1 /* 2 * scp - secure remote copy. This is basically patched BSD rcp which 3 * uses ssh to do the data transfer (instead of using rcmd). 4 * 5 * NOTE: This version should NOT be suid root. (This uses ssh to 6 * do the transfer and ssh has the necessary privileges.) 7 * 8 * 1995 Timo Rinne <tri@iki.fi>, Tatu Ylonen <ylo@cs.hut.fi> 9 * 10 * As far as I am concerned, the code I have written for this software 11 * can be used freely for any purpose. Any derived versions of this 12 * software must be clearly marked as such, and if the derived work is 13 * incompatible with the protocol description in the RFC file, it must be 14 * called by a name other than "ssh" or "Secure Shell". 15 */ 16 /* 17 * Copyright (c) 1999 Theo de Raadt. All rights reserved. 18 * Copyright (c) 1999 Aaron Campbell. All rights reserved. 19 * 20 * Redistribution and use in source and binary forms, with or without 21 * modification, are permitted provided that the following conditions 22 * are met: 23 * 1. Redistributions of source code must retain the above copyright 24 * notice, this list of conditions and the following disclaimer. 25 * 2. Redistributions in binary form must reproduce the above copyright 26 * notice, this list of conditions and the following disclaimer in the 27 * documentation and/or other materials provided with the distribution. 28 * 29 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR 30 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES 31 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. 32 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, 33 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT 34 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, 35 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY 36 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT 37 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF 38 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 39 */ 40 41 /* 42 * Parts from: 43 * 44 * Copyright (c) 1983, 1990, 1992, 1993, 1995 45 * The Regents of the University of California. All rights reserved. 46 * 47 * Redistribution and use in source and binary forms, with or without 48 * modification, are permitted provided that the following conditions 49 * are met: 50 * 1. Redistributions of source code must retain the above copyright 51 * notice, this list of conditions and the following disclaimer. 52 * 2. Redistributions in binary form must reproduce the above copyright 53 * notice, this list of conditions and the following disclaimer in the 54 * documentation and/or other materials provided with the distribution. 55 * 3. Neither the name of the University nor the names of its contributors 56 * may be used to endorse or promote products derived from this software 57 * without specific prior written permission. 58 * 59 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 60 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 61 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 62 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 63 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 64 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 65 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 66 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 67 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 68 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 69 * SUCH DAMAGE. 70 * 71 */ 72 73 #include "includes.h" 74 RCSID("$OpenBSD: scp.c,v 1.113 2003/11/23 23:21:21 djm Exp $"); 75 76 #include "xmalloc.h" 77 #include "atomicio.h" 78 #include "pathnames.h" 79 #include "log.h" 80 #include "misc.h" 81 #include "progressmeter.h" 82 83 int do_cmd(char *host, char *remuser, char *cmd, int *fdin, int *fdout, int argc); 84 85 void bwlimit(int); 86 87 /* Struct for addargs */ 88 arglist args; 89 90 /* Bandwidth limit */ 91 off_t limit_rate = 0; 92 93 /* Name of current file being transferred. */ 94 char *curfile; 95 96 /* This is set to non-zero to enable verbose mode. */ 97 int verbose_mode = 0; 98 99 /* This is set to zero if the progressmeter is not desired. */ 100 int showprogress = 1; 101 102 /* This is the program to execute for the secured connection. ("ssh" or -S) */ 103 char *ssh_program = _PATH_SSH_PROGRAM; 104 105 /* This is used to store the pid of ssh_program */ 106 pid_t do_cmd_pid = -1; 107 108 static void 109 killchild(int signo) 110 { 111 if (do_cmd_pid > 1) 112 kill(do_cmd_pid, signo); 113 114 _exit(1); 115 } 116 117 /* 118 * This function executes the given command as the specified user on the 119 * given host. This returns < 0 if execution fails, and >= 0 otherwise. This 120 * assigns the input and output file descriptors on success. 121 */ 122 123 int 124 do_cmd(char *host, char *remuser, char *cmd, int *fdin, int *fdout, int argc) 125 { 126 int pin[2], pout[2], reserved[2]; 127 128 if (verbose_mode) 129 fprintf(stderr, 130 "Executing: program %s host %s, user %s, command %s\n", 131 ssh_program, host, 132 remuser ? remuser : "(unspecified)", cmd); 133 134 /* 135 * Reserve two descriptors so that the real pipes won't get 136 * descriptors 0 and 1 because that will screw up dup2 below. 137 */ 138 pipe(reserved); 139 140 /* Create a socket pair for communicating with ssh. */ 141 if (pipe(pin) < 0) 142 fatal("pipe: %s", strerror(errno)); 143 if (pipe(pout) < 0) 144 fatal("pipe: %s", strerror(errno)); 145 146 /* Free the reserved descriptors. */ 147 close(reserved[0]); 148 close(reserved[1]); 149 150 /* Fork a child to execute the command on the remote host using ssh. */ 151 do_cmd_pid = fork(); 152 if (do_cmd_pid == 0) { 153 /* Child. */ 154 close(pin[1]); 155 close(pout[0]); 156 dup2(pin[0], 0); 157 dup2(pout[1], 1); 158 close(pin[0]); 159 close(pout[1]); 160 161 args.list[0] = ssh_program; 162 if (remuser != NULL) 163 addargs(&args, "-l%s", remuser); 164 addargs(&args, "%s", host); 165 addargs(&args, "%s", cmd); 166 167 execvp(ssh_program, args.list); 168 perror(ssh_program); 169 exit(1); 170 } else if (do_cmd_pid == -1) { 171 fatal("fork: %s", strerror(errno)); 172 } 173 /* Parent. Close the other side, and return the local side. */ 174 close(pin[0]); 175 *fdout = pin[1]; 176 close(pout[1]); 177 *fdin = pout[0]; 178 signal(SIGTERM, killchild); 179 signal(SIGINT, killchild); 180 signal(SIGHUP, killchild); 181 return 0; 182 } 183 184 typedef struct { 185 int cnt; 186 char *buf; 187 } BUF; 188 189 BUF *allocbuf(BUF *, int, int); 190 void lostconn(int); 191 void nospace(void); 192 int okname(char *); 193 void run_err(const char *,...); 194 void verifydir(char *); 195 196 struct passwd *pwd; 197 uid_t userid; 198 int errs, remin, remout; 199 int pflag, iamremote, iamrecursive, targetshouldbedirectory; 200 201 #define CMDNEEDS 64 202 char cmd[CMDNEEDS]; /* must hold "rcp -r -p -d\0" */ 203 204 int response(void); 205 void rsource(char *, struct stat *); 206 void sink(int, char *[]); 207 void source(int, char *[]); 208 void tolocal(int, char *[]); 209 void toremote(char *, int, char *[]); 210 void usage(void); 211 212 int 213 main(int argc, char **argv) 214 { 215 int ch, fflag, tflag, status; 216 double speed; 217 char *targ, *endp; 218 extern char *optarg; 219 extern int optind; 220 221 args.list = NULL; 222 addargs(&args, "ssh"); /* overwritten with ssh_program */ 223 addargs(&args, "-x"); 224 addargs(&args, "-oForwardAgent no"); 225 addargs(&args, "-oClearAllForwardings yes"); 226 227 fflag = tflag = 0; 228 while ((ch = getopt(argc, argv, "dfl:prtvBCc:i:P:q1246S:o:F:")) != -1) 229 switch (ch) { 230 /* User-visible flags. */ 231 case '1': 232 case '2': 233 case '4': 234 case '6': 235 case 'C': 236 addargs(&args, "-%c", ch); 237 break; 238 case 'o': 239 case 'c': 240 case 'i': 241 case 'F': 242 addargs(&args, "-%c%s", ch, optarg); 243 break; 244 case 'P': 245 addargs(&args, "-p%s", optarg); 246 break; 247 case 'B': 248 addargs(&args, "-oBatchmode yes"); 249 break; 250 case 'l': 251 speed = strtod(optarg, &endp); 252 if (speed <= 0 || *endp != '\0') 253 usage(); 254 limit_rate = speed * 1024; 255 break; 256 case 'p': 257 pflag = 1; 258 break; 259 case 'r': 260 iamrecursive = 1; 261 break; 262 case 'S': 263 ssh_program = xstrdup(optarg); 264 break; 265 case 'v': 266 addargs(&args, "-v"); 267 verbose_mode = 1; 268 break; 269 case 'q': 270 addargs(&args, "-q"); 271 showprogress = 0; 272 break; 273 274 /* Server options. */ 275 case 'd': 276 targetshouldbedirectory = 1; 277 break; 278 case 'f': /* "from" */ 279 iamremote = 1; 280 fflag = 1; 281 break; 282 case 't': /* "to" */ 283 iamremote = 1; 284 tflag = 1; 285 break; 286 default: 287 usage(); 288 } 289 argc -= optind; 290 argv += optind; 291 292 if ((pwd = getpwuid(userid = getuid())) == NULL) 293 fatal("unknown user %u", (u_int) userid); 294 295 if (!isatty(STDERR_FILENO)) 296 showprogress = 0; 297 298 remin = STDIN_FILENO; 299 remout = STDOUT_FILENO; 300 301 if (fflag) { 302 /* Follow "protocol", send data. */ 303 (void) response(); 304 source(argc, argv); 305 exit(errs != 0); 306 } 307 if (tflag) { 308 /* Receive data. */ 309 sink(argc, argv); 310 exit(errs != 0); 311 } 312 if (argc < 2) 313 usage(); 314 if (argc > 2) 315 targetshouldbedirectory = 1; 316 317 remin = remout = -1; 318 do_cmd_pid = -1; 319 /* Command to be executed on remote system using "ssh". */ 320 (void) snprintf(cmd, sizeof cmd, "scp%s%s%s%s", 321 verbose_mode ? " -v" : "", 322 iamrecursive ? " -r" : "", pflag ? " -p" : "", 323 targetshouldbedirectory ? " -d" : ""); 324 325 (void) signal(SIGPIPE, lostconn); 326 327 if ((targ = colon(argv[argc - 1]))) /* Dest is remote host. */ 328 toremote(targ, argc, argv); 329 else { 330 tolocal(argc, argv); /* Dest is local host. */ 331 if (targetshouldbedirectory) 332 verifydir(argv[argc - 1]); 333 } 334 /* 335 * Finally check the exit status of the ssh process, if one was forked 336 * and no error has occured yet 337 */ 338 if (do_cmd_pid != -1 && errs == 0) { 339 if (remin != -1) 340 (void) close(remin); 341 if (remout != -1) 342 (void) close(remout); 343 if (waitpid(do_cmd_pid, &status, 0) == -1) 344 errs = 1; 345 else { 346 if (!WIFEXITED(status) || WEXITSTATUS(status) != 0) 347 errs = 1; 348 } 349 } 350 exit(errs != 0); 351 } 352 353 void 354 toremote(char *targ, int argc, char **argv) 355 { 356 int i, len; 357 char *bp, *host, *src, *suser, *thost, *tuser; 358 359 *targ++ = 0; 360 if (*targ == 0) 361 targ = "."; 362 363 if ((thost = strrchr(argv[argc - 1], '@'))) { 364 /* user@host */ 365 *thost++ = 0; 366 tuser = argv[argc - 1]; 367 if (*tuser == '\0') 368 tuser = NULL; 369 } else { 370 thost = argv[argc - 1]; 371 tuser = NULL; 372 } 373 374 for (i = 0; i < argc - 1; i++) { 375 src = colon(argv[i]); 376 if (src) { /* remote to remote */ 377 static char *ssh_options = 378 "-x -o'ClearAllForwardings yes'"; 379 *src++ = 0; 380 if (*src == 0) 381 src = "."; 382 host = strrchr(argv[i], '@'); 383 len = strlen(ssh_program) + strlen(argv[i]) + 384 strlen(src) + (tuser ? strlen(tuser) : 0) + 385 strlen(thost) + strlen(targ) + 386 strlen(ssh_options) + CMDNEEDS + 20; 387 bp = xmalloc(len); 388 if (host) { 389 *host++ = 0; 390 host = cleanhostname(host); 391 suser = argv[i]; 392 if (*suser == '\0') 393 suser = pwd->pw_name; 394 else if (!okname(suser)) { 395 xfree(bp); 396 continue; 397 } 398 if (tuser && !okname(tuser)) { 399 xfree(bp); 400 continue; 401 } 402 snprintf(bp, len, 403 "%s%s %s -n " 404 "-l %s %s %s %s '%s%s%s:%s'", 405 ssh_program, verbose_mode ? " -v" : "", 406 ssh_options, suser, host, cmd, src, 407 tuser ? tuser : "", tuser ? "@" : "", 408 thost, targ); 409 } else { 410 host = cleanhostname(argv[i]); 411 snprintf(bp, len, 412 "exec %s%s %s -n %s " 413 "%s %s '%s%s%s:%s'", 414 ssh_program, verbose_mode ? " -v" : "", 415 ssh_options, host, cmd, src, 416 tuser ? tuser : "", tuser ? "@" : "", 417 thost, targ); 418 } 419 if (verbose_mode) 420 fprintf(stderr, "Executing: %s\n", bp); 421 if (system(bp) != 0) 422 errs = 1; 423 (void) xfree(bp); 424 } else { /* local to remote */ 425 if (remin == -1) { 426 len = strlen(targ) + CMDNEEDS + 20; 427 bp = xmalloc(len); 428 (void) snprintf(bp, len, "%s -t %s", cmd, targ); 429 host = cleanhostname(thost); 430 if (do_cmd(host, tuser, bp, &remin, 431 &remout, argc) < 0) 432 exit(1); 433 if (response() < 0) 434 exit(1); 435 (void) xfree(bp); 436 } 437 source(1, argv + i); 438 } 439 } 440 } 441 442 void 443 tolocal(int argc, char **argv) 444 { 445 int i, len; 446 char *bp, *host, *src, *suser; 447 448 for (i = 0; i < argc - 1; i++) { 449 if (!(src = colon(argv[i]))) { /* Local to local. */ 450 len = strlen(_PATH_CP) + strlen(argv[i]) + 451 strlen(argv[argc - 1]) + 20; 452 bp = xmalloc(len); 453 (void) snprintf(bp, len, "exec %s%s%s %s %s", _PATH_CP, 454 iamrecursive ? " -r" : "", pflag ? " -p" : "", 455 argv[i], argv[argc - 1]); 456 if (verbose_mode) 457 fprintf(stderr, "Executing: %s\n", bp); 458 if (system(bp)) 459 ++errs; 460 (void) xfree(bp); 461 continue; 462 } 463 *src++ = 0; 464 if (*src == 0) 465 src = "."; 466 if ((host = strrchr(argv[i], '@')) == NULL) { 467 host = argv[i]; 468 suser = NULL; 469 } else { 470 *host++ = 0; 471 suser = argv[i]; 472 if (*suser == '\0') 473 suser = pwd->pw_name; 474 } 475 host = cleanhostname(host); 476 len = strlen(src) + CMDNEEDS + 20; 477 bp = xmalloc(len); 478 (void) snprintf(bp, len, "%s -f %s", cmd, src); 479 if (do_cmd(host, suser, bp, &remin, &remout, argc) < 0) { 480 (void) xfree(bp); 481 ++errs; 482 continue; 483 } 484 xfree(bp); 485 sink(1, argv + argc - 1); 486 (void) close(remin); 487 remin = remout = -1; 488 } 489 } 490 491 void 492 source(int argc, char **argv) 493 { 494 struct stat stb; 495 static BUF buffer; 496 BUF *bp; 497 off_t i, amt, result, statbytes; 498 int fd, haderr, indx; 499 char *last, *name, buf[2048]; 500 int len; 501 502 for (indx = 0; indx < argc; ++indx) { 503 name = argv[indx]; 504 statbytes = 0; 505 len = strlen(name); 506 while (len > 1 && name[len-1] == '/') 507 name[--len] = '\0'; 508 if (strchr(name, '\n') != NULL) { 509 run_err("%s: skipping, filename contains a newline", 510 name); 511 goto next; 512 } 513 if ((fd = open(name, O_RDONLY, 0)) < 0) 514 goto syserr; 515 if (fstat(fd, &stb) < 0) { 516 syserr: run_err("%s: %s", name, strerror(errno)); 517 goto next; 518 } 519 switch (stb.st_mode & S_IFMT) { 520 case S_IFREG: 521 break; 522 case S_IFDIR: 523 if (iamrecursive) { 524 rsource(name, &stb); 525 goto next; 526 } 527 /* FALLTHROUGH */ 528 default: 529 run_err("%s: not a regular file", name); 530 goto next; 531 } 532 if ((last = strrchr(name, '/')) == NULL) 533 last = name; 534 else 535 ++last; 536 curfile = last; 537 if (pflag) { 538 /* 539 * Make it compatible with possible future 540 * versions expecting microseconds. 541 */ 542 (void) snprintf(buf, sizeof buf, "T%lu 0 %lu 0\n", 543 (u_long) stb.st_mtime, 544 (u_long) stb.st_atime); 545 (void) atomicio(vwrite, remout, buf, strlen(buf)); 546 if (response() < 0) 547 goto next; 548 } 549 #define FILEMODEMASK (S_ISUID|S_ISGID|S_IRWXU|S_IRWXG|S_IRWXO) 550 snprintf(buf, sizeof buf, "C%04o %lld %s\n", 551 (u_int) (stb.st_mode & FILEMODEMASK), 552 (long long)stb.st_size, last); 553 if (verbose_mode) { 554 fprintf(stderr, "Sending file modes: %s", buf); 555 } 556 (void) atomicio(vwrite, remout, buf, strlen(buf)); 557 if (response() < 0) 558 goto next; 559 if ((bp = allocbuf(&buffer, fd, 2048)) == NULL) { 560 next: (void) close(fd); 561 continue; 562 } 563 if (showprogress) 564 start_progress_meter(curfile, stb.st_size, &statbytes); 565 /* Keep writing after an error so that we stay sync'd up. */ 566 for (haderr = i = 0; i < stb.st_size; i += bp->cnt) { 567 amt = bp->cnt; 568 if (i + amt > stb.st_size) 569 amt = stb.st_size - i; 570 if (!haderr) { 571 result = atomicio(read, fd, bp->buf, amt); 572 if (result != amt) 573 haderr = result >= 0 ? EIO : errno; 574 } 575 if (haderr) 576 (void) atomicio(vwrite, remout, bp->buf, amt); 577 else { 578 result = atomicio(vwrite, remout, bp->buf, amt); 579 if (result != amt) 580 haderr = result >= 0 ? EIO : errno; 581 statbytes += result; 582 } 583 if (limit_rate) 584 bwlimit(amt); 585 } 586 if (showprogress) 587 stop_progress_meter(); 588 589 if (close(fd) < 0 && !haderr) 590 haderr = errno; 591 if (!haderr) 592 (void) atomicio(vwrite, remout, "", 1); 593 else 594 run_err("%s: %s", name, strerror(haderr)); 595 (void) response(); 596 } 597 } 598 599 void 600 rsource(char *name, struct stat *statp) 601 { 602 DIR *dirp; 603 struct dirent *dp; 604 char *last, *vect[1], path[1100]; 605 606 if (!(dirp = opendir(name))) { 607 run_err("%s: %s", name, strerror(errno)); 608 return; 609 } 610 last = strrchr(name, '/'); 611 if (last == 0) 612 last = name; 613 else 614 last++; 615 if (pflag) { 616 (void) snprintf(path, sizeof(path), "T%lu 0 %lu 0\n", 617 (u_long) statp->st_mtime, 618 (u_long) statp->st_atime); 619 (void) atomicio(vwrite, remout, path, strlen(path)); 620 if (response() < 0) { 621 closedir(dirp); 622 return; 623 } 624 } 625 (void) snprintf(path, sizeof path, "D%04o %d %.1024s\n", 626 (u_int) (statp->st_mode & FILEMODEMASK), 0, last); 627 if (verbose_mode) 628 fprintf(stderr, "Entering directory: %s", path); 629 (void) atomicio(vwrite, remout, path, strlen(path)); 630 if (response() < 0) { 631 closedir(dirp); 632 return; 633 } 634 while ((dp = readdir(dirp)) != NULL) { 635 if (dp->d_ino == 0) 636 continue; 637 if (!strcmp(dp->d_name, ".") || !strcmp(dp->d_name, "..")) 638 continue; 639 if (strlen(name) + 1 + strlen(dp->d_name) >= sizeof(path) - 1) { 640 run_err("%s/%s: name too long", name, dp->d_name); 641 continue; 642 } 643 (void) snprintf(path, sizeof path, "%s/%s", name, dp->d_name); 644 vect[0] = path; 645 source(1, vect); 646 } 647 (void) closedir(dirp); 648 (void) atomicio(vwrite, remout, "E\n", 2); 649 (void) response(); 650 } 651 652 void 653 bwlimit(int amount) 654 { 655 static struct timeval bwstart, bwend; 656 static int lamt, thresh = 16384; 657 u_int64_t wait; 658 struct timespec ts, rm; 659 660 if (!timerisset(&bwstart)) { 661 gettimeofday(&bwstart, NULL); 662 return; 663 } 664 665 lamt += amount; 666 if (lamt < thresh) 667 return; 668 669 gettimeofday(&bwend, NULL); 670 timersub(&bwend, &bwstart, &bwend); 671 if (!timerisset(&bwend)) 672 return; 673 674 lamt *= 8; 675 wait = (double)1000000L * lamt / limit_rate; 676 677 bwstart.tv_sec = wait / 1000000L; 678 bwstart.tv_usec = wait % 1000000L; 679 680 if (timercmp(&bwstart, &bwend, >)) { 681 timersub(&bwstart, &bwend, &bwend); 682 683 /* Adjust the wait time */ 684 if (bwend.tv_sec) { 685 thresh /= 2; 686 if (thresh < 2048) 687 thresh = 2048; 688 } else if (bwend.tv_usec < 100) { 689 thresh *= 2; 690 if (thresh > 32768) 691 thresh = 32768; 692 } 693 694 TIMEVAL_TO_TIMESPEC(&bwend, &ts); 695 while (nanosleep(&ts, &rm) == -1) { 696 if (errno != EINTR) 697 break; 698 ts = rm; 699 } 700 } 701 702 lamt = 0; 703 gettimeofday(&bwstart, NULL); 704 } 705 706 void 707 sink(int argc, char **argv) 708 { 709 static BUF buffer; 710 struct stat stb; 711 enum { 712 YES, NO, DISPLAYED 713 } wrerr; 714 BUF *bp; 715 off_t i, j; 716 int amt, count, exists, first, mask, mode, ofd, omode; 717 off_t size, statbytes; 718 int setimes, targisdir, wrerrno = 0; 719 char ch, *cp, *np, *targ, *why, *vect[1], buf[2048]; 720 struct timeval tv[2]; 721 722 #define atime tv[0] 723 #define mtime tv[1] 724 #define SCREWUP(str) do { why = str; goto screwup; } while (0) 725 726 setimes = targisdir = 0; 727 mask = umask(0); 728 if (!pflag) 729 (void) umask(mask); 730 if (argc != 1) { 731 run_err("ambiguous target"); 732 exit(1); 733 } 734 targ = *argv; 735 if (targetshouldbedirectory) 736 verifydir(targ); 737 738 (void) atomicio(vwrite, remout, "", 1); 739 if (stat(targ, &stb) == 0 && S_ISDIR(stb.st_mode)) 740 targisdir = 1; 741 for (first = 1;; first = 0) { 742 cp = buf; 743 if (atomicio(read, remin, cp, 1) <= 0) 744 return; 745 if (*cp++ == '\n') 746 SCREWUP("unexpected <newline>"); 747 do { 748 if (atomicio(read, remin, &ch, sizeof(ch)) != sizeof(ch)) 749 SCREWUP("lost connection"); 750 *cp++ = ch; 751 } while (cp < &buf[sizeof(buf) - 1] && ch != '\n'); 752 *cp = 0; 753 754 if (buf[0] == '\01' || buf[0] == '\02') { 755 if (iamremote == 0) 756 (void) atomicio(vwrite, STDERR_FILENO, 757 buf + 1, strlen(buf + 1)); 758 if (buf[0] == '\02') 759 exit(1); 760 ++errs; 761 continue; 762 } 763 if (buf[0] == 'E') { 764 (void) atomicio(vwrite, remout, "", 1); 765 return; 766 } 767 if (ch == '\n') 768 *--cp = 0; 769 770 cp = buf; 771 if (*cp == 'T') { 772 setimes++; 773 cp++; 774 mtime.tv_sec = strtol(cp, &cp, 10); 775 if (!cp || *cp++ != ' ') 776 SCREWUP("mtime.sec not delimited"); 777 mtime.tv_usec = strtol(cp, &cp, 10); 778 if (!cp || *cp++ != ' ') 779 SCREWUP("mtime.usec not delimited"); 780 atime.tv_sec = strtol(cp, &cp, 10); 781 if (!cp || *cp++ != ' ') 782 SCREWUP("atime.sec not delimited"); 783 atime.tv_usec = strtol(cp, &cp, 10); 784 if (!cp || *cp++ != '\0') 785 SCREWUP("atime.usec not delimited"); 786 (void) atomicio(vwrite, remout, "", 1); 787 continue; 788 } 789 if (*cp != 'C' && *cp != 'D') { 790 /* 791 * Check for the case "rcp remote:foo\* local:bar". 792 * In this case, the line "No match." can be returned 793 * by the shell before the rcp command on the remote is 794 * executed so the ^Aerror_message convention isn't 795 * followed. 796 */ 797 if (first) { 798 run_err("%s", cp); 799 exit(1); 800 } 801 SCREWUP("expected control record"); 802 } 803 mode = 0; 804 for (++cp; cp < buf + 5; cp++) { 805 if (*cp < '0' || *cp > '7') 806 SCREWUP("bad mode"); 807 mode = (mode << 3) | (*cp - '0'); 808 } 809 if (*cp++ != ' ') 810 SCREWUP("mode not delimited"); 811 812 for (size = 0; isdigit(*cp);) 813 size = size * 10 + (*cp++ - '0'); 814 if (*cp++ != ' ') 815 SCREWUP("size not delimited"); 816 if (targisdir) { 817 static char *namebuf; 818 static int cursize; 819 size_t need; 820 821 need = strlen(targ) + strlen(cp) + 250; 822 if (need > cursize) { 823 if (namebuf) 824 xfree(namebuf); 825 namebuf = xmalloc(need); 826 cursize = need; 827 } 828 (void) snprintf(namebuf, need, "%s%s%s", targ, 829 strcmp(targ, "/") ? "/" : "", cp); 830 np = namebuf; 831 } else 832 np = targ; 833 curfile = cp; 834 exists = stat(np, &stb) == 0; 835 if (buf[0] == 'D') { 836 int mod_flag = pflag; 837 if (exists) { 838 if (!S_ISDIR(stb.st_mode)) { 839 errno = ENOTDIR; 840 goto bad; 841 } 842 if (pflag) 843 (void) chmod(np, mode); 844 } else { 845 /* Handle copying from a read-only 846 directory */ 847 mod_flag = 1; 848 if (mkdir(np, mode | S_IRWXU) < 0) 849 goto bad; 850 } 851 vect[0] = xstrdup(np); 852 sink(1, vect); 853 if (setimes) { 854 setimes = 0; 855 if (utimes(vect[0], tv) < 0) 856 run_err("%s: set times: %s", 857 vect[0], strerror(errno)); 858 } 859 if (mod_flag) 860 (void) chmod(vect[0], mode); 861 if (vect[0]) 862 xfree(vect[0]); 863 continue; 864 } 865 omode = mode; 866 mode |= S_IWRITE; 867 if ((ofd = open(np, O_WRONLY|O_CREAT, mode)) < 0) { 868 bad: run_err("%s: %s", np, strerror(errno)); 869 continue; 870 } 871 (void) atomicio(vwrite, remout, "", 1); 872 if ((bp = allocbuf(&buffer, ofd, 4096)) == NULL) { 873 (void) close(ofd); 874 continue; 875 } 876 cp = bp->buf; 877 wrerr = NO; 878 879 statbytes = 0; 880 if (showprogress) 881 start_progress_meter(curfile, size, &statbytes); 882 for (count = i = 0; i < size; i += 4096) { 883 amt = 4096; 884 if (i + amt > size) 885 amt = size - i; 886 count += amt; 887 do { 888 j = read(remin, cp, amt); 889 if (j == -1 && (errno == EINTR || 890 errno == EAGAIN)) { 891 continue; 892 } else if (j <= 0) { 893 run_err("%s", j ? strerror(errno) : 894 "dropped connection"); 895 exit(1); 896 } 897 amt -= j; 898 cp += j; 899 statbytes += j; 900 } while (amt > 0); 901 902 if (limit_rate) 903 bwlimit(4096); 904 905 if (count == bp->cnt) { 906 /* Keep reading so we stay sync'd up. */ 907 if (wrerr == NO) { 908 j = atomicio(vwrite, ofd, bp->buf, count); 909 if (j != count) { 910 wrerr = YES; 911 wrerrno = j >= 0 ? EIO : errno; 912 } 913 } 914 count = 0; 915 cp = bp->buf; 916 } 917 } 918 if (showprogress) 919 stop_progress_meter(); 920 if (count != 0 && wrerr == NO && 921 (j = atomicio(vwrite, ofd, bp->buf, count)) != count) { 922 wrerr = YES; 923 wrerrno = j >= 0 ? EIO : errno; 924 } 925 if (wrerr == NO && ftruncate(ofd, size) != 0) { 926 run_err("%s: truncate: %s", np, strerror(errno)); 927 wrerr = DISPLAYED; 928 } 929 if (pflag) { 930 if (exists || omode != mode) 931 if (fchmod(ofd, omode)) 932 run_err("%s: set mode: %s", 933 np, strerror(errno)); 934 } else { 935 if (!exists && omode != mode) 936 if (fchmod(ofd, omode & ~mask)) 937 run_err("%s: set mode: %s", 938 np, strerror(errno)); 939 } 940 if (close(ofd) == -1) { 941 wrerr = YES; 942 wrerrno = errno; 943 } 944 (void) response(); 945 if (setimes && wrerr == NO) { 946 setimes = 0; 947 if (utimes(np, tv) < 0) { 948 run_err("%s: set times: %s", 949 np, strerror(errno)); 950 wrerr = DISPLAYED; 951 } 952 } 953 switch (wrerr) { 954 case YES: 955 run_err("%s: %s", np, strerror(wrerrno)); 956 break; 957 case NO: 958 (void) atomicio(vwrite, remout, "", 1); 959 break; 960 case DISPLAYED: 961 break; 962 } 963 } 964 screwup: 965 run_err("protocol error: %s", why); 966 exit(1); 967 } 968 969 int 970 response(void) 971 { 972 char ch, *cp, resp, rbuf[2048]; 973 974 if (atomicio(read, remin, &resp, sizeof(resp)) != sizeof(resp)) 975 lostconn(0); 976 977 cp = rbuf; 978 switch (resp) { 979 case 0: /* ok */ 980 return (0); 981 default: 982 *cp++ = resp; 983 /* FALLTHROUGH */ 984 case 1: /* error, followed by error msg */ 985 case 2: /* fatal error, "" */ 986 do { 987 if (atomicio(read, remin, &ch, sizeof(ch)) != sizeof(ch)) 988 lostconn(0); 989 *cp++ = ch; 990 } while (cp < &rbuf[sizeof(rbuf) - 1] && ch != '\n'); 991 992 if (!iamremote) 993 (void) atomicio(vwrite, STDERR_FILENO, rbuf, cp - rbuf); 994 ++errs; 995 if (resp == 1) 996 return (-1); 997 exit(1); 998 } 999 /* NOTREACHED */ 1000 } 1001 1002 void 1003 usage(void) 1004 { 1005 (void) fprintf(stderr, 1006 "usage: scp [-1246BCpqrv] [-c cipher] [-F ssh_config] [-i identity_file]\n" 1007 " [-l limit] [-o ssh_option] [-P port] [-S program]\n" 1008 " [[user@]host1:]file1 [...] [[user@]host2:]file2\n"); 1009 exit(1); 1010 } 1011 1012 void 1013 run_err(const char *fmt,...) 1014 { 1015 static FILE *fp; 1016 va_list ap; 1017 1018 ++errs; 1019 if (fp == NULL && !(fp = fdopen(remout, "w"))) 1020 return; 1021 (void) fprintf(fp, "%c", 0x01); 1022 (void) fprintf(fp, "scp: "); 1023 va_start(ap, fmt); 1024 (void) vfprintf(fp, fmt, ap); 1025 va_end(ap); 1026 (void) fprintf(fp, "\n"); 1027 (void) fflush(fp); 1028 1029 if (!iamremote) { 1030 va_start(ap, fmt); 1031 vfprintf(stderr, fmt, ap); 1032 va_end(ap); 1033 fprintf(stderr, "\n"); 1034 } 1035 } 1036 1037 void 1038 verifydir(char *cp) 1039 { 1040 struct stat stb; 1041 1042 if (!stat(cp, &stb)) { 1043 if (S_ISDIR(stb.st_mode)) 1044 return; 1045 errno = ENOTDIR; 1046 } 1047 run_err("%s: %s", cp, strerror(errno)); 1048 exit(1); 1049 } 1050 1051 int 1052 okname(char *cp0) 1053 { 1054 int c; 1055 char *cp; 1056 1057 cp = cp0; 1058 do { 1059 c = (int)*cp; 1060 if (c & 0200) 1061 goto bad; 1062 if (!isalpha(c) && !isdigit(c)) { 1063 switch (c) { 1064 case '\'': 1065 case '"': 1066 case '`': 1067 case ' ': 1068 case '#': 1069 goto bad; 1070 default: 1071 break; 1072 } 1073 } 1074 } while (*++cp); 1075 return (1); 1076 1077 bad: fprintf(stderr, "%s: invalid user name\n", cp0); 1078 return (0); 1079 } 1080 1081 BUF * 1082 allocbuf(BUF *bp, int fd, int blksize) 1083 { 1084 size_t size; 1085 struct stat stb; 1086 1087 if (fstat(fd, &stb) < 0) { 1088 run_err("fstat: %s", strerror(errno)); 1089 return (0); 1090 } 1091 size = roundup(stb.st_blksize, blksize); 1092 if (size == 0) 1093 size = blksize; 1094 if (bp->cnt >= size) 1095 return (bp); 1096 if (bp->buf == NULL) 1097 bp->buf = xmalloc(size); 1098 else 1099 bp->buf = xrealloc(bp->buf, size); 1100 memset(bp->buf, 0, size); 1101 bp->cnt = size; 1102 return (bp); 1103 } 1104 1105 void 1106 lostconn(int signo) 1107 { 1108 if (!iamremote) 1109 write(STDERR_FILENO, "lost connection\n", 16); 1110 if (signo) 1111 _exit(1); 1112 else 1113 exit(1); 1114 } 1115