1 /*	$OpenBSD: tables.c,v 1.26 2009/10/27 23:59:22 deraadt Exp $	*/
2 /*	$NetBSD: tables.c,v 1.4 1995/03/21 09:07:45 cgd Exp $	*/
3 
4 /*-
5  * Copyright (c) 2005, 2012
6  *	Thorsten Glaser <tg@mirbsd.org>
7  * Copyright (c) 2011
8  *	Svante Signell <svante.signell@telia.com>
9  *	Guillem Jover <guillem@debian.org>
10  * Copyright (c) 1992 Keith Muller.
11  * Copyright (c) 1992, 1993
12  *	The Regents of the University of California.  All rights reserved.
13  *
14  * This code is derived from software contributed to Berkeley by
15  * Keith Muller of the University of California, San Diego.
16  *
17  * Redistribution and use in source and binary forms, with or without
18  * modification, are permitted provided that the following conditions
19  * are met:
20  * 1. Redistributions of source code must retain the above copyright
21  *    notice, this list of conditions and the following disclaimer.
22  * 2. Redistributions in binary form must reproduce the above copyright
23  *    notice, this list of conditions and the following disclaimer in the
24  *    documentation and/or other materials provided with the distribution.
25  * 3. Neither the name of the University nor the names of its contributors
26  *    may be used to endorse or promote products derived from this software
27  *    without specific prior written permission.
28  *
29  * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
30  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
31  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
32  * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
33  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
34  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
35  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
36  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
37  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
38  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
39  * SUCH DAMAGE.
40  */
41 
42 #include <sys/param.h>
43 #include <sys/time.h>
44 #include <sys/stat.h>
45 #include <sys/fcntl.h>
46 #include <stdio.h>
47 #include <string.h>
48 #include <unistd.h>
49 #include <errno.h>
50 #include <stdlib.h>
51 #include <time.h>
52 #include "pax.h"
53 #include "tables.h"
54 #include "extern.h"
55 
56 __RCSID("$MirOS: src/bin/pax/tables.c,v 1.16 2012/06/05 18:22:57 tg Exp $");
57 
58 /*
59  * Routines for controlling the contents of all the different databases pax
60  * keeps. Tables are dynamically created only when they are needed. The
61  * goal was speed and the ability to work with HUGE archives. The databases
62  * were kept simple, but do have complex rules for when the contents change.
63  * As of this writing, the posix library functions were more complex than
64  * needed for this application (pax databases have very short lifetimes and
65  * do not survive after pax is finished). pax is required to handle very
66  * large archives. These database routines carefully combine memory usage and
67  * temporary file storage in ways which will not significantly impact runtime
68  * performance while allowing the largest possible archives to be handled.
69  * Trying to force the fit to the posix database routines was not considered
70  * time well spent.
71  */
72 
73 static HRDLNK **ltab = NULL;	/* hard link table for detecting hard links */
74 static HRDFLNK **fltab = NULL;	/* hard link table for anonymisation */
75 static FTM **ftab = NULL;	/* file time table for updating arch */
76 static NAMT **ntab = NULL;	/* interactive rename storage table */
77 static DEVT **dtab = NULL;	/* device/inode mapping tables */
78 static ATDIR **atab = NULL;	/* file tree directory time reset table */
79 static DIRDATA *dirp = NULL;	/* storage for setting created dir time/mode */
80 static size_t dirsize;		/* size of dirp table */
81 static long dircnt = 0;		/* entries in dir time/mode storage */
82 static int ffd = -1;		/* tmp file for file time table name storage */
83 
84 static DEVT *chk_dev(dev_t, int);
85 
86 /*
87  * hard link table routines
88  *
89  * The hard link table tries to detect hard links to files using the device and
90  * inode values. We do this when writing an archive, so we can tell the format
91  * write routine that this file is a hard link to another file. The format
92  * write routine then can store this file in whatever way it wants (as a hard
93  * link if the format supports that like tar, or ignore this info like cpio).
94  * (Actually a field in the format driver table tells us if the format wants
95  * hard link info. if not, we do not waste time looking for them). We also use
96  * the same table when reading an archive. In that situation, this table is
97  * used by the format read routine to detect hard links from stored dev and
98  * inode numbers (like cpio). This will allow pax to create a link when one
99  * can be detected by the archive format.
100  */
101 
102 /*
103  * lnk_start
104  *	Creates the hard link table.
105  * Return:
106  *	0 if created, -1 if failure
107  */
108 
109 int
lnk_start(void)110 lnk_start(void)
111 {
112 	if (ltab != NULL)
113 		return(0);
114  	if ((ltab = (HRDLNK **)calloc(L_TAB_SZ, sizeof(HRDLNK *))) == NULL) {
115 		paxwarn(1, "Cannot allocate memory for %s", "hard link table");
116 		return(-1);
117 	}
118 	return(0);
119 }
120 
121 /*
122  * chk_lnk()
123  *	Looks up entry in hard link hash table. If found, it copies the name
124  *	of the file it is linked to (we already saw that file) into ln_name.
125  *	lnkcnt is decremented and if goes to 1 the node is deleted from the
126  *	database. (We have seen all the links to this file). If not found,
127  *	we add the file to the database if it has the potential for having
128  *	hard links to other files we may process (it has a link count > 1)
129  * Return:
130  *	if found returns 1; if not found returns 0; -1 on error
131  */
132 
133 int
chk_lnk(ARCHD * arcn)134 chk_lnk(ARCHD *arcn)
135 {
136 	HRDLNK *pt;
137 	HRDLNK **ppt;
138 	u_int indx;
139 
140 	if (ltab == NULL)
141 		return(-1);
142 	/*
143 	 * ignore those nodes that cannot have hard links
144 	 */
145 	if ((arcn->type == PAX_DIR) || (arcn->sb.st_nlink <= 1))
146 		return(0);
147 
148 	/*
149 	 * hash inode number and look for this file
150 	 */
151 	indx = ((unsigned)arcn->sb.st_ino) % L_TAB_SZ;
152 	if ((pt = ltab[indx]) != NULL) {
153 		/*
154 		 * its hash chain in not empty, walk down looking for it
155 		 */
156 		ppt = &(ltab[indx]);
157 		while (pt != NULL) {
158 			if ((pt->ino == arcn->sb.st_ino) &&
159 			    (pt->dev == arcn->sb.st_dev))
160 				break;
161 			ppt = &(pt->fow);
162 			pt = pt->fow;
163 		}
164 
165 		if (pt != NULL) {
166 			/*
167 			 * found a link. set the node type and copy in the
168 			 * name of the file it is to link to. we need to
169 			 * handle hardlinks to regular files differently than
170 			 * other links.
171 			 */
172 			arcn->ln_nlen = strlcpy(arcn->ln_name, pt->name,
173 				sizeof(arcn->ln_name));
174 			/* XXX truncate? */
175 			if ((size_t)arcn->nlen >= sizeof(arcn->name))
176 				arcn->nlen = sizeof(arcn->name) - 1;
177 			if (arcn->type == PAX_REG)
178 				arcn->type = PAX_HRG;
179 			else
180 				arcn->type = PAX_HLK;
181 
182 			/*
183 			 * if we have found all the links to this file, remove
184 			 * it from the database
185 			 */
186 			if (--pt->nlink <= 1) {
187 				*ppt = pt->fow;
188 				(void)free((char *)pt->name);
189 				(void)free((char *)pt);
190 			}
191 			return(1);
192 		}
193 	}
194 
195 	/*
196 	 * we never saw this file before. It has links so we add it to the
197 	 * front of this hash chain
198 	 */
199 	if ((pt = (HRDLNK *)malloc(sizeof(HRDLNK))) != NULL) {
200 		if ((pt->name = strdup(arcn->name)) != NULL) {
201 			pt->dev = arcn->sb.st_dev;
202 			pt->ino = arcn->sb.st_ino;
203 			pt->nlink = arcn->sb.st_nlink;
204 			pt->fow = ltab[indx];
205 			ltab[indx] = pt;
206 			return(0);
207 		}
208 		(void)free((char *)pt);
209 	}
210 
211 	paxwarn(1, "%s out of memory", "Hard link table");
212 	return(-1);
213 }
214 
215 /*
216  * purg_lnk
217  *	remove reference for a file that we may have added to the data base as
218  *	a potential source for hard links. We ended up not using the file, so
219  *	we do not want to accidently point another file at it later on.
220  */
221 
222 void
purg_lnk(ARCHD * arcn)223 purg_lnk(ARCHD *arcn)
224 {
225 	HRDLNK *pt;
226 	HRDLNK **ppt;
227 	u_int indx;
228 
229 	if (ltab == NULL)
230 		return;
231 	/*
232 	 * do not bother to look if it could not be in the database
233 	 */
234 	if ((arcn->sb.st_nlink <= 1) || (arcn->type == PAX_DIR) ||
235 	    (arcn->type == PAX_HLK) || (arcn->type == PAX_HRG))
236 		return;
237 
238 	/*
239 	 * find the hash chain for this inode value, if empty return
240 	 */
241 	indx = ((unsigned)arcn->sb.st_ino) % L_TAB_SZ;
242 	if ((pt = ltab[indx]) == NULL)
243 		return;
244 
245 	/*
246 	 * walk down the list looking for the inode/dev pair, unlink and
247 	 * free if found
248 	 */
249 	ppt = &(ltab[indx]);
250 	while (pt != NULL) {
251 		if ((pt->ino == arcn->sb.st_ino) &&
252 		    (pt->dev == arcn->sb.st_dev))
253 			break;
254 		ppt = &(pt->fow);
255 		pt = pt->fow;
256 	}
257 	if (pt == NULL)
258 		return;
259 
260 	/*
261 	 * remove and free it
262 	 */
263 	*ppt = pt->fow;
264 	(void)free((char *)pt->name);
265 	(void)free((char *)pt);
266 }
267 
268 /*
269  * lnk_end()
270  *	pull apart a existing link table so we can reuse it. We do this between
271  *	read and write phases of append with update. (The format may have
272  *	used the link table, and we need to start with a fresh table for the
273  *	write phase
274  */
275 
276 void
lnk_end(void)277 lnk_end(void)
278 {
279 	int i;
280 	HRDLNK *pt;
281 	HRDLNK *ppt;
282 
283 	if (ltab == NULL)
284 		return;
285 
286 	for (i = 0; i < L_TAB_SZ; ++i) {
287 		if (ltab[i] == NULL)
288 			continue;
289 		pt = ltab[i];
290 		ltab[i] = NULL;
291 
292 		/*
293 		 * free up each entry on this chain
294 		 */
295 		while (pt != NULL) {
296 			ppt = pt;
297 			pt = ppt->fow;
298 			(void)free((char *)ppt->name);
299 			(void)free((char *)ppt);
300 		}
301 	}
302 	return;
303 }
304 
305 /*
306  * modification time table routines
307  *
308  * The modification time table keeps track of last modification times for all
309  * files stored in an archive during a write phase when -u is set. We only
310  * add a file to the archive if it is newer than a file with the same name
311  * already stored on the archive (if there is no other file with the same
312  * name on the archive it is added). This applies to writes and appends.
313  * An append with an -u must read the archive and store the modification time
314  * for every file on that archive before starting the write phase. It is clear
315  * that this is one HUGE database. To save memory space, the actual file names
316  * are stored in a scratch file and indexed by an in-memory hash table. The
317  * hash table is indexed by hashing the file path. The nodes in the table store
318  * the length of the filename and the lseek offset within the scratch file
319  * where the actual name is stored. Since there are never any deletions from
320  * this table, fragmentation of the scratch file is never a issue. Lookups
321  * seem to not exhibit any locality at all (files in the database are rarely
322  * looked up more than once...), so caching is just a waste of memory. The
323  * only limitation is the amount of scratch file space available to store the
324  * path names.
325  */
326 
327 /*
328  * ftime_start()
329  *	create the file time hash table and open for read/write the scratch
330  *	file. (after created it is unlinked, so when we exit we leave
331  *	no witnesses).
332  * Return:
333  *	0 if the table and file was created ok, -1 otherwise
334  */
335 
336 int
ftime_start(void)337 ftime_start(void)
338 {
339 
340 	if (ftab != NULL)
341 		return(0);
342  	if ((ftab = (FTM **)calloc(F_TAB_SZ, sizeof(FTM *))) == NULL) {
343 		paxwarn(1, "Cannot allocate memory for %s", "file time table");
344 		return(-1);
345 	}
346 
347 	/*
348 	 * get random name and create temporary scratch file, unlink name
349 	 * so it will get removed on exit
350 	 */
351 	memcpy(tempbase, _TFILE_BASE, sizeof(_TFILE_BASE));
352 	if ((ffd = mkstemp(tempfile)) < 0) {
353 		syswarn(1, errno, "Unable to create temporary file: %s",
354 		    tempfile);
355 		return(-1);
356 	}
357 	(void)unlink(tempfile);
358 
359 	return(0);
360 }
361 
362 /*
363  * chk_ftime()
364  *	looks up entry in file time hash table. If not found, the file is
365  *	added to the hash table and the file named stored in the scratch file.
366  *	If a file with the same name is found, the file times are compared and
367  *	the most recent file time is retained. If the new file was younger (or
368  *	was not in the database) the new file is selected for storage.
369  * Return:
370  *	0 if file should be added to the archive, 1 if it should be skipped,
371  *	-1 on error
372  */
373 
374 int
chk_ftime(ARCHD * arcn)375 chk_ftime(ARCHD *arcn)
376 {
377 	FTM *pt;
378 	int namelen;
379 	u_int indx;
380 	char ckname[PAXPATHLEN+1];
381 
382 	/*
383 	 * no info, go ahead and add to archive
384 	 */
385 	if (ftab == NULL)
386 		return(0);
387 
388 	/*
389 	 * hash the pathname and look up in table
390 	 */
391 	namelen = arcn->nlen;
392 	indx = st_hash(arcn->name, namelen, F_TAB_SZ);
393 	if ((pt = ftab[indx]) != NULL) {
394 		/*
395 		 * the hash chain is not empty, walk down looking for match
396 		 * only read up the path names if the lengths match, speeds
397 		 * up the search a lot
398 		 */
399 		while (pt != NULL) {
400 			if (pt->namelen == namelen) {
401 				/*
402 				 * potential match, have to read the name
403 				 * from the scratch file.
404 				 */
405 				if (lseek(ffd,pt->seek,SEEK_SET) != pt->seek) {
406 					syswarn(1, errno, "Failed %s on %s",
407 					    "seek", "file time table");
408 					return(-1);
409 				}
410 				if (read(ffd, ckname, namelen) != namelen) {
411 					syswarn(1, errno, "Failed %s on %s",
412 					    "read", "file time table");
413 					return(-1);
414 				}
415 
416 				/*
417 				 * if the names match, we are done
418 				 */
419 				if (!strncmp(ckname, arcn->name, namelen))
420 					break;
421 			}
422 
423 			/*
424 			 * try the next entry on the chain
425 			 */
426 			pt = pt->fow;
427 		}
428 
429 		if (pt != NULL) {
430 			/*
431 			 * found the file, compare the times, save the newer
432 			 */
433 			if (arcn->sb.st_mtime > pt->mtime) {
434 				/*
435 				 * file is newer
436 				 */
437 				pt->mtime = arcn->sb.st_mtime;
438 				return(0);
439 			}
440 			/*
441 			 * file is older
442 			 */
443 			return(1);
444 		}
445 	}
446 
447 	/*
448 	 * not in table, add it
449 	 */
450 	if ((pt = (FTM *)malloc(sizeof(FTM))) != NULL) {
451 		/*
452 		 * add the name at the end of the scratch file, saving the
453 		 * offset. add the file to the head of the hash chain
454 		 */
455 		if ((pt->seek = lseek(ffd, (off_t)0, SEEK_END)) >= 0) {
456 			if (write(ffd, arcn->name, namelen) == namelen) {
457 				pt->mtime = arcn->sb.st_mtime;
458 				pt->namelen = namelen;
459 				pt->fow = ftab[indx];
460 				ftab[indx] = pt;
461 				return(0);
462 			}
463 			syswarn(1, errno, "Failed %s on %s",
464 			    "write", "file time table");
465 		} else
466 			syswarn(1, errno, "Failed %s on %s",
467 			    "seek", "file time table");
468 	} else
469 		paxwarn(1, "%s out of memory", "File time table");
470 
471 	if (pt != NULL)
472 		(void)free((char *)pt);
473 	return(-1);
474 }
475 
476 /*
477  * Interactive rename table routines
478  *
479  * The interactive rename table keeps track of the new names that the user
480  * assigns to files from tty input. Since this map is unique for each file
481  * we must store it in case there is a reference to the file later in archive
482  * (a link). Otherwise we will be unable to find the file we know was
483  * extracted. The remapping of these files is stored in a memory based hash
484  * table (it is assumed since input must come from /dev/tty, it is unlikely to
485  * be a very large table).
486  */
487 
488 /*
489  * name_start()
490  *	create the interactive rename table
491  * Return:
492  *	0 if successful, -1 otherwise
493  */
494 
495 int
name_start(void)496 name_start(void)
497 {
498 	if (ntab != NULL)
499 		return(0);
500  	if ((ntab = (NAMT **)calloc(N_TAB_SZ, sizeof(NAMT *))) == NULL) {
501 		paxwarn(1, "Cannot allocate memory for %s", "interactive rename table");
502 		return(-1);
503 	}
504 	return(0);
505 }
506 
507 /*
508  * add_name()
509  *	add the new name to old name mapping just created by the user.
510  *	If an old name mapping is found (there may be duplicate names on an
511  *	archive) only the most recent is kept.
512  * Return:
513  *	0 if added, -1 otherwise
514  */
515 
516 int
add_name(char * oname,int onamelen,char * nname)517 add_name(char *oname, int onamelen, char *nname)
518 {
519 	NAMT *pt;
520 	u_int indx;
521 
522 	if (ntab == NULL) {
523 		/*
524 		 * should never happen
525 		 */
526 		paxwarn(0, "No interactive rename table, links may fail");
527 		return(0);
528 	}
529 
530 	/*
531 	 * look to see if we have already mapped this file, if so we
532 	 * will update it
533 	 */
534 	indx = st_hash(oname, onamelen, N_TAB_SZ);
535 	if ((pt = ntab[indx]) != NULL) {
536 		/*
537 		 * look down the has chain for the file
538 		 */
539 		while ((pt != NULL) && (strcmp(oname, pt->oname) != 0))
540 			pt = pt->fow;
541 
542 		if (pt != NULL) {
543 			/*
544 			 * found an old mapping, replace it with the new one
545 			 * the user just input (if it is different)
546 			 */
547 			if (strcmp(nname, pt->nname) == 0)
548 				return(0);
549 
550 			(void)free((char *)pt->nname);
551 			if ((pt->nname = strdup(nname)) == NULL) {
552 				paxwarn(1, "Cannot update rename table");
553 				return(-1);
554 			}
555 			return(0);
556 		}
557 	}
558 
559 	/*
560 	 * this is a new mapping, add it to the table
561 	 */
562 	if ((pt = (NAMT *)malloc(sizeof(NAMT))) != NULL) {
563 		if ((pt->oname = strdup(oname)) != NULL) {
564 			if ((pt->nname = strdup(nname)) != NULL) {
565 				pt->fow = ntab[indx];
566 				ntab[indx] = pt;
567 				return(0);
568 			}
569 			(void)free((char *)pt->oname);
570 		}
571 		(void)free((char *)pt);
572 	}
573 	paxwarn(1, "%s out of memory", "Interactive rename table");
574 	return(-1);
575 }
576 
577 /*
578  * sub_name()
579  *	look up a link name to see if it points at a file that has been
580  *	remapped by the user. If found, the link is adjusted to contain the
581  *	new name (oname is the link to name)
582  */
583 
584 void
sub_name(char * oname,int * onamelen,size_t onamesize)585 sub_name(char *oname, int *onamelen, size_t onamesize)
586 {
587 	NAMT *pt;
588 	u_int indx;
589 
590 	if (ntab == NULL)
591 		return;
592 	/*
593 	 * look the name up in the hash table
594 	 */
595 	indx = st_hash(oname, *onamelen, N_TAB_SZ);
596 	if ((pt = ntab[indx]) == NULL)
597 		return;
598 
599 	while (pt != NULL) {
600 		/*
601 		 * walk down the hash chain looking for a match
602 		 */
603 		if (strcmp(oname, pt->oname) == 0) {
604 			/*
605 			 * found it, replace it with the new name
606 			 * and return (we know that oname has enough space)
607 			 */
608 			*onamelen = strlcpy(oname, pt->nname, onamesize);
609 			if ((size_t)*onamelen >= onamesize)
610 				*onamelen = onamesize - 1; /* XXX truncate? */
611 			return;
612 		}
613 		pt = pt->fow;
614 	}
615 
616 	/*
617 	 * no match, just return
618 	 */
619 	return;
620 }
621 
622 /*
623  * device/inode mapping table routines
624  * (used with formats that store device and inodes fields)
625  *
626  * device/inode mapping tables remap the device field in a archive header. The
627  * device/inode fields are used to determine when files are hard links to each
628  * other. However these values have very little meaning outside of that. This
629  * database is used to solve one of two different problems.
630  *
631  * 1) when files are appended to an archive, while the new files may have hard
632  * links to each other, you cannot determine if they have hard links to any
633  * file already stored on the archive from a prior run of pax. We must assume
634  * that these inode/device pairs are unique only within a SINGLE run of pax
635  * (which adds a set of files to an archive). So we have to make sure the
636  * inode/dev pairs we add each time are always unique. We do this by observing
637  * while the inode field is very dense, the use of the dev field is fairly
638  * sparse. Within each run of pax, we remap any device number of a new archive
639  * member that has a device number used in a prior run and already stored in a
640  * file on the archive. During the read phase of the append, we store the
641  * device numbers used and mark them to not be used by any file during the
642  * write phase. If during write we go to use one of those old device numbers,
643  * we remap it to a new value.
644  *
645  * 2) Often the fields in the archive header used to store these values are
646  * too small to store the entire value. The result is an inode or device value
647  * which can be truncated. This really can foul up an archive. With truncation
648  * we end up creating links between files that are really not links (after
649  * truncation the inodes are the same value). We address that by detecting
650  * truncation and forcing a remap of the device field to split truncated
651  * inodes away from each other. Each truncation creates a pattern of bits that
652  * are removed. We use this pattern of truncated bits to partition the inodes
653  * on a single device to many different devices (each one represented by the
654  * truncated bit pattern). All inodes on the same device that have the same
655  * truncation pattern are mapped to the same new device. Two inodes that
656  * truncate to the same value clearly will always have different truncation
657  * bit patterns, so they will be split from away each other. When we spot
658  * device truncation we remap the device number to a non truncated value.
659  * (for more info see table.h for the data structures involved).
660  */
661 
662 /*
663  * dev_start()
664  *	create the device mapping table
665  * Return:
666  *	0 if successful, -1 otherwise
667  */
668 
669 int
dev_start(void)670 dev_start(void)
671 {
672 	if (dtab != NULL)
673 		return(0);
674  	if ((dtab = (DEVT **)calloc(D_TAB_SZ, sizeof(DEVT *))) == NULL) {
675 		paxwarn(1, "Cannot allocate memory for %s", "device mapping table");
676 		return(-1);
677 	}
678 	return(0);
679 }
680 
681 /*
682  * add_dev()
683  *	add a device number to the table. this will force the device to be
684  *	remapped to a new value if it be used during a write phase. This
685  *	function is called during the read phase of an append to prohibit the
686  *	use of any device number already in the archive.
687  * Return:
688  *	0 if added ok, -1 otherwise
689  */
690 
691 int
add_dev(ARCHD * arcn)692 add_dev(ARCHD *arcn)
693 {
694 	if (chk_dev(arcn->sb.st_dev, 1) == NULL)
695 		return(-1);
696 	return(0);
697 }
698 
699 /*
700  * chk_dev()
701  *	check for a device value in the device table. If not found and the add
702  *	flag is set, it is added. This does NOT assign any mapping values, just
703  *	adds the device number as one that need to be remapped. If this device
704  *	is already mapped, just return with a pointer to that entry.
705  * Return:
706  *	pointer to the entry for this device in the device map table. Null
707  *	if the add flag is not set and the device is not in the table (it is
708  *	not been seen yet). If add is set and the device cannot be added, null
709  *	is returned (indicates an error).
710  */
711 
712 static DEVT *
chk_dev(dev_t dev,int add)713 chk_dev(dev_t dev, int add)
714 {
715 	DEVT *pt;
716 	u_int indx;
717 
718 	if (dtab == NULL)
719 		return(NULL);
720 	/*
721 	 * look to see if this device is already in the table
722 	 */
723 	indx = ((unsigned)dev) % D_TAB_SZ;
724 	if ((pt = dtab[indx]) != NULL) {
725 		while ((pt != NULL) && (pt->dev != dev))
726 			pt = pt->fow;
727 
728 		/*
729 		 * found it, return a pointer to it
730 		 */
731 		if (pt != NULL)
732 			return(pt);
733 	}
734 
735 	/*
736 	 * not in table, we add it only if told to as this may just be a check
737 	 * to see if a device number is being used.
738 	 */
739 	if (add == 0)
740 		return(NULL);
741 
742 	/*
743 	 * allocate a node for this device and add it to the front of the hash
744 	 * chain. Note we do not assign remaps values here, so the pt->list
745 	 * list must be NULL.
746 	 */
747 	if ((pt = (DEVT *)malloc(sizeof(DEVT))) == NULL) {
748 		paxwarn(1, "%s out of memory", "Device map table");
749 		return(NULL);
750 	}
751 	pt->dev = dev;
752 	pt->list = NULL;
753 	pt->fow = dtab[indx];
754 	dtab[indx] = pt;
755 	return(pt);
756 }
757 /*
758  * map_dev()
759  *	given an inode and device storage mask (the mask has a 1 for each bit
760  *	the archive format is able to store in a header), we check for inode
761  *	and device truncation and remap the device as required. Device mapping
762  *	can also occur when during the read phase of append a device number was
763  *	seen (and was marked as do not use during the write phase). WE ASSUME
764  *	that unsigned longs are the same size or bigger than the fields used
765  *	for ino_t and dev_t. If not the types will have to be changed.
766  * Return:
767  *	0 if all ok, -1 otherwise.
768  */
769 
770 int
map_dev(ARCHD * arcn,u_long dev_mask,u_long ino_mask)771 map_dev(ARCHD *arcn, u_long dev_mask, u_long ino_mask)
772 {
773 	DEVT *pt;
774 	DLIST *dpt;
775 	static dev_t lastdev = 0;	/* next device number to try */
776 	int trc_ino = 0;
777 	int trc_dev = 0;
778 	ino_t trunc_bits = 0;
779 	ino_t nino;
780 
781 	if (dtab == NULL)
782 		return(0);
783 	/*
784 	 * check for device and inode truncation, and extract the truncated
785 	 * bit pattern.
786 	 */
787 	if ((arcn->sb.st_dev & (dev_t)dev_mask) != arcn->sb.st_dev)
788 		++trc_dev;
789 	if ((nino = arcn->sb.st_ino & (ino_t)ino_mask) != arcn->sb.st_ino) {
790 		++trc_ino;
791 		trunc_bits = arcn->sb.st_ino & (ino_t)(~ino_mask);
792 	}
793 
794 	/*
795 	 * see if this device is already being mapped, look up the device
796 	 * then find the truncation bit pattern which applies
797 	 */
798 	if ((pt = chk_dev(arcn->sb.st_dev, 0)) != NULL) {
799 		/*
800 		 * this device is already marked to be remapped
801 		 */
802 		for (dpt = pt->list; dpt != NULL; dpt = dpt->fow)
803 			if (dpt->trunc_bits == trunc_bits)
804 				break;
805 
806 		if (dpt != NULL) {
807 			/*
808 			 * we are being remapped for this device and pattern
809 			 * change the device number to be stored and return
810 			 */
811 			arcn->sb.st_dev = dpt->dev;
812 			arcn->sb.st_ino = nino;
813 			return(0);
814 		}
815 	} else {
816 		/*
817 		 * this device is not being remapped YET. if we do not have any
818 		 * form of truncation, we do not need a remap
819 		 */
820 		if (!trc_ino && !trc_dev)
821 			return(0);
822 
823 		/*
824 		 * we have truncation, have to add this as a device to remap
825 		 */
826 		if ((pt = chk_dev(arcn->sb.st_dev, 1)) == NULL)
827 			goto bad;
828 
829 		/*
830 		 * if we just have a truncated inode, we have to make sure that
831 		 * all future inodes that do not truncate (they have the
832 		 * truncation pattern of all 0's) continue to map to the same
833 		 * device number. We probably have already written inodes with
834 		 * this device number to the archive with the truncation
835 		 * pattern of all 0's. So we add the mapping for all 0's to the
836 		 * same device number.
837 		 */
838 		if (!trc_dev && (trunc_bits != 0)) {
839 			if ((dpt = (DLIST *)malloc(sizeof(DLIST))) == NULL)
840 				goto bad;
841 			dpt->trunc_bits = 0;
842 			dpt->dev = arcn->sb.st_dev;
843 			dpt->fow = pt->list;
844 			pt->list = dpt;
845 		}
846 	}
847 
848 	/*
849 	 * look for a device number not being used. We must watch for wrap
850 	 * around on lastdev (so we do not get stuck looking forever!)
851 	 */
852 	while (++lastdev > 0) {
853 		if (chk_dev(lastdev, 0) != NULL)
854 			continue;
855 		/*
856 		 * found an unused value. If we have reached truncation point
857 		 * for this format we are hosed, so we give up. Otherwise we
858 		 * mark it as being used.
859 		 */
860 		if (((lastdev & ((dev_t)dev_mask)) != lastdev) ||
861 		    (chk_dev(lastdev, 1) == NULL))
862 			goto bad;
863 		break;
864 	}
865 
866 	if ((lastdev <= 0) || ((dpt = (DLIST *)malloc(sizeof(DLIST))) == NULL))
867 		goto bad;
868 
869 	/*
870 	 * got a new device number, store it under this truncation pattern.
871 	 * change the device number this file is being stored with.
872 	 */
873 	dpt->trunc_bits = trunc_bits;
874 	dpt->dev = lastdev;
875 	dpt->fow = pt->list;
876 	pt->list = dpt;
877 	arcn->sb.st_dev = lastdev;
878 	arcn->sb.st_ino = nino;
879 	return(0);
880 
881  bad:
882 	paxwarn(1, "Unable to fix truncated inode/device field when storing %s",
883 	    arcn->name);
884 	paxwarn(0, "Archive may create improper hard links when extracted");
885 	return(0);
886 }
887 
888 /*
889  * directory access/mod time reset table routines (for directories READ by pax)
890  *
891  * The pax -t flag requires that access times of archive files be the same
892  * before being read by pax. For regular files, access time is restored after
893  * the file has been copied. This database provides the same functionality for
894  * directories read during file tree traversal. Restoring directory access time
895  * is more complex than files since directories may be read several times until
896  * all the descendants in their subtree are visited by fts. Directory access
897  * and modification times are stored during the fts pre-order visit (done
898  * before any descendants in the subtree are visited) and restored after the
899  * fts post-order visit (after all the descendants have been visited). In the
900  * case of premature exit from a subtree (like from the effects of -n), any
901  * directory entries left in this database are reset during final cleanup
902  * operations of pax. Entries are hashed by inode number for fast lookup.
903  */
904 
905 /*
906  * atdir_start()
907  *	create the directory access time database for directories READ by pax.
908  * Return:
909  *	0 is created ok, -1 otherwise.
910  */
911 
912 int
atdir_start(void)913 atdir_start(void)
914 {
915 	if (atab != NULL)
916 		return(0);
917  	if ((atab = (ATDIR **)calloc(A_TAB_SZ, sizeof(ATDIR *))) == NULL) {
918 		paxwarn(1,"Cannot allocate space for directory access time table");
919 		return(-1);
920 	}
921 	return(0);
922 }
923 
924 
925 /*
926  * atdir_end()
927  *	walk through the directory access time table and reset the access time
928  *	of any directory who still has an entry left in the database. These
929  *	entries are for directories READ by pax
930  */
931 
932 void
atdir_end(void)933 atdir_end(void)
934 {
935 	ATDIR *pt;
936 	int i;
937 
938 	if (atab == NULL)
939 		return;
940 	/*
941 	 * for each non-empty hash table entry reset all the directories
942 	 * chained there.
943 	 */
944 	for (i = 0; i < A_TAB_SZ; ++i) {
945 		if ((pt = atab[i]) == NULL)
946 			continue;
947 		/*
948 		 * remember to force the times, set_ftime() looks at pmtime
949 		 * and patime, which only applies to things CREATED by pax,
950 		 * not read by pax. Read time reset is controlled by -t.
951 		 */
952 		for (; pt != NULL; pt = pt->fow)
953 			set_ftime(pt->name, pt->mtime, pt->atime, 1);
954 	}
955 }
956 
957 /*
958  * add_atdir()
959  *	add a directory to the directory access time table. Table is hashed
960  *	and chained by inode number. This is for directories READ by pax
961  */
962 
963 void
add_atdir(char * fname,dev_t dev,ino_t ino,time_t mtime,time_t atime)964 add_atdir(char *fname, dev_t dev, ino_t ino, time_t mtime, time_t atime)
965 {
966 	ATDIR *pt;
967 	u_int indx;
968 
969 	if (atab == NULL)
970 		return;
971 
972 	/*
973 	 * make sure this directory is not already in the table, if so just
974 	 * return (the older entry always has the correct time). The only
975 	 * way this will happen is when the same subtree can be traversed by
976 	 * different args to pax and the -n option is aborting fts out of a
977 	 * subtree before all the post-order visits have been made.
978 	 */
979 	indx = ((unsigned)ino) % A_TAB_SZ;
980 	if ((pt = atab[indx]) != NULL) {
981 		while (pt != NULL) {
982 			if ((pt->ino == ino) && (pt->dev == dev))
983 				break;
984 			pt = pt->fow;
985 		}
986 
987 		/*
988 		 * oops, already there. Leave it alone.
989 		 */
990 		if (pt != NULL)
991 			return;
992 	}
993 
994 	/*
995 	 * add it to the front of the hash chain
996 	 */
997 	if ((pt = (ATDIR *)malloc(sizeof(ATDIR))) != NULL) {
998 		if ((pt->name = strdup(fname)) != NULL) {
999 			pt->dev = dev;
1000 			pt->ino = ino;
1001 			pt->mtime = mtime;
1002 			pt->atime = atime;
1003 			pt->fow = atab[indx];
1004 			atab[indx] = pt;
1005 			return;
1006 		}
1007 		(void)free((char *)pt);
1008 	}
1009 
1010 	paxwarn(1, "%s out of memory", "Directory access time reset table");
1011 	return;
1012 }
1013 
1014 /*
1015  * get_atdir()
1016  *	look up a directory by inode and device number to obtain the access
1017  *	and modification time you want to set to. If found, the modification
1018  *	and access time parameters are set and the entry is removed from the
1019  *	table (as it is no longer needed). These are for directories READ by
1020  *	pax
1021  * Return:
1022  *	0 if found, -1 if not found.
1023  */
1024 
1025 int
get_atdir(dev_t dev,ino_t ino,time_t * mtime,time_t * atime)1026 get_atdir(dev_t dev, ino_t ino, time_t *mtime, time_t *atime)
1027 {
1028 	ATDIR *pt;
1029 	ATDIR **ppt;
1030 	u_int indx;
1031 
1032 	if (atab == NULL)
1033 		return(-1);
1034 	/*
1035 	 * hash by inode and search the chain for an inode and device match
1036 	 */
1037 	indx = ((unsigned)ino) % A_TAB_SZ;
1038 	if ((pt = atab[indx]) == NULL)
1039 		return(-1);
1040 
1041 	ppt = &(atab[indx]);
1042 	while (pt != NULL) {
1043 		if ((pt->ino == ino) && (pt->dev == dev))
1044 			break;
1045 		/*
1046 		 * no match, go to next one
1047 		 */
1048 		ppt = &(pt->fow);
1049 		pt = pt->fow;
1050 	}
1051 
1052 	/*
1053 	 * return if we did not find it.
1054 	 */
1055 	if (pt == NULL)
1056 		return(-1);
1057 
1058 	/*
1059 	 * found it. return the times and remove the entry from the table.
1060 	 */
1061 	*ppt = pt->fow;
1062 	*mtime = pt->mtime;
1063 	*atime = pt->atime;
1064 	(void)free((char *)pt->name);
1065 	(void)free((char *)pt);
1066 	return(0);
1067 }
1068 
1069 /*
1070  * directory access mode and time storage routines (for directories CREATED
1071  * by pax).
1072  *
1073  * pax requires that extracted directories, by default, have their access/mod
1074  * times and permissions set to the values specified in the archive. During the
1075  * actions of extracting (and creating the destination subtree during -rw copy)
1076  * directories extracted may be modified after being created. Even worse is
1077  * that these directories may have been created with file permissions which
1078  * prohibits any descendants of these directories from being extracted. When
1079  * directories are created by pax, access rights may be added to permit the
1080  * creation of files in their subtree. Every time pax creates a directory, the
1081  * times and file permissions specified by the archive are stored. After all
1082  * files have been extracted (or copied), these directories have their times
1083  * and file modes reset to the stored values. The directory info is restored in
1084  * reverse order as entries were added to the data file from root to leaf. To
1085  * restore atime properly, we must go backwards. The data file consists of
1086  * records with two parts, the file name followed by a DIRDATA trailer. The
1087  * fixed sized trailer contains the size of the name plus the off_t location in
1088  * the file. To restore we work backwards through the file reading the trailer
1089  * then the file name.
1090  */
1091 
1092 /*
1093  * dir_start()
1094  *	set up the directory time and file mode storage for directories CREATED
1095  *	by pax.
1096  * Return:
1097  *	0 if ok, -1 otherwise
1098  */
1099 
1100 int
dir_start(void)1101 dir_start(void)
1102 {
1103 	if (dirp != NULL)
1104 		return(0);
1105 
1106 	dirsize = DIRP_SIZE;
1107 	if ((dirp = calloc(dirsize, sizeof(DIRDATA))) == NULL) {
1108 		paxwarn(1, "Unable to allocate memory for directory times");
1109 		return(-1);
1110 	}
1111 	return(0);
1112 }
1113 
1114 /*
1115  * add_dir()
1116  *	add the mode and times for a newly CREATED directory
1117  *	name is name of the directory, psb the stat buffer with the data in it,
1118  *	frc_mode is a flag that says whether to force the setting of the mode
1119  *	(ignoring the user set values for preserving file mode). Frc_mode is
1120  *	for the case where we created a file and found that the resulting
1121  *	directory was not writeable and the user asked for file modes to NOT
1122  *	be preserved. (we have to preserve what was created by default, so we
1123  *	have to force the setting at the end. this is stated explicitly in the
1124  *	pax spec)
1125  */
1126 
1127 void
add_dir(char * name,struct stat * psb,int frc_mode)1128 add_dir(char *name, struct stat *psb, int frc_mode)
1129 {
1130 	DIRDATA *dblk;
1131 #if (_POSIX_VERSION >= 200809L)
1132 	char *rp = NULL;
1133 #else
1134 	char realname[MAXPATHLEN], *rp;
1135 #endif
1136 
1137 	if (dirp == NULL)
1138 		return;
1139 
1140 	if (havechd && *name != '/') {
1141 #if (_POSIX_VERSION >= 200809L)
1142 		if ((rp = realpath(name, NULL)) == NULL)
1143 #else
1144 		if ((rp = realpath(name, realname)) == NULL)
1145 #endif
1146 		    {
1147 			paxwarn(1, "Cannot canonicalise %s", name);
1148 			return;
1149 		}
1150 		name = rp;
1151 	}
1152 	if (dircnt == (long)dirsize) {
1153 		dblk = realloc(dirp, 2 * dirsize * sizeof(DIRDATA));
1154 		if (dblk == NULL) {
1155 			paxwarn(1, "Unable to store mode and times for created"
1156 			    " directory: %s", name);
1157 #if (_POSIX_VERSION >= 200809L)
1158 			free(rp);
1159 #endif
1160 			return;
1161 		}
1162 		dirp = dblk;
1163 		dirsize *= 2;
1164 	}
1165 	dblk = &dirp[dircnt];
1166 	if ((dblk->name = strdup(name)) == NULL) {
1167 		paxwarn(1, "Unable to store mode and times for created"
1168 		    " directory: %s", name);
1169 #if (_POSIX_VERSION >= 200809L)
1170 		free(rp);
1171 #endif
1172 		return;
1173 	}
1174 	dblk->mode = psb->st_mode & 0xffff;
1175 	dblk->mtime = psb->st_mtime;
1176 	dblk->atime = psb->st_atime;
1177 	dblk->frc_mode = frc_mode;
1178 	++dircnt;
1179 #if (_POSIX_VERSION >= 200809L)
1180 	free(rp);
1181 #endif
1182 }
1183 
1184 /*
1185  * proc_dir()
1186  *	process all file modes and times stored for directories CREATED
1187  *	by pax
1188  */
1189 
1190 void
proc_dir(void)1191 proc_dir(void)
1192 {
1193 	DIRDATA *dblk;
1194 	long cnt;
1195 
1196 	if (dirp == NULL)
1197 		return;
1198 	/*
1199 	 * read backwards through the file and process each directory
1200 	 */
1201 	cnt = dircnt;
1202 	while (--cnt >= 0) {
1203 		/*
1204 		 * frc_mode set, make sure we set the file modes even if
1205 		 * the user didn't ask for it (see file_subs.c for more info)
1206 		 */
1207 		dblk = &dirp[cnt];
1208 		if (pmode || dblk->frc_mode)
1209 			set_pmode(dblk->name, dblk->mode);
1210 		if (patime || pmtime)
1211 			set_ftime(dblk->name, dblk->mtime, dblk->atime, 0);
1212 		free(dblk->name);
1213 	}
1214 
1215 	free(dirp);
1216 	dirp = NULL;
1217 	dircnt = 0;
1218 }
1219 
1220 /*
1221  * database independent routines
1222  */
1223 
1224 /*
1225  * st_hash()
1226  *	hashes filenames to a u_int for hashing into a table. Looks at the tail
1227  *	end of file, as this provides far better distribution than any other
1228  *	part of the name. For performance reasons we only care about the last
1229  *	MAXKEYLEN chars (should be at LEAST large enough to pick off the file
1230  *	name). Was tested on 500,000 name file tree traversal from the root
1231  *	and gave almost a perfectly uniform distribution of keys when used with
1232  *	prime sized tables (MAXKEYLEN was 128 in test). Hashes (sizeof int)
1233  *	chars at a time and pads with 0 for last addition.
1234  * Return:
1235  *	the hash value of the string MOD (%) the table size.
1236  */
1237 
1238 u_int
st_hash(const char * name,int len,int tabsz)1239 st_hash(const char *name, int len, int tabsz)
1240 {
1241 	const char *pt;
1242 	char *dest;
1243 	const char *end;
1244 	int i;
1245 	u_int key = 0;
1246 	int steps;
1247 	int res;
1248 	u_int val;
1249 
1250 	/*
1251 	 * only look at the tail up to MAXKEYLEN, we do not need to waste
1252 	 * time here (remember these are pathnames, the tail is what will
1253 	 * spread out the keys)
1254 	 */
1255 	if (len > MAXKEYLEN) {
1256 		pt = &(name[len - MAXKEYLEN]);
1257 		len = MAXKEYLEN;
1258 	} else
1259 		pt = name;
1260 
1261 	/*
1262 	 * calculate the number of u_int size steps in the string and if
1263 	 * there is a runt to deal with
1264 	 */
1265 	steps = len/sizeof(u_int);
1266 	res = len % sizeof(u_int);
1267 
1268 	/*
1269 	 * add up the value of the string in unsigned integer sized pieces
1270 	 * too bad we cannot have unsigned int aligned strings, then we
1271 	 * could avoid the expensive copy.
1272 	 */
1273 	for (i = 0; i < steps; ++i) {
1274 		end = pt + sizeof(u_int);
1275 		dest = (char *)&val;
1276 		while (pt < end)
1277 			*dest++ = *pt++;
1278 		key += val;
1279 	}
1280 
1281 	/*
1282 	 * add in the runt padded with zero to the right
1283 	 */
1284 	if (res) {
1285 		val = 0;
1286 		end = pt + res;
1287 		dest = (char *)&val;
1288 		while (pt < end)
1289 			*dest++ = *pt++;
1290 		key += val;
1291 	}
1292 
1293 	/*
1294 	 * return the result mod the table size
1295 	 */
1296 	return(key % tabsz);
1297 }
1298 
1299 /* Forward hard link anonymisation routines */
1300 
1301 /*
1302  * flnk_start
1303  *	Creates the hard link table.
1304  * Return:
1305  *	0 if created, -1 if failure
1306  */
1307 
1308 int
flnk_start(void)1309 flnk_start(void)
1310 {
1311 	if (fltab != NULL)
1312 		return (0);
1313  	if ((fltab = (HRDFLNK **)calloc(L_TAB_SZ, sizeof(HRDFLNK *))) == NULL) {
1314 		paxwarn(1, "Cannot allocate memory for %s", "hard link table");
1315 		return (-1);
1316 	}
1317 	return (0);
1318 }
1319 
1320 /*
1321  * chk_flnk()
1322  *	Looks up entry in hard link hash table. If found, it copies the name
1323  *	of the file it is linked to (we already saw that file) into ln_name.
1324  *	lnkcnt is decremented and if goes to 1 the node is deleted from the
1325  *	database. (We have seen all the links to this file). If not found,
1326  *	we add the file to the database if it has the potential for having
1327  *	hard links to other files we may process (it has a link count > 1)
1328  * Return:
1329  *	if found returns the new inode number; -1 on error
1330  */
1331 
1332 int
chk_flnk(ARCHD * arcn)1333 chk_flnk(ARCHD *arcn)
1334 {
1335 	HRDFLNK *pt;
1336 	HRDFLNK **ppt;
1337 	u_int indx;
1338 	static ino_t running = 3;
1339 
1340 	if (fltab == NULL)
1341 		return (-1);
1342 	/*
1343 	 * ignore those nodes that cannot have hard links
1344 	 */
1345 	if ((arcn->type == PAX_DIR) || (arcn->sb.st_nlink <= 1))
1346 		return (running++);
1347 
1348 	/*
1349 	 * hash inode number and look for this file
1350 	 */
1351 	indx = ((unsigned)arcn->sb.st_ino) % L_TAB_SZ;
1352 	if ((pt = fltab[indx]) != NULL) {
1353 		/*
1354 		 * it's hash chain in not empty, walk down looking for it
1355 		 */
1356 		ppt = &(fltab[indx]);
1357 		while (pt != NULL) {
1358 			if ((pt->ino == arcn->sb.st_ino) &&
1359 			    (pt->dev == arcn->sb.st_dev))
1360 				break;
1361 			ppt = &(pt->fow);
1362 			pt = pt->fow;
1363 		}
1364 
1365 		if (pt != NULL) {
1366 			/* found a link */
1367 			ino_t rv = pt->newi;
1368 			/* so cpio doesn't write file data twice */
1369 			arcn->type |= PAX_LINKOR;
1370 			/*
1371 			 * if we have found all the links to this file, remove
1372 			 * it from the database
1373 			 */
1374 			if (--pt->nlink <= 1) {
1375 				*ppt = pt->fow;
1376 				(void)free((char *)pt);
1377 			}
1378 			return (rv);
1379 		}
1380 	}
1381 
1382 	/*
1383 	 * we never saw this file before. It has links so we add it to the
1384 	 * front of this hash chain
1385 	 */
1386 	if ((pt = (HRDFLNK *)malloc(sizeof(HRDFLNK))) != NULL) {
1387 		pt->dev = arcn->sb.st_dev;
1388 		pt->ino = arcn->sb.st_ino;
1389 		pt->nlink = arcn->sb.st_nlink;
1390 		pt->fow = fltab[indx];
1391 		pt->newi = running++;
1392 		fltab[indx] = pt;
1393 		return (pt->newi);
1394 	}
1395 
1396 	paxwarn(1, "%s out of memory", "Hard link table");
1397 	return (-1);
1398 }
1399