Update

Author: IamJomm

client.cpp

@@ -127,15 +127,19 @@ class project {
                         it.key().c_str());
                     owner.sock.send("removeDir " + path + it.key());
                     owner.sock.send("createFile " + path + it.key());
-                    owner.sock.sendFile(prjPath + path + it.key(), progressBar);
+                    if (owner.sock.recv() == "ok")
+                        owner.sock.sendFile(prjPath + path + it.key(),
+                                            &progressBar);
                 } else if (newjs[it.key()].is_object()) {
                     compJson(it.value(), newjs[it.key()],
                              path + it.key() + '/');
                 } else if (it.value() != newjs[it.key()]) {
                     printw("File ./%s%s was changed.\n", path.c_str(),
                            it.key().c_str());
                     owner.sock.send("createFile " + path + it.key());
-                    owner.sock.sendFile(prjPath + path + it.key(), progressBar);
+                    if (owner.sock.recv() == "ok")
+                        owner.sock.sendFile(prjPath + path + it.key(),
+                                            &progressBar);
                 }
             } else {
                 if (it.value().is_object() || it.value().is_null()) {
@@ -161,7 +165,9 @@ class project {
                     printw("File ./%s%s was created.\n", path.c_str(),
                            it.key().c_str());
                     owner.sock.send("createFile " + path + it.key());
-                    owner.sock.sendFile(prjPath + path + it.key(), progressBar);
+                    if (owner.sock.recv() == "ok")
+                        owner.sock.sendFile(prjPath + path + it.key(),
+                                            &progressBar);
                 }
             }
         }
@@ -213,7 +219,7 @@ class project {
                 fs::create_directory(prjPath + path);
             } else if (action == "createFile") {
                 printw("File %s was created\n", path.c_str());
-                owner.sock.recvFile(prjPath + path, progressBar);
+                owner.sock.recvFile(prjPath + path, &progressBar);
             }
         }
     }

server.cpp

@@ -90,6 +90,22 @@ class client {
 };
 
 class project {
+   private:
+    void downloadHelp(const string& path) {
+        for (const fs::directory_entry& entry : fs::directory_iterator(path)) {
+            string filePath = entry.path().string();
+            if (entry.is_directory()) {
+                owner.sock.send("createDir " +
+                                filePath.substr(prjPath.length()));
+                downloadHelp(filePath);
+            } else {
+                owner.sock.send("createFile " +
+                                filePath.substr(prjPath.length()));
+                owner.sock.sendFile(filePath);
+            }
+        }
+    }
+
    public:
     client owner;
     string prjPath;
@@ -167,18 +183,21 @@ class project {
                 sqlite3_finalize(stmt);
                 while ((command = owner.sock.recv())[0] != '{') {
                     string action = command.substr(0, command.find(' '));
-                    if (action == "createDir")
-                        fs::create_directory(
-                            prjPath + command.substr(command.find(' ') + 1));
-                    else if (action == "removeDir")
-                        fs::remove_all(prjPath +
-                                       command.substr(command.find(' ') + 1));
-                    else if (action == "createFile")
-                        owner.sock.recvFile(
-                            prjPath + command.substr(command.find(' ') + 1));
-                    else if (action == "removeFile")
-                        fs::remove(prjPath +
-                                   command.substr(command.find(' ') + 1));
+                    string path =
+                        prjPath + command.substr(command.find(' ') + 1);
+                    if (path.find("../") != string::npos)
+                        owner.sock.send("not ok");
+                    else {
+                        owner.sock.send("ok");
+                        if (action == "createDir")
+                            fs::create_directory(path);
+                        else if (action == "removeDir")
+                            fs::remove_all(path);
+                        else if (action == "createFile")
+                            owner.sock.recvFile(path);
+                        else if (action == "removeFile")
+                            fs::remove(path);
+                    }
                 }
                 sqlite3_prepare_v2(db,
                                    "update projects set dirTree=? where id=?;",
@@ -191,19 +210,9 @@ class project {
         }
     }
 
-    void download(const string& path) {
-        for (const fs::directory_entry& entry : fs::directory_iterator(path)) {
-            string filePath = entry.path().string();
-            if (entry.is_directory()) {
-                owner.sock.send("createDir " +
-                                filePath.substr(prjPath.length()));
-                download(filePath);
-            } else {
-                owner.sock.send("createFile " +
-                                filePath.substr(prjPath.length()));
-                owner.sock.sendFile(filePath);
-            }
-        }
+    void download() {
+        downloadHelp(prjPath);
+        owner.sock.send("done");
     }
 
     project(client& x, const string& y) : owner(x), prjPath(y) {}
@@ -227,17 +236,15 @@ void handleClient(client client, sqlite3* db, string path) {
         project.open(db);
     } else if (command == "downloadPrj") {
         project.set(db);
-        project.download(project.prjPath);
-        client.sock.send("done");
+        project.download();
         project.open(db);
     }
     close(client.sock.sock);
     cout << "[-] Client disconnected." << endl;
 }
 
 int main(int argc, char* argv[]) {
-    string path(argv[0]);
-    path = path.substr(0, path.rfind('/') + 1);
+    string path = fs::canonical(argv[0]).parent_path().string() + '/';
 
     sqlite3* db;
     if (sqlite3_open((path + "users.db").c_str(), &db) != SQLITE_OK) {

sr.hpp

@@ -17,11 +17,10 @@ class clsSock {
         ::send(sock, msg.c_str(), msgSize, 0);
     }
     string recv() {
+        short msgSize;
+        ::recv(sock, (char*)&msgSize, sizeof(msgSize), 0);
         string res;
         char buffer[1024];
-        ::recv(sock, buffer, sizeof(short), 0);
-        short msgSize;
-        memcpy(&msgSize, buffer, sizeof(short));
         while (msgSize) {
             memset(buffer, 0, sizeof(buffer));
             msgSize -=
@@ -48,6 +47,7 @@ class clsSock {
             memset(buffer, 0, sizeof(buffer));
             if (callback) callback(fileSize - bytesLeft, fileSize);
         }
+        input.close();
     }
 
     void recvFile(const string& path,
@@ -59,12 +59,13 @@ class clsSock {
         long bytesLeft = fileSize;
         while (bytesLeft) {
             memset(buffer, 0, sizeof(buffer));
-            int bytesReceived =
-                ::recv(sock, buffer, min(bytesLeft, (long)sizeof(buffer)), 0);
-            output.write(buffer, bytesReceived);
-            bytesLeft -= bytesReceived;
+            int bytesToRecv = min(bytesLeft, (long)sizeof(buffer));
+            ::recv(sock, buffer, bytesToRecv, MSG_WAITALL);
+            output.write(buffer, bytesToRecv);
+            bytesLeft -= bytesToRecv;
             if (callback) callback(fileSize - bytesLeft, fileSize);
         }
+        output.close();
     }
 
     clsSock() : sock(socket(AF_INET, SOCK_STREAM, 0)) {}

test/downtest.cpp

@@ -0,0 +1,5 @@
+#include <iostream>
+
+using namespace std;
+
+int main(int argc, char* argv[]) {}