search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
- (djm) [acss.c auth-krb5.c auth-options.c auth-pam.c auth-shadow.c]
[openssh-git.git] / loginrec.c
blob955d42e8f4c5887145c6232ab2f1b450e748ce3b
1 /*
2 * Copyright (c) 2000 Andre Lucas. All rights reserved.
3 * Portions copyright (c) 1998 Todd C. Miller
4 * Portions copyright (c) 1996 Jason Downs
5 * Portions copyright (c) 1996 Theo de Raadt
6 *
7 * Redistribution and use in source and binary forms, with or without
8 * modification, are permitted provided that the following conditions
9 * are met:
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
15 *
16 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
17 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
18 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
19 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
20 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
21 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
22 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
23 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
24 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
25 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
26 */
27
28 /*
29 * The btmp logging code is derived from login.c from util-linux and is under
30 * the the following license:
31 *
32 * Copyright (c) 1980, 1987, 1988 The Regents of the University of California.
33 * All rights reserved.
34 *
35 * Redistribution and use in source and binary forms are permitted
36 * provided that the above copyright notice and this paragraph are
37 * duplicated in all such forms and that any documentation,
38 * advertising materials, and other materials related to such
39 * distribution and use acknowledge that the software was developed
40 * by the University of California, Berkeley. The name of the
41 * University may not be used to endorse or promote products derived
42 * from this software without specific prior written permission.
43 * THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR
44 * IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED
45 * WARRANTIES OF MERCHANTIBILITY AND FITNESS FOR A PARTICULAR PURPOSE.
46 */
47
48
49 /**
50 ** loginrec.c: platform-independent login recording and lastlog retrieval
51 **/
52
53 /*
54 * The new login code explained
55 * ============================
56 *
57 * This code attempts to provide a common interface to login recording
58 * (utmp and friends) and last login time retrieval.
59 *
60 * Its primary means of achieving this is to use 'struct logininfo', a
61 * union of all the useful fields in the various different types of
62 * system login record structures one finds on UNIX variants.
63 *
64 * We depend on autoconf to define which recording methods are to be
65 * used, and which fields are contained in the relevant data structures
66 * on the local system. Many C preprocessor symbols affect which code
67 * gets compiled here.
68 *
69 * The code is designed to make it easy to modify a particular
70 * recording method, without affecting other methods nor requiring so
71 * many nested conditional compilation blocks as were commonplace in
72 * the old code.
73 *
74 * For login recording, we try to use the local system's libraries as
75 * these are clearly most likely to work correctly. For utmp systems
76 * this usually means login() and logout() or setutent() etc., probably
77 * in libutil, along with logwtmp() etc. On these systems, we fall back
78 * to writing the files directly if we have to, though this method
79 * requires very thorough testing so we do not corrupt local auditing
80 * information. These files and their access methods are very system
81 * specific indeed.
82 *
83 * For utmpx systems, the corresponding library functions are
84 * setutxent() etc. To the author's knowledge, all utmpx systems have
85 * these library functions and so no direct write is attempted. If such
86 * a system exists and needs support, direct analogues of the [uw]tmp
87 * code should suffice.
88 *
89 * Retrieving the time of last login ('lastlog') is in some ways even
90 * more problemmatic than login recording. Some systems provide a
91 * simple table of all users which we seek based on uid and retrieve a
92 * relatively standard structure. Others record the same information in
93 * a directory with a separate file, and others don't record the
94 * information separately at all. For systems in the latter category,
95 * we look backwards in the wtmp or wtmpx file for the last login entry
96 * for our user. Naturally this is slower and on busy systems could
97 * incur a significant performance penalty.
98 *
99 * Calling the new code
100 * --------------------
101 *
102 * In OpenSSH all login recording and retrieval is performed in
103 * login.c. Here you'll find working examples. Also, in the logintest.c
104 * program there are more examples.
105 *
106 * Internal handler calling method
107 * -------------------------------
108 *
109 * When a call is made to login_login() or login_logout(), both
110 * routines set a struct logininfo flag defining which action (log in,
111 * or log out) is to be taken. They both then call login_write(), which
112 * calls whichever of the many structure-specific handlers autoconf
113 * selects for the local system.
114 *
115 * The handlers themselves handle system data structure specifics. Both
116 * struct utmp and struct utmpx have utility functions (see
117 * construct_utmp*()) to try to make it simpler to add extra systems
118 * that introduce new features to either structure.
119 *
120 * While it may seem terribly wasteful to replicate so much similar
121 * code for each method, experience has shown that maintaining code to
122 * write both struct utmp and utmpx in one function, whilst maintaining
123 * support for all systems whether they have library support or not, is
124 * a difficult and time-consuming task.
125 *
126 * Lastlog support proceeds similarly. Functions login_get_lastlog()
127 * (and its OpenSSH-tuned friend login_get_lastlog_time()) call
128 * getlast_entry(), which tries one of three methods to find the last
129 * login time. It uses local system lastlog support if it can,
130 * otherwise it tries wtmp or wtmpx before giving up and returning 0,
131 * meaning "tilt".
132 *
133 * Maintenance
134 * -----------
135 *
136 * In many cases it's possible to tweak autoconf to select the correct
137 * methods for a particular platform, either by improving the detection
138 * code (best), or by presetting DISABLE_<method> or CONF_<method>_FILE
139 * symbols for the platform.
140 *
141 * Use logintest to check which symbols are defined before modifying
142 * configure.ac and loginrec.c. (You have to build logintest yourself
143 * with 'make logintest' as it's not built by default.)
144 *
145 * Otherwise, patches to the specific method(s) are very helpful!
146 */
147
148 #include "includes.h"
149
150 #include <sys/types.h>
151 #include <sys/stat.h>
152 #include <sys/socket.h>
153
154 #include <netinet/in.h>
155
156 #include <errno.h>
157 #include <fcntl.h>
158 #include <pwd.h>
159 #include <string.h>
160 #include <unistd.h>
161
162 #include "ssh.h"
163 #include "xmalloc.h"
164 #include "loginrec.h"
165 #include "log.h"
166 #include "atomicio.h"
167 #include "packet.h"
168 #include "canohost.h"
169 #include "auth.h"
170 #include "buffer.h"
171
172 #ifdef HAVE_UTIL_H
173 # include <util.h>
174 #endif
175
176 #ifdef HAVE_LIBUTIL_H
177 # include <libutil.h>
178 #endif
179
180 /**
181 ** prototypes for helper functions in this file
182 **/
183
184 #if HAVE_UTMP_H
185 void set_utmp_time(struct logininfo *li, struct utmp *ut);
186 void construct_utmp(struct logininfo *li, struct utmp *ut);
187 #endif
188
189 #ifdef HAVE_UTMPX_H
190 void set_utmpx_time(struct logininfo *li, struct utmpx *ut);
191 void construct_utmpx(struct logininfo *li, struct utmpx *ut);
192 #endif
193
194 int utmp_write_entry(struct logininfo *li);
195 int utmpx_write_entry(struct logininfo *li);
196 int wtmp_write_entry(struct logininfo *li);
197 int wtmpx_write_entry(struct logininfo *li);
198 int lastlog_write_entry(struct logininfo *li);
199 int syslogin_write_entry(struct logininfo *li);
200
201 int getlast_entry(struct logininfo *li);
202 int lastlog_get_entry(struct logininfo *li);
203 int wtmp_get_entry(struct logininfo *li);
204 int wtmpx_get_entry(struct logininfo *li);
205
206 extern Buffer loginmsg;
207
208 /* pick the shortest string */
209 #define MIN_SIZEOF(s1,s2) (sizeof(s1) < sizeof(s2) ? sizeof(s1) : sizeof(s2))
210
211 /**
212 ** platform-independent login functions
213 **/
214
215 /*
216 * login_login(struct logininfo *) - Record a login
217 *
218 * Call with a pointer to a struct logininfo initialised with
219 * login_init_entry() or login_alloc_entry()
220 *
221 * Returns:
222 * >0 if successful
223 * 0 on failure (will use OpenSSH's logging facilities for diagnostics)
224 */
225 int
226 login_login(struct logininfo *li)
227 {
228 li->type = LTYPE_LOGIN;
229 return (login_write(li));
230 }
231
232
233 /*
234 * login_logout(struct logininfo *) - Record a logout
235 *
236 * Call as with login_login()
237 *
238 * Returns:
239 * >0 if successful
240 * 0 on failure (will use OpenSSH's logging facilities for diagnostics)
241 */
242 int
243 login_logout(struct logininfo *li)
244 {
245 li->type = LTYPE_LOGOUT;
246 return (login_write(li));
247 }
248
249 /*
250 * login_get_lastlog_time(int) - Retrieve the last login time
251 *
252 * Retrieve the last login time for the given uid. Will try to use the
253 * system lastlog facilities if they are available, but will fall back
254 * to looking in wtmp/wtmpx if necessary
255 *
256 * Returns:
257 * 0 on failure, or if user has never logged in
258 * Time in seconds from the epoch if successful
259 *
260 * Useful preprocessor symbols:
261 * DISABLE_LASTLOG: If set, *never* even try to retrieve lastlog
262 * info
263 * USE_LASTLOG: If set, indicates the presence of system lastlog
264 * facilities. If this and DISABLE_LASTLOG are not set,
265 * try to retrieve lastlog information from wtmp/wtmpx.
266 */
267 unsigned int
268 login_get_lastlog_time(const int uid)
269 {
270 struct logininfo li;
271
272 if (login_get_lastlog(&li, uid))
273 return (li.tv_sec);
274 else
275 return (0);
276 }
277
278 /*
279 * login_get_lastlog(struct logininfo *, int) - Retrieve a lastlog entry
280 *
281 * Retrieve a logininfo structure populated (only partially) with
282 * information from the system lastlog data, or from wtmp/wtmpx if no
283 * system lastlog information exists.
284 *
285 * Note this routine must be given a pre-allocated logininfo.
286 *
287 * Returns:
288 * >0: A pointer to your struct logininfo if successful
289 * 0 on failure (will use OpenSSH's logging facilities for diagnostics)
290 */
291 struct logininfo *
292 login_get_lastlog(struct logininfo *li, const int uid)
293 {
294 struct passwd *pw;
295
296 memset(li, '\0', sizeof(*li));
297 li->uid = uid;
298
299 /*
300 * If we don't have a 'real' lastlog, we need the username to
301 * reliably search wtmp(x) for the last login (see
302 * wtmp_get_entry().)
303 */
304 pw = getpwuid(uid);
305 if (pw == NULL)
306 fatal("%s: Cannot find account for uid %i", __func__, uid);
307
308 /* No MIN_SIZEOF here - we absolutely *must not* truncate the
309 * username (XXX - so check for trunc!) */
310 strlcpy(li->username, pw->pw_name, sizeof(li->username));
311
312 if (getlast_entry(li))
313 return (li);
314 else
315 return (NULL);
316 }
317
318
319 /*
320 * login_alloc_entry(int, char*, char*, char*) - Allocate and initialise
321 * a logininfo structure
322 *
323 * This function creates a new struct logininfo, a data structure
324 * meant to carry the information required to portably record login info.
325 *
326 * Returns a pointer to a newly created struct logininfo. If memory
327 * allocation fails, the program halts.
328 */
329 struct
330 logininfo *login_alloc_entry(int pid, const char *username,
331 const char *hostname, const char *line)
332 {
333 struct logininfo *newli;
334
335 newli = xmalloc(sizeof(*newli));
336 login_init_entry(newli, pid, username, hostname, line);
337 return (newli);
338 }
339
340
341 /* login_free_entry(struct logininfo *) - free struct memory */
342 void
343 login_free_entry(struct logininfo *li)
344 {
345 xfree(li);
346 }
347
348
349 /* login_init_entry(struct logininfo *, int, char*, char*, char*)
350 * - initialise a struct logininfo
351 *
352 * Populates a new struct logininfo, a data structure meant to carry
353 * the information required to portably record login info.
354 *
355 * Returns: 1
356 */
357 int
358 login_init_entry(struct logininfo *li, int pid, const char *username,
359 const char *hostname, const char *line)
360 {
361 struct passwd *pw;
362
363 memset(li, 0, sizeof(*li));
364
365 li->pid = pid;
366
367 /* set the line information */
368 if (line)
369 line_fullname(li->line, line, sizeof(li->line));
370
371 if (username) {
372 strlcpy(li->username, username, sizeof(li->username));
373 pw = getpwnam(li->username);
374 if (pw == NULL) {
375 fatal("%s: Cannot find user \"%s\"", __func__,
376 li->username);
377 }
378 li->uid = pw->pw_uid;
379 }
380
381 if (hostname)
382 strlcpy(li->hostname, hostname, sizeof(li->hostname));
383
384 return (1);
385 }
386
387 /*
388 * login_set_current_time(struct logininfo *) - set the current time
389 *
390 * Set the current time in a logininfo structure. This function is
391 * meant to eliminate the need to deal with system dependencies for
392 * time handling.
393 */
394 void
395 login_set_current_time(struct logininfo *li)
396 {
397 struct timeval tv;
398
399 gettimeofday(&tv, NULL);
400
401 li->tv_sec = tv.tv_sec;
402 li->tv_usec = tv.tv_usec;
403 }
404
405 /* copy a sockaddr_* into our logininfo */
406 void
407 login_set_addr(struct logininfo *li, const struct sockaddr *sa,
408 const unsigned int sa_size)
409 {
410 unsigned int bufsize = sa_size;
411
412 /* make sure we don't overrun our union */
413 if (sizeof(li->hostaddr) < sa_size)
414 bufsize = sizeof(li->hostaddr);
415
416 memcpy(&li->hostaddr.sa, sa, bufsize);
417 }
418
419
420 /**
421 ** login_write: Call low-level recording functions based on autoconf
422 ** results
423 **/
424 int
425 login_write(struct logininfo *li)
426 {
427 #ifndef HAVE_CYGWIN
428 if (geteuid() != 0) {
429 logit("Attempt to write login records by non-root user (aborting)");
430 return (1);
431 }
432 #endif
433
434 /* set the timestamp */
435 login_set_current_time(li);
436 #ifdef USE_LOGIN
437 syslogin_write_entry(li);
438 #endif
439 #ifdef USE_LASTLOG
440 if (li->type == LTYPE_LOGIN)
441 lastlog_write_entry(li);
442 #endif
443 #ifdef USE_UTMP
444 utmp_write_entry(li);
445 #endif
446 #ifdef USE_WTMP
447 wtmp_write_entry(li);
448 #endif
449 #ifdef USE_UTMPX
450 utmpx_write_entry(li);
451 #endif
452 #ifdef USE_WTMPX
453 wtmpx_write_entry(li);
454 #endif
455 #ifdef CUSTOM_SYS_AUTH_RECORD_LOGIN
456 if (li->type == LTYPE_LOGIN &&
457 !sys_auth_record_login(li->username,li->hostname,li->line,
458 &loginmsg))
459 logit("Writing login record failed for %s", li->username);
460 #endif
461 #ifdef SSH_AUDIT_EVENTS
462 if (li->type == LTYPE_LOGIN)
463 audit_session_open(li->line);
464 else if (li->type == LTYPE_LOGOUT)
465 audit_session_close(li->line);
466 #endif
467 return (0);
468 }
469
470 #ifdef LOGIN_NEEDS_UTMPX
471 int
472 login_utmp_only(struct logininfo *li)
473 {
474 li->type = LTYPE_LOGIN;
475 login_set_current_time(li);
476 # ifdef USE_UTMP
477 utmp_write_entry(li);
478 # endif
479 # ifdef USE_WTMP
480 wtmp_write_entry(li);
481 # endif
482 # ifdef USE_UTMPX
483 utmpx_write_entry(li);
484 # endif
485 # ifdef USE_WTMPX
486 wtmpx_write_entry(li);
487 # endif
488 return (0);
489 }
490 #endif
491
492 /**
493 ** getlast_entry: Call low-level functions to retrieve the last login
494 ** time.
495 **/
496
497 /* take the uid in li and return the last login time */
498 int
499 getlast_entry(struct logininfo *li)
500 {
501 #ifdef USE_LASTLOG
502 return(lastlog_get_entry(li));
503 #else /* !USE_LASTLOG */
504
505 #if defined(DISABLE_LASTLOG)
506 /* On some systems we shouldn't even try to obtain last login
507 * time, e.g. AIX */
508 return (0);
509 # elif defined(USE_WTMP) && \
510 (defined(HAVE_TIME_IN_UTMP) || defined(HAVE_TV_IN_UTMP))
511 /* retrieve last login time from utmp */
512 return (wtmp_get_entry(li));
513 # elif defined(USE_WTMPX) && \
514 (defined(HAVE_TIME_IN_UTMPX) || defined(HAVE_TV_IN_UTMPX))
515 /* If wtmp isn't available, try wtmpx */
516 return (wtmpx_get_entry(li));
517 # else
518 /* Give up: No means of retrieving last login time */
519 return (0);
520 # endif /* DISABLE_LASTLOG */
521 #endif /* USE_LASTLOG */
522 }
523
524
525
526 /*
527 * 'line' string utility functions
528 *
529 * These functions process the 'line' string into one of three forms:
530 *
531 * 1. The full filename (including '/dev')
532 * 2. The stripped name (excluding '/dev')
533 * 3. The abbreviated name (e.g. /dev/ttyp00 -> yp00
534 * /dev/pts/1 -> ts/1 )
535 *
536 * Form 3 is used on some systems to identify a .tmp.? entry when
537 * attempting to remove it. Typically both addition and removal is
538 * performed by one application - say, sshd - so as long as the choice
539 * uniquely identifies a terminal it's ok.
540 */
541
542
543 /*
544 * line_fullname(): add the leading '/dev/' if it doesn't exist make
545 * sure dst has enough space, if not just copy src (ugh)
546 */
547 char *
548 line_fullname(char *dst, const char *src, u_int dstsize)
549 {
550 memset(dst, '\0', dstsize);
551 if ((strncmp(src, "/dev/", 5) == 0) || (dstsize < (strlen(src) + 5)))
552 strlcpy(dst, src, dstsize);
553 else {
554 strlcpy(dst, "/dev/", dstsize);
555 strlcat(dst, src, dstsize);
556 }
557 return (dst);
558 }
559
560 /* line_stripname(): strip the leading '/dev' if it exists, return dst */
561 char *
562 line_stripname(char *dst, const char *src, int dstsize)
563 {
564 memset(dst, '\0', dstsize);
565 if (strncmp(src, "/dev/", 5) == 0)
566 strlcpy(dst, src + 5, dstsize);
567 else
568 strlcpy(dst, src, dstsize);
569 return (dst);
570 }
571
572 /*
573 * line_abbrevname(): Return the abbreviated (usually four-character)
574 * form of the line (Just use the last <dstsize> characters of the
575 * full name.)
576 *
577 * NOTE: use strncpy because we do NOT necessarily want zero
578 * termination
579 */
580 char *
581 line_abbrevname(char *dst, const char *src, int dstsize)
582 {
583 size_t len;
584
585 memset(dst, '\0', dstsize);
586
587 /* Always skip prefix if present */
588 if (strncmp(src, "/dev/", 5) == 0)
589 src += 5;
590
591 #ifdef WITH_ABBREV_NO_TTY
592 if (strncmp(src, "tty", 3) == 0)
593 src += 3;
594 #endif
595
596 len = strlen(src);
597
598 if (len > 0) {
599 if (((int)len - dstsize) > 0)
600 src += ((int)len - dstsize);
601
602 /* note: _don't_ change this to strlcpy */
603 strncpy(dst, src, (size_t)dstsize);
604 }
605
606 return (dst);
607 }
608
609 /**
610 ** utmp utility functions
611 **
612 ** These functions manipulate struct utmp, taking system differences
613 ** into account.
614 **/
615
616 #if defined(USE_UTMP) || defined (USE_WTMP) || defined (USE_LOGIN)
617
618 /* build the utmp structure */
619 void
620 set_utmp_time(struct logininfo *li, struct utmp *ut)
621 {
622 # if defined(HAVE_TV_IN_UTMP)
623 ut->ut_tv.tv_sec = li->tv_sec;
624 ut->ut_tv.tv_usec = li->tv_usec;
625 # elif defined(HAVE_TIME_IN_UTMP)
626 ut->ut_time = li->tv_sec;
627 # endif
628 }
629
630 void
631 construct_utmp(struct logininfo *li,
632 struct utmp *ut)
633 {
634 # ifdef HAVE_ADDR_V6_IN_UTMP
635 struct sockaddr_in6 *sa6;
636 # endif
637
638 memset(ut, '\0', sizeof(*ut));
639
640 /* First fill out fields used for both logins and logouts */
641
642 # ifdef HAVE_ID_IN_UTMP
643 line_abbrevname(ut->ut_id, li->line, sizeof(ut->ut_id));
644 # endif
645
646 # ifdef HAVE_TYPE_IN_UTMP
647 /* This is done here to keep utmp constants out of struct logininfo */
648 switch (li->type) {
649 case LTYPE_LOGIN:
650 ut->ut_type = USER_PROCESS;
651 #ifdef _UNICOS
652 cray_set_tmpdir(ut);
653 #endif
654 break;
655 case LTYPE_LOGOUT:
656 ut->ut_type = DEAD_PROCESS;
657 #ifdef _UNICOS
658 cray_retain_utmp(ut, li->pid);
659 #endif
660 break;
661 }
662 # endif
663 set_utmp_time(li, ut);
664
665 line_stripname(ut->ut_line, li->line, sizeof(ut->ut_line));
666
667 # ifdef HAVE_PID_IN_UTMP
668 ut->ut_pid = li->pid;
669 # endif
670
671 /* If we're logging out, leave all other fields blank */
672 if (li->type == LTYPE_LOGOUT)
673 return;
674
675 /*
676 * These fields are only used when logging in, and are blank
677 * for logouts.
678 */
679
680 /* Use strncpy because we don't necessarily want null termination */
681 strncpy(ut->ut_name, li->username,
682 MIN_SIZEOF(ut->ut_name, li->username));
683 # ifdef HAVE_HOST_IN_UTMP
684 strncpy(ut->ut_host, li->hostname,
685 MIN_SIZEOF(ut->ut_host, li->hostname));
686 # endif
687 # ifdef HAVE_ADDR_IN_UTMP
688 /* this is just a 32-bit IP address */
689 if (li->hostaddr.sa.sa_family == AF_INET)
690 ut->ut_addr = li->hostaddr.sa_in.sin_addr.s_addr;
691 # endif
692 # ifdef HAVE_ADDR_V6_IN_UTMP
693 /* this is just a 128-bit IPv6 address */
694 if (li->hostaddr.sa.sa_family == AF_INET6) {
695 sa6 = ((struct sockaddr_in6 *)&li->hostaddr.sa);
696 memcpy(ut->ut_addr_v6, sa6->sin6_addr.s6_addr, 16);
697 if (IN6_IS_ADDR_V4MAPPED(&sa6->sin6_addr)) {
698 ut->ut_addr_v6[0] = ut->ut_addr_v6[3];
699 ut->ut_addr_v6[1] = 0;
700 ut->ut_addr_v6[2] = 0;
701 ut->ut_addr_v6[3] = 0;
702 }
703 }
704 # endif
705 }
706 #endif /* USE_UTMP || USE_WTMP || USE_LOGIN */
707
708 /**
709 ** utmpx utility functions
710 **
711 ** These functions manipulate struct utmpx, accounting for system
712 ** variations.
713 **/
714
715 #if defined(USE_UTMPX) || defined (USE_WTMPX)
716 /* build the utmpx structure */
717 void
718 set_utmpx_time(struct logininfo *li, struct utmpx *utx)
719 {
720 # if defined(HAVE_TV_IN_UTMPX)
721 utx->ut_tv.tv_sec = li->tv_sec;
722 utx->ut_tv.tv_usec = li->tv_usec;
723 # elif defined(HAVE_TIME_IN_UTMPX)
724 utx->ut_time = li->tv_sec;
725 # endif
726 }
727
728 void
729 construct_utmpx(struct logininfo *li, struct utmpx *utx)
730 {
731 # ifdef HAVE_ADDR_V6_IN_UTMP
732 struct sockaddr_in6 *sa6;
733 # endif
734 memset(utx, '\0', sizeof(*utx));
735
736 # ifdef HAVE_ID_IN_UTMPX
737 line_abbrevname(utx->ut_id, li->line, sizeof(utx->ut_id));
738 # endif
739
740 /* this is done here to keep utmp constants out of loginrec.h */
741 switch (li->type) {
742 case LTYPE_LOGIN:
743 utx->ut_type = USER_PROCESS;
744 break;
745 case LTYPE_LOGOUT:
746 utx->ut_type = DEAD_PROCESS;
747 break;
748 }
749 line_stripname(utx->ut_line, li->line, sizeof(utx->ut_line));
750 set_utmpx_time(li, utx);
751 utx->ut_pid = li->pid;
752
753 /* strncpy(): Don't necessarily want null termination */
754 strncpy(utx->ut_name, li->username,
755 MIN_SIZEOF(utx->ut_name, li->username));
756
757 if (li->type == LTYPE_LOGOUT)
758 return;
759
760 /*
761 * These fields are only used when logging in, and are blank
762 * for logouts.
763 */
764
765 # ifdef HAVE_HOST_IN_UTMPX
766 strncpy(utx->ut_host, li->hostname,
767 MIN_SIZEOF(utx->ut_host, li->hostname));
768 # endif
769 # ifdef HAVE_ADDR_IN_UTMPX
770 /* this is just a 32-bit IP address */
771 if (li->hostaddr.sa.sa_family == AF_INET)
772 utx->ut_addr = li->hostaddr.sa_in.sin_addr.s_addr;
773 # endif
774 # ifdef HAVE_ADDR_V6_IN_UTMP
775 /* this is just a 128-bit IPv6 address */
776 if (li->hostaddr.sa.sa_family == AF_INET6) {
777 sa6 = ((struct sockaddr_in6 *)&li->hostaddr.sa);
778 memcpy(ut->ut_addr_v6, sa6->sin6_addr.s6_addr, 16);
779 if (IN6_IS_ADDR_V4MAPPED(&sa6->sin6_addr)) {
780 ut->ut_addr_v6[0] = ut->ut_addr_v6[3];
781 ut->ut_addr_v6[1] = 0;
782 ut->ut_addr_v6[2] = 0;
783 ut->ut_addr_v6[3] = 0;
784 }
785 }
786 # endif
787 # ifdef HAVE_SYSLEN_IN_UTMPX
788 /* ut_syslen is the length of the utx_host string */
789 utx->ut_syslen = MIN(strlen(li->hostname), sizeof(utx->ut_host));
790 # endif
791 }
792 #endif /* USE_UTMPX || USE_WTMPX */
793
794 /**
795 ** Low-level utmp functions
796 **/
797
798 /* FIXME: (ATL) utmp_write_direct needs testing */
799 #ifdef USE_UTMP
800
801 /* if we can, use pututline() etc. */
802 # if !defined(DISABLE_PUTUTLINE) && defined(HAVE_SETUTENT) && \
803 defined(HAVE_PUTUTLINE)
804 # define UTMP_USE_LIBRARY
805 # endif
806
807
808 /* write a utmp entry with the system's help (pututline() and pals) */
809 # ifdef UTMP_USE_LIBRARY
810 static int
811 utmp_write_library(struct logininfo *li, struct utmp *ut)
812 {
813 setutent();
814 pututline(ut);
815 # ifdef HAVE_ENDUTENT
816 endutent();
817 # endif
818 return (1);
819 }
820 # else /* UTMP_USE_LIBRARY */
821
822 /*
823 * Write a utmp entry direct to the file
824 * This is a slightly modification of code in OpenBSD's login.c
825 */
826 static int
827 utmp_write_direct(struct logininfo *li, struct utmp *ut)
828 {
829 struct utmp old_ut;
830 register int fd;
831 int tty;
832
833 /* FIXME: (ATL) ttyslot() needs local implementation */
834
835 #if defined(HAVE_GETTTYENT)
836 struct ttyent *ty;
837
838 tty=0;
839 setttyent();
840 while (NULL != (ty = getttyent())) {
841 tty++;
842 if (!strncmp(ty->ty_name, ut->ut_line, sizeof(ut->ut_line)))
843 break;
844 }
845 endttyent();
846
847 if (NULL == ty) {
848 logit("%s: tty not found", __func__);
849 return (0);
850 }
851 #else /* FIXME */
852
853 tty = ttyslot(); /* seems only to work for /dev/ttyp? style names */
854
855 #endif /* HAVE_GETTTYENT */
856
857 if (tty > 0 && (fd = open(UTMP_FILE, O_RDWR|O_CREAT, 0644)) >= 0) {
858 off_t pos, ret;
859
860 pos = (off_t)tty * sizeof(struct utmp);
861 if ((ret = lseek(fd, pos, SEEK_SET)) == -1) {
862 logit("%s: lseek: %s", __func__, strerror(errno));
863 return (0);
864 }
865 if (ret != pos) {
866 logit("%s: Couldn't seek to tty %d slot in %s",
867 __func__, tty, UTMP_FILE);
868 return (0);
869 }
870 /*
871 * Prevent luser from zero'ing out ut_host.
872 * If the new ut_line is empty but the old one is not
873 * and ut_line and ut_name match, preserve the old ut_line.
874 */
875 if (atomicio(read, fd, &old_ut, sizeof(old_ut)) == sizeof(old_ut) &&
876 (ut->ut_host[0] == '\0') && (old_ut.ut_host[0] != '\0') &&
877 (strncmp(old_ut.ut_line, ut->ut_line, sizeof(ut->ut_line)) == 0) &&
878 (strncmp(old_ut.ut_name, ut->ut_name, sizeof(ut->ut_name)) == 0))
879 memcpy(ut->ut_host, old_ut.ut_host, sizeof(ut->ut_host));
880
881 if ((ret = lseek(fd, pos, SEEK_SET)) == -1) {
882 logit("%s: lseek: %s", __func__, strerror(errno));
883 return (0);
884 }
885 if (ret != pos) {
886 logit("%s: Couldn't seek to tty %d slot in %s",
887 __func__, tty, UTMP_FILE);
888 return (0);
889 }
890 if (atomicio(vwrite, fd, ut, sizeof(*ut)) != sizeof(*ut)) {
891 logit("%s: error writing %s: %s", __func__,
892 UTMP_FILE, strerror(errno));
893 }
894
895 close(fd);
896 return (1);
897 } else {
898 return (0);
899 }
900 }
901 # endif /* UTMP_USE_LIBRARY */
902
903 static int
904 utmp_perform_login(struct logininfo *li)
905 {
906 struct utmp ut;
907
908 construct_utmp(li, &ut);
909 # ifdef UTMP_USE_LIBRARY
910 if (!utmp_write_library(li, &ut)) {
911 logit("%s: utmp_write_library() failed", __func__);
912 return (0);
913 }
914 # else
915 if (!utmp_write_direct(li, &ut)) {
916 logit("%s: utmp_write_direct() failed", __func__);
917 return (0);
918 }
919 # endif
920 return (1);
921 }
922
923
924 static int
925 utmp_perform_logout(struct logininfo *li)
926 {
927 struct utmp ut;
928
929 construct_utmp(li, &ut);
930 # ifdef UTMP_USE_LIBRARY
931 if (!utmp_write_library(li, &ut)) {
932 logit("%s: utmp_write_library() failed", __func__);
933 return (0);
934 }
935 # else
936 if (!utmp_write_direct(li, &ut)) {
937 logit("%s: utmp_write_direct() failed", __func__);
938 return (0);
939 }
940 # endif
941 return (1);
942 }
943
944
945 int
946 utmp_write_entry(struct logininfo *li)
947 {
948 switch(li->type) {
949 case LTYPE_LOGIN:
950 return (utmp_perform_login(li));
951
952 case LTYPE_LOGOUT:
953 return (utmp_perform_logout(li));
954
955 default:
956 logit("%s: invalid type field", __func__);
957 return (0);
958 }
959 }
960 #endif /* USE_UTMP */
961
962
963 /**
964 ** Low-level utmpx functions
965 **/
966
967 /* not much point if we don't want utmpx entries */
968 #ifdef USE_UTMPX
969
970 /* if we have the wherewithall, use pututxline etc. */
971 # if !defined(DISABLE_PUTUTXLINE) && defined(HAVE_SETUTXENT) && \
972 defined(HAVE_PUTUTXLINE)
973 # define UTMPX_USE_LIBRARY
974 # endif
975
976
977 /* write a utmpx entry with the system's help (pututxline() and pals) */
978 # ifdef UTMPX_USE_LIBRARY
979 static int
980 utmpx_write_library(struct logininfo *li, struct utmpx *utx)
981 {
982 setutxent();
983 pututxline(utx);
984
985 # ifdef HAVE_ENDUTXENT
986 endutxent();
987 # endif
988 return (1);
989 }
990
991 # else /* UTMPX_USE_LIBRARY */
992
993 /* write a utmp entry direct to the file */
994 static int
995 utmpx_write_direct(struct logininfo *li, struct utmpx *utx)
996 {
997 logit("%s: not implemented!", __func__);
998 return (0);
999 }
1000 # endif /* UTMPX_USE_LIBRARY */
1001
1002 static int
1003 utmpx_perform_login(struct logininfo *li)
1004 {
1005 struct utmpx utx;
1006
1007 construct_utmpx(li, &utx);
1008 # ifdef UTMPX_USE_LIBRARY
1009 if (!utmpx_write_library(li, &utx)) {
1010 logit("%s: utmp_write_library() failed", __func__);
1011 return (0);
1012 }
1013 # else
1014 if (!utmpx_write_direct(li, &ut)) {
1015 logit("%s: utmp_write_direct() failed", __func__);
1016 return (0);
1017 }
1018 # endif
1019 return (1);
1020 }
1021
1022
1023 static int
1024 utmpx_perform_logout(struct logininfo *li)
1025 {
1026 struct utmpx utx;
1027
1028 construct_utmpx(li, &utx);
1029 # ifdef HAVE_ID_IN_UTMPX
1030 line_abbrevname(utx.ut_id, li->line, sizeof(utx.ut_id));
1031 # endif
1032 # ifdef HAVE_TYPE_IN_UTMPX
1033 utx.ut_type = DEAD_PROCESS;
1034 # endif
1035
1036 # ifdef UTMPX_USE_LIBRARY
1037 utmpx_write_library(li, &utx);
1038 # else
1039 utmpx_write_direct(li, &utx);
1040 # endif
1041 return (1);
1042 }
1043
1044 int
1045 utmpx_write_entry(struct logininfo *li)
1046 {
1047 switch(li->type) {
1048 case LTYPE_LOGIN:
1049 return (utmpx_perform_login(li));
1050 case LTYPE_LOGOUT:
1051 return (utmpx_perform_logout(li));
1052 default:
1053 logit("%s: invalid type field", __func__);
1054 return (0);
1055 }
1056 }
1057 #endif /* USE_UTMPX */
1058
1059
1060 /**
1061 ** Low-level wtmp functions
1062 **/
1063
1064 #ifdef USE_WTMP
1065
1066 /*
1067 * Write a wtmp entry direct to the end of the file
1068 * This is a slight modification of code in OpenBSD's logwtmp.c
1069 */
1070 static int
1071 wtmp_write(struct logininfo *li, struct utmp *ut)
1072 {
1073 struct stat buf;
1074 int fd, ret = 1;
1075
1076 if ((fd = open(WTMP_FILE, O_WRONLY|O_APPEND, 0)) < 0) {
1077 logit("%s: problem writing %s: %s", __func__,
1078 WTMP_FILE, strerror(errno));
1079 return (0);
1080 }
1081 if (fstat(fd, &buf) == 0)
1082 if (atomicio(vwrite, fd, ut, sizeof(*ut)) != sizeof(*ut)) {
1083 ftruncate(fd, buf.st_size);
1084 logit("%s: problem writing %s: %s", __func__,
1085 WTMP_FILE, strerror(errno));
1086 ret = 0;
1087 }
1088 close(fd);
1089 return (ret);
1090 }
1091
1092 static int
1093 wtmp_perform_login(struct logininfo *li)
1094 {
1095 struct utmp ut;
1096
1097 construct_utmp(li, &ut);
1098 return (wtmp_write(li, &ut));
1099 }
1100
1101
1102 static int
1103 wtmp_perform_logout(struct logininfo *li)
1104 {
1105 struct utmp ut;
1106
1107 construct_utmp(li, &ut);
1108 return (wtmp_write(li, &ut));
1109 }
1110
1111
1112 int
1113 wtmp_write_entry(struct logininfo *li)
1114 {
1115 switch(li->type) {
1116 case LTYPE_LOGIN:
1117 return (wtmp_perform_login(li));
1118 case LTYPE_LOGOUT:
1119 return (wtmp_perform_logout(li));
1120 default:
1121 logit("%s: invalid type field", __func__);
1122 return (0);
1123 }
1124 }
1125
1126
1127 /*
1128 * Notes on fetching login data from wtmp/wtmpx
1129 *
1130 * Logouts are usually recorded with (amongst other things) a blank
1131 * username on a given tty line. However, some systems (HP-UX is one)
1132 * leave all fields set, but change the ut_type field to DEAD_PROCESS.
1133 *
1134 * Since we're only looking for logins here, we know that the username
1135 * must be set correctly. On systems that leave it in, we check for
1136 * ut_type==USER_PROCESS (indicating a login.)
1137 *
1138 * Portability: Some systems may set something other than USER_PROCESS
1139 * to indicate a login process. I don't know of any as I write. Also,
1140 * it's possible that some systems may both leave the username in
1141 * place and not have ut_type.
1142 */
1143
1144 /* return true if this wtmp entry indicates a login */
1145 static int
1146 wtmp_islogin(struct logininfo *li, struct utmp *ut)
1147 {
1148 if (strncmp(li->username, ut->ut_name,
1149 MIN_SIZEOF(li->username, ut->ut_name)) == 0) {
1150 # ifdef HAVE_TYPE_IN_UTMP
1151 if (ut->ut_type & USER_PROCESS)
1152 return (1);
1153 # else
1154 return (1);
1155 # endif
1156 }
1157 return (0);
1158 }
1159
1160 int
1161 wtmp_get_entry(struct logininfo *li)
1162 {
1163 struct stat st;
1164 struct utmp ut;
1165 int fd, found = 0;
1166
1167 /* Clear the time entries in our logininfo */
1168 li->tv_sec = li->tv_usec = 0;
1169
1170 if ((fd = open(WTMP_FILE, O_RDONLY)) < 0) {
1171 logit("%s: problem opening %s: %s", __func__,
1172 WTMP_FILE, strerror(errno));
1173 return (0);
1174 }
1175 if (fstat(fd, &st) != 0) {
1176 logit("%s: couldn't stat %s: %s", __func__,
1177 WTMP_FILE, strerror(errno));
1178 close(fd);
1179 return (0);
1180 }
1181
1182 /* Seek to the start of the last struct utmp */
1183 if (lseek(fd, -(off_t)sizeof(struct utmp), SEEK_END) == -1) {
1184 /* Looks like we've got a fresh wtmp file */
1185 close(fd);
1186 return (0);
1187 }
1188
1189 while (!found) {
1190 if (atomicio(read, fd, &ut, sizeof(ut)) != sizeof(ut)) {
1191 logit("%s: read of %s failed: %s", __func__,
1192 WTMP_FILE, strerror(errno));
1193 close (fd);
1194 return (0);
1195 }
1196 if ( wtmp_islogin(li, &ut) ) {
1197 found = 1;
1198 /*
1199 * We've already checked for a time in struct
1200 * utmp, in login_getlast()
1201 */
1202 # ifdef HAVE_TIME_IN_UTMP
1203 li->tv_sec = ut.ut_time;
1204 # else
1205 # if HAVE_TV_IN_UTMP
1206 li->tv_sec = ut.ut_tv.tv_sec;
1207 # endif
1208 # endif
1209 line_fullname(li->line, ut.ut_line,
1210 MIN_SIZEOF(li->line, ut.ut_line));
1211 # ifdef HAVE_HOST_IN_UTMP
1212 strlcpy(li->hostname, ut.ut_host,
1213 MIN_SIZEOF(li->hostname, ut.ut_host));
1214 # endif
1215 continue;
1216 }
1217 /* Seek back 2 x struct utmp */
1218 if (lseek(fd, -(off_t)(2 * sizeof(struct utmp)), SEEK_CUR) == -1) {
1219 /* We've found the start of the file, so quit */
1220 close(fd);
1221 return (0);
1222 }
1223 }
1224
1225 /* We found an entry. Tidy up and return */
1226 close(fd);
1227 return (1);
1228 }
1229 # endif /* USE_WTMP */
1230
1231
1232 /**
1233 ** Low-level wtmpx functions
1234 **/
1235
1236 #ifdef USE_WTMPX
1237 /*
1238 * Write a wtmpx entry direct to the end of the file
1239 * This is a slight modification of code in OpenBSD's logwtmp.c
1240 */
1241 static int
1242 wtmpx_write(struct logininfo *li, struct utmpx *utx)
1243 {
1244 #ifndef HAVE_UPDWTMPX
1245 struct stat buf;
1246 int fd, ret = 1;
1247
1248 if ((fd = open(WTMPX_FILE, O_WRONLY|O_APPEND, 0)) < 0) {
1249 logit("%s: problem opening %s: %s", __func__,
1250 WTMPX_FILE, strerror(errno));
1251 return (0);
1252 }
1253
1254 if (fstat(fd, &buf) == 0)
1255 if (atomicio(vwrite, fd, utx, sizeof(*utx)) != sizeof(*utx)) {
1256 ftruncate(fd, buf.st_size);
1257 logit("%s: problem writing %s: %s", __func__,
1258 WTMPX_FILE, strerror(errno));
1259 ret = 0;
1260 }
1261 close(fd);
1262
1263 return (ret);
1264 #else
1265 updwtmpx(WTMPX_FILE, utx);
1266 return (1);
1267 #endif
1268 }
1269
1270
1271 static int
1272 wtmpx_perform_login(struct logininfo *li)
1273 {
1274 struct utmpx utx;
1275
1276 construct_utmpx(li, &utx);
1277 return (wtmpx_write(li, &utx));
1278 }
1279
1280
1281 static int
1282 wtmpx_perform_logout(struct logininfo *li)
1283 {
1284 struct utmpx utx;
1285
1286 construct_utmpx(li, &utx);
1287 return (wtmpx_write(li, &utx));
1288 }
1289
1290
1291 int
1292 wtmpx_write_entry(struct logininfo *li)
1293 {
1294 switch(li->type) {
1295 case LTYPE_LOGIN:
1296 return (wtmpx_perform_login(li));
1297 case LTYPE_LOGOUT:
1298 return (wtmpx_perform_logout(li));
1299 default:
1300 logit("%s: invalid type field", __func__);
1301 return (0);
1302 }
1303 }
1304
1305 /* Please see the notes above wtmp_islogin() for information about the
1306 next two functions */
1307
1308 /* Return true if this wtmpx entry indicates a login */
1309 static int
1310 wtmpx_islogin(struct logininfo *li, struct utmpx *utx)
1311 {
1312 if (strncmp(li->username, utx->ut_name,
1313 MIN_SIZEOF(li->username, utx->ut_name)) == 0 ) {
1314 # ifdef HAVE_TYPE_IN_UTMPX
1315 if (utx->ut_type == USER_PROCESS)
1316 return (1);
1317 # else
1318 return (1);
1319 # endif
1320 }
1321 return (0);
1322 }
1323
1324
1325 int
1326 wtmpx_get_entry(struct logininfo *li)
1327 {
1328 struct stat st;
1329 struct utmpx utx;
1330 int fd, found=0;
1331
1332 /* Clear the time entries */
1333 li->tv_sec = li->tv_usec = 0;
1334
1335 if ((fd = open(WTMPX_FILE, O_RDONLY)) < 0) {
1336 logit("%s: problem opening %s: %s", __func__,
1337 WTMPX_FILE, strerror(errno));
1338 return (0);
1339 }
1340 if (fstat(fd, &st) != 0) {
1341 logit("%s: couldn't stat %s: %s", __func__,
1342 WTMPX_FILE, strerror(errno));
1343 close(fd);
1344 return (0);
1345 }
1346
1347 /* Seek to the start of the last struct utmpx */
1348 if (lseek(fd, -(off_t)sizeof(struct utmpx), SEEK_END) == -1 ) {
1349 /* probably a newly rotated wtmpx file */
1350 close(fd);
1351 return (0);
1352 }
1353
1354 while (!found) {
1355 if (atomicio(read, fd, &utx, sizeof(utx)) != sizeof(utx)) {
1356 logit("%s: read of %s failed: %s", __func__,
1357 WTMPX_FILE, strerror(errno));
1358 close (fd);
1359 return (0);
1360 }
1361 /*
1362 * Logouts are recorded as a blank username on a particular
1363 * line. So, we just need to find the username in struct utmpx
1364 */
1365 if (wtmpx_islogin(li, &utx)) {
1366 found = 1;
1367 # if defined(HAVE_TV_IN_UTMPX)
1368 li->tv_sec = utx.ut_tv.tv_sec;
1369 # elif defined(HAVE_TIME_IN_UTMPX)
1370 li->tv_sec = utx.ut_time;
1371 # endif
1372 line_fullname(li->line, utx.ut_line, sizeof(li->line));
1373 # if defined(HAVE_HOST_IN_UTMPX)
1374 strlcpy(li->hostname, utx.ut_host,
1375 MIN_SIZEOF(li->hostname, utx.ut_host));
1376 # endif
1377 continue;
1378 }
1379 if (lseek(fd, -(off_t)(2 * sizeof(struct utmpx)), SEEK_CUR) == -1) {
1380 close(fd);
1381 return (0);
1382 }
1383 }
1384
1385 close(fd);
1386 return (1);
1387 }
1388 #endif /* USE_WTMPX */
1389
1390 /**
1391 ** Low-level libutil login() functions
1392 **/
1393
1394 #ifdef USE_LOGIN
1395 static int
1396 syslogin_perform_login(struct logininfo *li)
1397 {
1398 struct utmp *ut;
1399
1400 ut = xmalloc(sizeof(*ut));
1401 construct_utmp(li, ut);
1402 login(ut);
1403 free(ut);
1404
1405 return (1);
1406 }
1407
1408 static int
1409 syslogin_perform_logout(struct logininfo *li)
1410 {
1411 # ifdef HAVE_LOGOUT
1412 char line[UT_LINESIZE];
1413
1414 (void)line_stripname(line, li->line, sizeof(line));
1415
1416 if (!logout(line))
1417 logit("%s: logout() returned an error", __func__);
1418 # ifdef HAVE_LOGWTMP
1419 else
1420 logwtmp(line, "", "");
1421 # endif
1422 /* FIXME: (ATL - if the need arises) What to do if we have
1423 * login, but no logout? what if logout but no logwtmp? All
1424 * routines are in libutil so they should all be there,
1425 * but... */
1426 # endif
1427 return (1);
1428 }
1429
1430 int
1431 syslogin_write_entry(struct logininfo *li)
1432 {
1433 switch (li->type) {
1434 case LTYPE_LOGIN:
1435 return (syslogin_perform_login(li));
1436 case LTYPE_LOGOUT:
1437 return (syslogin_perform_logout(li));
1438 default:
1439 logit("%s: Invalid type field", __func__);
1440 return (0);
1441 }
1442 }
1443 #endif /* USE_LOGIN */
1444
1445 /* end of file log-syslogin.c */
1446
1447 /**
1448 ** Low-level lastlog functions
1449 **/
1450
1451 #ifdef USE_LASTLOG
1452 #define LL_FILE 1
1453 #define LL_DIR 2
1454 #define LL_OTHER 3
1455
1456 static void
1457 lastlog_construct(struct logininfo *li, struct lastlog *last)
1458 {
1459 /* clear the structure */
1460 memset(last, '\0', sizeof(*last));
1461
1462 line_stripname(last->ll_line, li->line, sizeof(last->ll_line));
1463 strlcpy(last->ll_host, li->hostname,
1464 MIN_SIZEOF(last->ll_host, li->hostname));
1465 last->ll_time = li->tv_sec;
1466 }
1467
1468 static int
1469 lastlog_filetype(char *filename)
1470 {
1471 struct stat st;
1472
1473 if (stat(LASTLOG_FILE, &st) != 0) {
1474 logit("%s: Couldn't stat %s: %s", __func__,
1475 LASTLOG_FILE, strerror(errno));
1476 return (0);
1477 }
1478 if (S_ISDIR(st.st_mode))
1479 return (LL_DIR);
1480 else if (S_ISREG(st.st_mode))
1481 return (LL_FILE);
1482 else
1483 return (LL_OTHER);
1484 }
1485
1486
1487 /* open the file (using filemode) and seek to the login entry */
1488 static int
1489 lastlog_openseek(struct logininfo *li, int *fd, int filemode)
1490 {
1491 off_t offset;
1492 int type;
1493 char lastlog_file[1024];
1494
1495 type = lastlog_filetype(LASTLOG_FILE);
1496 switch (type) {
1497 case LL_FILE:
1498 strlcpy(lastlog_file, LASTLOG_FILE,
1499 sizeof(lastlog_file));
1500 break;
1501 case LL_DIR:
1502 snprintf(lastlog_file, sizeof(lastlog_file), "%s/%s",
1503 LASTLOG_FILE, li->username);
1504 break;
1505 default:
1506 logit("%s: %.100s is not a file or directory!", __func__,
1507 LASTLOG_FILE);
1508 return (0);
1509 }
1510
1511 *fd = open(lastlog_file, filemode, 0600);
1512 if (*fd < 0) {
1513 debug("%s: Couldn't open %s: %s", __func__,
1514 lastlog_file, strerror(errno));
1515 return (0);
1516 }
1517
1518 if (type == LL_FILE) {
1519 /* find this uid's offset in the lastlog file */
1520 offset = (off_t) ((long)li->uid * sizeof(struct lastlog));
1521
1522 if (lseek(*fd, offset, SEEK_SET) != offset) {
1523 logit("%s: %s->lseek(): %s", __func__,
1524 lastlog_file, strerror(errno));
1525 return (0);
1526 }
1527 }
1528
1529 return (1);
1530 }
1531
1532 static int
1533 lastlog_perform_login(struct logininfo *li)
1534 {
1535 struct lastlog last;
1536 int fd;
1537
1538 /* create our struct lastlog */
1539 lastlog_construct(li, &last);
1540
1541 if (!lastlog_openseek(li, &fd, O_RDWR|O_CREAT))
1542 return (0);
1543
1544 /* write the entry */
1545 if (atomicio(vwrite, fd, &last, sizeof(last)) != sizeof(last)) {
1546 close(fd);
1547 logit("%s: Error writing to %s: %s", __func__,
1548 LASTLOG_FILE, strerror(errno));
1549 return (0);
1550 }
1551
1552 close(fd);
1553 return (1);
1554 }
1555
1556 int
1557 lastlog_write_entry(struct logininfo *li)
1558 {
1559 switch(li->type) {
1560 case LTYPE_LOGIN:
1561 return (lastlog_perform_login(li));
1562 default:
1563 logit("%s: Invalid type field", __func__);
1564 return (0);
1565 }
1566 }
1567
1568 static void
1569 lastlog_populate_entry(struct logininfo *li, struct lastlog *last)
1570 {
1571 line_fullname(li->line, last->ll_line, sizeof(li->line));
1572 strlcpy(li->hostname, last->ll_host,
1573 MIN_SIZEOF(li->hostname, last->ll_host));
1574 li->tv_sec = last->ll_time;
1575 }
1576
1577 int
1578 lastlog_get_entry(struct logininfo *li)
1579 {
1580 struct lastlog last;
1581 int fd, ret;
1582
1583 if (!lastlog_openseek(li, &fd, O_RDONLY))
1584 return (0);
1585
1586 ret = atomicio(read, fd, &last, sizeof(last));
1587 close(fd);
1588
1589 switch (ret) {
1590 case 0:
1591 memset(&last, '\0', sizeof(last));
1592 /* FALLTHRU */
1593 case sizeof(last):
1594 lastlog_populate_entry(li, &last);
1595 return (1);
1596 case -1:
1597 error("%s: Error reading from %s: %s", __func__,
1598 LASTLOG_FILE, strerror(errno));
1599 return (0);
1600 default:
1601 error("%s: Error reading from %s: Expecting %d, got %d",
1602 __func__, LASTLOG_FILE, (int)sizeof(last), ret);
1603 return (0);
1604 }
1605
1606 /* NOTREACHED */
1607 return (0);
1608 }
1609 #endif /* USE_LASTLOG */
1610
1611 #ifdef USE_BTMP
1612 /*
1613 * Logs failed login attempts in _PATH_BTMP if that exists.
1614 * The most common login failure is to give password instead of username.
1615 * So the _PATH_BTMP file checked for the correct permission, so that
1616 * only root can read it.
1617 */
1618
1619 void
1620 record_failed_login(const char *username, const char *hostname,
1621 const char *ttyn)
1622 {
1623 int fd;
1624 struct utmp ut;
1625 struct sockaddr_storage from;
1626 socklen_t fromlen = sizeof(from);
1627 struct sockaddr_in *a4;
1628 struct sockaddr_in6 *a6;
1629 time_t t;
1630 struct stat fst;
1631
1632 if (geteuid() != 0)
1633 return;
1634 if ((fd = open(_PATH_BTMP, O_WRONLY | O_APPEND)) < 0) {
1635 debug("Unable to open the btmp file %s: %s", _PATH_BTMP,
1636 strerror(errno));
1637 return;
1638 }
1639 if (fstat(fd, &fst) < 0) {
1640 logit("%s: fstat of %s failed: %s", __func__, _PATH_BTMP,
1641 strerror(errno));
1642 goto out;
1643 }
1644 if((fst.st_mode & (S_IRWXG | S_IRWXO)) || (fst.st_uid != 0)){
1645 logit("Excess permission or bad ownership on file %s",
1646 _PATH_BTMP);
1647 goto out;
1648 }
1649
1650 memset(&ut, 0, sizeof(ut));
1651 /* strncpy because we don't necessarily want nul termination */
1652 strncpy(ut.ut_user, username, sizeof(ut.ut_user));
1653 strlcpy(ut.ut_line, "ssh:notty", sizeof(ut.ut_line));
1654
1655 time(&t);
1656 ut.ut_time = t; /* ut_time is not always a time_t */
1657 ut.ut_type = LOGIN_PROCESS;
1658 ut.ut_pid = getpid();
1659
1660 /* strncpy because we don't necessarily want nul termination */
1661 strncpy(ut.ut_host, hostname, sizeof(ut.ut_host));
1662
1663 if (packet_connection_is_on_socket() &&
1664 getpeername(packet_get_connection_in(),
1665 (struct sockaddr *)&from, &fromlen) == 0) {
1666 ipv64_normalise_mapped(&from, &fromlen);
1667 if (from.ss_family == AF_INET) {
1668 a4 = (struct sockaddr_in *)&from;
1669 memcpy(&ut.ut_addr, &(a4->sin_addr),
1670 MIN_SIZEOF(ut.ut_addr, a4->sin_addr));
1671 }
1672 #ifdef HAVE_ADDR_V6_IN_UTMP
1673 if (from.ss_family == AF_INET6) {
1674 a6 = (struct sockaddr_in6 *)&from;
1675 memcpy(&ut.ut_addr_v6, &(a6->sin6_addr),
1676 MIN_SIZEOF(ut.ut_addr_v6, a6->sin6_addr));
1677 }
1678 #endif
1679 }
1680
1681 if (atomicio(vwrite, fd, &ut, sizeof(ut)) != sizeof(ut))
1682 error("Failed to write to %s: %s", _PATH_BTMP,
1683 strerror(errno));
1684
1685 out:
1686 close(fd);
1687 }
1688 #endif /* USE_BTMP */
A clone of openssh git repository