1d4af9e69SDag-Erling Smørgrav /* $OpenBSD: sshlogin.c,v 1.26 2007/09/11 15:47:17 gilles Exp $ */ 21e8db6e2SBrian Feldman /* 31e8db6e2SBrian Feldman * Author: Tatu Ylonen <ylo@cs.hut.fi> 41e8db6e2SBrian Feldman * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland 51e8db6e2SBrian Feldman * All rights reserved 61e8db6e2SBrian Feldman * This file performs some of the things login(1) normally does. We cannot 71e8db6e2SBrian Feldman * easily use something like login -p -h host -f user, because there are 81e8db6e2SBrian Feldman * several different logins around, and it is hard to determined what kind of 91e8db6e2SBrian Feldman * login the current system has. Also, we want to be able to execute commands 101e8db6e2SBrian Feldman * on a tty. 111e8db6e2SBrian Feldman * 121e8db6e2SBrian Feldman * As far as I am concerned, the code I have written for this software 131e8db6e2SBrian Feldman * can be used freely for any purpose. Any derived versions of this 141e8db6e2SBrian Feldman * software must be clearly marked as such, and if the derived work is 151e8db6e2SBrian Feldman * incompatible with the protocol description in the RFC file, it must be 161e8db6e2SBrian Feldman * called by a name other than "ssh" or "Secure Shell". 171e8db6e2SBrian Feldman * 181e8db6e2SBrian Feldman * Copyright (c) 1999 Theo de Raadt. All rights reserved. 191e8db6e2SBrian Feldman * Copyright (c) 1999 Markus Friedl. All rights reserved. 201e8db6e2SBrian Feldman * 211e8db6e2SBrian Feldman * Redistribution and use in source and binary forms, with or without 221e8db6e2SBrian Feldman * modification, are permitted provided that the following conditions 231e8db6e2SBrian Feldman * are met: 241e8db6e2SBrian Feldman * 1. Redistributions of source code must retain the above copyright 251e8db6e2SBrian Feldman * notice, this list of conditions and the following disclaimer. 261e8db6e2SBrian Feldman * 2. Redistributions in binary form must reproduce the above copyright 271e8db6e2SBrian Feldman * notice, this list of conditions and the following disclaimer in the 281e8db6e2SBrian Feldman * documentation and/or other materials provided with the distribution. 291e8db6e2SBrian Feldman * 301e8db6e2SBrian Feldman * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR 311e8db6e2SBrian Feldman * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES 321e8db6e2SBrian Feldman * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. 331e8db6e2SBrian Feldman * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, 341e8db6e2SBrian Feldman * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT 351e8db6e2SBrian Feldman * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, 361e8db6e2SBrian Feldman * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY 371e8db6e2SBrian Feldman * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT 381e8db6e2SBrian Feldman * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF 391e8db6e2SBrian Feldman * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 401e8db6e2SBrian Feldman */ 411e8db6e2SBrian Feldman 421e8db6e2SBrian Feldman #include "includes.h" 43333ee039SDag-Erling Smørgrav 44333ee039SDag-Erling Smørgrav #include <sys/types.h> 45333ee039SDag-Erling Smørgrav #include <sys/param.h> 46333ee039SDag-Erling Smørgrav #include <sys/socket.h> 47333ee039SDag-Erling Smørgrav 48333ee039SDag-Erling Smørgrav #include <netinet/in.h> 49333ee039SDag-Erling Smørgrav 50333ee039SDag-Erling Smørgrav #include <errno.h> 51333ee039SDag-Erling Smørgrav #include <fcntl.h> 52333ee039SDag-Erling Smørgrav #include <stdarg.h> 53333ee039SDag-Erling Smørgrav #include <stdio.h> 54333ee039SDag-Erling Smørgrav #include <string.h> 55333ee039SDag-Erling Smørgrav #include <time.h> 56333ee039SDag-Erling Smørgrav #include <unistd.h> 571e8db6e2SBrian Feldman 58989dd127SDag-Erling Smørgrav #include "loginrec.h" 5921e764dfSDag-Erling Smørgrav #include "log.h" 6021e764dfSDag-Erling Smørgrav #include "buffer.h" 6121e764dfSDag-Erling Smørgrav #include "servconf.h" 6221e764dfSDag-Erling Smørgrav 6321e764dfSDag-Erling Smørgrav extern Buffer loginmsg; 6421e764dfSDag-Erling Smørgrav extern ServerOptions options; 651e8db6e2SBrian Feldman 661e8db6e2SBrian Feldman /* 671e8db6e2SBrian Feldman * Returns the time when the user last logged in. Returns 0 if the 681e8db6e2SBrian Feldman * information is not available. This must be called before record_login. 691e8db6e2SBrian Feldman * The host the user logged in from will be returned in buf. 701e8db6e2SBrian Feldman */ 71333ee039SDag-Erling Smørgrav time_t 721e8db6e2SBrian Feldman get_last_login_time(uid_t uid, const char *logname, 73333ee039SDag-Erling Smørgrav char *buf, size_t bufsize) 741e8db6e2SBrian Feldman { 75989dd127SDag-Erling Smørgrav struct logininfo li; 761e8db6e2SBrian Feldman 77989dd127SDag-Erling Smørgrav login_get_lastlog(&li, uid); 78989dd127SDag-Erling Smørgrav strlcpy(buf, li.hostname, bufsize); 79333ee039SDag-Erling Smørgrav return (time_t)li.tv_sec; 801e8db6e2SBrian Feldman } 811e8db6e2SBrian Feldman 821e8db6e2SBrian Feldman /* 8321e764dfSDag-Erling Smørgrav * Generate and store last login message. This must be done before 8421e764dfSDag-Erling Smørgrav * login_login() is called and lastlog is updated. 8521e764dfSDag-Erling Smørgrav */ 8621e764dfSDag-Erling Smørgrav static void 8721e764dfSDag-Erling Smørgrav store_lastlog_message(const char *user, uid_t uid) 8821e764dfSDag-Erling Smørgrav { 897aee6ffeSDag-Erling Smørgrav #ifndef NO_SSH_LASTLOG 9021e764dfSDag-Erling Smørgrav char *time_string, hostname[MAXHOSTNAMELEN] = "", buf[512]; 9121e764dfSDag-Erling Smørgrav time_t last_login_time; 9221e764dfSDag-Erling Smørgrav 9321e764dfSDag-Erling Smørgrav if (!options.print_lastlog) 9421e764dfSDag-Erling Smørgrav return; 9521e764dfSDag-Erling Smørgrav 967aee6ffeSDag-Erling Smørgrav # ifdef CUSTOM_SYS_AUTH_GET_LASTLOGIN_MSG 977aee6ffeSDag-Erling Smørgrav time_string = sys_auth_get_lastlogin_msg(user, uid); 987aee6ffeSDag-Erling Smørgrav if (time_string != NULL) { 997aee6ffeSDag-Erling Smørgrav buffer_append(&loginmsg, time_string, strlen(time_string)); 1007aee6ffeSDag-Erling Smørgrav xfree(time_string); 1017aee6ffeSDag-Erling Smørgrav } 1027aee6ffeSDag-Erling Smørgrav # else 10321e764dfSDag-Erling Smørgrav last_login_time = get_last_login_time(uid, user, hostname, 10421e764dfSDag-Erling Smørgrav sizeof(hostname)); 10521e764dfSDag-Erling Smørgrav 10621e764dfSDag-Erling Smørgrav if (last_login_time != 0) { 10721e764dfSDag-Erling Smørgrav time_string = ctime(&last_login_time); 108d4af9e69SDag-Erling Smørgrav time_string[strcspn(time_string, "\n")] = '\0'; 10921e764dfSDag-Erling Smørgrav if (strcmp(hostname, "") == 0) 11021e764dfSDag-Erling Smørgrav snprintf(buf, sizeof(buf), "Last login: %s\r\n", 11121e764dfSDag-Erling Smørgrav time_string); 11221e764dfSDag-Erling Smørgrav else 11321e764dfSDag-Erling Smørgrav snprintf(buf, sizeof(buf), "Last login: %s from %s\r\n", 11421e764dfSDag-Erling Smørgrav time_string, hostname); 11521e764dfSDag-Erling Smørgrav buffer_append(&loginmsg, buf, strlen(buf)); 11621e764dfSDag-Erling Smørgrav } 1177aee6ffeSDag-Erling Smørgrav # endif /* CUSTOM_SYS_AUTH_GET_LASTLOGIN_MSG */ 11821e764dfSDag-Erling Smørgrav #endif /* NO_SSH_LASTLOG */ 11921e764dfSDag-Erling Smørgrav } 12021e764dfSDag-Erling Smørgrav 12121e764dfSDag-Erling Smørgrav /* 122cf2b5f3bSDag-Erling Smørgrav * Records that the user has logged in. I wish these parts of operating 123cf2b5f3bSDag-Erling Smørgrav * systems were more standardized. 1241e8db6e2SBrian Feldman */ 1251e8db6e2SBrian Feldman void 12621e764dfSDag-Erling Smørgrav record_login(pid_t pid, const char *tty, const char *user, uid_t uid, 1277ac32603SHajimu UMEMOTO const char *host, struct sockaddr *addr, socklen_t addrlen) 1281e8db6e2SBrian Feldman { 129989dd127SDag-Erling Smørgrav struct logininfo *li; 1301e8db6e2SBrian Feldman 13121e764dfSDag-Erling Smørgrav /* save previous login details before writing new */ 13221e764dfSDag-Erling Smørgrav store_lastlog_message(user, uid); 13321e764dfSDag-Erling Smørgrav 13421e764dfSDag-Erling Smørgrav li = login_alloc_entry(pid, user, host, tty); 1357ac32603SHajimu UMEMOTO login_set_addr(li, addr, addrlen); 136989dd127SDag-Erling Smørgrav login_login(li); 137989dd127SDag-Erling Smørgrav login_free_entry(li); 1381e8db6e2SBrian Feldman } 139989dd127SDag-Erling Smørgrav 140989dd127SDag-Erling Smørgrav #ifdef LOGIN_NEEDS_UTMPX 141989dd127SDag-Erling Smørgrav void 142989dd127SDag-Erling Smørgrav record_utmp_only(pid_t pid, const char *ttyname, const char *user, 1437ac32603SHajimu UMEMOTO const char *host, struct sockaddr *addr, socklen_t addrlen) 144989dd127SDag-Erling Smørgrav { 145989dd127SDag-Erling Smørgrav struct logininfo *li; 146989dd127SDag-Erling Smørgrav 147989dd127SDag-Erling Smørgrav li = login_alloc_entry(pid, user, host, ttyname); 1487ac32603SHajimu UMEMOTO login_set_addr(li, addr, addrlen); 149989dd127SDag-Erling Smørgrav login_utmp_only(li); 150989dd127SDag-Erling Smørgrav login_free_entry(li); 1511e8db6e2SBrian Feldman } 152989dd127SDag-Erling Smørgrav #endif 1531e8db6e2SBrian Feldman 1541e8db6e2SBrian Feldman /* Records that the user has logged out. */ 1551e8db6e2SBrian Feldman void 15621e764dfSDag-Erling Smørgrav record_logout(pid_t pid, const char *tty, const char *user) 1571e8db6e2SBrian Feldman { 158989dd127SDag-Erling Smørgrav struct logininfo *li; 159989dd127SDag-Erling Smørgrav 16021e764dfSDag-Erling Smørgrav li = login_alloc_entry(pid, user, NULL, tty); 161989dd127SDag-Erling Smørgrav login_logout(li); 162989dd127SDag-Erling Smørgrav login_free_entry(li); 1631e8db6e2SBrian Feldman } 164