Home Explore Help
Sign In
OWEALs
/
busybox
mirror of http://git.busybox.net/busybox/
3
0
Fork 0
Files Issues 0 Wiki
Branch: 1_4_stable
Branches Tags
busybox
/
networking
/
telnetd.c

telnetd.c 14 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573 
  1. /* vi: set sw=4 ts=4: */
    2. 

  2. /*
    3. 

  3.  * Simple telnet server
    4. 

  4.  * Bjorn Wesen, Axis Communications AB (bjornw@axis.com)
    5. 

  5.  *
    6. 

  6.  * Licensed under GPLv2 or later, see file LICENSE in this tarball for details.
    7. 

  7.  *
    8. 

  8.  * ---------------------------------------------------------------------------
    9. 

  9.  * (C) Copyright 2000, Axis Communications AB, LUND, SWEDEN
    10. 

  10.  ****************************************************************************
    11. 

  11.  *
    12. 

  12.  * The telnetd manpage says it all:
    13. 

  13.  *
    14. 

  14.  *   Telnetd operates by allocating a pseudo-terminal device (see pty(4))  for
    15. 

  15.  *   a client, then creating a login process which has the slave side of the
    16. 

  16.  *   pseudo-terminal as stdin, stdout, and stderr. Telnetd manipulates the
    17. 

  17.  *   master side of the pseudo-terminal, implementing the telnet protocol and
    18. 

  18.  *   passing characters between the remote client and the login process.
    19. 

  19.  *
    20. 

  20.  * Vladimir Oleynik <dzo@simtreas.ru> 2001
    21. 

  21.  *     Set process group corrections, initial busybox port
    22. 

  22.  */
    23. 

  23. 

  24. /*#define DEBUG 1 */
    25. 

  25. #define DEBUG 0
    26. 

  26. 

  27. #include "busybox.h"
    28. 

  28. 

  29. #if DEBUG
    30. 

  30. #define TELCMDS
    31. 

  31. #define TELOPTS
    32. 

  32. #endif
    33. 

  33. #include <arpa/telnet.h>
    34. 

  34. #include <sys/syslog.h>
    35. 

  35. 

  36. 

  37. #define BUFSIZE 4000
    38. 

  38. 

  39. #if ENABLE_LOGIN
    40. 

  40. static const char *loginpath = "/bin/login";
    41. 

  41. #else
    42. 

  42. static const char *loginpath = DEFAULT_SHELL;
    43. 

  43. #endif
    44. 

  44. 

  45. static const char *issuefile = "/etc/issue.net";
    46. 

  46. 

  47. /* shell name and arguments */
    48. 

  48. 

  49. static const char *argv_init[2];
    50. 

  50. 

  51. /* structure that describes a session */
    52. 

  52. 

  53. struct tsession {
    54. 

  54. 	struct tsession *next;
    55. 

  55. 	int sockfd_read, sockfd_write, ptyfd;
    56. 

  56. 	int shell_pid;
    57. 

  57. 	/* two circular buffers */
    58. 

  58. 	char *buf1, *buf2;
    59. 

  59. 	int rdidx1, wridx1, size1;
    60. 

  60. 	int rdidx2, wridx2, size2;
    61. 

  61. };
    62. 

  62. 

  63. /*
    64. 

  64.    This is how the buffers are used. The arrows indicate the movement
    65. 

  65.    of data.
    66. 

  66. 

  67.    +-------+     wridx1++     +------+     rdidx1++     +----------+
    68. 

  68.    |       | <--------------  | buf1 | <--------------  |          |
    69. 

  69.    |       |     size1--      +------+     size1++      |          |
    70. 

  70.    |  pty  |                                            |  socket  |
    71. 

  71.    |       |     rdidx2++     +------+     wridx2++     |          |
    72. 

  72.    |       |  --------------> | buf2 |  --------------> |          |
    73. 

  73.    +-------+     size2++      +------+     size2--      +----------+
    74. 

  74. 

  75.    Each session has got two buffers.
    76. 

  76. */
    77. 

  77. 

  78. static int maxfd;
    79. 

  79. 

  80. static struct tsession *sessions;
    81. 

  81. 

  82. 

  83. /*
    84. 

  84.    Remove all IAC's from the buffer pointed to by bf (received IACs are ignored
    85. 

  85.    and must be removed so as to not be interpreted by the terminal).  Make an
    86. 

  86.    uninterrupted string of characters fit for the terminal.  Do this by packing
    87. 

  87.    all characters meant for the terminal sequentially towards the end of bf.
    88. 

  88. 

  89.    Return a pointer to the beginning of the characters meant for the terminal.
    90. 

  90.    and make *num_totty the number of characters that should be sent to
    91. 

  91.    the terminal.
    92. 

  92. 

  93.    Note - If an IAC (3 byte quantity) starts before (bf + len) but extends
    94. 

  94.    past (bf + len) then that IAC will be left unprocessed and *processed will be
    95. 

  95.    less than len.
    96. 

  96. 

  97.    FIXME - if we mean to send 0xFF to the terminal then it will be escaped,
    98. 

  98.    what is the escape character?  We aren't handling that situation here.
    99. 

  99. 

  100.    CR-LF ->'s CR mapping is also done here, for convenience
    101. 

  101.  */
    102. 

  102. static char *
    103. 

  103. remove_iacs(struct tsession *ts, int *pnum_totty)
    104. 

  104. {
    105. 

  105. 	unsigned char *ptr0 = (unsigned char *)ts->buf1 + ts->wridx1;
    106. 

  106. 	unsigned char *ptr = ptr0;
    107. 

  107. 	unsigned char *totty = ptr;
    108. 

  108. 	unsigned char *end = ptr + MIN(BUFSIZE - ts->wridx1, ts->size1);
    109. 

  109. 	int processed;
    110. 

  110. 	int num_totty;
    111. 

  111. 

  112. 	while (ptr < end) {
    113. 

  113. 		if (*ptr != IAC) {
    114. 

  114. 			int c = *ptr;
    115. 

  115. 			*totty++ = *ptr++;
    116. 

  116. 			/* We now map \r\n ==> \r for pragmatic reasons.
    117. 

  117. 			 * Many client implementations send \r\n when
    118. 

  118. 			 * the user hits the CarriageReturn key.
    119. 

  119. 			 */
    120. 

  120. 			if (c == '\r' && (*ptr == '\n' || *ptr == 0) && ptr < end)
    121. 

  121. 				ptr++;
    122. 

  122. 		} else {
    123. 

  123. 			/*
    124. 

  124. 			 * TELOPT_NAWS support!
    125. 

  125. 			 */
    126. 

  126. 			if ((ptr+2) >= end) {
    127. 

  127. 				/* only the beginning of the IAC is in the
    128. 

  128. 				buffer we were asked to process, we can't
    129. 

  129. 				process this char. */
    130. 

  130. 				break;
    131. 

  131. 			}
    132. 

  132. 

  133. 			/*
    134. 

  134. 			 * IAC -> SB -> TELOPT_NAWS -> 4-byte -> IAC -> SE
    135. 

  135. 			 */
    136. 

  136. 			else if (ptr[1] == SB && ptr[2] == TELOPT_NAWS) {
    137. 

  137. 				struct winsize ws;
    138. 

  138. 				if ((ptr+8) >= end)
    139. 

  139. 					break;	/* incomplete, can't process */
    140. 

  140. 				ws.ws_col = (ptr[3] << 8) | ptr[4];
    141. 

  141. 				ws.ws_row = (ptr[5] << 8) | ptr[6];
    142. 

  142. 				ioctl(ts->ptyfd, TIOCSWINSZ, (char *)&ws);
    143. 

  143. 				ptr += 9;
    144. 

  144. 			} else {
    145. 

  145. 				/* skip 3-byte IAC non-SB cmd */
    146. 

  146. #if DEBUG
    147. 

  147. 				fprintf(stderr, "Ignoring IAC %s,%s\n",
    148. 

  148. 					TELCMD(ptr[1]), TELOPT(ptr[2]));
    149. 

  149. #endif
    150. 

  150. 				ptr += 3;
    151. 

  151. 			}
    152. 

  152. 		}
    153. 

  153. 	}
    154. 

  154. 

  155. 	processed = ptr - ptr0;
    156. 

  156. 	num_totty = totty - ptr0;
    157. 

  157. 	/* the difference between processed and num_to tty
    158. 

  158. 	   is all the iacs we removed from the stream.
    159. 

  159. 	   Adjust buf1 accordingly. */
    160. 

  160. 	ts->wridx1 += processed - num_totty;
    161. 

  161. 	ts->size1 -= processed - num_totty;
    162. 

  162. 	*pnum_totty = num_totty;
    163. 

  163. 	/* move the chars meant for the terminal towards the end of the
    164. 

  164. 	buffer. */
    165. 

  165. 	return memmove(ptr - num_totty, ptr0, num_totty);
    166. 

  166. }
    167. 

  167. 

  168. 

  169. static int
    170. 

  170. getpty(char *line, int size)
    171. 

  171. {
    172. 

  172. 	int p;
    173. 

  173. #if ENABLE_FEATURE_DEVPTS
    174. 

  174. 	p = open("/dev/ptmx", O_RDWR);
    175. 

  175. 	if (p > 0) {
    176. 

  176. 		const char *name;
    177. 

  177. 		grantpt(p);
    178. 

  178. 		unlockpt(p);
    179. 

  179. 		name = ptsname(p);
    180. 

  180. 		if (!name) {
    181. 

  181. 			bb_perror_msg("ptsname error (is /dev/pts mounted?)");
    182. 

  182. 			return -1;
    183. 

  183. 		}
    184. 

  184. 		safe_strncpy(line, name, size);
    185. 

  185. 		return p;
    186. 

  186. 	}
    187. 

  187. #else
    188. 

  188. 	struct stat stb;
    189. 

  189. 	int i;
    190. 

  190. 	int j;
    191. 

  191. 

  192. 	strcpy(line, "/dev/ptyXX");
    193. 

  193. 

  194. 	for (i = 0; i < 16; i++) {
    195. 

  195. 		line[8] = "pqrstuvwxyzabcde"[i];
    196. 

  196. 		line[9] = '0';
    197. 

  197. 		if (stat(line, &stb) < 0) {
    198. 

  198. 			continue;
    199. 

  199. 		}
    200. 

  200. 		for (j = 0; j < 16; j++) {
    201. 

  201. 			line[9] = j < 10 ? j + '0' : j - 10 + 'a';
    202. 

  202. 			if (DEBUG)
    203. 

  203. 				fprintf(stderr, "Trying to open device: %s\n", line);
    204. 

  204. 			p = open(line, O_RDWR | O_NOCTTY);
    205. 

  205. 			if (p >= 0) {
    206. 

  206. 				line[5] = 't';
    207. 

  207. 				return p;
    208. 

  208. 			}
    209. 

  209. 		}
    210. 

  210. 	}
    211. 

  211. #endif /* FEATURE_DEVPTS */
    212. 

  212. 	return -1;
    213. 

  213. }
    214. 

  214. 

  215. 

  216. static void
    217. 

  217. send_iac(struct tsession *ts, unsigned char command, int option)
    218. 

  218. {
    219. 

  219. 	/* We rely on that there is space in the buffer for now. */
    220. 

  220. 	char *b = ts->buf2 + ts->rdidx2;
    221. 

  221. 	*b++ = IAC;
    222. 

  222. 	*b++ = command;
    223. 

  223. 	*b++ = option;
    224. 

  224. 	ts->rdidx2 += 3;
    225. 

  225. 	ts->size2 += 3;
    226. 

  226. }
    227. 

  227. 

  228. 

  229. static struct tsession *
    230. 

  230. make_new_session(
    231. 

  231. 		USE_FEATURE_TELNETD_STANDALONE(int sock_r, int sock_w)
    232. 

  232. 		SKIP_FEATURE_TELNETD_STANDALONE(void)
    233. 

  233. ) {
    234. 

  234. 	struct termios termbuf;
    235. 

  235. 	int fd, pid;
    236. 

  236. 	char tty_name[32];
    237. 

  237. 	struct tsession *ts = xzalloc(sizeof(struct tsession) + BUFSIZE * 2);
    238. 

  238. 

  239. 	ts->buf1 = (char *)(&ts[1]);
    240. 

  240. 	ts->buf2 = ts->buf1 + BUFSIZE;
    241. 

  241. 

  242. 	/* Got a new connection, set up a tty. */
    243. 

  243. 	fd = getpty(tty_name, 32);
    244. 

  244. 	if (fd < 0) {
    245. 

  245. 		bb_error_msg("all terminals in use");
    246. 

  246. 		return NULL;
    247. 

  247. 	}
    248. 

  248. 	if (fd > maxfd) maxfd = fd;
    249. 

  249. 	ndelay_on(ts->ptyfd = fd);
    250. 

  250. #if ENABLE_FEATURE_TELNETD_STANDALONE
    251. 

  251. 	if (sock_w > maxfd) maxfd = sock_w;
    252. 

  252. 	if (sock_r > maxfd) maxfd = sock_r;
    253. 

  253. 	ndelay_on(ts->sockfd_write = sock_w);
    254. 

  254. 	ndelay_on(ts->sockfd_read = sock_r);
    255. 

  255. #else
    256. 

  256. 	ts->sockfd_write = 1;
    257. 

  257. 	/* xzalloc: ts->sockfd_read = 0; */
    258. 

  258. 	ndelay_on(0);
    259. 

  259. 	ndelay_on(1);
    260. 

  260. #endif
    261. 

  261. 	/* Make the telnet client understand we will echo characters so it
    262. 

  262. 	 * should not do it locally. We don't tell the client to run linemode,
    263. 

  263. 	 * because we want to handle line editing and tab completion and other
    264. 

  264. 	 * stuff that requires char-by-char support. */
    265. 

  265. 	send_iac(ts, DO, TELOPT_ECHO);
    266. 

  266. 	send_iac(ts, DO, TELOPT_NAWS);
    267. 

  267. 	send_iac(ts, DO, TELOPT_LFLOW);
    268. 

  268. 	send_iac(ts, WILL, TELOPT_ECHO);
    269. 

  269. 	send_iac(ts, WILL, TELOPT_SGA);
    270. 

  270. 

  271. 	pid = fork();
    272. 

  272. 	if (pid < 0) {
    273. 

  273. 		free(ts);
    274. 

  274. 		close(fd);
    275. 

  275. 		bb_perror_msg("fork");
    276. 

  276. 		return NULL;
    277. 

  277. 	}
    278. 

  278. 	if (pid > 0) {
    279. 

  279. 		/* parent */
    280. 

  280. 		ts->shell_pid = pid;
    281. 

  281. 		return ts;
    282. 

  282. 	}
    283. 

  283. 

  284. 	/* child */
    285. 

  285. 

  286. 	/* make new process group */
    287. 

  287. 	setsid();
    288. 

  288. 	tcsetpgrp(0, getpid());
    289. 

  289. 	/* ^^^ strace says: "ioctl(0, TIOCSPGRP, [pid]) = -1 ENOTTY" -- ??! */
    290. 

  290. 

  291. 	/* open the child's side of the tty. */
    292. 

  292. 	/* NB: setsid() disconnects from any previous ctty's. Therefore
    293. 

  293. 	 * we must open child's side of the tty AFTER setsid! */
    294. 

  294. 	fd = xopen(tty_name, O_RDWR); /* becomes our ctty */
    295. 

  295. 	dup2(fd, 0);
    296. 

  296. 	dup2(fd, 1);
    297. 

  297. 	dup2(fd, 2);
    298. 

  298. 	while (fd > 2) close(fd--);
    299. 

  299. 

  300. 	/* The pseudo-terminal allocated to the client is configured to operate in
    301. 

  301. 	 * cooked mode, and with XTABS CRMOD enabled (see tty(4)). */
    302. 

  302. 	tcgetattr(0, &termbuf);
    303. 

  303. 	termbuf.c_lflag |= ECHO; /* if we use readline we dont want this */
    304. 

  304. 	termbuf.c_oflag |= ONLCR|XTABS;
    305. 

  305. 	termbuf.c_iflag |= ICRNL;
    306. 

  306. 	termbuf.c_iflag &= ~IXOFF;
    307. 

  307. 	/*termbuf.c_lflag &= ~ICANON;*/
    308. 

  308. 	tcsetattr(0, TCSANOW, &termbuf);
    309. 

  309. 

  310. 	print_login_issue(issuefile, NULL);
    311. 

  311. 

  312. 	/* exec shell, with correct argv and env */
    313. 

  313. 	execv(loginpath, (char *const *)argv_init);
    314. 

  314. 	bb_perror_msg_and_die("execv");
    315. 

  315. }
    316. 

  316. 

  317. #if ENABLE_FEATURE_TELNETD_STANDALONE
    318. 

  318. 

  319. static void
    320. 

  320. free_session(struct tsession *ts)
    321. 

  321. {
    322. 

  322. 	struct tsession *t = sessions;
    323. 

  323. 

  324. 	/* unlink this telnet session from the session list */
    325. 

  325. 	if (t == ts)
    326. 

  326. 		sessions = ts->next;
    327. 

  327. 	else {
    328. 

  328. 		while (t->next != ts)
    329. 

  329. 			t = t->next;
    330. 

  330. 		t->next = ts->next;
    331. 

  331. 	}
    332. 

  332. 

  333. 	kill(ts->shell_pid, SIGKILL);
    334. 

  334. 	wait4(ts->shell_pid, NULL, 0, NULL);
    335. 

  335. 	close(ts->ptyfd);
    336. 

  336. 	close(ts->sockfd_read);
    337. 

  337. 	/* error if ts->sockfd_read == ts->sockfd_write. So what? ;) */
    338. 

  338. 	close(ts->sockfd_write);
    339. 

  339. 	free(ts);
    340. 

  340. 

  341. 	/* scan all sessions and find new maxfd */
    342. 

  342. 	ts = sessions;
    343. 

  343. 	maxfd = 0;
    344. 

  344. 	while (ts) {
    345. 

  345. 		if (maxfd < ts->ptyfd)
    346. 

  346. 			maxfd = ts->ptyfd;
    347. 

  347. 		if (maxfd < ts->sockfd_read)
    348. 

  348. 			maxfd = ts->sockfd_read;
    349. 

  349. 		if (maxfd < ts->sockfd_write)
    350. 

  350. 			maxfd = ts->sockfd_write;
    351. 

  351. 		ts = ts->next;
    352. 

  352. 	}
    353. 

  353. }
    354. 

  354. 

  355. #else /* !FEATURE_TELNETD_STANDALONE */
    356. 

  356. 

  357. /* Never actually called */
    358. 

  358. void free_session(struct tsession *ts);
    359. 

  359. 

  360. #endif
    361. 

  361. 

  362. 

  363. int
    364. 

  364. telnetd_main(int argc, char **argv)
    365. 

  365. {
    366. 

  366. 	fd_set rdfdset, wrfdset;
    367. 

  367. 	unsigned opt;
    368. 

  368. 	int selret, maxlen, w, r;
    369. 

  369. 	struct tsession *ts;
    370. 

  370. #if ENABLE_FEATURE_TELNETD_STANDALONE
    371. 

  371. #define IS_INETD (opt & OPT_INETD)
    372. 

  372. 	int master_fd = -1; /* be happy, gcc */
    373. 

  373. 	unsigned portnbr = 23;
    374. 

  374. 	char *opt_bindaddr = NULL;
    375. 

  375. 	char *opt_portnbr;
    376. 

  376. #else
    377. 

  377. 	enum {
    378. 

  378. 		IS_INETD = 1,
    379. 

  379. 		master_fd = -1,
    380. 

  380. 		portnbr = 23,
    381. 

  381. 	};
    382. 

  382. #endif
    383. 

  383. 	enum {
    384. 

  384. 		OPT_PORT = 4 * ENABLE_FEATURE_TELNETD_STANDALONE,
    385. 

  385. 		OPT_FOREGROUND = 0x10 * ENABLE_FEATURE_TELNETD_STANDALONE,
    386. 

  386. 		OPT_INETD = 0x20 * ENABLE_FEATURE_TELNETD_STANDALONE,
    387. 

  387. 	};
    388. 

  388. 

  389. 	opt = getopt32(argc, argv, "f:l:" USE_FEATURE_TELNETD_STANDALONE("p:b:Fi"),
    390. 

  390. 			&issuefile, &loginpath
    391. 

  391. 			USE_FEATURE_TELNETD_STANDALONE(, &opt_portnbr, &opt_bindaddr));
    392. 

  392. 	/* Redirect log to syslog early, if needed */
    393. 

  393. 	if (IS_INETD || !(opt & OPT_FOREGROUND)) {
    394. 

  394. 		openlog(applet_name, 0, LOG_USER);
    395. 

  395. 		logmode = LOGMODE_SYSLOG;
    396. 

  396. 	}
    397. 

  397. 	//if (opt & 1) // -f
    398. 

  398. 	//if (opt & 2) // -l
    399. 

  399. 	USE_FEATURE_TELNETD_STANDALONE(
    400. 

  400. 		if (opt & OPT_PORT) // -p
    401. 

  401. 			portnbr = xatou16(opt_portnbr);
    402. 

  402. 		//if (opt & 8) // -b
    403. 

  403. 		//if (opt & 0x10) // -F
    404. 

  404. 		//if (opt & 0x20) // -i
    405. 

  405. 	);
    406. 

  406. 

  407. 	/* Used to check access(loginpath, X_OK) here. Pointless.
    408. 

  408. 	 * exec will do this for us for free later. */
    409. 

  409. 	argv_init[0] = loginpath;
    410. 

  410. 

  411. #if ENABLE_FEATURE_TELNETD_STANDALONE
    412. 

  412. 	if (IS_INETD) {
    413. 

  413. 		sessions = make_new_session(0, 1);
    414. 

  414. 	} else {
    415. 

  415. 		master_fd = create_and_bind_stream_or_die(opt_bindaddr, portnbr);
    416. 

  416. 		xlisten(master_fd, 1);
    417. 

  417. 		if (!(opt & OPT_FOREGROUND))
    418. 

  418. 			xdaemon(0, 0);
    419. 

  419. 	}
    420. 

  420. #else
    421. 

  421. 	sessions = make_new_session();
    422. 

  422. #endif
    423. 

  423. 

  424. 	/* We don't want to die if just one session is broken */
    425. 

  425. 	signal(SIGPIPE, SIG_IGN);
    426. 

  426. 

  427.  again:
    428. 

  428. 	FD_ZERO(&rdfdset);
    429. 

  429. 	FD_ZERO(&wrfdset);
    430. 

  430. 	if (!IS_INETD) {
    431. 

  431. 		FD_SET(master_fd, &rdfdset);
    432. 

  432. 		/* This is needed because free_session() does not
    433. 

  433. 		 * take into account master_fd when it finds new
    434. 

  434. 		 * maxfd among remaining fd's: */
    435. 

  435. 		if (master_fd > maxfd)
    436. 

  436. 			maxfd = master_fd;
    437. 

  437. 	}
    438. 

  438. 

  439. 	/* select on the master socket, all telnet sockets and their
    440. 

  440. 	 * ptys if there is room in their session buffers. */
    441. 

  441. 	ts = sessions;
    442. 

  442. 	while (ts) {
    443. 

  443. 		/* buf1 is used from socket to pty
    444. 

  444. 		 * buf2 is used from pty to socket */
    445. 

  445. 		if (ts->size1 > 0)       /* can write to pty */
    446. 

  446. 			FD_SET(ts->ptyfd, &wrfdset);
    447. 

  447. 		if (ts->size1 < BUFSIZE) /* can read from socket */
    448. 

  448. 			FD_SET(ts->sockfd_read, &rdfdset);
    449. 

  449. 		if (ts->size2 > 0)       /* can write to socket */
    450. 

  450. 			FD_SET(ts->sockfd_write, &wrfdset);
    451. 

  451. 		if (ts->size2 < BUFSIZE) /* can read from pty */
    452. 

  452. 			FD_SET(ts->ptyfd, &rdfdset);
    453. 

  453. 		ts = ts->next;
    454. 

  454. 	}
    455. 

  455. 

  456. 	selret = select(maxfd + 1, &rdfdset, &wrfdset, 0, 0);
    457. 

  457. 	if (!selret)
    458. 

  458. 		return 0;
    459. 

  459. 

  460. #if ENABLE_FEATURE_TELNETD_STANDALONE
    461. 

  461. 	/* First check for and accept new sessions. */
    462. 

  462. 	if (!IS_INETD && FD_ISSET(master_fd, &rdfdset)) {
    463. 

  463. 		int fd;
    464. 

  464. 		struct tsession *new_ts;
    465. 

  465. 

  466. 		fd = accept(master_fd, NULL, 0);
    467. 

  467. 		if (fd < 0)
    468. 

  468. 			goto again;
    469. 

  469. 		/* Create a new session and link it into our active list */
    470. 

  470. 		new_ts = make_new_session(fd, fd);
    471. 

  471. 		if (new_ts) {
    472. 

  472. 			new_ts->next = sessions;
    473. 

  473. 			sessions = new_ts;
    474. 

  474. 		} else {
    475. 

  475. 			close(fd);
    476. 

  476. 		}
    477. 

  477. 	}
    478. 

  478. #endif
    479. 

  479. 

  480. 	/* Then check for data tunneling. */
    481. 

  481. 	ts = sessions;
    482. 

  482. 	while (ts) { /* For all sessions... */
    483. 

  483. 		struct tsession *next = ts->next; /* in case we free ts. */
    484. 

  484. 

  485. 		if (ts->size1 && FD_ISSET(ts->ptyfd, &wrfdset)) {
    486. 

  486. 			int num_totty;
    487. 

  487. 			char *ptr;
    488. 

  488. 			/* Write to pty from buffer 1. */
    489. 

  489. 			ptr = remove_iacs(ts, &num_totty);
    490. 

  490. 			w = safe_write(ts->ptyfd, ptr, num_totty);
    491. 

  491. 			/* needed? if (w < 0 && errno == EAGAIN) continue; */
    492. 

  492. 			if (w < 0) {
    493. 

  493. 				if (IS_INETD)
    494. 

  494. 					return 0;
    495. 

  495. 				free_session(ts);
    496. 

  496. 				ts = next;
    497. 

  497. 				continue;
    498. 

  498. 			}
    499. 

  499. 			ts->wridx1 += w;
    500. 

  500. 			ts->size1 -= w;
    501. 

  501. 			if (ts->wridx1 == BUFSIZE)
    502. 

  502. 				ts->wridx1 = 0;
    503. 

  503. 		}
    504. 

  504. 

  505. 		if (ts->size2 && FD_ISSET(ts->sockfd_write, &wrfdset)) {
    506. 

  506. 			/* Write to socket from buffer 2. */
    507. 

  507. 			maxlen = MIN(BUFSIZE - ts->wridx2, ts->size2);
    508. 

  508. 			w = safe_write(ts->sockfd_write, ts->buf2 + ts->wridx2, maxlen);
    509. 

  509. 			/* needed? if (w < 0 && errno == EAGAIN) continue; */
    510. 

  510. 			if (w < 0) {
    511. 

  511. 				if (IS_INETD)
    512. 

  512. 					return 0;
    513. 

  513. 				free_session(ts);
    514. 

  514. 				ts = next;
    515. 

  515. 				continue;
    516. 

  516. 			}
    517. 

  517. 			ts->wridx2 += w;
    518. 

  518. 			ts->size2 -= w;
    519. 

  519. 			if (ts->wridx2 == BUFSIZE)
    520. 

  520. 				ts->wridx2 = 0;
    521. 

  521. 		}
    522. 

  522. 

  523. 		if (ts->size1 < BUFSIZE && FD_ISSET(ts->sockfd_read, &rdfdset)) {
    524. 

  524. 			/* Read from socket to buffer 1. */
    525. 

  525. 			maxlen = MIN(BUFSIZE - ts->rdidx1, BUFSIZE - ts->size1);
    526. 

  526. 			r = safe_read(ts->sockfd_read, ts->buf1 + ts->rdidx1, maxlen);
    527. 

  527. 			if (r < 0 && errno == EAGAIN) continue;
    528. 

  528. 			if (r <= 0) {
    529. 

  529. 				if (IS_INETD)
    530. 

  530. 					return 0;
    531. 

  531. 				free_session(ts);
    532. 

  532. 				ts = next;
    533. 

  533. 				continue;
    534. 

  534. 			}
    535. 

  535. 			if (!ts->buf1[ts->rdidx1 + r - 1])
    536. 

  536. 				if (!--r)
    537. 

  537. 					continue;
    538. 

  538. 			ts->rdidx1 += r;
    539. 

  539. 			ts->size1 += r;
    540. 

  540. 			if (ts->rdidx1 == BUFSIZE)
    541. 

  541. 				ts->rdidx1 = 0;
    542. 

  542. 		}
    543. 

  543. 

  544. 		if (ts->size2 < BUFSIZE && FD_ISSET(ts->ptyfd, &rdfdset)) {
    545. 

  545. 			/* Read from pty to buffer 2. */
    546. 

  546. 			maxlen = MIN(BUFSIZE - ts->rdidx2, BUFSIZE - ts->size2);
    547. 

  547. 			r = safe_read(ts->ptyfd, ts->buf2 + ts->rdidx2, maxlen);
    548. 

  548. 			if (r < 0 && errno == EAGAIN) continue;
    549. 

  549. 			if (r <= 0) {
    550. 

  550. 				if (IS_INETD)
    551. 

  551. 					return 0;
    552. 

  552. 				free_session(ts);
    553. 

  553. 				ts = next;
    554. 

  554. 				continue;
    555. 

  555. 			}
    556. 

  556. 			ts->rdidx2 += r;
    557. 

  557. 			ts->size2 += r;
    558. 

  558. 			if (ts->rdidx2 == BUFSIZE)
    559. 

  559. 				ts->rdidx2 = 0;
    560. 

  560. 		}
    561. 

  561. 

  562. 		if (ts->size1 == 0) {
    563. 

  563. 			ts->rdidx1 = 0;
    564. 

  564. 			ts->wridx1 = 0;
    565. 

  565. 		}
    566. 

  566. 		if (ts->size2 == 0) {
    567. 

  567. 			ts->rdidx2 = 0;
    568. 

  568. 			ts->wridx2 = 0;
    569. 

  569. 		}
    570. 

  570. 		ts = next;
    571. 

  571. 	}
    572. 

  572. 	goto again;
    573. 

  573. }
    574.