| version 1.34, 2003/08/11 20:43:31 |
version 1.35, 2004/01/17 20:57:15 |
|
|
| |
|
| #include "pathnames.h" |
#include "pathnames.h" |
| |
|
| #ifdef KERBEROS |
__dead void usage(void); |
| #include <des.h> |
|
| #include <kerberosIV/krb.h> |
|
| |
|
| CREDENTIALS cred; |
|
| Key_schedule schedule; |
|
| int use_kerberos = 1, doencrypt; |
|
| char dst_realm_buf[REALM_SZ], *dest_realm; |
|
| |
|
| void warning(const char *, ...); |
|
| void desrw_set_key(des_cblock *, des_key_schedule *); |
|
| int des_read(int, char *, int); |
|
| int des_write(int, void *, int); |
|
| |
|
| int krcmd(char **, u_short, char *, char *, int *, char *); |
|
| int krcmd_mutual(char **, u_short, char *, char *, int *, char *, |
|
| CREDENTIALS *, Key_schedule); |
|
| #endif |
|
| |
|
| void usage(void); |
|
| void sendsig(int); |
void sendsig(int); |
| char *copyargs(char **argv); |
char *copyargs(char **argv); |
| |
|
| void talk(int, sigset_t *, int, int); |
void talk(int, sigset_t *, int, int); |
| |
|
| /* |
/* |
|
|
| int |
int |
| main(int argc, char *argv[]) |
main(int argc, char *argv[]) |
| { |
{ |
| extern char *optarg; |
|
| extern int optind; |
|
| struct passwd *pw; |
struct passwd *pw; |
| struct servent *sp; |
struct servent *sp; |
| sigset_t mask, omask; |
sigset_t mask, omask; |
| int argoff, asrsh, ch, dflag, nflag, one, rem, uid; |
int argoff, asrsh, ch, dflag, nflag, one, rem, uid; |
| char *args, *host, *user, *p; |
char *args, *host, *user; |
| pid_t pid = 0; |
pid_t pid = 0; |
| |
extern char *__progname; |
| |
|
| argoff = asrsh = dflag = nflag = 0; |
argoff = asrsh = dflag = nflag = 0; |
| one = 1; |
one = 1; |
| host = user = NULL; |
host = user = NULL; |
| |
|
| /* if called as something other than "rsh", use it as the host name */ |
/* if called as something other than "rsh", use it as the host name */ |
| if ((p = strrchr(argv[0], '/'))) |
if (strcmp(__progname, "rsh") != 0) |
| ++p; |
host = __progname; |
| else |
else |
| p = argv[0]; |
|
| if (strcmp(p, "rsh")) |
|
| host = p; |
|
| else |
|
| asrsh = 1; |
asrsh = 1; |
| |
|
| /* handle "rsh host flags" */ |
/* handle "rsh host flags" */ |
|
|
| argoff = 1; |
argoff = 1; |
| } |
} |
| |
|
| #ifdef KERBEROS |
while ((ch = getopt(argc - argoff, argv + argoff, "8KLdel:nw")) != -1) |
| #define OPTIONS "8KLdek:l:nwx" |
|
| #else |
|
| #define OPTIONS "8KLdel:nw" |
|
| #endif |
|
| while ((ch = getopt(argc - argoff, argv + argoff, OPTIONS)) != -1) |
|
| switch(ch) { |
switch(ch) { |
| |
case '8': /* -8KLew are ignored to allow rlogin aliases */ |
| case 'K': |
case 'K': |
| #ifdef KERBEROS |
case 'L': |
| use_kerberos = 0; |
|
| #endif |
|
| break; |
|
| case 'L': /* -8Lew are ignored to allow rlogin aliases */ |
|
| case 'e': |
case 'e': |
| case 'w': |
case 'w': |
| case '8': |
|
| break; |
break; |
| case 'd': |
case 'd': |
| dflag = 1; |
dflag = 1; |
|
|
| case 'l': |
case 'l': |
| user = optarg; |
user = optarg; |
| break; |
break; |
| #ifdef KERBEROS |
|
| case 'k': |
|
| dest_realm = dst_realm_buf; |
|
| strncpy(dest_realm, optarg, REALM_SZ); |
|
| break; |
|
| #endif |
|
| case 'n': |
case 'n': |
| nflag = 1; |
nflag = 1; |
| break; |
break; |
| #ifdef KERBEROS |
|
| case 'x': |
|
| doencrypt = 1; |
|
| desrw_set_key(&cred.session, &schedule); |
|
| break; |
|
| #endif |
|
| case '?': |
|
| default: |
default: |
| usage(); |
usage(); |
| } |
} |
|
|
| |
|
| if (geteuid() != 0) |
if (geteuid() != 0) |
| errx(1, "must be setuid root"); |
errx(1, "must be setuid root"); |
| if (!(pw = getpwuid(uid = getuid()))) |
if ((pw = getpwuid(uid = getuid())) == NULL) |
| errx(1, "unknown user ID %u", uid); |
errx(1, "unknown user ID %u", uid); |
| if (!user) |
if (user == NULL) |
| user = pw->pw_name; |
user = pw->pw_name; |
| |
|
| #ifdef KERBEROS |
|
| /* -x turns off -n */ |
|
| if (doencrypt) |
|
| nflag = 0; |
|
| #endif |
|
| |
|
| args = copyargs(argv); |
args = copyargs(argv); |
| |
|
| sp = NULL; |
if ((sp = getservbyname("shell", "tcp")) == NULL) |
| #ifdef KERBEROS |
|
| if (use_kerberos) { |
|
| sp = getservbyname((doencrypt ? "ekshell" : "kshell"), "tcp"); |
|
| if (sp == NULL) { |
|
| use_kerberos = 0; |
|
| warning("can't get entry for %s/tcp service", |
|
| doencrypt ? "ekshell" : "kshell"); |
|
| } |
|
| } |
|
| #endif |
|
| if (sp == NULL) |
|
| sp = getservbyname("shell", "tcp"); |
|
| if (sp == NULL) |
|
| errx(1, "shell/tcp: unknown service"); |
errx(1, "shell/tcp: unknown service"); |
| |
|
| (void) unsetenv("RSH"); /* no tricks with rcmd(3) */ |
(void)unsetenv("RSH"); /* no tricks with rcmd(3) */ |
| |
|
| #ifdef KERBEROS |
|
| try_connect: |
|
| if (use_kerberos) { |
|
| rem = KSUCCESS; |
|
| errno = 0; |
|
| if (dest_realm == NULL) |
|
| dest_realm = krb_realmofhost(host); |
|
| |
|
| if (doencrypt) |
|
| rem = krcmd_mutual(&host, sp->s_port, user, args, |
|
| &rfd2, dest_realm, &cred, schedule); |
|
| else |
|
| rem = krcmd(&host, sp->s_port, user, args, &rfd2, |
|
| dest_realm); |
|
| if (rem < 0) { |
|
| use_kerberos = 0; |
|
| sp = getservbyname("shell", "tcp"); |
|
| if (sp == NULL) |
|
| errx(1, "unknown service shell/tcp"); |
|
| if (errno == ECONNREFUSED) |
|
| warning("remote host doesn't support Kerberos"); |
|
| if (errno == ENOENT) |
|
| warning("can't provide Kerberos auth data"); |
|
| goto try_connect; |
|
| } |
|
| } else { |
|
| if (doencrypt) |
|
| errx("the -x flag requires Kerberos authentication"); |
|
| rem = rcmd_af(&host, sp->s_port, pw->pw_name, user, args, |
|
| &rfd2, PF_UNSPEC); |
|
| } |
|
| #else |
|
| rem = rcmd_af(&host, sp->s_port, pw->pw_name, user, args, &rfd2, |
rem = rcmd_af(&host, sp->s_port, pw->pw_name, user, args, &rfd2, |
| PF_UNSPEC); |
PF_UNSPEC); |
| #endif |
|
| |
|
| if (rem < 0) |
if (rem < 0) |
| exit(1); |
exit(1); |
| |
|
|
|
| err(1, "fork"); |
err(1, "fork"); |
| } |
} |
| |
|
| #ifdef KERBEROS |
(void)ioctl(rfd2, FIONBIO, &one); |
| if (!doencrypt) |
(void)ioctl(rem, FIONBIO, &one); |
| #endif |
|
| { |
|
| (void)ioctl(rfd2, FIONBIO, &one); |
|
| (void)ioctl(rem, FIONBIO, &one); |
|
| } |
|
| |
|
| talk(nflag, &omask, pid, rem); |
talk(nflag, &omask, pid, rem); |
| |
|
|
|
| err(1, "poll"); |
err(1, "poll"); |
| goto rewrite; |
goto rewrite; |
| } |
} |
| #ifdef KERBEROS |
if (pfd[0].revents & (POLLERR|POLLHUP|POLLNVAL)) |
| if (doencrypt) |
err(1, "poll"); |
| wc = des_write(rem, bp, cc); |
wc = write(rem, bp, cc); |
| else |
|
| #endif |
|
| wc = write(rem, bp, cc); |
|
| if (wc < 0) { |
if (wc < 0) { |
| if (errno == EWOULDBLOCK) |
if (errno == EWOULDBLOCK) |
| goto rewrite; |
goto rewrite; |
|
|
| err(1, "poll"); |
err(1, "poll"); |
| continue; |
continue; |
| } |
} |
| |
if ((pfd[0].revents & (POLLERR|POLLHUP|POLLNVAL)) || |
| |
(pfd[1].revents & (POLLERR|POLLHUP|POLLNVAL))) |
| |
err(1, "poll"); |
| if (pfd[1].revents & POLLIN) { |
if (pfd[1].revents & POLLIN) { |
| errno = 0; |
errno = 0; |
| #ifdef KERBEROS |
cc = read(rfd2, buf, sizeof buf); |
| if (doencrypt) |
|
| cc = des_read(rfd2, buf, sizeof buf); |
|
| else |
|
| #endif |
|
| cc = read(rfd2, buf, sizeof buf); |
|
| if (cc <= 0) { |
if (cc <= 0) { |
| if (errno != EWOULDBLOCK) |
if (errno != EWOULDBLOCK) |
| pfd[1].revents = 0; |
pfd[1].revents = 0; |
|
|
| } |
} |
| if (pfd[0].revents & POLLIN) { |
if (pfd[0].revents & POLLIN) { |
| errno = 0; |
errno = 0; |
| #ifdef KERBEROS |
cc = read(rem, buf, sizeof buf); |
| if (doencrypt) |
|
| cc = des_read(rem, buf, sizeof buf); |
|
| else |
|
| #endif |
|
| cc = read(rem, buf, sizeof buf); |
|
| if (cc <= 0) { |
if (cc <= 0) { |
| if (errno != EWOULDBLOCK) |
if (errno != EWOULDBLOCK) |
| pfd[0].revents = 0; |
pfd[0].revents = 0; |
|
|
| { |
{ |
| int save_errno = errno; |
int save_errno = errno; |
| |
|
| #ifdef KERBEROS |
(void)write(rfd2, &signo, 1); |
| if (doencrypt) |
|
| (void)des_write(rfd2, &signo, 1); |
|
| else |
|
| #endif |
|
| (void)write(rfd2, &signo, 1); |
|
| errno = save_errno; |
errno = save_errno; |
| } |
} |
| |
|
| #ifdef KERBEROS |
|
| /* VARARGS */ |
|
| void |
|
| warning(const char *fmt, ...) |
|
| { |
|
| va_list ap; |
|
| char myrealm[REALM_SZ]; |
|
| |
|
| if (krb_get_lrealm(myrealm, 0) != KSUCCESS) |
|
| return; |
|
| (void)fprintf(stderr, "rsh: warning, using standard rsh: "); |
|
| va_start(ap, fmt); |
|
| vfprintf(stderr, fmt, ap); |
|
| va_end(ap); |
|
| (void)fprintf(stderr, ".\n"); |
|
| } |
|
| #endif |
|
| |
|
| char * |
char * |
| copyargs(char **argv) |
copyargs(char **argv) |
| { |
{ |
|
|
| return(args); |
return(args); |
| } |
} |
| |
|
| void |
__dead void |
| usage(void) |
usage(void) |
| { |
{ |
| (void)fprintf(stderr, |
(void)fprintf(stderr, |
| "usage: rsh [-Kdn%s]%s[-l username] hostname [command]\n", |
"usage: rsh [-Kdn] [-l username] hostname [command]\n"); |
| #ifdef KERBEROS |
|
| "x", " [-k realm] "); |
|
| #else |
|
| "", " "); |
|
| #endif |
|
| exit(1); |
exit(1); |
| } |
} |
![[BACK]](/icons/back.gif){kind=icon}
Return to rsh.c CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / src / usr.bin / rsh