lib/libfetch/common.c

40939Sdes/*-
135546Sdes * Copyright (c) 1998-2004 Dag-Erling Co�dan Sm�rgrav
40939Sdes * All rights reserved.
40939Sdes *
40939Sdes * Redistribution and use in source and binary forms, with or without
40939Sdes * modification, are permitted provided that the following conditions
40939Sdes * are met:
40939Sdes * 1. Redistributions of source code must retain the above copyright
40939Sdes *    notice, this list of conditions and the following disclaimer
40939Sdes *    in this position and unchanged.
40939Sdes * 2. Redistributions in binary form must reproduce the above copyright
40939Sdes *    notice, this list of conditions and the following disclaimer in the
40939Sdes *    documentation and/or other materials provided with the distribution.
40939Sdes * 3. The name of the author may not be used to endorse or promote products
40939Sdes *    derived from this software without specific prior written permission
40939Sdes *
40939Sdes * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
40939Sdes * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
40939Sdes * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
40939Sdes * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
40939Sdes * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
40939Sdes * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
40939Sdes * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
40939Sdes * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
40939Sdes * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
40939Sdes * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
40939Sdes */
40939Sdes
84203Sdillon#include <sys/cdefs.h>
84203Sdillon__FBSDID("$FreeBSD: head/lib/libfetch/common.c 210568 2010-07-28 16:11:22Z des $");
84203Sdillon
41862Sdes#include <sys/param.h>
40939Sdes#include <sys/socket.h>
55557Sdes#include <sys/time.h>
62981Sdes#include <sys/uio.h>
174752Sdes
40939Sdes#include <netinet/in.h>
40939Sdes
174752Sdes#include <ctype.h>
40939Sdes#include <errno.h>
210568Sdes#include <fcntl.h>
40939Sdes#include <netdb.h>
109695Sdes#include <pwd.h>
60924Sdes#include <stdarg.h>
41862Sdes#include <stdlib.h>
41862Sdes#include <stdio.h>
40939Sdes#include <string.h>
40939Sdes#include <unistd.h>
40939Sdes
40939Sdes#include "fetch.h"
40939Sdes#include "common.h"
40939Sdes
40975Sdes
40939Sdes/*** Local data **************************************************************/
40939Sdes
40939Sdes/*
40939Sdes * Error messages for resolver errors
40939Sdes */
174588Sdesstatic struct fetcherr netdb_errlist[] = {
121423Sume#ifdef EAI_NODATA
90267Sdes	{ EAI_NODATA,	FETCH_RESOLV,	"Host not found" },
121423Sume#endif
90267Sdes	{ EAI_AGAIN,	FETCH_TEMP,	"Transient resolver failure" },
90267Sdes	{ EAI_FAIL,	FETCH_RESOLV,	"Non-recoverable resolver failure" },
90267Sdes	{ EAI_NONAME,	FETCH_RESOLV,	"No address record" },
90267Sdes	{ -1,		FETCH_UNKNOWN,	"Unknown resolver error" }
40939Sdes};
40939Sdes
62981Sdes/* End-of-Line */
75891Sarchiestatic const char ENDL[2] = "\r\n";
40939Sdes
62981Sdes
40939Sdes/*** Error-reporting functions ***********************************************/
40939Sdes
40939Sdes/*
40939Sdes * Map error code to string
40939Sdes */
60924Sdesstatic struct fetcherr *
174588Sdesfetch_finderr(struct fetcherr *p, int e)
40939Sdes{
90267Sdes	while (p->num != -1 && p->num != e)
90267Sdes		p++;
90267Sdes	return (p);
40939Sdes}
40939Sdes
40939Sdes/*
40939Sdes * Set error code
40939Sdes */
40939Sdesvoid
174588Sdesfetch_seterr(struct fetcherr *p, int e)
40939Sdes{
174588Sdes	p = fetch_finderr(p, e);
90267Sdes	fetchLastErrCode = p->cat;
90267Sdes	snprintf(fetchLastErrString, MAXERRSTRING, "%s", p->string);
40939Sdes}
40939Sdes
40939Sdes/*
40939Sdes * Set error code according to errno
40939Sdes */
40939Sdesvoid
174588Sdesfetch_syserr(void)
40939Sdes{
90267Sdes	switch (errno) {
90267Sdes	case 0:
90267Sdes		fetchLastErrCode = FETCH_OK;
90267Sdes		break;
90267Sdes	case EPERM:
90267Sdes	case EACCES:
90267Sdes	case EROFS:
90267Sdes	case EAUTH:
90267Sdes	case ENEEDAUTH:
90267Sdes		fetchLastErrCode = FETCH_AUTH;
90267Sdes		break;
90267Sdes	case ENOENT:
90267Sdes	case EISDIR: /* XXX */
90267Sdes		fetchLastErrCode = FETCH_UNAVAIL;
90267Sdes		break;
90267Sdes	case ENOMEM:
90267Sdes		fetchLastErrCode = FETCH_MEMORY;
90267Sdes		break;
90267Sdes	case EBUSY:
90267Sdes	case EAGAIN:
90267Sdes		fetchLastErrCode = FETCH_TEMP;
90267Sdes		break;
90267Sdes	case EEXIST:
90267Sdes		fetchLastErrCode = FETCH_EXISTS;
90267Sdes		break;
90267Sdes	case ENOSPC:
90267Sdes		fetchLastErrCode = FETCH_FULL;
90267Sdes		break;
90267Sdes	case EADDRINUSE:
90267Sdes	case EADDRNOTAVAIL:
90267Sdes	case ENETDOWN:
90267Sdes	case ENETUNREACH:
90267Sdes	case ENETRESET:
90267Sdes	case EHOSTUNREACH:
90267Sdes		fetchLastErrCode = FETCH_NETWORK;
90267Sdes		break;
90267Sdes	case ECONNABORTED:
90267Sdes	case ECONNRESET:
90267Sdes		fetchLastErrCode = FETCH_ABORT;
90267Sdes		break;
90267Sdes	case ETIMEDOUT:
90267Sdes		fetchLastErrCode = FETCH_TIMEOUT;
90267Sdes		break;
90267Sdes	case ECONNREFUSED:
90267Sdes	case EHOSTDOWN:
90267Sdes		fetchLastErrCode = FETCH_DOWN;
90267Sdes		break;
90267Sdesdefault:
90267Sdes		fetchLastErrCode = FETCH_UNKNOWN;
90267Sdes	}
90267Sdes	snprintf(fetchLastErrString, MAXERRSTRING, "%s", strerror(errno));
40939Sdes}
40939Sdes
40939Sdes
41862Sdes/*
41862Sdes * Emit status message
41862Sdes */
60924Sdesvoid
174588Sdesfetch_info(const char *fmt, ...)
41862Sdes{
90267Sdes	va_list ap;
90267Sdes
90267Sdes	va_start(ap, fmt);
90267Sdes	vfprintf(stderr, fmt, ap);
90267Sdes	va_end(ap);
90267Sdes	fputc('\n', stderr);
41862Sdes}
41862Sdes
41862Sdes
40939Sdes/*** Network-related utility functions ***************************************/
40939Sdes
40939Sdes/*
68551Sdes * Return the default port for a scheme
68551Sdes */
68551Sdesint
174588Sdesfetch_default_port(const char *scheme)
68551Sdes{
90267Sdes	struct servent *se;
68551Sdes
90267Sdes	if ((se = getservbyname(scheme, "tcp")) != NULL)
90267Sdes		return (ntohs(se->s_port));
90267Sdes	if (strcasecmp(scheme, SCHEME_FTP) == 0)
90267Sdes		return (FTP_DEFAULT_PORT);
90267Sdes	if (strcasecmp(scheme, SCHEME_HTTP) == 0)
90267Sdes		return (HTTP_DEFAULT_PORT);
90267Sdes	return (0);
68551Sdes}
68551Sdes
68551Sdes/*
68551Sdes * Return the default proxy port for a scheme
68551Sdes */
68551Sdesint
174588Sdesfetch_default_proxy_port(const char *scheme)
68551Sdes{
90267Sdes	if (strcasecmp(scheme, SCHEME_FTP) == 0)
90267Sdes		return (FTP_DEFAULT_PROXY_PORT);
90267Sdes	if (strcasecmp(scheme, SCHEME_HTTP) == 0)
90267Sdes		return (HTTP_DEFAULT_PROXY_PORT);
90267Sdes	return (0);
68551Sdes}
68551Sdes
98117Sdes
68551Sdes/*
97866Sdes * Create a connection for an existing descriptor.
97866Sdes */
97866Sdesconn_t *
174588Sdesfetch_reopen(int sd)
97866Sdes{
97866Sdes	conn_t *conn;
97866Sdes
97866Sdes	/* allocate and fill connection structure */
109967Sdes	if ((conn = calloc(1, sizeof(*conn))) == NULL)
97866Sdes		return (NULL);
97866Sdes	conn->sd = sd;
98117Sdes	++conn->ref;
97866Sdes	return (conn);
97866Sdes}
97866Sdes
97866Sdes
97866Sdes/*
98117Sdes * Bump a connection's reference count.
98117Sdes */
98117Sdesconn_t *
174588Sdesfetch_ref(conn_t *conn)
98117Sdes{
98117Sdes
98117Sdes	++conn->ref;
98117Sdes	return (conn);
98117Sdes}
98117Sdes
98117Sdes
98117Sdes/*
111816Sdes * Bind a socket to a specific local address
111816Sdes */
111816Sdesint
174588Sdesfetch_bind(int sd, int af, const char *addr)
111816Sdes{
111816Sdes	struct addrinfo hints, *res, *res0;
111816Sdes	int err;
111816Sdes
111816Sdes	memset(&hints, 0, sizeof(hints));
111816Sdes	hints.ai_family = af;
111816Sdes	hints.ai_socktype = SOCK_STREAM;
111816Sdes	hints.ai_protocol = 0;
111816Sdes	if ((err = getaddrinfo(addr, NULL, &hints, &res0)) != 0)
111816Sdes		return (-1);
111816Sdes	for (res = res0; res; res = res->ai_next)
111816Sdes		if (bind(sd, res->ai_addr, res->ai_addrlen) == 0)
111816Sdes			return (0);
111816Sdes	return (-1);
111816Sdes}
111816Sdes
111816Sdes
111816Sdes/*
40939Sdes * Establish a TCP connection to the specified port on the specified host.
40939Sdes */
97856Sdesconn_t *
174588Sdesfetch_connect(const char *host, int port, int af, int verbose)
40939Sdes{
97856Sdes	conn_t *conn;
90267Sdes	char pbuf[10];
111816Sdes	const char *bindaddr;
90267Sdes	struct addrinfo hints, *res, *res0;
90267Sdes	int sd, err;
40939Sdes
90267Sdes	DEBUG(fprintf(stderr, "---> %s:%d\n", host, port));
41862Sdes
90267Sdes	if (verbose)
174588Sdes		fetch_info("looking up %s", host);
40939Sdes
90267Sdes	/* look up host name and set up socket address structure */
90267Sdes	snprintf(pbuf, sizeof(pbuf), "%d", port);
90267Sdes	memset(&hints, 0, sizeof(hints));
90267Sdes	hints.ai_family = af;
90267Sdes	hints.ai_socktype = SOCK_STREAM;
90267Sdes	hints.ai_protocol = 0;
90267Sdes	if ((err = getaddrinfo(host, pbuf, &hints, &res0)) != 0) {
174588Sdes		netdb_seterr(err);
97856Sdes		return (NULL);
90267Sdes	}
111816Sdes	bindaddr = getenv("FETCH_BIND_ADDRESS");
90267Sdes
90267Sdes	if (verbose)
174588Sdes		fetch_info("connecting to %s:%d", host, port);
90267Sdes
90267Sdes	/* try to connect */
111816Sdes	for (sd = -1, res = res0; res; sd = -1, res = res->ai_next) {
90267Sdes		if ((sd = socket(res->ai_family, res->ai_socktype,
62981Sdes			 res->ai_protocol)) == -1)
90267Sdes			continue;
111816Sdes		if (bindaddr != NULL && *bindaddr != '\0' &&
174588Sdes		    fetch_bind(sd, res->ai_family, bindaddr) != 0) {
174588Sdes			fetch_info("failed to bind to '%s'", bindaddr);
111816Sdes			close(sd);
111816Sdes			continue;
111816Sdes		}
210568Sdes		if (connect(sd, res->ai_addr, res->ai_addrlen) == 0 &&
210568Sdes		    fcntl(sd, F_SETFL, O_NONBLOCK) == 0)
90267Sdes			break;
90267Sdes		close(sd);
90267Sdes	}
90267Sdes	freeaddrinfo(res0);
90267Sdes	if (sd == -1) {
174588Sdes		fetch_syserr();
97856Sdes		return (NULL);
90267Sdes	}
40939Sdes
174588Sdes	if ((conn = fetch_reopen(sd)) == NULL) {
174588Sdes		fetch_syserr();
97856Sdes		close(sd);
103459Sfenner	}
97856Sdes	return (conn);
40939Sdes}
41989Sdes
41989Sdes
55557Sdes/*
97868Sdes * Enable SSL on a connection.
97868Sdes */
97868Sdesint
174588Sdesfetch_ssl(conn_t *conn, int verbose)
97868Sdes{
210568Sdes	int ret, ssl_err;
97868Sdes
97891Sdes#ifdef WITH_SSL
97868Sdes	/* Init the SSL library and context */
97868Sdes	if (!SSL_library_init()){
97868Sdes		fprintf(stderr, "SSL library init failed\n");
97868Sdes		return (-1);
97868Sdes	}
97868Sdes
97868Sdes	SSL_load_error_strings();
97868Sdes
97868Sdes	conn->ssl_meth = SSLv23_client_method();
97868Sdes	conn->ssl_ctx = SSL_CTX_new(conn->ssl_meth);
108579Sdes	SSL_CTX_set_mode(conn->ssl_ctx, SSL_MODE_AUTO_RETRY);
97868Sdes
97868Sdes	conn->ssl = SSL_new(conn->ssl_ctx);
97868Sdes	if (conn->ssl == NULL){
97868Sdes		fprintf(stderr, "SSL context creation failed\n");
97868Sdes		return (-1);
97868Sdes	}
97868Sdes	SSL_set_fd(conn->ssl, conn->sd);
210568Sdes	while ((ret = SSL_connect(conn->ssl)) == -1) {
210568Sdes		ssl_err = SSL_get_error(conn->ssl, ret);
210568Sdes		if (ssl_err != SSL_ERROR_WANT_READ &&
210568Sdes		    ssl_err != SSL_ERROR_WANT_WRITE) {
210568Sdes			ERR_print_errors_fp(stderr);
210568Sdes			return (-1);
210568Sdes		}
97868Sdes	}
97868Sdes
97868Sdes	if (verbose) {
97868Sdes		X509_NAME *name;
97868Sdes		char *str;
97868Sdes
97868Sdes		fprintf(stderr, "SSL connection established using %s\n",
97868Sdes		    SSL_get_cipher(conn->ssl));
97868Sdes		conn->ssl_cert = SSL_get_peer_certificate(conn->ssl);
97868Sdes		name = X509_get_subject_name(conn->ssl_cert);
97868Sdes		str = X509_NAME_oneline(name, 0, 0);
97868Sdes		printf("Certificate subject: %s\n", str);
97868Sdes		free(str);
97868Sdes		name = X509_get_issuer_name(conn->ssl_cert);
97868Sdes		str = X509_NAME_oneline(name, 0, 0);
97868Sdes		printf("Certificate issuer: %s\n", str);
97868Sdes		free(str);
97868Sdes	}
97868Sdes
97868Sdes	return (0);
97891Sdes#else
97891Sdes	(void)conn;
97891Sdes	(void)verbose;
97891Sdes	fprintf(stderr, "SSL support disabled\n");
97891Sdes	return (-1);
97891Sdes#endif
97868Sdes}
97868Sdes
210568Sdes#define FETCH_READ_WAIT		-2
210568Sdes#define FETCH_READ_ERROR	-1
210568Sdes#define FETCH_READ_DONE		 0
98117Sdes
210568Sdes#ifdef WITH_SSL
210568Sdesstatic ssize_t
210568Sdesfetch_ssl_read(SSL *ssl, char *buf, size_t len)
210568Sdes{
210568Sdes	ssize_t rlen;
210568Sdes	int ssl_err;
210568Sdes
210568Sdes	rlen = SSL_read(ssl, buf, len);
210568Sdes	if (rlen < 0) {
210568Sdes		ssl_err = SSL_get_error(ssl, rlen);
210568Sdes		if (ssl_err == SSL_ERROR_WANT_READ ||
210568Sdes		    ssl_err == SSL_ERROR_WANT_WRITE) {
210568Sdes			return (FETCH_READ_WAIT);
210568Sdes		} else {
210568Sdes			ERR_print_errors_fp(stderr);
210568Sdes			return (FETCH_READ_ERROR);
210568Sdes		}
210568Sdes	}
210568Sdes	return (rlen);
210568Sdes}
210568Sdes#endif
210568Sdes
210568Sdesstatic ssize_t
210568Sdesfetch_socket_read(int sd, char *buf, size_t len)
210568Sdes{
210568Sdes	ssize_t rlen;
210568Sdes
210568Sdes	rlen = read(sd, buf, len);
210568Sdes	if (rlen < 0) {
210568Sdes		if (errno == EAGAIN || (errno == EINTR && fetchRestartCalls))
210568Sdes			return (FETCH_READ_WAIT);
210568Sdes		else
210568Sdes			return (FETCH_READ_ERROR);
210568Sdes	}
210568Sdes	return (rlen);
210568Sdes}
210568Sdes
97868Sdes/*
97866Sdes * Read a character from a connection w/ timeout
55557Sdes */
97866Sdesssize_t
174588Sdesfetch_read(conn_t *conn, char *buf, size_t len)
55557Sdes{
177447Sdes	struct timeval now, timeout, delta;
90267Sdes	fd_set readfds;
97866Sdes	ssize_t rlen, total;
90267Sdes	int r;
90267Sdes
55557Sdes	if (fetchTimeout) {
97866Sdes		FD_ZERO(&readfds);
90267Sdes		gettimeofday(&timeout, NULL);
90267Sdes		timeout.tv_sec += fetchTimeout;
55557Sdes	}
90267Sdes
97866Sdes	total = 0;
97866Sdes	while (len > 0) {
210568Sdes		/*
210568Sdes		 * The socket is non-blocking.  Instead of the canonical
210568Sdes		 * select() -> read(), we do the following:
210568Sdes		 *
210568Sdes		 * 1) call read() or SSL_read().
210568Sdes		 * 2) if an error occurred, return -1.
210568Sdes		 * 3) if we received data but we still expect more,
210568Sdes		 *    update our counters and loop.
210568Sdes		 * 4) if read() or SSL_read() signaled EOF, return.
210568Sdes		 * 5) if we did not receive any data but we're not at EOF,
210568Sdes		 *    call select().
210568Sdes		 *
210568Sdes		 * In the SSL case, this is necessary because if we
210568Sdes		 * receive a close notification, we have to call
210568Sdes		 * SSL_read() one additional time after we've read
210568Sdes		 * everything we received.
210568Sdes		 *
210568Sdes		 * In the non-SSL case, it may improve performance (very
210568Sdes		 * slightly) when reading small amounts of data.
210568Sdes		 */
210568Sdes#ifdef WITH_SSL
210568Sdes		if (conn->ssl != NULL)
210568Sdes			rlen = fetch_ssl_read(conn->ssl, buf, len);
210568Sdes		else
210568Sdes#endif
210568Sdes			rlen = fetch_socket_read(conn->sd, buf, len);
210568Sdes		if (rlen == 0) {
210568Sdes			break;
210568Sdes		} else if (rlen > 0) {
210568Sdes			len -= rlen;
210568Sdes			buf += rlen;
210568Sdes			total += rlen;
210568Sdes			continue;
210568Sdes		} else if (rlen == FETCH_READ_ERROR) {
210568Sdes			return (-1);
210568Sdes		}
210568Sdes		// assert(rlen == FETCH_READ_WAIT);
97866Sdes		while (fetchTimeout && !FD_ISSET(conn->sd, &readfds)) {
97856Sdes			FD_SET(conn->sd, &readfds);
90267Sdes			gettimeofday(&now, NULL);
177447Sdes			delta.tv_sec = timeout.tv_sec - now.tv_sec;
177447Sdes			delta.tv_usec = timeout.tv_usec - now.tv_usec;
177447Sdes			if (delta.tv_usec < 0) {
177447Sdes				delta.tv_usec += 1000000;
177447Sdes				delta.tv_sec--;
90267Sdes			}
177447Sdes			if (delta.tv_sec < 0) {
106186Sdes				errno = ETIMEDOUT;
174588Sdes				fetch_syserr();
106186Sdes				return (-1);
106186Sdes			}
97866Sdes			errno = 0;
177447Sdes			r = select(conn->sd + 1, &readfds, NULL, NULL, &delta);
90267Sdes			if (r == -1) {
90267Sdes				if (errno == EINTR && fetchRestartCalls)
90267Sdes					continue;
174588Sdes				fetch_syserr();
90267Sdes				return (-1);
90267Sdes			}
90267Sdes		}
97866Sdes	}
97866Sdes	return (total);
97866Sdes}
97866Sdes
98117Sdes
97866Sdes/*
97866Sdes * Read a line of text from a connection w/ timeout
97866Sdes */
97866Sdes#define MIN_BUF_SIZE 1024
97866Sdes
97866Sdesint
174588Sdesfetch_getln(conn_t *conn)
97866Sdes{
97866Sdes	char *tmp;
97866Sdes	size_t tmpsize;
106186Sdes	ssize_t len;
97866Sdes	char c;
97866Sdes
97866Sdes	if (conn->buf == NULL) {
97866Sdes		if ((conn->buf = malloc(MIN_BUF_SIZE)) == NULL) {
97866Sdes			errno = ENOMEM;
97866Sdes			return (-1);
97866Sdes		}
97866Sdes		conn->bufsize = MIN_BUF_SIZE;
97866Sdes	}
97866Sdes
97866Sdes	conn->buf[0] = '\0';
97866Sdes	conn->buflen = 0;
97866Sdes
97866Sdes	do {
174588Sdes		len = fetch_read(conn, &c, 1);
106186Sdes		if (len == -1)
97866Sdes			return (-1);
106186Sdes		if (len == 0)
106137Sobrien			break;
97856Sdes		conn->buf[conn->buflen++] = c;
97856Sdes		if (conn->buflen == conn->bufsize) {
97856Sdes			tmp = conn->buf;
97856Sdes			tmpsize = conn->bufsize * 2 + 1;
97856Sdes			if ((tmp = realloc(tmp, tmpsize)) == NULL) {
90267Sdes				errno = ENOMEM;
90267Sdes				return (-1);
90267Sdes			}
97856Sdes			conn->buf = tmp;
97856Sdes			conn->bufsize = tmpsize;
90267Sdes		}
90267Sdes	} while (c != '\n');
90267Sdes
97856Sdes	conn->buf[conn->buflen] = '\0';
97856Sdes	DEBUG(fprintf(stderr, "<<< %s", conn->buf));
90267Sdes	return (0);
55557Sdes}
55557Sdes
55557Sdes
62981Sdes/*
97866Sdes * Write to a connection w/ timeout
62981Sdes */
97866Sdesssize_t
174588Sdesfetch_write(conn_t *conn, const char *buf, size_t len)
97866Sdes{
106175Simp	struct iovec iov;
106175Simp
106175Simp	iov.iov_base = __DECONST(char *, buf);
106175Simp	iov.iov_len = len;
174588Sdes	return fetch_writev(conn, &iov, 1);
106175Simp}
106175Simp
106175Simp/*
106175Simp * Write a vector to a connection w/ timeout
106175Simp * Note: can modify the iovec.
106175Simp */
106175Simpssize_t
174588Sdesfetch_writev(conn_t *conn, struct iovec *iov, int iovcnt)
106175Simp{
177447Sdes	struct timeval now, timeout, delta;
97866Sdes	fd_set writefds;
97866Sdes	ssize_t wlen, total;
97866Sdes	int r;
97866Sdes
97866Sdes	if (fetchTimeout) {
97866Sdes		FD_ZERO(&writefds);
97866Sdes		gettimeofday(&timeout, NULL);
97866Sdes		timeout.tv_sec += fetchTimeout;
97866Sdes	}
97866Sdes
106175Simp	total = 0;
106175Simp	while (iovcnt > 0) {
97866Sdes		while (fetchTimeout && !FD_ISSET(conn->sd, &writefds)) {
97866Sdes			FD_SET(conn->sd, &writefds);
97866Sdes			gettimeofday(&now, NULL);
177447Sdes			delta.tv_sec = timeout.tv_sec - now.tv_sec;
177447Sdes			delta.tv_usec = timeout.tv_usec - now.tv_usec;
177447Sdes			if (delta.tv_usec < 0) {
177447Sdes				delta.tv_usec += 1000000;
177447Sdes				delta.tv_sec--;
97866Sdes			}
177447Sdes			if (delta.tv_sec < 0) {
97866Sdes				errno = ETIMEDOUT;
174588Sdes				fetch_syserr();
97866Sdes				return (-1);
97866Sdes			}
97866Sdes			errno = 0;
177447Sdes			r = select(conn->sd + 1, NULL, &writefds, NULL, &delta);
97866Sdes			if (r == -1) {
97866Sdes				if (errno == EINTR && fetchRestartCalls)
97866Sdes					continue;
97866Sdes				return (-1);
97866Sdes			}
97866Sdes		}
97866Sdes		errno = 0;
97891Sdes#ifdef WITH_SSL
97866Sdes		if (conn->ssl != NULL)
106175Simp			wlen = SSL_write(conn->ssl,
106175Simp			    iov->iov_base, iov->iov_len);
97866Sdes		else
97891Sdes#endif
106175Simp			wlen = writev(conn->sd, iov, iovcnt);
106175Simp		if (wlen == 0) {
97866Sdes			/* we consider a short write a failure */
210568Sdes			/* XXX perhaps we shouldn't in the SSL case */
106175Simp			errno = EPIPE;
174588Sdes			fetch_syserr();
97866Sdes			return (-1);
106175Simp		}
97866Sdes		if (wlen < 0) {
97866Sdes			if (errno == EINTR && fetchRestartCalls)
97866Sdes				continue;
97866Sdes			return (-1);
97866Sdes		}
97866Sdes		total += wlen;
106175Simp		while (iovcnt > 0 && wlen >= (ssize_t)iov->iov_len) {
106175Simp			wlen -= iov->iov_len;
106175Simp			iov++;
106175Simp			iovcnt--;
106175Simp		}
106175Simp		if (iovcnt > 0) {
106175Simp			iov->iov_len -= wlen;
106175Simp			iov->iov_base = __DECONST(char *, iov->iov_base) + wlen;
106175Simp		}
97866Sdes	}
97866Sdes	return (total);
97866Sdes}
97866Sdes
98117Sdes
97866Sdes/*
97866Sdes * Write a line of text to a connection w/ timeout
97866Sdes */
62981Sdesint
174588Sdesfetch_putln(conn_t *conn, const char *str, size_t len)
62981Sdes{
106175Simp	struct iovec iov[2];
106205Sdes	int ret;
98748Sdes
98748Sdes	DEBUG(fprintf(stderr, ">>> %s\n", str));
106175Simp	iov[0].iov_base = __DECONST(char *, str);
106175Simp	iov[0].iov_len = len;
106175Simp	iov[1].iov_base = __DECONST(char *, ENDL);
109967Sdes	iov[1].iov_len = sizeof(ENDL);
106205Sdes	if (len == 0)
174588Sdes		ret = fetch_writev(conn, &iov[1], 1);
106205Sdes	else
174588Sdes		ret = fetch_writev(conn, iov, 2);
106205Sdes	if (ret == -1)
90267Sdes		return (-1);
90267Sdes	return (0);
62981Sdes}
62981Sdes
62981Sdes
97856Sdes/*
97856Sdes * Close connection
97856Sdes */
97856Sdesint
174588Sdesfetch_close(conn_t *conn)
97856Sdes{
97856Sdes	int ret;
97856Sdes
98117Sdes	if (--conn->ref > 0)
98117Sdes		return (0);
97856Sdes	ret = close(conn->sd);
141970Sdes	free(conn->buf);
97856Sdes	free(conn);
97856Sdes	return (ret);
97856Sdes}
97856Sdes
97856Sdes
41989Sdes/*** Directory-related utility functions *************************************/
41989Sdes
41989Sdesint
174588Sdesfetch_add_entry(struct url_ent **p, int *size, int *len,
90267Sdes    const char *name, struct url_stat *us)
41989Sdes{
90267Sdes	struct url_ent *tmp;
41989Sdes
90267Sdes	if (*p == NULL) {
90268Sdes		*size = 0;
90267Sdes		*len = 0;
41989Sdes	}
41989Sdes
90267Sdes	if (*len >= *size - 1) {
109967Sdes		tmp = realloc(*p, (*size * 2 + 1) * sizeof(**p));
90267Sdes		if (tmp == NULL) {
90267Sdes			errno = ENOMEM;
174588Sdes			fetch_syserr();
90267Sdes			return (-1);
90267Sdes		}
90268Sdes		*size = (*size * 2 + 1);
90267Sdes		*p = tmp;
90267Sdes	}
41989Sdes
90267Sdes	tmp = *p + *len;
90267Sdes	snprintf(tmp->name, PATH_MAX, "%s", name);
176105Sdes	memcpy(&tmp->stat, us, sizeof(*us));
41989Sdes
90267Sdes	(*len)++;
90267Sdes	(++tmp)->name[0] = 0;
90267Sdes
90267Sdes	return (0);
41989Sdes}
109695Sdes
109695Sdes
109695Sdes/*** Authentication-related utility functions ********************************/
109695Sdes
109695Sdesstatic const char *
174588Sdesfetch_read_word(FILE *f)
109695Sdes{
109695Sdes	static char word[1024];
109695Sdes
178234Scperciva	if (fscanf(f, " %1023s ", word) != 1)
109695Sdes		return (NULL);
109695Sdes	return (word);
109695Sdes}
109695Sdes
109695Sdes/*
109695Sdes * Get authentication data for a URL from .netrc
109695Sdes */
109695Sdesint
174588Sdesfetch_netrc_auth(struct url *url)
109695Sdes{
109695Sdes	char fn[PATH_MAX];
109695Sdes	const char *word;
109695Sdes	char *p;
109695Sdes	FILE *f;
109695Sdes
109695Sdes	if ((p = getenv("NETRC")) != NULL) {
109967Sdes		if (snprintf(fn, sizeof(fn), "%s", p) >= (int)sizeof(fn)) {
174588Sdes			fetch_info("$NETRC specifies a file name "
109695Sdes			    "longer than PATH_MAX");
109695Sdes			return (-1);
109695Sdes		}
109695Sdes	} else {
109695Sdes		if ((p = getenv("HOME")) != NULL) {
109695Sdes			struct passwd *pwd;
109695Sdes
109695Sdes			if ((pwd = getpwuid(getuid())) == NULL ||
109695Sdes			    (p = pwd->pw_dir) == NULL)
109695Sdes				return (-1);
109695Sdes		}
109967Sdes		if (snprintf(fn, sizeof(fn), "%s/.netrc", p) >= (int)sizeof(fn))
109695Sdes			return (-1);
109695Sdes	}
109695Sdes
109695Sdes	if ((f = fopen(fn, "r")) == NULL)
109695Sdes		return (-1);
174588Sdes	while ((word = fetch_read_word(f)) != NULL) {
109695Sdes		if (strcmp(word, "default") == 0) {
174588Sdes			DEBUG(fetch_info("Using default .netrc settings"));
109695Sdes			break;
109695Sdes		}
109695Sdes		if (strcmp(word, "machine") == 0 &&
174588Sdes		    (word = fetch_read_word(f)) != NULL &&
109695Sdes		    strcasecmp(word, url->host) == 0) {
174588Sdes			DEBUG(fetch_info("Using .netrc settings for %s", word));
109695Sdes			break;
109695Sdes		}
109695Sdes	}
109695Sdes	if (word == NULL)
109695Sdes		goto ferr;
174588Sdes	while ((word = fetch_read_word(f)) != NULL) {
109695Sdes		if (strcmp(word, "login") == 0) {
174588Sdes			if ((word = fetch_read_word(f)) == NULL)
109695Sdes				goto ferr;
109967Sdes			if (snprintf(url->user, sizeof(url->user),
109960Sjwd				"%s", word) > (int)sizeof(url->user)) {
174588Sdes				fetch_info("login name in .netrc is too long");
109695Sdes				url->user[0] = '\0';
109695Sdes			}
109695Sdes		} else if (strcmp(word, "password") == 0) {
174588Sdes			if ((word = fetch_read_word(f)) == NULL)
109695Sdes				goto ferr;
109967Sdes			if (snprintf(url->pwd, sizeof(url->pwd),
109960Sjwd				"%s", word) > (int)sizeof(url->pwd)) {
174588Sdes				fetch_info("password in .netrc is too long");
109695Sdes				url->pwd[0] = '\0';
109695Sdes			}
109695Sdes		} else if (strcmp(word, "account") == 0) {
174588Sdes			if ((word = fetch_read_word(f)) == NULL)
109695Sdes				goto ferr;
109695Sdes			/* XXX not supported! */
109695Sdes		} else {
109695Sdes			break;
109695Sdes		}
109695Sdes	}
109695Sdes	fclose(f);
109695Sdes	return (0);
109695Sdes ferr:
109695Sdes	fclose(f);
109695Sdes	return (-1);
109695Sdes}
174752Sdes
174752Sdes/*
174752Sdes * The no_proxy environment variable specifies a set of domains for
174752Sdes * which the proxy should not be consulted; the contents is a comma-,
174752Sdes * or space-separated list of domain names.  A single asterisk will
174752Sdes * override all proxy variables and no transactions will be proxied
174752Sdes * (for compatability with lynx and curl, see the discussion at
174752Sdes * <http://curl.haxx.se/mail/archive_pre_oct_99/0009.html>).
174752Sdes */
174752Sdesint
174752Sdesfetch_no_proxy_match(const char *host)
174752Sdes{
174752Sdes	const char *no_proxy, *p, *q;
174752Sdes	size_t h_len, d_len;
174752Sdes
174752Sdes	if ((no_proxy = getenv("NO_PROXY")) == NULL &&
174752Sdes	    (no_proxy = getenv("no_proxy")) == NULL)
174752Sdes		return (0);
174752Sdes
174752Sdes	/* asterisk matches any hostname */
174752Sdes	if (strcmp(no_proxy, "*") == 0)
174752Sdes		return (1);
174752Sdes
174752Sdes	h_len = strlen(host);
174752Sdes	p = no_proxy;
174752Sdes	do {
174752Sdes		/* position p at the beginning of a domain suffix */
174761Sdes		while (*p == ',' || isspace((unsigned char)*p))
174752Sdes			p++;
174752Sdes
174752Sdes		/* position q at the first separator character */
174752Sdes		for (q = p; *q; ++q)
174761Sdes			if (*q == ',' || isspace((unsigned char)*q))
174752Sdes				break;
174752Sdes
174752Sdes		d_len = q - p;
198339Sfabient		if (d_len > 0 && h_len >= d_len &&
174752Sdes		    strncasecmp(host + h_len - d_len,
174752Sdes			p, d_len) == 0) {
174752Sdes			/* domain name matches */
174752Sdes			return (1);
174752Sdes		}
174752Sdes
174752Sdes		p = q + 1;
174752Sdes	} while (*q);
174752Sdes
174752Sdes	return (0);
174752Sdes}