]> andersk Git - openssh.git/blame - loginrec.c
andersk / openssh.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
- (djm) [audit-bsm.c audit.c auth-bsdauth.c auth-chall.c auth-pam.c]
[openssh.git] / loginrec.c
CommitLineData
1d7b9b20 1/*
2 * Copyright (c) 2000 Andre Lucas. All rights reserved.
564dd50a 3 * Portions copyright (c) 1998 Todd C. Miller
4 * Portions copyright (c) 1996 Jason Downs
5 * Portions copyright (c) 1996 Theo de Raadt
1d7b9b20 6 *
7 * Redistribution and use in source and binary forms, with or without
8 * modification, are permitted provided that the following conditions
9 * are met:
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
1d7b9b20 15 *
16 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
17 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
18 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
19 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
20 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
21 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
22 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
23 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
24 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
25 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
26 */
27
b6610e8f 28/*
29 * The btmp logging code is derived from login.c from util-linux and is under
30 * the the following license:
31 *
32 * Copyright (c) 1980, 1987, 1988 The Regents of the University of California.
33 * All rights reserved.
34 *
35 * Redistribution and use in source and binary forms are permitted
36 * provided that the above copyright notice and this paragraph are
37 * duplicated in all such forms and that any documentation,
38 * advertising materials, and other materials related to such
39 * distribution and use acknowledge that the software was developed
40 * by the University of California, Berkeley. The name of the
41 * University may not be used to endorse or promote products derived
42 * from this software without specific prior written permission.
43 * THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR
44 * IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED
45 * WARRANTIES OF MERCHANTIBILITY AND FITNESS FOR A PARTICULAR PURPOSE.
46 */
47
48
2b87da3b 49/**
1d7b9b20 50 ** loginrec.c: platform-independent login recording and lastlog retrieval
51 **/
52
564dd50a 53/*
fa64c868 54 * The new login code explained
55 * ============================
56 *
57 * This code attempts to provide a common interface to login recording
58 * (utmp and friends) and last login time retrieval.
59 *
60 * Its primary means of achieving this is to use 'struct logininfo', a
61 * union of all the useful fields in the various different types of
62 * system login record structures one finds on UNIX variants.
63 *
64 * We depend on autoconf to define which recording methods are to be
65 * used, and which fields are contained in the relevant data structures
66 * on the local system. Many C preprocessor symbols affect which code
67 * gets compiled here.
68 *
69 * The code is designed to make it easy to modify a particular
70 * recording method, without affecting other methods nor requiring so
71 * many nested conditional compilation blocks as were commonplace in
72 * the old code.
73 *
74 * For login recording, we try to use the local system's libraries as
75 * these are clearly most likely to work correctly. For utmp systems
76 * this usually means login() and logout() or setutent() etc., probably
77 * in libutil, along with logwtmp() etc. On these systems, we fall back
78 * to writing the files directly if we have to, though this method
79 * requires very thorough testing so we do not corrupt local auditing
80 * information. These files and their access methods are very system
81 * specific indeed.
82 *
83 * For utmpx systems, the corresponding library functions are
84 * setutxent() etc. To the author's knowledge, all utmpx systems have
85 * these library functions and so no direct write is attempted. If such
86 * a system exists and needs support, direct analogues of the [uw]tmp
87 * code should suffice.
88 *
89 * Retrieving the time of last login ('lastlog') is in some ways even
90 * more problemmatic than login recording. Some systems provide a
91 * simple table of all users which we seek based on uid and retrieve a
92 * relatively standard structure. Others record the same information in
93 * a directory with a separate file, and others don't record the
94 * information separately at all. For systems in the latter category,
95 * we look backwards in the wtmp or wtmpx file for the last login entry
96 * for our user. Naturally this is slower and on busy systems could
97 * incur a significant performance penalty.
98 *
99 * Calling the new code
100 * --------------------
101 *
102 * In OpenSSH all login recording and retrieval is performed in
103 * login.c. Here you'll find working examples. Also, in the logintest.c
104 * program there are more examples.
105 *
106 * Internal handler calling method
107 * -------------------------------
108 *
109 * When a call is made to login_login() or login_logout(), both
110 * routines set a struct logininfo flag defining which action (log in,
111 * or log out) is to be taken. They both then call login_write(), which
112 * calls whichever of the many structure-specific handlers autoconf
113 * selects for the local system.
114 *
115 * The handlers themselves handle system data structure specifics. Both
116 * struct utmp and struct utmpx have utility functions (see
117 * construct_utmp*()) to try to make it simpler to add extra systems
118 * that introduce new features to either structure.
119 *
120 * While it may seem terribly wasteful to replicate so much similar
121 * code for each method, experience has shown that maintaining code to
122 * write both struct utmp and utmpx in one function, whilst maintaining
123 * support for all systems whether they have library support or not, is
124 * a difficult and time-consuming task.
125 *
126 * Lastlog support proceeds similarly. Functions login_get_lastlog()
127 * (and its OpenSSH-tuned friend login_get_lastlog_time()) call
128 * getlast_entry(), which tries one of three methods to find the last
129 * login time. It uses local system lastlog support if it can,
130 * otherwise it tries wtmp or wtmpx before giving up and returning 0,
131 * meaning "tilt".
132 *
133 * Maintenance
134 * -----------
135 *
136 * In many cases it's possible to tweak autoconf to select the correct
137 * methods for a particular platform, either by improving the detection
138 * code (best), or by presetting DISABLE_<method> or CONF_<method>_FILE
139 * symbols for the platform.
140 *
141 * Use logintest to check which symbols are defined before modifying
142 * configure.ac and loginrec.c. (You have to build logintest yourself
143 * with 'make logintest' as it's not built by default.)
144 *
145 * Otherwise, patches to the specific method(s) are very helpful!
146 */
1d7b9b20 147
148#include "includes.h"
149
81e73e57 150#include <sys/types.h>
151#include <sys/stat.h>
9794d008 152#include <sys/socket.h>
153
154#include <netinet/in.h>
81e73e57 155
fec71b2f 156#include <errno.h>
22bbb3e6 157#include <fcntl.h>
b1842393 158#include <pwd.h>
24436b92 159#include <stdarg.h>
28cb0a43 160#include <string.h>
161#include <unistd.h>
b1842393 162
1d7b9b20 163#include "xmalloc.h"
31652869 164#include "key.h"
165#include "hostfile.h"
166#include "ssh.h"
1d7b9b20 167#include "loginrec.h"
42f11eb2 168#include "log.h"
169#include "atomicio.h"
b6610e8f 170#include "packet.h"
171#include "canohost.h"
c00e4d75 172#include "auth.h"
c53d8c93 173#include "buffer.h"
1d7b9b20 174
44d5f7f7 175#ifdef HAVE_UTIL_H
fa64c868 176# include <util.h>
44d5f7f7 177#endif
178
8f523d67 179#ifdef HAVE_LIBUTIL_H
fa64c868 180# include <libutil.h>
8f523d67 181#endif
182
1d7b9b20 183/**
184 ** prototypes for helper functions in this file
185 **/
186
187#if HAVE_UTMP_H
1d7b9b20 188void set_utmp_time(struct logininfo *li, struct utmp *ut);
189void construct_utmp(struct logininfo *li, struct utmp *ut);
190#endif
191
192#ifdef HAVE_UTMPX_H
1d7b9b20 193void set_utmpx_time(struct logininfo *li, struct utmpx *ut);
194void construct_utmpx(struct logininfo *li, struct utmpx *ut);
195#endif
196
197int utmp_write_entry(struct logininfo *li);
198int utmpx_write_entry(struct logininfo *li);
199int wtmp_write_entry(struct logininfo *li);
200int wtmpx_write_entry(struct logininfo *li);
201int lastlog_write_entry(struct logininfo *li);
202int syslogin_write_entry(struct logininfo *li);
203
204int getlast_entry(struct logininfo *li);
205int lastlog_get_entry(struct logininfo *li);
206int wtmp_get_entry(struct logininfo *li);
207int wtmpx_get_entry(struct logininfo *li);
208
5ccf88cb 209extern Buffer loginmsg;
210
5abcdf8e 211/* pick the shortest string */
fa64c868 212#define MIN_SIZEOF(s1,s2) (sizeof(s1) < sizeof(s2) ? sizeof(s1) : sizeof(s2))
5abcdf8e 213
1d7b9b20 214/**
215 ** platform-independent login functions
216 **/
217
fa64c868 218/*
219 * login_login(struct logininfo *) - Record a login
2b87da3b 220 *
5abcdf8e 221 * Call with a pointer to a struct logininfo initialised with
222 * login_init_entry() or login_alloc_entry()
223 *
224 * Returns:
225 * >0 if successful
226 * 0 on failure (will use OpenSSH's logging facilities for diagnostics)
227 */
564dd50a 228int
fa64c868 229login_login(struct logininfo *li)
564dd50a 230{
231 li->type = LTYPE_LOGIN;
fa64c868 232 return (login_write(li));
564dd50a 233}
1d7b9b20 234
235
fa64c868 236/*
237 * login_logout(struct logininfo *) - Record a logout
5abcdf8e 238 *
239 * Call as with login_login()
240 *
241 * Returns:
242 * >0 if successful
243 * 0 on failure (will use OpenSSH's logging facilities for diagnostics)
244 */
564dd50a 245int
246login_logout(struct logininfo *li)
247{
248 li->type = LTYPE_LOGOUT;
fa64c868 249 return (login_write(li));
1d7b9b20 250}
251
fa64c868 252/*
253 * login_get_lastlog_time(int) - Retrieve the last login time
5abcdf8e 254 *
255 * Retrieve the last login time for the given uid. Will try to use the
256 * system lastlog facilities if they are available, but will fall back
257 * to looking in wtmp/wtmpx if necessary
258 *
259 * Returns:
260 * 0 on failure, or if user has never logged in
261 * Time in seconds from the epoch if successful
262 *
263 * Useful preprocessor symbols:
264 * DISABLE_LASTLOG: If set, *never* even try to retrieve lastlog
265 * info
266 * USE_LASTLOG: If set, indicates the presence of system lastlog
267 * facilities. If this and DISABLE_LASTLOG are not set,
268 * try to retrieve lastlog information from wtmp/wtmpx.
269 */
564dd50a 270unsigned int
271login_get_lastlog_time(const int uid)
272{
273 struct logininfo li;
1d7b9b20 274
5abcdf8e 275 if (login_get_lastlog(&li, uid))
fa64c868 276 return (li.tv_sec);
5abcdf8e 277 else
fa64c868 278 return (0);
564dd50a 279}
1d7b9b20 280
fa64c868 281/*
282 * login_get_lastlog(struct logininfo *, int) - Retrieve a lastlog entry
5abcdf8e 283 *
284 * Retrieve a logininfo structure populated (only partially) with
285 * information from the system lastlog data, or from wtmp/wtmpx if no
286 * system lastlog information exists.
287 *
288 * Note this routine must be given a pre-allocated logininfo.
289 *
290 * Returns:
291 * >0: A pointer to your struct logininfo if successful
292 * 0 on failure (will use OpenSSH's logging facilities for diagnostics)
5abcdf8e 293 */
564dd50a 294struct logininfo *
295login_get_lastlog(struct logininfo *li, const int uid)
296{
5abcdf8e 297 struct passwd *pw;
5abcdf8e 298
dbaa2e87 299 memset(li, '\0', sizeof(*li));
1d7b9b20 300 li->uid = uid;
5abcdf8e 301
2b87da3b 302 /*
9f32ceb4 303 * If we don't have a 'real' lastlog, we need the username to
5abcdf8e 304 * reliably search wtmp(x) for the last login (see
2b87da3b 305 * wtmp_get_entry().)
9f32ceb4 306 */
5abcdf8e 307 pw = getpwuid(uid);
a05a70ab 308 if (pw == NULL)
a233586b 309 fatal("%s: Cannot find account for uid %i", __func__, uid);
2b87da3b 310
1bfbb762 311 /* No MIN_SIZEOF here - we absolutely *must not* truncate the
fa64c868 312 * username (XXX - so check for trunc!) */
d8caae24 313 strlcpy(li->username, pw->pw_name, sizeof(li->username));
a05a70ab 314
564dd50a 315 if (getlast_entry(li))
fa64c868 316 return (li);
564dd50a 317 else
fa64c868 318 return (NULL);
1d7b9b20 319}
320
1d7b9b20 321
fa64c868 322/*
323 * login_alloc_entry(int, char*, char*, char*) - Allocate and initialise
2b87da3b 324 * a logininfo structure
325 *
5abcdf8e 326 * This function creates a new struct logininfo, a data structure
327 * meant to carry the information required to portably record login info.
328 *
329 * Returns a pointer to a newly created struct logininfo. If memory
330 * allocation fails, the program halts.
331 */
564dd50a 332struct
333logininfo *login_alloc_entry(int pid, const char *username,
fa64c868 334 const char *hostname, const char *line)
564dd50a 335{
336 struct logininfo *newli;
1d7b9b20 337
fa64c868 338 newli = xmalloc(sizeof(*newli));
339 login_init_entry(newli, pid, username, hostname, line);
340 return (newli);
1d7b9b20 341}
342
343
5abcdf8e 344/* login_free_entry(struct logininfo *) - free struct memory */
1d7b9b20 345void
564dd50a 346login_free_entry(struct logininfo *li)
347{
348 xfree(li);
1d7b9b20 349}
350
351
5abcdf8e 352/* login_init_entry(struct logininfo *, int, char*, char*, char*)
353 * - initialise a struct logininfo
2b87da3b 354 *
5abcdf8e 355 * Populates a new struct logininfo, a data structure meant to carry
356 * the information required to portably record login info.
357 *
358 * Returns: 1
359 */
564dd50a 360int
2b87da3b 361login_init_entry(struct logininfo *li, int pid, const char *username,
fa64c868 362 const char *hostname, const char *line)
564dd50a 363{
d8caae24 364 struct passwd *pw;
2b87da3b 365
dbaa2e87 366 memset(li, 0, sizeof(*li));
2b87da3b 367
564dd50a 368 li->pid = pid;
d8caae24 369
564dd50a 370 /* set the line information */
371 if (line)
372 line_fullname(li->line, line, sizeof(li->line));
1d7b9b20 373
d8caae24 374 if (username) {
564dd50a 375 strlcpy(li->username, username, sizeof(li->username));
d8caae24 376 pw = getpwnam(li->username);
fa64c868 377 if (pw == NULL) {
d1cf9a87 378 fatal("%s: Cannot find user \"%s\"", __func__,
fa64c868 379 li->username);
380 }
d8caae24 381 li->uid = pw->pw_uid;
382 }
a05a70ab 383
564dd50a 384 if (hostname)
385 strlcpy(li->hostname, hostname, sizeof(li->hostname));
d8caae24 386
fa64c868 387 return (1);
1d7b9b20 388}
389
d1cf9a87 390/*
fa64c868 391 * login_set_current_time(struct logininfo *) - set the current time
5abcdf8e 392 *
393 * Set the current time in a logininfo structure. This function is
394 * meant to eliminate the need to deal with system dependencies for
395 * time handling.
396 */
1d7b9b20 397void
564dd50a 398login_set_current_time(struct logininfo *li)
399{
1d7b9b20 400 struct timeval tv;
401
402 gettimeofday(&tv, NULL);
2b87da3b 403
d8caae24 404 li->tv_sec = tv.tv_sec;
405 li->tv_usec = tv.tv_usec;
1d7b9b20 406}
407
564dd50a 408/* copy a sockaddr_* into our logininfo */
1d7b9b20 409void
564dd50a 410login_set_addr(struct logininfo *li, const struct sockaddr *sa,
fa64c868 411 const unsigned int sa_size)
564dd50a 412{
413 unsigned int bufsize = sa_size;
414
415 /* make sure we don't overrun our union */
416 if (sizeof(li->hostaddr) < sa_size)
417 bufsize = sizeof(li->hostaddr);
418
fa64c868 419 memcpy(&li->hostaddr.sa, sa, bufsize);
1d7b9b20 420}
1d7b9b20 421
564dd50a 422
423/**
424 ** login_write: Call low-level recording functions based on autoconf
425 ** results
426 **/
1d7b9b20 427int
fa64c868 428login_write(struct logininfo *li)
564dd50a 429{
3c62e7eb 430#ifndef HAVE_CYGWIN
fa64c868 431 if (geteuid() != 0) {
432 logit("Attempt to write login records by non-root user (aborting)");
433 return (1);
1d7b9b20 434 }
3c62e7eb 435#endif
a05a70ab 436
1d7b9b20 437 /* set the timestamp */
438 login_set_current_time(li);
439#ifdef USE_LOGIN
440 syslogin_write_entry(li);
441#endif
442#ifdef USE_LASTLOG
fa64c868 443 if (li->type == LTYPE_LOGIN)
1d7b9b20 444 lastlog_write_entry(li);
1d7b9b20 445#endif
446#ifdef USE_UTMP
447 utmp_write_entry(li);
448#endif
449#ifdef USE_WTMP
450 wtmp_write_entry(li);
451#endif
452#ifdef USE_UTMPX
453 utmpx_write_entry(li);
454#endif
455#ifdef USE_WTMPX
456 wtmpx_write_entry(li);
f5ed3301 457#endif
458#ifdef CUSTOM_SYS_AUTH_RECORD_LOGIN
d1cf9a87 459 if (li->type == LTYPE_LOGIN &&
98c044d0 460 !sys_auth_record_login(li->username,li->hostname,li->line,
461 &loginmsg))
f5ed3301 462 logit("Writing login record failed for %s", li->username);
c00e4d75 463#endif
6039eeef 464#ifdef SSH_AUDIT_EVENTS
c00e4d75 465 if (li->type == LTYPE_LOGIN)
466 audit_session_open(li->line);
467 else if (li->type == LTYPE_LOGOUT)
468 audit_session_close(li->line);
1d7b9b20 469#endif
fa64c868 470 return (0);
1d7b9b20 471}
472
7e2d5fa4 473#ifdef LOGIN_NEEDS_UTMPX
474int
475login_utmp_only(struct logininfo *li)
476{
aff51935 477 li->type = LTYPE_LOGIN;
9e127e27 478 login_set_current_time(li);
7e2d5fa4 479# ifdef USE_UTMP
480 utmp_write_entry(li);
481# endif
482# ifdef USE_WTMP
483 wtmp_write_entry(li);
484# endif
485# ifdef USE_UTMPX
486 utmpx_write_entry(li);
487# endif
488# ifdef USE_WTMPX
489 wtmpx_write_entry(li);
490# endif
fa64c868 491 return (0);
7e2d5fa4 492}
493#endif
494
564dd50a 495/**
496 ** getlast_entry: Call low-level functions to retrieve the last login
497 ** time.
498 **/
1d7b9b20 499
564dd50a 500/* take the uid in li and return the last login time */
1d7b9b20 501int
564dd50a 502getlast_entry(struct logininfo *li)
503{
504#ifdef USE_LASTLOG
9f32ceb4 505 return(lastlog_get_entry(li));
a05a70ab 506#else /* !USE_LASTLOG */
1d7b9b20 507
fa64c868 508#if defined(DISABLE_LASTLOG)
2b87da3b 509 /* On some systems we shouldn't even try to obtain last login
3f45f1c3 510 * time, e.g. AIX */
fa64c868 511 return (0);
512# elif defined(USE_WTMP) && \
513 (defined(HAVE_TIME_IN_UTMP) || defined(HAVE_TV_IN_UTMP))
564dd50a 514 /* retrieve last login time from utmp */
a05a70ab 515 return (wtmp_get_entry(li));
fa64c868 516# elif defined(USE_WTMPX) && \
517 (defined(HAVE_TIME_IN_UTMPX) || defined(HAVE_TV_IN_UTMPX))
564dd50a 518 /* If wtmp isn't available, try wtmpx */
a05a70ab 519 return (wtmpx_get_entry(li));
fa64c868 520# else
564dd50a 521 /* Give up: No means of retrieving last login time */
fa64c868 522 return (0);
2b87da3b 523# endif /* DISABLE_LASTLOG */
a05a70ab 524#endif /* USE_LASTLOG */
564dd50a 525}
1d7b9b20 526
527
1d7b9b20 528
529/*
564dd50a 530 * 'line' string utility functions
531 *
532 * These functions process the 'line' string into one of three forms:
533 *
1d7b9b20 534 * 1. The full filename (including '/dev')
535 * 2. The stripped name (excluding '/dev')
564dd50a 536 * 3. The abbreviated name (e.g. /dev/ttyp00 -> yp00
537 * /dev/pts/1 -> ts/1 )
1d7b9b20 538 *
539 * Form 3 is used on some systems to identify a .tmp.? entry when
540 * attempting to remove it. Typically both addition and removal is
564dd50a 541 * performed by one application - say, sshd - so as long as the choice
542 * uniquely identifies a terminal it's ok.
1d7b9b20 543 */
544
545
fa64c868 546/*
547 * line_fullname(): add the leading '/dev/' if it doesn't exist make
548 * sure dst has enough space, if not just copy src (ugh)
549 */
1d7b9b20 550char *
44d71ad5 551line_fullname(char *dst, const char *src, u_int dstsize)
564dd50a 552{
1d7b9b20 553 memset(dst, '\0', dstsize);
fa64c868 554 if ((strncmp(src, "/dev/", 5) == 0) || (dstsize < (strlen(src) + 5)))
1d7b9b20 555 strlcpy(dst, src, dstsize);
fa64c868 556 else {
a4d05724 557 strlcpy(dst, "/dev/", dstsize);
1d7b9b20 558 strlcat(dst, src, dstsize);
559 }
fa64c868 560 return (dst);
1d7b9b20 561}
562
564dd50a 563/* line_stripname(): strip the leading '/dev' if it exists, return dst */
1d7b9b20 564char *
564dd50a 565line_stripname(char *dst, const char *src, int dstsize)
566{
1d7b9b20 567 memset(dst, '\0', dstsize);
568 if (strncmp(src, "/dev/", 5) == 0)
89d7510a 569 strlcpy(dst, src + 5, dstsize);
1d7b9b20 570 else
571 strlcpy(dst, src, dstsize);
fa64c868 572 return (dst);
564dd50a 573}
574
d1cf9a87 575/*
fa64c868 576 * line_abbrevname(): Return the abbreviated (usually four-character)
564dd50a 577 * form of the line (Just use the last <dstsize> characters of the
578 * full name.)
579 *
580 * NOTE: use strncpy because we do NOT necessarily want zero
fa64c868 581 * termination
582 */
1d7b9b20 583char *
2b87da3b 584line_abbrevname(char *dst, const char *src, int dstsize)
a05a70ab 585{
586 size_t len;
2b87da3b 587
1d7b9b20 588 memset(dst, '\0', dstsize);
2b87da3b 589
daaff4d5 590 /* Always skip prefix if present */
591 if (strncmp(src, "/dev/", 5) == 0)
592 src += 5;
2b87da3b 593
0e8f4eba 594#ifdef WITH_ABBREV_NO_TTY
595 if (strncmp(src, "tty", 3) == 0)
596 src += 3;
597#endif
598
a05a70ab 599 len = strlen(src);
600
daaff4d5 601 if (len > 0) {
602 if (((int)len - dstsize) > 0)
603 src += ((int)len - dstsize);
604
605 /* note: _don't_ change this to strlcpy */
2b87da3b 606 strncpy(dst, src, (size_t)dstsize);
a05a70ab 607 }
2b87da3b 608
fa64c868 609 return (dst);
1d7b9b20 610}
611
1d7b9b20 612/**
613 ** utmp utility functions
564dd50a 614 **
615 ** These functions manipulate struct utmp, taking system differences
616 ** into account.
1d7b9b20 617 **/
618
619#if defined(USE_UTMP) || defined (USE_WTMP) || defined (USE_LOGIN)
620
1d7b9b20 621/* build the utmp structure */
622void
564dd50a 623set_utmp_time(struct logininfo *li, struct utmp *ut)
624{
fa64c868 625# if defined(HAVE_TV_IN_UTMP)
1d7b9b20 626 ut->ut_tv.tv_sec = li->tv_sec;
627 ut->ut_tv.tv_usec = li->tv_usec;
fa64c868 628# elif defined(HAVE_TIME_IN_UTMP)
1d7b9b20 629 ut->ut_time = li->tv_sec;
a05a70ab 630# endif
1d7b9b20 631}
632
633void
634construct_utmp(struct logininfo *li,
564dd50a 635 struct utmp *ut)
636{
9746ee4b 637# ifdef HAVE_ADDR_V6_IN_UTMP
638 struct sockaddr_in6 *sa6;
fa64c868 639# endif
640
dbaa2e87 641 memset(ut, '\0', sizeof(*ut));
5abcdf8e 642
643 /* First fill out fields used for both logins and logouts */
644
a05a70ab 645# ifdef HAVE_ID_IN_UTMP
1d7b9b20 646 line_abbrevname(ut->ut_id, li->line, sizeof(ut->ut_id));
a05a70ab 647# endif
1d7b9b20 648
a05a70ab 649# ifdef HAVE_TYPE_IN_UTMP
5abcdf8e 650 /* This is done here to keep utmp constants out of struct logininfo */
1d7b9b20 651 switch (li->type) {
652 case LTYPE_LOGIN:
653 ut->ut_type = USER_PROCESS;
ef51930f 654#ifdef _UNICOS
1a23ac2c 655 cray_set_tmpdir(ut);
656#endif
1d7b9b20 657 break;
658 case LTYPE_LOGOUT:
659 ut->ut_type = DEAD_PROCESS;
ef51930f 660#ifdef _UNICOS
1a23ac2c 661 cray_retain_utmp(ut, li->pid);
662#endif
1d7b9b20 663 break;
664 }
a05a70ab 665# endif
5abcdf8e 666 set_utmp_time(li, ut);
1d7b9b20 667
5abcdf8e 668 line_stripname(ut->ut_line, li->line, sizeof(ut->ut_line));
a05a70ab 669
670# ifdef HAVE_PID_IN_UTMP
1d7b9b20 671 ut->ut_pid = li->pid;
a05a70ab 672# endif
5abcdf8e 673
674 /* If we're logging out, leave all other fields blank */
675 if (li->type == LTYPE_LOGOUT)
fa64c868 676 return;
5abcdf8e 677
a05a70ab 678 /*
679 * These fields are only used when logging in, and are blank
2b87da3b 680 * for logouts.
a05a70ab 681 */
5abcdf8e 682
683 /* Use strncpy because we don't necessarily want null termination */
fa64c868 684 strncpy(ut->ut_name, li->username,
685 MIN_SIZEOF(ut->ut_name, li->username));
a05a70ab 686# ifdef HAVE_HOST_IN_UTMP
fa64c868 687 strncpy(ut->ut_host, li->hostname,
688 MIN_SIZEOF(ut->ut_host, li->hostname));
a05a70ab 689# endif
690# ifdef HAVE_ADDR_IN_UTMP
564dd50a 691 /* this is just a 32-bit IP address */
692 if (li->hostaddr.sa.sa_family == AF_INET)
693 ut->ut_addr = li->hostaddr.sa_in.sin_addr.s_addr;
2b87da3b 694# endif
9746ee4b 695# ifdef HAVE_ADDR_V6_IN_UTMP
696 /* this is just a 128-bit IPv6 address */
697 if (li->hostaddr.sa.sa_family == AF_INET6) {
698 sa6 = ((struct sockaddr_in6 *)&li->hostaddr.sa);
699 memcpy(ut->ut_addr_v6, sa6->sin6_addr.s6_addr, 16);
700 if (IN6_IS_ADDR_V4MAPPED(&sa6->sin6_addr)) {
701 ut->ut_addr_v6[0] = ut->ut_addr_v6[3];
702 ut->ut_addr_v6[1] = 0;
703 ut->ut_addr_v6[2] = 0;
704 ut->ut_addr_v6[3] = 0;
705 }
706 }
707# endif
564dd50a 708}
a05a70ab 709#endif /* USE_UTMP || USE_WTMP || USE_LOGIN */
564dd50a 710
1d7b9b20 711/**
712 ** utmpx utility functions
564dd50a 713 **
714 ** These functions manipulate struct utmpx, accounting for system
715 ** variations.
1d7b9b20 716 **/
717
718#if defined(USE_UTMPX) || defined (USE_WTMPX)
1d7b9b20 719/* build the utmpx structure */
720void
564dd50a 721set_utmpx_time(struct logininfo *li, struct utmpx *utx)
722{
fa64c868 723# if defined(HAVE_TV_IN_UTMPX)
1d7b9b20 724 utx->ut_tv.tv_sec = li->tv_sec;
725 utx->ut_tv.tv_usec = li->tv_usec;
fa64c868 726# elif defined(HAVE_TIME_IN_UTMPX)
1d7b9b20 727 utx->ut_time = li->tv_sec;
fa64c868 728# endif
1d7b9b20 729}
730
731void
564dd50a 732construct_utmpx(struct logininfo *li, struct utmpx *utx)
733{
9746ee4b 734# ifdef HAVE_ADDR_V6_IN_UTMP
735 struct sockaddr_in6 *sa6;
736# endif
dbaa2e87 737 memset(utx, '\0', sizeof(*utx));
fa64c868 738
daaff4d5 739# ifdef HAVE_ID_IN_UTMPX
1d7b9b20 740 line_abbrevname(utx->ut_id, li->line, sizeof(utx->ut_id));
daaff4d5 741# endif
1d7b9b20 742
743 /* this is done here to keep utmp constants out of loginrec.h */
744 switch (li->type) {
745 case LTYPE_LOGIN:
746 utx->ut_type = USER_PROCESS;
747 break;
748 case LTYPE_LOGOUT:
749 utx->ut_type = DEAD_PROCESS;
750 break;
751 }
1d7b9b20 752 line_stripname(utx->ut_line, li->line, sizeof(utx->ut_line));
1d7b9b20 753 set_utmpx_time(li, utx);
5abcdf8e 754 utx->ut_pid = li->pid;
fa64c868 755
f3837bc6 756 /* strncpy(): Don't necessarily want null termination */
fa64c868 757 strncpy(utx->ut_name, li->username,
758 MIN_SIZEOF(utx->ut_name, li->username));
5abcdf8e 759
760 if (li->type == LTYPE_LOGOUT)
761 return;
762
a05a70ab 763 /*
764 * These fields are only used when logging in, and are blank
2b87da3b 765 * for logouts.
a05a70ab 766 */
5abcdf8e 767
a05a70ab 768# ifdef HAVE_HOST_IN_UTMPX
fa64c868 769 strncpy(utx->ut_host, li->hostname,
770 MIN_SIZEOF(utx->ut_host, li->hostname));
a05a70ab 771# endif
772# ifdef HAVE_ADDR_IN_UTMPX
764d4113 773 /* this is just a 32-bit IP address */
774 if (li->hostaddr.sa.sa_family == AF_INET)
775 utx->ut_addr = li->hostaddr.sa_in.sin_addr.s_addr;
a05a70ab 776# endif
9746ee4b 777# ifdef HAVE_ADDR_V6_IN_UTMP
778 /* this is just a 128-bit IPv6 address */
779 if (li->hostaddr.sa.sa_family == AF_INET6) {
780 sa6 = ((struct sockaddr_in6 *)&li->hostaddr.sa);
781 memcpy(ut->ut_addr_v6, sa6->sin6_addr.s6_addr, 16);
782 if (IN6_IS_ADDR_V4MAPPED(&sa6->sin6_addr)) {
783 ut->ut_addr_v6[0] = ut->ut_addr_v6[3];
784 ut->ut_addr_v6[1] = 0;
785 ut->ut_addr_v6[2] = 0;
786 ut->ut_addr_v6[3] = 0;
787 }
788 }
789# endif
a05a70ab 790# ifdef HAVE_SYSLEN_IN_UTMPX
5abcdf8e 791 /* ut_syslen is the length of the utx_host string */
792 utx->ut_syslen = MIN(strlen(li->hostname), sizeof(utx->ut_host));
a05a70ab 793# endif
564dd50a 794}
a05a70ab 795#endif /* USE_UTMPX || USE_WTMPX */
1d7b9b20 796
797/**
564dd50a 798 ** Low-level utmp functions
1d7b9b20 799 **/
800
801/* FIXME: (ATL) utmp_write_direct needs testing */
1d7b9b20 802#ifdef USE_UTMP
803
1d7b9b20 804/* if we can, use pututline() etc. */
a05a70ab 805# if !defined(DISABLE_PUTUTLINE) && defined(HAVE_SETUTENT) && \
806 defined(HAVE_PUTUTLINE)
1d7b9b20 807# define UTMP_USE_LIBRARY
a05a70ab 808# endif
1d7b9b20 809
810
811/* write a utmp entry with the system's help (pututline() and pals) */
a05a70ab 812# ifdef UTMP_USE_LIBRARY
1d7b9b20 813static int
564dd50a 814utmp_write_library(struct logininfo *li, struct utmp *ut)
815{
1d7b9b20 816 setutent();
817 pututline(ut);
a05a70ab 818# ifdef HAVE_ENDUTENT
1d7b9b20 819 endutent();
a05a70ab 820# endif
fa64c868 821 return (1);
564dd50a 822}
a05a70ab 823# else /* UTMP_USE_LIBRARY */
1d7b9b20 824
d1cf9a87 825/*
fa64c868 826 * Write a utmp entry direct to the file
827 * This is a slightly modification of code in OpenBSD's login.c
828 */
1d7b9b20 829static int
564dd50a 830utmp_write_direct(struct logininfo *li, struct utmp *ut)
831{
1d7b9b20 832 struct utmp old_ut;
833 register int fd;
834 int tty;
835
5abcdf8e 836 /* FIXME: (ATL) ttyslot() needs local implementation */
dbaa2e87 837
698d107e 838#if defined(HAVE_GETTTYENT)
fa64c868 839 struct ttyent *ty;
dbaa2e87 840
841 tty=0;
dbaa2e87 842 setttyent();
fa64c868 843 while (NULL != (ty = getttyent())) {
dbaa2e87 844 tty++;
845 if (!strncmp(ty->ty_name, ut->ut_line, sizeof(ut->ut_line)))
846 break;
847 }
848 endttyent();
849
fa64c868 850 if (NULL == ty) {
5f12e050 851 logit("%s: tty not found", __func__);
852 return (0);
dbaa2e87 853 }
854#else /* FIXME */
855
1d7b9b20 856 tty = ttyslot(); /* seems only to work for /dev/ttyp? style names */
857
698d107e 858#endif /* HAVE_GETTTYENT */
dbaa2e87 859
1d7b9b20 860 if (tty > 0 && (fd = open(UTMP_FILE, O_RDWR|O_CREAT, 0644)) >= 0) {
5f12e050 861 off_t pos, ret;
862
863 pos = (off_t)tty * sizeof(struct utmp);
864 if ((ret = lseek(fd, pos, SEEK_SET)) == -1) {
f6d20d59 865 logit("%s: lseek: %s", __func__, strerror(errno));
5f12e050 866 return (0);
867 }
868 if (ret != pos) {
d1cf9a87 869 logit("%s: Couldn't seek to tty %d slot in %s",
f6d20d59 870 __func__, tty, UTMP_FILE);
5f12e050 871 return (0);
872 }
1d7b9b20 873 /*
874 * Prevent luser from zero'ing out ut_host.
875 * If the new ut_line is empty but the old one is not
dc2a6d09 876 * and ut_line and ut_name match, preserve the old ut_line.
1d7b9b20 877 */
2b87da3b 878 if (atomicio(read, fd, &old_ut, sizeof(old_ut)) == sizeof(old_ut) &&
fa64c868 879 (ut->ut_host[0] == '\0') && (old_ut.ut_host[0] != '\0') &&
880 (strncmp(old_ut.ut_line, ut->ut_line, sizeof(ut->ut_line)) == 0) &&
881 (strncmp(old_ut.ut_name, ut->ut_name, sizeof(ut->ut_name)) == 0))
882 memcpy(ut->ut_host, old_ut.ut_host, sizeof(ut->ut_host));
2b87da3b 883
5f12e050 884 if ((ret = lseek(fd, pos, SEEK_SET)) == -1) {
f6d20d59 885 logit("%s: lseek: %s", __func__, strerror(errno));
5f12e050 886 return (0);
887 }
888 if (ret != pos) {
f6d20d59 889 logit("%s: Couldn't seek to tty %d slot in %s",
5f12e050 890 __func__, tty, UTMP_FILE);
891 return (0);
892 }
fa64c868 893 if (atomicio(vwrite, fd, ut, sizeof(*ut)) != sizeof(*ut)) {
5f12e050 894 logit("%s: error writing %s: %s", __func__,
5abcdf8e 895 UTMP_FILE, strerror(errno));
fa64c868 896 }
2b87da3b 897
fa64c868 898 close(fd);
899 return (1);
9f32ceb4 900 } else {
fa64c868 901 return (0);
9f32ceb4 902 }
564dd50a 903}
a05a70ab 904# endif /* UTMP_USE_LIBRARY */
1d7b9b20 905
906static int
564dd50a 907utmp_perform_login(struct logininfo *li)
908{
1d7b9b20 909 struct utmp ut;
910
911 construct_utmp(li, &ut);
a05a70ab 912# ifdef UTMP_USE_LIBRARY
1d7b9b20 913 if (!utmp_write_library(li, &ut)) {
a233586b 914 logit("%s: utmp_write_library() failed", __func__);
fa64c868 915 return (0);
1d7b9b20 916 }
a05a70ab 917# else
1d7b9b20 918 if (!utmp_write_direct(li, &ut)) {
a233586b 919 logit("%s: utmp_write_direct() failed", __func__);
fa64c868 920 return (0);
1d7b9b20 921 }
a05a70ab 922# endif
fa64c868 923 return (1);
564dd50a 924}
1d7b9b20 925
926
927static int
564dd50a 928utmp_perform_logout(struct logininfo *li)
929{
1d7b9b20 930 struct utmp ut;
931
5abcdf8e 932 construct_utmp(li, &ut);
a05a70ab 933# ifdef UTMP_USE_LIBRARY
5abcdf8e 934 if (!utmp_write_library(li, &ut)) {
a233586b 935 logit("%s: utmp_write_library() failed", __func__);
fa64c868 936 return (0);
5abcdf8e 937 }
a05a70ab 938# else
5abcdf8e 939 if (!utmp_write_direct(li, &ut)) {
a233586b 940 logit("%s: utmp_write_direct() failed", __func__);
fa64c868 941 return (0);
5abcdf8e 942 }
a05a70ab 943# endif
fa64c868 944 return (1);
564dd50a 945}
1d7b9b20 946
947
948int
564dd50a 949utmp_write_entry(struct logininfo *li)
950{
1d7b9b20 951 switch(li->type) {
952 case LTYPE_LOGIN:
fa64c868 953 return (utmp_perform_login(li));
1d7b9b20 954
955 case LTYPE_LOGOUT:
fa64c868 956 return (utmp_perform_logout(li));
1d7b9b20 957
958 default:
a233586b 959 logit("%s: invalid type field", __func__);
fa64c868 960 return (0);
1d7b9b20 961 }
564dd50a 962}
a05a70ab 963#endif /* USE_UTMP */
1d7b9b20 964
965
966/**
564dd50a 967 ** Low-level utmpx functions
1d7b9b20 968 **/
969
970/* not much point if we don't want utmpx entries */
971#ifdef USE_UTMPX
972
1d7b9b20 973/* if we have the wherewithall, use pututxline etc. */
a05a70ab 974# if !defined(DISABLE_PUTUTXLINE) && defined(HAVE_SETUTXENT) && \
975 defined(HAVE_PUTUTXLINE)
1d7b9b20 976# define UTMPX_USE_LIBRARY
a05a70ab 977# endif
1d7b9b20 978
979
980/* write a utmpx entry with the system's help (pututxline() and pals) */
a05a70ab 981# ifdef UTMPX_USE_LIBRARY
1d7b9b20 982static int
564dd50a 983utmpx_write_library(struct logininfo *li, struct utmpx *utx)
984{
1d7b9b20 985 setutxent();
986 pututxline(utx);
987
a05a70ab 988# ifdef HAVE_ENDUTXENT
1d7b9b20 989 endutxent();
a05a70ab 990# endif
fa64c868 991 return (1);
564dd50a 992}
1d7b9b20 993
a05a70ab 994# else /* UTMPX_USE_LIBRARY */
1d7b9b20 995
996/* write a utmp entry direct to the file */
997static int
564dd50a 998utmpx_write_direct(struct logininfo *li, struct utmpx *utx)
2b87da3b 999{
a233586b 1000 logit("%s: not implemented!", __func__);
fa64c868 1001 return (0);
564dd50a 1002}
a05a70ab 1003# endif /* UTMPX_USE_LIBRARY */
1d7b9b20 1004
1005static int
564dd50a 1006utmpx_perform_login(struct logininfo *li)
1007{
1d7b9b20 1008 struct utmpx utx;
1009
1010 construct_utmpx(li, &utx);
a05a70ab 1011# ifdef UTMPX_USE_LIBRARY
1d7b9b20 1012 if (!utmpx_write_library(li, &utx)) {
a233586b 1013 logit("%s: utmp_write_library() failed", __func__);
fa64c868 1014 return (0);
1d7b9b20 1015 }
a05a70ab 1016# else
1d7b9b20 1017 if (!utmpx_write_direct(li, &ut)) {
a233586b 1018 logit("%s: utmp_write_direct() failed", __func__);
fa64c868 1019 return (0);
1d7b9b20 1020 }
a05a70ab 1021# endif
fa64c868 1022 return (1);
564dd50a 1023}
1d7b9b20 1024
1025
1026static int
564dd50a 1027utmpx_perform_logout(struct logininfo *li)
1028{
1d7b9b20 1029 struct utmpx utx;
1030
f3837bc6 1031 construct_utmpx(li, &utx);
a05a70ab 1032# ifdef HAVE_ID_IN_UTMPX
1d7b9b20 1033 line_abbrevname(utx.ut_id, li->line, sizeof(utx.ut_id));
a05a70ab 1034# endif
1035# ifdef HAVE_TYPE_IN_UTMPX
1d7b9b20 1036 utx.ut_type = DEAD_PROCESS;
a05a70ab 1037# endif
1d7b9b20 1038
a05a70ab 1039# ifdef UTMPX_USE_LIBRARY
1d7b9b20 1040 utmpx_write_library(li, &utx);
a05a70ab 1041# else
1d7b9b20 1042 utmpx_write_direct(li, &utx);
a05a70ab 1043# endif
fa64c868 1044 return (1);
564dd50a 1045}
1d7b9b20 1046
1d7b9b20 1047int
564dd50a 1048utmpx_write_entry(struct logininfo *li)
1049{
1d7b9b20 1050 switch(li->type) {
1051 case LTYPE_LOGIN:
fa64c868 1052 return (utmpx_perform_login(li));
1d7b9b20 1053 case LTYPE_LOGOUT:
fa64c868 1054 return (utmpx_perform_logout(li));
1d7b9b20 1055 default:
a233586b 1056 logit("%s: invalid type field", __func__);
fa64c868 1057 return (0);
1d7b9b20 1058 }
564dd50a 1059}
a05a70ab 1060#endif /* USE_UTMPX */
1d7b9b20 1061
1062
1063/**
564dd50a 1064 ** Low-level wtmp functions
1d7b9b20 1065 **/
1066
2b87da3b 1067#ifdef USE_WTMP
1d7b9b20 1068
d1cf9a87 1069/*
fa64c868 1070 * Write a wtmp entry direct to the end of the file
1071 * This is a slight modification of code in OpenBSD's logwtmp.c
1072 */
1d7b9b20 1073static int
564dd50a 1074wtmp_write(struct logininfo *li, struct utmp *ut)
1075{
1d7b9b20 1076 struct stat buf;
1077 int fd, ret = 1;
1078
1079 if ((fd = open(WTMP_FILE, O_WRONLY|O_APPEND, 0)) < 0) {
a233586b 1080 logit("%s: problem writing %s: %s", __func__,
1d7b9b20 1081 WTMP_FILE, strerror(errno));
fa64c868 1082 return (0);
1d7b9b20 1083 }
2b87da3b 1084 if (fstat(fd, &buf) == 0)
d72f7b79 1085 if (atomicio(vwrite, fd, ut, sizeof(*ut)) != sizeof(*ut)) {
1d7b9b20 1086 ftruncate(fd, buf.st_size);
a233586b 1087 logit("%s: problem writing %s: %s", __func__,
1d7b9b20 1088 WTMP_FILE, strerror(errno));
1089 ret = 0;
1090 }
fa64c868 1091 close(fd);
1092 return (ret);
564dd50a 1093}
1d7b9b20 1094
1d7b9b20 1095static int
a05a70ab 1096wtmp_perform_login(struct logininfo *li)
1097{
1d7b9b20 1098 struct utmp ut;
1099
1100 construct_utmp(li, &ut);
fa64c868 1101 return (wtmp_write(li, &ut));
564dd50a 1102}
1d7b9b20 1103
1104
1105static int
564dd50a 1106wtmp_perform_logout(struct logininfo *li)
1107{
1d7b9b20 1108 struct utmp ut;
1109
1110 construct_utmp(li, &ut);
fa64c868 1111 return (wtmp_write(li, &ut));
564dd50a 1112}
1d7b9b20 1113
1114
1115int
564dd50a 1116wtmp_write_entry(struct logininfo *li)
1117{
1d7b9b20 1118 switch(li->type) {
1119 case LTYPE_LOGIN:
fa64c868 1120 return (wtmp_perform_login(li));
1d7b9b20 1121 case LTYPE_LOGOUT:
fa64c868 1122 return (wtmp_perform_logout(li));
1d7b9b20 1123 default:
a233586b 1124 logit("%s: invalid type field", __func__);
fa64c868 1125 return (0);
1d7b9b20 1126 }
564dd50a 1127}
1d7b9b20 1128
1129
d1cf9a87 1130/*
fa64c868 1131 * Notes on fetching login data from wtmp/wtmpx
2b87da3b 1132 *
5abcdf8e 1133 * Logouts are usually recorded with (amongst other things) a blank
1134 * username on a given tty line. However, some systems (HP-UX is one)
1135 * leave all fields set, but change the ut_type field to DEAD_PROCESS.
1136 *
1137 * Since we're only looking for logins here, we know that the username
1138 * must be set correctly. On systems that leave it in, we check for
1139 * ut_type==USER_PROCESS (indicating a login.)
1140 *
1141 * Portability: Some systems may set something other than USER_PROCESS
1142 * to indicate a login process. I don't know of any as I write. Also,
1143 * it's possible that some systems may both leave the username in
1144 * place and not have ut_type.
1145 */
1146
5abcdf8e 1147/* return true if this wtmp entry indicates a login */
1148static int
1149wtmp_islogin(struct logininfo *li, struct utmp *ut)
1150{
2b87da3b 1151 if (strncmp(li->username, ut->ut_name,
fa64c868 1152 MIN_SIZEOF(li->username, ut->ut_name)) == 0) {
a05a70ab 1153# ifdef HAVE_TYPE_IN_UTMP
5abcdf8e 1154 if (ut->ut_type & USER_PROCESS)
fa64c868 1155 return (1);
a05a70ab 1156# else
fa64c868 1157 return (1);
a05a70ab 1158# endif
5abcdf8e 1159 }
fa64c868 1160 return (0);
5abcdf8e 1161}
1162
1d7b9b20 1163int
564dd50a 1164wtmp_get_entry(struct logininfo *li)
1165{
1d7b9b20 1166 struct stat st;
1167 struct utmp ut;
fa64c868 1168 int fd, found = 0;
5abcdf8e 1169
1170 /* Clear the time entries in our logininfo */
1171 li->tv_sec = li->tv_usec = 0;
1d7b9b20 1172
1173 if ((fd = open(WTMP_FILE, O_RDONLY)) < 0) {
d1cf9a87 1174 logit("%s: problem opening %s: %s", __func__,
1d7b9b20 1175 WTMP_FILE, strerror(errno));
fa64c868 1176 return (0);
1d7b9b20 1177 }
2b87da3b 1178 if (fstat(fd, &st) != 0) {
d1cf9a87 1179 logit("%s: couldn't stat %s: %s", __func__,
1d7b9b20 1180 WTMP_FILE, strerror(errno));
1181 close(fd);
fa64c868 1182 return (0);
1d7b9b20 1183 }
1d7b9b20 1184
5abcdf8e 1185 /* Seek to the start of the last struct utmp */
d9d47a26 1186 if (lseek(fd, -(off_t)sizeof(struct utmp), SEEK_END) == -1) {
5abcdf8e 1187 /* Looks like we've got a fresh wtmp file */
1188 close(fd);
fa64c868 1189 return (0);
5abcdf8e 1190 }
1191
1192 while (!found) {
9f32ceb4 1193 if (atomicio(read, fd, &ut, sizeof(ut)) != sizeof(ut)) {
d1cf9a87 1194 logit("%s: read of %s failed: %s", __func__,
1d7b9b20 1195 WTMP_FILE, strerror(errno));
1196 close (fd);
fa64c868 1197 return (0);
1d7b9b20 1198 }
5abcdf8e 1199 if ( wtmp_islogin(li, &ut) ) {
1200 found = 1;
fa64c868 1201 /*
1202 * We've already checked for a time in struct
1203 * utmp, in login_getlast()
1204 */
a05a70ab 1205# ifdef HAVE_TIME_IN_UTMP
1d7b9b20 1206 li->tv_sec = ut.ut_time;
a05a70ab 1207# else
1d7b9b20 1208# if HAVE_TV_IN_UTMP
1209 li->tv_sec = ut.ut_tv.tv_sec;
1210# endif
a05a70ab 1211# endif
5abcdf8e 1212 line_fullname(li->line, ut.ut_line,
fa64c868 1213 MIN_SIZEOF(li->line, ut.ut_line));
a05a70ab 1214# ifdef HAVE_HOST_IN_UTMP
5abcdf8e 1215 strlcpy(li->hostname, ut.ut_host,
fa64c868 1216 MIN_SIZEOF(li->hostname, ut.ut_host));
a05a70ab 1217# endif
5abcdf8e 1218 continue;
1d7b9b20 1219 }
5abcdf8e 1220 /* Seek back 2 x struct utmp */
d9d47a26 1221 if (lseek(fd, -(off_t)(2 * sizeof(struct utmp)), SEEK_CUR) == -1) {
5abcdf8e 1222 /* We've found the start of the file, so quit */
fa64c868 1223 close(fd);
1224 return (0);
1d7b9b20 1225 }
5abcdf8e 1226 }
1227
1228 /* We found an entry. Tidy up and return */
1229 close(fd);
fa64c868 1230 return (1);
564dd50a 1231}
a05a70ab 1232# endif /* USE_WTMP */
1d7b9b20 1233
1234
1235/**
564dd50a 1236 ** Low-level wtmpx functions
1d7b9b20 1237 **/
1238
1239#ifdef USE_WTMPX
fa64c868 1240/*
1241 * Write a wtmpx entry direct to the end of the file
1242 * This is a slight modification of code in OpenBSD's logwtmp.c
1243 */
1d7b9b20 1244static int
564dd50a 1245wtmpx_write(struct logininfo *li, struct utmpx *utx)
1246{
41c64c91 1247#ifndef HAVE_UPDWTMPX
1d7b9b20 1248 struct stat buf;
1249 int fd, ret = 1;
1250
1251 if ((fd = open(WTMPX_FILE, O_WRONLY|O_APPEND, 0)) < 0) {
d1cf9a87 1252 logit("%s: problem opening %s: %s", __func__,
1d7b9b20 1253 WTMPX_FILE, strerror(errno));
fa64c868 1254 return (0);
1d7b9b20 1255 }
1256
2b87da3b 1257 if (fstat(fd, &buf) == 0)
d72f7b79 1258 if (atomicio(vwrite, fd, utx, sizeof(*utx)) != sizeof(*utx)) {
1d7b9b20 1259 ftruncate(fd, buf.st_size);
a233586b 1260 logit("%s: problem writing %s: %s", __func__,
1d7b9b20 1261 WTMPX_FILE, strerror(errno));
1262 ret = 0;
1263 }
fa64c868 1264 close(fd);
1d7b9b20 1265
fa64c868 1266 return (ret);
41c64c91 1267#else
1268 updwtmpx(WTMPX_FILE, utx);
fa64c868 1269 return (1);
41c64c91 1270#endif
564dd50a 1271}
1d7b9b20 1272
1273
1274static int
564dd50a 1275wtmpx_perform_login(struct logininfo *li)
1276{
1d7b9b20 1277 struct utmpx utx;
1278
1279 construct_utmpx(li, &utx);
fa64c868 1280 return (wtmpx_write(li, &utx));
564dd50a 1281}
1d7b9b20 1282
1283
1284static int
564dd50a 1285wtmpx_perform_logout(struct logininfo *li)
1286{
1d7b9b20 1287 struct utmpx utx;
1288
1289 construct_utmpx(li, &utx);
fa64c868 1290 return (wtmpx_write(li, &utx));
564dd50a 1291}
1d7b9b20 1292
1293
1294int
564dd50a 1295wtmpx_write_entry(struct logininfo *li)
1296{
1d7b9b20 1297 switch(li->type) {
1298 case LTYPE_LOGIN:
fa64c868 1299 return (wtmpx_perform_login(li));
1d7b9b20 1300 case LTYPE_LOGOUT:
fa64c868 1301 return (wtmpx_perform_logout(li));
1d7b9b20 1302 default:
a233586b 1303 logit("%s: invalid type field", __func__);
fa64c868 1304 return (0);
1d7b9b20 1305 }
564dd50a 1306}
1d7b9b20 1307
5abcdf8e 1308/* Please see the notes above wtmp_islogin() for information about the
1309 next two functions */
1310
1311/* Return true if this wtmpx entry indicates a login */
1312static int
1313wtmpx_islogin(struct logininfo *li, struct utmpx *utx)
1314{
fa64c868 1315 if (strncmp(li->username, utx->ut_name,
1316 MIN_SIZEOF(li->username, utx->ut_name)) == 0 ) {
a05a70ab 1317# ifdef HAVE_TYPE_IN_UTMPX
5abcdf8e 1318 if (utx->ut_type == USER_PROCESS)
fa64c868 1319 return (1);
a05a70ab 1320# else
fa64c868 1321 return (1);
a05a70ab 1322# endif
5abcdf8e 1323 }
fa64c868 1324 return (0);
5abcdf8e 1325}
1326
1d7b9b20 1327
1328int
564dd50a 1329wtmpx_get_entry(struct logininfo *li)
1330{
1d7b9b20 1331 struct stat st;
1332 struct utmpx utx;
5abcdf8e 1333 int fd, found=0;
1334
1335 /* Clear the time entries */
1336 li->tv_sec = li->tv_usec = 0;
1d7b9b20 1337
1338 if ((fd = open(WTMPX_FILE, O_RDONLY)) < 0) {
d1cf9a87 1339 logit("%s: problem opening %s: %s", __func__,
1d7b9b20 1340 WTMPX_FILE, strerror(errno));
fa64c868 1341 return (0);
1d7b9b20 1342 }
2b87da3b 1343 if (fstat(fd, &st) != 0) {
d1cf9a87 1344 logit("%s: couldn't stat %s: %s", __func__,
fdebdd4f 1345 WTMPX_FILE, strerror(errno));
1d7b9b20 1346 close(fd);
fa64c868 1347 return (0);
1d7b9b20 1348 }
2b87da3b 1349
5abcdf8e 1350 /* Seek to the start of the last struct utmpx */
d9d47a26 1351 if (lseek(fd, -(off_t)sizeof(struct utmpx), SEEK_END) == -1 ) {
5abcdf8e 1352 /* probably a newly rotated wtmpx file */
1353 close(fd);
fa64c868 1354 return (0);
5abcdf8e 1355 }
1d7b9b20 1356
5abcdf8e 1357 while (!found) {
9f32ceb4 1358 if (atomicio(read, fd, &utx, sizeof(utx)) != sizeof(utx)) {
d1cf9a87 1359 logit("%s: read of %s failed: %s", __func__,
1d7b9b20 1360 WTMPX_FILE, strerror(errno));
1361 close (fd);
fa64c868 1362 return (0);
1d7b9b20 1363 }
fa64c868 1364 /*
d1cf9a87 1365 * Logouts are recorded as a blank username on a particular
fa64c868 1366 * line. So, we just need to find the username in struct utmpx
1367 */
1368 if (wtmpx_islogin(li, &utx)) {
d80063fe 1369 found = 1;
fa64c868 1370# if defined(HAVE_TV_IN_UTMPX)
1d7b9b20 1371 li->tv_sec = utx.ut_tv.tv_sec;
fa64c868 1372# elif defined(HAVE_TIME_IN_UTMPX)
1d7b9b20 1373 li->tv_sec = utx.ut_time;
a05a70ab 1374# endif
a4d05724 1375 line_fullname(li->line, utx.ut_line, sizeof(li->line));
fa64c868 1376# if defined(HAVE_HOST_IN_UTMPX)
5abcdf8e 1377 strlcpy(li->hostname, utx.ut_host,
fa64c868 1378 MIN_SIZEOF(li->hostname, utx.ut_host));
a05a70ab 1379# endif
5abcdf8e 1380 continue;
1d7b9b20 1381 }
d9d47a26 1382 if (lseek(fd, -(off_t)(2 * sizeof(struct utmpx)), SEEK_CUR) == -1) {
fa64c868 1383 close(fd);
1384 return (0);
1d7b9b20 1385 }
5abcdf8e 1386 }
1387
1388 close(fd);
fa64c868 1389 return (1);
564dd50a 1390}
f988dce5 1391#endif /* USE_WTMPX */
1d7b9b20 1392
1d7b9b20 1393/**
564dd50a 1394 ** Low-level libutil login() functions
1d7b9b20 1395 **/
1396
1397#ifdef USE_LOGIN
1d7b9b20 1398static int
564dd50a 1399syslogin_perform_login(struct logininfo *li)
1400{
1d7b9b20 1401 struct utmp *ut;
1402
7a52470e 1403 ut = xmalloc(sizeof(*ut));
1d7b9b20 1404 construct_utmp(li, ut);
1405 login(ut);
6cef88bc 1406 free(ut);
1d7b9b20 1407
fa64c868 1408 return (1);
564dd50a 1409}
1d7b9b20 1410
564dd50a 1411static int
1412syslogin_perform_logout(struct logininfo *li)
1413{
a05a70ab 1414# ifdef HAVE_LOGOUT
f20d4564 1415 char line[UT_LINESIZE];
2b87da3b 1416
1d7b9b20 1417 (void)line_stripname(line, li->line, sizeof(line));
1418
fa64c868 1419 if (!logout(line))
a233586b 1420 logit("%s: logout() returned an error", __func__);
a05a70ab 1421# ifdef HAVE_LOGWTMP
fa64c868 1422 else
1d7b9b20 1423 logwtmp(line, "", "");
a05a70ab 1424# endif
5abcdf8e 1425 /* FIXME: (ATL - if the need arises) What to do if we have
1426 * login, but no logout? what if logout but no logwtmp? All
1427 * routines are in libutil so they should all be there,
1428 * but... */
a05a70ab 1429# endif
fa64c868 1430 return (1);
564dd50a 1431}
1d7b9b20 1432
1d7b9b20 1433int
564dd50a 1434syslogin_write_entry(struct logininfo *li)
1435{
1d7b9b20 1436 switch (li->type) {
1437 case LTYPE_LOGIN:
fa64c868 1438 return (syslogin_perform_login(li));
1d7b9b20 1439 case LTYPE_LOGOUT:
fa64c868 1440 return (syslogin_perform_logout(li));
1d7b9b20 1441 default:
a233586b 1442 logit("%s: Invalid type field", __func__);
fa64c868 1443 return (0);
1d7b9b20 1444 }
564dd50a 1445}
f988dce5 1446#endif /* USE_LOGIN */
1d7b9b20 1447
1448/* end of file log-syslogin.c */
1449
1d7b9b20 1450/**
564dd50a 1451 ** Low-level lastlog functions
1d7b9b20 1452 **/
1453
1454#ifdef USE_LASTLOG
a05a70ab 1455#define LL_FILE 1
1456#define LL_DIR 2
1457#define LL_OTHER 3
1d7b9b20 1458
1d7b9b20 1459static void
564dd50a 1460lastlog_construct(struct logininfo *li, struct lastlog *last)
1461{
1d7b9b20 1462 /* clear the structure */
dbaa2e87 1463 memset(last, '\0', sizeof(*last));
2b87da3b 1464
fa64c868 1465 line_stripname(last->ll_line, li->line, sizeof(last->ll_line));
5abcdf8e 1466 strlcpy(last->ll_host, li->hostname,
1467 MIN_SIZEOF(last->ll_host, li->hostname));
1d7b9b20 1468 last->ll_time = li->tv_sec;
564dd50a 1469}
1d7b9b20 1470
1d7b9b20 1471static int
564dd50a 1472lastlog_filetype(char *filename)
1473{
1d7b9b20 1474 struct stat st;
1475
a05a70ab 1476 if (stat(LASTLOG_FILE, &st) != 0) {
a233586b 1477 logit("%s: Couldn't stat %s: %s", __func__,
fa64c868 1478 LASTLOG_FILE, strerror(errno));
1479 return (0);
1d7b9b20 1480 }
1d7b9b20 1481 if (S_ISDIR(st.st_mode))
fa64c868 1482 return (LL_DIR);
1d7b9b20 1483 else if (S_ISREG(st.st_mode))
fa64c868 1484 return (LL_FILE);
1d7b9b20 1485 else
fa64c868 1486 return (LL_OTHER);
564dd50a 1487}
1d7b9b20 1488
1489
1490/* open the file (using filemode) and seek to the login entry */
1491static int
564dd50a 1492lastlog_openseek(struct logininfo *li, int *fd, int filemode)
1493{
1d7b9b20 1494 off_t offset;
1495 int type;
1496 char lastlog_file[1024];
1497
1498 type = lastlog_filetype(LASTLOG_FILE);
1499 switch (type) {
fa64c868 1500 case LL_FILE:
1501 strlcpy(lastlog_file, LASTLOG_FILE,
1502 sizeof(lastlog_file));
1503 break;
1504 case LL_DIR:
1505 snprintf(lastlog_file, sizeof(lastlog_file), "%s/%s",
1506 LASTLOG_FILE, li->username);
1507 break;
1508 default:
a233586b 1509 logit("%s: %.100s is not a file or directory!", __func__,
fa64c868 1510 LASTLOG_FILE);
1511 return (0);
a05a70ab 1512 }
1d7b9b20 1513
ee476051 1514 *fd = open(lastlog_file, filemode, 0600);
fa64c868 1515 if (*fd < 0) {
a233586b 1516 debug("%s: Couldn't open %s: %s", __func__,
1d7b9b20 1517 lastlog_file, strerror(errno));
fa64c868 1518 return (0);
1d7b9b20 1519 }
2b87da3b 1520
d93a7e5a 1521 if (type == LL_FILE) {
1522 /* find this uid's offset in the lastlog file */
d9d47a26 1523 offset = (off_t) ((long)li->uid * sizeof(struct lastlog));
1d7b9b20 1524
fa64c868 1525 if (lseek(*fd, offset, SEEK_SET) != offset) {
a233586b 1526 logit("%s: %s->lseek(): %s", __func__,
1527 lastlog_file, strerror(errno));
fa64c868 1528 return (0);
d93a7e5a 1529 }
1d7b9b20 1530 }
2b87da3b 1531
fa64c868 1532 return (1);
564dd50a 1533}
1d7b9b20 1534
1535static int
564dd50a 1536lastlog_perform_login(struct logininfo *li)
1537{
1d7b9b20 1538 struct lastlog last;
1539 int fd;
1540
1541 /* create our struct lastlog */
1542 lastlog_construct(li, &last);
1543
ee476051 1544 if (!lastlog_openseek(li, &fd, O_RDWR|O_CREAT))
fa64c868 1545 return (0);
2b87da3b 1546
1d7b9b20 1547 /* write the entry */
d72f7b79 1548 if (atomicio(vwrite, fd, &last, sizeof(last)) != sizeof(last)) {
1a022229 1549 close(fd);
a233586b 1550 logit("%s: Error writing to %s: %s", __func__,
1a022229 1551 LASTLOG_FILE, strerror(errno));
fa64c868 1552 return (0);
a05a70ab 1553 }
1a022229 1554
1555 close(fd);
fa64c868 1556 return (1);
564dd50a 1557}
1d7b9b20 1558
1d7b9b20 1559int
564dd50a 1560lastlog_write_entry(struct logininfo *li)
1561{
1d7b9b20 1562 switch(li->type) {
1563 case LTYPE_LOGIN:
fa64c868 1564 return (lastlog_perform_login(li));
1d7b9b20 1565 default:
a233586b 1566 logit("%s: Invalid type field", __func__);
fa64c868 1567 return (0);
1d7b9b20 1568 }
564dd50a 1569}
1d7b9b20 1570
1d7b9b20 1571static void
564dd50a 1572lastlog_populate_entry(struct logininfo *li, struct lastlog *last)
1573{
1d7b9b20 1574 line_fullname(li->line, last->ll_line, sizeof(li->line));
2b87da3b 1575 strlcpy(li->hostname, last->ll_host,
fa64c868 1576 MIN_SIZEOF(li->hostname, last->ll_host));
1d7b9b20 1577 li->tv_sec = last->ll_time;
564dd50a 1578}
1d7b9b20 1579
1d7b9b20 1580int
564dd50a 1581lastlog_get_entry(struct logininfo *li)
1582{
1d7b9b20 1583 struct lastlog last;
ed05a983 1584 int fd, ret;
1d7b9b20 1585
ce49121d 1586 if (!lastlog_openseek(li, &fd, O_RDONLY))
ed05a983 1587 return (0);
ce49121d 1588
ed05a983 1589 ret = atomicio(read, fd, &last, sizeof(last));
ce49121d 1590 close(fd);
1591
ed05a983 1592 switch (ret) {
1593 case 0:
1594 memset(&last, '\0', sizeof(last));
1595 /* FALLTHRU */
1596 case sizeof(last):
1597 lastlog_populate_entry(li, &last);
1598 return (1);
1599 case -1:
aff51935 1600 error("%s: Error reading from %s: %s", __func__,
ed05a983 1601 LASTLOG_FILE, strerror(errno));
1602 return (0);
1603 default:
1604 error("%s: Error reading from %s: Expecting %d, got %d",
dfde7f6e 1605 __func__, LASTLOG_FILE, (int)sizeof(last), ret);
ed05a983 1606 return (0);
1607 }
ce49121d 1608
ed05a983 1609 /* NOTREACHED */
1610 return (0);
564dd50a 1611}
f988dce5 1612#endif /* USE_LASTLOG */
b6610e8f 1613
1614#ifdef USE_BTMP
1615 /*
1616 * Logs failed login attempts in _PATH_BTMP if that exists.
1617 * The most common login failure is to give password instead of username.
1618 * So the _PATH_BTMP file checked for the correct permission, so that
1619 * only root can read it.
1620 */
1621
1622void
1623record_failed_login(const char *username, const char *hostname,
1624 const char *ttyn)
1625{
1626 int fd;
1627 struct utmp ut;
1628 struct sockaddr_storage from;
dfde7f6e 1629 socklen_t fromlen = sizeof(from);
b6610e8f 1630 struct sockaddr_in *a4;
1631 struct sockaddr_in6 *a6;
1632 time_t t;
1633 struct stat fst;
1634
1635 if (geteuid() != 0)
1636 return;
1637 if ((fd = open(_PATH_BTMP, O_WRONLY | O_APPEND)) < 0) {
1638 debug("Unable to open the btmp file %s: %s", _PATH_BTMP,
1639 strerror(errno));
1640 return;
1641 }
1642 if (fstat(fd, &fst) < 0) {
1643 logit("%s: fstat of %s failed: %s", __func__, _PATH_BTMP,
1644 strerror(errno));
1645 goto out;
1646 }
1647 if((fst.st_mode & (S_IRWXG | S_IRWXO)) || (fst.st_uid != 0)){
1648 logit("Excess permission or bad ownership on file %s",
1649 _PATH_BTMP);
1650 goto out;
1651 }
1652
1653 memset(&ut, 0, sizeof(ut));
1654 /* strncpy because we don't necessarily want nul termination */
1655 strncpy(ut.ut_user, username, sizeof(ut.ut_user));
1656 strlcpy(ut.ut_line, "ssh:notty", sizeof(ut.ut_line));
1657
1658 time(&t);
1659 ut.ut_time = t; /* ut_time is not always a time_t */
1660 ut.ut_type = LOGIN_PROCESS;
1661 ut.ut_pid = getpid();
1662
1663 /* strncpy because we don't necessarily want nul termination */
1664 strncpy(ut.ut_host, hostname, sizeof(ut.ut_host));
1665
1666 if (packet_connection_is_on_socket() &&
1667 getpeername(packet_get_connection_in(),
1668 (struct sockaddr *)&from, &fromlen) == 0) {
1669 ipv64_normalise_mapped(&from, &fromlen);
1670 if (from.ss_family == AF_INET) {
1671 a4 = (struct sockaddr_in *)&from;
1672 memcpy(&ut.ut_addr, &(a4->sin_addr),
1673 MIN_SIZEOF(ut.ut_addr, a4->sin_addr));
1674 }
1675#ifdef HAVE_ADDR_V6_IN_UTMP
1676 if (from.ss_family == AF_INET6) {
1677 a6 = (struct sockaddr_in6 *)&from;
1678 memcpy(&ut.ut_addr_v6, &(a6->sin6_addr),
1679 MIN_SIZEOF(ut.ut_addr_v6, a6->sin6_addr));
1680 }
1681#endif
1682 }
1683
1684 if (atomicio(vwrite, fd, &ut, sizeof(ut)) != sizeof(ut))
1685 error("Failed to write to %s: %s", _PATH_BTMP,
1686 strerror(errno));
1687
1688out:
1689 close(fd);
1690}
1691#endif /* USE_BTMP */
git-cvsimport mirror of OpenSSH
This page took 0.761879 seconds and 5 git commands to generate.