dropbear: svr-chansession.c comparison

comparison svr-chansession.c @ 579:8c737cd7c1af

merge of '48fdaa8706d1acda35e9d564adc9a1fbc96c18c8' and '658fd03abd21e0da7c4c89b9fff9dc693c72daae'

author	Matt Johnston <matt@ucc.asn.au>
date	Sat, 27 Feb 2010 11:53:18 +0000
parents	8fd0ac8c8cab
children	6cb1bd7be8b3

comparison

equal deleted inserted replaced

-:69e98c45db7c
+:8c737cd7c1af
 	dropbear_assert(channel->typedata == NULL);
 	chansess = (struct ChanSess*)m_malloc(sizeof(struct ChanSess));
 	chansess->cmd = NULL;
+	chansess->connection_string = NULL;
 	chansess->pid = 0;
 	/* pty details */
 	chansess->master = -1;
 	chansess->slave = -1;
 	return 0;
 }
+static struct logininfo*
+chansess_login_alloc(struct ChanSess *chansess) {
+	struct logininfo * li;
+	li = login_alloc_entry(chansess->pid, ses.authstate.username,
+			svr_ses.remotehost, chansess->tty);
+	return li;
+}
 /* clean a session channel */
 static void closechansess(struct Channel *channel) {
 	struct ChanSess *chansess;
 	unsigned int i;
 	m_free(chansess->cmd);
 	m_free(chansess->term);
 	if (chansess->tty) {
 		/* write the utmp/wtmp login record */
-		li = login_alloc_entry(chansess->pid, ses.authstate.username,
+		li = chansess_login_alloc(chansess);
-				ses.remotehost, chansess->tty);
 		login_logout(li);
 		login_free_entry(li);
 		pty_release(chansess->tty);
 		m_free(chansess->tty);
 #ifndef DISABLE_X11FWD
 	x11cleanup(chansess);
 #endif
 #ifndef DISABLE_AGENTFWD
-	agentcleanup(chansess);
+	svr_agentcleanup(chansess);
 #endif
 	/* clear child pid entries */
 	for (i = 0; i < svr_ses.childpidsize; i++) {
 		if (svr_ses.childpids[i].chansess == chansess) {
 	} else if (strcmp(type, "x11-req") == 0) {
 		ret = x11req(chansess);
 #endif
 #ifndef DISABLE_AGENTFWD
 	} else if (strcmp(type, "[email protected]") == 0) {
-		ret = agentreq(chansess);
+		ret = svr_agentreq(chansess);
 #endif
 	} else if (strcmp(type, "signal") == 0) {
 		ret = sessionsignal(chansess);
 	} else {
 		/* etc, todo "env", "subsystem" */
 	TRACE(("leave sessionpty"))
 	return DROPBEAR_SUCCESS;
 }
+static char* make_connection_string() {
+	char *local_ip, *local_port, *remote_ip, *remote_port;
+	size_t len;
+	char *ret;
+	get_socket_address(ses.sock_in, &local_ip, &local_port, &remote_ip, &remote_port, 0);
+	len = strlen(local_ip) + strlen(local_port) + strlen(remote_ip) + strlen(remote_port) + 4;
+	ret = m_malloc(len);
+	snprintf(ret, len, "%s %s %s %s", remote_ip, remote_port, local_ip, local_port);
+	m_free(local_ip);
+	m_free(local_port);
+	m_free(remote_ip);
+	m_free(remote_port);
+	return ret;
+}
 /* Handle a command request from the client. This is used for both shell
 * and command-execution requests, and passes the command to
 * noptycommand or ptycommand as appropriate.
 * Returns DROPBEAR_SUCCESS or DROPBEAR_FAILURE */
 static int sessioncommand(struct Channel *channel, struct ChanSess *chansess,
 		 * one command (which fails), then try another. Ie fallback
 		 * from sftp to scp */
 		return DROPBEAR_FAILURE;
 	}
-	/* take public key option 'command' into account */
-	svr_pubkey_set_forced_command(chansess);
 	if (iscmd) {
 		/* "exec" */
 		if (chansess->cmd == NULL) {
 			chansess->cmd = buf_getstring(ses.payload, &cmdlen);
 				m_free(chansess->cmd);
 				return DROPBEAR_FAILURE;
 			}
 		}
 	}
+	/* take public key option 'command' into account */
+	svr_pubkey_set_forced_command(chansess);
 #ifdef LOG_COMMANDS
 	if (chansess->cmd) {
 		dropbear_log(LOG_INFO, "user %s executing '%s'",
 						ses.authstate.pw_name, chansess->cmd);
 		dropbear_log(LOG_INFO, "user %s executing login shell",
 						ses.authstate.pw_name);
 	}
 #endif
+	/* uClinux will vfork(), so there'll be a race as
+	connection_string is freed below. */
+#ifndef __uClinux__
+	chansess->connection_string = make_connection_string();
+#endif
 	if (chansess->term == NULL) {
 		/* no pty */
 		ret = noptycommand(channel, chansess);
 	} else {
 		/* want pty */
 		ret = ptycommand(channel, chansess);
 	}
+#ifndef __uClinux__
+	m_free(chansess->connection_string);
+#endif
 	if (ret == DROPBEAR_FAILURE) {
 		m_free(chansess->cmd);
 	}
 	return ret;
 		close(chansess->slave);
 		/* write the utmp/wtmp login record - must be after changing the
 		 * terminal used for stdout with the dup2 above */
-		li= login_alloc_entry(getpid(), ses.authstate.username,
+		li = chansess_login_alloc(chansess);
-				ses.remotehost, chansess->tty);
 		login_login(li);
 		login_free_entry(li);
-		m_free(chansess->tty);
 #ifdef DO_MOTD
 		if (svr_opts.domotd) {
 			/* don't show the motd if ~/.hushlogin exists */
 	addnewvar("PATH", DEFAULT_PATH);
 	if (chansess->term != NULL) {
 		addnewvar("TERM", chansess->term);
 	}
+	if (chansess->tty) {
+		addnewvar("SSH_TTY", chansess->tty);
+	}
+	if (chansess->connection_string) {
+		addnewvar("SSH_CONNECTION", chansess->connection_string);
+	}
+#ifdef ENABLE_SVR_PUBKEY_OPTIONS
+	if (ses.authstate.pubkey_options &&
+			ses.authstate.pubkey_options->original_command) {
+		addnewvar("SSH_ORIGINAL_COMMAND",
+			ses.authstate.pubkey_options->original_command);
+	}
+#endif
 	/* change directory */
 	if (chdir(ses.authstate.pw_dir) < 0) {
 		dropbear_exit("error changing directory");
 	}
 	/* set up X11 forwarding if enabled */
 	x11setauth(chansess);
 #endif
 #ifndef DISABLE_AGENTFWD
 	/* set up agent env variable */
-	agentset(chansess);
+	svr_agentset(chansess);
 #endif
 	usershell = m_strdup(get_user_shell());
 	run_shell_command(chansess->cmd, ses.maxfd, usershell);

Mercurial > dropbear

comparison svr-chansession.c @ 579:8c737cd7c1af