* OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
*/
+#define _GNU_SOURCE
#include <unistd.h>
#include <stdio.h>
#include <dlfcn.h>
#include <getopt.h>
#include <fcntl.h>
+#include <glob.h>
#include <libubox/blobmsg.h>
static const struct ustream_ssl_ops *ssl_ops;
static int quiet = false;
static bool verify = true;
+static bool default_certs = false;
static const char *output_file;
static int output_fd = -1;
static int error_ret;
+static int out_bytes;
+static char *username;
+static char *password;
+static char *auth_str;
static int open_output_file(const char *path, bool create)
{
int ret;
if (create)
- flags |= O_CREAT;
+ flags |= O_CREAT | O_EXCL;
if (output_file) {
if (!strcmp(output_file, "-"))
return STDOUT_FILENO;
+ if (!quiet)
+ fprintf(stderr, "Writing to stdout\n");
+
+ unlink(output_file);
return open(output_file, flags, 0644);
}
- /* Don't automatically overwrite files if the name is derived from the URL */
- if (create)
- flags |= O_EXCL;
-
filename = uclient_get_url_filename(path, "index.html");
+ if (!quiet)
+ fprintf(stderr, "Writing to '%s'\n", filename);
ret = open(filename, flags, 0644);
free(filename);
if (!len)
return;
+ out_bytes += len;
write(output_fd, buf, len);
}
}
return;
uclient_get_addr(addr, &port, &cl->remote_addr);
- fprintf(stderr, "Connecting to %s %s:%d\n", cl->url->host, addr, port);
+ fprintf(stderr, "Connecting to %s:%d\n", addr, port);
}
-static void init_request(struct uclient *cl)
+static int init_request(struct uclient *cl)
{
- uclient_connect(cl);
+ int rc;
+
+ out_bytes = 0;
+
+ rc = uclient_connect(cl);
+ if (rc)
+ return rc;
+
msg_connecting(cl);
- uclient_http_set_request_type(cl, "GET");
- uclient_request(cl);
+
+ rc = uclient_http_set_request_type(cl, "GET");
+ if (rc)
+ return rc;
+
+ rc = uclient_request(cl);
+ if (rc)
+ return rc;
+
+ return 0;
}
static void eof_cb(struct uclient *cl)
if (!quiet)
fprintf(stderr, "Connection reset prematurely\n");
error_ret = 4;
+ } else if (!quiet) {
+ fprintf(stderr, "Download completed (%d bytes)\n", out_bytes);
}
request_done(cl);
}
type = "Connection failed";
error_ret = 4;
break;
+ case UCLIENT_ERROR_TIMEDOUT:
+ type = "Connection timed out";
+ error_ret = 4;
+ break;
case UCLIENT_ERROR_SSL_INVALID_CERT:
type = "Invalid SSL certificate";
ignore = !verify;
"Options:\n"
" -q: Turn off status messages\n"
" -O <file>: Redirect output to file (use \"-\" for stdout)\n"
+ " --user=<user> HTTP authentication username\n"
+ " --password=<password> HTTP authentication password\n"
"\n"
"HTTPS options:\n"
" --ca-certificate=<cert>: Load CA certificates from file <cert>\n"
return 1;
}
+static void init_ca_cert(void)
+{
+ glob_t gl;
+ int i;
+
+ glob("/etc/ssl/certs/*.crt", 0, NULL, &gl);
+ for (i = 0; i < gl.gl_pathc; i++)
+ ssl_ops->context_add_ca_crt_file(ssl_ctx, gl.gl_pathv[i]);
+}
static void init_ustream_ssl(void)
{
enum {
L_NO_CHECK_CERTIFICATE,
L_CA_CERTIFICATE,
+ L_USER,
+ L_PASSWORD,
};
static const struct option longopts[] = {
[L_NO_CHECK_CERTIFICATE] = { "no-check-certificate", no_argument },
[L_CA_CERTIFICATE] = { "ca-certificate", required_argument },
+ [L_USER] = { "user", required_argument },
+ [L_PASSWORD] = { "password", required_argument },
{}
};
struct uclient *cl;
int ch;
int longopt_idx = 0;
+ bool has_cert = false;
+ int rc;
init_ustream_ssl();
verify = false;
break;
case L_CA_CERTIFICATE:
+ has_cert = true;
if (ssl_ctx)
ssl_ops->context_add_ca_crt_file(ssl_ctx, optarg);
break;
+ case L_USER:
+ if (!strlen(optarg))
+ break;
+ username = strdup(optarg);
+ memset(optarg, '*', strlen(optarg));
+ break;
+ case L_PASSWORD:
+ if (!strlen(optarg))
+ break;
+ password = strdup(optarg);
+ memset(optarg, '*', strlen(optarg));
+ break;
default:
return usage(progname);
}
argv += optind;
argc -= optind;
+ if (verify && !has_cert)
+ default_certs = true;
+
if (argc != 1)
return usage(progname);
uloop_init();
- cl = uclient_new(argv[0], NULL, &cb);
+ if (username) {
+ if (password)
+ asprintf(&auth_str, "%s:%s", username, password);
+ else
+ auth_str = username;
+ }
+
+ if (!quiet)
+ fprintf(stderr, "Downloading '%s'\n", argv[0]);
+
+ cl = uclient_new(argv[0], auth_str, &cb);
if (!cl) {
fprintf(stderr, "Failed to allocate uclient context\n");
return 1;
}
- if (ssl_ctx)
+ if (ssl_ctx) {
+ init_ca_cert();
uclient_http_set_ssl_ctx(cl, ssl_ops, ssl_ctx, verify);
+ }
+
+ rc = init_request(cl);
+ if (!rc) {
+ /* no error received, we can enter main loop */
+ uloop_run();
+ } else {
+ fprintf(stderr, "Failed to establish connection\n");
+ error_ret = 4;
+ }
- init_request(cl);
- uloop_run();
uloop_done();
uclient_free(cl);