src/usr.bin/ssh/clientloop.c - diff

Return to clientloop.c CVS log

Up to [local] / src / usr.bin / ssh

Diff for /src/usr.bin/ssh/clientloop.c between version 1.302 and 1.303

version 1.302, 2017/08/30 03:59:08

version 1.303, 2017/09/12 06:32:07

Line 169

};

/* Global request success/failure callbacks */

/* XXX move to struct ssh? */

struct global_confirm {

TAILQ_ENTRY(global_confirm) entry;

global_confirm_cb *cb;

Line 236

Line 237

* control master process, or if there is no ControlPersist timeout.

static void

set_control_persist_exit_time(void)

set_control_persist_exit_time(struct ssh *ssh)

{

if (muxserver_sock == -1 || !options.control_persist

|| options.control_persist_timeout == 0) {

/* not using a ControlPersist timeout */

control_persist_exit_time = 0;

} else if (channel_still_open()) {

} else if (channel_still_open(ssh)) {

/* some client connections are still open */

if (control_persist_exit_time > 0)

debug2("%s: cancel scheduled exit", __func__);

Line 280

Line 281

#define SSH_X11_PROTO "MIT-MAGIC-COOKIE-1"

#define X11_TIMEOUT_SLACK 60

int

client_x11_get_proto(const char *display, const char *xauth_path,

client_x11_get_proto(struct ssh *ssh, const char *display,

u_int trusted, u_int timeout, char **_proto, char **_data)

const char *xauth_path, u_int trusted, u_int timeout,

char **_proto, char **_data)

{

char cmd[1024], line[512], xdisplay[512];

char xauthfile[PATH_MAX], xauthdir[PATH_MAX];

Line 365

Line 367

x11_refuse_time = UINT_MAX;

else

x11_refuse_time = now + timeout;

channel_set_x11_refuse_time(x11_refuse_time);

channel_set_x11_refuse_time(ssh,

x11_refuse_time);

}

if (system(cmd) == 0)

generated = 1;

Line 438

Line 441

static void

client_check_window_change(void)

client_check_window_change(struct ssh *ssh)

{

if (!received_window_change_signal)

return;

Line 447

Line 450

debug2("%s: changed", __func__);

channel_send_window_changes();

channel_send_window_changes(ssh);

}

static int

Line 458

Line 461

if ((gc = TAILQ_FIRST(&global_confirms)) == NULL)

return 0;

if (gc->cb != NULL)

gc->cb(type, seq, gc->ctx);

gc->cb(ssh, type, seq, gc->ctx);

if (--gc->ref_count <= 0) {

TAILQ_REMOVE(&global_confirms, gc, entry);

explicit_bzero(gc, sizeof(*gc));

Line 489

Line 492

* one of the file descriptors).

static void

client_wait_until_can_do_something(fd_set **readsetp, fd_set **writesetp,

client_wait_until_can_do_something(struct ssh *ssh,

fd_set **readsetp, fd_set **writesetp,

int *maxfdp, u_int *nallocp, int rekeying)

{

struct timeval tv, *tvp;

Line 502

Line 506

nallocp, &minwait_secs);

/* channel_prepare_select could have closed the last channel */

if (session_closed && !channel_still_open() &&

if (session_closed && !channel_still_open(ssh) &&

!packet_have_data_to_write()) {

/* clear mask since we did not call select() */

memset(*readsetp, 0, *nallocp);

Line 529

Line 533

}

if (options.rekey_interval > 0 && !rekeying)

timeout_secs = MINIMUM(timeout_secs, packet_get_rekey_timeout());

set_control_persist_exit_time();

set_control_persist_exit_time(ssh);

if (control_persist_exit_time > 0) {

timeout_secs = MINIMUM(timeout_secs,

control_persist_exit_time - now);

Line 659

Line 663

}

static void

client_status_confirm(int type, Channel *c, void *ctx)

client_status_confirm(struct ssh *ssh, int type, Channel *c, void *ctx)

{

struct channel_reply_ctx *cr = (struct channel_reply_ctx *)ctx;

char errmsg[256];

Line 698

Line 702

* their stderr.

if (tochan) {

buffer_append(&c->extended, errmsg,

buffer_append(c->extended, errmsg, strlen(errmsg));

strlen(errmsg));

} else

error("%s", errmsg);

if (cr->action == CONFIRM_TTY) {

Line 710

Line 713

if (c->self == session_ident)

leave_raw_mode(0);

else

mux_tty_alloc_failed(c);

mux_tty_alloc_failed(ssh, c);

} else if (cr->action == CONFIRM_CLOSE) {

chan_read_failed(c);

chan_read_failed(ssh, c);

chan_write_failed(c);

chan_write_failed(ssh, c);

}

free(cr);

}

static void

client_abandon_status_confirm(Channel *c, void *ctx)

client_abandon_status_confirm(struct ssh *ssh, Channel *c, void *ctx)

{

free(ctx);

}

void

client_expect_confirm(int id, const char *request,

client_expect_confirm(struct ssh *ssh, int id, const char *request,

enum confirm_action action)

{

struct channel_reply_ctx *cr = xcalloc(1, sizeof(*cr));

Line 734

Line 737

cr->request_type = request;

cr->action = action;

channel_register_status_confirm(id, client_status_confirm,

channel_register_status_confirm(ssh, id, client_status_confirm,

client_abandon_status_confirm, cr);

}

Line 760

Line 763

}

static void

process_cmdline(void)

process_cmdline(struct ssh *ssh)

{

void (*handler)(int);

char *s, *cmd;

Line 834

Line 837

goto out;

}

if (remote)

ok = channel_request_rforward_cancel(&fwd) == 0;

ok = channel_request_rforward_cancel(ssh, &fwd) == 0;

else if (dynamic)

ok = channel_cancel_lport_listener(&fwd,

ok = channel_cancel_lport_listener(ssh, &fwd,

0, &options.fwd_opts) > 0;

else

ok = channel_cancel_lport_listener(&fwd,

ok = channel_cancel_lport_listener(ssh, &fwd,

CHANNEL_CANCEL_PORT_STATIC,

&options.fwd_opts) > 0;

if (!ok) {

Line 853

Line 856

goto out;

}

if (local || dynamic) {

if (!channel_setup_local_fwd_listener(&fwd,

if (!channel_setup_local_fwd_listener(ssh, &fwd,

&options.fwd_opts)) {

logit("Port forwarding failed.");

goto out;

}

} else {

if (channel_request_remote_forwarding(&fwd) < 0) {

if (channel_request_remote_forwarding(ssh, &fwd) < 0) {

logit("Port forwarding failed.");

goto out;

}

Line 936

Line 939

* Process the characters one by one.

static int

process_escapes(Channel *c, Buffer *bin, Buffer *bout, Buffer *berr,

process_escapes(struct ssh *ssh, Channel *c,

Buffer *bin, Buffer *bout, Buffer *berr,

char *buf, int len)

{

char string[1024];

Line 972

Line 976

buffer_append(berr, string, strlen(string));

if (c && c->ctl_chan != -1) {

chan_read_failed(c);

chan_read_failed(ssh, c);

chan_write_failed(c);

chan_write_failed(ssh, c);

if (c->detach_user)

if (c->detach_user) {

c->detach_user(c->self, NULL);

c->detach_user(ssh,

c->self, NULL);

}

c->type = SSH_CHANNEL_ABANDONED;

buffer_clear(&c->input);

buffer_clear(c->input);

chan_ibuf_empty(c);

chan_ibuf_empty(ssh, c);

return 0;

} else

quit_pending = 1;

Line 1016

Line 1022

snprintf(string, sizeof string,

"%cB\r\n", efc->escape_char);

buffer_append(berr, string, strlen(string));

channel_request_start(c->self, "break", 0);

channel_request_start(ssh, c->self, "break", 0);

packet_put_int(1000);

packet_send();

continue;

Line 1068

Line 1074

options.request_tty == REQUEST_TTY_FORCE);

/* Stop listening for new connections. */

channel_stop_listening();

channel_stop_listening(ssh);

snprintf(string, sizeof string,

"%c& [backgrounded]\n", efc->escape_char);

Line 1098

Line 1104

snprintf(string, sizeof string, "%c#\r\n",

efc->escape_char);

buffer_append(berr, string, strlen(string));

s = channel_open_message();

s = channel_open_message(ssh);

buffer_append(berr, s, strlen(s));

free(s);

continue;

Line 1106

Line 1112

case 'C':

if (c && c->ctl_chan != -1)

goto noescape;

process_cmdline();

process_cmdline(ssh);

continue;

default:

Line 1177

Line 1183

/* Free the escape filter context on channel free */

void

client_filter_cleanup(int cid, void *ctx)

client_filter_cleanup(struct ssh *ssh, int cid, void *ctx)

{

free(ctx);

}

int

client_simple_escape_filter(Channel *c, char *buf, int len)

client_simple_escape_filter(struct ssh *ssh, Channel *c, char *buf, int len)

{

if (c->extended_usage != CHAN_EXTENDED_WRITE)

return 0;

return process_escapes(c, &c->input, &c->output, &c->extended,

return process_escapes(ssh, c, c->input, c->output, c->extended,

buf, len);

}

static void

client_channel_closed(int id, void *arg)

client_channel_closed(struct ssh *ssh, int id, void *arg)

{

channel_cancel_cleanup(id);

channel_cancel_cleanup(ssh, id);

session_closed = 1;

leave_raw_mode(options.request_tty == REQUEST_TTY_FORCE);

}

Line 1206

Line 1212

* remote host. If escape_char != SSH_ESCAPECHAR_NONE, it is the character

* used as an escape character for terminating or suspending the session.

int

client_loop(int have_pty, int escape_char_arg, int ssh2_chan_id)

client_loop(struct ssh *ssh, int have_pty, int escape_char_arg,

int ssh2_chan_id)

{

fd_set *readset = NULL, *writeset = NULL;

double start_time, total_time;

Line 1286

Line 1292

session_ident = ssh2_chan_id;

if (session_ident != -1) {

if (escape_char_arg != SSH_ESCAPECHAR_NONE) {

channel_register_filter(session_ident,

channel_register_filter(ssh, session_ident,

client_simple_escape_filter, NULL,

client_filter_cleanup,

client_new_escape_filter_ctx(

escape_char_arg));

}

channel_register_cleanup(session_ident,

channel_register_cleanup(ssh, session_ident,

client_channel_closed, 0);

}

Line 1302

Line 1308

/* Process buffered packets sent by the server. */

client_process_buffered_input_packets();

if (session_closed && !channel_still_open())

if (session_closed && !channel_still_open(ssh))

break;

if (ssh_packet_is_rekeying(active_state)) {

if (ssh_packet_is_rekeying(ssh)) {

debug("rekeying in progress");

} else if (need_rekeying) {

/* manual rekey request */

debug("need rekeying");

if ((r = kex_start_rekex(active_state)) != 0)

if ((r = kex_start_rekex(ssh)) != 0)

fatal("%s: kex_start_rekex: %s", __func__,

ssh_err(r));

need_rekeying = 0;

Line 1320

Line 1326

* enqueue them for sending to the server.

if (packet_not_very_much_data_to_write())

channel_output_poll();

channel_output_poll(ssh);

* Check if the window size has changed, and buffer a

* message about it to the server if so.

client_check_window_change();

client_check_window_change(ssh);

if (quit_pending)

break;

Line 1336

Line 1342

* available on one of the descriptors).

max_fd2 = max_fd;

client_wait_until_can_do_something(&readset, &writeset,

client_wait_until_can_do_something(ssh, &readset, &writeset,

&max_fd2, &nalloc, ssh_packet_is_rekeying(active_state));

&max_fd2, &nalloc, ssh_packet_is_rekeying(ssh));

if (quit_pending)

break;

/* Do channel operations unless rekeying in progress. */

if (!ssh_packet_is_rekeying(active_state))

if (!ssh_packet_is_rekeying(ssh))

channel_after_select(active_state, readset, writeset);

channel_after_select(ssh, readset, writeset);

/* Buffer input from the connection. */

client_process_net_input(readset);

Line 1386

Line 1392

packet_send();

packet_write_wait();

channel_free_all();

channel_free_all(ssh);

if (have_pty)

leave_raw_mode(options.request_tty == REQUEST_TTY_FORCE);

Line 1454

Line 1460

/*********/

static Channel *

client_request_forwarded_tcpip(const char *request_type, int rchan,

client_request_forwarded_tcpip(struct ssh *ssh, const char *request_type,

u_int rwindow, u_int rmaxpack)

int rchan, u_int rwindow, u_int rmaxpack)

{

Channel *c = NULL;

struct sshbuf *b = NULL;

Line 1473

Line 1479

debug("%s: listen %s port %d, originator %s port %d", __func__,

listen_address, listen_port, originator_address, originator_port);

c = channel_connect_by_listen_address(listen_address, listen_port,

c = channel_connect_by_listen_address(ssh, listen_address, listen_port,

"forwarded-tcpip", originator_address);

if (c != NULL && c->type == SSH_CHANNEL_MUX_CLIENT) {

Line 1492

Line 1498

(r = sshbuf_put_u32(b, listen_port)) != 0 ||

(r = sshbuf_put_cstring(b, originator_address)) != 0 ||

(r = sshbuf_put_u32(b, originator_port)) != 0 ||

(r = sshbuf_put_stringb(&c->output, b)) != 0) {

(r = sshbuf_put_stringb(c->output, b)) != 0) {

error("%s: compose for muxclient %s", __func__,

ssh_err(r));

goto out;

Line 1507

Line 1513

}

static Channel *

client_request_forwarded_streamlocal(const char *request_type, int rchan)

client_request_forwarded_streamlocal(struct ssh *ssh,

const char *request_type, int rchan)

{

Channel *c = NULL;

char *listen_path;

Line 1521

Line 1528

debug("%s: %s", __func__, listen_path);

c = channel_connect_by_listen_path(listen_path,

c = channel_connect_by_listen_path(ssh, listen_path,

"forwarded-streamlocal@openssh.com", "forwarded-streamlocal");

free(listen_path);

return c;

}

static Channel *

client_request_x11(const char *request_type, int rchan)

client_request_x11(struct ssh *ssh, const char *request_type, int rchan)

{

Channel *c = NULL;

char *originator;

Line 1558

Line 1565

debug("client_request_x11: request from %s %d", originator,

originator_port);

free(originator);

sock = x11_connect_display();

sock = x11_connect_display(ssh);

if (sock < 0)

return NULL;

c = channel_new("x11",

c = channel_new(ssh, "x11",

SSH_CHANNEL_X11_OPEN, sock, sock, -1,

CHAN_TCP_WINDOW_DEFAULT, CHAN_X11_PACKET_DEFAULT, 0, "x11", 1);

c->force_drain = 1;

Line 1569

Line 1576

}

static Channel *

client_request_agent(const char *request_type, int rchan)

client_request_agent(struct ssh *ssh, const char *request_type, int rchan)

{

Channel *c = NULL;

int r, sock;

Line 1586

Line 1593

__func__, ssh_err(r));

return NULL;

}

c = channel_new("authentication agent connection",

c = channel_new(ssh, "authentication agent connection",

SSH_CHANNEL_OPEN, sock, sock, -1,

CHAN_X11_WINDOW_DEFAULT, CHAN_TCP_PACKET_DEFAULT, 0,

"authentication agent connection", 1);

Line 1595

Line 1602

}

int

client_request_tun_fwd(int tun_mode, int local_tun, int remote_tun)

client_request_tun_fwd(struct ssh *ssh, int tun_mode,

int local_tun, int remote_tun)

{

Channel *c;

int fd;

Line 1611

Line 1619

return -1;

}

c = channel_new("tun", SSH_CHANNEL_OPENING, fd, fd, -1,

c = channel_new(ssh, "tun", SSH_CHANNEL_OPENING, fd, fd, -1,

CHAN_TCP_WINDOW_DEFAULT, CHAN_TCP_PACKET_DEFAULT, 0, "tun", 1);

c->datagram = 1;

Line 1645

Line 1653

ctype, rchan, rwindow, rmaxpack);

if (strcmp(ctype, "forwarded-tcpip") == 0) {

c = client_request_forwarded_tcpip(ctype, rchan, rwindow,

c = client_request_forwarded_tcpip(ssh, ctype, rchan, rwindow,

rmaxpack);

} else if (strcmp(ctype, "forwarded-streamlocal@openssh.com") == 0) {

c = client_request_forwarded_streamlocal(ctype, rchan);

c = client_request_forwarded_streamlocal(ssh, ctype, rchan);

} else if (strcmp(ctype, "x11") == 0) {

c = client_request_x11(ctype, rchan);

c = client_request_x11(ssh, ctype, rchan);

} else if (strcmp(ctype, "auth-agent@openssh.com") == 0) {

c = client_request_agent(ctype, rchan);

c = client_request_agent(ssh, ctype, rchan);

}

if (c != NULL && c->type == SSH_CHANNEL_MUX_CLIENT) {

debug3("proxied to downstream: %s", ctype);

Line 1692

Line 1700

char *rtype;

id = packet_get_int();

c = channel_lookup(id);

c = channel_lookup(ssh, id);

if (channel_proxy_upstream(c, type, seq, ssh))

return 0;

rtype = packet_get_string(NULL);

Line 1708

Line 1716

"unknown channel", id);

} else if (strcmp(rtype, "eow@openssh.com") == 0) {

packet_check_eom();

chan_rcvd_eow(c);

chan_rcvd_eow(ssh, c);

} else if (strcmp(rtype, "exit-status") == 0) {

exitval = packet_get_int();

if (c->ctl_chan != -1) {

mux_exit_message(c, exitval);

mux_exit_message(ssh, c, exitval);

success = 1;

} else if (id == session_ident) {

/* Record exit value of local session */

Line 1880

Line 1888

}

static void

client_global_hostkeys_private_confirm(int type, u_int32_t seq, void *_ctx)

client_global_hostkeys_private_confirm(struct ssh *ssh, int type,

u_int32_t seq, void *_ctx)

{

struct ssh *ssh = active_state; /* XXX */

struct hostkeys_update_ctx *ctx = (struct hostkeys_update_ctx *)_ctx;

size_t i, ndone;

struct sshbuf *signdata;

Line 2146

Line 2154

}

void

client_session2_setup(int id, int want_tty, int want_subsystem,

client_session2_setup(struct ssh *ssh, int id, int want_tty, int want_subsystem,

const char *term, struct termios *tiop, int in_fd, Buffer *cmd, char **env)

{

int len;

Line 2154

Line 2162

debug2("%s: id %d", __func__, id);

if ((c = channel_lookup(id)) == NULL)

if ((c = channel_lookup(ssh, id)) == NULL)

fatal("client_session2_setup: channel %d: unknown channel", id);

fatal("%s: channel %d: unknown channel", __func__, id);

packet_set_interactive(want_tty,

options.ip_qos_interactive, options.ip_qos_bulk);

Line 2167

Line 2175

if (ioctl(in_fd, TIOCGWINSZ, &ws) < 0)

memset(&ws, 0, sizeof(ws));

channel_request_start(id, "pty-req", 1);

channel_request_start(ssh, id, "pty-req", 1);

client_expect_confirm(id, "PTY allocation", CONFIRM_TTY);

client_expect_confirm(ssh, id, "PTY allocation", CONFIRM_TTY);

packet_put_cstring(term != NULL ? term : "");

packet_put_int((u_int)ws.ws_col);

packet_put_int((u_int)ws.ws_row);

Line 2211

Line 2219

}

debug("Sending env %s = %s", name, val);

channel_request_start(id, "env", 0);

channel_request_start(ssh, id, "env", 0);

packet_put_cstring(name);

packet_put_cstring(val);

packet_send();

Line 2226

Line 2234

if (want_subsystem) {

debug("Sending subsystem: %.*s",

len, (u_char*)buffer_ptr(cmd));

channel_request_start(id, "subsystem", 1);

channel_request_start(ssh, id, "subsystem", 1);

client_expect_confirm(id, "subsystem", CONFIRM_CLOSE);

client_expect_confirm(ssh, id, "subsystem",

CONFIRM_CLOSE);

} else {

debug("Sending command: %.*s",

len, (u_char*)buffer_ptr(cmd));

channel_request_start(id, "exec", 1);

channel_request_start(ssh, id, "exec", 1);

client_expect_confirm(id, "exec", CONFIRM_CLOSE);

client_expect_confirm(ssh, id, "exec", CONFIRM_CLOSE);

}

packet_put_string(buffer_ptr(cmd), buffer_len(cmd));

packet_send();

} else {

channel_request_start(id, "shell", 1);

channel_request_start(ssh, id, "shell", 1);

client_expect_confirm(id, "shell", CONFIRM_CLOSE);

client_expect_confirm(ssh, id, "shell", CONFIRM_CLOSE);

packet_send();

}