1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
|
/* Copyright (C) 2000-2009 Peter Selinger.
This file is part of ccrypt. It is free software and it is covered
by the GNU general public license. See the file COPYING for details. */
/* traverse.c: functions for traversing through a list of files,
optionally recursing through directory structure, and doing
whatever action is required for encrypting/decrypting files in the
various modes */
/* $Id: traverse.c 258 2009-08-26 17:46:10Z selinger $ */
#ifdef HAVE_CONFIG_H
#include <config.h> /* generated by configure */
#endif
#include <stdlib.h>
#include <stdio.h>
#include <string.h>
#include <fcntl.h>
#include <sys/stat.h>
#include <dirent.h>
#include <errno.h>
#include <utime.h>
#include <unistd.h>
#include <time.h>
#include <signal.h>
#include "xalloc.h"
#include "main.h"
#include "traverse.h"
#include "ccrypt.h"
#include "unixcryptlib.h"
#include "platform.h"
#include "gettext.h"
#define _(String) gettext (String)
static void traverse_files(char **filelist, int count);
/* ---------------------------------------------------------------------- */
/* an "object" for keeping track of a list of inodes that we have seen */
struct inode_dev_s {
ino_t inode; /* an inode */
dev_t dev; /* a device */
int success; /* was encryption/decryption successful for this inode? */
};
typedef struct inode_dev_s inode_dev_t;
/* inode_list: a list of inode/device pairs. inode_num is number of
nodes in the list, and inode_size is its allocated size */
static inode_dev_t *inode_list = NULL;
static int inode_num = 0;
static int inode_size = 0;
/* error_flags: collect statistics on all error and warning messages
that occur (not including interactive and verbose messages). */
static int key_errors = 0;
static int io_errors = 0;
static int symlink_warnings = 0;
static int hardlink_warnings = 0;
static int isreg_warnings = 0;
static int strict_warnings = 0;
/* add an inode/device pair to the list and record success or failure */
static void add_inode(ino_t ino, dev_t dev, int success) {
if (inode_list==NULL) {
inode_size = 100;
inode_list = xalloc(inode_size*sizeof(inode_dev_t), cmd.name);
}
if (inode_num >= inode_size) {
inode_size += 100;
inode_list = xrealloc(inode_list, inode_size*sizeof(inode_dev_t), cmd.name);
}
inode_list[inode_num].inode = ino;
inode_list[inode_num].dev = dev;
inode_list[inode_num].success = success;
inode_num++;
}
/* look up ino/dev pair in list. Return -1 if not found, else 0 if
success=0, else 1 */
static int known_inode(ino_t ino, dev_t dev) {
int i;
/* have we already seen this inode/device pair? */
for (i=0; i<inode_num; i++) {
if (inode_list[i].inode == ino && inode_list[i].dev == dev) {
return inode_list[i].success ? 1 : 0;
}
}
return -1;
}
/* ---------------------------------------------------------------------- */
/* suffix handling */
/* return 1 if filename ends in, but is not equal to, suffix. */
static int has_suffix(char *filename, char *suffix) {
int flen = strlen(filename);
int slen = strlen(suffix);
return flen>slen && strcmp(filename+flen-slen, suffix)==0;
}
/* add suffix to filename */
static char *add_suffix(char *filename, char *suffix) {
static char *outfile = NULL;
int flen = strlen(filename);
int slen = strlen(suffix);
outfile = xrealloc(outfile, flen+slen+1, cmd.name);
strncpy (outfile, filename, flen);
strncpy (outfile+flen, suffix, slen+1);
return outfile;
}
/* remove suffix from filename */
static char *remove_suffix(char *filename, char *suffix) {
static char *outfile = NULL;
int flen = strlen(filename);
int slen = strlen(suffix);
if (suffix[0]==0 || !has_suffix(filename, suffix)) {
return filename;
}
outfile = xrealloc(outfile, flen-slen+1, cmd.name);
strncpy (outfile, filename, flen-slen);
outfile[flen-slen] = 0;
return outfile;
}
/* ---------------------------------------------------------------------- */
/* some helper functions */
/* read a yes/no response from the user */
static int prompt(void) {
char *line;
FILE *fin;
int r;
fin = fopen("/dev/tty", "r");
if (fin==NULL) {
fin = stdin;
}
line = xreadline(fin, cmd.name);
r = line && (!strcmp(line, "y") || !strcmp(line, "yes"));
free(line);
return r;
}
/* check whether named file exists */
static int file_exists(char *filename) {
struct stat buf;
int st;
st = lstat(filename, &buf);
if (st) {
return 0;
} else {
return 1;
}
}
/* ---------------------------------------------------------------------- */
/* read a whole directory into a data structure. This is because we
change directory entries while traversing the directory; this could
otherwise lead to strange behavior on Solaris. After done with the
file list, it should be freed with free_filelist. */
static int get_filelist(char *dirname, char*** filelistp, int *countp) {
DIR *dir;
struct dirent *dirent;
char **filelist = NULL;
int count = 0;
dir = opendir(dirname);
if (dir==NULL) {
fprintf(stderr, "%s: %s: %s\n", cmd.name, dirname, strerror(errno));
io_errors++;
*filelistp = NULL;
*countp = 0;
return 0;
}
while ((dirent = readdir(dir)) != NULL) {
if (strcmp(dirent->d_name, "..")!=0 && strcmp(dirent->d_name, ".")!=0) {
char *strbuf = xalloc(strlen(dirname)+strlen(dirent->d_name)+2, cmd.name);
strcpy (strbuf, dirname);
strcat (strbuf, "/");
strcat (strbuf, dirent->d_name);
filelist = xrealloc(filelist, (count+1)*sizeof(char *), cmd.name);
filelist[count] = strbuf;
count++;
}
}
closedir(dir);
*filelistp = filelist;
*countp = count;
return count;
}
static void free_filelist(char** filelist, int count) {
int i;
for (i=0; i<count; i++) {
free(filelist[i]);
}
free(filelist);
}
/* ---------------------------------------------------------------------- */
/* file actions for the individual modes. */
/* local signal handler for overwrite mode - catch interrupt signal */
static int sigint_flag = 0;
static void sigint_overwrite(int dummy) {
static time_t sigint_time = 0;
int save_errno = errno;
/* exit if two SIGINTS are received in one second */
if ((time(NULL)-sigint_time) <= 1) {
fprintf(stderr, _("%s: interrupted.\n"), cmd.name);
exit(6);
}
/* otherwise, schedule to exit at the end of the current file. Note:
this signal handler is only in use if we're not in cat,
unixcrypt, or filter mode */
sigint_time = time(NULL);
sigint_flag = 1;
fprintf(stderr,
_("Interrupt - will exit after current file.\n"
"Press CTRL-C twice to exit now (warning: this can lead to loss of data).\n"));
errno = save_errno;
}
/* this function is called to act on a file in overwrite mode. */
static void action_overwrite(char *infile, char *outfile) {
int st;
struct stat buf;
int do_chmod = 0;
int r;
int fd;
int save_errno;
/* read file attributes */
st = stat(infile, &buf);
if (st) {
fprintf(stderr, "%s: %s: %s\n", cmd.name, infile, strerror(errno));
io_errors++;
return;
}
/* check whether this file is write protected */
if ((buf.st_mode & (S_IWUSR | S_IWGRP | S_IWOTH)) == 0) {
/* file is write-protected. In this case, we prompt the user to
see if they want to operate on it anyway. Or if they give the
"-f" option, we just do it without asking. */
if (!cmd.force) {
switch (cmd.mode) {
case ENCRYPT:
fprintf(stderr, _("%s: encrypt write-protected file %s (y or n)? "), cmd.name, infile);
break;
case DECRYPT: default:
fprintf(stderr, _("%s: decrypt write-protected file %s (y or n)? "), cmd.name, infile);
break;
case KEYCHANGE:
fprintf(stderr, _("%s: perform keychange on write-protected file %s (y or n)? "), cmd.name, infile);
break;
}
fflush(stderr);
if (prompt()==0) {
fprintf(stderr, _("Not changed.\n"));
add_inode(buf.st_ino, buf.st_dev, 0);
return;
}
}
/* we will attempt to change the mode just before encrypting it. */
do_chmod = 1;
}
/* check whether this inode was already handled under another filename */
r = known_inode(buf.st_ino, buf.st_dev);
if (r != -1 && cmd.verbose>0) {
fprintf(stderr, _("Already visited inode %s.\n"), infile);
}
if (r == 0) {
/* previous action on this inode failed - do nothing */
return;
} else if (r == 1) {
/* previous action on this inode succeeded - rename only */
goto rename;
}
/* act on this inode now */
if (buf.st_nlink>1 && cmd.verbose>=0) {
fprintf(stderr, _("%s: warning: %s has %d links\n"), cmd.name,
infile, (int)buf.st_nlink);
hardlink_warnings++;
}
if (do_chmod) {
chmod(infile, buf.st_mode | S_IWUSR);
}
/* open file */
fd = open(infile, O_RDWR | O_BINARY);
if (fd == -1) {
/* could not open file. */
fprintf(stderr, "%s: %s: %s\n", cmd.name, infile, strerror(errno));
io_errors++;
add_inode(buf.st_ino, buf.st_dev, 0);
return;
}
/* set local signal handler for SIGINT */
signal(SIGINT, sigint_overwrite);
/* crypt */
switch (cmd.mode) { /* note: can't be CAT or UNIXCRYPT */
case ENCRYPT: default:
if (cmd.verbose>0) {
fprintf(stderr, _("Encrypting %s\n"), infile);
}
r = ccencrypt_file(fd, cmd.keyword);
break;
case DECRYPT:
if (cmd.verbose>0) {
fprintf(stderr, _("Decrypting %s\n"), infile);
}
r = ccdecrypt_file(fd, cmd.keyword);
break;
case KEYCHANGE:
if (cmd.verbose>0) {
fprintf(stderr, _("Changing key for %s\n"), infile);
}
r = cckeychange_file(fd, cmd.keyword, cmd.keyword2);
break;
}
save_errno = errno;
/* restore the original file attributes for this file descriptor.
Ignore failures silently */
fchown(fd, buf.st_uid, buf.st_gid);
fchmod(fd, buf.st_mode);
/* close file */
close(fd);
/* now restore original modtime */
{
struct utimbuf ut;
ut.actime = buf.st_atime;
ut.modtime = buf.st_mtime;
utime(infile, &ut);
}
/* restore default signal handler */
signal(SIGINT, SIG_DFL);
errno = save_errno;
if (r==-2 && (ccrypt_errno == CCRYPT_EFORMAT || ccrypt_errno == CCRYPT_EMISMATCH)) {
fprintf(stderr, _("%s: %s: %s -- unchanged\n"), cmd.name, infile, ccrypt_error(r));
key_errors++;
add_inode(buf.st_ino, buf.st_dev, 0);
return;
} else if (r==-2 || r==-1) {
fprintf(stderr, "%s: %s: %s\n", cmd.name, infile, ccrypt_error(r));
exit(3);
} else {
add_inode(buf.st_ino, buf.st_dev, 1);
}
rename:
/* rename file if necessary */
if (strcmp(infile, outfile)) {
r = rename(infile, outfile);
if (r) {
fprintf(stderr, _("%s: could not rename %s to %s: %s\n"), cmd.name,
infile, outfile, strerror(errno));
io_errors++;
}
}
if (sigint_flag) { /* SIGINT received while crypting - delayed exit */
exit(6);
}
return;
}
/* local signal handler for SIGINT for tmpfiles mode */
static char *sigint_tmpfilename;
static void sigint_tmpfiles(int dummy) {
unlink(sigint_tmpfilename);
exit(6);
}
/* this function is called to act on a file in tmpfiles mode. */
static void action_tmpfiles(char *infile, char *outfile) {
int st;
struct stat buf;
char *tmpfile;
int fdout;
int r;
int save_errno;
FILE *fin, *fout;
/* tmpfiles mode is supposed to provide safety from data corruption.
We have the following goal: at any given time, either infile
should contain the original file contents, or outfile should
contain the new file contents. Thus, if execution gets
interrupted at any given time, at least one of the two files
should exist and be un-corrupted.
There are several cases to consider. (1) The most common case is
that infile != outfile, and outfile does not yet exist. In this
case, we just crypt from infile to outfile, then change outfile's
attributes, then remove infile.
(2) It can also happen that infile == outfile, or that outfile
already exists. In this case, we will create a temporary filename
in the same directory as outfile, crypt from infile to tmpfile,
then change tmpfile's attributes, then rename tmpfile as outfile,
then remove infile (unless infile == outfile). In this way, we
avoid destroying the previous contents of outfile until crypting
is complete.
Cases (1) and (2) can be handled uniformly; we simply choose
tmpfile == outfile if we are in case (1), and omit the extra
renaming step.
If an error occurs during crypting (e.g., a non-matching
password, i/o error, etc), we remove the file being currently
written, and therefore we return everything to its original
state. If an error occurs during one of the final renaming steps,
we print a warning, but we do not remove the tmpfile/outfile in
this case (since its contents are presumably valid). I guess it
is okay to still remove infile in this case if infile!=outfile. */
/* read infile attributes */
st = stat(infile, &buf);
if (st) {
fprintf(stderr, "%s: %s: %s\n", cmd.name, infile, strerror(errno));
io_errors++;
return;
}
/* if infile==outfile or outfile exists, need to make a new
temporary file name. Else, just use outfile. */
if (strcmp(infile, outfile)==0 || file_exists(outfile)) {
tmpfile = xalloc(strlen(outfile)+8, cmd.name);
strcpy(tmpfile, outfile);
strcat(tmpfile, ".XXXXXX");
fdout = mkstemp(tmpfile);
if (fdout == -1) {
fprintf(stderr, _("%s: could not create temporary file for %s: %s\n"), cmd.name, outfile, strerror(errno));
io_errors++;
free(tmpfile);
return;
}
} else {
tmpfile = strdup(outfile);
fdout = open(tmpfile, O_CREAT | O_EXCL | O_WRONLY | O_BINARY, S_IRUSR | S_IWUSR);
if (fdout == -1) {
fprintf(stderr, "%s: %s: %s\n", cmd.name, tmpfile, strerror(errno));
io_errors++;
free(tmpfile);
return;
}
}
/* set local signal handler to remove tmpfile on SIGINT */
sigint_tmpfilename = tmpfile;
signal(SIGINT, sigint_tmpfiles);
/* tmpfile: allocated string, fdout: open (and newly created) file */
/* open file */
fin = fopen(infile, "rb");
if (fin == NULL) {
/* could not open file. */
fprintf(stderr, "%s: %s: %s\n", cmd.name, infile, strerror(errno));
io_errors++;
goto fail_with_fdout;
}
fout = fdopen(fdout, "wb");
if (fout == NULL) {
/* oops? */
fprintf(stderr, "%s: %s: %s\n", cmd.name, tmpfile, strerror(errno));
fclose(fin);
io_errors++;
goto fail_with_fdout;
}
/* crypt */
switch (cmd.mode) { /* note: can't be CAT or UNIXCRYPT */
case ENCRYPT: default:
if (cmd.verbose>0) {
fprintf(stderr, _("Encrypting %s\n"), infile);
}
r = ccencrypt_streams(fin, fout, cmd.keyword);
break;
case DECRYPT:
if (cmd.verbose>0) {
fprintf(stderr, _("Decrypting %s\n"), infile);
}
r = ccdecrypt_streams(fin, fout, cmd.keyword);
break;
case KEYCHANGE:
if (cmd.verbose>0) {
fprintf(stderr, _("Changing key for %s\n"), infile);
}
r = cckeychange_streams(fin, fout, cmd.keyword, cmd.keyword2);
break;
}
save_errno = errno;
/* restore the original file attributes for this file descriptor.
Ignore failures silently */
fchown(fdout, buf.st_uid, buf.st_gid);
fchmod(fdout, buf.st_mode);
/* close files */
fclose(fout); /* this also closed the underlying fdout */
fclose(fin);
/* now restore original modtime */
{
struct utimbuf ut;
ut.actime = buf.st_atime;
ut.modtime = buf.st_mtime;
utime(tmpfile, &ut);
}
errno = save_errno;
/* handle errors */
if (r==-2 && (ccrypt_errno == CCRYPT_EFORMAT || ccrypt_errno == CCRYPT_EMISMATCH)) {
fprintf(stderr, _("%s: %s: %s -- unchanged\n"), cmd.name, infile, ccrypt_error(r));
key_errors++;
goto fail_with_tmpfile;
} else if (r==-2 || r==-1) { /* e.g. i/o error: fatal */
fprintf(stderr, "%s: %s: %s\n", cmd.name, infile, ccrypt_error(r));
unlink(tmpfile);
exit(3);
}
/* restore default signal handler */
signal(SIGINT, SIG_DFL);
/* crypting was successful. Now rename new file if necessary */
if (strcmp(tmpfile, outfile) != 0) {
r = rename(tmpfile, outfile);
if (r == -1) {
fprintf(stderr, _("%s: could not rename %s to %s: %s\n"), cmd.name, tmpfile, outfile, strerror(errno));
io_errors++;
}
}
free(tmpfile);
/* unlink original file, if necessary */
if (strcmp(infile, outfile) != 0) {
r = unlink(infile);
if (r == -1) {
fprintf(stderr, _("%s: could not remove %s: %s\n"), cmd.name, infile, strerror(errno));
io_errors++;
}
}
return;
fail_with_fdout:
close(fdout);
fail_with_tmpfile:
unlink(tmpfile);
free(tmpfile);
/* restore default signal handler */
signal(SIGINT, SIG_DFL);
return;
}
/* this function is called to act on a file if cmd.mode is CAT or
UNIXCRYPT. Return values are as for action_tmpfiles. */
static void action_cat(char *infile) {
int r;
FILE *fin;
int save_errno;
/* open file */
fin = fopen(infile, "rb");
if (fin == NULL) {
fprintf(stderr, "%s: %s: %s\n", cmd.name, infile, strerror(errno));
io_errors++;
return;
}
/* crypt */
if (cmd.verbose>0) {
fprintf(stderr, _("Decrypting %s\n"), infile);
fflush(stderr);
}
if (cmd.mode==UNIXCRYPT) {
r = unixcrypt_streams(fin, stdout, cmd.keyword);
} else {
r = ccdecrypt_streams(fin, stdout, cmd.keyword);
}
save_errno = errno;
fflush(stdout);
/* close file */
fclose(fin);
errno = save_errno;
/* handle errors */
if (r==-2 && (ccrypt_errno == CCRYPT_EFORMAT || ccrypt_errno == CCRYPT_EMISMATCH)) {
fprintf(stderr, _("%s: %s: %s -- ignored\n"), cmd.name, infile, ccrypt_error(r));
key_errors++;
return;
} else if (r==-2 || r==-1) {
fprintf(stderr, "%s: %s: %s\n", cmd.name, infile, ccrypt_error(r));
exit(3);
}
return;
}
/* ---------------------------------------------------------------------- */
/* file_action(): this procedure is called once for each file
encountered (on the command line, or while recursively traversing
directories, etc). It is only called on files (and symlinks to
files), not directories. The decision whether to follow a symbolic
link is made here. Also, the name of the input and (except in cat
and unixcrypt mode) output filename is determined here - this
involves manipulating suffixes as needed. Furthermore, the decision
of whether to overwrite an existing outfile is also made here. Note
that the file_action procedure does not itself write or modify
anything in the filesystem; these tasks are delegated to the
mode-specific action_* functions. Return values are as for
action_tmpfiles. */
static void file_action(char *filename) {
struct stat buf;
int st;
int link = 0;
char *outfile;
char *infile;
char *buffer = NULL;
infile = filename; /* but it may be changed below */
st = lstat(infile, &buf);
if (st) {
int save_errno = errno;
/* if file didn't exist and decrypting, try if suffixed file exists */
if (errno==ENOENT
&& (cmd.mode==DECRYPT || cmd.mode==CAT || cmd.mode==KEYCHANGE
|| cmd.mode==UNIXCRYPT)
&& cmd.suffix[0]!=0) {
buffer = xalloc(strlen(filename)+strlen(cmd.suffix)+1, cmd.name);
strcpy(buffer, infile);
strcat(buffer, cmd.suffix);
infile=buffer;
st = lstat(infile, &buf);
}
if (st) {
fprintf(stderr, "%s: %s: %s\n", cmd.name, filename, strerror(save_errno));
io_errors++;
goto done;
}
}
/* if link following is enabled, follow links */
if (cmd.symlinks && S_ISLNK(buf.st_mode)) {
link = 1;
st = stat(infile, &buf);
if (st) {
fprintf(stderr, "%s: %s: %s\n", cmd.name, infile, strerror(errno));
io_errors++;
goto done;
}
}
/* assert st==0 */
/* if file is not a regular file, skip */
if (S_ISLNK(buf.st_mode)) {
if (cmd.verbose>=0) {
fprintf(stderr, _("%s: %s: is a symbolic link -- ignored\n"), cmd.name, infile);
symlink_warnings++;
}
goto done;
}
if (!S_ISREG(buf.st_mode)) {
if (cmd.verbose>=0) {
fprintf(stderr, _("%s: %s: is not a regular file -- ignored\n"), cmd.name,
infile);
isreg_warnings++;
}
goto done;
}
/* now we have a regular file, and we have followed a link if
appropriate. */
if (cmd.mode==ENCRYPT || cmd.mode==DECRYPT || cmd.mode==KEYCHANGE) {
/* determine outfile name */
switch (cmd.mode) {
case ENCRYPT: default:
if (cmd.strictsuffix && cmd.suffix[0] != 0 && has_suffix(infile, cmd.suffix)) {
if (cmd.verbose>=0) {
fprintf(stderr, _("%s: %s already has %s suffix -- ignored\n"), cmd.name, infile, cmd.suffix);
strict_warnings++;
}
goto done;
}
outfile = add_suffix(infile, cmd.suffix);
break;
case DECRYPT:
outfile = remove_suffix(infile, cmd.suffix);
break;
case KEYCHANGE:
outfile = infile;
break;
}
/* if outfile exists and cmd.force is not set, prompt whether to
overwrite */
if (!cmd.force && strcmp(infile, outfile) &&
file_exists(outfile)) {
fprintf(stderr, _("%s: %s already exists; overwrite (y or n)? "), cmd.name,
outfile);
fflush(stderr);
if (prompt()==0) {
fprintf(stderr, _("Not overwritten.\n"));
goto done;
}
}
if (cmd.tmpfiles) {
action_tmpfiles(infile, outfile);
} else {
action_overwrite(infile, outfile);
}
} else {
action_cat(infile);
}
done:
free(buffer);
return;
}
/* ---------------------------------------------------------------------- */
/* if filename is a directory or a symlink to a directory, traverse
recursively if appropriate or issue warning and do nothing. In all
other cases, call action with the filename. Do this even if the
file does not exist. Descend into directories if recursive>=1, and
follow symlinks if recursive==2. Return 1 if there was a
non-matching key or bad file format; 0 in all other cases. */
static void traverse_file(char *filename) {
struct stat buf;
int st;
int link = 0;
int r;
st = lstat(filename, &buf);
if (!st && S_ISLNK(buf.st_mode)) { /* is a symbolic link */
link = 1;
st = stat(filename, &buf);
}
if (st || !S_ISDIR(buf.st_mode)) {
file_action(filename);
return;
}
/* is a directory */
if (cmd.recursive<=1 && link==1) { /* ignore link */
if (cmd.verbose>=0) {
fprintf(stderr, _("%s: %s: directory is a symbolic link -- ignored\n"), cmd.name, filename);
symlink_warnings++;
}
return;
}
if (cmd.recursive==0) { /* ignore */
if (cmd.verbose>=0) {
fprintf(stderr, _("%s: %s: is a directory -- ignored\n"), cmd.name, filename);
isreg_warnings++;
}
return;
}
r = known_inode(buf.st_ino, buf.st_dev);
if (r != -1) { /* already traversed */
if (cmd.verbose>0) {
fprintf(stderr, _("Already visited directory %s -- skipped.\n"), filename);
}
return;
}
add_inode(buf.st_ino, buf.st_dev, 1);
/* recursively traverse directory */
{
char **filelist;
int count;
get_filelist(filename, &filelist, &count);
traverse_files(filelist, count);
free_filelist(filelist, count);
}
return;
}
/* same as traverse_file, except go through a list of files. Return 1
if there were some non-matching keys and/or bad file formats; 0
otherwise. */
static void traverse_files(char **filelist, int count) {
while (count > 0) {
traverse_file(*filelist);
++filelist, --count;
}
}
/* traverse a list of files. Same as traverse_files, except to
top-level initializations and return a status. Return 1 if there
were some non-matching keys and/or bad file formats, 2 if there
were some (non-fatal) i/o errors, or 3 if there were both kinds of
errors. */
int traverse_toplevel(char **filelist, int count) {
/* reset inode list */
free(inode_list);
inode_list = NULL;
inode_num = 0;
inode_size = 0;
/* reset error stats */
key_errors = 0;
io_errors = 0;
symlink_warnings = 0;
hardlink_warnings = 0;
isreg_warnings = 0;
strict_warnings = 0;
traverse_files(filelist, count);
return (key_errors ? 1 : 0) | (io_errors ? 2 : 0);
}
|
