[sgt/putty] / unix / uxputty.c

/*
 * Unix PuTTY main program.
 */

#include <stdio.h>
#include <assert.h>
#include <termios.h>
#include <unistd.h>

#include "putty.h"
#include "storage.h"

/*
 * FIXME: At least some of these functions should be replaced with
 * GTK GUI error-box-type things.
 * 
 * In particular, all the termios-type things must go, and
 * termios.h should disappear from the above #include list.
 */
void fatalbox(char *p, ...)
{
    va_list ap;
    fprintf(stderr, "FATAL ERROR: ");
    va_start(ap, p);
    vfprintf(stderr, p, ap);
    va_end(ap);
    fputc('\n', stderr);
    cleanup_exit(1);
}
void connection_fatal(void *frontend, char *p, ...)
{
    va_list ap;
    fprintf(stderr, "FATAL ERROR: ");
    va_start(ap, p);
    vfprintf(stderr, p, ap);
    va_end(ap);
    fputc('\n', stderr);
    cleanup_exit(1);
}
void cmdline_error(char *p, ...)
{
    va_list ap;
    fprintf(stderr, "plink: ");
    va_start(ap, p);
    vfprintf(stderr, p, ap);
    va_end(ap);
    fputc('\n', stderr);
    exit(1);
}

/*
 * Clean up and exit.
 */
void cleanup_exit(int code)
{
    /*
     * Clean up.
     */
    sk_cleanup();
    random_save_seed();
    exit(code);
}

void verify_ssh_host_key(void *frontend, char *host, int port, char *keytype,
			 char *keystr, char *fingerprint)
{
    int ret;

    static const char absentmsg[] =
	"The server's host key is not cached. You have no guarantee\n"
	"that the server is the computer you think it is.\n"
	"The server's key fingerprint is:\n"
	"%s\n"
	"If you trust this host, enter \"y\" to add the key to\n"
	"PuTTY's cache and carry on connecting.\n"
	"If you want to carry on connecting just once, without\n"
	"adding the key to the cache, enter \"n\".\n"
	"If you do not trust this host, press Return to abandon the\n"
	"connection.\n"
	"Store key in cache? (y/n) ";

    static const char wrongmsg[] =
	"WARNING - POTENTIAL SECURITY BREACH!\n"
	"The server's host key does not match the one PuTTY has\n"
	"cached. This means that either the server administrator\n"
	"has changed the host key, or you have actually connected\n"
	"to another computer pretending to be the server.\n"
	"The new key fingerprint is:\n"
	"%s\n"
	"If you were expecting this change and trust the new key,\n"
	"enter \"y\" to update PuTTY's cache and continue connecting.\n"
	"If you want to carry on connecting but without updating\n"
	"the cache, enter \"n\".\n"
	"If you want to abandon the connection completely, press\n"
	"Return to cancel. Pressing Return is the ONLY guaranteed\n"
	"safe choice.\n"
	"Update cached key? (y/n, Return cancels connection) ";

    static const char abandoned[] = "Connection abandoned.\n";

    char line[32];

    /*
     * Verify the key.
     */
    ret = verify_host_key(host, port, keytype, keystr);

    if (ret == 0)		       /* success - key matched OK */
	return;

    if (ret == 2) {		       /* key was different */
	fprintf(stderr, wrongmsg, fingerprint);
	fflush(stderr);
    }
    if (ret == 1) {		       /* key was absent */
	fprintf(stderr, absentmsg, fingerprint);
	fflush(stderr);
    }

    {
	struct termios oldmode, newmode;
	tcgetattr(0, &oldmode);
	newmode = oldmode;
	newmode.c_lflag |= ECHO | ISIG | ICANON;
	tcsetattr(0, TCSANOW, &newmode);
	line[0] = '\0';
	read(0, line, sizeof(line) - 1);
	tcsetattr(0, TCSANOW, &oldmode);
    }

    if (line[0] != '\0' && line[0] != '\r' && line[0] != '\n') {
	if (line[0] == 'y' || line[0] == 'Y')
	    store_host_key(host, port, keytype, keystr);
    } else {
	fprintf(stderr, abandoned);
	cleanup_exit(0);
    }
}

/*
 * Ask whether the selected cipher is acceptable (since it was
 * below the configured 'warn' threshold).
 * cs: 0 = both ways, 1 = client->server, 2 = server->client
 */
void askcipher(void *frontend, char *ciphername, int cs)
{
    static const char msg[] =
	"The first %scipher supported by the server is\n"
	"%s, which is below the configured warning threshold.\n"
	"Continue with connection? (y/n) ";
    static const char abandoned[] = "Connection abandoned.\n";

    char line[32];

    fprintf(stderr, msg,
	    (cs == 0) ? "" :
	    (cs == 1) ? "client-to-server " : "server-to-client ",
	    ciphername);
    fflush(stderr);

    {
	struct termios oldmode, newmode;
	tcgetattr(0, &oldmode);
	newmode = oldmode;
	newmode.c_lflag |= ECHO | ISIG | ICANON;
	tcsetattr(0, TCSANOW, &newmode);
	line[0] = '\0';
	read(0, line, sizeof(line) - 1);
	tcsetattr(0, TCSANOW, &oldmode);
    }

    if (line[0] == 'y' || line[0] == 'Y') {
	return;
    } else {
	fprintf(stderr, abandoned);
	cleanup_exit(0);
    }
}

void old_keyfile_warning(void)
{
    static const char message[] =
	"You are loading an SSH 2 private key which has an\n"
	"old version of the file format. This means your key\n"
	"file is not fully tamperproof. Future versions of\n"
	"PuTTY may stop supporting this private key format,\n"
	"so we recommend you convert your key to the new\n"
	"format.\n"
	"\n"
	"Once the key is loaded into PuTTYgen, you can perform\n"
	"this conversion simply by saving it again.\n";

    fputs(message, stderr);
}

/*
 * Another bunch of temporary stub functions. These ones will want
 * removing by means of implementing them properly: libcharset
 * should invent its own sensible format for codepage names and a
 * means of enumerating them, and printer_enum needs to be dealt
 * with somehow or other too.
 */

char *cp_name(int codepage)
{
    return "";
}
char *cp_enumerate(int index)
{
    return NULL;
}
int decode_codepage(char *cp_name)
{
    return -2;
}

printer_enum *printer_start_enum(int *nprinters_ptr) {
    *nprinters_ptr = 0;
    return NULL;
}
char *printer_get_name(printer_enum *pe, int i) { return NULL;
}
void printer_finish_enum(printer_enum *pe) { }

Backend *select_backend(Config *cfg)
{
    int i;
    Backend *back = NULL;
    for (i = 0; backends[i].backend != NULL; i++)
	if (backends[i].protocol == cfg->protocol) {
	    back = backends[i].backend;
	    break;
	}
    assert(back != NULL);
    return back;
}

int cfgbox(Config *cfg)
{
    extern int do_config_box(const char *title, Config *cfg);
    return do_config_box("PuTTY Configuration", cfg);
}

int main(int argc, char **argv)
{
    extern int pt_main(int argc, char **argv);
    sk_init();
    flags = FLAG_VERBOSE | FLAG_INTERACTIVE;
    default_protocol = be_default_protocol;
    /* Find the appropriate default port. */
    {
	int i;
	default_port = 0; /* illegal */
	for (i = 0; backends[i].backend != NULL; i++)
	    if (backends[i].protocol == default_protocol) {
		default_port = backends[i].backend->default_port;
		break;
	    }
    }
    return pt_main(argc, argv);
}
Commit	Line	Data
1d009ae7	1	/*
	2	* Unix PuTTY main program.
	3	*/
	4
	5	#include <stdio.h>
	6	#include <assert.h>
	7	#include <termios.h>
	8	#include <unistd.h>
	9
	10	#include "putty.h"
	11	#include "storage.h"
	12
	13	/*
	14	* FIXME: At least some of these functions should be replaced with
	15	* GTK GUI error-box-type things.
	16	*
	17	* In particular, all the termios-type things must go, and
	18	* termios.h should disappear from the above #include list.
	19	*/
	20	void fatalbox(char *p, ...)
	21	{
	22	va_list ap;
	23	fprintf(stderr, "FATAL ERROR: ");
	24	va_start(ap, p);
	25	vfprintf(stderr, p, ap);
	26	va_end(ap);
	27	fputc('\n', stderr);
	28	cleanup_exit(1);
	29	}
	30	void connection_fatal(void frontend, char p, ...)
	31	{
	32	va_list ap;
	33	fprintf(stderr, "FATAL ERROR: ");
	34	va_start(ap, p);
	35	vfprintf(stderr, p, ap);
	36	va_end(ap);
	37	fputc('\n', stderr);
	38	cleanup_exit(1);
	39	}
	40	void cmdline_error(char *p, ...)
	41	{
	42	va_list ap;
	43	fprintf(stderr, "plink: ");
	44	va_start(ap, p);
	45	vfprintf(stderr, p, ap);
	46	va_end(ap);
	47	fputc('\n', stderr);
	48	exit(1);
	49	}
	50
	51	/*
	52	* Clean up and exit.
	53	*/
	54	void cleanup_exit(int code)
	55	{
	56	/*
	57	* Clean up.
	58	*/
	59	sk_cleanup();
	60	random_save_seed();
	61	exit(code);
	62	}
	63
	64	void verify_ssh_host_key(void frontend, char host, int port, char *keytype,
65	char keystr, char fingerprint)
66	{
67	int ret;
68
69	static const char absentmsg[] =
70	"The server's host key is not cached. You have no guarantee\n"
71	"that the server is the computer you think it is.\n"
72	"The server's key fingerprint is:\n"
73	"%s\n"
74	"If you trust this host, enter \"y\" to add the key to\n"
75	"PuTTY's cache and carry on connecting.\n"
76	"If you want to carry on connecting just once, without\n"
77	"adding the key to the cache, enter \"n\".\n"
78	"If you do not trust this host, press Return to abandon the\n"
79	"connection.\n"
80	"Store key in cache? (y/n) ";
81
82	static const char wrongmsg[] =
83	"WARNING - POTENTIAL SECURITY BREACH!\n"
84	"The server's host key does not match the one PuTTY has\n"
85	"cached. This means that either the server administrator\n"
86	"has changed the host key, or you have actually connected\n"
87	"to another computer pretending to be the server.\n"
88	"The new key fingerprint is:\n"
89	"%s\n"
90	"If you were expecting this change and trust the new key,\n"
91	"enter \"y\" to update PuTTY's cache and continue connecting.\n"
92	"If you want to carry on connecting but without updating\n"
93	"the cache, enter \"n\".\n"
94	"If you want to abandon the connection completely, press\n"
95	"Return to cancel. Pressing Return is the ONLY guaranteed\n"
96	"safe choice.\n"
97	"Update cached key? (y/n, Return cancels connection) ";
98
99	static const char abandoned[] = "Connection abandoned.\n";
100
101	char line[32];
102
103	/*
104	* Verify the key.
105	*/
106	ret = verify_host_key(host, port, keytype, keystr);
107
108	if (ret == 0) /* success - key matched OK */
109	return;
110
111	if (ret == 2) { /* key was different */
112	fprintf(stderr, wrongmsg, fingerprint);
113	fflush(stderr);
114	}
115	if (ret == 1) { /* key was absent */
116	fprintf(stderr, absentmsg, fingerprint);
117	fflush(stderr);
118	}
119
120	{
121	struct termios oldmode, newmode;
122	tcgetattr(0, &oldmode);
123	newmode = oldmode;
124	newmode.c_lflag \|= ECHO \| ISIG \| ICANON;
125	tcsetattr(0, TCSANOW, &newmode);
126	line[0] = '\0';
127	read(0, line, sizeof(line) - 1);
128	tcsetattr(0, TCSANOW, &oldmode);
129	}
130
131	if (line[0] != '\0' && line[0] != '\r' && line[0] != '\n') {
132	if (line[0] == 'y' \|\| line[0] == 'Y')
133	store_host_key(host, port, keytype, keystr);
134	} else {
135	fprintf(stderr, abandoned);
136	cleanup_exit(0);
137	}
138	}
139
140	/*
141	* Ask whether the selected cipher is acceptable (since it was
142	* below the configured 'warn' threshold).
143	* cs: 0 = both ways, 1 = client->server, 2 = server->client
144	*/
145	void askcipher(void frontend, char ciphername, int cs)
146	{
147	static const char msg[] =
148	"The first %scipher supported by the server is\n"
149	"%s, which is below the configured warning threshold.\n"
150	"Continue with connection? (y/n) ";
151	static const char abandoned[] = "Connection abandoned.\n";
152
153	char line[32];
154
155	fprintf(stderr, msg,
156	(cs == 0) ? "" :
157	(cs == 1) ? "client-to-server " : "server-to-client ",
158	ciphername);
159	fflush(stderr);
160
161	{
162	struct termios oldmode, newmode;
163	tcgetattr(0, &oldmode);
164	newmode = oldmode;
165	newmode.c_lflag \|= ECHO \| ISIG \| ICANON;
166	tcsetattr(0, TCSANOW, &newmode);
167	line[0] = '\0';
168	read(0, line, sizeof(line) - 1);
169	tcsetattr(0, TCSANOW, &oldmode);
170	}
171
172	if (line[0] == 'y' \|\| line[0] == 'Y') {
173	return;
174	} else {
175	fprintf(stderr, abandoned);
176	cleanup_exit(0);
177	}
178	}
179
180	void old_keyfile_warning(void)
181	{
182	static const char message[] =
183	"You are loading an SSH 2 private key which has an\n"
184	"old version of the file format. This means your key\n"
185	"file is not fully tamperproof. Future versions of\n"
186	"PuTTY may stop supporting this private key format,\n"
187	"so we recommend you convert your key to the new\n"
188	"format.\n"
189	"\n"
190	"Once the key is loaded into PuTTYgen, you can perform\n"
191	"this conversion simply by saving it again.\n";
192
193	fputs(message, stderr);
194	}
195
196	/*
197	* Another bunch of temporary stub functions. These ones will want
198	* removing by means of implementing them properly: libcharset
199	* should invent its own sensible format for codepage names and a
200	* means of enumerating them, and printer_enum needs to be dealt
201	* with somehow or other too.
202	*/
203
204	char *cp_name(int codepage)
205	{
206	return "";
207	}
208	char *cp_enumerate(int index)
209	{
210	return NULL;
211	}
212	int decode_codepage(char *cp_name)
213	{
214	return -2;
215	}
216
217	printer_enum printer_start_enum(int nprinters_ptr) {
218	*nprinters_ptr = 0;
219	return NULL;
220	}
221	char printer_get_name(printer_enum pe, int i) { return NULL;
222	}
223	void printer_finish_enum(printer_enum *pe) { }
224
225	Backend select_backend(Config cfg)
226	{
227	int i;
228	Backend *back = NULL;
229	for (i = 0; backends[i].backend != NULL; i++)
230	if (backends[i].protocol == cfg->protocol) {
231	back = backends[i].backend;
232	break;
233	}
234	assert(back != NULL);
235	return back;
236	}
237
238	int cfgbox(Config *cfg)
239	{
240	extern int do_config_box(const char title, Config cfg);
241	return do_config_box("PuTTY Configuration", cfg);
242	}
243
244	int main(int argc, char **argv)
245	{
246	extern int pt_main(int argc, char **argv);
247	sk_init();
248	flags = FLAG_VERBOSE \| FLAG_INTERACTIVE;
249	default_protocol = be_default_protocol;
250	/* Find the appropriate default port. */
251	{
252	int i;
253	default_port = 0; /* illegal */
254	for (i = 0; backends[i].backend != NULL; i++)
255	if (backends[i].protocol == default_protocol) {
256	default_port = backends[i].backend->default_port;
257	break;
258	}
259	}
260	return pt_main(argc, argv);
261	}