos].used = 0;
          server[pos].port = HKP_PORT;
+         server[pos].name = NULL;
      }
      fp = fopen (conf, "rb");
-Line 620 
 kserver_load_conf (const char *conf)
+Line 714 
 kserver_load_conf (const char *conf)
              server[pos].name = m_strdup (server_list[pos]);
              server[pos].proto = proto_from_URL (server_list[pos]);
          }
-         no_config=1;
+         no_config = 1;
      }
-     get_reg_proxy_prefs (&proxy);
+     read_proxy_config (&proxy);
      if (user && pass)
          update_proxy_user (user, pass);
      else if (user && !pass || !user && pass) {
-         msg_box (NULL, _("Invalid proxy configuration."
+         msg_box (NULL, _("Invalid proxy configuration. "
-                          "You need to set a user and a password"
+                          "You need to set a user and a password "
                           "to use proxy authentication!"),
                           _("Proxy Error"), MB_ERR);
      }
-Line 642 
 kserver_load_conf (const char *conf)
+Line 736 
 kserver_load_conf (const char *conf)
      pos = 0;
      while (fp && !feof (fp)) {
-         s = fgets (buf, sizeof (buf)-1, fp);
+         s = fgets (buf, DIM (buf)-1, fp);
          if (!s)
              break;
          if (strstr (buf, "\r\n"))
-Line 652 
 kserver_load_conf (const char *conf)
+Line 746 
 kserver_load_conf (const char *conf)
          s = (char *)skip_whitespace (buf);
          if (*s == '#' || strlen (s) < 7)
              continue;
-         if (check_URL (s)) {
+         chk_pos = check_URL (s);
+         if (!chk_pos) {
              msg_box (NULL, _("All entries of this file must have a valid prefix.\n"
                               "Currently HKP/HTTP, LDAP and FINGER are supported.\n"),
                               _("Keyserver Error"), MB_ERR);
              continue;
          }
-         chk_pos = 6;
-         if (strstr (s, "finger"))
-             chk_pos = 10;
          p = strchr (s+chk_pos, ':');
          server[pos].used = 1;
          server[pos].proto = proto_from_URL (s);
-Line 685 
 kserver_load_conf (const char *conf)
+Line 777 
 kserver_load_conf (const char *conf)
      if (fp)
          fclose (fp);
      if (!pos) {
-         /* only issue an error if the config file exist but
+         /* Only issue an error if the config file exist but
             it has no valid entries. */
          keyserver_set_default (NULL, HKP_PORT);
          if (!no_config)
-Line 705 
 kserver_connect (const char *hostname, W
+Line 797 
 kserver_connect (const char *hostname, W
      struct sockaddr_in sock;
      char host[128] = {0};
      DWORD iaddr;
+     bool use_proxy = proxy.host != NULL;
      int rc, fd;
-     log_debug ("kserver_connect: %s:%d\r\n", hostname, port);
      if (!port)
          port = HKP_PORT;
      if (conn_fd)
          *conn_fd = 0;
      hostname = skip_type_prefix (hostname);
+     log_debug ("kserver_connect: %s:%d\r\n", hostname, port);
-     if (proxy.host && proxy.proto == PROXY_PROTO_HTTP)
+     if (use_proxy && proxy.proto == PROXY_PROTO_HTTP)
          port = proxy.port;
      memset (&sock, 0, sizeof (sock));
      sock.sin_family = AF_INET;
      sock.sin_port = htons (port);
-     if (proxy.host)
+     strncpy (host, use_proxy? proxy.host : hostname, DIM (host)-1);
-         strncpy (host, proxy.host, 127);
-     else
-         strncpy (host, hostname, 127);
      if ((iaddr = inet_addr (host)) != INADDR_NONE)
          memcpy (&sock.sin_addr, &iaddr, sizeof (iaddr));
-Line 736 
 kserver_connect (const char *hostname, W
+Line 825 
 kserver_connect (const char *hostname, W
      }
      else {
          log_debug ("gethostbyname: failed ec=%d.\r\n", net_errno);
-         return WPTERR_WINSOCK_RESOLVE;
+         return use_proxy? WPTERR_WINSOCK_PROXY : WPTERR_WINSOCK_RESOLVE;
      }
      fd = socket (AF_INET, SOCK_STREAM, 0);
      if (fd == INVALID_SOCKET)
-Line 745 
 kserver_connect (const char *hostname, W
+Line 834 
 kserver_connect (const char *hostname, W
      if (rc == SOCKET_ERROR) {
          log_debug ("connect: failed ec=%d.\r\n", net_errno);
          closesocket (fd);
-         return WPTERR_WINSOCK_CONNECT;
+         return use_proxy? WPTERR_WINSOCK_PROXY : WPTERR_WINSOCK_CONNECT;
      }
      if (proxy.proto == PROXY_PROTO_SOCKS5) {
+         /* XXX: finish code and provide errors constants. */
          rc = socks_handshake (&proxy, fd, hostname, port);
          if (rc) {
              closesocket (fd);
-             return WPTERR_GENERAL; /* XXX: use better code. */
+             return WPTERR_GENERAL;
          }
      }
-Line 763 
 kserver_connect (const char *hostname, W
+Line 853 
 kserver_connect (const char *hostname, W
  }
+ /* Check if the URL needs to be encoded or not. */
  static bool
  URL_must_encoded (const char *url)
  {
-Line 778 
 URL_encode (const char *url, DWORD ulen,
+Line 869 
 URL_encode (const char *url, DWORD ulen,
  {
      gpgme_data_t hd;
      char numbuf[5], *p;
-     size_t i;
+     size_t i, nlen;
-     int nlen;
      if (gpgme_data_new (&hd))
          BUG (0);
-Line 854 
 kserver_send_request (const char *hostna
+Line 944 
 kserver_send_request (const char *hostna
      }
      free_if_alloc (enc_pubkey);
-     log_debug ("%s\r\n", request);
+     log_debug ("request:\r\n%s\r\n", request);
      return request;
  }
-Line 862 
 kserver_send_request (const char *hostna
+Line 952 
 kserver_send_request (const char *hostna
  /* Interface for receiving a public key. */
  int
  kserver_recvkey (const char *hostname, WORD port, const char *keyid,
-                  char **r_key, int *r_keylen)
+                  char **r_key, size_t *r_keylen)
  {
-     const char *fmt;
+     StringBuffer req;
-     char *request = NULL;
+     const char *reqbuf;
      int conn_fd;
-     int rc, reqlen;
+     int rc;
      if (!port)
          port = HKP_PORT;
-Line 876 
 kserver_recvkey (const char *hostname, W
+Line 966 
 kserver_recvkey (const char *hostname, W
      if (rc)
          goto leave;
-     reqlen = strlen (hostname)+32+strlen (keyid)+1;
      if (proxy.host && proxy.user && proxy.proto == PROXY_PROTO_HTTP) {
-         fmt = "GET http://%s:%d/pks/lookup?op=get&search=%s HTTP/1.0\r\n"
+         req = req + "GET http://" + skip_type_prefix (hostname) +
-               "Proxy-Authorization: Basic %s\r\n\r\n";
+             ":" + port +
-         reqlen =+ strlen (fmt) + strlen (proxy.base64_user)+1;
+             "/pks/lookup?op=get&search=" + keyid + " HTTP/1.0\r\n" +
-         request = safe_alloc (reqlen+1);
+             "Proxy-Authorization: Basic " + proxy.base64_user + "\r\n\r\n";
-         _snprintf (request, reqlen, fmt, skip_type_prefix (hostname), port,
-                    keyid, proxy.base64_user);
      }
      else if (proxy.host && proxy.proto == PROXY_PROTO_HTTP) {
-         fmt = "GET http://%s:%d/pks/lookup?op=get&search=%s HTTP/1.0\r\n\r\n";
+         req = req + "GET http://" + skip_type_prefix (hostname) +
-         reqlen += strlen (fmt)+1;
+             ":" + port + "/pks/lookup?op=get&search=" + keyid +
-         request = safe_alloc (reqlen+1);
+             " HTTP/1.0\r\n\r\n";
-         _snprintf (request, reqlen, fmt, skip_type_prefix (hostname),
-                                          port, keyid);
-     }
-     else {
-         fmt = "GET /pks/lookup?op=get&search=%s HTTP/1.0\r\n\r\n";
-         reqlen += strlen (fmt)+1;
-         request = safe_alloc (reqlen+1);
-         _snprintf (request, reqlen, fmt, keyid);
      }
+     else
-     log_debug ("%s\r\n", request);
+         req = req + "GET /pks/lookup?op=get&search=" + keyid +
+             " HTTP/1.0\r\n\r\n";
-     rc = sock_write (conn_fd, request, strlen (request));
+     log_debug ("req:\r\n%s\r\n", req.getBuffer ());
+     reqbuf = req.getBuffer ();
+     rc = sock_write (conn_fd, reqbuf, strlen (reqbuf));
      if (rc == SOCKET_ERROR) {
          rc = WPTERR_WINSOCK_RECVKEY;
          goto leave;
-Line 913 
 kserver_recvkey (const char *hostname, W
+Line 996 
 kserver_recvkey (const char *hostname, W
          goto leave;
      }
-     log_debug ("%s\r\n", *r_key);
+     log_debug ("response:\r\n%s\r\n", *r_key);
      rc = check_hkp_response (*r_key, 1);
      if (rc)
          goto leave;
-Line 922 
 kserver_recvkey (const char *hostname, W
+Line 1005 
 kserver_recvkey (const char *hostname, W
  leave:
      closesocket (conn_fd);
-     free_if_alloc (request);
      return rc;
  }
  /* Interface to send a public key. */
  int
- kserver_sendkey (const char *hostname, WORD port, const char *pubkey, int len )
+ kserver_sendkey (const char *hostname, WORD port,
+                  const char *pubkey, size_t len)
  {
      char *request = NULL;
      char log[2048] = {0};
-Line 942 
 kserver_sendkey (const char *hostname, W
+Line 1025 
 kserver_sendkey (const char *hostname, W
          goto leave;
      request = kserver_send_request (hostname, port, pubkey, len);
-     if (request == NULL) {
-         rc = WPTERR_GENERAL;
-         goto leave;
-     }
      rc = sock_write (conn_fd, request, strlen (request));
      if (rc == SOCKET_ERROR) {
          rc = WPTERR_WINSOCK_SENDKEY;
          goto leave;
      }
-     rc = sock_read (conn_fd, log, sizeof (log)-1, &n);
+     rc = sock_read (conn_fd, log, DIM (log)-1, &n);
      if (rc == SOCKET_ERROR) {
          rc = WPTERR_WINSOCK_SENDKEY;
          goto leave;
-Line 965 
 kserver_sendkey (const char *hostname, W
+Line 1043 
 kserver_sendkey (const char *hostname, W
          goto leave;
      WSASetLastError (0);
  leave:
      closesocket (conn_fd);
      free_if_alloc (request);
-Line 981 
 kserver_search_chkresp (int fd)
+Line 1059 
 kserver_search_chkresp (int fd)
      int n=0;
      /* parse response 'HTTP/1.0 500 OK' */
-     if (sock_getline (fd, buf, sizeof (buf)-1, &n))
+     if (sock_getline (fd, buf, DIM (buf)-1, &n))
          return WPTERR_KEYSERVER_NOTFOUND;
      log_debug ("kserver_search_chkpresp: %s\r\n", buf);
-Line 1003 
 kserver_search_end (int conn_fd)
+Line 1081 
 kserver_search_end (int conn_fd)
  /* Extract the amount of keys from the info record. */
- static int
+ static size_t
  count_keys_in_response (char *buf)
  {
      char *p;
      int recno = 0;
-     int n = 0;
+     size_t n = 0;
      /* info:1:4 */
      if (strncmp (buf, "info", 4))
-Line 1031 
 count_keys_in_response (char *buf)
+Line 1109 
 count_keys_in_response (char *buf)
     the amount of keys which were found. */
  int
  kserver_search_begin (const char *hostname, WORD port,
-                       const char *pattern, int *conn_fd, int *nkeys)
+                       const char *pattern, int *conn_fd, size_t *nkeys)
  {
-     const char *fmt;
-     char *request = NULL;
+     StringBuffer req;
+     const char *reqbuf;
      char *enc_patt = NULL;
      char status[128];
      int rc, sock_fd;
-     int reqlen;
+     int nread;
      *conn_fd = 0;
-Line 1047 
 kserver_search_begin (const char *hostna
+Line 1126 
 kserver_search_begin (const char *hostna
          goto leave;
      enc_patt = URL_encode (pattern, strlen (pattern), NULL);
-     reqlen = strlen (enc_patt) + strlen (hostname) + 32 + 1;
      if (proxy.host && proxy.user && proxy.proto == PROXY_PROTO_HTTP) {
-         fmt = "GET http://%s:%d/pks/lookup?options=mr&op=index&search=%s HTTP/1.0\r\n"
+         req = req + "GET http://" + skip_type_prefix (hostname) + ":" + port +
-               "Proxy-Authorization: Basic %s\r\n\r\n";
+             "/pks/lookup?options=mr&op=index&search=" + enc_patt +
-         reqlen += strlen (proxy.base64_user) + strlen (fmt) + 1;
+             " HTTP/1.0\r\n"
-         request = safe_alloc (reqlen+1);
+             "Proxy-Authorization: Basic " + proxy.base64_user + "\r\n\r\n";
-         _snprintf (request, reqlen, fmt, skip_type_prefix (hostname), port,
-                    enc_patt, proxy.base64_user);
      }
      else if (proxy.host && proxy.proto == PROXY_PROTO_HTTP) {
-         fmt = "GET http://%s:%d/pks/lookup?options=mr&op=index&search=%s HTTP/1.0\r\n\r\n";
+         req = req + "GET http://" + skip_type_prefix (hostname) + ":" + port +
-         reqlen += strlen (fmt)+1;
+             "/pks/lookup?options=mr&op=index&search=" + enc_patt +
-         request = safe_alloc (reqlen+1);
+             " HTTP/1.0\r\n\r\n";
-         _snprintf (request, reqlen, skip_type_prefix (hostname), port,
-                             enc_patt);
      }
      else {
-         fmt = "GET /pks/lookup?options=mr&op=index&search=%s HTTP/1.0\r\n\r\n";
+         req = req + "GET /pks/lookup?options=mr&op=index&search=" +
-         reqlen += strlen (fmt)+1;
+             enc_patt + " HTTP/1.0\r\n\r\n";
-         request = safe_alloc (reqlen+1);
-         _snprintf (request, reqlen, fmt, enc_patt);
      }
-     log_debug ("kserver_search_begin:\r\n%s\r\n", request);
+     log_debug ("kserver_search_begin:\r\n%s\r\n", req.getBuffer ());
-     if (sock_write (sock_fd, request, strlen (request)) == SOCKET_ERROR) {
+     reqbuf = req.getBuffer ();
+     if (sock_write (sock_fd, reqbuf, strlen (reqbuf)) == SOCKET_ERROR) {
          rc = WPTERR_GENERAL;
          goto leave;
      }
-Line 1086 
 kserver_search_begin (const char *hostna
+Line 1158 
 kserver_search_begin (const char *hostna
      /* Skip all lines until we reach the "info:" record. */
      for (;;) {
-         if (sock_getline (sock_fd, status, sizeof (status)-1, &reqlen)) {
+         if (sock_getline (sock_fd, status, DIM (status)-1, &nread)) {
              log_debug ("kserver_search_begin: retrieving status line failed.\r\n");
              closesocket (sock_fd);
              sock_fd = 0;
-Line 1102 
 kserver_search_begin (const char *hostna
+Line 1174 
 kserver_search_begin (const char *hostna
      *conn_fd = sock_fd;
  leave:
-     free_if_alloc (request);
      free_if_alloc (enc_patt);
      return rc;
  }
-Line 1115 
 parse_pub_record (keyserver_key_s *key,
+Line 1186 
 parse_pub_record (keyserver_key_s *key,
      enum pub_rec_t {ID=1, KEYID, ALGO, SIZE, CREATE, EXPIRE};
      char *p;
      int recno = 0;
+     int off = 0;
-     /* pub:BF3DF9B4:17:1024:925411133:: */
+     /* pub:{BF3DF9B4, ED4681C9BF3DF9B4, FPR}:17:1024:925411133:: */
      p = strtok (buf, ":");
      while (p != NULL) {
          recno++;
-Line 1124 
 parse_pub_record (keyserver_key_s *key,
+Line 1196 
 parse_pub_record (keyserver_key_s *key,
          case ID:
              break;
          case KEYID:
+             /* If for any reason the returned record actually contains
+                a fingerprint instead of a key ID, we truncate the fpr. */
+             off = strlen (p) == 40? 32 : 0;
              free_if_alloc (key->keyid);
-             key->keyid = m_strdup (p);
+             key->keyid = m_strdup (p+off);
              break;
          case ALGO:
-Line 1147 
 parse_pub_record (keyserver_key_s *key,
+Line 1222 
 parse_pub_record (keyserver_key_s *key,
          }
          p = strtok (NULL, ":");
      }
  }
-Line 1157 
 parse_uid_record (keyserver_key_s *key,
+Line 1231 
 parse_uid_record (keyserver_key_s *key,
  {
      enum uid_rec_t {ID=1, UID, CREATE, EXPIRE};
      keyserver_uid_s *u, *n;
-     char *p;
+     char *p, *raw;
      int recno = 0;
      /* uid:Timo Schulz <[email protected]>:1138440360:: */
-Line 1173 
 parse_uid_record (keyserver_key_s *key,
+Line 1247 
 parse_uid_record (keyserver_key_s *key,
              break;
          case UID:
-             /* XXX: search for %3A and decode it back to ':' */
+             unhexify_buffer (p, &raw);
-             u->uid = m_strdup (p);
+             u->uid = utf8_to_native (raw);
+             free_if_alloc (raw);
              break;
          case CREATE:
-Line 1230 
 kserver_search_next (int fd, keyserver_k
+Line 1305 
 kserver_search_next (int fd, keyserver_k
      key = new keyserver_key_s;
      memset (key, 0, sizeof *key);
      for (;;) {
-         if (sock_getline (fd, buf, sizeof (buf)-1, &n))
+         if (sock_getline (fd, buf, DIM (buf)-1, &n))
              break;
+         /*log_debug ("record: '%s'\r\n", buf); */
          if (!strncmp (buf, "pub", 3))
              parse_pub_record (key, buf);
          else
-Line 1314 
 static FILE*
+Line 1390 
 static FILE*
  do_spawn_ldap_helper (const char *host, const char *keyid)
  {
      FILE *fp = NULL;
-     char *p, *sep;
+     StringBuffer cmd;
-     char *ksprg;
+     char *sep, *p, *ksprg;
      char outf[256], inf[256];
      size_t n;
-Line 1336 
 do_spawn_ldap_helper (const char *host,
+Line 1412 
 do_spawn_ldap_helper (const char *host,
          fp = NULL;
          goto leave;
      }
-     get_temp_name (outf, sizeof (outf)-1, keyid);
+     get_temp_name (outf, DIM (outf)-1, keyid);
-     get_temp_name (inf, sizeof (inf)-1, NULL);
+     get_temp_name (inf, DIM (inf)-1, NULL);
      fp = fopen (inf, "w+b");
      if (!fp) {
          log_box ("LDAP Keyserver Plugin", MB_ERR, "%s: %s", inf,
-Line 1346 
 do_spawn_ldap_helper (const char *host,
+Line 1422 
 do_spawn_ldap_helper (const char *host,
      }
      fprintf (fp,
          "VERSION 1\n"
-         "PROGRAM 1.4.3-cvs\n"
+         "PROGRAM %d.%d.%d\n"
          "SCHEME ldap\n"
          "HOST %s\n"
          "COMMAND GET\n"
          "\n"
          "%s\n",
+         gpgver[0], gpgver[1], gpgver[2],
          host? skip_type_prefix (host): "64.94.85.200", keyid);
      fclose (fp);
-     p = safe_alloc (strlen (ksprg) + strlen (inf) + strlen (outf) + 32);
+     cmd = ksprg;
-     sprintf (p, "%s -o %s %s", ksprg, outf, inf);
+     cmd = cmd + " -o " + outf + " " + inf;
-     if (spawn_application (p)) {
+     if (spawn_application ((char*)cmd.getBuffer ())) {
          fp = NULL;
          goto leave;
      }
-Line 1369 
 do_spawn_ldap_helper (const char *host,
+Line 1446 
 do_spawn_ldap_helper (const char *host,
  leave:
      DeleteFile (inf);
      DeleteFile (outf);
-     free_if_alloc (p);
      free_if_alloc (ksprg);
      return fp;
  }
-Line 1378 
 leave:
+Line 1454 
 leave:
     @key contains the key on success. */
  int
  ldap_recvkey (const char *host, const char *keyid,
-               char **r_key, int *r_keylen)
+               char **r_key, size_t *r_keylen)
  {
      gpgme_data_t raw;
      FILE *fp;
-Line 1394 
 ldap_recvkey (const char *host, const ch
+Line 1470 
 ldap_recvkey (const char *host, const ch
      if (gpgme_data_new (&raw))
          BUG (0);
      while (!feof (fp)) {
-         s = fgets (buf, sizeof (buf)-1, fp);
+         s = fgets (buf, DIM (buf)-1, fp);
          if (!s)
              break;
          if (strstr (s, "KEY") && strstr (s, "FAILED")) {
-Line 1424 
 ldap_recvkey (const char *host, const ch
+Line 1500 
 ldap_recvkey (const char *host, const ch
     On success @key contains the key. */
  int
  finger_recvkey (const char *host, const char *user,
-                 char **r_key, int *r_keylen)
+                 char **r_key, size_t *r_keylen)
  {
      gpgme_data_t raw;
-     char buf[256];
+     char buf[256+1];
      int fd, nread;
      int start_key = 0;
      int rc=0;
-Line 1440 
 finger_recvkey (const char *host, const
+Line 1516 
 finger_recvkey (const char *host, const
      sock_write (fd, "\r\n", 2);
      if (gpgme_data_new (&raw))
-         BUG (0);
+         return WPTERR_WINSOCK_RECVKEY;
      for (;;) {
-         if (sock_getline (fd, buf, sizeof (buf), &nread))
+         if (sock_getline (fd, buf, DIM (buf)-1, &nread))
              break;
          strcat (buf, "\n");
          if (strstr (buf, "BEGIN PGP PUBLIC KEY BLOCK")) {
-Line 1467 
 finger_recvkey (const char *host, const
+Line 1543 
 finger_recvkey (const char *host, const
  }
- /* Check if the given name @name is a valid hostname. */
+ /* Check if the given name @name is a valid inernet address
+    which means an dotted IP or a valid DNS name.
+    Return value: 0 on success. */
  int
- check_IP_or_hostname (const char *name)
+ check_inet_address (const char *addr)
  {
      const char *not_allowed = "=!�$%&@#*~\\/}][{<>|,;:'";
-     size_t i, j;
+     size_t i;
-     for (i=0; i < strlen (name); i++) {
+     for (i=0; i < strlen (addr); i++) {
-         for (j =0; j < strlen (not_allowed); j++) {
+         if (strchr (not_allowed, addr[i]))
-             if (name[i] == not_allowed[j])
+             return -1;
-                 return -1;
-         }
      }
      return 0;
  }
-Line 1491 
 parse_keyserver_url (char **r_keyserver,
+Line 1567 
 parse_keyserver_url (char **r_keyserver,
  {
      char *p;
      char *url = *r_keyserver;
+     int off = 0;
      /* no port is given so use the default port. */
      p = strrchr (url, ':');
-Line 1501 
 parse_keyserver_url (char **r_keyserver,
+Line 1578 
 parse_keyserver_url (char **r_keyserver,
          *r_port = port;
          return 0;
      }
-     /* XXX: remove / in .de/:11371 */
-     *r_keyserver = substr (url, 0, (p-url));
+     if (url[(p-url)-1] == '/') /* remove / in .de/:11371 */
+         off = 1;
+     *r_keyserver = substr (url, 0, (p-url)-off);
      *r_port = atoi (url+(p-url)+1);
-     safe_free (url);
+     free_if_alloc (url);
      return 0;
  }

 Legend:



Removed from v.214
 


changed lines


 
Added in v.290
 Legend:



Removed from v.214
 


changed lines


 
Added in v.290
-Removed from v.214
+Added in v.290

[email protected]	ViewVC Help
Powered by ViewVC 1.1.26