src - FreeBSD source tree

diff options


context:
space:
mode:

author	Jeremie Le Hen <jlh@FreeBSD.org>	2017-10-06 08:43:14 +0000
committer	Jeremie Le Hen <jlh@FreeBSD.org>	2017-10-06 08:43:14 +0000
commit	e415aa284663746c8babbba2d3871d26980a8b8a (patch)
tree	99adf8549d7fb6aaa4ee39278ce7861a12002115 /libexec
parent	ac63ac6859873627940b3583904083f9716c564d (diff)
download	src-e415aa284663746c8babbba2d3871d26980a8b8a.tar.gz src-e415aa284663746c8babbba2d3871d26980a8b8a.zip

Remove rcmds.

If they are still needed, you can find them in the net/bsdrcmds port. This was proposed June, 20th and approved by various committers [1]. They have been marked as deprecated on CURRENT in r320644 [2] on July, 4th. Both stable/11 and release/11.1 contain the deprecation notice (thanks to allanjude@). Note that ruptime(1)/rwho(1)/rwhod(8) were initially thought to be part of rcmds but this was a mistake and those are therefore NOT removed. [1] https://lists.freebsd.org/pipermail/freebsd-arch/2017-June/018239.html [2] https://svnweb.freebsd.org/base?view=revision&revision=320644 Reviewed by: bapt, brooks Differential Revision: https://reviews.freebsd.org/D12573

Notes

Notes: svn path=/head/; revision=324351

Diffstat (limited to 'libexec')

-rw-r--r--

libexec/Makefile

-rw-r--r--

libexec/rlogind/Makefile

-rw-r--r--

libexec/rlogind/Makefile.depend

-rw-r--r--

libexec/rlogind/rlogind.8

202

-rw-r--r--

libexec/rlogind/rlogind.c

583

-rw-r--r--

libexec/rshd/Makefile

-rw-r--r--

libexec/rshd/Makefile.depend

-rw-r--r--

libexec/rshd/rshd.8

277

-rw-r--r--

libexec/rshd/rshd.c

617

9 files changed, 0 insertions, 1776 deletions

diff --git a/libexec/Makefile b/libexec/Makefile
index 5c6130a18db6..37983f2069d0 100644
--- a/libexec/Makefile
+++ b/libexec/Makefile

@@ -79,11 +79,6 @@ _rtld-elf= rtld-elf

SUBDIR+= rbootd

.endif

-.if ${MK_RCMDS} != "no"

-_rlogind= rlogind

-_rshd= rshd

-.endif

.if ${MK_SENDMAIL} != "no"

_mail.local= mail.local

_smrsh= smrsh

diff --git a/libexec/rlogind/Makefile b/libexec/rlogind/Makefile
deleted file mode 100644
index 626b2e7457dd..000000000000
--- a/libexec/rlogind/Makefile
+++ /dev/null

@@ -1,23 +0,0 @@

-# @(#)Makefile 8.1 (Berkeley) 6/4/93

-# $FreeBSD$

-.include <src.opts.mk>

-PACKAGE=rcmds

-PROG= rlogind

-MAN= rlogind.8

-PACKAGE=rcmds

-LIBADD= util

-WARNS?= 2

-.if ${MK_INET6_SUPPORT} != "no"

-CFLAGS+= -DINET6

-.endif

-.if ${MK_BLACKLIST_SUPPORT} != "no"

-CFLAGS+= -DUSE_BLACKLIST -I${SRCTOP}/contrib/blacklist/include

-LIBADD+= blacklist

-LDFLAGS+=-L${LIBBLACKLISTDIR}

-.endif

-.include <bsd.prog.mk>

diff --git a/libexec/rlogind/Makefile.depend b/libexec/rlogind/Makefile.depend
deleted file mode 100644
index 5ac9545f6f12..000000000000
--- a/libexec/rlogind/Makefile.depend
+++ /dev/null

@@ -1,22 +0,0 @@

-# $FreeBSD$

-# Autogenerated - do NOT edit!

-DIRDEPS = \

- gnu/lib/csu \

- gnu/lib/libgcc \

- include \

- include/arpa \

- include/xlocale \

- lib/${CSU_DIR} \

- lib/libblacklist \

- lib/libc \

- lib/libcompiler_rt \

- lib/libthr \

- lib/libutil \

-.include <dirdeps.mk>

-.if ${DEP_RELDIR} == ${_DEP_RELDIR}

-# local dependencies - needed for -jN in clean tree

-.endif

diff --git a/libexec/rlogind/rlogind.8 b/libexec/rlogind/rlogind.8
deleted file mode 100644
index 09ec8b5000a3..000000000000
--- a/libexec/rlogind/rlogind.8
+++ /dev/null

@@ -1,202 +0,0 @@

-.\"

-.\" Redistribution and use in source and binary forms, with or without

-.\" modification, are permitted provided that the following conditions

-.\" are met:

-.\" 1. Redistributions of source code must retain the above copyright

-.\" notice, this list of conditions and the following disclaimer.

-.\" 2. Redistributions in binary form must reproduce the above copyright

-.\" notice, this list of conditions and the following disclaimer in the

-.\" documentation and/or other materials provided with the distribution.

-.\" 3. Neither the name of the University nor the names of its contributors

-.\" may be used to endorse or promote products derived from this software

-.\" without specific prior written permission.

-.\"

-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND

-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE

-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE

-.\" ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE

-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL

-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS

-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)

-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT

-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY

-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF

-.\" SUCH DAMAGE.

-.\"

-.\" @(#)rlogind.8 8.1 (Berkeley) 6/4/93

-.\" $FreeBSD$

-.\"

-.Dd July 3, 2017

-.Dt RLOGIND 8

-.Os

-.Sh NAME

-.Nm rlogind

-.Nd remote login server

-.Sh SYNOPSIS

-.Nm

-.Op Fl Daln

-.Sh DEPRECATION NOTICE

-.Nm

-is deprecated and will be removed from future versions of the

-.Fx

-base system.

-If

-.Nm

-is still required, it can be installed from ports or packages

-(net/bsdrcmds).

-.Sh DESCRIPTION

-The

-.Nm

-utility is the server for the

-.Xr rlogin 1

-program.

-The server provides a remote login facility

-with authentication based on privileged port numbers from trusted hosts.

-.Pp

-Options supported by

-.Nm :

-.Bl -tag -width indent

-.It Fl D

-Set TCP_NODELAY socket option.

-This improves responsiveness at the expense of

-some additional network traffic.

-.It Fl a

-Ask hostname for verification.

-.It Fl l

-Prevent any authentication based on the user's

-.Dq Pa .rhosts

-file, unless the user is logging in as the superuser.

-.It Fl n

-Disable keep-alive messages.

-.El

-.Pp

-The

-.Nm

-utility listens for service requests at the port indicated in

-the

-.Dq login

-service specification; see

-.Xr services 5 .

-When a service request is received the following protocol

-is initiated:

-.Bl -enum

-.It

-The server checks the client's source port.

-If the port is not in the range 512-1023, the server

-aborts the connection.

-.It

-The server checks the client's source address

-and requests the corresponding host name (see

-.Xr gethostbyaddr 3 ,

-.Xr hosts 5

-and

-.Xr named 8 ) .

-If the hostname cannot be determined,

-the dot-notation representation of the host address is used.

-If the hostname is in the same domain as the server (according to

-the last two components of the domain name),

-or if the

-.Fl a

-option is given,

-the addresses for the hostname are requested,

-verifying that the name and address correspond.

-Normal authentication is bypassed if the address verification fails.

-.El

-.Pp

-Once the source port and address have been checked,

-.Nm

-proceeds with the authentication process described in

-.Xr rshd 8 .

-It then allocates a pseudo terminal (see

-.Xr pty 4 ) ,

-and manipulates file descriptors so that the slave

-half of the pseudo terminal becomes the

-.Em stdin ,

-.Em stdout ,

-and

-.Em stderr

-for a login process.

-The login process is an instance of the

-.Xr login 1

-program, invoked with the

-.Fl f

-option if authentication has succeeded.

-If automatic authentication fails, the user is

-prompted to log in as if on a standard terminal line.

-.Pp

-The parent of the login process manipulates the master side of

-the pseudo terminal, operating as an intermediary

-between the login process and the client instance of the

-.Xr rlogin 1

-program.

-In normal operation, the packet protocol described

-in

-.Xr pty 4

-is invoked to provide

-.Ql ^S/^Q

-type facilities and propagate

-interrupt signals to the remote programs.

-The login process

-propagates the client terminal's baud rate and terminal type,

-as found in the environment variable,

-.Ev TERM ;

-see

-.Xr environ 7 .

-The screen or window size of the terminal is requested from the client,

-and window size changes from the client are propagated to the pseudo terminal.

-.Pp

-Transport-level keepalive messages are enabled unless the

-.Fl n

-option is present.

-The use of keepalive messages allows sessions to be timed out

-if the client crashes or becomes unreachable.

-.Sh FILES

-.Bl -tag -width /etc/hostsxxxxxxxx -compact

-.It Pa /etc/hosts

-.It Pa /etc/hosts.equiv

-.It Ev $HOME Ns Pa /.rhosts

-.It Pa /var/run/nologin

-.El

-.Sh DIAGNOSTICS

-All initial diagnostic messages are indicated

-by a leading byte with a value of 1,

-after which any network connections are closed.

-If there are no errors before

-.Xr login 1

-is invoked, a null byte is returned as in indication of success.

-.Bl -tag -width Ds

-.It Sy Try again.

-A

-.Xr fork 2

-by the server failed.

-.El

-.Sh SEE ALSO

-.Xr login 1 ,

-.Xr ruserok 3 ,

-.Xr hosts 5 ,

-.Xr hosts.equiv 5 ,

-.Xr login.conf 5 ,

-.Xr nologin 5 ,

-.Xr services 5 ,

-.Xr rshd 8

-.Sh HISTORY

-The

-.Nm

-utility appeared in

-.Bx 4.2 .

-.Pp

-IPv6 support was added by WIDE/KAME project.

-.Sh BUGS

-The authentication procedure used here assumes the integrity

-of each client machine and the connecting medium.

-This is

-insecure, but is useful in an

-.Dq open

-environment.

-.Pp

-A facility to allow all data exchanges to be encrypted should be

-present.

-.Pp

-A more extensible protocol should be used.

diff --git a/libexec/rlogind/rlogind.c b/libexec/rlogind/rlogind.c
deleted file mode 100644
index 7ddcfe2a180c..000000000000
--- a/libexec/rlogind/rlogind.c
+++ /dev/null

@@ -1,583 +0,0 @@

-/*-

- *

- * Portions of this software were developed for the FreeBSD Project by

- * ThinkSec AS and NAI Labs, the Security Research Division of Network

- * Associates, Inc. under DARPA/SPAWAR contract N66001-01-C-8035

- * ("CBOSS"), as part of the DARPA CHATS research program.

- *

- * Redistribution and use in source and binary forms, with or without

- * modification, are permitted provided that the following conditions

- * are met:

- * 1. Redistributions of source code must retain the above copyright

- * notice, this list of conditions and the following disclaimer.

- * 2. Redistributions in binary form must reproduce the above copyright

- * notice, this list of conditions and the following disclaimer in the

- * documentation and/or other materials provided with the distribution.

- * 3. Neither the name of the University nor the names of its contributors

- * may be used to endorse or promote products derived from this software

- * without specific prior written permission.

- *

- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND

- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE

- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE

- * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE

- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL

- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS

- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)

- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT

- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY

- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF

- * SUCH DAMAGE.

- */

-#if 0

-#ifndef lint

-static const char copyright[] =

-#endif /* not lint */

-#ifndef lint

-static const char sccsid[] = "@(#)rlogind.c 8.1 (Berkeley) 6/4/93";

-#endif /* not lint */

-#endif

-#include <sys/cdefs.h>

-__FBSDID("$FreeBSD$");

-/*

- * remote login server:

- * \0

- * remuser\0

- * locuser\0

- * terminal_type/speed\0

- * data

- */

-#define FD_SETSIZE 16 /* don't need many bits for select */

-#include <sys/types.h>

-#include <sys/param.h>

-#include <sys/stat.h>

-#include <sys/ioctl.h>

-#include <signal.h>

-#include <termios.h>

-#include <sys/socket.h>

-#include <netinet/in.h>

-#include <netinet/in_systm.h>

-#include <netinet/ip.h>

-#include <netinet/tcp.h>

-#include <arpa/inet.h>

-#include <netdb.h>

-#include <errno.h>

-#include <libutil.h>

-#include <paths.h>

-#include <poll.h>

-#include <pwd.h>

-#include <syslog.h>

-#include <stdio.h>

-#include <stdlib.h>

-#include <string.h>

-#include <unistd.h>

-#ifdef USE_BLACKLIST

-#include <blacklist.h>

-#endif

-#ifndef TIOCPKT_WINDOW

-#define TIOCPKT_WINDOW 0x80

-#endif

-#define ARGSTR "Daln"

-char *env[2];

-#define NMAX 30

-char lusername[NMAX+1], rusername[NMAX+1];

-static char term[64] = "TERM=";

-#define ENVSIZE (sizeof("TERM=")-1) /* skip null for concatenation */

-int keepalive = 1;

-int check_all = 0;

-int no_delay;

-struct passwd *pwd;

-union sockunion {

- struct sockinet {

- u_char si_len;

- u_char si_family;

- u_short si_port;

- } su_si;

- struct sockaddr_in su_sin;

- struct sockaddr_in6 su_sin6;

-};

-#define su_len su_si.si_len

-#define su_family su_si.si_family

-#define su_port su_si.si_port

-void doit(int, union sockunion *);

-int control(int, char *, int);

-void protocol(int, int);

-void cleanup(int);

-void fatal(int, char *, int);

-int do_rlogin(union sockunion *);

-void getstr(char *, int, char *);

-void setup_term(int);

-int do_krb_login(struct sockaddr_in *);

-void usage(void);

-int

-main(int argc, char *argv[])

- extern int __check_rhosts_file;

- union sockunion from;

- socklen_t fromlen;

- int ch, on;

- openlog("rlogind", LOG_PID | LOG_CONS, LOG_AUTH);

- opterr = 0;

- while ((ch = getopt(argc, argv, ARGSTR)) != -1)

- switch (ch) {

- case 'D':

- no_delay = 1;

- break;

- case 'a':

- check_all = 1;

- break;

- case 'l':

- __check_rhosts_file = 0;

- break;

- case 'n':

- keepalive = 0;

- break;

- case '?':

- default:

- usage();

- break;

- }

- argc -= optind;

- argv += optind;

- fromlen = sizeof (from);

- if (getpeername(0, (struct sockaddr *)&from, &fromlen) < 0) {

- syslog(LOG_ERR,"Can't get peer name of remote host: %m");

- fatal(STDERR_FILENO, "Can't get peer name of remote host", 1);

- }

- on = 1;

- if (keepalive &&

- setsockopt(0, SOL_SOCKET, SO_KEEPALIVE, &on, sizeof (on)) < 0)

- syslog(LOG_WARNING, "setsockopt (SO_KEEPALIVE): %m");

- if (no_delay &&

- setsockopt(0, IPPROTO_TCP, TCP_NODELAY, &on, sizeof(on)) < 0)

- syslog(LOG_WARNING, "setsockopt (TCP_NODELAY): %m");

- if (from.su_family == AF_INET)

- {

- on = IPTOS_LOWDELAY;

- if (setsockopt(0, IPPROTO_IP, IP_TOS, (char *)&on, sizeof(int)) < 0)

- syslog(LOG_WARNING, "setsockopt (IP_TOS): %m");

- }

- doit(0, &from);

- return 0;

-int child;

-int netf;

-char line[MAXPATHLEN];

-int confirmed;

-struct winsize win = { 0, 0, 0, 0 };

-void

-doit(int f, union sockunion *fromp)

- int master, pid, on = 1;

- int authenticated = 0;

- char hostname[2 * MAXHOSTNAMELEN + 1];

- char nameinfo[2 * INET6_ADDRSTRLEN + 1];

- char c;

- alarm(60);

- read(f, &c, 1);

- if (c != 0)

- exit(1);

- alarm(0);

- realhostname_sa(hostname, sizeof(hostname) - 1,

- (struct sockaddr *)fromp, fromp->su_len);

- /* error check ? */

- fromp->su_port = ntohs((u_short)fromp->su_port);

- hostname[sizeof(hostname) - 1] = '\0';

- {

- if ((fromp->su_family != AF_INET

-#ifdef INET6

- && fromp->su_family != AF_INET6

-#endif

- ) ||

- fromp->su_port >= IPPORT_RESERVED ||

- fromp->su_port < IPPORT_RESERVED/2) {

- getnameinfo((struct sockaddr *)fromp,

- fromp->su_len,

- nameinfo, sizeof(nameinfo), NULL, 0,

- NI_NUMERICHOST);

- /* error check ? */

- syslog(LOG_NOTICE, "Connection from %s on illegal port",

- nameinfo);

-#ifdef USE_BLACKLIST

- blacklist(1, STDIN_FILENO, "illegal port");

-#endif

- fatal(f, "Permission denied", 0);

- }

-#ifdef IP_OPTIONS

- if (fromp->su_family == AF_INET)

- {

- u_char optbuf[BUFSIZ/3];

- socklen_t optsize = sizeof(optbuf);

- int ipproto, i;

- struct protoent *ip;

- if ((ip = getprotobyname("ip")) != NULL)

- ipproto = ip->p_proto;

- else

- ipproto = IPPROTO_IP;

- if (getsockopt(0, ipproto, IP_OPTIONS, (char *)optbuf,

- &optsize) == 0 && optsize != 0) {

- for (i = 0; i < optsize; ) {

- u_char c = optbuf[i];

- if (c == IPOPT_LSRR || c == IPOPT_SSRR) {

- syslog(LOG_NOTICE,

- "Connection refused from %s with IP option %s",

- inet_ntoa(fromp->su_sin.sin_addr),

- c == IPOPT_LSRR ? "LSRR" : "SSRR");

-#ifdef USE_BLACKLIST

- blacklist(1, STDIN_FILENO, "source routing present");

-#endif

- exit(1);

- }

- if (c == IPOPT_EOL)

- break;

- i += (c == IPOPT_NOP) ? 1 : optbuf[i+1];

- }

-#endif

- if (do_rlogin(fromp) == 0)

- authenticated++;

- }

- if (confirmed == 0) {

- write(f, "", 1);

- confirmed = 1; /* we sent the null! */

- }

- netf = f;

- pid = forkpty(&master, line, NULL, &win);

- if (pid < 0) {

- if (errno == ENOENT)

- fatal(f, "Out of ptys", 0);

- else

- fatal(f, "Forkpty", 1);

- }

- if (pid == 0) {

- if (f > 2) /* f should always be 0, but... */

- (void) close(f);

- setup_term(0);

- if (*lusername=='-') {

- syslog(LOG_ERR, "tried to pass user \"%s\" to login",

- lusername);

-#ifdef USE_BLACKLIST

- blacklist(1, STDIN_FILENO, "invalid user");

-#endif

- fatal(STDERR_FILENO, "invalid user", 0);

- }

-#ifdef USE_BLACKLIST

- blacklist(0, STDIN_FILENO, "success");

-#endif

- if (authenticated) {

- execl(_PATH_LOGIN, "login", "-p",

- "-h", hostname, "-f", lusername, (char *)NULL);

- } else

- execl(_PATH_LOGIN, "login", "-p",

- "-h", hostname, lusername, (char *)NULL);

- fatal(STDERR_FILENO, _PATH_LOGIN, 1);

- /*NOTREACHED*/

- }

- ioctl(f, FIONBIO, &on);

- ioctl(master, FIONBIO, &on);

- ioctl(master, TIOCPKT, &on);

- signal(SIGCHLD, cleanup);

- protocol(f, master);

- signal(SIGCHLD, SIG_IGN);

- cleanup(0);

-char magic[2] = { 0377, 0377 };

-char oobdata[] = {TIOCPKT_WINDOW};

-/*

- * Handle a "control" request (signaled by magic being present)

- * in the data stream. For now, we are only willing to handle

- * window size changes.

- */

-int

-control(int pty, char *cp, int n)

- struct winsize w;

- if (n < 4 + (int)sizeof(w) || cp[2] != 's' || cp[3] != 's')

- return (0);

- oobdata[0] &= ~TIOCPKT_WINDOW; /* we know he heard */

- bcopy(cp+4, (char *)&w, sizeof(w));

- w.ws_row = ntohs(w.ws_row);

- w.ws_col = ntohs(w.ws_col);

- w.ws_xpixel = ntohs(w.ws_xpixel);

- w.ws_ypixel = ntohs(w.ws_ypixel);

- (void)ioctl(pty, TIOCSWINSZ, &w);

- return (4+sizeof (w));

-/*

- * rlogin "protocol" machine.

- */

-void

-protocol(int f, int p)

- char pibuf[1024+1], fibuf[1024], *pbp = NULL, *fbp = NULL;

- int pcc = 0, fcc = 0;

- int cc, nfd, n;

- char cntl;

- /*

- * Must ignore SIGTTOU, otherwise we'll stop

- * when we try and set slave pty's window shape

- * (our controlling tty is the master pty).

- */

- (void) signal(SIGTTOU, SIG_IGN);

- send(f, oobdata, 1, MSG_OOB); /* indicate new rlogin */

- if (f > p)

- nfd = f + 1;

- else

- nfd = p + 1;

- for (;;) {

- struct pollfd set[2];

- set[0].fd = p;

- set[0].events = POLLPRI;

- set[1].fd = f;

- set[1].events = 0;

- if (fcc)

- set[0].events |= POLLOUT;

- else

- set[1].events |= POLLIN;

- if (pcc >= 0) {

- if (pcc)

- set[1].events |= POLLOUT;

- else

- set[0].events |= POLLIN;

- }

- if ((n = poll(set, 2, INFTIM)) < 0) {

- if (errno == EINTR)

- continue;

- fatal(f, "poll", 1);

- }

- if (n == 0) {

- /* shouldn't happen... */

- sleep(5);

- continue;

- }

-#define pkcontrol(c) ((c)&(TIOCPKT_FLUSHWRITE|TIOCPKT_NOSTOP|TIOCPKT_DOSTOP))

- if (set[0].revents & POLLPRI) {

- cc = read(p, &cntl, 1);

- if (cc == 1 && pkcontrol(cntl)) {

- cntl |= oobdata[0];

- send(f, &cntl, 1, MSG_OOB);

- if (cntl & TIOCPKT_FLUSHWRITE)

- pcc = 0;

- }

- if (set[1].revents & POLLIN) {

- fcc = read(f, fibuf, sizeof(fibuf));

- if (fcc < 0 && errno == EWOULDBLOCK)

- fcc = 0;

- else {

- char *cp;

- int left, n;

- if (fcc <= 0)

- break;

- fbp = fibuf;

- top:

- for (cp = fibuf; cp < fibuf+fcc-1; cp++)

- if (cp[0] == magic[0] &&

- cp[1] == magic[1]) {

- left = fcc - (cp-fibuf);

- n = control(p, cp, left);

- if (n) {

- left -= n;

- if (left > 0)

- bcopy(cp+n, cp, left);

- fcc -= n;

- goto top; /* n^2 */

- }

- if (set[0].revents & POLLOUT && fcc > 0) {

- cc = write(p, fbp, fcc);

- if (cc > 0) {

- fcc -= cc;

- fbp += cc;

- }

- if (set[0].revents & POLLIN) {

- pcc = read(p, pibuf, sizeof (pibuf));

- pbp = pibuf;

- if (pcc < 0 && errno == EWOULDBLOCK)

- pcc = 0;

- else if (pcc <= 0)

- break;

- else if (pibuf[0] == 0) {

- pbp++, pcc--;

- } else {

- if (pkcontrol(pibuf[0])) {

- pibuf[0] |= oobdata[0];

- send(f, &pibuf[0], 1, MSG_OOB);

- }

- pcc = 0;

- }

- if (set[1].revents & POLLOUT && pcc > 0) {

- cc = write(f, pbp, pcc);

- if (cc > 0) {

- pcc -= cc;

- pbp += cc;

- }

-void

-cleanup(int signo __unused)

- shutdown(netf, SHUT_RDWR);

- exit(1);

-void

-fatal(int f, char *msg, int syserr)

- int len;

- char buf[BUFSIZ], *bp = buf;

- /*

- * Prepend binary one to message if we haven't sent

- * the magic null as confirmation.

- */

- if (!confirmed)

- *bp++ = '\01'; /* error indicator */

- if (syserr)

- len = snprintf(bp, sizeof(buf), "rlogind: %s: %s.\r\n",

- msg, strerror(errno));

- else

- len = snprintf(bp, sizeof(buf), "rlogind: %s.\r\n", msg);

- if (len < 0)

- len = 0;

- (void) write(f, buf, bp + len - buf);

- exit(1);

-int

-do_rlogin(union sockunion *dest)

- getstr(rusername, sizeof(rusername), "remuser too long");

- getstr(lusername, sizeof(lusername), "locuser too long");

- getstr(term+ENVSIZE, sizeof(term)-ENVSIZE, "Terminal type too long");

- pwd = getpwnam(lusername);

- if (pwd == NULL)

- return (-1);

- /* XXX why don't we syslog() failure? */

- return (iruserok_sa(dest, dest->su_len, pwd->pw_uid == 0, rusername,

- lusername));

-void

-getstr(char *buf, int cnt, char *errmsg)

- char c;

- do {

- if (read(STDIN_FILENO, &c, 1) != 1)

- exit(1);

- if (--cnt < 0) {

-#ifdef USE_BLACKLIST

- blacklist(1, STDIN_FILENO, "buffer overflow");

-#endif

- fatal(STDOUT_FILENO, errmsg, 0);

- }

- *buf++ = c;

- } while (c != 0);

-extern char **environ;

-void

-setup_term(int fd)

- char *cp;

- char *speed;

- struct termios tt, def;

- cp = strchr(term + ENVSIZE, '/');

-#ifndef notyet

- tcgetattr(fd, &tt);

- if (cp) {

- *cp++ = '\0';

- speed = cp;

- cp = strchr(speed, '/');

- if (cp)

- *cp++ = '\0';

- cfsetspeed(&tt, atoi(speed));

- }

- cfmakesane(&def);

- tt.c_iflag = def.c_iflag;

- tt.c_oflag = def.c_oflag;

- tt.c_lflag = def.c_lflag;

- tcsetattr(fd, TCSAFLUSH, &tt);

-#else

- if (cp) {

- *cp++ = '\0';

- speed = cp;

- cp = strchr(speed, '/');

- if (cp)

- *cp++ = '\0';

- tcgetattr(fd, &tt);

- cfsetspeed(&tt, atoi(speed));

- tcsetattr(fd, TCSAFLUSH, &tt);

- }

-#endif

- env[0] = term;

- env[1] = 0;

- environ = env;

-void

-usage(void)

- syslog(LOG_ERR, "usage: rlogind [-" ARGSTR "]");

diff --git a/libexec/rshd/Makefile b/libexec/rshd/Makefile
deleted file mode 100644
index 924f2eff81b7..000000000000
--- a/libexec/rshd/Makefile
+++ /dev/null

@@ -1,24 +0,0 @@

-# From: @(#)Makefile 8.1 (Berkeley) 6/4/93

-# $FreeBSD$

-PACKAGE=rcmds

-.include <src.opts.mk>

-PROG= rshd

-MAN= rshd.8

-PACKAGE=rcmds

-WARNS?= 3

-WFORMAT=0

-LIBADD= util pam

-.if ${MK_BLACKLIST_SUPPORT} != "no"

-CFLAGS+= -DUSE_BLACKLIST -I${SRCTOP}/contrib/blacklist/include

-LIBADD+= blacklist

-LDFLAGS+=-L${LIBBLACKLISTDIR}

-.endif

-.include <bsd.prog.mk>

diff --git a/libexec/rshd/Makefile.depend b/libexec/rshd/Makefile.depend
deleted file mode 100644
index 289484837f9a..000000000000
--- a/libexec/rshd/Makefile.depend
+++ /dev/null

@@ -1,23 +0,0 @@

-# $FreeBSD$

-# Autogenerated - do NOT edit!

-DIRDEPS = \

- gnu/lib/csu \

- gnu/lib/libgcc \

- include \

- include/arpa \

- include/xlocale \

- lib/${CSU_DIR} \

- lib/libblacklist \

- lib/libc \

- lib/libcompiler_rt \

- lib/libpam/libpam \

- lib/libthr \

- lib/libutil \

-.include <dirdeps.mk>

-.if ${DEP_RELDIR} == ${_DEP_RELDIR}

-# local dependencies - needed for -jN in clean tree

-.endif

diff --git a/libexec/rshd/rshd.8 b/libexec/rshd/rshd.8
deleted file mode 100644
index 700c2ed0b59c..000000000000
--- a/libexec/rshd/rshd.8
+++ /dev/null

@@ -1,277 +0,0 @@