#!/bin/sh # Copyright (C) 2022 Kovid Goyal # Distributed under terms of the GPLv3 license. saved_tty_settings="" cleanup_on_bootstrap_exit() { [ -n "$saved_tty_settings" ] && command stty "$saved_tty_settings" 2> /dev/null < /dev/tty saved_tty_settings="" } die() { printf "\033[31m%s\033[m\n\r" "$*" > /dev/stderr; cleanup_on_bootstrap_exit; exit 1; } init_tty() { saved_tty_settings=$(command stty -g 2> /dev/null < /dev/tty) tty_ok="n" [ -n "$saved_tty_settings" ] && tty_ok="y" if [ "$tty_ok" = "y" ]; then command stty raw min 1 time 0 -echo 2> /dev/null < /dev/tty || die "stty failed to set raw mode" return 0 fi return 1 } # try to use zsh's builtin sysread function for reading to TTY # as it is superior to the POSIX variants. The builtin read function doesn't work # as it hangs reading N bytes on macOS tty_fd=-1 if builtin zmodload zsh/system 2> /dev/null; then builtin sysopen -o cloexec -rwu tty_fd -- "$TTY" 2> /dev/null [ $tty_fd = -1 ] && builtin sysopen -o cloexec -rwu tty_fd -- /dev/tty 2> /dev/null fi if [ $tty_fd -gt -1 ]; then dcs_to_kitty() { builtin local b64data b64data=$(builtin printf "%s" "$2" | builtin command base64) builtin print -nu "$tty_fd" '\eP@kitty-'"${1}|${b64data//[[:space:]]}"'\e\\' } read_one_byte_from_tty() { builtin sysread -s "1" -i "$tty_fd" n 2> /dev/null return $? } read_n_bytes_from_tty() { builtin let num_left=$1 while [ $num_left -gt 0 ]; do builtin sysread -c num_read -s "$num_left" -i "$tty_fd" -o "1" 2> /dev/null || die "Failed to read $num_left bytes from TTY using sysread" builtin let num_left=$num_left-$num_read done } else dcs_to_kitty() { printf "\033P@kitty-$1|%s\033\\" "$(printf "%s" "$2" | command base64 | command tr -d \\n)" > /dev/tty; } read_one_byte_from_tty() { # We need a way to read a single byte at a time and to read a specified number of bytes in one invocation. # The options are head -c, read -N and dd # # read -N is not in POSIX and dash/posh dont implement it. Also bash seems to read beyond # the specified number of bytes into an internal buffer. # # head -c reads beyond the specified number of bytes into an internal buffer on macOS # # POSIX dd works for one byte at a time but for reading X bytes it needs the GNU iflag=count_bytes # extension, and is anyway unsafe as it can lead to corrupt output when the read syscall is interrupted. n=$(command dd bs=1 count=1 2> /dev/null < /dev/tty) return $? } read_n_bytes_from_tty() { # using dd with bs=1 is very slow, so use head. On non GNU coreutils head # does not limit itself to reading -c bytes only from the pipe so we can potentially lose # some trailing data, for instance if the user starts typing. Cant be helped. command head -c "$1" < /dev/tty } fi debug() { dcs_to_kitty "print" "debug: $1"; } echo_via_kitty() { dcs_to_kitty "echo" "$1"; } hostname="$HOSTNAME" [ -z "$hostname" ] && hostname="$(command hostname 2> /dev/null)" [ -z "$hostname" ] && hostname="$(command hostnamectl hostname 2> /dev/null)" [ -z "$hostname" ] && hostname="$(command uname -m 2> /dev/null)" [ -z "$hostname" ] && hostname="_" # ensure $HOME is set [ -z "$HOME" ] && HOME=~ # ensure $USER is set [ -z "$USER" ] && USER="$(command whoami 2> /dev/null)" # ask for the SSH data leading_data="" init_tty && trap "cleanup_on_bootstrap_exit" EXIT [ "$tty_ok" = "y" ] && dcs_to_kitty "ssh" "id="REQUEST_ID":hostname="$hostname":pwfile="PASSWORD_FILENAME":user="$USER":pw="DATA_PASSWORD"" record_separator=$(printf "\036") mv_files_and_dirs() { cwd="$PWD" cd "$1" command find . -type d -exec mkdir -p "$2/{}" ";" command find . -type l -exec sh -c "tgt=\$(command readlink -n \"{}\"); command ln -sf \"\$tgt\" \"$2/{}\"; command rm -f \"{}\"" ";" command find . -type f -exec mv "{}" "$2/{}" ";" cd "$cwd" } compile_terminfo() { # export TERMINFO tname=".terminfo" if [ -e "/usr/share/misc/terminfo.cdb" ]; then # NetBSD requires this see https://github.com/kovidgoyal/kitty/issues/4622 tname=".terminfo.cdb" fi export TERMINFO="$HOME/$tname" # compile terminfo for this system if [ -x "$(command -v tic)" ]; then tic_out=$(command tic -x -o "$1/$tname" "$1/.terminfo/kitty.terminfo" 2>&1) rc=$? if [ "$rc" != "0" ]; then die "$tic_out"; fi fi } untar_and_read_env() { # extract the tar file atomically, in the sense that any file from the # tarfile is only put into place after it has been fully written to disk tdir=$(command mktemp -d "$HOME/.kitty-ssh-kitten-untar-XXXXXXXXXXXX") [ $? = 0 ] || die "Creating temp directory failed" read_n_bytes_from_tty "$1" | command base64 -d | command tar xpjf - --no-same-owner -C "$tdir" data_file="$tdir/data.sh" [ -f "$data_file" ] && . "$data_file" data_dir="$HOME/$KITTY_SSH_KITTEN_DATA_DIR" compile_terminfo "$tdir/home" mv_files_and_dirs "$tdir/home" "$HOME" [ -e "$tdir/root" ] && mv_files_and_dirs "$tdir/root" "" command rm -rf "$tdir" [ -z "KITTY_SSH_KITTEN_DATA_DIR" ] && die "Failed to read SSH data from tty" unset KITTY_SSH_KITTEN_DATA_DIR } read_record() { record="" while :; do read_one_byte_from_tty || die "Reading a byte from the TTY failed" [ "$n" = "$record_separator" ] && break record="$record$n" done printf "%s" "$record" } get_data() { leading_data=$(read_record) size=$(read_record) case "$size" in ("!"*) die "$size" ;; esac untar_and_read_env "$size" } if [ "$tty_ok" = "y" ]; then get_data cleanup_on_bootstrap_exit if [ -n "$leading_data" ]; then # clear current line as it might have things echoed on it from leading_data # because we only turn off echo in this script whereas the leading bytes could # have been sent before the script had a chance to run printf "\r\033[K" > /dev/tty fi shell_integration_dir="$data_dir/shell-integration" [ -f "$HOME/.terminfo/kitty.terminfo" ] || die "Incomplete extraction of ssh data" fi login_shell_is_ok() { if [ -z "$login_shell" -o ! -x "$login_shell" ]; then return 1; fi case "$login_shell" in *sh) return 0; esac return 1 } detect_python() { python=$(command -v python3) if [ -z "$python" ]; then python=$(command -v python2); fi if [ -z "$python" ]; then python=$(command -v python); fi if [ -z "$python" -o ! -x "$python" ]; then return 1; fi return 0 } parse_passwd_record() { printf "%s" "$(command grep -o '[^:]*$')" } using_getent() { cmd=$(command -v getent) if [ -n "$cmd" ]; then output=$(command $cmd passwd $USER 2>/dev/null) if [ $? = 0 ]; then login_shell=$(echo $output | parse_passwd_record) if login_shell_is_ok; then return 0; fi fi fi return 1 } using_id() { cmd=$(command -v id) if [ -n "$cmd" ]; then output=$(command $cmd -P $USER 2>/dev/null) if [ $? = 0 ]; then login_shell=$(echo $output | parse_passwd_record) if login_shell_is_ok; then return 0; fi fi fi return 1 } using_python() { if detect_python; then output=$(command $python -c "import pwd, os; print(pwd.getpwuid(os.geteuid()).pw_shell)") if [ $? = 0 ]; then login_shell=$output if login_shell_is_ok; then return 0; fi fi fi return 1 } using_passwd() { if [ -f "/etc/passwd" -a -r "/etc/passwd" ]; then output=$(command grep "^$USER:" /etc/passwd 2>/dev/null) if [ $? = 0 ]; then login_shell=$(echo $output | parse_passwd_record) if login_shell_is_ok; then return 0; fi fi fi return 1 } execute_with_python() { if detect_python; then exec $python -c "import os; os.execlp('$login_shell', '-' '$shell_name')" fi return 1 } if [ -n "$KITTY_LOGIN_SHELL" ]; then login_shell="$KITTY_LOGIN_SHELL" unset KITTY_LOGIN_SHELL else using_getent || using_id || using_python || using_passwd || die "Could not detect login shell" fi shell_name=$(command basename $login_shell) # If a command was passed to SSH execute it here EXEC_CMD if [ "$tty_ok" = "n" ]; then if [ -z "$(command -v stty)" ]; then printf "%s\n" "stty missing ssh kitten cannot function" > /dev/stderr else printf "%s\n" "stty failed ssh kitten cannot function" > /dev/stderr fi fi exec_zsh_with_integration() { zdotdir="$ZDOTDIR" if [ -z "$zdotdir" ]; then zdotdir=~ else export KITTY_ORIG_ZDOTDIR="$zdotdir" fi # dont prevent zsh-newuser-install from running if [ -f "$zdotdir/.zshrc" -o -f "$zdotdir/.zshenv" -o -f "$zdotdir/.zprofile" -o -f "$zdotdir/.zlogin" ]; then export ZDOTDIR="$shell_integration_dir/zsh" exec "$login_shell" "-l" fi unset KITTY_ORIG_ZDOTDIR # ensure this is not propagated } exec_fish_with_integration() { if [ -z "$XDG_DATA_DIRS" ]; then export XDG_DATA_DIRS="$shell_integration_dir" else export XDG_DATA_DIRS="$shell_integration_dir:$XDG_DATA_DIRS" fi export KITTY_FISH_XDG_DATA_DIR="$shell_integration_dir" exec "$login_shell" "-l" } exec_bash_with_integration() { export ENV="$shell_integration_dir/bash/kitty.bash" export KITTY_BASH_INJECT="1" if [ -z "$HISTFILE" ]; then export HISTFILE="$HOME/.bash_history" export KITTY_BASH_UNEXPORT_HISTFILE="1" fi exec "$login_shell" "--posix" } exec_with_shell_integration() { case "$shell_name" in "zsh") exec_zsh_with_integration ;; "fish") exec_fish_with_integration ;; "bash") exec_bash_with_integration ;; esac } # Used in the tests TEST_SCRIPT case "$KITTY_SHELL_INTEGRATION" in ("") # only blanks or unset unset KITTY_SHELL_INTEGRATION ;; (*) # not blank q=$(printf "%s" "$KITTY_SHELL_INTEGRATION" | command grep '\bno-rc\b') if [ -z "$q" ]; then exec_with_shell_integration # exec failed, unset unset KITTY_SHELL_INTEGRATION fi ;; esac # We need to pass the first argument to the executed program with a leading - # to make sure the shell executes as a login shell. Note that not all shells # support exec -a so we use the below to try to detect such shells [ "$(exec -a echo echo OK 2> /dev/null)" = "OK" ] && exec -a "-$shell_name" $login_shell execute_with_python exec $login_shell "-l"