Use the longest key ID available when talking to a HKP server.

This is issue 1340. Now that PKSD is dead, and SKS supports long key IDs, this is safe to do. Patch from Daniel Kahn Gillmor <dkg@fifthhorseman.net>.
2024-11-10 21:38:50 +01:00 · 2011-12-28 16:41:31 -05:00 · 2011-12-28 16:41:31 -05:00 · 6fe25e5602
commit 6fe25e5602
parent 120b0ce136
1 changed files with 13 additions and 7 deletions
--- a/keyserver/gpgkeys_hkp.c
+++ b/keyserver/gpgkeys_hkp.c
@ -234,9 +234,10 @@ static int
 get_key(char *getkey)
 {
  CURLcode res;
-  char request[MAX_URL+60];
+  char request[MAX_URL+92];
  char *offset;
  struct curl_writer_ctx ctx;
+  size_t keylen;

  memset(&ctx,0,sizeof(ctx));

@ -262,14 +263,19 @@ get_key(char *getkey)
  strcat(request,port);
  strcat(request,opt->path);
  /* request is MAX_URL+55 bytes long - MAX_URL covers the whole URL,
-     including any supplied path.  The 60 overcovers this /pks/... etc
-     string plus the 8 bytes of key id */
+     including any supplied path.  The 92 overcovers this /pks/... etc
+     string plus the 8, 16, or 40 bytes of key id/fingerprint */
  append_path(request,"/pks/lookup?op=get&options=mr&search=0x");

-  /* fingerprint or long key id.  Take the last 8 characters and treat
-     it like a short key id */
-  if(strlen(getkey)>8)
-    offset=&getkey[strlen(getkey)-8];
+  /* send only fingerprint, long key id, or short keyid.  see:
+     https://tools.ietf.org/html/draft-shaw-openpgp-hkp-00#section-3.1.1.1 */
+  keylen = strlen(getkey);
+  if(keylen >= 40)
+    offset=&getkey[keylen-40];
+  else if(keylen >= 16)
+    offset=&getkey[keylen-16];
+  else if(keylen >= 8)
+    offset=&getkey[keylen-8];
  else
    offset=getkey;