Annotation of src/usr.bin/ftp/fetch.c, Revision 1.144
1.144 ! sthen 1: /* $OpenBSD: fetch.c,v 1.143 2015/10/13 08:53:43 guenther Exp $ */
1.15 millert 2: /* $NetBSD: fetch.c,v 1.14 1997/08/18 10:20:20 lukem Exp $ */
1.1 millert 3:
4: /*-
5: * Copyright (c) 1997 The NetBSD Foundation, Inc.
6: * All rights reserved.
7: *
8: * This code is derived from software contributed to The NetBSD Foundation
9: * by Jason Thorpe and Luke Mewburn.
10: *
11: * Redistribution and use in source and binary forms, with or without
12: * modification, are permitted provided that the following conditions
13: * are met:
14: * 1. Redistributions of source code must retain the above copyright
15: * notice, this list of conditions and the following disclaimer.
16: * 2. Redistributions in binary form must reproduce the above copyright
17: * notice, this list of conditions and the following disclaimer in the
18: * documentation and/or other materials provided with the distribution.
19: *
20: * THIS SOFTWARE IS PROVIDED BY THE NETBSD FOUNDATION, INC. AND CONTRIBUTORS
21: * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED
22: * TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
1.15 millert 23: * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE FOUNDATION OR CONTRIBUTORS
24: * BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
1.1 millert 25: * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
26: * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
27: * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
28: * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
29: * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
30: * POSSIBILITY OF SUCH DAMAGE.
31: */
32:
33: /*
34: * FTP User Program -- Command line file retrieval
35: */
36:
37: #include <sys/types.h>
38: #include <sys/socket.h>
1.22 deraadt 39: #include <sys/stat.h>
1.1 millert 40:
41: #include <netinet/in.h>
42:
43: #include <arpa/ftp.h>
44: #include <arpa/inet.h>
45:
46: #include <ctype.h>
47: #include <err.h>
1.17 millert 48: #include <libgen.h>
1.1 millert 49: #include <netdb.h>
50: #include <fcntl.h>
1.3 millert 51: #include <signal.h>
1.1 millert 52: #include <stdio.h>
1.61 deraadt 53: #include <stdarg.h>
1.19 deraadt 54: #include <errno.h>
1.1 millert 55: #include <stdlib.h>
56: #include <string.h>
57: #include <unistd.h>
1.40 fgsch 58: #include <util.h>
1.73 drahn 59: #include <resolv.h>
1.1 millert 60:
1.61 deraadt 61: #ifndef SMALL
1.134 jsing 62: #include <tls.h>
1.78 martynas 63: #else /* !SMALL */
1.134 jsing 64: struct tls;
1.78 martynas 65: #endif /* !SMALL */
1.61 deraadt 66:
1.1 millert 67: #include "ftp_var.h"
1.86 martynas 68: #include "cmds.h"
1.1 millert 69:
1.38 millert 70: static int url_get(const char *, const char *, const char *);
71: void aborthttp(int);
72: void abortfile(int);
1.42 deraadt 73: char hextochar(const char *);
74: char *urldecode(const char *);
1.123 guenther 75: char *recode_credentials(const char *_userinfo);
1.134 jsing 76: int ftp_printf(FILE *, struct tls *, const char *, ...) __attribute__((format(printf, 3, 4)));
77: char *ftp_readline(FILE *, struct tls *, size_t *);
78: size_t ftp_read(FILE *, struct tls *, char *, size_t);
1.61 deraadt 79: #ifndef SMALL
1.81 espie 80: int proxy_connect(int, char *, char *);
1.134 jsing 81: int SSL_vprintf(struct tls *, const char *, va_list);
82: char *SSL_readline(struct tls *, size_t *);
1.78 martynas 83: #endif /* !SMALL */
1.14 millert 84:
1.1 millert 85: #define FTP_URL "ftp://" /* ftp URL prefix */
86: #define HTTP_URL "http://" /* http URL prefix */
1.61 deraadt 87: #define HTTPS_URL "https://" /* https URL prefix */
1.22 deraadt 88: #define FILE_URL "file:" /* file URL prefix */
1.6 millert 89: #define FTP_PROXY "ftp_proxy" /* env var with ftp proxy location */
1.1 millert 90: #define HTTP_PROXY "http_proxy" /* env var with http proxy location */
91:
92: #define EMPTYSTRING(x) ((x) == NULL || (*(x) == '\0'))
93:
1.110 guenther 94: static const char at_encoding_warning[] =
1.53 deraadt 95: "Extra `@' characters in usernames and passwords should be encoded as %%40";
1.37 heko 96:
1.1 millert 97: jmp_buf httpabort;
98:
1.54 fgsch 99: static int redirect_loop;
100:
1.1 millert 101: /*
1.95 martynas 102: * Determine whether the character needs encoding, per RFC1738:
103: * - No corresponding graphic US-ASCII.
104: * - Unsafe characters.
105: */
106: static int
1.138 jca 107: unsafe_char(const char *c0)
1.95 martynas 108: {
109: const char *unsafe_chars = " <>\"#{}|\\^~[]`";
1.138 jca 110: const unsigned char *c = (const unsigned char *)c0;
1.95 martynas 111:
112: /*
113: * No corresponding graphic US-ASCII.
114: * Control characters and octets not used in US-ASCII.
115: */
116: return (iscntrl(*c) || !isascii(*c) ||
117:
118: /*
119: * Unsafe characters.
120: * '%' is also unsafe, if is not followed by two
121: * hexadecimal digits.
122: */
123: strchr(unsafe_chars, *c) != NULL ||
124: (*c == '%' && (!isxdigit(*++c) || !isxdigit(*++c))));
125: }
126:
127: /*
128: * Encode given URL, per RFC1738.
129: * Allocate and return string to the caller.
130: */
131: static char *
132: url_encode(const char *path)
133: {
134: size_t i, length, new_length;
135: char *epath, *epathp;
136:
137: length = new_length = strlen(path);
138:
139: /*
140: * First pass:
141: * Count unsafe characters, and determine length of the
142: * final URL.
143: */
144: for (i = 0; i < length; i++)
145: if (unsafe_char(path + i))
146: new_length += 2;
147:
148: epath = epathp = malloc(new_length + 1); /* One more for '\0'. */
149: if (epath == NULL)
1.102 halex 150: err(1, "Can't allocate memory for URL encoding");
1.95 martynas 151:
152: /*
153: * Second pass:
154: * Encode, and copy final URL.
155: */
156: for (i = 0; i < length; i++)
157: if (unsafe_char(path + i)) {
1.138 jca 158: snprintf(epathp, 4, "%%" "%02x",
159: (unsigned char)path[i]);
1.95 martynas 160: epathp += 3;
161: } else
162: *(epathp++) = path[i];
163:
164: *epathp = '\0';
165: return (epath);
166: }
167:
168: /*
1.6 millert 169: * Retrieve URL, via the proxy in $proxyvar if necessary.
1.1 millert 170: * Modifies the string argument given.
171: * Returns -1 on failure, 0 on success
172: */
1.14 millert 173: static int
1.50 deraadt 174: url_get(const char *origline, const char *proxyenv, const char *outfile)
1.1 millert 175: {
1.69 jsg 176: char pbuf[NI_MAXSERV], hbuf[NI_MAXHOST], *cp, *portnum, *path, ststr[4];
1.62 ray 177: char *hosttail, *cause = "unknown", *newline, *host, *port, *buf = NULL;
1.106 haesbaer 178: char *epath, *redirurl, *loctail, *h, *p;
1.53 deraadt 179: int error, i, isftpurl = 0, isfileurl = 0, isredirect = 0, rval = -1;
1.105 haesbaer 180: struct addrinfo hints, *res0, *res, *ares = NULL;
1.34 millert 181: const char * volatile savefile;
1.62 ray 182: char * volatile proxyurl = NULL;
1.123 guenther 183: char *credentials = NULL;
1.53 deraadt 184: volatile int s = -1, out;
1.97 martynas 185: volatile sig_t oldintr, oldinti;
1.53 deraadt 186: FILE *fin = NULL;
1.1 millert 187: off_t hashbytes;
1.58 grunk 188: const char *errstr;
1.114 tedu 189: ssize_t len, wlen;
1.136 bluhm 190: char *proxyhost = NULL;
1.61 deraadt 191: #ifndef SMALL
192: char *sslpath = NULL, *sslhost = NULL;
1.123 guenther 193: char *locbase, *full_host = NULL;
1.102 halex 194: const char *scheme;
1.123 guenther 195: int ishttpurl = 0, ishttpsurl = 0;
1.78 martynas 196: #endif /* !SMALL */
1.134 jsing 197: struct tls *tls = NULL;
1.70 deraadt 198: int status;
1.105 haesbaer 199: int save_errno;
1.113 tedu 200: const size_t buflen = 128 * 1024;
1.14 millert 201:
1.97 martynas 202: direction = "received";
203:
1.62 ray 204: newline = strdup(origline);
205: if (newline == NULL)
1.14 millert 206: errx(1, "Can't allocate memory to parse URL");
1.102 halex 207: if (strncasecmp(newline, HTTP_URL, sizeof(HTTP_URL) - 1) == 0) {
1.62 ray 208: host = newline + sizeof(HTTP_URL) - 1;
1.102 halex 209: #ifndef SMALL
1.123 guenther 210: ishttpurl = 1;
1.102 halex 211: scheme = HTTP_URL;
212: #endif /* !SMALL */
213: } else if (strncasecmp(newline, FTP_URL, sizeof(FTP_URL) - 1) == 0) {
1.62 ray 214: host = newline + sizeof(FTP_URL) - 1;
1.14 millert 215: isftpurl = 1;
1.102 halex 216: #ifndef SMALL
217: scheme = FTP_URL;
218: #endif /* !SMALL */
1.62 ray 219: } else if (strncasecmp(newline, FILE_URL, sizeof(FILE_URL) - 1) == 0) {
220: host = newline + sizeof(FILE_URL) - 1;
1.22 deraadt 221: isfileurl = 1;
1.61 deraadt 222: #ifndef SMALL
1.102 halex 223: scheme = FILE_URL;
1.62 ray 224: } else if (strncasecmp(newline, HTTPS_URL, sizeof(HTTPS_URL) - 1) == 0) {
225: host = newline + sizeof(HTTPS_URL) - 1;
1.61 deraadt 226: ishttpsurl = 1;
1.102 halex 227: scheme = HTTPS_URL;
1.78 martynas 228: #endif /* !SMALL */
1.14 millert 229: } else
1.62 ray 230: errx(1, "url_get: Invalid URL '%s'", newline);
1.6 millert 231:
1.22 deraadt 232: if (isfileurl) {
233: path = host;
234: } else {
1.93 martynas 235: path = strchr(host, '/'); /* Find path */
1.22 deraadt 236: if (EMPTYSTRING(path)) {
1.93 martynas 237: if (outfile) { /* No slash, but */
238: path=strchr(host,'\0'); /* we have outfile. */
239: goto noslash;
240: }
1.22 deraadt 241: if (isftpurl)
242: goto noftpautologin;
1.94 martynas 243: warnx("No `/' after host (use -o): %s", origline);
1.22 deraadt 244: goto cleanup_url_get;
245: }
246: *path++ = '\0';
1.93 martynas 247: if (EMPTYSTRING(path) && !outfile) {
1.22 deraadt 248: if (isftpurl)
249: goto noftpautologin;
1.94 martynas 250: warnx("No filename after host (use -o): %s", origline);
1.22 deraadt 251: goto cleanup_url_get;
252: }
1.14 millert 253: }
1.1 millert 254:
1.93 martynas 255: noslash:
1.106 haesbaer 256:
257: #ifndef SMALL
258: /*
259: * Look for auth header in host, since now host does not
260: * contain the path. Basic auth from RFC 2617, valid
261: * characters for path are in RFC 3986 section 3.3.
262: */
1.123 guenther 263: if (proxyenv == NULL && (ishttpurl || ishttpsurl)) {
1.106 haesbaer 264: if ((p = strchr(host, '@')) != NULL) {
1.123 guenther 265: *p = '\0';
266: credentials = recode_credentials(host);
1.106 haesbaer 267: host = p + 1;
268: }
269: }
270: #endif /* SMALL */
271:
1.17 millert 272: if (outfile)
273: savefile = outfile;
1.93 martynas 274: else {
275: if (path[strlen(path) - 1] == '/') /* Consider no file */
276: savefile = NULL; /* after dir invalid. */
277: else
278: savefile = basename(path);
1.75 martynas 279: }
280:
1.14 millert 281: if (EMPTYSTRING(savefile)) {
282: if (isftpurl)
283: goto noftpautologin;
1.94 martynas 284: warnx("No filename after directory (use -o): %s", origline);
1.6 millert 285: goto cleanup_url_get;
1.14 millert 286: }
1.1 millert 287:
1.93 martynas 288: #ifndef SMALL
1.100 halex 289: if (resume && pipeout) {
1.93 martynas 290: warnx("can't append to stdout");
291: goto cleanup_url_get;
292: }
293: #endif /* !SMALL */
294:
1.59 uwe 295: if (!isfileurl && proxyenv != NULL) { /* use proxy */
1.61 deraadt 296: #ifndef SMALL
297: if (ishttpsurl) {
298: sslpath = strdup(path);
299: sslhost = strdup(host);
300: if (! sslpath || ! sslhost)
301: errx(1, "Can't allocate memory for https path/host.");
302: }
1.78 martynas 303: #endif /* !SMALL */
1.136 bluhm 304: proxyhost = strdup(host);
305: if (proxyhost == NULL)
306: errx(1, "Can't allocate memory for proxy host.");
1.62 ray 307: proxyurl = strdup(proxyenv);
308: if (proxyurl == NULL)
1.14 millert 309: errx(1, "Can't allocate memory for proxy URL.");
1.62 ray 310: if (strncasecmp(proxyurl, HTTP_URL, sizeof(HTTP_URL) - 1) == 0)
311: host = proxyurl + sizeof(HTTP_URL) - 1;
312: else if (strncasecmp(proxyurl, FTP_URL, sizeof(FTP_URL) - 1) == 0)
313: host = proxyurl + sizeof(FTP_URL) - 1;
1.6 millert 314: else {
1.14 millert 315: warnx("Malformed proxy URL: %s", proxyenv);
1.6 millert 316: goto cleanup_url_get;
317: }
1.14 millert 318: if (EMPTYSTRING(host)) {
319: warnx("Malformed proxy URL: %s", proxyenv);
1.6 millert 320: goto cleanup_url_get;
1.14 millert 321: }
1.93 martynas 322: if (*--path == '\0')
323: *path = '/'; /* add / back to real path */
1.1 millert 324: path = strchr(host, '/'); /* remove trailing / on host */
1.42 deraadt 325: if (!EMPTYSTRING(path))
1.73 drahn 326: *path++ = '\0'; /* i guess this ++ is useless */
327:
328: path = strchr(host, '@'); /* look for credentials in proxy */
329: if (!EMPTYSTRING(path)) {
1.81 espie 330: *path = '\0';
1.123 guenther 331: if (strchr(host, ':') == NULL) {
1.73 drahn 332: warnx("Malformed proxy URL: %s", proxyenv);
333: goto cleanup_url_get;
334: }
1.123 guenther 335: credentials = recode_credentials(host);
1.81 espie 336: *path = '@'; /* restore @ in proxyurl */
1.123 guenther 337:
1.73 drahn 338: /*
1.81 espie 339: * This removes the password from proxyurl,
1.73 drahn 340: * filling with stars
341: */
1.81 espie 342: for (host = 1 + strchr(proxyurl + 5, ':'); *host != '@';
1.73 drahn 343: host++)
344: *host = '*';
345:
1.81 espie 346: host = path + 1;
1.73 drahn 347: }
1.123 guenther 348:
1.62 ray 349: path = newline;
1.1 millert 350: }
351:
1.22 deraadt 352: if (isfileurl) {
353: struct stat st;
354:
355: s = open(path, O_RDONLY);
356: if (s == -1) {
357: warn("Can't open file %s", path);
358: goto cleanup_url_get;
359: }
360:
361: if (fstat(s, &st) == -1)
362: filesize = -1;
363: else
364: filesize = st.st_size;
365:
1.83 martynas 366: /* Open the output file. */
1.100 halex 367: if (!pipeout) {
1.75 martynas 368: #ifndef SMALL
369: if (resume)
1.82 deraadt 370: out = open(savefile, O_CREAT | O_WRONLY |
371: O_APPEND, 0666);
372:
1.75 martynas 373: else
1.78 martynas 374: #endif /* !SMALL */
1.75 martynas 375: out = open(savefile, O_CREAT | O_WRONLY |
376: O_TRUNC, 0666);
1.22 deraadt 377: if (out < 0) {
378: warn("Can't open %s", savefile);
379: goto cleanup_url_get;
380: }
381: } else
382: out = fileno(stdout);
383:
1.75 martynas 384: #ifndef SMALL
385: if (resume) {
386: if (fstat(out, &st) == -1) {
387: warn("Can't fstat %s", savefile);
388: goto cleanup_url_get;
389: }
390: if (lseek(s, st.st_size, SEEK_SET) == -1) {
391: warn("Can't lseek %s", path);
392: goto cleanup_url_get;
393: }
394: restart_point = st.st_size;
395: }
1.78 martynas 396: #endif /* !SMALL */
1.75 martynas 397:
1.22 deraadt 398: /* Trap signals */
399: oldintr = NULL;
1.97 martynas 400: oldinti = NULL;
1.22 deraadt 401: if (setjmp(httpabort)) {
402: if (oldintr)
403: (void)signal(SIGINT, oldintr);
1.97 martynas 404: if (oldinti)
405: (void)signal(SIGINFO, oldinti);
1.22 deraadt 406: goto cleanup_url_get;
407: }
408: oldintr = signal(SIGINT, abortfile);
1.42 deraadt 409:
1.22 deraadt 410: bytes = 0;
411: hashbytes = mark;
1.84 martynas 412: progressmeter(-1, path);
1.40 fgsch 413:
1.113 tedu 414: if ((buf = malloc(buflen)) == NULL)
1.47 deraadt 415: errx(1, "Can't allocate memory for transfer buffer");
1.42 deraadt 416:
1.22 deraadt 417: /* Finally, suck down the file. */
418: i = 0;
1.97 martynas 419: oldinti = signal(SIGINFO, psummary);
1.113 tedu 420: while ((len = read(s, buf, buflen)) > 0) {
1.22 deraadt 421: bytes += len;
422: for (cp = buf; len > 0; len -= i, cp += i) {
423: if ((i = write(out, cp, len)) == -1) {
424: warn("Writing %s", savefile);
1.97 martynas 425: signal(SIGINFO, oldinti);
1.22 deraadt 426: goto cleanup_url_get;
427: }
428: else if (i == 0)
429: break;
430: }
431: if (hash && !progress) {
432: while (bytes >= hashbytes) {
433: (void)putc('#', ttyout);
434: hashbytes += mark;
435: }
436: (void)fflush(ttyout);
437: }
438: }
1.97 martynas 439: signal(SIGINFO, oldinti);
1.22 deraadt 440: if (hash && !progress && bytes > 0) {
441: if (bytes < mark)
442: (void)putc('#', ttyout);
443: (void)putc('\n', ttyout);
444: (void)fflush(ttyout);
445: }
446: if (len != 0) {
447: warn("Reading from file");
448: goto cleanup_url_get;
449: }
1.84 martynas 450: progressmeter(1, NULL);
1.22 deraadt 451: if (verbose)
1.97 martynas 452: ptransfer(0);
1.22 deraadt 453: (void)signal(SIGINT, oldintr);
1.42 deraadt 454:
1.40 fgsch 455: rval = 0;
456: goto cleanup_url_get;
1.22 deraadt 457: }
458:
1.28 itojun 459: if (*host == '[' && (hosttail = strrchr(host, ']')) != NULL &&
460: (hosttail[1] == '\0' || hosttail[1] == ':')) {
461: host++;
462: *hosttail++ = '\0';
1.102 halex 463: #ifndef SMALL
464: if (asprintf(&full_host, "[%s]", host) == -1)
465: errx(1, "Cannot allocate memory for hostname");
466: #endif /* !SMALL */
1.28 itojun 467: } else
468: hosttail = host;
469:
470: portnum = strrchr(hosttail, ':'); /* find portnum */
1.1 millert 471: if (portnum != NULL)
472: *portnum++ = '\0';
473:
1.80 martynas 474: #ifndef SMALL
1.102 halex 475: if (full_host == NULL)
476: if ((full_host = strdup(host)) == NULL)
477: errx(1, "Cannot allocate memory for hostname");
1.1 millert 478: if (debug)
1.106 haesbaer 479: fprintf(ttyout, "host %s, port %s, path %s, "
480: "save as %s, auth %s.\n",
1.123 guenther 481: host, portnum, path, savefile, credentials);
1.80 martynas 482: #endif /* !SMALL */
1.1 millert 483:
1.25 itojun 484: memset(&hints, 0, sizeof(hints));
1.39 deraadt 485: hints.ai_family = family;
1.25 itojun 486: hints.ai_socktype = SOCK_STREAM;
1.61 deraadt 487: #ifndef SMALL
488: port = portnum ? portnum : (ishttpsurl ? httpsport : httpport);
1.78 martynas 489: #else /* !SMALL */
1.25 itojun 490: port = portnum ? portnum : httpport;
1.78 martynas 491: #endif /* !SMALL */
1.25 itojun 492: error = getaddrinfo(host, port, &hints, &res0);
1.61 deraadt 493: /*
494: * If the services file is corrupt/missing, fall back
495: * on our hard-coded defines.
496: */
1.30 deraadt 497: if (error == EAI_SERVICE && port == httpport) {
498: snprintf(pbuf, sizeof(pbuf), "%d", HTTP_PORT);
499: error = getaddrinfo(host, pbuf, &hints, &res0);
1.61 deraadt 500: #ifndef SMALL
501: } else if (error == EAI_SERVICE && port == httpsport) {
502: snprintf(pbuf, sizeof(pbuf), "%d", HTTPS_PORT);
503: error = getaddrinfo(host, pbuf, &hints, &res0);
1.78 martynas 504: #endif /* !SMALL */
1.30 deraadt 505: }
1.25 itojun 506: if (error) {
1.122 guenther 507: warnx("%s: %s", host, gai_strerror(error));
1.25 itojun 508: goto cleanup_url_get;
1.1 millert 509: }
510:
1.105 haesbaer 511: #ifndef SMALL
512: if (srcaddr) {
513: hints.ai_flags |= AI_NUMERICHOST;
514: error = getaddrinfo(srcaddr, NULL, &hints, &ares);
515: if (error) {
1.122 guenther 516: warnx("%s: %s", srcaddr, gai_strerror(error));
1.105 haesbaer 517: goto cleanup_url_get;
518: }
519: }
520: #endif /* !SMALL */
1.135 deraadt 521:
522: /* ensure consistent order of the output */
523: if (verbose)
524: setvbuf(ttyout, NULL, _IOLBF, 0);
1.105 haesbaer 525:
1.25 itojun 526: s = -1;
527: for (res = res0; res; res = res->ai_next) {
1.44 itojun 528: if (getnameinfo(res->ai_addr, res->ai_addrlen, hbuf,
529: sizeof(hbuf), NULL, 0, NI_NUMERICHOST) != 0)
530: strlcpy(hbuf, "(unknown)", sizeof(hbuf));
1.41 deraadt 531: if (verbose)
1.44 itojun 532: fprintf(ttyout, "Trying %s...\n", hbuf);
1.14 millert 533:
1.25 itojun 534: s = socket(res->ai_family, res->ai_socktype, res->ai_protocol);
535: if (s == -1) {
536: cause = "socket";
537: continue;
1.1 millert 538: }
539:
1.105 haesbaer 540: #ifndef SMALL
541: if (srcaddr) {
542: if (ares->ai_family != res->ai_family) {
543: close(s);
544: s = -1;
545: errno = EINVAL;
546: cause = "bind";
547: continue;
548: }
549: if (bind(s, ares->ai_addr, ares->ai_addrlen) < 0) {
550: save_errno = errno;
551: close(s);
552: errno = save_errno;
553: s = -1;
554: cause = "bind";
555: continue;
556: }
557: }
558: #endif /* !SMALL */
559:
1.25 itojun 560: again:
561: if (connect(s, res->ai_addr, res->ai_addrlen) < 0) {
562: if (errno == EINTR)
563: goto again;
1.57 otto 564: save_errno = errno;
1.25 itojun 565: close(s);
1.57 otto 566: errno = save_errno;
1.25 itojun 567: s = -1;
568: cause = "connect";
1.19 deraadt 569: continue;
570: }
1.25 itojun 571:
1.29 itojun 572: /* get port in numeric */
573: if (getnameinfo(res->ai_addr, res->ai_addrlen, NULL, 0,
574: pbuf, sizeof(pbuf), NI_NUMERICSERV) == 0)
575: port = pbuf;
576: else
577: port = NULL;
578:
1.61 deraadt 579: #ifndef SMALL
580: if (proxyenv && sslhost)
1.123 guenther 581: proxy_connect(s, sslhost, credentials);
1.78 martynas 582: #endif /* !SMALL */
1.25 itojun 583: break;
584: }
585: freeaddrinfo(res0);
1.105 haesbaer 586: #ifndef SMALL
587: if (srcaddr)
588: freeaddrinfo(ares);
589: #endif /* !SMALL */
1.25 itojun 590: if (s < 0) {
1.33 millert 591: warn("%s", cause);
1.6 millert 592: goto cleanup_url_get;
1.1 millert 593: }
594:
1.61 deraadt 595: #ifndef SMALL
596: if (ishttpsurl) {
597: if (proxyenv && sslpath) {
598: ishttpsurl = 0;
1.62 ray 599: proxyurl = NULL;
1.61 deraadt 600: path = sslpath;
601: }
1.131 jca 602: if (sslhost == NULL) {
603: sslhost = strdup(host);
604: if (sslhost == NULL)
605: errx(1, "Can't allocate memory for https host.");
606: }
1.134 jsing 607: if (tls_init() != 0) {
1.126 jsing 608: fprintf(ttyout, "SSL initialisation failed\n");
1.116 jca 609: goto cleanup_url_get;
610: }
1.134 jsing 611: if ((tls = tls_client()) == NULL) {
1.126 jsing 612: fprintf(ttyout, "failed to create SSL client\n");
1.61 deraadt 613: goto cleanup_url_get;
614: }
1.134 jsing 615: if (tls_configure(tls, tls_config) != 0) {
1.126 jsing 616: fprintf(ttyout, "SSL configuration failure: %s\n",
1.134 jsing 617: tls_error(tls));
1.61 deraadt 618: goto cleanup_url_get;
1.117 jca 619: }
1.134 jsing 620: if (tls_connect_socket(tls, s, sslhost) != 0) {
621: fprintf(ttyout, "SSL failure: %s\n", tls_error(tls));
1.72 ray 622: goto cleanup_url_get;
1.118 jca 623: }
1.61 deraadt 624: } else {
625: fin = fdopen(s, "r+");
626: }
1.78 martynas 627: #else /* !SMALL */
1.40 fgsch 628: fin = fdopen(s, "r+");
1.78 martynas 629: #endif /* !SMALL */
1.40 fgsch 630:
1.55 fgsch 631: if (verbose)
632: fprintf(ttyout, "Requesting %s", origline);
1.95 martynas 633:
1.1 millert 634: /*
1.40 fgsch 635: * Construct and send the request. Proxy requests don't want leading /.
1.1 millert 636: */
1.74 pyr 637: #ifndef SMALL
638: cookie_get(host, path, ishttpsurl, &buf);
1.78 martynas 639: #endif /* !SMALL */
1.95 martynas 640:
641: epath = url_encode(path);
1.62 ray 642: if (proxyurl) {
1.55 fgsch 643: if (verbose)
1.81 espie 644: fprintf(ttyout, " (via %s)\n", proxyurl);
1.32 itojun 645: /*
646: * Host: directive must use the destination host address for
1.136 bluhm 647: * the original URI (path).
1.32 itojun 648: */
1.123 guenther 649: if (credentials)
1.134 jsing 650: ftp_printf(fin, tls, "GET %s HTTP/1.0\r\n"
1.136 bluhm 651: "Proxy-Authorization: Basic %s\r\n"
652: "Host: %s\r\n%s%s\r\n\r\n",
653: epath, credentials,
654: proxyhost, buf ? buf : "", httpuseragent);
1.73 drahn 655: else
1.136 bluhm 656: ftp_printf(fin, tls, "GET %s HTTP/1.0\r\n"
657: "Host: %s\r\n%s%s\r\n\r\n",
658: epath, proxyhost, buf ? buf : "", httpuseragent);
1.28 itojun 659: } else {
1.90 martynas 660: #ifndef SMALL
661: if (resume) {
662: struct stat stbuf;
663:
664: if (stat(savefile, &stbuf) == 0)
665: restart_point = stbuf.st_size;
666: else
667: restart_point = 0;
668: }
1.123 guenther 669: if (credentials) {
1.134 jsing 670: ftp_printf(fin, tls,
1.106 haesbaer 671: "GET /%s %s\r\nAuthorization: Basic %s\r\nHost: ",
672: epath, restart_point ?
673: "HTTP/1.1\r\nConnection: close" : "HTTP/1.0",
1.123 guenther 674: credentials);
675: free(credentials);
676: credentials = NULL;
1.106 haesbaer 677: } else
678: #endif /* SMALL */
1.134 jsing 679: ftp_printf(fin, tls, "GET /%s %s\r\nHost: ", epath,
1.107 haesbaer 680: #ifndef SMALL
681: restart_point ? "HTTP/1.1\r\nConnection: close" :
682: #endif /* !SMALL */
683: "HTTP/1.0");
1.136 bluhm 684: if (proxyhost) {
685: ftp_printf(fin, tls, "%s", proxyhost);
686: port = NULL;
687: } else if (strchr(host, ':')) {
1.55 fgsch 688: /*
689: * strip off scoped address portion, since it's
690: * local to node
691: */
1.32 itojun 692: h = strdup(host);
693: if (h == NULL)
694: errx(1, "Can't allocate memory.");
695: if ((p = strchr(h, '%')) != NULL)
696: *p = '\0';
1.134 jsing 697: ftp_printf(fin, tls, "[%s]", h);
1.32 itojun 698: free(h);
1.55 fgsch 699: } else
1.134 jsing 700: ftp_printf(fin, tls, "%s", host);
1.55 fgsch 701:
702: /*
703: * Send port number only if it's specified and does not equal
704: * 80. Some broken HTTP servers get confused if you explicitly
705: * send them the port number.
706: */
1.61 deraadt 707: #ifndef SMALL
708: if (port && strcmp(port, (ishttpsurl ? "443" : "80")) != 0)
1.134 jsing 709: ftp_printf(fin, tls, ":%s", port);
1.90 martynas 710: if (restart_point)
1.134 jsing 711: ftp_printf(fin, tls, "\r\nRange: bytes=%lld-",
1.75 martynas 712: (long long)restart_point);
1.78 martynas 713: #else /* !SMALL */
1.55 fgsch 714: if (port && strcmp(port, "80") != 0)
1.134 jsing 715: ftp_printf(fin, tls, ":%s", port);
1.78 martynas 716: #endif /* !SMALL */
1.134 jsing 717: ftp_printf(fin, tls, "\r\n%s%s\r\n\r\n",
1.124 lteo 718: buf ? buf : "", httpuseragent);
1.55 fgsch 719: if (verbose)
720: fprintf(ttyout, "\n");
1.28 itojun 721: }
1.95 martynas 722: free(epath);
1.74 pyr 723:
724: #ifndef SMALL
725: free(buf);
1.78 martynas 726: #endif /* !SMALL */
1.74 pyr 727: buf = NULL;
728:
1.61 deraadt 729: if (fin != NULL && fflush(fin) == EOF) {
1.14 millert 730: warn("Writing HTTP request");
1.6 millert 731: goto cleanup_url_get;
1.1 millert 732: }
1.134 jsing 733: if ((buf = ftp_readline(fin, tls, &len)) == NULL) {
1.40 fgsch 734: warn("Receiving HTTP reply");
735: goto cleanup_url_get;
1.1 millert 736: }
1.40 fgsch 737:
738: while (len > 0 && (buf[len-1] == '\r' || buf[len-1] == '\n'))
739: buf[--len] = '\0';
1.80 martynas 740: #ifndef SMALL
1.40 fgsch 741: if (debug)
742: fprintf(ttyout, "received '%s'\n", buf);
1.80 martynas 743: #endif /* !SMALL */
1.40 fgsch 744:
1.1 millert 745: cp = strchr(buf, ' ');
746: if (cp == NULL)
747: goto improper;
748: else
749: cp++;
1.69 jsg 750:
751: strlcpy(ststr, cp, sizeof(ststr));
1.75 martynas 752: status = strtonum(ststr, 200, 416, &errstr);
1.69 jsg 753: if (errstr) {
754: warnx("Error retrieving file: %s", cp);
755: goto cleanup_url_get;
756: }
757:
758: switch (status) {
759: case 200: /* OK */
1.75 martynas 760: #ifndef SMALL
1.109 sthen 761: /*
1.98 phessler 762: * When we request a partial file, and we receive an HTTP 200
763: * it is a good indication that the server doesn't support
764: * range requests, and is about to send us the entire file.
765: * If the restart_point == 0, then we are not actually
766: * requesting a partial file, and an HTTP 200 is appropriate.
767: */
768: if (resume && restart_point != 0) {
769: warnx("Server does not support resume.");
770: restart_point = resume = 0;
771: }
1.101 halex 772: /* FALLTHROUGH */
1.75 martynas 773: case 206: /* Partial Content */
1.91 halex 774: #endif /* !SMALL */
1.69 jsg 775: break;
776: case 301: /* Moved Permanently */
777: case 302: /* Found */
778: case 303: /* See Other */
779: case 307: /* Temporary Redirect */
1.40 fgsch 780: isredirect++;
1.54 fgsch 781: if (redirect_loop++ > 10) {
782: warnx("Too many redirections requested");
783: goto cleanup_url_get;
784: }
1.69 jsg 785: break;
1.75 martynas 786: #ifndef SMALL
787: case 416: /* Requested Range Not Satisfiable */
788: warnx("File is already fully retrieved.");
789: goto cleanup_url_get;
1.78 martynas 790: #endif /* !SMALL */
1.69 jsg 791: default:
1.1 millert 792: warnx("Error retrieving file: %s", cp);
1.6 millert 793: goto cleanup_url_get;
1.1 millert 794: }
795:
796: /*
797: * Read the rest of the header.
798: */
1.40 fgsch 799: free(buf);
800: filesize = -1;
801:
1.62 ray 802: for (;;) {
1.134 jsing 803: if ((buf = ftp_readline(fin, tls, &len)) == NULL) {
1.40 fgsch 804: warn("Receiving HTTP reply");
805: goto cleanup_url_get;
806: }
1.61 deraadt 807:
1.40 fgsch 808: while (len > 0 && (buf[len-1] == '\r' || buf[len-1] == '\n'))
809: buf[--len] = '\0';
810: if (len == 0)
1.1 millert 811: break;
1.80 martynas 812: #ifndef SMALL
1.40 fgsch 813: if (debug)
814: fprintf(ttyout, "received '%s'\n", buf);
1.80 martynas 815: #endif /* !SMALL */
1.1 millert 816:
1.40 fgsch 817: /* Look for some headers */
818: cp = buf;
1.1 millert 819: #define CONTENTLEN "Content-Length: "
1.40 fgsch 820: if (strncasecmp(cp, CONTENTLEN, sizeof(CONTENTLEN) - 1) == 0) {
1.104 sthen 821: size_t s;
1.40 fgsch 822: cp += sizeof(CONTENTLEN) - 1;
1.111 deraadt 823: if ((s = strcspn(cp, " \t")))
1.104 sthen 824: *(cp+s) = 0;
1.58 grunk 825: filesize = strtonum(cp, 0, LLONG_MAX, &errstr);
826: if (errstr != NULL)
1.40 fgsch 827: goto improper;
1.75 martynas 828: #ifndef SMALL
1.90 martynas 829: if (restart_point)
1.75 martynas 830: filesize += restart_point;
1.78 martynas 831: #endif /* !SMALL */
1.40 fgsch 832: #define LOCATION "Location: "
833: } else if (isredirect &&
834: strncasecmp(cp, LOCATION, sizeof(LOCATION) - 1) == 0) {
835: cp += sizeof(LOCATION) - 1;
1.144 ! sthen 836: /*
! 837: * If there is a colon before the first slash, this URI
! 838: * is not relative. RFC 3986 4.2
! 839: */
! 840: if (cp[strcspn(cp, ":/")] != ':') {
1.102 halex 841: #ifdef SMALL
842: errx(1, "Relative redirect not supported");
843: #else /* SMALL */
1.144 ! sthen 844: /* XXX doesn't handle protocol-relative URIs */
1.102 halex 845: if (*cp == '/') {
846: locbase = NULL;
847: cp++;
848: } else {
849: locbase = strdup(path);
850: if (locbase == NULL)
851: errx(1, "Can't allocate memory"
852: " for location base");
853: loctail = strchr(locbase, '#');
854: if (loctail != NULL)
855: *loctail = '\0';
856: loctail = strchr(locbase, '?');
857: if (loctail != NULL)
858: *loctail = '\0';
859: loctail = strrchr(locbase, '/');
860: if (loctail == NULL) {
861: free(locbase);
862: locbase = NULL;
863: } else
864: loctail[1] = '\0';
865: }
866: /* Contruct URL from relative redirect */
867: if (asprintf(&redirurl, "%s%s%s%s/%s%s",
868: scheme, full_host,
869: portnum ? ":" : "",
870: portnum ? portnum : "",
871: locbase ? locbase : "",
872: cp) == -1)
873: errx(1, "Cannot build "
874: "redirect URL");
875: free(locbase);
876: #endif /* SMALL */
877: } else if ((redirurl = strdup(cp)) == NULL)
878: errx(1, "Cannot allocate memory for URL");
879: loctail = strchr(redirurl, '#');
880: if (loctail != NULL)
881: *loctail = '\0';
1.40 fgsch 882: if (verbose)
1.102 halex 883: fprintf(ttyout, "Redirected to %s\n", redirurl);
1.40 fgsch 884: if (fin != NULL)
885: fclose(fin);
886: else if (s != -1)
887: close(s);
1.102 halex 888: rval = url_get(redirurl, proxyenv, savefile);
889: free(redirurl);
890: goto cleanup_url_get;
1.40 fgsch 891: }
1.108 tobias 892: free(buf);
1.1 millert 893: }
894:
1.17 millert 895: /* Open the output file. */
1.100 halex 896: if (!pipeout) {
1.75 martynas 897: #ifndef SMALL
898: if (resume)
1.83 martynas 899: out = open(savefile, O_CREAT | O_WRONLY | O_APPEND,
900: 0666);
1.75 martynas 901: else
1.78 martynas 902: #endif /* !SMALL */
1.75 martynas 903: out = open(savefile, O_CREAT | O_WRONLY | O_TRUNC,
904: 0666);
1.10 deraadt 905: if (out < 0) {
906: warn("Can't open %s", savefile);
907: goto cleanup_url_get;
908: }
909: } else
1.17 millert 910: out = fileno(stdout);
1.1 millert 911:
912: /* Trap signals */
913: oldintr = NULL;
1.97 martynas 914: oldinti = NULL;
1.1 millert 915: if (setjmp(httpabort)) {
916: if (oldintr)
1.2 millert 917: (void)signal(SIGINT, oldintr);
1.97 martynas 918: if (oldinti)
919: (void)signal(SIGINFO, oldinti);
1.6 millert 920: goto cleanup_url_get;
1.1 millert 921: }
922: oldintr = signal(SIGINT, aborthttp);
923:
924: bytes = 0;
925: hashbytes = mark;
1.84 martynas 926: progressmeter(-1, path);
1.43 millert 927:
928: free(buf);
1.1 millert 929:
930: /* Finally, suck down the file. */
1.113 tedu 931: if ((buf = malloc(buflen)) == NULL)
1.47 deraadt 932: errx(1, "Can't allocate memory for transfer buffer");
1.1 millert 933: i = 0;
1.61 deraadt 934: len = 1;
1.97 martynas 935: oldinti = signal(SIGINFO, psummary);
1.61 deraadt 936: while (len > 0) {
1.134 jsing 937: len = ftp_read(fin, tls, buf, buflen);
1.1 millert 938: bytes += len;
1.61 deraadt 939: for (cp = buf, wlen = len; wlen > 0; wlen -= i, cp += i) {
940: if ((i = write(out, cp, wlen)) == -1) {
1.1 millert 941: warn("Writing %s", savefile);
1.97 martynas 942: signal(SIGINFO, oldinti);
1.6 millert 943: goto cleanup_url_get;
1.1 millert 944: }
945: else if (i == 0)
946: break;
947: }
948: if (hash && !progress) {
949: while (bytes >= hashbytes) {
1.10 deraadt 950: (void)putc('#', ttyout);
1.1 millert 951: hashbytes += mark;
952: }
1.10 deraadt 953: (void)fflush(ttyout);
1.1 millert 954: }
955: }
1.97 martynas 956: signal(SIGINFO, oldinti);
1.1 millert 957: if (hash && !progress && bytes > 0) {
958: if (bytes < mark)
1.10 deraadt 959: (void)putc('#', ttyout);
960: (void)putc('\n', ttyout);
961: (void)fflush(ttyout);
1.1 millert 962: }
963: if (len != 0) {
964: warn("Reading from socket");
1.6 millert 965: goto cleanup_url_get;
1.1 millert 966: }
1.84 martynas 967: progressmeter(1, NULL);
1.75 martynas 968: if (
969: #ifndef SMALL
970: !resume &&
1.78 martynas 971: #endif /* !SMALL */
1.75 martynas 972: filesize != -1 && len == 0 && bytes != filesize) {
1.24 deraadt 973: if (verbose)
974: fputs("Read short file.\n", ttyout);
975: goto cleanup_url_get;
976: }
977:
1.1 millert 978: if (verbose)
1.97 martynas 979: ptransfer(0);
1.2 millert 980: (void)signal(SIGINT, oldintr);
1.1 millert 981:
1.40 fgsch 982: rval = 0;
983: goto cleanup_url_get;
1.1 millert 984:
1.14 millert 985: noftpautologin:
986: warnx(
987: "Auto-login using ftp URLs isn't supported when using $ftp_proxy");
988: goto cleanup_url_get;
989:
1.1 millert 990: improper:
1.8 millert 991: warnx("Improper response from %s", host);
1.14 millert 992:
1.6 millert 993: cleanup_url_get:
1.61 deraadt 994: #ifndef SMALL
1.134 jsing 995: if (tls != NULL) {
996: tls_close(tls);
997: tls_free(tls);
1.61 deraadt 998: }
1.102 halex 999: free(full_host);
1.128 jca 1000: free(sslhost);
1.78 martynas 1001: #endif /* !SMALL */
1.40 fgsch 1002: if (fin != NULL)
1003: fclose(fin);
1004: else if (s != -1)
1.1 millert 1005: close(s);
1.67 steven 1006: free(buf);
1.136 bluhm 1007: free(proxyhost);
1.67 steven 1008: free(proxyurl);
1.62 ray 1009: free(newline);
1.123 guenther 1010: free(credentials);
1.40 fgsch 1011: return (rval);
1.1 millert 1012: }
1013:
1014: /*
1015: * Abort a http retrieval
1016: */
1.51 deraadt 1017: /* ARGSUSED */
1.1 millert 1018: void
1.51 deraadt 1019: aborthttp(int signo)
1.1 millert 1020: {
1021:
1022: alarmtimer(0);
1.10 deraadt 1023: fputs("\nhttp fetch aborted.\n", ttyout);
1024: (void)fflush(ttyout);
1.1 millert 1025: longjmp(httpabort, 1);
1026: }
1027:
1028: /*
1.22 deraadt 1029: * Abort a http retrieval
1030: */
1.51 deraadt 1031: /* ARGSUSED */
1.22 deraadt 1032: void
1.51 deraadt 1033: abortfile(int signo)
1.22 deraadt 1034: {
1035:
1036: alarmtimer(0);
1037: fputs("\nfile fetch aborted.\n", ttyout);
1038: (void)fflush(ttyout);
1039: longjmp(httpabort, 1);
1040: }
1041:
1042: /*
1.1 millert 1043: * Retrieve multiple files from the command line, transferring
1044: * files of the form "host:path", "ftp://host/path" using the
1045: * ftp protocol, and files of the form "http://host/path" using
1046: * the http protocol.
1.2 millert 1047: * If path has a trailing "/", then return (-1);
1.1 millert 1048: * the path will be cd-ed into and the connection remains open,
1049: * and the function will return -1 (to indicate the connection
1050: * is alive).
1051: * If an error occurs the return value will be the offset+1 in
1052: * argv[] of the file that caused a problem (i.e, argv[x]
1053: * returns x+1)
1054: * Otherwise, 0 is returned if all files retrieved successfully.
1055: */
1056: int
1.50 deraadt 1057: auto_fetch(int argc, char *argv[], char *outfile)
1.1 millert 1058: {
1059: char *xargv[5];
1.62 ray 1060: char *cp, *url, *host, *dir, *file, *portnum;
1061: char *username, *pass, *pathstart;
1.6 millert 1062: char *ftpproxy, *httpproxy;
1.14 millert 1063: int rval, xargc;
1064: volatile int argpos;
1.49 krw 1065: int dirhasglob, filehasglob, oautologin;
1.137 deraadt 1066: char rempath[PATH_MAX];
1.1 millert 1067:
1068: argpos = 0;
1069:
1070: if (setjmp(toplevel)) {
1071: if (connected)
1072: disconnect(0, NULL);
1.2 millert 1073: return (argpos + 1);
1.1 millert 1074: }
1.3 millert 1075: (void)signal(SIGINT, (sig_t)intr);
1076: (void)signal(SIGPIPE, (sig_t)lostpeer);
1.1 millert 1077:
1.45 millert 1078: if ((ftpproxy = getenv(FTP_PROXY)) != NULL && *ftpproxy == '\0')
1079: ftpproxy = NULL;
1080: if ((httpproxy = getenv(HTTP_PROXY)) != NULL && *httpproxy == '\0')
1081: httpproxy = NULL;
1.6 millert 1082:
1.1 millert 1083: /*
1084: * Loop through as long as there's files to fetch.
1085: */
1.123 guenther 1086: username = pass = NULL;
1.62 ray 1087: for (rval = 0; (rval == 0) && (argpos < argc); free(url), argpos++) {
1.1 millert 1088: if (strchr(argv[argpos], ':') == NULL)
1089: break;
1.123 guenther 1090:
1091: free(username);
1092: free(pass);
1.62 ray 1093: host = dir = file = portnum = username = pass = NULL;
1.1 millert 1094:
1095: /*
1096: * We muck with the string, so we make a copy.
1097: */
1.62 ray 1098: url = strdup(argv[argpos]);
1099: if (url == NULL)
1.1 millert 1100: errx(1, "Can't allocate memory for auto-fetch.");
1101:
1102: /*
1103: * Try HTTP URL-style arguments first.
1104: */
1.62 ray 1105: if (strncasecmp(url, HTTP_URL, sizeof(HTTP_URL) - 1) == 0 ||
1.61 deraadt 1106: #ifndef SMALL
1107: /* even if we compiled without SSL, url_get will check */
1.62 ray 1108: strncasecmp(url, HTTPS_URL, sizeof(HTTPS_URL) -1) == 0 ||
1.78 martynas 1109: #endif /* !SMALL */
1.62 ray 1110: strncasecmp(url, FILE_URL, sizeof(FILE_URL) - 1) == 0) {
1.54 fgsch 1111: redirect_loop = 0;
1.62 ray 1112: if (url_get(url, httpproxy, outfile) == -1)
1.1 millert 1113: rval = argpos + 1;
1114: continue;
1115: }
1116:
1117: /*
1.6 millert 1118: * Try FTP URL-style arguments next. If ftpproxy is
1119: * set, use url_get() instead of standard ftp.
1120: * Finally, try host:file.
1.1 millert 1121: */
1.62 ray 1122: host = url;
1123: if (strncasecmp(url, FTP_URL, sizeof(FTP_URL) - 1) == 0) {
1.37 heko 1124: char *passend, *passagain, *userend;
1.31 itojun 1125:
1.6 millert 1126: if (ftpproxy) {
1.62 ray 1127: if (url_get(url, ftpproxy, outfile) == -1)
1.6 millert 1128: rval = argpos + 1;
1129: continue;
1130: }
1.1 millert 1131: host += sizeof(FTP_URL) - 1;
1.8 millert 1132: dir = strchr(host, '/');
1.1 millert 1133:
1.8 millert 1134: /* Look for [user:pass@]host[:port] */
1.31 itojun 1135:
1136: /* check if we have "user:pass@" */
1.37 heko 1137: userend = strchr(host, ':');
1.31 itojun 1138: passend = strchr(host, '@');
1139: if (passend && userend && userend < passend &&
1140: (!dir || passend < dir)) {
1.62 ray 1141: username = host;
1.31 itojun 1142: pass = userend + 1;
1143: host = passend + 1;
1144: *userend = *passend = '\0';
1.37 heko 1145: passagain = strchr(host, '@');
1.42 deraadt 1146: if (strchr(pass, '@') != NULL ||
1.37 heko 1147: (passagain != NULL && passagain < dir)) {
1148: warnx(at_encoding_warning);
1.123 guenther 1149: username = pass = NULL;
1.37 heko 1150: goto bad_ftp_url;
1.42 deraadt 1151: }
1.31 itojun 1152:
1.77 martynas 1153: if (EMPTYSTRING(username)) {
1.11 millert 1154: bad_ftp_url:
1.31 itojun 1155: warnx("Invalid URL: %s", argv[argpos]);
1156: rval = argpos + 1;
1.123 guenther 1157: username = pass = NULL;
1.31 itojun 1158: continue;
1159: }
1.62 ray 1160: username = urldecode(username);
1.37 heko 1161: pass = urldecode(pass);
1.8 millert 1162: }
1.31 itojun 1163:
1164: #ifdef INET6
1165: /* check [host]:port, or [host] */
1166: if (host[0] == '[') {
1167: cp = strchr(host, ']');
1168: if (cp && (!dir || cp < dir)) {
1169: if (cp + 1 == dir || cp[1] == ':') {
1170: host++;
1171: *cp++ = '\0';
1172: } else
1173: cp = NULL;
1174: } else
1175: cp = host;
1.25 itojun 1176: } else
1177: cp = host;
1.31 itojun 1178: #else
1179: cp = host;
1.25 itojun 1180: #endif
1.31 itojun 1181:
1182: /* split off host[:port] if there is */
1183: if (cp) {
1184: portnum = strchr(cp, ':');
1.52 henning 1185: pathstart = strchr(cp, '/');
1186: /* : in path is not a port # indicator */
1187: if (portnum && pathstart &&
1188: pathstart < portnum)
1189: portnum = NULL;
1190:
1.31 itojun 1191: if (!portnum)
1192: ;
1193: else {
1194: if (!dir)
1195: ;
1196: else if (portnum + 1 < dir) {
1197: *portnum++ = '\0';
1198: /*
1199: * XXX should check if portnum
1200: * is decimal number
1201: */
1202: } else {
1203: /* empty portnum */
1204: goto bad_ftp_url;
1205: }
1206: }
1207: } else
1208: portnum = NULL;
1.8 millert 1209: } else { /* classic style `host:file' */
1210: dir = strchr(host, ':');
1211: }
1.1 millert 1212: if (EMPTYSTRING(host)) {
1213: rval = argpos + 1;
1214: continue;
1215: }
1216:
1217: /*
1.9 millert 1218: * If dir is NULL, the file wasn't specified
1.1 millert 1219: * (URL looked something like ftp://host)
1220: */
1.8 millert 1221: if (dir != NULL)
1222: *dir++ = '\0';
1.1 millert 1223:
1224: /*
1225: * Extract the file and (if present) directory name.
1226: */
1.42 deraadt 1227: if (!EMPTYSTRING(dir)) {
1.8 millert 1228: cp = strrchr(dir, '/');
1.1 millert 1229: if (cp != NULL) {
1230: *cp++ = '\0';
1231: file = cp;
1232: } else {
1233: file = dir;
1234: dir = NULL;
1235: }
1236: }
1.80 martynas 1237: #ifndef SMALL
1.1 millert 1238: if (debug)
1.42 deraadt 1239: fprintf(ttyout,
1240: "user %s:%s host %s port %s dir %s file %s\n",
1.76 martynas 1241: username, pass ? "XXXX" : NULL, host, portnum,
1242: dir, file);
1.80 martynas 1243: #endif /* !SMALL */
1.1 millert 1244:
1245: /*
1.49 krw 1246: * Set up the connection.
1.1 millert 1247: */
1.49 krw 1248: if (connected)
1249: disconnect(0, NULL);
1250: xargv[0] = __progname;
1251: xargv[1] = host;
1.8 millert 1252: xargv[2] = NULL;
1.49 krw 1253: xargc = 2;
1254: if (!EMPTYSTRING(portnum)) {
1255: xargv[2] = portnum;
1256: xargv[3] = NULL;
1257: xargc = 3;
1258: }
1259: oautologin = autologin;
1.88 martynas 1260: if (username == NULL)
1.89 halex 1261: anonftp = 1;
1262: else {
1263: anonftp = 0;
1.49 krw 1264: autologin = 0;
1.89 halex 1265: }
1.49 krw 1266: setpeer(xargc, xargv);
1267: autologin = oautologin;
1.87 martynas 1268: if (connected == 0 ||
1269: (connected == 1 && autologin && (username == NULL ||
1270: !ftp_login(host, username, pass)))) {
1.49 krw 1271: warnx("Can't connect or login to host `%s'", host);
1.8 millert 1272: rval = argpos + 1;
1273: continue;
1.1 millert 1274: }
1.49 krw 1275:
1276: /* Always use binary transfers. */
1277: setbinary(0, NULL);
1.1 millert 1278:
1.4 millert 1279: dirhasglob = filehasglob = 0;
1280: if (doglob) {
1.42 deraadt 1281: if (!EMPTYSTRING(dir) &&
1.4 millert 1282: strpbrk(dir, "*?[]{}") != NULL)
1283: dirhasglob = 1;
1.42 deraadt 1284: if (!EMPTYSTRING(file) &&
1.4 millert 1285: strpbrk(file, "*?[]{}") != NULL)
1286: filehasglob = 1;
1287: }
1288:
1.1 millert 1289: /* Change directories, if necessary. */
1.42 deraadt 1290: if (!EMPTYSTRING(dir) && !dirhasglob) {
1.1 millert 1291: xargv[0] = "cd";
1292: xargv[1] = dir;
1293: xargv[2] = NULL;
1294: cd(2, xargv);
1.42 deraadt 1295: if (!dirchange) {
1.1 millert 1296: rval = argpos + 1;
1297: continue;
1298: }
1299: }
1300:
1301: if (EMPTYSTRING(file)) {
1.86 martynas 1302: #ifndef SMALL
1.1 millert 1303: rval = -1;
1.86 martynas 1304: #else /* !SMALL */
1305: recvrequest("NLST", "-", NULL, "w", 0, 0);
1306: rval = 0;
1307: #endif /* !SMALL */
1.1 millert 1308: continue;
1309: }
1310:
1.21 marc 1311: if (verbose)
1.10 deraadt 1312: fprintf(ttyout, "Retrieving %s/%s\n", dir ? dir : "", file);
1.1 millert 1313:
1.4 millert 1314: if (dirhasglob) {
1315: snprintf(rempath, sizeof(rempath), "%s/%s", dir, file);
1316: file = rempath;
1317: }
1318:
1319: /* Fetch the file(s). */
1.10 deraadt 1320: xargc = 2;
1.1 millert 1321: xargv[0] = "get";
1322: xargv[1] = file;
1323: xargv[2] = NULL;
1.4 millert 1324: if (dirhasglob || filehasglob) {
1325: int ointeractive;
1326:
1327: ointeractive = interactive;
1328: interactive = 0;
1329: xargv[0] = "mget";
1.78 martynas 1330: #ifndef SMALL
1331: if (resume) {
1332: xargc = 3;
1333: xargv[1] = "-c";
1334: xargv[2] = file;
1335: xargv[3] = NULL;
1336: }
1337: #endif /* !SMALL */
1.10 deraadt 1338: mget(xargc, xargv);
1.5 millert 1339: interactive = ointeractive;
1.10 deraadt 1340: } else {
1.17 millert 1341: if (outfile != NULL) {
1342: xargv[2] = outfile;
1343: xargv[3] = NULL;
1.10 deraadt 1344: xargc++;
1345: }
1.75 martynas 1346: #ifndef SMALL
1347: if (resume)
1348: reget(xargc, xargv);
1349: else
1.78 martynas 1350: #endif /* !SMALL */
1.75 martynas 1351: get(xargc, xargv);
1.10 deraadt 1352: }
1.1 millert 1353:
1.4 millert 1354: if ((code / 100) != COMPLETE)
1.1 millert 1355: rval = argpos + 1;
1356: }
1357: if (connected && rval != -1)
1358: disconnect(0, NULL);
1359: return (rval);
1.37 heko 1360: }
1361:
1362: char *
1.50 deraadt 1363: urldecode(const char *str)
1.37 heko 1364: {
1.53 deraadt 1365: char *ret, c;
1366: int i, reallen;
1.37 heko 1367:
1.53 deraadt 1368: if (str == NULL)
1369: return NULL;
1370: if ((ret = malloc(strlen(str)+1)) == NULL)
1371: err(1, "Can't allocate memory for URL decoding");
1372: for (i = 0, reallen = 0; str[i] != '\0'; i++, reallen++, ret++) {
1373: c = str[i];
1374: if (c == '+') {
1375: *ret = ' ';
1376: continue;
1377: }
1.61 deraadt 1378:
1379: /* Cannot use strtol here because next char
1380: * after %xx may be a digit.
1381: */
1.143 guenther 1382: if (c == '%' && isxdigit((unsigned char)str[i+1]) &&
1383: isxdigit((unsigned char)str[i+2])) {
1.53 deraadt 1384: *ret = hextochar(&str[i+1]);
1385: i+=2;
1386: continue;
1387: }
1388: *ret = c;
1389: }
1390: *ret = '\0';
1391:
1392: return ret-reallen;
1.123 guenther 1393: }
1394:
1395: char *
1396: recode_credentials(const char *userinfo)
1397: {
1398: char *ui, *creds;
1399: size_t ulen, credsize;
1400:
1401: /* url-decode the user and pass */
1402: ui = urldecode(userinfo);
1403:
1404: ulen = strlen(ui);
1405: credsize = (ulen + 2) / 3 * 4 + 1;
1406: creds = malloc(credsize);
1407: if (creds == NULL)
1408: errx(1, "out of memory");
1409: if (b64_ntop(ui, ulen, creds, credsize) == -1)
1410: errx(1, "error in base64 encoding");
1411: free(ui);
1412: return (creds);
1.37 heko 1413: }
1414:
1415: char
1.50 deraadt 1416: hextochar(const char *str)
1.37 heko 1417: {
1.143 guenther 1418: unsigned char c, ret;
1.37 heko 1419:
1.53 deraadt 1420: c = str[0];
1421: ret = c;
1422: if (isalpha(c))
1423: ret -= isupper(c) ? 'A' - 10 : 'a' - 10;
1424: else
1425: ret -= '0';
1426: ret *= 16;
1427:
1428: c = str[1];
1429: ret += c;
1430: if (isalpha(c))
1431: ret -= isupper(c) ? 'A' - 10 : 'a' - 10;
1432: else
1433: ret -= '0';
1434: return ret;
1.25 itojun 1435: }
1436:
1437: int
1.50 deraadt 1438: isurl(const char *p)
1.25 itojun 1439: {
1.27 millert 1440:
1.26 deraadt 1441: if (strncasecmp(p, FTP_URL, sizeof(FTP_URL) - 1) == 0 ||
1442: strncasecmp(p, HTTP_URL, sizeof(HTTP_URL) - 1) == 0 ||
1.61 deraadt 1443: #ifndef SMALL
1444: strncasecmp(p, HTTPS_URL, sizeof(HTTPS_URL) - 1) == 0 ||
1.78 martynas 1445: #endif /* !SMALL */
1.27 millert 1446: strncasecmp(p, FILE_URL, sizeof(FILE_URL) - 1) == 0 ||
1447: strstr(p, ":/"))
1448: return (1);
1449: return (0);
1.1 millert 1450: }
1.61 deraadt 1451:
1452: char *
1.134 jsing 1453: ftp_readline(FILE *fp, struct tls *tls, size_t *lenp)
1.61 deraadt 1454: {
1455: if (fp != NULL)
1456: return fparseln(fp, lenp, NULL, "\0\0\0", 0);
1457: #ifndef SMALL
1.134 jsing 1458: else if (tls != NULL)
1459: return SSL_readline(tls, lenp);
1.78 martynas 1460: #endif /* !SMALL */
1.61 deraadt 1461: else
1462: return NULL;
1463: }
1464:
1.65 ray 1465: size_t
1.134 jsing 1466: ftp_read(FILE *fp, struct tls *tls, char *buf, size_t len)
1.61 deraadt 1467: {
1.142 jsing 1468: ssize_t tls_ret;
1469: size_t ret = 0;
1470:
1.61 deraadt 1471: if (fp != NULL)
1472: ret = fread(buf, sizeof(char), len, fp);
1473: #ifndef SMALL
1.142 jsing 1474: else if (tls != NULL) {
1475: if ((tls_ret = tls_read(tls, buf, len)) >= 0)
1476: ret = (size_t)tls_ret;
1.65 ray 1477: }
1.78 martynas 1478: #endif /* !SMALL */
1.61 deraadt 1479: return (ret);
1480: }
1481:
1482: int
1.134 jsing 1483: ftp_printf(FILE *fp, struct tls *tls, const char *fmt, ...)
1.61 deraadt 1484: {
1485: int ret;
1486: va_list ap;
1487:
1488: va_start(ap, fmt);
1489:
1490: if (fp != NULL)
1491: ret = vfprintf(fp, fmt, ap);
1492: #ifndef SMALL
1.134 jsing 1493: else if (tls != NULL)
1494: ret = SSL_vprintf(tls, fmt, ap);
1.78 martynas 1495: #endif /* !SMALL */
1.61 deraadt 1496: else
1.92 jsg 1497: ret = 0;
1.61 deraadt 1498:
1499: va_end(ap);
1.136 bluhm 1500: #ifndef SMALL
1501: if (debug) {
1502: va_start(ap, fmt);
1503: ret = vfprintf(ttyout, fmt, ap);
1504: va_end(ap);
1505: }
1506: #endif /* !SMALL */
1.61 deraadt 1507: return (ret);
1508: }
1509:
1510: #ifndef SMALL
1511: int
1.134 jsing 1512: SSL_vprintf(struct tls *tls, const char *fmt, va_list ap)
1.61 deraadt 1513: {
1.139 bluhm 1514: char *string, *buf;
1.141 beck 1515: size_t len;
1.61 deraadt 1516: int ret;
1517:
1518: if ((ret = vasprintf(&string, fmt, ap)) == -1)
1519: return ret;
1.139 bluhm 1520: buf = string;
1521: len = ret;
1522: while (len > 0) {
1.141 beck 1523: ret = tls_write(tls, buf, len);
1524: if (ret == TLS_WANT_POLLIN || ret == TLS_WANT_POLLOUT)
1.139 bluhm 1525: continue;
1526: if (ret < 0)
1527: break;
1.141 beck 1528: buf += ret;
1529: len -= ret;
1.139 bluhm 1530: }
1.61 deraadt 1531: free(string);
1532: return ret;
1533: }
1534:
1535: char *
1.134 jsing 1536: SSL_readline(struct tls *tls, size_t *lenp)
1.61 deraadt 1537: {
1.141 beck 1538: size_t i, len;
1.61 deraadt 1539: char *buf, *q, c;
1.109 sthen 1540: int ret;
1.61 deraadt 1541:
1542: len = 128;
1543: if ((buf = malloc(len)) == NULL)
1544: errx(1, "Can't allocate memory for transfer buffer");
1545: for (i = 0; ; i++) {
1546: if (i >= len - 1) {
1.132 doug 1547: if ((q = reallocarray(buf, len, 2)) == NULL)
1.61 deraadt 1548: errx(1, "Can't expand transfer buffer");
1549: buf = q;
1550: len *= 2;
1551: }
1.109 sthen 1552: again:
1.141 beck 1553: ret = tls_read(tls, &c, 1);
1554: if (ret == TLS_WANT_POLLIN || ret == TLS_WANT_POLLOUT)
1.126 jsing 1555: goto again;
1.142 jsing 1556: if (ret < 0)
1.140 jsing 1557: errx(1, "SSL read error: %s", tls_error(tls));
1.126 jsing 1558:
1.61 deraadt 1559: buf[i] = c;
1560: if (c == '\n')
1561: break;
1562: }
1563: *lenp = i;
1564: return (buf);
1565: }
1566:
1567: int
1.81 espie 1568: proxy_connect(int socket, char *host, char *cookie)
1.61 deraadt 1569: {
1.66 ray 1570: int l;
1.61 deraadt 1571: char buf[1024];
1572: char *connstr, *hosttail, *port;
1573:
1574: if (*host == '[' && (hosttail = strrchr(host, ']')) != NULL &&
1575: (hosttail[1] == '\0' || hosttail[1] == ':')) {
1576: host++;
1577: *hosttail++ = '\0';
1578: } else
1579: hosttail = host;
1580:
1581: port = strrchr(hosttail, ':'); /* find portnum */
1582: if (port != NULL)
1583: *port++ = '\0';
1584: if (!port)
1585: port = "443";
1586:
1.81 espie 1587: if (cookie) {
1588: l = asprintf(&connstr, "CONNECT %s:%s HTTP/1.1\r\n"
1589: "Proxy-Authorization: Basic %s\r\n%s\r\n\r\n",
1590: host, port, cookie, HTTP_USER_AGENT);
1591: } else {
1592: l = asprintf(&connstr, "CONNECT %s:%s HTTP/1.1\r\n%s\r\n\r\n",
1593: host, port, HTTP_USER_AGENT);
1594: }
1595:
1.66 ray 1596: if (l == -1)
1.61 deraadt 1597: errx(1, "Could not allocate memory to assemble connect string!");
1.80 martynas 1598: #ifndef SMALL
1.68 ray 1599: if (debug)
1600: printf("%s", connstr);
1.80 martynas 1601: #endif /* !SMALL */
1.66 ray 1602: if (write(socket, connstr, l) != l)
1.68 ray 1603: err(1, "Could not send connect string");
1.61 deraadt 1604: read(socket, &buf, sizeof(buf)); /* only proxy header XXX: error handling? */
1.71 ray 1605: free(connstr);
1.61 deraadt 1606: return(200);
1607: }
1.78 martynas 1608: #endif /* !SMALL */