1 /* 2 * scp - secure remote copy. This is basically patched BSD rcp which 3 * uses ssh to do the data transfer (instead of using rcmd). 4 * 5 * NOTE: This version should NOT be suid root. (This uses ssh to 6 * do the transfer and ssh has the necessary privileges.) 7 * 8 * 1995 Timo Rinne <tri@iki.fi>, Tatu Ylonen <ylo@cs.hut.fi> 9 * 10 * As far as I am concerned, the code I have written for this software 11 * can be used freely for any purpose. Any derived versions of this 12 * software must be clearly marked as such, and if the derived work is 13 * incompatible with the protocol description in the RFC file, it must be 14 * called by a name other than "ssh" or "Secure Shell". 15 */ 16 /* 17 * Copyright (c) 1999 Theo de Raadt. All rights reserved. 18 * Copyright (c) 1999 Aaron Campbell. All rights reserved. 19 * 20 * Redistribution and use in source and binary forms, with or without 21 * modification, are permitted provided that the following conditions 22 * are met: 23 * 1. Redistributions of source code must retain the above copyright 24 * notice, this list of conditions and the following disclaimer. 25 * 2. Redistributions in binary form must reproduce the above copyright 26 * notice, this list of conditions and the following disclaimer in the 27 * documentation and/or other materials provided with the distribution. 28 * 29 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR 30 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES 31 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. 32 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, 33 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT 34 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, 35 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY 36 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT 37 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF 38 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 39 */ 40 41 /* 42 * Parts from: 43 * 44 * Copyright (c) 1983, 1990, 1992, 1993, 1995 45 * The Regents of the University of California. All rights reserved. 46 * 47 * Redistribution and use in source and binary forms, with or without 48 * modification, are permitted provided that the following conditions 49 * are met: 50 * 1. Redistributions of source code must retain the above copyright 51 * notice, this list of conditions and the following disclaimer. 52 * 2. Redistributions in binary form must reproduce the above copyright 53 * notice, this list of conditions and the following disclaimer in the 54 * documentation and/or other materials provided with the distribution. 55 * 3. Neither the name of the University nor the names of its contributors 56 * may be used to endorse or promote products derived from this software 57 * without specific prior written permission. 58 * 59 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 60 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 61 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 62 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 63 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 64 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 65 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 66 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 67 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 68 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 69 * SUCH DAMAGE. 70 * 71 */ 72 73 #include "includes.h" 74 RCSID("$OpenBSD: scp.c,v 1.121 2005/04/02 12:41:16 djm Exp $"); 75 76 #include "xmalloc.h" 77 #include "atomicio.h" 78 #include "pathnames.h" 79 #include "log.h" 80 #include "misc.h" 81 #include "progressmeter.h" 82 83 extern char *__progname; 84 85 void bwlimit(int); 86 87 /* Struct for addargs */ 88 arglist args; 89 90 /* Bandwidth limit */ 91 off_t limit_rate = 0; 92 93 /* Name of current file being transferred. */ 94 char *curfile; 95 96 /* This is set to non-zero to enable verbose mode. */ 97 int verbose_mode = 0; 98 99 /* This is set to zero if the progressmeter is not desired. */ 100 int showprogress = 1; 101 102 /* This is the program to execute for the secured connection. ("ssh" or -S) */ 103 char *ssh_program = _PATH_SSH_PROGRAM; 104 105 /* This is used to store the pid of ssh_program */ 106 pid_t do_cmd_pid = -1; 107 108 static void 109 killchild(int signo) 110 { 111 if (do_cmd_pid > 1) { 112 kill(do_cmd_pid, signo); 113 waitpid(do_cmd_pid, NULL, 0); 114 } 115 116 _exit(1); 117 } 118 119 /* 120 * This function executes the given command as the specified user on the 121 * given host. This returns < 0 if execution fails, and >= 0 otherwise. This 122 * assigns the input and output file descriptors on success. 123 */ 124 125 int 126 do_cmd(char *host, char *remuser, char *cmd, int *fdin, int *fdout, int argc) 127 { 128 int pin[2], pout[2], reserved[2]; 129 130 if (verbose_mode) 131 fprintf(stderr, 132 "Executing: program %s host %s, user %s, command %s\n", 133 ssh_program, host, 134 remuser ? remuser : "(unspecified)", cmd); 135 136 /* 137 * Reserve two descriptors so that the real pipes won't get 138 * descriptors 0 and 1 because that will screw up dup2 below. 139 */ 140 pipe(reserved); 141 142 /* Create a socket pair for communicating with ssh. */ 143 if (pipe(pin) < 0) 144 fatal("pipe: %s", strerror(errno)); 145 if (pipe(pout) < 0) 146 fatal("pipe: %s", strerror(errno)); 147 148 /* Free the reserved descriptors. */ 149 close(reserved[0]); 150 close(reserved[1]); 151 152 /* Fork a child to execute the command on the remote host using ssh. */ 153 do_cmd_pid = fork(); 154 if (do_cmd_pid == 0) { 155 /* Child. */ 156 close(pin[1]); 157 close(pout[0]); 158 dup2(pin[0], 0); 159 dup2(pout[1], 1); 160 close(pin[0]); 161 close(pout[1]); 162 163 args.list[0] = ssh_program; 164 if (remuser != NULL) 165 addargs(&args, "-l%s", remuser); 166 addargs(&args, "%s", host); 167 addargs(&args, "%s", cmd); 168 169 execvp(ssh_program, args.list); 170 perror(ssh_program); 171 exit(1); 172 } else if (do_cmd_pid == -1) { 173 fatal("fork: %s", strerror(errno)); 174 } 175 /* Parent. Close the other side, and return the local side. */ 176 close(pin[0]); 177 *fdout = pin[1]; 178 close(pout[1]); 179 *fdin = pout[0]; 180 signal(SIGTERM, killchild); 181 signal(SIGINT, killchild); 182 signal(SIGHUP, killchild); 183 return 0; 184 } 185 186 typedef struct { 187 int cnt; 188 char *buf; 189 } BUF; 190 191 BUF *allocbuf(BUF *, int, int); 192 void lostconn(int); 193 void nospace(void); 194 int okname(char *); 195 void run_err(const char *,...); 196 void verifydir(char *); 197 198 struct passwd *pwd; 199 uid_t userid; 200 int errs, remin, remout; 201 int pflag, iamremote, iamrecursive, targetshouldbedirectory; 202 203 #define CMDNEEDS 64 204 char cmd[CMDNEEDS]; /* must hold "rcp -r -p -d\0" */ 205 206 int response(void); 207 void rsource(char *, struct stat *); 208 void sink(int, char *[]); 209 void source(int, char *[]); 210 void tolocal(int, char *[]); 211 void toremote(char *, int, char *[]); 212 void usage(void); 213 214 int 215 main(int argc, char **argv) 216 { 217 int ch, fflag, tflag, status; 218 double speed; 219 char *targ, *endp; 220 extern char *optarg; 221 extern int optind; 222 223 __progname = ssh_get_progname(argv[0]); 224 225 args.list = NULL; 226 addargs(&args, "ssh"); /* overwritten with ssh_program */ 227 addargs(&args, "-x"); 228 addargs(&args, "-oForwardAgent no"); 229 addargs(&args, "-oClearAllForwardings yes"); 230 231 fflag = tflag = 0; 232 while ((ch = getopt(argc, argv, "dfl:prtvBCc:i:P:q1246S:o:F:")) != -1) 233 switch (ch) { 234 /* User-visible flags. */ 235 case '1': 236 case '2': 237 case '4': 238 case '6': 239 case 'C': 240 addargs(&args, "-%c", ch); 241 break; 242 case 'o': 243 case 'c': 244 case 'i': 245 case 'F': 246 addargs(&args, "-%c%s", ch, optarg); 247 break; 248 case 'P': 249 addargs(&args, "-p%s", optarg); 250 break; 251 case 'B': 252 addargs(&args, "-oBatchmode yes"); 253 break; 254 case 'l': 255 speed = strtod(optarg, &endp); 256 if (speed <= 0 || *endp != '\0') 257 usage(); 258 limit_rate = speed * 1024; 259 break; 260 case 'p': 261 pflag = 1; 262 break; 263 case 'r': 264 iamrecursive = 1; 265 break; 266 case 'S': 267 ssh_program = xstrdup(optarg); 268 break; 269 case 'v': 270 addargs(&args, "-v"); 271 verbose_mode = 1; 272 break; 273 case 'q': 274 addargs(&args, "-q"); 275 showprogress = 0; 276 break; 277 278 /* Server options. */ 279 case 'd': 280 targetshouldbedirectory = 1; 281 break; 282 case 'f': /* "from" */ 283 iamremote = 1; 284 fflag = 1; 285 break; 286 case 't': /* "to" */ 287 iamremote = 1; 288 tflag = 1; 289 #ifdef HAVE_CYGWIN 290 setmode(0, O_BINARY); 291 #endif 292 break; 293 default: 294 usage(); 295 } 296 argc -= optind; 297 argv += optind; 298 299 if ((pwd = getpwuid(userid = getuid())) == NULL) 300 fatal("unknown user %u", (u_int) userid); 301 302 if (!isatty(STDERR_FILENO)) 303 showprogress = 0; 304 305 remin = STDIN_FILENO; 306 remout = STDOUT_FILENO; 307 308 if (fflag) { 309 /* Follow "protocol", send data. */ 310 (void) response(); 311 source(argc, argv); 312 exit(errs != 0); 313 } 314 if (tflag) { 315 /* Receive data. */ 316 sink(argc, argv); 317 exit(errs != 0); 318 } 319 if (argc < 2) 320 usage(); 321 if (argc > 2) 322 targetshouldbedirectory = 1; 323 324 remin = remout = -1; 325 do_cmd_pid = -1; 326 /* Command to be executed on remote system using "ssh". */ 327 (void) snprintf(cmd, sizeof cmd, "scp%s%s%s%s", 328 verbose_mode ? " -v" : "", 329 iamrecursive ? " -r" : "", pflag ? " -p" : "", 330 targetshouldbedirectory ? " -d" : ""); 331 332 (void) signal(SIGPIPE, lostconn); 333 334 if ((targ = colon(argv[argc - 1]))) /* Dest is remote host. */ 335 toremote(targ, argc, argv); 336 else { 337 tolocal(argc, argv); /* Dest is local host. */ 338 if (targetshouldbedirectory) 339 verifydir(argv[argc - 1]); 340 } 341 /* 342 * Finally check the exit status of the ssh process, if one was forked 343 * and no error has occured yet 344 */ 345 if (do_cmd_pid != -1 && errs == 0) { 346 if (remin != -1) 347 (void) close(remin); 348 if (remout != -1) 349 (void) close(remout); 350 if (waitpid(do_cmd_pid, &status, 0) == -1) 351 errs = 1; 352 else { 353 if (!WIFEXITED(status) || WEXITSTATUS(status) != 0) 354 errs = 1; 355 } 356 } 357 exit(errs != 0); 358 } 359 360 void 361 toremote(char *targ, int argc, char **argv) 362 { 363 int i, len; 364 char *bp, *host, *src, *suser, *thost, *tuser, *arg; 365 366 *targ++ = 0; 367 if (*targ == 0) 368 targ = "."; 369 370 arg = xstrdup(argv[argc - 1]); 371 if ((thost = strrchr(arg, '@'))) { 372 /* user@host */ 373 *thost++ = 0; 374 tuser = arg; 375 if (*tuser == '\0') 376 tuser = NULL; 377 } else { 378 thost = arg; 379 tuser = NULL; 380 } 381 382 for (i = 0; i < argc - 1; i++) { 383 src = colon(argv[i]); 384 if (src) { /* remote to remote */ 385 static char *ssh_options = 386 "-x -o'ClearAllForwardings yes'"; 387 *src++ = 0; 388 if (*src == 0) 389 src = "."; 390 host = strrchr(argv[i], '@'); 391 len = strlen(ssh_program) + strlen(argv[i]) + 392 strlen(src) + (tuser ? strlen(tuser) : 0) + 393 strlen(thost) + strlen(targ) + 394 strlen(ssh_options) + CMDNEEDS + 20; 395 bp = xmalloc(len); 396 if (host) { 397 *host++ = 0; 398 host = cleanhostname(host); 399 suser = argv[i]; 400 if (*suser == '\0') 401 suser = pwd->pw_name; 402 else if (!okname(suser)) { 403 xfree(bp); 404 continue; 405 } 406 if (tuser && !okname(tuser)) { 407 xfree(bp); 408 continue; 409 } 410 snprintf(bp, len, 411 "%s%s %s -n " 412 "-l %s %s %s %s '%s%s%s:%s'", 413 ssh_program, verbose_mode ? " -v" : "", 414 ssh_options, suser, host, cmd, src, 415 tuser ? tuser : "", tuser ? "@" : "", 416 thost, targ); 417 } else { 418 host = cleanhostname(argv[i]); 419 snprintf(bp, len, 420 "exec %s%s %s -n %s " 421 "%s %s '%s%s%s:%s'", 422 ssh_program, verbose_mode ? " -v" : "", 423 ssh_options, host, cmd, src, 424 tuser ? tuser : "", tuser ? "@" : "", 425 thost, targ); 426 } 427 if (verbose_mode) 428 fprintf(stderr, "Executing: %s\n", bp); 429 if (system(bp) != 0) 430 errs = 1; 431 (void) xfree(bp); 432 } else { /* local to remote */ 433 if (remin == -1) { 434 len = strlen(targ) + CMDNEEDS + 20; 435 bp = xmalloc(len); 436 (void) snprintf(bp, len, "%s -t %s", cmd, targ); 437 host = cleanhostname(thost); 438 if (do_cmd(host, tuser, bp, &remin, 439 &remout, argc) < 0) 440 exit(1); 441 if (response() < 0) 442 exit(1); 443 (void) xfree(bp); 444 } 445 source(1, argv + i); 446 } 447 } 448 } 449 450 void 451 tolocal(int argc, char **argv) 452 { 453 int i, len; 454 char *bp, *host, *src, *suser; 455 456 for (i = 0; i < argc - 1; i++) { 457 if (!(src = colon(argv[i]))) { /* Local to local. */ 458 len = strlen(_PATH_CP) + strlen(argv[i]) + 459 strlen(argv[argc - 1]) + 20; 460 bp = xmalloc(len); 461 (void) snprintf(bp, len, "exec %s%s%s %s %s", _PATH_CP, 462 iamrecursive ? " -r" : "", pflag ? " -p" : "", 463 argv[i], argv[argc - 1]); 464 if (verbose_mode) 465 fprintf(stderr, "Executing: %s\n", bp); 466 if (system(bp)) 467 ++errs; 468 (void) xfree(bp); 469 continue; 470 } 471 *src++ = 0; 472 if (*src == 0) 473 src = "."; 474 if ((host = strrchr(argv[i], '@')) == NULL) { 475 host = argv[i]; 476 suser = NULL; 477 } else { 478 *host++ = 0; 479 suser = argv[i]; 480 if (*suser == '\0') 481 suser = pwd->pw_name; 482 } 483 host = cleanhostname(host); 484 len = strlen(src) + CMDNEEDS + 20; 485 bp = xmalloc(len); 486 (void) snprintf(bp, len, "%s -f %s", cmd, src); 487 if (do_cmd(host, suser, bp, &remin, &remout, argc) < 0) { 488 (void) xfree(bp); 489 ++errs; 490 continue; 491 } 492 xfree(bp); 493 sink(1, argv + argc - 1); 494 (void) close(remin); 495 remin = remout = -1; 496 } 497 } 498 499 void 500 source(int argc, char **argv) 501 { 502 struct stat stb; 503 static BUF buffer; 504 BUF *bp; 505 off_t i, amt, result, statbytes; 506 int fd, haderr, indx; 507 char *last, *name, buf[2048]; 508 int len; 509 510 for (indx = 0; indx < argc; ++indx) { 511 name = argv[indx]; 512 statbytes = 0; 513 len = strlen(name); 514 while (len > 1 && name[len-1] == '/') 515 name[--len] = '\0'; 516 if (strchr(name, '\n') != NULL) { 517 run_err("%s: skipping, filename contains a newline", 518 name); 519 goto next; 520 } 521 if ((fd = open(name, O_RDONLY, 0)) < 0) 522 goto syserr; 523 if (fstat(fd, &stb) < 0) { 524 syserr: run_err("%s: %s", name, strerror(errno)); 525 goto next; 526 } 527 switch (stb.st_mode & S_IFMT) { 528 case S_IFREG: 529 break; 530 case S_IFDIR: 531 if (iamrecursive) { 532 rsource(name, &stb); 533 goto next; 534 } 535 /* FALLTHROUGH */ 536 default: 537 run_err("%s: not a regular file", name); 538 goto next; 539 } 540 if ((last = strrchr(name, '/')) == NULL) 541 last = name; 542 else 543 ++last; 544 curfile = last; 545 if (pflag) { 546 /* 547 * Make it compatible with possible future 548 * versions expecting microseconds. 549 */ 550 (void) snprintf(buf, sizeof buf, "T%lu 0 %lu 0\n", 551 (u_long) stb.st_mtime, 552 (u_long) stb.st_atime); 553 (void) atomicio(vwrite, remout, buf, strlen(buf)); 554 if (response() < 0) 555 goto next; 556 } 557 #define FILEMODEMASK (S_ISUID|S_ISGID|S_IRWXU|S_IRWXG|S_IRWXO) 558 snprintf(buf, sizeof buf, "C%04o %lld %s\n", 559 (u_int) (stb.st_mode & FILEMODEMASK), 560 (int64_t)stb.st_size, last); 561 if (verbose_mode) { 562 fprintf(stderr, "Sending file modes: %s", buf); 563 } 564 (void) atomicio(vwrite, remout, buf, strlen(buf)); 565 if (response() < 0) 566 goto next; 567 if ((bp = allocbuf(&buffer, fd, 2048)) == NULL) { 568 next: (void) close(fd); 569 continue; 570 } 571 if (showprogress) 572 start_progress_meter(curfile, stb.st_size, &statbytes); 573 /* Keep writing after an error so that we stay sync'd up. */ 574 for (haderr = i = 0; i < stb.st_size; i += bp->cnt) { 575 amt = bp->cnt; 576 if (i + amt > stb.st_size) 577 amt = stb.st_size - i; 578 if (!haderr) { 579 result = atomicio(read, fd, bp->buf, amt); 580 if (result != amt) 581 haderr = result >= 0 ? EIO : errno; 582 } 583 if (haderr) 584 (void) atomicio(vwrite, remout, bp->buf, amt); 585 else { 586 result = atomicio(vwrite, remout, bp->buf, amt); 587 if (result != amt) 588 haderr = result >= 0 ? EIO : errno; 589 statbytes += result; 590 } 591 if (limit_rate) 592 bwlimit(amt); 593 } 594 if (showprogress) 595 stop_progress_meter(); 596 597 if (close(fd) < 0 && !haderr) 598 haderr = errno; 599 if (!haderr) 600 (void) atomicio(vwrite, remout, "", 1); 601 else 602 run_err("%s: %s", name, strerror(haderr)); 603 (void) response(); 604 } 605 } 606 607 void 608 rsource(char *name, struct stat *statp) 609 { 610 DIR *dirp; 611 struct dirent *dp; 612 char *last, *vect[1], path[1100]; 613 614 if (!(dirp = opendir(name))) { 615 run_err("%s: %s", name, strerror(errno)); 616 return; 617 } 618 last = strrchr(name, '/'); 619 if (last == 0) 620 last = name; 621 else 622 last++; 623 if (pflag) { 624 (void) snprintf(path, sizeof(path), "T%lu 0 %lu 0\n", 625 (u_long) statp->st_mtime, 626 (u_long) statp->st_atime); 627 (void) atomicio(vwrite, remout, path, strlen(path)); 628 if (response() < 0) { 629 closedir(dirp); 630 return; 631 } 632 } 633 (void) snprintf(path, sizeof path, "D%04o %d %.1024s\n", 634 (u_int) (statp->st_mode & FILEMODEMASK), 0, last); 635 if (verbose_mode) 636 fprintf(stderr, "Entering directory: %s", path); 637 (void) atomicio(vwrite, remout, path, strlen(path)); 638 if (response() < 0) { 639 closedir(dirp); 640 return; 641 } 642 while ((dp = readdir(dirp)) != NULL) { 643 if (dp->d_ino == 0) 644 continue; 645 if (!strcmp(dp->d_name, ".") || !strcmp(dp->d_name, "..")) 646 continue; 647 if (strlen(name) + 1 + strlen(dp->d_name) >= sizeof(path) - 1) { 648 run_err("%s/%s: name too long", name, dp->d_name); 649 continue; 650 } 651 (void) snprintf(path, sizeof path, "%s/%s", name, dp->d_name); 652 vect[0] = path; 653 source(1, vect); 654 } 655 (void) closedir(dirp); 656 (void) atomicio(vwrite, remout, "E\n", 2); 657 (void) response(); 658 } 659 660 void 661 bwlimit(int amount) 662 { 663 static struct timeval bwstart, bwend; 664 static int lamt, thresh = 16384; 665 u_int64_t waitlen; 666 struct timespec ts, rm; 667 668 if (!timerisset(&bwstart)) { 669 gettimeofday(&bwstart, NULL); 670 return; 671 } 672 673 lamt += amount; 674 if (lamt < thresh) 675 return; 676 677 gettimeofday(&bwend, NULL); 678 timersub(&bwend, &bwstart, &bwend); 679 if (!timerisset(&bwend)) 680 return; 681 682 lamt *= 8; 683 waitlen = (double)1000000L * lamt / limit_rate; 684 685 bwstart.tv_sec = waitlen / 1000000L; 686 bwstart.tv_usec = waitlen % 1000000L; 687 688 if (timercmp(&bwstart, &bwend, >)) { 689 timersub(&bwstart, &bwend, &bwend); 690 691 /* Adjust the wait time */ 692 if (bwend.tv_sec) { 693 thresh /= 2; 694 if (thresh < 2048) 695 thresh = 2048; 696 } else if (bwend.tv_usec < 100) { 697 thresh *= 2; 698 if (thresh > 32768) 699 thresh = 32768; 700 } 701 702 TIMEVAL_TO_TIMESPEC(&bwend, &ts); 703 while (nanosleep(&ts, &rm) == -1) { 704 if (errno != EINTR) 705 break; 706 ts = rm; 707 } 708 } 709 710 lamt = 0; 711 gettimeofday(&bwstart, NULL); 712 } 713 714 void 715 sink(int argc, char **argv) 716 { 717 static BUF buffer; 718 struct stat stb; 719 enum { 720 YES, NO, DISPLAYED 721 } wrerr; 722 BUF *bp; 723 off_t i, j; 724 int amt, count, exists, first, mask, mode, ofd, omode; 725 off_t size, statbytes; 726 int setimes, targisdir, wrerrno = 0; 727 char ch, *cp, *np, *targ, *why, *vect[1], buf[2048]; 728 struct timeval tv[2]; 729 730 #define atime tv[0] 731 #define mtime tv[1] 732 #define SCREWUP(str) { why = str; goto screwup; } 733 734 setimes = targisdir = 0; 735 mask = umask(0); 736 if (!pflag) 737 (void) umask(mask); 738 if (argc != 1) { 739 run_err("ambiguous target"); 740 exit(1); 741 } 742 targ = *argv; 743 if (targetshouldbedirectory) 744 verifydir(targ); 745 746 (void) atomicio(vwrite, remout, "", 1); 747 if (stat(targ, &stb) == 0 && S_ISDIR(stb.st_mode)) 748 targisdir = 1; 749 for (first = 1;; first = 0) { 750 cp = buf; 751 if (atomicio(read, remin, cp, 1) <= 0) 752 return; 753 if (*cp++ == '\n') 754 SCREWUP("unexpected <newline>"); 755 do { 756 if (atomicio(read, remin, &ch, sizeof(ch)) != sizeof(ch)) 757 SCREWUP("lost connection"); 758 *cp++ = ch; 759 } while (cp < &buf[sizeof(buf) - 1] && ch != '\n'); 760 *cp = 0; 761 if (verbose_mode) 762 fprintf(stderr, "Sink: %s", buf); 763 764 if (buf[0] == '\01' || buf[0] == '\02') { 765 if (iamremote == 0) 766 (void) atomicio(vwrite, STDERR_FILENO, 767 buf + 1, strlen(buf + 1)); 768 if (buf[0] == '\02') 769 exit(1); 770 ++errs; 771 continue; 772 } 773 if (buf[0] == 'E') { 774 (void) atomicio(vwrite, remout, "", 1); 775 return; 776 } 777 if (ch == '\n') 778 *--cp = 0; 779 780 cp = buf; 781 if (*cp == 'T') { 782 setimes++; 783 cp++; 784 mtime.tv_sec = strtol(cp, &cp, 10); 785 if (!cp || *cp++ != ' ') 786 SCREWUP("mtime.sec not delimited"); 787 mtime.tv_usec = strtol(cp, &cp, 10); 788 if (!cp || *cp++ != ' ') 789 SCREWUP("mtime.usec not delimited"); 790 atime.tv_sec = strtol(cp, &cp, 10); 791 if (!cp || *cp++ != ' ') 792 SCREWUP("atime.sec not delimited"); 793 atime.tv_usec = strtol(cp, &cp, 10); 794 if (!cp || *cp++ != '\0') 795 SCREWUP("atime.usec not delimited"); 796 (void) atomicio(vwrite, remout, "", 1); 797 continue; 798 } 799 if (*cp != 'C' && *cp != 'D') { 800 /* 801 * Check for the case "rcp remote:foo\* local:bar". 802 * In this case, the line "No match." can be returned 803 * by the shell before the rcp command on the remote is 804 * executed so the ^Aerror_message convention isn't 805 * followed. 806 */ 807 if (first) { 808 run_err("%s", cp); 809 exit(1); 810 } 811 SCREWUP("expected control record"); 812 } 813 mode = 0; 814 for (++cp; cp < buf + 5; cp++) { 815 if (*cp < '0' || *cp > '7') 816 SCREWUP("bad mode"); 817 mode = (mode << 3) | (*cp - '0'); 818 } 819 if (*cp++ != ' ') 820 SCREWUP("mode not delimited"); 821 822 for (size = 0; isdigit(*cp);) 823 size = size * 10 + (*cp++ - '0'); 824 if (*cp++ != ' ') 825 SCREWUP("size not delimited"); 826 if ((strchr(cp, '/') != NULL) || (strcmp(cp, "..") == 0)) { 827 run_err("error: unexpected filename: %s", cp); 828 exit(1); 829 } 830 if (targisdir) { 831 static char *namebuf; 832 static int cursize; 833 size_t need; 834 835 need = strlen(targ) + strlen(cp) + 250; 836 if (need > cursize) { 837 if (namebuf) 838 xfree(namebuf); 839 namebuf = xmalloc(need); 840 cursize = need; 841 } 842 (void) snprintf(namebuf, need, "%s%s%s", targ, 843 strcmp(targ, "/") ? "/" : "", cp); 844 np = namebuf; 845 } else 846 np = targ; 847 curfile = cp; 848 exists = stat(np, &stb) == 0; 849 if (buf[0] == 'D') { 850 int mod_flag = pflag; 851 if (!iamrecursive) 852 SCREWUP("received directory without -r"); 853 if (exists) { 854 if (!S_ISDIR(stb.st_mode)) { 855 errno = ENOTDIR; 856 goto bad; 857 } 858 if (pflag) 859 (void) chmod(np, mode); 860 } else { 861 /* Handle copying from a read-only 862 directory */ 863 mod_flag = 1; 864 if (mkdir(np, mode | S_IRWXU) < 0) 865 goto bad; 866 } 867 vect[0] = xstrdup(np); 868 sink(1, vect); 869 if (setimes) { 870 setimes = 0; 871 if (utimes(vect[0], tv) < 0) 872 run_err("%s: set times: %s", 873 vect[0], strerror(errno)); 874 } 875 if (mod_flag) 876 (void) chmod(vect[0], mode); 877 if (vect[0]) 878 xfree(vect[0]); 879 continue; 880 } 881 omode = mode; 882 mode |= S_IWRITE; 883 if ((ofd = open(np, O_WRONLY|O_CREAT, mode)) < 0) { 884 bad: run_err("%s: %s", np, strerror(errno)); 885 continue; 886 } 887 (void) atomicio(vwrite, remout, "", 1); 888 if ((bp = allocbuf(&buffer, ofd, 4096)) == NULL) { 889 (void) close(ofd); 890 continue; 891 } 892 cp = bp->buf; 893 wrerr = NO; 894 895 statbytes = 0; 896 if (showprogress) 897 start_progress_meter(curfile, size, &statbytes); 898 for (count = i = 0; i < size; i += 4096) { 899 amt = 4096; 900 if (i + amt > size) 901 amt = size - i; 902 count += amt; 903 do { 904 j = atomicio(read, remin, cp, amt); 905 if (j <= 0) { 906 run_err("%s", j ? strerror(errno) : 907 "dropped connection"); 908 exit(1); 909 } 910 amt -= j; 911 cp += j; 912 statbytes += j; 913 } while (amt > 0); 914 915 if (limit_rate) 916 bwlimit(4096); 917 918 if (count == bp->cnt) { 919 /* Keep reading so we stay sync'd up. */ 920 if (wrerr == NO) { 921 j = atomicio(vwrite, ofd, bp->buf, count); 922 if (j != count) { 923 wrerr = YES; 924 wrerrno = j >= 0 ? EIO : errno; 925 } 926 } 927 count = 0; 928 cp = bp->buf; 929 } 930 } 931 if (showprogress) 932 stop_progress_meter(); 933 if (count != 0 && wrerr == NO && 934 (j = atomicio(vwrite, ofd, bp->buf, count)) != count) { 935 wrerr = YES; 936 wrerrno = j >= 0 ? EIO : errno; 937 } 938 if (wrerr == NO && ftruncate(ofd, size) != 0) { 939 run_err("%s: truncate: %s", np, strerror(errno)); 940 wrerr = DISPLAYED; 941 } 942 if (pflag) { 943 if (exists || omode != mode) 944 #ifdef HAVE_FCHMOD 945 if (fchmod(ofd, omode)) { 946 #else /* HAVE_FCHMOD */ 947 if (chmod(np, omode)) { 948 #endif /* HAVE_FCHMOD */ 949 run_err("%s: set mode: %s", 950 np, strerror(errno)); 951 wrerr = DISPLAYED; 952 } 953 } else { 954 if (!exists && omode != mode) 955 #ifdef HAVE_FCHMOD 956 if (fchmod(ofd, omode & ~mask)) { 957 #else /* HAVE_FCHMOD */ 958 if (chmod(np, omode & ~mask)) { 959 #endif /* HAVE_FCHMOD */ 960 run_err("%s: set mode: %s", 961 np, strerror(errno)); 962 wrerr = DISPLAYED; 963 } 964 } 965 if (close(ofd) == -1) { 966 wrerr = YES; 967 wrerrno = errno; 968 } 969 (void) response(); 970 if (setimes && wrerr == NO) { 971 setimes = 0; 972 if (utimes(np, tv) < 0) { 973 run_err("%s: set times: %s", 974 np, strerror(errno)); 975 wrerr = DISPLAYED; 976 } 977 } 978 switch (wrerr) { 979 case YES: 980 run_err("%s: %s", np, strerror(wrerrno)); 981 break; 982 case NO: 983 (void) atomicio(vwrite, remout, "", 1); 984 break; 985 case DISPLAYED: 986 break; 987 } 988 } 989 screwup: 990 run_err("protocol error: %s", why); 991 exit(1); 992 } 993 994 int 995 response(void) 996 { 997 char ch, *cp, resp, rbuf[2048]; 998 999 if (atomicio(read, remin, &resp, sizeof(resp)) != sizeof(resp)) 1000 lostconn(0); 1001 1002 cp = rbuf; 1003 switch (resp) { 1004 case 0: /* ok */ 1005 return (0); 1006 default: 1007 *cp++ = resp; 1008 /* FALLTHROUGH */ 1009 case 1: /* error, followed by error msg */ 1010 case 2: /* fatal error, "" */ 1011 do { 1012 if (atomicio(read, remin, &ch, sizeof(ch)) != sizeof(ch)) 1013 lostconn(0); 1014 *cp++ = ch; 1015 } while (cp < &rbuf[sizeof(rbuf) - 1] && ch != '\n'); 1016 1017 if (!iamremote) 1018 (void) atomicio(vwrite, STDERR_FILENO, rbuf, cp - rbuf); 1019 ++errs; 1020 if (resp == 1) 1021 return (-1); 1022 exit(1); 1023 } 1024 /* NOTREACHED */ 1025 } 1026 1027 void 1028 usage(void) 1029 { 1030 (void) fprintf(stderr, 1031 "usage: scp [-1246BCpqrv] [-c cipher] [-F ssh_config] [-i identity_file]\n" 1032 " [-l limit] [-o ssh_option] [-P port] [-S program]\n" 1033 " [[user@]host1:]file1 [...] [[user@]host2:]file2\n"); 1034 exit(1); 1035 } 1036 1037 void 1038 run_err(const char *fmt,...) 1039 { 1040 static FILE *fp; 1041 va_list ap; 1042 1043 ++errs; 1044 if (fp == NULL && !(fp = fdopen(remout, "w"))) 1045 return; 1046 (void) fprintf(fp, "%c", 0x01); 1047 (void) fprintf(fp, "scp: "); 1048 va_start(ap, fmt); 1049 (void) vfprintf(fp, fmt, ap); 1050 va_end(ap); 1051 (void) fprintf(fp, "\n"); 1052 (void) fflush(fp); 1053 1054 if (!iamremote) { 1055 va_start(ap, fmt); 1056 vfprintf(stderr, fmt, ap); 1057 va_end(ap); 1058 fprintf(stderr, "\n"); 1059 } 1060 } 1061 1062 void 1063 verifydir(char *cp) 1064 { 1065 struct stat stb; 1066 1067 if (!stat(cp, &stb)) { 1068 if (S_ISDIR(stb.st_mode)) 1069 return; 1070 errno = ENOTDIR; 1071 } 1072 run_err("%s: %s", cp, strerror(errno)); 1073 exit(1); 1074 } 1075 1076 int 1077 okname(char *cp0) 1078 { 1079 int c; 1080 char *cp; 1081 1082 cp = cp0; 1083 do { 1084 c = (int)*cp; 1085 if (c & 0200) 1086 goto bad; 1087 if (!isalpha(c) && !isdigit(c)) { 1088 switch (c) { 1089 case '\'': 1090 case '"': 1091 case '`': 1092 case ' ': 1093 case '#': 1094 goto bad; 1095 default: 1096 break; 1097 } 1098 } 1099 } while (*++cp); 1100 return (1); 1101 1102 bad: fprintf(stderr, "%s: invalid user name\n", cp0); 1103 return (0); 1104 } 1105 1106 BUF * 1107 allocbuf(BUF *bp, int fd, int blksize) 1108 { 1109 size_t size; 1110 #ifdef HAVE_STRUCT_STAT_ST_BLKSIZE 1111 struct stat stb; 1112 1113 if (fstat(fd, &stb) < 0) { 1114 run_err("fstat: %s", strerror(errno)); 1115 return (0); 1116 } 1117 size = roundup(stb.st_blksize, blksize); 1118 if (size == 0) 1119 size = blksize; 1120 #else /* HAVE_STRUCT_STAT_ST_BLKSIZE */ 1121 size = blksize; 1122 #endif /* HAVE_STRUCT_STAT_ST_BLKSIZE */ 1123 if (bp->cnt >= size) 1124 return (bp); 1125 if (bp->buf == NULL) 1126 bp->buf = xmalloc(size); 1127 else 1128 bp->buf = xrealloc(bp->buf, size); 1129 memset(bp->buf, 0, size); 1130 bp->cnt = size; 1131 return (bp); 1132 } 1133 1134 void 1135 lostconn(int signo) 1136 { 1137 if (!iamremote) 1138 write(STDERR_FILENO, "lost connection\n", 16); 1139 if (signo) 1140 _exit(1); 1141 else 1142 exit(1); 1143 } 1144