--- netkit-tftp-0.17.orig/tftp/main.c
+++ netkit-tftp-0.17/tftp/main.c
@@ -69,7 +69,7 @@
 #define	TIMEOUT		5		/* secs between rexmt's */
 
 struct sockaddr_in s_inn;
-int f;
+int f = -1;
 int trace;
 int verbose;
 int rexmtval = TIMEOUT;
@@ -151,17 +151,11 @@
 static struct cmd *getcmd(const char *name);
 static char *tail(char *filename);
 
-int
-main(int argc, char *argv[])
-{
+void initsock() {
 	struct sockaddr_in s_in;
-	int top;
 
-	sp = getservbyname("tftp", "udp");
-	if (sp == 0) {
-		fprintf(stderr, "tftp: udp/tftp: unknown service\n");
-		exit(1);
-	}
+	if (f >= 0)
+		close(f);
 	f = socket(AF_INET, SOCK_DGRAM, 0);
 	if (f < 0) {
 		perror("tftp: socket");
@@ -173,6 +167,19 @@
 		perror("tftp: bind");
 		exit(1);
 	}
+}
+
+int
+main(int argc, char *argv[])
+{
+	int top;
+
+	sp = getservbyname("tftp", "udp");
+	if (sp == 0) {
+		fprintf(stderr, "tftp: udp/tftp: unknown service\n");
+		exit(1);
+	}
+	initsock();
 	strcpy(mode, "netascii");
 	mysignal(SIGINT, intr);
 	if (argc > 1) {
--- netkit-tftp-0.17.orig/tftp/tftp.c
+++ netkit-tftp-0.17/tftp/tftp.c
@@ -174,19 +174,13 @@
 				goto abort;
 			}
 			if (ap->th_opcode == ACK) {
-				volatile int j = 0;
-
 				if (ap->th_block == block) {
 					break;
 				}
 				/* On an error, try to synchronize
 				 * both sides.
 				 */
-				j = synchnet(f);
-				if (j && trace) {
-					printf("discarded %d packets\n",
-							j);
-				}
+				synchnet(f, trace);
 				if (ap->th_block == (block-1)) {
 					goto send_data;
 				}
@@ -197,10 +191,14 @@
 		}
 		else {
 			amount += size;
+			if (size != SEGSIZE) {
+				break;
+			}
 		}
 		block++;
-	} while (size == SEGSIZE);
+	} while (1);
 abort:
+	initsock();
 	fclose(file);
 	stopclock();
 	if (amount > 0)
@@ -278,18 +276,13 @@
 				goto abort;
 			}
 			if (dp->th_opcode == DATA) {
-				volatile int j = 0;
-
 				if (dp->th_block == block) {
 					break;          /* have next packet */
 				}
 				/* On an error, try to synchronize
 				 * both sides.
 				 */
-				j = synchnet(f);
-				if (j && trace) {
-					printf("discarded %d packets\n", j);
-				}
+				synchnet(f, trace);
 				if (dp->th_block == (block-1)) {
 					goto send_ack;  /* resend ack */
 				}
@@ -303,7 +296,8 @@
 		}
 		amount += size;
 	} while (size == SEGSIZE);
-abort:                                          /* ok to ack, since user */
+abort:
+	initsock();
 	ap->th_opcode = htons((u_short)ACK);    /* has seen err msg */
 	ap->th_block = htons((u_short)block);
 	(void) sendto(f, ackbuf, 4, 0, (struct sockaddr *)&s_inn, sizeof(s_inn));
--- netkit-tftp-0.17.orig/tftp/tftpsubs.c
+++ netkit-tftp-0.17/tftp/tftpsubs.c
@@ -249,8 +249,8 @@
  * when trace is active).
  */
 
-int
-synchnet(int f /* socket to flush */)
+void
+synchnet(int f /* socket to flush */, int trace)
 {
 	int i, j = 0;
 	char rbuf[PKTSIZE];
@@ -265,7 +265,10 @@
 			(void) recvfrom(f, rbuf, sizeof (rbuf), 0,
 				(struct sockaddr *)&from, &fromlen);
 		} else {
-			return(j);
+			if (j && trace) {
+				printf("discarded %d packets\n", j);
+			}
+			return;
 		}
 	}
 }
--- netkit-tftp-0.17.orig/tftp/tftpsubs.h
+++ netkit-tftp-0.17/tftp/tftpsubs.h
@@ -1,6 +1,7 @@
 #define PKTSIZE SEGSIZE+4       /* should be moved to tftp.h */
 
-int synchnet(int);
+void initsock(void);
+void synchnet(int, int);
 struct tftphdr *r_init(void);
 struct tftphdr *w_init(void);
 int readit(FILE *file, struct tftphdr **dpp, int convert);
--- netkit-tftp-0.17.orig/tftpd/tftpd.8
+++ netkit-tftp-0.17/tftpd/tftpd.8
@@ -42,6 +42,8 @@
 Trivial File Transfer Protocol server
 .Sh SYNOPSIS
 .Nm tftpd
+.Op Fl n
+.Op Fl s
 .Op Ar directory ...
 .Sh DESCRIPTION
 .Nm Tftpd
@@ -111,6 +113,18 @@
 can be used to ensure that replies go out from the correct address.
 These considerations are important, because most tftp clients will
 reject reply packets that appear to come from an unexpected address.
+.Pp
+The options are:
+.Bl -tag -width Ds
+.It Fl n
+Suppresses negative acknowledgement of requests for nonexistent relative
+filenames.
+.It Fl s
+All absolute filenames are treated as if they were preceded by the first
+directory argument, or
+.Pa /tftpboot
+if there is none.
+.El
 .Sh SEE ALSO
 .Xr tftp 1 ,
 .Xr inetd 8
--- netkit-tftp-0.17.orig/tftpd/tftpd.c
+++ netkit-tftp-0.17/tftpd/tftpd.c
@@ -92,8 +92,11 @@
 static struct		sockaddr_in from;
 static socklen_t	fromlen;
 
-#define MAXARG		4
-static char		*dirs[MAXARG+1];
+static const char	*default_dirs[] = { "/tftpboot", 0 };
+static const char	**dirs = default_dirs;
+
+static int		suppress_naks;
+static int		secure_tftp;
 
 int
 main(int ac, char **av)
@@ -105,12 +108,25 @@
 	register struct tftphdr *tp;
 	register int n = 0;
 	int on = 1;
+	int ch;
 
-	ac--; av++;
-	if (ac==0) dirs[0] = "/tftpboot";  /* default directory */
-	while (ac-- > 0 && n < MAXARG)
-		dirs[n++] = *av++;
 	openlog("tftpd", LOG_PID, LOG_DAEMON);
+	opterr = 0;
+	while ((ch = getopt(ac, av, "ns")) != EOF) {
+		switch (ch) {
+		case 'n':
+			suppress_naks = 1;
+			break;
+		case 's':
+			secure_tftp = 1;
+			break;
+		default:
+			syslog(LOG_ERR, "unknown option -%c", ch);
+			exit(1);
+		}
+	}
+
+	if (av[optind]) dirs = (const char **) &av[optind];
 	if (ioctl(0, FIONBIO, &on) < 0) {
 		syslog(LOG_ERR, "ioctl(FIONBIO): %m\n");
 		exit(1);
@@ -279,6 +295,12 @@
 	}
 	ecode = (*pf->f_validate)(filename, tp->th_opcode);
 	if (ecode) {
+		/*
+		 * Avoid storms of naks to a RRQ broadcast for a relative
+		 * bootfile pathname from a diskless Sun.
+		 */
+		if (suppress_naks && *filename != '/' && ecode == ENOTFOUND)
+			exit(0);
 		nak(ecode);
 		exit(1);
 	}
@@ -310,13 +332,15 @@
 	struct stat stbuf;
 	int	fd;
 	const char *cp;
-	char **dirp;
+	const char **dirp;
 
 	syslog(LOG_NOTICE, "tftpd: trying to get file: %s\n", filename);
 
-	if (*filename != '/') {
+	if (*filename != '/' || secure_tftp) {
 		syslog(LOG_NOTICE, "tftpd: serving file from %s\n", dirs[0]);
 		chdir(dirs[0]);
+		while (*filename == '/')
+			filename++;
 	} else {
 		for (dirp = dirs; *dirp; dirp++)
 			if (strncmp(filename, *dirp, strlen(*dirp)) == 0)
@@ -441,7 +465,7 @@
 					break;
 				}
 				/* Re-synchronize with the other side */
-				(void) synchnet(peer);
+				(void) synchnet(peer, 0);
 				if (ap->th_block == (block -1)) {
 					goto send_data;
 				}
@@ -506,7 +530,7 @@
 					break;   /* normal */
 				}
 				/* Re-synchronize with the other side */
-				(void) synchnet(peer);
+				(void) synchnet(peer, 0);
 				if (dp->th_block == (block-1))
 					goto send_ack;          /* rexmit */
 			}
--- netkit-tftp-0.17.orig/MRULES
+++ netkit-tftp-0.17/MRULES
@@ -1,8 +1,8 @@
 # Standard compilation rules (don't use make builtins)
 
 %.o: %.c
-	$(CC) $(CFLAGS) -I../include $< -c
+	$(CC) $(CFLAGS) $< -c
 
 %.o: %.cc
-	$(CC) $(CFLAGS) -I../include $< -c
+	$(CC) $(CFLAGS) $< -c
 
--- netkit-tftp-0.17.orig/debian/README.Debian
+++ netkit-tftp-0.17/debian/README.Debian
@@ -0,0 +1,8 @@
+tftpd for Debian
+----------------
+
+Please note that the default tftp directory is set to /boot by default in
+inetd.conf.
+
+Herbert Xu, <herbert@debian.org>
+$Id: README.Debian,v 1.1 2001/12/01 10:40:08 herbert Exp $
--- netkit-tftp-0.17.orig/debian/copyright
+++ netkit-tftp-0.17/debian/copyright
@@ -0,0 +1,15 @@
+This package was split from netstd by Herbert Xu herbert@debian.org on
+Tue, 26 Oct 1999 12:29:16 +1000
+
+netstd was created by Peter Tobias tobias@et-inf.fho-emden.de on
+Wed, 20 Jul 1994 17:23:21 +0200.
+
+It was downloaded from ftp://ftp.uk.linux.org/pub/linux/Networking/netkit/.
+
+Copyright:
+
+Copyright (c) 1983, 1991 The Regents of the University of California.
+
+The license can be found in /usr/share/common-licenses/BSD.
+
+$Id: copyright,v 1.2 2000/08/12 01:28:48 herbert Exp $
--- netkit-tftp-0.17.orig/debian/tftp.dirs
+++ netkit-tftp-0.17/debian/tftp.dirs
@@ -0,0 +1,2 @@
+usr/bin
+usr/share/man/man1
--- netkit-tftp-0.17.orig/debian/tftp.docs
+++ netkit-tftp-0.17/debian/tftp.docs
@@ -0,0 +1 @@
+BUGS
--- netkit-tftp-0.17.orig/debian/tftpd.dirs
+++ netkit-tftp-0.17/debian/tftpd.dirs
@@ -0,0 +1,2 @@
+usr/sbin
+usr/share/man/man8
--- netkit-tftp-0.17.orig/debian/tftpd.docs
+++ netkit-tftp-0.17/debian/tftpd.docs
@@ -0,0 +1 @@
+README
--- netkit-tftp-0.17.orig/debian/tftpd.postinst
+++ netkit-tftp-0.17/debian/tftpd.postinst
@@ -0,0 +1,21 @@
+#!/bin/sh -e
+# $Id: tftpd.postinst,v 1.1 1999/10/26 04:43:01 herbert Exp $
+
+case "$1" in
+abort-upgrade | abort-deconfigure | abort-remove)
+	update-inetd --enable tftp
+	;;
+configure)
+	if [ -n "$2" ]; then
+		update-inetd --enable tftp
+	else
+		update-inetd --group BOOT --add "tftp		dgram	udp	wait	nobody	/usr/sbin/tcpd	/usr/sbin/in.tftpd /boot"
+	fi
+	;;
+*)
+	printf "$0: incorrect arguments: $*\n" >&2
+	exit 1
+	;;
+esac
+
+#DEBHELPER#
--- netkit-tftp-0.17.orig/debian/tftpd.postrm
+++ netkit-tftp-0.17/debian/tftpd.postrm
@@ -0,0 +1,19 @@
+#!/bin/sh -e
+# $Id: tftpd.postrm,v 1.2 2002/12/22 05:17:12 herbert Exp $
+
+case "$1" in
+abort-install | remove | abort-upgrade | upgrade | failed-upgrade | disappear)
+	;;
+purge)
+	# If netbase is not installed, then we don't need to do the remove.
+	if command -v update-inetd >/dev/null 2>&1; then
+		update-inetd --remove "tftp	.*	/usr/sbin/in.tftpd"
+	fi
+	;;
+*)
+	echo "$0: incorrect arguments: $*" >&2
+	exit 1
+	;;
+esac
+
+#DEBHELPER#
--- netkit-tftp-0.17.orig/debian/tftpd.prerm
+++ netkit-tftp-0.17/debian/tftpd.prerm
@@ -0,0 +1,9 @@
+#!/bin/sh -e
+# $Id: tftpd.prerm,v 1.2 2002/12/22 05:17:12 herbert Exp $
+
+# If netbase is not installed, then we don't need to do the remove.
+if command -v update-inetd >/dev/null 2>&1; then
+        update-inetd --disable tftp
+fi
+
+#DEBHELPER#
--- netkit-tftp-0.17.orig/debian/rules
+++ netkit-tftp-0.17/debian/rules
@@ -0,0 +1,97 @@
+#!/usr/bin/make -f
+# GNU copyright 1997 to 1999 by Joey Hess.
+# Copyright (c) 1999 Herbert Xu <herbert@debian.org>.
+
+# Uncomment this to turn on verbose mode. 
+#export DH_VERBOSE=1
+
+# This is the debhelper compatability version to use.
+export DH_COMPAT=2
+
+# This has to be exported to make some magic below work.
+export DH_OPTIONS
+
+build: build-stamp
+build-stamp:
+	dh_testdir
+
+	if [ ! -f MCONFIG ]; then \
+		./configure; \
+		sed -e 's/^CFLAGS=\(.*\)$$/CFLAGS= -g \1/' MCONFIG \
+			> MCONFIG.new; \
+		mv MCONFIG.new MCONFIG; \
+	fi
+	$(MAKE)
+
+	touch build-stamp
+
+clean:
+	dh_testdir
+	dh_testroot
+	rm -f build-stamp install-stamp
+
+	-$(MAKE) distclean
+
+	dh_clean
+
+install: DH_OPTIONS=
+install: build
+	dh_testdir
+	dh_testroot
+	dh_clean -k
+	dh_installdirs
+
+	$(MAKE) -C tftp install INSTALLROOT=`pwd`/debian/tftp \
+		MANDIR='/usr/share/man'
+	$(MAKE) -C tftpd install INSTALLROOT=`pwd`/debian/tftpd \
+		MANDIR='/usr/share/man'
+
+	touch install-stamp
+
+# This single target is used to build all the packages, all at once, or
+# one at a time. So keep in mind: any options passed to commands here will
+# affect _all_ packages. Anything you want to only affect one package
+# should be put in another target, such as the install target.
+binary-common: build install
+	# Need this version of debhelper for DH_OPTIONS to work.
+	#deprecated#dh_testversion 1.1.17
+	dh_testdir
+	dh_testroot
+#	dh_installdebconf
+	dh_installdocs
+	dh_installexamples
+	dh_installmenu
+#	dh_installemacsen
+#	dh_installpam
+#	dh_installinit
+	dh_installcron
+	dh_installinfo
+#	dh_undocumented
+	dh_installchangelogs ChangeLog
+	dh_link
+	dh_compress
+	dh_fixperms
+	# You may want to make some executables suid here.
+#	dh_makeshlibs
+	dh_installdeb
+#	dh_perl
+	dh_shlibdeps
+	dh_gencontrol
+	dh_md5sums
+	dh_builddeb
+
+# Build architecture independant packages using the common target.
+binary-indep:
+# (Uncomment this next line if you have such packages.)
+#	 $(MAKE) -f debian/rules DH_OPTIONS=-i binary-common
+
+# Build architecture dependant packages using the common target.
+binary-arch:
+	$(MAKE) -f debian/rules DH_OPTIONS=-a binary-common
+
+# Any other binary targets build just one binary package at a time.
+binary-%:
+	make -f debian/rules binary-common DH_OPTIONS=-p$*
+
+binary: binary-indep binary-arch
+.PHONY: build clean binary-indep binary-arch binary install
--- netkit-tftp-0.17.orig/debian/changelog
+++ netkit-tftp-0.17/debian/changelog
@@ -0,0 +1,80 @@
+netkit-tftp (0.17-11) unstable; urgency=low
+
+  * New Maintainer. (Closes: #249716)
+  * Added Depends on netbase to tftp. (Closes: #245764)
+  * Added versioned Build-Depends on debhelper.
+  * Bumped Standards-Version to 3.6.1, no change.
+
+ -- Alberto Gonzalez Iniesta <agi@agi.as>  Wed, 19 May 2004 09:41:49 +0200
+
+netkit-tftp (0.17-10) unstable; urgency=low
+
+  * Fixed inetd service name in prerm/postrm (closes: #171178).
+
+ -- Herbert Xu <herbert@debian.org>  Sun, 22 Dec 2002 15:48:30 +1100
+
+netkit-tftp (0.17-9) unstable; urgency=low
+
+  * Always reopen socket after a get/put in tftp (closes: #130292).
+
+ -- Herbert Xu <herbert@debian.org>  Wed, 30 Jan 2002 20:56:47 +1100
+
+netkit-tftp (0.17-8) unstable; urgency=low
+
+  * Reopen socket on all errors in tftp (closes: #130292).
+
+ -- Herbert Xu <herbert@debian.org>  Mon, 28 Jan 2002 21:43:17 +1100
+
+netkit-tftp (0.17-7) unstable; urgency=low
+
+  * Call synchnet on all errors in tftp (closes: #130292).
+
+ -- Herbert Xu <herbert@debian.org>  Fri, 25 Jan 2002 19:06:31 +1100
+
+netkit-tftp (0.17-6) unstable; urgency=low
+
+  * Added note about default tftp location in README.Debian (closes: #121522).
+
+ -- Herbert Xu <herbert@debian.org>  Sat, 22 Dec 2001 13:07:55 +1100
+
+netkit-tftp (0.17-5) unstable; urgency=low
+
+  * Fixed loop condition in sendfile (closes: #92231).
+
+ -- Herbert Xu <herbert@debian.org>  Mon,  2 Apr 2001 21:38:15 +1000
+
+netkit-tftp (0.17-4) unstable; urgency=low
+
+  * Use arpa/tftp.h from glibc (closes: #88346).
+
+ -- Herbert Xu <herbert@debian.org>  Sun,  4 Mar 2001 10:23:45 +1100
+
+netkit-tftp (0.17-3) unstable; urgency=low
+
+  * Restored block == 1 check that was removed in 0.17 (closes: #88286).
+
+ -- Herbert Xu <herbert@debian.org>  Sat,  3 Mar 2001 10:19:40 +1100
+
+netkit-tftp (0.17-2) unstable; urgency=low
+
+  * Removed emacsism in this very file (closes: #74272).
+  * Merged option processing changes from Ian Jackson (closes: #74273).
+
+ -- Herbert Xu <herbert@debian.org>  Sat, 21 Oct 2000 12:12:28 +1100
+
+netkit-tftp (0.17-1) unstable; urgency=low
+
+  * New upstream release.
+
+ -- Herbert Xu <herbert@debian.org>  Sat, 12 Aug 2000 12:04:31 +1000
+
+netkit-tftp (0.10-1) unstable; urgency=low
+
+  * Initial Release.
+  * Based on netkit-tftp (closes: #39450).
+  * Implemented -n and -s (closes: #23917).
+    Note that -s was done without chroot.  Instead all absolute filenames are
+    treated as relative ones.
+
+ -- Herbert Xu <herbert@debian.org>  Tue, 26 Oct 1999 12:23:51 +1000
+
--- netkit-tftp-0.17.orig/debian/control
+++ netkit-tftp-0.17/debian/control
@@ -0,0 +1,27 @@
+Source: netkit-tftp
+Section: net
+Priority: optional
+Maintainer: Alberto Gonzalez Iniesta <agi@agi.as>
+Standards-Version: 3.6.1
+Build-Depends: debhelper (>= 4.0.2)
+
+Package: tftp
+Architecture: any
+Depends: netbase, ${shlibs:Depends}
+Replaces: netstd
+Description: Trivial file transfer program.
+ Tftp is the user interface to the Internet TFTP (Trivial File Transfer
+ Protocol), which allows users to transfer files to and from a remote machine.
+ The remote host may be specified on the command line, in which case tftp uses
+ host as the default host for future transfers.
+
+Package: tftpd
+Architecture: any
+Depends: netbase, ${shlibs:Depends}
+Replaces: netstd
+Description: Internet trivial file transfer protocol server.
+ Tftpd is a server which supports the Internet Trivial File Transfer Protocol
+ (RFC 783).  The TFTP server operates at the port indicated in the `tftp'
+ service description; see services(5).  The server is normally started by
+ inetd(8).
+