brew/Library/Homebrew/utils/curl.rb

# frozen_string_literal: true

require "open3"

def curl_executable
  @curl ||= [
    ENV["HOMEBREW_CURL"],
    which("curl"),
    "/usr/bin/curl",
  ].compact.map { |c| Pathname(c) }.find(&:executable?)
  raise "no executable curl was found" unless @curl

  @curl
end

def curl_args(*extra_args, show_output: false, user_agent: :default)
  args = []

  # do not load .curlrc unless requested (must be the first argument)
  args << "-q" unless ENV["HOMEBREW_CURLRC"]

  args << "--globoff"

  args << "--show-error"

  args << "--user-agent" << case user_agent
  when :browser, :fake
    HOMEBREW_USER_AGENT_FAKE_SAFARI
  when :default
    HOMEBREW_USER_AGENT_CURL
  else
    user_agent
  end

  unless show_output
    args << "--fail"
    args << "--progress-bar" unless Homebrew.args.verbose?
    args << "--verbose" if ENV["HOMEBREW_CURL_VERBOSE"]
    args << "--silent" unless $stdout.tty?
  end

  args << "--retry" << ENV["HOMEBREW_CURL_RETRIES"] if ENV["HOMEBREW_CURL_RETRIES"]

  args + extra_args
end

def curl(*args, secrets: [], **options)
  # SSL_CERT_FILE can be incorrectly set by users or portable-ruby and screw
  # with SSL downloads so unset it here.
  system_command! curl_executable,
                  args:         curl_args(*args, **options),
                  print_stdout: true,
                  env:          { "SSL_CERT_FILE" => nil },
                  secrets:      secrets
end

def curl_download(*args, to: nil, **options)
  destination = Pathname(to)
  destination.dirname.mkpath

  range_stdout = curl_output("--location", "--range", "0-1",
                             "--dump-header", "-",
                             "--write-out", "%\{http_code}",
                             "--output", "/dev/null", *args, **options).stdout
  headers, _, http_status = range_stdout.partition("\r\n\r\n")

  supports_partial_download = http_status.to_i == 206 # Partial Content
  if supports_partial_download &&
     destination.exist? &&
     destination.size == %r{^.*Content-Range: bytes \d+-\d+/(\d+)\r\n.*$}m.match(headers)&.[](1)&.to_i
    return # We've already downloaded all the bytes
  end

  continue_at = if destination.exist? && supports_partial_download
    "-"
  else
    0
  end

  curl("--location", "--remote-time", "--continue-at", continue_at.to_s, "--output", destination, *args, **options)
rescue ErrorDuringExecution => e
  # This is a workaround for https://github.com/curl/curl/issues/1618.
  raise unless e.status.exitstatus == 56 # Unexpected EOF

  raise if args.include?("--http1.1")

  out = curl_output("-V").stdout

  # If `curl` doesn't support HTTP2, the exception is unrelated to this bug.
  raise unless out.include?("HTTP2")

  # The bug is fixed in `curl` >= 7.60.0.
  curl_version = out[/curl (\d+(\.\d+)+)/, 1]
  raise if Gem::Version.new(curl_version) >= Gem::Version.new("7.60.0")

  args << "--http1.1"
  retry
end

def curl_output(*args, secrets: [], **options)
  system_command curl_executable,
                 args:         curl_args(*args, show_output: true, **options),
                 print_stderr: false,
                 secrets:      secrets
end

def curl_check_http_content(url, user_agents: [:default], check_content: false, strict: false)
  return unless url.start_with? "http"

  details = nil
  user_agent = nil
  hash_needed = url.start_with?("http:")
  user_agents.each do |ua|
    details = curl_http_content_headers_and_checksum(url, hash_needed: hash_needed, user_agent: ua)
    user_agent = ua
    break if http_status_ok?(details[:status])
  end

  unless details[:status]
    # Hack around https://github.com/Homebrew/brew/issues/3199
    return if MacOS.version == :el_capitan

    return "The URL #{url} is not reachable"
  end

  unless http_status_ok?(details[:status])
    return "The URL #{url} is not reachable (HTTP status code #{details[:status]})"
  end

  if url.start_with?("https://") && ENV["HOMEBREW_NO_INSECURE_REDIRECT"] &&
     !details[:final_url].start_with?("https://")
    return "The URL #{url} redirects back to HTTP"
  end

  return unless hash_needed

  secure_url = url.sub "http", "https"
  secure_details =
    curl_http_content_headers_and_checksum(secure_url, hash_needed: true, user_agent: user_agent)

  if !http_status_ok?(details[:status]) ||
     !http_status_ok?(secure_details[:status])
    return
  end

  etag_match = details[:etag] &&
               details[:etag] == secure_details[:etag]
  content_length_match =
    details[:content_length] &&
    details[:content_length] == secure_details[:content_length]
  file_match = details[:file_hash] == secure_details[:file_hash]

  if (etag_match || content_length_match || file_match) &&
     secure_details[:final_url].start_with?("https://") &&
     url.start_with?("http://")
    return "The URL #{url} should use HTTPS rather than HTTP"
  end

  return unless check_content

  no_protocol_file_contents = %r{https?:\\?/\\?/}
  details[:file] = details[:file].gsub(no_protocol_file_contents, "/")
  secure_details[:file] = secure_details[:file].gsub(no_protocol_file_contents, "/")

  # Check for the same content after removing all protocols
  if (details[:file] == secure_details[:file]) &&
     secure_details[:final_url].start_with?("https://") &&
     url.start_with?("http://")
    return "The URL #{url} should use HTTPS rather than HTTP"
  end

  return unless strict

  # Same size, different content after normalization
  # (typical causes: Generated ID, Timestamp, Unix time)
  if details[:file].length == secure_details[:file].length
    return "The URL #{url} may be able to use HTTPS rather than HTTP. Please verify it in a browser."
  end

  lenratio = (100 * secure_details[:file].length / details[:file].length).to_i
  return unless (90..110).cover?(lenratio)

  "The URL #{url} may be able to use HTTPS rather than HTTP. Please verify it in a browser."
end

def curl_http_content_headers_and_checksum(url, hash_needed: false, user_agent: :default)
  file = Tempfile.new.tap(&:close)

  max_time = hash_needed ? "600" : "25"
  output, = curl_output(
    "--dump-header", "-", "--output", file.path, "--include", "--location",
    "--connect-timeout", "15", "--max-time", max_time, url,
    user_agent: user_agent
  )

  status_code = :unknown
  while status_code == :unknown || status_code.to_s.start_with?("3")
    headers, _, output = output.partition("\r\n\r\n")
    status_code = headers[%r{HTTP\/.* (\d+)}, 1]
    final_url = headers[/^Location:\s*(.*)$/i, 1]&.chomp
  end

  output_hash = Digest::SHA256.file(file.path) if hash_needed

  final_url ||= url

  {
    url:            url,
    final_url:      final_url,
    status:         status_code,
    etag:           headers[%r{ETag: ([wW]\/)?"(([^"]|\\")*)"}, 2],
    content_length: headers[/Content-Length: (\d+)/, 1],
    file_hash:      output_hash,
    file:           output,
  }
ensure
  file.unlink
end

def http_status_ok?(status)
  (100..299).cover?(status.to_i)
end
Add frozen_string_literal to all files. 2019-04-19 15:38:03 +09:00			`# frozen_string_literal: true`

github: produce better curl error messages. (#441) * global: add RUBY_TWO global variable. * test-bot: use RUBY_TWO global variable. * github: produce better curl error messages. If we don't know why curl has failed then ensure that the error messages that it produced are included as part of the user output. 2016-07-12 19:46:29 +01:00			`require "open3"`
Use `curl` for the GitHub API (#295) * Move GitHub API module to utils/github.rb. * Move curl method to utils/curl.rb. * global: use long curl arguments and an array. This makes the code more self-documenting. * utils/curl: support reading curl's output. * utils/github: use curl instead of open-uri. It has far better proxy support. * pull: set Homebrew user agent. * gist-logs: remove trailing whitespace. * gist-logs: use first instead of [0]. Easier to read. * gist-logs: use curl-based GitHub.open method. 2016-06-03 13:05:18 +01:00
Simplify CurlDownloadStrategy. 2017-08-08 18:10:13 +02:00			`def curl_executable`
curl: handle more non-executable curl edge-cases. Address some additional issues mentioned in #3624. 2018-01-11 16:33:20 +00:00			`@curl \|\|= [`
			`ENV["HOMEBREW_CURL"],`
			`which("curl"),`
			`"/usr/bin/curl",`
fix: crash when curl is not installed 2018-03-17 16:46:44 -07:00			`].compact.map { \|c\| Pathname(c) }.find(&:executable?)`
			`raise "no executable curl was found" unless @curl`
Update to RuboCop 0.59.1. 2018-09-17 02:45:00 +02:00
curl: handle more non-executable curl edge-cases. Address some additional issues mentioned in #3624. 2018-01-11 16:33:20 +00:00			`@curl`
Simplify CurlDownloadStrategy. 2017-08-08 18:10:13 +02:00			`end`
Use `curl` for the GitHub API (#295) * Move GitHub API module to utils/github.rb. * Move curl method to utils/curl.rb. * global: use long curl arguments and an array. This makes the code more self-documenting. * utils/curl: support reading curl's output. * utils/github: use curl instead of open-uri. It has far better proxy support. * pull: set Homebrew user agent. * gist-logs: remove trailing whitespace. * gist-logs: use first instead of [0]. Easier to read. * gist-logs: use curl-based GitHub.open method. 2016-06-03 13:05:18 +01:00
Simplify CurlDownloadStrategy. 2017-08-08 18:10:13 +02:00			`def curl_args(*extra_args, show_output: false, user_agent: :default)`
Use `SystemCommand` for `curl`. 2018-07-30 10:11:00 +02:00			`args = []`
Add/use HOMEBREW_CURLRC variable. 2018-04-08 15:51:58 -07:00
			`# do not load .curlrc unless requested (must be the first argument)`
Only read curlrc if HOMEBREW_CURLRC is set. This reverses the previous, incorrect order. 2018-04-09 15:43:03 -07:00			`args << "-q" unless ENV["HOMEBREW_CURLRC"]`
Add/use HOMEBREW_CURLRC variable. 2018-04-08 15:51:58 -07:00
Disable `curl` globbing. 2019-10-01 08:38:44 +02:00			`args << "--globoff"`

Add/use HOMEBREW_CURLRC variable. 2018-04-08 15:51:58 -07:00			`args << "--show-error"`
Use `curl` for the GitHub API (#295) * Move GitHub API module to utils/github.rb. * Move curl method to utils/curl.rb. * global: use long curl arguments and an array. This makes the code more self-documenting. * utils/curl: support reading curl's output. * utils/github: use curl instead of open-uri. It has far better proxy support. * pull: set Homebrew user agent. * gist-logs: remove trailing whitespace. * gist-logs: use first instead of [0]. Easier to read. * gist-logs: use curl-based GitHub.open method. 2016-06-03 13:05:18 +01:00
Simplify CurlDownloadStrategy. 2017-08-08 18:10:13 +02:00			`args << "--user-agent" << case user_agent`
			`when :browser, :fake`
			`HOMEBREW_USER_AGENT_FAKE_SAFARI`
			`when :default`
			`HOMEBREW_USER_AGENT_CURL`
Allow `brew audit` to fake a Safari user-agent. This allows us to detect if homepages such as e.g. `aiccu` which blocks `curl` are up or not. 2017-01-07 14:03:08 +00:00			`else`
Simplify CurlDownloadStrategy. 2017-08-08 18:10:13 +02:00			`user_agent`
curl: make curl_args more configurable. Allow configuring whether output should be shown or the default the default user agent is used. 2016-12-25 23:01:40 +00:00			`end`

Simplify CurlDownloadStrategy. 2017-08-08 18:10:13 +02:00			`unless show_output`
Don’t pass `--fail` for `curl_output`. 2017-08-11 12:28:58 +02:00			`args << "--fail"`
ARGV: Replace ARGV.verbose? with Homebrew.args.verbose? 2020-02-01 13:32:39 +01:00			`args << "--progress-bar" unless Homebrew.args.verbose?`
curl: make curl_args more configurable. Allow configuring whether output should be shown or the default the default user agent is used. 2016-12-25 23:01:40 +00:00			`args << "--verbose" if ENV["HOMEBREW_CURL_VERBOSE"]`
Remove Travis CI specific code We’re no longer using this for our CI so this is no longer necessary. Also, migrate `brew tap-new` to use Azure pipelines. 2018-12-30 21:13:24 +00:00			`args << "--silent" unless $stdout.tty?`
curl: make curl_args more configurable. Allow configuring whether output should be shown or the default the default user agent is used. 2016-12-25 23:01:40 +00:00			`end`

add HOMEBREW_CURL_RETRIES 2019-05-17 10:14:54 +01:00			`args << "--retry" << ENV["HOMEBREW_CURL_RETRIES"] if ENV["HOMEBREW_CURL_RETRIES"]`

Simplify CurlDownloadStrategy. 2017-08-08 18:10:13 +02:00			`args + extra_args`
Use `curl` for the GitHub API (#295) * Move GitHub API module to utils/github.rb. * Move curl method to utils/curl.rb. * global: use long curl arguments and an array. This makes the code more self-documenting. * utils/curl: support reading curl's output. * utils/github: use curl instead of open-uri. It has far better proxy support. * pull: set Homebrew user agent. * gist-logs: remove trailing whitespace. * gist-logs: use first instead of [0]. Easier to read. * gist-logs: use curl-based GitHub.open method. 2016-06-03 13:05:18 +01:00			`end`

curl/curl_output: allow redacting secrets in the log Add a new argument `secrets` to specify secret tokens, so we can redact them in the log. 2019-07-13 23:31:56 +08:00			`def curl(args, secrets: [], *options)`
curl: unset SSL_CERT_FILE. 2017-11-03 18:58:59 +00:00			`# SSL_CERT_FILE can be incorrectly set by users or portable-ruby and screw`
			`# with SSL downloads so unset it here.`
Use `SystemCommand` for `curl`. 2018-07-30 10:11:00 +02:00			`system_command! curl_executable,`
curl/curl_output: allow redacting secrets in the log Add a new argument `secrets` to specify secret tokens, so we can redact them in the log. 2019-07-13 23:31:56 +08:00			`args: curl_args(args, *options),`
Show `stdout` for `curl` commands. 2018-08-01 11:15:42 +02:00			`print_stdout: true,`
curl/curl_output: allow redacting secrets in the log Add a new argument `secrets` to specify secret tokens, so we can redact them in the log. 2019-07-13 23:31:56 +08:00			`env: { "SSL_CERT_FILE" => nil },`
			`secrets: secrets`
Simplify CurlDownloadStrategy. 2017-08-04 16:24:29 +02:00			`end`

Check for range support instead of rescuing error. 2018-09-06 16:25:08 +02:00			`def curl_download(args, to: nil, *options)`
Fix `downloads` directory not being created. 2018-09-05 00:38:19 +02:00			`destination = Pathname(to)`
			`destination.dirname.mkpath`
Check for range support instead of rescuing error. 2018-09-06 16:25:08 +02:00
Cask handle already downloaded file The current logic for curl_download tries to restart any existing partial download, but this fails for some servers when the file is already fully downloaded, returning a status code 416. This updates the function to check for the file being already downloaded and if so bails early. The following command used to fail when run more than once but now works as expected: ``` brew cask info https://raw.githubusercontent.com/homebrew/homebrew-cask/master/Casks/docker.rb ``` 2019-02-01 14:22:36 -08:00			`range_stdout = curl_output("--location", "--range", "0-1",`
			`"--dump-header", "-",`
Update Gems. 2019-10-03 08:50:45 +02:00			`"--write-out", "%\{http_code}",`
Cask handle already downloaded file The current logic for curl_download tries to restart any existing partial download, but this fails for some servers when the file is already fully downloaded, returning a status code 416. This updates the function to check for the file being already downloaded and if so bails early. The following command used to fail when run more than once but now works as expected: ``` brew cask info https://raw.githubusercontent.com/homebrew/homebrew-cask/master/Casks/docker.rb ``` 2019-02-01 14:22:36 -08:00			`"--output", "/dev/null", args, *options).stdout`
			`headers, _, http_status = range_stdout.partition("\r\n\r\n")`

			`supports_partial_download = http_status.to_i == 206 # Partial Content`
			`if supports_partial_download &&`
			`destination.exist? &&`
Handle regex not finding anything 2019-02-03 10:52:09 -08:00			`destination.size == %r{^.Content-Range: bytes \d+-\d+/(\d+)\r\n.$}m.match(headers)&.[](1)&.to_i`
Cask handle already downloaded file The current logic for curl_download tries to restart any existing partial download, but this fails for some servers when the file is already fully downloaded, returning a status code 416. This updates the function to check for the file being already downloaded and if so bails early. The following command used to fail when run more than once but now works as expected: ``` brew cask info https://raw.githubusercontent.com/homebrew/homebrew-cask/master/Casks/docker.rb ``` 2019-02-01 14:22:36 -08:00			`return # We've already downloaded all the bytes`
			`end`

			`continue_at = if destination.exist? && supports_partial_download`
Check for range support instead of rescuing error. 2018-09-06 16:25:08 +02:00			`"-"`
			`else`
			`0`
`curl_download`: Retry once on error `33`. 2017-08-10 18:53:23 +02:00			`end`

Check for range support instead of rescuing error. 2018-09-06 16:25:08 +02:00			`curl("--location", "--remote-time", "--continue-at", continue_at.to_s, "--output", destination, args, *options)`
Add workaround for `curl: (56) Unexpected EOF`. 2019-09-26 04:58:18 +02:00			`rescue ErrorDuringExecution => e`
			`# This is a workaround for https://github.com/curl/curl/issues/1618.`
			`raise unless e.status.exitstatus == 56 # Unexpected EOF`

			`raise if args.include?("--http1.1")`

			`out = curl_output("-V").stdout`

			# If `curl` doesn't support HTTP2, the exception is unrelated to this bug.
			`raise unless out.include?("HTTP2")`

			# The bug is fixed in `curl` >= 7.60.0.
			`curl_version = out[/curl (\d+(\.\d+)+)/, 1]`
			`raise if Gem::Version.new(curl_version) >= Gem::Version.new("7.60.0")`

			`args << "--http1.1"`
			`retry`
Simplify CurlDownloadStrategy. 2017-08-08 18:10:13 +02:00			`end`

curl/curl_output: allow redacting secrets in the log Add a new argument `secrets` to specify secret tokens, so we can redact them in the log. 2019-07-13 23:31:56 +08:00			`def curl_output(args, secrets: [], *options)`
			`system_command curl_executable,`
`brew style --fix` fixes. 2018-11-02 17:18:07 +00:00			`args: curl_args(args, show_output: true, *options),`
curl/curl_output: allow redacting secrets in the log Add a new argument `secrets` to specify secret tokens, so we can redact them in the log. 2019-07-13 23:31:56 +08:00			`print_stderr: false,`
			`secrets: secrets`
Use `curl` for the GitHub API (#295) * Move GitHub API module to utils/github.rb. * Move curl method to utils/curl.rb. * global: use long curl arguments and an array. This makes the code more self-documenting. * utils/curl: support reading curl's output. * utils/github: use curl instead of open-uri. It has far better proxy support. * pull: set Homebrew user agent. * gist-logs: remove trailing whitespace. * gist-logs: use first instead of [0]. Easier to read. * gist-logs: use curl-based GitHub.open method. 2016-06-03 13:05:18 +01:00			`end`
Refactor: Move FormulaAudit.check_http_content to utils/curl 2017-12-03 14:02:55 +01:00
Remove unneeded `curl_openssl_or_deps` invocation This fixes a regression introduced in #5626 [1], which removed `curl_openssl_or_deps` and left a single call in the code. [1]: https://github.com/Homebrew/brew/pull/5626 2019-01-28 08:10:37 +01:00			`def curl_check_http_content(url, user_agents: [:default], check_content: false, strict: false)`
Refactor: Move FormulaAudit.check_http_content to utils/curl 2017-12-03 14:02:55 +01:00			`return unless url.start_with? "http"`

			`details = nil`
			`user_agent = nil`
Remove unneeded `curl_openssl_or_deps` invocation This fixes a regression introduced in #5626 [1], which removed `curl_openssl_or_deps` and left a single call in the code. [1]: https://github.com/Homebrew/brew/pull/5626 2019-01-28 08:10:37 +01:00			`hash_needed = url.start_with?("http:")`
Refactor: Move FormulaAudit.check_http_content to utils/curl 2017-12-03 14:02:55 +01:00			`user_agents.each do \|ua\|`
			`details = curl_http_content_headers_and_checksum(url, hash_needed: hash_needed, user_agent: ua)`
			`user_agent = ua`
utils/curl: extract status checks into method. 2019-09-18 10:32:13 +01:00			`break if http_status_ok?(details[:status])`
Refactor: Move FormulaAudit.check_http_content to utils/curl 2017-12-03 14:02:55 +01:00			`end`

			`unless details[:status]`
			`# Hack around https://github.com/Homebrew/brew/issues/3199`
			`return if MacOS.version == :el_capitan`
Update to RuboCop 0.59.1. 2018-09-17 02:45:00 +02:00
Refactor: Move FormulaAudit.check_http_content to utils/curl 2017-12-03 14:02:55 +01:00			`return "The URL #{url} is not reachable"`
			`end`

utils/curl: extract status checks into method. 2019-09-18 10:32:13 +01:00			`unless http_status_ok?(details[:status])`
Refactor: Move FormulaAudit.check_http_content to utils/curl 2017-12-03 14:02:55 +01:00			`return "The URL #{url} is not reachable (HTTP status code #{details[:status]})"`
			`end`

Fix styling issues 2018-11-24 01:46:55 +00:00			`if url.start_with?("https://") && ENV["HOMEBREW_NO_INSECURE_REDIRECT"] &&`
			`!details[:final_url].start_with?("https://")`
			`return "The URL #{url} redirects back to HTTP"`
Cask: remove curl calls, use them with --download 2018-10-10 21:36:06 +00:00			`end`

Refactor: Move FormulaAudit.check_http_content to utils/curl 2017-12-03 14:02:55 +01:00			`return unless hash_needed`

			`secure_url = url.sub "http", "https"`
			`secure_details =`
			`curl_http_content_headers_and_checksum(secure_url, hash_needed: true, user_agent: user_agent)`

utils/curl: extract status checks into method. 2019-09-18 10:32:13 +01:00			`if !http_status_ok?(details[:status]) \|\|`
			`!http_status_ok?(secure_details[:status])`
Refactor: Move FormulaAudit.check_http_content to utils/curl 2017-12-03 14:02:55 +01:00			`return`
			`end`

			`etag_match = details[:etag] &&`
			`details[:etag] == secure_details[:etag]`
			`content_length_match =`
			`details[:content_length] &&`
			`details[:content_length] == secure_details[:content_length]`
			`file_match = details[:file_hash] == secure_details[:file_hash]`

Fix styling issues 2018-11-24 01:46:55 +00:00			`if (etag_match \|\| content_length_match \|\| file_match) &&`
More styling fixes 2018-11-24 11:21:52 +00:00			`secure_details[:final_url].start_with?("https://") &&`
			`url.start_with?("http://")`
			`return "The URL #{url} should use HTTPS rather than HTTP"`
Refactor: Move FormulaAudit.check_http_content to utils/curl 2017-12-03 14:02:55 +01:00			`end`

			`return unless check_content`

			`no_protocol_file_contents = %r{https?:\\?/\\?/}`
			`details[:file] = details[:file].gsub(no_protocol_file_contents, "/")`
			`secure_details[:file] = secure_details[:file].gsub(no_protocol_file_contents, "/")`

			`# Check for the same content after removing all protocols`
Fix styling issues 2018-11-24 01:46:55 +00:00			`if (details[:file] == secure_details[:file]) &&`
More styling fixes 2018-11-24 11:21:52 +00:00			`secure_details[:final_url].start_with?("https://") &&`
			`url.start_with?("http://")`
			`return "The URL #{url} should use HTTPS rather than HTTP"`
Refactor: Move FormulaAudit.check_http_content to utils/curl 2017-12-03 14:02:55 +01:00			`end`

			`return unless strict`

			`# Same size, different content after normalization`
			`# (typical causes: Generated ID, Timestamp, Unix time)`
			`if details[:file].length == secure_details[:file].length`
			`return "The URL #{url} may be able to use HTTPS rather than HTTP. Please verify it in a browser."`
			`end`

			`lenratio = (100 * secure_details[:file].length / details[:file].length).to_i`
			`return unless (90..110).cover?(lenratio)`
Update to RuboCop 0.59.1. 2018-09-17 02:45:00 +02:00
Refactor: Move FormulaAudit.check_http_content to utils/curl 2017-12-03 14:02:55 +01:00			`"The URL #{url} may be able to use HTTPS rather than HTTP. Please verify it in a browser."`
			`end`

			`def curl_http_content_headers_and_checksum(url, hash_needed: false, user_agent: :default)`
Use temp file for calculating hash. 2019-10-29 19:06:57 +01:00			`file = Tempfile.new.tap(&:close)`

Refactor: Move FormulaAudit.check_http_content to utils/curl 2017-12-03 14:02:55 +01:00			`max_time = hash_needed ? "600" : "25"`
			`output, = curl_output(`
Use temp file for calculating hash. 2019-10-29 19:06:57 +01:00			`"--dump-header", "-", "--output", file.path, "--include", "--location",`
			`"--connect-timeout", "15", "--max-time", max_time, url,`
Refactor: Move FormulaAudit.check_http_content to utils/curl 2017-12-03 14:02:55 +01:00			`user_agent: user_agent`
			`)`

			`status_code = :unknown`
			`while status_code == :unknown \|\| status_code.to_s.start_with?("3")`
			`headers, _, output = output.partition("\r\n\r\n")`
			`status_code = headers[%r{HTTP\/.* (\d+)}, 1]`
More styling fixes 2018-11-24 11:21:52 +00:00			`final_url = headers[/^Location:\s(.)$/i, 1]&.chomp`
Refactor: Move FormulaAudit.check_http_content to utils/curl 2017-12-03 14:02:55 +01:00			`end`

Use temp file for calculating hash. 2019-10-29 19:06:57 +01:00			`output_hash = Digest::SHA256.file(file.path) if hash_needed`
Refactor: Move FormulaAudit.check_http_content to utils/curl 2017-12-03 14:02:55 +01:00
Fix styling issues 2018-11-24 01:46:55 +00:00			`final_url \|\|= url`
Cask: remove curl calls, use them with --download 2018-10-10 21:36:06 +00:00
Refactor: Move FormulaAudit.check_http_content to utils/curl 2017-12-03 14:02:55 +01:00			`{`
Fix styling issues 2018-11-24 01:46:55 +00:00			`url: url,`
			`final_url: final_url,`
`brew style --fix` fixes. 2018-11-02 17:18:07 +00:00			`status: status_code,`
			`etag: headers[%r{ETag: ([wW]\/)?"(([^"]\|\\")*)"}, 2],`
Refactor: Move FormulaAudit.check_http_content to utils/curl 2017-12-03 14:02:55 +01:00			`content_length: headers[/Content-Length: (\d+)/, 1],`
`brew style --fix` fixes. 2018-11-02 17:18:07 +00:00			`file_hash: output_hash,`
			`file: output,`
Refactor: Move FormulaAudit.check_http_content to utils/curl 2017-12-03 14:02:55 +01:00			`}`
Use temp file for calculating hash. 2019-10-29 19:06:57 +01:00			`ensure`
			`file.unlink`
Refactor: Move FormulaAudit.check_http_content to utils/curl 2017-12-03 14:02:55 +01:00			`end`
utils/curl: extract status checks into method. 2019-09-18 10:32:13 +01:00
			`def http_status_ok?(status)`
			`(100..299).cover?(status.to_i)`
			`end`