builtins.c revision 61098
1204917Sdes/*- 269587Sgreen * Copyright (c) 1983, 1991, 1993, 1994 369587Sgreen * The Regents of the University of California. All rights reserved. 469587Sgreen * 569587Sgreen * Redistribution and use in source and binary forms, with or without 669587Sgreen * modification, are permitted provided that the following conditions 769587Sgreen * are met: 869587Sgreen * 1. Redistributions of source code must retain the above copyright 969587Sgreen * notice, this list of conditions and the following disclaimer. 1069587Sgreen * 2. Redistributions in binary form must reproduce the above copyright 1169587Sgreen * notice, this list of conditions and the following disclaimer in the 1269587Sgreen * documentation and/or other materials provided with the distribution. 1369587Sgreen * 1469587Sgreen * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND 1569587Sgreen * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 1669587Sgreen * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 1769587Sgreen * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 1869587Sgreen * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 1969587Sgreen * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 2069587Sgreen * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 2169587Sgreen * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 2269587Sgreen * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 2369587Sgreen * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 2469587Sgreen * SUCH DAMAGE. 2569587Sgreen * 2669587Sgreen * $FreeBSD: head/usr.sbin/inetd/builtins.c 61098 2000-05-30 18:32:58Z jhb $ 2769587Sgreen * 28162852Sdes */ 2969587Sgreen 3069587Sgreen#include <sys/filio.h> 3169587Sgreen#include <sys/ioccom.h> 3269587Sgreen#include <sys/param.h> 33162852Sdes#include <sys/stat.h> 34162852Sdes#include <sys/socket.h> 35162852Sdes#include <sys/sysctl.h> 36162852Sdes#include <sys/ucred.h> 37162852Sdes#include <sys/uio.h> 3869587Sgreen#include <sys/utsname.h> 3976259Sgreen 4076259Sgreen#include <ctype.h> 4176259Sgreen#include <err.h> 4269587Sgreen#include <errno.h> 4392555Sdes#include <limits.h> 4469587Sgreen#include <pwd.h> 4569587Sgreen#include <signal.h> 4669587Sgreen#include <stdlib.h> 4769587Sgreen#include <string.h> 48162852Sdes#include <sysexits.h> 49181111Sdes#include <syslog.h> 5069587Sgreen#include <unistd.h> 5169587Sgreen 52162852Sdes#include "inetd.h" 53162852Sdes 5469587Sgreenextern int debug; 5569587Sgreenextern struct servtab *servtab; 5669587Sgreen 57106121Sdeschar ring[128]; 5869587Sgreenchar *endring; 5969587Sgreen 6069587Sgreenint check_loop __P((struct sockaddr *, struct servtab *sep)); 6169587Sgreenvoid inetd_setproctitle __P((char *, int)); 6269587Sgreen 6369587Sgreenstruct biltin biltins[] = { 6469587Sgreen /* Echo received data */ 6569587Sgreen { "echo", SOCK_STREAM, 1, -1, echo_stream }, 66181111Sdes { "echo", SOCK_DGRAM, 0, 1, echo_dg }, 67181111Sdes 68181111Sdes /* Internet /dev/null */ 69181111Sdes { "discard", SOCK_STREAM, 1, -1, discard_stream }, 7069587Sgreen { "discard", SOCK_DGRAM, 0, 1, discard_dg }, 7169587Sgreen 7269587Sgreen /* Return 32 bit time since 1970 */ 73181111Sdes { "time", SOCK_STREAM, 0, -1, machtime_stream }, 74181111Sdes { "time", SOCK_DGRAM, 0, 1, machtime_dg }, 75181111Sdes 76181111Sdes /* Return human-readable time */ 77181111Sdes { "daytime", SOCK_STREAM, 0, -1, daytime_stream }, 7869587Sgreen { "daytime", SOCK_DGRAM, 0, 1, daytime_dg }, 7969587Sgreen 8069587Sgreen /* Familiar character generator */ 81181111Sdes { "chargen", SOCK_STREAM, 1, -1, chargen_stream }, 82181111Sdes { "chargen", SOCK_DGRAM, 0, 1, chargen_dg }, 83181111Sdes 8469587Sgreen { "tcpmux", SOCK_STREAM, 1, -1, (void (*)())tcpmux }, 8569587Sgreen 86204917Sdes { "auth", SOCK_STREAM, 1, -1, ident_stream }, 87162852Sdes 8869587Sgreen { NULL } 8976259Sgreen}; 9076259Sgreen 9169587Sgreen/* 9269587Sgreen * RFC864 Character Generator Protocol. Generates character data without 9369587Sgreen * any regard for input. 9469587Sgreen */ 9569587Sgreen 9669587Sgreenvoid 9769587Sgreeninitring() 9892555Sdes{ 9992555Sdes int i; 10092555Sdes 10192555Sdes endring = ring; 10276259Sgreen 10376259Sgreen for (i = 0; i <= 128; ++i) 10469587Sgreen if (isprint(i)) 10576259Sgreen *endring++ = i; 10676259Sgreen} 10776259Sgreen 10876259Sgreen/* ARGSUSED */ 10976259Sgreenvoid 11076259Sgreenchargen_dg(s, sep) /* Character generator */ 111128456Sdes int s; 112128456Sdes struct servtab *sep; 113128456Sdes{ 11469587Sgreen struct sockaddr_storage ss; 11576259Sgreen static char *rs; 11676259Sgreen int len; 11792555Sdes socklen_t size; 11892555Sdes char text[LINESIZ+2]; 11969587Sgreen 12076259Sgreen if (endring == 0) { 12169587Sgreen initring(); 12269587Sgreen rs = ring; 12369587Sgreen } 12469587Sgreen 12576259Sgreen size = sizeof(ss); 12669587Sgreen if (recvfrom(s, text, sizeof(text), 0, 12769587Sgreen (struct sockaddr *)&ss, &size) < 0) 128128456Sdes return; 12969587Sgreen 13069587Sgreen if (check_loop((struct sockaddr *)&ss, sep)) 13169587Sgreen return; 13269587Sgreen 13392555Sdes if ((len = endring - rs) >= LINESIZ) 13492555Sdes memmove(text, rs, LINESIZ); 135137015Sdes else { 136137015Sdes memmove(text, rs, len); 137137015Sdes memmove(text + len, ring, LINESIZ - len); 13869587Sgreen } 13969587Sgreen if (++rs == endring) 14069587Sgreen rs = ring; 14169587Sgreen text[LINESIZ] = '\r'; 14269587Sgreen text[LINESIZ + 1] = '\n'; 14369587Sgreen (void) sendto(s, text, sizeof(text), 0, (struct sockaddr *)&ss, size); 14469587Sgreen} 14569587Sgreen 14692555Sdes/* ARGSUSED */ 14792555Sdesvoid 14869587Sgreenchargen_stream(s, sep) /* Character generator */ 14976259Sgreen int s; 15076259Sgreen struct servtab *sep; 15176259Sgreen{ 15276259Sgreen int len; 15376259Sgreen char *rs, text[LINESIZ+2]; 15469587Sgreen 15569587Sgreen inetd_setproctitle(sep->se_service, s); 15669587Sgreen 15769587Sgreen if (!endring) { 15869587Sgreen initring(); 15969587Sgreen rs = ring; 16092555Sdes } 16169587Sgreen 16269587Sgreen text[LINESIZ] = '\r'; 16392555Sdes text[LINESIZ + 1] = '\n'; 164124208Sdes for (rs = ring;;) { 165137015Sdes if ((len = endring - rs) >= LINESIZ) 16669587Sgreen memmove(text, rs, LINESIZ); 16769587Sgreen else { 16869587Sgreen memmove(text, rs, len); 169181111Sdes memmove(text + len, ring, LINESIZ - len); 17069587Sgreen } 17169587Sgreen if (++rs == endring) 17269587Sgreen rs = ring; 17376259Sgreen if (write(s, text, sizeof(text)) != sizeof(text)) 17476259Sgreen break; 17576259Sgreen } 17692555Sdes exit(0); 17792555Sdes} 17869587Sgreen 17969587Sgreen/* 18069587Sgreen * RFC867 Daytime Protocol. Sends the current date and time as an ascii 18169587Sgreen * character string without any regard for input. 18269587Sgreen */ 18376259Sgreen 18476259Sgreen/* ARGSUSED */ 18576259Sgreenvoid 18669587Sgreendaytime_dg(s, sep) /* Return human-readable time of day */ 18769587Sgreen int s; 18869587Sgreen struct servtab *sep; 18976259Sgreen{ 190137015Sdes char buffer[256]; 19176259Sgreen time_t clock; 19276259Sgreen struct sockaddr_storage ss; 19376259Sgreen socklen_t size; 19476259Sgreen 19576259Sgreen clock = time((time_t *) 0); 19676259Sgreen 19776259Sgreen size = sizeof(ss); 198162852Sdes if (recvfrom(s, buffer, sizeof(buffer), 0, 19976259Sgreen (struct sockaddr *)&ss, &size) < 0) 20076259Sgreen return; 201181111Sdes 20276259Sgreen if (check_loop((struct sockaddr *)&ss, sep)) 20376259Sgreen return; 204162852Sdes 205162852Sdes (void) sprintf(buffer, "%.24s\r\n", ctime(&clock)); 206162852Sdes (void) sendto(s, buffer, strlen(buffer), 0, 207162852Sdes (struct sockaddr *)&ss, size); 208162852Sdes} 209181111Sdes 210181111Sdes/* ARGSUSED */ 211181111Sdesvoid 212181111Sdesdaytime_stream(s, sep) /* Return human-readable time of day */ 213162852Sdes int s; 214162852Sdes struct servtab *sep; 215162852Sdes{ 216162852Sdes char buffer[256]; 217162852Sdes time_t clock; 218162852Sdes 219162852Sdes clock = time((time_t *) 0); 220162852Sdes 22176259Sgreen (void) sprintf(buffer, "%.24s\r\n", ctime(&clock)); 22276259Sgreen (void) send(s, buffer, strlen(buffer), MSG_EOF); 22376259Sgreen} 224113908Sdes 22576259Sgreen/* 22676259Sgreen * RFC863 Discard Protocol. Any data received is thrown away and no response 227162852Sdes * is sent. 22876259Sgreen */ 229162852Sdes 230124208Sdes/* ARGSUSED */ 23176259Sgreenvoid 23276259Sgreendiscard_dg(s, sep) /* Discard service -- ignore data */ 23376259Sgreen int s; 23476259Sgreen struct servtab *sep; 23576259Sgreen{ 23676259Sgreen char buffer[BUFSIZE]; 237128456Sdes 23876259Sgreen (void) read(s, buffer, sizeof(buffer)); 23976259Sgreen} 24076259Sgreen 241126274Sdes/* ARGSUSED */ 24276259Sgreenvoid 24376259Sgreendiscard_stream(s, sep) /* Discard service -- ignore data */ 24476259Sgreen int s; 24576259Sgreen struct servtab *sep; 24692555Sdes{ 24792555Sdes int ret; 24876259Sgreen char buffer[BUFSIZE]; 24976259Sgreen 25076259Sgreen inetd_setproctitle(sep->se_service, s); 25176259Sgreen while (1) { 25276259Sgreen while ((ret = read(s, buffer, sizeof(buffer))) > 0) 25376259Sgreen ; 254128456Sdes if (ret == 0 || errno != EINTR) 25576259Sgreen break; 25676259Sgreen } 257113908Sdes exit(0); 25876259Sgreen} 25976259Sgreen 26076259Sgreen/* 26176259Sgreen * RFC862 Echo Protocol. Any data received is sent back to the sender as 26276259Sgreen * received. 26376259Sgreen */ 26476259Sgreen 26576259Sgreen/* ARGSUSED */ 26676259Sgreenvoid 26776259Sgreenecho_dg(s, sep) /* Echo service -- echo data back */ 26876259Sgreen int s; 26992555Sdes struct servtab *sep; 27092555Sdes{ 27176259Sgreen char buffer[BUFSIZE]; 27276259Sgreen int i; 27376259Sgreen socklen_t size; 27476259Sgreen struct sockaddr_storage ss; 27576259Sgreen 27676259Sgreen size = sizeof(ss); 27776259Sgreen if ((i = recvfrom(s, buffer, sizeof(buffer), 0, 27876259Sgreen (struct sockaddr *)&ss, &size)) < 0) 27976259Sgreen return; 28076259Sgreen 28176259Sgreen if (check_loop((struct sockaddr *)&ss, sep)) 28276259Sgreen return; 28376259Sgreen 28476259Sgreen (void) sendto(s, buffer, i, 0, (struct sockaddr *)&ss, size); 28576259Sgreen} 28676259Sgreen 28776259Sgreen/* ARGSUSED */ 28876259Sgreenvoid 28976259Sgreenecho_stream(s, sep) /* Echo service -- echo data back */ 29092555Sdes int s; 29192555Sdes struct servtab *sep; 29276259Sgreen{ 29376259Sgreen char buffer[BUFSIZE]; 29476259Sgreen int i; 29576259Sgreen 29676259Sgreen inetd_setproctitle(sep->se_service, s); 29776259Sgreen while ((i = read(s, buffer, sizeof(buffer))) > 0 && 29876259Sgreen write(s, buffer, i) > 0) 29976259Sgreen ; 30076259Sgreen exit(0); 30176259Sgreen} 30276259Sgreen 30376259Sgreen/* 30476259Sgreen * RFC1413 Identification Protocol. Given a TCP port number pair, return a 30576259Sgreen * character string which identifies the owner of that connection on the 30676259Sgreen * server's system. Extended to allow for ~/.fakeid support and ~/.noident 30776259Sgreen * support. 30876259Sgreen */ 30976259Sgreen 31076259Sgreen/* ARGSUSED */ 31176259Sgreenvoid 312137015Sdesiderror(lport, fport, s, er) /* Generic ident_stream error-sending func */ 313137015Sdes int lport, fport, s, er; 314137015Sdes{ 315137015Sdes char *p; 316137015Sdes 317137015Sdes asprintf(&p, "%d , %d : ERROR : %s\r\n", lport, fport, 318137015Sdes er == -1 ? "HIDDEN-USER" : er ? strerror(er) : "UNKNOWN-ERROR"); 319137015Sdes if (p == NULL) { 320137015Sdes syslog(LOG_ERR, "asprintf: %m"); 321137015Sdes exit(EX_OSERR); 322137015Sdes } 323137015Sdes send(s, p, strlen(p), MSG_EOF); 324137015Sdes free(p); 325137015Sdes 326137015Sdes exit(0); 327137015Sdes} 328137015Sdes 329137015Sdes/* ARGSUSED */ 330137015Sdesvoid 33176259Sgreenident_stream(s, sep) /* Ident service (AKA "auth") */ 33276259Sgreen int s; 33376259Sgreen struct servtab *sep; 33476259Sgreen{ 33576259Sgreen struct utsname un; 33676259Sgreen struct stat sb; 33776259Sgreen struct sockaddr_in sin[2]; 33876259Sgreen#ifdef INET6 33976259Sgreen struct sockaddr_in6 sin6[2]; 34076259Sgreen#endif 341126274Sdes struct sockaddr_storage ss[2]; 34276259Sgreen struct ucred uc; 343126274Sdes struct timeval tv = { 34476259Sgreen 10, 34576259Sgreen 0 34676259Sgreen }; 347 struct passwd *pw = NULL; 348 fd_set fdset; 349 char buf[BUFSIZE], *cp = NULL, *p, **av, *osname = NULL, garbage[7]; 350 char *fallback = NULL; 351 size_t len; 352 int c, fflag = 0, nflag = 0, rflag = 0, argc = 0, usedfallback = 0; 353 int gflag = 0, Rflag = 0, getcredfail = 0; 354 u_short lport, fport; 355 356 inetd_setproctitle(sep->se_service, s); 357 /* 358 * Reset getopt() since we are a fork() but not an exec() from 359 * a parent which used getopt() already. 360 */ 361 optind = 1; 362 optreset = 1; 363 /* 364 * Take the internal argument vector and count it out to make an 365 * argument count for getopt. This can be used for any internal 366 * service to read arguments and use getopt() easily. 367 */ 368 for (av = sep->se_argv; *av; av++) 369 argc++; 370 if (argc) { 371 int sec, usec; 372 size_t i; 373 u_int32_t random; 374 375 while ((c = getopt(argc, sep->se_argv, "d:fgno:rt:")) != -1) 376 switch (c) { 377 case 'd': 378 fallback = optarg; 379 break; 380 case 'f': 381 fflag = 1; 382 break; 383 case 'g': 384 gflag = 1; 385 random = 0; /* Shush, compiler. */ 386 /* 387 * The number of bits in "random" divided 388 * by the number of bits needed per iteration 389 * gives a more optimal way to reload the 390 * random number only when necessary. 391 * 392 * I'm using base-36, so I need at least 6 393 * bits; round it up to 8 bits to make it 394 * easier. 395 */ 396 for (i = 0; i < sizeof(garbage) - 1; i++) { 397 const char *const base36 = 398 "0123456789" 399 "abcdefghijklmnopqrstuvwxyz"; 400 if (i % (sizeof(random) * 8 / 8) == 0) 401 random = arc4random(); 402 garbage[i] = 403 base36[(random & 0xff) % 36]; 404 random >>= 8; 405 } 406 garbage[i] = '\0'; 407 break; 408 case 'n': 409 nflag = 1; 410 break; 411 case 'o': 412 osname = optarg; 413 break; 414 case 'R': 415 Rflag = 2; 416 break; 417 case 'r': 418 rflag = 1; 419 break; 420 case 't': 421 switch (sscanf(optarg, "%d.%d", &sec, &usec)) { 422 case 2: 423 tv.tv_usec = usec; 424 case 1: 425 tv.tv_sec = sec; 426 break; 427 default: 428 if (debug) 429 warnx("bad -t argument"); 430 break; 431 } 432 break; 433 default: 434 break; 435 } 436 } 437 if (osname == NULL) { 438 if (uname(&un) == -1) 439 iderror(0, 0, s, errno); 440 osname = un.sysname; 441 } 442 len = sizeof(ss[0]); 443 if (getsockname(s, (struct sockaddr *)&ss[0], &len) == -1) 444 iderror(0, 0, s, errno); 445 len = sizeof(ss[1]); 446 if (getpeername(s, (struct sockaddr *)&ss[1], &len) == -1) 447 iderror(0, 0, s, errno); 448 /* 449 * We're going to prepare for and execute reception of a 450 * packet of data from the user. The data is in the format 451 * "local_port , foreign_port\r\n" (with local being the 452 * server's port and foreign being the client's.) 453 */ 454 FD_ZERO(&fdset); 455 FD_SET(s, &fdset); 456 if (select(s + 1, &fdset, NULL, NULL, &tv) == -1) 457 iderror(0, 0, s, errno); 458 if (ioctl(s, FIONREAD, &len) == -1) 459 iderror(0, 0, s, errno); 460 if (len >= sizeof(buf)) 461 len = sizeof(buf) - 1; 462 len = read(s, buf, len); 463 if (len == -1) 464 iderror(0, 0, s, errno); 465 buf[len] = '\0'; 466 if (sscanf(buf, "%hu , %hu", &lport, &fport) != 2) 467 iderror(0, 0, s, 0); 468 if (gflag) { 469 cp = garbage; 470 goto printit; 471 } 472 473 /* 474 * If not "real" (-r), send a HIDDEN-USER error for everything. 475 * If -d is used to set a fallback username, this is used to 476 * override it, and the fallback is returned instead. 477 */ 478 if (!rflag) { 479 if (fallback == NULL) 480 iderror(lport, fport, s, -1); 481 else { 482 cp = fallback; 483 goto printit; 484 } 485 } 486 487 /* 488 * We take the input and construct an array of two sockaddr_ins 489 * which contain the local address information and foreign 490 * address information, respectively, used to look up the 491 * credentials for the socket (which are returned by the 492 * sysctl "net.inet.tcp.getcred" when we call it.) The 493 * arrays have been filled in above via get{peer,sock}name(), 494 * so right here we are only setting the ports. 495 */ 496 if (ss[0].ss_family != ss[1].ss_family) 497 iderror(lport, fport, s, errno); 498 len = sizeof(uc); 499 switch (ss[0].ss_family) { 500 case AF_INET: 501 sin[0] = *(struct sockaddr_in *)&ss[0]; 502 sin[0].sin_port = htons(lport); 503 sin[1] = *(struct sockaddr_in *)&ss[1]; 504 sin[1].sin_port = htons(fport); 505 if (sysctlbyname("net.inet.tcp.getcred", &uc, &len, sin, 506 sizeof(sin)) == -1) 507 getcredfail = 1; 508 break; 509#ifdef INET6 510 case AF_INET6: 511 sin6[0] = *(struct sockaddr_in6 *)&ss[0]; 512 sin6[0].sin6_port = htons(lport); 513 sin6[1] = *(struct sockaddr_in6 *)&ss[1]; 514 sin6[1].sin6_port = htons(fport); 515 if (sysctlbyname("net.inet6.tcp6.getcred", &uc, &len, sin6, 516 sizeof(sin6)) == -1) 517 getcredfail = 1; 518 break; 519#endif 520 default: /* should not reach here */ 521 getcredfail = 1; 522 break; 523 } 524 if (getcredfail != 0) { 525 if (fallback == NULL) /* Use a default, if asked to */ 526 iderror(lport, fport, s, errno); 527 usedfallback = 1; 528 } else { 529 /* Look up the pw to get the username */ 530 pw = getpwuid(uc.cr_uid); 531 } 532 if (pw == NULL && !usedfallback) /* No such user... */ 533 iderror(lport, fport, s, errno); 534 /* 535 * If enabled, we check for a file named ".noident" in the user's 536 * home directory. If found, we return HIDDEN-USER. 537 */ 538 if (nflag && !usedfallback) { 539 if (asprintf(&p, "%s/.noident", pw->pw_dir) == -1) 540 iderror(lport, fport, s, errno); 541 if (lstat(p, &sb) == 0) { 542 free(p); 543 iderror(lport, fport, s, -1); 544 } 545 free(p); 546 } 547 /* 548 * Here, if enabled, we read a user's ".fakeid" file in their 549 * home directory. It consists of a line containing the name 550 * they want. 551 */ 552 if (fflag && !usedfallback) { 553 FILE *fakeid = NULL; 554 555 if (asprintf(&p, "%s/.fakeid", pw->pw_dir) == -1) 556 iderror(lport, fport, s, errno); 557 /* 558 * Here we set ourself to effectively be the user, so we don't 559 * open any files we have no permission to open, especially 560 * symbolic links to sensitive root-owned files or devices. 561 */ 562 seteuid(pw->pw_uid); 563 setegid(pw->pw_gid); 564 /* 565 * If we were to lstat() here, it would do no good, since it 566 * would introduce a race condition and could be defeated. 567 * Therefore, we open the file we have permissions to open 568 * and if it's not a regular file, we close it and end up 569 * returning the user's real username. 570 */ 571 fakeid = fopen(p, "r"); 572 free(p); 573 if (fakeid != NULL && 574 fstat(fileno(fakeid), &sb) != -1 && S_ISREG(sb.st_mode)) { 575 buf[sizeof(buf) - 1] = '\0'; 576 if (fgets(buf, sizeof(buf), fakeid) == NULL) { 577 cp = pw->pw_name; 578 fclose(fakeid); 579 goto printit; 580 } 581 fclose(fakeid); 582 /* 583 * Usually, the file will have the desired identity 584 * in the form "identity\n", so we use strtok() to 585 * end the string (which fgets() doesn't do.) 586 */ 587 strtok(buf, "\r\n"); 588 /* User names of >16 characters are invalid */ 589 if (strlen(buf) > 16) 590 buf[16] = '\0'; 591 cp = buf; 592 /* Allow for beginning white space... */ 593 while (isspace(*cp)) 594 cp++; 595 /* ...and ending white space. */ 596 strtok(cp, " \t"); 597 /* 598 * If the name is a zero-length string or matches 599 * the name of another user, it's invalid, so 600 * we will return their real identity instead. 601 */ 602 603 if (!*cp || getpwnam(cp)) 604 cp = getpwuid(uc.cr_uid)->pw_name; 605 } else 606 cp = pw->pw_name; 607 } else if (!usedfallback) 608 cp = pw->pw_name; 609 else 610 cp = fallback; 611printit: 612 /* Finally, we make and send the reply. */ 613 if (asprintf(&p, "%d , %d : USERID : %s : %s\r\n", lport, fport, osname, 614 cp) == -1) { 615 syslog(LOG_ERR, "asprintf: %m"); 616 exit(EX_OSERR); 617 } 618 send(s, p, strlen(p), MSG_EOF); 619 free(p); 620 621 exit(0); 622} 623 624/* 625 * RFC738 Time Server. 626 * Return a machine readable date and time, in the form of the 627 * number of seconds since midnight, Jan 1, 1900. Since gettimeofday 628 * returns the number of seconds since midnight, Jan 1, 1970, 629 * we must add 2208988800 seconds to this figure to make up for 630 * some seventy years Bell Labs was asleep. 631 */ 632 633unsigned long 634machtime() 635{ 636 struct timeval tv; 637 638 if (gettimeofday(&tv, (struct timezone *)NULL) < 0) { 639 if (debug) 640 warnx("unable to get time of day"); 641 return (0L); 642 } 643#define OFFSET ((u_long)25567 * 24*60*60) 644 return (htonl((long)(tv.tv_sec + OFFSET))); 645#undef OFFSET 646} 647 648/* ARGSUSED */ 649void 650machtime_dg(s, sep) 651 int s; 652 struct servtab *sep; 653{ 654 unsigned long result; 655 struct sockaddr_storage ss; 656 socklen_t size; 657 658 size = sizeof(ss); 659 if (recvfrom(s, (char *)&result, sizeof(result), 0, 660 (struct sockaddr *)&ss, &size) < 0) 661 return; 662 663 if (check_loop((struct sockaddr *)&ss, sep)) 664 return; 665 666 result = machtime(); 667 (void) sendto(s, (char *) &result, sizeof(result), 0, 668 (struct sockaddr *)&ss, size); 669} 670 671/* ARGSUSED */ 672void 673machtime_stream(s, sep) 674 int s; 675 struct servtab *sep; 676{ 677 unsigned long result; 678 679 result = machtime(); 680 (void) send(s, (char *) &result, sizeof(result), MSG_EOF); 681} 682 683/* 684 * RFC1078 TCP Port Service Multiplexer (TCPMUX). Service connections to 685 * services based on the service name sent. 686 * 687 * Based on TCPMUX.C by Mark K. Lottor November 1988 688 * sri-nic::ps:<mkl>tcpmux.c 689 */ 690 691#define MAX_SERV_LEN (256+2) /* 2 bytes for \r\n */ 692#define strwrite(fd, buf) (void) write(fd, buf, sizeof(buf)-1) 693 694static int /* # of characters upto \r,\n or \0 */ 695getline(fd, buf, len) 696 int fd; 697 char *buf; 698 int len; 699{ 700 int count = 0, n; 701 struct sigaction sa; 702 703 sa.sa_flags = 0; 704 sigemptyset(&sa.sa_mask); 705 sa.sa_handler = SIG_DFL; 706 sigaction(SIGALRM, &sa, (struct sigaction *)0); 707 do { 708 alarm(10); 709 n = read(fd, buf, len-count); 710 alarm(0); 711 if (n == 0) 712 return (count); 713 if (n < 0) 714 return (-1); 715 while (--n >= 0) { 716 if (*buf == '\r' || *buf == '\n' || *buf == '\0') 717 return (count); 718 count++; 719 buf++; 720 } 721 } while (count < len); 722 return (count); 723} 724 725struct servtab * 726tcpmux(s) 727 int s; 728{ 729 struct servtab *sep; 730 char service[MAX_SERV_LEN+1]; 731 int len; 732 733 /* Get requested service name */ 734 if ((len = getline(s, service, MAX_SERV_LEN)) < 0) { 735 strwrite(s, "-Error reading service name\r\n"); 736 return (NULL); 737 } 738 service[len] = '\0'; 739 740 if (debug) 741 warnx("tcpmux: someone wants %s", service); 742 743 /* 744 * Help is a required command, and lists available services, 745 * one per line. 746 */ 747 if (!strcasecmp(service, "help")) { 748 for (sep = servtab; sep; sep = sep->se_next) { 749 if (!ISMUX(sep)) 750 continue; 751 (void)write(s,sep->se_service,strlen(sep->se_service)); 752 strwrite(s, "\r\n"); 753 } 754 return (NULL); 755 } 756 757 /* Try matching a service in inetd.conf with the request */ 758 for (sep = servtab; sep; sep = sep->se_next) { 759 if (!ISMUX(sep)) 760 continue; 761 if (!strcasecmp(service, sep->se_service)) { 762 if (ISMUXPLUS(sep)) { 763 strwrite(s, "+Go\r\n"); 764 } 765 return (sep); 766 } 767 } 768 strwrite(s, "-Service not available\r\n"); 769 return (NULL); 770} 771