/modules/pam_tally2/pam_tally2.c

https://github.com/wichert/linux-pam · C · 1060 lines · 793 code · 160 blank · 107 comment · 241 complexity · dbc938e022abe52a01a7abf6601bb026 MD5 · raw file 

    

  1. /*
    2. 

  2.  * pam_tally2.c
    3. 

  3.  *
    4. 

  4.  */
    5. 

  5. 

  6. 

  7. /* By Tim Baverstock <warwick@mmm.co.uk>, Multi Media Machine Ltd.
    8. 

  8.  * 5 March 1997
    9. 

  9.  *
    10. 

  10.  * Stuff stolen from pam_rootok and pam_listfile
    11. 

  11.  *
    12. 

  12.  * Changes by Tomas Mraz <tmraz@redhat.com> 5 January 2005, 26 January 2006
    13. 

  13.  * Audit option added for Tomas patch by Sebastien Tricaud <toady@gscore.org> 13 January 2005
    14. 

  14.  * Portions Copyright 2006, Red Hat, Inc.
    15. 

  15.  * Portions Copyright 1989 - 1993, Julianne Frances Haugh
    16. 

  16.  * All rights reserved.
    17. 

  17.  *
    18. 

  18.  * Redistribution and use in source and binary forms, with or without
    19. 

  19.  * modification, are permitted provided that the following conditions
    20. 

  20.  * are met:
    21. 

  21.  * 1. Redistributions of source code must retain the above copyright
    22. 

  22.  *    notice, this list of conditions and the following disclaimer.
    23. 

  23.  * 2. Redistributions in binary form must reproduce the above copyright
    24. 

  24.  *    notice, this list of conditions and the following disclaimer in the
    25. 

  25.  *    documentation and/or other materials provided with the distribution.
    26. 

  26.  * 3. Neither the name of Julianne F. Haugh nor the names of its contributors
    27. 

  27.  *    may be used to endorse or promote products derived from this software
    28. 

  28.  *    without specific prior written permission.
    29. 

  29.  *
    30. 

  30.  * THIS SOFTWARE IS PROVIDED BY JULIE HAUGH AND CONTRIBUTORS ``AS IS'' AND
    31. 

  31.  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
    32. 

  32.  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
    33. 

  33.  * ARE DISCLAIMED. IN NO EVENT SHALL JULIE HAUGH OR CONTRIBUTORS BE LIABLE
    34. 

  34.  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
    35. 

  35.  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
    36. 

  36.  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
    37. 

  37.  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
    38. 

  38.  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
    39. 

  39.  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
    40. 

  40.  * SUCH DAMAGE.
    41. 

  41.  */
    42. 

  42. 

  43. #include "config.h"
    44. 

  44. 

  45. #if defined(MAIN) && defined(MEMORY_DEBUG)
    46. 

  46. # undef exit
    47. 

  47. #endif /* defined(MAIN) && defined(MEMORY_DEBUG) */
    48. 

  48. 

  49. #include <stdio.h>
    50. 

  50. #include <string.h>
    51. 

  51. #include <unistd.h>
    52. 

  52. #include <stdarg.h>
    53. 

  53. #include <stdlib.h>
    54. 

  54. #include <syslog.h>
    55. 

  55. #include <pwd.h>
    56. 

  56. #include <time.h>
    57. 

  57. #include <stdint.h>
    58. 

  58. #include <errno.h>
    59. 

  59. #ifdef HAVE_LIBAUDIT
    60. 

  60. #include <libaudit.h>
    61. 

  61. #endif
    62. 

  62. 

  63. #include <sys/types.h>
    64. 

  64. #include <sys/stat.h>
    65. 

  65. #include <sys/param.h>
    66. 

  66. #include <fcntl.h>
    67. 

  67. #include <unistd.h>
    68. 

  68. #include <signal.h>
    69. 

  69. #include "tallylog.h"
    70. 

  70. 

  71. #ifndef TRUE
    72. 

  72. #define TRUE  1L
    73. 

  73. #define FALSE 0L
    74. 

  74. #endif
    75. 

  75. 

  76. #ifndef HAVE_FSEEKO
    77. 

  77. #define fseeko fseek
    78. 

  78. #endif
    79. 

  79. 

  80. /*
    81. 

  81.  * here, we make a definition for the externally accessible function
    82. 

  82.  * in this file (this definition is required for static a module
    83. 

  83.  * but strongly encouraged generally) it is used to instruct the
    84. 

  84.  * modules include file to define the function prototypes.
    85. 

  85.  */
    86. 

  86. 

  87. #ifndef MAIN
    88. 

  88. #define PAM_SM_AUTH
    89. 

  89. #define PAM_SM_ACCOUNT
    90. 

  90. /* #define PAM_SM_SESSION  */
    91. 

  91. /* #define PAM_SM_PASSWORD */
    92. 

  92. 

  93. #include <security/pam_ext.h>
    94. 

  94. #endif
    95. 

  95. #include <security/pam_modutil.h>
    96. 

  96. #include <security/pam_modules.h>
    97. 

  97. 

  98. /*---------------------------------------------------------------------*/
    99. 

  99. 

  100. #define DEFAULT_LOGFILE "/var/log/tallylog"
    101. 

  101. #define MODULE_NAME     "pam_tally2"
    102. 

  102. 

  103. #define tally_t    uint16_t
    104. 

  104. #define TALLY_HI   ((tally_t)~0L)
    105. 

  105. 

  106. struct tally_options {
    107. 

  107.     const char *filename;
    108. 

  108.     tally_t deny;
    109. 

  109.     long lock_time;
    110. 

  110.     long unlock_time;
    111. 

  111.     long root_unlock_time;
    112. 

  112.     unsigned int ctrl;
    113. 

  113. };
    114. 

  114. 

  115. #define PHASE_UNKNOWN 0
    116. 

  116. #define PHASE_AUTH    1
    117. 

  117. #define PHASE_ACCOUNT 2
    118. 

  118. #define PHASE_SESSION 3
    119. 

  119. 

  120. #define OPT_MAGIC_ROOT			  01
    121. 

  121. #define OPT_FAIL_ON_ERROR		  02
    122. 

  122. #define OPT_DENY_ROOT			  04
    123. 

  123. #define OPT_QUIET                        040
    124. 

  124. #define OPT_AUDIT                       0100
    125. 

  125. #define OPT_NOLOGNOTICE                 0400
    126. 

  126. #define OPT_SERIALIZE                  01000
    127. 

  127. 

  128. #define MAX_LOCK_WAITING_TIME 10
    129. 

  129. 

  130. /*---------------------------------------------------------------------*/
    131. 

  131. 

  132. /* some syslogging */
    133. 

  133. 

  134. #ifdef MAIN
    135. 

  135. #define pam_syslog tally_log
    136. 

  136. static void
    137. 

  137. tally_log (const pam_handle_t *pamh UNUSED, int priority UNUSED,
    138. 

  138. 	    const char *fmt, ...)
    139. 

  139. {
    140. 

  140. 	va_list args;
    141. 

  141. 

  142. 	va_start(args, fmt);
    143. 

  143. 	fprintf(stderr, "%s: ", MODULE_NAME);
    144. 

  144. 	vfprintf(stderr, fmt, args);
    145. 

  145. 	fprintf(stderr,"\n");
    146. 

  146. 	va_end(args);
    147. 

  147. }
    148. 

  148. 

  149. #define pam_modutil_getpwnam(pamh, user) getpwnam(user)
    150. 

  150. #endif
    151. 

  151. 

  152. /*---------------------------------------------------------------------*/
    153. 

  153. 

  154. /* --- Support function: parse arguments --- */
    155. 

  155. 

  156. #ifndef MAIN
    157. 

  157. 

  158. static void
    159. 

  159. log_phase_no_auth(pam_handle_t *pamh, int phase, const char *argv)
    160. 

  160. {
    161. 

  161.     if ( phase != PHASE_AUTH ) {
    162. 

  162. 	pam_syslog(pamh, LOG_ERR,
    163. 

  163. 		   "option %s allowed in auth phase only", argv);
    164. 

  164.     }
    165. 

  165. }
    166. 

  166. 

  167. static int
    168. 

  168. tally_parse_args(pam_handle_t *pamh, struct tally_options *opts,
    169. 

  169. 		    int phase, int argc, const char **argv)
    170. 

  170. {
    171. 

  171.     memset(opts, 0, sizeof(*opts));
    172. 

  172.     opts->filename = DEFAULT_LOGFILE;
    173. 

  173.     opts->ctrl = OPT_FAIL_ON_ERROR;
    174. 

  174.     opts->root_unlock_time = -1;
    175. 

  175. 

  176.     for ( ; argc-- > 0; ++argv ) {
    177. 

  177. 

  178.       if ( ! strncmp( *argv, "file=", 5 ) ) {
    179. 

  179. 	const char *from = *argv + 5;
    180. 

  180.         if ( *from!='/' ) {
    181. 

  181.           pam_syslog(pamh, LOG_ERR,
    182. 

  182. 		     "filename not /rooted; %s", *argv);
    183. 

  183.           return PAM_AUTH_ERR;
    184. 

  184.         }
    185. 

  185.         opts->filename = from;
    186. 

  186.       }
    187. 

  187.       else if ( ! strcmp( *argv, "onerr=fail" ) ) {
    188. 

  188.         opts->ctrl |= OPT_FAIL_ON_ERROR;
    189. 

  189.       }
    190. 

  190.       else if ( ! strcmp( *argv, "onerr=succeed" ) ) {
    191. 

  191.         opts->ctrl &= ~OPT_FAIL_ON_ERROR;
    192. 

  192.       }
    193. 

  193.       else if ( ! strcmp( *argv, "magic_root" ) ) {
    194. 

  194.         opts->ctrl |= OPT_MAGIC_ROOT;
    195. 

  195.       }
    196. 

  196.       else if ( ! strcmp( *argv, "serialize" ) ) {
    197. 

  197.         opts->ctrl |= OPT_SERIALIZE;
    198. 

  198.       }
    199. 

  199.       else if ( ! strcmp( *argv, "even_deny_root_account" ) ||
    200. 

  200.                 ! strcmp( *argv, "even_deny_root" ) ) {
    201. 

  201. 	log_phase_no_auth(pamh, phase, *argv);
    202. 

  202.         opts->ctrl |= OPT_DENY_ROOT;
    203. 

  203.       }
    204. 

  204.       else if ( ! strncmp( *argv, "deny=", 5 ) ) {
    205. 

  205. 	log_phase_no_auth(pamh, phase, *argv);
    206. 

  206.         if ( sscanf((*argv)+5,"%hu",&opts->deny) != 1 ) {
    207. 

  207.           pam_syslog(pamh, LOG_ERR, "bad number supplied: %s", *argv);
    208. 

  208.           return PAM_AUTH_ERR;
    209. 

  209.         }
    210. 

  210.       }
    211. 

  211.       else if ( ! strncmp( *argv, "lock_time=", 10 ) ) {
    212. 

  212. 	log_phase_no_auth(pamh, phase, *argv);
    213. 

  213.         if ( sscanf((*argv)+10,"%ld",&opts->lock_time) != 1 ) {
    214. 

  214.           pam_syslog(pamh, LOG_ERR, "bad number supplied: %s", *argv);
    215. 

  215.           return PAM_AUTH_ERR;
    216. 

  216.         }
    217. 

  217.       }
    218. 

  218.       else if ( ! strncmp( *argv, "unlock_time=", 12 ) ) {
    219. 

  219. 	log_phase_no_auth(pamh, phase, *argv);
    220. 

  220.         if ( sscanf((*argv)+12,"%ld",&opts->unlock_time) != 1 ) {
    221. 

  221.           pam_syslog(pamh, LOG_ERR, "bad number supplied: %s", *argv);
    222. 

  222.           return PAM_AUTH_ERR;
    223. 

  223.         }
    224. 

  224.       }
    225. 

  225.       else if ( ! strncmp( *argv, "root_unlock_time=", 17 ) ) {
    226. 

  226. 	log_phase_no_auth(pamh, phase, *argv);
    227. 

  227.         if ( sscanf((*argv)+17,"%ld",&opts->root_unlock_time) != 1 ) {
    228. 

  228.           pam_syslog(pamh, LOG_ERR, "bad number supplied: %s", *argv);
    229. 

  229.           return PAM_AUTH_ERR;
    230. 

  230.         }
    231. 

  231.         opts->ctrl |= OPT_DENY_ROOT; /* even_deny_root implied */
    232. 

  232.       }
    233. 

  233.       else if ( ! strcmp( *argv, "quiet" ) ||
    234. 

  234. 		! strcmp ( *argv, "silent")) {
    235. 

  235.         opts->ctrl |= OPT_QUIET;
    236. 

  236.       }
    237. 

  237.       else if ( ! strcmp ( *argv, "no_log_info") ) {
    238. 

  238. 	opts->ctrl |= OPT_NOLOGNOTICE;
    239. 

  239.       }
    240. 

  240.       else if ( ! strcmp ( *argv, "audit") ) {
    241. 

  241. 	opts->ctrl |= OPT_AUDIT;
    242. 

  242.       }
    243. 

  243.       else {
    244. 

  244.         pam_syslog(pamh, LOG_ERR, "unknown option: %s", *argv);
    245. 

  245.       }
    246. 

  246.     }
    247. 

  247. 

  248.     if (opts->root_unlock_time == -1)
    249. 

  249. 	opts->root_unlock_time = opts->unlock_time;
    250. 

  250. 

  251.     return PAM_SUCCESS;
    252. 

  252. }
    253. 

  253. 

  254. #endif   /* #ifndef MAIN */
    255. 

  255. 

  256. /*---------------------------------------------------------------------*/
    257. 

  257. 

  258. /* --- Support function: get uid (and optionally username) from PAM or
    259. 

  259.         cline_user --- */
    260. 

  260. 

  261. #ifdef MAIN
    262. 

  262. static char *cline_user=0;  /* cline_user is used in the administration prog */
    263. 

  263. #endif
    264. 

  264. 

  265. static int
    266. 

  266. pam_get_uid(pam_handle_t *pamh, uid_t *uid, const char **userp, struct tally_options *opts)
    267. 

  267. {
    268. 

  268.     const char *user = NULL;
    269. 

  269.     struct passwd *pw;
    270. 

  270. 

  271. #ifdef MAIN
    272. 

  272.     user = cline_user;
    273. 

  273. #else
    274. 

  274.     if ((pam_get_user( pamh, &user, NULL )) != PAM_SUCCESS) {
    275. 

  275.       user = NULL;
    276. 

  276.     }
    277. 

  277. #endif
    278. 

  278. 

  279.     if ( !user || !*user ) {
    280. 

  280.       pam_syslog(pamh, LOG_ERR, "pam_get_uid; user?");
    281. 

  281.       return PAM_AUTH_ERR;
    282. 

  282.     }
    283. 

  283. 

  284.     if ( ! ( pw = pam_modutil_getpwnam( pamh, user ) ) ) {
    285. 

  285.       opts->ctrl & OPT_AUDIT ?
    286. 

  286. 	      pam_syslog(pamh, LOG_ERR, "pam_get_uid; no such user %s", user) :
    287. 

  287. 	      pam_syslog(pamh, LOG_ERR, "pam_get_uid; no such user");
    288. 

  288.       return PAM_USER_UNKNOWN;
    289. 

  289.     }
    290. 

  290. 

  291.     if ( uid )   *uid   = pw->pw_uid;
    292. 

  292.     if ( userp ) *userp = user;
    293. 

  293.     return PAM_SUCCESS;
    294. 

  294. }
    295. 

  295. 

  296. /*---------------------------------------------------------------------*/
    297. 

  297. 

  298. /* --- Support functions: set/get tally data --- */
    299. 

  299. 

  300. #ifndef MAIN
    301. 

  301. 

  302. struct tally_data {
    303. 

  303.     time_t time;
    304. 

  304.     int    tfile;
    305. 

  305. };
    306. 

  306. 

  307. static void
    308. 

  308. _cleanup(pam_handle_t *pamh UNUSED, void *void_data, int error_status UNUSED)
    309. 

  309. {
    310. 

  310.     struct tally_data *data = void_data;
    311. 

  311.     if (data->tfile != -1)
    312. 

  312. 	close(data->tfile);
    313. 

  313.     free(data);
    314. 

  314. }
    315. 

  315. 

  316. static void
    317. 

  317. tally_set_data( pam_handle_t *pamh, time_t oldtime, int tfile )
    318. 

  318. {
    319. 

  319.     struct tally_data *data;
    320. 

  320. 

  321.     if ( (data=malloc(sizeof(*data))) != NULL ) {
    322. 

  322.         data->time = oldtime;
    323. 

  323.         data->tfile = tfile;
    324. 

  324.         pam_set_data(pamh, MODULE_NAME, (void *)data, _cleanup);
    325. 

  325.     }
    326. 

  326. }
    327. 

  327. 

  328. static int
    329. 

  329. tally_get_data( pam_handle_t *pamh, time_t *oldtime, int *tfile )
    330. 

  330. {
    331. 

  331.     int rv;
    332. 

  332.     const void *void_data;
    333. 

  333.     const struct tally_data *data;
    334. 

  334. 

  335.     rv = pam_get_data(pamh, MODULE_NAME, &void_data);
    336. 

  336.     if ( rv == PAM_SUCCESS && void_data != NULL && oldtime != NULL ) {
    337. 

  337.       data = void_data;
    338. 

  338.       *oldtime = data->time;
    339. 

  339.       *tfile = data->tfile;
    340. 

  340.     }
    341. 

  341.     else {
    342. 

  342.       rv = -1;
    343. 

  343.       *oldtime = 0;
    344. 

  344.     }
    345. 

  345.     return rv;
    346. 

  346. }
    347. 

  347. #endif   /* #ifndef MAIN */
    348. 

  348. 

  349. /*---------------------------------------------------------------------*/
    350. 

  350. 

  351. /* --- Support function: open/create tallyfile and return tally for uid --- */
    352. 

  352. 

  353. /* If on entry tallyfile doesn't exist, creation is attempted. */
    354. 

  354. 

  355. static void
    356. 

  356. alarm_handler(int sig UNUSED)
    357. 

  357. {   /* we just need to ignore it */
    358. 

  358. }
    359. 

  359. 

  360. static int
    361. 

  361. get_tally(pam_handle_t *pamh, uid_t uid, const char *filename,
    362. 

  362.         int *tfile, struct tallylog *tally, unsigned int ctrl)
    363. 

  363. {
    364. 

  364.     struct stat fileinfo;
    365. 

  365.     int lstat_ret;
    366. 

  366.     void *void_tally = tally;
    367. 

  367.     int preopened = 0;
    368. 

  368. 

  369.     if (*tfile != -1) {
    370. 

  370. 	preopened = 1;
    371. 

  371. 	goto skip_open;
    372. 

  372.     }
    373. 

  373. 

  374.     lstat_ret = lstat(filename, &fileinfo);
    375. 

  375.     if (lstat_ret) {
    376. 

  376.       *tfile=open(filename, O_APPEND|O_CREAT, S_IRUSR|S_IWUSR);
    377. 

  377.       /* Create file, or append-open in pathological case. */
    378. 

  378.       if (*tfile == -1) {
    379. 

  379. #ifndef MAIN
    380. 

  380.         if (errno == EACCES) {
    381. 

  381. 	    return PAM_IGNORE; /* called with insufficient access rights */
    382. 

  382. 	}
    383. 

  383. #endif
    384. 

  384.         pam_syslog(pamh, LOG_ALERT, "Couldn't create %s: %m", filename);
    385. 

  385.         return PAM_AUTH_ERR;
    386. 

  386.       }
    387. 

  387.       lstat_ret = fstat(*tfile, &fileinfo);
    388. 

  388.       close(*tfile);
    389. 

  389.     }
    390. 

  390. 

  391.     *tfile = -1;
    392. 

  392. 

  393.     if ( lstat_ret ) {
    394. 

  394.       pam_syslog(pamh, LOG_ALERT, "Couldn't stat %s", filename);
    395. 

  395.       return PAM_AUTH_ERR;
    396. 

  396.     }
    397. 

  397. 

  398.     if ((fileinfo.st_mode & S_IWOTH) || !S_ISREG(fileinfo.st_mode)) {
    399. 

  399.       /* If the file is world writable or is not a
    400. 

  400.          normal file, return error */
    401. 

  401.       pam_syslog(pamh, LOG_ALERT,
    402. 

  402.                "%s is either world writable or not a normal file",
    403. 

  403.                filename);
    404. 

  404.       return PAM_AUTH_ERR;
    405. 

  405.     }
    406. 

  406. 

  407.     if ((*tfile = open(filename, O_RDWR)) == -1) {
    408. 

  408. #ifndef MAIN
    409. 

  409.       if (errno == EACCES) /* called with insufficient access rights */
    410. 

  410. 	  return PAM_IGNORE;
    411. 

  411. #endif
    412. 

  412.       pam_syslog(pamh, LOG_ALERT, "Error opening %s for update: %m", filename);
    413. 

  413. 

  414.       return PAM_AUTH_ERR;
    415. 

  415.     }
    416. 

  416. 

  417. skip_open:
    418. 

  418.     if (lseek(*tfile, (off_t)uid*(off_t)sizeof(*tally), SEEK_SET) == (off_t)-1) {
    419. 

  419.         pam_syslog(pamh, LOG_ALERT, "lseek failed for %s: %m", filename);
    420. 

  420.         if (!preopened) {
    421. 

  421. 	    close(*tfile);
    422. 

  422.             *tfile = -1;
    423. 

  423.         }
    424. 

  424.         return PAM_AUTH_ERR;
    425. 

  425.     }
    426. 

  426. 

  427.     if (!preopened && (ctrl & OPT_SERIALIZE)) {
    428. 

  428. 	/* this code is not thread safe as it uses fcntl locks and alarm()
    429. 

  429. 	   so never use serialize with multithreaded services */
    430. 

  430. 	struct sigaction newsa, oldsa;
    431. 

  431. 	unsigned int oldalarm;
    432. 

  432. 	int rv;
    433. 

  433. 

  434. 	memset(&newsa, '\0', sizeof(newsa));
    435. 

  435. 	newsa.sa_handler = alarm_handler;
    436. 

  436. 	sigaction(SIGALRM, &newsa, &oldsa);
    437. 

  437. 	oldalarm = alarm(MAX_LOCK_WAITING_TIME);
    438. 

  438. 

  439. 	rv = lockf(*tfile, F_LOCK, sizeof(*tally));
    440. 

  440. 	/* lock failure is not fatal, we attempt to read the tally anyway */
    441. 

  441. 

  442. 	/* reinstate the eventual old alarm handler */
    443. 

  443. 	if (rv == -1 && errno == EINTR) {
    444. 

  444. 	    if (oldalarm > MAX_LOCK_WAITING_TIME) {
    445. 

  445. 		oldalarm -= MAX_LOCK_WAITING_TIME;
    446. 

  446. 	    } else if (oldalarm > 0) {
    447. 

  447. 		oldalarm = 1;
    448. 

  448. 	    }
    449. 

  449. 	}
    450. 

  450. 	sigaction(SIGALRM, &oldsa, NULL);
    451. 

  451. 	alarm(oldalarm);
    452. 

  452.     }
    453. 

  453. 

  454.     if (fileinfo.st_size < (off_t)(uid+1)*(off_t)sizeof(*tally)) {
    455. 

  455. 	memset(tally, 0, sizeof(*tally));
    456. 

  456.     } else if (pam_modutil_read(*tfile, void_tally, sizeof(*tally)) != sizeof(*tally)) {
    457. 

  457. 	memset(tally, 0, sizeof(*tally));
    458. 

  458. 	/* Shouldn't happen */
    459. 

  459.     }
    460. 

  460. 

  461.     tally->fail_line[sizeof(tally->fail_line)-1] = '\0';
    462. 

  462. 

  463.     return PAM_SUCCESS;
    464. 

  464. }
    465. 

  465. 

  466. /*---------------------------------------------------------------------*/
    467. 

  467. 

  468. /* --- Support function: update tallyfile with tally!=TALLY_HI --- */
    469. 

  469. 

  470. static int
    471. 

  471. set_tally(pam_handle_t *pamh, uid_t uid,
    472. 

  472. 	  const char *filename, int *tfile, struct tallylog *tally)
    473. 

  473. {
    474. 

  474.     void *void_tally = tally;
    475. 

  475.     if (tally->fail_cnt != TALLY_HI) {
    476. 

  476.         if (lseek(*tfile, (off_t)uid * sizeof(*tally), SEEK_SET) == (off_t)-1) {
    477. 

  477.                   pam_syslog(pamh, LOG_ALERT, "lseek failed for %s: %m", filename);
    478. 

  478.                             return PAM_AUTH_ERR;
    479. 

  479.         }
    480. 

  480.         if (pam_modutil_write(*tfile, void_tally, sizeof(*tally)) != sizeof(*tally)) {
    481. 

  481. 	    pam_syslog(pamh, LOG_ALERT, "update (write) failed for %s: %m", filename);
    482. 

  482. 	    return PAM_AUTH_ERR;
    483. 

  483.         }
    484. 

  484.     }
    485. 

  485. 

  486.     if (fsync(*tfile)) {
    487. 

  487.       pam_syslog(pamh, LOG_ALERT, "update (fsync) failed for %s: %m", filename);
    488. 

  488.       return PAM_AUTH_ERR;
    489. 

  489.     }
    490. 

  490.     return PAM_SUCCESS;
    491. 

  491. }
    492. 

  492. 

  493. /*---------------------------------------------------------------------*/
    494. 

  494. 

  495. /* --- PAM bits --- */
    496. 

  496. 

  497. #ifndef MAIN
    498. 

  498. 

  499. #define RETURN_ERROR(i) return ((opts->ctrl & OPT_FAIL_ON_ERROR)?(i):(PAM_SUCCESS))
    500. 

  500. 

  501. /*---------------------------------------------------------------------*/
    502. 

  502. 

  503. static int
    504. 

  504. tally_check (tally_t oldcnt, time_t oldtime, pam_handle_t *pamh, uid_t uid,
    505. 

  505.              const char *user, struct tally_options *opts,
    506. 

  506. 	     struct tallylog *tally)
    507. 

  507. {
    508. 

  508.     int rv = PAM_SUCCESS;
    509. 

  509. #ifdef HAVE_LIBAUDIT
    510. 

  510.     char buf[64];
    511. 

  511.     int audit_fd = -1;
    512. 

  512.     const void *rhost = NULL, *tty = NULL;
    513. 

  513. #endif
    514. 

  514. 

  515.     if ((opts->ctrl & OPT_MAGIC_ROOT) && getuid() == 0) {
    516. 

  516.       return PAM_SUCCESS;
    517. 

  517.     }
    518. 

  518.     /* magic_root skips tally check */
    519. 

  519. #ifdef HAVE_LIBAUDIT
    520. 

  520.     audit_fd = audit_open();
    521. 

  521.     /* If there is an error & audit support is in the kernel report error */
    522. 

  522.     if ((audit_fd < 0) && !(errno == EINVAL || errno == EPROTONOSUPPORT ||
    523. 

  523.                             errno == EAFNOSUPPORT))
    524. 

  524.          return PAM_SYSTEM_ERR;
    525. 

  525.     (void)pam_get_item(pamh, PAM_TTY, &tty);
    526. 

  526.     (void)pam_get_item(pamh, PAM_RHOST, &rhost);
    527. 

  527. #endif
    528. 

  528.     if (opts->deny != 0 &&                        /* deny==0 means no deny        */
    529. 

  529.         tally->fail_cnt > opts->deny &&           /* tally>deny means exceeded    */
    530. 

  530.         ((opts->ctrl & OPT_DENY_ROOT) || uid)) {  /* even_deny stops uid check    */
    531. 

  531. #ifdef HAVE_LIBAUDIT
    532. 

  532.         if (tally->fail_cnt == opts->deny+1) {
    533. 

  533.             /* First say that max number was hit. */
    534. 

  534.             snprintf(buf, sizeof(buf), "pam_tally2 uid=%u ", uid);
    535. 

  535.             audit_log_user_message(audit_fd, AUDIT_ANOM_LOGIN_FAILURES, buf,
    536. 

  536.                                    rhost, NULL, tty, 1);
    537. 

  537.         }
    538. 

  538. #endif
    539. 

  539.         if (uid) {
    540. 

  540.             /* Unlock time check */
    541. 

  541.             if (opts->unlock_time && oldtime) {
    542. 

  542.                 if (opts->unlock_time + oldtime <= time(NULL)) {
    543. 

  543.                     /* ignore deny check after unlock_time elapsed */
    544. 

  544. #ifdef HAVE_LIBAUDIT
    545. 

  545.                     snprintf(buf, sizeof(buf), "pam_tally2 uid=%u ", uid);
    546. 

  546.                     audit_log_user_message(audit_fd, AUDIT_RESP_ACCT_UNLOCK_TIMED, buf,
    547. 

  547.                                    rhost, NULL, tty, 1);
    548. 

  548. #endif
    549. 

  549. 	            rv = PAM_SUCCESS;
    550. 

  550. 		    goto cleanup;
    551. 

  551. 	        }
    552. 

  552.             }
    553. 

  553.         } else {
    554. 

  554.             /* Root unlock time check */
    555. 

  555.             if (opts->root_unlock_time && oldtime) {
    556. 

  556.                 if (opts->root_unlock_time + oldtime <= time(NULL)) {
    557. 

  557. 	            /* ignore deny check after unlock_time elapsed */
    558. 

  558. #ifdef HAVE_LIBAUDIT
    559. 

  559.                     snprintf(buf, sizeof(buf), "pam_tally2 uid=%u ", uid);
    560. 

  560.                     audit_log_user_message(audit_fd, AUDIT_RESP_ACCT_UNLOCK_TIMED, buf,
    561. 

  561.                                    rhost, NULL, tty, 1);
    562. 

  562. #endif
    563. 

  563. 	            rv = PAM_SUCCESS;
    564. 

  564. 	            goto cleanup;
    565. 

  565. 	        }
    566. 

  566.             }
    567. 

  567.         }
    568. 

  568. 

  569. #ifdef HAVE_LIBAUDIT
    570. 

  570.         if (tally->fail_cnt == opts->deny+1) {
    571. 

  571.             /* First say that max number was hit. */
    572. 

  572.             audit_log_user_message(audit_fd, AUDIT_RESP_ACCT_LOCK, buf,
    573. 

  573.                                    rhost, NULL, tty, 1);
    574. 

  574.         }
    575. 

  575. #endif
    576. 

  576. 

  577.         if (!(opts->ctrl & OPT_QUIET)) {
    578. 

  578.             pam_info(pamh, _("Account locked due to %u failed logins"),
    579. 

  579. 		    (unsigned int)tally->fail_cnt);
    580. 

  580.         }
    581. 

  581. 	if (!(opts->ctrl & OPT_NOLOGNOTICE)) {
    582. 

  582.             pam_syslog(pamh, LOG_NOTICE,
    583. 

  583.                    "user %s (%lu) tally %hu, deny %hu",
    584. 

  584. 		   user, (unsigned long)uid, tally->fail_cnt, opts->deny);
    585. 

  585. 	}
    586. 

  586.         rv = PAM_AUTH_ERR;                 /* Only unconditional failure   */
    587. 

  587.         goto cleanup;
    588. 

  588.     }
    589. 

  589. 

  590.     /* Lock time check */
    591. 

  591.     if (opts->lock_time && oldtime) {
    592. 

  592.         if (opts->lock_time + oldtime > time(NULL)) {
    593. 

  593. 	    /* don't increase fail_cnt or update fail_time when
    594. 

  594. 	       lock_time applies */
    595. 

  595. 	    tally->fail_cnt = oldcnt;
    596. 

  596. 	    tally->fail_time = oldtime;
    597. 

  597. 

  598. 	    if (!(opts->ctrl & OPT_QUIET)) {
    599. 

  599. 	        pam_info(pamh, _("Account temporary locked (%ld seconds left)"),
    600. 

  600.                          oldtime+opts->lock_time-time(NULL));
    601. 

  601.             }
    602. 

  602. 	    if (!(opts->ctrl & OPT_NOLOGNOTICE)) {
    603. 

  603. 		pam_syslog(pamh, LOG_NOTICE,
    604. 

  604. 	               "user %s (%lu) has time limit [%lds left]"
    605. 

  605. 	               " since last failure.",
    606. 

  606.                        user, (unsigned long)uid,
    607. 

  607. 	               oldtime+opts->lock_time-time(NULL));
    608. 

  608. 	    }
    609. 

  609. 	    rv = PAM_AUTH_ERR;
    610. 

  610. 	    goto cleanup;
    611. 

  611. 	}
    612. 

  612.     }
    613. 

  613. 

  614. cleanup:
    615. 

  615. #ifdef HAVE_LIBAUDIT
    616. 

  616.     if (audit_fd != -1) {
    617. 

  617.         close(audit_fd);
    618. 

  618.     }
    619. 

  619. #endif
    620. 

  620.     return rv;
    621. 

  621. }
    622. 

  622. 

  623. /* --- tally bump function: bump tally for uid by (signed) inc --- */
    624. 

  624. 

  625. static int
    626. 

  626. tally_bump (int inc, time_t *oldtime, pam_handle_t *pamh,
    627. 

  627.             uid_t uid, const char *user, struct tally_options *opts, int *tfile)
    628. 

  628. {
    629. 

  629.     struct tallylog tally;
    630. 

  630.     tally_t oldcnt;
    631. 

  631.     const void *remote_host = NULL;
    632. 

  632.     int i, rv;
    633. 

  633. 

  634.     tally.fail_cnt = 0;  /* !TALLY_HI --> Log opened for update */
    635. 

  635. 

  636.     i = get_tally(pamh, uid, opts->filename, tfile, &tally, opts->ctrl);
    637. 

  637.     if (i != PAM_SUCCESS) {
    638. 

  638.         if (*tfile != -1) {
    639. 

  639.             close(*tfile);
    640. 

  640.             *tfile = -1;
    641. 

  641.         }
    642. 

  642.         RETURN_ERROR(i);
    643. 

  643.     }
    644. 

  644. 

  645.     /* to remember old fail time (for locktime) */
    646. 

  646.     if (oldtime) {
    647. 

  647.         *oldtime = (time_t)tally.fail_time;
    648. 

  648.     }
    649. 

  649. 

  650.     tally.fail_time = time(NULL);
    651. 

  651. 

  652.     (void) pam_get_item(pamh, PAM_RHOST, &remote_host);
    653. 

  653.     if (!remote_host) {
    654. 

  654. 	(void) pam_get_item(pamh, PAM_TTY, &remote_host);
    655. 

  655. 	if (!remote_host) {
    656. 

  656. 	    remote_host = "unknown";
    657. 

  657. 	}
    658. 

  658.     }
    659. 

  659. 

  660.     strncpy(tally.fail_line, remote_host,
    661. 

  661. 		    sizeof(tally.fail_line)-1);
    662. 

  662.     tally.fail_line[sizeof(tally.fail_line)-1] = 0;
    663. 

  663. 

  664.     oldcnt = tally.fail_cnt;
    665. 

  665. 

  666.     if (!(opts->ctrl & OPT_MAGIC_ROOT) || getuid()) {
    667. 

  667.       /* magic_root doesn't change tally */
    668. 

  668.       tally.fail_cnt += inc;
    669. 

  669. 

  670.       if (tally.fail_cnt == TALLY_HI) { /* Overflow *and* underflow. :) */
    671. 

  671.           tally.fail_cnt -= inc;
    672. 

  672.           pam_syslog(pamh, LOG_ALERT, "Tally %sflowed for user %s",
    673. 

  673.                  (inc<0)?"under":"over",user);
    674. 

  674.       }
    675. 

  675.     }
    676. 

  676. 

  677.     rv = tally_check(oldcnt, *oldtime, pamh, uid, user, opts, &tally);
    678. 

  678. 

  679.     i = set_tally(pamh, uid, opts->filename, tfile, &tally);
    680. 

  680.     if (i != PAM_SUCCESS) {
    681. 

  681.         if (*tfile != -1) {
    682. 

  682.             close(*tfile);
    683. 

  683.             *tfile = -1;
    684. 

  684.         }
    685. 

  685.         if (rv == PAM_SUCCESS)
    686. 

  686. 	    RETURN_ERROR( i );
    687. 

  687. 	/* fallthrough */
    688. 

  688.     } else if (!(opts->ctrl & OPT_SERIALIZE)) {
    689. 

  689. 	close(*tfile);
    690. 

  690. 	*tfile = -1;
    691. 

  691.     }
    692. 

  692. 

  693.     return rv;
    694. 

  694. }
    695. 

  695. 

  696. static int
    697. 

  697. tally_reset (pam_handle_t *pamh, uid_t uid, struct tally_options *opts, int old_tfile)
    698. 

  698. {
    699. 

  699.     struct tallylog tally;
    700. 

  700.     int tfile = old_tfile;
    701. 

  701.     int i;
    702. 

  702. 

  703.     /* resets only if not magic root */
    704. 

  704. 

  705.     if ((opts->ctrl & OPT_MAGIC_ROOT) && getuid() == 0) {
    706. 

  706.         return PAM_SUCCESS;
    707. 

  707.     }
    708. 

  708. 

  709.     tally.fail_cnt = 0;  /* !TALLY_HI --> Log opened for update */
    710. 

  710. 

  711.     i=get_tally(pamh, uid, opts->filename, &tfile, &tally, opts->ctrl);
    712. 

  712.     if (i != PAM_SUCCESS) {
    713. 

  713.         if (tfile != old_tfile) /* the descriptor is not owned by pam data */
    714. 

  714.             close(tfile);
    715. 

  715.         RETURN_ERROR(i);
    716. 

  716.     }
    717. 

  717. 

  718.     memset(&tally, 0, sizeof(tally));
    719. 

  719. 

  720.     i=set_tally(pamh, uid, opts->filename, &tfile, &tally);
    721. 

  721.     if (i != PAM_SUCCESS) {
    722. 

  722.         if (tfile != old_tfile) /* the descriptor is not owned by pam data */
    723. 

  723.             close(tfile);
    724. 

  724.         RETURN_ERROR(i);
    725. 

  725.     }
    726. 

  726. 

  727.     if (tfile != old_tfile)
    728. 

  728. 	close(tfile);
    729. 

  729. 

  730.     return PAM_SUCCESS;
    731. 

  731. }
    732. 

  732. 

  733. /*---------------------------------------------------------------------*/
    734. 

  734. 

  735. /* --- authentication management functions (only) --- */
    736. 

  736. 

  737. PAM_EXTERN int
    738. 

  738. pam_sm_authenticate(pam_handle_t *pamh, int flags UNUSED,
    739. 

  739. 		    int argc, const char **argv)
    740. 

  740. {
    741. 

  741.   int
    742. 

  742.     rv, tfile = -1;
    743. 

  743.   time_t
    744. 

  744.     oldtime = 0;
    745. 

  745.   struct tally_options
    746. 

  746.     options, *opts = &options;
    747. 

  747.   uid_t
    748. 

  748.     uid;
    749. 

  749.   const char
    750. 

  750.     *user;
    751. 

  751. 

  752.   rv = tally_parse_args(pamh, opts, PHASE_AUTH, argc, argv);
    753. 

  753.   if (rv != PAM_SUCCESS)
    754. 

  754.       RETURN_ERROR(rv);
    755. 

  755. 

  756.   if (flags & PAM_SILENT)
    757. 

  757.     opts->ctrl |= OPT_QUIET;
    758. 

  758. 

  759.   rv = pam_get_uid(pamh, &uid, &user, opts);
    760. 

  760.   if (rv != PAM_SUCCESS)
    761. 

  761.       RETURN_ERROR(rv);
    762. 

  762. 

  763.   rv = tally_bump(1, &oldtime, pamh, uid, user, opts, &tfile);
    764. 

  764. 

  765.   tally_set_data(pamh, oldtime, tfile);
    766. 

  766. 

  767.   return rv;
    768. 

  768. }
    769. 

  769. 

  770. PAM_EXTERN int
    771. 

  771. pam_sm_setcred(pam_handle_t *pamh, int flags UNUSED,
    772. 

  772. 	       int argc, const char **argv)
    773. 

  773. {
    774. 

  774.   int
    775. 

  775.     rv, tfile = -1;
    776. 

  776.   time_t
    777. 

  777.     oldtime = 0;
    778. 

  778.   struct tally_options
    779. 

  779.     options, *opts = &options;
    780. 

  780.   uid_t
    781. 

  781.     uid;
    782. 

  782.   const char
    783. 

  783.     *user;
    784. 

  784. 

  785.   rv = tally_parse_args(pamh, opts, PHASE_AUTH, argc, argv);
    786. 

  786.   if ( rv != PAM_SUCCESS )
    787. 

  787.       RETURN_ERROR( rv );
    788. 

  788. 

  789.   rv = pam_get_uid(pamh, &uid, &user, opts);
    790. 

  790.   if ( rv != PAM_SUCCESS )
    791. 

  791.       RETURN_ERROR( rv );
    792. 

  792. 

  793.   if ( tally_get_data(pamh, &oldtime, &tfile) != 0 )
    794. 

  794.   /* no data found */
    795. 

  795.       return PAM_SUCCESS;
    796. 

  796. 

  797.   rv = tally_reset(pamh, uid, opts, tfile);
    798. 

  798. 

  799.   pam_set_data(pamh, MODULE_NAME, NULL, NULL);
    800. 

  800. 

  801.   return rv;
    802. 

  802. }
    803. 

  803. 

  804. /*---------------------------------------------------------------------*/
    805. 

  805. 

  806. /* --- authentication management functions (only) --- */
    807. 

  807. 

  808. /* To reset failcount of user on successfull login */
    809. 

  809. 

  810. PAM_EXTERN int
    811. 

  811. pam_sm_acct_mgmt(pam_handle_t *pamh, int flags UNUSED,
    812. 

  812. 		 int argc, const char **argv)
    813. 

  813. {
    814. 

  814.   int
    815. 

  815.     rv, tfile = -1;
    816. 

  816.   time_t
    817. 

  817.     oldtime = 0;
    818. 

  818.   struct tally_options
    819. 

  819.     options, *opts = &options;
    820. 

  820.   uid_t
    821. 

  821.     uid;
    822. 

  822.   const char
    823. 

  823.     *user;
    824. 

  824. 

  825.   rv = tally_parse_args(pamh, opts, PHASE_ACCOUNT, argc, argv);
    826. 

  826.   if ( rv != PAM_SUCCESS )
    827. 

  827.       RETURN_ERROR( rv );
    828. 

  828. 

  829.   rv = pam_get_uid(pamh, &uid, &user, opts);
    830. 

  830.   if ( rv != PAM_SUCCESS )
    831. 

  831.       RETURN_ERROR( rv );
    832. 

  832. 

  833.   if ( tally_get_data(pamh, &oldtime, &tfile) != 0 )
    834. 

  834.   /* no data found */
    835. 

  835.       return PAM_SUCCESS;
    836. 

  836. 

  837.   rv = tally_reset(pamh, uid, opts, tfile);
    838. 

  838. 

  839.   pam_set_data(pamh, MODULE_NAME, NULL, NULL);
    840. 

  840. 

  841.   return rv;
    842. 

  842. }
    843. 

  843. 

  844. /*-----------------------------------------------------------------------*/
    845. 

  845. 

  846. #ifdef PAM_STATIC
    847. 

  847. 

  848. /* static module data */
    849. 

  849. 

  850. struct pam_module _pam_tally2_modstruct = {
    851. 

  851.      MODULE_NAME,
    852. 

  852. #ifdef PAM_SM_AUTH
    853. 

  853.      pam_sm_authenticate,
    854. 

  854.      pam_sm_setcred,
    855. 

  855. #else
    856. 

  856.      NULL,
    857. 

  857.      NULL,
    858. 

  858. #endif
    859. 

  859. #ifdef PAM_SM_ACCOUNT
    860. 

  860.      pam_sm_acct_mgmt,
    861. 

  861. #else
    862. 

  862.      NULL,
    863. 

  863. #endif
    864. 

  864.      NULL,
    865. 

  865.      NULL,
    866. 

  866.      NULL,
    867. 

  867. };
    868. 

  868. 

  869. #endif   /* #ifdef PAM_STATIC */
    870. 

  870. 

  871. /*-----------------------------------------------------------------------*/
    872. 

  872. 

  873. #else   /* #ifndef MAIN */
    874. 

  874. 

  875. static const char *cline_filename = DEFAULT_LOGFILE;
    876. 

  876. static tally_t cline_reset = TALLY_HI; /* Default is `interrogate only' */
    877. 

  877. static int cline_quiet =  0;
    878. 

  878. 

  879. /*
    880. 

  880.  *  Not going to link with pamlib just for these.. :)
    881. 

  881.  */
    882. 

  882. 

  883. static const char *
    884. 

  884. pam_errors( int i )
    885. 

  885. {
    886. 

  886.   switch (i) {
    887. 

  887.   case PAM_AUTH_ERR:     return _("Authentication error");
    888. 

  888.   case PAM_SERVICE_ERR:  return _("Service error");
    889. 

  889.   case PAM_USER_UNKNOWN: return _("Unknown user");
    890. 

  890.   default:               return _("Unknown error");
    891. 

  891.   }
    892. 

  892. }
    893. 

  893. 

  894. static int
    895. 

  895. getopts( char **argv )
    896. 

  896. {
    897. 

  897.   const char *pname = *argv;
    898. 

  898.   for ( ; *argv ; (void)(*argv && ++argv) ) {
    899. 

  899.     if      ( !strcmp (*argv,"--file")    ) cline_filename=*++argv;
    900. 

  900.     else if ( !strcmp(*argv,"-f")         ) cline_filename=*++argv;
    901. 

  901.     else if ( !strncmp(*argv,"--file=",7) ) cline_filename=*argv+7;
    902. 

  902.     else if ( !strcmp (*argv,"--user")    ) cline_user=*++argv;
    903. 

  903.     else if ( !strcmp (*argv,"-u")        ) cline_user=*++argv;
    904. 

  904.     else if ( !strncmp(*argv,"--user=",7) ) cline_user=*argv+7;
    905. 

  905.     else if ( !strcmp (*argv,"--reset")   ) cline_reset=0;
    906. 

  906.     else if ( !strcmp (*argv,"-r")        ) cline_reset=0;
    907. 

  907.     else if ( !strncmp(*argv,"--reset=",8)) {
    908. 

  908.       if ( sscanf(*argv+8,"%hu",&cline_reset) != 1 )
    909. 

  909.         fprintf(stderr,_("%s: Bad number given to --reset=\n"),pname), exit(0);
    910. 

  910.     }
    911. 

  911.     else if ( !strcmp (*argv,"--quiet")   ) cline_quiet=1;
    912. 

  912.     else {
    913. 

  913.       fprintf(stderr,_("%s: Unrecognised option %s\n"),pname,*argv);
    914. 

  914.       return FALSE;
    915. 

  915.     }
    916. 

  916.   }
    917. 

  917.   return TRUE;
    918. 

  918. }
    919. 

  919. 

  920. static void
    921. 

  921. print_one(const struct tallylog *tally, uid_t uid)
    922. 

  922. {
    923. 

  923.    static int once;
    924. 

  924.    char *cp;
    925. 

  925.    time_t fail_time;
    926. 

  926.    struct tm *tm;
    927. 

  927.    struct passwd *pwent;
    928. 

  928.    const char *username = "[NONAME]";
    929. 

  929.    char ptime[80];
    930. 

  930. 

  931.    pwent = getpwuid(uid);
    932. 

  932.    fail_time = tally->fail_time;
    933. 

  933.    tm = localtime(&fail_time);
    934. 

  934.    strftime (ptime, sizeof (ptime), "%D %H:%M:%S", tm);
    935. 

  935.    cp = ptime;
    936. 

  936.    if (pwent) {
    937. 

  937.         username = pwent->pw_name;
    938. 

  938.    }
    939. 

  939.    if (!once) {
    940. 

  940.         printf (_("Login           Failures Latest failure     From\n"));
    941. 

  941.         once++;
    942. 

  942.    }
    943. 

  943.    printf ("%-15.15s %5hu    ", username, tally->fail_cnt);
    944. 

  944.    if (tally->fail_time) {
    945. 

  945.         printf ("%-17.17s  %s", cp, tally->fail_line);
    946. 

  946.    }
    947. 

  947.    putchar ('\n');
    948. 

  948. }
    949. 

  949. 

  950. int
    951. 

  951. main( int argc UNUSED, char **argv )
    952. 

  952. {
    953. 

  953.   struct tallylog tally;
    954. 

  954. 

  955.   if ( ! getopts( argv+1 ) ) {
    956. 

  956.     printf(_("%s: [-f rooted-filename] [--file rooted-filename]\n"
    957. 

  957.              "   [-u username] [--user username]\n"
    958. 

  958. 	     "   [-r] [--reset[=n]] [--quiet]\n"),
    959. 

  959.            *argv);
    960. 

  960.     exit(2);
    961. 

  961.   }
    962. 

  962. 

  963.   umask(077);
    964. 

  964. 

  965.   /*
    966. 

  966.    * Major difference between individual user and all users:
    967. 

  967.    *  --user just handles one user, just like PAM.
    968. 

  968.    *  without --user it handles all users, sniffing cline_filename for nonzeros
    969. 

  969.    */
    970. 

  970. 

  971.   if ( cline_user ) {
    972. 

  972.     uid_t uid;
    973. 

  973.     int tfile = -1;
    974. 

  974.     struct tally_options opts;
    975. 

  975.     int i;
    976. 

  976. 

  977.     memset(&opts, 0, sizeof(opts));
    978. 

  978.     opts.ctrl = OPT_AUDIT;
    979. 

  979.     i=pam_get_uid(NULL, &uid, NULL, &opts);
    980. 

  980.     if ( i != PAM_SUCCESS ) {
    981. 

  981.       fprintf(stderr,"%s: %s\n",*argv,pam_errors(i));
    982. 

  982.       exit(1);
    983. 

  983.     }
    984. 

  984. 

  985.     i=get_tally(NULL, uid, cline_filename, &tfile, &tally, 0);
    986. 

  986.     if ( i != PAM_SUCCESS ) {
    987. 

  987.       if (tfile != -1)
    988. 

  988.           close(tfile);
    989. 

  989.       fprintf(stderr, "%s: %s\n", *argv, pam_errors(i));
    990. 

  990.       exit(1);
    991. 

  991.     }
    992. 

  992. 

  993.     if ( !cline_quiet )
    994. 

  994.       print_one(&tally, uid);
    995. 

  995. 

  996.     if (cline_reset != TALLY_HI) {
    997. 

  997. #ifdef HAVE_LIBAUDIT
    998. 

  998.         char buf[64];
    999. 

  999.         int audit_fd = audit_open();
    1000. 

  1000.         snprintf(buf, sizeof(buf), "pam_tally2 uid=%u reset=%hu", uid, cline_reset);
    1001. 

  1001.         audit_log_user_message(audit_fd, AUDIT_USER_ACCT,
    1002. 

  1002.                 buf, NULL, NULL, ttyname(STDIN_FILENO), 1);
    1003. 

  1003.         if (audit_fd >=0)
    1004. 

  1004.                 close(audit_fd);
    1005. 

  1005. #endif
    1006. 

  1006.         if (cline_reset == 0) {
    1007. 

  1007.             memset(&tally, 0, sizeof(tally));
    1008. 

  1008.         } else {
    1009. 

  1009.             tally.fail_cnt = cline_reset;
    1010. 

  1010.         }
    1011. 

  1011.         i=set_tally(NULL, uid, cline_filename, &tfile, &tally);
    1012. 

  1012.         close(tfile);
    1013. 

  1013.         if (i != PAM_SUCCESS) {
    1014. 

  1014.             fprintf(stderr,"%s: %s\n",*argv,pam_errors(i));
    1015. 

  1015.             exit(1);
    1016. 

  1016.         }
    1017. 

  1017.     } else {
    1018. 

  1018.         close(tfile);
    1019. 

  1019.     }
    1020. 

  1020.   }
    1021. 

  1021.   else /* !cline_user (ie, operate on all users) */ {
    1022. 

  1022.     FILE *tfile=fopen(cline_filename, "r");
    1023. 

  1023.     uid_t uid=0;
    1024. 

  1024.     if (!tfile  && cline_reset != 0) {
    1025. 

  1025. 	perror(*argv);
    1026. 

  1026. 	exit(1);
    1027. 

  1027.     }
    1028. 

  1028. 

  1029.     for ( ; tfile && !feof(tfile); uid++ ) {
    1030. 

  1030.       if ( !fread(&tally, sizeof(tally), 1, tfile)
    1031. 

  1031. 	   || !tally.fail_cnt ) {
    1032. 

  1032. 	 continue;
    1033. 

  1033.       }
    1034. 

  1034.       print_one(&tally, uid);
    1035. 

  1035.     }
    1036. 

  1036.     if (tfile)
    1037. 

  1037.       fclose(tfile);
    1038. 

  1038.     if ( cline_reset!=0 && cline_reset!=TALLY_HI ) {
    1039. 

  1039.       fprintf(stderr,_("%s: Can't reset all users to non-zero\n"),*argv);
    1040. 

  1040.     }
    1041. 

  1041.     else if ( !cline_reset ) {
    1042. 

  1042. #ifdef HAVE_LIBAUDIT
    1043. 

  1043.       char buf[64];
    1044. 

  1044.       int audit_fd = audit_open();
    1045. 

  1045.       snprintf(buf, sizeof(buf), "pam_tally2 uid=all reset=0");
    1046. 

  1046.       audit_log_user_message(audit_fd, AUDIT_USER_ACCT,
    1047. 

  1047.               buf, NULL, NULL, ttyname(STDIN_FILENO), 1);
    1048. 

  1048.       if (audit_fd >=0)
    1049. 

  1049.               close(audit_fd);
    1050. 

  1050. #endif
    1051. 

  1051.       tfile=fopen(cline_filename, "w");
    1052. 

  1052.       if ( !tfile ) perror(*argv), exit(0);
    1053. 

  1053.       fclose(tfile);
    1054. 

  1054.     }
    1055. 

  1055.   }
    1056. 

  1056.   return 0;
    1057. 

  1057. }
    1058. 

  1058. 

  1059. 

  1060. #endif   /* #ifndef MAIN */
    1061.