6543
/
davfs2
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
davfs2/src/mount_davfs.c

2654 lines
84 KiB
C
Raw Blame History

/* mount_davfs.c: mount the davfs file system.
Copyright (C) 2006, 2007, 2008, 2009 Werner Baumann
This file is part of davfs2.
davfs2 is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 3 of the License, or
(at your option) any later version.
davfs2 is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with davfs2; if not, write to the Free Software Foundation,
Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA. */
#include "config.h"
#include <ctype.h>
#include <errno.h>
#include <error.h>
#ifdef HAVE_FCNTL_H
#include <fcntl.h>
#endif
#include <getopt.h>
#include <grp.h>
#ifdef HAVE_LIBINTL_H
#include <libintl.h>
#endif
#ifdef HAVE_LIMITS_H
#include <limits.h>
#endif
#ifdef HAVE_LOCALE_H
#include <locale.h>
#endif
#ifdef HAVE_MNTENT_H
#include <mntent.h>
#endif
#include <pwd.h>
#include <signal.h>
#ifdef HAVE_STDINT_H
#include <stdint.h>
#endif
#include <stdio.h>
#ifdef HAVE_STDLIB_H
#include <stdlib.h>
#endif
#ifdef HAVE_STRING_H
#include <string.h>
#endif
#ifdef HAVE_SYSLOG_H
#include <syslog.h>
#endif
#ifdef HAVE_TERMIOS_H
#include <termios.h>
#endif
#ifdef HAVE_UNISTD_H
#include <unistd.h>
#endif
#ifdef HAVE_SYS_FILE_H
#include <sys/file.h>
#endif
#ifdef HAVE_SYS_MOUNT_H
#include <sys/mount.h>
#endif
#ifdef HAVE_SYS_STAT_H
#include <sys/stat.h>
#endif
#ifdef HAVE_SYS_TYPES_H
#include <sys/types.h>
#endif
#include "canonicalize.h"
#include "xalloc.h"
#include "xvasprintf.h"
#include "xstrndup.h"
#include <ne_ssl.h>
#include <ne_uri.h>
#include <ne_utils.h>
#include "defaults.h"
#include "mount_davfs.h"
#include "kernel_interface.h"
#include "cache.h"
#include "webdav.h"
#ifdef ENABLE_NLS
#define _(String) gettext(String)
#else
#define _(String) String
#define textdomain(Domainname)
#define bindtextdomain(Domainname, Dirname)
#endif
/* Private global variables */
/*==========================*/
/* The URL of the WebDAV server as taken from commandline. */
static char *url;
/* The canonicalized mointpoint. */
static char *mpoint;
/* The file that holds information about mounted filesystems
(/proc/mounts or /etc/mtab) */
static char *mounts;
/* The PID file */
static char *pidfile;
/* This flags signals the message loop of the kernel interface whether it
shall do what it says or just stop. Will be reset by termination_handler. */
static volatile int keep_on_running = 1;
/* This flag signals that SIGTERM was received. mount.davfs will then
terminate without uploading dirty files. */
static volatile int got_sigterm;
/* Send debug information about the configuration to the log file. */
static int debug;
/* Private function prototypes */
/*=============================*/
/* Parsing, checking and mounting. */
static void
change_persona(dav_args *args);
static void
check_dirs(dav_args *args);
static char *
check_double_mounts(dav_args *args);
static void
check_fstab(const dav_args *args);
static void
check_permissions(dav_args *args);
static void
gain_privileges(const dav_args *args);
static dav_args *
parse_commandline(dav_args *args, int argc, char *argv[]);
static void
parse_config(dav_args *args);
static void
parse_persona(dav_args *args);
static void
parse_secrets(dav_args *args);
static void
release_privileges(const dav_args *args);
static int
save_pid(void);
static void
termination_handler(int signo);
static void
write_mtab_entry(const dav_args *args);
/* Helper functions. */
static int
arg_to_int(const char *arg, int base, const char *opt);
static void
cp_file(const char *src, const char *dest);
static int
debug_opts(const char *s);
static int
debug_opts_neon(const char *s);
static void
delete_args(dav_args *args);
static void
expand_home(char **dir, const dav_args *args);
static void
get_options(dav_args *args, char *option);
static dav_args *
new_args(void);
static void
log_dbg_config(dav_args *args);
static int
parse_line(char *line, int parmc, char *parmv[]);
static void
proxy_from_env(dav_args *args);
static ne_ssl_certificate *
read_cert(char **filename, dav_args *args);
static ne_ssl_client_cert *
read_client_cert(char **filename, dav_args *args, int system);
static void
read_config(dav_args *args, const char * filename, int system);
static void
read_no_proxy_list(dav_args *args);
static void
read_secrets(dav_args *args, const char *filename, int system);
static int
split_uri(char **scheme, char **host, int *port,char **path, const char *uri);
static void
usage(void);
static char *
user_input(const char *prompt);
/* Public functions */
/*==================*/
int
main(int argc, char *argv[])
{
setlocale(LC_ALL, "");
bindtextdomain(PACKAGE, LOCALEDIR);
bindtextdomain(PACKAGE "-gnulib", LOCALEDIR);
textdomain(PACKAGE);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG), PACKAGE_STRING);
dav_args *args = new_args();
parse_persona(args);
release_privileges(args);
parse_commandline(args, argc, argv);
if (!args->privileged)
check_fstab(args);
parse_config(args);
check_dirs(args);
check_permissions(args);
parse_secrets(args);
pidfile = check_double_mounts(args);
change_persona(args);
dav_init_webdav(args);
dav_init_cache(args, mpoint);
gain_privileges(args);
dav_init_kernel_interface(url, mpoint, args);
release_privileges(args);
if (debug)
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG), "Writing mtab entry");
write_mtab_entry(args);
if (debug)
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG), "Fork into daemon mode");
pid_t childpid = fork();
if (childpid > 0) {
if (debug) {
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
"Parent: parent pid: %i, child pid: %i", getpid(), childpid);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG), "Parent: leaving now");
}
delete_args(args);
exit(EXIT_SUCCESS);
} else if (childpid < 0) {
delete_args(args);
error(EXIT_FAILURE, errno, _("can't start daemon process"));
}
if (debug)
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG), "Set signal handler");
struct sigaction action;
action.sa_handler = termination_handler;
sigemptyset(&action.sa_mask);
sigaddset(&action.sa_mask, SIGTERM);
sigaddset(&action.sa_mask, SIGHUP);
action.sa_flags = 0;
sigaction(SIGTERM, &action, NULL);
sigaction(SIGHUP, &action, NULL);
int ret = 0;
if (debug)
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG), "Releasing root privileges");
gain_privileges(args);
ret = setuid(args->uid);
if (ret) {
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_ERR),
_("can't release root privileges"));
kill(getppid(), SIGHUP);
}
delete_args(args);
setsid();
if (!ret) {
if (debug)
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG), "Releasing terminal");
close(STDIN_FILENO);
close(STDOUT_FILENO);
close(STDERR_FILENO);
if (open("/dev/null", O_RDONLY) != 0 || open("/dev/null", O_WRONLY) != 1
|| open("/dev/null", O_WRONLY) != 2) {
ret = -1;
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_ERR),
_("failed to release tty properly"));
kill(getppid(), SIGHUP);
}
dav_set_no_terminal();
}
if (!ret) {
if (debug)
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG), "Writing pid file");
ret = save_pid();
if (ret) {
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_ERR),
_("can't write pid file %s"), pidfile);
kill(getppid(), SIGHUP);
}
}
if (!ret) {
if (debug)
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG), "Starting message loop");
dav_run_msgloop(&keep_on_running);
}
if (debug)
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG), "Closing");
dav_close_cache(&got_sigterm);
dav_close_webdav();
if (dav_is_mounted())
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_ERR), _("unmounting failed"));
if (debug)
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG), "Removing %s", pidfile);
remove(pidfile);
if (debug)
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG), "Done.");
return 0;
}
int
dav_is_mounted(void)
{
int found = 0;
FILE *mtab = setmntent(mounts, "r");
if (mtab) {
struct mntent *mt = getmntent(mtab);
while (mt && !found) {
if (strcmp(mpoint, mt->mnt_dir) == 0
&& strcmp(url, mt->mnt_fsname) == 0)
found = 1;
mt = getmntent(mtab);
}
}
endmntent(mtab);
return found;
}
char *
dav_user_input_hidden(const char *prompt)
{
printf(" %s ", prompt);
struct termios old;
if (tcgetattr(fileno(stdin), &old) != 0)
return NULL;
struct termios new = old;
new.c_lflag &= ~ECHO;
if (tcsetattr(fileno(stdin), TCSAFLUSH, &new) != 0)
return NULL;
char *line = NULL;
size_t n = 0;
ssize_t len = getline(&line, &n, stdin);
if (tcsetattr(fileno(stdin), TCSAFLUSH, &old) != 0)
return NULL;
printf("\n");
if (len < 0) abort();
if (len > 0 && *(line + len - 1) == '\n')
*(line + len - 1) = '\0';
return line;
}
/* Private functions */
/*===================*/
/* Changes the group id of the process permanently to dav_group.
If the process is privileged args->uid will be changed to
args->dav_uid. This way release_privileges will set the
effective uid to dav_uid.
The process is still able to gain root privileges. The real
user id still has to be changed permanently. */
static void
change_persona(dav_args *args)
{
gain_privileges(args);
if (setgid(args->dav_gid) != 0)
error(EXIT_FAILURE, errno, _("can't change group id"));
if (args->privileged)
args->uid = args->dav_uid;
release_privileges(args);
if (debug)
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
"changing persona: euid %i, gid %i", geteuid(), getgid());
}
/* Checks for the existence of necessary and usefull directories and files.
- checks whether it can use the proc file system for information about
mounted file systems, or has to use mtab
- whether the directory to save pid files exists and has correct owner and
permissions; if not it tries to create it and/or set owner and permissions
- when invoked by non-root user: checks for configuration directory in the
users homepage and creates missing directories and files
- checks wether args->cache_dir is accessible. */
static void
check_dirs(dav_args *args)
{
struct stat st;
char *fname;
if (lstat(_PATH_MOUNTED, &st) != 0)
error(EXIT_FAILURE, errno, _("can't access file %s"), _PATH_MOUNTED);
int mtab_is_link = S_ISLNK(st.st_mode);
if (stat(DAV_MOUNTS, &st) == 0) {
mounts = DAV_MOUNTS;
args->use_utab = mtab_is_link;
} else {
mounts = _PATH_MOUNTED;
}
if (debug)
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG), "mounts in: %s", mounts);
if (!args->use_utab) {
char *utab_dir = xasprintf("%s/%s", DAV_LOCALSTATE_DIR, DAV_UTAB_DIR);
if (stat(utab_dir, &st) != 0) {
gain_privileges(args);
if (mkdir(utab_dir, S_IRWXU | S_IRGRP | S_IXGRP
| S_IROTH | S_IXOTH) != 0) {
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG), " and %s/%s",
utab_dir, DAV_UTAB);
}else {
error(0, errno, _("can't create directory %s"),
utab_dir);
}
release_privileges(args);
}
free(utab_dir);
}
gain_privileges(args);
if (stat(DAV_SYS_RUN, &st) != 0) {
if (mkdir(DAV_SYS_RUN, S_IRWXU | S_IRWXG | S_IROTH | S_IXOTH | S_ISVTX)
!= 0 && errno != EEXIST)
error(EXIT_FAILURE, errno, _("can't create directory %s"),
DAV_SYS_RUN);
}
if (stat(DAV_SYS_RUN, &st) != 0)
error(EXIT_FAILURE, errno, _("can't access directory %s"),
DAV_SYS_RUN);
if ((st.st_mode & (S_IRWXG | S_ISVTX)) != (S_IRWXG | S_ISVTX)) {
if (chmod(DAV_SYS_RUN, S_IRWXU | S_IRWXG | S_IROTH | S_IXOTH | S_ISVTX)
!= 0)
error(EXIT_FAILURE, errno,
_("can't change mode of directory %s"), DAV_SYS_RUN);
}
if (st.st_gid != args->dav_gid) {
if (chown(DAV_SYS_RUN, 0, args->dav_gid) != 0)
error(EXIT_FAILURE, errno,
_("can't change group of directory %s"), DAV_SYS_RUN);
}
release_privileges(args);
fname = xasprintf("%s/%s", DAV_SYS_CONF_DIR, DAV_SECRETS);
if (stat(fname, &st) == 0) {
if (st.st_uid != 0)
error(EXIT_FAILURE, 0, _("file %s has wrong owner"), fname);
if ((st.st_mode &
(S_IXUSR | S_IRWXG | S_IRWXO | S_ISUID | S_ISGID | S_ISVTX))
!= 0)
error(EXIT_FAILURE, 0, _("file %s has wrong permissions"), fname);
}
free(fname);
if (!args->privileged) {
char *path = xasprintf("%s/.%s", args->home, PACKAGE);
if (stat(path, &st) != 0)
mkdir(path, S_IRWXU | S_IRGRP | S_IXGRP | S_IROTH | S_IXOTH);
if (stat(path, &st) == 0) {
fname = xasprintf("%s/.%s/%s", args->home, PACKAGE, DAV_CACHE);
if (stat(fname, &st) != 0)
mkdir(fname, S_IRWXU);
free(fname);
fname = xasprintf("%s/.%s/%s", args->home, PACKAGE, DAV_CERTS_DIR);
if (stat(fname, &st) != 0)
mkdir(fname, S_IRWXU | S_IRGRP | S_IXGRP | S_IROTH | S_IXOTH);
free(fname);
fname = xasprintf("%s/.%s/%s/%s", args->home, PACKAGE,
DAV_CERTS_DIR, DAV_CLICERTS_DIR);
if (stat(fname, &st) != 0)
mkdir(fname, S_IRWXU);
free(fname);
fname = xasprintf("%s/.%s/%s", args->home, PACKAGE, DAV_CONFIG);
if (stat(fname, &st) != 0) {
char *template = xasprintf("%s/%s", DAV_DATA_DIR, DAV_CONFIG);
cp_file(template, fname);
free(template);
}
free(fname);
fname = xasprintf("%s/.%s/%s", args->home, PACKAGE, DAV_SECRETS);
if (stat(fname, &st) != 0) {
char *template = xasprintf("%s/%s", DAV_DATA_DIR, DAV_SECRETS);
cp_file(template, fname);
chmod(fname, S_IRUSR | S_IWUSR);
free(template);
}
free(fname);
}
free(path);
if (stat(args->secrets, &st) == 0) {
if (st.st_uid != args->uid)
error(EXIT_FAILURE, 0, _("file %s has wrong owner"),
args->secrets);
if ((st.st_mode &
(S_IXUSR | S_IRWXG | S_IRWXO | S_ISUID | S_ISGID | S_ISVTX))
!= 0)
error(EXIT_FAILURE, 0, _("file %s has wrong permissions"),
args->secrets);
}
}
if (strcmp(args->cache_dir, args->sys_cache) == 0) {
gain_privileges(args);
if (stat(args->sys_cache, &st) != 0) {
if (mkdir(args->sys_cache, S_IRWXU | S_IRWXG | S_IROTH | S_IXOTH)
!= 0)
error(EXIT_FAILURE, errno, _("can't create directory %s"),
args->sys_cache);
}
if (stat(args->sys_cache, &st) != 0)
error(EXIT_FAILURE, errno, _("can't access directory %s"),
args->sys_cache);
if ((st.st_mode & S_IRWXG) != S_IRWXG) {
if (chmod(args->sys_cache, S_IRWXU | S_IRWXG | S_IROTH | S_IXOTH)
!= 0)
error(EXIT_FAILURE, errno,
_("can't change mode of directory %s"),
args->sys_cache);
}
if (st.st_gid != args->dav_gid) {
if (chown(args->sys_cache, 0, args->dav_gid) != 0)
error(EXIT_FAILURE, errno,
_("can't change group of directory %s"),
args->sys_cache);
}
release_privileges(args);
} else {
if (stat(args->cache_dir, &st) != 0) {
if (mkdir(args->cache_dir, S_IRWXU | S_IRWXG | S_IROTH | S_IXOTH)
!= 0)
error(EXIT_FAILURE, errno, _("can't create directory %s"),
args->cache_dir);
}
if (stat(args->cache_dir, &st) != 0)
error(EXIT_FAILURE, errno, _("can't access directory %s"),
args->cache_dir);
if ((st.st_uid != args->uid || (st.st_mode & S_IRWXU) != S_IRWXU)
&& (st.st_mode & S_IRWXO) != S_IRWXO) {
if ((st.st_mode & S_IRWXG) != S_IRWXG)
error(EXIT_FAILURE, errno, _("can't access directory %s"),
args->cache_dir);
int i;
for (i = 0; i < args->ngroups; i++) {
if (st.st_gid == args->groups[i])
break;
}
if (i == args->ngroups)
error(EXIT_FAILURE, 0, _("can't access directory %s"),
args->cache_dir);
}
}
}
/* Checks whether url is already mounted on mpoint, creates the name of the
pid file and checks whether it already exists.
If one of these tests is positive, it prints an error message and
terminates the program. Otherwise it returns the name of the pid file.
return value : the name of the pid file. */
static char *
check_double_mounts(dav_args *args)
{
FILE *mtab = setmntent(mounts, "r");
if (!mtab)
error(EXIT_FAILURE, errno, _("can't open file %s"), mounts);
struct mntent *mt = getmntent(mtab);
while (mt) {
if (strcmp(mpoint, mt->mnt_dir) == 0
&& strcmp(url, mt->mnt_fsname) == 0)
error(EXIT_FAILURE, 0, _("%s is already mounted on %s"), url,
mpoint);
mt = getmntent(mtab);
}
endmntent(mtab);
char *m = mpoint;
while (*m == '/')
m++;
char *mp = xstrdup(m);
m = strchr(mp, '/');
while (m) {
*m = '-';
m = strchr(mp, '/');
}
char *pidf = xasprintf("%s/%s.pid", DAV_SYS_RUN, mp);
free(mp);
if (debug)
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG), "PID file: %s", pidf);
FILE *file = fopen(pidf, "r");
if (file)
error(EXIT_FAILURE, 0, _("found PID file %s.\n"
"Either %s is used by another process,\n"
"or another mount process ended irregular"), pidf, mpoint);
return pidf;
}
/* Gets the first entry in fstab that matches mpoint and checks for
- matching url
- matching file system type
- option user or users
- other options in fstab matching those in args.
If there is no such entry or one of the checks fails an error message
is printed and the program terminates with EXIT_FAILURE. */
static void
check_fstab(const dav_args *args)
{
dav_args *n_args = new_args();
n_args->uid = args->uid;
n_args->gid = args->gid;
n_args->mopts = DAV_USER_MOPTS;
FILE *fstab = setmntent(_PATH_MNTTAB, "r");
if (!fstab)
error(EXIT_FAILURE, errno, _("can't open file %s"), _PATH_MNTTAB);
struct mntent *ft = getmntent(fstab);
while (ft) {
if (ft->mnt_dir) {
char *mp = canonicalize_file_name(ft->mnt_dir);
if (mp) {
if (strcmp(mp, mpoint) == 0) {
free(mp);
break;
}
free(mp);
}
}
ft = getmntent(fstab);
}
if (!ft)
error(EXIT_FAILURE, 0, _("no entry for %s found in %s"), mpoint,
_PATH_MNTTAB);
if (strcmp(url, ft->mnt_fsname) != 0)
error(EXIT_FAILURE, 0, _("different URL in %s"), _PATH_MNTTAB);
if (!ft->mnt_type || strcmp(DAV_FS_TYPE, ft->mnt_type) != 0)
error(EXIT_FAILURE, 0, _("different file system type in %s"),
_PATH_MNTTAB);
if (ft->mnt_opts)
get_options(n_args, ft->mnt_opts);
endmntent(fstab);
if (args->conf || n_args->conf) {
if (!args->conf || !n_args->conf
|| strcmp(args->conf, n_args->conf) != 0)
error(EXIT_FAILURE, 0, _("different config file in %s"),
_PATH_MNTTAB);
}
if (args->cl_username || n_args->cl_username) {
if (!args->cl_username || !n_args->cl_username
|| strcmp(args->cl_username, n_args->cl_username) != 0)
error(EXIT_FAILURE, 0, _("different username in %s"), _PATH_MNTTAB);
}
if (!n_args->user && !n_args->users)
error(EXIT_FAILURE, 0,
_("neither option `user' nor option `users' set in %s"),
_PATH_MNTTAB);
if (args->mopts != n_args->mopts || args->grpid != n_args->grpid)
error(EXIT_FAILURE, 0, _("different mount options in %s"),
_PATH_MNTTAB);
if (args->fsuid != n_args->fsuid)
error(EXIT_FAILURE, 0, _("different uid in %s"), _PATH_MNTTAB);
if (args->fsgid != n_args->fsgid)
error(EXIT_FAILURE, 0, _("different gid in %s"), _PATH_MNTTAB);
if (args->dir_mode != n_args->dir_mode)
error(EXIT_FAILURE, 0, _("different dir_mode in %s"), _PATH_MNTTAB);
if (args->file_mode != n_args->file_mode)
error(EXIT_FAILURE, 0, _("different file_mode in %s"), _PATH_MNTTAB);
delete_args(n_args);
}
/* The mounting user must be either root or meet the following conditions:
- The uid must not differ from the option uid, if this option is used.
- The user must belong to the group specified in option gid (if used).
- The user must be member of group args->dav_group.
If this conditions are not met or an error occurs, an error message is
printed and exit(EXIT_FAILURE) is called. */
static void
check_permissions(dav_args *args)
{
if (args->privileged)
return;
if (args->fsuid != args->uid)
error(EXIT_FAILURE, 0,
_("you can't set file owner different from your uid"));
if (debug)
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG), "uid ok");
if (args->gid != args->fsgid) {
int i;
for (i = 0; i < args->ngroups; i++) {
if (args->fsgid == args->groups[i])
break;
}
if (i == args->ngroups)
error(EXIT_FAILURE, 0,
_("you must be member of the group of the file system"));
}
if (debug)
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG), "gid ok");
int i;
for (i = 0; i < args->ngroups; i++) {
if (args->dav_gid == args->groups[i])
break;
}
if (i == args->ngroups)
error(EXIT_FAILURE, 0, _("user %s must be member of group %s"),
args->uid_name, args->dav_group);
if (debug)
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
"memeber of group %s", args->dav_group);
}
/* Gains super user privileges. If an error occurs it prints an error
message and calls exit(EXIT_FAILURE). */
static void
gain_privileges(const dav_args *args)
{
int ret;
#ifdef _POSIX_SAVED_IDS
ret = seteuid(0);
#else
ret = setreuid(args->uid, 0);
#endif
if (ret)
error(EXIT_FAILURE, 0, _("can't change effective user id"));
}
/* Parses commandline arguments and options and stores them in args and the
private global variables url and mpoint.
For arguments and options please see the usage()-funktion.
As soon as 'version' or 'help' is found, an appropriate message is printed
and exit(EXIT_SUCCESS) is called.
If it does not find exactly two non-option-arguments (url and mointpoint)
it prints an error message and calls exit(EXIT_FAILURE).
argc : the number of arguments.
argv[] : array of argument strings. */
static dav_args *
parse_commandline(dav_args *args, int argc, char *argv[])
{
size_t len = argc;
int i;
for (i = 0; i < argc; i++)
len += strlen(argv[i]);
args->cmdline = xmalloc(len);
char *p = args->cmdline;
for (i = 0; i < argc - 1; i++) {
strcpy(p, argv[i]);
p += strlen(argv[i]);
*p = ' ';
p++;
}
strcpy(p, argv[argc - 1]);
char *short_options = "nvwVho:";
static const struct option options[] = {
{"no-mtab", no_argument, NULL, 'n'},
{"version", no_argument, NULL, 'V'},
{"help", no_argument, NULL, 'h'},
{"option", required_argument, NULL, 'o'},
{0, 0, 0, 0}
};
int o;
o = getopt_long(argc, argv, short_options, options, NULL);
while (o != -1) {
switch (o) {
case 'V':
printf("%s <%s>\n\n", PACKAGE_STRING, PACKAGE_BUGREPORT);
printf(_("This is free software; see the source for copying "
"conditions. There is NO\n"
"warranty; not even for MERCHANTABILITY or FITNESS "
"FOR A PARTICULAR PURPOSE.\n"));
exit(EXIT_SUCCESS);
case 'h':
usage();
exit(EXIT_SUCCESS);
case 'o':
get_options(args, optarg);
break;
case 'n':
case 'v':
case 'w':
case '?':
break;
default:
error(EXIT_FAILURE, 0, _("unknown error parsing arguments"));
}
o = getopt_long(argc, argv, short_options, options, NULL);
}
i = optind;
switch (argc - i) {
case 0:
case 1:
error(0, 0, _("missing argument"));
usage();
exit(EXIT_FAILURE);
case 2:
if (*argv[i] == '\"' || *argv[i] == '\'') {
url = xstrndup(argv[i] + 1, strlen(argv[i]) - 2);
} else {
url = xstrdup(argv[i]);
}
i++;
mpoint = canonicalize_file_name(argv[i]);
if (!mpoint)
error(EXIT_FAILURE, 0,
_("can't evaluate path of mount point %s"), mpoint);
break;
default:
error(0, 0, _("too many arguments"));
usage();
exit(EXIT_FAILURE);
}
if (!args->privileged && *argv[i] != '/') {
if (strstr(mpoint, args->home) != mpoint)
error(EXIT_FAILURE, 0, _("A relative mount point must lie "
"within your home directory"));
}
if (!url)
error(EXIT_FAILURE, 0, _("no WebDAV-server specified"));
if (split_uri(&args->scheme, &args->host, &args->port, &args->path,
url) != 0)
error(EXIT_FAILURE, 0, _("invalid URL"));
if (!args->port)
args->port = ne_uri_defaultport(args->scheme);
return args;
}
/* Reads and parses the configuration files and stores the values in args.
The system wide configuration file is parsed first. If args->conf is
given it will be parsed too and overwrites the values from the system
wide configuration file. */
static void
parse_config(dav_args *args)
{
read_config(args, DAV_SYS_CONF_DIR "/" DAV_CONFIG, 1);
if (args->conf) {
expand_home(&args->conf, args);
} else if (!args->privileged) {
args->conf = xasprintf("%s/.%s/%s", args->home, PACKAGE, DAV_CONFIG);
}
if (args->conf)
read_config(args, args->conf, 0);
if (!args->dav_user)
args->dav_user = xstrdup(DAV_USER);
struct passwd *pw = getpwnam(args->dav_user);
if (!pw)
error(EXIT_FAILURE, errno, _("user %s does not exist"),
args->dav_user);
args->dav_uid = pw->pw_uid;
if (!args->dav_group)
args->dav_group = xstrdup(DAV_GROUP);
struct group *grp = getgrnam(args->dav_group);
if (!grp)
error(EXIT_FAILURE, errno, _("group %s does not exist"),
args->dav_group);
args->dav_gid = grp->gr_gid;
args->dir_mode |= S_IFDIR;
args->file_mode |= S_IFREG;
if (args->trust_ca_cert)
args->ca_cert = read_cert(&args->trust_ca_cert, args);
if (args->trust_server_cert)
args->ca_cert = read_cert(&args->trust_server_cert, args);
if (args->secrets)
expand_home(&args->secrets, args);
if (!args->privileged && !args->secrets)
args->secrets = xasprintf("%s/.%s/%s", args->home, PACKAGE,
DAV_SECRETS);
if (args->clicert) {
args->client_cert = read_client_cert(&args->clicert, args, 0);
if (args->sys_clicert) free(args->sys_clicert);
} else if (args->sys_clicert) {
args->client_cert = read_client_cert(&args->sys_clicert, args, 0);
}
if (args->privileged && !args->p_host) {
proxy_from_env(args);
read_no_proxy_list(args);
}
if (!args->p_host)
args->useproxy = 0;
if (!args->sys_cache)
args->sys_cache = xstrdup(DAV_SYS_CACHE);
if (args->privileged) {
args->cache_dir = xstrdup(args->sys_cache);
} else {
if (args->cache_dir) {
expand_home(&args->cache_dir, args);
} else {
args->cache_dir = xasprintf("%s/.%s/%s", args->home, PACKAGE,
DAV_CACHE);
}
}
if (!args->backup_dir)
args->backup_dir = xstrdup(DAV_BACKUP_DIR);
if (!args->delay_upload)
args->delay_upload = DAV_DELAY_UPLOAD;
debug = args->debug & DAV_DBG_CONFIG;
if (debug)
log_dbg_config(args);
}
/* Checks whether the process is setuid 0 and fills persona related members
of args.
If euid != 0 or an error occurs it prints an error message and calls
exit(EXIT_FAILURE). */
static void
parse_persona(dav_args *args)
{
if (geteuid() != 0)
error(EXIT_FAILURE, errno, _("program is not setuid root"));
args->uid = getuid();
args->gid = getgid();
args->privileged = (args->uid == 0);
if (!args->privileged) {
struct passwd *pw = getpwuid(args->uid);
if (!pw || !pw->pw_name || !pw->pw_dir)
error(EXIT_FAILURE, errno, _("can't read user data base"));
args->uid_name = xstrdup(pw->pw_name);
args->home = canonicalize_file_name(pw->pw_dir);
}
args->ngroups = getgroups(0, NULL);
if (args->ngroups) {
args->groups = (gid_t *) xmalloc(args->ngroups * sizeof(gid_t));
if (getgroups(args->ngroups, args->groups) < 0)
error(EXIT_FAILURE, 0, _("can't read group data base"));
}
}
/* Reads the secrets file and asks the user interactivly for credentials if
necessary. The user secrets file is parsed after the system wide secrets
file, so it will have precedence. */
static void
parse_secrets(dav_args *args)
{
gain_privileges(args);
read_secrets(args, DAV_SYS_CONF_DIR "/" DAV_SECRETS, 1);
release_privileges(args);
if (args->secrets) {
read_secrets(args, args->secrets, 0);
}
if (args->cl_username) {
if (args->username)
free(args->username);
args->username = args->cl_username;
args->cl_username = NULL;
if (args->password)
free(args->password);
args->password = NULL;
args->password = user_input(_("Password: "));
}
if (args->askauth && args->useproxy && !args->p_user) {
printf(_("Please enter the username to authenticate with proxy\n"
"%s or hit enter for none.\n"), args->p_host);
args->p_user = user_input(_("Username:"));
}
if (args->askauth && args->useproxy && args->p_user && !args->p_passwd) {
printf(_("Please enter the password to authenticate user %s with proxy\n"
"%s or hit enter for none.\n"), args->p_user, args->p_host);
if (isatty(fileno(stdin))) {
args->p_passwd = dav_user_input_hidden(_("Password: "));
} else {
args->p_passwd = user_input(_("Password: "));
}
if (args->p_passwd && strlen(args->p_passwd) == 0) {
free(args->p_passwd);
args->p_passwd = NULL;
}
}
if (args->askauth && !args->username) {
printf(_("Please enter the username to authenticate with server\n"
"%s or hit enter for none.\n"), url);
args->username = user_input(_("Username:"));
}
if (args->askauth && args->username && !args->password) {
printf(_("Please enter the password to authenticate user %s with "
"server\n%s or hit enter for none.\n"), args->username, url);
if (isatty(fileno(stdin))) {
args->password = dav_user_input_hidden(_("Password: "));
} else {
args->password = user_input(_("Password: "));
}
if (args->password && strlen(args->password) == 0) {
free(args->password);
args->password = NULL;
}
}
if (args->client_cert && ne_ssl_clicert_encrypted(args->client_cert)) {
if (!args->clicert_pw && args->askauth) {
char *certfile = args->clicert;
if (!certfile)
certfile = args->sys_clicert;
printf(_("Please enter the password to decrypt client\n"
"certificate %s.\n"), certfile);
args->clicert_pw = dav_user_input_hidden(_("Password: "));
}
if (!args->clicert_pw
|| ne_ssl_clicert_decrypt(args->client_cert,
args->clicert_pw) != 0)
error(EXIT_FAILURE, 0, _("can't decrypt client certificate %s"),
args->clicert);
}
if (args->debug & DAV_DBG_SECRETS) {
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG), "Secrets:");
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" username: %s", args->username);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" cl_username: %s", args->cl_username);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" password: %s", args->password);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" p_user: %s", args->p_user);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" p_passwd: %s", args->p_passwd);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" clicert_pw: %s", args->clicert_pw);
}
}
/* Releases super user privileges and sets the effective uid to the value
of args->uid. If an error occurs it prints an error message and
calls exit(EXIT_FAILURE). */
static void
release_privileges(const dav_args *args)
{
int ret;
#ifdef _POSIX_SAVED_IDS
ret = seteuid(args->uid);
#else
ret = setreuid(0, args->uid);
#endif
if (ret)
error(EXIT_FAILURE, 0, _("can't change effective user id"));
}
/* Saves the pid of the mount.davfs daemon in the pid-file. The name of the
pid-file is taken from the private global variable pidfile. If an error
occurs during opening of the pid-file, the function returns with -1. */
static int
save_pid(void)
{
FILE *file = fopen(pidfile, "w");
if (!file)
return -1;
int ret = 0;
if (fprintf(file, "%i\n", getpid()) <= 0)
ret = -1;
fclose(file);
chmod(pidfile, S_IRWXU | S_IRGRP | S_IROTH);
return ret;
}
/* Signal handler for the daemon process.
Sets global variable keep_on_running to 0, so the message loop will stop
and the daemon will terminate gracefully. */
static void
termination_handler(int signo)
{
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_ERR), _("pid %i, got signal %i"),
getpid(), signo);
keep_on_running = 0;
got_sigterm = 1;
}
/* Adds an entry to _PATH_MOUNTED for the mounted file system.
If _PATH_MOUNTED is a symbolic link to /proc/mounts it will write an
entry into /var/run/mount/utab instead.
If this fails a warning will be printed, but this will not stop mounting. */
static void
write_mtab_entry(const dav_args *args)
{
struct mntent mntent;
mntent.mnt_opts = NULL;
char *utab_line = NULL;
char *tab_file = NULL;
char *lock_file = NULL;
if (args->use_utab) {
utab_line = xasprintf("SRC=%s TARGET=%s ROOT=/ "
"OPTS=uid=%i,gid=%i%s%s%s,helper=%s\n",
url, mpoint, args->fsuid, args->fsgid,
(args->grpid) ? ",grpid" : "",
(!args->privileged) ? ",user=" : "",
(!args->privileged) ? args->uid_name : "",
DAV_FS_TYPE);
tab_file = xasprintf("%s/%s/%s", DAV_LOCALSTATE_DIR, DAV_UTAB_DIR,
DAV_UTAB);
lock_file = xasprintf("%s,lock", tab_file);
} else {
mntent.mnt_fsname = url;
mntent.mnt_dir = mpoint;
mntent.mnt_type = DAV_FS_TYPE;
mntent.mnt_opts = xasprintf("%s%s%s%s%s%s,uid=%i,gid=%i%s%s",
(args->mopts & MS_RDONLY) ? "ro" : "rw",
(args->mopts & MS_NOSUID) ? ",nosuid" : "",
(args->mopts & MS_NOEXEC) ? ",noexec" : "",
(args->mopts & MS_NODEV) ? ",nodev" : "",
(args->grpid) ? ",grpid" : "",
(args->netdev) ? ",_netdev" : "",
args->fsuid, args->fsgid,
(!args->privileged) ? ",user=" : "",
(!args->privileged) ? args->uid_name : "");
mntent. mnt_freq = 0;
mntent. mnt_passno = 0;
tab_file = xstrdup(_PATH_MOUNTED);
lock_file = xasprintf("%s~", tab_file);
}
sigset_t oldset;
sigemptyset(&oldset);
sigset_t newset;
sigfillset(&newset);
sigprocmask(SIG_BLOCK, &newset, &oldset);
gain_privileges(args);
int ld = open(lock_file, O_RDONLY | O_CREAT,
S_IWUSR | S_IRUSR | S_IRGRP | S_IROTH);
if (!ld)
error(EXIT_FAILURE, errno, _("can't create file %s"), lock_file);
while (flock(ld, LOCK_EX) != 0) {
if (errno == EAGAIN || errno == EINTR)
continue;
error(EXIT_FAILURE, errno, _("can't lock file %s"), lock_file);
}
FILE *tab = NULL;
if (args->use_utab) {
tab = fopen(tab_file, "a");
} else {
tab = setmntent(tab_file, "a");
}
int err = 0;
if (tab) {
if (args->use_utab) {
if (fputs(utab_line, tab) == EOF)
err = 1;
fclose(tab);
} else {
if (addmntent(tab, &mntent) != 0)
err = 1;
endmntent(tab);
}
}
if (!tab || err)
error(0, 0, _("Warning: can't write entry into %s, but will mount "
"the file system anyway"), tab_file);
close(ld);
remove(lock_file);
release_privileges(args);
sigprocmask(SIG_SETMASK, &oldset, NULL);
if (lock_file)
free(lock_file);
if (tab_file)
free(tab_file);
if (utab_line)
free(utab_line);
if (mntent.mnt_opts)
free(mntent.mnt_opts);
}
/* Helper functions. */
/* Searches arg from the beginning for digits, valid in base, and converts
them to an integer. If arg does not start with valid digits an error
message is printed and exit(EXIT_FAILURE) is called.
Otherwise the integer is returned.
arg : string to be converted
base : radix of the number; value between 2 and 36
opt : name of the option, arg belongs to. Used in the error message.
return value: the value of the integer number in arg */
static int
arg_to_int(const char *arg, int base, const char *opt)
{
char *tail = NULL;
int n = strtol(arg, &tail, base);
if (n < 0 || !tail) {
if (base == 10) {
error(EXIT_FAILURE, 0, _("option %s has invalid argument;"
"it must be a decimal number"), opt);
} else if (base == 8) {
error(EXIT_FAILURE, 0, _("option %s has invalid argument;"
"it must be an octal number"), opt);
} else {
error(EXIT_FAILURE, 0, _("option %s has invalid argument;"
"it must be a number"), opt);
}
}
return n;
}
/* Creates a copy of src with name dest. */
static void
cp_file(const char *src, const char *dest)
{
FILE *in = fopen(src, "r");
if (!in)
error(EXIT_FAILURE, errno, _("can't open file %s"), src);
FILE *out = fopen(dest, "w");
if (!out)
error(EXIT_FAILURE, errno, _("can't open file %s"), dest);
size_t n = 0;
char *line = NULL;
int length = getline(&line, &n, in);
while (length > 0) {
if (fputs(line, out) == EOF)
error(EXIT_FAILURE, errno, _("error writing to file %s"), dest);
length = getline(&line, &n, in);
}
if (line)
free(line);
fclose(out);
fclose(in);
}
/* Converts a debug option string s into numerical value. If s is not a
valid debug option, it returns 0. */
static int
debug_opts(const char *s)
{
if (strcmp(s, "config") == 0)
return DAV_DBG_CONFIG;
if (strcmp(s, "kernel") == 0)
return DAV_DBG_KERNEL;
if (strcmp(s, "cache") == 0)
return DAV_DBG_CACHE;
if (strcmp(s, "secrets") == 0)
return DAV_DBG_SECRETS;
if (strcmp(s, "most") == 0)
return DAV_DBG_CONFIG | DAV_DBG_KERNEL | DAV_DBG_CACHE;
return 0;
}
/* Converts a debug option string s into numerical value. If s is not a
valid neon debug option, it returns 0. */
static int
debug_opts_neon(const char *s)
{
if (strcmp(s, "http") == 0)
return NE_DBG_HTTP | NE_DBG_SOCKET;
if (strcmp(s, "xml") == 0)
return NE_DBG_XML;
if (strcmp(s, "httpauth") == 0)
return NE_DBG_HTTPAUTH;
if (strcmp(s, "locks") == 0)
return NE_DBG_LOCKS;
if (strcmp(s, "httpbody") == 0)
return NE_DBG_HTTPBODY;
if (strcmp(s, "ssl") == 0)
return NE_DBG_SSL;
if (strcmp(s, "secrets") == 0)
return NE_DBG_HTTPPLAIN;
if (strcmp(s, "most") == 0)
return NE_DBG_SOCKET | NE_DBG_HTTP;
return 0;
}
/* Frees all strings and arrays held by args and finally frees args. */
static void
delete_args(dav_args *args)
{
if (args->cmdline)
free(args->cmdline);
if (args->conf)
free(args->conf);
if (args->uid_name)
free(args->uid_name);
if (args->groups)
free(args->groups);
if (args->home)
free(args->home);
if (args->dav_user)
free(args->dav_user);
if (args->dav_group)
free(args->dav_group);
if (args->scheme)
free(args->scheme);
if (args->host)
free(args->host);
if (args->path)
free(args->path);
if (args->trust_ca_cert)
free(args->trust_ca_cert);
if (args->ca_cert)
ne_ssl_cert_free(args->ca_cert);
if (args->trust_server_cert)
free(args->trust_server_cert);
if (args->server_cert)
ne_ssl_cert_free(args->server_cert);
if (args->secrets)
free(args->secrets);
if (args->username) {
memset(args->username, '\0', strlen(args->username));
free(args->username);
}
if (args->cl_username)
free(args->cl_username);
if (args->password) {
memset(args->password, '\0', strlen(args->password));
free(args->password);
}
if (args->clicert)
free(args->clicert);
if (args->sys_clicert)
free(args->sys_clicert);
if (args->client_cert)
ne_ssl_clicert_free(args->client_cert);
if (args->clicert_pw) {
memset(args->clicert_pw, '\0', strlen(args->clicert_pw));
free(args->clicert_pw);
}
if (args->p_host)
free(args->p_host);
if (args->p_user) {
memset(args->p_user, '\0', strlen(args->p_user));
free(args->p_user);
}
if (args->p_passwd) {
memset(args->p_passwd, '\0', strlen(args->p_passwd));
free(args->p_passwd);
}
if (args->lock_owner)
free(args->lock_owner);
if (args->s_charset)
free(args->s_charset);
if (args->header)
free(args->header);
if (args->sys_cache)
free(args->sys_cache);
if (args->cache_dir)
free(args->cache_dir);
if (args->backup_dir)
free(args->backup_dir);
free(args);
}
/* If *dir starts with '~/' or '~user/' it is turned into an
absolute filename (starting with '/') in the user's home directory.
user must be the name of the mounting user.
Otherwise dir is unchanged. */
static void
expand_home(char **dir, const dav_args *args)
{
if (!dir || !*dir || **dir != '~')
return;
char *p = *dir + 1;
if (*p != '/') {
if (strstr(*dir, args->uid_name) != p)
return;
p += strlen(args->uid_name);
}
if (*p != '/')
return;
char *new_dir = xasprintf("%s%s", args->home, p);
free(*dir);
*dir = new_dir;
}
/* Parses the string option and stores the values in the appropriate fields of
args. If an unknown option is found exit(EXIT_FAILURE) is called.
All strings returned in args are newly allocated, and the calling function
is responsible to free them.
option : a comma separated list of options (like the options in fstab and
in the -o option of the mount-programm).
For known options see the declaration at the beginning of the
the function definition. */
static void
get_options(dav_args *args, char *option)
{
enum {
CONF = 0,
USERNAME,
UID,
GID,
FILE_MODE,
DIR_MODE,
USER,
NOUSER,
USERS,
NETDEV,
NONETDEV,
GRPID,
NOGRPID,
RW,
RO,
SUID,
NOSUID,
EXEC,
NOEXEC,
DEV,
NODEV,
ASYNC,
AUTO,
NOAUTO,
COMMENT,
NOFAIL,
DEFAULTS,
END
};
char *suboptions[] = {
[CONF] = "conf",
[USERNAME] = "username",
[UID] = "uid",
[GID] = "gid",
[FILE_MODE] = "file_mode",
[DIR_MODE] = "dir_mode",
[USER] = "user",
[NOUSER] = "nouser",
[USERS] = "users",
[NETDEV] = "_netdev",
[NONETDEV] = "no_netdev",
[GRPID] = "grpid",
[NOGRPID] = "nogrpid",
[RW] = "rw",
[RO] = "ro",
[SUID] = "suid",
[NOSUID] = "nosuid",
[EXEC] = "exec",
[NOEXEC] = "noexec",
[DEV] = "dev",
[NODEV] = "nodev",
[ASYNC] = "async",
[AUTO] = "auto",
[NOAUTO] = "noauto",
[COMMENT] = "comment",
[NOFAIL] = "nofail",
[DEFAULTS] = "defaults",
[END] = NULL
};
args->fsuid = args->uid;
args->fsgid = args->gid;
int so;
char *argument = NULL;
struct passwd *pwd;
struct group *grp;
while (*option != 0) {
so = getsubopt(&option, suboptions, &argument);
if ((!argument) && (so < USER))
error(EXIT_FAILURE, 0,
_("option %s requires argument"), suboptions[so]);
switch (so) {
case CONF:
if (args->conf)
free(args->conf);
args->conf = xstrdup(argument);
break;
case USERNAME:
if (args->cl_username)
free(args->cl_username);
args->cl_username = xstrdup(argument);
break;
case UID:
pwd = getpwnam(argument);
if (!pwd) {
args->fsuid = arg_to_int(argument, 10, suboptions[so]);
} else {
args->fsuid = pwd->pw_uid;
}
break;
case GID:
grp = getgrnam(argument);
if (!grp) {
args->fsgid = arg_to_int(argument, 10, suboptions[so]);
} else {
args->fsgid = grp->gr_gid;
}
break;
case FILE_MODE:
args->file_mode = arg_to_int(argument, 8, suboptions[so]);
break;
case DIR_MODE:
args->dir_mode = arg_to_int(argument, 8, suboptions[so]);
break;
case USER:
args->user = 1;
break;
case NOUSER:
args->user = 0;
break;
case USERS:
args->users = 1;
break;
case NETDEV:
args->netdev = 1;
break;
case NONETDEV:
args->netdev = 0;
break;
case GRPID:
args->grpid = 1;
break;
case NOGRPID:
args->grpid = 0;
break;
case RW:
args->mopts &= ~MS_RDONLY;
break;
case RO:
args->mopts |= MS_RDONLY;
break;
case SUID:
args->mopts &= ~MS_NOSUID;
break;
case NOSUID:
args->mopts |= MS_NOSUID;
break;
case EXEC:
args->mopts &= ~MS_NOEXEC;
break;
case NOEXEC:
args->mopts |= MS_NOEXEC;
break;
case DEV:
args->mopts &= ~MS_NODEV;
break;
case NODEV:
args->mopts |= MS_NODEV;
break;
case ASYNC:
case AUTO:
case NOAUTO:
case COMMENT:
case NOFAIL:
case DEFAULTS:
break;
default:
if (so == -1) {
printf(_("Unknown option %s.\n"), argument);
usage();
exit(EXIT_FAILURE);
}
}
}
args->mopts |= DAV_MOPTS;
}
/* Allocates a new dav_args-structure.
Numerical values are initialized to the default values from
defaults.h if they are defined there or to 0 otherwise.
mopts is set to DAV_MOPTS.
String and array pointers are initialized to NULL. */
static dav_args *
new_args(void)
{
dav_args *args = (dav_args *) xcalloc(1, sizeof(dav_args));
args->netdev = DAV_NETDEV;
args->grpid = DAV_GRPID;
args->mopts = DAV_MOPTS;
args->buf_size = DAV_FUSE_BUF_SIZE;
args->dir_mode = DAV_DIR_MODE;
args->file_mode = DAV_FILE_MODE;
args->p_port = DAV_DEFAULT_PROXY_PORT;
args->useproxy = DAV_USE_PROXY;
args->askauth = DAV_ASKAUTH;
args->locks = DAV_LOCKS;
args->lock_timeout = DAV_LOCK_TIMEOUT;
args->lock_refresh = DAV_LOCK_REFRESH;
args->expect100 = DAV_EXPECT100;
args->if_match_bug = DAV_IF_MATCH_BUG;
args->drop_weak_etags = DAV_DROP_WEAK_ETAGS;
args->n_cookies = DAV_N_COOKIES;
args->precheck = DAV_PRECHECK;
args->ignore_dav_header = DAV_IGNORE_DAV_HEADER;
args->use_compression = DAV_USE_COMPRESSION;
args->min_propset = DAV_MIN_PROPSET;
args->sharepoint_href_bug = DAV_SHAREPOINT_HREF_BUG;
args->connect_timeout = DAV_CONNECT_TIMEOUT;
args->read_timeout = DAV_READ_TIMEOUT;
args->retry = DAV_RETRY;
args->max_retry = DAV_MAX_RETRY;
args->max_upload_attempts = DAV_MAX_UPLOAD_ATTEMPTS;
args->cache_size = DAV_CACHE_SIZE;
args->table_size = DAV_TABLE_SIZE;
args->dir_refresh = DAV_DIR_REFRESH;
args->file_refresh = DAV_FILE_REFRESH;
args->delay_upload = DAV_DELAY_UPLOAD;
args->gui_optimize = DAV_GUI_OPTIMIZE;
args->minimize_mem = DAV_MINIMIZE_MEM;
return args;
}
static void
log_dbg_config(dav_args *args)
{
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
"%s", args->cmdline);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
"Configuration:");
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" url: %s", url);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" mount point: %s", mpoint);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" dav_user: %s", args->dav_user);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" dav_group: %s", args->dav_group);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" conf: %s", args->conf);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" user: %i", args->user);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" netdev: %i", args->netdev);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" grpid: %i", args->grpid);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" mopts: %#lx", args->mopts);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" buf_size: %llu KiB", (unsigned long long) args->buf_size);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" fsuid: %i", args->fsuid);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" fsgid: %i", args->fsgid);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" dir_mode: %#o", args->dir_mode);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" file_mode: %#o", args->file_mode);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" scheme: %s", args->scheme);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" host: %s", args->host);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" port: %i", args->port);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" path: %s", args->path);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" trust_ca_cert: %s", args->trust_ca_cert);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" trust_server_cert: %s", args->trust_server_cert);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" secrets: %s", args->secrets);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" clicert: %s", args->clicert);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" sys_clicert: %s", args->sys_clicert);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" p_host: %s", args->p_host);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" p_port: %i", args->p_port);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" useproxy: %i", args->useproxy);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" askauth: %i", args->askauth);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" locks: %i", args->locks);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" lock_owner: %s", args->lock_owner);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" lock_timeout: %li s", args->lock_timeout);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" lock_refresh: %li s", args->lock_refresh);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" expect100: %i", args->expect100);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" if_match_bug: %i", args->if_match_bug);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" drop_weak_etags: %i", args->drop_weak_etags);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" n_cookies: %i", args->n_cookies);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" precheck: %i", args->precheck);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" ignore_dav_header: %i", args->ignore_dav_header);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" connect_timeout: %li s", args->connect_timeout);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" read_timeout: %li s", args->read_timeout);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" retry: %li s", args->retry);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" max_retry: %li s", args->max_retry);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" s_charset: %s", args->s_charset);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" header: %s", args->header);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" sys_cache: %s", args->sys_cache);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" cache_dir: %s", args->cache_dir);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" backup_dir: %s", args->backup_dir);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" cache_size: %llu MiB", (unsigned long long) args->cache_size);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" table_size: %llu", (unsigned long long) args->table_size);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" dir_refresh: %li s", args->dir_refresh);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" file_refresh: %li s", args->file_refresh);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" delay_upload: %i", args->delay_upload);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" gui_optimize: %i", args->gui_optimize);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" minimize_mem: %i", args->minimize_mem);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" debug: %#x", args->debug);
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_DEBUG),
" neon_debug: %#x", args->neon_debug);
}
/* Parses line for max. parmc white-space separated parameter tokens and
returns them in parmv[].
The '#' character marks the beginning of a comment and the rest of the line
is ignored.
Parameters containing one of the characters ' ' (space), '\t' (tab), '\',
'"' or '#' must be enclosed in double quotes '"' *or* this character has to
be escaped by preceeding a '\'-character.
Inside double quotes the '"'-character must be escaped. '\' may be escaped;
it must be escaped if there is more than on '\'-character in succession.
Whitespace characters other than ' ' and tab must only occur at the end of
the line.
line : the line to be parsed. It will be changed by this function.
parmc : the max. number of parameters. It is an error, if more than parmc
parameters are found
parmv[] : the parameters found are returned in this array. It contains
pointers into the rearranged line parameter.
reurn value : the numer of parameters or -1 if an error occurs. */
static int
parse_line(char *line, int parmc, char *parmv[])
{
enum {
SPACE,
SPACE_EXP,
PARM,
PARM_ESC,
PARM_QUO,
PARM_QUO_ESC,
ERROR,
END
};
int state = SPACE;
int parm_no = 0;
char *pos = line;
char *p = line;
parmv[0] = line;
while (state != END) {
switch (state) {
case SPACE:
if (*p == '\0' || *p == '#' || *p == '\f' || *p == '\n'
|| *p == '\r' || *p == '\v') {
state = END;
} else if (*p == '\"') {
if (parm_no < parmc) {
parmv[parm_no] = pos;
state = PARM_QUO;
} else {
return -1;
}
} else if (*p == '\\') {
if (parm_no < parmc) {
parmv[parm_no] = pos;
state = PARM_ESC;
} else {
return -1;
}
state = PARM_ESC;
} else if (isspace(*p)) {
;
} else {
if (parm_no < parmc) {
parmv[parm_no] = pos;
*pos++ = *p;
state = PARM;
} else {
return -1;
}
}
break;
case SPACE_EXP:
if (*p == ' ' || *p == '\t') {
state = SPACE;
} else if (*p == '\0' || *p == '#' || *p == '\f' || *p == '\n'
|| *p == '\r' || *p == '\v') {
state = END;
} else {
return -1;
}
break;
case PARM:
if (*p == '\"') {
return -1;
} else if (*p == '\\') {
state = PARM_ESC;
} else if (*p == ' ' || *p == '\t') {
*pos++ = '\0';
parm_no++;
state = SPACE;
} else if (isspace(*p) || *p == '\0' || *p == '#') {
*pos = '\0';
parm_no++;
state = END;
} else {
*pos++ = *p;
}
break;
case PARM_ESC:
if (*p == '\"' || *p == '\\' || *p == '#' || *p == ' '
|| *p == '\t') {
*pos++ = *p;
state = PARM;
} else {
return -1;
}
break;
case PARM_QUO:
if (*p == '\\') {
state = PARM_QUO_ESC;
} else if (*p == '\"') {
*pos++ = '\0';
parm_no++;
state = SPACE_EXP;
} else if (*p == '\0' || *p == '\f' || *p == '\n'
|| *p == '\r' || *p == '\v') {
return -1;
} else {
*pos++ = *p;
}
break;
case PARM_QUO_ESC:
if (*p == '\"' || *p == '\\') {
*pos++ = *p;
state = PARM_QUO;
} else if (*p == '\0' || *p == '\f' || *p == '\n'
|| *p == '\r' || *p == '\v') {
return -1;
} else {
*pos++ = '\\';
*pos++ = *p;
state = PARM_QUO;
}
break;
}
p++;
}
int i;
for (i = parm_no; i < parmc; i++)
parmv[i] = NULL;
return parm_no;
}
/* Checks for a matching xxx_proxy environment variable, and if found
stores values in args->p_host and ars->p_port. */
static void
proxy_from_env(dav_args *args)
{
const char *env = NULL;
if (args->scheme && strcmp(args->scheme, "https") == 0)
env = getenv("https_proxy");
if (!env)
env = getenv("http_proxy");
if (!env)
env = getenv("all_proxy");
if (!env)
return;
char *scheme = NULL;
char *host = NULL;
int port = 0;
split_uri(&scheme, &host, &port, NULL, env);
if (scheme && strcmp(scheme, "http") == 0 && host) {
if (args->p_host) free(args->p_host);
args->p_host = host;
host = NULL;
if (port)
args->p_port = port;
}
if (scheme) free(scheme);
if (host) free(host);
}
/* Reads a certificate in PEM-format from file *filename.
If *filename is not absulute it is expanded relative to the user's
home directory or certificate directory. If it is not found in the
user's home directory the system wide configuration directory is
searched instead. */
static ne_ssl_certificate *
read_cert(char **filename, dav_args *args)
{
ne_ssl_certificate *cert = NULL;
expand_home(filename, args);
if (**filename == '/') {
return ne_ssl_cert_read(*filename);
} else {
char *f = NULL;
if (!args->privileged) {
f = xasprintf("%s/.%s/%s/%s", args->home, PACKAGE,
DAV_CERTS_DIR, *filename);
cert = ne_ssl_cert_read(f);
}
if (!cert) {
if (f) free(f);
f = xasprintf("%s/%s/%s", DAV_SYS_CONF_DIR, DAV_CERTS_DIR,
*filename);
cert = ne_ssl_cert_read(f);
}
if (cert) {
free(*filename);
*filename = f;
} else {
if (f) free(f);
}
}
if (cert)
error(EXIT_FAILURE, 0, _("can't read certificate %s"),
*filename);
return cert;
}
/* Reads a client certificate in PKCS#12 format from file *filename.
If *filename is not absolute it is expanded with regard to the
users's home directory or the system wide configuration directory
depending on the value of system. */
static ne_ssl_client_cert *
read_client_cert(char **filename, dav_args *args, int system)
{
if (!system)
expand_home(filename, args);
if (**filename != '/') {
char *f = NULL;
if (!system) {
f = xasprintf("%s/.%s/%s/%s/%s", args->home, PACKAGE,
DAV_CERTS_DIR, DAV_CLICERTS_DIR, *filename);
} else {
f = xasprintf("%s/%s/%s/%s", DAV_SYS_CONF_DIR, DAV_CERTS_DIR,
DAV_CLICERTS_DIR, *filename);
}
free(*filename);
*filename = f;
}
struct stat st;
if (system)
gain_privileges(args);
if (stat(*filename, &st) < 0)
error(EXIT_FAILURE, 0, _("can't read client certificate %s"),
*filename);
if ((system && st.st_uid != 0) || (!system && st.st_uid != args->uid))
error(EXIT_FAILURE, 0,
_("client certificate file %s has wrong owner"), *filename);
if ((st.st_mode &
(S_IXUSR | S_IRWXG | S_IRWXO | S_ISUID | S_ISGID | S_ISVTX)) != 0)
error(EXIT_FAILURE, 0,
_("client certificate file %s has wrong permissions"), *filename);
ne_ssl_client_cert *cert = ne_ssl_clicert_read(*filename);
if (system)
release_privileges(args);
if (!args->client_cert)
error(EXIT_FAILURE, 0, _("can't read client certificate %s"),
*filename);
return cert;
}
/* Reads the configuration file filename and stores the values in args.
filename : name of the configuration file.
system : boolean value. 1 means it is the system wide configuration
file. Some parameters are allowed only in the system wide
configuration file, some only in the user configuration file. */
static void
read_config(dav_args *args, const char * filename, int system)
{
FILE *file = fopen(filename, "r");
if (!file) {
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_ERR),
_("opening %s failed"), filename);
return;
}
size_t n = 0;
char *line = NULL;
int length = getline(&line, &n, file);
int lineno = 1;
int applies = 1;
while (length > 0) {
int parmc = 3;
char *parmv[parmc];
int count;
count = parse_line(line, parmc, parmv);
if (count == 1) {
if (*parmv[0] != '[' || *(parmv[0] + strlen(parmv[0]) - 1) != ']')
error_at_line(EXIT_FAILURE, 0, filename, lineno,
_("malformed line"));
*(parmv[0] + strlen(parmv[0]) - 1) = '\0';
char *mp = canonicalize_file_name(parmv[0] + 1);
if (mp) {
applies = (strcmp(mp, mpoint) == 0);
free(mp);
}
} else if (applies && count == 2) {
if (system && strcmp(parmv[0], "dav_user") == 0) {
if (args->dav_user)
free(args->dav_user);
args->dav_user = xstrdup(parmv[1]);
} else if (system && strcmp(parmv[0], "dav_group") == 0) {
if (args->dav_group)
free(args->dav_group);
args->dav_group = xstrdup(parmv[1]);
} else if (strcmp(parmv[0], "buf_size") == 0) {
args->buf_size = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "trust_ca_cert") == 0) {
if (args->trust_ca_cert)
free(args->trust_ca_cert);
args->trust_ca_cert = xstrdup(parmv[1]);
} else if (strcmp(parmv[0], "trust_server_cert") == 0) {
if (args->trust_server_cert)
free(args->trust_server_cert);
args->trust_server_cert = xstrdup(parmv[1]);
} else if (!system && strcmp(parmv[0], "secrets") == 0) {
if (args->secrets)
free(args->secrets);
args->secrets = xstrdup(parmv[1]);
} else if (!system && strcmp(parmv[0], "clientcert") == 0) {
if (args->clicert)
free(args->clicert);
args->clicert = xstrdup(parmv[1]);
} else if (system && strcmp(parmv[0], "clientcert") == 0) {
if (args->sys_clicert)
free(args->sys_clicert);
args->sys_clicert = xstrdup(parmv[1]);
} else if (system && strcmp(parmv[0], "proxy") == 0) {
if (split_uri(NULL, &args->p_host, &args->p_port, NULL,
parmv[1]) != 0)
error_at_line(EXIT_FAILURE, 0, filename, lineno,
_("malformed line"));
} else if (system && strcmp(parmv[0], "use_proxy") == 0) {
args->useproxy = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "ask_auth") == 0) {
args->askauth = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "use_locks") == 0) {
args->locks = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "lock_owner") == 0) {
if (args->lock_owner)
free(args->lock_owner);
args->lock_owner = xstrdup(parmv[1]);
} else if (strcmp(parmv[0], "lock_timeout") == 0) {
args->lock_timeout = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "lock_refresh") == 0) {
args->lock_refresh = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "use_expect100") == 0) {
args->expect100 = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "if_match_bug") == 0) {
args->if_match_bug = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "drop_weak_etags") == 0) {
args->drop_weak_etags = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "n_cookies") == 0) {
args->n_cookies = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "precheck") == 0) {
args->precheck = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "ignore_dav_header") == 0) {
args->ignore_dav_header = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "use_compression") == 0) {
args->use_compression = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "min_propset") == 0) {
args->min_propset = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "sharepoint_href_bug") == 0) {
#if NE_VERSION_MAJOR > 0 || NE_VERSION_MINOR > 30
args->sharepoint_href_bug = arg_to_int(parmv[1], 10, parmv[0]);
#else
error(EXIT_FAILURE, 0, _("Option sharepoint_href_bug requires "
"Neon version 0.31 or newer"));
#endif
} else if (strcmp(parmv[0], "connect_timeout") == 0) {
args->connect_timeout = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "read_timeout") == 0) {
args->read_timeout = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "retry") == 0) {
args->retry = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "max_retry") == 0) {
args->max_retry = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "max_upload_attempts") == 0) {
args->max_upload_attempts = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "server_charset") == 0) {
if (args->s_charset)
free(args->s_charset);
args->s_charset = xstrdup(parmv[1]);
} else if (system && strcmp(parmv[0], "cache_dir") == 0) {
if (args->sys_cache)
free(args->sys_cache);
args->sys_cache = xstrdup(parmv[1]);
} else if (!system && strcmp(parmv[0], "cache_dir") == 0) {
if (args->cache_dir != NULL)
free(args->cache_dir);
args->cache_dir = xstrdup(parmv[1]);
} else if (strcmp(parmv[0], "backup_dir") == 0) {
if (args->backup_dir)
free(args->backup_dir);
args->backup_dir = xstrdup(parmv[1]);
} else if (strcmp(parmv[0], "cache_size") == 0) {
args->cache_size = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "table_size") == 0) {
args->table_size = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "dir_refresh") == 0) {
args->dir_refresh = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "file_refresh") == 0) {
args->file_refresh = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "delay_upload") == 0) {
args->delay_upload = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "gui_optimize") == 0) {
args->gui_optimize = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "minimize_mem") == 0) {
args->minimize_mem = arg_to_int(parmv[1], 10, parmv[0]);
} else if (strcmp(parmv[0], "debug") == 0) {
args->debug |= debug_opts(parmv[1]);
args->neon_debug |= debug_opts_neon(parmv[1]);
} else {
error_at_line(EXIT_FAILURE, 0, filename, lineno,
_("unknown option"));
}
} else if (applies && count == 3) {
if (strcmp(parmv[0], "add_header") == 0) {
if (args->header) {
char *tmp = args->header;
args->header = xasprintf("%s: %s\r\n%s", parmv[1],
parmv[2], tmp);
if (tmp) free(tmp);
} else {
args->header = xasprintf("%s: %s\r\n", parmv[1], parmv[2]);
}
} else {
error_at_line(EXIT_FAILURE, 0, filename, lineno,
_("unknown option"));
}
} else if (count < 0 || count > 3) {
error_at_line(EXIT_FAILURE, 0, filename, lineno,
_("malformed line"));
}
length = getline(&line, &n, file);
lineno++;
}
if (line)
free(line);
fclose(file);
}
/* Reads environment variable no_proxy. no_proxy must be a comma separated
list of domain names. If no_proxy is "*" or args->p_host matches any of
the entries in the no_proxy-list, args->p_host is removed. */
static void
read_no_proxy_list(dav_args *args)
{
if (!args->p_host || !args->host)
return;
const char *env = getenv("no_proxy");
if (!env)
return;
if (strcmp(env,"*") == 0) {
free(args->p_host);
args->p_host = NULL;
return;
}
char *noproxy_list = xstrdup(env);
char *np = strtok(noproxy_list, ", ");
while (np && args->p_host) {
char *host = NULL;
if (strchr(np, ':')) {
host = xasprintf("%s:%d", args->host, args->port);
} else {
host = xstrdup(args->host);
}
if (*np == '.') {
char *substr = strcasestr(host, np);
if (substr && *(substr + strlen(np)) == '\0') {
free(args->p_host);
args->p_host = NULL;
}
} else {
if (strcasecmp(host, np) == 0) {
free(args->p_host);
args->p_host = NULL;
}
}
free(host);
np = strtok(NULL, ", ");
}
free(noproxy_list);
}
/* Searches the file filename for credentials for server url and for the proxy
args->p_host and stores them in args. */
static void
read_secrets(dav_args *args, const char *filename, int system)
{
FILE *file = fopen(filename, "r");
if (!file) {
syslog(LOG_MAKEPRI(LOG_DAEMON, LOG_ERR),
_("opening %s failed"), filename);
return;
}
char *ccert = NULL;
if (!system && args->clicert) {
ccert = strrchr(args->clicert, '/');
} else if (system && args->sys_clicert) {
ccert = strrchr(args->sys_clicert, '/');
}
if (ccert && *(ccert + 1) == '\0')
ccert = NULL;
if (ccert)
ccert++;
size_t n = 0;
char *line = NULL;
int length = getline(&line, &n, file);
int lineno = 1;
while (length > 0) {
int parmc = 3;
char *parmv[parmc];
int count;
count = parse_line(line, parmc, parmv);
if (count != 0 && count != 3 && count != 2)
error_at_line(EXIT_FAILURE, 0, filename, lineno,
_("malformed line"));
if (count == 2 || count == 3) {
char *scheme = NULL;
char *host = NULL;
int port = 0;
char *path = 0;
split_uri(&scheme, &host, &port, &path, parmv[0]);
int p_port = port;
if (scheme && !port)
port = ne_uri_defaultport(scheme);
char *mp = canonicalize_file_name(parmv[0]);
if ((mp && strcmp(mp, mpoint) == 0)
|| (scheme && args->scheme
&& strcmp(scheme, args->scheme) == 0
&& host && args->host && strcmp(host, args->host) == 0
&& port == args->port
&& path && args->path
&& strcmp(path, args->path) == 0)) {
if (args->username) {
memset(args->username, '\0', strlen(args->username));
free(args->username);
}
if (args->password) {
memset(args->password, '\0', strlen(args->password));
free(args->password);
}
args->username = xstrdup(parmv[1]);
if (count == 3)
args->password = xstrdup(parmv[2]);
} else if (strcmp(parmv[0], "proxy") == 0
|| (host && args->p_host
&& strcmp(host, args->p_host) == 0
&& (!p_port || p_port == args->p_port))) {
if (args->p_user) {
memset(args->p_user, '\0', strlen(args->p_user));
free(args->p_user);
}
if (args->p_passwd) {
memset(args->p_passwd, '\0', strlen(args->p_passwd));
free(args->p_passwd);
}
args->p_user = xstrdup(parmv[1]);
if (count == 3)
args->p_passwd = xstrdup(parmv[2]);
} else if (!system && args->clicert
&& (strcmp(parmv[0], args->clicert) == 0
|| strcmp(parmv[0], ccert) == 0)) {
if (count != 2)
error_at_line(EXIT_FAILURE, 0, filename, lineno,
_("malformed line"));
if (args->clicert_pw) {
memset(args->clicert_pw, '\0', strlen(args->clicert_pw));
free(args->clicert_pw);
}
args->clicert_pw = xstrdup(parmv[1]);
} else if (system && args->sys_clicert
&& (strcmp(parmv[0], args->sys_clicert) == 0
|| strcmp(parmv[0], ccert) == 0)) {
if (count != 2)
error_at_line(EXIT_FAILURE, 0, filename, lineno,
_("malformed line"));
if (args->clicert_pw) {
memset(args->clicert_pw, '\0', strlen(args->clicert_pw));
free(args->clicert_pw);
}
args->clicert_pw = xstrdup(parmv[1]);
}
if (scheme) free(scheme);
if (host) free(host);
if (path) free(path);
if (mp) free(mp);
}
memset(line, '\0', strlen(line));
length = getline(&line, &n, file);
lineno++;
}
if (line) {
memset(line, '\0', strlen(line));
free(line);
}
fclose(file);
}
/* Splits an uri and returns the components.
The uri must contain a host, the other components are optional. It must
not contain userinfo. It shall not contain a query or fragment component;
they would be treated as part of path.
The path component must *not* be %-encoded. scheme, if present in uri,
must be either http or https. If host is a IPv6 address, it must be enclosed
in square brackets.
The pointers to the components may be NULL. If they point to a non-NULL
string, it is freed and then replaced by a newly allocated string.
If no scheme is found the default sheme "http" is returned.
If no path is found "/" is returned as path. path will always end with "/".
There is *no* default value returned for port.
return value : 0 on success, -1 otherwise. */
static int
split_uri(char **scheme, char **host, int *port,char **path, const char *uri)
{
if (!uri || !*uri) return -1;
const char *sch = NULL;
int po = 0;
const char *ho = strstr(uri, "://");
if (ho) {
if ((ho - uri) == 4 && strcasestr(uri, "http") == uri) {
sch = "http";
} else if ((ho - uri) == 5 && strcasestr(uri, "https") == uri) {
sch = "https";
} else {
return -1;
}
ho += 3;
} else {
ho = uri;
}
if (!*ho) return -1;
const char *pa = strchrnul(ho, '/');
if (pa == ho) return -1;
const char *end = strchr(ho, '@');
if (end && end < pa) return -1;
if (*ho == '[') {
end = strchr(ho, ']');
if (!end || end >= pa) return -1;
end++;
} else {
end = strchr(ho, ':');
if (!end)
end = pa;
}
if (end < pa) {
if (end == ho || end == (pa - 1) || *end != ':') return -1;
char *tail = NULL;
po = strtol(end + 1, &tail, 10);
if (po <= 0 || tail != pa) return -1;
}
if (scheme) {
if (*scheme) free(*scheme);
if (sch) {
*scheme = xstrdup(sch);
} else {
*scheme = xstrdup("http");
}
}
if (port && po)
*port = po;
if (host) {
if (*host) free(*host);
*host = xmalloc(end - ho + 1);
int i;
for (i = 0; i < (end - ho); i++) {
if (*ho == '[') {
*(*host + i) = islower(*(ho + i))
? toupper(*(ho + i)) : *(ho + i);
} else {
*(*host + i) = isupper(*(ho + i))
? tolower(*(ho + i)) : *(ho + i);
}
}
*(*host + i) = '\0';
}
if (path) {
if (*path) free(*path);
if (!*pa) {
*path = xstrdup("/");
} else if (*(pa + strlen(pa) - 1) == '/') {
*path = xstrdup(pa);
} else {
*path = xasprintf("%s/", pa);
}
}
return 0;
}
/* Prints version und help text. */
static void
usage(void)
{
printf(_("Usage:\n"
" %s -V,--version : print version string\n"
" %s -h,--help : print this message\n\n"),
PROGRAM_NAME, PROGRAM_NAME);
printf(_("To mount a WebDAV-resource don't call %s directly, but use\n"
"`mount' instead.\n"), PROGRAM_NAME);
printf(_(" mount <mountpoint> : or\n"
" mount <server-url> : mount the WebDAV-resource as specified in\n"
" /etc/fstab.\n"));
printf(_(" mount -t davfs <server-url> <mountpoint> [-o options]\n"
" : mount the WebDAV-resource <server-url>\n"
" on mountpoint <mountpoint>. Only root\n"
" is allowed to do this. options is a\n"
" comma separated list of options.\n\n"));
printf(_("Recognised options:\n"
" conf= : absolute path of user configuration file\n"
" uid= : owner of the filesystem (username or numeric id)\n"
" gid= : group of the filesystem (group name or numeric id)\n"
" file_mode= : default file mode (octal)\n"
" dir_mode= : default directory mode (octal)\n"));
printf(_(" ro : mount read-only\n"
" rw : mount read-write\n"
" [no]exec : (don't) allow execution of binaries\n"
" [no]suid : (don't) allow suid and sgid bits to take effect\n"
" [no]grpid : new files (don't) get the group id of the directory\n"
" in which they are created.\n"
" [no]_netdev : (no) network connection needed\n"));
}
/* Prints prompt to stdout and reads a line from stdin.
A trailing newline is removed.
return value : the user input. */
static char *
user_input(const char *prompt)
{
printf(" %s ", prompt);
char *line = NULL;
size_t n = 0;
ssize_t len = getline(&line, &n, stdin);
if (len < 0) abort();
if (len > 0 && *(line + len - 1) == '\n')
*(line + len - 1) = '\0';
return line;
}
Reference in New Issue View Git Blame Copy Permalink