1/* $NetBSD: misc.c,v 1.5 2011/07/25 03:03:10 christos Exp $ */ 2/* $OpenBSD: misc.c,v 1.85 2011/03/29 18:54:17 stevesk Exp $ */ 3/* 4 * Copyright (c) 2000 Markus Friedl. All rights reserved. 5 * Copyright (c) 2005,2006 Damien Miller. All rights reserved. 6 * 7 * Redistribution and use in source and binary forms, with or without 8 * modification, are permitted provided that the following conditions 9 * are met: 10 * 1. Redistributions of source code must retain the above copyright 11 * notice, this list of conditions and the following disclaimer. 12 * 2. Redistributions in binary form must reproduce the above copyright 13 * notice, this list of conditions and the following disclaimer in the 14 * documentation and/or other materials provided with the distribution. 15 * 16 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR 17 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES 18 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. 19 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, 20 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT 21 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, 22 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY 23 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT 24 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF 25 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 26 */ 27 28#include "includes.h" 29__RCSID("$NetBSD: misc.c,v 1.5 2011/07/25 03:03:10 christos Exp $"); 30#include <sys/types.h> 31#include <sys/ioctl.h> 32#include <sys/socket.h> 33#include <sys/param.h> 34 35#include <net/if.h> 36#include <net/if_tun.h> 37#include <netinet/in.h> 38#include <netinet/in_systm.h> 39#include <netinet/ip.h> 40#include <netinet/tcp.h> 41 42#include <errno.h> 43#include <fcntl.h> 44#include <netdb.h> 45#include <paths.h> 46#include <pwd.h> 47#include <stdarg.h> 48#include <stdio.h> 49#include <stdlib.h> 50#include <string.h> 51#include <unistd.h> 52 53#include "xmalloc.h" 54#include "misc.h" 55#include "log.h" 56#include "ssh.h" 57 58/* remove newline at end of string */ 59char * 60chop(char *s) 61{ 62 char *t = s; 63 while (*t) { 64 if (*t == '\n' || *t == '\r') { 65 *t = '\0'; 66 return s; 67 } 68 t++; 69 } 70 return s; 71 72} 73 74/* set/unset filedescriptor to non-blocking */ 75int 76set_nonblock(int fd) 77{ 78 int val; 79 80 val = fcntl(fd, F_GETFL, 0); 81 if (val < 0) { 82 error("fcntl(%d, F_GETFL, 0): %s", fd, strerror(errno)); 83 return (-1); 84 } 85 if (val & O_NONBLOCK) { 86 debug3("fd %d is O_NONBLOCK", fd); 87 return (0); 88 } 89 debug2("fd %d setting O_NONBLOCK", fd); 90 val |= O_NONBLOCK; 91 if (fcntl(fd, F_SETFL, val) == -1) { 92 debug("fcntl(%d, F_SETFL, O_NONBLOCK): %s", fd, 93 strerror(errno)); 94 return (-1); 95 } 96 return (0); 97} 98 99int 100unset_nonblock(int fd) 101{ 102 int val; 103 104 val = fcntl(fd, F_GETFL, 0); 105 if (val < 0) { 106 error("fcntl(%d, F_GETFL, 0): %s", fd, strerror(errno)); 107 return (-1); 108 } 109 if (!(val & O_NONBLOCK)) { 110 debug3("fd %d is not O_NONBLOCK", fd); 111 return (0); 112 } 113 debug("fd %d clearing O_NONBLOCK", fd); 114 val &= ~O_NONBLOCK; 115 if (fcntl(fd, F_SETFL, val) == -1) { 116 debug("fcntl(%d, F_SETFL, ~O_NONBLOCK): %s", 117 fd, strerror(errno)); 118 return (-1); 119 } 120 return (0); 121} 122 123const char * 124ssh_gai_strerror(int gaierr) 125{ 126 if (gaierr == EAI_SYSTEM) 127 return strerror(errno); 128 return gai_strerror(gaierr); 129} 130 131/* disable nagle on socket */ 132void 133set_nodelay(int fd) 134{ 135 int opt; 136 socklen_t optlen; 137 138 optlen = sizeof opt; 139 if (getsockopt(fd, IPPROTO_TCP, TCP_NODELAY, &opt, &optlen) == -1) { 140 debug("getsockopt TCP_NODELAY: %.100s", strerror(errno)); 141 return; 142 } 143 if (opt == 1) { 144 debug2("fd %d is TCP_NODELAY", fd); 145 return; 146 } 147 opt = 1; 148 debug2("fd %d setting TCP_NODELAY", fd); 149 if (setsockopt(fd, IPPROTO_TCP, TCP_NODELAY, &opt, sizeof opt) == -1) 150 error("setsockopt TCP_NODELAY: %.100s", strerror(errno)); 151} 152 153/* Characters considered whitespace in strsep calls. */ 154#define WHITESPACE " \t\r\n" 155#define QUOTE "\"" 156 157/* return next token in configuration line */ 158char * 159strdelim(char **s) 160{ 161 char *old; 162 int wspace = 0; 163 164 if (*s == NULL) 165 return NULL; 166 167 old = *s; 168 169 *s = strpbrk(*s, WHITESPACE QUOTE "="); 170 if (*s == NULL) 171 return (old); 172 173 if (*s[0] == '\"') { 174 memmove(*s, *s + 1, strlen(*s)); /* move nul too */ 175 /* Find matching quote */ 176 if ((*s = strpbrk(*s, QUOTE)) == NULL) { 177 return (NULL); /* no matching quote */ 178 } else { 179 *s[0] = '\0'; 180 *s += strspn(*s + 1, WHITESPACE) + 1; 181 return (old); 182 } 183 } 184 185 /* Allow only one '=' to be skipped */ 186 if (*s[0] == '=') 187 wspace = 1; 188 *s[0] = '\0'; 189 190 /* Skip any extra whitespace after first token */ 191 *s += strspn(*s + 1, WHITESPACE) + 1; 192 if (*s[0] == '=' && !wspace) 193 *s += strspn(*s + 1, WHITESPACE) + 1; 194 195 return (old); 196} 197 198struct passwd * 199pwcopy(struct passwd *pw) 200{ 201 struct passwd *copy = xcalloc(1, sizeof(*copy)); 202 203 copy->pw_name = xstrdup(pw->pw_name); 204 copy->pw_passwd = xstrdup(pw->pw_passwd); 205 copy->pw_gecos = xstrdup(pw->pw_gecos); 206 copy->pw_uid = pw->pw_uid; 207 copy->pw_gid = pw->pw_gid; 208 copy->pw_expire = pw->pw_expire; 209 copy->pw_change = pw->pw_change; 210 copy->pw_class = xstrdup(pw->pw_class); 211 copy->pw_dir = xstrdup(pw->pw_dir); 212 copy->pw_shell = xstrdup(pw->pw_shell); 213 return copy; 214} 215 216/* 217 * Convert ASCII string to TCP/IP port number. 218 * Port must be >=0 and <=65535. 219 * Return -1 if invalid. 220 */ 221int 222a2port(const char *s) 223{ 224 long long port; 225 const char *errstr; 226 227 port = strtonum(s, 0, 65535, &errstr); 228 if (errstr != NULL) 229 return -1; 230 return (int)port; 231} 232 233int 234a2tun(const char *s, int *remote) 235{ 236 const char *errstr = NULL; 237 char *sp, *ep; 238 int tun; 239 240 if (remote != NULL) { 241 *remote = SSH_TUNID_ANY; 242 sp = xstrdup(s); 243 if ((ep = strchr(sp, ':')) == NULL) { 244 xfree(sp); 245 return (a2tun(s, NULL)); 246 } 247 ep[0] = '\0'; ep++; 248 *remote = a2tun(ep, NULL); 249 tun = a2tun(sp, NULL); 250 xfree(sp); 251 return (*remote == SSH_TUNID_ERR ? *remote : tun); 252 } 253 254 if (strcasecmp(s, "any") == 0) 255 return (SSH_TUNID_ANY); 256 257 tun = strtonum(s, 0, SSH_TUNID_MAX, &errstr); 258 if (errstr != NULL) 259 return (SSH_TUNID_ERR); 260 261 return (tun); 262} 263 264#define SECONDS 1 265#define MINUTES (SECONDS * 60) 266#define HOURS (MINUTES * 60) 267#define DAYS (HOURS * 24) 268#define WEEKS (DAYS * 7) 269 270/* 271 * Convert a time string into seconds; format is 272 * a sequence of: 273 * time[qualifier] 274 * 275 * Valid time qualifiers are: 276 * <none> seconds 277 * s|S seconds 278 * m|M minutes 279 * h|H hours 280 * d|D days 281 * w|W weeks 282 * 283 * Examples: 284 * 90m 90 minutes 285 * 1h30m 90 minutes 286 * 2d 2 days 287 * 1w 1 week 288 * 289 * Return -1 if time string is invalid. 290 */ 291long 292convtime(const char *s) 293{ 294 long total, secs; 295 const char *p; 296 char *endp; 297 298 errno = 0; 299 total = 0; 300 p = s; 301 302 if (p == NULL || *p == '\0') 303 return -1; 304 305 while (*p) { 306 secs = strtol(p, &endp, 10); 307 if (p == endp || 308 (errno == ERANGE && (secs == LONG_MIN || secs == LONG_MAX)) || 309 secs < 0) 310 return -1; 311 312 switch (*endp++) { 313 case '\0': 314 endp--; 315 break; 316 case 's': 317 case 'S': 318 break; 319 case 'm': 320 case 'M': 321 secs *= MINUTES; 322 break; 323 case 'h': 324 case 'H': 325 secs *= HOURS; 326 break; 327 case 'd': 328 case 'D': 329 secs *= DAYS; 330 break; 331 case 'w': 332 case 'W': 333 secs *= WEEKS; 334 break; 335 default: 336 return -1; 337 } 338 total += secs; 339 if (total < 0) 340 return -1; 341 p = endp; 342 } 343 344 return total; 345} 346 347/* 348 * Returns a standardized host+port identifier string. 349 * Caller must free returned string. 350 */ 351char * 352put_host_port(const char *host, u_short port) 353{ 354 char *hoststr; 355 356 if (port == 0 || port == SSH_DEFAULT_PORT) 357 return(xstrdup(host)); 358 if (asprintf(&hoststr, "[%s]:%d", host, (int)port) < 0) 359 fatal("put_host_port: asprintf: %s", strerror(errno)); 360 debug3("put_host_port: %s", hoststr); 361 return hoststr; 362} 363 364/* 365 * Search for next delimiter between hostnames/addresses and ports. 366 * Argument may be modified (for termination). 367 * Returns *cp if parsing succeeds. 368 * *cp is set to the start of the next delimiter, if one was found. 369 * If this is the last field, *cp is set to NULL. 370 */ 371char * 372hpdelim(char **cp) 373{ 374 char *s, *old; 375 376 if (cp == NULL || *cp == NULL) 377 return NULL; 378 379 old = s = *cp; 380 if (*s == '[') { 381 if ((s = strchr(s, ']')) == NULL) 382 return NULL; 383 else 384 s++; 385 } else if ((s = strpbrk(s, ":/")) == NULL) 386 s = *cp + strlen(*cp); /* skip to end (see first case below) */ 387 388 switch (*s) { 389 case '\0': 390 *cp = NULL; /* no more fields*/ 391 break; 392 393 case ':': 394 case '/': 395 *s = '\0'; /* terminate */ 396 *cp = s + 1; 397 break; 398 399 default: 400 return NULL; 401 } 402 403 return old; 404} 405 406char * 407cleanhostname(char *host) 408{ 409 if (*host == '[' && host[strlen(host) - 1] == ']') { 410 host[strlen(host) - 1] = '\0'; 411 return (host + 1); 412 } else 413 return host; 414} 415 416char * 417colon(char *cp) 418{ 419 int flag = 0; 420 421 if (*cp == ':') /* Leading colon is part of file name. */ 422 return NULL; 423 if (*cp == '[') 424 flag = 1; 425 426 for (; *cp; ++cp) { 427 if (*cp == '@' && *(cp+1) == '[') 428 flag = 1; 429 if (*cp == ']' && *(cp+1) == ':' && flag) 430 return (cp+1); 431 if (*cp == ':' && !flag) 432 return (cp); 433 if (*cp == '/') 434 return NULL; 435 } 436 return NULL; 437} 438 439/* function to assist building execv() arguments */ 440void 441addargs(arglist *args, const char *fmt, ...) 442{ 443 va_list ap; 444 char *cp; 445 u_int nalloc; 446 int r; 447 448 va_start(ap, fmt); 449 r = vasprintf(&cp, fmt, ap); 450 va_end(ap); 451 if (r == -1) 452 fatal("addargs: argument too long"); 453 454 nalloc = args->nalloc; 455 if (args->list == NULL) { 456 nalloc = 32; 457 args->num = 0; 458 } else if (args->num+2 >= nalloc) 459 nalloc *= 2; 460 461 args->list = xrealloc(args->list, nalloc, sizeof(char *)); 462 args->nalloc = nalloc; 463 args->list[args->num++] = cp; 464 args->list[args->num] = NULL; 465} 466 467void 468replacearg(arglist *args, u_int which, const char *fmt, ...) 469{ 470 va_list ap; 471 char *cp; 472 int r; 473 474 va_start(ap, fmt); 475 r = vasprintf(&cp, fmt, ap); 476 va_end(ap); 477 if (r == -1) 478 fatal("replacearg: argument too long"); 479 480 if (which >= args->num) 481 fatal("replacearg: tried to replace invalid arg %d >= %d", 482 which, args->num); 483 xfree(args->list[which]); 484 args->list[which] = cp; 485} 486 487void 488freeargs(arglist *args) 489{ 490 u_int i; 491 492 if (args->list != NULL) { 493 for (i = 0; i < args->num; i++) 494 xfree(args->list[i]); 495 xfree(args->list); 496 args->nalloc = args->num = 0; 497 args->list = NULL; 498 } 499} 500 501/* 502 * Expands tildes in the file name. Returns data allocated by xmalloc. 503 * Warning: this calls getpw*. 504 */ 505char * 506tilde_expand_filename(const char *filename, uid_t uid) 507{ 508 const char *path, *homedir; 509 char user[128], ret[MAXPATHLEN]; 510 struct passwd *pw; 511 u_int len, slash; 512 513 if (*filename != '~') 514 return (xstrdup(filename)); 515 filename++; 516 517 path = strchr(filename, '/'); 518 if (path != NULL && path > filename) { /* ~user/path */ 519 slash = path - filename; 520 if (slash > sizeof(user) - 1) 521 fatal("tilde_expand_filename: ~username too long"); 522 memcpy(user, filename, slash); 523 user[slash] = '\0'; 524 if ((pw = getpwnam(user)) == NULL) 525 fatal("tilde_expand_filename: No such user %s", user); 526 homedir = pw->pw_dir; 527 } else { 528 if ((pw = getpwuid(uid)) == NULL) /* ~/path */ 529 fatal("tilde_expand_filename: No such uid %ld", 530 (long)uid); 531 homedir = pw->pw_dir; 532 } 533 534 if (strlcpy(ret, homedir, sizeof(ret)) >= sizeof(ret)) 535 fatal("tilde_expand_filename: Path too long"); 536 537 /* Make sure directory has a trailing '/' */ 538 len = strlen(homedir); 539 if ((len == 0 || homedir[len - 1] != '/') && 540 strlcat(ret, "/", sizeof(ret)) >= sizeof(ret)) 541 fatal("tilde_expand_filename: Path too long"); 542 543 /* Skip leading '/' from specified path */ 544 if (path != NULL) 545 filename = path + 1; 546 if (strlcat(ret, filename, sizeof(ret)) >= sizeof(ret)) 547 fatal("tilde_expand_filename: Path too long"); 548 549 return (xstrdup(ret)); 550} 551 552/* 553 * Expand a string with a set of %[char] escapes. A number of escapes may be 554 * specified as (char *escape_chars, char *replacement) pairs. The list must 555 * be terminated by a NULL escape_char. Returns replaced string in memory 556 * allocated by xmalloc. 557 */ 558char * 559percent_expand(const char *string, ...) 560{ 561#define EXPAND_MAX_KEYS 16 562 u_int num_keys, i, j; 563 struct { 564 const char *key; 565 const char *repl; 566 } keys[EXPAND_MAX_KEYS]; 567 char buf[4096]; 568 va_list ap; 569 570 /* Gather keys */ 571 va_start(ap, string); 572 for (num_keys = 0; num_keys < EXPAND_MAX_KEYS; num_keys++) { 573 keys[num_keys].key = va_arg(ap, char *); 574 if (keys[num_keys].key == NULL) 575 break; 576 keys[num_keys].repl = va_arg(ap, char *); 577 if (keys[num_keys].repl == NULL) 578 fatal("%s: NULL replacement", __func__); 579 } 580 if (num_keys == EXPAND_MAX_KEYS && va_arg(ap, char *) != NULL) 581 fatal("%s: too many keys", __func__); 582 va_end(ap); 583 584 /* Expand string */ 585 *buf = '\0'; 586 for (i = 0; *string != '\0'; string++) { 587 if (*string != '%') { 588 append: 589 buf[i++] = *string; 590 if (i >= sizeof(buf)) 591 fatal("%s: string too long", __func__); 592 buf[i] = '\0'; 593 continue; 594 } 595 string++; 596 /* %% case */ 597 if (*string == '%') 598 goto append; 599 for (j = 0; j < num_keys; j++) { 600 if (strchr(keys[j].key, *string) != NULL) { 601 i = strlcat(buf, keys[j].repl, sizeof(buf)); 602 if (i >= sizeof(buf)) 603 fatal("%s: string too long", __func__); 604 break; 605 } 606 } 607 if (j >= num_keys) 608 fatal("%s: unknown key %%%c", __func__, *string); 609 } 610 return (xstrdup(buf)); 611#undef EXPAND_MAX_KEYS 612} 613 614/* 615 * Read an entire line from a public key file into a static buffer, discarding 616 * lines that exceed the buffer size. Returns 0 on success, -1 on failure. 617 */ 618int 619read_keyfile_line(FILE *f, const char *filename, char *buf, size_t bufsz, 620 u_long *lineno) 621{ 622 while (fgets(buf, bufsz, f) != NULL) { 623 if (buf[0] == '\0') 624 continue; 625 (*lineno)++; 626 if (buf[strlen(buf) - 1] == '\n' || feof(f)) { 627 return 0; 628 } else { 629 debug("%s: %s line %lu exceeds size limit", __func__, 630 filename, *lineno); 631 /* discard remainder of line */ 632 while (fgetc(f) != '\n' && !feof(f)) 633 ; /* nothing */ 634 } 635 } 636 return -1; 637} 638 639int 640tun_open(int tun, int mode) 641{ 642 struct ifreq ifr; 643 int fd = -1, sock, flag; 644 const char *tunbase = mode == SSH_TUNMODE_ETHERNET ? "tap" : "tun"; 645 646 /* Open the tunnel device */ 647 if (tun <= SSH_TUNID_MAX) { 648 snprintf(ifr.ifr_name, sizeof(ifr.ifr_name), 649 "/dev/%s%d", tunbase, tun); 650 fd = open(ifr.ifr_name, O_RDWR); 651 } else if (tun == SSH_TUNID_ANY) { 652 for (tun = 100; tun >= 0; tun--) { 653 snprintf(ifr.ifr_name, sizeof(ifr.ifr_name), 654 "/dev/%s%d", tunbase, tun); 655 if ((fd = open(ifr.ifr_name, O_RDWR)) >= 0) 656 break; 657 } 658 } else { 659 debug("%s: invalid tunnel %u", __func__, tun); 660 return (-1); 661 } 662 663 if (fd < 0) { 664 debug("%s: %s open failed: %s", __func__, ifr.ifr_name, 665 strerror(errno)); 666 return (-1); 667 } 668 669 670 /* Turn on tunnel headers */ 671 flag = 1; 672 if (mode != SSH_TUNMODE_ETHERNET && 673 ioctl(fd, TUNSIFHEAD, &flag) == -1) { 674 debug("%s: ioctl(%d, TUNSIFHEAD, 1): %s", __func__, fd, 675 strerror(errno)); 676 close(fd); 677 return -1; 678 } 679 680 debug("%s: %s mode %d fd %d", __func__, ifr.ifr_name, mode, fd); 681 /* Set the tunnel device operation mode */ 682 snprintf(ifr.ifr_name, sizeof(ifr.ifr_name), "%s%d", tunbase, tun); 683 if ((sock = socket(PF_UNIX, SOCK_STREAM, 0)) == -1) 684 goto failed; 685 686 if (ioctl(sock, SIOCGIFFLAGS, &ifr) == -1) 687 goto failed; 688 689#if 0 690 /* Set interface mode */ 691 ifr.ifr_flags &= ~IFF_UP; 692 if (mode == SSH_TUNMODE_ETHERNET) 693 ifr.ifr_flags |= IFF_LINK0; 694 else 695 ifr.ifr_flags &= ~IFF_LINK0; 696 if (ioctl(sock, SIOCSIFFLAGS, &ifr) == -1) 697 goto failed; 698#endif 699 700 /* Bring interface up */ 701 ifr.ifr_flags |= IFF_UP; 702 if (ioctl(sock, SIOCSIFFLAGS, &ifr) == -1) 703 goto failed; 704 705 close(sock); 706 return (fd); 707 708 failed: 709 if (fd >= 0) 710 close(fd); 711 if (sock >= 0) 712 close(sock); 713 debug("%s: failed to set %s mode %d: %s", __func__, ifr.ifr_name, 714 mode, strerror(errno)); 715 return (-1); 716} 717 718void 719sanitise_stdfd(void) 720{ 721 int nullfd, dupfd; 722 723 if ((nullfd = dupfd = open(_PATH_DEVNULL, O_RDWR)) == -1) { 724 fprintf(stderr, "Couldn't open /dev/null: %s\n", 725 strerror(errno)); 726 exit(1); 727 } 728 while (++dupfd <= 2) { 729 /* Only clobber closed fds */ 730 if (fcntl(dupfd, F_GETFL, 0) >= 0) 731 continue; 732 if (dup2(nullfd, dupfd) == -1) { 733 fprintf(stderr, "dup2: %s\n", strerror(errno)); 734 exit(1); 735 } 736 } 737 if (nullfd > 2) 738 close(nullfd); 739} 740 741char * 742tohex(const void *vp, size_t l) 743{ 744 const u_char *p = (const u_char *)vp; 745 char b[3], *r; 746 size_t i, hl; 747 748 if (l > 65536) 749 return xstrdup("tohex: length > 65536"); 750 751 hl = l * 2 + 1; 752 r = xcalloc(1, hl); 753 for (i = 0; i < l; i++) { 754 snprintf(b, sizeof(b), "%02x", p[i]); 755 strlcat(r, b, hl); 756 } 757 return (r); 758} 759 760u_int64_t 761get_u64(const void *vp) 762{ 763 const u_char *p = (const u_char *)vp; 764 u_int64_t v; 765 766 v = (u_int64_t)p[0] << 56; 767 v |= (u_int64_t)p[1] << 48; 768 v |= (u_int64_t)p[2] << 40; 769 v |= (u_int64_t)p[3] << 32; 770 v |= (u_int64_t)p[4] << 24; 771 v |= (u_int64_t)p[5] << 16; 772 v |= (u_int64_t)p[6] << 8; 773 v |= (u_int64_t)p[7]; 774 775 return (v); 776} 777 778u_int32_t 779get_u32(const void *vp) 780{ 781 const u_char *p = (const u_char *)vp; 782 u_int32_t v; 783 784 v = (u_int32_t)p[0] << 24; 785 v |= (u_int32_t)p[1] << 16; 786 v |= (u_int32_t)p[2] << 8; 787 v |= (u_int32_t)p[3]; 788 789 return (v); 790} 791 792u_int16_t 793get_u16(const void *vp) 794{ 795 const u_char *p = (const u_char *)vp; 796 u_int16_t v; 797 798 v = (u_int16_t)p[0] << 8; 799 v |= (u_int16_t)p[1]; 800 801 return (v); 802} 803 804void 805put_u64(void *vp, u_int64_t v) 806{ 807 u_char *p = (u_char *)vp; 808 809 p[0] = (u_char)(v >> 56) & 0xff; 810 p[1] = (u_char)(v >> 48) & 0xff; 811 p[2] = (u_char)(v >> 40) & 0xff; 812 p[3] = (u_char)(v >> 32) & 0xff; 813 p[4] = (u_char)(v >> 24) & 0xff; 814 p[5] = (u_char)(v >> 16) & 0xff; 815 p[6] = (u_char)(v >> 8) & 0xff; 816 p[7] = (u_char)v & 0xff; 817} 818 819void 820put_u32(void *vp, u_int32_t v) 821{ 822 u_char *p = (u_char *)vp; 823 824 p[0] = (u_char)(v >> 24) & 0xff; 825 p[1] = (u_char)(v >> 16) & 0xff; 826 p[2] = (u_char)(v >> 8) & 0xff; 827 p[3] = (u_char)v & 0xff; 828} 829 830 831void 832put_u16(void *vp, u_int16_t v) 833{ 834 u_char *p = (u_char *)vp; 835 836 p[0] = (u_char)(v >> 8) & 0xff; 837 p[1] = (u_char)v & 0xff; 838} 839 840void 841ms_subtract_diff(struct timeval *start, int *ms) 842{ 843 struct timeval diff, finish; 844 845 gettimeofday(&finish, NULL); 846 timersub(&finish, start, &diff); 847 *ms -= (diff.tv_sec * 1000) + (diff.tv_usec / 1000); 848} 849 850void 851ms_to_timeval(struct timeval *tv, int ms) 852{ 853 if (ms < 0) 854 ms = 0; 855 tv->tv_sec = ms / 1000; 856 tv->tv_usec = (ms % 1000) * 1000; 857} 858 859void 860bandwidth_limit_init(struct bwlimit *bw, u_int64_t kbps, size_t buflen) 861{ 862 bw->buflen = buflen; 863 bw->rate = kbps; 864 bw->thresh = bw->rate; 865 bw->lamt = 0; 866 timerclear(&bw->bwstart); 867 timerclear(&bw->bwend); 868} 869 870/* Callback from read/write loop to insert bandwidth-limiting delays */ 871void 872bandwidth_limit(struct bwlimit *bw, size_t read_len) 873{ 874 u_int64_t waitlen; 875 struct timespec ts, rm; 876 877 if (!timerisset(&bw->bwstart)) { 878 gettimeofday(&bw->bwstart, NULL); 879 return; 880 } 881 882 bw->lamt += read_len; 883 if (bw->lamt < bw->thresh) 884 return; 885 886 gettimeofday(&bw->bwend, NULL); 887 timersub(&bw->bwend, &bw->bwstart, &bw->bwend); 888 if (!timerisset(&bw->bwend)) 889 return; 890 891 bw->lamt *= 8; 892 waitlen = (double)1000000L * bw->lamt / bw->rate; 893 894 bw->bwstart.tv_sec = waitlen / 1000000L; 895 bw->bwstart.tv_usec = waitlen % 1000000L; 896 897 if (timercmp(&bw->bwstart, &bw->bwend, >)) { 898 timersub(&bw->bwstart, &bw->bwend, &bw->bwend); 899 900 /* Adjust the wait time */ 901 if (bw->bwend.tv_sec) { 902 bw->thresh /= 2; 903 if (bw->thresh < bw->buflen / 4) 904 bw->thresh = bw->buflen / 4; 905 } else if (bw->bwend.tv_usec < 10000) { 906 bw->thresh *= 2; 907 if (bw->thresh > bw->buflen * 8) 908 bw->thresh = bw->buflen * 8; 909 } 910 911 TIMEVAL_TO_TIMESPEC(&bw->bwend, &ts); 912 while (nanosleep(&ts, &rm) == -1) { 913 if (errno != EINTR) 914 break; 915 ts = rm; 916 } 917 } 918 919 bw->lamt = 0; 920 gettimeofday(&bw->bwstart, NULL); 921} 922 923/* Make a template filename for mk[sd]temp() */ 924void 925mktemp_proto(char *s, size_t len) 926{ 927 const char *tmpdir; 928 int r; 929 930 if ((tmpdir = getenv("TMPDIR")) != NULL) { 931 r = snprintf(s, len, "%s/ssh-XXXXXXXXXXXX", tmpdir); 932 if (r > 0 && (size_t)r < len) 933 return; 934 } 935 r = snprintf(s, len, "/tmp/ssh-XXXXXXXXXXXX"); 936 if (r < 0 || (size_t)r >= len) 937 fatal("%s: template string too short", __func__); 938} 939 940static const struct { 941 const char *name; 942 int value; 943} ipqos[] = { 944 { "af11", IPTOS_DSCP_AF11 }, 945 { "af12", IPTOS_DSCP_AF12 }, 946 { "af13", IPTOS_DSCP_AF13 }, 947 { "af14", IPTOS_DSCP_AF21 }, 948 { "af22", IPTOS_DSCP_AF22 }, 949 { "af23", IPTOS_DSCP_AF23 }, 950 { "af31", IPTOS_DSCP_AF31 }, 951 { "af32", IPTOS_DSCP_AF32 }, 952 { "af33", IPTOS_DSCP_AF33 }, 953 { "af41", IPTOS_DSCP_AF41 }, 954 { "af42", IPTOS_DSCP_AF42 }, 955 { "af43", IPTOS_DSCP_AF43 }, 956 { "cs0", IPTOS_DSCP_CS0 }, 957 { "cs1", IPTOS_DSCP_CS1 }, 958 { "cs2", IPTOS_DSCP_CS2 }, 959 { "cs3", IPTOS_DSCP_CS3 }, 960 { "cs4", IPTOS_DSCP_CS4 }, 961 { "cs5", IPTOS_DSCP_CS5 }, 962 { "cs6", IPTOS_DSCP_CS6 }, 963 { "cs7", IPTOS_DSCP_CS7 }, 964 { "ef", IPTOS_DSCP_EF }, 965 { "lowdelay", IPTOS_LOWDELAY }, 966 { "throughput", IPTOS_THROUGHPUT }, 967 { "reliability", IPTOS_RELIABILITY }, 968 { NULL, -1 } 969}; 970 971int 972parse_ipqos(const char *cp) 973{ 974 u_int i; 975 char *ep; 976 long val; 977 978 if (cp == NULL) 979 return -1; 980 for (i = 0; ipqos[i].name != NULL; i++) { 981 if (strcasecmp(cp, ipqos[i].name) == 0) 982 return ipqos[i].value; 983 } 984 /* Try parsing as an integer */ 985 val = strtol(cp, &ep, 0); 986 if (*cp == '\0' || *ep != '\0' || val < 0 || val > 255) 987 return -1; 988 return val; 989} 990 991const char * 992iptos2str(int iptos) 993{ 994 int i; 995 static char iptos_str[sizeof "0xff"]; 996 997 for (i = 0; ipqos[i].name != NULL; i++) { 998 if (ipqos[i].value == iptos) 999 return ipqos[i].name; 1000 } 1001 snprintf(iptos_str, sizeof iptos_str, "0x%02x", iptos); 1002 return iptos_str; 1003} 1004 1005int 1006timingsafe_bcmp(const void *b1, const void *b2, size_t n) 1007{ 1008 const unsigned char *p1 = b1, *p2 = b2; 1009 int ret = 0; 1010 1011 for (; n > 0; n--) 1012 ret |= *p1++ ^ *p2++; 1013 return (ret != 0); 1014} 1015