Merge branch 'vendor/TNFTP'
[dragonfly.git] / contrib / tnftp / fetch.c
CommitLineData
20e59a13 1/* $NetBSD: fetch.c,v 1.193 2010/03/05 07:41:10 lukem Exp $ */
eedc536d
PA
2
3/*-
20e59a13 4 * Copyright (c) 1997-2009 The NetBSD Foundation, Inc.
eedc536d
PA
5 * All rights reserved.
6 *
7 * This code is derived from software contributed to The NetBSD Foundation
8 * by Luke Mewburn.
9 *
10 * This code is derived from software contributed to The NetBSD Foundation
11 * by Scott Aaron Bamford.
12 *
13 * Redistribution and use in source and binary forms, with or without
14 * modification, are permitted provided that the following conditions
15 * are met:
16 * 1. Redistributions of source code must retain the above copyright
17 * notice, this list of conditions and the following disclaimer.
18 * 2. Redistributions in binary form must reproduce the above copyright
19 * notice, this list of conditions and the following disclaimer in the
20 * documentation and/or other materials provided with the distribution.
eedc536d
PA
21 *
22 * THIS SOFTWARE IS PROVIDED BY THE NETBSD FOUNDATION, INC. AND CONTRIBUTORS
23 * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED
24 * TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
25 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE FOUNDATION OR CONTRIBUTORS
26 * BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
27 * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
28 * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
29 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
30 * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
31 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
32 * POSSIBILITY OF SUCH DAMAGE.
33 */
34
35#include <sys/cdefs.h>
36#ifndef lint
20e59a13 37__RCSID("$NetBSD: fetch.c,v 1.193 2010/03/05 07:41:10 lukem Exp $");
eedc536d
PA
38#endif /* not lint */
39
40/*
41 * FTP User Program -- Command line file retrieval
42 */
43
44#include <sys/types.h>
45#include <sys/param.h>
46#include <sys/socket.h>
47#include <sys/stat.h>
48#include <sys/time.h>
49
50#include <netinet/in.h>
51
52#include <arpa/ftp.h>
53#include <arpa/inet.h>
54
55#include <ctype.h>
56#include <err.h>
57#include <errno.h>
58#include <netdb.h>
59#include <fcntl.h>
60#include <stdio.h>
3aa3fd83 61#include <libutil.h>
eedc536d
PA
62#include <stdlib.h>
63#include <string.h>
64#include <unistd.h>
65#include <time.h>
66
67#include "ftp_var.h"
68#include "version.h"
69
70typedef enum {
71 UNKNOWN_URL_T=-1,
72 HTTP_URL_T,
73 FTP_URL_T,
74 FILE_URL_T,
75 CLASSIC_URL_T
76} url_t;
77
78void aborthttp(int);
79#ifndef NO_AUTH
80static int auth_url(const char *, char **, const char *, const char *);
81static void base64_encode(const unsigned char *, size_t, unsigned char *);
82#endif
83static int go_fetch(const char *);
84static int fetch_ftp(const char *);
85static int fetch_url(const char *, const char *, char *, char *);
86static const char *match_token(const char **, const char *);
87static int parse_url(const char *, const char *, url_t *, char **,
88 char **, char **, char **, in_port_t *, char **);
89static void url_decode(char *);
90
91static int redirect_loop;
92
93
94#define STRNEQUAL(a,b) (strncasecmp((a), (b), sizeof((b))-1) == 0)
95#define ISLWS(x) ((x)=='\r' || (x)=='\n' || (x)==' ' || (x)=='\t')
96#define SKIPLWS(x) do { while (ISLWS((*x))) x++; } while (0)
97
98
99#define ABOUT_URL "about:" /* propaganda */
100#define FILE_URL "file://" /* file URL prefix */
101#define FTP_URL "ftp://" /* ftp URL prefix */
102#define HTTP_URL "http://" /* http URL prefix */
103
104
105/*
106 * Determine if token is the next word in buf (case insensitive).
107 * If so, advance buf past the token and any trailing LWS, and
108 * return a pointer to the token (in buf). Otherwise, return NULL.
0511850f 109 * token may be preceded by LWS.
eedc536d
PA
110 * token must be followed by LWS or NUL. (I.e, don't partial match).
111 */
112static const char *
113match_token(const char **buf, const char *token)
114{
115 const char *p, *orig;
116 size_t tlen;
117
118 tlen = strlen(token);
119 p = *buf;
120 SKIPLWS(p);
121 orig = p;
122 if (strncasecmp(p, token, tlen) != 0)
123 return NULL;
124 p += tlen;
125 if (*p != '\0' && !ISLWS(*p))
126 return NULL;
127 SKIPLWS(p);
128 orig = *buf;
129 *buf = p;
130 return orig;
131}
132
133#ifndef NO_AUTH
134/*
135 * Generate authorization response based on given authentication challenge.
136 * Returns -1 if an error occurred, otherwise 0.
137 * Sets response to a malloc(3)ed string; caller should free.
138 */
139static int
140auth_url(const char *challenge, char **response, const char *guser,
141 const char *gpass)
142{
143 const char *cp, *scheme, *errormsg;
144 char *ep, *clear, *realm;
20e59a13
PA
145 char uuser[BUFSIZ], *gotpass;
146 const char *upass;
eedc536d
PA
147 int rval;
148 size_t len, clen, rlen;
149
150 *response = NULL;
151 clear = realm = NULL;
152 rval = -1;
153 cp = challenge;
154 scheme = "Basic"; /* only support Basic authentication */
20e59a13 155 gotpass = NULL;
eedc536d
PA
156
157 DPRINTF("auth_url: challenge `%s'\n", challenge);
158
159 if (! match_token(&cp, scheme)) {
0511850f 160 warnx("Unsupported authentication challenge `%s'",
eedc536d
PA
161 challenge);
162 goto cleanup_auth_url;
163 }
164
165#define REALM "realm=\""
166 if (STRNEQUAL(cp, REALM))
167 cp += sizeof(REALM) - 1;
168 else {
0511850f 169 warnx("Unsupported authentication challenge `%s'",
eedc536d
PA
170 challenge);
171 goto cleanup_auth_url;
172 }
173/* XXX: need to improve quoted-string parsing to support \ quoting, etc. */
174 if ((ep = strchr(cp, '\"')) != NULL) {
20e59a13 175 len = ep - cp;
eedc536d
PA
176 realm = (char *)ftp_malloc(len + 1);
177 (void)strlcpy(realm, cp, len + 1);
178 } else {
0511850f 179 warnx("Unsupported authentication challenge `%s'",
eedc536d
PA
180 challenge);
181 goto cleanup_auth_url;
182 }
183
184 fprintf(ttyout, "Username for `%s': ", realm);
185 if (guser != NULL) {
20e59a13
PA
186 (void)strlcpy(uuser, guser, sizeof(uuser));
187 fprintf(ttyout, "%s\n", uuser);
eedc536d
PA
188 } else {
189 (void)fflush(ttyout);
20e59a13 190 if (get_line(stdin, uuser, sizeof(uuser), &errormsg) < 0) {
eedc536d
PA
191 warnx("%s; can't authenticate", errormsg);
192 goto cleanup_auth_url;
193 }
194 }
195 if (gpass != NULL)
20e59a13 196 upass = gpass;
0511850f 197 else {
20e59a13
PA
198 gotpass = getpass("Password: ");
199 if (gotpass == NULL) {
0511850f
PA
200 warnx("Can't read password");
201 goto cleanup_auth_url;
202 }
20e59a13 203 upass = gotpass;
0511850f 204 }
eedc536d 205
20e59a13 206 clen = strlen(uuser) + strlen(upass) + 2; /* user + ":" + pass + "\0" */
eedc536d 207 clear = (char *)ftp_malloc(clen);
20e59a13 208 (void)strlcpy(clear, uuser, clen);
eedc536d 209 (void)strlcat(clear, ":", clen);
20e59a13
PA
210 (void)strlcat(clear, upass, clen);
211 if (gotpass)
212 memset(gotpass, 0, strlen(gotpass));
eedc536d
PA
213
214 /* scheme + " " + enc + "\0" */
215 rlen = strlen(scheme) + 1 + (clen + 2) * 4 / 3 + 1;
216 *response = (char *)ftp_malloc(rlen);
217 (void)strlcpy(*response, scheme, rlen);
218 len = strlcat(*response, " ", rlen);
219 /* use `clen - 1' to not encode the trailing NUL */
220 base64_encode((unsigned char *)clear, clen - 1,
221 (unsigned char *)*response + len);
222 memset(clear, 0, clen);
223 rval = 0;
224
225 cleanup_auth_url:
226 FREEPTR(clear);
227 FREEPTR(realm);
228 return (rval);
229}
230
231/*
232 * Encode len bytes starting at clear using base64 encoding into encoded,
233 * which should be at least ((len + 2) * 4 / 3 + 1) in size.
234 */
235static void
236base64_encode(const unsigned char *clear, size_t len, unsigned char *encoded)
237{
238 static const unsigned char enc[] =
239 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/";
240 unsigned char *cp;
20e59a13 241 size_t i;
eedc536d
PA
242
243 cp = encoded;
244 for (i = 0; i < len; i += 3) {
245 *(cp++) = enc[((clear[i + 0] >> 2))];
246 *(cp++) = enc[((clear[i + 0] << 4) & 0x30)
247 | ((clear[i + 1] >> 4) & 0x0f)];
248 *(cp++) = enc[((clear[i + 1] << 2) & 0x3c)
249 | ((clear[i + 2] >> 6) & 0x03)];
250 *(cp++) = enc[((clear[i + 2] ) & 0x3f)];
251 }
252 *cp = '\0';
253 while (i-- > len)
254 *(--cp) = '=';
255}
256#endif
257
258/*
259 * Decode %xx escapes in given string, `in-place'.
260 */
261static void
262url_decode(char *url)
263{
264 unsigned char *p, *q;
265
266 if (EMPTYSTRING(url))
267 return;
268 p = q = (unsigned char *)url;
269
270#define HEXTOINT(x) (x - (isdigit(x) ? '0' : (islower(x) ? 'a' : 'A') - 10))
271 while (*p) {
272 if (p[0] == '%'
273 && p[1] && isxdigit((unsigned char)p[1])
274 && p[2] && isxdigit((unsigned char)p[2])) {
275 *q++ = HEXTOINT(p[1]) * 16 + HEXTOINT(p[2]);
276 p+=3;
277 } else
278 *q++ = *p++;
279 }
280 *q = '\0';
281}
282
283
284/*
20e59a13 285 * Parse URL of form (per RFC 3986):
eedc536d
PA
286 * <type>://[<user>[:<password>]@]<host>[:<port>][/<path>]
287 * Returns -1 if a parse error occurred, otherwise 0.
288 * It's the caller's responsibility to url_decode() the returned
289 * user, pass and path.
290 *
291 * Sets type to url_t, each of the given char ** pointers to a
292 * malloc(3)ed strings of the relevant section, and port to
293 * the number given, or ftpport if ftp://, or httpport if http://.
294 *
20e59a13 295 * XXX: this is not totally RFC 3986 compliant; <path> will have the
eedc536d 296 * leading `/' unless it's an ftp:// URL, as this makes things easier
c106ca54 297 * for file:// and http:// URLs. ftp:// URLs have the `/' between the
eedc536d
PA
298 * host and the URL-path removed, but any additional leading slashes
299 * in the URL-path are retained (because they imply that we should
300 * later do "CWD" with a null argument).
301 *
302 * Examples:
303 * input URL output path
304 * --------- -----------
c106ca54
PA
305 * "http://host" "/"
306 * "http://host/" "/"
307 * "http://host/path" "/path"
eedc536d 308 * "file://host/dir/file" "dir/file"
c106ca54 309 * "ftp://host" ""
eedc536d 310 * "ftp://host/" ""
c106ca54
PA
311 * "ftp://host//" "/"
312 * "ftp://host/dir/file" "dir/file"
eedc536d
PA
313 * "ftp://host//dir/file" "/dir/file"
314 */
315static int
20e59a13
PA
316parse_url(const char *url, const char *desc, url_t *utype,
317 char **uuser, char **pass, char **host, char **port,
eedc536d
PA
318 in_port_t *portnum, char **path)
319{
20e59a13
PA
320 const char *origurl, *tport;
321 char *cp, *ep, *thost;
eedc536d
PA
322 size_t len;
323
20e59a13 324 if (url == NULL || desc == NULL || utype == NULL || uuser == NULL
eedc536d
PA
325 || pass == NULL || host == NULL || port == NULL || portnum == NULL
326 || path == NULL)
327 errx(1, "parse_url: invoked with NULL argument!");
3b706bf0 328 DPRINTF("parse_url: %s `%s'\n", desc, url);
eedc536d
PA
329
330 origurl = url;
20e59a13
PA
331 *utype = UNKNOWN_URL_T;
332 *uuser = *pass = *host = *port = *path = NULL;
eedc536d
PA
333 *portnum = 0;
334 tport = NULL;
335
336 if (STRNEQUAL(url, HTTP_URL)) {
337 url += sizeof(HTTP_URL) - 1;
20e59a13 338 *utype = HTTP_URL_T;
eedc536d
PA
339 *portnum = HTTP_PORT;
340 tport = httpport;
341 } else if (STRNEQUAL(url, FTP_URL)) {
342 url += sizeof(FTP_URL) - 1;
20e59a13 343 *utype = FTP_URL_T;
eedc536d
PA
344 *portnum = FTP_PORT;
345 tport = ftpport;
346 } else if (STRNEQUAL(url, FILE_URL)) {
347 url += sizeof(FILE_URL) - 1;
20e59a13 348 *utype = FILE_URL_T;
eedc536d
PA
349 } else {
350 warnx("Invalid %s `%s'", desc, url);
351 cleanup_parse_url:
20e59a13 352 FREEPTR(*uuser);
eedc536d
PA
353 if (*pass != NULL)
354 memset(*pass, 0, strlen(*pass));
355 FREEPTR(*pass);
356 FREEPTR(*host);
357 FREEPTR(*port);
358 FREEPTR(*path);
359 return (-1);
360 }
361
362 if (*url == '\0')
363 return (0);
364
365 /* find [user[:pass]@]host[:port] */
366 ep = strchr(url, '/');
367 if (ep == NULL)
368 thost = ftp_strdup(url);
369 else {
370 len = ep - url;
371 thost = (char *)ftp_malloc(len + 1);
372 (void)strlcpy(thost, url, len + 1);
20e59a13 373 if (*utype == FTP_URL_T) /* skip first / for ftp URLs */
eedc536d
PA
374 ep++;
375 *path = ftp_strdup(ep);
376 }
377
378 cp = strchr(thost, '@'); /* look for user[:pass]@ in URLs */
379 if (cp != NULL) {
20e59a13 380 if (*utype == FTP_URL_T)
eedc536d 381 anonftp = 0; /* disable anonftp */
20e59a13 382 *uuser = thost;
eedc536d
PA
383 *cp = '\0';
384 thost = ftp_strdup(cp + 1);
20e59a13 385 cp = strchr(*uuser, ':');
eedc536d
PA
386 if (cp != NULL) {
387 *cp = '\0';
388 *pass = ftp_strdup(cp + 1);
389 }
20e59a13 390 url_decode(*uuser);
eedc536d
PA
391 if (*pass)
392 url_decode(*pass);
393 }
394
395#ifdef INET6
396 /*
397 * Check if thost is an encoded IPv6 address, as per
20e59a13 398 * RFC 3986:
eedc536d
PA
399 * `[' ipv6-address ']'
400 */
401 if (*thost == '[') {
402 cp = thost + 1;
403 if ((ep = strchr(cp, ']')) == NULL ||
404 (ep[1] != '\0' && ep[1] != ':')) {
405 warnx("Invalid address `%s' in %s `%s'",
406 thost, desc, origurl);
407 goto cleanup_parse_url;
408 }
409 len = ep - cp; /* change `[xyz]' -> `xyz' */
410 memmove(thost, thost + 1, len);
411 thost[len] = '\0';
412 if (! isipv6addr(thost)) {
413 warnx("Invalid IPv6 address `%s' in %s `%s'",
414 thost, desc, origurl);
415 goto cleanup_parse_url;
416 }
417 cp = ep + 1;
418 if (*cp == ':')
419 cp++;
420 else
421 cp = NULL;
422 } else
423#endif /* INET6 */
c106ca54 424 if ((cp = strchr(thost, ':')) != NULL)
fa70ef36 425 *cp++ = '\0';
eedc536d
PA
426 *host = thost;
427
428 /* look for [:port] */
429 if (cp != NULL) {
fa70ef36 430 unsigned long nport;
eedc536d 431
fa70ef36
PA
432 nport = strtoul(cp, &ep, 10);
433 if (*cp == '\0' || *ep != '\0' ||
434 nport < 1 || nport > MAX_IN_PORT_T) {
eedc536d
PA
435 warnx("Unknown port `%s' in %s `%s'",
436 cp, desc, origurl);
437 goto cleanup_parse_url;
438 }
439 *portnum = nport;
440 tport = cp;
441 }
442
443 if (tport != NULL)
444 *port = ftp_strdup(tport);
c106ca54
PA
445 if (*path == NULL) {
446 const char *emptypath = "/";
20e59a13 447 if (*utype == FTP_URL_T) /* skip first / for ftp URLs */
c106ca54
PA
448 emptypath++;
449 *path = ftp_strdup(emptypath);
450 }
eedc536d
PA
451
452 DPRINTF("parse_url: user `%s' pass `%s' host %s port %s(%d) "
453 "path `%s'\n",
20e59a13 454 STRorNULL(*uuser), STRorNULL(*pass),
3b706bf0
PA
455 STRorNULL(*host), STRorNULL(*port),
456 *portnum ? *portnum : -1, STRorNULL(*path));
eedc536d
PA
457
458 return (0);
459}
460
461sigjmp_buf httpabort;
462
463/*
464 * Retrieve URL, via a proxy if necessary, using HTTP.
465 * If proxyenv is set, use that for the proxy, otherwise try ftp_proxy or
466 * http_proxy as appropriate.
467 * Supports HTTP redirects.
468 * Returns 1 on failure, 0 on completed xfer, -1 if ftp connection
469 * is still open (e.g, ftp xfer with trailing /)
470 */
471static int
472fetch_url(const char *url, const char *proxyenv, char *proxyauth, char *wwwauth)
473{
474 struct addrinfo hints, *res, *res0 = NULL;
475 int error;
0511850f
PA
476 sigfunc volatile oldintr;
477 sigfunc volatile oldintp;
478 int volatile s;
eedc536d 479 struct stat sb;
0511850f
PA
480 int volatile ischunked;
481 int volatile isproxy;
482 int volatile rval;
483 int volatile hcode;
20e59a13
PA
484 int len;
485 size_t flen;
eedc536d
PA
486 static size_t bufsize;
487 static char *xferbuf;
488 const char *cp, *token;
0511850f 489 char *ep;
c106ca54
PA
490 char buf[FTPBUFLEN];
491 const char *errormsg;
0511850f
PA
492 char *volatile savefile;
493 char *volatile auth;
494 char *volatile location;
495 char *volatile message;
20e59a13 496 char *uuser, *pass, *host, *port, *path;
0511850f 497 char *volatile decodedpath;
eedc536d
PA
498 char *puser, *ppass, *useragent;
499 off_t hashbytes, rangestart, rangeend, entitylen;
0511850f
PA
500 int (*volatile closefunc)(FILE *);
501 FILE *volatile fin;
502 FILE *volatile fout;
eedc536d
PA
503 time_t mtime;
504 url_t urltype;
505 in_port_t portnum;
506
3b706bf0
PA
507 DPRINTF("fetch_url: `%s' proxyenv `%s'\n", url, STRorNULL(proxyenv));
508
eedc536d
PA
509 oldintr = oldintp = NULL;
510 closefunc = NULL;
511 fin = fout = NULL;
512 s = -1;
c106ca54 513 savefile = NULL;
eedc536d
PA
514 auth = location = message = NULL;
515 ischunked = isproxy = hcode = 0;
516 rval = 1;
20e59a13 517 uuser = pass = host = path = decodedpath = puser = ppass = NULL;
eedc536d 518
20e59a13 519 if (parse_url(url, "URL", &urltype, &uuser, &pass, &host, &port,
eedc536d
PA
520 &portnum, &path) == -1)
521 goto cleanup_fetch_url;
522
523 if (urltype == FILE_URL_T && ! EMPTYSTRING(host)
524 && strcasecmp(host, "localhost") != 0) {
525 warnx("No support for non local file URL `%s'", url);
526 goto cleanup_fetch_url;
527 }
528
529 if (EMPTYSTRING(path)) {
530 if (urltype == FTP_URL_T) {
531 rval = fetch_ftp(url);
532 goto cleanup_fetch_url;
533 }
534 if (urltype != HTTP_URL_T || outfile == NULL) {
535 warnx("Invalid URL (no file after host) `%s'", url);
536 goto cleanup_fetch_url;
537 }
538 }
539
540 decodedpath = ftp_strdup(path);
541 url_decode(decodedpath);
542
543 if (outfile)
544 savefile = ftp_strdup(outfile);
545 else {
546 cp = strrchr(decodedpath, '/'); /* find savefile */
547 if (cp != NULL)
548 savefile = ftp_strdup(cp + 1);
549 else
550 savefile = ftp_strdup(decodedpath);
551 }
3b706bf0 552 DPRINTF("fetch_url: savefile `%s'\n", savefile);
eedc536d
PA
553 if (EMPTYSTRING(savefile)) {
554 if (urltype == FTP_URL_T) {
555 rval = fetch_ftp(url);
556 goto cleanup_fetch_url;
557 }
0511850f 558 warnx("No file after directory (you must specify an "
eedc536d
PA
559 "output file) `%s'", url);
560 goto cleanup_fetch_url;
eedc536d
PA
561 }
562
563 restart_point = 0;
564 filesize = -1;
565 rangestart = rangeend = entitylen = -1;
566 mtime = -1;
567 if (restartautofetch) {
568 if (strcmp(savefile, "-") != 0 && *savefile != '|' &&
569 stat(savefile, &sb) == 0)
570 restart_point = sb.st_size;
571 }
572 if (urltype == FILE_URL_T) { /* file:// URLs */
573 direction = "copied";
574 fin = fopen(decodedpath, "r");
575 if (fin == NULL) {
0511850f 576 warn("Can't open `%s'", decodedpath);
eedc536d
PA
577 goto cleanup_fetch_url;
578 }
579 if (fstat(fileno(fin), &sb) == 0) {
580 mtime = sb.st_mtime;
581 filesize = sb.st_size;
582 }
583 if (restart_point) {
584 if (lseek(fileno(fin), restart_point, SEEK_SET) < 0) {
0511850f 585 warn("Can't seek to restart `%s'",
eedc536d
PA
586 decodedpath);
587 goto cleanup_fetch_url;
588 }
589 }
590 if (verbose) {
591 fprintf(ttyout, "Copying %s", decodedpath);
592 if (restart_point)
593 fprintf(ttyout, " (restarting at " LLF ")",
594 (LLT)restart_point);
595 fputs("\n", ttyout);
596 }
597 } else { /* ftp:// or http:// URLs */
20e59a13 598 const char *leading;
eedc536d
PA
599 int hasleading;
600
601 if (proxyenv == NULL) {
602 if (urltype == HTTP_URL_T)
603 proxyenv = getoptionvalue("http_proxy");
604 else if (urltype == FTP_URL_T)
605 proxyenv = getoptionvalue("ftp_proxy");
606 }
607 direction = "retrieved";
608 if (! EMPTYSTRING(proxyenv)) { /* use proxy */
609 url_t purltype;
610 char *phost, *ppath;
611 char *pport, *no_proxy;
fa70ef36 612 in_port_t pportnum;
eedc536d
PA
613
614 isproxy = 1;
615
616 /* check URL against list of no_proxied sites */
617 no_proxy = getoptionvalue("no_proxy");
618 if (! EMPTYSTRING(no_proxy)) {
619 char *np, *np_copy, *np_iter;
fa70ef36 620 unsigned long np_port;
eedc536d
PA
621 size_t hlen, plen;
622
623 np_iter = np_copy = ftp_strdup(no_proxy);
624 hlen = strlen(host);
625 while ((cp = strsep(&np_iter, " ,")) != NULL) {
626 if (*cp == '\0')
627 continue;
628 if ((np = strrchr(cp, ':')) != NULL) {
fa70ef36
PA
629 *np++ = '\0';
630 np_port = strtoul(np, &ep, 10);
631 if (*np == '\0' || *ep != '\0')
eedc536d
PA
632 continue;
633 if (np_port != portnum)
634 continue;
635 }
636 plen = strlen(cp);
637 if (hlen < plen)
638 continue;
639 if (strncasecmp(host + hlen - plen,
640 cp, plen) == 0) {
641 isproxy = 0;
642 break;
643 }
644 }
645 FREEPTR(np_copy);
646 if (isproxy == 0 && urltype == FTP_URL_T) {
647 rval = fetch_ftp(url);
648 goto cleanup_fetch_url;
649 }
650 }
651
652 if (isproxy) {
c106ca54
PA
653 if (restart_point) {
654 warnx("Can't restart via proxy URL `%s'",
655 proxyenv);
656 goto cleanup_fetch_url;
657 }
eedc536d 658 if (parse_url(proxyenv, "proxy URL", &purltype,
fa70ef36 659 &puser, &ppass, &phost, &pport, &pportnum,
eedc536d
PA
660 &ppath) == -1)
661 goto cleanup_fetch_url;
662
663 if ((purltype != HTTP_URL_T
664 && purltype != FTP_URL_T) ||
665 EMPTYSTRING(phost) ||
666 (! EMPTYSTRING(ppath)
667 && strcmp(ppath, "/") != 0)) {
668 warnx("Malformed proxy URL `%s'",
669 proxyenv);
670 FREEPTR(phost);
671 FREEPTR(pport);
672 FREEPTR(ppath);
673 goto cleanup_fetch_url;
674 }
675 if (isipv6addr(host) &&
676 strchr(host, '%') != NULL) {
677 warnx(
678"Scoped address notation `%s' disallowed via web proxy",
679 host);
680 FREEPTR(phost);
681 FREEPTR(pport);
682 FREEPTR(ppath);
683 goto cleanup_fetch_url;
684 }
685
686 FREEPTR(host);
687 host = phost;
688 FREEPTR(port);
689 port = pport;
690 FREEPTR(path);
691 path = ftp_strdup(url);
692 FREEPTR(ppath);
693 }
694 } /* ! EMPTYSTRING(proxyenv) */
695
696 memset(&hints, 0, sizeof(hints));
697 hints.ai_flags = 0;
698 hints.ai_family = family;
699 hints.ai_socktype = SOCK_STREAM;
700 hints.ai_protocol = 0;
fa70ef36 701 error = getaddrinfo(host, port, &hints, &res0);
eedc536d 702 if (error) {
fa70ef36 703 warnx("Can't lookup `%s:%s': %s", host, port,
0511850f
PA
704 (error == EAI_SYSTEM) ? strerror(errno)
705 : gai_strerror(error));
eedc536d
PA
706 goto cleanup_fetch_url;
707 }
708 if (res0->ai_canonname)
709 host = res0->ai_canonname;
710
711 s = -1;
712 for (res = res0; res; res = res->ai_next) {
fa70ef36
PA
713 char hname[NI_MAXHOST], sname[NI_MAXSERV];
714
eedc536d
PA
715 ai_unmapped(res);
716 if (getnameinfo(res->ai_addr, res->ai_addrlen,
fa70ef36
PA
717 hname, sizeof(hname), sname, sizeof(sname),
718 NI_NUMERICHOST | NI_NUMERICSERV) != 0) {
719 strlcpy(hname, "?", sizeof(hname));
720 strlcpy(sname, "?", sizeof(sname));
721 }
eedc536d
PA
722
723 if (verbose && res0->ai_next) {
fa70ef36
PA
724 fprintf(ttyout, "Trying %s:%s ...\n",
725 hname, sname);
eedc536d
PA
726 }
727
eedc536d
PA
728 s = socket(res->ai_family, SOCK_STREAM,
729 res->ai_protocol);
730 if (s < 0) {
0511850f 731 warn(
fa70ef36
PA
732 "Can't create socket for connection to "
733 "`%s:%s'", hname, sname);
eedc536d
PA
734 continue;
735 }
736
737 if (ftp_connect(s, res->ai_addr, res->ai_addrlen) < 0) {
eedc536d
PA
738 close(s);
739 s = -1;
740 continue;
741 }
742
743 /* success */
744 break;
745 }
746
747 if (s < 0) {
fa70ef36 748 warnx("Can't connect to `%s:%s'", host, port);
eedc536d
PA
749 goto cleanup_fetch_url;
750 }
751
752 fin = fdopen(s, "r+");
753 /*
754 * Construct and send the request.
755 */
756 if (verbose)
757 fprintf(ttyout, "Requesting %s\n", url);
758 leading = " (";
759 hasleading = 0;
760 if (isproxy) {
761 if (verbose) {
762 fprintf(ttyout, "%svia %s:%s", leading,
763 host, port);
764 leading = ", ";
765 hasleading++;
766 }
767 fprintf(fin, "GET %s HTTP/1.0\r\n", path);
768 if (flushcache)
769 fprintf(fin, "Pragma: no-cache\r\n");
770 } else {
771 fprintf(fin, "GET %s HTTP/1.1\r\n", path);
772 if (strchr(host, ':')) {
773 char *h, *p;
774
775 /*
776 * strip off IPv6 scope identifier, since it is
777 * local to the node
778 */
779 h = ftp_strdup(host);
780 if (isipv6addr(h) &&
781 (p = strchr(h, '%')) != NULL) {
782 *p = '\0';
783 }
784 fprintf(fin, "Host: [%s]", h);
785 free(h);
786 } else
787 fprintf(fin, "Host: %s", host);
788 if (portnum != HTTP_PORT)
789 fprintf(fin, ":%u", portnum);
790 fprintf(fin, "\r\n");
791 fprintf(fin, "Accept: */*\r\n");
792 fprintf(fin, "Connection: close\r\n");
793 if (restart_point) {
794 fputs(leading, ttyout);
795 fprintf(fin, "Range: bytes=" LLF "-\r\n",
796 (LLT)restart_point);
797 fprintf(ttyout, "restarting at " LLF,
798 (LLT)restart_point);
799 leading = ", ";
800 hasleading++;
801 }
802 if (flushcache)
803 fprintf(fin, "Cache-Control: no-cache\r\n");
804 }
805 if ((useragent=getenv("FTPUSERAGENT")) != NULL) {
806 fprintf(fin, "User-Agent: %s\r\n", useragent);
807 } else {
808 fprintf(fin, "User-Agent: %s/%s\r\n",
809 FTP_PRODUCT, FTP_VERSION);
810 }
811 if (wwwauth) {
812 if (verbose) {
813 fprintf(ttyout, "%swith authorization",
814 leading);
815 leading = ", ";
816 hasleading++;
817 }
818 fprintf(fin, "Authorization: %s\r\n", wwwauth);
819 }
820 if (proxyauth) {
821 if (verbose) {
822 fprintf(ttyout,
823 "%swith proxy authorization", leading);
824 leading = ", ";
825 hasleading++;
826 }
827 fprintf(fin, "Proxy-Authorization: %s\r\n", proxyauth);
828 }
829 if (verbose && hasleading)
830 fputs(")\n", ttyout);
831 fprintf(fin, "\r\n");
832 if (fflush(fin) == EOF) {
833 warn("Writing HTTP request");
834 goto cleanup_fetch_url;
835 }
836
837 /* Read the response */
20e59a13 838 len = get_line(fin, buf, sizeof(buf), &errormsg);
c106ca54
PA
839 if (len < 0) {
840 if (*errormsg == '\n')
841 errormsg++;
842 warnx("Receiving HTTP reply: %s", errormsg);
eedc536d
PA
843 goto cleanup_fetch_url;
844 }
845 while (len > 0 && (ISLWS(buf[len-1])))
846 buf[--len] = '\0';
3b706bf0 847 DPRINTF("fetch_url: received `%s'\n", buf);
eedc536d
PA
848
849 /* Determine HTTP response code */
850 cp = strchr(buf, ' ');
851 if (cp == NULL)
852 goto improper;
853 else
854 cp++;
855 hcode = strtol(cp, &ep, 10);
856 if (*ep != '\0' && !isspace((unsigned char)*ep))
857 goto improper;
858 message = ftp_strdup(cp);
859
860 /* Read the rest of the header. */
861 while (1) {
20e59a13 862 len = get_line(fin, buf, sizeof(buf), &errormsg);
c106ca54
PA
863 if (len < 0) {
864 if (*errormsg == '\n')
865 errormsg++;
866 warnx("Receiving HTTP reply: %s", errormsg);
eedc536d
PA
867 goto cleanup_fetch_url;
868 }
869 while (len > 0 && (ISLWS(buf[len-1])))
870 buf[--len] = '\0';
871 if (len == 0)
872 break;
3b706bf0 873 DPRINTF("fetch_url: received `%s'\n", buf);
eedc536d
PA
874
875 /*
876 * Look for some headers
877 */
878
879 cp = buf;
880
881 if (match_token(&cp, "Content-Length:")) {
882 filesize = STRTOLL(cp, &ep, 10);
883 if (filesize < 0 || *ep != '\0')
884 goto improper;
3b706bf0 885 DPRINTF("fetch_url: parsed len as: " LLF "\n",
eedc536d
PA
886 (LLT)filesize);
887
888 } else if (match_token(&cp, "Content-Range:")) {
889 if (! match_token(&cp, "bytes"))
890 goto improper;
891
892 if (*cp == '*')
893 cp++;
894 else {
895 rangestart = STRTOLL(cp, &ep, 10);
896 if (rangestart < 0 || *ep != '-')
897 goto improper;
898 cp = ep + 1;
899 rangeend = STRTOLL(cp, &ep, 10);
900 if (rangeend < 0 || rangeend < rangestart)
901 goto improper;
902 cp = ep;
903 }
904 if (*cp != '/')
905 goto improper;
906 cp++;
907 if (*cp == '*')
908 cp++;
909 else {
910 entitylen = STRTOLL(cp, &ep, 10);
911 if (entitylen < 0)
912 goto improper;
913 cp = ep;
914 }
915 if (*cp != '\0')
916 goto improper;
917
918#ifndef NO_DEBUG
919 if (ftp_debug) {
920 fprintf(ttyout, "parsed range as: ");
921 if (rangestart == -1)
922 fprintf(ttyout, "*");
923 else
924 fprintf(ttyout, LLF "-" LLF,
925 (LLT)rangestart,
926 (LLT)rangeend);
927 fprintf(ttyout, "/" LLF "\n", (LLT)entitylen);
928 }
929#endif
930 if (! restart_point) {
931 warnx(
932 "Received unexpected Content-Range header");
933 goto cleanup_fetch_url;
934 }
935
936 } else if (match_token(&cp, "Last-Modified:")) {
937 struct tm parsed;
20e59a13 938 const char *t;
eedc536d 939
c106ca54 940 memset(&parsed, 0, sizeof(parsed));
20e59a13
PA
941 t = parse_rfc2616time(&parsed, cp);
942 if (t != NULL) {
eedc536d
PA
943 parsed.tm_isdst = -1;
944 if (*t == '\0')
945 mtime = timegm(&parsed);
946#ifndef NO_DEBUG
947 if (ftp_debug && mtime != -1) {
948 fprintf(ttyout,
20e59a13 949 "parsed time as: %s",
c106ca54 950 rfc2822time(localtime(&mtime)));
eedc536d
PA
951 }
952#endif
953 }
954
955 } else if (match_token(&cp, "Location:")) {
956 location = ftp_strdup(cp);
3b706bf0
PA
957 DPRINTF("fetch_url: parsed location as `%s'\n",
958 cp);
eedc536d
PA
959
960 } else if (match_token(&cp, "Transfer-Encoding:")) {
961 if (match_token(&cp, "binary")) {
962 warnx(
0511850f 963 "Bogus transfer encoding `binary' (fetching anyway)");
eedc536d
PA
964 continue;
965 }
966 if (! (token = match_token(&cp, "chunked"))) {
967 warnx(
0511850f 968 "Unsupported transfer encoding `%s'",
eedc536d
PA
969 token);
970 goto cleanup_fetch_url;
971 }
972 ischunked++;
3b706bf0 973 DPRINTF("fetch_url: using chunked encoding\n");
eedc536d
PA
974
975 } else if (match_token(&cp, "Proxy-Authenticate:")
976 || match_token(&cp, "WWW-Authenticate:")) {
977 if (! (token = match_token(&cp, "Basic"))) {
978 DPRINTF(
3b706bf0 979 "fetch_url: skipping unknown auth scheme `%s'\n",
eedc536d
PA
980 token);
981 continue;
982 }
983 FREEPTR(auth);
984 auth = ftp_strdup(token);
3b706bf0 985 DPRINTF("fetch_url: parsed auth as `%s'\n", cp);
eedc536d
PA
986 }
987
988 }
989 /* finished parsing header */
eedc536d
PA
990
991 switch (hcode) {
992 case 200:
993 break;
994 case 206:
995 if (! restart_point) {
996 warnx("Not expecting partial content header");
997 goto cleanup_fetch_url;
998 }
999 break;
1000 case 300:
1001 case 301:
1002 case 302:
1003 case 303:
1004 case 305:
1005 case 307:
1006 if (EMPTYSTRING(location)) {
1007 warnx(
1008 "No redirection Location provided by server");
1009 goto cleanup_fetch_url;
1010 }
1011 if (redirect_loop++ > 5) {
1012 warnx("Too many redirections requested");
1013 goto cleanup_fetch_url;
1014 }
1015 if (hcode == 305) {
1016 if (verbose)
1017 fprintf(ttyout, "Redirected via %s\n",
1018 location);
1019 rval = fetch_url(url, location,
1020 proxyauth, wwwauth);
1021 } else {
1022 if (verbose)
1023 fprintf(ttyout, "Redirected to %s\n",
1024 location);
1025 rval = go_fetch(location);
1026 }
1027 goto cleanup_fetch_url;
1028#ifndef NO_AUTH
1029 case 401:
1030 case 407:
1031 {
1032 char **authp;
1033 char *auser, *apass;
1034
1035 if (hcode == 401) {
1036 authp = &wwwauth;
20e59a13 1037 auser = uuser;
eedc536d
PA
1038 apass = pass;
1039 } else {
1040 authp = &proxyauth;
1041 auser = puser;
1042 apass = ppass;
1043 }
1044 if (verbose || *authp == NULL ||
1045 auser == NULL || apass == NULL)
1046 fprintf(ttyout, "%s\n", message);
1047 if (EMPTYSTRING(auth)) {
1048 warnx(
1049 "No authentication challenge provided by server");
1050 goto cleanup_fetch_url;
1051 }
1052 if (*authp != NULL) {
1053 char reply[10];
1054
1055 fprintf(ttyout,
1056 "Authorization failed. Retry (y/n)? ");
20e59a13 1057 if (get_line(stdin, reply, sizeof(reply), NULL)
eedc536d
PA
1058 < 0) {
1059 goto cleanup_fetch_url;
1060 }
1061 if (tolower((unsigned char)reply[0]) != 'y')
1062 goto cleanup_fetch_url;
1063 auser = NULL;
1064 apass = NULL;
1065 }
1066 if (auth_url(auth, authp, auser, apass) == 0) {
1067 rval = fetch_url(url, proxyenv,
1068 proxyauth, wwwauth);
1069 memset(*authp, 0, strlen(*authp));
1070 FREEPTR(*authp);
1071 }
1072 goto cleanup_fetch_url;
1073 }
1074#endif
1075 default:
1076 if (message)
0511850f 1077 warnx("Error retrieving file `%s'", message);
eedc536d
PA
1078 else
1079 warnx("Unknown error retrieving file");
1080 goto cleanup_fetch_url;
1081 }
1082 } /* end of ftp:// or http:// specific setup */
1083
1084 /* Open the output file. */
1085 if (strcmp(savefile, "-") == 0) {
1086 fout = stdout;
1087 } else if (*savefile == '|') {
1088 oldintp = xsignal(SIGPIPE, SIG_IGN);
1089 fout = popen(savefile + 1, "w");
1090 if (fout == NULL) {
0511850f 1091 warn("Can't execute `%s'", savefile + 1);
eedc536d
PA
1092 goto cleanup_fetch_url;
1093 }
1094 closefunc = pclose;
1095 } else {
1096 if ((rangeend != -1 && rangeend <= restart_point) ||
1097 (rangestart == -1 && filesize != -1 && filesize <= restart_point)) {
1098 /* already done */
1099 if (verbose)
1100 fprintf(ttyout, "already done\n");
1101 rval = 0;
1102 goto cleanup_fetch_url;
1103 }
1104 if (restart_point && rangestart != -1) {
1105 if (entitylen != -1)
1106 filesize = entitylen;
1107 if (rangestart != restart_point) {
1108 warnx(
1109 "Size of `%s' differs from save file `%s'",
1110 url, savefile);
1111 goto cleanup_fetch_url;
1112 }
1113 fout = fopen(savefile, "a");
1114 } else
1115 fout = fopen(savefile, "w");
1116 if (fout == NULL) {
1117 warn("Can't open `%s'", savefile);
1118 goto cleanup_fetch_url;
1119 }
1120 closefunc = fclose;
1121 }
1122
1123 /* Trap signals */
1124 if (sigsetjmp(httpabort, 1))
1125 goto cleanup_fetch_url;
1126 (void)xsignal(SIGQUIT, psummary);
1127 oldintr = xsignal(SIGINT, aborthttp);
1128
20e59a13 1129 if ((size_t)rcvbuf_size > bufsize) {
eedc536d
PA
1130 if (xferbuf)
1131 (void)free(xferbuf);
1132 bufsize = rcvbuf_size;
1133 xferbuf = ftp_malloc(bufsize);
1134 }
1135
1136 bytes = 0;
1137 hashbytes = mark;
1138 progressmeter(-1);
1139
1140 /* Finally, suck down the file. */
1141 do {
1142 long chunksize;
8b05fa7f 1143 short lastchunk;
eedc536d
PA
1144
1145 chunksize = 0;
8b05fa7f
PA
1146 lastchunk = 0;
1147 /* read chunk-size */
eedc536d
PA
1148 if (ischunked) {
1149 if (fgets(xferbuf, bufsize, fin) == NULL) {
8b05fa7f 1150 warnx("Unexpected EOF reading chunk-size");
eedc536d
PA
1151 goto cleanup_fetch_url;
1152 }
8b05fa7f 1153 errno = 0;
eedc536d 1154 chunksize = strtol(xferbuf, &ep, 16);
8b05fa7f
PA
1155 if (ep == xferbuf) {
1156 warnx("Invalid chunk-size");
1157 goto cleanup_fetch_url;
1158 }
1159 if (errno == ERANGE || chunksize < 0) {
1160 errno = ERANGE;
1161 warn("Chunk-size `%.*s'",
1162 (int)(ep-xferbuf), xferbuf);
1163 goto cleanup_fetch_url;
1164 }
eedc536d
PA
1165
1166 /*
1167 * XXX: Work around bug in Apache 1.3.9 and
1168 * 1.3.11, which incorrectly put trailing
8b05fa7f 1169 * space after the chunk-size.
eedc536d
PA
1170 */
1171 while (*ep == ' ')
1172 ep++;
1173
8b05fa7f
PA
1174 /* skip [ chunk-ext ] */
1175 if (*ep == ';') {
1176 while (*ep && *ep != '\r')
1177 ep++;
1178 }
1179
eedc536d 1180 if (strcmp(ep, "\r\n") != 0) {
8b05fa7f 1181 warnx("Unexpected data following chunk-size");
eedc536d
PA
1182 goto cleanup_fetch_url;
1183 }
3b706bf0
PA
1184 DPRINTF("fetch_url: got chunk-size of " LLF "\n",
1185 (LLT)chunksize);
8b05fa7f
PA
1186 if (chunksize == 0) {
1187 lastchunk = 1;
1188 goto chunkdone;
1189 }
eedc536d
PA
1190 }
1191 /* transfer file or chunk */
1192 while (1) {
1193 struct timeval then, now, td;
1194 off_t bufrem;
1195
1196 if (rate_get)
1197 (void)gettimeofday(&then, NULL);
20e59a13 1198 bufrem = rate_get ? rate_get : (off_t)bufsize;
eedc536d
PA
1199 if (ischunked)
1200 bufrem = MIN(chunksize, bufrem);
1201 while (bufrem > 0) {
20e59a13
PA
1202 flen = fread(xferbuf, sizeof(char),
1203 MIN((off_t)bufsize, bufrem), fin);
1204 if (flen <= 0)
eedc536d 1205 goto chunkdone;
20e59a13
PA
1206 bytes += flen;
1207 bufrem -= flen;
1208 if (fwrite(xferbuf, sizeof(char), flen, fout)
1209 != flen) {
eedc536d
PA
1210 warn("Writing `%s'", savefile);
1211 goto cleanup_fetch_url;
1212 }
1213 if (hash && !progress) {
1214 while (bytes >= hashbytes) {
1215 (void)putc('#', ttyout);
1216 hashbytes += mark;
1217 }
1218 (void)fflush(ttyout);
1219 }
1220 if (ischunked) {
20e59a13 1221 chunksize -= flen;
eedc536d
PA
1222 if (chunksize <= 0)
1223 break;
1224 }
1225 }
1226 if (rate_get) {
1227 while (1) {
1228 (void)gettimeofday(&now, NULL);
1229 timersub(&now, &then, &td);
1230 if (td.tv_sec > 0)
1231 break;
1232 usleep(1000000 - td.tv_usec);
1233 }
1234 }
1235 if (ischunked && chunksize <= 0)
1236 break;
1237 }
1238 /* read CRLF after chunk*/
1239 chunkdone:
1240 if (ischunked) {
8b05fa7f
PA
1241 if (fgets(xferbuf, bufsize, fin) == NULL) {
1242 warnx("Unexpected EOF reading chunk CRLF");
1243 goto cleanup_fetch_url;
1244 }
eedc536d
PA
1245 if (strcmp(xferbuf, "\r\n") != 0) {
1246 warnx("Unexpected data following chunk");
1247 goto cleanup_fetch_url;
1248 }
8b05fa7f
PA
1249 if (lastchunk)
1250 break;
eedc536d
PA
1251 }
1252 } while (ischunked);
8b05fa7f
PA
1253
1254/* XXX: deal with optional trailer & CRLF here? */
1255
eedc536d
PA
1256 if (hash && !progress && bytes > 0) {
1257 if (bytes < mark)
1258 (void)putc('#', ttyout);
1259 (void)putc('\n', ttyout);
1260 }
1261 if (ferror(fin)) {
1262 warn("Reading file");
1263 goto cleanup_fetch_url;
1264 }
1265 progressmeter(1);
1266 (void)fflush(fout);
1267 if (closefunc == fclose && mtime != -1) {
1268 struct timeval tval[2];
1269
1270 (void)gettimeofday(&tval[0], NULL);
1271 tval[1].tv_sec = mtime;
1272 tval[1].tv_usec = 0;
1273 (*closefunc)(fout);
1274 fout = NULL;
1275
1276 if (utimes(savefile, tval) == -1) {
1277 fprintf(ttyout,
1278 "Can't change modification time to %s",
c106ca54 1279 rfc2822time(localtime(&mtime)));
eedc536d
PA
1280 }
1281 }
1282 if (bytes > 0)
1283 ptransfer(0);
1284 bytes = 0;
1285
1286 rval = 0;
1287 goto cleanup_fetch_url;
1288
1289 improper:
fa70ef36 1290 warnx("Improper response from `%s:%s'", host, port);
eedc536d
PA
1291
1292 cleanup_fetch_url:
1293 if (oldintr)
1294 (void)xsignal(SIGINT, oldintr);
1295 if (oldintp)
1296 (void)xsignal(SIGPIPE, oldintp);
1297 if (fin != NULL)
1298 fclose(fin);
1299 else if (s != -1)
1300 close(s);
1301 if (closefunc != NULL && fout != NULL)
1302 (*closefunc)(fout);
1303 if (res0)
1304 freeaddrinfo(res0);
1305 FREEPTR(savefile);
20e59a13 1306 FREEPTR(uuser);
eedc536d
PA
1307 if (pass != NULL)
1308 memset(pass, 0, strlen(pass));
1309 FREEPTR(pass);
1310 FREEPTR(host);
1311 FREEPTR(port);
1312 FREEPTR(path);
1313 FREEPTR(decodedpath);
1314 FREEPTR(puser);
1315 if (ppass != NULL)
1316 memset(ppass, 0, strlen(ppass));
1317 FREEPTR(ppass);
eedc536d
PA
1318 FREEPTR(auth);
1319 FREEPTR(location);
1320 FREEPTR(message);
1321 return (rval);
1322}
1323
1324/*
1325 * Abort a HTTP retrieval
1326 */
1327void
1328aborthttp(int notused)
1329{
1330 char msgbuf[100];
1331 size_t len;
1332
1333 sigint_raised = 1;
1334 alarmtimer(0);
1335 len = strlcpy(msgbuf, "\nHTTP fetch aborted.\n", sizeof(msgbuf));
1336 write(fileno(ttyout), msgbuf, len);
1337 siglongjmp(httpabort, 1);
1338}
1339
1340/*
1341 * Retrieve ftp URL or classic ftp argument using FTP.
1342 * Returns 1 on failure, 0 on completed xfer, -1 if ftp connection
1343 * is still open (e.g, ftp xfer with trailing /)
1344 */
1345static int
1346fetch_ftp(const char *url)
1347{
1348 char *cp, *xargv[5], rempath[MAXPATHLEN];
20e59a13 1349 char *host, *path, *dir, *file, *uuser, *pass;
eedc536d 1350 char *port;
20e59a13
PA
1351 char cmdbuf[MAXPATHLEN];
1352 char dirbuf[4];
1353 int dirhasglob, filehasglob, rval, transtype, xargc;
eedc536d
PA
1354 int oanonftp, oautologin;
1355 in_port_t portnum;
1356 url_t urltype;
1357
3b706bf0 1358 DPRINTF("fetch_ftp: `%s'\n", url);
20e59a13 1359 host = path = dir = file = uuser = pass = NULL;
eedc536d
PA
1360 port = NULL;
1361 rval = 1;
20e59a13 1362 transtype = TYPE_I;
eedc536d
PA
1363
1364 if (STRNEQUAL(url, FTP_URL)) {
20e59a13 1365 if ((parse_url(url, "URL", &urltype, &uuser, &pass,
eedc536d 1366 &host, &port, &portnum, &path) == -1) ||
20e59a13 1367 (uuser != NULL && *uuser == '\0') ||
eedc536d
PA
1368 EMPTYSTRING(host)) {
1369 warnx("Invalid URL `%s'", url);
1370 goto cleanup_fetch_ftp;
1371 }
1372 /*
1373 * Note: Don't url_decode(path) here. We need to keep the
1374 * distinction between "/" and "%2F" until later.
1375 */
1376
1377 /* check for trailing ';type=[aid]' */
1378 if (! EMPTYSTRING(path) && (cp = strrchr(path, ';')) != NULL) {
1379 if (strcasecmp(cp, ";type=a") == 0)
20e59a13 1380 transtype = TYPE_A;
eedc536d 1381 else if (strcasecmp(cp, ";type=i") == 0)
20e59a13 1382 transtype = TYPE_I;
eedc536d
PA
1383 else if (strcasecmp(cp, ";type=d") == 0) {
1384 warnx(
1385 "Directory listing via a URL is not supported");
1386 goto cleanup_fetch_ftp;
1387 } else {
1388 warnx("Invalid suffix `%s' in URL `%s'", cp,
1389 url);
1390 goto cleanup_fetch_ftp;
1391 }
1392 *cp = 0;
1393 }
1394 } else { /* classic style `[user@]host:[file]' */
1395 urltype = CLASSIC_URL_T;
1396 host = ftp_strdup(url);
1397 cp = strchr(host, '@');
1398 if (cp != NULL) {
1399 *cp = '\0';
20e59a13 1400 uuser = host;
eedc536d
PA
1401 anonftp = 0; /* disable anonftp */
1402 host = ftp_strdup(cp + 1);
1403 }
1404 cp = strchr(host, ':');
1405 if (cp != NULL) {
1406 *cp = '\0';
1407 path = ftp_strdup(cp + 1);
1408 }
1409 }
1410 if (EMPTYSTRING(host))
1411 goto cleanup_fetch_ftp;
1412
1413 /* Extract the file and (if present) directory name. */
1414 dir = path;
1415 if (! EMPTYSTRING(dir)) {
1416 /*
1417 * If we are dealing with classic `[user@]host:[path]' syntax,
1418 * then a path of the form `/file' (resulting from input of the
1419 * form `host:/file') means that we should do "CWD /" before
1420 * retrieving the file. So we set dir="/" and file="file".
1421 *
1422 * But if we are dealing with URLs like `ftp://host/path' then
1423 * a path of the form `/file' (resulting from a URL of the form
1424 * `ftp://host//file') means that we should do `CWD ' (with an
1425 * empty argument) before retrieving the file. So we set
1426 * dir="" and file="file".
1427 *
1428 * If the path does not contain / at all, we set dir=NULL.
1429 * (We get a path without any slashes if we are dealing with
1430 * classic `[user@]host:[file]' or URL `ftp://host/file'.)
1431 *
1432 * In all other cases, we set dir to a string that does not
1433 * include the final '/' that separates the dir part from the
1434 * file part of the path. (This will be the empty string if
1435 * and only if we are dealing with a path of the form `/file'
1436 * resulting from an URL of the form `ftp://host//file'.)
1437 */
1438 cp = strrchr(dir, '/');
1439 if (cp == dir && urltype == CLASSIC_URL_T) {
1440 file = cp + 1;
20e59a13
PA
1441 (void)strlcpy(dirbuf, "/", sizeof(dirbuf));
1442 dir = dirbuf;
eedc536d
PA
1443 } else if (cp != NULL) {
1444 *cp++ = '\0';
1445 file = cp;
1446 } else {
1447 file = dir;
1448 dir = NULL;
1449 }
1450 } else
1451 dir = NULL;
1452 if (urltype == FTP_URL_T && file != NULL) {
1453 url_decode(file);
1454 /* but still don't url_decode(dir) */
1455 }
1456 DPRINTF("fetch_ftp: user `%s' pass `%s' host %s port %s "
1457 "path `%s' dir `%s' file `%s'\n",
20e59a13 1458 STRorNULL(uuser), STRorNULL(pass),
3b706bf0
PA
1459 STRorNULL(host), STRorNULL(port),
1460 STRorNULL(path), STRorNULL(dir), STRorNULL(file));
eedc536d
PA
1461
1462 dirhasglob = filehasglob = 0;
1463 if (doglob && urltype == CLASSIC_URL_T) {
1464 if (! EMPTYSTRING(dir) && strpbrk(dir, "*?[]{}") != NULL)
1465 dirhasglob = 1;
1466 if (! EMPTYSTRING(file) && strpbrk(file, "*?[]{}") != NULL)
1467 filehasglob = 1;
1468 }
1469
1470 /* Set up the connection */
1471 oanonftp = anonftp;
1472 if (connected)
1473 disconnect(0, NULL);
1474 anonftp = oanonftp;
20e59a13
PA
1475 (void)strlcpy(cmdbuf, getprogname(), sizeof(cmdbuf));
1476 xargv[0] = cmdbuf;
eedc536d
PA
1477 xargv[1] = host;
1478 xargv[2] = NULL;
1479 xargc = 2;
1480 if (port) {
1481 xargv[2] = port;
1482 xargv[3] = NULL;
1483 xargc = 3;
1484 }
1485 oautologin = autologin;
1486 /* don't autologin in setpeer(), use ftp_login() below */
1487 autologin = 0;
1488 setpeer(xargc, xargv);
1489 autologin = oautologin;
1490 if ((connected == 0) ||
20e59a13
PA
1491 (connected == 1 && !ftp_login(host, uuser, pass))) {
1492 warnx("Can't connect or login to host `%s:%s'",
1493 host, port ? port : "?");
eedc536d
PA
1494 goto cleanup_fetch_ftp;
1495 }
1496
20e59a13 1497 switch (transtype) {
eedc536d
PA
1498 case TYPE_A:
1499 setascii(1, xargv);
1500 break;
1501 case TYPE_I:
1502 setbinary(1, xargv);
1503 break;
1504 default:
20e59a13 1505 errx(1, "fetch_ftp: unknown transfer type %d", transtype);
eedc536d
PA
1506 }
1507
1508 /*
1509 * Change directories, if necessary.
1510 *
1511 * Note: don't use EMPTYSTRING(dir) below, because
1512 * dir=="" means something different from dir==NULL.
1513 */
1514 if (dir != NULL && !dirhasglob) {
1515 char *nextpart;
1516
1517 /*
1518 * If we are dealing with a classic `[user@]host:[path]'
1519 * (urltype is CLASSIC_URL_T) then we have a raw directory
1520 * name (not encoded in any way) and we can change
1521 * directories in one step.
1522 *
1523 * If we are dealing with an `ftp://host/path' URL
20e59a13 1524 * (urltype is FTP_URL_T), then RFC 3986 says we need to
eedc536d
PA
1525 * send a separate CWD command for each unescaped "/"
1526 * in the path, and we have to interpret %hex escaping
1527 * *after* we find the slashes. It's possible to get
1528 * empty components here, (from multiple adjacent
20e59a13 1529 * slashes in the path) and RFC 3986 says that we should
eedc536d
PA
1530 * still do `CWD ' (with a null argument) in such cases.
1531 *
1532 * Many ftp servers don't support `CWD ', so if there's an
1533 * error performing that command, bail out with a descriptive
1534 * message.
1535 *
1536 * Examples:
1537 *
1538 * host: dir="", urltype=CLASSIC_URL_T
1539 * logged in (to default directory)
1540 * host:file dir=NULL, urltype=CLASSIC_URL_T
1541 * "RETR file"
1542 * host:dir/ dir="dir", urltype=CLASSIC_URL_T
1543 * "CWD dir", logged in
1544 * ftp://host/ dir="", urltype=FTP_URL_T
1545 * logged in (to default directory)
1546 * ftp://host/dir/ dir="dir", urltype=FTP_URL_T
1547 * "CWD dir", logged in
1548 * ftp://host/file dir=NULL, urltype=FTP_URL_T
1549 * "RETR file"
1550 * ftp://host//file dir="", urltype=FTP_URL_T
1551 * "CWD ", "RETR file"
1552 * host:/file dir="/", urltype=CLASSIC_URL_T
1553 * "CWD /", "RETR file"
1554 * ftp://host///file dir="/", urltype=FTP_URL_T
1555 * "CWD ", "CWD ", "RETR file"
1556 * ftp://host/%2F/file dir="%2F", urltype=FTP_URL_T
1557 * "CWD /", "RETR file"
1558 * ftp://host/foo/file dir="foo", urltype=FTP_URL_T
1559 * "CWD foo", "RETR file"
1560 * ftp://host/foo/bar/file dir="foo/bar"
1561 * "CWD foo", "CWD bar", "RETR file"
1562 * ftp://host//foo/bar/file dir="/foo/bar"
1563 * "CWD ", "CWD foo", "CWD bar", "RETR file"
1564 * ftp://host/foo//bar/file dir="foo//bar"
1565 * "CWD foo", "CWD ", "CWD bar", "RETR file"
1566 * ftp://host/%2F/foo/bar/file dir="%2F/foo/bar"
1567 * "CWD /", "CWD foo", "CWD bar", "RETR file"
1568 * ftp://host/%2Ffoo/bar/file dir="%2Ffoo/bar"
1569 * "CWD /foo", "CWD bar", "RETR file"
1570 * ftp://host/%2Ffoo%2Fbar/file dir="%2Ffoo%2Fbar"
1571 * "CWD /foo/bar", "RETR file"
1572 * ftp://host/%2Ffoo%2Fbar%2Ffile dir=NULL
1573 * "RETR /foo/bar/file"
1574 *
1575 * Note that we don't need `dir' after this point.
1576 */
1577 do {
1578 if (urltype == FTP_URL_T) {
1579 nextpart = strchr(dir, '/');
1580 if (nextpart) {
1581 *nextpart = '\0';
1582 nextpart++;
1583 }
1584 url_decode(dir);
1585 } else
1586 nextpart = NULL;
3b706bf0
PA
1587 DPRINTF("fetch_ftp: dir `%s', nextpart `%s'\n",
1588 STRorNULL(dir), STRorNULL(nextpart));
eedc536d 1589 if (urltype == FTP_URL_T || *dir != '\0') {
20e59a13
PA
1590 (void)strlcpy(cmdbuf, "cd", sizeof(cmdbuf));
1591 xargv[0] = cmdbuf;
eedc536d
PA
1592 xargv[1] = dir;
1593 xargv[2] = NULL;
1594 dirchange = 0;
1595 cd(2, xargv);
1596 if (! dirchange) {
1597 if (*dir == '\0' && code == 500)
1598 fprintf(stderr,
1599"\n"
1600"ftp: The `CWD ' command (without a directory), which is required by\n"
20e59a13
PA
1601" RFC 3986 to support the empty directory in the URL pathname (`//'),\n"
1602" conflicts with the server's conformance to RFC 959.\n"
eedc536d
PA
1603" Try the same URL without the `//' in the URL pathname.\n"
1604"\n");
1605 goto cleanup_fetch_ftp;
1606 }
1607 }
1608 dir = nextpart;
1609 } while (dir != NULL);
1610 }
1611
1612 if (EMPTYSTRING(file)) {
1613 rval = -1;
1614 goto cleanup_fetch_ftp;
1615 }
1616
1617 if (dirhasglob) {
1618 (void)strlcpy(rempath, dir, sizeof(rempath));
1619 (void)strlcat(rempath, "/", sizeof(rempath));
1620 (void)strlcat(rempath, file, sizeof(rempath));
1621 file = rempath;
1622 }
1623
1624 /* Fetch the file(s). */
1625 xargc = 2;
20e59a13
PA
1626 (void)strlcpy(cmdbuf, "get", sizeof(cmdbuf));
1627 xargv[0] = cmdbuf;
eedc536d
PA
1628 xargv[1] = file;
1629 xargv[2] = NULL;
1630 if (dirhasglob || filehasglob) {
1631 int ointeractive;
1632
1633 ointeractive = interactive;
1634 interactive = 0;
1635 if (restartautofetch)
20e59a13 1636 (void)strlcpy(cmdbuf, "mreget", sizeof(cmdbuf));
eedc536d 1637 else
20e59a13
PA
1638 (void)strlcpy(cmdbuf, "mget", sizeof(cmdbuf));
1639 xargv[0] = cmdbuf;
eedc536d
PA
1640 mget(xargc, xargv);
1641 interactive = ointeractive;
1642 } else {
1643 if (outfile == NULL) {
1644 cp = strrchr(file, '/'); /* find savefile */
1645 if (cp != NULL)
1646 outfile = cp + 1;
1647 else
1648 outfile = file;
1649 }
1650 xargv[2] = (char *)outfile;
1651 xargv[3] = NULL;
1652 xargc++;
1653 if (restartautofetch)
1654 reget(xargc, xargv);
1655 else
1656 get(xargc, xargv);
1657 }
1658
1659 if ((code / 100) == COMPLETE)
1660 rval = 0;
1661
1662 cleanup_fetch_ftp:
1663 FREEPTR(port);
1664 FREEPTR(host);
1665 FREEPTR(path);
20e59a13 1666 FREEPTR(uuser);
eedc536d
PA
1667 if (pass)
1668 memset(pass, 0, strlen(pass));
1669 FREEPTR(pass);
1670 return (rval);
1671}
1672
1673/*
1674 * Retrieve the given file to outfile.
1675 * Supports arguments of the form:
1676 * "host:path", "ftp://host/path" if $ftpproxy, call fetch_url() else
1677 * call fetch_ftp()
1678 * "http://host/path" call fetch_url() to use HTTP
1679 * "file:///path" call fetch_url() to copy
1680 * "about:..." print a message
1681 *
1682 * Returns 1 on failure, 0 on completed xfer, -1 if ftp connection
1683 * is still open (e.g, ftp xfer with trailing /)
1684 */
1685static int
1686go_fetch(const char *url)
1687{
20e59a13 1688 char *proxyenv;
eedc536d
PA
1689
1690#ifndef NO_ABOUT
1691 /*
1692 * Check for about:*
1693 */
1694 if (STRNEQUAL(url, ABOUT_URL)) {
1695 url += sizeof(ABOUT_URL) -1;
1696 if (strcasecmp(url, "ftp") == 0 ||
1697 strcasecmp(url, "tnftp") == 0) {
1698 fputs(
1699"This version of ftp has been enhanced by Luke Mewburn <lukem@NetBSD.org>\n"
1700"for the NetBSD project. Execute `man ftp' for more details.\n", ttyout);
1701 } else if (strcasecmp(url, "lukem") == 0) {
1702 fputs(
1703"Luke Mewburn is the author of most of the enhancements in this ftp client.\n"
1704"Please email feedback to <lukem@NetBSD.org>.\n", ttyout);
1705 } else if (strcasecmp(url, "netbsd") == 0) {
1706 fputs(
1707"NetBSD is a freely available and redistributable UNIX-like operating system.\n"
1708"For more information, see http://www.NetBSD.org/\n", ttyout);
1709 } else if (strcasecmp(url, "version") == 0) {
1710 fprintf(ttyout, "Version: %s %s%s\n",
1711 FTP_PRODUCT, FTP_VERSION,
1712#ifdef INET6
1713 ""
1714#else
1715 " (-IPv6)"
1716#endif
1717 );
1718 } else {
1719 fprintf(ttyout, "`%s' is an interesting topic.\n", url);
1720 }
1721 fputs("\n", ttyout);
1722 return (0);
1723 }
1724#endif
1725
1726 /*
1727 * Check for file:// and http:// URLs.
1728 */
1729 if (STRNEQUAL(url, HTTP_URL) || STRNEQUAL(url, FILE_URL))
1730 return (fetch_url(url, NULL, NULL, NULL));
1731
1732 /*
1733 * Try FTP URL-style and host:file arguments next.
1734 * If ftpproxy is set with an FTP URL, use fetch_url()
1735 * Othewise, use fetch_ftp().
1736 */
20e59a13
PA
1737 proxyenv = getoptionvalue("ftp_proxy");
1738 if (!EMPTYSTRING(proxyenv) && STRNEQUAL(url, FTP_URL))
eedc536d
PA
1739 return (fetch_url(url, NULL, NULL, NULL));
1740
1741 return (fetch_ftp(url));
1742}
1743
1744/*
1745 * Retrieve multiple files from the command line,
1746 * calling go_fetch() for each file.
1747 *
1748 * If an ftp path has a trailing "/", the path will be cd-ed into and
1749 * the connection remains open, and the function will return -1
1750 * (to indicate the connection is alive).
1751 * If an error occurs the return value will be the offset+1 in
1752 * argv[] of the file that caused a problem (i.e, argv[x]
1753 * returns x+1)
1754 * Otherwise, 0 is returned if all files retrieved successfully.
1755 */
1756int
1757auto_fetch(int argc, char *argv[])
1758{
1759 volatile int argpos, rval;
1760
1761 argpos = rval = 0;
1762
1763 if (sigsetjmp(toplevel, 1)) {
1764 if (connected)
1765 disconnect(0, NULL);
1766 if (rval > 0)
1767 rval = argpos + 1;
1768 return (rval);
1769 }
1770 (void)xsignal(SIGINT, intr);
1771 (void)xsignal(SIGPIPE, lostpeer);
1772
1773 /*
1774 * Loop through as long as there's files to fetch.
1775 */
1776 for (; (rval == 0) && (argpos < argc); argpos++) {
1777 if (strchr(argv[argpos], ':') == NULL)
1778 break;
1779 redirect_loop = 0;
1780 if (!anonftp)
1781 anonftp = 2; /* Handle "automatic" transfers. */
1782 rval = go_fetch(argv[argpos]);
1783 if (outfile != NULL && strcmp(outfile, "-") != 0
1784 && outfile[0] != '|')
1785 outfile = NULL;
1786 if (rval > 0)
1787 rval = argpos + 1;
1788 }
1789
1790 if (connected && rval != -1)
1791 disconnect(0, NULL);
1792 return (rval);
1793}
1794
1795
1796/*
1797 * Upload multiple files from the command line.
1798 *
1799 * If an error occurs the return value will be the offset+1 in
1800 * argv[] of the file that caused a problem (i.e, argv[x]
1801 * returns x+1)
1802 * Otherwise, 0 is returned if all files uploaded successfully.
1803 */
1804int
1805auto_put(int argc, char **argv, const char *uploadserver)
1806{
1807 char *uargv[4], *path, *pathsep;
1808 int uargc, rval, argpos;
1809 size_t len;
20e59a13 1810 char cmdbuf[MAX_C_NAME];
eedc536d 1811
20e59a13
PA
1812 (void)strlcpy(cmdbuf, "mput", sizeof(cmdbuf));
1813 uargv[0] = cmdbuf;
1814 uargv[1] = argv[0];
1815 uargc = 2;
eedc536d
PA
1816 uargv[2] = uargv[3] = NULL;
1817 pathsep = NULL;
1818 rval = 1;
1819
1820 DPRINTF("auto_put: target `%s'\n", uploadserver);
1821
1822 path = ftp_strdup(uploadserver);
1823 len = strlen(path);
1824 if (path[len - 1] != '/' && path[len - 1] != ':') {
1825 /*
1826 * make sure we always pass a directory to auto_fetch
1827 */
1828 if (argc > 1) { /* more than one file to upload */
1829 len = strlen(uploadserver) + 2; /* path + "/" + "\0" */
1830 free(path);
1831 path = (char *)ftp_malloc(len);
1832 (void)strlcpy(path, uploadserver, len);
1833 (void)strlcat(path, "/", len);
1834 } else { /* single file to upload */
20e59a13
PA
1835 (void)strlcpy(cmdbuf, "put", sizeof(cmdbuf));
1836 uargv[0] = cmdbuf;
eedc536d
PA
1837 pathsep = strrchr(path, '/');
1838 if (pathsep == NULL) {
1839 pathsep = strrchr(path, ':');
1840 if (pathsep == NULL) {
1841 warnx("Invalid URL `%s'", path);
1842 goto cleanup_auto_put;
1843 }
1844 pathsep++;
1845 uargv[2] = ftp_strdup(pathsep);
1846 pathsep[0] = '/';
1847 } else
1848 uargv[2] = ftp_strdup(pathsep + 1);
1849 pathsep[1] = '\0';
1850 uargc++;
1851 }
1852 }
1853 DPRINTF("auto_put: URL `%s' argv[2] `%s'\n",
3b706bf0 1854 path, STRorNULL(uargv[2]));
eedc536d
PA
1855
1856 /* connect and cwd */
1857 rval = auto_fetch(1, &path);
1858 if(rval >= 0)
1859 goto cleanup_auto_put;
1860
1861 rval = 0;
1862
1863 /* target filename provided; upload 1 file */
1864 /* XXX : is this the best way? */
1865 if (uargc == 3) {
1866 uargv[1] = argv[0];
1867 put(uargc, uargv);
1868 if ((code / 100) != COMPLETE)
1869 rval = 1;
1870 } else { /* otherwise a target dir: upload all files to it */
1871 for(argpos = 0; argv[argpos] != NULL; argpos++) {
1872 uargv[1] = argv[argpos];
1873 mput(uargc, uargv);
1874 if ((code / 100) != COMPLETE) {
1875 rval = argpos + 1;
1876 break;
1877 }
1878 }
1879 }
1880
1881 cleanup_auto_put:
1882 free(path);
1883 FREEPTR(uargv[2]);
1884 return (rval);
1885}