[u/mdw/putty] / unix / uxcons.c

/*
 * uxcons.c: various interactive-prompt routines shared between the
 * Unix console PuTTY tools
 */

#include <stdio.h>
#include <stdlib.h>
#include <stdarg.h>
#include <assert.h>

#include <termios.h>
#include <unistd.h>
#include <fcntl.h>

#include "putty.h"
#include "storage.h"
#include "ssh.h"

int console_batch_mode = FALSE;

static void *console_logctx = NULL;

static struct termios orig_termios_stderr;
static int stderr_is_a_tty;

void stderr_tty_init()
{
    /* Ensure that if stderr is a tty, we can get it back to a sane state. */
    if ((flags & FLAG_STDERR_TTY) && isatty(STDERR_FILENO)) {
	stderr_is_a_tty = TRUE;
	tcgetattr(STDERR_FILENO, &orig_termios_stderr);
    }
}

void premsg(struct termios *cf)
{
    if (stderr_is_a_tty) {
	tcgetattr(STDERR_FILENO, cf);
	tcsetattr(STDERR_FILENO, TCSADRAIN, &orig_termios_stderr);
    }
}
void postmsg(struct termios *cf)
{
    if (stderr_is_a_tty)
	tcsetattr(STDERR_FILENO, TCSADRAIN, cf);
}

/*
 * Clean up and exit.
 */
void cleanup_exit(int code)
{
    /*
     * Clean up.
     */
    sk_cleanup();
    random_save_seed();
    exit(code);
}

void set_busy_status(void *frontend, int status)
{
}

void update_specials_menu(void *frontend)
{
}

void notify_remote_exit(void *frontend)
{
}

void timer_change_notify(long next)
{
}

int verify_ssh_host_key(void *frontend, char *host, int port, char *keytype,
                        char *keystr, char *fingerprint,
                        void (*callback)(void *ctx, int result), void *ctx)
{
    int ret;

    static const char absentmsg_batch[] =
	"The server's host key is not cached. You have no guarantee\n"
	"that the server is the computer you think it is.\n"
	"The server's %s key fingerprint is:\n"
	"%s\n"
	"Connection abandoned.\n";
    static const char absentmsg[] =
	"The server's host key is not cached. You have no guarantee\n"
	"that the server is the computer you think it is.\n"
	"The server's %s key fingerprint is:\n"
	"%s\n"
	"If you trust this host, enter \"y\" to add the key to\n"
	"PuTTY's cache and carry on connecting.\n"
	"If you want to carry on connecting just once, without\n"
	"adding the key to the cache, enter \"n\".\n"
	"If you do not trust this host, press Return to abandon the\n"
	"connection.\n"
	"Store key in cache? (y/n) ";

    static const char wrongmsg_batch[] =
	"WARNING - POTENTIAL SECURITY BREACH!\n"
	"The server's host key does not match the one PuTTY has\n"
	"cached. This means that either the server administrator\n"
	"has changed the host key, or you have actually connected\n"
	"to another computer pretending to be the server.\n"
	"The new %s key fingerprint is:\n"
	"%s\n"
	"Connection abandoned.\n";
    static const char wrongmsg[] =
	"WARNING - POTENTIAL SECURITY BREACH!\n"
	"The server's host key does not match the one PuTTY has\n"
	"cached. This means that either the server administrator\n"
	"has changed the host key, or you have actually connected\n"
	"to another computer pretending to be the server.\n"
	"The new %s key fingerprint is:\n"
	"%s\n"
	"If you were expecting this change and trust the new key,\n"
	"enter \"y\" to update PuTTY's cache and continue connecting.\n"
	"If you want to carry on connecting but without updating\n"
	"the cache, enter \"n\".\n"
	"If you want to abandon the connection completely, press\n"
	"Return to cancel. Pressing Return is the ONLY guaranteed\n"
	"safe choice.\n"
	"Update cached key? (y/n, Return cancels connection) ";

    static const char abandoned[] = "Connection abandoned.\n";

    char line[32];
    struct termios cf;

    /*
     * Verify the key.
     */
    ret = verify_host_key(host, port, keytype, keystr);

    if (ret == 0)		       /* success - key matched OK */
	return 1;

    premsg(&cf);
    if (ret == 2) {		       /* key was different */
	if (console_batch_mode) {
	    fprintf(stderr, wrongmsg_batch, keytype, fingerprint);
	    return 0;
	}
	fprintf(stderr, wrongmsg, keytype, fingerprint);
	fflush(stderr);
    }
    if (ret == 1) {		       /* key was absent */
	if (console_batch_mode) {
	    fprintf(stderr, absentmsg_batch, keytype, fingerprint);
	    return 0;
	}
	fprintf(stderr, absentmsg, keytype, fingerprint);
	fflush(stderr);
    }

    {
	struct termios oldmode, newmode;
	tcgetattr(0, &oldmode);
	newmode = oldmode;
	newmode.c_lflag |= ECHO | ISIG | ICANON;
	tcsetattr(0, TCSANOW, &newmode);
	line[0] = '\0';
	if (read(0, line, sizeof(line) - 1) <= 0)
	    /* handled below */;
	tcsetattr(0, TCSANOW, &oldmode);
    }

    if (line[0] != '\0' && line[0] != '\r' && line[0] != '\n') {
	if (line[0] == 'y' || line[0] == 'Y')
	    store_host_key(host, port, keytype, keystr);
	postmsg(&cf);
        return 1;
    } else {
	fprintf(stderr, abandoned);
	postmsg(&cf);
        return 0;
    }
}

/*
 * Ask whether the selected algorithm is acceptable (since it was
 * below the configured 'warn' threshold).
 */
int askalg(void *frontend, const char *algtype, const char *algname,
	   void (*callback)(void *ctx, int result), void *ctx)
{
    static const char msg[] =
	"The first %s supported by the server is\n"
	"%s, which is below the configured warning threshold.\n"
	"Continue with connection? (y/n) ";
    static const char msg_batch[] =
	"The first %s supported by the server is\n"
	"%s, which is below the configured warning threshold.\n"
	"Connection abandoned.\n";
    static const char abandoned[] = "Connection abandoned.\n";

    char line[32];
    struct termios cf;

    premsg(&cf);
    if (console_batch_mode) {
	fprintf(stderr, msg_batch, algtype, algname);
	return 0;
    }

    fprintf(stderr, msg, algtype, algname);
    fflush(stderr);

    {
	struct termios oldmode, newmode;
	tcgetattr(0, &oldmode);
	newmode = oldmode;
	newmode.c_lflag |= ECHO | ISIG | ICANON;
	tcsetattr(0, TCSANOW, &newmode);
	line[0] = '\0';
	if (read(0, line, sizeof(line) - 1) <= 0)
	    /* handled below */;
	tcsetattr(0, TCSANOW, &oldmode);
    }

    if (line[0] == 'y' || line[0] == 'Y') {
	postmsg(&cf);
	return 1;
    } else {
	fprintf(stderr, abandoned);
	postmsg(&cf);
	return 0;
    }
}

/*
 * Ask whether to wipe a session log file before writing to it.
 * Returns 2 for wipe, 1 for append, 0 for cancel (don't log).
 */
int askappend(void *frontend, Filename *filename,
	      void (*callback)(void *ctx, int result), void *ctx)
{
    static const char msgtemplate[] =
	"The session log file \"%.*s\" already exists.\n"
	"You can overwrite it with a new session log,\n"
	"append your session log to the end of it,\n"
	"or disable session logging for this session.\n"
	"Enter \"y\" to wipe the file, \"n\" to append to it,\n"
	"or just press Return to disable logging.\n"
	"Wipe the log file? (y/n, Return cancels logging) ";

    static const char msgtemplate_batch[] =
	"The session log file \"%.*s\" already exists.\n"
	"Logging will not be enabled.\n";

    char line[32];
    struct termios cf;

    premsg(&cf);
    if (console_batch_mode) {
	fprintf(stderr, msgtemplate_batch, FILENAME_MAX, filename->path);
	fflush(stderr);
	return 0;
    }
    fprintf(stderr, msgtemplate, FILENAME_MAX, filename->path);
    fflush(stderr);

    {
	struct termios oldmode, newmode;
	tcgetattr(0, &oldmode);
	newmode = oldmode;
	newmode.c_lflag |= ECHO | ISIG | ICANON;
	tcsetattr(0, TCSANOW, &newmode);
	line[0] = '\0';
	if (read(0, line, sizeof(line) - 1) <= 0)
	    /* handled below */;
	tcsetattr(0, TCSANOW, &oldmode);
    }

    postmsg(&cf);
    if (line[0] == 'y' || line[0] == 'Y')
	return 2;
    else if (line[0] == 'n' || line[0] == 'N')
	return 1;
    else
	return 0;
}

/*
 * Warn about the obsolescent key file format.
 * 
 * Uniquely among these functions, this one does _not_ expect a
 * frontend handle. This means that if PuTTY is ported to a
 * platform which requires frontend handles, this function will be
 * an anomaly. Fortunately, the problem it addresses will not have
 * been present on that platform, so it can plausibly be
 * implemented as an empty function.
 */
void old_keyfile_warning(void)
{
    static const char message[] =
	"You are loading an SSH-2 private key which has an\n"
	"old version of the file format. This means your key\n"
	"file is not fully tamperproof. Future versions of\n"
	"PuTTY may stop supporting this private key format,\n"
	"so we recommend you convert your key to the new\n"
	"format.\n"
	"\n"
	"Once the key is loaded into PuTTYgen, you can perform\n"
	"this conversion simply by saving it again.\n";

    struct termios cf;
    premsg(&cf);
    fputs(message, stderr);
    postmsg(&cf);
}

void console_provide_logctx(void *logctx)
{
    console_logctx = logctx;
}

void logevent(void *frontend, const char *string)
{
    struct termios cf;
    premsg(&cf);
    if (console_logctx)
	log_eventlog(console_logctx, string);
    postmsg(&cf);
}

/*
 * Special functions to read and print to the console for password
 * prompts and the like. Uses /dev/tty or stdin/stderr, in that order
 * of preference; also sanitises escape sequences out of the text, on
 * the basis that it might have been sent by a hostile SSH server
 * doing malicious keyboard-interactive.
 */
static void console_open(FILE **outfp, int *infd)
{
    int fd;

    if ((fd = open("/dev/tty", O_RDWR)) >= 0) {
        *infd = fd;
        *outfp = fdopen(*infd, "w");
    } else {
        *infd = 0;
        *outfp = stderr;
    }
}
static void console_close(FILE *outfp, int infd)
{
    if (outfp != stderr)
        fclose(outfp);             /* will automatically close infd too */
}

static void console_prompt_text(FILE *outfp, const char *data, int len)
{
    int i;

    for (i = 0; i < len; i++)
	if ((data[i] & 0x60) || (data[i] == '\n'))
	    fputc(data[i], outfp);
    fflush(outfp);
}

int console_get_userpass_input(prompts_t *p, unsigned char *in, int inlen)
{
    size_t curr_prompt;
    FILE *outfp = NULL;
    int infd;

    /*
     * Zero all the results, in case we abort half-way through.
     */
    {
	int i;
	for (i = 0; i < p->n_prompts; i++)
            prompt_set_result(p->prompts[i], "");
    }

    if (p->n_prompts && console_batch_mode)
	return 0;

    console_open(&outfp, &infd);

    /*
     * Preamble.
     */
    /* We only print the `name' caption if we have to... */
    if (p->name_reqd && p->name) {
	size_t l = strlen(p->name);
	console_prompt_text(outfp, p->name, l);
	if (p->name[l-1] != '\n')
	    console_prompt_text(outfp, "\n", 1);
    }
    /* ...but we always print any `instruction'. */
    if (p->instruction) {
	size_t l = strlen(p->instruction);
	console_prompt_text(outfp, p->instruction, l);
	if (p->instruction[l-1] != '\n')
	    console_prompt_text(outfp, "\n", 1);
    }

    for (curr_prompt = 0; curr_prompt < p->n_prompts; curr_prompt++) {

	struct termios oldmode, newmode;
	int len;
	prompt_t *pr = p->prompts[curr_prompt];

	tcgetattr(infd, &oldmode);
	newmode = oldmode;
	newmode.c_lflag |= ISIG | ICANON;
	if (!pr->echo)
	    newmode.c_lflag &= ~ECHO;
	else
	    newmode.c_lflag |= ECHO;
	tcsetattr(infd, TCSANOW, &newmode);

	console_prompt_text(outfp, pr->prompt, strlen(pr->prompt));

        len = 0;
        while (1) {
            int ret;

            prompt_ensure_result_size(pr, len * 5 / 4 + 512);
            ret = read(infd, pr->result + len, pr->resultsize - len - 1);
            if (ret <= 0) {
                len = -1;
                break;
            }
            len += ret;
            if (pr->result[len - 1] == '\n') {
                len--;
                break;
            }
        }

	tcsetattr(infd, TCSANOW, &oldmode);

	if (!pr->echo)
	    console_prompt_text(outfp, "\n", 1);

        if (len < 0) {
            console_close(outfp, infd);
            return 0;                  /* failure due to read error */
        }

	pr->result[len] = '\0';
    }

    console_close(outfp, infd);

    return 1; /* success */
}

void frontend_keypress(void *handle)
{
    /*
     * This is nothing but a stub, in console code.
     */
    return;
}

int is_interactive(void)
{
    return isatty(0);
}

/*
 * X11-forwarding-related things suitable for console.
 */

char *platform_get_x_display(void) {
    return dupstr(getenv("DISPLAY"));
}
Commit	Line	Data
c5e438ec	1	/*
	2	* uxcons.c: various interactive-prompt routines shared between the
	3	* Unix console PuTTY tools
	4	*/
	5
	6	#include <stdio.h>
	7	#include <stdlib.h>
	8	#include <stdarg.h>
	9	#include <assert.h>
e1cef38a	10
c5e438ec	11	#include <termios.h>
c5e438ec	12	#include <unistd.h>
e1cef38a	13	#include <fcntl.h>
c5e438ec	14
	15	#include "putty.h"
	16	#include "storage.h"
	17	#include "ssh.h"
	18
	19	int console_batch_mode = FALSE;
	20
b51259f6	21	static void *console_logctx = NULL;
b51259f6	22
f7397dc6	23	static struct termios orig_termios_stderr;
	24	static int stderr_is_a_tty;
	25
	26	void stderr_tty_init()
	27	{
	28	/* Ensure that if stderr is a tty, we can get it back to a sane state. */
	29	if ((flags & FLAG_STDERR_TTY) && isatty(STDERR_FILENO)) {
	30	stderr_is_a_tty = TRUE;
	31	tcgetattr(STDERR_FILENO, &orig_termios_stderr);
	32	}
	33	}
	34
	35	void premsg(struct termios *cf)
	36	{
	37	if (stderr_is_a_tty) {
	38	tcgetattr(STDERR_FILENO, cf);
	39	tcsetattr(STDERR_FILENO, TCSADRAIN, &orig_termios_stderr);
	40	}
	41	}
	42	void postmsg(struct termios *cf)
	43	{
	44	if (stderr_is_a_tty)
	45	tcsetattr(STDERR_FILENO, TCSADRAIN, cf);
	46	}
	47
c5e438ec	48	/*
	49	* Clean up and exit.
	50	*/
	51	void cleanup_exit(int code)
	52	{
	53	/*
	54	* Clean up.
	55	*/
	56	sk_cleanup();
e85da6a5	57	random_save_seed();
c5e438ec	58	exit(code);
	59	}
	60
755e0524	61	void set_busy_status(void *frontend, int status)
	62	{
	63	}
	64
125105d1	65	void update_specials_menu(void *frontend)
	66	{
	67	}
	68
39934deb	69	void notify_remote_exit(void *frontend)
	70	{
	71	}
	72
	73	void timer_change_notify(long next)
	74	{
	75	}
	76
3d9449a1	77	int verify_ssh_host_key(void frontend, char host, int port, char *keytype,
	78	char keystr, char fingerprint,
	79	void (callback)(void ctx, int result), void *ctx)
c5e438ec	80	{
	81	int ret;
	82
	83	static const char absentmsg_batch[] =
	84	"The server's host key is not cached. You have no guarantee\n"
	85	"that the server is the computer you think it is.\n"
65f66c88	86	"The server's %s key fingerprint is:\n"
c5e438ec	87	"%s\n"
	88	"Connection abandoned.\n";
	89	static const char absentmsg[] =
	90	"The server's host key is not cached. You have no guarantee\n"
	91	"that the server is the computer you think it is.\n"
65f66c88	92	"The server's %s key fingerprint is:\n"
c5e438ec	93	"%s\n"
	94	"If you trust this host, enter \"y\" to add the key to\n"
	95	"PuTTY's cache and carry on connecting.\n"
	96	"If you want to carry on connecting just once, without\n"
	97	"adding the key to the cache, enter \"n\".\n"
	98	"If you do not trust this host, press Return to abandon the\n"
	99	"connection.\n"
	100	"Store key in cache? (y/n) ";
	101
	102	static const char wrongmsg_batch[] =
	103	"WARNING - POTENTIAL SECURITY BREACH!\n"
	104	"The server's host key does not match the one PuTTY has\n"
	105	"cached. This means that either the server administrator\n"
	106	"has changed the host key, or you have actually connected\n"
	107	"to another computer pretending to be the server.\n"
65f66c88	108	"The new %s key fingerprint is:\n"
c5e438ec	109	"%s\n"
	110	"Connection abandoned.\n";
	111	static const char wrongmsg[] =
	112	"WARNING - POTENTIAL SECURITY BREACH!\n"
	113	"The server's host key does not match the one PuTTY has\n"
	114	"cached. This means that either the server administrator\n"
	115	"has changed the host key, or you have actually connected\n"
	116	"to another computer pretending to be the server.\n"
65f66c88	117	"The new %s key fingerprint is:\n"
c5e438ec	118	"%s\n"
	119	"If you were expecting this change and trust the new key,\n"
	120	"enter \"y\" to update PuTTY's cache and continue connecting.\n"
	121	"If you want to carry on connecting but without updating\n"
	122	"the cache, enter \"n\".\n"
	123	"If you want to abandon the connection completely, press\n"
	124	"Return to cancel. Pressing Return is the ONLY guaranteed\n"
	125	"safe choice.\n"
	126	"Update cached key? (y/n, Return cancels connection) ";
	127
	128	static const char abandoned[] = "Connection abandoned.\n";
	129
	130	char line[32];
f7397dc6	131	struct termios cf;
c5e438ec	132
	133	/*
	134	* Verify the key.
	135	*/
	136	ret = verify_host_key(host, port, keytype, keystr);
	137
	138	if (ret == 0) /* success - key matched OK */
3d9449a1	139	return 1;
c5e438ec	140
f7397dc6	141	premsg(&cf);
c5e438ec	142	if (ret == 2) { /* key was different */
c5e438ec	143	if (console_batch_mode) {
65f66c88	144	fprintf(stderr, wrongmsg_batch, keytype, fingerprint);
3d9449a1	145	return 0;
c5e438ec	146	}
65f66c88	147	fprintf(stderr, wrongmsg, keytype, fingerprint);
c5e438ec	148	fflush(stderr);
	149	}
	150	if (ret == 1) { /* key was absent */
	151	if (console_batch_mode) {
65f66c88	152	fprintf(stderr, absentmsg_batch, keytype, fingerprint);
3d9449a1	153	return 0;
c5e438ec	154	}
65f66c88	155	fprintf(stderr, absentmsg, keytype, fingerprint);
c5e438ec	156	fflush(stderr);
	157	}
	158
	159	{
	160	struct termios oldmode, newmode;
	161	tcgetattr(0, &oldmode);
	162	newmode = oldmode;
	163	newmode.c_lflag \|= ECHO \| ISIG \| ICANON;
	164	tcsetattr(0, TCSANOW, &newmode);
	165	line[0] = '\0';
ecb25722	166	if (read(0, line, sizeof(line) - 1) <= 0)
ecb25722	167	/* handled below */;
c5e438ec	168	tcsetattr(0, TCSANOW, &oldmode);
	169	}
	170
	171	if (line[0] != '\0' && line[0] != '\r' && line[0] != '\n') {
	172	if (line[0] == 'y' \|\| line[0] == 'Y')
	173	store_host_key(host, port, keytype, keystr);
f7397dc6	174	postmsg(&cf);
3d9449a1	175	return 1;
c5e438ec	176	} else {
c5e438ec	177	fprintf(stderr, abandoned);
f7397dc6	178	postmsg(&cf);
3d9449a1	179	return 0;
c5e438ec	180	}
	181	}
	182
	183	/*
83e7d008	184	* Ask whether the selected algorithm is acceptable (since it was
c5e438ec	185	* below the configured 'warn' threshold).
c5e438ec	186	*/
3d9449a1	187	int askalg(void frontend, const char algtype, const char *algname,
3d9449a1	188	void (callback)(void ctx, int result), void *ctx)
c5e438ec	189	{
c5e438ec	190	static const char msg[] =
83e7d008	191	"The first %s supported by the server is\n"
c5e438ec	192	"%s, which is below the configured warning threshold.\n"
	193	"Continue with connection? (y/n) ";
	194	static const char msg_batch[] =
83e7d008	195	"The first %s supported by the server is\n"
c5e438ec	196	"%s, which is below the configured warning threshold.\n"
	197	"Connection abandoned.\n";
	198	static const char abandoned[] = "Connection abandoned.\n";
	199
	200	char line[32];
f7397dc6	201	struct termios cf;
c5e438ec	202
f7397dc6	203	premsg(&cf);
c5e438ec	204	if (console_batch_mode) {
83e7d008	205	fprintf(stderr, msg_batch, algtype, algname);
3d9449a1	206	return 0;
c5e438ec	207	}
c5e438ec	208
83e7d008	209	fprintf(stderr, msg, algtype, algname);
c5e438ec	210	fflush(stderr);
	211
	212	{
	213	struct termios oldmode, newmode;
	214	tcgetattr(0, &oldmode);
	215	newmode = oldmode;
	216	newmode.c_lflag \|= ECHO \| ISIG \| ICANON;
	217	tcsetattr(0, TCSANOW, &newmode);
	218	line[0] = '\0';
ecb25722	219	if (read(0, line, sizeof(line) - 1) <= 0)
ecb25722	220	/* handled below */;
c5e438ec	221	tcsetattr(0, TCSANOW, &oldmode);
	222	}
	223
	224	if (line[0] == 'y' \|\| line[0] == 'Y') {
f7397dc6	225	postmsg(&cf);
3d9449a1	226	return 1;
c5e438ec	227	} else {
c5e438ec	228	fprintf(stderr, abandoned);
f7397dc6	229	postmsg(&cf);
3d9449a1	230	return 0;
c5e438ec	231	}
	232	}
	233
	234	/*
	235	* Ask whether to wipe a session log file before writing to it.
	236	* Returns 2 for wipe, 1 for append, 0 for cancel (don't log).
	237	*/
962468d4	238	int askappend(void frontend, Filename filename,
919baedb	239	void (callback)(void ctx, int result), void *ctx)
c5e438ec	240	{
	241	static const char msgtemplate[] =
	242	"The session log file \"%.*s\" already exists.\n"
	243	"You can overwrite it with a new session log,\n"
	244	"append your session log to the end of it,\n"
	245	"or disable session logging for this session.\n"
	246	"Enter \"y\" to wipe the file, \"n\" to append to it,\n"
	247	"or just press Return to disable logging.\n"
	248	"Wipe the log file? (y/n, Return cancels logging) ";
	249
	250	static const char msgtemplate_batch[] =
	251	"The session log file \"%.*s\" already exists.\n"
	252	"Logging will not be enabled.\n";
	253
	254	char line[32];
f7397dc6	255	struct termios cf;
c5e438ec	256
f7397dc6	257	premsg(&cf);
c5e438ec	258	if (console_batch_mode) {
962468d4	259	fprintf(stderr, msgtemplate_batch, FILENAME_MAX, filename->path);
c5e438ec	260	fflush(stderr);
	261	return 0;
	262	}
962468d4	263	fprintf(stderr, msgtemplate, FILENAME_MAX, filename->path);
c5e438ec	264	fflush(stderr);
	265
	266	{
	267	struct termios oldmode, newmode;
	268	tcgetattr(0, &oldmode);
	269	newmode = oldmode;
	270	newmode.c_lflag \|= ECHO \| ISIG \| ICANON;
	271	tcsetattr(0, TCSANOW, &newmode);
	272	line[0] = '\0';
ecb25722	273	if (read(0, line, sizeof(line) - 1) <= 0)
ecb25722	274	/* handled below */;
c5e438ec	275	tcsetattr(0, TCSANOW, &oldmode);
	276	}
	277
f7397dc6	278	postmsg(&cf);
c5e438ec	279	if (line[0] == 'y' \|\| line[0] == 'Y')
	280	return 2;
	281	else if (line[0] == 'n' \|\| line[0] == 'N')
	282	return 1;
	283	else
	284	return 0;
	285	}
	286
	287	/*
	288	* Warn about the obsolescent key file format.
	289	*
	290	* Uniquely among these functions, this one does _not_ expect a
	291	* frontend handle. This means that if PuTTY is ported to a
	292	* platform which requires frontend handles, this function will be
	293	* an anomaly. Fortunately, the problem it addresses will not have
	294	* been present on that platform, so it can plausibly be
	295	* implemented as an empty function.
	296	*/
	297	void old_keyfile_warning(void)
	298	{
	299	static const char message[] =
2e85c969	300	"You are loading an SSH-2 private key which has an\n"
c5e438ec	301	"old version of the file format. This means your key\n"
	302	"file is not fully tamperproof. Future versions of\n"
	303	"PuTTY may stop supporting this private key format,\n"
	304	"so we recommend you convert your key to the new\n"
	305	"format.\n"
	306	"\n"
	307	"Once the key is loaded into PuTTYgen, you can perform\n"
	308	"this conversion simply by saving it again.\n";
	309
f7397dc6	310	struct termios cf;
f7397dc6	311	premsg(&cf);
c5e438ec	312	fputs(message, stderr);
f7397dc6	313	postmsg(&cf);
c5e438ec	314	}
c5e438ec	315
b51259f6	316	void console_provide_logctx(void *logctx)
	317	{
	318	console_logctx = logctx;
	319	}
	320
cbe2d68f	321	void logevent(void frontend, const char string)
c5e438ec	322	{
f7397dc6	323	struct termios cf;
f7397dc6	324	premsg(&cf);
b51259f6	325	if (console_logctx)
b51259f6	326	log_eventlog(console_logctx, string);
f7397dc6	327	postmsg(&cf);
c5e438ec	328	}
c5e438ec	329
59b0bfe7	330	/*
e1cef38a	331	* Special functions to read and print to the console for password
	332	* prompts and the like. Uses /dev/tty or stdin/stderr, in that order
	333	* of preference; also sanitises escape sequences out of the text, on
59b0bfe7	334	* the basis that it might have been sent by a hostile SSH server
	335	* doing malicious keyboard-interactive.
	336	*/
e1cef38a	337	static void console_open(FILE *outfp, int infd)
c5e438ec	338	{
e1cef38a	339	int fd;
59b0bfe7	340
e1cef38a	341	if ((fd = open("/dev/tty", O_RDWR)) >= 0) {
	342	*infd = fd;
	343	outfp = fdopen(infd, "w");
	344	} else {
	345	*infd = 0;
	346	*outfp = stderr;
59b0bfe7	347	}
e1cef38a	348	}
	349	static void console_close(FILE *outfp, int infd)
	350	{
	351	if (outfp != stderr)
	352	fclose(outfp); /* will automatically close infd too */
	353	}
	354
	355	static void console_prompt_text(FILE outfp, const char data, int len)
	356	{
	357	int i;
59b0bfe7	358
edd0cb8a	359	for (i = 0; i < len; i++)
edd0cb8a	360	if ((data[i] & 0x60) \|\| (data[i] == '\n'))
e1cef38a	361	fputc(data[i], outfp);
e1cef38a	362	fflush(outfp);
edd0cb8a	363	}
c5e438ec	364
edd0cb8a	365	int console_get_userpass_input(prompts_t p, unsigned char in, int inlen)
	366	{
	367	size_t curr_prompt;
e1cef38a	368	FILE *outfp = NULL;
e1cef38a	369	int infd;
edd0cb8a	370
	371	/*
	372	* Zero all the results, in case we abort half-way through.
	373	*/
	374	{
	375	int i;
	376	for (i = 0; i < p->n_prompts; i++)
b61f81bc	377	prompt_set_result(p->prompts[i], "");
edd0cb8a	378	}
edd0cb8a	379
cbe80b75	380	if (p->n_prompts && console_batch_mode)
a21a6a9a	381	return 0;
edd0cb8a	382
e1cef38a	383	console_open(&outfp, &infd);
e1cef38a	384
edd0cb8a	385	/*
	386	* Preamble.
	387	*/
	388	/* We only print the `name' caption if we have to... */
	389	if (p->name_reqd && p->name) {
	390	size_t l = strlen(p->name);
e1cef38a	391	console_prompt_text(outfp, p->name, l);
edd0cb8a	392	if (p->name[l-1] != '\n')
e1cef38a	393	console_prompt_text(outfp, "\n", 1);
edd0cb8a	394	}
	395	/* ...but we always print any `instruction'. */
	396	if (p->instruction) {
	397	size_t l = strlen(p->instruction);
e1cef38a	398	console_prompt_text(outfp, p->instruction, l);
edd0cb8a	399	if (p->instruction[l-1] != '\n')
e1cef38a	400	console_prompt_text(outfp, "\n", 1);
edd0cb8a	401	}
	402
	403	for (curr_prompt = 0; curr_prompt < p->n_prompts; curr_prompt++) {
	404
	405	struct termios oldmode, newmode;
b61f81bc	406	int len;
edd0cb8a	407	prompt_t *pr = p->prompts[curr_prompt];
edd0cb8a	408
e1cef38a	409	tcgetattr(infd, &oldmode);
c5e438ec	410	newmode = oldmode;
c5e438ec	411	newmode.c_lflag \|= ISIG \| ICANON;
edd0cb8a	412	if (!pr->echo)
c5e438ec	413	newmode.c_lflag &= ~ECHO;
	414	else
	415	newmode.c_lflag \|= ECHO;
e1cef38a	416	tcsetattr(infd, TCSANOW, &newmode);
c5e438ec	417
e1cef38a	418	console_prompt_text(outfp, pr->prompt, strlen(pr->prompt));
edd0cb8a	419
b61f81bc	420	len = 0;
	421	while (1) {
	422	int ret;
	423
	424	prompt_ensure_result_size(pr, len * 5 / 4 + 512);
	425	ret = read(infd, pr->result + len, pr->resultsize - len - 1);
	426	if (ret <= 0) {
	427	len = -1;
	428	break;
	429	}
	430	len += ret;
	431	if (pr->result[len - 1] == '\n') {
	432	len--;
	433	break;
	434	}
	435	}
c5e438ec	436
e1cef38a	437	tcsetattr(infd, TCSANOW, &oldmode);
c5e438ec	438
edd0cb8a	439	if (!pr->echo)
e1cef38a	440	console_prompt_text(outfp, "\n", 1);
a21a6a9a	441
b61f81bc	442	if (len < 0) {
	443	console_close(outfp, infd);
	444	return 0; /* failure due to read error */
	445	}
	446
	447	pr->result[len] = '\0';
c5e438ec	448	}
edd0cb8a	449
e1cef38a	450	console_close(outfp, infd);
edd0cb8a	451
59b0bfe7	452	return 1; /* success */
c5e438ec	453	}
	454
	455	void frontend_keypress(void *handle)
	456	{
	457	/*
	458	* This is nothing but a stub, in console code.
	459	*/
	460	return;
	461	}
47a6b94c	462
	463	int is_interactive(void)
	464	{
	465	return isatty(0);
	466	}
46ed7b64	467
	468	/*
	469	* X11-forwarding-related things suitable for console.
	470	*/
	471
46ed7b64	472	char *platform_get_x_display(void) {
	473	return dupstr(getenv("DISPLAY"));
	474	}