libexec/ftpd/ftpd.c

22499Sdist/*
*66711Spendry * Copyright (c) 1985, 1988, 1990, 1992, 1993, 1994
61427Sbostic *	The Regents of the University of California.  All rights reserved.
33738Sbostic *
42666Sbostic * %sccs.include.redist.c%
22499Sdist */
22499Sdist
10275Ssam#ifndef lint
61427Sbosticstatic char copyright[] =
*66711Spendry"@(#) Copyright (c) 1985, 1988, 1990, 1992, 1993, 1994\n\
61427Sbostic	The Regents of the University of California.  All rights reserved.\n";
33738Sbostic#endif /* not lint */
10275Ssam
22499Sdist#ifndef lint
*66711Spendrystatic char sccsid[] = "@(#)ftpd.c	8.2 (Berkeley) 04/04/94";
33738Sbostic#endif /* not lint */
22499Sdist
10275Ssam/*
10275Ssam * FTP server.
10275Ssam */
10303Ssam#include <sys/param.h>
10275Ssam#include <sys/stat.h>
10275Ssam#include <sys/ioctl.h>
10275Ssam#include <sys/socket.h>
13595Ssam#include <sys/wait.h>
10275Ssam
10275Ssam#include <netinet/in.h>
44339Skarels#include <netinet/in_systm.h>
44339Skarels#include <netinet/ip.h>
10275Ssam
36933Skarels#define	FTP_NAMES
13034Ssam#include <arpa/ftp.h>
13211Sroot#include <arpa/inet.h>
26044Sminshall#include <arpa/telnet.h>
13034Ssam
*66711Spendry#include <ctype.h>
46669Sbostic#include <dirent.h>
*66711Spendry#include <err.h>
*66711Spendry#include <errno.h>
46669Sbostic#include <fcntl.h>
*66711Spendry#include <glob.h>
*66711Spendry#include <limits.h>
*66711Spendry#include <netdb.h>
10275Ssam#include <pwd.h>
10275Ssam#include <setjmp.h>
*66711Spendry#include <signal.h>
46669Sbostic#include <stdio.h>
46669Sbostic#include <stdlib.h>
46669Sbostic#include <string.h>
*66711Spendry#include <syslog.h>
*66711Spendry#include <time.h>
*66711Spendry#include <unistd.h>
*66711Spendry
37459Skarels#include "pathnames.h"
55258Sandrew#include "extern.h"
10275Ssam
55258Sandrew#if __STDC__
55258Sandrew#include <stdarg.h>
55258Sandrew#else
55258Sandrew#include <varargs.h>
55258Sandrew#endif
55258Sandrew
*66711Spendrystatic char version[] = "Version 6.00";
*66711Spendry
55258Sandrewextern	off_t restart_point;
26044Sminshallextern	char cbuf[];
10275Ssam
10275Ssamstruct	sockaddr_in ctrl_addr;
10275Ssamstruct	sockaddr_in data_source;
10275Ssamstruct	sockaddr_in data_dest;
10275Ssamstruct	sockaddr_in his_addr;
36933Skarelsstruct	sockaddr_in pasv_addr;
10275Ssam
10275Ssamint	data;
26044Sminshalljmp_buf	errcatch, urgcatch;
10275Ssamint	logged_in;
10275Ssamstruct	passwd *pw;
10275Ssamint	debug;
26493Sminshallint	timeout = 900;    /* timeout after 15 minutes of inactivity */
36933Skarelsint	maxtimeout = 7200;/* don't allow idle time to be set beyond 2 hours */
11757Ssamint	logging;
10275Ssamint	guest;
10275Ssamint	type;
10275Ssamint	form;
10275Ssamint	stru;			/* avoid C keyword */
10275Ssamint	mode;
10321Ssamint	usedefault = 1;		/* for data transfers */
36304Skarelsint	pdata = -1;		/* for passive mode */
*66711Spendrysig_atomic_t transflag;
36933Skarelsoff_t	file_size;
36933Skarelsoff_t	byte_count;
36933Skarels#if !defined(CMASK) || CMASK == 0
36933Skarels#undef CMASK
36933Skarels#define CMASK 027
36933Skarels#endif
36933Skarelsint	defumask = CMASK;		/* default umask value */
26044Sminshallchar	tmpline[7];
36276Sbosticchar	hostname[MAXHOSTNAMELEN];
36276Sbosticchar	remotehost[MAXHOSTNAMELEN];
10275Ssam
11653Ssam/*
11653Ssam * Timeout intervals for retrying connections
11653Ssam * to hosts that don't accept PORT cmds.  This
11653Ssam * is a kludge, but given the problems with TCP...
11653Ssam */
11653Ssam#define	SWAITMAX	90	/* wait at most 90 seconds */
11653Ssam#define	SWAITINT	5	/* interval between retries */
11653Ssam
11653Ssamint	swaitmax = SWAITMAX;
11653Ssamint	swaitint = SWAITINT;
11653Ssam
36620Srick#ifdef SETPROCTITLE
36620Srickchar	**Argv = NULL;		/* pointer to argument vector */
36620Srickchar	*LastArgv = NULL;	/* end of argv */
*66711Spendrychar	proctitle[LINE_MAX];	/* initial part of title */
36620Srick#endif /* SETPROCTITLE */
36620Srick
55258Sandrew#define LOGCMD(cmd, file) \
55258Sandrew	if (logging > 1) \
55258Sandrew	    syslog(LOG_INFO,"%s %s%s", cmd, \
55258Sandrew		*(file) == '/' ? "" : curdir(), file);
55258Sandrew#define LOGCMD2(cmd, file1, file2) \
55258Sandrew	 if (logging > 1) \
55258Sandrew	    syslog(LOG_INFO,"%s %s%s %s%s", cmd, \
55258Sandrew		*(file1) == '/' ? "" : curdir(), file1, \
55258Sandrew		*(file2) == '/' ? "" : curdir(), file2);
55258Sandrew#define LOGBYTES(cmd, file, cnt) \
55258Sandrew	if (logging > 1) { \
55258Sandrew		if (cnt == (off_t)-1) \
55258Sandrew		    syslog(LOG_INFO,"%s %s%s", cmd, \
55258Sandrew			*(file) == '/' ? "" : curdir(), file); \
55258Sandrew		else \
55258Sandrew		    syslog(LOG_INFO, "%s %s%s = %qd bytes", \
55258Sandrew			cmd, (*(file) == '/') ? "" : curdir(), file, cnt); \
55258Sandrew	}
55258Sandrew
55258Sandrewstatic void	 ack __P((char *));
55258Sandrewstatic void	 myoob __P((int));
55258Sandrewstatic int	 checkuser __P((char *));
55258Sandrewstatic FILE	*dataconn __P((char *, off_t, char *));
55258Sandrewstatic void	 dolog __P((struct sockaddr_in *));
55258Sandrewstatic char	*curdir __P((void));
55258Sandrewstatic void	 end_login __P((void));
55258Sandrewstatic FILE	*getdatasock __P((char *));
55258Sandrewstatic char	*gunique __P((char *));
55258Sandrewstatic void	 lostconn __P((int));
55258Sandrewstatic int	 receive_data __P((FILE *, FILE *));
55258Sandrewstatic void	 send_data __P((FILE *, FILE *, off_t));
55258Sandrewstatic struct passwd *
55258Sandrew		 sgetpwnam __P((char *));
55258Sandrewstatic char	*sgetsave __P((char *));
55258Sandrew
55258Sandrewstatic char *
55258Sandrewcurdir()
55258Sandrew{
55258Sandrew	static char path[MAXPATHLEN+1+1];	/* path + '/' + '\0' */
55258Sandrew
55258Sandrew	if (getcwd(path, sizeof(path)-2) == NULL)
55258Sandrew		return ("");
55258Sandrew	if (path[1] != '\0')		/* special case for root dir. */
55258Sandrew		strcat(path, "/");
55258Sandrew	/* For guest account, skip / since it's chrooted */
55258Sandrew	return (guest ? path+1 : path);
55258Sandrew}
55258Sandrew
55258Sandrewint
36620Srickmain(argc, argv, envp)
10275Ssam	int argc;
10275Ssam	char *argv[];
36620Srick	char **envp;
10275Ssam{
*66711Spendry	int addrlen, ch, on = 1, tos;
*66711Spendry	char *cp, line[LINE_MAX];
55258Sandrew	FILE *fd;
10275Ssam
45028Skarels	/*
45028Skarels	 * LOG_NDELAY sets up the logging connection immediately,
45028Skarels	 * necessary for anonymous ftp's that chroot and can't do it later.
45028Skarels	 */
55258Sandrew	openlog("ftpd", LOG_PID | LOG_NDELAY, LOG_FTP);
*66711Spendry	addrlen = sizeof(his_addr);
36304Skarels	if (getpeername(0, (struct sockaddr *)&his_addr, &addrlen) < 0) {
26493Sminshall		syslog(LOG_ERR, "getpeername (%s): %m",argv[0]);
10275Ssam		exit(1);
10275Ssam	}
*66711Spendry	addrlen = sizeof(ctrl_addr);
36304Skarels	if (getsockname(0, (struct sockaddr *)&ctrl_addr, &addrlen) < 0) {
26493Sminshall		syslog(LOG_ERR, "getsockname (%s): %m",argv[0]);
16339Skarels		exit(1);
16339Skarels	}
44339Skarels#ifdef IP_TOS
44339Skarels	tos = IPTOS_LOWDELAY;
44339Skarels	if (setsockopt(0, IPPROTO_IP, IP_TOS, (char *)&tos, sizeof(int)) < 0)
44339Skarels		syslog(LOG_WARNING, "setsockopt (IP_TOS): %m");
44339Skarels#endif
16339Skarels	data_source.sin_port = htons(ntohs(ctrl_addr.sin_port) - 1);
10275Ssam	debug = 0;
36620Srick#ifdef SETPROCTITLE
36620Srick	/*
36620Srick	 *  Save start and extent of argv for setproctitle.
36620Srick	 */
36620Srick	Argv = argv;
36620Srick	while (*envp)
36620Srick		envp++;
36620Srick	LastArgv = envp[-1] + strlen(envp[-1]);
36620Srick#endif /* SETPROCTITLE */
36620Srick
*66711Spendry	while ((ch = getopt(argc, argv, "dlt:T:u:v")) != EOF) {
*66711Spendry		switch (ch) {
10275Ssam		case 'd':
10275Ssam			debug = 1;
10275Ssam			break;
10275Ssam
11757Ssam		case 'l':
55258Sandrew			logging++;	/* > 1 == extra logging */
11757Ssam			break;
11757Ssam
11653Ssam		case 't':
*66711Spendry			timeout = atoi(optarg);
36933Skarels			if (maxtimeout < timeout)
36933Skarels				maxtimeout = timeout;
*66711Spendry			break;
11653Ssam
36933Skarels		case 'T':
*66711Spendry			maxtimeout = atoi(optarg);
36933Skarels			if (timeout > maxtimeout)
36933Skarels				timeout = maxtimeout;
*66711Spendry			break;
36933Skarels
36933Skarels		case 'u':
36933Skarels		    {
*66711Spendry			long val = 0;
36933Skarels
*66711Spendry			val = strtol(optarg, &optarg, 8);
*66711Spendry			if (*optarg != '\0' || val < 0)
*66711Spendry				warnx("bad value for -u");
36933Skarels			else
36933Skarels				defumask = val;
*66711Spendry			break;
36933Skarels		    }
36933Skarels
*66711Spendry		case 'v':
*66711Spendry			debug = 1;
*66711Spendry			break;
*66711Spendry
10275Ssam		default:
*66711Spendry			warnx("unknown flag -%c ignored", optopt);
10275Ssam			break;
10275Ssam		}
10275Ssam	}
37459Skarels	(void) freopen(_PATH_DEVNULL, "w", stderr);
26493Sminshall	(void) signal(SIGPIPE, lostconn);
26493Sminshall	(void) signal(SIGCHLD, SIG_IGN);
35691Sbostic	if ((int)signal(SIGURG, myoob) < 0)
26493Sminshall		syslog(LOG_ERR, "signal: %m");
35691Sbostic
38134Srick	/* Try to handle urgent data inline */
27750Sminshall#ifdef SO_OOBINLINE
36276Sbostic	if (setsockopt(0, SOL_SOCKET, SO_OOBINLINE, (char *)&on, sizeof(on)) < 0)
27750Sminshall		syslog(LOG_ERR, "setsockopt: %m");
36276Sbostic#endif
38134Srick
36933Skarels#ifdef	F_SETOWN
36304Skarels	if (fcntl(fileno(stdin), F_SETOWN, getpid()) == -1)
36304Skarels		syslog(LOG_ERR, "fcntl F_SETOWN: %m");
36933Skarels#endif
16760Slepreau	dolog(&his_addr);
16339Skarels	/*
16339Skarels	 * Set up default state
16339Skarels	 */
16339Skarels	data = -1;
16339Skarels	type = TYPE_A;
16339Skarels	form = FORM_N;
16339Skarels	stru = STRU_F;
16339Skarels	mode = MODE_S;
26044Sminshall	tmpline[0] = '\0';
55258Sandrew
55258Sandrew	/* If logins are disabled, print out the message. */
55258Sandrew	if ((fd = fopen(_PATH_NOLOGIN,"r")) != NULL) {
*66711Spendry		while (fgets(line, sizeof(line), fd) != NULL) {
60087Sbostic			if ((cp = strchr(line, '\n')) != NULL)
55258Sandrew				*cp = '\0';
55258Sandrew			lreply(530, "%s", line);
55258Sandrew		}
55258Sandrew		(void) fflush(stdout);
55258Sandrew		(void) fclose(fd);
55258Sandrew		reply(530, "System not available.");
55258Sandrew		exit(0);
55258Sandrew	}
55258Sandrew	if ((fd = fopen(_PATH_FTPWELCOME, "r")) != NULL) {
*66711Spendry		while (fgets(line, sizeof(line), fd) != NULL) {
60087Sbostic			if ((cp = strchr(line, '\n')) != NULL)
55258Sandrew				*cp = '\0';
55258Sandrew			lreply(220, "%s", line);
55258Sandrew		}
55258Sandrew		(void) fflush(stdout);
55258Sandrew		(void) fclose(fd);
55258Sandrew		/* reply(220,) must follow */
55258Sandrew	}
*66711Spendry	(void) gethostname(hostname, sizeof(hostname));
36276Sbostic	reply(220, "%s FTP server (%s) ready.", hostname, version);
36304Skarels	(void) setjmp(errcatch);
36304Skarels	for (;;)
26493Sminshall		(void) yyparse();
36620Srick	/* NOTREACHED */
10275Ssam}
10419Ssam
55258Sandrewstatic void
55258Sandrewlostconn(signo)
55258Sandrew	int signo;
10275Ssam{
*66711Spendry
14089Ssam	if (debug)
26493Sminshall		syslog(LOG_DEBUG, "lost connection");
14089Ssam	dologout(-1);
10275Ssam}
10275Ssam
35672Sbosticstatic char ttyline[20];
35672Sbostic
36185Sbostic/*
36185Sbostic * Helper function for sgetpwnam().
36185Sbostic */
55258Sandrewstatic char *
36185Sbosticsgetsave(s)
36185Sbostic	char *s;
36185Sbostic{
36185Sbostic	char *new = malloc((unsigned) strlen(s) + 1);
36933Skarels
36185Sbostic	if (new == NULL) {
36620Srick		perror_reply(421, "Local resource failure: malloc");
36185Sbostic		dologout(1);
36620Srick		/* NOTREACHED */
36185Sbostic	}
36185Sbostic	(void) strcpy(new, s);
36185Sbostic	return (new);
36185Sbostic}
36185Sbostic
36185Sbostic/*
36185Sbostic * Save the result of a getpwnam.  Used for USER command, since
36185Sbostic * the data returned must not be clobbered by any other command
36185Sbostic * (e.g., globbing).
36185Sbostic */
55258Sandrewstatic struct passwd *
36185Sbosticsgetpwnam(name)
36185Sbostic	char *name;
36185Sbostic{
36185Sbostic	static struct passwd save;
*66711Spendry	struct passwd *p;
36185Sbostic
36185Sbostic	if ((p = getpwnam(name)) == NULL)
36185Sbostic		return (p);
36185Sbostic	if (save.pw_name) {
36185Sbostic		free(save.pw_name);
36185Sbostic		free(save.pw_passwd);
36185Sbostic		free(save.pw_gecos);
36185Sbostic		free(save.pw_dir);
36185Sbostic		free(save.pw_shell);
36185Sbostic	}
36185Sbostic	save = *p;
36185Sbostic	save.pw_name = sgetsave(p->pw_name);
36185Sbostic	save.pw_passwd = sgetsave(p->pw_passwd);
36185Sbostic	save.pw_gecos = sgetsave(p->pw_gecos);
36185Sbostic	save.pw_dir = sgetsave(p->pw_dir);
36185Sbostic	save.pw_shell = sgetsave(p->pw_shell);
36185Sbostic	return (&save);
36185Sbostic}
36185Sbostic
55258Sandrewstatic int login_attempts;	/* number of failed login attempts */
55258Sandrewstatic int askpasswd;		/* had user command, ask for passwd */
55258Sandrewstatic char curname[10];	/* current USER name */
36304Skarels
36304Skarels/*
36304Skarels * USER command.
42327Sbostic * Sets global passwd pointer pw if named account exists and is acceptable;
42327Sbostic * sets askpasswd if a PASS command is expected.  If logged in previously,
42327Sbostic * need to reset state.  If name is "ftp" or "anonymous", the name is not in
42327Sbostic * _PATH_FTPUSERS, and ftp account exists, set guest and pw, then just return.
42327Sbostic * If account doesn't exist, ask for passwd anyway.  Otherwise, check user
42327Sbostic * requesting login privileges.  Disallow anyone who does not have a standard
42327Sbostic * shell as returned by getusershell().  Disallow anyone mentioned in the file
42327Sbostic * _PATH_FTPUSERS to allow people such as root and uucp to be avoided.
36304Skarels */
55258Sandrewvoid
36304Skarelsuser(name)
36304Skarels	char *name;
36304Skarels{
*66711Spendry	char *cp, *shell;
36304Skarels
36304Skarels	if (logged_in) {
36304Skarels		if (guest) {
36304Skarels			reply(530, "Can't change user from guest login.");
36304Skarels			return;
36304Skarels		}
36304Skarels		end_login();
36304Skarels	}
36304Skarels
36304Skarels	guest = 0;
36304Skarels	if (strcmp(name, "ftp") == 0 || strcmp(name, "anonymous") == 0) {
40183Smckusick		if (checkuser("ftp") || checkuser("anonymous"))
40155Smckusick			reply(530, "User %s access denied.", name);
40155Smckusick		else if ((pw = sgetpwnam("ftp")) != NULL) {
36304Skarels			guest = 1;
36304Skarels			askpasswd = 1;
55258Sandrew			reply(331,
55258Sandrew			    "Guest login ok, type your name as password.");
36933Skarels		} else
36304Skarels			reply(530, "User %s unknown.", name);
55258Sandrew		if (!askpasswd && logging)
55258Sandrew			syslog(LOG_NOTICE,
55258Sandrew			    "ANONYMOUS FTP LOGIN REFUSED FROM %s", remotehost);
36304Skarels		return;
36304Skarels	}
36304Skarels	if (pw = sgetpwnam(name)) {
36304Skarels		if ((shell = pw->pw_shell) == NULL || *shell == 0)
37459Skarels			shell = _PATH_BSHELL;
36304Skarels		while ((cp = getusershell()) != NULL)
36304Skarels			if (strcmp(cp, shell) == 0)
36304Skarels				break;
36304Skarels		endusershell();
55258Sandrew
40183Smckusick		if (cp == NULL || checkuser(name)) {
36304Skarels			reply(530, "User %s access denied.", name);
36933Skarels			if (logging)
36933Skarels				syslog(LOG_NOTICE,
36933Skarels				    "FTP LOGIN REFUSED FROM %s, %s",
36933Skarels				    remotehost, name);
36304Skarels			pw = (struct passwd *) NULL;
36304Skarels			return;
36304Skarels		}
36304Skarels	}
55258Sandrew	if (logging)
55258Sandrew		strncpy(curname, name, sizeof(curname)-1);
36304Skarels	reply(331, "Password required for %s.", name);
36304Skarels	askpasswd = 1;
36304Skarels	/*
36304Skarels	 * Delay before reading passwd after first failed
36304Skarels	 * attempt to slow down passwd-guessing programs.
36304Skarels	 */
36304Skarels	if (login_attempts)
36304Skarels		sleep((unsigned) login_attempts);
36304Skarels}
36304Skarels
36304Skarels/*
40183Smckusick * Check if a user is in the file _PATH_FTPUSERS
40183Smckusick */
55258Sandrewstatic int
40183Smckusickcheckuser(name)
40183Smckusick	char *name;
40183Smckusick{
*66711Spendry	FILE *fd;
55258Sandrew	int found = 0;
*66711Spendry	char *p, line[BUFSIZ];
40183Smckusick
40183Smckusick	if ((fd = fopen(_PATH_FTPUSERS, "r")) != NULL) {
42327Sbostic		while (fgets(line, sizeof(line), fd) != NULL)
60087Sbostic			if ((p = strchr(line, '\n')) != NULL) {
42327Sbostic				*p = '\0';
42327Sbostic				if (line[0] == '#')
42327Sbostic					continue;
55258Sandrew				if (strcmp(p, name) == 0) {
55258Sandrew					found = 1;
55258Sandrew					break;
55258Sandrew				}
42327Sbostic			}
40183Smckusick		(void) fclose(fd);
40183Smckusick	}
55258Sandrew	return (found);
40183Smckusick}
40183Smckusick
40183Smckusick/*
36304Skarels * Terminate login as previous user, if any, resetting state;
36304Skarels * used when USER command is given or login fails.
36304Skarels */
55258Sandrewstatic void
36304Skarelsend_login()
36304Skarels{
36304Skarels
36304Skarels	(void) seteuid((uid_t)0);
36304Skarels	if (logged_in)
36304Skarels		logwtmp(ttyline, "", "");
36304Skarels	pw = NULL;
36304Skarels	logged_in = 0;
36304Skarels	guest = 0;
36304Skarels}
36304Skarels
55258Sandrewvoid
10275Ssampass(passwd)
10275Ssam	char *passwd;
10275Ssam{
*66711Spendry	char *salt, *xpasswd;
55258Sandrew	FILE *fd;
10275Ssam
36304Skarels	if (logged_in || askpasswd == 0) {
10275Ssam		reply(503, "Login with USER first.");
10275Ssam		return;
10275Ssam	}
36304Skarels	askpasswd = 0;
10275Ssam	if (!guest) {		/* "ftp" is only account allowed no password */
36304Skarels		if (pw == NULL)
36304Skarels			salt = "xx";
36304Skarels		else
36304Skarels			salt = pw->pw_passwd;
36304Skarels		xpasswd = crypt(passwd, salt);
16760Slepreau		/* The strcmp does not catch null passwords! */
36304Skarels		if (pw == NULL || *pw->pw_passwd == '\0' ||
36304Skarels		    strcmp(xpasswd, pw->pw_passwd)) {
10275Ssam			reply(530, "Login incorrect.");
55258Sandrew			if (logging)
55258Sandrew				syslog(LOG_NOTICE,
55258Sandrew				    "FTP LOGIN FAILED FROM %s, %s",
55258Sandrew				    remotehost, curname);
10275Ssam			pw = NULL;
36304Skarels			if (login_attempts++ >= 5) {
36933Skarels				syslog(LOG_NOTICE,
36304Skarels				    "repeated login failures from %s",
36304Skarels				    remotehost);
36304Skarels				exit(0);
36304Skarels			}
10275Ssam			return;
10275Ssam		}
10275Ssam	}
36304Skarels	login_attempts = 0;		/* this time successful */
55258Sandrew	if (setegid((gid_t)pw->pw_gid) < 0) {
55258Sandrew		reply(550, "Can't set gid.");
55258Sandrew		return;
55258Sandrew	}
36304Skarels	(void) initgroups(pw->pw_name, pw->pw_gid);
16033Sralph
36192Sbostic	/* open wtmp before chroot */
36192Sbostic	(void)sprintf(ttyline, "ftp%d", getpid());
36192Sbostic	logwtmp(ttyline, pw->pw_name, remotehost);
36192Sbostic	logged_in = 1;
36192Sbostic
36446Sbostic	if (guest) {
36620Srick		/*
36933Skarels		 * We MUST do a chdir() after the chroot. Otherwise
36933Skarels		 * the old current directory will be accessible as "."
36933Skarels		 * outside the new root!
36620Srick		 */
36620Srick		if (chroot(pw->pw_dir) < 0 || chdir("/") < 0) {
36446Sbostic			reply(550, "Can't set guest privileges.");
36446Sbostic			goto bad;
36446Sbostic		}
36933Skarels	} else if (chdir(pw->pw_dir) < 0) {
36620Srick		if (chdir("/") < 0) {
36446Sbostic			reply(530, "User %s: can't change directory to %s.",
36446Sbostic			    pw->pw_name, pw->pw_dir);
36446Sbostic			goto bad;
36933Skarels		} else
36446Sbostic			lreply(230, "No directory! Logging in with home=/");
36620Srick	}
36304Skarels	if (seteuid((uid_t)pw->pw_uid) < 0) {
36304Skarels		reply(550, "Can't set uid.");
36304Skarels		goto bad;
36304Skarels	}
55258Sandrew	/*
55258Sandrew	 * Display a login message, if it exists.
55258Sandrew	 * N.B. reply(230,) must follow the message.
55258Sandrew	 */
55258Sandrew	if ((fd = fopen(_PATH_FTPLOGINMESG, "r")) != NULL) {
*66711Spendry		char *cp, line[LINE_MAX];
55258Sandrew
*66711Spendry		while (fgets(line, sizeof(line), fd) != NULL) {
60087Sbostic			if ((cp = strchr(line, '\n')) != NULL)
55258Sandrew				*cp = '\0';
55258Sandrew			lreply(230, "%s", line);
55258Sandrew		}
55258Sandrew		(void) fflush(stdout);
55258Sandrew		(void) fclose(fd);
55258Sandrew	}
36550Sbostic	if (guest) {
36192Sbostic		reply(230, "Guest login ok, access restrictions apply.");
36933Skarels#ifdef SETPROCTITLE
*66711Spendry		snprintf(proctitle, sizeof(proctitle),
*66711Spendry		    "%s: anonymous/%.*s", remotehost,
36933Skarels		    sizeof(proctitle) - sizeof(remotehost) -
36933Skarels		    sizeof(": anonymous/"), passwd);
36933Skarels		setproctitle(proctitle);
36933Skarels#endif /* SETPROCTITLE */
36933Skarels		if (logging)
36933Skarels			syslog(LOG_INFO, "ANONYMOUS FTP LOGIN FROM %s, %s",
36933Skarels			    remotehost, passwd);
36933Skarels	} else {
10275Ssam		reply(230, "User %s logged in.", pw->pw_name);
36933Skarels#ifdef SETPROCTITLE
*66711Spendry		snprintf(proctitle, sizeof(proctitle),
*66711Spendry		    "%s: %s", remotehost, pw->pw_name);
36933Skarels		setproctitle(proctitle);
36933Skarels#endif /* SETPROCTITLE */
36933Skarels		if (logging)
55258Sandrew			syslog(LOG_INFO, "FTP LOGIN FROM %s as %s",
36933Skarels			    remotehost, pw->pw_name);
36550Sbostic	}
36933Skarels	(void) umask(defumask);
10303Ssam	return;
10303Ssambad:
36304Skarels	/* Forget all about it... */
36304Skarels	end_login();
10275Ssam}
10275Ssam
55258Sandrewvoid
10275Ssamretrieve(cmd, name)
10275Ssam	char *cmd, *name;
10275Ssam{
10275Ssam	FILE *fin, *dout;
10275Ssam	struct stat st;
*66711Spendry	int (*closefunc) __P((FILE *));
10275Ssam
36557Sbostic	if (cmd == 0) {
36446Sbostic		fin = fopen(name, "r"), closefunc = fclose;
36557Sbostic		st.st_size = 0;
36557Sbostic	} else {
10275Ssam		char line[BUFSIZ];
10275Ssam
26493Sminshall		(void) sprintf(line, cmd, name), name = line;
36304Skarels		fin = ftpd_popen(line, "r"), closefunc = ftpd_pclose;
36557Sbostic		st.st_size = -1;
36933Skarels		st.st_blksize = BUFSIZ;
10275Ssam	}
10275Ssam	if (fin == NULL) {
55258Sandrew		if (errno != 0) {
36304Skarels			perror_reply(550, name);
55258Sandrew			if (cmd == 0) {
55258Sandrew				LOGCMD("get", name);
55258Sandrew			}
55258Sandrew		}
10275Ssam		return;
10275Ssam	}
55258Sandrew	byte_count = -1;
*66711Spendry	if (cmd == 0 && (fstat(fileno(fin), &st) < 0 || !S_ISREG(st.st_mode))) {
10275Ssam		reply(550, "%s: not a plain file.", name);
10275Ssam		goto done;
10275Ssam	}
37459Skarels	if (restart_point) {
37459Skarels		if (type == TYPE_A) {
*66711Spendry			off_t i, n;
*66711Spendry			int c;
37459Skarels
37459Skarels			n = restart_point;
37459Skarels			i = 0;
37459Skarels			while (i++ < n) {
37459Skarels				if ((c=getc(fin)) == EOF) {
37459Skarels					perror_reply(550, name);
37459Skarels					goto done;
37459Skarels				}
37459Skarels				if (c == '\n')
37459Skarels					i++;
52998Sbostic			}
37459Skarels		} else if (lseek(fileno(fin), restart_point, L_SET) < 0) {
37459Skarels			perror_reply(550, name);
37459Skarels			goto done;
37459Skarels		}
37459Skarels	}
10275Ssam	dout = dataconn(name, st.st_size, "w");
10275Ssam	if (dout == NULL)
10275Ssam		goto done;
36620Srick	send_data(fin, dout, st.st_blksize);
26493Sminshall	(void) fclose(dout);
26044Sminshall	data = -1;
26044Sminshall	pdata = -1;
10275Ssamdone:
55258Sandrew	if (cmd == 0)
55258Sandrew		LOGBYTES("get", name, byte_count);
10275Ssam	(*closefunc)(fin);
10275Ssam}
10275Ssam
55258Sandrewvoid
36304Skarelsstore(name, mode, unique)
10275Ssam	char *name, *mode;
36304Skarels	int unique;
10275Ssam{
10275Ssam	FILE *fout, *din;
36446Sbostic	struct stat st;
*66711Spendry	int (*closefunc) __P((FILE *));
10275Ssam
36446Sbostic	if (unique && stat(name, &st) == 0 &&
55258Sandrew	    (name = gunique(name)) == NULL) {
55258Sandrew		LOGCMD(*mode == 'w' ? "put" : "append", name);
36446Sbostic		return;
55258Sandrew	}
10303Ssam
37459Skarels	if (restart_point)
*66711Spendry		mode = "r+";
36620Srick	fout = fopen(name, mode);
36620Srick	closefunc = fclose;
10275Ssam	if (fout == NULL) {
36304Skarels		perror_reply(553, name);
55258Sandrew		LOGCMD(*mode == 'w' ? "put" : "append", name);
10275Ssam		return;
10275Ssam	}
55258Sandrew	byte_count = -1;
37459Skarels	if (restart_point) {
37459Skarels		if (type == TYPE_A) {
*66711Spendry			off_t i, n;
*66711Spendry			int c;
37459Skarels
37459Skarels			n = restart_point;
37459Skarels			i = 0;
37459Skarels			while (i++ < n) {
37459Skarels				if ((c=getc(fout)) == EOF) {
37459Skarels					perror_reply(550, name);
37459Skarels					goto done;
37459Skarels				}
37459Skarels				if (c == '\n')
37459Skarels					i++;
52998Sbostic			}
37459Skarels			/*
37459Skarels			 * We must do this seek to "current" position
37459Skarels			 * because we are changing from reading to
37459Skarels			 * writing.
37459Skarels			 */
37459Skarels			if (fseek(fout, 0L, L_INCR) < 0) {
37459Skarels				perror_reply(550, name);
37459Skarels				goto done;
37459Skarels			}
37459Skarels		} else if (lseek(fileno(fout), restart_point, L_SET) < 0) {
37459Skarels			perror_reply(550, name);
37459Skarels			goto done;
37459Skarels		}
37459Skarels	}
36304Skarels	din = dataconn(name, (off_t)-1, "r");
10275Ssam	if (din == NULL)
10275Ssam		goto done;
36620Srick	if (receive_data(din, fout) == 0) {
36620Srick		if (unique)
36304Skarels			reply(226, "Transfer complete (unique file name:%s).",
36933Skarels			    name);
36304Skarels		else
36304Skarels			reply(226, "Transfer complete.");
26044Sminshall	}
26493Sminshall	(void) fclose(din);
26044Sminshall	data = -1;
26044Sminshall	pdata = -1;
10275Ssamdone:
55258Sandrew	LOGBYTES(*mode == 'w' ? "put" : "append", name, byte_count);
10275Ssam	(*closefunc)(fout);
10275Ssam}
10275Ssam
55258Sandrewstatic FILE *
10275Ssamgetdatasock(mode)
10275Ssam	char *mode;
10275Ssam{
*66711Spendry	int on = 1, s, t, tries;
10275Ssam
10275Ssam	if (data >= 0)
10275Ssam		return (fdopen(data, mode));
50391Skarels	(void) seteuid((uid_t)0);
13247Ssam	s = socket(AF_INET, SOCK_STREAM, 0);
10602Ssam	if (s < 0)
50391Skarels		goto bad;
37459Skarels	if (setsockopt(s, SOL_SOCKET, SO_REUSEADDR,
*66711Spendry	    (char *) &on, sizeof(on)) < 0)
10602Ssam		goto bad;
13152Ssam	/* anchor socket to avoid multi-homing problems */
13152Ssam	data_source.sin_family = AF_INET;
13152Ssam	data_source.sin_addr = ctrl_addr.sin_addr;
37459Skarels	for (tries = 1; ; tries++) {
37459Skarels		if (bind(s, (struct sockaddr *)&data_source,
*66711Spendry		    sizeof(data_source)) >= 0)
37459Skarels			break;
37459Skarels		if (errno != EADDRINUSE || tries > 10)
37459Skarels			goto bad;
37459Skarels		sleep(tries);
37459Skarels	}
36304Skarels	(void) seteuid((uid_t)pw->pw_uid);
44339Skarels#ifdef IP_TOS
44339Skarels	on = IPTOS_THROUGHPUT;
44339Skarels	if (setsockopt(s, IPPROTO_IP, IP_TOS, (char *)&on, sizeof(int)) < 0)
44339Skarels		syslog(LOG_WARNING, "setsockopt (IP_TOS): %m");
44339Skarels#endif
10275Ssam	return (fdopen(s, mode));
10602Ssambad:
55258Sandrew	/* Return the real value of errno (close may change it) */
55258Sandrew	t = errno;
36304Skarels	(void) seteuid((uid_t)pw->pw_uid);
26493Sminshall	(void) close(s);
55258Sandrew	errno = t;
10602Ssam	return (NULL);
10275Ssam}
10275Ssam
55258Sandrewstatic FILE *
10275Ssamdataconn(name, size, mode)
10275Ssam	char *name;
11653Ssam	off_t size;
10275Ssam	char *mode;
10275Ssam{
10275Ssam	char sizebuf[32];
10275Ssam	FILE *file;
44339Skarels	int retry = 0, tos;
10275Ssam
36933Skarels	file_size = size;
36933Skarels	byte_count = 0;
36304Skarels	if (size != (off_t) -1)
*66711Spendry		(void) sprintf(sizebuf, " (%qd bytes)", size);
10275Ssam	else
10275Ssam		(void) strcpy(sizebuf, "");
36304Skarels	if (pdata >= 0) {
26044Sminshall		struct sockaddr_in from;
26044Sminshall		int s, fromlen = sizeof(from);
26044Sminshall
36304Skarels		s = accept(pdata, (struct sockaddr *)&from, &fromlen);
26044Sminshall		if (s < 0) {
26044Sminshall			reply(425, "Can't open data connection.");
26044Sminshall			(void) close(pdata);
26044Sminshall			pdata = -1;
*66711Spendry			return (NULL);
26044Sminshall		}
26044Sminshall		(void) close(pdata);
26044Sminshall		pdata = s;
44339Skarels#ifdef IP_TOS
44339Skarels		tos = IPTOS_LOWDELAY;
44339Skarels		(void) setsockopt(s, IPPROTO_IP, IP_TOS, (char *)&tos,
44339Skarels		    sizeof(int));
44339Skarels#endif
55258Sandrew		reply(150, "Opening %s mode data connection for '%s'%s.",
36235Skarels		     type == TYPE_A ? "ASCII" : "BINARY", name, sizebuf);
*66711Spendry		return (fdopen(pdata, mode));
26044Sminshall	}
10275Ssam	if (data >= 0) {
55258Sandrew		reply(125, "Using existing data connection for '%s'%s.",
10275Ssam		    name, sizebuf);
10321Ssam		usedefault = 1;
10275Ssam		return (fdopen(data, mode));
10275Ssam	}
10566Ssam	if (usedefault)
10422Ssam		data_dest = his_addr;
10422Ssam	usedefault = 1;
10275Ssam	file = getdatasock(mode);
10275Ssam	if (file == NULL) {
10275Ssam		reply(425, "Can't create data socket (%s,%d): %s.",
13247Ssam		    inet_ntoa(data_source.sin_addr),
42412Sbostic		    ntohs(data_source.sin_port), strerror(errno));
10275Ssam		return (NULL);
10275Ssam	}
10275Ssam	data = fileno(file);
36304Skarels	while (connect(data, (struct sockaddr *)&data_dest,
*66711Spendry	    sizeof(data_dest)) < 0) {
11653Ssam		if (errno == EADDRINUSE && retry < swaitmax) {
26493Sminshall			sleep((unsigned) swaitint);
11653Ssam			retry += swaitint;
11653Ssam			continue;
11653Ssam		}
36304Skarels		perror_reply(425, "Can't build data connection");
10275Ssam		(void) fclose(file);
10275Ssam		data = -1;
10275Ssam		return (NULL);
10275Ssam	}
55258Sandrew	reply(150, "Opening %s mode data connection for '%s'%s.",
36235Skarels	     type == TYPE_A ? "ASCII" : "BINARY", name, sizebuf);
10275Ssam	return (file);
10275Ssam}
10275Ssam
10275Ssam/*
55258Sandrew * Tranfer the contents of "instr" to "outstr" peer using the appropriate
55258Sandrew * encapsulation of the data subject * to Mode, Structure, and Type.
10275Ssam *
10275Ssam * NB: Form isn't handled.
10275Ssam */
55258Sandrewstatic void
36446Sbosticsend_data(instr, outstr, blksize)
10275Ssam	FILE *instr, *outstr;
36446Sbostic	off_t blksize;
10275Ssam{
*66711Spendry	int c, cnt, filefd, netfd;
*66711Spendry	char *buf;
10275Ssam
26044Sminshall	transflag++;
26044Sminshall	if (setjmp(urgcatch)) {
26044Sminshall		transflag = 0;
36620Srick		return;
26044Sminshall	}
10275Ssam	switch (type) {
10275Ssam
10275Ssam	case TYPE_A:
10275Ssam		while ((c = getc(instr)) != EOF) {
36933Skarels			byte_count++;
11220Ssam			if (c == '\n') {
36933Skarels				if (ferror(outstr))
36620Srick					goto data_err;
27750Sminshall				(void) putc('\r', outstr);
11220Ssam			}
27750Sminshall			(void) putc(c, outstr);
10275Ssam		}
36933Skarels		fflush(outstr);
26044Sminshall		transflag = 0;
36933Skarels		if (ferror(instr))
36933Skarels			goto file_err;
36933Skarels		if (ferror(outstr))
36620Srick			goto data_err;
36620Srick		reply(226, "Transfer complete.");
36620Srick		return;
36446Sbostic
10275Ssam	case TYPE_I:
10275Ssam	case TYPE_L:
36446Sbostic		if ((buf = malloc((u_int)blksize)) == NULL) {
36446Sbostic			transflag = 0;
36933Skarels			perror_reply(451, "Local resource failure: malloc");
36933Skarels			return;
36446Sbostic		}
10275Ssam		netfd = fileno(outstr);
10275Ssam		filefd = fileno(instr);
36933Skarels		while ((cnt = read(filefd, buf, (u_int)blksize)) > 0 &&
36620Srick		    write(netfd, buf, cnt) == cnt)
36933Skarels			byte_count += cnt;
26044Sminshall		transflag = 0;
36446Sbostic		(void)free(buf);
36933Skarels		if (cnt != 0) {
36933Skarels			if (cnt < 0)
36933Skarels				goto file_err;
36620Srick			goto data_err;
36933Skarels		}
36620Srick		reply(226, "Transfer complete.");
36620Srick		return;
36620Srick	default:
36620Srick		transflag = 0;
36620Srick		reply(550, "Unimplemented TYPE %d in send_data", type);
36620Srick		return;
10275Ssam	}
36620Srick
36620Srickdata_err:
26044Sminshall	transflag = 0;
36933Skarels	perror_reply(426, "Data connection");
36933Skarels	return;
36933Skarels
36933Skarelsfile_err:
36933Skarels	transflag = 0;
36933Skarels	perror_reply(551, "Error on input file");
10275Ssam}
10275Ssam
10275Ssam/*
55258Sandrew * Transfer data from peer to "outstr" using the appropriate encapulation of
55258Sandrew * the data subject to Mode, Structure, and Type.
10275Ssam *
10275Ssam * N.B.: Form isn't handled.
10275Ssam */
55258Sandrewstatic int
10275Ssamreceive_data(instr, outstr)
10275Ssam	FILE *instr, *outstr;
10275Ssam{
*66711Spendry	int c;
38134Srick	int cnt, bare_lfs = 0;
10275Ssam	char buf[BUFSIZ];
10275Ssam
26044Sminshall	transflag++;
26044Sminshall	if (setjmp(urgcatch)) {
26044Sminshall		transflag = 0;
36933Skarels		return (-1);
26044Sminshall	}
10275Ssam	switch (type) {
10275Ssam
10275Ssam	case TYPE_I:
10275Ssam	case TYPE_L:
*66711Spendry		while ((cnt = read(fileno(instr), buf, sizeof(buf))) > 0) {
36620Srick			if (write(fileno(outstr), buf, cnt) != cnt)
36933Skarels				goto file_err;
36933Skarels			byte_count += cnt;
26044Sminshall		}
36933Skarels		if (cnt < 0)
36620Srick			goto data_err;
26044Sminshall		transflag = 0;
36933Skarels		return (0);
10275Ssam
10275Ssam	case TYPE_E:
27106Smckusick		reply(553, "TYPE E not implemented.");
26044Sminshall		transflag = 0;
27106Smckusick		return (-1);
10275Ssam
10275Ssam	case TYPE_A:
10275Ssam		while ((c = getc(instr)) != EOF) {
36933Skarels			byte_count++;
38134Srick			if (c == '\n')
38134Srick				bare_lfs++;
27750Sminshall			while (c == '\r') {
36933Skarels				if (ferror(outstr))
36620Srick					goto data_err;
36933Skarels				if ((c = getc(instr)) != '\n') {
27750Sminshall					(void) putc ('\r', outstr);
36933Skarels					if (c == '\0' || c == EOF)
36933Skarels						goto contin2;
36933Skarels				}
10275Ssam			}
36933Skarels			(void) putc(c, outstr);
36933Skarels	contin2:	;
10275Ssam		}
36620Srick		fflush(outstr);
36933Skarels		if (ferror(instr))
36620Srick			goto data_err;
36933Skarels		if (ferror(outstr))
36933Skarels			goto file_err;
26044Sminshall		transflag = 0;
38134Srick		if (bare_lfs) {
38134Srick			lreply(230, "WARNING! %d bare linefeeds received in ASCII mode", bare_lfs);
38134Srick			printf("   File may not have transferred correctly.\r\n");
38134Srick		}
10275Ssam		return (0);
36620Srick	default:
36620Srick		reply(550, "Unimplemented TYPE %d in receive_data", type);
36620Srick		transflag = 0;
36933Skarels		return (-1);
10275Ssam	}
36620Srick
36620Srickdata_err:
26044Sminshall	transflag = 0;
36933Skarels	perror_reply(426, "Data Connection");
36933Skarels	return (-1);
36933Skarels
36933Skarelsfile_err:
36933Skarels	transflag = 0;
36933Skarels	perror_reply(452, "Error writing file");
36933Skarels	return (-1);
10275Ssam}
10275Ssam
55258Sandrewvoid
36933Skarelsstatfilecmd(filename)
36933Skarels	char *filename;
36933Skarels{
36933Skarels	FILE *fin;
36933Skarels	int c;
*66711Spendry	char line[LINE_MAX];
36933Skarels
55258Sandrew	(void)snprintf(line, sizeof(line), "/bin/ls -lgA %s", filename);
36933Skarels	fin = ftpd_popen(line, "r");
36933Skarels	lreply(211, "status of %s:", filename);
36933Skarels	while ((c = getc(fin)) != EOF) {
36933Skarels		if (c == '\n') {
36933Skarels			if (ferror(stdout)){
36933Skarels				perror_reply(421, "control connection");
36933Skarels				(void) ftpd_pclose(fin);
36933Skarels				dologout(1);
36933Skarels				/* NOTREACHED */
36933Skarels			}
36933Skarels			if (ferror(fin)) {
36933Skarels				perror_reply(551, filename);
36933Skarels				(void) ftpd_pclose(fin);
36933Skarels				return;
36933Skarels			}
36933Skarels			(void) putc('\r', stdout);
36933Skarels		}
36933Skarels		(void) putc(c, stdout);
36933Skarels	}
36933Skarels	(void) ftpd_pclose(fin);
36933Skarels	reply(211, "End of Status");
36933Skarels}
36933Skarels
55258Sandrewvoid
36933Skarelsstatcmd()
36933Skarels{
36933Skarels	struct sockaddr_in *sin;
36933Skarels	u_char *a, *p;
36933Skarels
36933Skarels	lreply(211, "%s FTP server status:", hostname, version);
36933Skarels	printf("     %s\r\n", version);
36933Skarels	printf("     Connected to %s", remotehost);
38134Srick	if (!isdigit(remotehost[0]))
36933Skarels		printf(" (%s)", inet_ntoa(his_addr.sin_addr));
36933Skarels	printf("\r\n");
36933Skarels	if (logged_in) {
36933Skarels		if (guest)
36933Skarels			printf("     Logged in anonymously\r\n");
36933Skarels		else
36933Skarels			printf("     Logged in as %s\r\n", pw->pw_name);
36933Skarels	} else if (askpasswd)
36933Skarels		printf("     Waiting for password\r\n");
36933Skarels	else
36933Skarels		printf("     Waiting for user name\r\n");
36933Skarels	printf("     TYPE: %s", typenames[type]);
36933Skarels	if (type == TYPE_A || type == TYPE_E)
36933Skarels		printf(", FORM: %s", formnames[form]);
36933Skarels	if (type == TYPE_L)
36933Skarels#if NBBY == 8
36933Skarels		printf(" %d", NBBY);
36933Skarels#else
36933Skarels		printf(" %d", bytesize);	/* need definition! */
36933Skarels#endif
36933Skarels	printf("; STRUcture: %s; transfer MODE: %s\r\n",
36933Skarels	    strunames[stru], modenames[mode]);
36933Skarels	if (data != -1)
36933Skarels		printf("     Data connection open\r\n");
36933Skarels	else if (pdata != -1) {
36933Skarels		printf("     in Passive mode");
36933Skarels		sin = &pasv_addr;
36933Skarels		goto printaddr;
36933Skarels	} else if (usedefault == 0) {
36933Skarels		printf("     PORT");
36933Skarels		sin = &data_dest;
36933Skarelsprintaddr:
36933Skarels		a = (u_char *) &sin->sin_addr;
36933Skarels		p = (u_char *) &sin->sin_port;
36933Skarels#define UC(b) (((int) b) & 0xff)
36933Skarels		printf(" (%d,%d,%d,%d,%d,%d)\r\n", UC(a[0]),
36933Skarels			UC(a[1]), UC(a[2]), UC(a[3]), UC(p[0]), UC(p[1]));
36933Skarels#undef UC
36933Skarels	} else
36933Skarels		printf("     No data connection\r\n");
36933Skarels	reply(211, "End of status");
36933Skarels}
36933Skarels
55258Sandrewvoid
10275Ssamfatal(s)
10275Ssam	char *s;
10275Ssam{
*66711Spendry
10275Ssam	reply(451, "Error in server: %s\n", s);
10275Ssam	reply(221, "Closing connection due to server error.");
13247Ssam	dologout(0);
36620Srick	/* NOTREACHED */
10275Ssam}
10275Ssam
55258Sandrewvoid
55258Sandrew#if __STDC__
55258Sandrewreply(int n, const char *fmt, ...)
55258Sandrew#else
55258Sandrewreply(n, fmt, va_alist)
10275Ssam	int n;
36446Sbostic	char *fmt;
55258Sandrew        va_dcl
55258Sandrew#endif
10275Ssam{
55258Sandrew	va_list ap;
55258Sandrew#if __STDC__
55258Sandrew	va_start(ap, fmt);
55258Sandrew#else
55258Sandrew	va_start(ap);
55258Sandrew#endif
55258Sandrew	(void)printf("%d ", n);
55258Sandrew	(void)vprintf(fmt, ap);
55258Sandrew	(void)printf("\r\n");
36435Sbostic	(void)fflush(stdout);
10275Ssam	if (debug) {
26493Sminshall		syslog(LOG_DEBUG, "<--- %d ", n);
55258Sandrew		vsyslog(LOG_DEBUG, fmt, ap);
55258Sandrew	}
10275Ssam}
10275Ssam
55258Sandrewvoid
55258Sandrew#if __STDC__
55258Sandrewlreply(int n, const char *fmt, ...)
55258Sandrew#else
55258Sandrewlreply(n, fmt, va_alist)
10275Ssam	int n;
36446Sbostic	char *fmt;
55258Sandrew        va_dcl
55258Sandrew#endif
10275Ssam{
55258Sandrew	va_list ap;
55258Sandrew#if __STDC__
55258Sandrew	va_start(ap, fmt);
55258Sandrew#else
55258Sandrew	va_start(ap);
55258Sandrew#endif
55258Sandrew	(void)printf("%d- ", n);
55258Sandrew	(void)vprintf(fmt, ap);
55258Sandrew	(void)printf("\r\n");
36435Sbostic	(void)fflush(stdout);
36446Sbostic	if (debug) {
36446Sbostic		syslog(LOG_DEBUG, "<--- %d- ", n);
55258Sandrew		vsyslog(LOG_DEBUG, fmt, ap);
36446Sbostic	}
10275Ssam}
10275Ssam
55258Sandrewstatic void
10275Ssamack(s)
10275Ssam	char *s;
10275Ssam{
*66711Spendry
27106Smckusick	reply(250, "%s command successful.", s);
10275Ssam}
10275Ssam
55258Sandrewvoid
10275Ssamnack(s)
10275Ssam	char *s;
10275Ssam{
*66711Spendry
10275Ssam	reply(502, "%s command not implemented.", s);
10275Ssam}
10275Ssam
36304Skarels/* ARGSUSED */
*66711Spendryvoid
26493Sminshallyyerror(s)
26493Sminshall	char *s;
10275Ssam{
26044Sminshall	char *cp;
26044Sminshall
60087Sbostic	if (cp = strchr(cbuf,'\n'))
36551Sbostic		*cp = '\0';
36933Skarels	reply(500, "'%s': command not understood.", cbuf);
10275Ssam}
10275Ssam
55258Sandrewvoid
10275Ssamdelete(name)
10275Ssam	char *name;
10275Ssam{
10275Ssam	struct stat st;
10275Ssam
55258Sandrew	LOGCMD("delete", name);
10275Ssam	if (stat(name, &st) < 0) {
36304Skarels		perror_reply(550, name);
10275Ssam		return;
10275Ssam	}
10275Ssam	if ((st.st_mode&S_IFMT) == S_IFDIR) {
10275Ssam		if (rmdir(name) < 0) {
36304Skarels			perror_reply(550, name);
10275Ssam			return;
10275Ssam		}
10275Ssam		goto done;
10275Ssam	}
10275Ssam	if (unlink(name) < 0) {
36304Skarels		perror_reply(550, name);
10275Ssam		return;
10275Ssam	}
10275Ssamdone:
10275Ssam	ack("DELE");
10275Ssam}
10275Ssam
55258Sandrewvoid
10275Ssamcwd(path)
10275Ssam	char *path;
10275Ssam{
*66711Spendry
36620Srick	if (chdir(path) < 0)
36304Skarels		perror_reply(550, path);
36620Srick	else
36620Srick		ack("CWD");
10275Ssam}
10275Ssam
55258Sandrewvoid
10303Ssammakedir(name)
10275Ssam	char *name;
10275Ssam{
*66711Spendry
55258Sandrew	LOGCMD("mkdir", name);
36276Sbostic	if (mkdir(name, 0777) < 0)
36304Skarels		perror_reply(550, name);
36276Sbostic	else
36276Sbostic		reply(257, "MKD command successful.");
10275Ssam}
10275Ssam
55258Sandrewvoid
10303Ssamremovedir(name)
10275Ssam	char *name;
10275Ssam{
*66711Spendry
55258Sandrew	LOGCMD("rmdir", name);
36620Srick	if (rmdir(name) < 0)
36304Skarels		perror_reply(550, name);
36620Srick	else
36620Srick		ack("RMD");
10275Ssam}
10275Ssam
55258Sandrewvoid
10303Ssampwd()
10275Ssam{
10303Ssam	char path[MAXPATHLEN + 1];
10275Ssam
36620Srick	if (getwd(path) == (char *)NULL)
27106Smckusick		reply(550, "%s.", path);
36620Srick	else
36620Srick		reply(257, "\"%s\" is current directory.", path);
10275Ssam}
10275Ssam
10275Ssamchar *
10275Ssamrenamefrom(name)
10275Ssam	char *name;
10275Ssam{
10275Ssam	struct stat st;
10275Ssam
10275Ssam	if (stat(name, &st) < 0) {
36304Skarels		perror_reply(550, name);
10275Ssam		return ((char *)0);
10275Ssam	}
10303Ssam	reply(350, "File exists, ready for destination name");
10275Ssam	return (name);
10275Ssam}
10275Ssam
55258Sandrewvoid
10275Ssamrenamecmd(from, to)
10275Ssam	char *from, *to;
10275Ssam{
*66711Spendry
55258Sandrew	LOGCMD2("rename", from, to);
36620Srick	if (rename(from, to) < 0)
36304Skarels		perror_reply(550, "rename");
36620Srick	else
36620Srick		ack("RNTO");
10275Ssam}
10275Ssam
55258Sandrewstatic void
10275Ssamdolog(sin)
10275Ssam	struct sockaddr_in *sin;
10275Ssam{
36304Skarels	struct hostent *hp = gethostbyaddr((char *)&sin->sin_addr,
*66711Spendry		sizeof(struct in_addr), AF_INET);
10275Ssam
36304Skarels	if (hp)
*66711Spendry		(void) strncpy(remotehost, hp->h_name, sizeof(remotehost));
36304Skarels	else
26493Sminshall		(void) strncpy(remotehost, inet_ntoa(sin->sin_addr),
*66711Spendry		    sizeof(remotehost));
36620Srick#ifdef SETPROCTITLE
*66711Spendry	snprintf(proctitle, sizeof(proctitle), "%s: connected", remotehost);
36933Skarels	setproctitle(proctitle);
36620Srick#endif /* SETPROCTITLE */
36933Skarels
52998Sbostic	if (logging)
52998Sbostic		syslog(LOG_INFO, "connection from %s", remotehost);
10275Ssam}
10695Ssam
10695Ssam/*
13247Ssam * Record logout in wtmp file
13247Ssam * and exit with supplied status.
13247Ssam */
55258Sandrewvoid
13247Ssamdologout(status)
13247Ssam	int status;
13247Ssam{
*66711Spendry
17580Ssam	if (logged_in) {
36304Skarels		(void) seteuid((uid_t)0);
35672Sbostic		logwtmp(ttyline, "", "");
13247Ssam	}
14436Ssam	/* beware of flushing buffers after a SIGPIPE */
14436Ssam	_exit(status);
13247Ssam}
13247Ssam
55258Sandrewstatic void
55258Sandrewmyoob(signo)
55258Sandrew	int signo;
26044Sminshall{
27750Sminshall	char *cp;
26044Sminshall
27750Sminshall	/* only process if transfer occurring */
36304Skarels	if (!transflag)
26044Sminshall		return;
27750Sminshall	cp = tmpline;
27750Sminshall	if (getline(cp, 7, stdin) == NULL) {
36304Skarels		reply(221, "You could at least say goodbye.");
27750Sminshall		dologout(0);
26044Sminshall	}
26044Sminshall	upper(cp);
36933Skarels	if (strcmp(cp, "ABOR\r\n") == 0) {
36933Skarels		tmpline[0] = '\0';
36933Skarels		reply(426, "Transfer aborted. Data connection closed.");
36933Skarels		reply(226, "Abort successful");
36933Skarels		longjmp(urgcatch, 1);
36933Skarels	}
36933Skarels	if (strcmp(cp, "STAT\r\n") == 0) {
36933Skarels		if (file_size != (off_t) -1)
55258Sandrew			reply(213, "Status: %qd of %qd bytes transferred",
36933Skarels			    byte_count, file_size);
36933Skarels		else
55258Sandrew			reply(213, "Status: %qd bytes transferred", byte_count);
36933Skarels	}
26044Sminshall}
26044Sminshall
27106Smckusick/*
36620Srick * Note: a response of 425 is not mentioned as a possible response to
52998Sbostic *	the PASV command in RFC959. However, it has been blessed as
52998Sbostic *	a legitimate response by Jon Postel in a telephone conversation
36620Srick *	with Rick Adams on 25 Jan 89.
27106Smckusick */
55258Sandrewvoid
26044Sminshallpassive()
26044Sminshall{
26044Sminshall	int len;
*66711Spendry	char *p, *a;
26044Sminshall
26044Sminshall	pdata = socket(AF_INET, SOCK_STREAM, 0);
26044Sminshall	if (pdata < 0) {
36620Srick		perror_reply(425, "Can't open passive connection");
26044Sminshall		return;
26044Sminshall	}
36933Skarels	pasv_addr = ctrl_addr;
36933Skarels	pasv_addr.sin_port = 0;
36304Skarels	(void) seteuid((uid_t)0);
36933Skarels	if (bind(pdata, (struct sockaddr *)&pasv_addr, sizeof(pasv_addr)) < 0) {
36304Skarels		(void) seteuid((uid_t)pw->pw_uid);
36620Srick		goto pasv_error;
26044Sminshall	}
36304Skarels	(void) seteuid((uid_t)pw->pw_uid);
36933Skarels	len = sizeof(pasv_addr);
36933Skarels	if (getsockname(pdata, (struct sockaddr *) &pasv_addr, &len) < 0)
36620Srick		goto pasv_error;
36620Srick	if (listen(pdata, 1) < 0)
36620Srick		goto pasv_error;
36933Skarels	a = (char *) &pasv_addr.sin_addr;
36933Skarels	p = (char *) &pasv_addr.sin_port;
26044Sminshall
26044Sminshall#define UC(b) (((int) b) & 0xff)
26044Sminshall
26044Sminshall	reply(227, "Entering Passive Mode (%d,%d,%d,%d,%d,%d)", UC(a[0]),
26044Sminshall		UC(a[1]), UC(a[2]), UC(a[3]), UC(p[0]), UC(p[1]));
36620Srick	return;
36620Srick
36620Srickpasv_error:
36620Srick	(void) close(pdata);
36620Srick	pdata = -1;
36620Srick	perror_reply(425, "Can't open passive connection");
36620Srick	return;
26044Sminshall}
26044Sminshall
36304Skarels/*
36304Skarels * Generate unique name for file with basename "local".
36304Skarels * The file named "local" is already known to exist.
36304Skarels * Generates failure reply on error.
36304Skarels */
55258Sandrewstatic char *
26044Sminshallgunique(local)
26044Sminshall	char *local;
26044Sminshall{
26044Sminshall	static char new[MAXPATHLEN];
36304Skarels	struct stat st;
55258Sandrew	int count;
55258Sandrew	char *cp;
26044Sminshall
60087Sbostic	cp = strrchr(local, '/');
36304Skarels	if (cp)
26044Sminshall		*cp = '\0';
36620Srick	if (stat(cp ? local : ".", &st) < 0) {
36933Skarels		perror_reply(553, cp ? local : ".");
*66711Spendry		return ((char *) 0);
26044Sminshall	}
36620Srick	if (cp)
36620Srick		*cp = '/';
26044Sminshall	(void) strcpy(new, local);
26044Sminshall	cp = new + strlen(new);
26044Sminshall	*cp++ = '.';
36304Skarels	for (count = 1; count < 100; count++) {
55258Sandrew		(void)sprintf(cp, "%d", count);
36304Skarels		if (stat(new, &st) < 0)
*66711Spendry			return (new);
26044Sminshall	}
36304Skarels	reply(452, "Unique file name cannot be created.");
*66711Spendry	return (NULL);
26044Sminshall}
36304Skarels
36304Skarels/*
36304Skarels * Format and send reply containing system error number.
36304Skarels */
55258Sandrewvoid
36304Skarelsperror_reply(code, string)
36304Skarels	int code;
36304Skarels	char *string;
36304Skarels{
*66711Spendry
42412Sbostic	reply(code, "%s: %s.", string, strerror(errno));
36304Skarels}
36620Srick
36620Srickstatic char *onefile[] = {
36620Srick	"",
36620Srick	0
36620Srick};
36620Srick
55258Sandrewvoid
*66711Spendrysend_file_list(whichf)
*66711Spendry	char *whichf;
36620Srick{
36620Srick	struct stat st;
36620Srick	DIR *dirp = NULL;
46669Sbostic	struct dirent *dir;
36620Srick	FILE *dout = NULL;
*66711Spendry	char **dirlist, *dirname;
37459Skarels	int simple = 0;
*66711Spendry	int freeglob = 0;
*66711Spendry	glob_t gl;
36620Srick
*66711Spendry	if (strpbrk(whichf, "~{[*?") != NULL) {
36933Skarels
*66711Spendry		memset(&gl, 0, sizeof(gl));
*66711Spendry		freeglob = 1;
*66711Spendry		if (glob(whichf, GLOB_BRACE|GLOB_QUOTE|GLOB_TILDE, 0, &gl)) {
*66711Spendry			reply(550, "not found");
*66711Spendry			goto out;
*66711Spendry		} else if (gl.gl_pathc == 0) {
36620Srick			errno = ENOENT;
*66711Spendry			perror_reply(550, whichf);
*66711Spendry			goto out;
36620Srick		}
*66711Spendry		dirlist = gl.gl_pathv;
36620Srick	} else {
*66711Spendry		onefile[0] = whichf;
36620Srick		dirlist = onefile;
37459Skarels		simple = 1;
36620Srick	}
36933Skarels
36933Skarels	if (setjmp(urgcatch)) {
36933Skarels		transflag = 0;
*66711Spendry		goto out;
36933Skarels	}
36620Srick	while (dirname = *dirlist++) {
36620Srick		if (stat(dirname, &st) < 0) {
36933Skarels			/*
36933Skarels			 * If user typed "ls -l", etc, and the client
36933Skarels			 * used NLST, do what the user meant.
36933Skarels			 */
36933Skarels			if (dirname[0] == '-' && *dirlist == NULL &&
36933Skarels			    transflag == 0) {
36933Skarels				retrieve("/bin/ls %s", dirname);
*66711Spendry				goto out;
36933Skarels			}
*66711Spendry			perror_reply(550, whichf);
36620Srick			if (dout != NULL) {
36620Srick				(void) fclose(dout);
36933Skarels				transflag = 0;
36620Srick				data = -1;
36620Srick				pdata = -1;
36620Srick			}
*66711Spendry			goto out;
36620Srick		}
36933Skarels
*66711Spendry		if (S_ISREG(st.st_mode)) {
36620Srick			if (dout == NULL) {
37459Skarels				dout = dataconn("file list", (off_t)-1, "w");
36620Srick				if (dout == NULL)
*66711Spendry					goto out;
36933Skarels				transflag++;
36620Srick			}
38158Srick			fprintf(dout, "%s%s\n", dirname,
38158Srick				type == TYPE_A ? "\r" : "");
36933Skarels			byte_count += strlen(dirname) + 1;
36620Srick			continue;
*66711Spendry		} else if (!S_ISDIR(st.st_mode))
36620Srick			continue;
36620Srick
36620Srick		if ((dirp = opendir(dirname)) == NULL)
36620Srick			continue;
36620Srick
36620Srick		while ((dir = readdir(dirp)) != NULL) {
36933Skarels			char nbuf[MAXPATHLEN];
36620Srick
36620Srick			if (dir->d_name[0] == '.' && dir->d_namlen == 1)
36620Srick				continue;
36933Skarels			if (dir->d_name[0] == '.' && dir->d_name[1] == '.' &&
36933Skarels			    dir->d_namlen == 2)
36620Srick				continue;
36620Srick
36933Skarels			sprintf(nbuf, "%s/%s", dirname, dir->d_name);
36933Skarels
36620Srick			/*
36933Skarels			 * We have to do a stat to insure it's
36933Skarels			 * not a directory or special file.
36620Srick			 */
37459Skarels			if (simple || (stat(nbuf, &st) == 0 &&
*66711Spendry			    S_ISREG(st.st_mode))) {
36620Srick				if (dout == NULL) {
37459Skarels					dout = dataconn("file list", (off_t)-1,
36620Srick						"w");
36620Srick					if (dout == NULL)
*66711Spendry						goto out;
36933Skarels					transflag++;
36620Srick				}
36620Srick				if (nbuf[0] == '.' && nbuf[1] == '/')
38158Srick					fprintf(dout, "%s%s\n", &nbuf[2],
38158Srick						type == TYPE_A ? "\r" : "");
36620Srick				else
38158Srick					fprintf(dout, "%s%s\n", nbuf,
38158Srick						type == TYPE_A ? "\r" : "");
36933Skarels				byte_count += strlen(nbuf) + 1;
36620Srick			}
36620Srick		}
36620Srick		(void) closedir(dirp);
36620Srick	}
36620Srick
36933Skarels	if (dout == NULL)
36933Skarels		reply(550, "No files found.");
36933Skarels	else if (ferror(dout) != 0)
36933Skarels		perror_reply(550, "Data connection");
36933Skarels	else
36620Srick		reply(226, "Transfer complete.");
36620Srick
36933Skarels	transflag = 0;
36933Skarels	if (dout != NULL)
36620Srick		(void) fclose(dout);
36620Srick	data = -1;
36620Srick	pdata = -1;
*66711Spendryout:
*66711Spendry	if (freeglob) {
*66711Spendry		freeglob = 0;
*66711Spendry		globfree(&gl);
*66711Spendry	}
36620Srick}
36620Srick
36620Srick#ifdef SETPROCTITLE
36620Srick/*
55258Sandrew * Clobber argv so ps will show what we're doing.  (Stolen from sendmail.)
55258Sandrew * Warning, since this is usually started from inetd.conf, it often doesn't
55258Sandrew * have much of an environment or arglist to overwrite.
36620Srick */
55258Sandrewvoid
55258Sandrew#if __STDC__
55258Sandrewsetproctitle(const char *fmt, ...)
55258Sandrew#else
55258Sandrewsetproctitle(fmt, va_alist)
55258Sandrew	char *fmt;
55258Sandrew        va_dcl
55258Sandrew#endif
36620Srick{
*66711Spendry	int i;
55258Sandrew	va_list ap;
*66711Spendry	char *p, *bp, ch;
*66711Spendry	char buf[LINE_MAX];
*66711Spendry
55258Sandrew#if __STDC__
55258Sandrew	va_start(ap, fmt);
55258Sandrew#else
55258Sandrew	va_start(ap);
55258Sandrew#endif
55258Sandrew	(void)vsnprintf(buf, sizeof(buf), fmt, ap);
36620Srick
36620Srick	/* make ps print our process name */
36620Srick	p = Argv[0];
36620Srick	*p++ = '-';
36620Srick
36620Srick	i = strlen(buf);
36620Srick	if (i > LastArgv - p - 2) {
36620Srick		i = LastArgv - p - 2;
36620Srick		buf[i] = '\0';
36620Srick	}
36620Srick	bp = buf;
36620Srick	while (ch = *bp++)
36620Srick		if (ch != '\n' && ch != '\r')
36620Srick			*p++ = ch;
36620Srick	while (p < LastArgv)
36620Srick		*p++ = ' ';
36620Srick}
36620Srick#endif /* SETPROCTITLE */