1 /* $NetBSD: fetch.c,v 1.242 2024/11/29 04:31:57 lukem Exp $ */ 2 3 /*- 4 * Copyright (c) 1997-2024 The NetBSD Foundation, Inc. 5 * All rights reserved. 6 * 7 * This code is derived from software contributed to The NetBSD Foundation 8 * by Luke Mewburn. 9 * 10 * This code is derived from software contributed to The NetBSD Foundation 11 * by Scott Aaron Bamford. 12 * 13 * This code is derived from software contributed to The NetBSD Foundation 14 * by Thomas Klausner. 15 * 16 * Redistribution and use in source and binary forms, with or without 17 * modification, are permitted provided that the following conditions 18 * are met: 19 * 1. Redistributions of source code must retain the above copyright 20 * notice, this list of conditions and the following disclaimer. 21 * 2. Redistributions in binary form must reproduce the above copyright 22 * notice, this list of conditions and the following disclaimer in the 23 * documentation and/or other materials provided with the distribution. 24 * 25 * THIS SOFTWARE IS PROVIDED BY THE NETBSD FOUNDATION, INC. AND CONTRIBUTORS 26 * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED 27 * TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR 28 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE FOUNDATION OR CONTRIBUTORS 29 * BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR 30 * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF 31 * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS 32 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN 33 * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) 34 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE 35 * POSSIBILITY OF SUCH DAMAGE. 36 */ 37 38 #include <sys/cdefs.h> 39 #ifndef lint 40 __RCSID("$NetBSD: fetch.c,v 1.242 2024/11/29 04:31:57 lukem Exp $"); 41 #endif /* not lint */ 42 43 /* 44 * FTP User Program -- Command line file retrieval 45 */ 46 47 #include <sys/types.h> 48 #include <sys/param.h> 49 #include <sys/socket.h> 50 #include <sys/stat.h> 51 #include <sys/time.h> 52 53 #include <netinet/in.h> 54 55 #include <arpa/ftp.h> 56 #include <arpa/inet.h> 57 58 #include <assert.h> 59 #include <ctype.h> 60 #include <err.h> 61 #include <errno.h> 62 #include <netdb.h> 63 #include <fcntl.h> 64 #include <stdio.h> 65 #include <stdlib.h> 66 #include <string.h> 67 #include <unistd.h> 68 #include <time.h> 69 70 #include "ssl.h" 71 #include "ftp_var.h" 72 #include "version.h" 73 74 typedef enum { 75 UNKNOWN_URL_T=-1, 76 HTTP_URL_T, 77 HTTPS_URL_T, 78 FTP_URL_T, 79 FILE_URL_T, 80 CLASSIC_URL_T 81 } url_t; 82 83 struct authinfo { 84 char *auth; 85 char *user; 86 char *pass; 87 }; 88 89 struct urlinfo { 90 char *host; 91 char *port; 92 char *path; 93 url_t utype; 94 in_port_t portnum; 95 }; 96 97 struct posinfo { 98 off_t rangestart; 99 off_t rangeend; 100 off_t entitylen; 101 }; 102 103 __dead static void aborthttp(int); 104 __dead static void timeouthttp(int); 105 #ifndef NO_AUTH 106 static int auth_url(const char *, char **, const struct authinfo *); 107 static void base64_encode(const unsigned char *, size_t, unsigned char *); 108 #endif 109 static int go_fetch(const char *, struct urlinfo *); 110 static int fetch_ftp(const char *); 111 static int fetch_url(const char *, const char *, char *, char *, 112 struct urlinfo *); 113 static const char *match_token(const char **, const char *); 114 static int parse_url(const char *, const char *, struct urlinfo *, 115 struct authinfo *, struct urlinfo *); 116 static void url_decode(char *); 117 static void freeauthinfo(struct authinfo *); 118 static void freeurlinfo(struct urlinfo *); 119 120 static int redirect_loop; 121 122 123 #define STRNEQUAL(a,b) (strncasecmp((a), (b), sizeof((b))-1) == 0) 124 #define ISLWS(x) ((x)=='\r' || (x)=='\n' || (x)==' ' || (x)=='\t') 125 #define SKIPLWS(x) do { while (ISLWS((*x))) x++; } while (0) 126 127 128 #define ABOUT_URL "about:" /* propaganda */ 129 #define FILE_URL "file://" /* file URL prefix */ 130 #define FTP_URL "ftp://" /* ftp URL prefix */ 131 #define HTTP_URL "http://" /* http URL prefix */ 132 #ifdef WITH_SSL 133 #define HTTPS_URL "https://" /* https URL prefix */ 134 135 #define IS_HTTP_TYPE(urltype) \ 136 (((urltype) == HTTP_URL_T) || ((urltype) == HTTPS_URL_T)) 137 #else 138 #define IS_HTTP_TYPE(urltype) \ 139 ((urltype) == HTTP_URL_T) 140 #endif 141 142 /** 143 * fwrite(3) replacement that just uses write(2). Many stdio implementations 144 * don't handle interrupts properly and corrupt the output. We are taking 145 * alarm interrupts because of the progress bar. 146 * 147 * Assumes `fp' is pristine with no prior I/O calls on it. 148 */ 149 static size_t 150 maxwrite(const void *buf, size_t size, size_t nmemb, FILE *fp) 151 { 152 const char *p = buf; 153 ssize_t nwr = 0; 154 ssize_t n; 155 int fd = fileno(fp); 156 157 size *= nmemb; /* assume no overflow */ 158 159 while (size > 0) { 160 if ((n = write(fd, p, size)) == -1) { 161 switch (errno) { 162 case EINTR: 163 case EAGAIN: 164 #if defined(EWOULDBLOCK) && EWOULDBLOCK != EAGAIN 165 case EWOULDBLOCK: 166 #endif 167 continue; 168 default: 169 return nwr; 170 } 171 } 172 p += n; 173 nwr += n; 174 size -= n; 175 } 176 return nwr; 177 } 178 179 /* 180 * Determine if token is the next word in buf (case insensitive). 181 * If so, advance buf past the token and any trailing LWS, and 182 * return a pointer to the token (in buf). Otherwise, return NULL. 183 * token may be preceded by LWS. 184 * token must be followed by LWS or NUL. (I.e, don't partial match). 185 */ 186 static const char * 187 match_token(const char **buf, const char *token) 188 { 189 const char *p, *orig; 190 size_t tlen; 191 192 tlen = strlen(token); 193 p = *buf; 194 SKIPLWS(p); 195 orig = p; 196 if (strncasecmp(p, token, tlen) != 0) 197 return NULL; 198 p += tlen; 199 if (*p != '\0' && !ISLWS(*p)) 200 return NULL; 201 SKIPLWS(p); 202 orig = *buf; 203 *buf = p; 204 return orig; 205 } 206 207 static void 208 initposinfo(struct posinfo *pi) 209 { 210 pi->rangestart = pi->rangeend = pi->entitylen = -1; 211 } 212 213 static void 214 initauthinfo(struct authinfo *ai, char *auth) 215 { 216 ai->auth = auth; 217 ai->user = ai->pass = 0; 218 } 219 220 static void 221 freeauthinfo(struct authinfo *a) 222 { 223 FREEPTR(a->user); 224 if (a->pass != NULL) 225 memset(a->pass, 0, strlen(a->pass)); 226 FREEPTR(a->pass); 227 } 228 229 static void 230 initurlinfo(struct urlinfo *ui) 231 { 232 ui->host = ui->port = ui->path = 0; 233 ui->utype = UNKNOWN_URL_T; 234 ui->portnum = 0; 235 } 236 237 static void 238 copyurlinfo(struct urlinfo *dui, struct urlinfo *sui) 239 { 240 dui->host = ftp_strdup(sui->host); 241 dui->port = ftp_strdup(sui->port); 242 dui->path = ftp_strdup(sui->path); 243 dui->utype = sui->utype; 244 dui->portnum = sui->portnum; 245 } 246 247 static void 248 freeurlinfo(struct urlinfo *ui) 249 { 250 FREEPTR(ui->host); 251 FREEPTR(ui->port); 252 FREEPTR(ui->path); 253 } 254 255 #ifndef NO_AUTH 256 /* 257 * Generate authorization response based on given authentication challenge. 258 * Returns -1 if an error occurred, otherwise 0. 259 * Sets response to a malloc(3)ed string; caller should free. 260 */ 261 static int 262 auth_url(const char *challenge, char **response, const struct authinfo *auth) 263 { 264 const char *cp, *ep, *scheme, *errormsg; 265 char *clear, *realm; 266 char uuser[BUFSIZ], *gotpass; 267 const char *upass; 268 int rval; 269 size_t len, clen, rlen; 270 271 *response = NULL; 272 clear = realm = NULL; 273 rval = -1; 274 cp = challenge; 275 scheme = "Basic"; /* only support Basic authentication */ 276 gotpass = NULL; 277 278 DPRINTF("%s: challenge `%s'\n", __func__, challenge); 279 280 if (! match_token(&cp, scheme)) { 281 warnx("Unsupported authentication challenge `%s'", 282 challenge); 283 goto cleanup_auth_url; 284 } 285 286 #define REALM "realm=\"" 287 if (STRNEQUAL(cp, REALM)) 288 cp += sizeof(REALM) - 1; 289 else { 290 warnx("Unsupported authentication challenge `%s'", 291 challenge); 292 goto cleanup_auth_url; 293 } 294 /* XXX: need to improve quoted-string parsing to support \ quoting, etc. */ 295 if ((ep = strchr(cp, '\"')) != NULL) { 296 len = ep - cp; 297 realm = (char *)ftp_malloc(len + 1); 298 (void)strlcpy(realm, cp, len + 1); 299 } else { 300 warnx("Unsupported authentication challenge `%s'", 301 challenge); 302 goto cleanup_auth_url; 303 } 304 305 fprintf(ttyout, "Username for `%s': ", realm); 306 if (auth->user != NULL) { 307 (void)strlcpy(uuser, auth->user, sizeof(uuser)); 308 fprintf(ttyout, "%s\n", uuser); 309 } else { 310 (void)fflush(ttyout); 311 if (get_line(stdin, uuser, sizeof(uuser), &errormsg) < 0) { 312 warnx("%s; can't authenticate", errormsg); 313 goto cleanup_auth_url; 314 } 315 } 316 if (auth->pass != NULL) 317 upass = auth->pass; 318 else { 319 gotpass = getpass("Password: "); 320 if (gotpass == NULL) { 321 warnx("Can't read password"); 322 goto cleanup_auth_url; 323 } 324 upass = gotpass; 325 } 326 327 clen = strlen(uuser) + strlen(upass) + 2; /* user + ":" + pass + "\0" */ 328 clear = (char *)ftp_malloc(clen); 329 (void)strlcpy(clear, uuser, clen); 330 (void)strlcat(clear, ":", clen); 331 (void)strlcat(clear, upass, clen); 332 if (gotpass) 333 memset(gotpass, 0, strlen(gotpass)); 334 335 /* scheme + " " + enc + "\0" */ 336 rlen = strlen(scheme) + 1 + (clen + 2) * 4 / 3 + 1; 337 *response = ftp_malloc(rlen); 338 (void)strlcpy(*response, scheme, rlen); 339 len = strlcat(*response, " ", rlen); 340 /* use `clen - 1' to not encode the trailing NUL */ 341 base64_encode((unsigned char *)clear, clen - 1, 342 (unsigned char *)*response + len); 343 memset(clear, 0, clen); 344 rval = 0; 345 346 cleanup_auth_url: 347 FREEPTR(clear); 348 FREEPTR(realm); 349 return (rval); 350 } 351 352 /* 353 * Encode len bytes starting at clear using base64 encoding into encoded, 354 * which should be at least ((len + 2) * 4 / 3 + 1) in size. 355 */ 356 static void 357 base64_encode(const unsigned char *clear, size_t len, unsigned char *encoded) 358 { 359 static const unsigned char enc[] = 360 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/"; 361 unsigned char *cp; 362 size_t i; 363 364 cp = encoded; 365 for (i = 0; i < len; i += 3) { 366 *(cp++) = enc[((clear[i + 0] >> 2))]; 367 *(cp++) = enc[((clear[i + 0] << 4) & 0x30) 368 | ((clear[i + 1] >> 4) & 0x0f)]; 369 *(cp++) = enc[((clear[i + 1] << 2) & 0x3c) 370 | ((clear[i + 2] >> 6) & 0x03)]; 371 *(cp++) = enc[((clear[i + 2] ) & 0x3f)]; 372 } 373 *cp = '\0'; 374 while (i-- > len) 375 *(--cp) = '='; 376 } 377 #endif 378 379 /* 380 * Decode %xx escapes in given string, `in-place'. 381 */ 382 static void 383 url_decode(char *url) 384 { 385 unsigned char *p, *q; 386 387 if (EMPTYSTRING(url)) 388 return; 389 p = q = (unsigned char *)url; 390 391 #define HEXTOINT(x) (x - (isdigit(x) ? '0' : (islower(x) ? 'a' : 'A') - 10)) 392 while (*p) { 393 if (p[0] == '%' 394 && p[1] && isxdigit((unsigned char)p[1]) 395 && p[2] && isxdigit((unsigned char)p[2])) { 396 *q++ = HEXTOINT(p[1]) * 16 + HEXTOINT(p[2]); 397 p+=3; 398 } else 399 *q++ = *p++; 400 } 401 *q = '\0'; 402 } 403 404 static const char * 405 get_port(const struct urlinfo *ui) 406 { 407 408 switch(ui->utype) { 409 case HTTP_URL_T: 410 return httpport; 411 case FTP_URL_T: 412 return ftpport; 413 case FILE_URL_T: 414 return ""; 415 #ifdef WITH_SSL 416 case HTTPS_URL_T: 417 return httpsport; 418 #endif 419 default: 420 return NULL; 421 } 422 } 423 424 static int 425 use_relative(const struct urlinfo *ui) 426 { 427 if (ui == NULL) 428 return 0; 429 switch (ui->utype) { 430 case HTTP_URL_T: 431 case FILE_URL_T: 432 #ifdef WITH_SSL 433 case HTTPS_URL_T: 434 #endif 435 return 1; 436 default: 437 return 0; 438 } 439 } 440 441 /* 442 * Parse URL of form (per RFC 3986): 443 * <type>://[<user>[:<password>]@]<host>[:<port>][/<path>] 444 * Returns -1 if a parse error occurred, otherwise 0. 445 * It's the caller's responsibility to url_decode() the returned 446 * user, pass and path. 447 * 448 * Sets type to url_t, each of the given char ** pointers to a 449 * malloc(3)ed strings of the relevant section, and port to 450 * the number given, or ftpport if ftp://, or httpport if http://. 451 * 452 * XXX: this is not totally RFC 3986 compliant; <path> will have the 453 * leading `/' unless it's an ftp:// URL, as this makes things easier 454 * for file:// and http:// URLs. ftp:// URLs have the `/' between the 455 * host and the URL-path removed, but any additional leading slashes 456 * in the URL-path are retained (because they imply that we should 457 * later do "CWD" with a null argument). 458 * 459 * Examples: 460 * input URL output path 461 * --------- ----------- 462 * "http://host" "/" 463 * "http://host/" "/" 464 * "http://host/path" "/path" 465 * "file://host/dir/file" "dir/file" 466 * "ftp://host" "" 467 * "ftp://host/" "" 468 * "ftp://host//" "/" 469 * "ftp://host/dir/file" "dir/file" 470 * "ftp://host//dir/file" "/dir/file" 471 */ 472 473 static int 474 parse_url(const char *url, const char *desc, struct urlinfo *ui, 475 struct authinfo *auth, struct urlinfo *rui) 476 { 477 const char *origurl, *tport; 478 char *cp, *ep, *thost; 479 size_t len; 480 481 if (url == NULL || desc == NULL || ui == NULL || auth == NULL) 482 errx(1, "parse_url: invoked with NULL argument!"); 483 DPRINTF("parse_url: %s `%s'\n", desc, url); 484 485 origurl = url; 486 487 if (STRNEQUAL(url, HTTP_URL)) { 488 url += sizeof(HTTP_URL) - 1; 489 ui->utype = HTTP_URL_T; 490 ui->portnum = HTTP_PORT; 491 } else if (STRNEQUAL(url, FTP_URL)) { 492 url += sizeof(FTP_URL) - 1; 493 ui->utype = FTP_URL_T; 494 ui->portnum = FTP_PORT; 495 } else if (STRNEQUAL(url, FILE_URL)) { 496 url += sizeof(FILE_URL) - 1; 497 ui->utype = FILE_URL_T; 498 #ifdef WITH_SSL 499 } else if (STRNEQUAL(url, HTTPS_URL)) { 500 url += sizeof(HTTPS_URL) - 1; 501 ui->utype = HTTPS_URL_T; 502 ui->portnum = HTTPS_PORT; 503 #endif 504 } else if (rui != NULL) { 505 copyurlinfo(ui, rui); 506 } else { 507 warnx("Invalid %s `%s'", desc, url); 508 cleanup_parse_url: 509 freeauthinfo(auth); 510 freeurlinfo(ui); 511 return (-1); 512 } 513 514 515 if (*url == '\0') 516 return (0); 517 518 /* find [user[:pass]@]host[:port] */ 519 ep = strchr(url, '/'); 520 if (ep == NULL) 521 thost = ftp_strdup(url); 522 else { 523 len = ep - url; 524 thost = (char *)ftp_malloc(len + 1); 525 (void)strlcpy(thost, url, len + 1); 526 if (ui->utype == FTP_URL_T) /* skip first / for ftp URLs */ 527 ep++; 528 ui->path = ftp_strdup(ep); 529 } 530 531 cp = strchr(thost, '@'); /* look for user[:pass]@ in URLs */ 532 if (cp != NULL) { 533 if (ui->utype == FTP_URL_T) 534 anonftp = 0; /* disable anonftp */ 535 auth->user = thost; 536 *cp = '\0'; 537 thost = ftp_strdup(cp + 1); 538 cp = strchr(auth->user, ':'); 539 if (cp != NULL) { 540 *cp = '\0'; 541 auth->pass = ftp_strdup(cp + 1); 542 } 543 url_decode(auth->user); 544 if (auth->pass) 545 url_decode(auth->pass); 546 } 547 548 #ifdef INET6 549 /* 550 * Check if thost is an encoded IPv6 address, as per 551 * RFC 3986: 552 * `[' ipv6-address ']' 553 */ 554 if (*thost == '[') { 555 cp = thost + 1; 556 if ((ep = strchr(cp, ']')) == NULL || 557 (ep[1] != '\0' && ep[1] != ':')) { 558 warnx("Invalid address `%s' in %s `%s'", 559 thost, desc, origurl); 560 goto cleanup_parse_url; 561 } 562 len = ep - cp; /* change `[xyz]' -> `xyz' */ 563 memmove(thost, thost + 1, len); 564 thost[len] = '\0'; 565 if (! isipv6addr(thost)) { 566 warnx("Invalid IPv6 address `%s' in %s `%s'", 567 thost, desc, origurl); 568 goto cleanup_parse_url; 569 } 570 cp = ep + 1; 571 if (*cp == ':') 572 cp++; 573 else 574 cp = NULL; 575 } else 576 #endif /* INET6 */ 577 if ((cp = strchr(thost, ':')) != NULL) 578 *cp++ = '\0'; 579 if (*thost != '\0') 580 ui->host = thost; 581 582 /* look for [:port] */ 583 if (cp != NULL) { 584 unsigned long nport; 585 586 nport = strtoul(cp, &ep, 10); 587 if (*cp == '\0' || *ep != '\0' || 588 nport < 1 || nport > MAX_IN_PORT_T) { 589 warnx("Unknown port `%s' in %s `%s'", 590 cp, desc, origurl); 591 goto cleanup_parse_url; 592 } 593 ui->portnum = (in_port_t)nport; 594 tport = cp; 595 } else 596 tport = get_port(ui); 597 598 599 if (tport != NULL) 600 ui->port = ftp_strdup(tport); 601 if (ui->path == NULL) { 602 const char *emptypath = "/"; 603 if (ui->utype == FTP_URL_T) /* skip first / for ftp URLs */ 604 emptypath++; 605 ui->path = ftp_strdup(emptypath); 606 } 607 608 DPRINTF("%s: user `%s' pass `%s' host %s port %s(%d) " 609 "path `%s'\n", __func__, 610 STRorNULL(auth->user), STRorNULL(auth->pass), 611 STRorNULL(ui->host), STRorNULL(ui->port), 612 ui->portnum ? ui->portnum : -1, STRorNULL(ui->path)); 613 614 return (0); 615 } 616 617 static sigjmp_buf httpabort; 618 619 static int 620 ftp_socket(const struct urlinfo *ui, void **ssl, struct authinfo *auth) 621 { 622 struct addrinfo hints, *res, *res0 = NULL; 623 int error; 624 int s; 625 const char *host = ui->host; 626 const char *port = ui->port; 627 char *fuser = NULL, *pass = NULL, *facct = NULL; 628 int n; 629 630 if (ui->utype != HTTPS_URL_T) 631 ssl = NULL; 632 633 memset(&hints, 0, sizeof(hints)); 634 hints.ai_flags = 0; 635 hints.ai_family = family; 636 hints.ai_socktype = SOCK_STREAM; 637 hints.ai_protocol = 0; 638 639 error = getaddrinfo(host, port, &hints, &res0); 640 if (error) { 641 warnx("Can't LOOKUP `%s:%s': %s", host, port, 642 (error == EAI_SYSTEM) ? strerror(errno) 643 : gai_strerror(error)); 644 return -1; 645 } 646 647 if (res0->ai_canonname) 648 host = res0->ai_canonname; 649 650 s = -1; 651 if (ssl) 652 *ssl = NULL; 653 for (res = res0; res; res = res->ai_next) { 654 char hname[NI_MAXHOST], sname[NI_MAXSERV]; 655 656 ai_unmapped(res); 657 if (getnameinfo(res->ai_addr, res->ai_addrlen, 658 hname, sizeof(hname), sname, sizeof(sname), 659 NI_NUMERICHOST | NI_NUMERICSERV) != 0) { 660 strlcpy(hname, "?", sizeof(hname)); 661 strlcpy(sname, "?", sizeof(sname)); 662 } 663 664 if (verbose && res0->ai_next) { 665 #ifdef INET6 666 if(res->ai_family == AF_INET6) { 667 fprintf(ttyout, "Trying [%s]:%s ...\n", 668 hname, sname); 669 } else { 670 #endif 671 fprintf(ttyout, "Trying %s:%s ...\n", 672 hname, sname); 673 #ifdef INET6 674 } 675 #endif 676 } 677 678 s = socket(res->ai_family, SOCK_STREAM, res->ai_protocol); 679 if (s < 0) { 680 warn( 681 "Can't create socket for connection to " 682 "`%s:%s'", hname, sname); 683 continue; 684 } 685 686 if (ftp_connect(s, res->ai_addr, res->ai_addrlen, 687 verbose || !res->ai_next) < 0) { 688 close(s); 689 s = -1; 690 continue; 691 } 692 693 if (ruserpass("", &fuser, &pass, &facct) < 0) { 694 close(s); 695 s = -1; 696 continue; 697 } 698 699 if (autologin) { 700 if (fuser != NULL && auth->user == NULL) 701 auth->user = ftp_strdup(fuser); 702 if (pass != NULL && auth->pass == NULL) 703 auth->pass = ftp_strdup(pass); 704 } 705 706 for (n = 0; n < macnum; ++n) { 707 if (!strcmp("init", macros[n].mac_name)) { 708 (void)strlcpy(line, "$init", sizeof(line)); 709 makeargv(); 710 domacro(margc, margv); 711 break; 712 } 713 } 714 715 #ifdef WITH_SSL 716 if (ssl) { 717 if ((*ssl = fetch_start_ssl(s, host)) == NULL) { 718 close(s); 719 s = -1; 720 continue; 721 } 722 } 723 #endif 724 break; 725 } 726 727 FREEPTR(fuser); 728 if (pass != NULL) 729 memset(pass, 0, strlen(pass)); 730 FREEPTR(pass); 731 if (facct != NULL) 732 memset(facct, 0, strlen(facct)); 733 FREEPTR(facct); 734 735 if (res0) 736 freeaddrinfo(res0); 737 return s; 738 } 739 740 static int 741 handle_noproxy(const char *host, in_port_t portnum) 742 { 743 744 char *cp, *ep, *np, *np_copy, *np_iter, *no_proxy; 745 unsigned long np_port; 746 size_t hlen, plen; 747 int isproxy = 1; 748 749 /* check URL against list of no_proxied sites */ 750 no_proxy = getoptionvalue("no_proxy"); 751 if (EMPTYSTRING(no_proxy)) 752 return isproxy; 753 754 np_iter = np_copy = ftp_strdup(no_proxy); 755 hlen = strlen(host); 756 while ((cp = strsep(&np_iter, " ,")) != NULL) { 757 if (*cp == '\0') 758 continue; 759 if ((np = strrchr(cp, ':')) != NULL) { 760 *np++ = '\0'; 761 np_port = strtoul(np, &ep, 10); 762 if (*np == '\0' || *ep != '\0') 763 continue; 764 if (np_port != portnum) 765 continue; 766 } 767 plen = strlen(cp); 768 if (hlen < plen) 769 continue; 770 if (strncasecmp(host + hlen - plen, cp, plen) == 0) { 771 isproxy = 0; 772 break; 773 } 774 } 775 FREEPTR(np_copy); 776 return isproxy; 777 } 778 779 static int 780 handle_proxy(const char *url, const char *penv, struct urlinfo *ui, 781 struct authinfo *pauth) 782 { 783 struct urlinfo pui; 784 785 if (isipv6addr(ui->host) && strchr(ui->host, '%') != NULL) { 786 warnx("Scoped address notation `%s' disallowed via web proxy", 787 ui->host); 788 return -1; 789 } 790 791 initurlinfo(&pui); 792 if (parse_url(penv, "proxy URL", &pui, pauth, NULL) == -1) 793 return -1; 794 795 if ((!IS_HTTP_TYPE(pui.utype) && pui.utype != FTP_URL_T) || 796 EMPTYSTRING(pui.host) || 797 (! EMPTYSTRING(pui.path) && strcmp(pui.path, "/") != 0)) { 798 warnx("Malformed proxy URL `%s'", penv); 799 freeurlinfo(&pui); 800 return -1; 801 } 802 803 FREEPTR(pui.path); 804 #ifdef WITH_SSL 805 if (ui->utype == HTTPS_URL_T) 806 pui.path = ftp_strdup(ui->path); 807 else 808 #endif 809 pui.path = ftp_strdup(url); 810 811 freeurlinfo(ui); 812 *ui = pui; 813 814 return 0; 815 } 816 817 static void 818 print_host(FETCH *fin, const struct urlinfo *ui) 819 { 820 char *h, *p; 821 822 if (strchr(ui->host, ':') == NULL) { 823 fetch_printf(fin, "Host: %s", ui->host); 824 } else { 825 /* 826 * strip off IPv6 scope identifier, since it is 827 * local to the node 828 */ 829 h = ftp_strdup(ui->host); 830 if (isipv6addr(h) && (p = strchr(h, '%')) != NULL) 831 *p = '\0'; 832 833 fetch_printf(fin, "Host: [%s]", h); 834 free(h); 835 } 836 837 if ((ui->utype == HTTP_URL_T && ui->portnum != HTTP_PORT) || 838 (ui->utype == HTTPS_URL_T && ui->portnum != HTTPS_PORT)) 839 fetch_printf(fin, ":%u", ui->portnum); 840 fetch_printf(fin, "\r\n"); 841 } 842 843 static void 844 print_agent(FETCH *fin) 845 { 846 const char *useragent; 847 if ((useragent = getenv("FTPUSERAGENT")) != NULL) { 848 fetch_printf(fin, "User-Agent: %s\r\n", useragent); 849 } else { 850 fetch_printf(fin, "User-Agent: %s/%s\r\n", 851 FTP_PRODUCT, FTP_VERSION); 852 } 853 } 854 855 static void 856 print_cache(FETCH *fin, int isproxy) 857 { 858 fetch_printf(fin, isproxy ? 859 "Pragma: no-cache\r\n" : 860 "Cache-Control: no-cache\r\n"); 861 } 862 863 static int 864 print_get(FETCH *fin, int hasleading, int isproxy, const struct urlinfo *oui, 865 const struct urlinfo *ui) 866 { 867 const char *leading = hasleading ? ", " : " ("; 868 struct entry *np; 869 870 if (isproxy) { 871 if (verbose) { 872 fprintf(ttyout, "%svia %s:%u", leading, 873 ui->host, ui->portnum); 874 leading = ", "; 875 hasleading++; 876 } 877 fetch_printf(fin, "GET %s HTTP/1.0\r\n", ui->path); 878 print_host(fin, oui); 879 return hasleading; 880 } 881 882 fetch_printf(fin, "GET %s HTTP/1.1\r\n", ui->path); 883 print_host(fin, ui); 884 fetch_printf(fin, "Accept: */*\r\n"); 885 fetch_printf(fin, "Connection: close\r\n"); 886 SLIST_FOREACH(np, &custom_headers, entries) { 887 fetch_printf(fin, "%s\r\n", np->header); 888 } 889 890 if (restart_point) { 891 fputs(leading, ttyout); 892 fetch_printf(fin, "Range: bytes=" LLF "-\r\n", 893 (LLT)restart_point); 894 fprintf(ttyout, "restarting at " LLF, (LLT)restart_point); 895 hasleading++; 896 } 897 return hasleading; 898 } 899 900 static void 901 getmtime(const char *cp, time_t *mtime) 902 { 903 struct tm parsed; 904 const char *t; 905 906 memset(&parsed, 0, sizeof(parsed)); 907 t = parse_rfc2616time(&parsed, cp); 908 909 if (t == NULL) 910 return; 911 912 parsed.tm_isdst = -1; 913 if (*t == '\0') 914 *mtime = timegm(&parsed); 915 916 #ifndef NO_DEBUG 917 if (ftp_debug && *mtime != -1) { 918 fprintf(ttyout, "parsed time as: %s", 919 rfc2822time(localtime(mtime))); 920 } 921 #endif 922 } 923 924 static int 925 print_proxy(FETCH *fin, int hasleading, const char *wwwauth, 926 const char *proxyauth) 927 { 928 const char *leading = hasleading ? ", " : " ("; 929 930 if (wwwauth) { 931 if (verbose) { 932 fprintf(ttyout, "%swith authorization", leading); 933 hasleading++; 934 } 935 fetch_printf(fin, "Authorization: %s\r\n", wwwauth); 936 } 937 if (proxyauth) { 938 if (verbose) { 939 fprintf(ttyout, "%swith proxy authorization", leading); 940 hasleading++; 941 } 942 fetch_printf(fin, "Proxy-Authorization: %s\r\n", proxyauth); 943 } 944 return hasleading; 945 } 946 947 #ifdef WITH_SSL 948 static void 949 print_connect(FETCH *fin, const struct urlinfo *ui) 950 { 951 char hname[NI_MAXHOST], *p; 952 const char *h; 953 954 if (isipv6addr(ui->host)) { 955 /* 956 * strip off IPv6 scope identifier, 957 * since it is local to the node 958 */ 959 if ((p = strchr(ui->host, '%')) == NULL) 960 snprintf(hname, sizeof(hname), "[%s]", ui->host); 961 else 962 snprintf(hname, sizeof(hname), "[%.*s]", 963 (int)(p - ui->host), ui->host); 964 h = hname; 965 } else 966 h = ui->host; 967 968 fetch_printf(fin, "CONNECT %s:%d HTTP/1.1\r\n", h, ui->portnum); 969 fetch_printf(fin, "Host: %s:%d\r\n", h, ui->portnum); 970 } 971 #endif 972 973 #define C_OK 0 974 #define C_CLEANUP 1 975 #define C_IMPROPER 2 976 977 static int 978 getresponseline(FETCH *fin, char *buf, size_t buflen, int *len) 979 { 980 const char *errormsg; 981 982 alarmtimer(quit_time ? quit_time : 60); 983 *len = fetch_getline(fin, buf, buflen, &errormsg); 984 alarmtimer(0); 985 if (*len < 0) { 986 if (*errormsg == '\n') 987 errormsg++; 988 warnx("Receiving HTTP reply: %s", errormsg); 989 return C_CLEANUP; 990 } 991 while (*len > 0 && (ISLWS(buf[*len-1]))) 992 buf[--*len] = '\0'; 993 994 if (*len) 995 DPRINTF("%s: received `%s'\n", __func__, buf); 996 return C_OK; 997 } 998 999 static int 1000 getresponse(FETCH *fin, char **cp, size_t buflen, int *hcode) 1001 { 1002 int len, rv; 1003 char *ep, *buf = *cp; 1004 1005 *hcode = 0; 1006 if ((rv = getresponseline(fin, buf, buflen, &len)) != C_OK) 1007 return rv; 1008 1009 /* Determine HTTP response code */ 1010 *cp = strchr(buf, ' '); 1011 if (*cp == NULL) 1012 return C_IMPROPER; 1013 1014 (*cp)++; 1015 1016 *hcode = strtol(*cp, &ep, 10); 1017 if (*ep != '\0' && !isspace((unsigned char)*ep)) 1018 return C_IMPROPER; 1019 1020 return C_OK; 1021 } 1022 1023 static int 1024 parse_posinfo(const char **cp, struct posinfo *pi) 1025 { 1026 char *ep; 1027 if (!match_token(cp, "bytes")) 1028 return -1; 1029 1030 if (**cp == '*') 1031 (*cp)++; 1032 else { 1033 pi->rangestart = STRTOLL(*cp, &ep, 10); 1034 if (pi->rangestart < 0 || *ep != '-') 1035 return -1; 1036 *cp = ep + 1; 1037 pi->rangeend = STRTOLL(*cp, &ep, 10); 1038 if (pi->rangeend < 0 || pi->rangeend < pi->rangestart) 1039 return -1; 1040 *cp = ep; 1041 } 1042 if (**cp != '/') 1043 return -1; 1044 (*cp)++; 1045 if (**cp == '*') 1046 (*cp)++; 1047 else { 1048 pi->entitylen = STRTOLL(*cp, &ep, 10); 1049 if (pi->entitylen < 0) 1050 return -1; 1051 *cp = ep; 1052 } 1053 if (**cp != '\0') 1054 return -1; 1055 1056 #ifndef NO_DEBUG 1057 if (ftp_debug) { 1058 fprintf(ttyout, "parsed range as: "); 1059 if (pi->rangestart == -1) 1060 fprintf(ttyout, "*"); 1061 else 1062 fprintf(ttyout, LLF "-" LLF, (LLT)pi->rangestart, 1063 (LLT)pi->rangeend); 1064 fprintf(ttyout, "/" LLF "\n", (LLT)pi->entitylen); 1065 } 1066 #endif 1067 return 0; 1068 } 1069 1070 #ifndef NO_AUTH 1071 static void 1072 do_auth(int hcode, const char *url, const char *penv, struct authinfo *wauth, 1073 struct authinfo *pauth, char **auth, const char *message, 1074 volatile int *rval, struct urlinfo *ui) 1075 { 1076 struct authinfo aauth; 1077 char *response; 1078 1079 if (hcode == 401) 1080 aauth = *wauth; 1081 else 1082 aauth = *pauth; 1083 1084 if (verbose || aauth.auth == NULL || 1085 aauth.user == NULL || aauth.pass == NULL) 1086 fprintf(ttyout, "%s\n", message); 1087 if (EMPTYSTRING(*auth)) { 1088 warnx("No authentication challenge provided by server"); 1089 return; 1090 } 1091 1092 if (aauth.auth != NULL) { 1093 char reply[10]; 1094 1095 fprintf(ttyout, "Authorization failed. Retry (y/n)? "); 1096 if (get_line(stdin, reply, sizeof(reply), NULL) < 0) { 1097 return; 1098 } 1099 if (tolower((unsigned char)reply[0]) != 'y') 1100 return; 1101 1102 aauth.user = NULL; 1103 aauth.pass = NULL; 1104 } 1105 1106 if (auth_url(*auth, &response, &aauth) == 0) { 1107 *rval = fetch_url(url, penv, 1108 hcode == 401 ? pauth->auth : response, 1109 hcode == 401 ? response : wauth->auth, 1110 ui); 1111 memset(response, 0, strlen(response)); 1112 FREEPTR(response); 1113 } 1114 } 1115 #endif 1116 1117 static int 1118 negotiate_connection(FETCH *fin, const char *url, const char *penv, 1119 struct posinfo *pi, time_t *mtime, struct authinfo *wauth, 1120 struct authinfo *pauth, volatile int *rval, volatile int *ischunked, 1121 char **auth, struct urlinfo *ui) 1122 { 1123 int len, hcode, rv; 1124 char *buf = NULL, *ep; 1125 const char *cp, *token; 1126 char *location, *message; 1127 1128 *auth = message = location = NULL; 1129 1130 buf = ftp_malloc(ftp_buflen); 1131 1132 /* Read the response */ 1133 ep = buf; 1134 switch (getresponse(fin, &ep, ftp_buflen, &hcode)) { 1135 case C_CLEANUP: 1136 goto cleanup_fetch_url; 1137 case C_IMPROPER: 1138 goto improper; 1139 case C_OK: 1140 message = ftp_strdup(ep); 1141 break; 1142 } 1143 1144 /* Read the rest of the header. */ 1145 1146 for (;;) { 1147 if ((rv = getresponseline(fin, buf, ftp_buflen, &len)) != C_OK) 1148 goto cleanup_fetch_url; 1149 if (len == 0) 1150 break; 1151 1152 /* 1153 * Look for some headers 1154 */ 1155 1156 cp = buf; 1157 1158 if (match_token(&cp, "Content-Length:")) { 1159 filesize = STRTOLL(cp, &ep, 10); 1160 if (filesize < 0 || *ep != '\0') 1161 goto improper; 1162 DPRINTF("%s: parsed len as: " LLF "\n", 1163 __func__, (LLT)filesize); 1164 1165 } else if (match_token(&cp, "Content-Range:")) { 1166 if (parse_posinfo(&cp, pi) == -1) 1167 goto improper; 1168 if (! restart_point) { 1169 warnx( 1170 "Received unexpected Content-Range header"); 1171 goto cleanup_fetch_url; 1172 } 1173 1174 } else if (match_token(&cp, "Last-Modified:")) { 1175 getmtime(cp, mtime); 1176 1177 } else if (match_token(&cp, "Location:")) { 1178 location = ftp_strdup(cp); 1179 DPRINTF("%s: parsed location as `%s'\n", 1180 __func__, cp); 1181 1182 } else if (match_token(&cp, "Transfer-Encoding:")) { 1183 if (match_token(&cp, "binary")) { 1184 warnx( 1185 "Bogus transfer encoding `binary' (fetching anyway)"); 1186 continue; 1187 } 1188 if (! (token = match_token(&cp, "chunked"))) { 1189 warnx( 1190 "Unsupported transfer encoding `%s'", 1191 token); 1192 goto cleanup_fetch_url; 1193 } 1194 (*ischunked)++; 1195 DPRINTF("%s: using chunked encoding\n", 1196 __func__); 1197 1198 } else if (match_token(&cp, "Proxy-Authenticate:") 1199 || match_token(&cp, "WWW-Authenticate:")) { 1200 if (! (token = match_token(&cp, "Basic"))) { 1201 DPRINTF("%s: skipping unknown auth " 1202 "scheme `%s'\n", __func__, token); 1203 continue; 1204 } 1205 FREEPTR(*auth); 1206 *auth = ftp_strdup(token); 1207 DPRINTF("%s: parsed auth as `%s'\n", 1208 __func__, cp); 1209 } 1210 1211 } 1212 /* finished parsing header */ 1213 1214 switch (hcode) { 1215 case 200: 1216 break; 1217 case 206: 1218 if (! restart_point) { 1219 warnx("Not expecting partial content header"); 1220 goto cleanup_fetch_url; 1221 } 1222 break; 1223 case 300: 1224 case 301: 1225 case 302: 1226 case 303: 1227 case 305: 1228 case 307: 1229 if (EMPTYSTRING(location)) { 1230 warnx( 1231 "No redirection Location provided by server"); 1232 goto cleanup_fetch_url; 1233 } 1234 if (redirect_loop++ > 5) { 1235 warnx("Too many redirections requested"); 1236 goto cleanup_fetch_url; 1237 } 1238 if (hcode == 305) { 1239 if (verbose) 1240 fprintf(ttyout, "Redirected via %s\n", 1241 location); 1242 *rval = fetch_url(url, location, 1243 pauth->auth, wauth->auth, ui); 1244 } else { 1245 if (verbose) 1246 fprintf(ttyout, "Redirected to %s\n", 1247 location); 1248 *rval = go_fetch(location, ui); 1249 } 1250 goto cleanup_fetch_url; 1251 #ifndef NO_AUTH 1252 case 401: 1253 case 407: 1254 do_auth(hcode, url, penv, wauth, pauth, auth, message, rval, 1255 ui); 1256 goto cleanup_fetch_url; 1257 #endif 1258 default: 1259 if (message) 1260 warnx("Error retrieving file `%s'", message); 1261 else 1262 warnx("Unknown error retrieving file"); 1263 goto cleanup_fetch_url; 1264 } 1265 rv = C_OK; 1266 goto out; 1267 1268 cleanup_fetch_url: 1269 rv = C_CLEANUP; 1270 goto out; 1271 improper: 1272 rv = C_IMPROPER; 1273 goto out; 1274 out: 1275 FREEPTR(buf); 1276 FREEPTR(message); 1277 FREEPTR(location); 1278 return rv; 1279 } /* end of ftp:// or http:// specific setup */ 1280 1281 #ifdef WITH_SSL 1282 static int 1283 connectmethod(FETCH *fin, const char *url, const char *penv, 1284 struct urlinfo *oui, struct urlinfo *ui, struct authinfo *wauth, 1285 struct authinfo *pauth, char **auth, int *hasleading, volatile int *rval) 1286 { 1287 void *ssl; 1288 int hcode, rv; 1289 const char *cp; 1290 char *buf = NULL, *ep; 1291 char *message = NULL; 1292 1293 print_connect(fin, oui); 1294 1295 print_agent(fin); 1296 *hasleading = print_proxy(fin, *hasleading, NULL, pauth->auth); 1297 1298 if (verbose && *hasleading) 1299 fputs(")\n", ttyout); 1300 *hasleading = 0; 1301 1302 fetch_printf(fin, "\r\n"); 1303 if (fetch_flush(fin) == EOF) { 1304 warn("Writing HTTP request"); 1305 alarmtimer(0); 1306 goto cleanup_fetch_url; 1307 } 1308 alarmtimer(0); 1309 1310 buf = ftp_malloc(ftp_buflen); 1311 1312 /* Read the response */ 1313 ep = buf; 1314 switch (getresponse(fin, &ep, ftp_buflen, &hcode)) { 1315 case C_CLEANUP: 1316 goto cleanup_fetch_url; 1317 case C_IMPROPER: 1318 goto improper; 1319 case C_OK: 1320 message = ftp_strdup(ep); 1321 break; 1322 } 1323 1324 for (;;) { 1325 int len; 1326 if (getresponseline(fin, buf, ftp_buflen, &len) != C_OK) 1327 goto cleanup_fetch_url; 1328 if (len == 0) 1329 break; 1330 1331 cp = buf; 1332 if (match_token(&cp, "Proxy-Authenticate:")) { 1333 const char *token; 1334 if (!(token = match_token(&cp, "Basic"))) { 1335 DPRINTF( 1336 "%s: skipping unknown auth scheme `%s'\n", 1337 __func__, token); 1338 continue; 1339 } 1340 FREEPTR(*auth); 1341 *auth = ftp_strdup(token); 1342 DPRINTF("%s: parsed auth as " "`%s'\n", __func__, cp); 1343 } 1344 } 1345 1346 /* finished parsing header */ 1347 switch (hcode) { 1348 case 200: 1349 break; 1350 #ifndef NO_AUTH 1351 case 407: 1352 do_auth(hcode, url, penv, wauth, pauth, auth, message, rval, 1353 ui); 1354 goto cleanup_fetch_url; 1355 #endif 1356 default: 1357 if (message) 1358 warnx("Error proxy connect " "`%s'", message); 1359 else 1360 warnx("Unknown error proxy " "connect"); 1361 goto cleanup_fetch_url; 1362 } 1363 1364 if ((ssl = fetch_start_ssl(fetch_fileno(fin), oui->host)) == NULL) 1365 goto cleanup_fetch_url; 1366 fetch_set_ssl(fin, ssl); 1367 1368 rv = C_OK; 1369 goto out; 1370 improper: 1371 rv = C_IMPROPER; 1372 goto out; 1373 cleanup_fetch_url: 1374 rv = C_CLEANUP; 1375 goto out; 1376 out: 1377 FREEPTR(buf); 1378 FREEPTR(message); 1379 return rv; 1380 } 1381 #endif 1382 1383 /* 1384 * Retrieve URL, via a proxy if necessary, using HTTP. 1385 * If proxyenv is set, use that for the proxy, otherwise try ftp_proxy or 1386 * http_proxy/https_proxy as appropriate. 1387 * Supports HTTP redirects. 1388 * Returns 1 on failure, 0 on completed xfer, -1 if ftp connection 1389 * is still open (e.g, ftp xfer with trailing /) 1390 */ 1391 static int 1392 fetch_url(const char *url, const char *proxyenv, char *proxyauth, 1393 char *wwwauth, struct urlinfo *rui) 1394 { 1395 sigfunc volatile oldint; 1396 sigfunc volatile oldpipe; 1397 sigfunc volatile oldalrm; 1398 sigfunc volatile oldquit; 1399 int volatile s; 1400 struct stat sb; 1401 int volatile isproxy; 1402 int volatile rval, ischunked; 1403 size_t flen; 1404 static size_t bufsize; 1405 static char *xferbuf; 1406 const char *cp; 1407 char *ep; 1408 char *volatile auth; 1409 char *volatile savefile; 1410 char *volatile location; 1411 char *volatile message; 1412 char *volatile decodedpath; 1413 struct authinfo wauth, pauth; 1414 struct posinfo pi; 1415 off_t hashbytes; 1416 int (*volatile closefunc)(FILE *); 1417 FETCH *volatile fin; 1418 FILE *volatile fout; 1419 const char *volatile penv = proxyenv; 1420 struct urlinfo ui, oui; 1421 time_t mtime; 1422 void *ssl = NULL; 1423 1424 DPRINTF("%s: `%s' proxyenv `%s'\n", __func__, url, STRorNULL(penv)); 1425 1426 oldquit = oldalrm = oldint = oldpipe = SIG_ERR; 1427 closefunc = NULL; 1428 fin = NULL; 1429 fout = NULL; 1430 s = -1; 1431 savefile = NULL; 1432 auth = location = message = NULL; 1433 ischunked = isproxy = 0; 1434 rval = 1; 1435 1436 initurlinfo(&ui); 1437 initurlinfo(&oui); 1438 initauthinfo(&wauth, wwwauth); 1439 initauthinfo(&pauth, proxyauth); 1440 1441 decodedpath = NULL; 1442 1443 if (sigsetjmp(httpabort, 1)) 1444 goto cleanup_fetch_url; 1445 1446 if (parse_url(url, "URL", &ui, &wauth, rui) == -1) 1447 goto cleanup_fetch_url; 1448 1449 copyurlinfo(&oui, &ui); 1450 1451 if (ui.utype == FILE_URL_T && ! EMPTYSTRING(ui.host) 1452 && strcasecmp(ui.host, "localhost") != 0) { 1453 warnx("No support for non local file URL `%s'", url); 1454 goto cleanup_fetch_url; 1455 } 1456 1457 if (EMPTYSTRING(ui.path)) { 1458 if (ui.utype == FTP_URL_T) { 1459 rval = fetch_ftp(url); 1460 goto cleanup_fetch_url; 1461 } 1462 if (!IS_HTTP_TYPE(ui.utype) || outfile == NULL) { 1463 warnx("Invalid URL (no file after host) `%s'", url); 1464 goto cleanup_fetch_url; 1465 } 1466 } 1467 1468 decodedpath = ftp_strdup(ui.path); 1469 url_decode(decodedpath); 1470 1471 if (outfile) 1472 savefile = outfile; 1473 else { 1474 cp = strrchr(decodedpath, '/'); /* find savefile */ 1475 if (cp != NULL) 1476 savefile = ftp_strdup(cp + 1); 1477 else 1478 savefile = ftp_strdup(decodedpath); 1479 /* 1480 * Use the first URL we requested not the name after a 1481 * possible redirect, but careful to save it because our 1482 * "safety" check is the match to outfile. 1483 */ 1484 outfile = ftp_strdup(savefile); 1485 } 1486 DPRINTF("%s: savefile `%s'\n", __func__, savefile); 1487 if (EMPTYSTRING(savefile)) { 1488 if (ui.utype == FTP_URL_T) { 1489 rval = fetch_ftp(url); 1490 goto cleanup_fetch_url; 1491 } 1492 warnx("No file after directory (you must specify an " 1493 "output file) `%s'", url); 1494 goto cleanup_fetch_url; 1495 } 1496 1497 restart_point = 0; 1498 filesize = -1; 1499 initposinfo(&pi); 1500 mtime = -1; 1501 if (restartautofetch) { 1502 if (stat(savefile, &sb) == 0) 1503 restart_point = sb.st_size; 1504 } 1505 if (ui.utype == FILE_URL_T) { /* file:// URLs */ 1506 direction = "copied"; 1507 fin = fetch_open(decodedpath, "r"); 1508 if (fin == NULL) { 1509 warn("Can't open `%s'", decodedpath); 1510 goto cleanup_fetch_url; 1511 } 1512 if (fstat(fetch_fileno(fin), &sb) == 0) { 1513 mtime = sb.st_mtime; 1514 filesize = sb.st_size; 1515 } 1516 if (restart_point) { 1517 if (lseek(fetch_fileno(fin), restart_point, SEEK_SET) 1518 < 0) { 1519 warn("Can't seek to restart `%s'", 1520 decodedpath); 1521 goto cleanup_fetch_url; 1522 } 1523 } 1524 if (verbose) { 1525 fprintf(ttyout, "Copying %s", decodedpath); 1526 if (restart_point) 1527 fprintf(ttyout, " (restarting at " LLF ")", 1528 (LLT)restart_point); 1529 fputs("\n", ttyout); 1530 } 1531 if (0 == rcvbuf_size) { 1532 rcvbuf_size = 8 * 1024; /* XXX */ 1533 } 1534 } else { /* ftp:// or http:// URLs */ 1535 int hasleading; 1536 static char hostnamebuf[MAXHOSTNAMELEN]; 1537 1538 (void)strlcpy(hostnamebuf, ui.host, sizeof(hostnamebuf)); 1539 hostname = hostnamebuf; 1540 1541 if (penv == NULL) { 1542 #ifdef WITH_SSL 1543 if (ui.utype == HTTPS_URL_T) 1544 penv = getoptionvalue("https_proxy"); 1545 #endif 1546 if (penv == NULL && IS_HTTP_TYPE(ui.utype)) 1547 penv = getoptionvalue("http_proxy"); 1548 else if (ui.utype == FTP_URL_T) 1549 penv = getoptionvalue("ftp_proxy"); 1550 } 1551 direction = "retrieved"; 1552 if (! EMPTYSTRING(penv)) { /* use proxy */ 1553 1554 isproxy = handle_noproxy(ui.host, ui.portnum); 1555 1556 if (isproxy == 0 && ui.utype == FTP_URL_T) { 1557 rval = fetch_ftp(url); 1558 goto cleanup_fetch_url; 1559 } 1560 1561 if (isproxy) { 1562 if (restart_point) { 1563 warnx( 1564 "Can't restart via proxy URL `%s'", 1565 penv); 1566 goto cleanup_fetch_url; 1567 } 1568 if (handle_proxy(url, penv, &ui, &pauth) < 0) 1569 goto cleanup_fetch_url; 1570 } 1571 } /* ! EMPTYSTRING(penv) */ 1572 1573 s = ftp_socket(&ui, &ssl, &wauth); 1574 if (s < 0) { 1575 warnx("Can't connect to `%s:%s'", ui.host, ui.port); 1576 goto cleanup_fetch_url; 1577 } 1578 1579 oldalrm = xsignal(SIGALRM, timeouthttp); 1580 alarmtimer(quit_time ? quit_time : 60); 1581 fin = fetch_fdopen(s, "r+"); 1582 fetch_set_ssl(fin, ssl); 1583 alarmtimer(0); 1584 1585 alarmtimer(quit_time ? quit_time : 60); 1586 /* 1587 * Construct and send the request. 1588 */ 1589 if (verbose) 1590 fprintf(ttyout, "Requesting %s\n", url); 1591 1592 hasleading = 0; 1593 #ifdef WITH_SSL 1594 if (isproxy && oui.utype == HTTPS_URL_T) { 1595 switch (connectmethod(fin, url, penv, &oui, &ui, 1596 &wauth, &pauth, __UNVOLATILE(&auth), &hasleading, 1597 &rval)) { 1598 case C_CLEANUP: 1599 goto cleanup_fetch_url; 1600 case C_IMPROPER: 1601 goto improper; 1602 case C_OK: 1603 break; 1604 default: 1605 abort(); 1606 } 1607 } 1608 #endif 1609 1610 hasleading = print_get(fin, hasleading, isproxy, &oui, &ui); 1611 1612 if (flushcache) 1613 print_cache(fin, isproxy); 1614 1615 print_agent(fin); 1616 hasleading = print_proxy(fin, hasleading, wauth.auth, 1617 auth ? NULL : pauth.auth); 1618 if (hasleading) { 1619 hasleading = 0; 1620 if (verbose) 1621 fputs(")\n", ttyout); 1622 } 1623 1624 fetch_printf(fin, "\r\n"); 1625 if (fetch_flush(fin) == EOF) { 1626 warn("Writing HTTP request"); 1627 alarmtimer(0); 1628 goto cleanup_fetch_url; 1629 } 1630 alarmtimer(0); 1631 1632 switch (negotiate_connection(fin, url, penv, &pi, 1633 &mtime, &wauth, &pauth, &rval, &ischunked, 1634 __UNVOLATILE(&auth), &ui)) { 1635 case C_OK: 1636 break; 1637 case C_CLEANUP: 1638 goto cleanup_fetch_url; 1639 case C_IMPROPER: 1640 goto improper; 1641 default: 1642 abort(); 1643 } 1644 } 1645 1646 /* Open the output file. */ 1647 1648 /* 1649 * Only trust filenames with special meaning if they came from 1650 * the command line 1651 */ 1652 if (outfile == savefile) { 1653 if (strcmp(savefile, "-") == 0) { 1654 fout = stdout; 1655 } else if (*savefile == '|') { 1656 oldpipe = xsignal(SIGPIPE, SIG_IGN); 1657 fout = popen(savefile + 1, "w"); 1658 if (fout == NULL) { 1659 warn("Can't execute `%s'", savefile + 1); 1660 goto cleanup_fetch_url; 1661 } 1662 closefunc = pclose; 1663 } 1664 } 1665 if (fout == NULL) { 1666 if (restart_point && ( 1667 (pi.rangeend != -1 && pi.rangeend <= restart_point) || 1668 (pi.rangestart == -1 && 1669 filesize != -1 && filesize <= restart_point))) { 1670 /* already done */ 1671 if (verbose) 1672 fprintf(ttyout, "already done\n"); 1673 rval = 0; 1674 goto cleanup_fetch_url; 1675 } 1676 if (restart_point && pi.rangestart != -1) { 1677 if (pi.entitylen != -1) 1678 filesize = pi.entitylen; 1679 if (pi.rangestart != restart_point) { 1680 warnx( 1681 "Size of `%s' differs from save file `%s'", 1682 url, savefile); 1683 goto cleanup_fetch_url; 1684 } 1685 fout = fopen(savefile, "a"); 1686 } else 1687 fout = fopen(savefile, "w"); 1688 if (fout == NULL) { 1689 warn("Can't open `%s'", savefile); 1690 goto cleanup_fetch_url; 1691 } 1692 closefunc = fclose; 1693 } 1694 1695 /* Trap signals */ 1696 oldquit = xsignal(SIGQUIT, psummary); 1697 oldint = xsignal(SIGINT, aborthttp); 1698 1699 assert(rcvbuf_size > 0); 1700 if ((size_t)rcvbuf_size > bufsize) { 1701 if (xferbuf) 1702 (void)free(xferbuf); 1703 bufsize = rcvbuf_size; 1704 xferbuf = ftp_malloc(bufsize); 1705 } 1706 1707 bytes = 0; 1708 hashbytes = mark; 1709 if (oldalrm != SIG_ERR) { 1710 (void)xsignal(SIGALRM, oldalrm); 1711 oldalrm = SIG_ERR; 1712 } 1713 progressmeter(-1); 1714 1715 /* Finally, suck down the file. */ 1716 do { 1717 long chunksize; 1718 short lastchunk; 1719 1720 chunksize = 0; 1721 lastchunk = 0; 1722 /* read chunk-size */ 1723 if (ischunked) { 1724 if (fetch_getln(xferbuf, (int)bufsize, fin) == NULL) { 1725 warnx("Unexpected EOF reading chunk-size"); 1726 goto cleanup_fetch_url; 1727 } 1728 errno = 0; 1729 chunksize = strtol(xferbuf, &ep, 16); 1730 if (ep == xferbuf) { 1731 warnx("Invalid chunk-size"); 1732 goto cleanup_fetch_url; 1733 } 1734 if (errno == ERANGE || chunksize < 0) { 1735 errno = ERANGE; 1736 warn("Chunk-size `%.*s'", 1737 (int)(ep-xferbuf), xferbuf); 1738 goto cleanup_fetch_url; 1739 } 1740 1741 /* 1742 * XXX: Work around bug in Apache 1.3.9 and 1743 * 1.3.11, which incorrectly put trailing 1744 * space after the chunk-size. 1745 */ 1746 while (*ep == ' ') 1747 ep++; 1748 1749 /* skip [ chunk-ext ] */ 1750 if (*ep == ';') { 1751 while (*ep && *ep != '\r') 1752 ep++; 1753 } 1754 1755 if (strcmp(ep, "\r\n") != 0) { 1756 warnx("Unexpected data following chunk-size"); 1757 goto cleanup_fetch_url; 1758 } 1759 DPRINTF("%s: got chunk-size of " LLF "\n", __func__, 1760 (LLT)chunksize); 1761 if (chunksize == 0) { 1762 lastchunk = 1; 1763 goto chunkdone; 1764 } 1765 } 1766 /* transfer file or chunk */ 1767 for (;;) { 1768 struct timeval then, now, td; 1769 volatile off_t bufrem; 1770 1771 if (rate_get) 1772 (void)gettimeofday(&then, NULL); 1773 bufrem = rate_get ? rate_get : (off_t)bufsize; 1774 if (ischunked) 1775 bufrem = MIN(chunksize, bufrem); 1776 while (bufrem > 0) { 1777 size_t nr = MIN((off_t)bufsize, bufrem); 1778 flen = fetch_read(xferbuf, sizeof(char), 1779 nr, fin); 1780 if (flen == 0) { 1781 if (fetch_error(fin)) 1782 goto chunkerror; 1783 goto chunkdone; 1784 } 1785 bytes += flen; 1786 bufrem -= flen; 1787 if (maxwrite(xferbuf, sizeof(char), flen, fout) 1788 != flen) { 1789 warn("Writing `%s'", savefile); 1790 goto cleanup_fetch_url; 1791 } 1792 if (hash && !progress) { 1793 while (bytes >= hashbytes) { 1794 (void)putc('#', ttyout); 1795 hashbytes += mark; 1796 } 1797 (void)fflush(ttyout); 1798 } 1799 if (ischunked) { 1800 chunksize -= flen; 1801 if (chunksize <= 0) 1802 break; 1803 } 1804 } 1805 if (rate_get) { 1806 for (;;) { 1807 (void)gettimeofday(&now, NULL); 1808 timersub(&now, &then, &td); 1809 if (td.tv_sec > 0) 1810 break; 1811 usleep(1000000 - td.tv_usec); 1812 } 1813 } 1814 if (ischunked && chunksize <= 0) 1815 break; 1816 } 1817 /* read CRLF after chunk*/ 1818 chunkdone: 1819 if (ischunked) { 1820 if (fetch_getln(xferbuf, (int)bufsize, fin) == NULL) { 1821 alarmtimer(0); 1822 warnx("Unexpected EOF reading chunk CRLF"); 1823 goto cleanup_fetch_url; 1824 } 1825 if (strcmp(xferbuf, "\r\n") != 0) { 1826 warnx("Unexpected data following chunk"); 1827 goto cleanup_fetch_url; 1828 } 1829 if (lastchunk) 1830 break; 1831 } 1832 } while (ischunked); 1833 1834 /* XXX: deal with optional trailer & CRLF here? */ 1835 chunkerror: 1836 if (hash && !progress && bytes > 0) { 1837 if (bytes < mark) 1838 (void)putc('#', ttyout); 1839 (void)putc('\n', ttyout); 1840 } 1841 if (fetch_error(fin)) { 1842 warn("Reading file"); 1843 goto cleanup_fetch_url; 1844 } 1845 progressmeter(1); 1846 (void)fflush(fout); 1847 if (closefunc == fclose && mtime != -1) { 1848 struct timeval tval[2]; 1849 1850 (void)gettimeofday(&tval[0], NULL); 1851 tval[1].tv_sec = mtime; 1852 tval[1].tv_usec = 0; 1853 (*closefunc)(fout); 1854 fout = NULL; 1855 1856 if (utimes(savefile, tval) == -1) { 1857 fprintf(ttyout, 1858 "Can't change modification time to %s", 1859 rfc2822time(localtime(&mtime))); 1860 } 1861 } 1862 if (bytes > 0) 1863 ptransfer(0); 1864 1865 /* fail if short transfer when filesize is known */ 1866 if (filesize >= 0 && (bytes + restart_point < filesize)) 1867 goto cleanup_fetch_url; 1868 1869 bytes = 0; 1870 1871 rval = 0; 1872 goto cleanup_fetch_url; 1873 1874 improper: 1875 warnx("Improper response from `%s:%s'", ui.host, ui.port); 1876 1877 cleanup_fetch_url: 1878 if (oldint != SIG_ERR) 1879 (void)xsignal(SIGINT, oldint); 1880 if (oldpipe != SIG_ERR) 1881 (void)xsignal(SIGPIPE, oldpipe); 1882 if (oldalrm != SIG_ERR) 1883 (void)xsignal(SIGALRM, oldalrm); 1884 if (oldquit != SIG_ERR) 1885 (void)xsignal(SIGQUIT, oldquit); 1886 if (fin != NULL) 1887 fetch_close(fin); 1888 else if (s != -1) 1889 close(s); 1890 if (closefunc != NULL && fout != NULL) 1891 (*closefunc)(fout); 1892 if (savefile != outfile) 1893 FREEPTR(savefile); 1894 freeurlinfo(&ui); 1895 freeurlinfo(&oui); 1896 freeauthinfo(&wauth); 1897 freeauthinfo(&pauth); 1898 FREEPTR(decodedpath); 1899 FREEPTR(auth); 1900 FREEPTR(location); 1901 FREEPTR(message); 1902 return (rval); 1903 } 1904 1905 /* 1906 * Abort a HTTP retrieval 1907 */ 1908 static void 1909 aborthttp(int notused __unused) 1910 { 1911 char msgbuf[100]; 1912 int len; 1913 1914 sigint_raised = 1; 1915 alarmtimer(0); 1916 if (fromatty) { 1917 len = snprintf(msgbuf, sizeof(msgbuf), 1918 "\n%s: HTTP fetch aborted.\n", getprogname()); 1919 if (len > 0) 1920 write(fileno(ttyout), msgbuf, len); 1921 } 1922 siglongjmp(httpabort, 1); 1923 } 1924 1925 static void 1926 timeouthttp(int notused __unused) 1927 { 1928 char msgbuf[100]; 1929 int len; 1930 1931 alarmtimer(0); 1932 if (fromatty) { 1933 len = snprintf(msgbuf, sizeof(msgbuf), 1934 "\n%s: HTTP fetch timeout.\n", getprogname()); 1935 if (len > 0) 1936 write(fileno(ttyout), msgbuf, len); 1937 } 1938 siglongjmp(httpabort, 1); 1939 } 1940 1941 /* 1942 * Retrieve ftp URL or classic ftp argument using FTP. 1943 * Returns 1 on failure, 0 on completed xfer, -1 if ftp connection 1944 * is still open (e.g, ftp xfer with trailing /) 1945 */ 1946 static int 1947 fetch_ftp(const char *url) 1948 { 1949 char *cp, *xargv[5], rempath[MAXPATHLEN]; 1950 char *dir, *file; 1951 char cmdbuf[MAXPATHLEN]; 1952 char dirbuf[4]; 1953 int dirhasglob, filehasglob, rval, transtype, xargc; 1954 int oanonftp, oautologin; 1955 struct authinfo auth; 1956 struct urlinfo ui; 1957 1958 DPRINTF("%s: `%s'\n", __func__, url); 1959 dir = file = NULL; 1960 rval = 1; 1961 transtype = TYPE_I; 1962 1963 initurlinfo(&ui); 1964 initauthinfo(&auth, NULL); 1965 1966 if (STRNEQUAL(url, FTP_URL)) { 1967 if ((parse_url(url, "URL", &ui, &auth, NULL) == -1) || 1968 (auth.user != NULL && *auth.user == '\0') || 1969 EMPTYSTRING(ui.host)) { 1970 warnx("Invalid URL `%s'", url); 1971 goto cleanup_fetch_ftp; 1972 } 1973 /* 1974 * Note: Don't url_decode(path) here. We need to keep the 1975 * distinction between "/" and "%2F" until later. 1976 */ 1977 1978 /* check for trailing ';type=[aid]' */ 1979 if (! EMPTYSTRING(ui.path) 1980 && (cp = strrchr(ui.path, ';')) != NULL) { 1981 if (strcasecmp(cp, ";type=a") == 0) 1982 transtype = TYPE_A; 1983 else if (strcasecmp(cp, ";type=i") == 0) 1984 transtype = TYPE_I; 1985 else if (strcasecmp(cp, ";type=d") == 0) { 1986 warnx( 1987 "Directory listing via a URL is not supported"); 1988 goto cleanup_fetch_ftp; 1989 } else { 1990 warnx("Invalid suffix `%s' in URL `%s'", cp, 1991 url); 1992 goto cleanup_fetch_ftp; 1993 } 1994 *cp = 0; 1995 } 1996 } else { /* classic style `[user@]host:[file]' */ 1997 ui.utype = CLASSIC_URL_T; 1998 ui.host = ftp_strdup(url); 1999 cp = strchr(ui.host, '@'); 2000 if (cp != NULL) { 2001 *cp = '\0'; 2002 auth.user = ui.host; 2003 anonftp = 0; /* disable anonftp */ 2004 ui.host = ftp_strdup(cp + 1); 2005 } 2006 cp = strchr(ui.host, ':'); 2007 if (cp != NULL) { 2008 *cp = '\0'; 2009 ui.path = ftp_strdup(cp + 1); 2010 } 2011 } 2012 if (EMPTYSTRING(ui.host)) 2013 goto cleanup_fetch_ftp; 2014 2015 /* Extract the file and (if present) directory name. */ 2016 dir = ui.path; 2017 if (! EMPTYSTRING(dir)) { 2018 /* 2019 * If we are dealing with classic `[user@]host:[path]' syntax, 2020 * then a path of the form `/file' (resulting from input of the 2021 * form `host:/file') means that we should do "CWD /" before 2022 * retrieving the file. So we set dir="/" and file="file". 2023 * 2024 * But if we are dealing with URLs like `ftp://host/path' then 2025 * a path of the form `/file' (resulting from a URL of the form 2026 * `ftp://host//file') means that we should do `CWD ' (with an 2027 * empty argument) before retrieving the file. So we set 2028 * dir="" and file="file". 2029 * 2030 * If the path does not contain / at all, we set dir=NULL. 2031 * (We get a path without any slashes if we are dealing with 2032 * classic `[user@]host:[file]' or URL `ftp://host/file'.) 2033 * 2034 * In all other cases, we set dir to a string that does not 2035 * include the final '/' that separates the dir part from the 2036 * file part of the path. (This will be the empty string if 2037 * and only if we are dealing with a path of the form `/file' 2038 * resulting from an URL of the form `ftp://host//file'.) 2039 */ 2040 cp = strrchr(dir, '/'); 2041 if (cp == dir && ui.utype == CLASSIC_URL_T) { 2042 file = cp + 1; 2043 (void)strlcpy(dirbuf, "/", sizeof(dirbuf)); 2044 dir = dirbuf; 2045 } else if (cp != NULL) { 2046 *cp++ = '\0'; 2047 file = cp; 2048 } else { 2049 file = dir; 2050 dir = NULL; 2051 } 2052 } else 2053 dir = NULL; 2054 if (ui.utype == FTP_URL_T && file != NULL) { 2055 url_decode(file); 2056 /* but still don't url_decode(dir) */ 2057 } 2058 DPRINTF("%s: user `%s' pass `%s' host %s port %s " 2059 "path `%s' dir `%s' file `%s'\n", __func__, 2060 STRorNULL(auth.user), STRorNULL(auth.pass), 2061 STRorNULL(ui.host), STRorNULL(ui.port), 2062 STRorNULL(ui.path), STRorNULL(dir), STRorNULL(file)); 2063 2064 dirhasglob = filehasglob = 0; 2065 if (doglob && 2066 (ui.utype == CLASSIC_URL_T || ui.utype == FTP_URL_T)) { 2067 if (! EMPTYSTRING(dir) && strpbrk(dir, "*?[]{}") != NULL) 2068 dirhasglob = 1; 2069 if (! EMPTYSTRING(file) && strpbrk(file, "*?[]{}") != NULL) 2070 filehasglob = 1; 2071 } 2072 2073 /* Set up the connection */ 2074 oanonftp = anonftp; 2075 if (connected) 2076 disconnect(0, NULL); 2077 anonftp = oanonftp; 2078 (void)strlcpy(cmdbuf, getprogname(), sizeof(cmdbuf)); 2079 xargv[0] = cmdbuf; 2080 xargv[1] = ui.host; 2081 xargv[2] = NULL; 2082 xargc = 2; 2083 if (ui.port) { 2084 xargv[2] = ui.port; 2085 xargv[3] = NULL; 2086 xargc = 3; 2087 } 2088 oautologin = autologin; 2089 /* don't autologin in setpeer(), use ftp_login() below */ 2090 autologin = 0; 2091 setpeer(xargc, xargv); 2092 autologin = oautologin; 2093 if ((connected == 0) || 2094 (connected == 1 && !ftp_login(ui.host, auth.user, auth.pass))) { 2095 warnx("Can't connect or login to host `%s:%s'", 2096 ui.host, ui.port ? ui.port : "?"); 2097 goto cleanup_fetch_ftp; 2098 } 2099 2100 switch (transtype) { 2101 case TYPE_A: 2102 setascii(1, xargv); 2103 break; 2104 case TYPE_I: 2105 setbinary(1, xargv); 2106 break; 2107 default: 2108 errx(1, "%s: unknown transfer type %d", __func__, transtype); 2109 } 2110 2111 /* 2112 * Change directories, if necessary. 2113 * 2114 * Note: don't use EMPTYSTRING(dir) below, because 2115 * dir=="" means something different from dir==NULL. 2116 */ 2117 if (dir != NULL && !dirhasglob) { 2118 char *nextpart; 2119 2120 /* 2121 * If we are dealing with a classic `[user@]host:[path]' 2122 * (urltype is CLASSIC_URL_T) then we have a raw directory 2123 * name (not encoded in any way) and we can change 2124 * directories in one step. 2125 * 2126 * If we are dealing with an `ftp://host/path' URL 2127 * (urltype is FTP_URL_T), then RFC 3986 says we need to 2128 * send a separate CWD command for each unescaped "/" 2129 * in the path, and we have to interpret %hex escaping 2130 * *after* we find the slashes. It's possible to get 2131 * empty components here, (from multiple adjacent 2132 * slashes in the path) and RFC 3986 says that we should 2133 * still do `CWD ' (with a null argument) in such cases. 2134 * 2135 * Many ftp servers don't support `CWD ', so if there's an 2136 * error performing that command, bail out with a descriptive 2137 * message. 2138 * 2139 * Examples: 2140 * 2141 * host: dir="", urltype=CLASSIC_URL_T 2142 * logged in (to default directory) 2143 * host:file dir=NULL, urltype=CLASSIC_URL_T 2144 * "RETR file" 2145 * host:dir/ dir="dir", urltype=CLASSIC_URL_T 2146 * "CWD dir", logged in 2147 * ftp://host/ dir="", urltype=FTP_URL_T 2148 * logged in (to default directory) 2149 * ftp://host/dir/ dir="dir", urltype=FTP_URL_T 2150 * "CWD dir", logged in 2151 * ftp://host/file dir=NULL, urltype=FTP_URL_T 2152 * "RETR file" 2153 * ftp://host//file dir="", urltype=FTP_URL_T 2154 * "CWD ", "RETR file" 2155 * host:/file dir="/", urltype=CLASSIC_URL_T 2156 * "CWD /", "RETR file" 2157 * ftp://host///file dir="/", urltype=FTP_URL_T 2158 * "CWD ", "CWD ", "RETR file" 2159 * ftp://host/%2F/file dir="%2F", urltype=FTP_URL_T 2160 * "CWD /", "RETR file" 2161 * ftp://host/foo/file dir="foo", urltype=FTP_URL_T 2162 * "CWD foo", "RETR file" 2163 * ftp://host/foo/bar/file dir="foo/bar" 2164 * "CWD foo", "CWD bar", "RETR file" 2165 * ftp://host//foo/bar/file dir="/foo/bar" 2166 * "CWD ", "CWD foo", "CWD bar", "RETR file" 2167 * ftp://host/foo//bar/file dir="foo//bar" 2168 * "CWD foo", "CWD ", "CWD bar", "RETR file" 2169 * ftp://host/%2F/foo/bar/file dir="%2F/foo/bar" 2170 * "CWD /", "CWD foo", "CWD bar", "RETR file" 2171 * ftp://host/%2Ffoo/bar/file dir="%2Ffoo/bar" 2172 * "CWD /foo", "CWD bar", "RETR file" 2173 * ftp://host/%2Ffoo%2Fbar/file dir="%2Ffoo%2Fbar" 2174 * "CWD /foo/bar", "RETR file" 2175 * ftp://host/%2Ffoo%2Fbar%2Ffile dir=NULL 2176 * "RETR /foo/bar/file" 2177 * 2178 * Note that we don't need `dir' after this point. 2179 */ 2180 do { 2181 if (ui.utype == FTP_URL_T) { 2182 nextpart = strchr(dir, '/'); 2183 if (nextpart) { 2184 *nextpart = '\0'; 2185 nextpart++; 2186 } 2187 url_decode(dir); 2188 } else 2189 nextpart = NULL; 2190 DPRINTF("%s: dir `%s', nextpart `%s'\n", __func__, 2191 STRorNULL(dir), STRorNULL(nextpart)); 2192 if (ui.utype == FTP_URL_T || *dir != '\0') { 2193 (void)strlcpy(cmdbuf, "cd", sizeof(cmdbuf)); 2194 xargv[0] = cmdbuf; 2195 xargv[1] = dir; 2196 xargv[2] = NULL; 2197 dirchange = 0; 2198 cd(2, xargv); 2199 if (! dirchange) { 2200 if (*dir == '\0' && code == 500) 2201 fprintf(stderr, 2202 "\n" 2203 "ftp: The `CWD ' command (without a directory), which is required by\n" 2204 " RFC 3986 to support the empty directory in the URL pathname (`//'),\n" 2205 " conflicts with the server's conformance to RFC 959.\n" 2206 " Try the same URL without the `//' in the URL pathname.\n" 2207 "\n"); 2208 goto cleanup_fetch_ftp; 2209 } 2210 } 2211 dir = nextpart; 2212 } while (dir != NULL); 2213 } 2214 2215 if (EMPTYSTRING(file)) { 2216 rval = -1; 2217 goto cleanup_fetch_ftp; 2218 } 2219 2220 if (dirhasglob) { 2221 (void)strlcpy(rempath, dir, sizeof(rempath)); 2222 (void)strlcat(rempath, "/", sizeof(rempath)); 2223 (void)strlcat(rempath, file, sizeof(rempath)); 2224 file = rempath; 2225 } 2226 2227 /* Fetch the file(s). */ 2228 xargc = 2; 2229 (void)strlcpy(cmdbuf, "get", sizeof(cmdbuf)); 2230 xargv[0] = cmdbuf; 2231 xargv[1] = file; 2232 xargv[2] = NULL; 2233 if (dirhasglob || filehasglob) { 2234 int ointeractive; 2235 2236 ointeractive = interactive; 2237 interactive = 0; 2238 if (restartautofetch) 2239 (void)strlcpy(cmdbuf, "mreget", sizeof(cmdbuf)); 2240 else 2241 (void)strlcpy(cmdbuf, "mget", sizeof(cmdbuf)); 2242 xargv[0] = cmdbuf; 2243 mget(xargc, xargv); 2244 interactive = ointeractive; 2245 } else { 2246 char *destfile = outfile; 2247 if (destfile == NULL) { 2248 cp = strrchr(file, '/'); /* find savefile */ 2249 if (cp != NULL) 2250 destfile = cp + 1; 2251 else 2252 destfile = file; 2253 } 2254 xargv[2] = (char *)destfile; 2255 xargv[3] = NULL; 2256 xargc++; 2257 if (restartautofetch) 2258 reget(xargc, xargv); 2259 else 2260 get(xargc, xargv); 2261 } 2262 2263 if ((code / 100) == COMPLETE) 2264 rval = 0; 2265 2266 cleanup_fetch_ftp: 2267 freeurlinfo(&ui); 2268 freeauthinfo(&auth); 2269 return (rval); 2270 } 2271 2272 /* 2273 * Retrieve the given file to outfile. 2274 * Supports arguments of the form: 2275 * "host:path", "ftp://host/path" if $ftpproxy, call fetch_url() else 2276 * call fetch_ftp() 2277 * "http://host/path" call fetch_url() to use HTTP 2278 * "file:///path" call fetch_url() to copy 2279 * "about:..." print a message 2280 * 2281 * Returns 1 on failure, 0 on completed xfer, -1 if ftp connection 2282 * is still open (e.g, ftp xfer with trailing /) 2283 */ 2284 static int 2285 go_fetch(const char *url, struct urlinfo *rui) 2286 { 2287 char *proxyenv; 2288 const char *p; 2289 2290 #ifndef NO_ABOUT 2291 /* 2292 * Check for about:* 2293 */ 2294 if (STRNEQUAL(url, ABOUT_URL)) { 2295 url += sizeof(ABOUT_URL) -1; 2296 if (strcasecmp(url, "ftp") == 0 || 2297 strcasecmp(url, "tnftp") == 0) { 2298 fputs( 2299 "This version of ftp has been enhanced by Luke Mewburn <lukem@NetBSD.org>\n" 2300 "for the NetBSD project. Execute `man ftp' for more details.\n", ttyout); 2301 } else if (strcasecmp(url, "lukem") == 0) { 2302 fputs( 2303 "Luke Mewburn is the author of most of the enhancements in this ftp client.\n" 2304 "Please email feedback to <lukem@NetBSD.org>.\n", ttyout); 2305 } else if (strcasecmp(url, "netbsd") == 0) { 2306 fputs( 2307 "NetBSD is a freely available and redistributable UNIX-like operating system.\n" 2308 "For more information, see http://www.NetBSD.org/\n", ttyout); 2309 } else if (strcasecmp(url, "version") == 0) { 2310 fprintf(ttyout, "Version: %s %s%s\n", 2311 FTP_PRODUCT, FTP_VERSION, 2312 #ifdef INET6 2313 "" 2314 #else 2315 " (-IPv6)" 2316 #endif 2317 ); 2318 } else { 2319 fprintf(ttyout, "`%s' is an interesting topic.\n", url); 2320 } 2321 fputs("\n", ttyout); 2322 return (0); 2323 } 2324 #endif 2325 2326 /* 2327 * Check for file:// and http:// URLs. 2328 */ 2329 if (STRNEQUAL(url, HTTP_URL) 2330 #ifdef WITH_SSL 2331 || STRNEQUAL(url, HTTPS_URL) 2332 #endif 2333 || STRNEQUAL(url, FILE_URL)) 2334 return (fetch_url(url, NULL, NULL, NULL, rui)); 2335 2336 /* 2337 * If it contains "://" but does not begin with ftp:// 2338 * or something that was already handled, then it's 2339 * unsupported. 2340 * 2341 * If it contains ":" but not "://" then we assume the 2342 * part before the colon is a host name, not an URL scheme, 2343 * so we don't try to match that here. 2344 */ 2345 if ((p = strstr(url, "://")) != NULL && ! STRNEQUAL(url, FTP_URL)) 2346 errx(1, "Unsupported URL scheme `%.*s'", (int)(p - url), url); 2347 2348 /* 2349 * Refer to previous urlinfo if provided. This makes relative 2350 * redirects work. 2351 */ 2352 if (use_relative(rui)) 2353 return fetch_url(url, NULL, NULL, NULL, rui); 2354 2355 /* 2356 * Try FTP URL-style and host:file arguments next. 2357 * If ftpproxy is set with an FTP URL, use fetch_url() 2358 * Otherwise, use fetch_ftp(). 2359 */ 2360 proxyenv = getoptionvalue("ftp_proxy"); 2361 if (!EMPTYSTRING(proxyenv) && STRNEQUAL(url, FTP_URL)) 2362 return (fetch_url(url, NULL, NULL, NULL, rui)); 2363 2364 return (fetch_ftp(url)); 2365 } 2366 2367 /* 2368 * Retrieve multiple files from the command line, 2369 * calling go_fetch() for each file. 2370 * 2371 * If an ftp path has a trailing "/", the path will be cd-ed into and 2372 * the connection remains open, and the function will return -1 2373 * (to indicate the connection is alive). 2374 * If an error occurs the return value will be the offset+1 in 2375 * argv[] of the file that caused a problem (i.e, argv[x] 2376 * returns x+1) 2377 * Otherwise, 0 is returned if all files retrieved successfully. 2378 */ 2379 int 2380 auto_fetch(int argc, char *argv[]) 2381 { 2382 volatile int argpos, rval; 2383 2384 argpos = rval = 0; 2385 2386 if (sigsetjmp(toplevel, 1)) { 2387 if (connected) 2388 disconnect(0, NULL); 2389 if (rval > 0) 2390 rval = argpos + 1; 2391 return (rval); 2392 } 2393 (void)xsignal(SIGINT, intr); 2394 (void)xsignal(SIGPIPE, lostpeer); 2395 2396 /* 2397 * Loop through as long as there's files to fetch. 2398 */ 2399 for (; (rval == 0) && (argpos < argc); argpos++) { 2400 if (strchr(argv[argpos], ':') == NULL) 2401 break; 2402 redirect_loop = 0; 2403 if (!anonftp) 2404 anonftp = 2; /* Handle "automatic" transfers. */ 2405 rval = go_fetch(argv[argpos], NULL); 2406 if (outfile != NULL && strcmp(outfile, "-") != 0 2407 && outfile[0] != '|') { 2408 FREEPTR(outfile); 2409 } 2410 if (rval > 0) 2411 rval = argpos + 1; 2412 } 2413 2414 if (connected && rval != -1) 2415 disconnect(0, NULL); 2416 return (rval); 2417 } 2418 2419 2420 /* 2421 * Upload multiple files from the command line. 2422 * 2423 * If an error occurs the return value will be the offset+1 in 2424 * argv[] of the file that caused a problem (i.e, argv[x] 2425 * returns x+1) 2426 * Otherwise, 0 is returned if all files uploaded successfully. 2427 */ 2428 int 2429 auto_put(int argc, char **argv, const char *uploadserver) 2430 { 2431 char *uargv[4], *path, *pathsep; 2432 int uargc, rval, argpos; 2433 size_t len; 2434 char cmdbuf[MAX_C_NAME]; 2435 2436 (void)strlcpy(cmdbuf, "mput", sizeof(cmdbuf)); 2437 uargv[0] = cmdbuf; 2438 uargv[1] = argv[0]; 2439 uargc = 2; 2440 uargv[2] = uargv[3] = NULL; 2441 pathsep = NULL; 2442 rval = 1; 2443 2444 DPRINTF("%s: target `%s'\n", __func__, uploadserver); 2445 2446 path = ftp_strdup(uploadserver); 2447 len = strlen(path); 2448 if (path[len - 1] != '/' && path[len - 1] != ':') { 2449 /* 2450 * make sure we always pass a directory to auto_fetch 2451 */ 2452 if (argc > 1) { /* more than one file to upload */ 2453 len = strlen(uploadserver) + 2; /* path + "/" + "\0" */ 2454 free(path); 2455 path = (char *)ftp_malloc(len); 2456 (void)strlcpy(path, uploadserver, len); 2457 (void)strlcat(path, "/", len); 2458 } else { /* single file to upload */ 2459 (void)strlcpy(cmdbuf, "put", sizeof(cmdbuf)); 2460 uargv[0] = cmdbuf; 2461 pathsep = strrchr(path, '/'); 2462 if (pathsep == NULL) { 2463 pathsep = strrchr(path, ':'); 2464 if (pathsep == NULL) { 2465 warnx("Invalid URL `%s'", path); 2466 goto cleanup_auto_put; 2467 } 2468 pathsep++; 2469 uargv[2] = ftp_strdup(pathsep); 2470 pathsep[0] = '/'; 2471 } else 2472 uargv[2] = ftp_strdup(pathsep + 1); 2473 pathsep[1] = '\0'; 2474 uargc++; 2475 } 2476 } 2477 DPRINTF("%s: URL `%s' argv[2] `%s'\n", __func__, 2478 path, STRorNULL(uargv[2])); 2479 2480 /* connect and cwd */ 2481 rval = auto_fetch(1, &path); 2482 if(rval >= 0) 2483 goto cleanup_auto_put; 2484 2485 rval = 0; 2486 2487 /* target filename provided; upload 1 file */ 2488 /* XXX : is this the best way? */ 2489 if (uargc == 3) { 2490 uargv[1] = argv[0]; 2491 put(uargc, uargv); 2492 if ((code / 100) != COMPLETE) 2493 rval = 1; 2494 } else { /* otherwise a target dir: upload all files to it */ 2495 for(argpos = 0; argv[argpos] != NULL; argpos++) { 2496 uargv[1] = argv[argpos]; 2497 mput(uargc, uargv); 2498 if ((code / 100) != COMPLETE) { 2499 rval = argpos + 1; 2500 break; 2501 } 2502 } 2503 } 2504 2505 cleanup_auto_put: 2506 free(path); 2507 FREEPTR(uargv[2]); 2508 return (rval); 2509 } 2510