1 /* 2 * scp - secure remote copy. This is basically patched BSD rcp which 3 * uses ssh to do the data transfer (instead of using rcmd). 4 * 5 * NOTE: This version should NOT be suid root. (This uses ssh to 6 * do the transfer and ssh has the necessary privileges.) 7 * 8 * 1995 Timo Rinne <tri@iki.fi>, Tatu Ylonen <ylo@cs.hut.fi> 9 * 10 * As far as I am concerned, the code I have written for this software 11 * can be used freely for any purpose. Any derived versions of this 12 * software must be clearly marked as such, and if the derived work is 13 * incompatible with the protocol description in the RFC file, it must be 14 * called by a name other than "ssh" or "Secure Shell". 15 */ 16 /* 17 * Copyright (c) 1999 Theo de Raadt. All rights reserved. 18 * Copyright (c) 1999 Aaron Campbell. All rights reserved. 19 * 20 * Redistribution and use in source and binary forms, with or without 21 * modification, are permitted provided that the following conditions 22 * are met: 23 * 1. Redistributions of source code must retain the above copyright 24 * notice, this list of conditions and the following disclaimer. 25 * 2. Redistributions in binary form must reproduce the above copyright 26 * notice, this list of conditions and the following disclaimer in the 27 * documentation and/or other materials provided with the distribution. 28 * 29 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR 30 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES 31 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. 32 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, 33 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT 34 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, 35 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY 36 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT 37 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF 38 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 39 */ 40 41 /* 42 * Parts from: 43 * 44 * Copyright (c) 1983, 1990, 1992, 1993, 1995 45 * The Regents of the University of California. All rights reserved. 46 * 47 * Redistribution and use in source and binary forms, with or without 48 * modification, are permitted provided that the following conditions 49 * are met: 50 * 1. Redistributions of source code must retain the above copyright 51 * notice, this list of conditions and the following disclaimer. 52 * 2. Redistributions in binary form must reproduce the above copyright 53 * notice, this list of conditions and the following disclaimer in the 54 * documentation and/or other materials provided with the distribution. 55 * 3. Neither the name of the University nor the names of its contributors 56 * may be used to endorse or promote products derived from this software 57 * without specific prior written permission. 58 * 59 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 60 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 61 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 62 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 63 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 64 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 65 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 66 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 67 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 68 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 69 * SUCH DAMAGE. 70 * 71 */ 72 73 #include "includes.h" 74 RCSID("$OpenBSD: scp.c,v 1.125 2005/07/27 10:39:03 dtucker Exp $"); 75 76 #include "xmalloc.h" 77 #include "atomicio.h" 78 #include "pathnames.h" 79 #include "log.h" 80 #include "misc.h" 81 #include "progressmeter.h" 82 83 extern char *__progname; 84 85 void bwlimit(int); 86 87 /* Struct for addargs */ 88 arglist args; 89 90 /* Bandwidth limit */ 91 off_t limit_rate = 0; 92 93 /* Name of current file being transferred. */ 94 char *curfile; 95 96 /* This is set to non-zero to enable verbose mode. */ 97 int verbose_mode = 0; 98 99 /* This is set to zero if the progressmeter is not desired. */ 100 int showprogress = 1; 101 102 /* This is the program to execute for the secured connection. ("ssh" or -S) */ 103 char *ssh_program = _PATH_SSH_PROGRAM; 104 105 /* This is used to store the pid of ssh_program */ 106 pid_t do_cmd_pid = -1; 107 108 static void 109 killchild(int signo) 110 { 111 if (do_cmd_pid > 1) { 112 kill(do_cmd_pid, signo ? signo : SIGTERM); 113 waitpid(do_cmd_pid, NULL, 0); 114 } 115 116 if (signo) 117 _exit(1); 118 exit(1); 119 } 120 121 /* 122 * This function executes the given command as the specified user on the 123 * given host. This returns < 0 if execution fails, and >= 0 otherwise. This 124 * assigns the input and output file descriptors on success. 125 */ 126 127 int 128 do_cmd(char *host, char *remuser, char *cmd, int *fdin, int *fdout, int argc) 129 { 130 int pin[2], pout[2], reserved[2]; 131 132 if (verbose_mode) 133 fprintf(stderr, 134 "Executing: program %s host %s, user %s, command %s\n", 135 ssh_program, host, 136 remuser ? remuser : "(unspecified)", cmd); 137 138 /* 139 * Reserve two descriptors so that the real pipes won't get 140 * descriptors 0 and 1 because that will screw up dup2 below. 141 */ 142 pipe(reserved); 143 144 /* Create a socket pair for communicating with ssh. */ 145 if (pipe(pin) < 0) 146 fatal("pipe: %s", strerror(errno)); 147 if (pipe(pout) < 0) 148 fatal("pipe: %s", strerror(errno)); 149 150 /* Free the reserved descriptors. */ 151 close(reserved[0]); 152 close(reserved[1]); 153 154 /* Fork a child to execute the command on the remote host using ssh. */ 155 do_cmd_pid = fork(); 156 if (do_cmd_pid == 0) { 157 /* Child. */ 158 close(pin[1]); 159 close(pout[0]); 160 dup2(pin[0], 0); 161 dup2(pout[1], 1); 162 close(pin[0]); 163 close(pout[1]); 164 165 args.list[0] = ssh_program; 166 if (remuser != NULL) 167 addargs(&args, "-l%s", remuser); 168 addargs(&args, "%s", host); 169 addargs(&args, "%s", cmd); 170 171 execvp(ssh_program, args.list); 172 perror(ssh_program); 173 exit(1); 174 } else if (do_cmd_pid == -1) { 175 fatal("fork: %s", strerror(errno)); 176 } 177 /* Parent. Close the other side, and return the local side. */ 178 close(pin[0]); 179 *fdout = pin[1]; 180 close(pout[1]); 181 *fdin = pout[0]; 182 signal(SIGTERM, killchild); 183 signal(SIGINT, killchild); 184 signal(SIGHUP, killchild); 185 return 0; 186 } 187 188 typedef struct { 189 size_t cnt; 190 char *buf; 191 } BUF; 192 193 BUF *allocbuf(BUF *, int, int); 194 void lostconn(int); 195 void nospace(void); 196 int okname(char *); 197 void run_err(const char *,...); 198 void verifydir(char *); 199 200 struct passwd *pwd; 201 uid_t userid; 202 int errs, remin, remout; 203 int pflag, iamremote, iamrecursive, targetshouldbedirectory; 204 205 #define CMDNEEDS 64 206 char cmd[CMDNEEDS]; /* must hold "rcp -r -p -d\0" */ 207 208 int response(void); 209 void rsource(char *, struct stat *); 210 void sink(int, char *[]); 211 void source(int, char *[]); 212 void tolocal(int, char *[]); 213 void toremote(char *, int, char *[]); 214 void usage(void); 215 216 int 217 main(int argc, char **argv) 218 { 219 int ch, fflag, tflag, status; 220 double speed; 221 char *targ, *endp; 222 extern char *optarg; 223 extern int optind; 224 225 __progname = ssh_get_progname(argv[0]); 226 227 args.list = NULL; 228 addargs(&args, "ssh"); /* overwritten with ssh_program */ 229 addargs(&args, "-x"); 230 addargs(&args, "-oForwardAgent no"); 231 addargs(&args, "-oClearAllForwardings yes"); 232 233 fflag = tflag = 0; 234 while ((ch = getopt(argc, argv, "dfl:prtvBCc:i:P:q1246S:o:F:")) != -1) 235 switch (ch) { 236 /* User-visible flags. */ 237 case '1': 238 case '2': 239 case '4': 240 case '6': 241 case 'C': 242 addargs(&args, "-%c", ch); 243 break; 244 case 'o': 245 case 'c': 246 case 'i': 247 case 'F': 248 addargs(&args, "-%c%s", ch, optarg); 249 break; 250 case 'P': 251 addargs(&args, "-p%s", optarg); 252 break; 253 case 'B': 254 addargs(&args, "-oBatchmode yes"); 255 break; 256 case 'l': 257 speed = strtod(optarg, &endp); 258 if (speed <= 0 || *endp != '\0') 259 usage(); 260 limit_rate = speed * 1024; 261 break; 262 case 'p': 263 pflag = 1; 264 break; 265 case 'r': 266 iamrecursive = 1; 267 break; 268 case 'S': 269 ssh_program = xstrdup(optarg); 270 break; 271 case 'v': 272 addargs(&args, "-v"); 273 verbose_mode = 1; 274 break; 275 case 'q': 276 addargs(&args, "-q"); 277 showprogress = 0; 278 break; 279 280 /* Server options. */ 281 case 'd': 282 targetshouldbedirectory = 1; 283 break; 284 case 'f': /* "from" */ 285 iamremote = 1; 286 fflag = 1; 287 break; 288 case 't': /* "to" */ 289 iamremote = 1; 290 tflag = 1; 291 #ifdef HAVE_CYGWIN 292 setmode(0, O_BINARY); 293 #endif 294 break; 295 default: 296 usage(); 297 } 298 argc -= optind; 299 argv += optind; 300 301 if ((pwd = getpwuid(userid = getuid())) == NULL) 302 fatal("unknown user %u", (u_int) userid); 303 304 if (!isatty(STDERR_FILENO)) 305 showprogress = 0; 306 307 remin = STDIN_FILENO; 308 remout = STDOUT_FILENO; 309 310 if (fflag) { 311 /* Follow "protocol", send data. */ 312 (void) response(); 313 source(argc, argv); 314 exit(errs != 0); 315 } 316 if (tflag) { 317 /* Receive data. */ 318 sink(argc, argv); 319 exit(errs != 0); 320 } 321 if (argc < 2) 322 usage(); 323 if (argc > 2) 324 targetshouldbedirectory = 1; 325 326 remin = remout = -1; 327 do_cmd_pid = -1; 328 /* Command to be executed on remote system using "ssh". */ 329 (void) snprintf(cmd, sizeof cmd, "scp%s%s%s%s", 330 verbose_mode ? " -v" : "", 331 iamrecursive ? " -r" : "", pflag ? " -p" : "", 332 targetshouldbedirectory ? " -d" : ""); 333 334 (void) signal(SIGPIPE, lostconn); 335 336 if ((targ = colon(argv[argc - 1]))) /* Dest is remote host. */ 337 toremote(targ, argc, argv); 338 else { 339 tolocal(argc, argv); /* Dest is local host. */ 340 if (targetshouldbedirectory) 341 verifydir(argv[argc - 1]); 342 } 343 /* 344 * Finally check the exit status of the ssh process, if one was forked 345 * and no error has occured yet 346 */ 347 if (do_cmd_pid != -1 && errs == 0) { 348 if (remin != -1) 349 (void) close(remin); 350 if (remout != -1) 351 (void) close(remout); 352 if (waitpid(do_cmd_pid, &status, 0) == -1) 353 errs = 1; 354 else { 355 if (!WIFEXITED(status) || WEXITSTATUS(status) != 0) 356 errs = 1; 357 } 358 } 359 exit(errs != 0); 360 } 361 362 void 363 toremote(char *targ, int argc, char **argv) 364 { 365 int i, len; 366 char *bp, *host, *src, *suser, *thost, *tuser, *arg; 367 368 *targ++ = 0; 369 if (*targ == 0) 370 targ = "."; 371 372 arg = xstrdup(argv[argc - 1]); 373 if ((thost = strrchr(arg, '@'))) { 374 /* user@host */ 375 *thost++ = 0; 376 tuser = arg; 377 if (*tuser == '\0') 378 tuser = NULL; 379 } else { 380 thost = arg; 381 tuser = NULL; 382 } 383 384 for (i = 0; i < argc - 1; i++) { 385 src = colon(argv[i]); 386 if (src) { /* remote to remote */ 387 static char *ssh_options = 388 "-x -o'ClearAllForwardings yes'"; 389 *src++ = 0; 390 if (*src == 0) 391 src = "."; 392 host = strrchr(argv[i], '@'); 393 len = strlen(ssh_program) + strlen(argv[i]) + 394 strlen(src) + (tuser ? strlen(tuser) : 0) + 395 strlen(thost) + strlen(targ) + 396 strlen(ssh_options) + CMDNEEDS + 20; 397 bp = xmalloc(len); 398 if (host) { 399 *host++ = 0; 400 host = cleanhostname(host); 401 suser = argv[i]; 402 if (*suser == '\0') 403 suser = pwd->pw_name; 404 else if (!okname(suser)) { 405 xfree(bp); 406 continue; 407 } 408 if (tuser && !okname(tuser)) { 409 xfree(bp); 410 continue; 411 } 412 snprintf(bp, len, 413 "%s%s %s -n " 414 "-l %s %s %s %s '%s%s%s:%s'", 415 ssh_program, verbose_mode ? " -v" : "", 416 ssh_options, suser, host, cmd, src, 417 tuser ? tuser : "", tuser ? "@" : "", 418 thost, targ); 419 } else { 420 host = cleanhostname(argv[i]); 421 snprintf(bp, len, 422 "exec %s%s %s -n %s " 423 "%s %s '%s%s%s:%s'", 424 ssh_program, verbose_mode ? " -v" : "", 425 ssh_options, host, cmd, src, 426 tuser ? tuser : "", tuser ? "@" : "", 427 thost, targ); 428 } 429 if (verbose_mode) 430 fprintf(stderr, "Executing: %s\n", bp); 431 if (system(bp) != 0) 432 errs = 1; 433 (void) xfree(bp); 434 } else { /* local to remote */ 435 if (remin == -1) { 436 len = strlen(targ) + CMDNEEDS + 20; 437 bp = xmalloc(len); 438 (void) snprintf(bp, len, "%s -t %s", cmd, targ); 439 host = cleanhostname(thost); 440 if (do_cmd(host, tuser, bp, &remin, 441 &remout, argc) < 0) 442 exit(1); 443 if (response() < 0) 444 exit(1); 445 (void) xfree(bp); 446 } 447 source(1, argv + i); 448 } 449 } 450 } 451 452 void 453 tolocal(int argc, char **argv) 454 { 455 int i, len; 456 char *bp, *host, *src, *suser; 457 458 for (i = 0; i < argc - 1; i++) { 459 if (!(src = colon(argv[i]))) { /* Local to local. */ 460 len = strlen(_PATH_CP) + strlen(argv[i]) + 461 strlen(argv[argc - 1]) + 20; 462 bp = xmalloc(len); 463 (void) snprintf(bp, len, "exec %s%s%s %s %s", _PATH_CP, 464 iamrecursive ? " -r" : "", pflag ? " -p" : "", 465 argv[i], argv[argc - 1]); 466 if (verbose_mode) 467 fprintf(stderr, "Executing: %s\n", bp); 468 if (system(bp)) 469 ++errs; 470 (void) xfree(bp); 471 continue; 472 } 473 *src++ = 0; 474 if (*src == 0) 475 src = "."; 476 if ((host = strrchr(argv[i], '@')) == NULL) { 477 host = argv[i]; 478 suser = NULL; 479 } else { 480 *host++ = 0; 481 suser = argv[i]; 482 if (*suser == '\0') 483 suser = pwd->pw_name; 484 } 485 host = cleanhostname(host); 486 len = strlen(src) + CMDNEEDS + 20; 487 bp = xmalloc(len); 488 (void) snprintf(bp, len, "%s -f %s", cmd, src); 489 if (do_cmd(host, suser, bp, &remin, &remout, argc) < 0) { 490 (void) xfree(bp); 491 ++errs; 492 continue; 493 } 494 xfree(bp); 495 sink(1, argv + argc - 1); 496 (void) close(remin); 497 remin = remout = -1; 498 } 499 } 500 501 void 502 source(int argc, char **argv) 503 { 504 struct stat stb; 505 static BUF buffer; 506 BUF *bp; 507 off_t i, amt, statbytes; 508 size_t result; 509 int fd = -1, haderr, indx; 510 char *last, *name, buf[2048]; 511 int len; 512 513 for (indx = 0; indx < argc; ++indx) { 514 name = argv[indx]; 515 statbytes = 0; 516 len = strlen(name); 517 while (len > 1 && name[len-1] == '/') 518 name[--len] = '\0'; 519 if (strchr(name, '\n') != NULL) { 520 run_err("%s: skipping, filename contains a newline", 521 name); 522 goto next; 523 } 524 if ((fd = open(name, O_RDONLY, 0)) < 0) 525 goto syserr; 526 if (fstat(fd, &stb) < 0) { 527 syserr: run_err("%s: %s", name, strerror(errno)); 528 goto next; 529 } 530 switch (stb.st_mode & S_IFMT) { 531 case S_IFREG: 532 break; 533 case S_IFDIR: 534 if (iamrecursive) { 535 rsource(name, &stb); 536 goto next; 537 } 538 /* FALLTHROUGH */ 539 default: 540 run_err("%s: not a regular file", name); 541 goto next; 542 } 543 if ((last = strrchr(name, '/')) == NULL) 544 last = name; 545 else 546 ++last; 547 curfile = last; 548 if (pflag) { 549 /* 550 * Make it compatible with possible future 551 * versions expecting microseconds. 552 */ 553 (void) snprintf(buf, sizeof buf, "T%lu 0 %lu 0\n", 554 (u_long) stb.st_mtime, 555 (u_long) stb.st_atime); 556 (void) atomicio(vwrite, remout, buf, strlen(buf)); 557 if (response() < 0) 558 goto next; 559 } 560 #define FILEMODEMASK (S_ISUID|S_ISGID|S_IRWXU|S_IRWXG|S_IRWXO) 561 snprintf(buf, sizeof buf, "C%04o %lld %s\n", 562 (u_int) (stb.st_mode & FILEMODEMASK), 563 (int64_t)stb.st_size, last); 564 if (verbose_mode) { 565 fprintf(stderr, "Sending file modes: %s", buf); 566 } 567 (void) atomicio(vwrite, remout, buf, strlen(buf)); 568 if (response() < 0) 569 goto next; 570 if ((bp = allocbuf(&buffer, fd, 2048)) == NULL) { 571 next: (void) close(fd); 572 continue; 573 } 574 if (showprogress) 575 start_progress_meter(curfile, stb.st_size, &statbytes); 576 /* Keep writing after an error so that we stay sync'd up. */ 577 for (haderr = i = 0; i < stb.st_size; i += bp->cnt) { 578 amt = bp->cnt; 579 if (i + amt > stb.st_size) 580 amt = stb.st_size - i; 581 if (!haderr) { 582 result = atomicio(read, fd, bp->buf, amt); 583 if (result != amt) 584 haderr = errno; 585 } 586 if (haderr) 587 (void) atomicio(vwrite, remout, bp->buf, amt); 588 else { 589 result = atomicio(vwrite, remout, bp->buf, amt); 590 if (result != amt) 591 haderr = errno; 592 statbytes += result; 593 } 594 if (limit_rate) 595 bwlimit(amt); 596 } 597 if (showprogress) 598 stop_progress_meter(); 599 600 if (close(fd) < 0 && !haderr) 601 haderr = errno; 602 if (!haderr) 603 (void) atomicio(vwrite, remout, "", 1); 604 else 605 run_err("%s: %s", name, strerror(haderr)); 606 (void) response(); 607 } 608 } 609 610 void 611 rsource(char *name, struct stat *statp) 612 { 613 DIR *dirp; 614 struct dirent *dp; 615 char *last, *vect[1], path[1100]; 616 617 if (!(dirp = opendir(name))) { 618 run_err("%s: %s", name, strerror(errno)); 619 return; 620 } 621 last = strrchr(name, '/'); 622 if (last == 0) 623 last = name; 624 else 625 last++; 626 if (pflag) { 627 (void) snprintf(path, sizeof(path), "T%lu 0 %lu 0\n", 628 (u_long) statp->st_mtime, 629 (u_long) statp->st_atime); 630 (void) atomicio(vwrite, remout, path, strlen(path)); 631 if (response() < 0) { 632 closedir(dirp); 633 return; 634 } 635 } 636 (void) snprintf(path, sizeof path, "D%04o %d %.1024s\n", 637 (u_int) (statp->st_mode & FILEMODEMASK), 0, last); 638 if (verbose_mode) 639 fprintf(stderr, "Entering directory: %s", path); 640 (void) atomicio(vwrite, remout, path, strlen(path)); 641 if (response() < 0) { 642 closedir(dirp); 643 return; 644 } 645 while ((dp = readdir(dirp)) != NULL) { 646 if (dp->d_ino == 0) 647 continue; 648 if (!strcmp(dp->d_name, ".") || !strcmp(dp->d_name, "..")) 649 continue; 650 if (strlen(name) + 1 + strlen(dp->d_name) >= sizeof(path) - 1) { 651 run_err("%s/%s: name too long", name, dp->d_name); 652 continue; 653 } 654 (void) snprintf(path, sizeof path, "%s/%s", name, dp->d_name); 655 vect[0] = path; 656 source(1, vect); 657 } 658 (void) closedir(dirp); 659 (void) atomicio(vwrite, remout, "E\n", 2); 660 (void) response(); 661 } 662 663 void 664 bwlimit(int amount) 665 { 666 static struct timeval bwstart, bwend; 667 static int lamt, thresh = 16384; 668 u_int64_t waitlen; 669 struct timespec ts, rm; 670 671 if (!timerisset(&bwstart)) { 672 gettimeofday(&bwstart, NULL); 673 return; 674 } 675 676 lamt += amount; 677 if (lamt < thresh) 678 return; 679 680 gettimeofday(&bwend, NULL); 681 timersub(&bwend, &bwstart, &bwend); 682 if (!timerisset(&bwend)) 683 return; 684 685 lamt *= 8; 686 waitlen = (double)1000000L * lamt / limit_rate; 687 688 bwstart.tv_sec = waitlen / 1000000L; 689 bwstart.tv_usec = waitlen % 1000000L; 690 691 if (timercmp(&bwstart, &bwend, >)) { 692 timersub(&bwstart, &bwend, &bwend); 693 694 /* Adjust the wait time */ 695 if (bwend.tv_sec) { 696 thresh /= 2; 697 if (thresh < 2048) 698 thresh = 2048; 699 } else if (bwend.tv_usec < 100) { 700 thresh *= 2; 701 if (thresh > 32768) 702 thresh = 32768; 703 } 704 705 TIMEVAL_TO_TIMESPEC(&bwend, &ts); 706 while (nanosleep(&ts, &rm) == -1) { 707 if (errno != EINTR) 708 break; 709 ts = rm; 710 } 711 } 712 713 lamt = 0; 714 gettimeofday(&bwstart, NULL); 715 } 716 717 void 718 sink(int argc, char **argv) 719 { 720 static BUF buffer; 721 struct stat stb; 722 enum { 723 YES, NO, DISPLAYED 724 } wrerr; 725 BUF *bp; 726 off_t i; 727 size_t j, count; 728 int amt, exists, first, mask, mode, ofd, omode; 729 off_t size, statbytes; 730 int setimes, targisdir, wrerrno = 0; 731 char ch, *cp, *np, *targ, *why, *vect[1], buf[2048]; 732 struct timeval tv[2]; 733 734 #define atime tv[0] 735 #define mtime tv[1] 736 #define SCREWUP(str) { why = str; goto screwup; } 737 738 setimes = targisdir = 0; 739 mask = umask(0); 740 if (!pflag) 741 (void) umask(mask); 742 if (argc != 1) { 743 run_err("ambiguous target"); 744 exit(1); 745 } 746 targ = *argv; 747 if (targetshouldbedirectory) 748 verifydir(targ); 749 750 (void) atomicio(vwrite, remout, "", 1); 751 if (stat(targ, &stb) == 0 && S_ISDIR(stb.st_mode)) 752 targisdir = 1; 753 for (first = 1;; first = 0) { 754 cp = buf; 755 if (atomicio(read, remin, cp, 1) != 1) 756 return; 757 if (*cp++ == '\n') 758 SCREWUP("unexpected <newline>"); 759 do { 760 if (atomicio(read, remin, &ch, sizeof(ch)) != sizeof(ch)) 761 SCREWUP("lost connection"); 762 *cp++ = ch; 763 } while (cp < &buf[sizeof(buf) - 1] && ch != '\n'); 764 *cp = 0; 765 if (verbose_mode) 766 fprintf(stderr, "Sink: %s", buf); 767 768 if (buf[0] == '\01' || buf[0] == '\02') { 769 if (iamremote == 0) 770 (void) atomicio(vwrite, STDERR_FILENO, 771 buf + 1, strlen(buf + 1)); 772 if (buf[0] == '\02') 773 exit(1); 774 ++errs; 775 continue; 776 } 777 if (buf[0] == 'E') { 778 (void) atomicio(vwrite, remout, "", 1); 779 return; 780 } 781 if (ch == '\n') 782 *--cp = 0; 783 784 cp = buf; 785 if (*cp == 'T') { 786 setimes++; 787 cp++; 788 mtime.tv_sec = strtol(cp, &cp, 10); 789 if (!cp || *cp++ != ' ') 790 SCREWUP("mtime.sec not delimited"); 791 mtime.tv_usec = strtol(cp, &cp, 10); 792 if (!cp || *cp++ != ' ') 793 SCREWUP("mtime.usec not delimited"); 794 atime.tv_sec = strtol(cp, &cp, 10); 795 if (!cp || *cp++ != ' ') 796 SCREWUP("atime.sec not delimited"); 797 atime.tv_usec = strtol(cp, &cp, 10); 798 if (!cp || *cp++ != '\0') 799 SCREWUP("atime.usec not delimited"); 800 (void) atomicio(vwrite, remout, "", 1); 801 continue; 802 } 803 if (*cp != 'C' && *cp != 'D') { 804 /* 805 * Check for the case "rcp remote:foo\* local:bar". 806 * In this case, the line "No match." can be returned 807 * by the shell before the rcp command on the remote is 808 * executed so the ^Aerror_message convention isn't 809 * followed. 810 */ 811 if (first) { 812 run_err("%s", cp); 813 exit(1); 814 } 815 SCREWUP("expected control record"); 816 } 817 mode = 0; 818 for (++cp; cp < buf + 5; cp++) { 819 if (*cp < '0' || *cp > '7') 820 SCREWUP("bad mode"); 821 mode = (mode << 3) | (*cp - '0'); 822 } 823 if (*cp++ != ' ') 824 SCREWUP("mode not delimited"); 825 826 for (size = 0; isdigit(*cp);) 827 size = size * 10 + (*cp++ - '0'); 828 if (*cp++ != ' ') 829 SCREWUP("size not delimited"); 830 if ((strchr(cp, '/') != NULL) || (strcmp(cp, "..") == 0)) { 831 run_err("error: unexpected filename: %s", cp); 832 exit(1); 833 } 834 if (targisdir) { 835 static char *namebuf; 836 static size_t cursize; 837 size_t need; 838 839 need = strlen(targ) + strlen(cp) + 250; 840 if (need > cursize) { 841 if (namebuf) 842 xfree(namebuf); 843 namebuf = xmalloc(need); 844 cursize = need; 845 } 846 (void) snprintf(namebuf, need, "%s%s%s", targ, 847 strcmp(targ, "/") ? "/" : "", cp); 848 np = namebuf; 849 } else 850 np = targ; 851 curfile = cp; 852 exists = stat(np, &stb) == 0; 853 if (buf[0] == 'D') { 854 int mod_flag = pflag; 855 if (!iamrecursive) 856 SCREWUP("received directory without -r"); 857 if (exists) { 858 if (!S_ISDIR(stb.st_mode)) { 859 errno = ENOTDIR; 860 goto bad; 861 } 862 if (pflag) 863 (void) chmod(np, mode); 864 } else { 865 /* Handle copying from a read-only 866 directory */ 867 mod_flag = 1; 868 if (mkdir(np, mode | S_IRWXU) < 0) 869 goto bad; 870 } 871 vect[0] = xstrdup(np); 872 sink(1, vect); 873 if (setimes) { 874 setimes = 0; 875 if (utimes(vect[0], tv) < 0) 876 run_err("%s: set times: %s", 877 vect[0], strerror(errno)); 878 } 879 if (mod_flag) 880 (void) chmod(vect[0], mode); 881 if (vect[0]) 882 xfree(vect[0]); 883 continue; 884 } 885 omode = mode; 886 mode |= S_IWRITE; 887 if ((ofd = open(np, O_WRONLY|O_CREAT, mode)) < 0) { 888 bad: run_err("%s: %s", np, strerror(errno)); 889 continue; 890 } 891 (void) atomicio(vwrite, remout, "", 1); 892 if ((bp = allocbuf(&buffer, ofd, 4096)) == NULL) { 893 (void) close(ofd); 894 continue; 895 } 896 cp = bp->buf; 897 wrerr = NO; 898 899 statbytes = 0; 900 if (showprogress) 901 start_progress_meter(curfile, size, &statbytes); 902 for (count = i = 0; i < size; i += 4096) { 903 amt = 4096; 904 if (i + amt > size) 905 amt = size - i; 906 count += amt; 907 do { 908 j = atomicio(read, remin, cp, amt); 909 if (j == 0) { 910 run_err("%s", j ? strerror(errno) : 911 "dropped connection"); 912 exit(1); 913 } 914 amt -= j; 915 cp += j; 916 statbytes += j; 917 } while (amt > 0); 918 919 if (limit_rate) 920 bwlimit(4096); 921 922 if (count == bp->cnt) { 923 /* Keep reading so we stay sync'd up. */ 924 if (wrerr == NO) { 925 if (atomicio(vwrite, ofd, bp->buf, 926 count) != count) { 927 wrerr = YES; 928 wrerrno = errno; 929 } 930 } 931 count = 0; 932 cp = bp->buf; 933 } 934 } 935 if (showprogress) 936 stop_progress_meter(); 937 if (count != 0 && wrerr == NO && 938 atomicio(vwrite, ofd, bp->buf, count) != count) { 939 wrerr = YES; 940 wrerrno = errno; 941 } 942 if (wrerr == NO && ftruncate(ofd, size) != 0) { 943 run_err("%s: truncate: %s", np, strerror(errno)); 944 wrerr = DISPLAYED; 945 } 946 if (pflag) { 947 if (exists || omode != mode) 948 #ifdef HAVE_FCHMOD 949 if (fchmod(ofd, omode)) { 950 #else /* HAVE_FCHMOD */ 951 if (chmod(np, omode)) { 952 #endif /* HAVE_FCHMOD */ 953 run_err("%s: set mode: %s", 954 np, strerror(errno)); 955 wrerr = DISPLAYED; 956 } 957 } else { 958 if (!exists && omode != mode) 959 #ifdef HAVE_FCHMOD 960 if (fchmod(ofd, omode & ~mask)) { 961 #else /* HAVE_FCHMOD */ 962 if (chmod(np, omode & ~mask)) { 963 #endif /* HAVE_FCHMOD */ 964 run_err("%s: set mode: %s", 965 np, strerror(errno)); 966 wrerr = DISPLAYED; 967 } 968 } 969 if (close(ofd) == -1) { 970 wrerr = YES; 971 wrerrno = errno; 972 } 973 (void) response(); 974 if (setimes && wrerr == NO) { 975 setimes = 0; 976 if (utimes(np, tv) < 0) { 977 run_err("%s: set times: %s", 978 np, strerror(errno)); 979 wrerr = DISPLAYED; 980 } 981 } 982 switch (wrerr) { 983 case YES: 984 run_err("%s: %s", np, strerror(wrerrno)); 985 break; 986 case NO: 987 (void) atomicio(vwrite, remout, "", 1); 988 break; 989 case DISPLAYED: 990 break; 991 } 992 } 993 screwup: 994 run_err("protocol error: %s", why); 995 exit(1); 996 } 997 998 int 999 response(void) 1000 { 1001 char ch, *cp, resp, rbuf[2048]; 1002 1003 if (atomicio(read, remin, &resp, sizeof(resp)) != sizeof(resp)) 1004 lostconn(0); 1005 1006 cp = rbuf; 1007 switch (resp) { 1008 case 0: /* ok */ 1009 return (0); 1010 default: 1011 *cp++ = resp; 1012 /* FALLTHROUGH */ 1013 case 1: /* error, followed by error msg */ 1014 case 2: /* fatal error, "" */ 1015 do { 1016 if (atomicio(read, remin, &ch, sizeof(ch)) != sizeof(ch)) 1017 lostconn(0); 1018 *cp++ = ch; 1019 } while (cp < &rbuf[sizeof(rbuf) - 1] && ch != '\n'); 1020 1021 if (!iamremote) 1022 (void) atomicio(vwrite, STDERR_FILENO, rbuf, cp - rbuf); 1023 ++errs; 1024 if (resp == 1) 1025 return (-1); 1026 exit(1); 1027 } 1028 /* NOTREACHED */ 1029 } 1030 1031 void 1032 usage(void) 1033 { 1034 (void) fprintf(stderr, 1035 "usage: scp [-1246BCpqrv] [-c cipher] [-F ssh_config] [-i identity_file]\n" 1036 " [-l limit] [-o ssh_option] [-P port] [-S program]\n" 1037 " [[user@]host1:]file1 [...] [[user@]host2:]file2\n"); 1038 exit(1); 1039 } 1040 1041 void 1042 run_err(const char *fmt,...) 1043 { 1044 static FILE *fp; 1045 va_list ap; 1046 1047 ++errs; 1048 if (fp == NULL && !(fp = fdopen(remout, "w"))) 1049 return; 1050 (void) fprintf(fp, "%c", 0x01); 1051 (void) fprintf(fp, "scp: "); 1052 va_start(ap, fmt); 1053 (void) vfprintf(fp, fmt, ap); 1054 va_end(ap); 1055 (void) fprintf(fp, "\n"); 1056 (void) fflush(fp); 1057 1058 if (!iamremote) { 1059 va_start(ap, fmt); 1060 vfprintf(stderr, fmt, ap); 1061 va_end(ap); 1062 fprintf(stderr, "\n"); 1063 } 1064 } 1065 1066 void 1067 verifydir(char *cp) 1068 { 1069 struct stat stb; 1070 1071 if (!stat(cp, &stb)) { 1072 if (S_ISDIR(stb.st_mode)) 1073 return; 1074 errno = ENOTDIR; 1075 } 1076 run_err("%s: %s", cp, strerror(errno)); 1077 killchild(0); 1078 } 1079 1080 int 1081 okname(char *cp0) 1082 { 1083 int c; 1084 char *cp; 1085 1086 cp = cp0; 1087 do { 1088 c = (int)*cp; 1089 if (c & 0200) 1090 goto bad; 1091 if (!isalpha(c) && !isdigit(c)) { 1092 switch (c) { 1093 case '\'': 1094 case '"': 1095 case '`': 1096 case ' ': 1097 case '#': 1098 goto bad; 1099 default: 1100 break; 1101 } 1102 } 1103 } while (*++cp); 1104 return (1); 1105 1106 bad: fprintf(stderr, "%s: invalid user name\n", cp0); 1107 return (0); 1108 } 1109 1110 BUF * 1111 allocbuf(BUF *bp, int fd, int blksize) 1112 { 1113 size_t size; 1114 #ifdef HAVE_STRUCT_STAT_ST_BLKSIZE 1115 struct stat stb; 1116 1117 if (fstat(fd, &stb) < 0) { 1118 run_err("fstat: %s", strerror(errno)); 1119 return (0); 1120 } 1121 size = roundup(stb.st_blksize, blksize); 1122 if (size == 0) 1123 size = blksize; 1124 #else /* HAVE_STRUCT_STAT_ST_BLKSIZE */ 1125 size = blksize; 1126 #endif /* HAVE_STRUCT_STAT_ST_BLKSIZE */ 1127 if (bp->cnt >= size) 1128 return (bp); 1129 if (bp->buf == NULL) 1130 bp->buf = xmalloc(size); 1131 else 1132 bp->buf = xrealloc(bp->buf, size); 1133 memset(bp->buf, 0, size); 1134 bp->cnt = size; 1135 return (bp); 1136 } 1137 1138 void 1139 lostconn(int signo) 1140 { 1141 if (!iamremote) 1142 write(STDERR_FILENO, "lost connection\n", 16); 1143 if (signo) 1144 _exit(1); 1145 else 1146 exit(1); 1147 } 1148