sshpty.c revision 98941
1/*
2 * Author: Tatu Ylonen <ylo@cs.hut.fi>
3 * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
4 *                    All rights reserved
5 * Allocating a pseudo-terminal, and making it the controlling tty.
6 *
7 * As far as I am concerned, the code I have written for this software
8 * can be used freely for any purpose.  Any derived versions of this
9 * software must be clearly marked as such, and if the derived work is
10 * incompatible with the protocol description in the RFC file, it must be
11 * called by a name other than "ssh" or "Secure Shell".
12 */
13
14#include "includes.h"
15RCSID("$OpenBSD: sshpty.c,v 1.4 2001/12/19 07:18:56 deraadt Exp $");
16
17#ifdef HAVE_UTIL_H
18# include <util.h>
19#endif /* HAVE_UTIL_H */
20
21#include "sshpty.h"
22#include "log.h"
23#include "misc.h"
24
25/* Pty allocated with _getpty gets broken if we do I_PUSH:es to it. */
26#if defined(HAVE__GETPTY) || defined(HAVE_OPENPTY)
27#undef HAVE_DEV_PTMX
28#endif
29
30#ifdef HAVE_PTY_H
31# include <pty.h>
32#endif
33#if defined(HAVE_DEV_PTMX) && defined(HAVE_SYS_STROPTS_H)
34# include <sys/stropts.h>
35#endif
36
37#ifndef O_NOCTTY
38#define O_NOCTTY 0
39#endif
40
41/*
42 * Allocates and opens a pty.  Returns 0 if no pty could be allocated, or
43 * nonzero if a pty was successfully allocated.  On success, open file
44 * descriptors for the pty and tty sides and the name of the tty side are
45 * returned (the buffer must be able to hold at least 64 characters).
46 */
47
48int
49pty_allocate(int *ptyfd, int *ttyfd, char *namebuf, int namebuflen)
50{
51#if defined(HAVE_OPENPTY) || defined(BSD4_4)
52	/* openpty(3) exists in OSF/1 and some other os'es */
53	char *name;
54	int i;
55
56	i = openpty(ptyfd, ttyfd, NULL, NULL, NULL);
57	if (i < 0) {
58		error("openpty: %.100s", strerror(errno));
59		return 0;
60	}
61	name = ttyname(*ttyfd);
62	if (!name)
63		fatal("openpty returns device for which ttyname fails.");
64
65	strlcpy(namebuf, name, namebuflen);	/* possible truncation */
66	return 1;
67#else /* HAVE_OPENPTY */
68#ifdef HAVE__GETPTY
69	/*
70	 * _getpty(3) exists in SGI Irix 4.x, 5.x & 6.x -- it generates more
71	 * pty's automagically when needed
72	 */
73	char *slave;
74
75	slave = _getpty(ptyfd, O_RDWR, 0622, 0);
76	if (slave == NULL) {
77		error("_getpty: %.100s", strerror(errno));
78		return 0;
79	}
80	strlcpy(namebuf, slave, namebuflen);
81	/* Open the slave side. */
82	*ttyfd = open(namebuf, O_RDWR | O_NOCTTY);
83	if (*ttyfd < 0) {
84		error("%.200s: %.100s", namebuf, strerror(errno));
85		close(*ptyfd);
86		return 0;
87	}
88	return 1;
89#else /* HAVE__GETPTY */
90#if defined(HAVE_DEV_PTMX)
91	/*
92	 * This code is used e.g. on Solaris 2.x.  (Note that Solaris 2.3
93	 * also has bsd-style ptys, but they simply do not work.)
94	 */
95	int ptm;
96	char *pts;
97	mysig_t old_signal;
98
99	ptm = open("/dev/ptmx", O_RDWR | O_NOCTTY);
100	if (ptm < 0) {
101		error("/dev/ptmx: %.100s", strerror(errno));
102		return 0;
103	}
104	old_signal = mysignal(SIGCHLD, SIG_DFL);
105	if (grantpt(ptm) < 0) {
106		error("grantpt: %.100s", strerror(errno));
107		return 0;
108	}
109	mysignal(SIGCHLD, old_signal);
110	if (unlockpt(ptm) < 0) {
111		error("unlockpt: %.100s", strerror(errno));
112		return 0;
113	}
114	pts = ptsname(ptm);
115	if (pts == NULL)
116		error("Slave pty side name could not be obtained.");
117	strlcpy(namebuf, pts, namebuflen);
118	*ptyfd = ptm;
119
120	/* Open the slave side. */
121	*ttyfd = open(namebuf, O_RDWR | O_NOCTTY);
122	if (*ttyfd < 0) {
123		error("%.100s: %.100s", namebuf, strerror(errno));
124		close(*ptyfd);
125		return 0;
126	}
127#ifndef HAVE_CYGWIN
128	/*
129	 * Push the appropriate streams modules, as described in Solaris pts(7).
130	 * HP-UX pts(7) doesn't have ttcompat module.
131	 */
132	if (ioctl(*ttyfd, I_PUSH, "ptem") < 0)
133		error("ioctl I_PUSH ptem: %.100s", strerror(errno));
134	if (ioctl(*ttyfd, I_PUSH, "ldterm") < 0)
135		error("ioctl I_PUSH ldterm: %.100s", strerror(errno));
136#ifndef __hpux
137	if (ioctl(*ttyfd, I_PUSH, "ttcompat") < 0)
138		error("ioctl I_PUSH ttcompat: %.100s", strerror(errno));
139#endif
140#endif
141	return 1;
142#else /* HAVE_DEV_PTMX */
143#ifdef HAVE_DEV_PTS_AND_PTC
144	/* AIX-style pty code. */
145	const char *name;
146
147	*ptyfd = open("/dev/ptc", O_RDWR | O_NOCTTY);
148	if (*ptyfd < 0) {
149		error("Could not open /dev/ptc: %.100s", strerror(errno));
150		return 0;
151	}
152	name = ttyname(*ptyfd);
153	if (!name)
154		fatal("Open of /dev/ptc returns device for which ttyname fails.");
155	strlcpy(namebuf, name, namebuflen);
156	*ttyfd = open(name, O_RDWR | O_NOCTTY);
157	if (*ttyfd < 0) {
158		error("Could not open pty slave side %.100s: %.100s",
159		    name, strerror(errno));
160		close(*ptyfd);
161		return 0;
162	}
163	return 1;
164#else /* HAVE_DEV_PTS_AND_PTC */
165#ifdef _CRAY
166	char buf[64];
167	int i;
168	int highpty;
169
170#ifdef _SC_CRAY_NPTY
171	highpty = sysconf(_SC_CRAY_NPTY);
172	if (highpty == -1)
173		highpty = 128;
174#else
175	highpty = 128;
176#endif
177
178	for (i = 0; i < highpty; i++) {
179		snprintf(buf, sizeof(buf), "/dev/pty/%03d", i);
180		*ptyfd = open(buf, O_RDWR|O_NOCTTY);
181		if (*ptyfd < 0)
182			continue;
183		snprintf(namebuf, namebuflen, "/dev/ttyp%03d", i);
184		/* Open the slave side. */
185		*ttyfd = open(namebuf, O_RDWR|O_NOCTTY);
186		if (*ttyfd < 0) {
187			error("%.100s: %.100s", namebuf, strerror(errno));
188			close(*ptyfd);
189			return 0;
190		}
191		return 1;
192	}
193	return 0;
194#else
195	/* BSD-style pty code. */
196	char buf[64];
197	int i;
198	const char *ptymajors = "pqrstuvwxyzabcdefghijklmnoABCDEFGHIJKLMNOPQRSTUVWXYZ";
199	const char *ptyminors = "0123456789abcdef";
200	int num_minors = strlen(ptyminors);
201	int num_ptys = strlen(ptymajors) * num_minors;
202	struct termios tio;
203
204	for (i = 0; i < num_ptys; i++) {
205		snprintf(buf, sizeof buf, "/dev/pty%c%c", ptymajors[i / num_minors],
206			 ptyminors[i % num_minors]);
207		snprintf(namebuf, namebuflen, "/dev/tty%c%c",
208		    ptymajors[i / num_minors], ptyminors[i % num_minors]);
209
210		*ptyfd = open(buf, O_RDWR | O_NOCTTY);
211		if (*ptyfd < 0) {
212			/* Try SCO style naming */
213			snprintf(buf, sizeof buf, "/dev/ptyp%d", i);
214			snprintf(namebuf, namebuflen, "/dev/ttyp%d", i);
215			*ptyfd = open(buf, O_RDWR | O_NOCTTY);
216			if (*ptyfd < 0)
217				continue;
218		}
219
220		/* Open the slave side. */
221		*ttyfd = open(namebuf, O_RDWR | O_NOCTTY);
222		if (*ttyfd < 0) {
223			error("%.100s: %.100s", namebuf, strerror(errno));
224			close(*ptyfd);
225			return 0;
226		}
227		/* set tty modes to a sane state for broken clients */
228		if (tcgetattr(*ptyfd, &tio) < 0)
229			log("Getting tty modes for pty failed: %.100s", strerror(errno));
230		else {
231			tio.c_lflag |= (ECHO | ISIG | ICANON);
232			tio.c_oflag |= (OPOST | ONLCR);
233			tio.c_iflag |= ICRNL;
234
235			/* Set the new modes for the terminal. */
236			if (tcsetattr(*ptyfd, TCSANOW, &tio) < 0)
237				log("Setting tty modes for pty failed: %.100s", strerror(errno));
238		}
239
240		return 1;
241	}
242	return 0;
243#endif /* CRAY */
244#endif /* HAVE_DEV_PTS_AND_PTC */
245#endif /* HAVE_DEV_PTMX */
246#endif /* HAVE__GETPTY */
247#endif /* HAVE_OPENPTY */
248}
249
250/* Releases the tty.  Its ownership is returned to root, and permissions to 0666. */
251
252void
253pty_release(const char *ttyname)
254{
255	if (chown(ttyname, (uid_t) 0, (gid_t) 0) < 0)
256		error("chown %.100s 0 0 failed: %.100s", ttyname, strerror(errno));
257	if (chmod(ttyname, (mode_t) 0666) < 0)
258		error("chmod %.100s 0666 failed: %.100s", ttyname, strerror(errno));
259}
260
261/* Makes the tty the processes controlling tty and sets it to sane modes. */
262
263void
264pty_make_controlling_tty(int *ttyfd, const char *ttyname)
265{
266	int fd;
267#ifdef USE_VHANGUP
268	void *old;
269#endif /* USE_VHANGUP */
270
271#ifdef _CRAY
272	if (setsid() < 0)
273		error("setsid: %.100s", strerror(errno));
274
275	fd = open(ttyname, O_RDWR|O_NOCTTY);
276	if (fd != -1) {
277		mysignal(SIGHUP, SIG_IGN);
278		ioctl(fd, TCVHUP, (char *)NULL);
279		mysignal(SIGHUP, SIG_DFL);
280		setpgid(0, 0);
281		close(fd);
282	} else {
283		error("Failed to disconnect from controlling tty.");
284	}
285
286	debug("Setting controlling tty using TCSETCTTY.");
287	ioctl(*ttyfd, TCSETCTTY, NULL);
288	fd = open("/dev/tty", O_RDWR);
289	if (fd < 0)
290		error("%.100s: %.100s", ttyname, strerror(errno));
291	close(*ttyfd);
292	*ttyfd = fd;
293#else /* _CRAY */
294
295	/* First disconnect from the old controlling tty. */
296#ifdef TIOCNOTTY
297	fd = open(_PATH_TTY, O_RDWR | O_NOCTTY);
298	if (fd >= 0) {
299		(void) ioctl(fd, TIOCNOTTY, NULL);
300		close(fd);
301	}
302#endif /* TIOCNOTTY */
303	if (setsid() < 0)
304		error("setsid: %.100s", strerror(errno));
305
306	/*
307	 * Verify that we are successfully disconnected from the controlling
308	 * tty.
309	 */
310	fd = open(_PATH_TTY, O_RDWR | O_NOCTTY);
311	if (fd >= 0) {
312		error("Failed to disconnect from controlling tty.");
313		close(fd);
314	}
315	/* Make it our controlling tty. */
316#ifdef TIOCSCTTY
317	debug("Setting controlling tty using TIOCSCTTY.");
318	if (ioctl(*ttyfd, TIOCSCTTY, NULL) < 0)
319		error("ioctl(TIOCSCTTY): %.100s", strerror(errno));
320#endif /* TIOCSCTTY */
321#ifdef HAVE_NEWS4
322	if (setpgrp(0,0) < 0)
323		error("SETPGRP %s",strerror(errno));
324#endif /* HAVE_NEWS4 */
325#ifdef USE_VHANGUP
326	old = mysignal(SIGHUP, SIG_IGN);
327	vhangup();
328	mysignal(SIGHUP, old);
329#endif /* USE_VHANGUP */
330	fd = open(ttyname, O_RDWR);
331	if (fd < 0) {
332		error("%.100s: %.100s", ttyname, strerror(errno));
333	} else {
334#ifdef USE_VHANGUP
335		close(*ttyfd);
336		*ttyfd = fd;
337#else /* USE_VHANGUP */
338		close(fd);
339#endif /* USE_VHANGUP */
340	}
341	/* Verify that we now have a controlling tty. */
342	fd = open(_PATH_TTY, O_WRONLY);
343	if (fd < 0)
344		error("open /dev/tty failed - could not set controlling tty: %.100s",
345		    strerror(errno));
346	else {
347		close(fd);
348	}
349#endif /* _CRAY */
350}
351
352/* Changes the window size associated with the pty. */
353
354void
355pty_change_window_size(int ptyfd, int row, int col,
356	int xpixel, int ypixel)
357{
358	struct winsize w;
359	w.ws_row = row;
360	w.ws_col = col;
361	w.ws_xpixel = xpixel;
362	w.ws_ypixel = ypixel;
363	(void) ioctl(ptyfd, TIOCSWINSZ, &w);
364}
365
366void
367pty_setowner(struct passwd *pw, const char *ttyname)
368{
369	struct group *grp;
370	gid_t gid;
371	mode_t mode;
372	struct stat st;
373
374	/* Determine the group to make the owner of the tty. */
375	grp = getgrnam("tty");
376	if (grp) {
377		gid = grp->gr_gid;
378		mode = S_IRUSR | S_IWUSR | S_IWGRP;
379	} else {
380		gid = pw->pw_gid;
381		mode = S_IRUSR | S_IWUSR | S_IWGRP | S_IWOTH;
382	}
383
384	/*
385	 * Change owner and mode of the tty as required.
386	 * Warn but continue if filesystem is read-only and the uids match/
387	 * tty is owned by root.
388	 */
389	if (stat(ttyname, &st))
390		fatal("stat(%.100s) failed: %.100s", ttyname,
391		    strerror(errno));
392
393	if (st.st_uid != pw->pw_uid || st.st_gid != gid) {
394		if (chown(ttyname, pw->pw_uid, gid) < 0) {
395			if (errno == EROFS &&
396			   (st.st_uid == pw->pw_uid || st.st_uid == 0))
397				error("chown(%.100s, %d, %d) failed: %.100s",
398				    ttyname, pw->pw_uid, gid,
399				    strerror(errno));
400			else
401				fatal("chown(%.100s, %d, %d) failed: %.100s",
402				    ttyname, pw->pw_uid, gid,
403				    strerror(errno));
404		}
405	}
406
407	if ((st.st_mode & (S_IRWXU|S_IRWXG|S_IRWXO)) != mode) {
408		if (chmod(ttyname, mode) < 0) {
409			if (errno == EROFS &&
410			    (st.st_mode & (S_IRGRP | S_IROTH)) == 0)
411				error("chmod(%.100s, 0%o) failed: %.100s",
412				    ttyname, mode, strerror(errno));
413			else
414				fatal("chmod(%.100s, 0%o) failed: %.100s",
415				    ttyname, mode, strerror(errno));
416		}
417	}
418}
419