| blob | 70ad32c63e739d6ec88369f5c4cee9af326b58ef |
1 /***************************************************************************
2 * _ _ ____ _
3 * Project ___| | | | _ \| |
4 * / __| | | | |_) | |
5 * | (__| |_| | _ <| |___
6 * \___|\___/|_| \_\_____|
7 *
8 * Copyright (C) 1998 - 2007, Daniel Stenberg, <daniel@haxx.se>, et al.
9 *
10 * This software is licensed as described in the file COPYING, which
11 * you should have received as part of this distribution. The terms
12 * are also available at http://curl.haxx.se/docs/copyright.html.
13 *
14 * You may opt to use, copy, modify, merge, publish, distribute and/or sell
15 * copies of the Software, and permit persons to whom the Software is
16 * furnished to do so, under the terms of the COPYING file.
17 *
18 * This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY
19 * KIND, either express or implied.
20 *
21 * $Id: ftp.c,v 1.3 2007/11/05 19:34:36 king Exp $
22 ***************************************************************************/
26 #ifndef CURL_DISABLE_FTP
27 #include <stdio.h>
28 #include <string.h>
29 #include <stdlib.h>
30 #include <stdarg.h>
31 #include <ctype.h>
33 #ifdef HAVE_UNISTD_H
34 #include <unistd.h>
35 #endif
37 #ifdef WIN32
40 #ifdef HAVE_SYS_SOCKET_H
41 #include <sys/socket.h>
42 #endif
43 #include <sys/types.h>
44 #ifdef HAVE_NETINET_IN_H
45 #include <netinet/in.h>
46 #endif
47 #ifdef HAVE_ARPA_INET_H
48 #include <arpa/inet.h>
49 #endif
50 #ifdef HAVE_UTSNAME_H
51 #include <sys/utsname.h>
52 #endif
53 #ifdef HAVE_NETDB_H
54 #include <netdb.h>
55 #endif
56 #ifdef VMS
57 #include <in.h>
58 #include <inet.h>
59 #endif
60 #endif
62 #if (defined(NETWARE) && defined(__NOVELL_LIBC__))
63 #undef in_addr_t
64 #define in_addr_t unsigned long
65 #endif
67 #include <curl/curl.h>
80 #ifdef HAVE_KRB4
82 #endif
96 #if defined(HAVE_INET_NTOA_R) && !defined(HAVE_INET_NTOA_R_DECL)
98 #endif
101 #include <curl/mprintf.h>
103 /* The last #include file should be: */
104 #ifdef CURLDEBUG
106 #endif
108 #ifdef HAVE_NI_WITHSCOPEID
109 #define NIFLAGS NI_NUMERICHOST | NI_NUMERICSERV | NI_WITHSCOPEID
110 #else
111 #define NIFLAGS NI_NUMERICHOST | NI_NUMERICSERV
112 #endif
114 /* Local API functions */
133 /* easy-to-use macro: */
134 #define FTPSENDF(x,y,z) if ((result = Curl_ftpsendf(x,y,z)) != CURLE_OK) \
135 return result
136 #define NBFTPSENDF(x,y,z) if ((result = Curl_nbftpsendf(x,y,z)) != CURLE_OK) \
137 return result
140 {
150 }
151 }
154 }
158 }
159 }
161 /* Returns non-zero if the given string contains CR (\r) or LF (\n),
162 which are not allowed within RFC 959 <string>.
163 Note: The input string is in the client's encoding which might
164 not be ASCII, so escape sequences \r & \n must be used instead
165 of hex values 0x0d & 0x0a.
166 */
168 {
170 }
172 /***********************************************************************
173 *
174 * AllowServerConnect()
175 *
176 * When we've issue the PORT command, we have told the server to connect
177 * to us. This function will sit and wait here until the server has
178 * connected.
179 *
180 */
182 {
196 }
197 }
199 /* We allow the server 60 seconds to connect to us, or a custom timeout.
200 Note the typecast here. */
205 /* let's die here */
209 /* let's die here */
213 /* we have received data here */
214 {
216 #ifdef ENABLE_IPV6
218 #else
220 #endif
227 }
231 /* DIE! */
234 }
239 }
241 }
244 }
246 /* initialize stuff to prepare for reading a fresh new response */
248 {
252 }
254 /* macro to check for the last line in an FTP server response */
255 #define lastline(line) (ISDIGIT(line[0]) && ISDIGIT(line[1]) && \
262 {
265 ssize_t gotbytes;
279 line, so far */
285 /* we had data in the "cache", copy that instead of doing an actual
286 * read
287 *
288 * ftp->cache_size is cast to int here. This should be safe,
289 * because it would have been populated with something of size
290 * int to begin with, even though its datatype may be larger
291 * than an int.
292 */
298 }
303 /* EWOULDBLOCK */
306 #ifdef CURL_DOES_CONVERSIONS
308 /* convert from the network encoding */
310 /* Curl_convert_from_network calls failf if unsuccessful */
311 }
316 }
319 ;
324 }
326 /* we got a whole chunk of data, which can be anything from one
327 * byte to a set of lines and possible just a piece of the last
328 * line */
335 perline++;
337 /* a newline is CRLF in ftp-talk, so the CR is ignored as
338 the line isn't really terminated until the LF comes */
340 /* output debug output if that is requested */
345 /*
346 * We pass all response-lines to the callback function registered
347 * for "headers". The response lines can be seen as a kind of
348 * headers.
349 */
356 /* This is the end of the last line, copy the last line to the
357 start of the buffer and zero terminate, for old times sake (and
358 krb4)! */
371 }
374 }
375 }
377 /* We found the end of the response lines, but we didn't parse the
378 full chunk of data we have read from the server. We therefore need
379 to store the rest of the data to be checked on the next invoke as
380 it may actually contain another end of response already! */
385 else
387 }
395 #ifdef HAVE_KRB4
396 /* handle the security-oriented responses 6xx ***/
397 /* FIXME: some errorchecking perhaps... ***/
409 /* normal ftp stuff we pass through! */
411 }
412 #endif
417 /* store the latest code for later retrieval */
421 }
423 /* --- parse FTP server responses --- */
425 /*
426 * Curl_GetFTPResponse() is supposed to be invoked after each command sent to
427 * a remote FTP server. This function will wait and read all lines of the
428 * response and extract the relevant return code for the invoking function.
429 */
434 {
435 /*
436 * We cannot read just one byte per read() and then go back to select() as
437 * the OpenSSL read() doesn't grok that properly.
438 *
439 * Alas, read as much as possible, split up into lines, use the ending
440 * line in a response or continue reading. */
445 ssize_t gotbytes;
468 /* check and reset timeout value every lap */
470 /* if CURLOPT_FTP_RESPONSE_TIMEOUT is set, use that to determine
471 remaining time. Also, use "now" as opposed to "conn->now"
472 because ftp_response_timeout is only supposed to govern
473 the response for any given ftp response, not for the time
474 from connect to the given ftp response. */
478 /* if timeout is requested, find out how much remaining time we have */
481 else
482 /* Even without a requested timeout, we only wait response_time
483 seconds for the full response to arrive before we bail out */
490 }
508 }
509 }
511 /*
512 * This code previously didn't use the kerberos sec_read() code
513 * to read, but when we use Curl_read() it may do so. Do confirm
514 * that this is still ok and then remove this comment!
515 */
517 /* we had data in the "cache", copy that instead of doing an actual
518 * read
519 *
520 * Dave Meyer, December 2003:
521 * ftp->cache_size is cast to int here. This should be safe,
522 * because it would have been populated with something of size
523 * int to begin with, even though its datatype may be larger
524 * than an int.
525 */
531 }
535 /* EWOULDBLOCK */
538 #ifdef CURL_DOES_CONVERSIONS
540 /* convert from the network encoding */
542 /* Curl_convert_from_network calls failf if unsuccessful */
543 }
548 }
551 ;
556 }
558 /* we got a whole chunk of data, which can be anything from one
559 * byte to a set of lines and possible just a piece of the last
560 * line */
567 perline++;
569 /* a newline is CRLF in ftp-talk, so the CR is ignored as
570 the line isn't really terminated until the LF comes */
572 /* output debug output if that is requested */
577 /*
578 * We pass all response-lines to the callback function registered
579 * for "headers". The response lines can be seen as a kind of
580 * headers.
581 */
588 /* This is the end of the last line, copy the last
589 * line to the start of the buffer and zero terminate,
590 * for old times sake (and krb4)! */
600 }
603 }
604 }
606 /* We found the end of the response lines, but we didn't parse the
607 full chunk of data we have read from the server. We therefore
608 need to store the rest of the data to be checked on the next
609 invoke as it may actually contain another end of response
610 already! Cleverly figured out by Eric Lavigne in December
611 2001. */
616 else
618 }
626 #ifdef HAVE_KRB4
627 /* handle the security-oriented responses 6xx ***/
628 /* FIXME: some errorchecking perhaps... ***/
640 /* normal ftp stuff we pass through! */
642 }
643 #endif
648 /* store the latest code for later retrieval */
652 }
654 /* This is the ONLY way to change FTP state! */
656 ftpstate state)
657 {
658 #ifdef CURLDEBUG
659 /* for debug purposes */
692 "QUIT"
693 };
694 #endif
696 #ifdef CURLDEBUG
700 #endif
702 }
705 {
706 CURLcode result;
708 /* send USER */
715 }
718 {
719 CURLcode result;
721 /* send PWD to discover our entry point */
726 }
728 /* For the FTP "protocol connect" and "doing" phases only */
732 {
741 /* write mode */
743 }
745 /* read mode */
747 }
749 /* This is called after the FTP_QUOTE state is passed.
751 ftp_state_cwd() sends the range of PWD commands to the server to change to
752 the correct directory. It may also need to send MKD commands to create
753 missing ones, if that option is enabled.
754 */
756 {
761 /* already done and fine */
766 /* This is a re-used connection. Since we change directory to where the
767 transfer is taking place, we must first get back to the original dir
768 where we ended up after login: */
770 for all upcoming ones in the ftp->dirs[] array */
773 }
777 /* issue the first CWD, the rest is sent when the CWD responses are
778 received... */
781 }
783 /* No CWD necessary */
785 }
786 }
787 }
789 }
792 EPRT,
793 PORT,
794 DONE
800 {
807 #ifdef ENABLE_IPV6
808 /******************************************************************
809 * IPv6-specific section
810 */
813 socklen_t sslen;
824 /* Step 1, figure out what address that is requested */
827 /* attempt to get the address of the given interface name */
829 /* not an interface, use the given string as host name instead */
831 else
836 /* not an interface and not a host name, get default by extracting
837 the IP from the control connection */
844 }
853 }
855 }
862 /* when we return from this function, we can forget about this entry
863 to we can unlock it now already */
866 else
870 /* step 2, create a socket for the requested address */
875 /*
876 * Workaround for AIX5 getaddrinfo() problem (it doesn't set ai_socktype):
877 */
885 }
887 }
891 }
893 /* step 3, bind to a suitable local address */
895 /* Try binding the given address. */
898 /* It failed. Bind the address used for the control connection instead */
906 }
908 /* set port number to zero to make bind() pick "any" */
911 else
921 }
922 }
924 /* get the name again after the bind() so that we can extract the
925 port number it uses now */
932 }
934 /* step 4, listen on the socket */
940 }
942 /* step 5, send the proper FTP command */
944 /* get a plain printable version of the numerical address to work with
945 below */
948 #ifdef PF_INET6
950 /* EPRT is disabled but we are connected to a IPv6 host, so we ignore the
951 request and enable EPRT again! */
953 #endif
958 /* if disabled, goto next */
970 }
973 /*
974 * Two fine examples from RFC2428;
975 *
976 * EPRT |1|132.235.1.2|6275|
977 *
978 * EPRT |2|1080::8:800:200C:417A|5282|
979 */
987 }
995 /* translate x.x.x.x to x,x,x,x */
999 else
1001 dest++;
1002 source++;
1003 }
1011 }
1012 }
1014 /* store which command was sent */
1017 /* we set the secondary socket variable to this for now, it is only so that
1018 the cleanup function will close it in case we fail before the true
1019 secondary stuff is made */
1024 #else
1025 /******************************************************************
1026 * IPv4-specific section
1027 */
1038 in_addr_t in;
1040 /* First check if the given name is an IP address */
1044 /* this is an IPv4 address */
1048 /* The interface to IP conversion provided a dotted address */
1051 }
1053 /* might be a host name! */
1057 /* BLOCKING */
1061 /* when we return from this function, we can forget about this entry
1062 so we can unlock it now already */
1066 since it points to a DNS cache entry! */
1070 }
1076 /* pick a suitable default here */
1083 }
1088 }
1094 /* we set the secondary socket variable to this for now, it
1095 is only so that the cleanup function will close it in case
1096 we fail before the true secondary stuff is made */
1104 }
1110 /* we succeeded to bind */
1119 }
1125 }
1126 }
1130 }
1131 }
1135 }
1136 }
1140 }
1145 else
1159 }
1160 else
1170 /* this tcpconnect assignment below is a hackish work-around to make the
1171 multi interface with active FTP work - as it will not wait for a
1172 (passive) connect in Curl_is_connected().
1174 The *proper* fix is to make sure that the active connection from the
1175 server is done in a non-blocking way. Currently, it is still BLOCKING.
1176 */
1181 }
1184 {
1187 /*
1188 Here's the excecutive summary on what to do:
1190 PASV is RFC959, expect:
1191 227 Entering Passive Mode (a1,a2,a3,a4,p1,p2)
1193 LPSV is RFC1639, expect:
1194 228 Entering Long Passive Mode (4,4,a1,a2,a3,a4,2,p1,p2)
1196 EPSV is RFC2428, expect:
1197 229 Entering Extended Passive Mode (|||port|)
1199 */
1204 #ifdef PF_INET6
1206 /* EPSV is disabled but we are connected to a IPv6 host, so we ignore the
1207 request and enable EPSV again! */
1209 #endif
1222 }
1224 /* REST is the last command in the chain of commands when a "head"-like
1225 request is made. Thus, if an actual transfer is to be made this is where
1226 we take off for real. */
1228 {
1234 /* doesn't transfer any data */
1237 /* still possibly do PRE QUOTE jobs */
1240 }
1242 /* We have chosen to use the PORT (or similar) command */
1244 }
1246 /* We have chosen (this is default) to use the PASV (or similar) command */
1248 }
1250 }
1253 {
1258 /* if a "head"-like request is being made */
1260 /* Determine if server can respond to REST command and therefore
1261 whether it supports range */
1265 }
1266 else
1270 }
1273 {
1278 /* if a "head"-like request is being made */
1280 /* we know ftp->file is a valid pointer to a file name */
1284 }
1285 else
1289 }
1292 {
1296 /* If this output is to be machine-parsed, the NLST command might be better
1297 to use, since the LIST command output is not specified or standard in any
1298 way. It has turned out that the NLST list output is not the same on all
1299 servers either... */
1308 }
1311 {
1314 /* We've sent the TYPE, now we must send the list of prequote strings */
1319 }
1322 {
1325 /* We've sent the TYPE, now we must send the list of prequote strings */
1330 }
1333 {
1338 /* If we have selected NOBODY and HEADER, it means that we only want file
1339 information. Which in FTP can't be much more than the file size and
1340 date. */
1343 /* The SIZE command is _not_ RFC 959 specified, and therefor many servers
1344 may not support it! It is however the only way we have to get a file's
1345 size! */
1349 /* Some servers return different sizes for different modes, and thus we
1350 must set the proper type before we check the size */
1354 }
1355 else
1359 }
1361 /* This is called after the CWD commands have been done in the beginning of
1362 the DO phase */
1364 {
1369 /* Requested time of file or time-depended transfer? */
1372 /* we have requested to get the modified-time of the file, this is a white
1373 spot as the MDTM is not mentioned in RFC959 */
1377 }
1378 else
1382 }
1385 /* This is called after the TYPE and possible quote commands have been sent */
1388 {
1396 /* we're about to continue the uploading of a file */
1397 /* 1. get already existing file's size. We use the SIZE command for this
1398 which may not exist in the server! The SIZE command is not in
1399 RFC959. */
1401 /* 2. This used to set REST. But since we can do append, we
1402 don't another ftp command. We just skip the source file
1403 offset and then we APPEND the rest on the file instead */
1405 /* 3. pass file-size number of bytes in the source file */
1406 /* 4. lower the infilesize counter */
1407 /* => transfer as usual */
1410 /* Got no given size to start from, figure it out */
1414 }
1416 /* enable append */
1419 /* Let's read off the proper amount of bytes from the input. If we knew it
1420 was a proper file we could've just fseek()ed but we only have a stream
1421 here */
1423 /* TODO: allow the ioctlfunction to provide a fast forward function that
1424 can be used here and use this method only as a fallback! */
1427 curl_off_t actuallyread;
1441 }
1444 /* now, decrease the size of the read */
1451 /* no data to transfer */
1454 /* Set no_transfer so that we won't get any error in
1455 * Curl_ftp_done() because we didn't transfer anything! */
1460 }
1461 }
1462 /* we've passed, proceed as normal */
1471 }
1475 ftpstate instate)
1476 {
1496 }
1500 else
1506 /* Skip count1 items in the linked list */
1509 i++;
1510 }
1515 }
1516 }
1519 /* No more quote to send, continue to ... */
1531 }
1538 }
1539 }
1542 }
1546 {
1548 CURLcode result;
1557 /* newhost must be able to hold a full IP-style address in ASCII, which
1558 in the IPv6 case means 5*8-1 = 39 letters */
1559 #define NEWHOST_BUFSIZE 48
1565 /* positive EPSV response */
1570 ptr++;
1580 /* The four separators should be identical, or else this is an oddly
1581 formatted reply and we bail out immediately. */
1586 }
1587 }
1592 /* proxy tunnel -> use other host info because ip_addr_str is the
1593 proxy address not the ftp host */
1595 else
1596 /* use the same IP we are already connected to */
1598 }
1599 }
1600 else
1602 }
1606 }
1607 }
1610 /* positive PASV response */
1614 /*
1615 * Scan for a sequence of six comma-separated numbers and use them as
1616 * IP+port indicators.
1617 *
1618 * Found reply-strings include:
1619 * "227 Entering Passive Mode (127,0,0,1,4,51)"
1620 * "227 Data transfer will passively listen to 127,0,0,1,4,51"
1621 * "227 Entering passive mode. 127,0,0,1,4,51"
1622 */
1628 str++;
1629 }
1634 }
1636 /* we got OK from server */
1638 /* told to ignore the remotely given IP but instead use the one we used
1639 for the control connection */
1644 /* proxy tunnel -> use other host info because ip_addr_str is the
1645 proxy address not the ftp host */
1647 else
1649 }
1650 else
1654 }
1656 /* EPSV failed, move on to PASV */
1658 /* disable it for next transfer */
1664 /* remain in the FTP_PASV state */
1666 }
1670 }
1673 /*
1674 * This is a tunnel through a http proxy and we need to connect to the
1675 * proxy again here.
1676 *
1677 * We don't want to rely on a former host lookup that might've expired
1678 * now, instead we remake the lookup here and now!
1679 */
1682 /* BLOCKING */
1685 connectport =
1688 }
1690 /* normal, direct, ftp connection */
1693 /* BLOCKING */
1699 }
1701 }
1704 addr,
1714 /* disable it for next transfer */
1719 /* remain in the FTP_PASV state */
1721 }
1728 /*
1729 * When this is used from the multi interface, this might've returned with
1730 * the 'connected' set to FALSE and thus we are now awaiting a non-blocking
1731 * connect to connect and we should not be "hanging" here waiting.
1732 */
1735 /* this just dumps information about this second connection */
1738 #ifndef CURL_DISABLE_HTTP
1740 /* FIX: this MUST wait for a proper connect first if 'connected' is
1741 * FALSE */
1743 /* BLOCKING */
1744 /* We want "seamless" FTP operations through HTTP proxy tunnel */
1746 /* Curl_proxyCONNECT is based on a pointer to a struct HTTP at the member
1747 * conn->proto.http; we want FTP through HTTP and we have to change the
1748 * member temporarily for connecting to the HTTP proxy. After
1749 * Curl_proxyCONNECT we have to set back the member to the original struct
1750 * FTP pointer
1751 */
1763 }
1769 }
1773 {
1780 /* the command failed */
1785 }
1786 fcmd++;
1791 }
1792 else
1793 /* try next */
1795 }
1799 }
1802 }
1806 {
1813 {
1814 /* we got a time. Format should be: "YYYYMMDDHHMMSS[.sss]" where the
1815 last .sss part is optional and means fractions of a second */
1820 /* we have a time, reformat it */
1822 /* using the good old yacc/bison yuck */
1826 /* now, convert this into a time() value: */
1828 }
1830 /* If we asked for a time of the file and we actually got one as well,
1831 we "emulate" a HTTP-style header in our output. */
1840 #ifdef HAVE_GMTIME_R
1843 #else
1845 #endif
1846 /* format: "Tue, 15 Nov 1994 12:45:26" */
1860 }
1869 }
1881 }
1889 }
1892 }
1895 }
1896 }
1902 }
1906 ftpstate instate)
1907 {
1912 /* "sasserftpd" and "(u)r(x)bot ftpd" both responds with 226 after a
1913 successful 'TYPE I'. While that is not as RFC959 says, it is still a
1914 positive response code and we allow that. */
1917 }
1920 ftpcode);
1932 }
1935 curl_off_t filesize)
1936 {
1944 }
1948 /* We always (attempt to) get the size of downloads, so it is done before
1949 this even when not doing resumes. */
1952 /* We couldn't get the size and therefore we can't know if there really
1953 is a part of the file left to get, although the server will just
1954 close the connection when we start the connection so it won't cause
1955 us any harm, just not make us exit as nicely. */
1956 }
1958 /* We got a file size report, so we check that there actually is a
1959 part of the file left to get, or else we go home. */
1961 /* We're supposed to download the last abs(from) bytes */
1967 }
1968 /* convert to size to download */
1970 /* download from where? */
1972 }
1979 }
1980 /* Now store the number of bytes we are expected to download */
1982 }
1983 }
1986 /* no data to transfer */
1990 /* Set no_transfer so that we won't get any error in Curl_ftp_done()
1991 * because we didn't transfer the any file */
1995 }
1997 /* Set resume file transfer offset */
2005 }
2007 /* no resume */
2010 }
2013 }
2017 ftpstate instate)
2018 {
2021 curl_off_t filesize;
2024 /* get the size from the ascii string: */
2034 }
2036 }
2042 }
2045 }
2049 ftpstate instate)
2050 {
2062 }
2071 }
2075 }
2077 }
2080 }
2084 {
2091 /* oops, we never close the sockets! */
2093 }
2096 /* BLOCKING */
2097 /* PORT means we are now awaiting the server to connect to us. */
2101 }
2104 /* since we only have a plaintext TCP connection here, we must now
2105 do the TLS stuff */
2107 /* BLOCKING */
2111 }
2115 /* When we know we're uploading a specified file, we can get the file
2116 size prior to the actual upload. */
2125 }
2127 /* for LIST and RETR responses */
2130 ftpstate instate)
2131 {
2139 /*
2140 A;
2141 150 Opening BINARY mode data connection for /etc/passwd (2241
2142 bytes). (ok, the file is being transfered)
2144 B:
2145 150 Opening ASCII mode data connection for /bin/ls
2147 C:
2148 150 ASCII data connection for /bin/ls (137.167.104.91,37445) (0 bytes).
2150 D:
2151 150 Opening ASCII mode data connection for /linux/fisk/kpanelrc (0.0.0.0,0) (545 bytes).
2153 E:
2154 125 Data connection already open; Transfer starting. */
2159 /*
2160 * It appears that there are FTP-servers that return size 0 for files when
2161 * SIZE is used on the file while being in BINARY mode. To work around
2162 * that (stupid) behavior, we attempt to parse the RETR response even if
2163 * the SIZE returned size zero.
2164 *
2165 * Debugging help from Salvatore Sorrentino on February 26, 2003.
2166 */
2171 /*
2172 * It seems directory listings either don't show the size or very
2173 * often uses size 0 anyway. ASCII transfers may very well turn out
2174 * that the transfered amount of data is not the same as this line
2175 * tells, why using this number in those cases only confuses us.
2176 *
2177 * Example D above makes this parsing a little tricky */
2182 /* this is a hint there is size information in there! ;-) */
2184 /* scan for the left parenthesis and break there */
2187 /* skip only digits */
2191 }
2192 /* one more estep backwards */
2193 bytes--;
2194 }
2195 /* if we have nothing but digits: */
2197 /* get the number! */
2199 }
2200 }
2201 }
2206 /* BLOCKING */
2210 }
2213 /* since we only have a plaintext TCP connection here, we must now
2214 do the TLS stuff */
2219 }
2229 /* FTP download: */
2237 }
2240 /* simply no matching files in the dir listing */
2243 }
2247 }
2248 }
2251 }
2253 /* after USER, PASS and ACCT */
2255 {
2258 #ifdef HAVE_KRB4
2260 /* We are logged in, asked to use Kerberos. Set the requested
2261 * protection level
2262 */
2264 /* BLOCKING */
2267 /* We may need to issue a KAUTH here to have access to the files
2268 * do it if user supplied a password
2269 */
2271 /* BLOCKING */
2275 }
2276 }
2277 #endif
2279 /* PBSZ = PROTECTION BUFFER SIZE.
2281 The 'draft-murray-auth-ftp-ssl' (draft 12, page 7) says:
2283 Specifically, the PROT command MUST be preceded by a PBSZ
2284 command and a PBSZ command MUST be preceded by a successful
2285 security data exchange (the TLS negotiation in this case)
2287 ... (and on page 8):
2289 Thus the PBSZ command must still be issued, but must have a
2290 parameter of '0' to indicate that no buffering is taking place
2291 and the data connection should not be encapsulated.
2292 */
2295 }
2298 }
2300 }
2302 /* for USER and PASS responses */
2305 ftpstate instate)
2306 {
2314 /* 331 Password required for ...
2315 (the server requires to send the user's password too) */
2318 }
2320 /* 230 User ... logged in.
2321 (the user logged in with or without password) */
2323 }
2328 }
2332 }
2333 }
2335 /* All other response codes, like:
2337 530 User ... access denied
2338 (the server denies to log the specified user) */
2342 /* Ok, USER failed. Let's try the supplied command. */
2347 }
2351 }
2352 }
2354 }
2356 /* for ACCT response */
2359 {
2365 }
2366 else
2370 }
2374 {
2375 CURLcode result;
2382 };
2386 /* we have a piece of a command still left to send */
2387 ssize_t written;
2394 /* only a fraction was sent */
2396 }
2402 }
2404 }
2406 /* we read a piece of response */
2412 /* we have now received a full FTP server response */
2418 }
2420 /* We have received a 220 response fine, now we proceed. */
2421 #ifdef HAVE_KRB4
2423 /* If not anonymous login, try a secure login. Note that this
2424 procedure is still BLOCKING. */
2427 /* We set private first as default, in case the line below fails to
2428 set a valid level */
2433 else
2435 }
2436 #endif
2439 /* We don't have a SSL/TLS connection yet, but FTPS is
2440 requested. Try a FTPS connection now */
2457 }
2460 }
2465 }
2470 /* we have gotten the response to a previous AUTH command */
2472 /* RFC2228 (page 5) says:
2473 *
2474 * If the server is willing to accept the named security mechanism,
2475 * and does not require any security data, it must respond with
2476 * reply code 234/334.
2477 */
2480 /* Curl_ssl_connect is BLOCKING */
2486 }
2487 }
2492 /* remain in this same state */
2493 }
2496 /* we failed and CURLFTPSSL_CONTROL or CURLFTPSSL_ALL is set */
2498 else
2499 /* ignore the failure and continue */
2501 }
2517 /* FIX: check response code */
2519 /* For TLS, the data connection can have one of two security levels.
2521 1) Clear (requested by 'PROT C')
2523 2)Private (requested by 'PROT P')
2524 */
2529 }
2534 }
2540 /* We have enabled SSL for the data connection! */
2543 /* FTP servers typically responds with 500 if they decide to reject
2544 our 'P' request */
2546 /* we failed and bails out */
2550 /* CCC - Clear Command Channel
2551 */
2554 }
2559 }
2564 /* First shut down the SSL layer (note: this call will block) */
2570 }
2571 }
2573 /* Then continue as normal */
2588 /* Reply format is like
2589 257<space>"<directory-name>"<space><commentary> and the RFC959
2590 says
2592 The directory name can contain any character; embedded
2593 double-quotes should be escaped by double-quotes (the
2594 "quote-doubling" convention).
2595 */
2597 /* it started good */
2598 ptr++;
2602 /* "quote-doubling" */
2604 ptr++;
2605 }
2607 /* end of path */
2610 }
2611 }
2612 else
2614 store++;
2615 ptr++;
2616 }
2619 /* also save it where getinfo can access it: */
2621 }
2623 /* couldn't get the path */
2626 }
2627 }
2639 }
2648 /* failure to CWD there */
2651 /* try making it */
2655 }
2657 /* return failure */
2660 to enter it */
2662 }
2663 }
2665 /* success */
2668 /* send next CWD */
2670 }
2675 }
2676 }
2681 /* failure to MKD the dir */
2684 }
2686 /* send CWD */
2730 /* fallthrough, just stop! */
2732 /* internal error */
2735 }
2739 }
2741 /* Returns timeout in ms. 0 or negative number means the timeout has already
2742 triggered */
2744 {
2750 /* if CURLOPT_FTP_RESPONSE_TIMEOUT is set, use that to determine remaining
2751 time. Also, use ftp->response because FTP_RESPONSE_TIMEOUT is supposed
2752 to govern the response for any given ftp response, not for the time
2753 from connect to the given ftp response. */
2757 /* if timeout is requested, find out how much remaining time we have */
2760 else
2761 /* Without a requested timeout, we only wait 'response_time' seconds for
2762 the full response to arrive before we bail out */
2767 }
2770 /* called repeatedly until done from multi.c */
2773 {
2786 }
2795 }
2799 }
2800 /* if rc == 0, then select() timed out */
2803 }
2806 {
2819 }
2828 }
2832 }
2837 }
2838 }
2841 }
2843 /*
2844 * Allocate and initialize the struct FTP for the current SessionHandle. If
2845 * need be.
2846 */
2848 {
2860 /* get some initial data into the ftp struct */
2863 /* no need to duplicate them, this connectdata struct won't change */
2870 }
2872 /*
2873 * Curl_ftp_connect() should do everything that is to be considered a part of
2874 * the connection phase.
2875 *
2876 * The variable 'done' points to will be TRUE if the protocol-layer connect
2877 * phase is done when this function returns, or FALSE is not. When called as
2878 * a part of the easy interface, it will always be TRUE.
2879 */
2882 {
2883 CURLcode result;
2884 #ifndef CURL_DISABLE_HTTP
2885 /* for FTP over HTTP proxy */
2898 }
2904 /* We always support persistant connections on ftp */
2909 #ifndef CURL_DISABLE_HTTP
2911 /* BLOCKING */
2912 /* We want "seamless" FTP operations through HTTP proxy tunnel */
2914 /* Curl_proxyCONNECT is based on a pointer to a struct HTTP at the member
2915 * conn->proto.http; we want FTP through HTTP and we have to change the
2916 * member temporarily for connecting to the HTTP proxy. After
2917 * Curl_proxyCONNECT we have to set back the member to the original struct
2918 * FTP pointer
2919 */
2931 }
2935 /* BLOCKING */
2936 /* FTPS is simply ftp with SSL for the control channel */
2937 /* now, perform the SSL initialization for this socket */
2941 }
2943 /* When we connect, we start in the state where we await the 220
2944 response */
2955 }
2958 }
2960 /***********************************************************************
2961 *
2962 * Curl_ftp_done()
2963 *
2964 * The DONE function. This does what needs to be done after a single DO has
2965 * performed.
2966 *
2967 * Input argument is already checked for validity.
2968 */
2970 {
2974 ssize_t nread;
2985 /* When the easy handle is removed from the multi while libcurl is still
2986 * trying to resolve the host name, it seems that the ftp struct is not
2987 * yet initialized, but the removal action calls Curl_done() which calls
2988 * this function. So we simply return success if no ftp pointer is set.
2989 */
3000 /* the connection stays alive fine even though this happened */
3001 /* fall-through */
3006 }
3007 /* until we cope better with prematurely ended requests, let them
3008 * fallback as if in complete failure */
3010 wedged and should not be used anymore */
3013 current path, as this connection is going */
3016 }
3018 /* now store a copy of the directory we are in */
3022 /* get the "raw" path */
3032 /* if 'path' is not the whole string */
3035 }
3039 }
3040 /* free the dir tree and file parts */
3043 #ifdef HAVE_KRB4
3045 #endif
3047 /* shut down the socket to inform the server we're done */
3049 #ifdef _WIN32_WCE
3051 #endif
3058 /*
3059 * Let's see what the server says about the transfer we just performed,
3060 * but lower the timeout as sometimes this connection has died while the
3061 * data has been transfered. This happens when doing through NATs etc that
3062 * abandon old silent connections.
3063 */
3076 }
3082 /* 226 Transfer complete, 250 Requested file action okay, completed. */
3086 }
3087 }
3088 }
3091 /* the response code from the transfer showed an error already so no
3092 use checking further */
3093 ;
3103 }
3104 }
3107 #ifdef CURL_DO_LINEEND_CONV
3108 /* Most FTP servers don't adjust their file SIZE response for CRLFs, so
3109 * we'll check to see if the discrepancy can be explained by the number
3110 * of CRLFs we've changed to LFs.
3111 */
3118 }
3124 }
3125 }
3127 /* clear these for next connection */
3131 /* Send any post-transfer QUOTE strings? */
3136 }
3138 /***********************************************************************
3139 *
3140 * ftp_sendquote()
3141 *
3142 * Where a 'quote' means a list of custom commands to send to the server.
3143 * The quote list is passed as an argument.
3144 */
3146 static
3148 {
3150 ssize_t nread;
3152 CURLcode result;
3166 }
3167 }
3170 }
3173 }
3175 /***********************************************************************
3176 *
3177 * ftp_need_type()
3178 *
3179 * Returns TRUE if we in the current situation should send TYPE
3180 */
3183 {
3185 }
3187 /***********************************************************************
3188 *
3189 * ftp_nb_type()
3190 *
3191 * Set TYPE. We only deal with ASCII or BINARY so this function
3192 * sets one of them.
3193 * If the transfer type is not sent, simulate on OK response in newstate
3194 */
3197 {
3199 CURLcode result;
3205 }
3210 /* keep track of our current transfer type */
3213 }
3215 /***************************************************************************
3216 *
3217 * ftp_pasv_verbose()
3218 *
3219 * This function only outputs some informationals about this second connection
3220 * when we've issued a PASV command before and thus we have connected to a
3221 * possibly new IP address.
3222 *
3223 */
3224 static void
3229 {
3233 }
3235 /*
3236 Check if this is a range download, and if so, set the internal variables
3237 properly.
3238 */
3241 {
3252 ptr++;
3255 /* we didn't get any digit */
3257 }
3259 /* X - */
3262 from));
3263 }
3265 /* -Y */
3270 totalsize));
3271 }
3273 /* X-Y */
3280 }
3285 }
3287 }
3290 /*
3291 * Curl_ftp_nextconnect()
3292 *
3293 * This function shall be called when the second FTP (data) connection is
3294 * connected.
3295 */
3298 {
3302 /* the ftp struct is inited in Curl_ftp_connect() */
3308 /* a transfer is about to take place */
3312 FTP_STOR_TYPE);
3315 }
3317 /* download */
3322 ;
3324 /* The specified path ends with a slash, and therefore we think this
3325 is a directory that is requested, use LIST. But before that we
3326 need to set ASCII transfer mode. */
3330 }
3335 }
3336 }
3338 }
3341 /* no data to transfer. FIX: it feels like a kludge to have this here
3342 too! */
3345 /* end of transfer */
3349 }
3353 /***********************************************************************
3354 *
3355 * ftp_perform()
3356 *
3357 * This is the actual DO function for FTP. Get a file/directory according to
3358 * the options previously setup.
3359 */
3361 static
3365 {
3366 /* this is FTP and no proxy */
3373 /* start the first command in the DO phase */
3378 /* run the state-machine */
3384 }
3389 }
3392 }
3394 /***********************************************************************
3395 *
3396 * Curl_ftp()
3397 *
3398 * This function is registered as 'curl_do' function. It decodes the path
3399 * parts etc as a wrapper to the actual DO function (ftp_perform).
3400 *
3401 * The input argument is already checked for validity.
3402 */
3404 {
3409 /*
3410 Since connections can be re-used between SessionHandles, this might be a
3411 connection already existing but on a fresh SessionHandle struct so we must
3412 make sure we have a good 'struct FTP' to play with. For new connections,
3413 the struct FTP is allocated and setup in the Curl_ftp_connect() function.
3414 */
3426 }
3428 /***********************************************************************
3429 *
3430 * Curl_(nb)ftpsendf()
3431 *
3432 * Sends the formated string as a ftp command to a ftp server
3433 *
3434 * NOTE: we build the command in a fixed-length buffer, which sets length
3435 * restrictions on the command!
3436 *
3437 * The "nb" version is made to Never Block.
3438 */
3441 {
3442 ssize_t bytes_written;
3462 #ifdef CURL_DOES_CONVERSIONS
3464 /* Curl_convert_to_network calls failf if unsuccessful */
3467 }
3481 /* the whole chunk was not sent, store the rest of the data */
3488 }
3492 }
3493 }
3494 else
3498 }
3502 {
3503 ssize_t bytes_written;
3519 #ifdef CURL_DOES_CONVERSIONS
3521 /* Curl_convert_to_network calls failf if unsuccessful */
3524 }
3541 }
3542 else
3544 }
3547 }
3549 /***********************************************************************
3550 *
3551 * ftp_quit()
3552 *
3553 * This should be called before calling sclose() on an ftp control connection
3554 * (not data connections). We should then wait for the response from the
3555 * server before returning. The calling code should then try to close the
3556 * connection.
3557 *
3558 */
3560 {
3568 }
3571 }
3573 /***********************************************************************
3574 *
3575 * Curl_ftp_disconnect()
3576 *
3577 * Disconnect from an FTP server. Cleanup protocol-specific per-connection
3578 * resources. BLOCKING.
3579 */
3581 {
3584 /* We cannot send quit unconditionally. If this connection is stale or
3585 bad in any way, sending quit and waiting around here will make the
3586 disconnect wait in vain and cause more problems than we need to.
3588 ftp_quit() will check the state of ftp->ctl_valid. If it's ok it
3589 will try to send the QUIT command, otherwise it will just return.
3590 */
3592 /* The FTP session may or may not have been allocated/setup at this point! */
3601 }
3605 }
3610 }
3611 }
3613 }
3615 /***********************************************************************
3616 *
3617 * ftp_parse_url_path()
3618 *
3619 * Parse the URL path into separate path components.
3620 *
3621 */
3622 static
3624 {
3627 /* the ftp struct is already inited in ftp_connect() */
3636 of next path component */
3643 /* fastest, but less standard-compliant */
3648 /* get the last slash */
3658 NULL);
3662 }
3664 }
3665 else
3677 /* parse the URL path into separate path components */
3679 /* 1 or 0 to indicate absolute directory */
3683 /* seek out the next path component */
3685 /* we skip empty path components, like "x//y" since the FTP command
3686 CWD requires a parameter and a non-existant parameter a) doesn't
3687 work on many servers and b) has no effect on the others. */
3696 }
3700 }
3701 }
3705 }
3710 /* enlarge array */
3718 }
3720 }
3721 }
3722 }
3725 }
3733 }
3737 }
3738 }
3739 else
3741 pointer */
3745 /* We need a file name when uploading. Return error! */
3748 }
3753 /* prevpath is "raw" so we convert the input path before we compare the
3754 strings */
3764 }
3766 }
3769 }
3771 /* call this when the DO phase has completed */
3774 {
3783 /* Failure detected, close the second socket if it was created already */
3787 }
3790 /* no data to transfer */
3793 /* since we didn't connect now, we want do_more to get called */
3799 }
3801 /* called from multi.c while DOing */
3804 {
3805 CURLcode result;
3812 }
3814 }
3816 /***********************************************************************
3817 *
3818 * ftp_regular_transfer()
3819 *
3820 * The input argument is already checked for validity.
3821 *
3822 * Performs all commands done before a regular transfer between a local and a
3823 * remote host.
3824 *
3825 * ftp->ctl_valid starts out as FALSE, and gets set to TRUE if we reach the
3826 * Curl_ftp_done() function without finding any major problem.
3827 */
3828 static
3831 {
3852 /* the DO phase has not completed yet */
3858 }
3859 else
3863 }