metasploit-framework/lib/rex/proto/tftp/client.rb

# $Id$
require 'rex/socket'
require 'rex/proto/tftp'
require 'tempfile'

module Rex
module Proto
module TFTP


#
# TFTP Client class
#
# Note that TFTP has blocks, and so does Ruby. Watch out with the variable names!
class Client

	attr_accessor :local_host, :local_port, :peer_host, :peer_port
	attr_accessor :threads, :context, :server_sock, :client_sock
	attr_accessor :local_file, :remote_file, :mode, :action
	attr_accessor :complete, :recv_tempfile

	# Returns an array of [code, type, msg]. Data packets
	# should set strip to false, or else trailing spaces and nulls
	# will be dropped during unpacking.
	def parse_tftp_msg(str,strip=true)
		return nil unless str.length >= 4
		ret = str.unpack("nnA*")
		ret[2] = str[4,str.size] unless strip
		return ret
	end

	def initialize(params)
		self.threads = []
		self.local_host = params["LocalHost"] || "0.0.0.0"
		self.local_port = params["LocalPort"] || (1025 + rand(0xffff-1025))
		self.peer_host = params["PeerHost"] || (raise ArgumentError, "Need a peer host.")
		self.peer_port = params["PeerPort"] || 69
		self.context = params["Context"] || {}
		self.local_file = params["LocalFile"] || (raise ArgumentError, "Need a local file.")
		self.remote_file = params["RemoteFile"] || ::File.split(self.local_file).last
		self.mode = params["Mode"] || "octet"
		self.action = params["Action"] || (raise ArgumentError, "Need an action.")
	end

	#
	# Methods for both upload and download
	#
	
	def start_server_socket
		self.server_sock = Rex::Socket::Udp.create(
			'LocalHost' => local_host,
			'LocalPort' => local_port,
			'Context'   => context
		)
		if self.server_sock and block_given?
			yield "Started TFTP client listener on #{local_host}:#{local_port}"
		end
		self.threads << Rex::ThreadFactory.spawn("TFTPServerMonitor", false) {
			monitor_server_sock {|msg| yield msg}
		}
	end

	def monitor_server_sock
		yield "Listening for incoming ACKs" if block_given?
		res = self.server_sock.recvfrom(65535)
		if res and res[0]
			code, type, data = parse_tftp_msg(res[0])
			if code == 4 && self.action == :upload
				send_data(res[1], res[2]) {|msg| yield msg}
			elsif code == 3 && self.action == :download
				recv_data(res[1], res[2], data) {|msg| yield msg}
			else
				yield("Aborting, got code:%d, type:%d, message:'%s'" % [code, type, msg]) if block_given?
				stop
			end
		end
		stop
	end

	def monitor_client_sock
		res = self.client_sock.recvfrom(65535)
		if res[1] # Got a response back, so that's never good; Acks come back on server_sock.
			code, type, msg = parse_tftp_msg(res[0])
			yield("Aborting, got code:%d, type:%d, message:'%s'" % [code, type, msg]) if block_given?
			stop
		end
	end

	def stop
		self.complete = true
		self.threads.each {|t| t.kill}
		self.server_sock.close rescue nil # might be closed already
		self.client_sock.close rescue nil # might be closed already
	end

	#
	# Methods for download
	#
	
	def rrq_packet
		req = [OpRead, self.remote_file, self.mode]
		packstr = "na#{self.remote_file.length+1}a#{self.mode.length+1}"
		req.pack(packstr)
	end

	def ack_packet(blocknum=0)
		req = [OpAck, blocknum].pack("nn")
	end

	def send_read_request(&block)
		if block_given?
			start_server_socket {|msg| yield msg}
		else
			start_server_socket
		end
		self.client_sock = Rex::Socket::Udp.create(
			'PeerHost'  => peer_host,
			'PeerPort'  => peer_port,
			'LocalHost' => local_host,
			'LocalPort' => local_port,
			'Context'   => context
		)
		self.client_sock.sendto(rrq_packet, peer_host, peer_port)
		self.threads << Rex::ThreadFactory.spawn("TFTPClientMonitor", false) {
			monitor_client_sock {|msg| yield msg}
		}
	end

	def recv_data(host, port, first_block)
		self.recv_tempfile = Rex::Quickfile.new('msf-tftp')
		recvd_blocks = 1
		if block_given?
			yield "Source file: #{self.remote_file}, destination file: #{self.local_file}"
			yield "Received and acknowledged #{first_block.size} in block #{recvd_blocks}"
		end
		write_and_ack_data(first_block,1,host,port) {|msg| yield msg}
		current_block = first_block
		while current_block.size == 512
			res = self.server_sock.recvfrom(65535)
			if res and res[0]
				code, block_num, current_block = parse_tftp_msg(res[0])
				if code == 3
					write_and_ack_data(current_block,block_num,host,port) {|msg| yield msg}
					recvd_blocks += 1
				else
					yield("Aborting, got code:%d, type:%d, message:'%s'" % [code, type, msg]) if block_given?
					stop
				end
			end
		end
		yield("Transferred #{recvd_blocks} blocks, download complete!")
		self.recv_tempfile.close
		stop
	end

	def write_and_ack_data(data,blocknum,host,port)
		self.recv_tempfile.write(data)
		self.recv_tempfile.flush
		req = ack_packet(blocknum)
		self.server_sock.sendto(req, host, port)
		yield "Received and acknowledged #{data.size} in block #{blocknum}"
	end


	#
	# Methods for upload
	#

	def wrq_packet
		req = "\x00\x02"
		req += self.remote_file
		req += "\x00"
		req += self.mode
		req += "\x00"
	end

	def blockify_file
		data = ::File.open(self.local_file, "rb") {|f| f.read f.stat.size}
		data.scan(/.{1,512}/)
	end

	def send_write_request(&block)
		if block_given?
			start_server_socket {|msg| yield msg}
		else
			start_server_socket
		end
		self.client_sock = Rex::Socket::Udp.create(
			'PeerHost'  => peer_host,
			'PeerPort'  => peer_port,
			'LocalHost' => local_host,
			'LocalPort' => local_port,
			'Context'   => context
		)
		self.client_sock.sendto(wrq_packet, peer_host, peer_port)
		self.threads << Rex::ThreadFactory.spawn("TFTPClientMonitor", false) {
			monitor_client_sock {|msg| yield msg}
		}
	end

	def send_data(host,port)
		data_blocks = blockify_file()
		sent_data = 0
		sent_blocks = 0
		expected_blocks = data_blocks.size
		expected_size = data_blocks.join.size
		if block_given?
			yield "Source file: #{self.local_file}, destination file: #{self.remote_file}"
			yield "Sending #{expected_size} bytes (#{expected_blocks} blocks)"
		end
		data_blocks.each_with_index do |data_block,idx|
			req = [3, (idx + 1), data_block].pack("nnA*")
			if self.server_sock.sendto(req, host, port) > 0
				sent_data += data_block.size
			end
			res = self.server_sock.recvfrom(65535)
			if res
				code, type, msg = parse_tftp_msg(res[0])
				if code == 4
					sent_blocks += 1
					yield "Sent #{data_block.size} bytes in block #{sent_blocks}" if block_given?
				else
					if block_given?
						yield "Got an unexpected response: Code:%d, Type:%d, Message:'%s'. Aborting." % [code, type, msg]
					end
					break
				end
			end
		end
		if block_given?
			if(sent_data == expected_size)
				yield "Upload complete!"
			else
				yield "Upload complete, but with errors."
			end
		end
	end

end

end
end
end
First draft of a TFTP client. Could use some actual error checking and also needs to expose more options. 2011-12-17 00:39:09 +00:00			`# $Id$`
			`require 'rex/socket'`
			`require 'rex/proto/tftp'`
Adding download and loot functionality. Still need to deal with the use case of not passing a block; blocks should not be required, it should be okay to invoke and just wait for the complete attribute to be true. You'll miss out on error messages but eh, maybe those should be return values. 2011-12-19 21:50:50 +00:00			`require 'tempfile'`
First draft of a TFTP client. Could use some actual error checking and also needs to expose more options. 2011-12-17 00:39:09 +00:00
			`module Rex`
			`module Proto`
			`module TFTP`


			`#`
			`# TFTP Client class`
			`#`
			`# Note that TFTP has blocks, and so does Ruby. Watch out with the variable names!`
			`class Client`

			`attr_accessor :local_host, :local_port, :peer_host, :peer_port`
Updating TFTP client. Now with grown-up thread handling. No longer blocks on successful connections. 2011-12-19 18:14:40 +00:00			`attr_accessor :threads, :context, :server_sock, :client_sock`
Adding download and loot functionality. Still need to deal with the use case of not passing a block; blocks should not be required, it should be okay to invoke and just wait for the complete attribute to be true. You'll miss out on error messages but eh, maybe those should be return values. 2011-12-19 21:50:50 +00:00			`attr_accessor :local_file, :remote_file, :mode, :action`
			`attr_accessor :complete, :recv_tempfile`
Adding more to TFTP. Still need a read tho Adds error checking and some helpful messaging in the event of an error. In the event of a failed transfer the module exits immediately, but in success, I'm still hanging around for several seconds after. Not a deal breaker but can be annoying. Also, need to implement a read as well as a write and store it as loot, to be actually useful for most TFTP checking. 2011-12-19 03:05:27 +00:00
Adding download and loot functionality. Still need to deal with the use case of not passing a block; blocks should not be required, it should be okay to invoke and just wait for the complete attribute to be true. You'll miss out on error messages but eh, maybe those should be return values. 2011-12-19 21:50:50 +00:00			`# Returns an array of [code, type, msg]. Data packets`
			`# should set strip to false, or else trailing spaces and nulls`
			`# will be dropped during unpacking.`
			`def parse_tftp_msg(str,strip=true)`
Adding more to TFTP. Still need a read tho Adds error checking and some helpful messaging in the event of an error. In the event of a failed transfer the module exits immediately, but in success, I'm still hanging around for several seconds after. Not a deal breaker but can be annoying. Also, need to implement a read as well as a write and store it as loot, to be actually useful for most TFTP checking. 2011-12-19 03:05:27 +00:00			`return nil unless str.length >= 4`
			`ret = str.unpack("nnA*")`
Adding download and loot functionality. Still need to deal with the use case of not passing a block; blocks should not be required, it should be okay to invoke and just wait for the complete attribute to be true. You'll miss out on error messages but eh, maybe those should be return values. 2011-12-19 21:50:50 +00:00			`ret[2] = str[4,str.size] unless strip`
Adding more to TFTP. Still need a read tho Adds error checking and some helpful messaging in the event of an error. In the event of a failed transfer the module exits immediately, but in success, I'm still hanging around for several seconds after. Not a deal breaker but can be annoying. Also, need to implement a read as well as a write and store it as loot, to be actually useful for most TFTP checking. 2011-12-19 03:05:27 +00:00			`return ret`
			`end`
First draft of a TFTP client. Could use some actual error checking and also needs to expose more options. 2011-12-17 00:39:09 +00:00
			`def initialize(params)`
Updating TFTP client. Now with grown-up thread handling. No longer blocks on successful connections. 2011-12-19 18:14:40 +00:00			`self.threads = []`
First draft of a TFTP client. Could use some actual error checking and also needs to expose more options. 2011-12-17 00:39:09 +00:00			`self.local_host = params["LocalHost"] \|\| "0.0.0.0"`
			`self.local_port = params["LocalPort"] \|\| (1025 + rand(0xffff-1025))`
			`self.peer_host = params["PeerHost"] \|\| (raise ArgumentError, "Need a peer host.")`
			`self.peer_port = params["PeerPort"] \|\| 69`
			`self.context = params["Context"] \|\| {}`
Adding download and loot functionality. Still need to deal with the use case of not passing a block; blocks should not be required, it should be okay to invoke and just wait for the complete attribute to be true. You'll miss out on error messages but eh, maybe those should be return values. 2011-12-19 21:50:50 +00:00			`self.local_file = params["LocalFile"] \|\| (raise ArgumentError, "Need a local file.")`
First draft of a TFTP client. Could use some actual error checking and also needs to expose more options. 2011-12-17 00:39:09 +00:00			`self.remote_file = params["RemoteFile"] \|\| ::File.split(self.local_file).last`
Adding more to TFTP. Still need a read tho Adds error checking and some helpful messaging in the event of an error. In the event of a failed transfer the module exits immediately, but in success, I'm still hanging around for several seconds after. Not a deal breaker but can be annoying. Also, need to implement a read as well as a write and store it as loot, to be actually useful for most TFTP checking. 2011-12-19 03:05:27 +00:00			`self.mode = params["Mode"] \|\| "octet"`
Adding download and loot functionality. Still need to deal with the use case of not passing a block; blocks should not be required, it should be okay to invoke and just wait for the complete attribute to be true. You'll miss out on error messages but eh, maybe those should be return values. 2011-12-19 21:50:50 +00:00			`self.action = params["Action"] \|\| (raise ArgumentError, "Need an action.")`
First draft of a TFTP client. Could use some actual error checking and also needs to expose more options. 2011-12-17 00:39:09 +00:00			`end`

Adding download and loot functionality. Still need to deal with the use case of not passing a block; blocks should not be required, it should be okay to invoke and just wait for the complete attribute to be true. You'll miss out on error messages but eh, maybe those should be return values. 2011-12-19 21:50:50 +00:00			`#`
			`# Methods for both upload and download`
			`#`

Updating TFTP client. Now with grown-up thread handling. No longer blocks on successful connections. 2011-12-19 18:14:40 +00:00			`def start_server_socket`
			`self.server_sock = Rex::Socket::Udp.create(`
First draft of a TFTP client. Could use some actual error checking and also needs to expose more options. 2011-12-17 00:39:09 +00:00			`'LocalHost' => local_host,`
			`'LocalPort' => local_port,`
			`'Context' => context`
			`)`
Updating TFTP client. Now with grown-up thread handling. No longer blocks on successful connections. 2011-12-19 18:14:40 +00:00			`if self.server_sock and block_given?`
First draft of a TFTP client. Could use some actual error checking and also needs to expose more options. 2011-12-17 00:39:09 +00:00			`yield "Started TFTP client listener on #{local_host}:#{local_port}"`
			`end`
Updating TFTP client. Now with grown-up thread handling. No longer blocks on successful connections. 2011-12-19 18:14:40 +00:00			`self.threads << Rex::ThreadFactory.spawn("TFTPServerMonitor", false) {`
			`monitor_server_sock {\|msg\| yield msg}`
First draft of a TFTP client. Could use some actual error checking and also needs to expose more options. 2011-12-17 00:39:09 +00:00			`}`
Updating TFTP client. Now with grown-up thread handling. No longer blocks on successful connections. 2011-12-19 18:14:40 +00:00			`end`

			`def monitor_server_sock`
Adding download and loot functionality. Still need to deal with the use case of not passing a block; blocks should not be required, it should be okay to invoke and just wait for the complete attribute to be true. You'll miss out on error messages but eh, maybe those should be return values. 2011-12-19 21:50:50 +00:00			`yield "Listening for incoming ACKs" if block_given?`
			`res = self.server_sock.recvfrom(65535)`
			`if res and res[0]`
			`code, type, data = parse_tftp_msg(res[0])`
			`if code == 4 && self.action == :upload`
Updating TFTP client. Now with grown-up thread handling. No longer blocks on successful connections. 2011-12-19 18:14:40 +00:00			`send_data(res[1], res[2]) {\|msg\| yield msg}`
Adding download and loot functionality. Still need to deal with the use case of not passing a block; blocks should not be required, it should be okay to invoke and just wait for the complete attribute to be true. You'll miss out on error messages but eh, maybe those should be return values. 2011-12-19 21:50:50 +00:00			`elsif code == 3 && self.action == :download`
			`recv_data(res[1], res[2], data) {\|msg\| yield msg}`
			`else`
			`yield("Aborting, got code:%d, type:%d, message:'%s'" % [code, type, msg]) if block_given?`
			`stop`
Updating TFTP client. Now with grown-up thread handling. No longer blocks on successful connections. 2011-12-19 18:14:40 +00:00			`end`
Adding download and loot functionality. Still need to deal with the use case of not passing a block; blocks should not be required, it should be okay to invoke and just wait for the complete attribute to be true. You'll miss out on error messages but eh, maybe those should be return values. 2011-12-19 21:50:50 +00:00			`end`
Updating TFTP client. Now with grown-up thread handling. No longer blocks on successful connections. 2011-12-19 18:14:40 +00:00			`stop`
First draft of a TFTP client. Could use some actual error checking and also needs to expose more options. 2011-12-17 00:39:09 +00:00			`end`

Adding download and loot functionality. Still need to deal with the use case of not passing a block; blocks should not be required, it should be okay to invoke and just wait for the complete attribute to be true. You'll miss out on error messages but eh, maybe those should be return values. 2011-12-19 21:50:50 +00:00			`def monitor_client_sock`
			`res = self.client_sock.recvfrom(65535)`
			`if res[1] # Got a response back, so that's never good; Acks come back on server_sock.`
			`code, type, msg = parse_tftp_msg(res[0])`
			`yield("Aborting, got code:%d, type:%d, message:'%s'" % [code, type, msg]) if block_given?`
			`stop`
			`end`
			`end`

			`def stop`
			`self.complete = true`
			`self.threads.each {\|t\| t.kill}`
			`self.server_sock.close rescue nil # might be closed already`
			`self.client_sock.close rescue nil # might be closed already`
			`end`

			`#`
			`# Methods for download`
			`#`

			`def rrq_packet`
			`req = [OpRead, self.remote_file, self.mode]`
			`packstr = "na#{self.remote_file.length+1}a#{self.mode.length+1}"`
			`req.pack(packstr)`
			`end`

			`def ack_packet(blocknum=0)`
			`req = [OpAck, blocknum].pack("nn")`
			`end`

			`def send_read_request(&block)`
			`if block_given?`
			`start_server_socket {\|msg\| yield msg}`
			`else`
			`start_server_socket`
			`end`
			`self.client_sock = Rex::Socket::Udp.create(`
			`'PeerHost' => peer_host,`
			`'PeerPort' => peer_port,`
			`'LocalHost' => local_host,`
			`'LocalPort' => local_port,`
			`'Context' => context`
			`)`
			`self.client_sock.sendto(rrq_packet, peer_host, peer_port)`
			`self.threads << Rex::ThreadFactory.spawn("TFTPClientMonitor", false) {`
			`monitor_client_sock {\|msg\| yield msg}`
			`}`
			`end`

			`def recv_data(host, port, first_block)`
			`self.recv_tempfile = Rex::Quickfile.new('msf-tftp')`
			`recvd_blocks = 1`
			`if block_given?`
			`yield "Source file: #{self.remote_file}, destination file: #{self.local_file}"`
			`yield "Received and acknowledged #{first_block.size} in block #{recvd_blocks}"`
			`end`
			`write_and_ack_data(first_block,1,host,port) {\|msg\| yield msg}`
			`current_block = first_block`
			`while current_block.size == 512`
			`res = self.server_sock.recvfrom(65535)`
			`if res and res[0]`
			`code, block_num, current_block = parse_tftp_msg(res[0])`
			`if code == 3`
			`write_and_ack_data(current_block,block_num,host,port) {\|msg\| yield msg}`
			`recvd_blocks += 1`
			`else`
			`yield("Aborting, got code:%d, type:%d, message:'%s'" % [code, type, msg]) if block_given?`
			`stop`
			`end`
			`end`
			`end`
			`yield("Transferred #{recvd_blocks} blocks, download complete!")`
			`self.recv_tempfile.close`
			`stop`
			`end`

			`def write_and_ack_data(data,blocknum,host,port)`
			`self.recv_tempfile.write(data)`
			`self.recv_tempfile.flush`
			`req = ack_packet(blocknum)`
			`self.server_sock.sendto(req, host, port)`
			`yield "Received and acknowledged #{data.size} in block #{blocknum}"`
			`end`


			`#`
			`# Methods for upload`
			`#`

First draft of a TFTP client. Could use some actual error checking and also needs to expose more options. 2011-12-17 00:39:09 +00:00			`def wrq_packet`
			`req = "\x00\x02"`
			`req += self.remote_file`
			`req += "\x00"`
Adding more to TFTP. Still need a read tho Adds error checking and some helpful messaging in the event of an error. In the event of a failed transfer the module exits immediately, but in success, I'm still hanging around for several seconds after. Not a deal breaker but can be annoying. Also, need to implement a read as well as a write and store it as loot, to be actually useful for most TFTP checking. 2011-12-19 03:05:27 +00:00			`req += self.mode`
First draft of a TFTP client. Could use some actual error checking and also needs to expose more options. 2011-12-17 00:39:09 +00:00			`req += "\x00"`
			`end`

Adding download and loot functionality. Still need to deal with the use case of not passing a block; blocks should not be required, it should be okay to invoke and just wait for the complete attribute to be true. You'll miss out on error messages but eh, maybe those should be return values. 2011-12-19 21:50:50 +00:00			`def blockify_file`
			`data = ::File.open(self.local_file, "rb") {\|f\| f.read f.stat.size}`
			`data.scan(/.{1,512}/)`
			`end`

First draft of a TFTP client. Could use some actual error checking and also needs to expose more options. 2011-12-17 00:39:09 +00:00			`def send_write_request(&block)`
			`if block_given?`
Updating TFTP client. Now with grown-up thread handling. No longer blocks on successful connections. 2011-12-19 18:14:40 +00:00			`start_server_socket {\|msg\| yield msg}`
First draft of a TFTP client. Could use some actual error checking and also needs to expose more options. 2011-12-17 00:39:09 +00:00			`else`
Adding download and loot functionality. Still need to deal with the use case of not passing a block; blocks should not be required, it should be okay to invoke and just wait for the complete attribute to be true. You'll miss out on error messages but eh, maybe those should be return values. 2011-12-19 21:50:50 +00:00			`start_server_socket`
First draft of a TFTP client. Could use some actual error checking and also needs to expose more options. 2011-12-17 00:39:09 +00:00			`end`
Updating TFTP client. Now with grown-up thread handling. No longer blocks on successful connections. 2011-12-19 18:14:40 +00:00			`self.client_sock = Rex::Socket::Udp.create(`
First draft of a TFTP client. Could use some actual error checking and also needs to expose more options. 2011-12-17 00:39:09 +00:00			`'PeerHost' => peer_host,`
			`'PeerPort' => peer_port,`
			`'LocalHost' => local_host,`
			`'LocalPort' => local_port,`
			`'Context' => context`
			`)`
Updating TFTP client. Now with grown-up thread handling. No longer blocks on successful connections. 2011-12-19 18:14:40 +00:00			`self.client_sock.sendto(wrq_packet, peer_host, peer_port)`
			`self.threads << Rex::ThreadFactory.spawn("TFTPClientMonitor", false) {`
			`monitor_client_sock {\|msg\| yield msg}`
			`}`
			`end`

Adding download and loot functionality. Still need to deal with the use case of not passing a block; blocks should not be required, it should be okay to invoke and just wait for the complete attribute to be true. You'll miss out on error messages but eh, maybe those should be return values. 2011-12-19 21:50:50 +00:00			`def send_data(host,port)`
			`data_blocks = blockify_file()`
			`sent_data = 0`
			`sent_blocks = 0`
			`expected_blocks = data_blocks.size`
			`expected_size = data_blocks.join.size`
			`if block_given?`
			`yield "Source file: #{self.local_file}, destination file: #{self.remote_file}"`
			`yield "Sending #{expected_size} bytes (#{expected_blocks} blocks)"`
			`end`
			`data_blocks.each_with_index do \|data_block,idx\|`
			`req = [3, (idx + 1), data_block].pack("nnA*")`
			`if self.server_sock.sendto(req, host, port) > 0`
			`sent_data += data_block.size`
			`end`
			`res = self.server_sock.recvfrom(65535)`
			`if res`
			`code, type, msg = parse_tftp_msg(res[0])`
			`if code == 4`
			`sent_blocks += 1`
			`yield "Sent #{data_block.size} bytes in block #{sent_blocks}" if block_given?`
			`else`
			`if block_given?`
			`yield "Got an unexpected response: Code:%d, Type:%d, Message:'%s'. Aborting." % [code, type, msg]`
			`end`
			`break`
			`end`
			`end`
			`end`
			`if block_given?`
			`if(sent_data == expected_size)`
			`yield "Upload complete!"`
			`else`
			`yield "Upload complete, but with errors."`
			`end`
Adding more to TFTP. Still need a read tho Adds error checking and some helpful messaging in the event of an error. In the event of a failed transfer the module exits immediately, but in success, I'm still hanging around for several seconds after. Not a deal breaker but can be annoying. Also, need to implement a read as well as a write and store it as loot, to be actually useful for most TFTP checking. 2011-12-19 03:05:27 +00:00			`end`
First draft of a TFTP client. Could use some actual error checking and also needs to expose more options. 2011-12-17 00:39:09 +00:00			`end`

			`end`

			`end`
			`end`
			`end`