src/usr.bin/ssh/session.c - diff

Return to session.c CVS log

Up to [local] / src / usr.bin / ssh

Diff for /src/usr.bin/ssh/session.c between version 1.108.2.4 and 1.108.2.5

version 1.108.2.4, 2002/05/17 00:03:24

version 1.108.2.5, 2002/06/22 07:23:17

Line 98

login_cap_t *lc;

#endif

/* Name and directory of socket for authentication agent forwarding. */

static char *auth_sock_name = NULL;

static char *auth_sock_dir = NULL;

/* removes the agent forwarding socket */

static void

auth_sock_cleanup_proc(void *_pw)

{

struct passwd *pw = _pw;

if (auth_sock_name != NULL) {

temporarily_use_uid(pw);

unlink(auth_sock_name);

rmdir(auth_sock_dir);

auth_sock_name = NULL;

restore_uid();

}

static int

auth_input_request_forwarding(struct passwd * pw)

{

Channel *nc;

int sock;

struct sockaddr_un sunaddr;

if (auth_sock_name != NULL) {

error("authentication forwarding requested twice.");

return 0;

}

/* Temporarily drop privileged uid for mkdir/bind. */

temporarily_use_uid(pw);

/* Allocate a buffer for the socket name, and format the name. */

auth_sock_name = xmalloc(MAXPATHLEN);

auth_sock_dir = xmalloc(MAXPATHLEN);

strlcpy(auth_sock_dir, "/tmp/ssh-XXXXXXXX", MAXPATHLEN);

/* Create private directory for socket */

if (mkdtemp(auth_sock_dir) == NULL) {

packet_send_debug("Agent forwarding disabled: "

"mkdtemp() failed: %.100s", strerror(errno));

restore_uid();

xfree(auth_sock_name);

xfree(auth_sock_dir);

auth_sock_name = NULL;

auth_sock_dir = NULL;

return 0;

}

snprintf(auth_sock_name, MAXPATHLEN, "%s/agent.%ld",

auth_sock_dir, (long) getpid());

/* delete agent socket on fatal() */

fatal_add_cleanup(auth_sock_cleanup_proc, pw);

/* Create the socket. */

sock = socket(AF_UNIX, SOCK_STREAM, 0);

if (sock < 0)

packet_disconnect("socket: %.100s", strerror(errno));

/* Bind it to the name. */

memset(&sunaddr, 0, sizeof(sunaddr));

sunaddr.sun_family = AF_UNIX;

strlcpy(sunaddr.sun_path, auth_sock_name, sizeof(sunaddr.sun_path));

if (bind(sock, (struct sockaddr *) & sunaddr, sizeof(sunaddr)) < 0)

packet_disconnect("bind: %.100s", strerror(errno));

/* Restore the privileged uid. */

restore_uid();

/* Start listening on the socket. */

if (listen(sock, 5) < 0)

packet_disconnect("listen: %.100s", strerror(errno));

/* Allocate a channel for the authentication agent socket. */

nc = channel_new("auth socket",

SSH_CHANNEL_AUTH_SOCKET, sock, sock, -1,

CHAN_X11_WINDOW_DEFAULT, CHAN_X11_PACKET_DEFAULT,

0, xstrdup("auth socket"), 1);

strlcpy(nc->path, auth_sock_name, sizeof(nc->path));

return 1;

}

void

do_authenticated(Authctxt *authctxt)

{

Line 120

Line 207

do_authenticated1(authctxt);

/* remove agent socket */

if (auth_get_socket_name())

if (auth_sock_name != NULL)

auth_sock_cleanup_proc(authctxt->pw);

#ifdef KRB4

if (options.kerberos_ticket_cleanup)

Line 171

Line 258

compression_level);

break;

}

if (!options.compression) {

debug2("compression disabled");

break;

}

/* Enable compression after we have responded with SUCCESS. */

enable_compression_after_reply = 1;

success = 1;

Line 327

Line 418

void

do_exec_no_pty(Session *s, const char *command)

{

int pid;

pid_t pid;

#ifdef USE_PIPES

int pin[2], pout[2], perr[2];

Line 791

Line 882

child_set_env(&env, &envsize, "KRB5CCNAME",

s->authctxt->krb5_ticket_file);

#endif

if (auth_get_socket_name() != NULL)

if (auth_sock_name != NULL)

child_set_env(&env, &envsize, SSH_AUTHSOCKET_ENV_NAME,

auth_get_socket_name());

auth_sock_name);

/* read $HOME/.ssh/environment. */

if (!options.use_login) {

Line 857

Line 948

/* Add authority data to .Xauthority if appropriate. */

if (debug_flag) {

fprintf(stderr,

"Running %.100s add "

"Running %.500s add "

"%.100s %.100s %.100s\n",

options.xauth_location, s->auth_display,

s->auth_proto, s->auth_data);

Line 1147

Line 1238

int i;

for (i = 0; i < MAX_SESSIONS; i++) {

Session *s = &sessions[i];

debug("dump: used %d session %d %p channel %d pid %d",

debug("dump: used %d session %d %p channel %d pid %ld",

s->used,

s->self,

s->chanid,

s->pid);

(long)s->pid);

}

Line 1210

Line 1301

session_by_pid(pid_t pid)

{

int i;

debug("session_by_pid: pid %d", pid);

debug("session_by_pid: pid %ld", (long)pid);

for (i = 0; i < MAX_SESSIONS; i++) {

Session *s = &sessions[i];

if (s->used && s->pid == pid)

return s;

}

error("session_by_pid: unknown pid %d", pid);

error("session_by_pid: unknown pid %ld", (long)pid);

session_dump();

return NULL;

}

Line 1506

Line 1597

if ((c = channel_lookup(s->chanid)) == NULL)

fatal("session_exit_message: session %d: no channel %d",

s->self, s->chanid);

debug("session_exit_message: session %d channel %d pid %d",

debug("session_exit_message: session %d channel %d pid %ld",

s->self, s->chanid, s->pid);

s->self, s->chanid, (long)s->pid);

if (WIFEXITED(status)) {

channel_request_start(s->chanid, "exit-status", 0);

Line 1542

Line 1633

void

session_close(Session *s)

{

debug("session_close: session %d pid %d", s->self, s->pid);

debug("session_close: session %d pid %ld", s->self, (long)s->pid);

if (s->ttyfd != -1) {

fatal_remove_cleanup(session_pty_cleanup, (void *)s);

session_pty_cleanup(s);

Line 1566

Line 1657

{

Session *s = session_by_pid(pid);

if (s == NULL) {

debug("session_close_by_pid: no session for pid %d", pid);

debug("session_close_by_pid: no session for pid %ld",

(long)pid);

return;

}

if (s->chanid != -1)

Line 1586

Line 1678

debug("session_close_by_channel: no session for id %d", id);

return;

}

debug("session_close_by_channel: channel %d child %d", id, s->pid);

debug("session_close_by_channel: channel %d child %ld",

id, (long)s->pid);

if (s->pid != 0) {

debug("session_close_by_channel: channel %d: has child", id);