| blob | bc0c8f5325c59e48afc9316839d8048ffbd12ac4 |
1 /*-
2 * Copyright (c) 2003-2004 Tim Kientzle
3 * All rights reserved.
4 *
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
7 * are met:
8 * 1. Redistributions of source code must retain the above copyright
9 * notice, this list of conditions and the following disclaimer
10 * in this position and unchanged.
11 * 2. Redistributions in binary form must reproduce the above copyright
12 * notice, this list of conditions and the following disclaimer in the
13 * documentation and/or other materials provided with the distribution.
14 *
15 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR(S) ``AS IS'' AND ANY EXPRESS OR
16 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
17 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
18 * IN NO EVENT SHALL THE AUTHOR(S) BE LIABLE FOR ANY DIRECT, INDIRECT,
19 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
20 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
21 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
22 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
23 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
24 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
25 */
28 __FBSDID("$FreeBSD: src/lib/libarchive/archive_write_set_format_pax.c,v 1.26 2005/04/23 17:46:51 kientzle Exp $");
30 #include <sys/stat.h>
31 #include <errno.h>
32 #include <stdlib.h>
33 #include <string.h>
34 #include <unistd.h>
35 #include <wchar.h>
46 };
68 /*
69 * Set output format to 'restricted pax' format.
70 *
71 * This is the same as normal 'pax', but tries to suppress
72 * the pax header whenever possible. This is the default for
73 * bsdtar, for instance.
74 */
75 int
77 {
83 }
85 /*
86 * Set output format to 'pax' format.
87 */
88 int
90 {
100 }
112 }
114 /*
115 * Note: This code assumes that 'nanos' has the same sign as 'sec',
116 * which implies that sec=-1, nanos=200000000 represents -1.2 seconds
117 * and not -0.8 seconds. This is a pretty pedantic point, as we're
118 * unlikely to encounter many real files created before Jan 1, 1970,
119 * much less ones with timestamps recorded to sub-second resolution.
120 */
121 static void
124 {
127 /*
128 * Note that each byte contributes fewer than 3 base-10
129 * digits, so this will always be big enough.
130 */
136 /* Skip trailing zeros in the fractional part. */
140 }
142 /* Only format the fraction if it's non-zero. */
148 i--;
149 }
151 }
155 }
159 {
174 }
176 static void
178 {
183 }
185 static void
187 {
197 utf8len++;
208 /* Ignore larger values; UTF-8 can't encode them. */
209 }
246 }
247 /* Ignore larger values; UTF-8 can't encode them. */
248 }
252 }
254 /*
255 * Add a key/value attribute to the pax header. This function handles
256 * the length field and various other syntactic requirements.
257 */
258 static void
260 {
264 /*-
265 * PAX attributes have the following layout:
266 * <len> <space> <key> <=> <value> <nl>
267 */
270 /*
271 * The <len> field includes the length of the <len> field, so
272 * computing the correct length is tricky. I start by
273 * counting the number of base-10 digits in 'len' and
274 * computing the next higher power of 10.
275 */
281 digits++;
283 }
284 /*
285 * For example, if string without the length field is 99
286 * chars, then adding the 2 digit length "99" will force the
287 * total length past 100, requiring an extra digit. The next
288 * statement adjusts for this effect.
289 */
291 digits++;
293 /* Now, we have the right length so we can build the line. */
301 }
303 /*
304 * TODO: Consider adding 'comment' and 'charset' fields to
305 * archive_entry so that clients can specify them. Also, consider
306 * adding generic key/value tags so clients can add arbitrary
307 * key/value data.
308 */
309 static int
312 {
335 /* Make sure this is a type of entry that we can handle here */
354 }
355 }
357 /* Copy entry so we can modify it as needed. */
362 /*
363 * Determining whether or not the name is too big is ugly
364 * because of the rules for dividing names between 'name' and
365 * 'prefix' fields. Here, I pick out the longest possible
366 * suffix, then test whether the remaining prefix is too long.
367 */
372 else
373 /* Find the largest suffix that fits in 'name' field. */
376 /* Find non-ASCII character, if any. */
379 wp2++;
381 /*
382 * If name is too long, or has non-ASCII characters, add
383 * 'path' to pax extended attrs.
384 */
390 }
392 /* If link name is too long, add 'linkpath' to pax extended attrs. */
402 else
406 }
408 /* If file size is too large, add 'size' to pax extended attrs. */
412 }
414 /* If numeric GID is too large, add 'gid' to pax extended attrs. */
418 }
420 /* If group name is too large, add 'gname' to pax extended attrs. */
421 /* TODO: If gname has non-ASCII characters, use pax attribute. */
427 }
429 /* If numeric UID is too large, add 'uid' to pax extended attrs. */
433 }
435 /* If user name is too large, add 'uname' to pax extended attrs. */
436 /* TODO: If uname has non-ASCII characters, use pax attribute. */
442 }
444 /*
445 * POSIX/SUSv3 doesn't provide a standard key for large device
446 * numbers. I use the same keys here that Joerg Schilling
447 * used for 'star.' (Which, somewhat confusingly, are called
448 * "devXXX" even though they code "rdev" values.) No doubt,
449 * other implementations use other keys. Note that there's no
450 * reason we can't write the same information into a number of
451 * different keys.
452 *
453 * Of course, this is only needed for block or char device entries.
454 */
457 /*
458 * If rdevmajor is too large, add 'SCHILY.devmajor' to
459 * extended attributes.
460 */
466 rdevmajor);
467 /*
468 * Non-strict formatting below means we don't
469 * have to truncate here. Not truncating improves
470 * the chance that some more modern tar archivers
471 * (such as GNU tar 1.13) can restore the full
472 * value even if they don't understand the pax
473 * extended attributes. See my rant below about
474 * file size fields for additional details.
475 */
476 /* archive_entry_set_rdevmajor(entry_main,
477 rdevmajor & ((1 << 18) - 1)); */
479 }
481 /*
482 * If devminor is too large, add 'SCHILY.devminor' to
483 * extended attributes.
484 */
487 rdevminor);
488 /* Truncation is not necessary here, either. */
489 /* archive_entry_set_rdevminor(entry_main,
490 rdevminor & ((1 << 18) - 1)); */
492 }
493 }
495 /*
496 * Technically, the mtime field in the ustar header can
497 * support 33 bits, but many platforms use signed 32-bit time
498 * values. The cutoff of 0x7fffffff here is a compromise.
499 * Yes, this check is duplicated just below; this helps to
500 * avoid writing an mtime attribute just to handle a
501 * high-resolution timestamp in "restricted pax" mode.
502 */
507 /* I use a star-compatible file flag attribute. */
512 /* If there are non-trivial ACL entries, we need an extension. */
517 /* If there are non-trivial ACL entries, we need an extension. */
522 /*
523 * The following items are handled differently in "pax
524 * restricted" format. In particular, in "pax restricted"
525 * format they won't be added unless need_extension is
526 * already set (we're already generating an extended header, so
527 * may as well include these).
528 */
530 need_extension) {
551 /* I use a star-compatible file flag attribute. */
556 /* I use star-compatible ACL attributes. */
558 ARCHIVE_ENTRY_ACL_TYPE_ACCESS |
559 ARCHIVE_ENTRY_ACL_STYLE_EXTRA_ID);
564 ARCHIVE_ENTRY_ACL_TYPE_DEFAULT |
565 ARCHIVE_ENTRY_ACL_STYLE_EXTRA_ID);
570 /* Include star-compatible metadata info. */
571 /* Note: "SCHILY.dev{major,minor}" are NOT the
572 * major/minor portions of "SCHILY.dev". */
579 }
581 /* Only regular files have data. */
585 /*
586 * Pax-restricted does not store data for hardlinks, in order
587 * to improve compatibility with ustar.
588 */
593 /*
594 * XXX Full pax interchange format does permit a hardlink
595 * entry to have data associated with it. I'm not supporting
596 * that here because the client expects me to tell them whether
597 * or not this format expects data for hardlinks. If I
598 * don't check here, then every pax archive will end up with
599 * duplicated data for hardlinks. Someday, there may be
600 * need to select this behavior, in which case the following
601 * will need to be revisited. XXX
602 */
606 /* Format 'ustar' header for main entry.
607 *
608 * The trouble with file size: If the reader can't understand
609 * the file size, they may not be able to locate the next
610 * entry and the rest of the archive is toast. Pax-compliant
611 * readers are supposed to ignore the file size in the main
612 * header, so the question becomes how to maximize portability
613 * for readers that don't support pax attribute extensions.
614 * For maximum compatibility, I permit numeric extensions in
615 * the main header so that the file size stored will always be
616 * correct, even if it's in a format that only some
617 * implementations understand. The technique used here is:
618 *
619 * a) If possible, follow the standard exactly. This handles
620 * files up to 8 gigabytes minus 1.
621 *
622 * b) If that fails, try octal but omit the field terminator.
623 * That handles files up to 64 gigabytes minus 1.
624 *
625 * c) Otherwise, use base-256 extensions. That handles files
626 * up to 2^63 in this implementation, with the potential to
627 * go up to 2^94. That should hold us for a while. ;-)
628 *
629 * The non-strict formatter uses similar logic for other
630 * numeric fields, though they're less critical.
631 */
634 /* If we built any extended attributes, write that entry first. */
665 /* Note that the 'x' header shouldn't ever fail to format */
671 }
677 }
685 /* If a write fails, we're pretty much toast. */
687 }
688 /* Pad out the end of the entry. */
691 /* If a write fails, we're pretty much toast. */
693 }
695 }
697 /* Write the header for main entry. */
702 /*
703 * Inform the client of the on-disk size we're using, so
704 * they can avoid unnecessarily writing a body for something
705 * that we're just going to ignore.
706 */
713 }
715 /*
716 * We need a valid name for the regular 'ustar' entry. This routine
717 * tries to hack something more-or-less reasonable.
718 *
719 * The approach here tries to preserve leading dir names. We do so by
720 * working with four sections:
721 * 1) "prefix" directory names,
722 * 2) "suffix" directory names,
723 * 3) inserted dir name (optional),
724 * 4) filename.
725 *
726 * These sections must satisfy the following requirements:
727 * * Parts 1 & 2 together form an initial portion of the dir name.
728 * * Part 3 is specified by the caller. (It should not contain a leading
729 * or trailing '/'.)
730 * * Part 4 forms an initial portion of the base filename.
731 * * The filename must be <= 99 chars to fit the ustar 'name' field.
732 * * Parts 2, 3, 4 together must be <= 99 chars to fit the ustar 'name' fld.
733 * * Part 1 must be <= 155 chars to fit the ustar 'prefix' field.
734 * * If the original name ends in a '/', the new name must also end in a '/'
735 * * Trailing '/.' sequences may be stripped.
736 *
737 * Note: Recall that the ustar format does not store the '/' separating
738 * parts 1 & 2, but does store the '/' separating parts 2 & 3.
739 */
742 {
752 /* Length of additional dir element to be added. */
755 else
756 /* +2 here allows for '/' before and after the insert. */
759 /* Step 0: Quick bailout in a common case. */
764 }
766 /* Step 1: Locate filename and enforce the length restriction. */
768 /* Remove trailing '/' chars and '/.' pairs. */
771 filename_end --;
774 }
780 }
782 }
784 suffix_length--;
785 /* Find start of filename. */
788 filename --;
790 filename ++;
791 /* Adjust filename_end so that filename + insert fits in 99 chars. */
795 /* Calculate max size for "suffix" section (#3 above). */
798 /* Step 2: Locate the "prefix" section of the dirname, including
799 * trailing '/'. */
805 prefix_end--;
807 prefix_end++;
809 /* Step 3: Locate the "suffix" section of the dirname,
810 * including trailing '/'. */
818 suffix_end--;
820 suffix_end++;
822 /* Step 4: Build the new name. */
823 /* The OpenBSD strlcpy function is safer, but less portable. */
824 /* Rather than maintain two versions, just use the strncpy version. */
829 }
833 }
840 }
848 }
850 /*
851 * The ustar header for the pax extended attributes must have a
852 * reasonable name: SUSv3 suggests 'dirname'/PaxHeader/'filename'
853 *
854 * Joerg Schiling has argued that this is unnecessary because, in practice,
855 * if the pax extended attributes get extracted as regular files, noone is
856 * going to bother reading those attributes to manually restore them.
857 * Based on this, 'star' uses /tmp/PaxHeader/'basename' as the ustar header
858 * name. This is a tempting argument, but I'm not entirely convinced.
859 * I'm also uncomfortable with the fact that "/tmp" is a Unix-ism.
860 *
861 * The following routine implements the SUSv3 recommendation, and is
862 * much simpler because build_ustar_entry_name() above already does
863 * most of the work (we just need to give it an extra path element to
864 * insert and handle a few pathological cases).
865 */
868 {
871 /* Handle the null filename case. */
875 }
877 /* Prune final '/' and other unwanted final elements. */
880 /* Ends in "/", remove the '/' */
884 }
885 /* Ends in "/.", remove the '.' */
890 }
892 }
894 /* Pathological case: After above, there was nothing left. */
898 }
900 /* Convert unadorned "." into "dot" */
904 }
906 /* General case: build a ustar-compatible name adding "/PaxHeader/". */
910 }
912 /* Write two null blocks for the end of archive */
913 static int
915 {
927 }
929 static int
931 {
939 }
941 static int
943 {
952 }
954 }
956 static int
958 {
970 }