![[BACK]](/cvsweb/icons/back.gif){kind=icon}
Return to rexecd.c CVS log ![[TXT]](/cvsweb/icons/text.gif){kind=icon}
![[DIR]](/cvsweb/icons/dir.gif){kind=icon}
Up to [CSRG BSD Unix] / 43BSDReno / libexec / rexecd|
Return to rexecd.c CVS log | Up to [CSRG BSD Unix] / 43BSDReno / libexec / rexecd |
1.1 ! root 1: /* ! 2: * Copyright (c) 1983 The Regents of the University of California. ! 3: * All rights reserved. ! 4: * ! 5: * Redistribution and use in source and binary forms are permitted ! 6: * provided that: (1) source distributions retain this entire copyright ! 7: * notice and comment, and (2) distributions including binaries display ! 8: * the following acknowledgement: ``This product includes software ! 9: * developed by the University of California, Berkeley and its contributors'' ! 10: * in the documentation or other materials provided with the distribution ! 11: * and in all advertising materials mentioning features or use of this ! 12: * software. Neither the name of the University nor the names of its ! 13: * contributors may be used to endorse or promote products derived ! 14: * from this software without specific prior written permission. ! 15: * THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR ! 16: * IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED ! 17: * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. ! 18: */ ! 19: ! 20: #ifndef lint ! 21: char copyright[] = ! 22: "@(#) Copyright (c) 1983 The Regents of the University of California.\n\ ! 23: All rights reserved.\n"; ! 24: #endif /* not lint */ ! 25: ! 26: #ifndef lint ! 27: static char sccsid[] = "@(#)rexecd.c 5.10 (Berkeley) 6/1/90"; ! 28: #endif /* not lint */ ! 29: ! 30: #include <sys/ioctl.h> ! 31: #include <sys/param.h> ! 32: #include <sys/socket.h> ! 33: #include <sys/time.h> ! 34: ! 35: #include <netinet/in.h> ! 36: ! 37: #include <stdio.h> ! 38: #include <errno.h> ! 39: #include <pwd.h> ! 40: #include <signal.h> ! 41: #include <netdb.h> ! 42: #include "pathnames.h" ! 43: ! 44: extern int errno; ! 45: struct passwd *getpwnam(); ! 46: char *crypt(), *rindex(), *strncat(); ! 47: /*VARARGS1*/ ! 48: int error(); ! 49: ! 50: /* ! 51: * remote execute server: ! 52: * username\0 ! 53: * password\0 ! 54: * command\0 ! 55: * data ! 56: */ ! 57: /*ARGSUSED*/ ! 58: main(argc, argv) ! 59: int argc; ! 60: char **argv; ! 61: { ! 62: struct sockaddr_in from; ! 63: int fromlen; ! 64: ! 65: fromlen = sizeof (from); ! 66: if (getpeername(0, &from, &fromlen) < 0) { ! 67: fprintf(stderr, "%s: ", argv[0]); ! 68: perror("getpeername"); ! 69: exit(1); ! 70: } ! 71: doit(0, &from); ! 72: } ! 73: ! 74: char username[20] = "USER="; ! 75: char homedir[64] = "HOME="; ! 76: char shell[64] = "SHELL="; ! 77: char *envinit[] = ! 78: {homedir, shell, _PATH_DEFPATH, username, 0}; ! 79: char **environ; ! 80: ! 81: struct sockaddr_in asin = { AF_INET }; ! 82: ! 83: doit(f, fromp) ! 84: int f; ! 85: struct sockaddr_in *fromp; ! 86: { ! 87: char cmdbuf[NCARGS+1], *cp, *namep; ! 88: char user[16], pass[16]; ! 89: struct passwd *pwd; ! 90: int s; ! 91: u_short port; ! 92: int pv[2], pid, ready, readfrom, cc; ! 93: char buf[BUFSIZ], sig; ! 94: int one = 1; ! 95: ! 96: (void) signal(SIGINT, SIG_DFL); ! 97: (void) signal(SIGQUIT, SIG_DFL); ! 98: (void) signal(SIGTERM, SIG_DFL); ! 99: #ifdef DEBUG ! 100: { int t = open(_PATH_TTY, 2); ! 101: if (t >= 0) { ! 102: ioctl(t, TIOCNOTTY, (char *)0); ! 103: (void) close(t); ! 104: } ! 105: } ! 106: #endif ! 107: dup2(f, 0); ! 108: dup2(f, 1); ! 109: dup2(f, 2); ! 110: (void) alarm(60); ! 111: port = 0; ! 112: for (;;) { ! 113: char c; ! 114: if (read(f, &c, 1) != 1) ! 115: exit(1); ! 116: if (c == 0) ! 117: break; ! 118: port = port * 10 + c - '0'; ! 119: } ! 120: (void) alarm(0); ! 121: if (port != 0) { ! 122: s = socket(AF_INET, SOCK_STREAM, 0); ! 123: if (s < 0) ! 124: exit(1); ! 125: if (bind(s, &asin, sizeof (asin)) < 0) ! 126: exit(1); ! 127: (void) alarm(60); ! 128: fromp->sin_port = htons(port); ! 129: if (connect(s, fromp, sizeof (*fromp)) < 0) ! 130: exit(1); ! 131: (void) alarm(0); ! 132: } ! 133: getstr(user, sizeof(user), "username"); ! 134: getstr(pass, sizeof(pass), "password"); ! 135: getstr(cmdbuf, sizeof(cmdbuf), "command"); ! 136: setpwent(); ! 137: pwd = getpwnam(user); ! 138: if (pwd == NULL) { ! 139: error("Login incorrect.\n"); ! 140: exit(1); ! 141: } ! 142: endpwent(); ! 143: if (*pwd->pw_passwd != '\0') { ! 144: namep = crypt(pass, pwd->pw_passwd); ! 145: if (strcmp(namep, pwd->pw_passwd)) { ! 146: error("Password incorrect.\n"); ! 147: exit(1); ! 148: } ! 149: } ! 150: if (chdir(pwd->pw_dir) < 0) { ! 151: error("No remote directory.\n"); ! 152: exit(1); ! 153: } ! 154: (void) write(2, "\0", 1); ! 155: if (port) { ! 156: (void) pipe(pv); ! 157: pid = fork(); ! 158: if (pid == -1) { ! 159: error("Try again.\n"); ! 160: exit(1); ! 161: } ! 162: if (pid) { ! 163: (void) close(0); (void) close(1); (void) close(2); ! 164: (void) close(f); (void) close(pv[1]); ! 165: readfrom = (1<<s) | (1<<pv[0]); ! 166: ioctl(pv[1], FIONBIO, (char *)&one); ! 167: /* should set s nbio! */ ! 168: do { ! 169: ready = readfrom; ! 170: (void) select(16, &ready, (fd_set *)0, ! 171: (fd_set *)0, (struct timeval *)0); ! 172: if (ready & (1<<s)) { ! 173: if (read(s, &sig, 1) <= 0) ! 174: readfrom &= ~(1<<s); ! 175: else ! 176: killpg(pid, sig); ! 177: } ! 178: if (ready & (1<<pv[0])) { ! 179: cc = read(pv[0], buf, sizeof (buf)); ! 180: if (cc <= 0) { ! 181: shutdown(s, 1+1); ! 182: readfrom &= ~(1<<pv[0]); ! 183: } else ! 184: (void) write(s, buf, cc); ! 185: } ! 186: } while (readfrom); ! 187: exit(0); ! 188: } ! 189: setpgrp(0, getpid()); ! 190: (void) close(s); (void)close(pv[0]); ! 191: dup2(pv[1], 2); ! 192: } ! 193: if (*pwd->pw_shell == '\0') ! 194: pwd->pw_shell = _PATH_BSHELL; ! 195: if (f > 2) ! 196: (void) close(f); ! 197: (void) setgid((gid_t)pwd->pw_gid); ! 198: initgroups(pwd->pw_name, pwd->pw_gid); ! 199: (void) setuid((uid_t)pwd->pw_uid); ! 200: environ = envinit; ! 201: strncat(homedir, pwd->pw_dir, sizeof(homedir)-6); ! 202: strncat(shell, pwd->pw_shell, sizeof(shell)-7); ! 203: strncat(username, pwd->pw_name, sizeof(username)-6); ! 204: cp = rindex(pwd->pw_shell, '/'); ! 205: if (cp) ! 206: cp++; ! 207: else ! 208: cp = pwd->pw_shell; ! 209: execl(pwd->pw_shell, cp, "-c", cmdbuf, 0); ! 210: perror(pwd->pw_shell); ! 211: exit(1); ! 212: } ! 213: ! 214: /*VARARGS1*/ ! 215: error(fmt, a1, a2, a3) ! 216: char *fmt; ! 217: int a1, a2, a3; ! 218: { ! 219: char buf[BUFSIZ]; ! 220: ! 221: buf[0] = 1; ! 222: (void) sprintf(buf+1, fmt, a1, a2, a3); ! 223: (void) write(2, buf, strlen(buf)); ! 224: } ! 225: ! 226: getstr(buf, cnt, err) ! 227: char *buf; ! 228: int cnt; ! 229: char *err; ! 230: { ! 231: char c; ! 232: ! 233: do { ! 234: if (read(0, &c, 1) != 1) ! 235: exit(1); ! 236: *buf++ = c; ! 237: if (--cnt == 0) { ! 238: error("%s too long\n", err); ! 239: exit(1); ! 240: } ! 241: } while (c != 0); ! 242: }
This archive runs on limited infrastructure. Preserving old code on modern bandwidth. Automated agents are requested to crawl responsibly.