package ProFTPD::Tests::Config::HideFiles; use lib qw(t/lib); use base qw(ProFTPD::TestSuite::Child); use strict; use Cwd; use File::Path qw(mkpath); use File::Spec; use IO::Handle; use ProFTPD::TestSuite::FTP; use ProFTPD::TestSuite::Utils qw(:auth :config :running :test :testsuite); $| = 1; my $order = 0; my $TESTS = { hidefiles_list_bug2020 => { order => ++$order, test_class => [qw(bug forking)], }, hidefiles_list_anon_bug2020 => { order => ++$order, test_class => [qw(bug forking rootprivs)], }, hidefiles_nlst_bug2020 => { order => ++$order, test_class => [qw(bug forking)], }, hidefiles_nlst_anon_bug2020 => { order => ++$order, test_class => [qw(bug forking rootprivs)], }, hidefiles_bug3130 => { order => ++$order, test_class => [qw(bug forking)], }, hidefiles_per_user_ok => { order => ++$order, test_class => [qw(forking)], }, hidefiles_per_not_user_ok => { order => ++$order, test_class => [qw(forking)], }, hidefiles_anon_list_rel_path_bug3226 => { order => ++$order, test_class => [qw(bug forking rootprivs)], }, hidefiles_anon_nlst_rel_path_bug3226 => { order => ++$order, test_class => [qw(bug forking rootprivs)], }, hidefiles_anon_list_abs_path_bug3226 => { order => ++$order, test_class => [qw(bug forking rootprivs)], }, hidefiles_anon_nlst_abs_path_bug3226 => { order => ++$order, test_class => [qw(bug forking rootprivs)], }, hidefiles_negated_bug3276 => { order => ++$order, test_class => [qw(bug forking)], }, hidefiles_negated_chroot_bug3276 => { order => ++$order, test_class => [qw(bug forking rootprivs)], }, hidefiles_negated_chroot_subdirs_visible_bug3276 => { order => ++$order, test_class => [qw(bug forking rootprivs)], }, hidefiles_none_per_user_bug3397 => { order => ++$order, test_class => [qw(bug forking)], }, hidefiles_pcre_bug3595 => { order => ++$order, test_class => [qw(bug feature_pcre forking)], }, hidefiles_mlsd => { order => ++$order, test_class => [qw(bug forking)], }, hidefiles_mlsd_dotfiles => { order => ++$order, test_class => [qw(forking)], }, hidefiles_stat => { order => ++$order, test_class => [qw(bug forking)], }, hidefiles_directory_pcre => { order => ++$order, test_class => [qw(feature_pcre forking)], }, hidefiles_list_symlink_bug3924 => { order => ++$order, test_class => [qw(bug forking)], }, hidefiles_mlsd_symlink_bug3924 => { order => ++$order, test_class => [qw(bug forking)], }, hidefiles_multi_dirs => { order => ++$order, test_class => [qw(bug forking)], }, }; sub new { return shift()->SUPER::new(@_); } sub list_tests { return testsuite_get_runnable_tests($TESTS); } sub hidefiles_list_bug2020 { my $self = shift; my $tmpdir = $self->{tmpdir}; my $setup = test_setup($tmpdir, 'config'); my $sub_dir = File::Spec->rel2abs("$tmpdir/foo"); mkpath($sub_dir); my $fh; my $ftpaccess_file = File::Spec->rel2abs("$tmpdir/foo/.ftpaccess"); if (open($fh, "> $ftpaccess_file")) { print $fh < $sub_dir/$test_file")) { close($fh); } else { die("Can't write test file $sub_dir/$test_file: $!"); } } # Make sure that, if we're running as root, that the home directory has # permissions/privs set for the account we create if ($< == 0) { unless (chmod(0755, $sub_dir)) { die("Can't set perms on $sub_dir to 0755: $!"); } unless (chown($setup->{uid}, $setup->{gid}, $sub_dir)) { die("Can't set owner of $sub_dir to $setup->{uid}/$setup->{gid}: $!"); } } my $config = { PidFile => $setup->{pid_file}, ScoreboardFile => $setup->{scoreboard_file}, SystemLog => $setup->{log_file}, AuthUserFile => $setup->{auth_user_file}, AuthGroupFile => $setup->{auth_group_file}, AuthOrder => 'mod_auth_file.c', AllowOverride => 'on', DefaultChdir => '~', IfModules => { 'mod_delay.c' => { DelayEngine => 'off', }, }, }; my ($port, $config_user, $config_group) = config_write($setup->{config_file}, $config); # Open pipes, for use between the parent and child processes. Specifically, # the child will indicate when it's done with its test by writing a message # to the parent. my ($rfh, $wfh); unless (pipe($rfh, $wfh)) { die("Can't open pipe: $!"); } my $ex; # Fork child $self->handle_sigchld(); defined(my $pid = fork()) or die("Can't fork: $!"); if ($pid) { eval { my $client = ProFTPD::TestSuite::FTP->new('127.0.0.1', $port); $client->login($setup->{user}, $setup->{passwd}); my $conn = $client->list_raw('foo'); unless ($conn) { die("Failed to LIST: " . $client->response_code() . " " . $client->response_msg()); } my $buf; my $tmp; while ($conn->read($tmp, 8192, 30)) { $buf .= $tmp; } $conn->close(); if ($ENV{TEST_VERBOSE}) { print STDERR "# data:\n$buf\n"; } # We have to be careful of the fact that readdir returns directory # entries in an unordered fashion. my $res = {}; my $lines = [split(/\n/, $buf)]; foreach my $line (@$lines) { if ($line =~ /^\S+\s+\d+\s+\S+\s+\S+\s+.*?\s+(\S+)$/) { $res->{$1} = 1; } } my $expected = { '4.txt' => 1, }; my $ok = 1; my $mismatch; foreach my $name (keys(%$res)) { unless (defined($expected->{$name})) { $mismatch = $name; $ok = 0; last; } } unless ($ok) { die("Unexpected name '$mismatch' appeared in LIST data") } $client->quit(); }; if ($@) { $ex = $@; } $wfh->print("done\n"); $wfh->flush(); } else { eval { server_wait($setup->{config_file}, $rfh) }; if ($@) { warn($@); exit 1; } exit 0; } # Stop server server_stop($setup->{pid_file}); $self->assert_child_ok($pid); test_cleanup($setup->{log_file}, $ex); } sub hidefiles_list_issue1279 { my $self = shift; my $tmpdir = $self->{tmpdir}; my $setup = test_setup($tmpdir, 'config'); my $test_files = [qw(1.txt 2.txt 3.txt 4.txt foo.txt)]; foreach my $test_file (@$test_files) { if (open(my $fh, "> $tmpdir/$test_file")) { close($fh); } else { die("Can't write test file $tmpdir/$test_file: $!"); } } my $config = { PidFile => $setup->{pid_file}, ScoreboardFile => $setup->{scoreboard_file}, SystemLog => $setup->{log_file}, TraceLog => $setup->{log_file}, Trace => 'filter:20 regexp:20', AuthUserFile => $setup->{auth_user_file}, AuthGroupFile => $setup->{auth_group_file}, AuthOrder => 'mod_auth_file.c', AllowOverride => 'on', DefaultChdir => '~', IfModules => { 'mod_delay.c' => { DelayEngine => 'off', }, }, }; my ($port, $config_user, $config_group) = config_write($setup->{config_file}, $config); if (open(my $fh, ">> $setup->{config_file}")) { print $fh < # Hide all files from e.g. LIST HideFiles .* EOC unless (close($fh)) { die("Can't write $setup->{config_file}: $!"); } } else { die("Can't open $setup->{config_file}: $!"); } # Open pipes, for use between the parent and child processes. Specifically, # the child will indicate when it's done with its test by writing a message # to the parent. my ($rfh, $wfh); unless (pipe($rfh, $wfh)) { die("Can't open pipe: $!"); } my $ex; # Fork child $self->handle_sigchld(); defined(my $pid = fork()) or die("Can't fork: $!"); if ($pid) { eval { my $client = ProFTPD::TestSuite::FTP->new('127.0.0.1', $port); $client->login($setup->{user}, $setup->{passwd}); my $conn = $client->list_raw(); unless ($conn) { die("Failed to LIST: " . $client->response_code() . " " . $client->response_msg()); } my $buf; my $tmp; while ($conn->read($tmp, 8192, 30)) { $buf .= $tmp; } $conn->close(); if ($ENV{TEST_VERBOSE}) { print STDERR "# data:\n$buf\n"; } # We have to be careful of the fact that readdir returns directory # entries in an unordered fashion. my $res = {}; my $lines = [split(/\n/, $buf)]; foreach my $line (@$lines) { if ($line =~ /^\S+\s+\d+\s+\S+\s+\S+\s+.*?\s+(\S+)$/) { $res->{$1} = 1; } } my $expected = { }; my $ok = 1; my $mismatch; foreach my $name (keys(%$res)) { unless (defined($expected->{$name})) { $mismatch = $name; $ok = 0; last; } } unless ($ok) { die("Unexpected name '$mismatch' appeared in LIST data") } $client->quit(); }; if ($@) { $ex = $@; } $wfh->print("done\n"); $wfh->flush(); } else { eval { server_wait($setup->{config_file}, $rfh) }; if ($@) { warn($@); exit 1; } exit 0; } # Stop server server_stop($setup->{pid_file}); $self->assert_child_ok($pid); test_cleanup($setup->{log_file}, $ex); } sub hidefiles_list_anon_bug2020 { my $self = shift; my $tmpdir = $self->{tmpdir}; my $config_file = "$tmpdir/config.conf"; my $pid_file = File::Spec->rel2abs("$tmpdir/config.pid"); my $scoreboard_file = File::Spec->rel2abs("$tmpdir/config.scoreboard"); my $auth_user_file = File::Spec->rel2abs("$tmpdir/config.passwd"); my $auth_group_file = File::Spec->rel2abs("$tmpdir/config.group"); my $log_file = test_get_logfile(); my ($config_user, $config_group) = config_get_identity(); my $anon_dir = File::Spec->rel2abs($tmpdir); my $sub_dir = File::Spec->rel2abs("$tmpdir/foo"); mkpath($sub_dir); my $fh; my $ftpaccess_file = File::Spec->rel2abs("$tmpdir/foo/.ftpaccess"); if (open($fh, "> $ftpaccess_file")) { print $fh < $sub_dir/$test_file")) { close($fh); } else { die("Can't write test file $sub_dir/$test_file: $!"); } } # Make sure that, if we're running as root, that the home directory has # permissions/privs set for the account we create if ($< == 0) { unless (chmod(0755, $anon_dir, $sub_dir)) { die("Can't set perms on $anon_dir, $sub_dir to 0755: $!"); } } auth_user_write($auth_user_file, $config_user, 'foo', 500, 500, '/tmp', '/bin/bash'); auth_group_write($auth_group_file, $config_group, 500, $config_user); my $config = { PidFile => $pid_file, ScoreboardFile => $scoreboard_file, SystemLog => $log_file, AuthUserFile => $auth_user_file, AuthGroupFile => $auth_group_file, AuthOrder => 'mod_auth_file.c', AllowOverride => 'on', Anonymous => { $anon_dir => { User => $config_user, Group => $config_group, UserAlias => "anonymous $config_user", RequireValidShell => 'off', }, }, IfModules => { 'mod_delay.c' => { DelayEngine => 'off', }, }, }; my $port; ($port, $config_user, $config_group) = config_write($config_file, $config); # Open pipes, for use between the parent and child processes. Specifically, # the child will indicate when it's done with its test by writing a message # to the parent. my ($rfh, $wfh); unless (pipe($rfh, $wfh)) { die("Can't open pipe: $!"); } my $ex; # Fork child $self->handle_sigchld(); defined(my $pid = fork()) or die("Can't fork: $!"); if ($pid) { eval { my $client = ProFTPD::TestSuite::FTP->new('127.0.0.1', $port); $client->login('anonymous', 'ftp@nospam.org'); my $conn = $client->list_raw('foo'); unless ($conn) { die("Failed to LIST: " . $client->response_code() . " " . $client->response_msg()); } my $buf; my $tmp; while ($conn->read($tmp, 8192, 30)) { $buf .= $tmp; } $conn->close(); # We have to be careful of the fact that readdir returns directory # entries in an unordered fashion. my $res = {}; my $lines = [split(/\n/, $buf)]; foreach my $line (@$lines) { if ($line =~ /^\S+\s+\d+\s+\S+\s+\S+\s+.*?\s+(\S+)$/) { $res->{$1} = 1; } } my $expected = { '4.txt' => 1, }; my $ok = 1; my $mismatch; foreach my $name (keys(%$res)) { unless (defined($expected->{$name})) { $mismatch = $name; $ok = 0; last; } } unless ($ok) { die("Unexpected name '$mismatch' appeared in LIST data") } $client->quit(); }; if ($@) { $ex = $@; } $wfh->print("done\n"); $wfh->flush(); } else { eval { server_wait($config_file, $rfh) }; if ($@) { warn($@); exit 1; } exit 0; } # Stop server server_stop($pid_file); $self->assert_child_ok($pid); if ($ex) { test_append_logfile($log_file, $ex); unlink($log_file); die($ex); } unlink($log_file); } sub hidefiles_nlst_bug2020 { my $self = shift; my $tmpdir = $self->{tmpdir}; my $config_file = "$tmpdir/config.conf"; my $pid_file = File::Spec->rel2abs("$tmpdir/config.pid"); my $scoreboard_file = File::Spec->rel2abs("$tmpdir/config.scoreboard"); my $log_file = test_get_logfile(); my $auth_user_file = File::Spec->rel2abs("$tmpdir/config.passwd"); my $auth_group_file = File::Spec->rel2abs("$tmpdir/config.group"); my $user = 'proftpd'; my $passwd = 'test'; my $group = 'ftpd'; my $home_dir = File::Spec->rel2abs($tmpdir); my $uid = 500; my $gid = 500; my $sub_dir = File::Spec->rel2abs("$tmpdir/foo"); mkpath($sub_dir); my $fh; my $ftpaccess_file = File::Spec->rel2abs("$tmpdir/foo/.ftpaccess"); if (open($fh, "> $ftpaccess_file")) { print $fh < $sub_dir/$test_file")) { close($fh); } else { die("Can't write test file $sub_dir/$test_file: $!"); } } # Make sure that, if we're running as root, that the home directory has # permissions/privs set for the account we create if ($< == 0) { unless (chmod(0755, $home_dir, $sub_dir)) { die("Can't set perms on $home_dir, $sub_dir to 0755: $!"); } unless (chown($uid, $gid, $home_dir, $sub_dir)) { die("Can't set owner of $home_dir, $sub_dir to $uid/$gid: $!"); } } auth_user_write($auth_user_file, $user, $passwd, $uid, $gid, $home_dir, '/bin/bash'); auth_group_write($auth_group_file, $group, $gid, $user); my $config = { PidFile => $pid_file, ScoreboardFile => $scoreboard_file, SystemLog => $log_file, AuthUserFile => $auth_user_file, AuthGroupFile => $auth_group_file, AuthOrder => 'mod_auth_file.c', AllowOverride => 'on', DefaultChdir => '~', IfModules => { 'mod_delay.c' => { DelayEngine => 'off', }, }, }; my ($port, $config_user, $config_group) = config_write($config_file, $config); # Open pipes, for use between the parent and child processes. Specifically, # the child will indicate when it's done with its test by writing a message # to the parent. my ($rfh, $wfh); unless (pipe($rfh, $wfh)) { die("Can't open pipe: $!"); } my $ex; # Fork child $self->handle_sigchld(); defined(my $pid = fork()) or die("Can't fork: $!"); if ($pid) { eval { my $client = ProFTPD::TestSuite::FTP->new('127.0.0.1', $port); $client->login($user, $passwd); my $conn = $client->nlst_raw('foo'); unless ($conn) { die("Failed to NLST: " . $client->response_code() . " " . $client->response_msg()); } my $buf; my $tmp; while ($conn->read($tmp, 8192, 30)) { $buf .= $tmp; } $conn->close(); # We have to be careful of the fact that readdir returns directory # entries in an unordered fashion. my $res = {}; my $lines = [split(/\n/, $buf)]; foreach my $line (@$lines) { $res->{$line} = 1; } my $expected = { 'foo/4.txt' => 1, }; my $ok = 1; my $mismatch; foreach my $name (keys(%$res)) { unless (defined($expected->{$name})) { $mismatch = $name; $ok = 0; last; } } unless ($ok) { die("Unexpected name '$mismatch' appeared in NLST data") } $client->quit(); }; if ($@) { $ex = $@; } $wfh->print("done\n"); $wfh->flush(); } else { eval { server_wait($config_file, $rfh) }; if ($@) { warn($@); exit 1; } exit 0; } # Stop server server_stop($pid_file); $self->assert_child_ok($pid); if ($ex) { test_append_logfile($log_file, $ex); unlink($log_file); die($ex); } unlink($log_file); } sub hidefiles_nlst_anon_bug2020 { my $self = shift; my $tmpdir = $self->{tmpdir}; my $config_file = "$tmpdir/config.conf"; my $pid_file = File::Spec->rel2abs("$tmpdir/config.pid"); my $scoreboard_file = File::Spec->rel2abs("$tmpdir/config.scoreboard"); my $auth_user_file = File::Spec->rel2abs("$tmpdir/config.passwd"); my $auth_group_file = File::Spec->rel2abs("$tmpdir/config.group"); my $log_file = test_get_logfile(); my ($config_user, $config_group) = config_get_identity(); my $anon_dir = File::Spec->rel2abs($tmpdir); my $sub_dir = File::Spec->rel2abs("$tmpdir/foo"); mkpath($sub_dir); my $fh; my $ftpaccess_file = File::Spec->rel2abs("$tmpdir/foo/.ftpaccess"); if (open($fh, "> $ftpaccess_file")) { print $fh < $sub_dir/$test_file")) { close($fh); } else { die("Can't write test file $sub_dir/$test_file: $!"); } } # Make sure that, if we're running as root, that the home directory has # permissions/privs set for the account we create if ($< == 0) { unless (chmod(0755, $anon_dir, $sub_dir)) { die("Can't set perms on $anon_dir, $sub_dir to 0755: $!"); } } auth_user_write($auth_user_file, $config_user, 'foo', 500, 500, '/tmp', '/bin/bash'); auth_group_write($auth_group_file, $config_group, 500, $config_user); my $config = { PidFile => $pid_file, ScoreboardFile => $scoreboard_file, SystemLog => $log_file, AuthUserFile => $auth_user_file, AuthGroupFile => $auth_group_file, AuthOrder => 'mod_auth_file.c', AllowOverride => 'on', Anonymous => { $anon_dir => { User => $config_user, Group => $config_group, UserAlias => "anonymous $config_user", RequireValidShell => 'off', }, }, IfModules => { 'mod_delay.c' => { DelayEngine => 'off', }, }, }; my $port; ($port, $config_user, $config_group) = config_write($config_file, $config); # Open pipes, for use between the parent and child processes. Specifically, # the child will indicate when it's done with its test by writing a message # to the parent. my ($rfh, $wfh); unless (pipe($rfh, $wfh)) { die("Can't open pipe: $!"); } my $ex; # Fork child $self->handle_sigchld(); defined(my $pid = fork()) or die("Can't fork: $!"); if ($pid) { eval { my $client = ProFTPD::TestSuite::FTP->new('127.0.0.1', $port); $client->login('anonymous', 'ftp@nospam.org'); my $conn = $client->nlst_raw('foo'); unless ($conn) { die("Failed to NLST: " . $client->response_code() . " " . $client->response_msg()); } my $buf; my $tmp; while ($conn->read($tmp, 8192, 30)) { $buf .= $tmp; } $conn->close(); # We have to be careful of the fact that readdir returns directory # entries in an unordered fashion. my $res = {}; my $lines = [split(/\n/, $buf)]; foreach my $line (@$lines) { $res->{$line} = 1; } my $expected = { 'foo/4.txt' => 1, }; my $ok = 1; my $mismatch; foreach my $name (keys(%$res)) { unless (defined($expected->{$name})) { $mismatch = $name; $ok = 0; last; } } unless ($ok) { die("Unexpected name '$mismatch' appeared in NLST data") } $client->quit(); }; if ($@) { $ex = $@; } $wfh->print("done\n"); $wfh->flush(); } else { eval { server_wait($config_file, $rfh) }; if ($@) { warn($@); exit 1; } exit 0; } # Stop server server_stop($pid_file); $self->assert_child_ok($pid); if ($ex) { test_append_logfile($log_file, $ex); unlink($log_file); die($ex); } unlink($log_file); } sub hidefiles_bug3130 { my $self = shift; my $tmpdir = $self->{tmpdir}; my $config_file = "$tmpdir/config.conf"; my $pid_file = File::Spec->rel2abs("$tmpdir/config.pid"); my $scoreboard_file = File::Spec->rel2abs("$tmpdir/config.scoreboard"); my $log_file = test_get_logfile(); my $auth_user_file = File::Spec->rel2abs("$tmpdir/config.passwd"); my $auth_group_file = File::Spec->rel2abs("$tmpdir/config.group"); my $user = 'proftpd'; my $passwd = 'test'; my $group = 'ftpd'; my $home_dir = File::Spec->rel2abs($tmpdir); my $uid = 500; my $gid = 500; my $sub_dir = File::Spec->rel2abs("$tmpdir/foo"); mkpath($sub_dir); my $test_file = "X12foo"; my $fh; if (open($fh, "> $sub_dir/$test_file")) { close($fh); } else { die("Can't write test file $sub_dir/$test_file: $!"); } if (open($fh, "> $sub_dir/.in.$test_file")) { close($fh); } else { die("Can't write test file $sub_dir/.in.$test_file: $!"); } auth_user_write($auth_user_file, $user, $passwd, $uid, $gid, $home_dir, '/bin/bash'); auth_group_write($auth_group_file, $group, $gid, $user); my $config = { PidFile => $pid_file, ScoreboardFile => $scoreboard_file, SystemLog => $log_file, AuthUserFile => $auth_user_file, AuthGroupFile => $auth_group_file, AuthOrder => 'mod_auth_file.c', IfModules => { 'mod_delay.c' => { DelayEngine => 'off', }, }, Directory => { "$home_dir/*" => { HideFiles => '^\.in\.', }, }, }; my ($port, $config_user, $config_group) = config_write($config_file, $config); # Open pipes, for use between the parent and child processes. Specifically, # the child will indicate when it's done with its test by writing a message # to the parent. my ($rfh, $wfh); unless (pipe($rfh, $wfh)) { die("Can't open pipe: $!"); } my $ex; # Fork child $self->handle_sigchld(); defined(my $pid = fork()) or die("Can't fork: $!"); if ($pid) { eval { my $client = ProFTPD::TestSuite::FTP->new('127.0.0.1', $port); $client->login($user, $passwd); # Bug#3130 was happening because of a bad pointer assignment in # src/dirtree.c:dir_hide_file(). # # This test should succeed, and NOT show the .in. file. my $conn = $client->nlst_raw("foo/*"); unless ($conn) { die("Failed to NLST: " . $client->response_code() . " " . $client->response_msg()); } my $buf; $conn->read($buf, 8192, 30); $conn->close(); # We have to be careful of the fact that readdir returns directory # entries in an unordered fashion. my $res = {}; my $lines = [split(/\n/, $buf)]; foreach my $line (@$lines) { $res->{$line} = 1; } my $expected = { "foo/./$test_file" => 1, 'foo/../config.conf' => 1, 'foo/../config.group' => 1, 'foo/../config.passwd' => 1, 'foo/../config.pid' => 1, 'foo/../config.scoreboard' => 1, 'foo/../foo' => 1, "foo/$test_file" => 1, }; my $ok = 1; my $mismatch; foreach my $name (keys(%$res)) { unless (defined($expected->{$name})) { $mismatch = $name; $ok = 0; last; } } unless ($ok) { die("Unexpected name '$mismatch' appeared in NLST data") } $client->quit(); }; if ($@) { $ex = $@; } $wfh->print("done\n"); $wfh->flush(); } else { eval { server_wait($config_file, $rfh) }; if ($@) { warn($@); exit 1; } exit 0; } # Stop server server_stop($pid_file); $self->assert_child_ok($pid); if ($ex) { test_append_logfile($log_file, $ex); unlink($log_file); die($ex); } unlink($log_file); } sub hidefiles_per_user_ok { my $self = shift; my $tmpdir = $self->{tmpdir}; my $config_file = "$tmpdir/config.conf"; my $pid_file = File::Spec->rel2abs("$tmpdir/config.pid"); my $scoreboard_file = File::Spec->rel2abs("$tmpdir/config.scoreboard"); my $log_file = test_get_logfile(); my $auth_user_file = File::Spec->rel2abs("$tmpdir/config.passwd"); my $auth_group_file = File::Spec->rel2abs("$tmpdir/config.group"); my $user = 'proftpd'; my $passwd = 'test'; my $group = 'ftpd'; my $home_dir = File::Spec->rel2abs($tmpdir); my $uid = 500; my $gid = 500; my $sub_dir = File::Spec->rel2abs("$tmpdir/foo"); mkpath($sub_dir); my $test_file = "X12foo"; if (open(my $fh, "> $sub_dir/$test_file")) { close($fh); } else { die("Can't write test file $sub_dir/$test_file: $!"); } auth_user_write($auth_user_file, $user, $passwd, $uid, $gid, $home_dir, '/bin/bash'); auth_group_write($auth_group_file, $group, $gid, $user); my $config = { PidFile => $pid_file, ScoreboardFile => $scoreboard_file, SystemLog => $log_file, AuthUserFile => $auth_user_file, AuthGroupFile => $auth_group_file, AuthOrder => 'mod_auth_file.c', IfModules => { 'mod_delay.c' => { DelayEngine => 'off', }, }, Directory => { '/*' => { HideFiles => ".* user $user", }, }, }; my ($port, $config_user, $config_group) = config_write($config_file, $config); # Open pipes, for use between the parent and child processes. Specifically, # the child will indicate when it's done with its test by writing a message # to the parent. my ($rfh, $wfh); unless (pipe($rfh, $wfh)) { die("Can't open pipe: $!"); } my $ex; # Fork child $self->handle_sigchld(); defined(my $pid = fork()) or die("Can't fork: $!"); if ($pid) { eval { my $client = ProFTPD::TestSuite::FTP->new('127.0.0.1', $port); $client->login($user, $passwd); my $conn = $client->nlst_raw("foo/*"); unless ($conn) { die("Failed to NLST: " . $client->response_code() . " " . $client->response_msg()); } my $buf; $conn->read($buf, 8192, 30); $conn->close(); $client->quit(); # We have to be careful of the fact that readdir returns directory # entries in an unordered fashion. my $res = {}; my $lines = [split(/\n/, $buf)]; foreach my $line (@$lines) { $res->{$line} = 1; } my $expected = { }; my $ok = 1; my $mismatch; my $seen = []; foreach my $name (keys(%$res)) { push(@$seen, $name); unless (defined($expected->{$name})) { $mismatch = $name; $ok = 0; last; } } unless ($ok) { die("Unexpected name '$mismatch' appeared in NLST data") } # Now remove from $expected all of the paths we saw; if there are # any entries remaining in $expected, something went wrong. foreach my $name (@$seen) { delete($expected->{$name}); } my $remaining = scalar(keys(%$expected)); $self->assert(0 == $remaining, test_msg("Expected 0, got $remaining")); }; if ($@) { $ex = $@; } $wfh->print("done\n"); $wfh->flush(); } else { eval { server_wait($config_file, $rfh) }; if ($@) { warn($@); exit 1; } exit 0; } # Stop server server_stop($pid_file); $self->assert_child_ok($pid); if ($ex) { test_append_logfile($log_file, $ex); unlink($log_file); die($ex); } unlink($log_file); } sub hidefiles_per_not_user_ok { my $self = shift; my $tmpdir = $self->{tmpdir}; my $config_file = "$tmpdir/config.conf"; my $pid_file = File::Spec->rel2abs("$tmpdir/config.pid"); my $scoreboard_file = File::Spec->rel2abs("$tmpdir/config.scoreboard"); my $log_file = test_get_logfile(); my $auth_user_file = File::Spec->rel2abs("$tmpdir/config.passwd"); my $auth_group_file = File::Spec->rel2abs("$tmpdir/config.group"); my $user = 'proftpd'; my $passwd = 'test'; my $group = 'ftpd'; my $home_dir = File::Spec->rel2abs($tmpdir); my $uid = 500; my $gid = 500; my $sub_dir = File::Spec->rel2abs("$tmpdir/foo"); mkpath($sub_dir); my $test_file = "X12foo"; if (open(my $fh, "> $sub_dir/$test_file")) { close($fh); } else { die("Can't write test file $sub_dir/$test_file: $!"); } auth_user_write($auth_user_file, $user, $passwd, $uid, $gid, $home_dir, '/bin/bash'); auth_group_write($auth_group_file, $group, $gid, $user); my $config = { PidFile => $pid_file, ScoreboardFile => $scoreboard_file, SystemLog => $log_file, TraceLog => $log_file, Trace => 'directory:10', AuthUserFile => $auth_user_file, AuthGroupFile => $auth_group_file, AuthOrder => 'mod_auth_file.c', IfModules => { 'mod_delay.c' => { DelayEngine => 'off', }, }, Directory => { '/*' => { HideFiles => ".* user !$user", }, }, }; my ($port, $config_user, $config_group) = config_write($config_file, $config); # Open pipes, for use between the parent and child processes. Specifically, # the child will indicate when it's done with its test by writing a message # to the parent. my ($rfh, $wfh); unless (pipe($rfh, $wfh)) { die("Can't open pipe: $!"); } my $ex; # Fork child $self->handle_sigchld(); defined(my $pid = fork()) or die("Can't fork: $!"); if ($pid) { eval { my $client = ProFTPD::TestSuite::FTP->new('127.0.0.1', $port); $client->login($user, $passwd); my $conn = $client->nlst_raw("foo/*"); unless ($conn) { die("Failed to NLST: " . $client->response_code() . " " . $client->response_msg()); } my $buf; my $tmp; while ($conn->read($tmp, 8192, 30)) { $buf .= $tmp; } $conn->close(); $client->quit(); # We have to be careful of the fact that readdir returns directory # entries in an unordered fashion. my $res = {}; my $lines = [split(/\n/, $buf)]; foreach my $line (@$lines) { $res->{$line} = 1; } my $expected = { "foo/$test_file" => 1, }; my $ok = 1; my $mismatch; my $seen = []; foreach my $name (keys(%$res)) { push(@$seen, $name); unless (defined($expected->{$name})) { $mismatch = $name; $ok = 0; last; } } unless ($ok) { die("Unexpected name '$mismatch' appeared in NLST data") } # Now remove from $expected all of the paths we saw; if there are # any entries remaining in $expected, something went wrong. foreach my $name (@$seen) { delete($expected->{$name}); } my $remaining = scalar(keys(%$expected)); $self->assert(0 == $remaining, test_msg("Expected 0, got $remaining")); }; if ($@) { $ex = $@; } $wfh->print("done\n"); $wfh->flush(); } else { eval { server_wait($config_file, $rfh) }; if ($@) { warn($@); exit 1; } exit 0; } # Stop server server_stop($pid_file); $self->assert_child_ok($pid); if ($ex) { test_append_logfile($log_file, $ex); unlink($log_file); die($ex); } unlink($log_file); } sub hidefiles_anon_list_rel_path_bug3226 { my $self = shift; my $tmpdir = $self->{tmpdir}; my $config_file = "$tmpdir/config.conf"; my $pid_file = File::Spec->rel2abs("$tmpdir/config.pid"); my $scoreboard_file = File::Spec->rel2abs("$tmpdir/config.scoreboard"); my $log_file = test_get_logfile(); my $auth_user_file = File::Spec->rel2abs("$tmpdir/config.passwd"); my $auth_group_file = File::Spec->rel2abs("$tmpdir/config.group"); my $user = 'proftpd'; my $passwd = 'test'; my $group = 'ftpd'; my $home_dir = File::Spec->rel2abs($tmpdir); my $uid = 500; my $gid = 500; # Make sure that, if we're running as root, that the home directory has # permissions/privs set for the account we create if ($< == 0) { unless (chmod(0755, $home_dir)) { die("Can't set perms on $home_dir to 0755: $!"); } unless (chown($uid, $gid, $home_dir)) { die("Can't set owner of $home_dir to $uid/$gid: $!"); } } my $pub_dir = File::Spec->rel2abs("$tmpdir/pub"); mkpath($pub_dir); my $sub_dir1 = File::Spec->rel2abs("$pub_dir/foo"); mkpath($sub_dir1); my $sub_dir2 = File::Spec->rel2abs("$pub_dir/bar"); mkpath($sub_dir2); my $test_file = "X12foo"; if (open(my $fh, "> $sub_dir2/$test_file")) { close($fh); } else { die("Can't write test file $sub_dir2/$test_file: $!"); } auth_user_write($auth_user_file, $user, $passwd, $uid, $gid, $home_dir, '/bin/bash'); auth_group_write($auth_group_file, $group, $gid, $user); my $config = { PidFile => $pid_file, ScoreboardFile => $scoreboard_file, SystemLog => $log_file, DebugLevel => 10, TraceLog => $log_file, Trace => 'DEFAULT:10', AuthUserFile => $auth_user_file, AuthGroupFile => $auth_group_file, AuthOrder => 'mod_auth_file.c', IfModules => { 'mod_delay.c' => { DelayEngine => 'off', }, }, Anonymous => { $home_dir => [ "User $user", "Group $group", "UserAlias anonymous $user", 'RequireValidShell off', ' ', ' IgnoreHidden on', ' ', ' ', ' HideFiles !foo', ' ', ], }, }; my ($port, $config_user, $config_group) = config_write($config_file, $config); # Open pipes, for use between the parent and child processes. Specifically, # the child will indicate when it's done with its test by writing a message # to the parent. my ($rfh, $wfh); unless (pipe($rfh, $wfh)) { die("Can't open pipe: $!"); } my $ex; # Fork child $self->handle_sigchld(); defined(my $pid = fork()) or die("Can't fork: $!"); if ($pid) { eval { my $client = ProFTPD::TestSuite::FTP->new('127.0.0.1', $port); $client->login('anonymous', 'nospam'); $client->cwd('pub'); my $conn = $client->list_raw(); unless ($conn) { die("Failed to LIST: " . $client->response_code() . " " . $client->response_msg()); } my $buf; $conn->read($buf, 8192, 30); $conn->close(); $client->quit(); # We have to be careful of the fact that readdir returns directory # entries in an unordered fashion. my $res = {}; my $lines = [split(/\n/, $buf)]; foreach my $line (@$lines) { if ($line =~ /^\S+\s+\d+\s+\S+\s+\S+\s+.*?\s+(\S+)$/) { $res->{$1} = 1; } } my $expected = { 'foo' => 1, }; my $ok = 1; my $mismatch; my $seen = []; foreach my $name (keys(%$res)) { push(@$seen, $name); unless (defined($expected->{$name})) { $mismatch = $name; $ok = 0; last; } } unless ($ok) { die("Unexpected name '$mismatch' appeared in NLST data") } # Now remove from $expected all of the paths we saw; if there are # any entries remaining in $expected, something went wrong. foreach my $name (@$seen) { delete($expected->{$name}); } my $remaining = scalar(keys(%$expected)); $self->assert(0 == $remaining, test_msg("Expected 0, got $remaining")); }; if ($@) { $ex = $@; } $wfh->print("done\n"); $wfh->flush(); } else { eval { server_wait($config_file, $rfh) }; if ($@) { warn($@); exit 1; } exit 0; } # Stop server server_stop($pid_file); $self->assert_child_ok($pid); if ($ex) { test_append_logfile($log_file, $ex); unlink($log_file); die($ex); } unlink($log_file); } sub hidefiles_anon_nlst_rel_path_bug3226 { my $self = shift; my $tmpdir = $self->{tmpdir}; my $config_file = "$tmpdir/config.conf"; my $pid_file = File::Spec->rel2abs("$tmpdir/config.pid"); my $scoreboard_file = File::Spec->rel2abs("$tmpdir/config.scoreboard"); my $log_file = test_get_logfile(); my $auth_user_file = File::Spec->rel2abs("$tmpdir/config.passwd"); my $auth_group_file = File::Spec->rel2abs("$tmpdir/config.group"); my $user = 'proftpd'; my $passwd = 'test'; my $group = 'ftpd'; my $home_dir = File::Spec->rel2abs($tmpdir); my $uid = 500; my $gid = 500; # Make sure that, if we're running as root, that the home directory has # permissions/privs set for the account we create if ($< == 0) { unless (chmod(0755, $home_dir)) { die("Can't set perms on $home_dir to 0755: $!"); } unless (chown($uid, $gid, $home_dir)) { die("Can't set owner of $home_dir to $uid/$gid: $!"); } } my $pub_dir = File::Spec->rel2abs("$tmpdir/pub"); mkpath($pub_dir); my $sub_dir1 = File::Spec->rel2abs("$pub_dir/foo"); mkpath($sub_dir1); my $sub_dir2 = File::Spec->rel2abs("$pub_dir/bar"); mkpath($sub_dir2); my $test_file = "X12foo"; if (open(my $fh, "> $sub_dir2/$test_file")) { close($fh); } else { die("Can't write test file $sub_dir2/$test_file: $!"); } auth_user_write($auth_user_file, $user, $passwd, $uid, $gid, $home_dir, '/bin/bash'); auth_group_write($auth_group_file, $group, $gid, $user); my $config = { PidFile => $pid_file, ScoreboardFile => $scoreboard_file, SystemLog => $log_file, DebugLevel => 10, TraceLog => $log_file, Trace => 'DEFAULT:10', AuthUserFile => $auth_user_file, AuthGroupFile => $auth_group_file, AuthOrder => 'mod_auth_file.c', IfModules => { 'mod_delay.c' => { DelayEngine => 'off', }, }, Anonymous => { $home_dir => [ "User $user", "Group $group", "UserAlias anonymous $user", 'RequireValidShell off', ' ', ' IgnoreHidden on', ' ', ' ', ' HideFiles !foo', ' ', ], }, }; my ($port, $config_user, $config_group) = config_write($config_file, $config); # Open pipes, for use between the parent and child processes. Specifically, # the child will indicate when it's done with its test by writing a message # to the parent. my ($rfh, $wfh); unless (pipe($rfh, $wfh)) { die("Can't open pipe: $!"); } my $ex; # Fork child $self->handle_sigchld(); defined(my $pid = fork()) or die("Can't fork: $!"); if ($pid) { eval { my $client = ProFTPD::TestSuite::FTP->new('127.0.0.1', $port); $client->login('anonymous', 'nospam'); $client->cwd('pub'); my $conn = $client->nlst_raw(); unless ($conn) { die("Failed to NLST: " . $client->response_code() . " " . $client->response_msg()); } my $buf; $conn->read($buf, 8192, 30); $conn->close(); $client->quit(); # We have to be careful of the fact that readdir returns directory # entries in an unordered fashion. my $res = {}; my $lines = [split(/\n/, $buf)]; foreach my $line (@$lines) { $res->{$line} = 1; } my $expected = { 'foo' => 1, }; my $ok = 1; my $mismatch; my $seen = []; foreach my $name (keys(%$res)) { push(@$seen, $name); unless (defined($expected->{$name})) { $mismatch = $name; $ok = 0; last; } } unless ($ok) { die("Unexpected name '$mismatch' appeared in NLST data") } # Now remove from $expected all of the paths we saw; if there are # any entries remaining in $expected, something went wrong. foreach my $name (@$seen) { delete($expected->{$name}); } my $remaining = scalar(keys(%$expected)); $self->assert(0 == $remaining, test_msg("Expected 0, got $remaining")); }; if ($@) { $ex = $@; } $wfh->print("done\n"); $wfh->flush(); } else { eval { server_wait($config_file, $rfh) }; if ($@) { warn($@); exit 1; } exit 0; } # Stop server server_stop($pid_file); $self->assert_child_ok($pid); if ($ex) { test_append_logfile($log_file, $ex); unlink($log_file); die($ex); } unlink($log_file); } sub hidefiles_anon_list_abs_path_bug3226 { my $self = shift; my $tmpdir = $self->{tmpdir}; my $config_file = "$tmpdir/config.conf"; my $pid_file = File::Spec->rel2abs("$tmpdir/config.pid"); my $scoreboard_file = File::Spec->rel2abs("$tmpdir/config.scoreboard"); my $log_file = test_get_logfile(); my $auth_user_file = File::Spec->rel2abs("$tmpdir/config.passwd"); my $auth_group_file = File::Spec->rel2abs("$tmpdir/config.group"); my $user = 'proftpd'; my $passwd = 'test'; my $group = 'ftpd'; my $home_dir = File::Spec->rel2abs($tmpdir); my $uid = 500; my $gid = 500; # Make sure that, if we're running as root, that the home directory has # permissions/privs set for the account we create if ($< == 0) { unless (chmod(0755, $home_dir)) { die("Can't set perms on $home_dir to 0755: $!"); } unless (chown($uid, $gid, $home_dir)) { die("Can't set owner of $home_dir to $uid/$gid: $!"); } } my $pub_dir = File::Spec->rel2abs("$tmpdir/pub"); mkpath($pub_dir); my $sub_dir1 = File::Spec->rel2abs("$pub_dir/foo"); mkpath($sub_dir1); my $sub_dir2 = File::Spec->rel2abs("$pub_dir/bar"); mkpath($sub_dir2); my $test_file = "X12foo"; if (open(my $fh, "> $sub_dir2/$test_file")) { close($fh); } else { die("Can't write test file $sub_dir2/$test_file: $!"); } auth_user_write($auth_user_file, $user, $passwd, $uid, $gid, $home_dir, '/bin/bash'); auth_group_write($auth_group_file, $group, $gid, $user); my $config = { PidFile => $pid_file, ScoreboardFile => $scoreboard_file, SystemLog => $log_file, DebugLevel => 10, TraceLog => $log_file, Trace => 'DEFAULT:10', AuthUserFile => $auth_user_file, AuthGroupFile => $auth_group_file, AuthOrder => 'mod_auth_file.c', IfModules => { 'mod_delay.c' => { DelayEngine => 'off', }, }, Anonymous => { $home_dir => [ "User $user", "Group $group", "UserAlias anonymous $user", 'RequireValidShell off', ' ', ' IgnoreHidden on', ' ', " ", ' HideFiles !foo', ' ', ], }, }; my ($port, $config_user, $config_group) = config_write($config_file, $config); # Open pipes, for use between the parent and child processes. Specifically, # the child will indicate when it's done with its test by writing a message # to the parent. my ($rfh, $wfh); unless (pipe($rfh, $wfh)) { die("Can't open pipe: $!"); } my $ex; # Fork child $self->handle_sigchld(); defined(my $pid = fork()) or die("Can't fork: $!"); if ($pid) { eval { my $client = ProFTPD::TestSuite::FTP->new('127.0.0.1', $port); $client->login('anonymous', 'nospam'); $client->cwd('pub'); my $conn = $client->list_raw(); unless ($conn) { die("Failed to LIST: " . $client->response_code() . " " . $client->response_msg()); } my $buf; $conn->read($buf, 8192, 30); $conn->close(); $client->quit(); # We have to be careful of the fact that readdir returns directory # entries in an unordered fashion. my $res = {}; my $lines = [split(/\n/, $buf)]; foreach my $line (@$lines) { if ($line =~ /^\S+\s+\d+\s+\S+\s+\S+\s+.*?\s+(\S+)$/) { $res->{$1} = 1; } } my $expected = { 'foo' => 1, }; my $ok = 1; my $mismatch; my $seen = []; foreach my $name (keys(%$res)) { push(@$seen, $name); unless (defined($expected->{$name})) { $mismatch = $name; $ok = 0; last; } } unless ($ok) { die("Unexpected name '$mismatch' appeared in NLST data") } # Now remove from $expected all of the paths we saw; if there are # any entries remaining in $expected, something went wrong. foreach my $name (@$seen) { delete($expected->{$name}); } my $remaining = scalar(keys(%$expected)); $self->assert(0 == $remaining, test_msg("Expected 0, got $remaining")); }; if ($@) { $ex = $@; } $wfh->print("done\n"); $wfh->flush(); } else { eval { server_wait($config_file, $rfh) }; if ($@) { warn($@); exit 1; } exit 0; } # Stop server server_stop($pid_file); $self->assert_child_ok($pid); if ($ex) { test_append_logfile($log_file, $ex); unlink($log_file); die($ex); } unlink($log_file); } sub hidefiles_anon_nlst_abs_path_bug3226 { my $self = shift; my $tmpdir = $self->{tmpdir}; my $config_file = "$tmpdir/config.conf"; my $pid_file = File::Spec->rel2abs("$tmpdir/config.pid"); my $scoreboard_file = File::Spec->rel2abs("$tmpdir/config.scoreboard"); my $log_file = test_get_logfile(); my $auth_user_file = File::Spec->rel2abs("$tmpdir/config.passwd"); my $auth_group_file = File::Spec->rel2abs("$tmpdir/config.group"); my $user = 'proftpd'; my $passwd = 'test'; my $group = 'ftpd'; my $home_dir = File::Spec->rel2abs($tmpdir); my $uid = 500; my $gid = 500; # Make sure that, if we're running as root, that the home directory has # permissions/privs set for the account we create if ($< == 0) { unless (chmod(0755, $home_dir)) { die("Can't set perms on $home_dir to 0755: $!"); } unless (chown($uid, $gid, $home_dir)) { die("Can't set owner of $home_dir to $uid/$gid: $!"); } } my $pub_dir = File::Spec->rel2abs("$tmpdir/pub"); mkpath($pub_dir); my $sub_dir1 = File::Spec->rel2abs("$pub_dir/foo"); mkpath($sub_dir1); my $sub_dir2 = File::Spec->rel2abs("$pub_dir/bar"); mkpath($sub_dir2); my $test_file = "X12foo"; if (open(my $fh, "> $sub_dir2/$test_file")) { close($fh); } else { die("Can't write test file $sub_dir2/$test_file: $!"); } auth_user_write($auth_user_file, $user, $passwd, $uid, $gid, $home_dir, '/bin/bash'); auth_group_write($auth_group_file, $group, $gid, $user); my $config = { PidFile => $pid_file, ScoreboardFile => $scoreboard_file, SystemLog => $log_file, DebugLevel => 10, TraceLog => $log_file, Trace => 'DEFAULT:10', AuthUserFile => $auth_user_file, AuthGroupFile => $auth_group_file, AuthOrder => 'mod_auth_file.c', IfModules => { 'mod_delay.c' => { DelayEngine => 'off', }, }, Anonymous => { $home_dir => [ "User $user", "Group $group", "UserAlias anonymous $user", 'RequireValidShell off', ' ', ' IgnoreHidden on', ' ', " ", ' HideFiles !foo', ' ', ], }, }; my ($port, $config_user, $config_group) = config_write($config_file, $config); # Open pipes, for use between the parent and child processes. Specifically, # the child will indicate when it's done with its test by writing a message # to the parent. my ($rfh, $wfh); unless (pipe($rfh, $wfh)) { die("Can't open pipe: $!"); } my $ex; # Fork child $self->handle_sigchld(); defined(my $pid = fork()) or die("Can't fork: $!"); if ($pid) { eval { my $client = ProFTPD::TestSuite::FTP->new('127.0.0.1', $port); $client->login('anonymous', 'nospam'); $client->cwd('pub'); my $conn = $client->nlst_raw(); unless ($conn) { die("Failed to NLST: " . $client->response_code() . " " . $client->response_msg()); } my $buf; $conn->read($buf, 8192, 30); $conn->close(); $client->quit(); # We have to be careful of the fact that readdir returns directory # entries in an unordered fashion. my $res = {}; my $lines = [split(/\n/, $buf)]; foreach my $line (@$lines) { $res->{$line} = 1; } my $expected = { 'foo' => 1, }; my $ok = 1; my $mismatch; my $seen = []; foreach my $name (keys(%$res)) { push(@$seen, $name); unless (defined($expected->{$name})) { $mismatch = $name; $ok = 0; last; } } unless ($ok) { die("Unexpected name '$mismatch' appeared in NLST data") } # Now remove from $expected all of the paths we saw; if there are # any entries remaining in $expected, something went wrong. foreach my $name (@$seen) { delete($expected->{$name}); } my $remaining = scalar(keys(%$expected)); $self->assert(0 == $remaining, test_msg("Expected 0, got $remaining")); }; if ($@) { $ex = $@; } $wfh->print("done\n"); $wfh->flush(); } else { eval { server_wait($config_file, $rfh) }; if ($@) { warn($@); exit 1; } exit 0; } # Stop server server_stop($pid_file); $self->assert_child_ok($pid); if ($ex) { test_append_logfile($log_file, $ex); unlink($log_file); die($ex); } unlink($log_file); } sub hidefiles_negated_bug3276 { my $self = shift; my $tmpdir = $self->{tmpdir}; my $config_file = "$tmpdir/config.conf"; my $pid_file = File::Spec->rel2abs("$tmpdir/config.pid"); my $scoreboard_file = File::Spec->rel2abs("$tmpdir/config.scoreboard"); my $auth_user_file = File::Spec->rel2abs("$tmpdir/config.passwd"); my $auth_group_file = File::Spec->rel2abs("$tmpdir/config.group"); my $log_file = test_get_logfile(); my $user = 'proftpd'; my $passwd = 'test'; my $group = 'ftpd'; my $home_dir = File::Spec->rel2abs($tmpdir); my $uid = 500; my $gid = 500; my $sub_dir = File::Spec->rel2abs("$home_dir/subdir"); mkpath($sub_dir); auth_user_write($auth_user_file, $user, $passwd, $uid, $gid, $home_dir, '/bin/bash'); auth_group_write($auth_group_file, $group, $gid, $user); # Make sure that, if we're running as root, that the home directory has # permissions/privs set for the account we create if ($< == 0) { unless (chmod(0755, $home_dir, $sub_dir)) { die("Can't set perms on $home_dir, $sub_dir to 0755: $!"); } unless (chown($uid, $gid, $home_dir, $sub_dir)) { die("Can't set owner of $home_dir, $sub_dir to $uid/$gid: $!"); } } my $test_files = [qw( perf perfcsv_data perftxt_data remedydev remedytest unix )]; foreach my $test_file (@$test_files) { if (open(my $fh, "> $sub_dir/$test_file")) { close($fh); } else { die("Can't write test file $sub_dir/$test_file: $!"); } } my $config = { PidFile => $pid_file, ScoreboardFile => $scoreboard_file, SystemLog => $log_file, AuthUserFile => $auth_user_file, AuthGroupFile => $auth_group_file, AuthOrder => 'mod_auth_file.c', IfModules => { 'mod_delay.c' => { DelayEngine => 'off', }, }, }; my ($port, $config_user, $config_group) = config_write($config_file, $config); if (open(my $fh, ">> $config_file")) { if ($^O eq 'darwin') { $sub_dir = ('/private' . $sub_dir); } print $fh < HideFiles !(remedydev|remedytest) HideNoAccess on IgnoreHidden on EOD unless (close($fh)) { die("Can't write $config_file: $!"); } } else { die("Can't open $config_file: $!"); } # Open pipes, for use between the parent and child processes. Specifically, # the child will indicate when it's done with its test by writing a message # to the parent. my ($rfh, $wfh); unless (pipe($rfh, $wfh)) { die("Can't open pipe: $!"); } my $ex; # Fork child $self->handle_sigchld(); defined(my $pid = fork()) or die("Can't fork: $!"); if ($pid) { eval { my $client = ProFTPD::TestSuite::FTP->new('127.0.0.1', $port); $client->login($user, $passwd); my $conn = $client->list_raw('subdir'); unless ($conn) { die("Failed to LIST: " . $client->response_code() . " " . $client->response_msg()); } my $buf; my $tmp; while ($conn->read($tmp, 8192, 25)) { $buf .= $tmp; } eval { $conn->close() }; # We have to be careful of the fact that readdir returns directory # entries in an unordered fashion. my $res = {}; my $lines = [split(/\n/, $buf)]; foreach my $line (@$lines) { if ($line =~ /^\S+\s+\d+\s+\S+\s+\S+\s+.*?\s+(\S+)$/) { $res->{$1} = 1; } } unless (scalar(keys(%$res)) > 0) { die("LIST returned no files unexpectedly"); } my $expected = { 'remedydev' => 1, 'remedytest' => 1, }; my $ok = 1; my $mismatch; foreach my $name (keys(%$res)) { unless (defined($expected->{$name})) { $mismatch = $name; $ok = 0; last; } } unless ($ok) { die("Unexpected name '$mismatch' appeared in LIST data") } $client->quit(); }; if ($@) { $ex = $@; } $wfh->print("done\n"); $wfh->flush(); } else { eval { server_wait($config_file, $rfh) }; if ($@) { warn($@); exit 1; } exit 0; } # Stop server server_stop($pid_file); $self->assert_child_ok($pid); if ($ex) { test_append_logfile($log_file, $ex); unlink($log_file); die($ex); } unlink($log_file); } sub hidefiles_negated_chroot_bug3276 { my $self = shift; my $tmpdir = $self->{tmpdir}; my $config_file = "$tmpdir/config.conf"; my $pid_file = File::Spec->rel2abs("$tmpdir/config.pid"); my $scoreboard_file = File::Spec->rel2abs("$tmpdir/config.scoreboard"); my $auth_user_file = File::Spec->rel2abs("$tmpdir/config.passwd"); my $auth_group_file = File::Spec->rel2abs("$tmpdir/config.group"); my $log_file = test_get_logfile(); my $user = 'proftpd'; my $passwd = 'test'; my $group = 'ftpd'; my $home_dir = File::Spec->rel2abs($tmpdir); my $uid = 500; my $gid = 500; auth_user_write($auth_user_file, $user, $passwd, $uid, $gid, $home_dir, '/bin/bash'); auth_group_write($auth_group_file, $group, $gid, $user); # Make sure that, if we're running as root, that the home directory has # permissions/privs set for the account we create if ($< == 0) { unless (chmod(0755, $home_dir)) { die("Can't set perms on $home_dir to 0755: $!"); } unless (chown($uid, $gid, $home_dir)) { die("Can't set owner of $home_dir to $uid/$gid: $!"); } } my $test_files = [qw( perf perfcsv_data perftxt_data remedydev remedytest unix )]; foreach my $test_file (@$test_files) { if (open(my $fh, "> $home_dir/$test_file")) { close($fh); } else { die("Can't write test file $home_dir/$test_file: $!"); } } my $config = { PidFile => $pid_file, ScoreboardFile => $scoreboard_file, SystemLog => $log_file, AuthUserFile => $auth_user_file, AuthGroupFile => $auth_group_file, AuthOrder => 'mod_auth_file.c', DefaultRoot => '~', IfModules => { 'mod_delay.c' => { DelayEngine => 'off', }, }, }; my ($port, $config_user, $config_group) = config_write($config_file, $config); if (open(my $fh, ">> $config_file")) { print $fh < HideFiles !(^\$|remedydev|remedytest) HideNoAccess on IgnoreHidden on EOD unless (close($fh)) { die("Can't write $config_file: $!"); } } else { die("Can't open $config_file: $!"); } # Open pipes, for use between the parent and child processes. Specifically, # the child will indicate when it's done with its test by writing a message # to the parent. my ($rfh, $wfh); unless (pipe($rfh, $wfh)) { die("Can't open pipe: $!"); } my $ex; # Fork child $self->handle_sigchld(); defined(my $pid = fork()) or die("Can't fork: $!"); if ($pid) { eval { my $client = ProFTPD::TestSuite::FTP->new('127.0.0.1', $port); $client->login($user, $passwd); my $conn = $client->list_raw(); unless ($conn) { die("Failed to LIST: " . $client->response_code() . " " . $client->response_msg()); } my $buf; my $tmp; while ($conn->read($tmp, 8192, 30)) { $buf .= $tmp; } $conn->close(); # We have to be careful of the fact that readdir returns directory # entries in an unordered fashion. my $res = {}; my $lines = [split(/\n/, $buf)]; foreach my $line (@$lines) { if ($line =~ /^\S+\s+\d+\s+\S+\s+\S+\s+.*?\s+(\S+)$/) { $res->{$1} = 1; } } unless (scalar(keys(%$res)) > 0) { die("LIST returned no files unexpectedly"); } my $expected = { 'remedydev' => 1, 'remedytest' => 1, }; my $ok = 1; my $mismatch; foreach my $name (keys(%$res)) { unless (defined($expected->{$name})) { $mismatch = $name; $ok = 0; last; } } unless ($ok) { die("Unexpected name '$mismatch' appeared in LIST data") } $client->quit(); }; if ($@) { $ex = $@; } $wfh->print("done\n"); $wfh->flush(); } else { eval { server_wait($config_file, $rfh) }; if ($@) { warn($@); exit 1; } exit 0; } # Stop server server_stop($pid_file); $self->assert_child_ok($pid); if ($ex) { test_append_logfile($log_file, $ex); unlink($log_file); die($ex); } unlink($log_file); } sub hidefiles_negated_chroot_subdirs_visible_bug3276 { my $self = shift; my $tmpdir = $self->{tmpdir}; my $config_file = "$tmpdir/config.conf"; my $pid_file = File::Spec->rel2abs("$tmpdir/config.pid"); my $scoreboard_file = File::Spec->rel2abs("$tmpdir/config.scoreboard"); my $auth_user_file = File::Spec->rel2abs("$tmpdir/config.passwd"); my $auth_group_file = File::Spec->rel2abs("$tmpdir/config.group"); my $log_file = test_get_logfile(); my $user = 'proftpd'; my $passwd = 'test'; my $group = 'ftpd'; my $home_dir = File::Spec->rel2abs($tmpdir); my $uid = 500; my $gid = 500; auth_user_write($auth_user_file, $user, $passwd, $uid, $gid, $home_dir, '/bin/bash'); auth_group_write($auth_group_file, $group, $gid, $user); # Make sure that, if we're running as root, that the home directory has # permissions/privs set for the account we create if ($< == 0) { unless (chmod(0755, $home_dir)) { die("Can't set perms on $home_dir to 0755: $!"); } unless (chown($uid, $gid, $home_dir)) { die("Can't set owner of $home_dir to $uid/$gid: $!"); } } my $test_files = [qw( perf perfcsv_data perftxt_data unix )]; foreach my $test_file (@$test_files) { if (open(my $fh, "> $home_dir/$test_file")) { close($fh); } else { die("Can't write test file $home_dir/$test_file: $!"); } } my $test_dirs = [qw( remedydev remedydev/foo remedytest remedytest/bar )]; foreach my $test_dir (@$test_dirs) { mkpath("$home_dir/$test_dir"); } my $config = { PidFile => $pid_file, ScoreboardFile => $scoreboard_file, SystemLog => $log_file, AuthUserFile => $auth_user_file, AuthGroupFile => $auth_group_file, AuthOrder => 'mod_auth_file.c', DefaultRoot => '~', IfModules => { 'mod_delay.c' => { DelayEngine => 'off', }, }, }; my ($port, $config_user, $config_group) = config_write($config_file, $config); if (open(my $fh, ">> $config_file")) { print $fh < HideFiles !(^\$|remedydev|remedytest) HideNoAccess on IgnoreHidden on HideFiles none HideFiles none EOD unless (close($fh)) { die("Can't write $config_file: $!"); } } else { die("Can't open $config_file: $!"); } # Open pipes, for use between the parent and child processes. Specifically, # the child will indicate when it's done with its test by writing a message # to the parent. my ($rfh, $wfh); unless (pipe($rfh, $wfh)) { die("Can't open pipe: $!"); } my $ex; # Fork child $self->handle_sigchld(); defined(my $pid = fork()) or die("Can't fork: $!"); if ($pid) { eval { my $client = ProFTPD::TestSuite::FTP->new('127.0.0.1', $port); $client->login($user, $passwd); my $conn = $client->list_raw(); unless ($conn) { die("Failed to LIST: " . $client->response_code() . " " . $client->response_msg()); } my $buf; my $tmp; while ($conn->read($tmp, 8192, 30)) { $buf .= $tmp; } $conn->close(); # We have to be careful of the fact that readdir returns directory # entries in an unordered fashion. my $res = {}; my $lines = [split(/\n/, $buf)]; foreach my $line (@$lines) { if ($line =~ /^\S+\s+\d+\s+\S+\s+\S+\s+.*?\s+(\S+)$/) { $res->{$1} = 1; } } unless (scalar(keys(%$res)) > 0) { die("LIST returned no files unexpectedly"); } my $expected = { 'remedydev' => 1, 'remedytest' => 1, }; my $ok = 1; my $mismatch; foreach my $name (keys(%$res)) { unless (defined($expected->{$name})) { $mismatch = $name; $ok = 0; last; } } unless ($ok) { die("Unexpected name '$mismatch' appeared in LIST data") } $client->cwd("remedydev"); $conn = $client->list_raw(); unless ($conn) { die("Failed to LIST: " . $client->response_code() . " " . $client->response_msg()); } $tmp = $buf = ''; while ($conn->read($tmp, 8192, 30)) { $buf .= $tmp; } $conn->close(); # We have to be careful of the fact that readdir returns directory # entries in an unordered fashion. $res = {}; $lines = [split(/\n/, $buf)]; foreach my $line (@$lines) { if ($line =~ /^\S+\s+\d+\s+\S+\s+\S+\s+.*?\s+(\S+)$/) { $res->{$1} = 1; } } unless (scalar(keys(%$res)) > 0) { die("LIST returned no files unexpectedly"); } $expected = { 'foo' => 1, }; $ok = 1; $mismatch = ''; foreach my $name (keys(%$res)) { unless (defined($expected->{$name})) { $mismatch = $name; $ok = 0; last; } } unless ($ok) { die("Unexpected name '$mismatch' appeared in LIST data") } $client->quit(); }; if ($@) { $ex = $@; } $wfh->print("done\n"); $wfh->flush(); } else { eval { server_wait($config_file, $rfh) }; if ($@) { warn($@); exit 1; } exit 0; } # Stop server server_stop($pid_file); $self->assert_child_ok($pid); if ($ex) { test_append_logfile($log_file, $ex); unlink($log_file); die($ex); } unlink($log_file); } sub hidefiles_none_per_user_bug3397 { my $self = shift; my $tmpdir = $self->{tmpdir}; my $config_file = "$tmpdir/config.conf"; my $pid_file = File::Spec->rel2abs("$tmpdir/config.pid"); my $scoreboard_file = File::Spec->rel2abs("$tmpdir/config.scoreboard"); my $log_file = test_get_logfile(); my $auth_user_file = File::Spec->rel2abs("$tmpdir/config.passwd"); my $auth_group_file = File::Spec->rel2abs("$tmpdir/config.group"); my $user = 'proftpd'; my $passwd = 'test'; my $group = 'ftpd'; my $home_dir = File::Spec->rel2abs($tmpdir); my $uid = 500; my $gid = 500; my $sub_dir = File::Spec->rel2abs("$tmpdir/foo"); mkpath($sub_dir); my $test_file = "X12foo"; if (open(my $fh, "> $sub_dir/$test_file")) { close($fh); } else { die("Can't write test file $sub_dir/$test_file: $!"); } auth_user_write($auth_user_file, $user, $passwd, $uid, $gid, $home_dir, '/bin/bash'); auth_group_write($auth_group_file, $group, $gid, $user); my $config = { PidFile => $pid_file, ScoreboardFile => $scoreboard_file, SystemLog => $log_file, TraceLog => $log_file, Trace => 'directory:10', AuthUserFile => $auth_user_file, AuthGroupFile => $auth_group_file, AuthOrder => 'mod_auth_file.c', IfModules => { 'mod_delay.c' => { DelayEngine => 'off', }, }, Directory => { '/' => { HideFiles => ".* user $user", }, $sub_dir => { HideFiles => 'none user foo', }, }, }; my ($port, $config_user, $config_group) = config_write($config_file, $config); # Open pipes, for use between the parent and child processes. Specifically, # the child will indicate when it's done with its test by writing a message # to the parent. my ($rfh, $wfh); unless (pipe($rfh, $wfh)) { die("Can't open pipe: $!"); } my $ex; # Fork child $self->handle_sigchld(); defined(my $pid = fork()) or die("Can't fork: $!"); if ($pid) { eval { my $client = ProFTPD::TestSuite::FTP->new('127.0.0.1', $port); $client->login($user, $passwd); my $conn = $client->nlst_raw("foo/*"); unless ($conn) { die("Failed to NLST: " . $client->response_code() . " " . $client->response_msg()); } my $buf; $conn->read($buf, 8192, 30); $conn->close(); $client->quit(); # We have to be careful of the fact that readdir returns directory # entries in an unordered fashion. my $res = {}; my $lines = [split(/\n/, $buf)]; foreach my $line (@$lines) { $res->{$line} = 1; } my $expected = { }; my $ok = 1; my $mismatch; my $seen = []; foreach my $name (keys(%$res)) { push(@$seen, $name); unless (defined($expected->{$name})) { $mismatch = $name; $ok = 0; last; } } unless ($ok) { die("Unexpected name '$mismatch' appeared in NLST data") } # Now remove from $expected all of the paths we saw; if there are # any entries remaining in $expected, something went wrong. foreach my $name (@$seen) { delete($expected->{$name}); } my $remaining = scalar(keys(%$expected)); $self->assert(0 == $remaining, test_msg("Expected 0, got $remaining")); }; if ($@) { $ex = $@; } $wfh->print("done\n"); $wfh->flush(); } else { eval { server_wait($config_file, $rfh) }; if ($@) { warn($@); exit 1; } exit 0; } # Stop server server_stop($pid_file); $self->assert_child_ok($pid); if ($ex) { test_append_logfile($log_file, $ex); unlink($log_file); die($ex); } unlink($log_file); } sub hidefiles_pcre_bug3595 { my $self = shift; my $tmpdir = $self->{tmpdir}; my $config_file = "$tmpdir/config.conf"; my $pid_file = File::Spec->rel2abs("$tmpdir/config.pid"); my $scoreboard_file = File::Spec->rel2abs("$tmpdir/config.scoreboard"); my $log_file = test_get_logfile(); my $auth_user_file = File::Spec->rel2abs("$tmpdir/config.passwd"); my $auth_group_file = File::Spec->rel2abs("$tmpdir/config.group"); my $user = 'proftpd'; my $passwd = 'test'; my $group = 'ftpd'; my $home_dir = File::Spec->rel2abs($tmpdir); my $uid = 500; my $gid = 500; my $ftpaccess_file = File::Spec->rel2abs("$tmpdir/.ftpaccess"); if (open(my $fh, "> $ftpaccess_file")) { print $fh < $pid_file, ScoreboardFile => $scoreboard_file, SystemLog => $log_file, AuthUserFile => $auth_user_file, AuthGroupFile => $auth_group_file, AuthOrder => 'mod_auth_file.c', AllowOverride => 'on', DefaultChdir => '~', TimeoutIdle => $timeout_idle, TimeoutLogin => $timeout_login, IfModules => { 'mod_delay.c' => { DelayEngine => 'off', }, }, }; my ($port, $config_user, $config_group) = config_write($config_file, $config); # Open pipes, for use between the parent and child processes. Specifically, # the child will indicate when it's done with its test by writing a message # to the parent. my ($rfh, $wfh); unless (pipe($rfh, $wfh)) { die("Can't open pipe: $!"); } my $ex; # Fork child $self->handle_sigchld(); defined(my $pid = fork()) or die("Can't fork: $!"); if ($pid) { eval { my $client = ProFTPD::TestSuite::FTP->new('127.0.0.1', $port); $client->login($user, $passwd); $client->quit(); }; if ($@) { $ex = $@; } $wfh->print("done\n"); $wfh->flush(); } else { eval { server_wait($config_file, $rfh, 60) }; if ($@) { warn($@); exit 1; } exit 0; } # Stop server server_stop($pid_file); $self->assert_child_ok($pid); if ($ex) { test_append_logfile($log_file, $ex); unlink($log_file); die($ex); } unlink($log_file); } sub hidefiles_mlsd { my $self = shift; my $tmpdir = $self->{tmpdir}; my $config_file = "$tmpdir/config.conf"; my $pid_file = File::Spec->rel2abs("$tmpdir/config.pid"); my $scoreboard_file = File::Spec->rel2abs("$tmpdir/config.scoreboard"); my $log_file = test_get_logfile(); my $auth_user_file = File::Spec->rel2abs("$tmpdir/config.passwd"); my $auth_group_file = File::Spec->rel2abs("$tmpdir/config.group"); my $user = 'proftpd'; my $passwd = 'test'; my $group = 'ftpd'; my $home_dir = File::Spec->rel2abs($tmpdir); my $uid = 500; my $gid = 500; my $sub_dir = File::Spec->rel2abs("$tmpdir/foo"); mkpath($sub_dir); my $fh; my $ftpaccess_file = File::Spec->rel2abs("$tmpdir/foo/.ftpaccess"); if (open($fh, "> $ftpaccess_file")) { print $fh < $sub_dir/$test_file")) { close($fh); } else { die("Can't write test file $sub_dir/$test_file: $!"); } } # Make sure that, if we're running as root, that the home directory has # permissions/privs set for the account we create if ($< == 0) { unless (chmod(0755, $home_dir, $sub_dir)) { die("Can't set perms on $home_dir, $sub_dir to 0755: $!"); } unless (chown($uid, $gid, $home_dir, $sub_dir)) { die("Can't set owner of $home_dir, $sub_dir to $uid/$gid: $!"); } } auth_user_write($auth_user_file, $user, $passwd, $uid, $gid, $home_dir, '/bin/bash'); auth_group_write($auth_group_file, $group, $gid, $user); my $config = { PidFile => $pid_file, ScoreboardFile => $scoreboard_file, SystemLog => $log_file, AuthUserFile => $auth_user_file, AuthGroupFile => $auth_group_file, AuthOrder => 'mod_auth_file.c', AllowOverride => 'on', DefaultChdir => '~', IfModules => { 'mod_delay.c' => { DelayEngine => 'off', }, }, }; my ($port, $config_user, $config_group) = config_write($config_file, $config); # Open pipes, for use between the parent and child processes. Specifically, # the child will indicate when it's done with its test by writing a message # to the parent. my ($rfh, $wfh); unless (pipe($rfh, $wfh)) { die("Can't open pipe: $!"); } my $ex; # Fork child $self->handle_sigchld(); defined(my $pid = fork()) or die("Can't fork: $!"); if ($pid) { eval { my $client = ProFTPD::TestSuite::FTP->new('127.0.0.1', $port); $client->login($user, $passwd); my $conn = $client->mlsd_raw('foo'); unless ($conn) { die("Failed to MLSD: " . $client->response_code() . " " . $client->response_msg()); } my $buf; my $tmp; while ($conn->read($tmp, 8192, 25)) { $buf .= $tmp; } eval { $conn->close() }; # We have to be careful of the fact that readdir returns directory # entries in an unordered fashion. my $res = {}; my $lines = [split(/\n/, $buf)]; foreach my $line (@$lines) { if ($line =~ /^modify=\S+;perm=\S+;type=\S+;unique=\S+;UNIX\.group=\d+;UNIX\.mode=\d+;UNIX.owner=\d+; (.*?)$/) { $res->{$1} = 1; } } my $expected = { '.' => 1, '..' => 1, '.ftpaccess' => 1, '4.txt' => 1, }; my $ok = 1; my $mismatch; foreach my $name (keys(%$res)) { unless (defined($expected->{$name})) { $mismatch = $name; $ok = 0; last; } } unless ($ok) { die("Unexpected name '$mismatch' appeared in MLSD data") } $client->quit(); }; if ($@) { $ex = $@; } $wfh->print("done\n"); $wfh->flush(); } else { eval { server_wait($config_file, $rfh) }; if ($@) { warn($@); exit 1; } exit 0; } # Stop server server_stop($pid_file); $self->assert_child_ok($pid); if ($ex) { test_append_logfile($log_file, $ex); unlink($log_file); die($ex); } unlink($log_file); } sub hidefiles_mlsd_dotfiles { my $self = shift; my $tmpdir = $self->{tmpdir}; my $config_file = "$tmpdir/config.conf"; my $pid_file = File::Spec->rel2abs("$tmpdir/config.pid"); my $scoreboard_file = File::Spec->rel2abs("$tmpdir/config.scoreboard"); my $log_file = test_get_logfile(); my $auth_user_file = File::Spec->rel2abs("$tmpdir/config.passwd"); my $auth_group_file = File::Spec->rel2abs("$tmpdir/config.group"); my $user = 'proftpd'; my $passwd = 'test'; my $group = 'ftpd'; my $home_dir = File::Spec->rel2abs($tmpdir); my $uid = 500; my $gid = 500; my $sub_dir = File::Spec->rel2abs("$tmpdir/foo"); mkpath($sub_dir); my $test_files = [qw(.1.txt .2.txt .3.txt .4.txt foo.txt)]; foreach my $test_file (@$test_files) { if (open(my $fh, "> $sub_dir/$test_file")) { close($fh); } else { die("Can't write test file $sub_dir/$test_file: $!"); } } # Make sure that, if we're running as root, that the home directory has # permissions/privs set for the account we create if ($< == 0) { unless (chmod(0755, $home_dir, $sub_dir)) { die("Can't set perms on $home_dir, $sub_dir to 0755: $!"); } unless (chown($uid, $gid, $home_dir, $sub_dir)) { die("Can't set owner of $home_dir, $sub_dir to $uid/$gid: $!"); } } auth_user_write($auth_user_file, $user, $passwd, $uid, $gid, $home_dir, '/bin/bash'); auth_group_write($auth_group_file, $group, $gid, $user); my $config = { PidFile => $pid_file, ScoreboardFile => $scoreboard_file, SystemLog => $log_file, AuthUserFile => $auth_user_file, AuthGroupFile => $auth_group_file, AuthOrder => 'mod_auth_file.c', DefaultChdir => '~', IfModules => { 'mod_delay.c' => { DelayEngine => 'off', }, }, }; my ($port, $config_user, $config_group) = config_write($config_file, $config); if (open(my $fh, ">> $config_file")) { print $fh < HideFiles ^\. IgnoreHidden on EOC unless (close($fh)) { die("Can't write $config_file: $!"); } } else { die("Can't open $config_file: $!"); } # Open pipes, for use between the parent and child processes. Specifically, # the child will indicate when it's done with its test by writing a message # to the parent. my ($rfh, $wfh); unless (pipe($rfh, $wfh)) { die("Can't open pipe: $!"); } my $ex; # Fork child $self->handle_sigchld(); defined(my $pid = fork()) or die("Can't fork: $!"); if ($pid) { eval { my $client = ProFTPD::TestSuite::FTP->new('127.0.0.1', $port); $client->login($user, $passwd); my $conn = $client->mlsd_raw('foo'); unless ($conn) { die("Failed to MLSD: " . $client->response_code() . " " . $client->response_msg()); } my $buf = ''; my $tmp; while ($conn->read($tmp, 8192, 25)) { $buf .= $tmp; } eval { $conn->close() }; # We have to be careful of the fact that readdir returns directory # entries in an unordered fashion. my $res = {}; my $lines = [split(/\n/, $buf)]; foreach my $line (@$lines) { if ($line =~ /^modify=\S+;perm=\S+;type=\S+;unique=\S+;UNIX\.group=\d+;UNIX\.mode=\d+;UNIX.owner=\d+; (.*?)$/) { $res->{$1} = 1; } } my $expected = { '.' => 1, '..' => 1, 'foo.txt' => 1, }; my $ok = 1; my $mismatch; foreach my $name (keys(%$res)) { unless (defined($expected->{$name})) { $mismatch = $name; $ok = 0; last; } } unless ($ok) { die("Unexpected name '$mismatch' appeared in MLSD data") } $client->quit(); }; if ($@) { $ex = $@; } $wfh->print("done\n"); $wfh->flush(); } else { eval { server_wait($config_file, $rfh) }; if ($@) { warn($@); exit 1; } exit 0; } # Stop server server_stop($pid_file); $self->assert_child_ok($pid); if ($ex) { test_append_logfile($log_file, $ex); unlink($log_file); die($ex); } unlink($log_file); } sub hidefiles_stat { my $self = shift; my $tmpdir = $self->{tmpdir}; my $config_file = "$tmpdir/config.conf"; my $pid_file = File::Spec->rel2abs("$tmpdir/config.pid"); my $scoreboard_file = File::Spec->rel2abs("$tmpdir/config.scoreboard"); my $log_file = test_get_logfile(); my $auth_user_file = File::Spec->rel2abs("$tmpdir/config.passwd"); my $auth_group_file = File::Spec->rel2abs("$tmpdir/config.group"); my $user = 'proftpd'; my $passwd = 'test'; my $group = 'ftpd'; my $home_dir = File::Spec->rel2abs($tmpdir); my $uid = 500; my $gid = 500; my $sub_dir = File::Spec->rel2abs("$tmpdir/foo"); mkpath($sub_dir); my $test_file = File::Spec->rel2abs("$tmpdir/test.foo"); if (open(my $fh, "> $test_file")) { close($fh); } else { die("Can't open $test_file: $!"); } # Make sure that, if we're running as root, that the home directory has # permissions/privs set for the account we create if ($< == 0) { unless (chmod(0755, $home_dir, $sub_dir)) { die("Can't set perms on $home_dir, $sub_dir to 0755: $!"); } unless (chown($uid, $gid, $home_dir, $sub_dir)) { die("Can't set owner of $home_dir, $sub_dir to $uid/$gid: $!"); } } auth_user_write($auth_user_file, $user, $passwd, $uid, $gid, $home_dir, '/bin/bash'); auth_group_write($auth_group_file, $group, $gid, $user); my $config = { PidFile => $pid_file, ScoreboardFile => $scoreboard_file, SystemLog => $log_file, AuthUserFile => $auth_user_file, AuthGroupFile => $auth_group_file, AuthOrder => 'mod_auth_file.c', DefaultChdir => '~', Directory => { '/' => { HideFiles => '\.foo$', }, }, IfModules => { 'mod_delay.c' => { DelayEngine => 'off', }, }, }; my ($port, $config_user, $config_group) = config_write($config_file, $config); # Open pipes, for use between the parent and child processes. Specifically, # the child will indicate when it's done with its test by writing a message # to the parent. my ($rfh, $wfh); unless (pipe($rfh, $wfh)) { die("Can't open pipe: $!"); } my $ex; # Fork child $self->handle_sigchld(); defined(my $pid = fork()) or die("Can't fork: $!"); if ($pid) { eval { my $client = ProFTPD::TestSuite::FTP->new('127.0.0.1', $port); $client->login($user, $passwd); my ($resp_code, $resp_msg); ($resp_code, $resp_msg) = $client->stat('test.foo'); my $expected; $expected = 213; $self->assert($expected == $resp_code, test_msg("Expected response code $expected, got $resp_code")); $expected = 'End of status'; $self->assert($expected eq $resp_msg, test_msg("Expected response message '$expected', got '$resp_msg'")); $client->quit(); }; if ($@) { $ex = $@; } $wfh->print("done\n"); $wfh->flush(); } else { eval { server_wait($config_file, $rfh) }; if ($@) { warn($@); exit 1; } exit 0; } # Stop server server_stop($pid_file); $self->assert_child_ok($pid); if ($ex) { test_append_logfile($log_file, $ex); unlink($log_file); die($ex); } unlink($log_file); } sub hidefiles_directory_pcre { my $self = shift; my $tmpdir = $self->{tmpdir}; my $config_file = "$tmpdir/config.conf"; my $pid_file = File::Spec->rel2abs("$tmpdir/config.pid"); my $scoreboard_file = File::Spec->rel2abs("$tmpdir/config.scoreboard"); my $log_file = test_get_logfile(); my $auth_user_file = File::Spec->rel2abs("$tmpdir/config.passwd"); my $auth_group_file = File::Spec->rel2abs("$tmpdir/config.group"); my $user = 'proftpd'; my $passwd = 'test'; my $group = 'ftpd'; my $home_dir = File::Spec->rel2abs($tmpdir); my $uid = 500; my $gid = 500; # Make sure that, if we're running as root, that the home directory has # permissions/privs set for the account we create if ($< == 0) { unless (chmod(0755, $home_dir)) { die("Can't set perms on $home_dir to 0755: $!"); } unless (chown($uid, $gid, $home_dir)) { die("Can't set owner of $home_dir to $uid/$gid: $!"); } } auth_user_write($auth_user_file, $user, $passwd, $uid, $gid, $home_dir, '/bin/bash'); auth_group_write($auth_group_file, $group, $gid, $user); my $timeout_idle = 45; my $timeout_login = 45; my $config = { PidFile => $pid_file, ScoreboardFile => $scoreboard_file, SystemLog => $log_file, AuthUserFile => $auth_user_file, AuthGroupFile => $auth_group_file, AuthOrder => 'mod_auth_file.c', DefaultChdir => '~', TimeoutIdle => $timeout_idle, TimeoutLogin => $timeout_login, Directory => { }, IfModules => { 'mod_delay.c' => { DelayEngine => 'off', }, }, }; my ($port, $config_user, $config_group) = config_write($config_file, $config); # Open pipes, for use between the parent and child processes. Specifically, # the child will indicate when it's done with its test by writing a message # to the parent. my ($rfh, $wfh); unless (pipe($rfh, $wfh)) { die("Can't open pipe: $!"); } my $ex; # Fork child $self->handle_sigchld(); defined(my $pid = fork()) or die("Can't fork: $!"); if ($pid) { eval { my $client = ProFTPD::TestSuite::FTP->new('127.0.0.1', $port); $client->login($user, $passwd); $client->quit(); }; if ($@) { $ex = $@; } $wfh->print("done\n"); $wfh->flush(); } else { eval { server_wait($config_file, $rfh, 60) }; if ($@) { warn($@); exit 1; } exit 0; } # Stop server server_stop($pid_file); $self->assert_child_ok($pid); if ($ex) { test_append_logfile($log_file, $ex); unlink($log_file); die($ex); } unlink($log_file); } sub hidefiles_list_symlink_bug3924 { my $self = shift; my $tmpdir = $self->{tmpdir}; my $config_file = "$tmpdir/config.conf"; my $pid_file = File::Spec->rel2abs("$tmpdir/config.pid"); my $scoreboard_file = File::Spec->rel2abs("$tmpdir/config.scoreboard"); my $log_file = test_get_logfile(); my $auth_user_file = File::Spec->rel2abs("$tmpdir/config.passwd"); my $auth_group_file = File::Spec->rel2abs("$tmpdir/config.group"); my $user = 'proftpd'; my $passwd = 'test'; my $group = 'ftpd'; my $home_dir = File::Spec->rel2abs($tmpdir); my $uid = 500; my $gid = 500; my $sub_dir = File::Spec->rel2abs("$tmpdir/foobar"); mkpath($sub_dir); my $test_symlink = File::Spec->rel2abs("$tmpdir/foobar2"); my $cwd = getcwd(); unless (chdir($tmpdir)) { die("Can't chdir to $tmpdir: $!"); } unless (symlink('/', $test_symlink)) { die("Can't symlink '/' to '$test_symlink': $!"); } unless (chdir($cwd)) { die("Can't chdir to $cwd: $!"); } # Make sure that, if we're running as root, that the home directory has # permissions/privs set for the account we create if ($< == 0) { unless (chmod(0755, $home_dir, $sub_dir)) { die("Can't set perms on $home_dir, $sub_dir to 0755: $!"); } unless (chown($uid, $gid, $home_dir, $sub_dir)) { die("Can't set owner of $home_dir, $sub_dir to $uid/$gid: $!"); } } auth_user_write($auth_user_file, $user, $passwd, $uid, $gid, $home_dir, '/bin/bash'); auth_group_write($auth_group_file, $group, $gid, $user); my $config = { PidFile => $pid_file, ScoreboardFile => $scoreboard_file, SystemLog => $log_file, AuthUserFile => $auth_user_file, AuthGroupFile => $auth_group_file, AuthOrder => 'mod_auth_file.c', Directory => { '/' => { HideFiles => 'foobar', }, }, IfModules => { 'mod_delay.c' => { DelayEngine => 'off', }, }, }; my ($port, $config_user, $config_group) = config_write($config_file, $config); # Open pipes, for use between the parent and child processes. Specifically, # the child will indicate when it's done with its test by writing a message # to the parent. my ($rfh, $wfh); unless (pipe($rfh, $wfh)) { die("Can't open pipe: $!"); } my $ex; # Fork child $self->handle_sigchld(); defined(my $pid = fork()) or die("Can't fork: $!"); if ($pid) { eval { my $client = ProFTPD::TestSuite::FTP->new('127.0.0.1', $port); $client->login($user, $passwd); my $conn = $client->list_raw(); unless ($conn) { die("Failed to LIST: " . $client->response_code() . " " . $client->response_msg()); } my $buf; my $tmp; while ($conn->read($tmp, 8192, 30)) { $buf .= $tmp; } eval { $conn->close() }; my $resp_code = $client->response_code(); my $resp_msg = $client->response_msg(); $self->assert_transfer_ok($resp_code, $resp_msg); # We have to be careful of the fact that readdir returns directory # entries in an unordered fashion. my $res = {}; my $lines = [split(/\n/, $buf)]; foreach my $line (@$lines) { if ($line =~ /^\S+\s+\d+\s+\S+\s+\S+\s+.*?\s+(\S+)$/) { $res->{$1} = 1; } } my $expected = { 'config.conf' => 1, 'config.passwd' => 1, 'config.group' => 1, 'config.pid' => 1, 'config.scoreboard' => 1, 'config.scoreboard.lck' => 1, }; my $ok = 1; my $mismatch; foreach my $name (keys(%$res)) { unless (defined($expected->{$name})) { $mismatch = $name; $ok = 0; last; } } unless ($ok) { die("Unexpected name '$mismatch' appeared in LIST data") } $client->quit(); }; if ($@) { $ex = $@; } $wfh->print("done\n"); $wfh->flush(); } else { eval { server_wait($config_file, $rfh) }; if ($@) { warn($@); exit 1; } exit 0; } # Stop server server_stop($pid_file); $self->assert_child_ok($pid); if ($ex) { test_append_logfile($log_file, $ex); unlink($log_file); die($ex); } unlink($log_file); } sub hidefiles_mlsd_symlink_bug3924 { my $self = shift; my $tmpdir = $self->{tmpdir}; my $config_file = "$tmpdir/config.conf"; my $pid_file = File::Spec->rel2abs("$tmpdir/config.pid"); my $scoreboard_file = File::Spec->rel2abs("$tmpdir/config.scoreboard"); my $log_file = test_get_logfile(); my $auth_user_file = File::Spec->rel2abs("$tmpdir/config.passwd"); my $auth_group_file = File::Spec->rel2abs("$tmpdir/config.group"); my $user = 'proftpd'; my $passwd = 'test'; my $group = 'ftpd'; my $home_dir = File::Spec->rel2abs($tmpdir); my $uid = 500; my $gid = 500; my $sub_dir = File::Spec->rel2abs("$tmpdir/foobar"); mkpath($sub_dir); my $test_symlink = File::Spec->rel2abs("$tmpdir/foobar2"); my $cwd = getcwd(); unless (chdir($tmpdir)) { die("Can't chdir to $tmpdir: $!"); } unless (symlink('/', $test_symlink)) { die("Can't symlink '/' to '$test_symlink': $!"); } unless (chdir($cwd)) { die("Can't chdir to $cwd: $!"); } # Make sure that, if we're running as root, that the home directory has # permissions/privs set for the account we create if ($< == 0) { unless (chmod(0755, $home_dir, $sub_dir)) { die("Can't set perms on $home_dir, $sub_dir to 0755: $!"); } unless (chown($uid, $gid, $home_dir, $sub_dir)) { die("Can't set owner of $home_dir, $sub_dir to $uid/$gid: $!"); } } auth_user_write($auth_user_file, $user, $passwd, $uid, $gid, $home_dir, '/bin/bash'); auth_group_write($auth_group_file, $group, $gid, $user); my $config = { PidFile => $pid_file, ScoreboardFile => $scoreboard_file, SystemLog => $log_file, AuthUserFile => $auth_user_file, AuthGroupFile => $auth_group_file, AuthOrder => 'mod_auth_file.c', Directory => { '/' => { HideFiles => 'foobar', }, }, IfModules => { 'mod_delay.c' => { DelayEngine => 'off', }, }, }; my ($port, $config_user, $config_group) = config_write($config_file, $config); # Open pipes, for use between the parent and child processes. Specifically, # the child will indicate when it's done with its test by writing a message # to the parent. my ($rfh, $wfh); unless (pipe($rfh, $wfh)) { die("Can't open pipe: $!"); } my $ex; # Fork child $self->handle_sigchld(); defined(my $pid = fork()) or die("Can't fork: $!"); if ($pid) { eval { my $client = ProFTPD::TestSuite::FTP->new('127.0.0.1', $port); $client->login($user, $passwd); my $conn = $client->mlsd_raw(); unless ($conn) { die("Failed to MLSD: " . $client->response_code() . " " . $client->response_msg()); } my $buf; my $tmp; while ($conn->read($tmp, 8192, 30)) { $buf .= $tmp; } eval { $conn->close() }; my $resp_code = $client->response_code(); my $resp_msg = $client->response_msg(); $self->assert_transfer_ok($resp_code, $resp_msg); # We have to be careful of the fact that readdir returns directory # entries in an unordered fashion. my $res = {}; my $lines = [split(/\n/, $buf)]; foreach my $line (@$lines) { if ($line =~ /^modify=\S+;perm=\S+;type=\S+;unique=\S+;UNIX\.group=\d+;UNIX\.mode=\d+;UNIX.owner=\d+; (.*?)$/) { $res->{$1} = 1; } } my $expected = { '.' => 1, '..' => 1, 'config.conf' => 1, 'config.passwd' => 1, 'config.group' => 1, 'config.pid' => 1, 'config.scoreboard' => 1, 'config.scoreboard.lck' => 1, }; my $ok = 1; my $mismatch; foreach my $name (keys(%$res)) { unless (defined($expected->{$name})) { $mismatch = $name; $ok = 0; last; } } unless ($ok) { die("Unexpected name '$mismatch' appeared in LIST data") } $client->quit(); }; if ($@) { $ex = $@; } $wfh->print("done\n"); $wfh->flush(); } else { eval { server_wait($config_file, $rfh) }; if ($@) { warn($@); exit 1; } exit 0; } # Stop server server_stop($pid_file); $self->assert_child_ok($pid); if ($ex) { test_append_logfile($log_file, $ex); unlink($log_file); die($ex); } unlink($log_file); } # See: # https://forums.proftpd.org/smf/index.php/topic,12152.0.html sub hidefiles_multi_dirs { my $self = shift; my $tmpdir = $self->{tmpdir}; my $setup = test_setup($tmpdir, 'config'); my $a_dir = File::Spec->rel2abs("$tmpdir/a"); mkpath($a_dir); my $b_dir = File::Spec->rel2abs("$tmpdir/a/b"); mkpath($b_dir); my $test_file = File::Spec->rel2abs("$b_dir/b.sh"); if (open(my $fh, "> $test_file")) { close($fh); } else { die("Can't open $test_file: $!"); } my $c_dir = File::Spec->rel2abs("$tmpdir/a/b/c"); mkpath($c_dir); $test_file = File::Spec->rel2abs("$c_dir/c.sh"); if (open(my $fh, "> $test_file")) { close($fh); } else { die("Can't open $test_file: $!"); } # Make sure that, if we're running as root, that the home directory has # permissions/privs set for the account we create if ($< == 0) { unless (chmod(0755, $a_dir, $b_dir)) { die("Can't set perms on $a_dir, $b_dir to 0755: $!"); } unless (chown($setup->{uid}, $setup->{gid}, $a_dir, $b_dir)) { die("Can't set owner of $a_dir, $b_dir to $setup->{uid}/$setup->{gid}: $!"); } } my $config = { PidFile => $setup->{pid_file}, ScoreboardFile => $setup->{scoreboard_file}, SystemLog => $setup->{log_file}, TraceLog => $setup->{log_file}, Trace => 'directory:20', AuthUserFile => $setup->{auth_user_file}, AuthGroupFile => $setup->{auth_group_file}, AuthOrder => 'mod_auth_file.c', IfModules => { 'mod_delay.c' => { DelayEngine => 'off', }, }, }; my ($port, $config_user, $config_group) = config_write($setup->{config_file}, $config); if (open(my $fh, ">> $setup->{config_file}")) { if ($^O eq 'darwin') { # Mac OSX hack $b_dir = '/private' . $b_dir; } print $fh < HideFiles \(.sh\)\$ HideFiles none EOC unless (close($fh)) { die("Can't write $setup->{config_file}: $!"); } } else { die("Can't open $setup->{config_file}: $!"); } # Open pipes, for use between the parent and child processes. Specifically, # the child will indicate when it's done with its test by writing a message # to the parent. my ($rfh, $wfh); unless (pipe($rfh, $wfh)) { die("Can't open pipe: $!"); } my $ex; # Fork child $self->handle_sigchld(); defined(my $pid = fork()) or die("Can't fork: $!"); if ($pid) { eval { my $client = ProFTPD::TestSuite::FTP->new('127.0.0.1', $port); $client->login($setup->{user}, $setup->{passwd}); my $conn = $client->mlsd_raw($b_dir); unless ($conn) { die("Failed to MLSD $b_dir: " . $client->response_code() . " " . $client->response_msg()); } my $buf; my $tmp; while ($conn->read($tmp, 8192, 30)) { $buf .= $tmp; } eval { $conn->close() }; my $resp_code = $client->response_code(); my $resp_msg = $client->response_msg(); $self->assert_transfer_ok($resp_code, $resp_msg); if ($ENV{TEST_VERBOSE}) { print STDERR "# Output:\n$buf\n"; } $self->assert($buf !~ /b\.sh/, "Expected no .sh, saw 'b.sh'"); $conn = $client->mlsd_raw($c_dir); unless ($conn) { die("Failed to MLSD $c_dir: " . $client->response_code() . " " . $client->response_msg()); } $buf = ''; $tmp = ''; while ($conn->read($tmp, 8192, 30)) { $buf .= $tmp; } eval { $conn->close() }; $resp_code = $client->response_code(); $resp_msg = $client->response_msg(); $self->assert_transfer_ok($resp_code, $resp_msg); if ($ENV{TEST_VERBOSE}) { print STDERR "# Output:\n$buf\n"; } $self->assert($buf =~ /c\.sh/, "Expected c.sh, saw none"); $client->quit(); }; if ($@) { $ex = $@; } $wfh->print("done\n"); $wfh->flush(); } else { eval { server_wait($setup->{config_file}, $rfh) }; if ($@) { warn($@); exit 1; } exit 0; } # Stop server server_stop($setup->{pid_file}); $self->assert_child_ok($pid); test_cleanup($setup->{log_file}, $ex); } 1;