dirmngr: Use sks-keyservers CA by default for the hkps pool.

* dirmngr/Makefile.am (dist_pkgdata_DATA): Add sks-keyservers.netCA.pem. * dirmngr/http.c (http_session_new): Add optional arg intended_hostname and set a default cert. * dirmngr/ks-engine-hkp.c (send_request): Pass httphost to http_session_new. -- Ship the certificate for the sks-keyservers hkps pool. If the user has specified that they want to use hkps://hkps.pool.sks-keyservers.net, and they have not specified any hkp-cacert explicitly, then initialize the trust path with this specific trust anchor. Co-authored-by: [email protected] Signed-off-by: Werner Koch <[email protected]>
author: Daniel Kahn Gillmor <[email protected]> 2015-10-20 03:48:30 +0000
committer: Werner Koch <[email protected]> 2016-01-22 10:53:49 +0000
commit: afb8696126ff0babaab23e884ff5da008281e3b7 (patch)
tree: 371c8a68e6a42b04da8a2e8e3bbcc9c91e6ddd2d /dirmngr/t-http.c
parent: gpg: Rework gpg-conf.skel (diff)
download: gnupg-afb8696126ff0babaab23e884ff5da008281e3b7.tar.gz
gnupg-afb8696126ff0babaab23e884ff5da008281e3b7.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/dirmngr/t-http.c b/dirmngr/t-http.c
index 63662a286..9d5ea5fd2 100644
--- a/dirmngr/t-http.c
+++ b/dirmngr/t-http.c
@@ -262,7 +262,7 @@ main (int argc, char **argv)
   http_register_tls_callback (verify_callback);
   http_register_tls_ca (cafile);
 
-  err = http_session_new (&session, NULL);
+  err = http_session_new (&session, NULL, NULL);
   if (err)
     log_error ("http_session_new failed: %s\n", gpg_strerror (err));
author	Daniel Kahn Gillmor <[email protected]>	2015-10-20 03:48:30 +0000
committer	Werner Koch <[email protected]>	2016-01-22 10:53:49 +0000
commit	afb8696126ff0babaab23e884ff5da008281e3b7 (patch)
tree	371c8a68e6a42b04da8a2e8e3bbcc9c91e6ddd2d /dirmngr/t-http.c
parent	gpg: Rework gpg-conf.skel (diff)
download	gnupg-afb8696126ff0babaab23e884ff5da008281e3b7.tar.gz gnupg-afb8696126ff0babaab23e884ff5da008281e3b7.zip