search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
- (djm) [auth-pam.c auth-shadow.c auth2-none.c cleanup.c sshd.c]
[openssh-git.git] / loginrec.c
blob7850312b62b757806f0e18ecfa619b1ed439cf31
1 /*
2 * Copyright (c) 2000 Andre Lucas. All rights reserved.
3 * Portions copyright (c) 1998 Todd C. Miller
4 * Portions copyright (c) 1996 Jason Downs
5 * Portions copyright (c) 1996 Theo de Raadt
6 *
7 * Redistribution and use in source and binary forms, with or without
8 * modification, are permitted provided that the following conditions
9 * are met:
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
15 *
16 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
17 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
18 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
19 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
20 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
21 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
22 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
23 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
24 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
25 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
26 */
27
28 /*
29 * The btmp logging code is derived from login.c from util-linux and is under
30 * the the following license:
31 *
32 * Copyright (c) 1980, 1987, 1988 The Regents of the University of California.
33 * All rights reserved.
34 *
35 * Redistribution and use in source and binary forms are permitted
36 * provided that the above copyright notice and this paragraph are
37 * duplicated in all such forms and that any documentation,
38 * advertising materials, and other materials related to such
39 * distribution and use acknowledge that the software was developed
40 * by the University of California, Berkeley. The name of the
41 * University may not be used to endorse or promote products derived
42 * from this software without specific prior written permission.
43 * THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR
44 * IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED
45 * WARRANTIES OF MERCHANTIBILITY AND FITNESS FOR A PARTICULAR PURPOSE.
46 */
47
48
49 /**
50 ** loginrec.c: platform-independent login recording and lastlog retrieval
51 **/
52
53 /*
54 * The new login code explained
55 * ============================
56 *
57 * This code attempts to provide a common interface to login recording
58 * (utmp and friends) and last login time retrieval.
59 *
60 * Its primary means of achieving this is to use 'struct logininfo', a
61 * union of all the useful fields in the various different types of
62 * system login record structures one finds on UNIX variants.
63 *
64 * We depend on autoconf to define which recording methods are to be
65 * used, and which fields are contained in the relevant data structures
66 * on the local system. Many C preprocessor symbols affect which code
67 * gets compiled here.
68 *
69 * The code is designed to make it easy to modify a particular
70 * recording method, without affecting other methods nor requiring so
71 * many nested conditional compilation blocks as were commonplace in
72 * the old code.
73 *
74 * For login recording, we try to use the local system's libraries as
75 * these are clearly most likely to work correctly. For utmp systems
76 * this usually means login() and logout() or setutent() etc., probably
77 * in libutil, along with logwtmp() etc. On these systems, we fall back
78 * to writing the files directly if we have to, though this method
79 * requires very thorough testing so we do not corrupt local auditing
80 * information. These files and their access methods are very system
81 * specific indeed.
82 *
83 * For utmpx systems, the corresponding library functions are
84 * setutxent() etc. To the author's knowledge, all utmpx systems have
85 * these library functions and so no direct write is attempted. If such
86 * a system exists and needs support, direct analogues of the [uw]tmp
87 * code should suffice.
88 *
89 * Retrieving the time of last login ('lastlog') is in some ways even
90 * more problemmatic than login recording. Some systems provide a
91 * simple table of all users which we seek based on uid and retrieve a
92 * relatively standard structure. Others record the same information in
93 * a directory with a separate file, and others don't record the
94 * information separately at all. For systems in the latter category,
95 * we look backwards in the wtmp or wtmpx file for the last login entry
96 * for our user. Naturally this is slower and on busy systems could
97 * incur a significant performance penalty.
98 *
99 * Calling the new code
100 * --------------------
101 *
102 * In OpenSSH all login recording and retrieval is performed in
103 * login.c. Here you'll find working examples. Also, in the logintest.c
104 * program there are more examples.
105 *
106 * Internal handler calling method
107 * -------------------------------
108 *
109 * When a call is made to login_login() or login_logout(), both
110 * routines set a struct logininfo flag defining which action (log in,
111 * or log out) is to be taken. They both then call login_write(), which
112 * calls whichever of the many structure-specific handlers autoconf
113 * selects for the local system.
114 *
115 * The handlers themselves handle system data structure specifics. Both
116 * struct utmp and struct utmpx have utility functions (see
117 * construct_utmp*()) to try to make it simpler to add extra systems
118 * that introduce new features to either structure.
119 *
120 * While it may seem terribly wasteful to replicate so much similar
121 * code for each method, experience has shown that maintaining code to
122 * write both struct utmp and utmpx in one function, whilst maintaining
123 * support for all systems whether they have library support or not, is
124 * a difficult and time-consuming task.
125 *
126 * Lastlog support proceeds similarly. Functions login_get_lastlog()
127 * (and its OpenSSH-tuned friend login_get_lastlog_time()) call
128 * getlast_entry(), which tries one of three methods to find the last
129 * login time. It uses local system lastlog support if it can,
130 * otherwise it tries wtmp or wtmpx before giving up and returning 0,
131 * meaning "tilt".
132 *
133 * Maintenance
134 * -----------
135 *
136 * In many cases it's possible to tweak autoconf to select the correct
137 * methods for a particular platform, either by improving the detection
138 * code (best), or by presetting DISABLE_<method> or CONF_<method>_FILE
139 * symbols for the platform.
140 *
141 * Use logintest to check which symbols are defined before modifying
142 * configure.ac and loginrec.c. (You have to build logintest yourself
143 * with 'make logintest' as it's not built by default.)
144 *
145 * Otherwise, patches to the specific method(s) are very helpful!
146 */
147
148 #include "includes.h"
149
150 #include <sys/types.h>
151 #include <sys/stat.h>
152 #include <sys/socket.h>
153
154 #include <netinet/in.h>
155
156 #include <errno.h>
157 #include <fcntl.h>
158 #include <pwd.h>
159 #include <string.h>
160 #include <unistd.h>
161
162 #include "xmalloc.h"
163 #include "key.h"
164 #include "hostfile.h"
165 #include "ssh.h"
166 #include "loginrec.h"
167 #include "log.h"
168 #include "atomicio.h"
169 #include "packet.h"
170 #include "canohost.h"
171 #include "auth.h"
172 #include "buffer.h"
173
174 #ifdef HAVE_UTIL_H
175 # include <util.h>
176 #endif
177
178 #ifdef HAVE_LIBUTIL_H
179 # include <libutil.h>
180 #endif
181
182 /**
183 ** prototypes for helper functions in this file
184 **/
185
186 #if HAVE_UTMP_H
187 void set_utmp_time(struct logininfo *li, struct utmp *ut);
188 void construct_utmp(struct logininfo *li, struct utmp *ut);
189 #endif
190
191 #ifdef HAVE_UTMPX_H
192 void set_utmpx_time(struct logininfo *li, struct utmpx *ut);
193 void construct_utmpx(struct logininfo *li, struct utmpx *ut);
194 #endif
195
196 int utmp_write_entry(struct logininfo *li);
197 int utmpx_write_entry(struct logininfo *li);
198 int wtmp_write_entry(struct logininfo *li);
199 int wtmpx_write_entry(struct logininfo *li);
200 int lastlog_write_entry(struct logininfo *li);
201 int syslogin_write_entry(struct logininfo *li);
202
203 int getlast_entry(struct logininfo *li);
204 int lastlog_get_entry(struct logininfo *li);
205 int wtmp_get_entry(struct logininfo *li);
206 int wtmpx_get_entry(struct logininfo *li);
207
208 extern Buffer loginmsg;
209
210 /* pick the shortest string */
211 #define MIN_SIZEOF(s1,s2) (sizeof(s1) < sizeof(s2) ? sizeof(s1) : sizeof(s2))
212
213 /**
214 ** platform-independent login functions
215 **/
216
217 /*
218 * login_login(struct logininfo *) - Record a login
219 *
220 * Call with a pointer to a struct logininfo initialised with
221 * login_init_entry() or login_alloc_entry()
222 *
223 * Returns:
224 * >0 if successful
225 * 0 on failure (will use OpenSSH's logging facilities for diagnostics)
226 */
227 int
228 login_login(struct logininfo *li)
229 {
230 li->type = LTYPE_LOGIN;
231 return (login_write(li));
232 }
233
234
235 /*
236 * login_logout(struct logininfo *) - Record a logout
237 *
238 * Call as with login_login()
239 *
240 * Returns:
241 * >0 if successful
242 * 0 on failure (will use OpenSSH's logging facilities for diagnostics)
243 */
244 int
245 login_logout(struct logininfo *li)
246 {
247 li->type = LTYPE_LOGOUT;
248 return (login_write(li));
249 }
250
251 /*
252 * login_get_lastlog_time(int) - Retrieve the last login time
253 *
254 * Retrieve the last login time for the given uid. Will try to use the
255 * system lastlog facilities if they are available, but will fall back
256 * to looking in wtmp/wtmpx if necessary
257 *
258 * Returns:
259 * 0 on failure, or if user has never logged in
260 * Time in seconds from the epoch if successful
261 *
262 * Useful preprocessor symbols:
263 * DISABLE_LASTLOG: If set, *never* even try to retrieve lastlog
264 * info
265 * USE_LASTLOG: If set, indicates the presence of system lastlog
266 * facilities. If this and DISABLE_LASTLOG are not set,
267 * try to retrieve lastlog information from wtmp/wtmpx.
268 */
269 unsigned int
270 login_get_lastlog_time(const int uid)
271 {
272 struct logininfo li;
273
274 if (login_get_lastlog(&li, uid))
275 return (li.tv_sec);
276 else
277 return (0);
278 }
279
280 /*
281 * login_get_lastlog(struct logininfo *, int) - Retrieve a lastlog entry
282 *
283 * Retrieve a logininfo structure populated (only partially) with
284 * information from the system lastlog data, or from wtmp/wtmpx if no
285 * system lastlog information exists.
286 *
287 * Note this routine must be given a pre-allocated logininfo.
288 *
289 * Returns:
290 * >0: A pointer to your struct logininfo if successful
291 * 0 on failure (will use OpenSSH's logging facilities for diagnostics)
292 */
293 struct logininfo *
294 login_get_lastlog(struct logininfo *li, const int uid)
295 {
296 struct passwd *pw;
297
298 memset(li, '\0', sizeof(*li));
299 li->uid = uid;
300
301 /*
302 * If we don't have a 'real' lastlog, we need the username to
303 * reliably search wtmp(x) for the last login (see
304 * wtmp_get_entry().)
305 */
306 pw = getpwuid(uid);
307 if (pw == NULL)
308 fatal("%s: Cannot find account for uid %i", __func__, uid);
309
310 /* No MIN_SIZEOF here - we absolutely *must not* truncate the
311 * username (XXX - so check for trunc!) */
312 strlcpy(li->username, pw->pw_name, sizeof(li->username));
313
314 if (getlast_entry(li))
315 return (li);
316 else
317 return (NULL);
318 }
319
320
321 /*
322 * login_alloc_entry(int, char*, char*, char*) - Allocate and initialise
323 * a logininfo structure
324 *
325 * This function creates a new struct logininfo, a data structure
326 * meant to carry the information required to portably record login info.
327 *
328 * Returns a pointer to a newly created struct logininfo. If memory
329 * allocation fails, the program halts.
330 */
331 struct
332 logininfo *login_alloc_entry(int pid, const char *username,
333 const char *hostname, const char *line)
334 {
335 struct logininfo *newli;
336
337 newli = xmalloc(sizeof(*newli));
338 login_init_entry(newli, pid, username, hostname, line);
339 return (newli);
340 }
341
342
343 /* login_free_entry(struct logininfo *) - free struct memory */
344 void
345 login_free_entry(struct logininfo *li)
346 {
347 xfree(li);
348 }
349
350
351 /* login_init_entry(struct logininfo *, int, char*, char*, char*)
352 * - initialise a struct logininfo
353 *
354 * Populates a new struct logininfo, a data structure meant to carry
355 * the information required to portably record login info.
356 *
357 * Returns: 1
358 */
359 int
360 login_init_entry(struct logininfo *li, int pid, const char *username,
361 const char *hostname, const char *line)
362 {
363 struct passwd *pw;
364
365 memset(li, 0, sizeof(*li));
366
367 li->pid = pid;
368
369 /* set the line information */
370 if (line)
371 line_fullname(li->line, line, sizeof(li->line));
372
373 if (username) {
374 strlcpy(li->username, username, sizeof(li->username));
375 pw = getpwnam(li->username);
376 if (pw == NULL) {
377 fatal("%s: Cannot find user \"%s\"", __func__,
378 li->username);
379 }
380 li->uid = pw->pw_uid;
381 }
382
383 if (hostname)
384 strlcpy(li->hostname, hostname, sizeof(li->hostname));
385
386 return (1);
387 }
388
389 /*
390 * login_set_current_time(struct logininfo *) - set the current time
391 *
392 * Set the current time in a logininfo structure. This function is
393 * meant to eliminate the need to deal with system dependencies for
394 * time handling.
395 */
396 void
397 login_set_current_time(struct logininfo *li)
398 {
399 struct timeval tv;
400
401 gettimeofday(&tv, NULL);
402
403 li->tv_sec = tv.tv_sec;
404 li->tv_usec = tv.tv_usec;
405 }
406
407 /* copy a sockaddr_* into our logininfo */
408 void
409 login_set_addr(struct logininfo *li, const struct sockaddr *sa,
410 const unsigned int sa_size)
411 {
412 unsigned int bufsize = sa_size;
413
414 /* make sure we don't overrun our union */
415 if (sizeof(li->hostaddr) < sa_size)
416 bufsize = sizeof(li->hostaddr);
417
418 memcpy(&li->hostaddr.sa, sa, bufsize);
419 }
420
421
422 /**
423 ** login_write: Call low-level recording functions based on autoconf
424 ** results
425 **/
426 int
427 login_write(struct logininfo *li)
428 {
429 #ifndef HAVE_CYGWIN
430 if (geteuid() != 0) {
431 logit("Attempt to write login records by non-root user (aborting)");
432 return (1);
433 }
434 #endif
435
436 /* set the timestamp */
437 login_set_current_time(li);
438 #ifdef USE_LOGIN
439 syslogin_write_entry(li);
440 #endif
441 #ifdef USE_LASTLOG
442 if (li->type == LTYPE_LOGIN)
443 lastlog_write_entry(li);
444 #endif
445 #ifdef USE_UTMP
446 utmp_write_entry(li);
447 #endif
448 #ifdef USE_WTMP
449 wtmp_write_entry(li);
450 #endif
451 #ifdef USE_UTMPX
452 utmpx_write_entry(li);
453 #endif
454 #ifdef USE_WTMPX
455 wtmpx_write_entry(li);
456 #endif
457 #ifdef CUSTOM_SYS_AUTH_RECORD_LOGIN
458 if (li->type == LTYPE_LOGIN &&
459 !sys_auth_record_login(li->username,li->hostname,li->line,
460 &loginmsg))
461 logit("Writing login record failed for %s", li->username);
462 #endif
463 #ifdef SSH_AUDIT_EVENTS
464 if (li->type == LTYPE_LOGIN)
465 audit_session_open(li->line);
466 else if (li->type == LTYPE_LOGOUT)
467 audit_session_close(li->line);
468 #endif
469 return (0);
470 }
471
472 #ifdef LOGIN_NEEDS_UTMPX
473 int
474 login_utmp_only(struct logininfo *li)
475 {
476 li->type = LTYPE_LOGIN;
477 login_set_current_time(li);
478 # ifdef USE_UTMP
479 utmp_write_entry(li);
480 # endif
481 # ifdef USE_WTMP
482 wtmp_write_entry(li);
483 # endif
484 # ifdef USE_UTMPX
485 utmpx_write_entry(li);
486 # endif
487 # ifdef USE_WTMPX
488 wtmpx_write_entry(li);
489 # endif
490 return (0);
491 }
492 #endif
493
494 /**
495 ** getlast_entry: Call low-level functions to retrieve the last login
496 ** time.
497 **/
498
499 /* take the uid in li and return the last login time */
500 int
501 getlast_entry(struct logininfo *li)
502 {
503 #ifdef USE_LASTLOG
504 return(lastlog_get_entry(li));
505 #else /* !USE_LASTLOG */
506
507 #if defined(DISABLE_LASTLOG)
508 /* On some systems we shouldn't even try to obtain last login
509 * time, e.g. AIX */
510 return (0);
511 # elif defined(USE_WTMP) && \
512 (defined(HAVE_TIME_IN_UTMP) || defined(HAVE_TV_IN_UTMP))
513 /* retrieve last login time from utmp */
514 return (wtmp_get_entry(li));
515 # elif defined(USE_WTMPX) && \
516 (defined(HAVE_TIME_IN_UTMPX) || defined(HAVE_TV_IN_UTMPX))
517 /* If wtmp isn't available, try wtmpx */
518 return (wtmpx_get_entry(li));
519 # else
520 /* Give up: No means of retrieving last login time */
521 return (0);
522 # endif /* DISABLE_LASTLOG */
523 #endif /* USE_LASTLOG */
524 }
525
526
527
528 /*
529 * 'line' string utility functions
530 *
531 * These functions process the 'line' string into one of three forms:
532 *
533 * 1. The full filename (including '/dev')
534 * 2. The stripped name (excluding '/dev')
535 * 3. The abbreviated name (e.g. /dev/ttyp00 -> yp00
536 * /dev/pts/1 -> ts/1 )
537 *
538 * Form 3 is used on some systems to identify a .tmp.? entry when
539 * attempting to remove it. Typically both addition and removal is
540 * performed by one application - say, sshd - so as long as the choice
541 * uniquely identifies a terminal it's ok.
542 */
543
544
545 /*
546 * line_fullname(): add the leading '/dev/' if it doesn't exist make
547 * sure dst has enough space, if not just copy src (ugh)
548 */
549 char *
550 line_fullname(char *dst, const char *src, u_int dstsize)
551 {
552 memset(dst, '\0', dstsize);
553 if ((strncmp(src, "/dev/", 5) == 0) || (dstsize < (strlen(src) + 5)))
554 strlcpy(dst, src, dstsize);
555 else {
556 strlcpy(dst, "/dev/", dstsize);
557 strlcat(dst, src, dstsize);
558 }
559 return (dst);
560 }
561
562 /* line_stripname(): strip the leading '/dev' if it exists, return dst */
563 char *
564 line_stripname(char *dst, const char *src, int dstsize)
565 {
566 memset(dst, '\0', dstsize);
567 if (strncmp(src, "/dev/", 5) == 0)
568 strlcpy(dst, src + 5, dstsize);
569 else
570 strlcpy(dst, src, dstsize);
571 return (dst);
572 }
573
574 /*
575 * line_abbrevname(): Return the abbreviated (usually four-character)
576 * form of the line (Just use the last <dstsize> characters of the
577 * full name.)
578 *
579 * NOTE: use strncpy because we do NOT necessarily want zero
580 * termination
581 */
582 char *
583 line_abbrevname(char *dst, const char *src, int dstsize)
584 {
585 size_t len;
586
587 memset(dst, '\0', dstsize);
588
589 /* Always skip prefix if present */
590 if (strncmp(src, "/dev/", 5) == 0)
591 src += 5;
592
593 #ifdef WITH_ABBREV_NO_TTY
594 if (strncmp(src, "tty", 3) == 0)
595 src += 3;
596 #endif
597
598 len = strlen(src);
599
600 if (len > 0) {
601 if (((int)len - dstsize) > 0)
602 src += ((int)len - dstsize);
603
604 /* note: _don't_ change this to strlcpy */
605 strncpy(dst, src, (size_t)dstsize);
606 }
607
608 return (dst);
609 }
610
611 /**
612 ** utmp utility functions
613 **
614 ** These functions manipulate struct utmp, taking system differences
615 ** into account.
616 **/
617
618 #if defined(USE_UTMP) || defined (USE_WTMP) || defined (USE_LOGIN)
619
620 /* build the utmp structure */
621 void
622 set_utmp_time(struct logininfo *li, struct utmp *ut)
623 {
624 # if defined(HAVE_TV_IN_UTMP)
625 ut->ut_tv.tv_sec = li->tv_sec;
626 ut->ut_tv.tv_usec = li->tv_usec;
627 # elif defined(HAVE_TIME_IN_UTMP)
628 ut->ut_time = li->tv_sec;
629 # endif
630 }
631
632 void
633 construct_utmp(struct logininfo *li,
634 struct utmp *ut)
635 {
636 # ifdef HAVE_ADDR_V6_IN_UTMP
637 struct sockaddr_in6 *sa6;
638 # endif
639
640 memset(ut, '\0', sizeof(*ut));
641
642 /* First fill out fields used for both logins and logouts */
643
644 # ifdef HAVE_ID_IN_UTMP
645 line_abbrevname(ut->ut_id, li->line, sizeof(ut->ut_id));
646 # endif
647
648 # ifdef HAVE_TYPE_IN_UTMP
649 /* This is done here to keep utmp constants out of struct logininfo */
650 switch (li->type) {
651 case LTYPE_LOGIN:
652 ut->ut_type = USER_PROCESS;
653 #ifdef _UNICOS
654 cray_set_tmpdir(ut);
655 #endif
656 break;
657 case LTYPE_LOGOUT:
658 ut->ut_type = DEAD_PROCESS;
659 #ifdef _UNICOS
660 cray_retain_utmp(ut, li->pid);
661 #endif
662 break;
663 }
664 # endif
665 set_utmp_time(li, ut);
666
667 line_stripname(ut->ut_line, li->line, sizeof(ut->ut_line));
668
669 # ifdef HAVE_PID_IN_UTMP
670 ut->ut_pid = li->pid;
671 # endif
672
673 /* If we're logging out, leave all other fields blank */
674 if (li->type == LTYPE_LOGOUT)
675 return;
676
677 /*
678 * These fields are only used when logging in, and are blank
679 * for logouts.
680 */
681
682 /* Use strncpy because we don't necessarily want null termination */
683 strncpy(ut->ut_name, li->username,
684 MIN_SIZEOF(ut->ut_name, li->username));
685 # ifdef HAVE_HOST_IN_UTMP
686 strncpy(ut->ut_host, li->hostname,
687 MIN_SIZEOF(ut->ut_host, li->hostname));
688 # endif
689 # ifdef HAVE_ADDR_IN_UTMP
690 /* this is just a 32-bit IP address */
691 if (li->hostaddr.sa.sa_family == AF_INET)
692 ut->ut_addr = li->hostaddr.sa_in.sin_addr.s_addr;
693 # endif
694 # ifdef HAVE_ADDR_V6_IN_UTMP
695 /* this is just a 128-bit IPv6 address */
696 if (li->hostaddr.sa.sa_family == AF_INET6) {
697 sa6 = ((struct sockaddr_in6 *)&li->hostaddr.sa);
698 memcpy(ut->ut_addr_v6, sa6->sin6_addr.s6_addr, 16);
699 if (IN6_IS_ADDR_V4MAPPED(&sa6->sin6_addr)) {
700 ut->ut_addr_v6[0] = ut->ut_addr_v6[3];
701 ut->ut_addr_v6[1] = 0;
702 ut->ut_addr_v6[2] = 0;
703 ut->ut_addr_v6[3] = 0;
704 }
705 }
706 # endif
707 }
708 #endif /* USE_UTMP || USE_WTMP || USE_LOGIN */
709
710 /**
711 ** utmpx utility functions
712 **
713 ** These functions manipulate struct utmpx, accounting for system
714 ** variations.
715 **/
716
717 #if defined(USE_UTMPX) || defined (USE_WTMPX)
718 /* build the utmpx structure */
719 void
720 set_utmpx_time(struct logininfo *li, struct utmpx *utx)
721 {
722 # if defined(HAVE_TV_IN_UTMPX)
723 utx->ut_tv.tv_sec = li->tv_sec;
724 utx->ut_tv.tv_usec = li->tv_usec;
725 # elif defined(HAVE_TIME_IN_UTMPX)
726 utx->ut_time = li->tv_sec;
727 # endif
728 }
729
730 void
731 construct_utmpx(struct logininfo *li, struct utmpx *utx)
732 {
733 # ifdef HAVE_ADDR_V6_IN_UTMP
734 struct sockaddr_in6 *sa6;
735 # endif
736 memset(utx, '\0', sizeof(*utx));
737
738 # ifdef HAVE_ID_IN_UTMPX
739 line_abbrevname(utx->ut_id, li->line, sizeof(utx->ut_id));
740 # endif
741
742 /* this is done here to keep utmp constants out of loginrec.h */
743 switch (li->type) {
744 case LTYPE_LOGIN:
745 utx->ut_type = USER_PROCESS;
746 break;
747 case LTYPE_LOGOUT:
748 utx->ut_type = DEAD_PROCESS;
749 break;
750 }
751 line_stripname(utx->ut_line, li->line, sizeof(utx->ut_line));
752 set_utmpx_time(li, utx);
753 utx->ut_pid = li->pid;
754
755 /* strncpy(): Don't necessarily want null termination */
756 strncpy(utx->ut_name, li->username,
757 MIN_SIZEOF(utx->ut_name, li->username));
758
759 if (li->type == LTYPE_LOGOUT)
760 return;
761
762 /*
763 * These fields are only used when logging in, and are blank
764 * for logouts.
765 */
766
767 # ifdef HAVE_HOST_IN_UTMPX
768 strncpy(utx->ut_host, li->hostname,
769 MIN_SIZEOF(utx->ut_host, li->hostname));
770 # endif
771 # ifdef HAVE_ADDR_IN_UTMPX
772 /* this is just a 32-bit IP address */
773 if (li->hostaddr.sa.sa_family == AF_INET)
774 utx->ut_addr = li->hostaddr.sa_in.sin_addr.s_addr;
775 # endif
776 # ifdef HAVE_ADDR_V6_IN_UTMP
777 /* this is just a 128-bit IPv6 address */
778 if (li->hostaddr.sa.sa_family == AF_INET6) {
779 sa6 = ((struct sockaddr_in6 *)&li->hostaddr.sa);
780 memcpy(ut->ut_addr_v6, sa6->sin6_addr.s6_addr, 16);
781 if (IN6_IS_ADDR_V4MAPPED(&sa6->sin6_addr)) {
782 ut->ut_addr_v6[0] = ut->ut_addr_v6[3];
783 ut->ut_addr_v6[1] = 0;
784 ut->ut_addr_v6[2] = 0;
785 ut->ut_addr_v6[3] = 0;
786 }
787 }
788 # endif
789 # ifdef HAVE_SYSLEN_IN_UTMPX
790 /* ut_syslen is the length of the utx_host string */
791 utx->ut_syslen = MIN(strlen(li->hostname), sizeof(utx->ut_host));
792 # endif
793 }
794 #endif /* USE_UTMPX || USE_WTMPX */
795
796 /**
797 ** Low-level utmp functions
798 **/
799
800 /* FIXME: (ATL) utmp_write_direct needs testing */
801 #ifdef USE_UTMP
802
803 /* if we can, use pututline() etc. */
804 # if !defined(DISABLE_PUTUTLINE) && defined(HAVE_SETUTENT) && \
805 defined(HAVE_PUTUTLINE)
806 # define UTMP_USE_LIBRARY
807 # endif
808
809
810 /* write a utmp entry with the system's help (pututline() and pals) */
811 # ifdef UTMP_USE_LIBRARY
812 static int
813 utmp_write_library(struct logininfo *li, struct utmp *ut)
814 {
815 setutent();
816 pututline(ut);
817 # ifdef HAVE_ENDUTENT
818 endutent();
819 # endif
820 return (1);
821 }
822 # else /* UTMP_USE_LIBRARY */
823
824 /*
825 * Write a utmp entry direct to the file
826 * This is a slightly modification of code in OpenBSD's login.c
827 */
828 static int
829 utmp_write_direct(struct logininfo *li, struct utmp *ut)
830 {
831 struct utmp old_ut;
832 register int fd;
833 int tty;
834
835 /* FIXME: (ATL) ttyslot() needs local implementation */
836
837 #if defined(HAVE_GETTTYENT)
838 struct ttyent *ty;
839
840 tty=0;
841 setttyent();
842 while (NULL != (ty = getttyent())) {
843 tty++;
844 if (!strncmp(ty->ty_name, ut->ut_line, sizeof(ut->ut_line)))
845 break;
846 }
847 endttyent();
848
849 if (NULL == ty) {
850 logit("%s: tty not found", __func__);
851 return (0);
852 }
853 #else /* FIXME */
854
855 tty = ttyslot(); /* seems only to work for /dev/ttyp? style names */
856
857 #endif /* HAVE_GETTTYENT */
858
859 if (tty > 0 && (fd = open(UTMP_FILE, O_RDWR|O_CREAT, 0644)) >= 0) {
860 off_t pos, ret;
861
862 pos = (off_t)tty * sizeof(struct utmp);
863 if ((ret = lseek(fd, pos, SEEK_SET)) == -1) {
864 logit("%s: lseek: %s", __func__, strerror(errno));
865 return (0);
866 }
867 if (ret != pos) {
868 logit("%s: Couldn't seek to tty %d slot in %s",
869 __func__, tty, UTMP_FILE);
870 return (0);
871 }
872 /*
873 * Prevent luser from zero'ing out ut_host.
874 * If the new ut_line is empty but the old one is not
875 * and ut_line and ut_name match, preserve the old ut_line.
876 */
877 if (atomicio(read, fd, &old_ut, sizeof(old_ut)) == sizeof(old_ut) &&
878 (ut->ut_host[0] == '\0') && (old_ut.ut_host[0] != '\0') &&
879 (strncmp(old_ut.ut_line, ut->ut_line, sizeof(ut->ut_line)) == 0) &&
880 (strncmp(old_ut.ut_name, ut->ut_name, sizeof(ut->ut_name)) == 0))
881 memcpy(ut->ut_host, old_ut.ut_host, sizeof(ut->ut_host));
882
883 if ((ret = lseek(fd, pos, SEEK_SET)) == -1) {
884 logit("%s: lseek: %s", __func__, strerror(errno));
885 return (0);
886 }
887 if (ret != pos) {
888 logit("%s: Couldn't seek to tty %d slot in %s",
889 __func__, tty, UTMP_FILE);
890 return (0);
891 }
892 if (atomicio(vwrite, fd, ut, sizeof(*ut)) != sizeof(*ut)) {
893 logit("%s: error writing %s: %s", __func__,
894 UTMP_FILE, strerror(errno));
895 }
896
897 close(fd);
898 return (1);
899 } else {
900 return (0);
901 }
902 }
903 # endif /* UTMP_USE_LIBRARY */
904
905 static int
906 utmp_perform_login(struct logininfo *li)
907 {
908 struct utmp ut;
909
910 construct_utmp(li, &ut);
911 # ifdef UTMP_USE_LIBRARY
912 if (!utmp_write_library(li, &ut)) {
913 logit("%s: utmp_write_library() failed", __func__);
914 return (0);
915 }
916 # else
917 if (!utmp_write_direct(li, &ut)) {
918 logit("%s: utmp_write_direct() failed", __func__);
919 return (0);
920 }
921 # endif
922 return (1);
923 }
924
925
926 static int
927 utmp_perform_logout(struct logininfo *li)
928 {
929 struct utmp ut;
930
931 construct_utmp(li, &ut);
932 # ifdef UTMP_USE_LIBRARY
933 if (!utmp_write_library(li, &ut)) {
934 logit("%s: utmp_write_library() failed", __func__);
935 return (0);
936 }
937 # else
938 if (!utmp_write_direct(li, &ut)) {
939 logit("%s: utmp_write_direct() failed", __func__);
940 return (0);
941 }
942 # endif
943 return (1);
944 }
945
946
947 int
948 utmp_write_entry(struct logininfo *li)
949 {
950 switch(li->type) {
951 case LTYPE_LOGIN:
952 return (utmp_perform_login(li));
953
954 case LTYPE_LOGOUT:
955 return (utmp_perform_logout(li));
956
957 default:
958 logit("%s: invalid type field", __func__);
959 return (0);
960 }
961 }
962 #endif /* USE_UTMP */
963
964
965 /**
966 ** Low-level utmpx functions
967 **/
968
969 /* not much point if we don't want utmpx entries */
970 #ifdef USE_UTMPX
971
972 /* if we have the wherewithall, use pututxline etc. */
973 # if !defined(DISABLE_PUTUTXLINE) && defined(HAVE_SETUTXENT) && \
974 defined(HAVE_PUTUTXLINE)
975 # define UTMPX_USE_LIBRARY
976 # endif
977
978
979 /* write a utmpx entry with the system's help (pututxline() and pals) */
980 # ifdef UTMPX_USE_LIBRARY
981 static int
982 utmpx_write_library(struct logininfo *li, struct utmpx *utx)
983 {
984 setutxent();
985 pututxline(utx);
986
987 # ifdef HAVE_ENDUTXENT
988 endutxent();
989 # endif
990 return (1);
991 }
992
993 # else /* UTMPX_USE_LIBRARY */
994
995 /* write a utmp entry direct to the file */
996 static int
997 utmpx_write_direct(struct logininfo *li, struct utmpx *utx)
998 {
999 logit("%s: not implemented!", __func__);
1000 return (0);
1001 }
1002 # endif /* UTMPX_USE_LIBRARY */
1003
1004 static int
1005 utmpx_perform_login(struct logininfo *li)
1006 {
1007 struct utmpx utx;
1008
1009 construct_utmpx(li, &utx);
1010 # ifdef UTMPX_USE_LIBRARY
1011 if (!utmpx_write_library(li, &utx)) {
1012 logit("%s: utmp_write_library() failed", __func__);
1013 return (0);
1014 }
1015 # else
1016 if (!utmpx_write_direct(li, &ut)) {
1017 logit("%s: utmp_write_direct() failed", __func__);
1018 return (0);
1019 }
1020 # endif
1021 return (1);
1022 }
1023
1024
1025 static int
1026 utmpx_perform_logout(struct logininfo *li)
1027 {
1028 struct utmpx utx;
1029
1030 construct_utmpx(li, &utx);
1031 # ifdef HAVE_ID_IN_UTMPX
1032 line_abbrevname(utx.ut_id, li->line, sizeof(utx.ut_id));
1033 # endif
1034 # ifdef HAVE_TYPE_IN_UTMPX
1035 utx.ut_type = DEAD_PROCESS;
1036 # endif
1037
1038 # ifdef UTMPX_USE_LIBRARY
1039 utmpx_write_library(li, &utx);
1040 # else
1041 utmpx_write_direct(li, &utx);
1042 # endif
1043 return (1);
1044 }
1045
1046 int
1047 utmpx_write_entry(struct logininfo *li)
1048 {
1049 switch(li->type) {
1050 case LTYPE_LOGIN:
1051 return (utmpx_perform_login(li));
1052 case LTYPE_LOGOUT:
1053 return (utmpx_perform_logout(li));
1054 default:
1055 logit("%s: invalid type field", __func__);
1056 return (0);
1057 }
1058 }
1059 #endif /* USE_UTMPX */
1060
1061
1062 /**
1063 ** Low-level wtmp functions
1064 **/
1065
1066 #ifdef USE_WTMP
1067
1068 /*
1069 * Write a wtmp entry direct to the end of the file
1070 * This is a slight modification of code in OpenBSD's logwtmp.c
1071 */
1072 static int
1073 wtmp_write(struct logininfo *li, struct utmp *ut)
1074 {
1075 struct stat buf;
1076 int fd, ret = 1;
1077
1078 if ((fd = open(WTMP_FILE, O_WRONLY|O_APPEND, 0)) < 0) {
1079 logit("%s: problem writing %s: %s", __func__,
1080 WTMP_FILE, strerror(errno));
1081 return (0);
1082 }
1083 if (fstat(fd, &buf) == 0)
1084 if (atomicio(vwrite, fd, ut, sizeof(*ut)) != sizeof(*ut)) {
1085 ftruncate(fd, buf.st_size);
1086 logit("%s: problem writing %s: %s", __func__,
1087 WTMP_FILE, strerror(errno));
1088 ret = 0;
1089 }
1090 close(fd);
1091 return (ret);
1092 }
1093
1094 static int
1095 wtmp_perform_login(struct logininfo *li)
1096 {
1097 struct utmp ut;
1098
1099 construct_utmp(li, &ut);
1100 return (wtmp_write(li, &ut));
1101 }
1102
1103
1104 static int
1105 wtmp_perform_logout(struct logininfo *li)
1106 {
1107 struct utmp ut;
1108
1109 construct_utmp(li, &ut);
1110 return (wtmp_write(li, &ut));
1111 }
1112
1113
1114 int
1115 wtmp_write_entry(struct logininfo *li)
1116 {
1117 switch(li->type) {
1118 case LTYPE_LOGIN:
1119 return (wtmp_perform_login(li));
1120 case LTYPE_LOGOUT:
1121 return (wtmp_perform_logout(li));
1122 default:
1123 logit("%s: invalid type field", __func__);
1124 return (0);
1125 }
1126 }
1127
1128
1129 /*
1130 * Notes on fetching login data from wtmp/wtmpx
1131 *
1132 * Logouts are usually recorded with (amongst other things) a blank
1133 * username on a given tty line. However, some systems (HP-UX is one)
1134 * leave all fields set, but change the ut_type field to DEAD_PROCESS.
1135 *
1136 * Since we're only looking for logins here, we know that the username
1137 * must be set correctly. On systems that leave it in, we check for
1138 * ut_type==USER_PROCESS (indicating a login.)
1139 *
1140 * Portability: Some systems may set something other than USER_PROCESS
1141 * to indicate a login process. I don't know of any as I write. Also,
1142 * it's possible that some systems may both leave the username in
1143 * place and not have ut_type.
1144 */
1145
1146 /* return true if this wtmp entry indicates a login */
1147 static int
1148 wtmp_islogin(struct logininfo *li, struct utmp *ut)
1149 {
1150 if (strncmp(li->username, ut->ut_name,
1151 MIN_SIZEOF(li->username, ut->ut_name)) == 0) {
1152 # ifdef HAVE_TYPE_IN_UTMP
1153 if (ut->ut_type & USER_PROCESS)
1154 return (1);
1155 # else
1156 return (1);
1157 # endif
1158 }
1159 return (0);
1160 }
1161
1162 int
1163 wtmp_get_entry(struct logininfo *li)
1164 {
1165 struct stat st;
1166 struct utmp ut;
1167 int fd, found = 0;
1168
1169 /* Clear the time entries in our logininfo */
1170 li->tv_sec = li->tv_usec = 0;
1171
1172 if ((fd = open(WTMP_FILE, O_RDONLY)) < 0) {
1173 logit("%s: problem opening %s: %s", __func__,
1174 WTMP_FILE, strerror(errno));
1175 return (0);
1176 }
1177 if (fstat(fd, &st) != 0) {
1178 logit("%s: couldn't stat %s: %s", __func__,
1179 WTMP_FILE, strerror(errno));
1180 close(fd);
1181 return (0);
1182 }
1183
1184 /* Seek to the start of the last struct utmp */
1185 if (lseek(fd, -(off_t)sizeof(struct utmp), SEEK_END) == -1) {
1186 /* Looks like we've got a fresh wtmp file */
1187 close(fd);
1188 return (0);
1189 }
1190
1191 while (!found) {
1192 if (atomicio(read, fd, &ut, sizeof(ut)) != sizeof(ut)) {
1193 logit("%s: read of %s failed: %s", __func__,
1194 WTMP_FILE, strerror(errno));
1195 close (fd);
1196 return (0);
1197 }
1198 if ( wtmp_islogin(li, &ut) ) {
1199 found = 1;
1200 /*
1201 * We've already checked for a time in struct
1202 * utmp, in login_getlast()
1203 */
1204 # ifdef HAVE_TIME_IN_UTMP
1205 li->tv_sec = ut.ut_time;
1206 # else
1207 # if HAVE_TV_IN_UTMP
1208 li->tv_sec = ut.ut_tv.tv_sec;
1209 # endif
1210 # endif
1211 line_fullname(li->line, ut.ut_line,
1212 MIN_SIZEOF(li->line, ut.ut_line));
1213 # ifdef HAVE_HOST_IN_UTMP
1214 strlcpy(li->hostname, ut.ut_host,
1215 MIN_SIZEOF(li->hostname, ut.ut_host));
1216 # endif
1217 continue;
1218 }
1219 /* Seek back 2 x struct utmp */
1220 if (lseek(fd, -(off_t)(2 * sizeof(struct utmp)), SEEK_CUR) == -1) {
1221 /* We've found the start of the file, so quit */
1222 close(fd);
1223 return (0);
1224 }
1225 }
1226
1227 /* We found an entry. Tidy up and return */
1228 close(fd);
1229 return (1);
1230 }
1231 # endif /* USE_WTMP */
1232
1233
1234 /**
1235 ** Low-level wtmpx functions
1236 **/
1237
1238 #ifdef USE_WTMPX
1239 /*
1240 * Write a wtmpx entry direct to the end of the file
1241 * This is a slight modification of code in OpenBSD's logwtmp.c
1242 */
1243 static int
1244 wtmpx_write(struct logininfo *li, struct utmpx *utx)
1245 {
1246 #ifndef HAVE_UPDWTMPX
1247 struct stat buf;
1248 int fd, ret = 1;
1249
1250 if ((fd = open(WTMPX_FILE, O_WRONLY|O_APPEND, 0)) < 0) {
1251 logit("%s: problem opening %s: %s", __func__,
1252 WTMPX_FILE, strerror(errno));
1253 return (0);
1254 }
1255
1256 if (fstat(fd, &buf) == 0)
1257 if (atomicio(vwrite, fd, utx, sizeof(*utx)) != sizeof(*utx)) {
1258 ftruncate(fd, buf.st_size);
1259 logit("%s: problem writing %s: %s", __func__,
1260 WTMPX_FILE, strerror(errno));
1261 ret = 0;
1262 }
1263 close(fd);
1264
1265 return (ret);
1266 #else
1267 updwtmpx(WTMPX_FILE, utx);
1268 return (1);
1269 #endif
1270 }
1271
1272
1273 static int
1274 wtmpx_perform_login(struct logininfo *li)
1275 {
1276 struct utmpx utx;
1277
1278 construct_utmpx(li, &utx);
1279 return (wtmpx_write(li, &utx));
1280 }
1281
1282
1283 static int
1284 wtmpx_perform_logout(struct logininfo *li)
1285 {
1286 struct utmpx utx;
1287
1288 construct_utmpx(li, &utx);
1289 return (wtmpx_write(li, &utx));
1290 }
1291
1292
1293 int
1294 wtmpx_write_entry(struct logininfo *li)
1295 {
1296 switch(li->type) {
1297 case LTYPE_LOGIN:
1298 return (wtmpx_perform_login(li));
1299 case LTYPE_LOGOUT:
1300 return (wtmpx_perform_logout(li));
1301 default:
1302 logit("%s: invalid type field", __func__);
1303 return (0);
1304 }
1305 }
1306
1307 /* Please see the notes above wtmp_islogin() for information about the
1308 next two functions */
1309
1310 /* Return true if this wtmpx entry indicates a login */
1311 static int
1312 wtmpx_islogin(struct logininfo *li, struct utmpx *utx)
1313 {
1314 if (strncmp(li->username, utx->ut_name,
1315 MIN_SIZEOF(li->username, utx->ut_name)) == 0 ) {
1316 # ifdef HAVE_TYPE_IN_UTMPX
1317 if (utx->ut_type == USER_PROCESS)
1318 return (1);
1319 # else
1320 return (1);
1321 # endif
1322 }
1323 return (0);
1324 }
1325
1326
1327 int
1328 wtmpx_get_entry(struct logininfo *li)
1329 {
1330 struct stat st;
1331 struct utmpx utx;
1332 int fd, found=0;
1333
1334 /* Clear the time entries */
1335 li->tv_sec = li->tv_usec = 0;
1336
1337 if ((fd = open(WTMPX_FILE, O_RDONLY)) < 0) {
1338 logit("%s: problem opening %s: %s", __func__,
1339 WTMPX_FILE, strerror(errno));
1340 return (0);
1341 }
1342 if (fstat(fd, &st) != 0) {
1343 logit("%s: couldn't stat %s: %s", __func__,
1344 WTMPX_FILE, strerror(errno));
1345 close(fd);
1346 return (0);
1347 }
1348
1349 /* Seek to the start of the last struct utmpx */
1350 if (lseek(fd, -(off_t)sizeof(struct utmpx), SEEK_END) == -1 ) {
1351 /* probably a newly rotated wtmpx file */
1352 close(fd);
1353 return (0);
1354 }
1355
1356 while (!found) {
1357 if (atomicio(read, fd, &utx, sizeof(utx)) != sizeof(utx)) {
1358 logit("%s: read of %s failed: %s", __func__,
1359 WTMPX_FILE, strerror(errno));
1360 close (fd);
1361 return (0);
1362 }
1363 /*
1364 * Logouts are recorded as a blank username on a particular
1365 * line. So, we just need to find the username in struct utmpx
1366 */
1367 if (wtmpx_islogin(li, &utx)) {
1368 found = 1;
1369 # if defined(HAVE_TV_IN_UTMPX)
1370 li->tv_sec = utx.ut_tv.tv_sec;
1371 # elif defined(HAVE_TIME_IN_UTMPX)
1372 li->tv_sec = utx.ut_time;
1373 # endif
1374 line_fullname(li->line, utx.ut_line, sizeof(li->line));
1375 # if defined(HAVE_HOST_IN_UTMPX)
1376 strlcpy(li->hostname, utx.ut_host,
1377 MIN_SIZEOF(li->hostname, utx.ut_host));
1378 # endif
1379 continue;
1380 }
1381 if (lseek(fd, -(off_t)(2 * sizeof(struct utmpx)), SEEK_CUR) == -1) {
1382 close(fd);
1383 return (0);
1384 }
1385 }
1386
1387 close(fd);
1388 return (1);
1389 }
1390 #endif /* USE_WTMPX */
1391
1392 /**
1393 ** Low-level libutil login() functions
1394 **/
1395
1396 #ifdef USE_LOGIN
1397 static int
1398 syslogin_perform_login(struct logininfo *li)
1399 {
1400 struct utmp *ut;
1401
1402 ut = xmalloc(sizeof(*ut));
1403 construct_utmp(li, ut);
1404 login(ut);
1405 free(ut);
1406
1407 return (1);
1408 }
1409
1410 static int
1411 syslogin_perform_logout(struct logininfo *li)
1412 {
1413 # ifdef HAVE_LOGOUT
1414 char line[UT_LINESIZE];
1415
1416 (void)line_stripname(line, li->line, sizeof(line));
1417
1418 if (!logout(line))
1419 logit("%s: logout() returned an error", __func__);
1420 # ifdef HAVE_LOGWTMP
1421 else
1422 logwtmp(line, "", "");
1423 # endif
1424 /* FIXME: (ATL - if the need arises) What to do if we have
1425 * login, but no logout? what if logout but no logwtmp? All
1426 * routines are in libutil so they should all be there,
1427 * but... */
1428 # endif
1429 return (1);
1430 }
1431
1432 int
1433 syslogin_write_entry(struct logininfo *li)
1434 {
1435 switch (li->type) {
1436 case LTYPE_LOGIN:
1437 return (syslogin_perform_login(li));
1438 case LTYPE_LOGOUT:
1439 return (syslogin_perform_logout(li));
1440 default:
1441 logit("%s: Invalid type field", __func__);
1442 return (0);
1443 }
1444 }
1445 #endif /* USE_LOGIN */
1446
1447 /* end of file log-syslogin.c */
1448
1449 /**
1450 ** Low-level lastlog functions
1451 **/
1452
1453 #ifdef USE_LASTLOG
1454 #define LL_FILE 1
1455 #define LL_DIR 2
1456 #define LL_OTHER 3
1457
1458 static void
1459 lastlog_construct(struct logininfo *li, struct lastlog *last)
1460 {
1461 /* clear the structure */
1462 memset(last, '\0', sizeof(*last));
1463
1464 line_stripname(last->ll_line, li->line, sizeof(last->ll_line));
1465 strlcpy(last->ll_host, li->hostname,
1466 MIN_SIZEOF(last->ll_host, li->hostname));
1467 last->ll_time = li->tv_sec;
1468 }
1469
1470 static int
1471 lastlog_filetype(char *filename)
1472 {
1473 struct stat st;
1474
1475 if (stat(LASTLOG_FILE, &st) != 0) {
1476 logit("%s: Couldn't stat %s: %s", __func__,
1477 LASTLOG_FILE, strerror(errno));
1478 return (0);
1479 }
1480 if (S_ISDIR(st.st_mode))
1481 return (LL_DIR);
1482 else if (S_ISREG(st.st_mode))
1483 return (LL_FILE);
1484 else
1485 return (LL_OTHER);
1486 }
1487
1488
1489 /* open the file (using filemode) and seek to the login entry */
1490 static int
1491 lastlog_openseek(struct logininfo *li, int *fd, int filemode)
1492 {
1493 off_t offset;
1494 int type;
1495 char lastlog_file[1024];
1496
1497 type = lastlog_filetype(LASTLOG_FILE);
1498 switch (type) {
1499 case LL_FILE:
1500 strlcpy(lastlog_file, LASTLOG_FILE,
1501 sizeof(lastlog_file));
1502 break;
1503 case LL_DIR:
1504 snprintf(lastlog_file, sizeof(lastlog_file), "%s/%s",
1505 LASTLOG_FILE, li->username);
1506 break;
1507 default:
1508 logit("%s: %.100s is not a file or directory!", __func__,
1509 LASTLOG_FILE);
1510 return (0);
1511 }
1512
1513 *fd = open(lastlog_file, filemode, 0600);
1514 if (*fd < 0) {
1515 debug("%s: Couldn't open %s: %s", __func__,
1516 lastlog_file, strerror(errno));
1517 return (0);
1518 }
1519
1520 if (type == LL_FILE) {
1521 /* find this uid's offset in the lastlog file */
1522 offset = (off_t) ((long)li->uid * sizeof(struct lastlog));
1523
1524 if (lseek(*fd, offset, SEEK_SET) != offset) {
1525 logit("%s: %s->lseek(): %s", __func__,
1526 lastlog_file, strerror(errno));
1527 return (0);
1528 }
1529 }
1530
1531 return (1);
1532 }
1533
1534 static int
1535 lastlog_perform_login(struct logininfo *li)
1536 {
1537 struct lastlog last;
1538 int fd;
1539
1540 /* create our struct lastlog */
1541 lastlog_construct(li, &last);
1542
1543 if (!lastlog_openseek(li, &fd, O_RDWR|O_CREAT))
1544 return (0);
1545
1546 /* write the entry */
1547 if (atomicio(vwrite, fd, &last, sizeof(last)) != sizeof(last)) {
1548 close(fd);
1549 logit("%s: Error writing to %s: %s", __func__,
1550 LASTLOG_FILE, strerror(errno));
1551 return (0);
1552 }
1553
1554 close(fd);
1555 return (1);
1556 }
1557
1558 int
1559 lastlog_write_entry(struct logininfo *li)
1560 {
1561 switch(li->type) {
1562 case LTYPE_LOGIN:
1563 return (lastlog_perform_login(li));
1564 default:
1565 logit("%s: Invalid type field", __func__);
1566 return (0);
1567 }
1568 }
1569
1570 static void
1571 lastlog_populate_entry(struct logininfo *li, struct lastlog *last)
1572 {
1573 line_fullname(li->line, last->ll_line, sizeof(li->line));
1574 strlcpy(li->hostname, last->ll_host,
1575 MIN_SIZEOF(li->hostname, last->ll_host));
1576 li->tv_sec = last->ll_time;
1577 }
1578
1579 int
1580 lastlog_get_entry(struct logininfo *li)
1581 {
1582 struct lastlog last;
1583 int fd, ret;
1584
1585 if (!lastlog_openseek(li, &fd, O_RDONLY))
1586 return (0);
1587
1588 ret = atomicio(read, fd, &last, sizeof(last));
1589 close(fd);
1590
1591 switch (ret) {
1592 case 0:
1593 memset(&last, '\0', sizeof(last));
1594 /* FALLTHRU */
1595 case sizeof(last):
1596 lastlog_populate_entry(li, &last);
1597 return (1);
1598 case -1:
1599 error("%s: Error reading from %s: %s", __func__,
1600 LASTLOG_FILE, strerror(errno));
1601 return (0);
1602 default:
1603 error("%s: Error reading from %s: Expecting %d, got %d",
1604 __func__, LASTLOG_FILE, (int)sizeof(last), ret);
1605 return (0);
1606 }
1607
1608 /* NOTREACHED */
1609 return (0);
1610 }
1611 #endif /* USE_LASTLOG */
1612
1613 #ifdef USE_BTMP
1614 /*
1615 * Logs failed login attempts in _PATH_BTMP if that exists.
1616 * The most common login failure is to give password instead of username.
1617 * So the _PATH_BTMP file checked for the correct permission, so that
1618 * only root can read it.
1619 */
1620
1621 void
1622 record_failed_login(const char *username, const char *hostname,
1623 const char *ttyn)
1624 {
1625 int fd;
1626 struct utmp ut;
1627 struct sockaddr_storage from;
1628 socklen_t fromlen = sizeof(from);
1629 struct sockaddr_in *a4;
1630 struct sockaddr_in6 *a6;
1631 time_t t;
1632 struct stat fst;
1633
1634 if (geteuid() != 0)
1635 return;
1636 if ((fd = open(_PATH_BTMP, O_WRONLY | O_APPEND)) < 0) {
1637 debug("Unable to open the btmp file %s: %s", _PATH_BTMP,
1638 strerror(errno));
1639 return;
1640 }
1641 if (fstat(fd, &fst) < 0) {
1642 logit("%s: fstat of %s failed: %s", __func__, _PATH_BTMP,
1643 strerror(errno));
1644 goto out;
1645 }
1646 if((fst.st_mode & (S_IRWXG | S_IRWXO)) || (fst.st_uid != 0)){
1647 logit("Excess permission or bad ownership on file %s",
1648 _PATH_BTMP);
1649 goto out;
1650 }
1651
1652 memset(&ut, 0, sizeof(ut));
1653 /* strncpy because we don't necessarily want nul termination */
1654 strncpy(ut.ut_user, username, sizeof(ut.ut_user));
1655 strlcpy(ut.ut_line, "ssh:notty", sizeof(ut.ut_line));
1656
1657 time(&t);
1658 ut.ut_time = t; /* ut_time is not always a time_t */
1659 ut.ut_type = LOGIN_PROCESS;
1660 ut.ut_pid = getpid();
1661
1662 /* strncpy because we don't necessarily want nul termination */
1663 strncpy(ut.ut_host, hostname, sizeof(ut.ut_host));
1664
1665 if (packet_connection_is_on_socket() &&
1666 getpeername(packet_get_connection_in(),
1667 (struct sockaddr *)&from, &fromlen) == 0) {
1668 ipv64_normalise_mapped(&from, &fromlen);
1669 if (from.ss_family == AF_INET) {
1670 a4 = (struct sockaddr_in *)&from;
1671 memcpy(&ut.ut_addr, &(a4->sin_addr),
1672 MIN_SIZEOF(ut.ut_addr, a4->sin_addr));
1673 }
1674 #ifdef HAVE_ADDR_V6_IN_UTMP
1675 if (from.ss_family == AF_INET6) {
1676 a6 = (struct sockaddr_in6 *)&from;
1677 memcpy(&ut.ut_addr_v6, &(a6->sin6_addr),
1678 MIN_SIZEOF(ut.ut_addr_v6, a6->sin6_addr));
1679 }
1680 #endif
1681 }
1682
1683 if (atomicio(vwrite, fd, &ut, sizeof(ut)) != sizeof(ut))
1684 error("Failed to write to %s: %s", _PATH_BTMP,
1685 strerror(errno));
1686
1687 out:
1688 close(fd);
1689 }
1690 #endif /* USE_BTMP */
A clone of openssh git repository