search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
net: Allow binding of unspecified address without address existance
[dragonfly.git] / crypto / openssh / loginrec.c
blob34d339a47ea83d51e5ebae5c4fda6fccc14088f3
1 /*
2 * Copyright (c) 2000 Andre Lucas. All rights reserved.
3 * Portions copyright (c) 1998 Todd C. Miller
4 * Portions copyright (c) 1996 Jason Downs
5 * Portions copyright (c) 1996 Theo de Raadt
6 *
7 * Redistribution and use in source and binary forms, with or without
8 * modification, are permitted provided that the following conditions
9 * are met:
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
15 *
16 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
17 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
18 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
19 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
20 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
21 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
22 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
23 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
24 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
25 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
26 */
27
28 /*
29 * The btmp logging code is derived from login.c from util-linux and is under
30 * the the following license:
31 *
32 * Copyright (c) 1980, 1987, 1988 The Regents of the University of California.
33 * All rights reserved.
34 *
35 * Redistribution and use in source and binary forms are permitted
36 * provided that the above copyright notice and this paragraph are
37 * duplicated in all such forms and that any documentation,
38 * advertising materials, and other materials related to such
39 * distribution and use acknowledge that the software was developed
40 * by the University of California, Berkeley. The name of the
41 * University may not be used to endorse or promote products derived
42 * from this software without specific prior written permission.
43 * THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR
44 * IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED
45 * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
46 */
47
48
49 /**
50 ** loginrec.c: platform-independent login recording and lastlog retrieval
51 **/
52
53 /*
54 * The new login code explained
55 * ============================
56 *
57 * This code attempts to provide a common interface to login recording
58 * (utmp and friends) and last login time retrieval.
59 *
60 * Its primary means of achieving this is to use 'struct logininfo', a
61 * union of all the useful fields in the various different types of
62 * system login record structures one finds on UNIX variants.
63 *
64 * We depend on autoconf to define which recording methods are to be
65 * used, and which fields are contained in the relevant data structures
66 * on the local system. Many C preprocessor symbols affect which code
67 * gets compiled here.
68 *
69 * The code is designed to make it easy to modify a particular
70 * recording method, without affecting other methods nor requiring so
71 * many nested conditional compilation blocks as were commonplace in
72 * the old code.
73 *
74 * For login recording, we try to use the local system's libraries as
75 * these are clearly most likely to work correctly. For utmp systems
76 * this usually means login() and logout() or setutent() etc., probably
77 * in libutil, along with logwtmp() etc. On these systems, we fall back
78 * to writing the files directly if we have to, though this method
79 * requires very thorough testing so we do not corrupt local auditing
80 * information. These files and their access methods are very system
81 * specific indeed.
82 *
83 * For utmpx systems, the corresponding library functions are
84 * setutxent() etc. To the author's knowledge, all utmpx systems have
85 * these library functions and so no direct write is attempted. If such
86 * a system exists and needs support, direct analogues of the [uw]tmp
87 * code should suffice.
88 *
89 * Retrieving the time of last login ('lastlog') is in some ways even
90 * more problemmatic than login recording. Some systems provide a
91 * simple table of all users which we seek based on uid and retrieve a
92 * relatively standard structure. Others record the same information in
93 * a directory with a separate file, and others don't record the
94 * information separately at all. For systems in the latter category,
95 * we look backwards in the wtmp or wtmpx file for the last login entry
96 * for our user. Naturally this is slower and on busy systems could
97 * incur a significant performance penalty.
98 *
99 * Calling the new code
100 * --------------------
101 *
102 * In OpenSSH all login recording and retrieval is performed in
103 * login.c. Here you'll find working examples. Also, in the logintest.c
104 * program there are more examples.
105 *
106 * Internal handler calling method
107 * -------------------------------
108 *
109 * When a call is made to login_login() or login_logout(), both
110 * routines set a struct logininfo flag defining which action (log in,
111 * or log out) is to be taken. They both then call login_write(), which
112 * calls whichever of the many structure-specific handlers autoconf
113 * selects for the local system.
114 *
115 * The handlers themselves handle system data structure specifics. Both
116 * struct utmp and struct utmpx have utility functions (see
117 * construct_utmp*()) to try to make it simpler to add extra systems
118 * that introduce new features to either structure.
119 *
120 * While it may seem terribly wasteful to replicate so much similar
121 * code for each method, experience has shown that maintaining code to
122 * write both struct utmp and utmpx in one function, whilst maintaining
123 * support for all systems whether they have library support or not, is
124 * a difficult and time-consuming task.
125 *
126 * Lastlog support proceeds similarly. Functions login_get_lastlog()
127 * (and its OpenSSH-tuned friend login_get_lastlog_time()) call
128 * getlast_entry(), which tries one of three methods to find the last
129 * login time. It uses local system lastlog support if it can,
130 * otherwise it tries wtmp or wtmpx before giving up and returning 0,
131 * meaning "tilt".
132 *
133 * Maintenance
134 * -----------
135 *
136 * In many cases it's possible to tweak autoconf to select the correct
137 * methods for a particular platform, either by improving the detection
138 * code (best), or by presetting DISABLE_<method> or CONF_<method>_FILE
139 * symbols for the platform.
140 *
141 * Use logintest to check which symbols are defined before modifying
142 * configure.ac and loginrec.c. (You have to build logintest yourself
143 * with 'make logintest' as it's not built by default.)
144 *
145 * Otherwise, patches to the specific method(s) are very helpful!
146 */
147
148 #include "includes.h"
149
150 #include <sys/types.h>
151 #include <sys/stat.h>
152 #include <sys/socket.h>
153 #ifdef HAVE_SYS_TIME_H
154 # include <sys/time.h>
155 #endif
156
157 #include <netinet/in.h>
158
159 #include <stdlib.h>
160 #include <errno.h>
161 #include <fcntl.h>
162 #ifdef HAVE_PATHS_H
163 # include <paths.h>
164 #endif
165 #include <pwd.h>
166 #include <stdarg.h>
167 #include <stdio.h>
168 #include <string.h>
169 #include <time.h>
170 #include <unistd.h>
171
172 #include "xmalloc.h"
173 #include "sshkey.h"
174 #include "hostfile.h"
175 #include "ssh.h"
176 #include "loginrec.h"
177 #include "log.h"
178 #include "atomicio.h"
179 #include "packet.h"
180 #include "canohost.h"
181 #include "auth.h"
182 #include "sshbuf.h"
183 #include "ssherr.h"
184
185 #ifdef HAVE_UTIL_H
186 # include <util.h>
187 #endif
188
189 /**
190 ** prototypes for helper functions in this file
191 **/
192
193 #ifdef HAVE_UTMP_H
194 void set_utmp_time(struct logininfo *li, struct utmp *ut);
195 void construct_utmp(struct logininfo *li, struct utmp *ut);
196 #endif
197
198 #ifdef HAVE_UTMPX_H
199 void set_utmpx_time(struct logininfo *li, struct utmpx *ut);
200 void construct_utmpx(struct logininfo *li, struct utmpx *ut);
201 #endif
202
203 int utmp_write_entry(struct logininfo *li);
204 int utmpx_write_entry(struct logininfo *li);
205 int wtmp_write_entry(struct logininfo *li);
206 int wtmpx_write_entry(struct logininfo *li);
207 int lastlog_write_entry(struct logininfo *li);
208 int syslogin_write_entry(struct logininfo *li);
209
210 int getlast_entry(struct logininfo *li);
211 int lastlog_get_entry(struct logininfo *li);
212 int utmpx_get_entry(struct logininfo *li);
213 int wtmp_get_entry(struct logininfo *li);
214 int wtmpx_get_entry(struct logininfo *li);
215
216 extern struct sshbuf *loginmsg;
217
218 /* pick the shortest string */
219 #define MIN_SIZEOF(s1,s2) (sizeof(s1) < sizeof(s2) ? sizeof(s1) : sizeof(s2))
220
221 /**
222 ** platform-independent login functions
223 **/
224
225 /*
226 * login_login(struct logininfo *) - Record a login
227 *
228 * Call with a pointer to a struct logininfo initialised with
229 * login_init_entry() or login_alloc_entry()
230 *
231 * Returns:
232 * >0 if successful
233 * 0 on failure (will use OpenSSH's logging facilities for diagnostics)
234 */
235 int
236 login_login(struct logininfo *li)
237 {
238 li->type = LTYPE_LOGIN;
239 return (login_write(li));
240 }
241
242
243 /*
244 * login_logout(struct logininfo *) - Record a logout
245 *
246 * Call as with login_login()
247 *
248 * Returns:
249 * >0 if successful
250 * 0 on failure (will use OpenSSH's logging facilities for diagnostics)
251 */
252 int
253 login_logout(struct logininfo *li)
254 {
255 li->type = LTYPE_LOGOUT;
256 return (login_write(li));
257 }
258
259 /*
260 * login_get_lastlog_time(int) - Retrieve the last login time
261 *
262 * Retrieve the last login time for the given uid. Will try to use the
263 * system lastlog facilities if they are available, but will fall back
264 * to looking in wtmp/wtmpx if necessary
265 *
266 * Returns:
267 * 0 on failure, or if user has never logged in
268 * Time in seconds from the epoch if successful
269 *
270 * Useful preprocessor symbols:
271 * DISABLE_LASTLOG: If set, *never* even try to retrieve lastlog
272 * info
273 * USE_LASTLOG: If set, indicates the presence of system lastlog
274 * facilities. If this and DISABLE_LASTLOG are not set,
275 * try to retrieve lastlog information from wtmp/wtmpx.
276 */
277 unsigned int
278 login_get_lastlog_time(const uid_t uid)
279 {
280 struct logininfo li;
281
282 if (login_get_lastlog(&li, uid))
283 return (li.tv_sec);
284 else
285 return (0);
286 }
287
288 /*
289 * login_get_lastlog(struct logininfo *, int) - Retrieve a lastlog entry
290 *
291 * Retrieve a logininfo structure populated (only partially) with
292 * information from the system lastlog data, or from wtmp/wtmpx if no
293 * system lastlog information exists.
294 *
295 * Note this routine must be given a pre-allocated logininfo.
296 *
297 * Returns:
298 * >0: A pointer to your struct logininfo if successful
299 * 0 on failure (will use OpenSSH's logging facilities for diagnostics)
300 */
301 struct logininfo *
302 login_get_lastlog(struct logininfo *li, const uid_t uid)
303 {
304 struct passwd *pw;
305
306 memset(li, '\0', sizeof(*li));
307 li->uid = uid;
308
309 /*
310 * If we don't have a 'real' lastlog, we need the username to
311 * reliably search wtmp(x) for the last login (see
312 * wtmp_get_entry().)
313 */
314 pw = getpwuid(uid);
315 if (pw == NULL)
316 fatal("%s: Cannot find account for uid %ld", __func__,
317 (long)uid);
318
319 if (strlcpy(li->username, pw->pw_name, sizeof(li->username)) >=
320 sizeof(li->username)) {
321 error("%s: username too long (%lu > max %lu)", __func__,
322 (unsigned long)strlen(pw->pw_name),
323 (unsigned long)sizeof(li->username) - 1);
324 return NULL;
325 }
326
327 if (getlast_entry(li))
328 return (li);
329 else
330 return (NULL);
331 }
332
333 /*
334 * login_alloc_entry(int, char*, char*, char*) - Allocate and initialise
335 * a logininfo structure
336 *
337 * This function creates a new struct logininfo, a data structure
338 * meant to carry the information required to portably record login info.
339 *
340 * Returns a pointer to a newly created struct logininfo. If memory
341 * allocation fails, the program halts.
342 */
343 struct
344 logininfo *login_alloc_entry(pid_t pid, const char *username,
345 const char *hostname, const char *line)
346 {
347 struct logininfo *newli;
348
349 newli = xmalloc(sizeof(*newli));
350 login_init_entry(newli, pid, username, hostname, line);
351 return (newli);
352 }
353
354
355 /* login_free_entry(struct logininfo *) - free struct memory */
356 void
357 login_free_entry(struct logininfo *li)
358 {
359 free(li);
360 }
361
362
363 /* login_init_entry(struct logininfo *, int, char*, char*, char*)
364 * - initialise a struct logininfo
365 *
366 * Populates a new struct logininfo, a data structure meant to carry
367 * the information required to portably record login info.
368 *
369 * Returns: 1
370 */
371 int
372 login_init_entry(struct logininfo *li, pid_t pid, const char *username,
373 const char *hostname, const char *line)
374 {
375 struct passwd *pw;
376
377 memset(li, 0, sizeof(*li));
378
379 li->pid = pid;
380
381 /* set the line information */
382 if (line)
383 line_fullname(li->line, line, sizeof(li->line));
384
385 if (username) {
386 strlcpy(li->username, username, sizeof(li->username));
387 pw = getpwnam(li->username);
388 if (pw == NULL) {
389 fatal("%s: Cannot find user \"%s\"", __func__,
390 li->username);
391 }
392 li->uid = pw->pw_uid;
393 }
394
395 if (hostname)
396 strlcpy(li->hostname, hostname, sizeof(li->hostname));
397
398 return (1);
399 }
400
401 /*
402 * login_set_current_time(struct logininfo *) - set the current time
403 *
404 * Set the current time in a logininfo structure. This function is
405 * meant to eliminate the need to deal with system dependencies for
406 * time handling.
407 */
408 void
409 login_set_current_time(struct logininfo *li)
410 {
411 struct timeval tv;
412
413 gettimeofday(&tv, NULL);
414
415 li->tv_sec = tv.tv_sec;
416 li->tv_usec = tv.tv_usec;
417 }
418
419 /* copy a sockaddr_* into our logininfo */
420 void
421 login_set_addr(struct logininfo *li, const struct sockaddr *sa,
422 const unsigned int sa_size)
423 {
424 unsigned int bufsize = sa_size;
425
426 /* make sure we don't overrun our union */
427 if (sizeof(li->hostaddr) < sa_size)
428 bufsize = sizeof(li->hostaddr);
429
430 memcpy(&li->hostaddr.sa, sa, bufsize);
431 }
432
433
434 /**
435 ** login_write: Call low-level recording functions based on autoconf
436 ** results
437 **/
438 int
439 login_write(struct logininfo *li)
440 {
441 #ifndef HAVE_CYGWIN
442 if (geteuid() != 0) {
443 logit("Attempt to write login records by non-root user (aborting)");
444 return (1);
445 }
446 #endif
447
448 /* set the timestamp */
449 login_set_current_time(li);
450 #ifdef USE_LOGIN
451 syslogin_write_entry(li);
452 #endif
453 #ifdef USE_LASTLOG
454 if (li->type == LTYPE_LOGIN)
455 lastlog_write_entry(li);
456 #endif
457 #ifdef USE_UTMP
458 utmp_write_entry(li);
459 #endif
460 #ifdef USE_WTMP
461 wtmp_write_entry(li);
462 #endif
463 #ifdef USE_UTMPX
464 utmpx_write_entry(li);
465 #endif
466 #ifdef USE_WTMPX
467 wtmpx_write_entry(li);
468 #endif
469 #ifdef CUSTOM_SYS_AUTH_RECORD_LOGIN
470 if (li->type == LTYPE_LOGIN &&
471 !sys_auth_record_login(li->username,li->hostname,li->line,
472 loginmsg))
473 logit("Writing login record failed for %s", li->username);
474 #endif
475 #ifdef SSH_AUDIT_EVENTS
476 if (li->type == LTYPE_LOGIN)
477 audit_session_open(li);
478 else if (li->type == LTYPE_LOGOUT)
479 audit_session_close(li);
480 #endif
481 return (0);
482 }
483
484 #ifdef LOGIN_NEEDS_UTMPX
485 int
486 login_utmp_only(struct logininfo *li)
487 {
488 li->type = LTYPE_LOGIN;
489 login_set_current_time(li);
490 # ifdef USE_UTMP
491 utmp_write_entry(li);
492 # endif
493 # ifdef USE_WTMP
494 wtmp_write_entry(li);
495 # endif
496 # ifdef USE_UTMPX
497 utmpx_write_entry(li);
498 # endif
499 # ifdef USE_WTMPX
500 wtmpx_write_entry(li);
501 # endif
502 return (0);
503 }
504 #endif
505
506 /**
507 ** getlast_entry: Call low-level functions to retrieve the last login
508 ** time.
509 **/
510
511 /* take the uid in li and return the last login time */
512 int
513 getlast_entry(struct logininfo *li)
514 {
515 #ifdef USE_LASTLOG
516 return(lastlog_get_entry(li));
517 #else /* !USE_LASTLOG */
518 #if defined(USE_UTMPX) && defined(HAVE_SETUTXDB) && \
519 defined(UTXDB_LASTLOGIN) && defined(HAVE_GETUTXUSER)
520 return (utmpx_get_entry(li));
521 #endif
522
523 #if defined(DISABLE_LASTLOG)
524 /* On some systems we shouldn't even try to obtain last login
525 * time, e.g. AIX */
526 return (0);
527 # elif defined(USE_WTMP) && \
528 (defined(HAVE_TIME_IN_UTMP) || defined(HAVE_TV_IN_UTMP))
529 /* retrieve last login time from utmp */
530 return (wtmp_get_entry(li));
531 # elif defined(USE_WTMPX) && \
532 (defined(HAVE_TIME_IN_UTMPX) || defined(HAVE_TV_IN_UTMPX))
533 /* If wtmp isn't available, try wtmpx */
534 return (wtmpx_get_entry(li));
535 # else
536 /* Give up: No means of retrieving last login time */
537 return (0);
538 # endif /* DISABLE_LASTLOG */
539 #endif /* USE_LASTLOG */
540 }
541
542
543
544 /*
545 * 'line' string utility functions
546 *
547 * These functions process the 'line' string into one of three forms:
548 *
549 * 1. The full filename (including '/dev')
550 * 2. The stripped name (excluding '/dev')
551 * 3. The abbreviated name (e.g. /dev/ttyp00 -> yp00
552 * /dev/pts/1 -> ts/1 )
553 *
554 * Form 3 is used on some systems to identify a .tmp.? entry when
555 * attempting to remove it. Typically both addition and removal is
556 * performed by one application - say, sshd - so as long as the choice
557 * uniquely identifies a terminal it's ok.
558 */
559
560
561 /*
562 * line_fullname(): add the leading '/dev/' if it doesn't exist make
563 * sure dst has enough space, if not just copy src (ugh)
564 */
565 char *
566 line_fullname(char *dst, const char *src, u_int dstsize)
567 {
568 memset(dst, '\0', dstsize);
569 if ((strncmp(src, "/dev/", 5) == 0) || (dstsize < (strlen(src) + 5)))
570 strlcpy(dst, src, dstsize);
571 else {
572 strlcpy(dst, "/dev/", dstsize);
573 strlcat(dst, src, dstsize);
574 }
575 return (dst);
576 }
577
578 /* line_stripname(): strip the leading '/dev' if it exists, return dst */
579 char *
580 line_stripname(char *dst, const char *src, int dstsize)
581 {
582 memset(dst, '\0', dstsize);
583 if (strncmp(src, "/dev/", 5) == 0)
584 strlcpy(dst, src + 5, dstsize);
585 else
586 strlcpy(dst, src, dstsize);
587 return (dst);
588 }
589
590 /*
591 * line_abbrevname(): Return the abbreviated (usually four-character)
592 * form of the line (Just use the last <dstsize> characters of the
593 * full name.)
594 *
595 * NOTE: use strncpy because we do NOT necessarily want zero
596 * termination
597 */
598 char *
599 line_abbrevname(char *dst, const char *src, int dstsize)
600 {
601 size_t len;
602
603 memset(dst, '\0', dstsize);
604
605 /* Always skip prefix if present */
606 if (strncmp(src, "/dev/", 5) == 0)
607 src += 5;
608
609 #ifdef WITH_ABBREV_NO_TTY
610 if (strncmp(src, "tty", 3) == 0)
611 src += 3;
612 #endif
613
614 len = strlen(src);
615
616 if (len > 0) {
617 if (((int)len - dstsize) > 0)
618 src += ((int)len - dstsize);
619
620 /* note: _don't_ change this to strlcpy */
621 strncpy(dst, src, (size_t)dstsize);
622 }
623
624 return (dst);
625 }
626
627 /**
628 ** utmp utility functions
629 **
630 ** These functions manipulate struct utmp, taking system differences
631 ** into account.
632 **/
633
634 #if defined(USE_UTMP) || defined (USE_WTMP) || defined (USE_LOGIN)
635
636 /* build the utmp structure */
637 void
638 set_utmp_time(struct logininfo *li, struct utmp *ut)
639 {
640 # if defined(HAVE_TV_IN_UTMP)
641 ut->ut_tv.tv_sec = li->tv_sec;
642 ut->ut_tv.tv_usec = li->tv_usec;
643 # elif defined(HAVE_TIME_IN_UTMP)
644 ut->ut_time = li->tv_sec;
645 # endif
646 }
647
648 void
649 construct_utmp(struct logininfo *li,
650 struct utmp *ut)
651 {
652 # ifdef HAVE_ADDR_V6_IN_UTMP
653 struct sockaddr_in6 *sa6;
654 # endif
655
656 memset(ut, '\0', sizeof(*ut));
657
658 /* First fill out fields used for both logins and logouts */
659
660 # ifdef HAVE_ID_IN_UTMP
661 line_abbrevname(ut->ut_id, li->line, sizeof(ut->ut_id));
662 # endif
663
664 # ifdef HAVE_TYPE_IN_UTMP
665 /* This is done here to keep utmp constants out of struct logininfo */
666 switch (li->type) {
667 case LTYPE_LOGIN:
668 ut->ut_type = USER_PROCESS;
669 break;
670 case LTYPE_LOGOUT:
671 ut->ut_type = DEAD_PROCESS;
672 break;
673 }
674 # endif
675 set_utmp_time(li, ut);
676
677 line_stripname(ut->ut_line, li->line, sizeof(ut->ut_line));
678
679 # ifdef HAVE_PID_IN_UTMP
680 ut->ut_pid = li->pid;
681 # endif
682
683 /* If we're logging out, leave all other fields blank */
684 if (li->type == LTYPE_LOGOUT)
685 return;
686
687 /*
688 * These fields are only used when logging in, and are blank
689 * for logouts.
690 */
691
692 /* Use strncpy because we don't necessarily want null termination */
693 strncpy(ut->ut_name, li->username,
694 MIN_SIZEOF(ut->ut_name, li->username));
695 # ifdef HAVE_HOST_IN_UTMP
696 strncpy(ut->ut_host, li->hostname,
697 MIN_SIZEOF(ut->ut_host, li->hostname));
698 # endif
699 # ifdef HAVE_ADDR_IN_UTMP
700 /* this is just a 32-bit IP address */
701 if (li->hostaddr.sa.sa_family == AF_INET)
702 ut->ut_addr = li->hostaddr.sa_in.sin_addr.s_addr;
703 # endif
704 # ifdef HAVE_ADDR_V6_IN_UTMP
705 /* this is just a 128-bit IPv6 address */
706 if (li->hostaddr.sa.sa_family == AF_INET6) {
707 sa6 = ((struct sockaddr_in6 *)&li->hostaddr.sa);
708 memcpy(ut->ut_addr_v6, sa6->sin6_addr.s6_addr, 16);
709 if (IN6_IS_ADDR_V4MAPPED(&sa6->sin6_addr)) {
710 ut->ut_addr_v6[0] = ut->ut_addr_v6[3];
711 ut->ut_addr_v6[1] = 0;
712 ut->ut_addr_v6[2] = 0;
713 ut->ut_addr_v6[3] = 0;
714 }
715 }
716 # endif
717 }
718 #endif /* USE_UTMP || USE_WTMP || USE_LOGIN */
719
720 /**
721 ** utmpx utility functions
722 **
723 ** These functions manipulate struct utmpx, accounting for system
724 ** variations.
725 **/
726
727 #if defined(USE_UTMPX) || defined (USE_WTMPX)
728 /* build the utmpx structure */
729 void
730 set_utmpx_time(struct logininfo *li, struct utmpx *utx)
731 {
732 # if defined(HAVE_TV_IN_UTMPX)
733 utx->ut_tv.tv_sec = li->tv_sec;
734 utx->ut_tv.tv_usec = li->tv_usec;
735 # elif defined(HAVE_TIME_IN_UTMPX)
736 utx->ut_time = li->tv_sec;
737 # endif
738 }
739
740 void
741 construct_utmpx(struct logininfo *li, struct utmpx *utx)
742 {
743 # ifdef HAVE_ADDR_V6_IN_UTMP
744 struct sockaddr_in6 *sa6;
745 # endif
746 memset(utx, '\0', sizeof(*utx));
747
748 # ifdef HAVE_ID_IN_UTMPX
749 line_abbrevname(utx->ut_id, li->line, sizeof(utx->ut_id));
750 # endif
751
752 /* this is done here to keep utmp constants out of loginrec.h */
753 switch (li->type) {
754 case LTYPE_LOGIN:
755 utx->ut_type = USER_PROCESS;
756 break;
757 case LTYPE_LOGOUT:
758 utx->ut_type = DEAD_PROCESS;
759 break;
760 }
761 line_stripname(utx->ut_line, li->line, sizeof(utx->ut_line));
762 set_utmpx_time(li, utx);
763 utx->ut_pid = li->pid;
764
765 /* strncpy(): Don't necessarily want null termination */
766 strncpy(utx->ut_user, li->username,
767 MIN_SIZEOF(utx->ut_user, li->username));
768
769 if (li->type == LTYPE_LOGOUT)
770 return;
771
772 /*
773 * These fields are only used when logging in, and are blank
774 * for logouts.
775 */
776
777 # ifdef HAVE_HOST_IN_UTMPX
778 strncpy(utx->ut_host, li->hostname,
779 MIN_SIZEOF(utx->ut_host, li->hostname));
780 # endif
781 # ifdef HAVE_SS_IN_UTMPX
782 utx->ut_ss = li->hostaddr.sa_storage;
783 # endif
784 # ifdef HAVE_ADDR_IN_UTMPX
785 /* this is just a 32-bit IP address */
786 if (li->hostaddr.sa.sa_family == AF_INET)
787 utx->ut_addr = li->hostaddr.sa_in.sin_addr.s_addr;
788 # endif
789 # ifdef HAVE_ADDR_V6_IN_UTMP
790 /* this is just a 128-bit IPv6 address */
791 if (li->hostaddr.sa.sa_family == AF_INET6) {
792 sa6 = ((struct sockaddr_in6 *)&li->hostaddr.sa);
793 memcpy(utx->ut_addr_v6, sa6->sin6_addr.s6_addr, 16);
794 if (IN6_IS_ADDR_V4MAPPED(&sa6->sin6_addr)) {
795 utx->ut_addr_v6[0] = utx->ut_addr_v6[3];
796 utx->ut_addr_v6[1] = 0;
797 utx->ut_addr_v6[2] = 0;
798 utx->ut_addr_v6[3] = 0;
799 }
800 }
801 # endif
802 # ifdef HAVE_SYSLEN_IN_UTMPX
803 /* ut_syslen is the length of the utx_host string */
804 utx->ut_syslen = MIN(strlen(li->hostname), sizeof(utx->ut_host));
805 # endif
806 }
807 #endif /* USE_UTMPX || USE_WTMPX */
808
809 /**
810 ** Low-level utmp functions
811 **/
812
813 /* FIXME: (ATL) utmp_write_direct needs testing */
814 #ifdef USE_UTMP
815
816 /* if we can, use pututline() etc. */
817 # if !defined(DISABLE_PUTUTLINE) && defined(HAVE_SETUTENT) && \
818 defined(HAVE_PUTUTLINE)
819 # define UTMP_USE_LIBRARY
820 # endif
821
822
823 /* write a utmp entry with the system's help (pututline() and pals) */
824 # ifdef UTMP_USE_LIBRARY
825 static int
826 utmp_write_library(struct logininfo *li, struct utmp *ut)
827 {
828 setutent();
829 pututline(ut);
830 # ifdef HAVE_ENDUTENT
831 endutent();
832 # endif
833 return (1);
834 }
835 # else /* UTMP_USE_LIBRARY */
836
837 /*
838 * Write a utmp entry direct to the file
839 * This is a slightly modification of code in OpenBSD's login.c
840 */
841 static int
842 utmp_write_direct(struct logininfo *li, struct utmp *ut)
843 {
844 struct utmp old_ut;
845 register int fd;
846 int tty;
847
848 /* FIXME: (ATL) ttyslot() needs local implementation */
849
850 #if defined(HAVE_GETTTYENT)
851 struct ttyent *ty;
852
853 tty=0;
854 setttyent();
855 while (NULL != (ty = getttyent())) {
856 tty++;
857 if (!strncmp(ty->ty_name, ut->ut_line, sizeof(ut->ut_line)))
858 break;
859 }
860 endttyent();
861
862 if (NULL == ty) {
863 logit("%s: tty not found", __func__);
864 return (0);
865 }
866 #else /* FIXME */
867
868 tty = ttyslot(); /* seems only to work for /dev/ttyp? style names */
869
870 #endif /* HAVE_GETTTYENT */
871
872 if (tty > 0 && (fd = open(UTMP_FILE, O_RDWR|O_CREAT, 0644)) >= 0) {
873 off_t pos, ret;
874
875 pos = (off_t)tty * sizeof(struct utmp);
876 if ((ret = lseek(fd, pos, SEEK_SET)) == -1) {
877 logit("%s: lseek: %s", __func__, strerror(errno));
878 close(fd);
879 return (0);
880 }
881 if (ret != pos) {
882 logit("%s: Couldn't seek to tty %d slot in %s",
883 __func__, tty, UTMP_FILE);
884 close(fd);
885 return (0);
886 }
887 /*
888 * Prevent luser from zero'ing out ut_host.
889 * If the new ut_line is empty but the old one is not
890 * and ut_line and ut_name match, preserve the old ut_line.
891 */
892 if (atomicio(read, fd, &old_ut, sizeof(old_ut)) == sizeof(old_ut) &&
893 (ut->ut_host[0] == '\0') && (old_ut.ut_host[0] != '\0') &&
894 (strncmp(old_ut.ut_line, ut->ut_line, sizeof(ut->ut_line)) == 0) &&
895 (strncmp(old_ut.ut_name, ut->ut_name, sizeof(ut->ut_name)) == 0))
896 memcpy(ut->ut_host, old_ut.ut_host, sizeof(ut->ut_host));
897
898 if ((ret = lseek(fd, pos, SEEK_SET)) == -1) {
899 logit("%s: lseek: %s", __func__, strerror(errno));
900 close(fd);
901 return (0);
902 }
903 if (ret != pos) {
904 logit("%s: Couldn't seek to tty %d slot in %s",
905 __func__, tty, UTMP_FILE);
906 close(fd);
907 return (0);
908 }
909 if (atomicio(vwrite, fd, ut, sizeof(*ut)) != sizeof(*ut)) {
910 logit("%s: error writing %s: %s", __func__,
911 UTMP_FILE, strerror(errno));
912 close(fd);
913 return (0);
914 }
915
916 close(fd);
917 return (1);
918 } else {
919 return (0);
920 }
921 }
922 # endif /* UTMP_USE_LIBRARY */
923
924 static int
925 utmp_perform_login(struct logininfo *li)
926 {
927 struct utmp ut;
928
929 construct_utmp(li, &ut);
930 # ifdef UTMP_USE_LIBRARY
931 if (!utmp_write_library(li, &ut)) {
932 logit("%s: utmp_write_library() failed", __func__);
933 return (0);
934 }
935 # else
936 if (!utmp_write_direct(li, &ut)) {
937 logit("%s: utmp_write_direct() failed", __func__);
938 return (0);
939 }
940 # endif
941 return (1);
942 }
943
944
945 static int
946 utmp_perform_logout(struct logininfo *li)
947 {
948 struct utmp ut;
949
950 construct_utmp(li, &ut);
951 # ifdef UTMP_USE_LIBRARY
952 if (!utmp_write_library(li, &ut)) {
953 logit("%s: utmp_write_library() failed", __func__);
954 return (0);
955 }
956 # else
957 if (!utmp_write_direct(li, &ut)) {
958 logit("%s: utmp_write_direct() failed", __func__);
959 return (0);
960 }
961 # endif
962 return (1);
963 }
964
965
966 int
967 utmp_write_entry(struct logininfo *li)
968 {
969 switch(li->type) {
970 case LTYPE_LOGIN:
971 return (utmp_perform_login(li));
972
973 case LTYPE_LOGOUT:
974 return (utmp_perform_logout(li));
975
976 default:
977 logit("%s: invalid type field", __func__);
978 return (0);
979 }
980 }
981 #endif /* USE_UTMP */
982
983
984 /**
985 ** Low-level utmpx functions
986 **/
987
988 /* not much point if we don't want utmpx entries */
989 #ifdef USE_UTMPX
990
991 /* if we have the wherewithall, use pututxline etc. */
992 # if !defined(DISABLE_PUTUTXLINE) && defined(HAVE_SETUTXENT) && \
993 defined(HAVE_PUTUTXLINE)
994 # define UTMPX_USE_LIBRARY
995 # endif
996
997
998 /* write a utmpx entry with the system's help (pututxline() and pals) */
999 # ifdef UTMPX_USE_LIBRARY
1000 static int
1001 utmpx_write_library(struct logininfo *li, struct utmpx *utx)
1002 {
1003 setutxent();
1004 pututxline(utx);
1005
1006 # ifdef HAVE_ENDUTXENT
1007 endutxent();
1008 # endif
1009 return (1);
1010 }
1011
1012 # else /* UTMPX_USE_LIBRARY */
1013
1014 /* write a utmp entry direct to the file */
1015 static int
1016 utmpx_write_direct(struct logininfo *li, struct utmpx *utx)
1017 {
1018 logit("%s: not implemented!", __func__);
1019 return (0);
1020 }
1021 # endif /* UTMPX_USE_LIBRARY */
1022
1023 static int
1024 utmpx_perform_login(struct logininfo *li)
1025 {
1026 struct utmpx utx;
1027
1028 construct_utmpx(li, &utx);
1029 # ifdef UTMPX_USE_LIBRARY
1030 if (!utmpx_write_library(li, &utx)) {
1031 logit("%s: utmp_write_library() failed", __func__);
1032 return (0);
1033 }
1034 # else
1035 if (!utmpx_write_direct(li, &ut)) {
1036 logit("%s: utmp_write_direct() failed", __func__);
1037 return (0);
1038 }
1039 # endif
1040 return (1);
1041 }
1042
1043
1044 static int
1045 utmpx_perform_logout(struct logininfo *li)
1046 {
1047 struct utmpx utx;
1048
1049 construct_utmpx(li, &utx);
1050 # ifdef HAVE_ID_IN_UTMPX
1051 line_abbrevname(utx.ut_id, li->line, sizeof(utx.ut_id));
1052 # endif
1053 # ifdef HAVE_TYPE_IN_UTMPX
1054 utx.ut_type = DEAD_PROCESS;
1055 # endif
1056
1057 # ifdef UTMPX_USE_LIBRARY
1058 utmpx_write_library(li, &utx);
1059 # else
1060 utmpx_write_direct(li, &utx);
1061 # endif
1062 return (1);
1063 }
1064
1065 int
1066 utmpx_write_entry(struct logininfo *li)
1067 {
1068 switch(li->type) {
1069 case LTYPE_LOGIN:
1070 return (utmpx_perform_login(li));
1071 case LTYPE_LOGOUT:
1072 return (utmpx_perform_logout(li));
1073 default:
1074 logit("%s: invalid type field", __func__);
1075 return (0);
1076 }
1077 }
1078 #endif /* USE_UTMPX */
1079
1080
1081 /**
1082 ** Low-level wtmp functions
1083 **/
1084
1085 #ifdef USE_WTMP
1086
1087 /*
1088 * Write a wtmp entry direct to the end of the file
1089 * This is a slight modification of code in OpenBSD's logwtmp.c
1090 */
1091 static int
1092 wtmp_write(struct logininfo *li, struct utmp *ut)
1093 {
1094 struct stat buf;
1095 int fd, ret = 1;
1096
1097 if ((fd = open(WTMP_FILE, O_WRONLY|O_APPEND, 0)) < 0) {
1098 logit("%s: problem writing %s: %s", __func__,
1099 WTMP_FILE, strerror(errno));
1100 return (0);
1101 }
1102 if (fstat(fd, &buf) == 0)
1103 if (atomicio(vwrite, fd, ut, sizeof(*ut)) != sizeof(*ut)) {
1104 ftruncate(fd, buf.st_size);
1105 logit("%s: problem writing %s: %s", __func__,
1106 WTMP_FILE, strerror(errno));
1107 ret = 0;
1108 }
1109 close(fd);
1110 return (ret);
1111 }
1112
1113 static int
1114 wtmp_perform_login(struct logininfo *li)
1115 {
1116 struct utmp ut;
1117
1118 construct_utmp(li, &ut);
1119 return (wtmp_write(li, &ut));
1120 }
1121
1122
1123 static int
1124 wtmp_perform_logout(struct logininfo *li)
1125 {
1126 struct utmp ut;
1127
1128 construct_utmp(li, &ut);
1129 return (wtmp_write(li, &ut));
1130 }
1131
1132
1133 int
1134 wtmp_write_entry(struct logininfo *li)
1135 {
1136 switch(li->type) {
1137 case LTYPE_LOGIN:
1138 return (wtmp_perform_login(li));
1139 case LTYPE_LOGOUT:
1140 return (wtmp_perform_logout(li));
1141 default:
1142 logit("%s: invalid type field", __func__);
1143 return (0);
1144 }
1145 }
1146
1147
1148 /*
1149 * Notes on fetching login data from wtmp/wtmpx
1150 *
1151 * Logouts are usually recorded with (amongst other things) a blank
1152 * username on a given tty line. However, some systems (HP-UX is one)
1153 * leave all fields set, but change the ut_type field to DEAD_PROCESS.
1154 *
1155 * Since we're only looking for logins here, we know that the username
1156 * must be set correctly. On systems that leave it in, we check for
1157 * ut_type==USER_PROCESS (indicating a login.)
1158 *
1159 * Portability: Some systems may set something other than USER_PROCESS
1160 * to indicate a login process. I don't know of any as I write. Also,
1161 * it's possible that some systems may both leave the username in
1162 * place and not have ut_type.
1163 */
1164
1165 /* return true if this wtmp entry indicates a login */
1166 static int
1167 wtmp_islogin(struct logininfo *li, struct utmp *ut)
1168 {
1169 if (strncmp(li->username, ut->ut_name,
1170 MIN_SIZEOF(li->username, ut->ut_name)) == 0) {
1171 # ifdef HAVE_TYPE_IN_UTMP
1172 if (ut->ut_type & USER_PROCESS)
1173 return (1);
1174 # else
1175 return (1);
1176 # endif
1177 }
1178 return (0);
1179 }
1180
1181 int
1182 wtmp_get_entry(struct logininfo *li)
1183 {
1184 struct stat st;
1185 struct utmp ut;
1186 int fd, found = 0;
1187
1188 /* Clear the time entries in our logininfo */
1189 li->tv_sec = li->tv_usec = 0;
1190
1191 if ((fd = open(WTMP_FILE, O_RDONLY)) < 0) {
1192 logit("%s: problem opening %s: %s", __func__,
1193 WTMP_FILE, strerror(errno));
1194 return (0);
1195 }
1196 if (fstat(fd, &st) != 0) {
1197 logit("%s: couldn't stat %s: %s", __func__,
1198 WTMP_FILE, strerror(errno));
1199 close(fd);
1200 return (0);
1201 }
1202
1203 /* Seek to the start of the last struct utmp */
1204 if (lseek(fd, -(off_t)sizeof(struct utmp), SEEK_END) == -1) {
1205 /* Looks like we've got a fresh wtmp file */
1206 close(fd);
1207 return (0);
1208 }
1209
1210 while (!found) {
1211 if (atomicio(read, fd, &ut, sizeof(ut)) != sizeof(ut)) {
1212 logit("%s: read of %s failed: %s", __func__,
1213 WTMP_FILE, strerror(errno));
1214 close (fd);
1215 return (0);
1216 }
1217 if (wtmp_islogin(li, &ut) ) {
1218 found = 1;
1219 /*
1220 * We've already checked for a time in struct
1221 * utmp, in login_getlast()
1222 */
1223 # ifdef HAVE_TIME_IN_UTMP
1224 li->tv_sec = ut.ut_time;
1225 # else
1226 # if HAVE_TV_IN_UTMP
1227 li->tv_sec = ut.ut_tv.tv_sec;
1228 # endif
1229 # endif
1230 line_fullname(li->line, ut.ut_line,
1231 MIN_SIZEOF(li->line, ut.ut_line));
1232 # ifdef HAVE_HOST_IN_UTMP
1233 strlcpy(li->hostname, ut.ut_host,
1234 MIN_SIZEOF(li->hostname, ut.ut_host));
1235 # endif
1236 continue;
1237 }
1238 /* Seek back 2 x struct utmp */
1239 if (lseek(fd, -(off_t)(2 * sizeof(struct utmp)), SEEK_CUR) == -1) {
1240 /* We've found the start of the file, so quit */
1241 close(fd);
1242 return (0);
1243 }
1244 }
1245
1246 /* We found an entry. Tidy up and return */
1247 close(fd);
1248 return (1);
1249 }
1250 # endif /* USE_WTMP */
1251
1252
1253 /**
1254 ** Low-level wtmpx functions
1255 **/
1256
1257 #ifdef USE_WTMPX
1258 /*
1259 * Write a wtmpx entry direct to the end of the file
1260 * This is a slight modification of code in OpenBSD's logwtmp.c
1261 */
1262 static int
1263 wtmpx_write(struct logininfo *li, struct utmpx *utx)
1264 {
1265 #ifndef HAVE_UPDWTMPX
1266 struct stat buf;
1267 int fd, ret = 1;
1268
1269 if ((fd = open(WTMPX_FILE, O_WRONLY|O_APPEND, 0)) < 0) {
1270 logit("%s: problem opening %s: %s", __func__,
1271 WTMPX_FILE, strerror(errno));
1272 return (0);
1273 }
1274
1275 if (fstat(fd, &buf) == 0)
1276 if (atomicio(vwrite, fd, utx, sizeof(*utx)) != sizeof(*utx)) {
1277 ftruncate(fd, buf.st_size);
1278 logit("%s: problem writing %s: %s", __func__,
1279 WTMPX_FILE, strerror(errno));
1280 ret = 0;
1281 }
1282 close(fd);
1283
1284 return (ret);
1285 #else
1286 updwtmpx(WTMPX_FILE, utx);
1287 return (1);
1288 #endif
1289 }
1290
1291
1292 static int
1293 wtmpx_perform_login(struct logininfo *li)
1294 {
1295 struct utmpx utx;
1296
1297 construct_utmpx(li, &utx);
1298 return (wtmpx_write(li, &utx));
1299 }
1300
1301
1302 static int
1303 wtmpx_perform_logout(struct logininfo *li)
1304 {
1305 struct utmpx utx;
1306
1307 construct_utmpx(li, &utx);
1308 return (wtmpx_write(li, &utx));
1309 }
1310
1311
1312 int
1313 wtmpx_write_entry(struct logininfo *li)
1314 {
1315 switch(li->type) {
1316 case LTYPE_LOGIN:
1317 return (wtmpx_perform_login(li));
1318 case LTYPE_LOGOUT:
1319 return (wtmpx_perform_logout(li));
1320 default:
1321 logit("%s: invalid type field", __func__);
1322 return (0);
1323 }
1324 }
1325
1326 /* Please see the notes above wtmp_islogin() for information about the
1327 next two functions */
1328
1329 /* Return true if this wtmpx entry indicates a login */
1330 static int
1331 wtmpx_islogin(struct logininfo *li, struct utmpx *utx)
1332 {
1333 if (strncmp(li->username, utx->ut_user,
1334 MIN_SIZEOF(li->username, utx->ut_user)) == 0 ) {
1335 # ifdef HAVE_TYPE_IN_UTMPX
1336 if (utx->ut_type == USER_PROCESS)
1337 return (1);
1338 # else
1339 return (1);
1340 # endif
1341 }
1342 return (0);
1343 }
1344
1345
1346 int
1347 wtmpx_get_entry(struct logininfo *li)
1348 {
1349 struct stat st;
1350 struct utmpx utx;
1351 int fd, found=0;
1352
1353 /* Clear the time entries */
1354 li->tv_sec = li->tv_usec = 0;
1355
1356 if ((fd = open(WTMPX_FILE, O_RDONLY)) < 0) {
1357 logit("%s: problem opening %s: %s", __func__,
1358 WTMPX_FILE, strerror(errno));
1359 return (0);
1360 }
1361 if (fstat(fd, &st) != 0) {
1362 logit("%s: couldn't stat %s: %s", __func__,
1363 WTMPX_FILE, strerror(errno));
1364 close(fd);
1365 return (0);
1366 }
1367
1368 /* Seek to the start of the last struct utmpx */
1369 if (lseek(fd, -(off_t)sizeof(struct utmpx), SEEK_END) == -1 ) {
1370 /* probably a newly rotated wtmpx file */
1371 close(fd);
1372 return (0);
1373 }
1374
1375 while (!found) {
1376 if (atomicio(read, fd, &utx, sizeof(utx)) != sizeof(utx)) {
1377 logit("%s: read of %s failed: %s", __func__,
1378 WTMPX_FILE, strerror(errno));
1379 close (fd);
1380 return (0);
1381 }
1382 /*
1383 * Logouts are recorded as a blank username on a particular
1384 * line. So, we just need to find the username in struct utmpx
1385 */
1386 if (wtmpx_islogin(li, &utx)) {
1387 found = 1;
1388 # if defined(HAVE_TV_IN_UTMPX)
1389 li->tv_sec = utx.ut_tv.tv_sec;
1390 # elif defined(HAVE_TIME_IN_UTMPX)
1391 li->tv_sec = utx.ut_time;
1392 # endif
1393 line_fullname(li->line, utx.ut_line, sizeof(li->line));
1394 # if defined(HAVE_HOST_IN_UTMPX)
1395 strlcpy(li->hostname, utx.ut_host,
1396 MIN_SIZEOF(li->hostname, utx.ut_host));
1397 # endif
1398 continue;
1399 }
1400 if (lseek(fd, -(off_t)(2 * sizeof(struct utmpx)), SEEK_CUR) == -1) {
1401 close(fd);
1402 return (0);
1403 }
1404 }
1405
1406 close(fd);
1407 return (1);
1408 }
1409 #endif /* USE_WTMPX */
1410
1411 /**
1412 ** Low-level libutil login() functions
1413 **/
1414
1415 #ifdef USE_LOGIN
1416 static int
1417 syslogin_perform_login(struct logininfo *li)
1418 {
1419 struct utmp *ut;
1420
1421 ut = xmalloc(sizeof(*ut));
1422 construct_utmp(li, ut);
1423 login(ut);
1424 free(ut);
1425
1426 return (1);
1427 }
1428
1429 static int
1430 syslogin_perform_logout(struct logininfo *li)
1431 {
1432 # ifdef HAVE_LOGOUT
1433 char line[UT_LINESIZE];
1434
1435 (void)line_stripname(line, li->line, sizeof(line));
1436
1437 if (!logout(line))
1438 logit("%s: logout() returned an error", __func__);
1439 # ifdef HAVE_LOGWTMP
1440 else
1441 logwtmp(line, "", "");
1442 # endif
1443 /* FIXME: (ATL - if the need arises) What to do if we have
1444 * login, but no logout? what if logout but no logwtmp? All
1445 * routines are in libutil so they should all be there,
1446 * but... */
1447 # endif
1448 return (1);
1449 }
1450
1451 int
1452 syslogin_write_entry(struct logininfo *li)
1453 {
1454 switch (li->type) {
1455 case LTYPE_LOGIN:
1456 return (syslogin_perform_login(li));
1457 case LTYPE_LOGOUT:
1458 return (syslogin_perform_logout(li));
1459 default:
1460 logit("%s: Invalid type field", __func__);
1461 return (0);
1462 }
1463 }
1464 #endif /* USE_LOGIN */
1465
1466 /* end of file log-syslogin.c */
1467
1468 /**
1469 ** Low-level lastlog functions
1470 **/
1471
1472 #ifdef USE_LASTLOG
1473
1474 #if !defined(LASTLOG_WRITE_PUTUTXLINE) || !defined(HAVE_GETLASTLOGXBYNAME)
1475 /* open the file (using filemode) and seek to the login entry */
1476 static int
1477 lastlog_openseek(struct logininfo *li, int *fd, int filemode)
1478 {
1479 off_t offset;
1480 char lastlog_file[1024];
1481 struct stat st;
1482
1483 if (stat(LASTLOG_FILE, &st) != 0) {
1484 logit("%s: Couldn't stat %s: %s", __func__,
1485 LASTLOG_FILE, strerror(errno));
1486 return (0);
1487 }
1488 if (S_ISDIR(st.st_mode)) {
1489 snprintf(lastlog_file, sizeof(lastlog_file), "%s/%s",
1490 LASTLOG_FILE, li->username);
1491 } else if (S_ISREG(st.st_mode)) {
1492 strlcpy(lastlog_file, LASTLOG_FILE, sizeof(lastlog_file));
1493 } else {
1494 logit("%s: %.100s is not a file or directory!", __func__,
1495 LASTLOG_FILE);
1496 return (0);
1497 }
1498
1499 *fd = open(lastlog_file, filemode, 0600);
1500 if (*fd < 0) {
1501 debug("%s: Couldn't open %s: %s", __func__,
1502 lastlog_file, strerror(errno));
1503 return (0);
1504 }
1505
1506 if (S_ISREG(st.st_mode)) {
1507 /* find this uid's offset in the lastlog file */
1508 offset = (off_t) ((u_long)li->uid * sizeof(struct lastlog));
1509
1510 if (lseek(*fd, offset, SEEK_SET) != offset) {
1511 logit("%s: %s->lseek(): %s", __func__,
1512 lastlog_file, strerror(errno));
1513 close(*fd);
1514 return (0);
1515 }
1516 }
1517
1518 return (1);
1519 }
1520 #endif /* !LASTLOG_WRITE_PUTUTXLINE || !HAVE_GETLASTLOGXBYNAME */
1521
1522 #ifdef LASTLOG_WRITE_PUTUTXLINE
1523 int
1524 lastlog_write_entry(struct logininfo *li)
1525 {
1526 switch(li->type) {
1527 case LTYPE_LOGIN:
1528 return 1; /* lastlog written by pututxline */
1529 default:
1530 logit("lastlog_write_entry: Invalid type field");
1531 return 0;
1532 }
1533 }
1534 #else /* LASTLOG_WRITE_PUTUTXLINE */
1535 int
1536 lastlog_write_entry(struct logininfo *li)
1537 {
1538 struct lastlog last;
1539 int fd;
1540
1541 switch(li->type) {
1542 case LTYPE_LOGIN:
1543 /* create our struct lastlog */
1544 memset(&last, '\0', sizeof(last));
1545 line_stripname(last.ll_line, li->line, sizeof(last.ll_line));
1546 strlcpy(last.ll_host, li->hostname,
1547 MIN_SIZEOF(last.ll_host, li->hostname));
1548 last.ll_time = li->tv_sec;
1549
1550 if (!lastlog_openseek(li, &fd, O_RDWR|O_CREAT))
1551 return (0);
1552
1553 /* write the entry */
1554 if (atomicio(vwrite, fd, &last, sizeof(last)) != sizeof(last)) {
1555 close(fd);
1556 logit("%s: Error writing to %s: %s", __func__,
1557 LASTLOG_FILE, strerror(errno));
1558 return (0);
1559 }
1560
1561 close(fd);
1562 return (1);
1563 default:
1564 logit("%s: Invalid type field", __func__);
1565 return (0);
1566 }
1567 }
1568 #endif /* LASTLOG_WRITE_PUTUTXLINE */
1569
1570 #ifdef HAVE_GETLASTLOGXBYNAME
1571 int
1572 lastlog_get_entry(struct logininfo *li)
1573 {
1574 struct lastlogx l, *ll;
1575
1576 if ((ll = getlastlogxbyname(li->username, &l)) == NULL) {
1577 memset(&l, '\0', sizeof(l));
1578 ll = &l;
1579 }
1580 line_fullname(li->line, ll->ll_line, sizeof(li->line));
1581 strlcpy(li->hostname, ll->ll_host,
1582 MIN_SIZEOF(li->hostname, ll->ll_host));
1583 li->tv_sec = ll->ll_tv.tv_sec;
1584 li->tv_usec = ll->ll_tv.tv_usec;
1585 return (1);
1586 }
1587 #else /* HAVE_GETLASTLOGXBYNAME */
1588 int
1589 lastlog_get_entry(struct logininfo *li)
1590 {
1591 struct lastlog last;
1592 int fd, ret;
1593
1594 if (!lastlog_openseek(li, &fd, O_RDONLY))
1595 return (0);
1596
1597 ret = atomicio(read, fd, &last, sizeof(last));
1598 close(fd);
1599
1600 switch (ret) {
1601 case 0:
1602 memset(&last, '\0', sizeof(last));
1603 /* FALLTHRU */
1604 case sizeof(last):
1605 line_fullname(li->line, last.ll_line, sizeof(li->line));
1606 strlcpy(li->hostname, last.ll_host,
1607 MIN_SIZEOF(li->hostname, last.ll_host));
1608 li->tv_sec = last.ll_time;
1609 return (1);
1610 case -1:
1611 error("%s: Error reading from %s: %s", __func__,
1612 LASTLOG_FILE, strerror(errno));
1613 return (0);
1614 default:
1615 error("%s: Error reading from %s: Expecting %d, got %d",
1616 __func__, LASTLOG_FILE, (int)sizeof(last), ret);
1617 return (0);
1618 }
1619
1620 /* NOTREACHED */
1621 return (0);
1622 }
1623 #endif /* HAVE_GETLASTLOGXBYNAME */
1624 #endif /* USE_LASTLOG */
1625
1626 #if defined(USE_UTMPX) && defined(HAVE_SETUTXDB) && \
1627 defined(UTXDB_LASTLOGIN) && defined(HAVE_GETUTXUSER)
1628 int
1629 utmpx_get_entry(struct logininfo *li)
1630 {
1631 struct utmpx *utx;
1632
1633 if (setutxdb(UTXDB_LASTLOGIN, NULL) != 0)
1634 return (0);
1635 utx = getutxuser(li->username);
1636 if (utx == NULL) {
1637 endutxent();
1638 return (0);
1639 }
1640
1641 line_fullname(li->line, utx->ut_line,
1642 MIN_SIZEOF(li->line, utx->ut_line));
1643 strlcpy(li->hostname, utx->ut_host,
1644 MIN_SIZEOF(li->hostname, utx->ut_host));
1645 li->tv_sec = utx->ut_tv.tv_sec;
1646 li->tv_usec = utx->ut_tv.tv_usec;
1647 endutxent();
1648 return (1);
1649 }
1650 #endif /* USE_UTMPX && HAVE_SETUTXDB && UTXDB_LASTLOGIN && HAVE_GETUTXUSER */
1651
1652 #ifdef USE_BTMP
1653 /*
1654 * Logs failed login attempts in _PATH_BTMP if that exists.
1655 * The most common login failure is to give password instead of username.
1656 * So the _PATH_BTMP file checked for the correct permission, so that
1657 * only root can read it.
1658 */
1659
1660 void
1661 record_failed_login(struct ssh *ssh, const char *username, const char *hostname,
1662 const char *ttyn)
1663 {
1664 int fd;
1665 struct utmp ut;
1666 struct sockaddr_storage from;
1667 socklen_t fromlen = sizeof(from);
1668 struct sockaddr_in *a4;
1669 struct sockaddr_in6 *a6;
1670 time_t t;
1671 struct stat fst;
1672
1673 if (geteuid() != 0)
1674 return;
1675 if ((fd = open(_PATH_BTMP, O_WRONLY | O_APPEND)) < 0) {
1676 debug("Unable to open the btmp file %s: %s", _PATH_BTMP,
1677 strerror(errno));
1678 return;
1679 }
1680 if (fstat(fd, &fst) < 0) {
1681 logit("%s: fstat of %s failed: %s", __func__, _PATH_BTMP,
1682 strerror(errno));
1683 goto out;
1684 }
1685 if((fst.st_mode & (S_IXGRP | S_IRWXO)) || (fst.st_uid != 0)){
1686 logit("Excess permission or bad ownership on file %s",
1687 _PATH_BTMP);
1688 goto out;
1689 }
1690
1691 memset(&ut, 0, sizeof(ut));
1692 /* strncpy because we don't necessarily want nul termination */
1693 strncpy(ut.ut_user, username, sizeof(ut.ut_user));
1694 strlcpy(ut.ut_line, "ssh:notty", sizeof(ut.ut_line));
1695
1696 time(&t);
1697 ut.ut_time = t; /* ut_time is not always a time_t */
1698 ut.ut_type = LOGIN_PROCESS;
1699 ut.ut_pid = getpid();
1700
1701 /* strncpy because we don't necessarily want nul termination */
1702 strncpy(ut.ut_host, hostname, sizeof(ut.ut_host));
1703
1704 if (ssh_packet_connection_is_on_socket(ssh) &&
1705 getpeername(ssh_packet_get_connection_in(ssh),
1706 (struct sockaddr *)&from, &fromlen) == 0) {
1707 ipv64_normalise_mapped(&from, &fromlen);
1708 if (from.ss_family == AF_INET) {
1709 a4 = (struct sockaddr_in *)&from;
1710 memcpy(&ut.ut_addr, &(a4->sin_addr),
1711 MIN_SIZEOF(ut.ut_addr, a4->sin_addr));
1712 }
1713 #ifdef HAVE_ADDR_V6_IN_UTMP
1714 if (from.ss_family == AF_INET6) {
1715 a6 = (struct sockaddr_in6 *)&from;
1716 memcpy(&ut.ut_addr_v6, &(a6->sin6_addr),
1717 MIN_SIZEOF(ut.ut_addr_v6, a6->sin6_addr));
1718 }
1719 #endif
1720 }
1721
1722 if (atomicio(vwrite, fd, &ut, sizeof(ut)) != sizeof(ut))
1723 error("Failed to write to %s: %s", _PATH_BTMP,
1724 strerror(errno));
1725
1726 out:
1727 close(fd);
1728 }
1729 #endif /* USE_BTMP */
DragonFly BSD