Home Verkennen Help
Inloggen
SoftwareDesign
/
csu3_am335x
8
0
Vork 0
Bestanden Issues 0 Pull-aanvragen 0 Wiki
Aftakking: master
Aftakkingen Labels
csu3_am335x
/
EVSE
/
GPL
/
dropbear-2022.82
/
dbutil.c

dbutil.c 18 KB
Permalink Geschiedenis Ruwe

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786 
  1. /*
    2. 

  2.  * Dropbear - a SSH2 server
    3. 

  3.  * 
    4. 

  4.  * Copyright (c) 2002,2003 Matt Johnston
    5. 

  5.  * All rights reserved.
    6. 

  6.  * 
    7. 

  7.  * Permission is hereby granted, free of charge, to any person obtaining a copy
    8. 

  8.  * of this software and associated documentation files (the "Software"), to deal
    9. 

  9.  * in the Software without restriction, including without limitation the rights
    10. 

  10.  * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
    11. 

  11.  * copies of the Software, and to permit persons to whom the Software is
    12. 

  12.  * furnished to do so, subject to the following conditions:
    13. 

  13.  * 
    14. 

  14.  * The above copyright notice and this permission notice shall be included in
    15. 

  15.  * all copies or substantial portions of the Software.
    16. 

  16.  * 
    17. 

  17.  * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
    18. 

  18.  * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
    19. 

  19.  * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
    20. 

  20.  * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
    21. 

  21.  * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
    22. 

  22.  * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
    23. 

  23.  * SOFTWARE.
    24. 

  24.  *
    25. 

  25.  * strlcat() is copyright as follows:
    26. 

  26.  * Copyright (c) 1998 Todd C. Miller <Todd.Miller@courtesan.com>
    27. 

  27.  * All rights reserved.
    28. 

  28.  *
    29. 

  29.  * Redistribution and use in source and binary forms, with or without
    30. 

  30.  * modification, are permitted provided that the following conditions
    31. 

  31.  * are met:
    32. 

  32.  * 1. Redistributions of source code must retain the above copyright
    33. 

  33.  *    notice, this list of conditions and the following disclaimer.
    34. 

  34.  * 2. Redistributions in binary form must reproduce the above copyright
    35. 

  35.  *    notice, this list of conditions and the following disclaimer in the
    36. 

  36.  *    documentation and/or other materials provided with the distribution.
    37. 

  37.  * 3. The name of the author may not be used to endorse or promote products
    38. 

  38.  *    derived from this software without specific prior written permission.
    39. 

  39.  *
    40. 

  40.  * THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES,
    41. 

  41.  * INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY
    42. 

  42.  * AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL
    43. 

  43.  * THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
    44. 

  44.  * EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
    45. 

  45.  * PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS;
    46. 

  46.  * OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
    47. 

  47.  * WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR
    48. 

  48.  * OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF
    49. 

  49.  * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. */
    50. 

  50. 

  51. #include "config.h"
    52. 

  52. 

  53. #ifdef __linux__
    54. 

  54. #define _GNU_SOURCE
    55. 

  55. /* To call clock_gettime() directly */
    56. 

  56. #include <sys/syscall.h>
    57. 

  57. #endif /* __linux */
    58. 

  58. 

  59. #ifdef HAVE_MACH_MACH_TIME_H
    60. 

  60. #include <mach/mach_time.h>
    61. 

  61. #include <mach/mach.h>
    62. 

  62. #endif
    63. 

  63. 

  64. #include "includes.h"
    65. 

  65. #include "dbutil.h"
    66. 

  66. #include "buffer.h"
    67. 

  67. #include "session.h"
    68. 

  68. #include "atomicio.h"
    69. 

  69. 

  70. #define MAX_FMT 100
    71. 

  71. 

  72. static void generic_dropbear_exit(int exitcode, const char* format, 
    73. 

  73. 		va_list param) ATTRIB_NORETURN;
    74. 

  74. static void generic_dropbear_log(int priority, const char* format, 
    75. 

  75. 		va_list param);
    76. 

  76. 

  77. void (*_dropbear_exit)(int exitcode, const char* format, va_list param) ATTRIB_NORETURN
    78. 

  78. 						= generic_dropbear_exit;
    79. 

  79. void (*_dropbear_log)(int priority, const char* format, va_list param)
    80. 

  80. 						= generic_dropbear_log;
    81. 

  81. 

  82. #if DEBUG_TRACE
    83. 

  83. int debug_trace = 0;
    84. 

  84. #endif
    85. 

  85. 

  86. #ifndef DISABLE_SYSLOG
    87. 

  87. void startsyslog(const char *ident) {
    88. 

  88. 

  89. 	openlog(ident, LOG_PID, LOG_AUTHPRIV);
    90. 

  90. 

  91. }
    92. 

  92. #endif /* DISABLE_SYSLOG */
    93. 

  93. 

  94. /* the "format" string must be <= 100 characters */
    95. 

  95. void dropbear_close(const char* format, ...) {
    96. 

  96. 

  97. 	va_list param;
    98. 

  98. 

  99. 	va_start(param, format);
    100. 

  100. 	_dropbear_exit(EXIT_SUCCESS, format, param);
    101. 

  101. 	va_end(param);
    102. 

  102. 

  103. }
    104. 

  104. 

  105. void dropbear_exit(const char* format, ...) {
    106. 

  106. 

  107. 	va_list param;
    108. 

  108. 

  109. 	va_start(param, format);
    110. 

  110. 	_dropbear_exit(EXIT_FAILURE, format, param);
    111. 

  111. 	va_end(param);
    112. 

  112. }
    113. 

  113. 

  114. static void generic_dropbear_exit(int exitcode, const char* format, 
    115. 

  115. 		va_list param) {
    116. 

  116. 

  117. 	char fmtbuf[300];
    118. 

  118. 

  119. 	snprintf(fmtbuf, sizeof(fmtbuf), "Exited: %s", format);
    120. 

  120. 

  121. 	_dropbear_log(LOG_INFO, fmtbuf, param);
    122. 

  122. 

  123. #if DROPBEAR_FUZZ
    124. 

  124.     if (fuzz.do_jmp) {
    125. 

  125.         longjmp(fuzz.jmp, 1);
    126. 

  126.     }
    127. 

  127. #endif
    128. 

  128. 

  129. 	exit(exitcode);
    130. 

  130. }
    131. 

  131. 

  132. void fail_assert(const char* expr, const char* file, int line) {
    133. 

  133. 	dropbear_exit("Failed assertion (%s:%d): `%s'", file, line, expr);
    134. 

  134. }
    135. 

  135. 

  136. static void generic_dropbear_log(int UNUSED(priority), const char* format, 
    137. 

  137. 		va_list param) {
    138. 

  138. 

  139. 	char printbuf[1024];
    140. 

  140. 

  141. 	vsnprintf(printbuf, sizeof(printbuf), format, param);
    142. 

  142. 

  143. 	fprintf(stderr, "%s\n", printbuf);
    144. 

  144. 

  145. }
    146. 

  146. 

  147. /* this is what can be called to write arbitrary log messages */
    148. 

  148. void dropbear_log(int priority, const char* format, ...) {
    149. 

  149. 

  150. 	va_list param;
    151. 

  151. 

  152. 	va_start(param, format);
    153. 

  153. 	_dropbear_log(priority, format, param);
    154. 

  154. 	va_end(param);
    155. 

  155. }
    156. 

  156. 

  157. 

  158. #if DEBUG_TRACE 
    159. 

  159. 

  160. static double debug_start_time = -1;
    161. 

  161. 

  162. void debug_start_net()
    163. 

  163. {
    164. 

  164. 	if (getenv("DROPBEAR_DEBUG_NET_TIMESTAMP"))
    165. 

  165. 	{
    166. 

  166. 		/* Timestamps start from first network activity */
    167. 

  167. 		struct timeval tv;
    168. 

  168. 		gettimeofday(&tv, NULL);
    169. 

  169. 		debug_start_time = tv.tv_sec + (tv.tv_usec / 1000000.0);
    170. 

  170. 		TRACE(("Resetting Dropbear TRACE timestamps"))
    171. 

  171. 	}
    172. 

  172. }
    173. 

  173. 

  174. static double time_since_start()
    175. 

  175. {
    176. 

  176. 	double nowf;
    177. 

  177. 	struct timeval tv;
    178. 

  178. 	gettimeofday(&tv, NULL);
    179. 

  179. 	nowf = tv.tv_sec + (tv.tv_usec / 1000000.0);
    180. 

  180. 	if (debug_start_time < 0)
    181. 

  181. 	{
    182. 

  182. 		debug_start_time = nowf;
    183. 

  183. 		return 0;
    184. 

  184. 	}
    185. 

  185. 	return nowf - debug_start_time;
    186. 

  186. }
    187. 

  187. 

  188. static void dropbear_tracelevel(int level, const char *format, va_list param)
    189. 

  189. {
    190. 

  190. 	if (debug_trace == 0 || debug_trace < level) {
    191. 

  191. 		return;
    192. 

  192. 	}
    193. 

  193. 

  194. 	fprintf(stderr, "TRACE%d (%d) %f: ", level, getpid(), time_since_start());
    195. 

  195. 	vfprintf(stderr, format, param);
    196. 

  196. 	fprintf(stderr, "\n");
    197. 

  197. }
    198. 

  198. #if (DEBUG_TRACE>=1)
    199. 

  199. void dropbear_trace1(const char* format, ...) {
    200. 

  200. 	va_list param;
    201. 

  201. 

  202. 	va_start(param, format);
    203. 

  203. 	dropbear_tracelevel(1, format, param);
    204. 

  204. 	va_end(param);
    205. 

  205. }
    206. 

  206. #endif
    207. 

  207. #if (DEBUG_TRACE>=2)
    208. 

  208. void dropbear_trace2(const char* format, ...) {
    209. 

  209. 	va_list param;
    210. 

  210. 

  211. 	va_start(param, format);
    212. 

  212. 	dropbear_tracelevel(2, format, param);
    213. 

  213. 	va_end(param);
    214. 

  214. }
    215. 

  215. #endif
    216. 

  216. #if (DEBUG_TRACE>=3)
    217. 

  217. void dropbear_trace3(const char* format, ...) {
    218. 

  218. 	va_list param;
    219. 

  219. 

  220. 	va_start(param, format);
    221. 

  221. 	dropbear_tracelevel(3, format, param);
    222. 

  222. 	va_end(param);
    223. 

  223. }
    224. 

  224. #endif
    225. 

  225. #if (DEBUG_TRACE>=4)
    226. 

  226. void dropbear_trace4(const char* format, ...) {
    227. 

  227. 	va_list param;
    228. 

  228. 

  229. 	va_start(param, format);
    230. 

  230. 	dropbear_tracelevel(4, format, param);
    231. 

  231. 	va_end(param);
    232. 

  232. }
    233. 

  233. #endif
    234. 

  234. #if (DEBUG_TRACE>=5)
    235. 

  235. void dropbear_trace5(const char* format, ...) {
    236. 

  236. 	va_list param;
    237. 

  237. 

  238. 	va_start(param, format);
    239. 

  239. 	dropbear_tracelevel(5, format, param);
    240. 

  240. 	va_end(param);
    241. 

  241. }
    242. 

  242. #endif
    243. 

  243. #endif
    244. 

  244. 

  245. 

  246. /* Connect to a given unix socket. The socket is blocking */
    247. 

  247. #if ENABLE_CONNECT_UNIX
    248. 

  248. int connect_unix(const char* path) {
    249. 

  249. 	struct sockaddr_un addr;
    250. 

  250. 	int fd = -1;
    251. 

  251. 

  252. 	memset((void*)&addr, 0x0, sizeof(addr));
    253. 

  253. 	addr.sun_family = AF_UNIX;
    254. 

  254. 	strlcpy(addr.sun_path, path, sizeof(addr.sun_path));
    255. 

  255. 	fd = socket(PF_UNIX, SOCK_STREAM, 0);
    256. 

  256. 	if (fd < 0) {
    257. 

  257. 		TRACE(("Failed to open unix socket"))
    258. 

  258. 		return -1;
    259. 

  259. 	}
    260. 

  260. 	if (connect(fd, (struct sockaddr*)&addr, sizeof(addr)) < 0) {
    261. 

  261. 		TRACE(("Failed to connect to '%s' socket", path))
    262. 

  262. 		m_close(fd);
    263. 

  263. 		return -1;
    264. 

  264. 	}
    265. 

  265. 	return fd;
    266. 

  266. }
    267. 

  267. #endif
    268. 

  268. 

  269. /* Sets up a pipe for a, returning three non-blocking file descriptors
    270. 

  270.  * and the pid. exec_fn is the function that will actually execute the child process,
    271. 

  271.  * it will be run after the child has fork()ed, and is passed exec_data.
    272. 

  272.  * If ret_errfd == NULL then stderr will not be captured.
    273. 

  273.  * ret_pid can be passed as  NULL to discard the pid. */
    274. 

  274. int spawn_command(void(*exec_fn)(const void *user_data), const void *exec_data,
    275. 

  275. 		int *ret_writefd, int *ret_readfd, int *ret_errfd, pid_t *ret_pid) {
    276. 

  276. 	int infds[2];
    277. 

  277. 	int outfds[2];
    278. 

  278. 	int errfds[2];
    279. 

  279. 	pid_t pid;
    280. 

  280. 

  281. 	const int FDIN = 0;
    282. 

  282. 	const int FDOUT = 1;
    283. 

  283. 

  284. #if DROPBEAR_FUZZ
    285. 

  285. 	if (fuzz.fuzzing) {
    286. 

  286. 		return fuzz_spawn_command(ret_writefd, ret_readfd, ret_errfd, ret_pid);
    287. 

  287. 	}
    288. 

  288. #endif
    289. 

  289. 

  290. 	/* redirect stdin/stdout/stderr */
    291. 

  291. 	if (pipe(infds) != 0) {
    292. 

  292. 		return DROPBEAR_FAILURE;
    293. 

  293. 	}
    294. 

  294. 	if (pipe(outfds) != 0) {
    295. 

  295. 		return DROPBEAR_FAILURE;
    296. 

  296. 	}
    297. 

  297. 	if (ret_errfd && pipe(errfds) != 0) {
    298. 

  298. 		return DROPBEAR_FAILURE;
    299. 

  299. 	}
    300. 

  300. 

  301. #if DROPBEAR_VFORK
    302. 

  302. 	pid = vfork();
    303. 

  303. #else
    304. 

  304. 	pid = fork();
    305. 

  305. #endif
    306. 

  306. 

  307. 	if (pid < 0) {
    308. 

  308. 		return DROPBEAR_FAILURE;
    309. 

  309. 	}
    310. 

  310. 

  311. 	if (!pid) {
    312. 

  312. 		/* child */
    313. 

  313. 

  314. 		TRACE(("back to normal sigchld"))
    315. 

  315. 		/* Revert to normal sigchld handling */
    316. 

  316. 		if (signal(SIGCHLD, SIG_DFL) == SIG_ERR) {
    317. 

  317. 			dropbear_exit("signal() error");
    318. 

  318. 		}
    319. 

  319. 

  320. 		/* redirect stdin/stdout */
    321. 

  321. 

  322. 		if ((dup2(infds[FDIN], STDIN_FILENO) < 0) ||
    323. 

  323. 			(dup2(outfds[FDOUT], STDOUT_FILENO) < 0) ||
    324. 

  324. 			(ret_errfd && dup2(errfds[FDOUT], STDERR_FILENO) < 0)) {
    325. 

  325. 			TRACE(("leave noptycommand: error redirecting FDs"))
    326. 

  326. 			dropbear_exit("Child dup2() failure");
    327. 

  327. 		}
    328. 

  328. 

  329. 		close(infds[FDOUT]);
    330. 

  330. 		close(infds[FDIN]);
    331. 

  331. 		close(outfds[FDIN]);
    332. 

  332. 		close(outfds[FDOUT]);
    333. 

  333. 		if (ret_errfd)
    334. 

  334. 		{
    335. 

  335. 			close(errfds[FDIN]);
    336. 

  336. 			close(errfds[FDOUT]);
    337. 

  337. 		}
    338. 

  338. 

  339. 		exec_fn(exec_data);
    340. 

  340. 		/* not reached */
    341. 

  341. 		return DROPBEAR_FAILURE;
    342. 

  342. 	} else {
    343. 

  343. 		/* parent */
    344. 

  344. 		close(infds[FDIN]);
    345. 

  345. 		close(outfds[FDOUT]);
    346. 

  346. 

  347. 		setnonblocking(outfds[FDIN]);
    348. 

  348. 		setnonblocking(infds[FDOUT]);
    349. 

  349. 

  350. 		if (ret_errfd) {
    351. 

  351. 			close(errfds[FDOUT]);
    352. 

  352. 			setnonblocking(errfds[FDIN]);
    353. 

  353. 		}
    354. 

  354. 

  355. 		if (ret_pid) {
    356. 

  356. 			*ret_pid = pid;
    357. 

  357. 		}
    358. 

  358. 

  359. 		*ret_writefd = infds[FDOUT];
    360. 

  360. 		*ret_readfd = outfds[FDIN];
    361. 

  361. 		if (ret_errfd) {
    362. 

  362. 			*ret_errfd = errfds[FDIN];
    363. 

  363. 		}
    364. 

  364. 		return DROPBEAR_SUCCESS;
    365. 

  365. 	}
    366. 

  366. }
    367. 

  367. 

  368. /* Runs a command with "sh -c". Will close FDs (except stdin/stdout/stderr) and
    369. 

  369.  * re-enabled SIGPIPE. If cmd is NULL, will run a login shell.
    370. 

  370.  */
    371. 

  371. void run_shell_command(const char* cmd, unsigned int maxfd, char* usershell) {
    372. 

  372. 	char * argv[4];
    373. 

  373. 	char * baseshell = NULL;
    374. 

  374. 	unsigned int i;
    375. 

  375. 

  376. 	baseshell = basename(usershell);
    377. 

  377. 

  378. 	if (cmd != NULL) {
    379. 

  379. 		argv[0] = baseshell;
    380. 

  380. 	} else {
    381. 

  381. 		/* a login shell should be "-bash" for "/bin/bash" etc */
    382. 

  382. 		int len = strlen(baseshell) + 2; /* 2 for "-" */
    383. 

  383. 		argv[0] = (char*)m_malloc(len);
    384. 

  384. 		snprintf(argv[0], len, "-%s", baseshell);
    385. 

  385. 	}
    386. 

  386. 

  387. 	if (cmd != NULL) {
    388. 

  388. 		argv[1] = "-c";
    389. 

  389. 		argv[2] = (char*)cmd;
    390. 

  390. 		argv[3] = NULL;
    391. 

  391. 	} else {
    392. 

  392. 		/* construct a shell of the form "-bash" etc */
    393. 

  393. 		argv[1] = NULL;
    394. 

  394. 	}
    395. 

  395. 

  396. 	/* Re-enable SIGPIPE for the executed process */
    397. 

  397. 	if (signal(SIGPIPE, SIG_DFL) == SIG_ERR) {
    398. 

  398. 		dropbear_exit("signal() error");
    399. 

  399. 	}
    400. 

  400. 

  401. 	/* close file descriptors except stdin/stdout/stderr
    402. 

  402. 	 * Need to be sure FDs are closed here to avoid reading files as root */
    403. 

  403. 	for (i = 3; i <= maxfd; i++) {
    404. 

  404. 		m_close(i);
    405. 

  405. 	}
    406. 

  406. 

  407. 	execv(usershell, argv);
    408. 

  408. }
    409. 

  409. 

  410. #if DEBUG_TRACE
    411. 

  411. void printhex(const char * label, const unsigned char * buf, int len) {
    412. 

  412. 	int i, j;
    413. 

  413. 

  414. 	fprintf(stderr, "%s\n", label);
    415. 

  415. 	/* for each 16 byte line */
    416. 

  416. 	for (j = 0; j < len; j += 16) {
    417. 

  417. 		const int linelen = MIN(16, len - j);
    418. 

  418. 

  419. 		/* print hex digits */
    420. 

  420. 		for (i = 0; i < 16; i++) {
    421. 

  421. 			if (i < linelen) {
    422. 

  422. 				fprintf(stderr, "%02x", buf[j+i]);
    423. 

  423. 			} else {
    424. 

  424. 				fprintf(stderr, "  ");
    425. 

  425. 			}
    426. 

  426. 			// separator between pairs
    427. 

  427. 			if (i % 2 ==1) {
    428. 

  428. 				fprintf(stderr, " ");
    429. 

  429. 			}
    430. 

  430. 		}
    431. 

  431. 

  432. 		/* print characters */
    433. 

  433. 		fprintf(stderr, "  ");
    434. 

  434. 		for (i = 0; i < linelen; i++) {
    435. 

  435. 			char c = buf[j+i];
    436. 

  436. 			if (!isprint(c)) {
    437. 

  437. 				c = '.';
    438. 

  438. 			}
    439. 

  439. 			fputc(c, stderr);
    440. 

  440. 		}
    441. 

  441. 		fprintf(stderr, "\n");
    442. 

  442. 	}
    443. 

  443. }
    444. 

  444. 

  445. void printmpint(const char *label, mp_int *mp) {
    446. 

  446. 	buffer *buf = buf_new(1000);
    447. 

  447. 	buf_putmpint(buf, mp);
    448. 

  448. 	fprintf(stderr, "%d bits ", mp_count_bits(mp));
    449. 

  449. 	printhex(label, buf->data, buf->len);
    450. 

  450. 	buf_free(buf);
    451. 

  451. 

  452. }
    453. 

  453. #endif
    454. 

  454. 

  455. /* Strip all control characters from text (a null-terminated string), except
    456. 

  456.  * for '\n', '\r' and '\t'.
    457. 

  457.  * The result returned is a newly allocated string, this must be free()d after
    458. 

  458.  * use */
    459. 

  459. char * stripcontrol(const char * text) {
    460. 

  460. 

  461. 	char * ret;
    462. 

  462. 	int len, pos;
    463. 

  463. 	int i;
    464. 

  464. 	
    465. 

  465. 	len = strlen(text);
    466. 

  466. 	ret = m_malloc(len+1);
    467. 

  467. 

  468. 	pos = 0;
    469. 

  469. 	for (i = 0; i < len; i++) {
    470. 

  470. 		if ((text[i] <= '~' && text[i] >= ' ') /* normal printable range */
    471. 

  471. 				|| text[i] == '\n' || text[i] == '\r' || text[i] == '\t') {
    472. 

  472. 			ret[pos] = text[i];
    473. 

  473. 			pos++;
    474. 

  474. 		}
    475. 

  475. 	}
    476. 

  476. 	ret[pos] = 0x0;
    477. 

  477. 	return ret;
    478. 

  478. }
    479. 

  479. 			
    480. 

  480. 

  481. /* reads the contents of filename into the buffer buf, from the current
    482. 

  482.  * position, either to the end of the file, or the buffer being full.
    483. 

  483.  * Returns DROPBEAR_SUCCESS or DROPBEAR_FAILURE */
    484. 

  484. int buf_readfile(buffer* buf, const char* filename) {
    485. 

  485. 

  486. 	int fd = -1;
    487. 

  487. 	int len;
    488. 

  488. 	int maxlen;
    489. 

  489. 	int ret = DROPBEAR_FAILURE;
    490. 

  490. 

  491. 	fd = open(filename, O_RDONLY);
    492. 

  492. 

  493. 	if (fd < 0) {
    494. 

  494. 		goto out;
    495. 

  495. 	}
    496. 

  496. 	
    497. 

  497. 	do {
    498. 

  498. 		maxlen = buf->size - buf->pos;
    499. 

  499. 		len = read(fd, buf_getwriteptr(buf, maxlen), maxlen);
    500. 

  500. 		if (len < 0) {
    501. 

  501. 			if (errno == EINTR || errno == EAGAIN) {
    502. 

  502. 				continue;
    503. 

  503. 			}
    504. 

  504. 			goto out;
    505. 

  505. 		}
    506. 

  506. 		buf_incrwritepos(buf, len);
    507. 

  507. 	} while (len < maxlen && len > 0);
    508. 

  508. 

  509. 	ret = DROPBEAR_SUCCESS;
    510. 

  510. 

  511. out:
    512. 

  512. 	if (fd >= 0) {
    513. 

  513. 		m_close(fd);
    514. 

  514. 	}
    515. 

  515. 	return ret;
    516. 

  516. }
    517. 

  517. 

  518. /* get a line from the file into buffer in the style expected for an
    519. 

  519.  * authkeys file.
    520. 

  520.  * Will return DROPBEAR_SUCCESS if data is read, or DROPBEAR_FAILURE on EOF.*/
    521. 

  521. /* Only used for ~/.ssh/known_hosts and ~/.ssh/authorized_keys */
    522. 

  522. #if DROPBEAR_CLIENT || DROPBEAR_SVR_PUBKEY_AUTH
    523. 

  523. int buf_getline(buffer * line, FILE * authfile) {
    524. 

  524. 

  525. 	int c = EOF;
    526. 

  526. 

  527. 	buf_setpos(line, 0);
    528. 

  528. 	buf_setlen(line, 0);
    529. 

  529. 

  530. 	while (line->pos < line->size) {
    531. 

  531. 

  532. 		c = fgetc(authfile); /*getc() is weird with some uClibc systems*/
    533. 

  533. 		if (c == EOF || c == '\n' || c == '\r') {
    534. 

  534. 			goto out;
    535. 

  535. 		}
    536. 

  536. 

  537. 		buf_putbyte(line, (unsigned char)c);
    538. 

  538. 	}
    539. 

  539. 

  540. 	TRACE(("leave getauthline: line too long"))
    541. 

  541. 	/* We return success, but the line length will be zeroed - ie we just
    542. 

  542. 	 * ignore that line */
    543. 

  543. 	buf_setlen(line, 0);
    544. 

  544. 

  545. out:
    546. 

  546. 

  547. 

  548. 	/* if we didn't read anything before EOF or error, exit */
    549. 

  549. 	if (c == EOF && line->pos == 0) {
    550. 

  550. 		return DROPBEAR_FAILURE;
    551. 

  551. 	} else {
    552. 

  552. 		buf_setpos(line, 0);
    553. 

  553. 		return DROPBEAR_SUCCESS;
    554. 

  554. 	}
    555. 

  555. 

  556. }	
    557. 

  557. #endif
    558. 

  558. 

  559. /* make sure that the socket closes */
    560. 

  560. void m_close(int fd) {
    561. 

  561. 	int val;
    562. 

  562. 

  563. 	if (fd < 0) {
    564. 

  564. 		return;
    565. 

  565. 	}
    566. 

  566. 

  567. 	do {
    568. 

  568. 		val = close(fd);
    569. 

  569. 	} while (val < 0 && errno == EINTR);
    570. 

  570. 

  571. 	if (val < 0 && errno != EBADF) {
    572. 

  572. 		/* Linux says EIO can happen */
    573. 

  573. 		dropbear_exit("Error closing fd %d, %s", fd, strerror(errno));
    574. 

  574. 	}
    575. 

  575. }
    576. 

  576. 	
    577. 

  577. void setnonblocking(int fd) {
    578. 

  578. 

  579. 	TRACE(("setnonblocking: %d", fd))
    580. 

  580. 

  581. #if DROPBEAR_FUZZ
    582. 

  582. 	if (fuzz.fuzzing) {
    583. 

  583. 		return;
    584. 

  584. 	}
    585. 

  585. #endif
    586. 

  586. 

  587. 	if (fcntl(fd, F_SETFL, O_NONBLOCK) < 0) {
    588. 

  588. 		if (errno == ENODEV) {
    589. 

  589. 			/* Some devices (like /dev/null redirected in)
    590. 

  590. 			 * can't be set to non-blocking */
    591. 

  591. 			TRACE(("ignoring ENODEV for setnonblocking"))
    592. 

  592. 		} else {
    593. 

  593. 		{
    594. 

  594. 			dropbear_exit("Couldn't set nonblocking");
    595. 

  595. 		}
    596. 

  596. 		}
    597. 

  597. 	}
    598. 

  598. 	TRACE(("leave setnonblocking"))
    599. 

  599. }
    600. 

  600. 

  601. void disallow_core() {
    602. 

  602. 	struct rlimit lim = {0};
    603. 

  603. 	if (getrlimit(RLIMIT_CORE, &lim) < 0) {
    604. 

  604. 		TRACE(("getrlimit(RLIMIT_CORE) failed"));
    605. 

  605. 	}
    606. 

  606. 	lim.rlim_cur = 0;
    607. 

  607. 	if (setrlimit(RLIMIT_CORE, &lim) < 0) {
    608. 

  608. 		TRACE(("setrlimit(RLIMIT_CORE) failed"));
    609. 

  609. 	}
    610. 

  610. }
    611. 

  611. 

  612. /* Returns DROPBEAR_SUCCESS or DROPBEAR_FAILURE, with the result in *val */
    613. 

  613. int m_str_to_uint(const char* str, unsigned int *val) {
    614. 

  614. 	unsigned long l;
    615. 

  615. 	char *endp;
    616. 

  616. 

  617. 	l = strtoul(str, &endp, 10);
    618. 

  618. 

  619. 	if (endp == str || *endp != '\0') {
    620. 

  620. 		/* parse error */
    621. 

  621. 		return DROPBEAR_FAILURE;
    622. 

  622. 	}
    623. 

  623. 

  624. 	/* The c99 spec doesn't actually seem to define EINVAL, but most platforms
    625. 

  625. 	 * I've looked at mention it in their manpage */
    626. 

  626. 	if ((l == 0 && errno == EINVAL)
    627. 

  627. 		|| (l == ULONG_MAX && errno == ERANGE)
    628. 

  628. 		|| (l > UINT_MAX)) {
    629. 

  629. 		return DROPBEAR_FAILURE;
    630. 

  630. 	} else {
    631. 

  631. 		*val = l;
    632. 

  632. 		return DROPBEAR_SUCCESS;
    633. 

  633. 	}
    634. 

  634. }
    635. 

  635. 

  636. /* Returns malloced path. inpath beginning with '~/' expanded,
    637. 

  637.    otherwise returned as-is */
    638. 

  638. char * expand_homedir_path(const char *inpath) {
    639. 

  639. 	struct passwd *pw = NULL;
    640. 

  640. 	if (strncmp(inpath, "~/", 2) == 0) {
    641. 

  641. 		char *homedir = getenv("HOME");
    642. 

  642. 

  643. 		if (!homedir) {
    644. 

  644. 			pw = getpwuid(getuid());
    645. 

  645. 			if (pw) {
    646. 

  646. 				homedir = pw->pw_dir;
    647. 

  647. 			}
    648. 

  648. 		}
    649. 

  649. 

  650. 		if (homedir) {
    651. 

  651. 			int len = strlen(inpath)-2 + strlen(homedir) + 2;
    652. 

  652. 			char *buf = m_malloc(len);
    653. 

  653. 			snprintf(buf, len, "%s/%s", homedir, inpath+2);
    654. 

  654. 			return buf;
    655. 

  655. 		}
    656. 

  656. 	}
    657. 

  657. 

  658. 	/* Fallback */
    659. 

  659. 	return m_strdup(inpath);
    660. 

  660. }
    661. 

  661. 

  662. int constant_time_memcmp(const void* a, const void *b, size_t n)
    663. 

  663. {
    664. 

  664. 	const char *xa = a, *xb = b;
    665. 

  665. 	uint8_t c = 0;
    666. 

  666. 	size_t i;
    667. 

  667. 	for (i = 0; i < n; i++)
    668. 

  668. 	{
    669. 

  669. 		c |= (xa[i] ^ xb[i]);
    670. 

  670. 	}
    671. 

  671. 	return c;
    672. 

  672. }
    673. 

  673. 

  674. /* higher-resolution monotonic timestamp, falls back to gettimeofday */
    675. 

  675. void gettime_wrapper(struct timespec *now) {
    676. 

  676. 	struct timeval tv;
    677. 

  677. #if DROPBEAR_FUZZ
    678. 

  678. 	if (fuzz.fuzzing) {
    679. 

  679. 		/* time stands still when fuzzing */
    680. 

  680. 		now->tv_sec = 5;
    681. 

  681. 		now->tv_nsec = 0;
    682. 

  682. 	}
    683. 

  683. #endif
    684. 

  684. 

  685. #if defined(HAVE_CLOCK_GETTIME) && defined(CLOCK_MONOTONIC)
    686. 

  686. 	/* POSIX monotonic clock. Newer Linux, BSD, MacOSX >10.12 */
    687. 

  687. 	if (clock_gettime(CLOCK_MONOTONIC, now) == 0) {
    688. 

  688. 		return;
    689. 

  689. 	}
    690. 

  690. #endif
    691. 

  691. 

  692. #if defined(__linux__) && defined(SYS_clock_gettime)
    693. 

  693. 	{
    694. 

  694. 	/* Old linux toolchain - kernel might support it but not the build headers */
    695. 

  695. 	/* Also glibc <2.17 requires -lrt which we neglect to add */
    696. 

  696. 	static int linux_monotonic_failed = 0;
    697. 

  697. 	if (!linux_monotonic_failed) {
    698. 

  698. 		/* CLOCK_MONOTONIC isn't in some headers */
    699. 

  699. 		int clock_source_monotonic = 1; 
    700. 

  700. 		if (syscall(SYS_clock_gettime, clock_source_monotonic, now) == 0) {
    701. 

  701. 			return;
    702. 

  702. 		} else {
    703. 

  703. 			/* Don't try again */
    704. 

  704. 			linux_monotonic_failed = 1;
    705. 

  705. 		}
    706. 

  706. 	}
    707. 

  707. 	}
    708. 

  708. #endif /* linux fallback clock_gettime */
    709. 

  709. 

  710. #if defined(HAVE_MACH_ABSOLUTE_TIME)
    711. 

  711. 	{
    712. 

  712. 	/* OS X pre 10.12, see https://developer.apple.com/library/mac/qa/qa1398/_index.html */
    713. 

  713. 	static mach_timebase_info_data_t timebase_info;
    714. 

  714. 	uint64_t scaled_time;
    715. 

  715. 	if (timebase_info.denom == 0) {
    716. 

  716. 		mach_timebase_info(&timebase_info);
    717. 

  717. 	}
    718. 

  718. 	scaled_time = mach_absolute_time() * timebase_info.numer / timebase_info.denom;
    719. 

  719. 	now->tv_sec = scaled_time / 1000000000;
    720. 

  720. 	now->tv_nsec = scaled_time % 1000000000;
    721. 

  721. 	}
    722. 

  722. #endif /* osx mach_absolute_time */
    723. 

  723. 

  724. 	/* Fallback for everything else - this will sometimes go backwards */
    725. 

  725. 	gettimeofday(&tv, NULL);
    726. 

  726. 	now->tv_sec = tv.tv_sec;
    727. 

  727. 	now->tv_nsec = 1000*tv.tv_usec;
    728. 

  728. }
    729. 

  729. 

  730. /* second-resolution monotonic timestamp */
    731. 

  731. time_t monotonic_now() {
    732. 

  732. 	struct timespec ts;
    733. 

  733. 	gettime_wrapper(&ts);
    734. 

  734. 	return ts.tv_sec;
    735. 

  735. }
    736. 

  736. 

  737. void fsync_parent_dir(const char* fn) {
    738. 

  738. #ifdef HAVE_LIBGEN_H
    739. 

  739. 	char *fn_dir = m_strdup(fn);
    740. 

  740. 	char *dir = dirname(fn_dir);
    741. 

  741. 	int dirfd = open(dir, O_RDONLY);
    742. 

  742. 

  743. 	if (dirfd != -1) {
    744. 

  744. 		if (fsync(dirfd) != 0) {
    745. 

  745. 			TRACE(("fsync of directory %s failed: %s", dir, strerror(errno)))
    746. 

  746. 		}
    747. 

  747. 		m_close(dirfd);
    748. 

  748. 	} else {
    749. 

  749. 		TRACE(("error opening directory %s for fsync: %s", dir, strerror(errno)))
    750. 

  750. 	}
    751. 

  751. 

  752. 	m_free(fn_dir);
    753. 

  753. #endif
    754. 

  754. }
    755. 

  755. 

  756. int fd_read_pending(int fd) {
    757. 

  757. 	fd_set fds;
    758. 

  758. 	struct timeval timeout;
    759. 

  759. 

  760. 	DROPBEAR_FD_ZERO(&fds);
    761. 

  761. 	FD_SET(fd, &fds);
    762. 

  762. 	while (1) {
    763. 

  763. 		timeout.tv_sec = 0;
    764. 

  764. 		timeout.tv_usec = 0;
    765. 

  765. 		if (select(fd+1, &fds, NULL, NULL, &timeout) < 0) {
    766. 

  766. 			if (errno == EINTR) {
    767. 

  767. 				continue;
    768. 

  768. 			}
    769. 

  769. 			return 0;
    770. 

  770. 		}
    771. 

  771. 		return FD_ISSET(fd, &fds);
    772. 

  772. 	}
    773. 

  773. }
    774. 

  774. 

  775. int m_snprintf(char *str, size_t size, const char *format, ...) {
    776. 

  776. 	va_list param;
    777. 

  777. 	int ret;
    778. 

  778. 

  779. 	va_start(param, format);
    780. 

  780. 	ret = vsnprintf(str, size, format, param);
    781. 

  781. 	va_end(param);
    782. 

  782. 	if (ret < 0) {
    783. 

  783. 		dropbear_exit("snprintf failed");
    784. 

  784. 	}
    785. 

  785. 	return ret;
    786. 

  786. }
    787.