From c77c5d026a51bdddba0225095d6d6fc7605932e5 Mon Sep 17 00:00:00 2001 From: "Todd C. Miller" Date: Thu, 15 Jun 2017 12:59:46 -0600 Subject: [PATCH] When copying terminal settings from one tty to another only copy a subset of the flags. Sudo now copies the same set of flags that OpenSSH uses, which should be safe. --- lib/util/term.c | 81 ++++++++++++++++++++++++++++++++++++++++++++----- 1 file changed, 73 insertions(+), 8 deletions(-) diff --git a/lib/util/term.c b/lib/util/term.c index 354e3c907..0fb2eb205 100644 --- a/lib/util/term.c +++ b/lib/util/term.c @@ -1,5 +1,5 @@ /* - * Copyright (c) 2011-2015 Todd C. Miller + * Copyright (c) 2011-2015, 2017 Todd C. Miller * * Permission to use, copy, modify, and distribute this software for any * purpose with or without fee is hereby granted, provided that the above @@ -34,17 +34,54 @@ #include "sudo_debug.h" #include "sudo_util.h" +/* TCSASOFT is a BSD extension that ignores control flags and speed. */ #ifndef TCSASOFT # define TCSASOFT 0 #endif -#ifndef ECHONL -# define ECHONL 0 + +/* Non-standard termios input flags */ +#ifndef IUCLC +# define IUCLC 0 +#endif +#ifndef IMAXBEL +# define IMAXBEL 0 +#endif +#ifndef IUTF8 +# define IUTF8 0 +#endif + +/* Non-standard termios output flags */ +#ifndef OLCUC +# define OLCUC 0 +#endif +#ifndef ONLCR +# define ONLCR 0 +#endif +#ifndef OCRNL +# define OCRNL 0 +#endif +#ifndef ONOCR +# define ONOCR 0 +#endif +#ifndef ONLRET +# define ONLRET 0 +#endif + +/* Non-standard termios local flags */ +#ifndef XCASE +# define XCASE 0 #endif #ifndef IEXTEN # define IEXTEN 0 #endif -#ifndef IUCLC -# define IUCLC 0 +#ifndef ECHOCTL +# define ECHOCTL 0 +#endif +#ifndef ECHOKE +# define ECHOKE 0 +#endif +#ifndef PENDIN +# define PENDIN 0 #endif #ifndef _POSIX_VDISABLE @@ -202,19 +239,47 @@ sudo_term_cbreak_v1(int fd) debug_return_bool(false); } +/* Termios flags to copy between terminals. */ +#define INPUT_FLAGS (IGNPAR|PARMRK|INPCK|ISTRIP|INLCR|IGNCR|ICRNL|IUCLC|IXON|IXANY|IXOFF|IMAXBEL|IUTF8) +#define OUTPUT_FLAGS (OPOST|OLCUC|ONLCR|OCRNL|ONOCR|ONLRET) +#define CONTROL_FLAGS (CS7|CS8|PARENB|PARODD) +#define LOCAL_FLAGS (ISIG|ICANON|XCASE|ECHO|ECHOE|ECHOK|ECHONL|NOFLSH|TOSTOP|IEXTEN|ECHOCTL|ECHOKE|PENDIN) + /* * Copy terminal settings from one descriptor to another. + * We cannot simply copy the struct termios as src and dst may be + * different terminal types (pseudo-tty vs. console or glass tty). * Returns true on success or false on failure. */ bool sudo_term_copy_v1(int src, int dst) { - struct termios tt; + struct termios tt_src, tt_dst; + speed_t speed; + int i; debug_decl(sudo_term_copy, SUDO_DEBUG_UTIL) - if (tcgetattr(src, &tt) != 0) + if (tcgetattr(src, &tt_src) != 0 || tcgetattr(dst, &tt_dst) != 0) debug_return_bool(false); - if (tcsetattr_nobg(dst, TCSASOFT|TCSAFLUSH, &tt) == 0) + + /* Copy select input, output, control and local flags. */ + tt_dst.c_iflag |= (tt_src.c_iflag & INPUT_FLAGS); + tt_dst.c_oflag |= (tt_src.c_oflag & OUTPUT_FLAGS); + tt_dst.c_cflag |= (tt_src.c_cflag & CONTROL_FLAGS); + tt_dst.c_lflag |= (tt_src.c_lflag & LOCAL_FLAGS); + + /* Copy special chars from src verbatim. */ + for (i = 0; i < NCCS; i++) + tt_dst.c_cc[i] = tt_src.c_cc[i]; + + /* Copy speed from src (zero output speed closes the connection). */ + if ((speed = cfgetospeed(&tt_src)) == B0) + speed = B38400; + cfsetospeed(&tt_dst, speed); + speed = cfgetispeed(&tt_src); + cfsetispeed(&tt_dst, speed); + + if (tcsetattr_nobg(dst, TCSASOFT|TCSAFLUSH, &tt_dst) == 0) debug_return_bool(true); debug_return_bool(false); } -- 2.49.0