11e8db6e2SBrian Feldman /* 21e8db6e2SBrian Feldman * Author: Tatu Ylonen <ylo@cs.hut.fi> 31e8db6e2SBrian Feldman * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland 41e8db6e2SBrian Feldman * All rights reserved 51e8db6e2SBrian Feldman * Allocating a pseudo-terminal, and making it the controlling tty. 61e8db6e2SBrian Feldman * 71e8db6e2SBrian Feldman * As far as I am concerned, the code I have written for this software 81e8db6e2SBrian Feldman * can be used freely for any purpose. Any derived versions of this 91e8db6e2SBrian Feldman * software must be clearly marked as such, and if the derived work is 101e8db6e2SBrian Feldman * incompatible with the protocol description in the RFC file, it must be 111e8db6e2SBrian Feldman * called by a name other than "ssh" or "Secure Shell". 121e8db6e2SBrian Feldman */ 131e8db6e2SBrian Feldman 141e8db6e2SBrian Feldman #include "includes.h" 1521e764dfSDag-Erling Smørgrav RCSID("$OpenBSD: sshpty.c,v 1.12 2004/06/21 17:36:31 avsm Exp $"); 161e8db6e2SBrian Feldman 17989dd127SDag-Erling Smørgrav #ifdef HAVE_UTIL_H 18989dd127SDag-Erling Smørgrav # include <util.h> 19989dd127SDag-Erling Smørgrav #endif /* HAVE_UTIL_H */ 20989dd127SDag-Erling Smørgrav 211e8db6e2SBrian Feldman #include "sshpty.h" 221e8db6e2SBrian Feldman #include "log.h" 23989dd127SDag-Erling Smørgrav #include "misc.h" 241e8db6e2SBrian Feldman 25989dd127SDag-Erling Smørgrav #ifdef HAVE_PTY_H 26989dd127SDag-Erling Smørgrav # include <pty.h> 27989dd127SDag-Erling Smørgrav #endif 28989dd127SDag-Erling Smørgrav 291e8db6e2SBrian Feldman #ifndef O_NOCTTY 301e8db6e2SBrian Feldman #define O_NOCTTY 0 311e8db6e2SBrian Feldman #endif 321e8db6e2SBrian Feldman 331e8db6e2SBrian Feldman /* 341e8db6e2SBrian Feldman * Allocates and opens a pty. Returns 0 if no pty could be allocated, or 351e8db6e2SBrian Feldman * nonzero if a pty was successfully allocated. On success, open file 361e8db6e2SBrian Feldman * descriptors for the pty and tty sides and the name of the tty side are 371e8db6e2SBrian Feldman * returned (the buffer must be able to hold at least 64 characters). 381e8db6e2SBrian Feldman */ 391e8db6e2SBrian Feldman 401e8db6e2SBrian Feldman int 411e8db6e2SBrian Feldman pty_allocate(int *ptyfd, int *ttyfd, char *namebuf, int namebuflen) 421e8db6e2SBrian Feldman { 431e8db6e2SBrian Feldman /* openpty(3) exists in OSF/1 and some other os'es */ 44989dd127SDag-Erling Smørgrav char *name; 451e8db6e2SBrian Feldman int i; 461e8db6e2SBrian Feldman 47989dd127SDag-Erling Smørgrav i = openpty(ptyfd, ttyfd, NULL, NULL, NULL); 481e8db6e2SBrian Feldman if (i < 0) { 491e8db6e2SBrian Feldman error("openpty: %.100s", strerror(errno)); 501e8db6e2SBrian Feldman return 0; 511e8db6e2SBrian Feldman } 52989dd127SDag-Erling Smørgrav name = ttyname(*ttyfd); 53989dd127SDag-Erling Smørgrav if (!name) 54989dd127SDag-Erling Smørgrav fatal("openpty returns device for which ttyname fails."); 55989dd127SDag-Erling Smørgrav 56989dd127SDag-Erling Smørgrav strlcpy(namebuf, name, namebuflen); /* possible truncation */ 571e8db6e2SBrian Feldman return 1; 581e8db6e2SBrian Feldman } 591e8db6e2SBrian Feldman 601e8db6e2SBrian Feldman /* Releases the tty. Its ownership is returned to root, and permissions to 0666. */ 611e8db6e2SBrian Feldman 621e8db6e2SBrian Feldman void 6321e764dfSDag-Erling Smørgrav pty_release(const char *tty) 641e8db6e2SBrian Feldman { 6521e764dfSDag-Erling Smørgrav if (chown(tty, (uid_t) 0, (gid_t) 0) < 0) 6621e764dfSDag-Erling Smørgrav error("chown %.100s 0 0 failed: %.100s", tty, strerror(errno)); 6721e764dfSDag-Erling Smørgrav if (chmod(tty, (mode_t) 0666) < 0) 6821e764dfSDag-Erling Smørgrav error("chmod %.100s 0666 failed: %.100s", tty, strerror(errno)); 691e8db6e2SBrian Feldman } 701e8db6e2SBrian Feldman 71cf2b5f3bSDag-Erling Smørgrav /* Makes the tty the process's controlling tty and sets it to sane modes. */ 721e8db6e2SBrian Feldman 731e8db6e2SBrian Feldman void 7421e764dfSDag-Erling Smørgrav pty_make_controlling_tty(int *ttyfd, const char *tty) 751e8db6e2SBrian Feldman { 761e8db6e2SBrian Feldman int fd; 77989dd127SDag-Erling Smørgrav #ifdef USE_VHANGUP 78989dd127SDag-Erling Smørgrav void *old; 79989dd127SDag-Erling Smørgrav #endif /* USE_VHANGUP */ 80989dd127SDag-Erling Smørgrav 81f388f5efSDag-Erling Smørgrav #ifdef _UNICOS 82989dd127SDag-Erling Smørgrav if (setsid() < 0) 83989dd127SDag-Erling Smørgrav error("setsid: %.100s", strerror(errno)); 84989dd127SDag-Erling Smørgrav 8521e764dfSDag-Erling Smørgrav fd = open(tty, O_RDWR|O_NOCTTY); 86989dd127SDag-Erling Smørgrav if (fd != -1) { 87cf2b5f3bSDag-Erling Smørgrav signal(SIGHUP, SIG_IGN); 88989dd127SDag-Erling Smørgrav ioctl(fd, TCVHUP, (char *)NULL); 89cf2b5f3bSDag-Erling Smørgrav signal(SIGHUP, SIG_DFL); 90989dd127SDag-Erling Smørgrav setpgid(0, 0); 91989dd127SDag-Erling Smørgrav close(fd); 92989dd127SDag-Erling Smørgrav } else { 93989dd127SDag-Erling Smørgrav error("Failed to disconnect from controlling tty."); 94989dd127SDag-Erling Smørgrav } 95989dd127SDag-Erling Smørgrav 96989dd127SDag-Erling Smørgrav debug("Setting controlling tty using TCSETCTTY."); 97989dd127SDag-Erling Smørgrav ioctl(*ttyfd, TCSETCTTY, NULL); 98989dd127SDag-Erling Smørgrav fd = open("/dev/tty", O_RDWR); 99989dd127SDag-Erling Smørgrav if (fd < 0) 10021e764dfSDag-Erling Smørgrav error("%.100s: %.100s", tty, strerror(errno)); 101989dd127SDag-Erling Smørgrav close(*ttyfd); 102989dd127SDag-Erling Smørgrav *ttyfd = fd; 103f388f5efSDag-Erling Smørgrav #else /* _UNICOS */ 1041e8db6e2SBrian Feldman 1051e8db6e2SBrian Feldman /* First disconnect from the old controlling tty. */ 1061e8db6e2SBrian Feldman #ifdef TIOCNOTTY 1071e8db6e2SBrian Feldman fd = open(_PATH_TTY, O_RDWR | O_NOCTTY); 1081e8db6e2SBrian Feldman if (fd >= 0) { 1091e8db6e2SBrian Feldman (void) ioctl(fd, TIOCNOTTY, NULL); 1101e8db6e2SBrian Feldman close(fd); 1111e8db6e2SBrian Feldman } 1121e8db6e2SBrian Feldman #endif /* TIOCNOTTY */ 1131e8db6e2SBrian Feldman if (setsid() < 0) 1141e8db6e2SBrian Feldman error("setsid: %.100s", strerror(errno)); 1151e8db6e2SBrian Feldman 1161e8db6e2SBrian Feldman /* 1171e8db6e2SBrian Feldman * Verify that we are successfully disconnected from the controlling 1181e8db6e2SBrian Feldman * tty. 1191e8db6e2SBrian Feldman */ 1201e8db6e2SBrian Feldman fd = open(_PATH_TTY, O_RDWR | O_NOCTTY); 1211e8db6e2SBrian Feldman if (fd >= 0) { 1221e8db6e2SBrian Feldman error("Failed to disconnect from controlling tty."); 1231e8db6e2SBrian Feldman close(fd); 1241e8db6e2SBrian Feldman } 1251e8db6e2SBrian Feldman /* Make it our controlling tty. */ 1261e8db6e2SBrian Feldman #ifdef TIOCSCTTY 1271e8db6e2SBrian Feldman debug("Setting controlling tty using TIOCSCTTY."); 1281e8db6e2SBrian Feldman if (ioctl(*ttyfd, TIOCSCTTY, NULL) < 0) 1291e8db6e2SBrian Feldman error("ioctl(TIOCSCTTY): %.100s", strerror(errno)); 1301e8db6e2SBrian Feldman #endif /* TIOCSCTTY */ 131989dd127SDag-Erling Smørgrav #ifdef HAVE_NEWS4 132989dd127SDag-Erling Smørgrav if (setpgrp(0,0) < 0) 133989dd127SDag-Erling Smørgrav error("SETPGRP %s",strerror(errno)); 134989dd127SDag-Erling Smørgrav #endif /* HAVE_NEWS4 */ 135989dd127SDag-Erling Smørgrav #ifdef USE_VHANGUP 136cf2b5f3bSDag-Erling Smørgrav old = signal(SIGHUP, SIG_IGN); 137989dd127SDag-Erling Smørgrav vhangup(); 138cf2b5f3bSDag-Erling Smørgrav signal(SIGHUP, old); 139989dd127SDag-Erling Smørgrav #endif /* USE_VHANGUP */ 14021e764dfSDag-Erling Smørgrav fd = open(tty, O_RDWR); 141989dd127SDag-Erling Smørgrav if (fd < 0) { 14221e764dfSDag-Erling Smørgrav error("%.100s: %.100s", tty, strerror(errno)); 143989dd127SDag-Erling Smørgrav } else { 144989dd127SDag-Erling Smørgrav #ifdef USE_VHANGUP 145989dd127SDag-Erling Smørgrav close(*ttyfd); 146989dd127SDag-Erling Smørgrav *ttyfd = fd; 147989dd127SDag-Erling Smørgrav #else /* USE_VHANGUP */ 1481e8db6e2SBrian Feldman close(fd); 149989dd127SDag-Erling Smørgrav #endif /* USE_VHANGUP */ 150989dd127SDag-Erling Smørgrav } 1511e8db6e2SBrian Feldman /* Verify that we now have a controlling tty. */ 1521e8db6e2SBrian Feldman fd = open(_PATH_TTY, O_WRONLY); 1531e8db6e2SBrian Feldman if (fd < 0) 1541e8db6e2SBrian Feldman error("open /dev/tty failed - could not set controlling tty: %.100s", 1551e8db6e2SBrian Feldman strerror(errno)); 156a82e551fSDag-Erling Smørgrav else 1571e8db6e2SBrian Feldman close(fd); 158f388f5efSDag-Erling Smørgrav #endif /* _UNICOS */ 1591e8db6e2SBrian Feldman } 1601e8db6e2SBrian Feldman 1611e8db6e2SBrian Feldman /* Changes the window size associated with the pty. */ 1621e8db6e2SBrian Feldman 1631e8db6e2SBrian Feldman void 1641e8db6e2SBrian Feldman pty_change_window_size(int ptyfd, int row, int col, 1651e8db6e2SBrian Feldman int xpixel, int ypixel) 1661e8db6e2SBrian Feldman { 1671e8db6e2SBrian Feldman struct winsize w; 168a82e551fSDag-Erling Smørgrav 1691e8db6e2SBrian Feldman w.ws_row = row; 1701e8db6e2SBrian Feldman w.ws_col = col; 1711e8db6e2SBrian Feldman w.ws_xpixel = xpixel; 1721e8db6e2SBrian Feldman w.ws_ypixel = ypixel; 1731e8db6e2SBrian Feldman (void) ioctl(ptyfd, TIOCSWINSZ, &w); 1741e8db6e2SBrian Feldman } 1751e8db6e2SBrian Feldman 1761e8db6e2SBrian Feldman void 17721e764dfSDag-Erling Smørgrav pty_setowner(struct passwd *pw, const char *tty) 1781e8db6e2SBrian Feldman { 1791e8db6e2SBrian Feldman struct group *grp; 1801e8db6e2SBrian Feldman gid_t gid; 1811e8db6e2SBrian Feldman mode_t mode; 1821e8db6e2SBrian Feldman struct stat st; 1831e8db6e2SBrian Feldman 1841e8db6e2SBrian Feldman /* Determine the group to make the owner of the tty. */ 1851e8db6e2SBrian Feldman grp = getgrnam("tty"); 1861e8db6e2SBrian Feldman if (grp) { 1871e8db6e2SBrian Feldman gid = grp->gr_gid; 1881e8db6e2SBrian Feldman mode = S_IRUSR | S_IWUSR | S_IWGRP; 1891e8db6e2SBrian Feldman } else { 1901e8db6e2SBrian Feldman gid = pw->pw_gid; 1911e8db6e2SBrian Feldman mode = S_IRUSR | S_IWUSR | S_IWGRP | S_IWOTH; 1921e8db6e2SBrian Feldman } 1931e8db6e2SBrian Feldman 1941e8db6e2SBrian Feldman /* 1951e8db6e2SBrian Feldman * Change owner and mode of the tty as required. 196af12a3e7SDag-Erling Smørgrav * Warn but continue if filesystem is read-only and the uids match/ 197af12a3e7SDag-Erling Smørgrav * tty is owned by root. 1981e8db6e2SBrian Feldman */ 19921e764dfSDag-Erling Smørgrav if (stat(tty, &st)) 20021e764dfSDag-Erling Smørgrav fatal("stat(%.100s) failed: %.100s", tty, 2011e8db6e2SBrian Feldman strerror(errno)); 2021e8db6e2SBrian Feldman 2031e8db6e2SBrian Feldman if (st.st_uid != pw->pw_uid || st.st_gid != gid) { 20421e764dfSDag-Erling Smørgrav if (chown(tty, pw->pw_uid, gid) < 0) { 205af12a3e7SDag-Erling Smørgrav if (errno == EROFS && 206af12a3e7SDag-Erling Smørgrav (st.st_uid == pw->pw_uid || st.st_uid == 0)) 207e73e9afaSDag-Erling Smørgrav debug("chown(%.100s, %u, %u) failed: %.100s", 20821e764dfSDag-Erling Smørgrav tty, (u_int)pw->pw_uid, (u_int)gid, 2091e8db6e2SBrian Feldman strerror(errno)); 2101e8db6e2SBrian Feldman else 211a82e551fSDag-Erling Smørgrav fatal("chown(%.100s, %u, %u) failed: %.100s", 21221e764dfSDag-Erling Smørgrav tty, (u_int)pw->pw_uid, (u_int)gid, 2131e8db6e2SBrian Feldman strerror(errno)); 2141e8db6e2SBrian Feldman } 2151e8db6e2SBrian Feldman } 2161e8db6e2SBrian Feldman 2171e8db6e2SBrian Feldman if ((st.st_mode & (S_IRWXU|S_IRWXG|S_IRWXO)) != mode) { 21821e764dfSDag-Erling Smørgrav if (chmod(tty, mode) < 0) { 2191e8db6e2SBrian Feldman if (errno == EROFS && 2201e8db6e2SBrian Feldman (st.st_mode & (S_IRGRP | S_IROTH)) == 0) 221e73e9afaSDag-Erling Smørgrav debug("chmod(%.100s, 0%o) failed: %.100s", 22221e764dfSDag-Erling Smørgrav tty, (u_int)mode, strerror(errno)); 2231e8db6e2SBrian Feldman else 2241e8db6e2SBrian Feldman fatal("chmod(%.100s, 0%o) failed: %.100s", 22521e764dfSDag-Erling Smørgrav tty, (u_int)mode, strerror(errno)); 2261e8db6e2SBrian Feldman } 2271e8db6e2SBrian Feldman } 2281e8db6e2SBrian Feldman } 229