]>
Commit | Line | Data |
---|---|---|
3c0ef626 | 1 | /* |
2 | * Copyright (c) 2000 Andre Lucas. All rights reserved. | |
3 | * Portions copyright (c) 1998 Todd C. Miller | |
4 | * Portions copyright (c) 1996 Jason Downs | |
5 | * Portions copyright (c) 1996 Theo de Raadt | |
6 | * | |
7 | * Redistribution and use in source and binary forms, with or without | |
8 | * modification, are permitted provided that the following conditions | |
9 | * are met: | |
10 | * 1. Redistributions of source code must retain the above copyright | |
11 | * notice, this list of conditions and the following disclaimer. | |
12 | * 2. Redistributions in binary form must reproduce the above copyright | |
13 | * notice, this list of conditions and the following disclaimer in the | |
14 | * documentation and/or other materials provided with the distribution. | |
3c0ef626 | 15 | * |
16 | * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR | |
17 | * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES | |
18 | * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. | |
19 | * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, | |
20 | * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | |
21 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, | |
22 | * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY | |
23 | * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT | |
24 | * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF | |
25 | * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | |
26 | */ | |
27 | ||
996d5e62 | 28 | /* |
29 | * The btmp logging code is derived from login.c from util-linux and is under | |
30 | * the the following license: | |
31 | * | |
32 | * Copyright (c) 1980, 1987, 1988 The Regents of the University of California. | |
33 | * All rights reserved. | |
34 | * | |
35 | * Redistribution and use in source and binary forms are permitted | |
36 | * provided that the above copyright notice and this paragraph are | |
37 | * duplicated in all such forms and that any documentation, | |
38 | * advertising materials, and other materials related to such | |
39 | * distribution and use acknowledge that the software was developed | |
40 | * by the University of California, Berkeley. The name of the | |
41 | * University may not be used to endorse or promote products derived | |
42 | * from this software without specific prior written permission. | |
43 | * THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR | |
44 | * IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED | |
45 | * WARRANTIES OF MERCHANTIBILITY AND FITNESS FOR A PARTICULAR PURPOSE. | |
46 | */ | |
47 | ||
48 | ||
3c0ef626 | 49 | /** |
50 | ** loginrec.c: platform-independent login recording and lastlog retrieval | |
51 | **/ | |
52 | ||
53 | /* | |
996d5e62 | 54 | * The new login code explained |
55 | * ============================ | |
56 | * | |
57 | * This code attempts to provide a common interface to login recording | |
58 | * (utmp and friends) and last login time retrieval. | |
59 | * | |
60 | * Its primary means of achieving this is to use 'struct logininfo', a | |
61 | * union of all the useful fields in the various different types of | |
62 | * system login record structures one finds on UNIX variants. | |
63 | * | |
64 | * We depend on autoconf to define which recording methods are to be | |
65 | * used, and which fields are contained in the relevant data structures | |
66 | * on the local system. Many C preprocessor symbols affect which code | |
67 | * gets compiled here. | |
68 | * | |
69 | * The code is designed to make it easy to modify a particular | |
70 | * recording method, without affecting other methods nor requiring so | |
71 | * many nested conditional compilation blocks as were commonplace in | |
72 | * the old code. | |
73 | * | |
74 | * For login recording, we try to use the local system's libraries as | |
75 | * these are clearly most likely to work correctly. For utmp systems | |
76 | * this usually means login() and logout() or setutent() etc., probably | |
77 | * in libutil, along with logwtmp() etc. On these systems, we fall back | |
78 | * to writing the files directly if we have to, though this method | |
79 | * requires very thorough testing so we do not corrupt local auditing | |
80 | * information. These files and their access methods are very system | |
81 | * specific indeed. | |
82 | * | |
83 | * For utmpx systems, the corresponding library functions are | |
84 | * setutxent() etc. To the author's knowledge, all utmpx systems have | |
85 | * these library functions and so no direct write is attempted. If such | |
86 | * a system exists and needs support, direct analogues of the [uw]tmp | |
87 | * code should suffice. | |
88 | * | |
89 | * Retrieving the time of last login ('lastlog') is in some ways even | |
90 | * more problemmatic than login recording. Some systems provide a | |
91 | * simple table of all users which we seek based on uid and retrieve a | |
92 | * relatively standard structure. Others record the same information in | |
93 | * a directory with a separate file, and others don't record the | |
94 | * information separately at all. For systems in the latter category, | |
95 | * we look backwards in the wtmp or wtmpx file for the last login entry | |
96 | * for our user. Naturally this is slower and on busy systems could | |
97 | * incur a significant performance penalty. | |
98 | * | |
99 | * Calling the new code | |
100 | * -------------------- | |
101 | * | |
102 | * In OpenSSH all login recording and retrieval is performed in | |
103 | * login.c. Here you'll find working examples. Also, in the logintest.c | |
104 | * program there are more examples. | |
105 | * | |
106 | * Internal handler calling method | |
107 | * ------------------------------- | |
108 | * | |
109 | * When a call is made to login_login() or login_logout(), both | |
110 | * routines set a struct logininfo flag defining which action (log in, | |
111 | * or log out) is to be taken. They both then call login_write(), which | |
112 | * calls whichever of the many structure-specific handlers autoconf | |
113 | * selects for the local system. | |
114 | * | |
115 | * The handlers themselves handle system data structure specifics. Both | |
116 | * struct utmp and struct utmpx have utility functions (see | |
117 | * construct_utmp*()) to try to make it simpler to add extra systems | |
118 | * that introduce new features to either structure. | |
119 | * | |
120 | * While it may seem terribly wasteful to replicate so much similar | |
121 | * code for each method, experience has shown that maintaining code to | |
122 | * write both struct utmp and utmpx in one function, whilst maintaining | |
123 | * support for all systems whether they have library support or not, is | |
124 | * a difficult and time-consuming task. | |
125 | * | |
126 | * Lastlog support proceeds similarly. Functions login_get_lastlog() | |
127 | * (and its OpenSSH-tuned friend login_get_lastlog_time()) call | |
128 | * getlast_entry(), which tries one of three methods to find the last | |
129 | * login time. It uses local system lastlog support if it can, | |
130 | * otherwise it tries wtmp or wtmpx before giving up and returning 0, | |
131 | * meaning "tilt". | |
132 | * | |
133 | * Maintenance | |
134 | * ----------- | |
135 | * | |
136 | * In many cases it's possible to tweak autoconf to select the correct | |
137 | * methods for a particular platform, either by improving the detection | |
138 | * code (best), or by presetting DISABLE_<method> or CONF_<method>_FILE | |
139 | * symbols for the platform. | |
140 | * | |
141 | * Use logintest to check which symbols are defined before modifying | |
142 | * configure.ac and loginrec.c. (You have to build logintest yourself | |
143 | * with 'make logintest' as it's not built by default.) | |
144 | * | |
145 | * Otherwise, patches to the specific method(s) are very helpful! | |
146 | */ | |
3c0ef626 | 147 | |
148 | #include "includes.h" | |
149 | ||
9108f8d9 | 150 | #include <sys/types.h> |
151 | #include <sys/stat.h> | |
152 | #include <sys/socket.h> | |
153 | ||
154 | #include <netinet/in.h> | |
155 | ||
156 | #include <errno.h> | |
157 | #include <fcntl.h> | |
158 | #ifdef HAVE_PATHS_H | |
159 | # include <paths.h> | |
160 | #endif | |
161 | #include <pwd.h> | |
162 | #include <stdarg.h> | |
163 | #include <string.h> | |
164 | #include <unistd.h> | |
165 | ||
3c0ef626 | 166 | #include "xmalloc.h" |
9108f8d9 | 167 | #include "key.h" |
168 | #include "hostfile.h" | |
169 | #include "ssh.h" | |
3c0ef626 | 170 | #include "loginrec.h" |
171 | #include "log.h" | |
172 | #include "atomicio.h" | |
996d5e62 | 173 | #include "packet.h" |
174 | #include "canohost.h" | |
175 | #include "auth.h" | |
176 | #include "buffer.h" | |
3c0ef626 | 177 | |
178 | #ifdef HAVE_UTIL_H | |
996d5e62 | 179 | # include <util.h> |
3c0ef626 | 180 | #endif |
181 | ||
182 | #ifdef HAVE_LIBUTIL_H | |
996d5e62 | 183 | # include <libutil.h> |
3c0ef626 | 184 | #endif |
185 | ||
186 | /** | |
187 | ** prototypes for helper functions in this file | |
188 | **/ | |
189 | ||
190 | #if HAVE_UTMP_H | |
191 | void set_utmp_time(struct logininfo *li, struct utmp *ut); | |
192 | void construct_utmp(struct logininfo *li, struct utmp *ut); | |
193 | #endif | |
194 | ||
195 | #ifdef HAVE_UTMPX_H | |
196 | void set_utmpx_time(struct logininfo *li, struct utmpx *ut); | |
197 | void construct_utmpx(struct logininfo *li, struct utmpx *ut); | |
198 | #endif | |
199 | ||
200 | int utmp_write_entry(struct logininfo *li); | |
201 | int utmpx_write_entry(struct logininfo *li); | |
202 | int wtmp_write_entry(struct logininfo *li); | |
203 | int wtmpx_write_entry(struct logininfo *li); | |
204 | int lastlog_write_entry(struct logininfo *li); | |
205 | int syslogin_write_entry(struct logininfo *li); | |
206 | ||
207 | int getlast_entry(struct logininfo *li); | |
208 | int lastlog_get_entry(struct logininfo *li); | |
209 | int wtmp_get_entry(struct logininfo *li); | |
210 | int wtmpx_get_entry(struct logininfo *li); | |
211 | ||
996d5e62 | 212 | extern Buffer loginmsg; |
213 | ||
3c0ef626 | 214 | /* pick the shortest string */ |
996d5e62 | 215 | #define MIN_SIZEOF(s1,s2) (sizeof(s1) < sizeof(s2) ? sizeof(s1) : sizeof(s2)) |
3c0ef626 | 216 | |
217 | /** | |
218 | ** platform-independent login functions | |
219 | **/ | |
220 | ||
996d5e62 | 221 | /* |
222 | * login_login(struct logininfo *) - Record a login | |
3c0ef626 | 223 | * |
224 | * Call with a pointer to a struct logininfo initialised with | |
225 | * login_init_entry() or login_alloc_entry() | |
226 | * | |
227 | * Returns: | |
228 | * >0 if successful | |
229 | * 0 on failure (will use OpenSSH's logging facilities for diagnostics) | |
230 | */ | |
231 | int | |
996d5e62 | 232 | login_login(struct logininfo *li) |
3c0ef626 | 233 | { |
234 | li->type = LTYPE_LOGIN; | |
996d5e62 | 235 | return (login_write(li)); |
3c0ef626 | 236 | } |
237 | ||
238 | ||
996d5e62 | 239 | /* |
240 | * login_logout(struct logininfo *) - Record a logout | |
3c0ef626 | 241 | * |
242 | * Call as with login_login() | |
243 | * | |
244 | * Returns: | |
245 | * >0 if successful | |
246 | * 0 on failure (will use OpenSSH's logging facilities for diagnostics) | |
247 | */ | |
248 | int | |
249 | login_logout(struct logininfo *li) | |
250 | { | |
251 | li->type = LTYPE_LOGOUT; | |
996d5e62 | 252 | return (login_write(li)); |
3c0ef626 | 253 | } |
254 | ||
996d5e62 | 255 | /* |
256 | * login_get_lastlog_time(int) - Retrieve the last login time | |
3c0ef626 | 257 | * |
258 | * Retrieve the last login time for the given uid. Will try to use the | |
259 | * system lastlog facilities if they are available, but will fall back | |
260 | * to looking in wtmp/wtmpx if necessary | |
261 | * | |
262 | * Returns: | |
263 | * 0 on failure, or if user has never logged in | |
264 | * Time in seconds from the epoch if successful | |
265 | * | |
266 | * Useful preprocessor symbols: | |
267 | * DISABLE_LASTLOG: If set, *never* even try to retrieve lastlog | |
268 | * info | |
269 | * USE_LASTLOG: If set, indicates the presence of system lastlog | |
270 | * facilities. If this and DISABLE_LASTLOG are not set, | |
271 | * try to retrieve lastlog information from wtmp/wtmpx. | |
272 | */ | |
273 | unsigned int | |
274 | login_get_lastlog_time(const int uid) | |
275 | { | |
276 | struct logininfo li; | |
277 | ||
278 | if (login_get_lastlog(&li, uid)) | |
996d5e62 | 279 | return (li.tv_sec); |
3c0ef626 | 280 | else |
996d5e62 | 281 | return (0); |
3c0ef626 | 282 | } |
283 | ||
996d5e62 | 284 | /* |
285 | * login_get_lastlog(struct logininfo *, int) - Retrieve a lastlog entry | |
3c0ef626 | 286 | * |
287 | * Retrieve a logininfo structure populated (only partially) with | |
288 | * information from the system lastlog data, or from wtmp/wtmpx if no | |
289 | * system lastlog information exists. | |
290 | * | |
291 | * Note this routine must be given a pre-allocated logininfo. | |
292 | * | |
293 | * Returns: | |
294 | * >0: A pointer to your struct logininfo if successful | |
295 | * 0 on failure (will use OpenSSH's logging facilities for diagnostics) | |
3c0ef626 | 296 | */ |
297 | struct logininfo * | |
298 | login_get_lastlog(struct logininfo *li, const int uid) | |
299 | { | |
300 | struct passwd *pw; | |
301 | ||
302 | memset(li, '\0', sizeof(*li)); | |
303 | li->uid = uid; | |
304 | ||
305 | /* | |
306 | * If we don't have a 'real' lastlog, we need the username to | |
307 | * reliably search wtmp(x) for the last login (see | |
308 | * wtmp_get_entry().) | |
309 | */ | |
310 | pw = getpwuid(uid); | |
311 | if (pw == NULL) | |
996d5e62 | 312 | fatal("%s: Cannot find account for uid %i", __func__, uid); |
3c0ef626 | 313 | |
314 | /* No MIN_SIZEOF here - we absolutely *must not* truncate the | |
996d5e62 | 315 | * username (XXX - so check for trunc!) */ |
3c0ef626 | 316 | strlcpy(li->username, pw->pw_name, sizeof(li->username)); |
317 | ||
318 | if (getlast_entry(li)) | |
996d5e62 | 319 | return (li); |
3c0ef626 | 320 | else |
996d5e62 | 321 | return (NULL); |
3c0ef626 | 322 | } |
323 | ||
324 | ||
996d5e62 | 325 | /* |
326 | * login_alloc_entry(int, char*, char*, char*) - Allocate and initialise | |
3c0ef626 | 327 | * a logininfo structure |
328 | * | |
329 | * This function creates a new struct logininfo, a data structure | |
330 | * meant to carry the information required to portably record login info. | |
331 | * | |
332 | * Returns a pointer to a newly created struct logininfo. If memory | |
333 | * allocation fails, the program halts. | |
334 | */ | |
335 | struct | |
336 | logininfo *login_alloc_entry(int pid, const char *username, | |
996d5e62 | 337 | const char *hostname, const char *line) |
3c0ef626 | 338 | { |
339 | struct logininfo *newli; | |
340 | ||
996d5e62 | 341 | newli = xmalloc(sizeof(*newli)); |
342 | login_init_entry(newli, pid, username, hostname, line); | |
343 | return (newli); | |
3c0ef626 | 344 | } |
345 | ||
346 | ||
347 | /* login_free_entry(struct logininfo *) - free struct memory */ | |
348 | void | |
349 | login_free_entry(struct logininfo *li) | |
350 | { | |
351 | xfree(li); | |
352 | } | |
353 | ||
354 | ||
355 | /* login_init_entry(struct logininfo *, int, char*, char*, char*) | |
356 | * - initialise a struct logininfo | |
357 | * | |
358 | * Populates a new struct logininfo, a data structure meant to carry | |
359 | * the information required to portably record login info. | |
360 | * | |
361 | * Returns: 1 | |
362 | */ | |
363 | int | |
364 | login_init_entry(struct logininfo *li, int pid, const char *username, | |
996d5e62 | 365 | const char *hostname, const char *line) |
3c0ef626 | 366 | { |
367 | struct passwd *pw; | |
368 | ||
369 | memset(li, 0, sizeof(*li)); | |
370 | ||
371 | li->pid = pid; | |
372 | ||
373 | /* set the line information */ | |
374 | if (line) | |
375 | line_fullname(li->line, line, sizeof(li->line)); | |
376 | ||
377 | if (username) { | |
378 | strlcpy(li->username, username, sizeof(li->username)); | |
379 | pw = getpwnam(li->username); | |
996d5e62 | 380 | if (pw == NULL) { |
665a873d | 381 | fatal("%s: Cannot find user \"%s\"", __func__, |
996d5e62 | 382 | li->username); |
383 | } | |
3c0ef626 | 384 | li->uid = pw->pw_uid; |
385 | } | |
386 | ||
387 | if (hostname) | |
388 | strlcpy(li->hostname, hostname, sizeof(li->hostname)); | |
389 | ||
996d5e62 | 390 | return (1); |
3c0ef626 | 391 | } |
392 | ||
665a873d | 393 | /* |
996d5e62 | 394 | * login_set_current_time(struct logininfo *) - set the current time |
3c0ef626 | 395 | * |
396 | * Set the current time in a logininfo structure. This function is | |
397 | * meant to eliminate the need to deal with system dependencies for | |
398 | * time handling. | |
399 | */ | |
400 | void | |
401 | login_set_current_time(struct logininfo *li) | |
402 | { | |
403 | struct timeval tv; | |
404 | ||
405 | gettimeofday(&tv, NULL); | |
406 | ||
407 | li->tv_sec = tv.tv_sec; | |
408 | li->tv_usec = tv.tv_usec; | |
409 | } | |
410 | ||
411 | /* copy a sockaddr_* into our logininfo */ | |
412 | void | |
413 | login_set_addr(struct logininfo *li, const struct sockaddr *sa, | |
996d5e62 | 414 | const unsigned int sa_size) |
3c0ef626 | 415 | { |
416 | unsigned int bufsize = sa_size; | |
417 | ||
418 | /* make sure we don't overrun our union */ | |
419 | if (sizeof(li->hostaddr) < sa_size) | |
420 | bufsize = sizeof(li->hostaddr); | |
421 | ||
996d5e62 | 422 | memcpy(&li->hostaddr.sa, sa, bufsize); |
3c0ef626 | 423 | } |
424 | ||
425 | ||
426 | /** | |
427 | ** login_write: Call low-level recording functions based on autoconf | |
428 | ** results | |
429 | **/ | |
430 | int | |
996d5e62 | 431 | login_write(struct logininfo *li) |
3c0ef626 | 432 | { |
433 | #ifndef HAVE_CYGWIN | |
996d5e62 | 434 | if (geteuid() != 0) { |
435 | logit("Attempt to write login records by non-root user (aborting)"); | |
436 | return (1); | |
3c0ef626 | 437 | } |
438 | #endif | |
439 | ||
440 | /* set the timestamp */ | |
441 | login_set_current_time(li); | |
442 | #ifdef USE_LOGIN | |
443 | syslogin_write_entry(li); | |
444 | #endif | |
445 | #ifdef USE_LASTLOG | |
996d5e62 | 446 | if (li->type == LTYPE_LOGIN) |
3c0ef626 | 447 | lastlog_write_entry(li); |
3c0ef626 | 448 | #endif |
449 | #ifdef USE_UTMP | |
450 | utmp_write_entry(li); | |
451 | #endif | |
452 | #ifdef USE_WTMP | |
453 | wtmp_write_entry(li); | |
454 | #endif | |
455 | #ifdef USE_UTMPX | |
456 | utmpx_write_entry(li); | |
457 | #endif | |
458 | #ifdef USE_WTMPX | |
459 | wtmpx_write_entry(li); | |
c9f39d2c | 460 | #endif |
461 | #ifdef CUSTOM_SYS_AUTH_RECORD_LOGIN | |
665a873d | 462 | if (li->type == LTYPE_LOGIN && |
463 | !sys_auth_record_login(li->username,li->hostname,li->line, | |
464 | &loginmsg)) | |
c9f39d2c | 465 | logit("Writing login record failed for %s", li->username); |
3c0ef626 | 466 | #endif |
996d5e62 | 467 | #ifdef SSH_AUDIT_EVENTS |
468 | if (li->type == LTYPE_LOGIN) | |
469 | audit_session_open(li->line); | |
470 | else if (li->type == LTYPE_LOGOUT) | |
471 | audit_session_close(li->line); | |
472 | #endif | |
473 | return (0); | |
3c0ef626 | 474 | } |
475 | ||
476 | #ifdef LOGIN_NEEDS_UTMPX | |
477 | int | |
478 | login_utmp_only(struct logininfo *li) | |
479 | { | |
cdd66111 | 480 | li->type = LTYPE_LOGIN; |
3c0ef626 | 481 | login_set_current_time(li); |
482 | # ifdef USE_UTMP | |
483 | utmp_write_entry(li); | |
484 | # endif | |
485 | # ifdef USE_WTMP | |
486 | wtmp_write_entry(li); | |
487 | # endif | |
488 | # ifdef USE_UTMPX | |
489 | utmpx_write_entry(li); | |
490 | # endif | |
491 | # ifdef USE_WTMPX | |
492 | wtmpx_write_entry(li); | |
493 | # endif | |
996d5e62 | 494 | return (0); |
3c0ef626 | 495 | } |
496 | #endif | |
497 | ||
498 | /** | |
499 | ** getlast_entry: Call low-level functions to retrieve the last login | |
500 | ** time. | |
501 | **/ | |
502 | ||
503 | /* take the uid in li and return the last login time */ | |
504 | int | |
505 | getlast_entry(struct logininfo *li) | |
506 | { | |
507 | #ifdef USE_LASTLOG | |
508 | return(lastlog_get_entry(li)); | |
509 | #else /* !USE_LASTLOG */ | |
510 | ||
996d5e62 | 511 | #if defined(DISABLE_LASTLOG) |
3c0ef626 | 512 | /* On some systems we shouldn't even try to obtain last login |
513 | * time, e.g. AIX */ | |
996d5e62 | 514 | return (0); |
515 | # elif defined(USE_WTMP) && \ | |
516 | (defined(HAVE_TIME_IN_UTMP) || defined(HAVE_TV_IN_UTMP)) | |
3c0ef626 | 517 | /* retrieve last login time from utmp */ |
518 | return (wtmp_get_entry(li)); | |
996d5e62 | 519 | # elif defined(USE_WTMPX) && \ |
520 | (defined(HAVE_TIME_IN_UTMPX) || defined(HAVE_TV_IN_UTMPX)) | |
3c0ef626 | 521 | /* If wtmp isn't available, try wtmpx */ |
3c0ef626 | 522 | return (wtmpx_get_entry(li)); |
996d5e62 | 523 | # else |
3c0ef626 | 524 | /* Give up: No means of retrieving last login time */ |
996d5e62 | 525 | return (0); |
3c0ef626 | 526 | # endif /* DISABLE_LASTLOG */ |
527 | #endif /* USE_LASTLOG */ | |
528 | } | |
529 | ||
530 | ||
531 | ||
532 | /* | |
533 | * 'line' string utility functions | |
534 | * | |
535 | * These functions process the 'line' string into one of three forms: | |
536 | * | |
537 | * 1. The full filename (including '/dev') | |
538 | * 2. The stripped name (excluding '/dev') | |
539 | * 3. The abbreviated name (e.g. /dev/ttyp00 -> yp00 | |
540 | * /dev/pts/1 -> ts/1 ) | |
541 | * | |
542 | * Form 3 is used on some systems to identify a .tmp.? entry when | |
543 | * attempting to remove it. Typically both addition and removal is | |
544 | * performed by one application - say, sshd - so as long as the choice | |
545 | * uniquely identifies a terminal it's ok. | |
546 | */ | |
547 | ||
548 | ||
996d5e62 | 549 | /* |
550 | * line_fullname(): add the leading '/dev/' if it doesn't exist make | |
551 | * sure dst has enough space, if not just copy src (ugh) | |
552 | */ | |
3c0ef626 | 553 | char * |
665a873d | 554 | line_fullname(char *dst, const char *src, u_int dstsize) |
3c0ef626 | 555 | { |
556 | memset(dst, '\0', dstsize); | |
996d5e62 | 557 | if ((strncmp(src, "/dev/", 5) == 0) || (dstsize < (strlen(src) + 5))) |
3c0ef626 | 558 | strlcpy(dst, src, dstsize); |
996d5e62 | 559 | else { |
3c0ef626 | 560 | strlcpy(dst, "/dev/", dstsize); |
561 | strlcat(dst, src, dstsize); | |
562 | } | |
996d5e62 | 563 | return (dst); |
3c0ef626 | 564 | } |
565 | ||
566 | /* line_stripname(): strip the leading '/dev' if it exists, return dst */ | |
567 | char * | |
568 | line_stripname(char *dst, const char *src, int dstsize) | |
569 | { | |
570 | memset(dst, '\0', dstsize); | |
571 | if (strncmp(src, "/dev/", 5) == 0) | |
572 | strlcpy(dst, src + 5, dstsize); | |
573 | else | |
574 | strlcpy(dst, src, dstsize); | |
996d5e62 | 575 | return (dst); |
3c0ef626 | 576 | } |
577 | ||
665a873d | 578 | /* |
996d5e62 | 579 | * line_abbrevname(): Return the abbreviated (usually four-character) |
3c0ef626 | 580 | * form of the line (Just use the last <dstsize> characters of the |
581 | * full name.) | |
582 | * | |
583 | * NOTE: use strncpy because we do NOT necessarily want zero | |
996d5e62 | 584 | * termination |
585 | */ | |
3c0ef626 | 586 | char * |
587 | line_abbrevname(char *dst, const char *src, int dstsize) | |
588 | { | |
589 | size_t len; | |
590 | ||
591 | memset(dst, '\0', dstsize); | |
592 | ||
593 | /* Always skip prefix if present */ | |
594 | if (strncmp(src, "/dev/", 5) == 0) | |
595 | src += 5; | |
596 | ||
700318f3 | 597 | #ifdef WITH_ABBREV_NO_TTY |
598 | if (strncmp(src, "tty", 3) == 0) | |
599 | src += 3; | |
600 | #endif | |
601 | ||
3c0ef626 | 602 | len = strlen(src); |
603 | ||
604 | if (len > 0) { | |
605 | if (((int)len - dstsize) > 0) | |
606 | src += ((int)len - dstsize); | |
607 | ||
608 | /* note: _don't_ change this to strlcpy */ | |
609 | strncpy(dst, src, (size_t)dstsize); | |
610 | } | |
611 | ||
996d5e62 | 612 | return (dst); |
3c0ef626 | 613 | } |
614 | ||
615 | /** | |
616 | ** utmp utility functions | |
617 | ** | |
618 | ** These functions manipulate struct utmp, taking system differences | |
619 | ** into account. | |
620 | **/ | |
621 | ||
622 | #if defined(USE_UTMP) || defined (USE_WTMP) || defined (USE_LOGIN) | |
623 | ||
624 | /* build the utmp structure */ | |
625 | void | |
626 | set_utmp_time(struct logininfo *li, struct utmp *ut) | |
627 | { | |
996d5e62 | 628 | # if defined(HAVE_TV_IN_UTMP) |
3c0ef626 | 629 | ut->ut_tv.tv_sec = li->tv_sec; |
630 | ut->ut_tv.tv_usec = li->tv_usec; | |
996d5e62 | 631 | # elif defined(HAVE_TIME_IN_UTMP) |
3c0ef626 | 632 | ut->ut_time = li->tv_sec; |
3c0ef626 | 633 | # endif |
634 | } | |
635 | ||
636 | void | |
637 | construct_utmp(struct logininfo *li, | |
638 | struct utmp *ut) | |
639 | { | |
6a9b3198 | 640 | # ifdef HAVE_ADDR_V6_IN_UTMP |
641 | struct sockaddr_in6 *sa6; | |
996d5e62 | 642 | # endif |
643 | ||
3c0ef626 | 644 | memset(ut, '\0', sizeof(*ut)); |
645 | ||
646 | /* First fill out fields used for both logins and logouts */ | |
647 | ||
648 | # ifdef HAVE_ID_IN_UTMP | |
649 | line_abbrevname(ut->ut_id, li->line, sizeof(ut->ut_id)); | |
650 | # endif | |
651 | ||
652 | # ifdef HAVE_TYPE_IN_UTMP | |
653 | /* This is done here to keep utmp constants out of struct logininfo */ | |
654 | switch (li->type) { | |
655 | case LTYPE_LOGIN: | |
656 | ut->ut_type = USER_PROCESS; | |
41b2f314 | 657 | #ifdef _UNICOS |
3c0ef626 | 658 | cray_set_tmpdir(ut); |
659 | #endif | |
660 | break; | |
661 | case LTYPE_LOGOUT: | |
662 | ut->ut_type = DEAD_PROCESS; | |
41b2f314 | 663 | #ifdef _UNICOS |
3c0ef626 | 664 | cray_retain_utmp(ut, li->pid); |
665 | #endif | |
666 | break; | |
667 | } | |
668 | # endif | |
669 | set_utmp_time(li, ut); | |
670 | ||
671 | line_stripname(ut->ut_line, li->line, sizeof(ut->ut_line)); | |
672 | ||
673 | # ifdef HAVE_PID_IN_UTMP | |
674 | ut->ut_pid = li->pid; | |
675 | # endif | |
676 | ||
677 | /* If we're logging out, leave all other fields blank */ | |
678 | if (li->type == LTYPE_LOGOUT) | |
996d5e62 | 679 | return; |
3c0ef626 | 680 | |
681 | /* | |
682 | * These fields are only used when logging in, and are blank | |
683 | * for logouts. | |
684 | */ | |
685 | ||
686 | /* Use strncpy because we don't necessarily want null termination */ | |
996d5e62 | 687 | strncpy(ut->ut_name, li->username, |
688 | MIN_SIZEOF(ut->ut_name, li->username)); | |
3c0ef626 | 689 | # ifdef HAVE_HOST_IN_UTMP |
996d5e62 | 690 | strncpy(ut->ut_host, li->hostname, |
691 | MIN_SIZEOF(ut->ut_host, li->hostname)); | |
3c0ef626 | 692 | # endif |
693 | # ifdef HAVE_ADDR_IN_UTMP | |
694 | /* this is just a 32-bit IP address */ | |
695 | if (li->hostaddr.sa.sa_family == AF_INET) | |
696 | ut->ut_addr = li->hostaddr.sa_in.sin_addr.s_addr; | |
697 | # endif | |
6a9b3198 | 698 | # ifdef HAVE_ADDR_V6_IN_UTMP |
699 | /* this is just a 128-bit IPv6 address */ | |
700 | if (li->hostaddr.sa.sa_family == AF_INET6) { | |
701 | sa6 = ((struct sockaddr_in6 *)&li->hostaddr.sa); | |
702 | memcpy(ut->ut_addr_v6, sa6->sin6_addr.s6_addr, 16); | |
703 | if (IN6_IS_ADDR_V4MAPPED(&sa6->sin6_addr)) { | |
704 | ut->ut_addr_v6[0] = ut->ut_addr_v6[3]; | |
705 | ut->ut_addr_v6[1] = 0; | |
706 | ut->ut_addr_v6[2] = 0; | |
707 | ut->ut_addr_v6[3] = 0; | |
708 | } | |
709 | } | |
710 | # endif | |
3c0ef626 | 711 | } |
712 | #endif /* USE_UTMP || USE_WTMP || USE_LOGIN */ | |
713 | ||
714 | /** | |
715 | ** utmpx utility functions | |
716 | ** | |
717 | ** These functions manipulate struct utmpx, accounting for system | |
718 | ** variations. | |
719 | **/ | |
720 | ||
721 | #if defined(USE_UTMPX) || defined (USE_WTMPX) | |
722 | /* build the utmpx structure */ | |
723 | void | |
724 | set_utmpx_time(struct logininfo *li, struct utmpx *utx) | |
725 | { | |
996d5e62 | 726 | # if defined(HAVE_TV_IN_UTMPX) |
3c0ef626 | 727 | utx->ut_tv.tv_sec = li->tv_sec; |
728 | utx->ut_tv.tv_usec = li->tv_usec; | |
996d5e62 | 729 | # elif defined(HAVE_TIME_IN_UTMPX) |
3c0ef626 | 730 | utx->ut_time = li->tv_sec; |
996d5e62 | 731 | # endif |
3c0ef626 | 732 | } |
733 | ||
734 | void | |
735 | construct_utmpx(struct logininfo *li, struct utmpx *utx) | |
736 | { | |
6a9b3198 | 737 | # ifdef HAVE_ADDR_V6_IN_UTMP |
738 | struct sockaddr_in6 *sa6; | |
739 | # endif | |
3c0ef626 | 740 | memset(utx, '\0', sizeof(*utx)); |
996d5e62 | 741 | |
3c0ef626 | 742 | # ifdef HAVE_ID_IN_UTMPX |
743 | line_abbrevname(utx->ut_id, li->line, sizeof(utx->ut_id)); | |
744 | # endif | |
745 | ||
746 | /* this is done here to keep utmp constants out of loginrec.h */ | |
747 | switch (li->type) { | |
748 | case LTYPE_LOGIN: | |
749 | utx->ut_type = USER_PROCESS; | |
750 | break; | |
751 | case LTYPE_LOGOUT: | |
752 | utx->ut_type = DEAD_PROCESS; | |
753 | break; | |
754 | } | |
755 | line_stripname(utx->ut_line, li->line, sizeof(utx->ut_line)); | |
756 | set_utmpx_time(li, utx); | |
757 | utx->ut_pid = li->pid; | |
996d5e62 | 758 | |
e9a17296 | 759 | /* strncpy(): Don't necessarily want null termination */ |
996d5e62 | 760 | strncpy(utx->ut_name, li->username, |
761 | MIN_SIZEOF(utx->ut_name, li->username)); | |
3c0ef626 | 762 | |
763 | if (li->type == LTYPE_LOGOUT) | |
764 | return; | |
765 | ||
766 | /* | |
767 | * These fields are only used when logging in, and are blank | |
768 | * for logouts. | |
769 | */ | |
770 | ||
3c0ef626 | 771 | # ifdef HAVE_HOST_IN_UTMPX |
996d5e62 | 772 | strncpy(utx->ut_host, li->hostname, |
773 | MIN_SIZEOF(utx->ut_host, li->hostname)); | |
3c0ef626 | 774 | # endif |
775 | # ifdef HAVE_ADDR_IN_UTMPX | |
776 | /* this is just a 32-bit IP address */ | |
777 | if (li->hostaddr.sa.sa_family == AF_INET) | |
778 | utx->ut_addr = li->hostaddr.sa_in.sin_addr.s_addr; | |
779 | # endif | |
6a9b3198 | 780 | # ifdef HAVE_ADDR_V6_IN_UTMP |
781 | /* this is just a 128-bit IPv6 address */ | |
782 | if (li->hostaddr.sa.sa_family == AF_INET6) { | |
783 | sa6 = ((struct sockaddr_in6 *)&li->hostaddr.sa); | |
784 | memcpy(ut->ut_addr_v6, sa6->sin6_addr.s6_addr, 16); | |
785 | if (IN6_IS_ADDR_V4MAPPED(&sa6->sin6_addr)) { | |
786 | ut->ut_addr_v6[0] = ut->ut_addr_v6[3]; | |
787 | ut->ut_addr_v6[1] = 0; | |
788 | ut->ut_addr_v6[2] = 0; | |
789 | ut->ut_addr_v6[3] = 0; | |
790 | } | |
791 | } | |
792 | # endif | |
3c0ef626 | 793 | # ifdef HAVE_SYSLEN_IN_UTMPX |
794 | /* ut_syslen is the length of the utx_host string */ | |
795 | utx->ut_syslen = MIN(strlen(li->hostname), sizeof(utx->ut_host)); | |
796 | # endif | |
797 | } | |
798 | #endif /* USE_UTMPX || USE_WTMPX */ | |
799 | ||
800 | /** | |
801 | ** Low-level utmp functions | |
802 | **/ | |
803 | ||
804 | /* FIXME: (ATL) utmp_write_direct needs testing */ | |
805 | #ifdef USE_UTMP | |
806 | ||
807 | /* if we can, use pututline() etc. */ | |
808 | # if !defined(DISABLE_PUTUTLINE) && defined(HAVE_SETUTENT) && \ | |
809 | defined(HAVE_PUTUTLINE) | |
810 | # define UTMP_USE_LIBRARY | |
811 | # endif | |
812 | ||
813 | ||
814 | /* write a utmp entry with the system's help (pututline() and pals) */ | |
815 | # ifdef UTMP_USE_LIBRARY | |
816 | static int | |
817 | utmp_write_library(struct logininfo *li, struct utmp *ut) | |
818 | { | |
819 | setutent(); | |
820 | pututline(ut); | |
3c0ef626 | 821 | # ifdef HAVE_ENDUTENT |
822 | endutent(); | |
823 | # endif | |
996d5e62 | 824 | return (1); |
3c0ef626 | 825 | } |
826 | # else /* UTMP_USE_LIBRARY */ | |
827 | ||
665a873d | 828 | /* |
996d5e62 | 829 | * Write a utmp entry direct to the file |
830 | * This is a slightly modification of code in OpenBSD's login.c | |
831 | */ | |
3c0ef626 | 832 | static int |
833 | utmp_write_direct(struct logininfo *li, struct utmp *ut) | |
834 | { | |
835 | struct utmp old_ut; | |
836 | register int fd; | |
837 | int tty; | |
838 | ||
839 | /* FIXME: (ATL) ttyslot() needs local implementation */ | |
840 | ||
841 | #if defined(HAVE_GETTTYENT) | |
996d5e62 | 842 | struct ttyent *ty; |
3c0ef626 | 843 | |
844 | tty=0; | |
3c0ef626 | 845 | setttyent(); |
996d5e62 | 846 | while (NULL != (ty = getttyent())) { |
3c0ef626 | 847 | tty++; |
848 | if (!strncmp(ty->ty_name, ut->ut_line, sizeof(ut->ut_line))) | |
849 | break; | |
850 | } | |
851 | endttyent(); | |
852 | ||
996d5e62 | 853 | if (NULL == ty) { |
c9f39d2c | 854 | logit("%s: tty not found", __func__); |
855 | return (0); | |
3c0ef626 | 856 | } |
857 | #else /* FIXME */ | |
858 | ||
859 | tty = ttyslot(); /* seems only to work for /dev/ttyp? style names */ | |
860 | ||
861 | #endif /* HAVE_GETTTYENT */ | |
862 | ||
863 | if (tty > 0 && (fd = open(UTMP_FILE, O_RDWR|O_CREAT, 0644)) >= 0) { | |
c9f39d2c | 864 | off_t pos, ret; |
865 | ||
866 | pos = (off_t)tty * sizeof(struct utmp); | |
867 | if ((ret = lseek(fd, pos, SEEK_SET)) == -1) { | |
996d5e62 | 868 | logit("%s: lseek: %s", __func__, strerror(errno)); |
c9f39d2c | 869 | return (0); |
870 | } | |
871 | if (ret != pos) { | |
665a873d | 872 | logit("%s: Couldn't seek to tty %d slot in %s", |
996d5e62 | 873 | __func__, tty, UTMP_FILE); |
c9f39d2c | 874 | return (0); |
875 | } | |
3c0ef626 | 876 | /* |
877 | * Prevent luser from zero'ing out ut_host. | |
878 | * If the new ut_line is empty but the old one is not | |
879 | * and ut_line and ut_name match, preserve the old ut_line. | |
880 | */ | |
881 | if (atomicio(read, fd, &old_ut, sizeof(old_ut)) == sizeof(old_ut) && | |
996d5e62 | 882 | (ut->ut_host[0] == '\0') && (old_ut.ut_host[0] != '\0') && |
883 | (strncmp(old_ut.ut_line, ut->ut_line, sizeof(ut->ut_line)) == 0) && | |
884 | (strncmp(old_ut.ut_name, ut->ut_name, sizeof(ut->ut_name)) == 0)) | |
885 | memcpy(ut->ut_host, old_ut.ut_host, sizeof(ut->ut_host)); | |
3c0ef626 | 886 | |
c9f39d2c | 887 | if ((ret = lseek(fd, pos, SEEK_SET)) == -1) { |
996d5e62 | 888 | logit("%s: lseek: %s", __func__, strerror(errno)); |
c9f39d2c | 889 | return (0); |
890 | } | |
891 | if (ret != pos) { | |
996d5e62 | 892 | logit("%s: Couldn't seek to tty %d slot in %s", |
c9f39d2c | 893 | __func__, tty, UTMP_FILE); |
894 | return (0); | |
895 | } | |
996d5e62 | 896 | if (atomicio(vwrite, fd, ut, sizeof(*ut)) != sizeof(*ut)) { |
c9f39d2c | 897 | logit("%s: error writing %s: %s", __func__, |
3c0ef626 | 898 | UTMP_FILE, strerror(errno)); |
996d5e62 | 899 | } |
3c0ef626 | 900 | |
996d5e62 | 901 | close(fd); |
902 | return (1); | |
3c0ef626 | 903 | } else { |
996d5e62 | 904 | return (0); |
3c0ef626 | 905 | } |
906 | } | |
907 | # endif /* UTMP_USE_LIBRARY */ | |
908 | ||
909 | static int | |
910 | utmp_perform_login(struct logininfo *li) | |
911 | { | |
912 | struct utmp ut; | |
913 | ||
914 | construct_utmp(li, &ut); | |
915 | # ifdef UTMP_USE_LIBRARY | |
916 | if (!utmp_write_library(li, &ut)) { | |
996d5e62 | 917 | logit("%s: utmp_write_library() failed", __func__); |
918 | return (0); | |
3c0ef626 | 919 | } |
920 | # else | |
921 | if (!utmp_write_direct(li, &ut)) { | |
996d5e62 | 922 | logit("%s: utmp_write_direct() failed", __func__); |
923 | return (0); | |
3c0ef626 | 924 | } |
925 | # endif | |
996d5e62 | 926 | return (1); |
3c0ef626 | 927 | } |
928 | ||
929 | ||
930 | static int | |
931 | utmp_perform_logout(struct logininfo *li) | |
932 | { | |
933 | struct utmp ut; | |
934 | ||
935 | construct_utmp(li, &ut); | |
936 | # ifdef UTMP_USE_LIBRARY | |
937 | if (!utmp_write_library(li, &ut)) { | |
996d5e62 | 938 | logit("%s: utmp_write_library() failed", __func__); |
939 | return (0); | |
3c0ef626 | 940 | } |
941 | # else | |
942 | if (!utmp_write_direct(li, &ut)) { | |
996d5e62 | 943 | logit("%s: utmp_write_direct() failed", __func__); |
944 | return (0); | |
3c0ef626 | 945 | } |
946 | # endif | |
996d5e62 | 947 | return (1); |
3c0ef626 | 948 | } |
949 | ||
950 | ||
951 | int | |
952 | utmp_write_entry(struct logininfo *li) | |
953 | { | |
954 | switch(li->type) { | |
955 | case LTYPE_LOGIN: | |
996d5e62 | 956 | return (utmp_perform_login(li)); |
3c0ef626 | 957 | |
958 | case LTYPE_LOGOUT: | |
996d5e62 | 959 | return (utmp_perform_logout(li)); |
3c0ef626 | 960 | |
961 | default: | |
996d5e62 | 962 | logit("%s: invalid type field", __func__); |
963 | return (0); | |
3c0ef626 | 964 | } |
965 | } | |
966 | #endif /* USE_UTMP */ | |
967 | ||
968 | ||
969 | /** | |
970 | ** Low-level utmpx functions | |
971 | **/ | |
972 | ||
973 | /* not much point if we don't want utmpx entries */ | |
974 | #ifdef USE_UTMPX | |
975 | ||
976 | /* if we have the wherewithall, use pututxline etc. */ | |
977 | # if !defined(DISABLE_PUTUTXLINE) && defined(HAVE_SETUTXENT) && \ | |
978 | defined(HAVE_PUTUTXLINE) | |
979 | # define UTMPX_USE_LIBRARY | |
980 | # endif | |
981 | ||
982 | ||
983 | /* write a utmpx entry with the system's help (pututxline() and pals) */ | |
984 | # ifdef UTMPX_USE_LIBRARY | |
985 | static int | |
986 | utmpx_write_library(struct logininfo *li, struct utmpx *utx) | |
987 | { | |
988 | setutxent(); | |
989 | pututxline(utx); | |
990 | ||
991 | # ifdef HAVE_ENDUTXENT | |
992 | endutxent(); | |
993 | # endif | |
996d5e62 | 994 | return (1); |
3c0ef626 | 995 | } |
996 | ||
997 | # else /* UTMPX_USE_LIBRARY */ | |
998 | ||
999 | /* write a utmp entry direct to the file */ | |
1000 | static int | |
1001 | utmpx_write_direct(struct logininfo *li, struct utmpx *utx) | |
1002 | { | |
996d5e62 | 1003 | logit("%s: not implemented!", __func__); |
1004 | return (0); | |
3c0ef626 | 1005 | } |
1006 | # endif /* UTMPX_USE_LIBRARY */ | |
1007 | ||
1008 | static int | |
1009 | utmpx_perform_login(struct logininfo *li) | |
1010 | { | |
1011 | struct utmpx utx; | |
1012 | ||
1013 | construct_utmpx(li, &utx); | |
1014 | # ifdef UTMPX_USE_LIBRARY | |
1015 | if (!utmpx_write_library(li, &utx)) { | |
996d5e62 | 1016 | logit("%s: utmp_write_library() failed", __func__); |
1017 | return (0); | |
3c0ef626 | 1018 | } |
1019 | # else | |
1020 | if (!utmpx_write_direct(li, &ut)) { | |
996d5e62 | 1021 | logit("%s: utmp_write_direct() failed", __func__); |
1022 | return (0); | |
3c0ef626 | 1023 | } |
1024 | # endif | |
996d5e62 | 1025 | return (1); |
3c0ef626 | 1026 | } |
1027 | ||
1028 | ||
1029 | static int | |
1030 | utmpx_perform_logout(struct logininfo *li) | |
1031 | { | |
1032 | struct utmpx utx; | |
1033 | ||
e9a17296 | 1034 | construct_utmpx(li, &utx); |
3c0ef626 | 1035 | # ifdef HAVE_ID_IN_UTMPX |
1036 | line_abbrevname(utx.ut_id, li->line, sizeof(utx.ut_id)); | |
1037 | # endif | |
1038 | # ifdef HAVE_TYPE_IN_UTMPX | |
1039 | utx.ut_type = DEAD_PROCESS; | |
1040 | # endif | |
1041 | ||
1042 | # ifdef UTMPX_USE_LIBRARY | |
1043 | utmpx_write_library(li, &utx); | |
1044 | # else | |
1045 | utmpx_write_direct(li, &utx); | |
1046 | # endif | |
996d5e62 | 1047 | return (1); |
3c0ef626 | 1048 | } |
1049 | ||
1050 | int | |
1051 | utmpx_write_entry(struct logininfo *li) | |
1052 | { | |
1053 | switch(li->type) { | |
1054 | case LTYPE_LOGIN: | |
996d5e62 | 1055 | return (utmpx_perform_login(li)); |
3c0ef626 | 1056 | case LTYPE_LOGOUT: |
996d5e62 | 1057 | return (utmpx_perform_logout(li)); |
3c0ef626 | 1058 | default: |
996d5e62 | 1059 | logit("%s: invalid type field", __func__); |
1060 | return (0); | |
3c0ef626 | 1061 | } |
1062 | } | |
1063 | #endif /* USE_UTMPX */ | |
1064 | ||
1065 | ||
1066 | /** | |
1067 | ** Low-level wtmp functions | |
1068 | **/ | |
1069 | ||
1070 | #ifdef USE_WTMP | |
1071 | ||
665a873d | 1072 | /* |
996d5e62 | 1073 | * Write a wtmp entry direct to the end of the file |
1074 | * This is a slight modification of code in OpenBSD's logwtmp.c | |
1075 | */ | |
3c0ef626 | 1076 | static int |
1077 | wtmp_write(struct logininfo *li, struct utmp *ut) | |
1078 | { | |
1079 | struct stat buf; | |
1080 | int fd, ret = 1; | |
1081 | ||
1082 | if ((fd = open(WTMP_FILE, O_WRONLY|O_APPEND, 0)) < 0) { | |
996d5e62 | 1083 | logit("%s: problem writing %s: %s", __func__, |
3c0ef626 | 1084 | WTMP_FILE, strerror(errno)); |
996d5e62 | 1085 | return (0); |
3c0ef626 | 1086 | } |
1087 | if (fstat(fd, &buf) == 0) | |
0fff78ff | 1088 | if (atomicio(vwrite, fd, ut, sizeof(*ut)) != sizeof(*ut)) { |
3c0ef626 | 1089 | ftruncate(fd, buf.st_size); |
996d5e62 | 1090 | logit("%s: problem writing %s: %s", __func__, |
3c0ef626 | 1091 | WTMP_FILE, strerror(errno)); |
1092 | ret = 0; | |
1093 | } | |
996d5e62 | 1094 | close(fd); |
1095 | return (ret); | |
3c0ef626 | 1096 | } |
1097 | ||
1098 | static int | |
1099 | wtmp_perform_login(struct logininfo *li) | |
1100 | { | |
1101 | struct utmp ut; | |
1102 | ||
1103 | construct_utmp(li, &ut); | |
996d5e62 | 1104 | return (wtmp_write(li, &ut)); |
3c0ef626 | 1105 | } |
1106 | ||
1107 | ||
1108 | static int | |
1109 | wtmp_perform_logout(struct logininfo *li) | |
1110 | { | |
1111 | struct utmp ut; | |
1112 | ||
1113 | construct_utmp(li, &ut); | |
996d5e62 | 1114 | return (wtmp_write(li, &ut)); |
3c0ef626 | 1115 | } |
1116 | ||
1117 | ||
1118 | int | |
1119 | wtmp_write_entry(struct logininfo *li) | |
1120 | { | |
1121 | switch(li->type) { | |
1122 | case LTYPE_LOGIN: | |
996d5e62 | 1123 | return (wtmp_perform_login(li)); |
3c0ef626 | 1124 | case LTYPE_LOGOUT: |
996d5e62 | 1125 | return (wtmp_perform_logout(li)); |
3c0ef626 | 1126 | default: |
996d5e62 | 1127 | logit("%s: invalid type field", __func__); |
1128 | return (0); | |
3c0ef626 | 1129 | } |
1130 | } | |
1131 | ||
1132 | ||
665a873d | 1133 | /* |
996d5e62 | 1134 | * Notes on fetching login data from wtmp/wtmpx |
3c0ef626 | 1135 | * |
1136 | * Logouts are usually recorded with (amongst other things) a blank | |
1137 | * username on a given tty line. However, some systems (HP-UX is one) | |
1138 | * leave all fields set, but change the ut_type field to DEAD_PROCESS. | |
1139 | * | |
1140 | * Since we're only looking for logins here, we know that the username | |
1141 | * must be set correctly. On systems that leave it in, we check for | |
1142 | * ut_type==USER_PROCESS (indicating a login.) | |
1143 | * | |
1144 | * Portability: Some systems may set something other than USER_PROCESS | |
1145 | * to indicate a login process. I don't know of any as I write. Also, | |
1146 | * it's possible that some systems may both leave the username in | |
1147 | * place and not have ut_type. | |
1148 | */ | |
1149 | ||
1150 | /* return true if this wtmp entry indicates a login */ | |
1151 | static int | |
1152 | wtmp_islogin(struct logininfo *li, struct utmp *ut) | |
1153 | { | |
1154 | if (strncmp(li->username, ut->ut_name, | |
996d5e62 | 1155 | MIN_SIZEOF(li->username, ut->ut_name)) == 0) { |
3c0ef626 | 1156 | # ifdef HAVE_TYPE_IN_UTMP |
1157 | if (ut->ut_type & USER_PROCESS) | |
996d5e62 | 1158 | return (1); |
3c0ef626 | 1159 | # else |
996d5e62 | 1160 | return (1); |
3c0ef626 | 1161 | # endif |
1162 | } | |
996d5e62 | 1163 | return (0); |
3c0ef626 | 1164 | } |
1165 | ||
1166 | int | |
1167 | wtmp_get_entry(struct logininfo *li) | |
1168 | { | |
1169 | struct stat st; | |
1170 | struct utmp ut; | |
996d5e62 | 1171 | int fd, found = 0; |
3c0ef626 | 1172 | |
1173 | /* Clear the time entries in our logininfo */ | |
1174 | li->tv_sec = li->tv_usec = 0; | |
1175 | ||
1176 | if ((fd = open(WTMP_FILE, O_RDONLY)) < 0) { | |
665a873d | 1177 | logit("%s: problem opening %s: %s", __func__, |
3c0ef626 | 1178 | WTMP_FILE, strerror(errno)); |
996d5e62 | 1179 | return (0); |
3c0ef626 | 1180 | } |
1181 | if (fstat(fd, &st) != 0) { | |
665a873d | 1182 | logit("%s: couldn't stat %s: %s", __func__, |
3c0ef626 | 1183 | WTMP_FILE, strerror(errno)); |
1184 | close(fd); | |
996d5e62 | 1185 | return (0); |
3c0ef626 | 1186 | } |
1187 | ||
1188 | /* Seek to the start of the last struct utmp */ | |
1189 | if (lseek(fd, -(off_t)sizeof(struct utmp), SEEK_END) == -1) { | |
1190 | /* Looks like we've got a fresh wtmp file */ | |
1191 | close(fd); | |
996d5e62 | 1192 | return (0); |
3c0ef626 | 1193 | } |
1194 | ||
1195 | while (!found) { | |
1196 | if (atomicio(read, fd, &ut, sizeof(ut)) != sizeof(ut)) { | |
665a873d | 1197 | logit("%s: read of %s failed: %s", __func__, |
3c0ef626 | 1198 | WTMP_FILE, strerror(errno)); |
1199 | close (fd); | |
996d5e62 | 1200 | return (0); |
3c0ef626 | 1201 | } |
1202 | if ( wtmp_islogin(li, &ut) ) { | |
1203 | found = 1; | |
996d5e62 | 1204 | /* |
1205 | * We've already checked for a time in struct | |
1206 | * utmp, in login_getlast() | |
1207 | */ | |
3c0ef626 | 1208 | # ifdef HAVE_TIME_IN_UTMP |
1209 | li->tv_sec = ut.ut_time; | |
1210 | # else | |
1211 | # if HAVE_TV_IN_UTMP | |
1212 | li->tv_sec = ut.ut_tv.tv_sec; | |
1213 | # endif | |
1214 | # endif | |
1215 | line_fullname(li->line, ut.ut_line, | |
996d5e62 | 1216 | MIN_SIZEOF(li->line, ut.ut_line)); |
3c0ef626 | 1217 | # ifdef HAVE_HOST_IN_UTMP |
1218 | strlcpy(li->hostname, ut.ut_host, | |
996d5e62 | 1219 | MIN_SIZEOF(li->hostname, ut.ut_host)); |
3c0ef626 | 1220 | # endif |
1221 | continue; | |
1222 | } | |
1223 | /* Seek back 2 x struct utmp */ | |
1224 | if (lseek(fd, -(off_t)(2 * sizeof(struct utmp)), SEEK_CUR) == -1) { | |
1225 | /* We've found the start of the file, so quit */ | |
996d5e62 | 1226 | close(fd); |
1227 | return (0); | |
3c0ef626 | 1228 | } |
1229 | } | |
1230 | ||
1231 | /* We found an entry. Tidy up and return */ | |
1232 | close(fd); | |
996d5e62 | 1233 | return (1); |
3c0ef626 | 1234 | } |
1235 | # endif /* USE_WTMP */ | |
1236 | ||
1237 | ||
1238 | /** | |
1239 | ** Low-level wtmpx functions | |
1240 | **/ | |
1241 | ||
1242 | #ifdef USE_WTMPX | |
996d5e62 | 1243 | /* |
1244 | * Write a wtmpx entry direct to the end of the file | |
1245 | * This is a slight modification of code in OpenBSD's logwtmp.c | |
1246 | */ | |
3c0ef626 | 1247 | static int |
1248 | wtmpx_write(struct logininfo *li, struct utmpx *utx) | |
1249 | { | |
cdd66111 | 1250 | #ifndef HAVE_UPDWTMPX |
3c0ef626 | 1251 | struct stat buf; |
1252 | int fd, ret = 1; | |
1253 | ||
1254 | if ((fd = open(WTMPX_FILE, O_WRONLY|O_APPEND, 0)) < 0) { | |
665a873d | 1255 | logit("%s: problem opening %s: %s", __func__, |
3c0ef626 | 1256 | WTMPX_FILE, strerror(errno)); |
996d5e62 | 1257 | return (0); |
3c0ef626 | 1258 | } |
1259 | ||
1260 | if (fstat(fd, &buf) == 0) | |
0fff78ff | 1261 | if (atomicio(vwrite, fd, utx, sizeof(*utx)) != sizeof(*utx)) { |
3c0ef626 | 1262 | ftruncate(fd, buf.st_size); |
996d5e62 | 1263 | logit("%s: problem writing %s: %s", __func__, |
3c0ef626 | 1264 | WTMPX_FILE, strerror(errno)); |
1265 | ret = 0; | |
1266 | } | |
996d5e62 | 1267 | close(fd); |
3c0ef626 | 1268 | |
996d5e62 | 1269 | return (ret); |
cdd66111 | 1270 | #else |
1271 | updwtmpx(WTMPX_FILE, utx); | |
996d5e62 | 1272 | return (1); |
cdd66111 | 1273 | #endif |
3c0ef626 | 1274 | } |
1275 | ||
1276 | ||
1277 | static int | |
1278 | wtmpx_perform_login(struct logininfo *li) | |
1279 | { | |
1280 | struct utmpx utx; | |
1281 | ||
1282 | construct_utmpx(li, &utx); | |
996d5e62 | 1283 | return (wtmpx_write(li, &utx)); |
3c0ef626 | 1284 | } |
1285 | ||
1286 | ||
1287 | static int | |
1288 | wtmpx_perform_logout(struct logininfo *li) | |
1289 | { | |
1290 | struct utmpx utx; | |
1291 | ||
1292 | construct_utmpx(li, &utx); | |
996d5e62 | 1293 | return (wtmpx_write(li, &utx)); |
3c0ef626 | 1294 | } |
1295 | ||
1296 | ||
1297 | int | |
1298 | wtmpx_write_entry(struct logininfo *li) | |
1299 | { | |
1300 | switch(li->type) { | |
1301 | case LTYPE_LOGIN: | |
996d5e62 | 1302 | return (wtmpx_perform_login(li)); |
3c0ef626 | 1303 | case LTYPE_LOGOUT: |
996d5e62 | 1304 | return (wtmpx_perform_logout(li)); |
3c0ef626 | 1305 | default: |
996d5e62 | 1306 | logit("%s: invalid type field", __func__); |
1307 | return (0); | |
3c0ef626 | 1308 | } |
1309 | } | |
1310 | ||
1311 | /* Please see the notes above wtmp_islogin() for information about the | |
1312 | next two functions */ | |
1313 | ||
1314 | /* Return true if this wtmpx entry indicates a login */ | |
1315 | static int | |
1316 | wtmpx_islogin(struct logininfo *li, struct utmpx *utx) | |
1317 | { | |
996d5e62 | 1318 | if (strncmp(li->username, utx->ut_name, |
1319 | MIN_SIZEOF(li->username, utx->ut_name)) == 0 ) { | |
3c0ef626 | 1320 | # ifdef HAVE_TYPE_IN_UTMPX |
1321 | if (utx->ut_type == USER_PROCESS) | |
996d5e62 | 1322 | return (1); |
3c0ef626 | 1323 | # else |
996d5e62 | 1324 | return (1); |
3c0ef626 | 1325 | # endif |
1326 | } | |
996d5e62 | 1327 | return (0); |
3c0ef626 | 1328 | } |
1329 | ||
1330 | ||
1331 | int | |
1332 | wtmpx_get_entry(struct logininfo *li) | |
1333 | { | |
1334 | struct stat st; | |
1335 | struct utmpx utx; | |
1336 | int fd, found=0; | |
1337 | ||
1338 | /* Clear the time entries */ | |
1339 | li->tv_sec = li->tv_usec = 0; | |
1340 | ||
1341 | if ((fd = open(WTMPX_FILE, O_RDONLY)) < 0) { | |
665a873d | 1342 | logit("%s: problem opening %s: %s", __func__, |
3c0ef626 | 1343 | WTMPX_FILE, strerror(errno)); |
996d5e62 | 1344 | return (0); |
3c0ef626 | 1345 | } |
1346 | if (fstat(fd, &st) != 0) { | |
665a873d | 1347 | logit("%s: couldn't stat %s: %s", __func__, |
41b2f314 | 1348 | WTMPX_FILE, strerror(errno)); |
3c0ef626 | 1349 | close(fd); |
996d5e62 | 1350 | return (0); |
3c0ef626 | 1351 | } |
1352 | ||
1353 | /* Seek to the start of the last struct utmpx */ | |
1354 | if (lseek(fd, -(off_t)sizeof(struct utmpx), SEEK_END) == -1 ) { | |
1355 | /* probably a newly rotated wtmpx file */ | |
1356 | close(fd); | |
996d5e62 | 1357 | return (0); |
3c0ef626 | 1358 | } |
1359 | ||
1360 | while (!found) { | |
1361 | if (atomicio(read, fd, &utx, sizeof(utx)) != sizeof(utx)) { | |
665a873d | 1362 | logit("%s: read of %s failed: %s", __func__, |
3c0ef626 | 1363 | WTMPX_FILE, strerror(errno)); |
1364 | close (fd); | |
996d5e62 | 1365 | return (0); |
3c0ef626 | 1366 | } |
996d5e62 | 1367 | /* |
665a873d | 1368 | * Logouts are recorded as a blank username on a particular |
996d5e62 | 1369 | * line. So, we just need to find the username in struct utmpx |
1370 | */ | |
1371 | if (wtmpx_islogin(li, &utx)) { | |
41b2f314 | 1372 | found = 1; |
996d5e62 | 1373 | # if defined(HAVE_TV_IN_UTMPX) |
3c0ef626 | 1374 | li->tv_sec = utx.ut_tv.tv_sec; |
996d5e62 | 1375 | # elif defined(HAVE_TIME_IN_UTMPX) |
3c0ef626 | 1376 | li->tv_sec = utx.ut_time; |
3c0ef626 | 1377 | # endif |
1378 | line_fullname(li->line, utx.ut_line, sizeof(li->line)); | |
996d5e62 | 1379 | # if defined(HAVE_HOST_IN_UTMPX) |
3c0ef626 | 1380 | strlcpy(li->hostname, utx.ut_host, |
996d5e62 | 1381 | MIN_SIZEOF(li->hostname, utx.ut_host)); |
3c0ef626 | 1382 | # endif |
1383 | continue; | |
1384 | } | |
1385 | if (lseek(fd, -(off_t)(2 * sizeof(struct utmpx)), SEEK_CUR) == -1) { | |
996d5e62 | 1386 | close(fd); |
1387 | return (0); | |
3c0ef626 | 1388 | } |
1389 | } | |
1390 | ||
1391 | close(fd); | |
996d5e62 | 1392 | return (1); |
3c0ef626 | 1393 | } |
1394 | #endif /* USE_WTMPX */ | |
1395 | ||
1396 | /** | |
1397 | ** Low-level libutil login() functions | |
1398 | **/ | |
1399 | ||
1400 | #ifdef USE_LOGIN | |
1401 | static int | |
1402 | syslogin_perform_login(struct logininfo *li) | |
1403 | { | |
1404 | struct utmp *ut; | |
1405 | ||
996d5e62 | 1406 | ut = xmalloc(sizeof(*ut)); |
3c0ef626 | 1407 | construct_utmp(li, ut); |
1408 | login(ut); | |
6a9b3198 | 1409 | free(ut); |
3c0ef626 | 1410 | |
996d5e62 | 1411 | return (1); |
3c0ef626 | 1412 | } |
1413 | ||
1414 | static int | |
1415 | syslogin_perform_logout(struct logininfo *li) | |
1416 | { | |
1417 | # ifdef HAVE_LOGOUT | |
99be0775 | 1418 | char line[UT_LINESIZE]; |
3c0ef626 | 1419 | |
1420 | (void)line_stripname(line, li->line, sizeof(line)); | |
1421 | ||
996d5e62 | 1422 | if (!logout(line)) |
1423 | logit("%s: logout() returned an error", __func__); | |
3c0ef626 | 1424 | # ifdef HAVE_LOGWTMP |
996d5e62 | 1425 | else |
3c0ef626 | 1426 | logwtmp(line, "", ""); |
1427 | # endif | |
3c0ef626 | 1428 | /* FIXME: (ATL - if the need arises) What to do if we have |
1429 | * login, but no logout? what if logout but no logwtmp? All | |
1430 | * routines are in libutil so they should all be there, | |
1431 | * but... */ | |
1432 | # endif | |
996d5e62 | 1433 | return (1); |
3c0ef626 | 1434 | } |
1435 | ||
1436 | int | |
1437 | syslogin_write_entry(struct logininfo *li) | |
1438 | { | |
1439 | switch (li->type) { | |
1440 | case LTYPE_LOGIN: | |
996d5e62 | 1441 | return (syslogin_perform_login(li)); |
3c0ef626 | 1442 | case LTYPE_LOGOUT: |
996d5e62 | 1443 | return (syslogin_perform_logout(li)); |
3c0ef626 | 1444 | default: |
996d5e62 | 1445 | logit("%s: Invalid type field", __func__); |
1446 | return (0); | |
3c0ef626 | 1447 | } |
1448 | } | |
1449 | #endif /* USE_LOGIN */ | |
1450 | ||
1451 | /* end of file log-syslogin.c */ | |
1452 | ||
1453 | /** | |
1454 | ** Low-level lastlog functions | |
1455 | **/ | |
1456 | ||
1457 | #ifdef USE_LASTLOG | |
1458 | #define LL_FILE 1 | |
1459 | #define LL_DIR 2 | |
1460 | #define LL_OTHER 3 | |
1461 | ||
1462 | static void | |
1463 | lastlog_construct(struct logininfo *li, struct lastlog *last) | |
1464 | { | |
1465 | /* clear the structure */ | |
1466 | memset(last, '\0', sizeof(*last)); | |
1467 | ||
996d5e62 | 1468 | line_stripname(last->ll_line, li->line, sizeof(last->ll_line)); |
3c0ef626 | 1469 | strlcpy(last->ll_host, li->hostname, |
1470 | MIN_SIZEOF(last->ll_host, li->hostname)); | |
1471 | last->ll_time = li->tv_sec; | |
1472 | } | |
1473 | ||
1474 | static int | |
1475 | lastlog_filetype(char *filename) | |
1476 | { | |
1477 | struct stat st; | |
1478 | ||
1479 | if (stat(LASTLOG_FILE, &st) != 0) { | |
996d5e62 | 1480 | logit("%s: Couldn't stat %s: %s", __func__, |
1481 | LASTLOG_FILE, strerror(errno)); | |
1482 | return (0); | |
3c0ef626 | 1483 | } |
1484 | if (S_ISDIR(st.st_mode)) | |
996d5e62 | 1485 | return (LL_DIR); |
3c0ef626 | 1486 | else if (S_ISREG(st.st_mode)) |
996d5e62 | 1487 | return (LL_FILE); |
3c0ef626 | 1488 | else |
996d5e62 | 1489 | return (LL_OTHER); |
3c0ef626 | 1490 | } |
1491 | ||
1492 | ||
1493 | /* open the file (using filemode) and seek to the login entry */ | |
1494 | static int | |
1495 | lastlog_openseek(struct logininfo *li, int *fd, int filemode) | |
1496 | { | |
1497 | off_t offset; | |
1498 | int type; | |
1499 | char lastlog_file[1024]; | |
1500 | ||
1501 | type = lastlog_filetype(LASTLOG_FILE); | |
1502 | switch (type) { | |
996d5e62 | 1503 | case LL_FILE: |
1504 | strlcpy(lastlog_file, LASTLOG_FILE, | |
1505 | sizeof(lastlog_file)); | |
1506 | break; | |
1507 | case LL_DIR: | |
1508 | snprintf(lastlog_file, sizeof(lastlog_file), "%s/%s", | |
1509 | LASTLOG_FILE, li->username); | |
1510 | break; | |
1511 | default: | |
1512 | logit("%s: %.100s is not a file or directory!", __func__, | |
1513 | LASTLOG_FILE); | |
1514 | return (0); | |
3c0ef626 | 1515 | } |
1516 | ||
0fff78ff | 1517 | *fd = open(lastlog_file, filemode, 0600); |
996d5e62 | 1518 | if (*fd < 0) { |
1519 | debug("%s: Couldn't open %s: %s", __func__, | |
3c0ef626 | 1520 | lastlog_file, strerror(errno)); |
996d5e62 | 1521 | return (0); |
3c0ef626 | 1522 | } |
1523 | ||
1524 | if (type == LL_FILE) { | |
1525 | /* find this uid's offset in the lastlog file */ | |
1526 | offset = (off_t) ((long)li->uid * sizeof(struct lastlog)); | |
1527 | ||
996d5e62 | 1528 | if (lseek(*fd, offset, SEEK_SET) != offset) { |
1529 | logit("%s: %s->lseek(): %s", __func__, | |
1530 | lastlog_file, strerror(errno)); | |
1531 | return (0); | |
3c0ef626 | 1532 | } |
1533 | } | |
1534 | ||
996d5e62 | 1535 | return (1); |
3c0ef626 | 1536 | } |
1537 | ||
1538 | static int | |
1539 | lastlog_perform_login(struct logininfo *li) | |
1540 | { | |
1541 | struct lastlog last; | |
1542 | int fd; | |
1543 | ||
1544 | /* create our struct lastlog */ | |
1545 | lastlog_construct(li, &last); | |
1546 | ||
1547 | if (!lastlog_openseek(li, &fd, O_RDWR|O_CREAT)) | |
996d5e62 | 1548 | return (0); |
3c0ef626 | 1549 | |
1550 | /* write the entry */ | |
0fff78ff | 1551 | if (atomicio(vwrite, fd, &last, sizeof(last)) != sizeof(last)) { |
3c0ef626 | 1552 | close(fd); |
996d5e62 | 1553 | logit("%s: Error writing to %s: %s", __func__, |
3c0ef626 | 1554 | LASTLOG_FILE, strerror(errno)); |
996d5e62 | 1555 | return (0); |
3c0ef626 | 1556 | } |
1557 | ||
1558 | close(fd); | |
996d5e62 | 1559 | return (1); |
3c0ef626 | 1560 | } |
1561 | ||
1562 | int | |
1563 | lastlog_write_entry(struct logininfo *li) | |
1564 | { | |
1565 | switch(li->type) { | |
1566 | case LTYPE_LOGIN: | |
996d5e62 | 1567 | return (lastlog_perform_login(li)); |
3c0ef626 | 1568 | default: |
996d5e62 | 1569 | logit("%s: Invalid type field", __func__); |
1570 | return (0); | |
3c0ef626 | 1571 | } |
1572 | } | |
1573 | ||
1574 | static void | |
1575 | lastlog_populate_entry(struct logininfo *li, struct lastlog *last) | |
1576 | { | |
1577 | line_fullname(li->line, last->ll_line, sizeof(li->line)); | |
1578 | strlcpy(li->hostname, last->ll_host, | |
996d5e62 | 1579 | MIN_SIZEOF(li->hostname, last->ll_host)); |
3c0ef626 | 1580 | li->tv_sec = last->ll_time; |
1581 | } | |
1582 | ||
1583 | int | |
1584 | lastlog_get_entry(struct logininfo *li) | |
1585 | { | |
1586 | struct lastlog last; | |
6a9b3198 | 1587 | int fd, ret; |
3c0ef626 | 1588 | |
1589 | if (!lastlog_openseek(li, &fd, O_RDONLY)) | |
6a9b3198 | 1590 | return (0); |
3c0ef626 | 1591 | |
6a9b3198 | 1592 | ret = atomicio(read, fd, &last, sizeof(last)); |
3c0ef626 | 1593 | close(fd); |
1594 | ||
6a9b3198 | 1595 | switch (ret) { |
1596 | case 0: | |
1597 | memset(&last, '\0', sizeof(last)); | |
1598 | /* FALLTHRU */ | |
1599 | case sizeof(last): | |
1600 | lastlog_populate_entry(li, &last); | |
1601 | return (1); | |
1602 | case -1: | |
cdd66111 | 1603 | error("%s: Error reading from %s: %s", __func__, |
6a9b3198 | 1604 | LASTLOG_FILE, strerror(errno)); |
1605 | return (0); | |
1606 | default: | |
1607 | error("%s: Error reading from %s: Expecting %d, got %d", | |
2c06c99b | 1608 | __func__, LASTLOG_FILE, (int)sizeof(last), ret); |
6a9b3198 | 1609 | return (0); |
1610 | } | |
3c0ef626 | 1611 | |
6a9b3198 | 1612 | /* NOTREACHED */ |
1613 | return (0); | |
3c0ef626 | 1614 | } |
1615 | #endif /* USE_LASTLOG */ | |
996d5e62 | 1616 | |
1617 | #ifdef USE_BTMP | |
1618 | /* | |
1619 | * Logs failed login attempts in _PATH_BTMP if that exists. | |
1620 | * The most common login failure is to give password instead of username. | |
1621 | * So the _PATH_BTMP file checked for the correct permission, so that | |
1622 | * only root can read it. | |
1623 | */ | |
1624 | ||
1625 | void | |
1626 | record_failed_login(const char *username, const char *hostname, | |
1627 | const char *ttyn) | |
1628 | { | |
1629 | int fd; | |
1630 | struct utmp ut; | |
1631 | struct sockaddr_storage from; | |
2c06c99b | 1632 | socklen_t fromlen = sizeof(from); |
996d5e62 | 1633 | struct sockaddr_in *a4; |
1634 | struct sockaddr_in6 *a6; | |
1635 | time_t t; | |
1636 | struct stat fst; | |
1637 | ||
1638 | if (geteuid() != 0) | |
1639 | return; | |
1640 | if ((fd = open(_PATH_BTMP, O_WRONLY | O_APPEND)) < 0) { | |
1641 | debug("Unable to open the btmp file %s: %s", _PATH_BTMP, | |
1642 | strerror(errno)); | |
1643 | return; | |
1644 | } | |
1645 | if (fstat(fd, &fst) < 0) { | |
1646 | logit("%s: fstat of %s failed: %s", __func__, _PATH_BTMP, | |
1647 | strerror(errno)); | |
1648 | goto out; | |
1649 | } | |
1650 | if((fst.st_mode & (S_IRWXG | S_IRWXO)) || (fst.st_uid != 0)){ | |
1651 | logit("Excess permission or bad ownership on file %s", | |
1652 | _PATH_BTMP); | |
1653 | goto out; | |
1654 | } | |
1655 | ||
1656 | memset(&ut, 0, sizeof(ut)); | |
1657 | /* strncpy because we don't necessarily want nul termination */ | |
1658 | strncpy(ut.ut_user, username, sizeof(ut.ut_user)); | |
1659 | strlcpy(ut.ut_line, "ssh:notty", sizeof(ut.ut_line)); | |
1660 | ||
1661 | time(&t); | |
1662 | ut.ut_time = t; /* ut_time is not always a time_t */ | |
1663 | ut.ut_type = LOGIN_PROCESS; | |
1664 | ut.ut_pid = getpid(); | |
1665 | ||
1666 | /* strncpy because we don't necessarily want nul termination */ | |
1667 | strncpy(ut.ut_host, hostname, sizeof(ut.ut_host)); | |
1668 | ||
1669 | if (packet_connection_is_on_socket() && | |
1670 | getpeername(packet_get_connection_in(), | |
1671 | (struct sockaddr *)&from, &fromlen) == 0) { | |
1672 | ipv64_normalise_mapped(&from, &fromlen); | |
1673 | if (from.ss_family == AF_INET) { | |
1674 | a4 = (struct sockaddr_in *)&from; | |
1675 | memcpy(&ut.ut_addr, &(a4->sin_addr), | |
1676 | MIN_SIZEOF(ut.ut_addr, a4->sin_addr)); | |
1677 | } | |
1678 | #ifdef HAVE_ADDR_V6_IN_UTMP | |
1679 | if (from.ss_family == AF_INET6) { | |
1680 | a6 = (struct sockaddr_in6 *)&from; | |
1681 | memcpy(&ut.ut_addr_v6, &(a6->sin6_addr), | |
1682 | MIN_SIZEOF(ut.ut_addr_v6, a6->sin6_addr)); | |
1683 | } | |
1684 | #endif | |
1685 | } | |
1686 | ||
1687 | if (atomicio(vwrite, fd, &ut, sizeof(ut)) != sizeof(ut)) | |
1688 | error("Failed to write to %s: %s", _PATH_BTMP, | |
1689 | strerror(errno)); | |
1690 | ||
1691 | out: | |
1692 | close(fd); | |
1693 | } | |
1694 | #endif /* USE_BTMP */ |