Initail import package wget: A utility for retrieving files using the HTTP or FTP...

[external/wget.git] / packaging / wget-1.12-CVE-2010-2252.patch

diff -rupN wget-1.12.orig//doc/wget.texi wget-1.12//doc/wget.texi
--- wget-1.12.orig//doc/wget.texi       2009-09-05 05:22:04.000000000 +0800
+++ wget-1.12//doc/wget.texi    2010-10-12 23:26:37.554569261 +0800
@@ -1487,6 +1487,13 @@ This option is useful for some file-down
 @code{Content-Disposition} headers to describe what the name of a
 downloaded file should be.
 
+@cindex Trust server names
+@item --trust-server-names
+
+If this is set to on, on a redirect the last component of the
+redirection URL will be used as the local file name.  By default it is
+used the last component in the original URL.
+
 @cindex authentication
 @item --auth-no-challenge
 
@@ -2799,6 +2806,10 @@ Set the connect timeout---the same as @s
 Turn on recognition of the (non-standard) @samp{Content-Disposition}
 HTTP header---if set to @samp{on}, the same as @samp{--content-disposition}.
 
+@item trust_server_names = on/off
+If set to on, use the last component of a redirection URL for the local
+file name.
+
 @item continue = on/off
 If set to on, force continuation of preexistent partially retrieved
 files.  See @samp{-c} before setting it.
diff -rupN wget-1.12.orig//NEWS wget-1.12//NEWS
--- wget-1.12.orig//NEWS        2009-09-22 10:53:35.000000000 +0800
+++ wget-1.12//NEWS     2010-10-12 23:24:57.746064253 +0800
@@ -5,6 +5,10 @@ Copyright (C) 1997, 1998, 1999, 2000, 20
 See the end for copying conditions.
 
 Please send GNU Wget bug reports to <bug-wget@gnu.org>.
+
+** By default, on server redirects, use the original URL to get the
+   local file name. Close CVE-2010-2252.
+
 \f
 * Changes in Wget 1.12
 
diff -rupN wget-1.12.orig//src/ChangeLog wget-1.12//src/ChangeLog
--- wget-1.12.orig//src/ChangeLog       2009-09-22 23:35:54.000000000 +0800
+++ wget-1.12//src/ChangeLog    2010-10-12 23:29:36.266568685 +0800
@@ -1,3 +1,20 @@
+2010-07-28  Giuseppe Scrivano  <gscrivano@gnu.org>
+
+       * http.h (http_loop): Add new argument `original_url'
+       * http.c (http_loop): Add new argument `original_url'.  Use
+       `original_url' to get a filename if `trustservernames' is false.
+
+       * init.c (commands): Add "trustservernames".
+
+       * options.h (library): Add variable `trustservernames'.
+
+       * main.c (option_data): Add trust-server-names.
+       (print_help): Describe --trust-server-names.
+
+       * retr.c (retrieve_url): Pass new argument to `http_loop'.
+
+       * Patched code merged by Jian-feng Ding <jian-feng.ding@intel.com>
+
 2009-09-22  Micah Cowan  <micah@cowan.name>
 
        * openssl.c (ssl_check_certificate): Avoid reusing the same buffer
diff -rupN wget-1.12.orig//src/http.c wget-1.12//src/http.c
--- wget-1.12.orig//src/http.c  2009-09-22 11:02:18.000000000 +0800
+++ wget-1.12//src/http.c       2010-10-12 23:36:45.882569196 +0800
@@ -2410,8 +2410,9 @@ File %s already there; not retrieving.\n
 /* The genuine HTTP loop!  This is the part where the retrieval is
    retried, and retried, and retried, and...  */
 uerr_t
-http_loop (struct url *u, char **newloc, char **local_file, const char *referer,
-           int *dt, struct url *proxy, struct iri *iri)
+http_loop (struct url *u, struct url *original_url, char **newloc,
+           char **local_file, const char *referer, int *dt, struct url *proxy,
+           struct iri *iri)
 {
   int count;
   bool got_head = false;         /* used for time-stamping and filename detection */
@@ -2457,7 +2458,8 @@ http_loop (struct url *u, char **newloc,
     }
   else if (!opt.content_disposition)
     {
-      hstat.local_file = url_file_name (u);
+      hstat.local_file =
+        url_file_name (opt.trustservernames ? u : original_url);
       got_name = true;
     }
 
@@ -2497,7 +2499,7 @@ File %s already there; not retrieving.\n
 
   /* Send preliminary HEAD request if -N is given and we have an existing
    * destination file. */
-  file_name = url_file_name (u);
+  file_name = url_file_name (opt.trustservernames ? u : original_url);
   if (opt.timestamping
       && !opt.content_disposition
       && file_exists_p (file_name))
diff -rupN wget-1.12.orig//src/http.h wget-1.12//src/http.h
--- wget-1.12.orig//src/http.h  2009-09-05 00:31:54.000000000 +0800
+++ wget-1.12//src/http.h       2010-10-12 23:38:06.098870920 +0800
@@ -33,8 +33,8 @@ as that of the covered work.  */
 
 struct url;
 
-uerr_t http_loop (struct url *, char **, char **, const char *, int *,
-                 struct url *, struct iri *);
+uerr_t http_loop (struct url *, struct url *, char **, char **, const char *,
+                  int *, struct url *, struct iri *);
 void save_cookies (void);
 void http_cleanup (void);
 time_t http_atotm (const char *);
diff -rupN wget-1.12.orig//src/init.c wget-1.12//src/init.c
--- wget-1.12.orig//src/init.c  2009-09-22 11:02:41.000000000 +0800
+++ wget-1.12//src/init.c       2010-10-12 23:38:43.781575846 +0800
@@ -243,6 +243,7 @@ static const struct {
   { "timeout",          NULL,                   cmd_spec_timeout },
   { "timestamping",     &opt.timestamping,      cmd_boolean },
   { "tries",            &opt.ntry,              cmd_number_inf },
+  { "trustservernames", &opt.trustservernames,  cmd_boolean },
   { "useproxy",         &opt.use_proxy,         cmd_boolean },
   { "user",             &opt.user,              cmd_string },
   { "useragent",        NULL,                   cmd_spec_useragent },
diff -rupN wget-1.12.orig//src/main.c wget-1.12//src/main.c
--- wget-1.12.orig//src/main.c  2009-09-22 11:03:11.000000000 +0800
+++ wget-1.12//src/main.c       2010-10-12 23:40:56.793873677 +0800
@@ -266,6 +266,7 @@ static struct cmdline_option option_data
     { "timeout", 'T', OPT_VALUE, "timeout", -1 },
     { "timestamping", 'N', OPT_BOOLEAN, "timestamping", -1 },
     { "tries", 't', OPT_VALUE, "tries", -1 },
+    { "trust-server-names", 0, OPT_BOOLEAN, "trustservernames", -1 },
     { "user", 0, OPT_VALUE, "user", -1 },
     { "user-agent", 'U', OPT_VALUE, "useragent", -1 },
     { "verbose", 'v', OPT_BOOLEAN, "verbose", -1 },
@@ -677,6 +678,8 @@ Recursive accept/reject:\n"),
     N_("\
   -X,  --exclude-directories=LIST  list of excluded directories.\n"),
     N_("\
+  --trust-server-names  use the name specified by the redirection url last component.\n"),
+    N_("\
   -np, --no-parent                 don't ascend to the parent directory.\n"),
     "\n",
 
diff -rupN wget-1.12.orig//src/options.h wget-1.12//src/options.h
--- wget-1.12.orig//src/options.h       2009-09-22 11:03:47.000000000 +0800
+++ wget-1.12//src/options.h    2010-10-12 23:41:12.098201815 +0800
@@ -242,6 +242,7 @@ struct options
   char *encoding_remote;
   char *locale;
 
+  bool trustservernames;
 #ifdef __VMS
   int ftp_stmlf;                /* Force Stream_LF format for binary FTP. */
 #endif /* def __VMS */
diff -rupN wget-1.12.orig//src/retr.c wget-1.12//src/retr.c
--- wget-1.12.orig//src/retr.c  2009-09-05 00:31:54.000000000 +0800
+++ wget-1.12//src/retr.c       2010-10-12 23:42:03.433569219 +0800
@@ -689,7 +689,8 @@ retrieve_url (struct url * orig_parsed,
 #endif
       || (proxy_url && proxy_url->scheme == SCHEME_HTTP))
     {
-      result = http_loop (u, &mynewloc, &local_file, refurl, dt, proxy_url, iri);
+      result = http_loop (u, orig_parsed, &mynewloc, &local_file, refurl, dt,
+                          proxy_url, iri);
     }
   else if (u->scheme == SCHEME_FTP)
     {