src/usr.bin/ssh/clientloop.c - diff

Return to clientloop.c CVS log

Up to [local] / src / usr.bin / ssh

Diff for /src/usr.bin/ssh/clientloop.c between version 1.136.2.2 and 1.137

version 1.136.2.2, 2006/02/03 02:53:44

version 1.137, 2005/06/08 11:25:09

Line 77

#include "log.h"

#include "readconf.h"

#include "clientloop.h"

#include "sshconnect.h"

#include "authfd.h"

#include "atomicio.h"

#include "sshpty.h"

Line 114

Line 113

static volatile sig_atomic_t received_window_change_signal = 0;

static volatile sig_atomic_t received_signal = 0;

/* Flag indicating whether the user's terminal is in non-blocking mode. */

/* Flag indicating whether the user\'s terminal is in non-blocking mode. */

static int in_non_blocking_mode = 0;

/* Common data for the client loop code. */

Line 141

Line 140

struct confirm_ctx {

int want_tty;

int want_subsys;

int want_x_fwd;

int want_agent_fwd;

Buffer cmd;

char *term;

struct termios tio;

Line 211

Line 208

return (double) tv.tv_sec + (double) tv.tv_usec / 1000000.0;

}

#define SSH_X11_PROTO "MIT-MAGIC-COOKIE-1"

void

client_x11_get_proto(const char *display, const char *xauth_path,

u_int trusted, char **_proto, char **_data)

{

char cmd[1024];

char line[512];

char xdisplay[512];

static char proto[512], data[512];

FILE *f;

int got_data = 0, generated = 0, do_unlink = 0, i;

char *xauthdir, *xauthfile;

struct stat st;

xauthdir = xauthfile = NULL;

*_proto = proto;

*_data = data;

proto[0] = data[0] = '\0';

if (xauth_path == NULL ||(stat(xauth_path, &st) == -1)) {

debug("No xauth program.");

} else {

if (display == NULL) {

debug("x11_get_proto: DISPLAY not set");

return;

}

* Handle FamilyLocal case where $DISPLAY does

* not match an authorization entry. For this we

* just try "xauth list unix:displaynum.screennum".

* XXX: "localhost" match to determine FamilyLocal

* is not perfect.

if (strncmp(display, "localhost:", 10) == 0) {

snprintf(xdisplay, sizeof(xdisplay), "unix:%s",

display + 10);

display = xdisplay;

}

if (trusted == 0) {

xauthdir = xmalloc(MAXPATHLEN);

xauthfile = xmalloc(MAXPATHLEN);

strlcpy(xauthdir, "/tmp/ssh-XXXXXXXXXX", MAXPATHLEN);

if (mkdtemp(xauthdir) != NULL) {

do_unlink = 1;

snprintf(xauthfile, MAXPATHLEN, "%s/xauthfile",

xauthdir);

snprintf(cmd, sizeof(cmd),

"%s -f %s generate %s " SSH_X11_PROTO

" untrusted timeout 1200 2>" _PATH_DEVNULL,

xauth_path, xauthfile, display);

debug2("x11_get_proto: %s", cmd);

if (system(cmd) == 0)

generated = 1;

}

snprintf(cmd, sizeof(cmd),

"%s %s%s list %s 2>" _PATH_DEVNULL,

xauth_path,

generated ? "-f " : "" ,

generated ? xauthfile : "",

display);

debug2("x11_get_proto: %s", cmd);

f = popen(cmd, "r");

if (f && fgets(line, sizeof(line), f) &&

sscanf(line, "%*s %511s %511s", proto, data) == 2)

got_data = 1;

if (f)

pclose(f);

}

if (do_unlink) {

unlink(xauthfile);

rmdir(xauthdir);

}

if (xauthdir)

xfree(xauthdir);

if (xauthfile)

xfree(xauthfile);

* If we didn't get authentication data, just make up some

* data. The forwarding code will check the validity of the

* response anyway, and substitute this data. The X11

* server, however, will ignore this fake data and use

* whatever authentication mechanisms it was using otherwise

* for the local connection.

if (!got_data) {

u_int32_t rnd = 0;

logit("Warning: No xauth data; "

"using fake authentication data for X11 forwarding.");

strlcpy(proto, SSH_X11_PROTO, sizeof proto);

for (i = 0; i < 16; i++) {

if (i % 4 == 0)

rnd = arc4random();

snprintf(data + 2 * i, sizeof data - 2 * i, "%02x",

rnd & 0xff);

rnd >>= 8;

}

* This is called when the interactive is entered. This checks if there is

* an EOF coming on stdin. We must check this explicitly, as select() does

Line 634

Line 528

client_extra_session2_setup(int id, void *arg)

{

struct confirm_ctx *cctx = arg;

const char *display;

Channel *c;

int i;

Line 643

Line 536

if ((c = channel_lookup(id)) == NULL)

fatal("%s: no channel for id %d", __func__, id);

display = getenv("DISPLAY");

if (cctx->want_x_fwd && options.forward_x11 && display != NULL) {

char *proto, *data;

/* Get reasonable local authentication information. */

client_x11_get_proto(display, options.xauth_location,

options.forward_x11_trusted, &proto, &data);

/* Request forwarding with authentication spoofing. */

debug("Requesting X11 forwarding with authentication spoofing.");

x11_request_forwarding_with_spoofing(id, display, proto, data);

/* XXX wait for reply */

}

if (cctx->want_agent_fwd && options.forward_agent) {

debug("Requesting authentication agent forwarding.");

channel_request_start(id, "auth-agent-req@openssh.com", 0);

packet_send();

}

client_session2_setup(id, cctx->want_tty, cctx->want_subsys,

cctx->term, &cctx->tio, c->rfd, &cctx->cmd, cctx->env,

client_subsystem_reply);

Line 681

Line 556

{

Buffer m;

Channel *c;

int client_fd, new_fd[3], ver, allowed;

int client_fd, new_fd[3], ver, i, allowed;

socklen_t addrlen;

struct sockaddr_storage addr;

struct confirm_ctx *cctx;

char *cmd;

u_int i, len, env_len, command, flags;

u_int len, env_len, command, flags;

uid_t euid;

gid_t egid;

Line 726

Line 601

buffer_free(&m);

return;

}

if ((ver = buffer_get_char(&m)) != SSHMUX_VER) {

if ((ver = buffer_get_char(&m)) != 1) {

error("%s: wrong client version %d", __func__, ver);

buffer_free(&m);

close(client_fd);

Line 760

Line 635

buffer_clear(&m);

buffer_put_int(&m, allowed);

buffer_put_int(&m, getpid());

if (ssh_msg_send(client_fd, SSHMUX_VER, &m) == -1) {

if (ssh_msg_send(client_fd, /* version */1, &m) == -1) {

error("%s: client msg_send failed", __func__);

close(client_fd);

buffer_free(&m);

Line 780

Line 655

buffer_clear(&m);

buffer_put_int(&m, allowed);

buffer_put_int(&m, getpid());

if (ssh_msg_send(client_fd, SSHMUX_VER, &m) == -1) {

if (ssh_msg_send(client_fd, /* version */1, &m) == -1) {

error("%s: client msg_send failed", __func__);

close(client_fd);

buffer_free(&m);

Line 801

Line 676

buffer_free(&m);

return;

}

if ((ver = buffer_get_char(&m)) != SSHMUX_VER) {

if ((ver = buffer_get_char(&m)) != 1) {

error("%s: wrong client version %d", __func__, ver);

buffer_free(&m);

close(client_fd);

Line 812

Line 687

memset(cctx, 0, sizeof(*cctx));

cctx->want_tty = (flags & SSHMUX_FLAG_TTY) != 0;

cctx->want_subsys = (flags & SSHMUX_FLAG_SUBSYS) != 0;

cctx->want_x_fwd = (flags & SSHMUX_FLAG_X11_FWD) != 0;

cctx->want_agent_fwd = (flags & SSHMUX_FLAG_AGENT_FWD) != 0;

cctx->term = buffer_get_string(&m, &len);

cmd = buffer_get_string(&m, &len);

Line 847

Line 720

/* This roundtrip is just for synchronisation of ttymodes */

buffer_clear(&m);

if (ssh_msg_send(client_fd, SSHMUX_VER, &m) == -1) {

if (ssh_msg_send(client_fd, /* version */1, &m) == -1) {

error("%s: client msg_send failed", __func__);

close(client_fd);

close(new_fd[0]);

Line 915

Line 788

logit(" -Lport:host:hostport Request local forward");

logit(" -Rport:host:hostport Request remote forward");

logit(" -KRhostport Cancel remote forward");

if (!options.permit_local_command)

goto out;

logit(" !args Execute local command");

goto out;

}

if (*s == '!' && options.permit_local_command) {

s++;

ssh_local_cmd(s);

goto out;

}

if (*s == 'K') {

delete = 1;

s++;

Line 1004

Line 868

u_char ch;

char *s;

if (len <= 0)

for (i = 0; i < len; i++) {

return (0);

for (i = 0; i < (u_int)len; i++) {

/* Get one character at a time. */

ch = buf[i];

Line 1386

Line 1247

session_ident = ssh2_chan_id;

if (escape_char != SSH_ESCAPECHAR_NONE)

channel_register_filter(session_ident,

simple_escape_filter, NULL);

simple_escape_filter);

if (session_ident != -1)

channel_register_cleanup(session_ident,

client_channel_closed, 0);

client_channel_closed);

} else {

/* Check if we should immediately send eof on stdin. */

client_check_initial_eof_on_stdin();

Line 1688

Line 1549

if (!options.forward_x11) {

error("Warning: ssh server tried X11 forwarding.");

error("Warning: this is probably a break-in attempt by a malicious server.");

error("Warning: this is probably a break in attempt by a malicious server.");

return NULL;

}

originator = packet_get_string(NULL);

Line 1721

Line 1582

if (!options.forward_agent) {

error("Warning: ssh server tried agent forwarding.");

error("Warning: this is probably a break-in attempt by a malicious server.");

error("Warning: this is probably a break in attempt by a malicious server.");

return NULL;

}

sock = ssh_get_authentication_socket();

Line 1890

Line 1751

/* Split */

name = xstrdup(env[i]);

if ((val = strchr(name, '=')) == NULL) {

xfree(name);

free(name);

continue;

}

*val++ = '\0';

Line 1904

Line 1765

}

if (!matched) {

debug3("Ignored env %s", name);

xfree(name);

free(name);

continue;

}

Line 1913

Line 1774

packet_put_cstring(name);

packet_put_cstring(val);

packet_send();

xfree(name);

free(name);

}