blob: b01fde091419009dfa520833423e8ad98ad07d4a [file] [log] [blame]
Damien Millera7a73ee2006-08-05 11:37:59 +10001/* $OpenBSD: sshlogin.c,v 1.24 2006/08/01 23:22:48 stevesk Exp $ */
Damien Millerd4a8b7e1999-10-27 13:42:43 +10002/*
Damien Miller95def091999-11-25 00:26:21 +11003 * Author: Tatu Ylonen <ylo@cs.hut.fi>
Damien Miller95def091999-11-25 00:26:21 +11004 * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
5 * All rights reserved
Damien Miller95def091999-11-25 00:26:21 +11006 * This file performs some of the things login(1) normally does. We cannot
7 * easily use something like login -p -h host -f user, because there are
8 * several different logins around, and it is hard to determined what kind of
9 * login the current system has. Also, we want to be able to execute commands
10 * on a tty.
Damien Miller4af51302000-04-16 11:18:38 +100011 *
Damien Millere4340be2000-09-16 13:29:08 +110012 * As far as I am concerned, the code I have written for this software
13 * can be used freely for any purpose. Any derived versions of this
14 * software must be clearly marked as such, and if the derived work is
15 * incompatible with the protocol description in the RFC file, it must be
16 * called by a name other than "ssh" or "Secure Shell".
17 *
18 * Copyright (c) 1999 Theo de Raadt. All rights reserved.
19 * Copyright (c) 1999 Markus Friedl. All rights reserved.
20 *
21 * Redistribution and use in source and binary forms, with or without
22 * modification, are permitted provided that the following conditions
23 * are met:
24 * 1. Redistributions of source code must retain the above copyright
25 * notice, this list of conditions and the following disclaimer.
26 * 2. Redistributions in binary form must reproduce the above copyright
27 * notice, this list of conditions and the following disclaimer in the
28 * documentation and/or other materials provided with the distribution.
29 *
30 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
31 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
32 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
33 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
34 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
35 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
36 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
37 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
38 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
39 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
Damien Miller95def091999-11-25 00:26:21 +110040 */
Damien Millerd4a8b7e1999-10-27 13:42:43 +100041
42#include "includes.h"
Damien Millerd4a8b7e1999-10-27 13:42:43 +100043
Damien Millere6b3b612006-07-24 14:01:23 +100044#include <sys/types.h>
Damien Miller8dbffe72006-08-05 11:02:17 +100045#include <sys/param.h>
Damien Millere6b3b612006-07-24 14:01:23 +100046
Darren Tucker39972492006-07-12 22:22:46 +100047#include <errno.h>
Damien Miller57cf6382006-07-10 21:13:46 +100048#include <fcntl.h>
Damien Millera7a73ee2006-08-05 11:37:59 +100049#include <stdio.h>
Damien Millere3476ed2006-07-24 14:13:33 +100050#include <string.h>
Damien Miller5598b4f2006-07-24 14:09:40 +100051#include <time.h>
Damien Millere6b3b612006-07-24 14:01:23 +100052#include <unistd.h>
Damien Miller57cf6382006-07-10 21:13:46 +100053
andre2ff7b5d2000-06-03 14:57:40 +000054#include "loginrec.h"
Darren Tucker09991742004-07-17 17:05:14 +100055#include "log.h"
56#include "buffer.h"
57#include "servconf.h"
58
59extern Buffer loginmsg;
60extern ServerOptions options;
Damien Miller2f6a0ad2000-05-31 11:20:11 +100061
Damien Miller5428f641999-11-25 11:54:57 +110062/*
63 * Returns the time when the user last logged in. Returns 0 if the
64 * information is not available. This must be called before record_login.
65 * The host the user logged in from will be returned in buf.
66 */
Damien Millera1690d02006-03-26 14:27:35 +110067time_t
Damien Miller95def091999-11-25 00:26:21 +110068get_last_login_time(uid_t uid, const char *logname,
Damien Millera1690d02006-03-26 14:27:35 +110069 char *buf, size_t bufsize)
Damien Millerd4a8b7e1999-10-27 13:42:43 +100070{
Ben Lindstrom78ffe262004-02-27 03:01:19 +000071 struct logininfo li;
Damien Millerd4a8b7e1999-10-27 13:42:43 +100072
Ben Lindstrom78ffe262004-02-27 03:01:19 +000073 login_get_lastlog(&li, uid);
74 strlcpy(buf, li.hostname, bufsize);
Damien Millera1690d02006-03-26 14:27:35 +110075 return (time_t)li.tv_sec;
Damien Millerd4a8b7e1999-10-27 13:42:43 +100076}
77
Damien Miller5428f641999-11-25 11:54:57 +110078/*
Darren Tucker09991742004-07-17 17:05:14 +100079 * Generate and store last login message. This must be done before
80 * login_login() is called and lastlog is updated.
81 */
Darren Tucker133b7572004-08-12 22:50:03 +100082static void
Darren Tucker09991742004-07-17 17:05:14 +100083store_lastlog_message(const char *user, uid_t uid)
84{
85 char *time_string, hostname[MAXHOSTNAMELEN] = "", buf[512];
86 time_t last_login_time;
87
88#ifndef NO_SSH_LASTLOG
89 if (!options.print_lastlog)
90 return;
91
92 last_login_time = get_last_login_time(uid, user, hostname,
93 sizeof(hostname));
94
95 if (last_login_time != 0) {
96 time_string = ctime(&last_login_time);
97 if (strchr(time_string, '\n'))
98 *strchr(time_string, '\n') = '\0';
99 if (strcmp(hostname, "") == 0)
100 snprintf(buf, sizeof(buf), "Last login: %s\r\n",
101 time_string);
102 else
103 snprintf(buf, sizeof(buf), "Last login: %s from %s\r\n",
104 time_string, hostname);
105 buffer_append(&loginmsg, buf, strlen(buf));
106 }
107#endif /* NO_SSH_LASTLOG */
108}
109
110/*
Damien Miller469954d2003-06-18 20:25:33 +1000111 * Records that the user has logged in. I wish these parts of operating
112 * systems were more standardized.
Damien Miller5428f641999-11-25 11:54:57 +1100113 */
Damien Miller4af51302000-04-16 11:18:38 +1000114void
Darren Tucker3f9fdc72004-06-22 12:56:01 +1000115record_login(pid_t pid, const char *tty, const char *user, uid_t uid,
Damien Miller90967402006-03-26 14:07:26 +1100116 const char *host, struct sockaddr *addr, socklen_t addrlen)
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000117{
Ben Lindstrom78ffe262004-02-27 03:01:19 +0000118 struct logininfo *li;
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000119
Darren Tucker09991742004-07-17 17:05:14 +1000120 /* save previous login details before writing new */
121 store_lastlog_message(user, uid);
122
Darren Tucker3f9fdc72004-06-22 12:56:01 +1000123 li = login_alloc_entry(pid, user, host, tty);
Ben Lindstrom78ffe262004-02-27 03:01:19 +0000124 login_set_addr(li, addr, addrlen);
125 login_login(li);
126 login_free_entry(li);
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000127}
Damien Miller95def091999-11-25 00:26:21 +1100128
Ben Lindstrom97c677d2001-05-08 20:33:05 +0000129#ifdef LOGIN_NEEDS_UTMPX
130void
131record_utmp_only(pid_t pid, const char *ttyname, const char *user,
Damien Millere3b60b52006-07-10 21:08:03 +1000132 const char *host, struct sockaddr *addr, socklen_t addrlen)
Ben Lindstrom97c677d2001-05-08 20:33:05 +0000133{
Ben Lindstrom78ffe262004-02-27 03:01:19 +0000134 struct logininfo *li;
Ben Lindstrom97c677d2001-05-08 20:33:05 +0000135
Ben Lindstrom78ffe262004-02-27 03:01:19 +0000136 li = login_alloc_entry(pid, user, host, ttyname);
137 login_set_addr(li, addr, addrlen);
138 login_utmp_only(li);
139 login_free_entry(li);
Ben Lindstrom97c677d2001-05-08 20:33:05 +0000140}
141#endif
142
Damien Miller95def091999-11-25 00:26:21 +1100143/* Records that the user has logged out. */
Damien Miller4af51302000-04-16 11:18:38 +1000144void
Darren Tucker3f9fdc72004-06-22 12:56:01 +1000145record_logout(pid_t pid, const char *tty, const char *user)
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000146{
Ben Lindstrom78ffe262004-02-27 03:01:19 +0000147 struct logininfo *li;
andre2ff7b5d2000-06-03 14:57:40 +0000148
Darren Tucker3f9fdc72004-06-22 12:56:01 +1000149 li = login_alloc_entry(pid, user, NULL, tty);
Ben Lindstrom78ffe262004-02-27 03:01:19 +0000150 login_logout(li);
151 login_free_entry(li);
Damien Millerd4a8b7e1999-10-27 13:42:43 +1000152}