123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421 |
- /***************************************************************************
- * _ _ ____ _
- * Project ___| | | | _ \| |
- * / __| | | | |_) | |
- * | (__| |_| | _ <| |___
- * \___|\___/|_| \_\_____|
- *
- * Copyright (C) Daniel Stenberg, <daniel@haxx.se>, et al.
- *
- * This software is licensed as described in the file COPYING, which
- * you should have received as part of this distribution. The terms
- * are also available at https://curl.se/docs/copyright.html.
- *
- * You may opt to use, copy, modify, merge, publish, distribute and/or sell
- * copies of the Software, and permit persons to whom the Software is
- * furnished to do so, under the terms of the COPYING file.
- *
- * This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY
- * KIND, either express or implied.
- *
- * SPDX-License-Identifier: curl
- *
- ***************************************************************************/
- #include "curl_setup.h"
- #ifndef CURL_DISABLE_NETRC
- #ifdef HAVE_PWD_H
- #include <pwd.h>
- #endif
- #include <curl/curl.h>
- #include "netrc.h"
- #include "strcase.h"
- #include "curl_get_line.h"
- /* The last 3 #include files should be in this order */
- #include "curl_printf.h"
- #include "curl_memory.h"
- #include "memdebug.h"
- /* Get user and password from .netrc when given a machine name */
- enum host_lookup_state {
- NOTHING,
- HOSTFOUND, /* the 'machine' keyword was found */
- HOSTVALID, /* this is "our" machine! */
- MACDEF
- };
- enum found_state {
- NONE,
- LOGIN,
- PASSWORD
- };
- #define FOUND_LOGIN 1
- #define FOUND_PASSWORD 2
- #define NETRC_FILE_MISSING 1
- #define NETRC_FAILED -1
- #define NETRC_SUCCESS 0
- #define MAX_NETRC_LINE 16384
- #define MAX_NETRC_FILE (128*1024)
- #define MAX_NETRC_TOKEN 4096
- static CURLcode file2memory(const char *filename, struct dynbuf *filebuf)
- {
- CURLcode result = CURLE_OK;
- FILE *file = fopen(filename, FOPEN_READTEXT);
- struct dynbuf linebuf;
- Curl_dyn_init(&linebuf, MAX_NETRC_LINE);
- if(file) {
- while(Curl_get_line(&linebuf, file)) {
- const char *line = Curl_dyn_ptr(&linebuf);
- /* skip comments on load */
- while(ISBLANK(*line))
- line++;
- if(*line == '#')
- continue;
- result = Curl_dyn_add(filebuf, line);
- if(result)
- goto done;
- }
- }
- done:
- Curl_dyn_free(&linebuf);
- if(file)
- fclose(file);
- return result;
- }
- /*
- * Returns zero on success.
- */
- static int parsenetrc(struct store_netrc *store,
- const char *host,
- char **loginp, /* might point to a username */
- char **passwordp,
- const char *netrcfile)
- {
- int retcode = NETRC_FILE_MISSING;
- char *login = *loginp;
- char *password = NULL;
- bool specific_login = !!login; /* points to something */
- enum host_lookup_state state = NOTHING;
- enum found_state keyword = NONE;
- unsigned char found = 0; /* login + password found bits, as they can come in
- any order */
- bool our_login = FALSE; /* found our login name */
- bool done = FALSE;
- char *netrcbuffer;
- struct dynbuf token;
- struct dynbuf *filebuf = &store->filebuf;
- DEBUGASSERT(!*passwordp);
- Curl_dyn_init(&token, MAX_NETRC_TOKEN);
- if(!store->loaded) {
- if(file2memory(netrcfile, filebuf))
- return NETRC_FAILED;
- store->loaded = TRUE;
- }
- netrcbuffer = Curl_dyn_ptr(filebuf);
- while(!done) {
- char *tok = netrcbuffer;
- while(tok && !done) {
- char *tok_end;
- bool quoted;
- Curl_dyn_reset(&token);
- while(ISBLANK(*tok))
- tok++;
- /* tok is first non-space letter */
- if(state == MACDEF) {
- if((*tok == '\n') || (*tok == '\r'))
- state = NOTHING; /* end of macro definition */
- }
- if(!*tok || (*tok == '\n'))
- /* end of line */
- break;
- /* leading double-quote means quoted string */
- quoted = (*tok == '\"');
- tok_end = tok;
- if(!quoted) {
- size_t len = 0;
- while(!ISSPACE(*tok_end)) {
- tok_end++;
- len++;
- }
- if(!len || Curl_dyn_addn(&token, tok, len)) {
- retcode = NETRC_FAILED;
- goto out;
- }
- }
- else {
- bool escape = FALSE;
- bool endquote = FALSE;
- tok_end++; /* pass the leading quote */
- while(*tok_end) {
- char s = *tok_end;
- if(escape) {
- escape = FALSE;
- switch(s) {
- case 'n':
- s = '\n';
- break;
- case 'r':
- s = '\r';
- break;
- case 't':
- s = '\t';
- break;
- }
- }
- else if(s == '\\') {
- escape = TRUE;
- tok_end++;
- continue;
- }
- else if(s == '\"') {
- tok_end++; /* pass the ending quote */
- endquote = TRUE;
- break;
- }
- if(Curl_dyn_addn(&token, &s, 1)) {
- retcode = NETRC_FAILED;
- goto out;
- }
- tok_end++;
- }
- if(escape || !endquote) {
- /* bad syntax, get out */
- retcode = NETRC_FAILED;
- goto out;
- }
- }
- tok = Curl_dyn_ptr(&token);
- switch(state) {
- case NOTHING:
- if(strcasecompare("macdef", tok))
- /* Define a macro. A macro is defined with the specified name; its
- contents begin with the next .netrc line and continue until a
- null line (consecutive new-line characters) is encountered. */
- state = MACDEF;
- else if(strcasecompare("machine", tok)) {
- /* the next tok is the machine name, this is in itself the delimiter
- that starts the stuff entered for this machine, after this we
- need to search for 'login' and 'password'. */
- state = HOSTFOUND;
- keyword = NONE;
- found = 0;
- our_login = FALSE;
- Curl_safefree(password);
- if(!specific_login)
- Curl_safefree(login);
- }
- else if(strcasecompare("default", tok)) {
- state = HOSTVALID;
- retcode = NETRC_SUCCESS; /* we did find our host */
- }
- break;
- case MACDEF:
- if(!*tok)
- state = NOTHING;
- break;
- case HOSTFOUND:
- if(strcasecompare(host, tok)) {
- /* and yes, this is our host! */
- state = HOSTVALID;
- retcode = NETRC_SUCCESS; /* we did find our host */
- }
- else
- /* not our host */
- state = NOTHING;
- break;
- case HOSTVALID:
- /* we are now parsing sub-keywords concerning "our" host */
- if(keyword == LOGIN) {
- if(specific_login)
- our_login = !Curl_timestrcmp(login, tok);
- else {
- our_login = TRUE;
- free(login);
- login = strdup(tok);
- if(!login) {
- retcode = NETRC_FAILED; /* allocation failed */
- goto out;
- }
- }
- found |= FOUND_LOGIN;
- keyword = NONE;
- }
- else if(keyword == PASSWORD) {
- free(password);
- password = strdup(tok);
- if(!password) {
- retcode = NETRC_FAILED; /* allocation failed */
- goto out;
- }
- found |= FOUND_PASSWORD;
- keyword = NONE;
- }
- else if(strcasecompare("login", tok))
- keyword = LOGIN;
- else if(strcasecompare("password", tok))
- keyword = PASSWORD;
- else if(strcasecompare("machine", tok)) {
- /* a new machine here */
- state = HOSTFOUND;
- keyword = NONE;
- found = 0;
- Curl_safefree(password);
- if(!specific_login)
- Curl_safefree(login);
- }
- else if(strcasecompare("default", tok)) {
- state = HOSTVALID;
- retcode = NETRC_SUCCESS; /* we did find our host */
- Curl_safefree(password);
- if(!specific_login)
- Curl_safefree(login);
- }
- if((found == (FOUND_PASSWORD|FOUND_LOGIN)) && our_login) {
- done = TRUE;
- break;
- }
- break;
- } /* switch (state) */
- tok = ++tok_end;
- }
- if(!done) {
- char *nl = NULL;
- if(tok)
- nl = strchr(tok, '\n');
- if(!nl)
- break;
- /* point to next line */
- netrcbuffer = &nl[1];
- }
- } /* while !done */
- out:
- Curl_dyn_free(&token);
- if(!retcode && !password && our_login) {
- /* success without a password, set a blank one */
- password = strdup("");
- if(!password)
- retcode = 1; /* out of memory */
- }
- if(!retcode) {
- /* success */
- if(!specific_login)
- *loginp = login;
- *passwordp = password;
- }
- else {
- Curl_dyn_free(filebuf);
- if(!specific_login)
- free(login);
- free(password);
- }
- return retcode;
- }
- /*
- * @unittest: 1304
- *
- * *loginp and *passwordp MUST be allocated if they are not NULL when passed
- * in.
- */
- int Curl_parsenetrc(struct store_netrc *store, const char *host,
- char **loginp, char **passwordp,
- char *netrcfile)
- {
- int retcode = 1;
- char *filealloc = NULL;
- if(!netrcfile) {
- #if defined(HAVE_GETPWUID_R) && defined(HAVE_GETEUID)
- char pwbuf[1024];
- #endif
- char *home = NULL;
- char *homea = curl_getenv("HOME"); /* portable environment reader */
- if(homea) {
- home = homea;
- #if defined(HAVE_GETPWUID_R) && defined(HAVE_GETEUID)
- }
- else {
- struct passwd pw, *pw_res;
- if(!getpwuid_r(geteuid(), &pw, pwbuf, sizeof(pwbuf), &pw_res)
- && pw_res) {
- home = pw.pw_dir;
- }
- #elif defined(HAVE_GETPWUID) && defined(HAVE_GETEUID)
- }
- else {
- struct passwd *pw;
- pw = getpwuid(geteuid());
- if(pw) {
- home = pw->pw_dir;
- }
- #elif defined(_WIN32)
- }
- else {
- homea = curl_getenv("USERPROFILE");
- if(homea) {
- home = homea;
- }
- #endif
- }
- if(!home)
- return retcode; /* no home directory found (or possibly out of
- memory) */
- filealloc = aprintf("%s%s.netrc", home, DIR_CHAR);
- if(!filealloc) {
- free(homea);
- return -1;
- }
- retcode = parsenetrc(store, host, loginp, passwordp, filealloc);
- free(filealloc);
- #ifdef _WIN32
- if(retcode == NETRC_FILE_MISSING) {
- /* fallback to the old-style "_netrc" file */
- filealloc = aprintf("%s%s_netrc", home, DIR_CHAR);
- if(!filealloc) {
- free(homea);
- return -1;
- }
- retcode = parsenetrc(store, host, loginp, passwordp, filealloc);
- free(filealloc);
- }
- #endif
- free(homea);
- }
- else
- retcode = parsenetrc(store, host, loginp, passwordp, netrcfile);
- return retcode;
- }
- void Curl_netrc_init(struct store_netrc *s)
- {
- Curl_dyn_init(&s->filebuf, MAX_NETRC_FILE);
- s->loaded = FALSE;
- }
- void Curl_netrc_cleanup(struct store_netrc *s)
- {
- Curl_dyn_free(&s->filebuf);
- s->loaded = FALSE;
- }
- #endif
|