2 * lslogins - List information about users on the system
4 * Copyright (C) 2014 Ondrej Oprala <ooprala@redhat.com>
5 * Copyright (C) 2014 Karel Zak <kzak@redhat.com>
7 * This program is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU General Public License as published by
9 * the Free Software Foundation; either version 2 of the License, or
10 * (at your option) any later version.
12 * This program is distributed in the hope that it would be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 * GNU General Public License for more details.
17 * You should have received a copy of the GNU General Public License along
18 * with this program; if not, write to the Free Software Foundation, Inc.,
19 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
26 #include <sys/types.h>
28 #include <sys/syslog.h>
40 #include <libsmartcols.h>
41 #ifdef HAVE_LIBSELINUX
42 # include <selinux/selinux.h>
45 #ifdef HAVE_LIBSYSTEMD
46 # include <systemd/sd-journal.h>
51 #include "closestream.h"
56 #include "pathnames.h"
57 #include "logindefs.h"
58 #include "procutils.h"
59 #include "timeutils.h"
64 struct lslogins_coldesc
{
67 const char *pretty_name
;
69 double whint
; /* width hint */
73 static int lslogins_flag
;
75 #define UL_UID_MIN 1000
76 #define UL_UID_MAX 60000
77 #define UL_SYS_UID_MIN 101
78 #define UL_SYS_UID_MAX 999
80 /* we use the value of outmode to determine
81 * appropriate flags for the libsmartcols table
82 * (e.g., a value of out_newline would imply a raw
83 * table with the column separator set to '\n').
98 struct lslogins_user
{
118 const char *pwd_method
;
127 #ifdef HAVE_LIBSELINUX
128 security_context_t context
;
190 #define is_wtmp_col(x) ((x) == COL_LAST_LOGIN || \
191 (x) == COL_LAST_TTY || \
192 (x) == COL_LAST_HOSTNAME)
194 #define is_btmp_col(x) ((x) == COL_FAILED_LOGIN || \
195 (x) == COL_FAILED_TTY)
203 static const char *const status
[] = {
204 [STATUS_FALSE
] = "0",
206 [STATUS_UNKNOWN
]= NULL
209 static const char *const pretty_status
[] = {
210 [STATUS_FALSE
] = N_("no"),
211 [STATUS_TRUE
] = N_("yes"),
212 [STATUS_UNKNOWN
]= NULL
215 #define get_status(x) (outmode == OUT_PRETTY ? pretty_status[(x)] : status[(x)])
217 static const struct lslogins_coldesc coldescs
[] =
219 [COL_USER
] = { "USER", N_("user name"), N_("Username"), 0.1, SCOLS_FL_NOEXTREMES
},
220 [COL_UID
] = { "UID", N_("user ID"), "UID", 1, SCOLS_FL_RIGHT
},
221 [COL_PWDEMPTY
] = { "PWD-EMPTY", N_("password not required"), N_("Password not required"), 1, SCOLS_FL_RIGHT
},
222 [COL_PWDDENY
] = { "PWD-DENY", N_("login by password disabled"), N_("Login by password disabled"), 1, SCOLS_FL_RIGHT
},
223 [COL_PWDLOCK
] = { "PWD-LOCK", N_("password defined, but locked"), N_("Password is locked"), 1, SCOLS_FL_RIGHT
},
224 [COL_PWDMETHOD
] = { "PWD-METHOD", N_("password encryption method"), N_("Password encryption method"), 0.1 },
225 [COL_NOLOGIN
] = { "NOLOGIN", N_("log in disabled by nologin(8) or pam_nologin(8)"), N_("No login"), 1, SCOLS_FL_RIGHT
},
226 [COL_GROUP
] = { "GROUP", N_("primary group name"), N_("Primary group"), 0.1 },
227 [COL_GID
] = { "GID", N_("primary group ID"), "GID", 1, SCOLS_FL_RIGHT
},
228 [COL_SGROUPS
] = { "SUPP-GROUPS", N_("supplementary group names"), N_("Supplementary groups"), 0.1 },
229 [COL_SGIDS
] = { "SUPP-GIDS", N_("supplementary group IDs"), N_("Supplementary group IDs"), 0.1 },
230 [COL_HOME
] = { "HOMEDIR", N_("home directory"), N_("Home directory"), 0.1 },
231 [COL_SHELL
] = { "SHELL", N_("login shell"), N_("Shell"), 0.1 },
232 [COL_GECOS
] = { "GECOS", N_("full user name"), N_("Gecos field"), 0.1, SCOLS_FL_TRUNC
},
233 [COL_LAST_LOGIN
] = { "LAST-LOGIN", N_("date of last login"), N_("Last login"), 0.1, SCOLS_FL_RIGHT
},
234 [COL_LAST_TTY
] = { "LAST-TTY", N_("last tty used"), N_("Last terminal"), 0.05 },
235 [COL_LAST_HOSTNAME
] = { "LAST-HOSTNAME",N_("hostname during the last session"), N_("Last hostname"), 0.1},
236 [COL_FAILED_LOGIN
] = { "FAILED-LOGIN", N_("date of last failed login"), N_("Failed login"), 0.1 },
237 [COL_FAILED_TTY
] = { "FAILED-TTY", N_("where did the login fail?"), N_("Failed login terminal"), 0.05 },
238 [COL_HUSH_STATUS
] = { "HUSHED", N_("user's hush settings"), N_("Hushed"), 1, SCOLS_FL_RIGHT
},
239 [COL_PWD_WARN
] = { "PWD-WARN", N_("days user is warned of password expiration"), N_("Password expiration warn interval"), 0.1, SCOLS_FL_RIGHT
},
240 [COL_PWD_EXPIR
] = { "PWD-EXPIR", N_("password expiration date"), N_("Password expiration"), 0.1, SCOLS_FL_RIGHT
},
241 [COL_PWD_CTIME
] = { "PWD-CHANGE", N_("date of last password change"), N_("Password changed"), 0.1, SCOLS_FL_RIGHT
},
242 [COL_PWD_CTIME_MIN
] = { "PWD-MIN", N_("number of days required between changes"), N_("Minimum change time"), 0.1, SCOLS_FL_RIGHT
},
243 [COL_PWD_CTIME_MAX
] = { "PWD-MAX", N_("max number of days a password may remain unchanged"), N_("Maximum change time"), 0.1, SCOLS_FL_RIGHT
},
244 [COL_SELINUX
] = { "CONTEXT", N_("the user's security context"), N_("Selinux context"), 0.1 },
245 [COL_NPROCS
] = { "PROC", N_("number of processes run by the user"), N_("Running processes"), 1, SCOLS_FL_RIGHT
},
248 struct lslogins_control
{
267 unsigned int time_mode
;
269 const char *journal_path
;
271 unsigned int selinux_enabled
: 1,
272 fail_on_unknown
: 1, /* fail if user does not exist */
278 /* these have to remain global since there's no other reasonable way to pass
279 * them for each call of fill_table() via twalk() */
280 static struct libscols_table
*tb
;
282 /* columns[] array specifies all currently wanted output column. The columns
283 * are defined by coldescs[] array and you can specify (on command line) each
284 * column twice. That's enough, dynamically allocated array of the columns is
285 * unnecessary overkill and over-engineering in this case */
286 static int columns
[ARRAY_SIZE(coldescs
) * 2];
287 static size_t ncolumns
;
289 static inline size_t err_columns_index(size_t arysz
, size_t idx
)
292 errx(EXIT_FAILURE
, _("too many columns specified, "
293 "the limit is %zu columns"),
298 #define add_column(ary, n, id) \
299 ((ary)[ err_columns_index(ARRAY_SIZE(ary), (n)) ] = (id))
301 static int column_name_to_id(const char *name
, size_t namesz
)
305 for (i
= 0; i
< ARRAY_SIZE(coldescs
); i
++) {
306 const char *cn
= coldescs
[i
].name
;
308 if (!strncasecmp(name
, cn
, namesz
) && !*(cn
+ namesz
))
311 warnx(_("unknown column: %s"), name
);
315 static struct timeval now
;
317 static char *make_time(int mode
, time_t time
)
327 localtime_r(&time
, &tm
);
330 if (*(s
= buf
+ strlen(buf
) - 1) == '\n')
336 rc
= strtime_short(&time
, &now
, UL_SHORTTIME_THISYEAR_HHMM
,
340 rc
= strtime_iso(&time
, ISO_TIMESTAMP_T
, buf
, sizeof(buf
));
343 rc
= strtime_iso(&time
, ISO_DATE
, buf
, sizeof(buf
));
346 errx(EXIT_FAILURE
, _("unsupported time type"));
350 errx(EXIT_FAILURE
, _("failed to compose time string"));
356 static char *uidtostr(uid_t uid
)
358 char *str_uid
= NULL
;
359 xasprintf(&str_uid
, "%u", uid
);
363 static char *gidtostr(gid_t gid
)
365 char *str_gid
= NULL
;
366 xasprintf(&str_gid
, "%u", gid
);
370 static char *build_sgroups_string(gid_t
*sgroups
, size_t nsgroups
, int want_names
)
372 size_t n
= 0, maxlen
, len
;
378 len
= maxlen
= nsgroups
* 10;
379 res
= p
= xmalloc(maxlen
);
381 while (n
< nsgroups
) {
385 x
= snprintf(p
, len
, "%u,", sgroups
[n
]);
387 struct group
*grp
= getgrgid(sgroups
[n
]);
392 x
= snprintf(p
, len
, "%s,", grp
->gr_name
);
395 if (x
< 0 || (size_t) x
>= len
) {
396 size_t cur
= p
- res
;
399 res
= xrealloc(res
, maxlen
);
416 static struct utmpx
*get_last_wtmp(struct lslogins_control
*ctl
, const char *username
)
423 n
= ctl
->wtmp_size
- 1;
425 if (!strncmp(username
, ctl
->wtmp
[n
].ut_user
,
426 sizeof(ctl
->wtmp
[0].ut_user
)))
427 return ctl
->wtmp
+ n
;
433 static int require_wtmp(void)
436 for (i
= 0; i
< ncolumns
; i
++)
437 if (is_wtmp_col(columns
[i
]))
442 static int require_btmp(void)
445 for (i
= 0; i
< ncolumns
; i
++)
446 if (is_btmp_col(columns
[i
]))
451 static struct utmpx
*get_last_btmp(struct lslogins_control
*ctl
, const char *username
)
458 n
= ctl
->btmp_size
- 1;
460 if (!strncmp(username
, ctl
->btmp
[n
].ut_user
,
461 sizeof(ctl
->wtmp
[0].ut_user
)))
462 return ctl
->btmp
+ n
;
468 static int read_utmp(char const *file
, size_t *nents
, struct utmpx
**res
)
470 size_t n_read
= 0, n_alloc
= 0;
471 struct utmpx
*utmp
= NULL
, *u
;
473 if (utmpxname(file
) < 0)
479 while ((u
= getutxent()) != NULL
) {
480 if (n_read
== n_alloc
) {
482 utmp
= xrealloc(utmp
, n_alloc
* sizeof (struct utmpx
));
499 static int parse_wtmp(struct lslogins_control
*ctl
, char *path
)
503 rc
= read_utmp(path
, &ctl
->wtmp_size
, &ctl
->wtmp
);
504 if (rc
< 0 && errno
!= EACCES
)
505 err(EXIT_FAILURE
, "%s", path
);
509 static int parse_btmp(struct lslogins_control
*ctl
, char *path
)
513 rc
= read_utmp(path
, &ctl
->btmp_size
, &ctl
->btmp
);
514 if (rc
< 0 && errno
!= EACCES
)
515 err(EXIT_FAILURE
, "%s", path
);
519 static int get_sgroups(gid_t
**list
, size_t *len
, struct passwd
*pwd
)
527 /* first let's get a supp. group count */
528 getgrouplist(pwd
->pw_name
, pwd
->pw_gid
, *list
, &ngroups
);
532 *list
= xcalloc(1, ngroups
* sizeof(gid_t
));
534 /* now for the actual list of GIDs */
535 if (-1 == getgrouplist(pwd
->pw_name
, pwd
->pw_gid
, *list
, &ngroups
))
538 *len
= (size_t) ngroups
;
540 /* getgroups also returns the user's primary GID - dispose of it */
542 if ((*list
)[n
] == pwd
->pw_gid
)
548 (*list
)[n
] = (*list
)[--(*len
)];
553 static int get_nprocs(const uid_t uid
)
557 struct proc_processes
*proc
= proc_open_processes();
559 proc_processes_filter_by_uid(proc
, uid
);
561 while (!proc_next_pid(proc
, &pid
))
564 proc_close_processes(proc
);
568 static const char *get_pwd_method(const char *str
, const char **next
, unsigned int *sz
)
571 const char *res
= NULL
;
573 if (!p
|| *p
++ != '$')
587 if (*p
== 'a' || *p
== 'y')
612 #define is_valid_pwd_char(x) (isalnum((unsigned char) (x)) || (x) == '.' || (x) == '/')
615 * This function do not accept empty passwords or locked accouns.
617 static int valid_pwd(const char *str
)
620 unsigned int sz
= 0, n
;
626 if (get_pwd_method(str
, &p
, &sz
) == NULL
)
637 if (!is_valid_pwd_char(*p
))
644 for (n
= 0; *p
; p
++, n
++) {
645 if (!is_valid_pwd_char(*p
))
654 static struct lslogins_user
*get_user_info(struct lslogins_control
*ctl
, const char *username
)
656 struct lslogins_user
*user
;
660 struct utmpx
*user_wtmp
= NULL
, *user_btmp
= NULL
;
667 pwd
= username
? getpwnam(username
) : getpwent();
671 ctl
->uid
= uid
= pwd
->pw_uid
;
673 /* nfsnobody is an exception to the UID_MAX limit. This is "nobody" on
674 * some systems; the decisive point is the UID - 65534 */
675 if ((lslogins_flag
& F_USRAC
) &&
676 strcmp("nfsnobody", pwd
->pw_name
) != 0 &&
678 if (uid
< ctl
->UID_MIN
|| uid
> ctl
->UID_MAX
) {
683 } else if ((lslogins_flag
& F_SYSAC
) &&
684 (uid
< ctl
->SYS_UID_MIN
|| uid
> ctl
->SYS_UID_MAX
)) {
690 grp
= getgrgid(pwd
->pw_gid
);
694 user
= xcalloc(1, sizeof(struct lslogins_user
));
697 user_wtmp
= get_last_wtmp(ctl
, pwd
->pw_name
);
699 user_btmp
= get_last_btmp(ctl
, pwd
->pw_name
);
702 shadow
= getspnam(pwd
->pw_name
);
705 /* required by tseach() stuff */
706 user
->uid
= pwd
->pw_uid
;
708 while (n
< ncolumns
) {
709 switch (columns
[n
++]) {
711 user
->login
= xstrdup(pwd
->pw_name
);
714 user
->uid
= pwd
->pw_uid
;
717 user
->group
= xstrdup(grp
->gr_name
);
720 user
->gid
= pwd
->pw_gid
;
724 if (get_sgroups(&user
->sgroups
, &user
->nsgroups
, pwd
))
725 err(EXIT_FAILURE
, _("failed to get supplementary groups"));
728 user
->homedir
= xstrdup(pwd
->pw_dir
);
731 user
->shell
= xstrdup(pwd
->pw_shell
);
734 user
->gecos
= xstrdup(pwd
->pw_gecos
);
738 time
= user_wtmp
->ut_tv
.tv_sec
;
739 user
->last_login
= make_time(ctl
->time_mode
, time
);
744 user
->last_tty
= xmalloc(sizeof(user_wtmp
->ut_line
) + 1);
745 mem2strcpy(user
->last_tty
, user_wtmp
->ut_line
,
746 sizeof(user_wtmp
->ut_line
),
747 sizeof(user_wtmp
->ut_line
) + 1);;
750 case COL_LAST_HOSTNAME
:
752 user
->last_hostname
= xmalloc(sizeof(user_wtmp
->ut_host
) + 1);
753 mem2strcpy(user
->last_hostname
, user_wtmp
->ut_host
,
754 sizeof(user_wtmp
->ut_host
),
755 sizeof(user_wtmp
->ut_host
) + 1);;
758 case COL_FAILED_LOGIN
:
760 time
= user_btmp
->ut_tv
.tv_sec
;
761 user
->failed_login
= make_time(ctl
->time_mode
, time
);
766 user
->failed_tty
= xmalloc(sizeof(user_btmp
->ut_line
) + 1);
767 mem2strcpy(user
->failed_tty
, user_btmp
->ut_line
,
768 sizeof(user_btmp
->ut_line
),
769 sizeof(user_btmp
->ut_line
) + 1);;
772 case COL_HUSH_STATUS
:
773 user
->hushed
= get_hushlogin_status(pwd
, 0);
774 if (user
->hushed
== -1)
775 user
->hushed
= STATUS_UNKNOWN
;
779 if (!*shadow
->sp_pwdp
) /* '\0' */
780 user
->pwd_empty
= STATUS_TRUE
;
782 user
->pwd_empty
= STATUS_UNKNOWN
;
786 if ((*shadow
->sp_pwdp
== '!' ||
787 *shadow
->sp_pwdp
== '*') &&
788 !valid_pwd(shadow
->sp_pwdp
+ 1))
789 user
->pwd_deny
= STATUS_TRUE
;
791 user
->pwd_deny
= STATUS_UNKNOWN
;
795 if (*shadow
->sp_pwdp
== '!' && valid_pwd(shadow
->sp_pwdp
+ 1))
796 user
->pwd_lock
= STATUS_TRUE
;
798 user
->pwd_lock
= STATUS_UNKNOWN
;
802 const char *p
= shadow
->sp_pwdp
;
804 if (*p
== '!' || *p
== '*')
806 user
->pwd_method
= get_pwd_method(p
, NULL
, NULL
);
808 user
->pwd_method
= NULL
;
811 if (strstr(pwd
->pw_shell
, "nologin"))
813 else if (pwd
->pw_uid
)
814 user
->nologin
= access(_PATH_NOLOGIN
, F_OK
) == 0 ||
815 access(_PATH_VAR_NOLOGIN
, F_OK
) == 0;
818 if (shadow
&& shadow
->sp_warn
>= 0)
819 xasprintf(&user
->pwd_warn
, "%ld", shadow
->sp_warn
);
822 if (shadow
&& shadow
->sp_expire
>= 0)
823 user
->pwd_expire
= make_time(ctl
->time_mode
== TIME_ISO
?
824 TIME_ISO_SHORT
: ctl
->time_mode
,
825 shadow
->sp_expire
* 86400);
828 /* sp_lstchg is specified in days, showing hours
829 * (especially in non-GMT timezones) would only serve
832 user
->pwd_ctime
= make_time(ctl
->time_mode
== TIME_ISO
?
833 TIME_ISO_SHORT
: ctl
->time_mode
,
834 shadow
->sp_lstchg
* 86400);
836 case COL_PWD_CTIME_MIN
:
837 if (shadow
&& shadow
->sp_min
> 0)
838 xasprintf(&user
->pwd_ctime_min
, "%ld", shadow
->sp_min
);
840 case COL_PWD_CTIME_MAX
:
841 if (shadow
&& shadow
->sp_max
> 0)
842 xasprintf(&user
->pwd_ctime_max
, "%ld", shadow
->sp_max
);
845 #ifdef HAVE_LIBSELINUX
846 if (ctl
->selinux_enabled
) {
847 /* typedefs and pointers are pure evil */
848 security_context_t con
= NULL
;
849 if (getcon(&con
) == 0)
855 xasprintf(&user
->nprocs
, "%d", get_nprocs(pwd
->pw_uid
));
858 /* something went very wrong here */
859 err(EXIT_FAILURE
, "fatal: unknown error");
867 static int str_to_uint(char *s
, unsigned int *ul
)
872 *ul
= strtoul(s
, &end
, 0);
878 /* get a definitive list of users we want info about... */
879 static int get_ulist(struct lslogins_control
*ctl
, char *logins
, char *groups
)
882 size_t i
= 0, n
= 0, *arsiz
;
892 /* an arbitrary starting value */
894 *ar
= xcalloc(1, sizeof(char *) * (*arsiz
));
897 while ((u
= strtok(logins
, ","))) {
900 /* user specified by UID? */
901 if (!str_to_uint(u
, &uid
)) {
907 (*ar
)[i
++] = xstrdup(u
);
910 *ar
= xrealloc(*ar
, sizeof(char *) * (*arsiz
+= 32));
916 /* FIXME: this might lead to duplicate entries, although not visible
917 * in output, crunching a user's info multiple times is very redundant */
918 while ((g
= strtok(groups
, ","))) {
922 /* user specified by GID? */
923 if (!str_to_uint(g
, &gid
))
931 while ((u
= grp
->gr_mem
[n
++])) {
932 (*ar
)[i
++] = xstrdup(u
);
935 *ar
= xrealloc(*ar
, sizeof(char *) * (*arsiz
+= 32));
944 static void free_ctl(struct lslogins_control
*ctl
)
951 while (n
< ctl
->ulsiz
)
952 free(ctl
->ulist
[n
++]);
958 static struct lslogins_user
*get_next_user(struct lslogins_control
*ctl
)
960 struct lslogins_user
*u
;
962 while (!(u
= get_user_info(ctl
, NULL
))) {
963 /* no "false" errno-s here, iff we're unable to
964 * get a valid user entry for any reason, quit */
972 /* some UNIX implementations set errno iff a passwd/grp/...
973 * entry was not found. The original UNIX logins(1) utility always
974 * ignores invalid login/group names, so we're going to as well.*/
975 #define IS_REAL_ERRNO(e) !((e) == ENOENT || (e) == ESRCH || \
976 (e) == EBADF || (e) == EPERM || (e) == EAGAIN)
978 static int get_user(struct lslogins_control
*ctl
, struct lslogins_user
**user
,
979 const char *username
)
981 *user
= get_user_info(ctl
, username
);
982 if (!*user
&& IS_REAL_ERRNO(errno
))
987 static int cmp_uid(const void *a
, const void *b
)
989 uid_t x
= ((const struct lslogins_user
*)a
)->uid
;
990 uid_t z
= ((const struct lslogins_user
*)b
)->uid
;
991 return x
> z
? 1 : (x
< z
? -1 : 0);
994 static int create_usertree(struct lslogins_control
*ctl
)
996 struct lslogins_user
*user
= NULL
;
1000 for (n
= 0; n
< ctl
->ulsiz
; n
++) {
1001 int rc
= get_user(ctl
, &user
, ctl
->ulist
[n
]);
1003 if (ctl
->fail_on_unknown
&& !user
) {
1004 warnx(_("cannot found '%s'"), ctl
->ulist
[n
]);
1010 tsearch(user
, &ctl
->usertree
, cmp_uid
);
1013 while ((user
= get_next_user(ctl
)))
1014 tsearch(user
, &ctl
->usertree
, cmp_uid
);
1019 static struct libscols_table
*setup_table(struct lslogins_control
*ctl
)
1021 struct libscols_table
*table
= scols_new_table();
1025 err(EXIT_FAILURE
, _("failed to allocate output table"));
1026 if (ctl
->noheadings
)
1027 scols_table_enable_noheadings(table
, 1);
1031 scols_table_enable_raw(table
, 1);
1032 scols_table_set_column_separator(table
, ":");
1035 scols_table_set_column_separator(table
, "\n");
1038 scols_table_enable_export(table
, 1);
1041 scols_table_set_line_separator(table
, "\0");
1044 scols_table_enable_raw(table
, 1);
1047 scols_table_enable_noheadings(table
, 1);
1052 while (n
< ncolumns
) {
1053 int flags
= coldescs
[columns
[n
]].flag
;
1056 flags
&= ~SCOLS_FL_TRUNC
;
1058 if (!scols_table_new_column(table
,
1059 coldescs
[columns
[n
]].name
,
1060 coldescs
[columns
[n
]].whint
,
1068 scols_unref_table(table
);
1072 static void fill_table(const void *u
, const VISIT which
, const int depth
__attribute__((unused
)))
1074 struct libscols_line
*ln
;
1075 const struct lslogins_user
*user
= *(struct lslogins_user
* const *)u
;
1078 if (which
== preorder
|| which
== endorder
)
1081 ln
= scols_table_new_line(tb
, NULL
);
1083 err(EXIT_FAILURE
, _("failed to allocate output line"));
1085 while (n
< ncolumns
) {
1088 switch (columns
[n
]) {
1090 rc
= scols_line_set_data(ln
, n
, user
->login
);
1093 rc
= scols_line_refer_data(ln
, n
, uidtostr(user
->uid
));
1096 rc
= scols_line_set_data(ln
, n
, get_status(user
->pwd_empty
));
1099 rc
= scols_line_set_data(ln
, n
, get_status(user
->nologin
));
1102 rc
= scols_line_set_data(ln
, n
, get_status(user
->pwd_lock
));
1105 rc
= scols_line_set_data(ln
, n
, get_status(user
->pwd_deny
));
1108 rc
= scols_line_set_data(ln
, n
, user
->pwd_method
);
1111 rc
= scols_line_set_data(ln
, n
, user
->group
);
1114 rc
= scols_line_refer_data(ln
, n
, gidtostr(user
->gid
));
1117 rc
= scols_line_refer_data(ln
, n
,
1118 build_sgroups_string(user
->sgroups
,
1123 rc
= scols_line_refer_data(ln
, n
,
1124 build_sgroups_string(user
->sgroups
,
1129 rc
= scols_line_set_data(ln
, n
, user
->homedir
);
1132 rc
= scols_line_set_data(ln
, n
, user
->shell
);
1135 rc
= scols_line_set_data(ln
, n
, user
->gecos
);
1137 case COL_LAST_LOGIN
:
1138 rc
= scols_line_set_data(ln
, n
, user
->last_login
);
1141 rc
= scols_line_set_data(ln
, n
, user
->last_tty
);
1143 case COL_LAST_HOSTNAME
:
1144 rc
= scols_line_set_data(ln
, n
, user
->last_hostname
);
1146 case COL_FAILED_LOGIN
:
1147 rc
= scols_line_set_data(ln
, n
, user
->failed_login
);
1149 case COL_FAILED_TTY
:
1150 rc
= scols_line_set_data(ln
, n
, user
->failed_tty
);
1152 case COL_HUSH_STATUS
:
1153 rc
= scols_line_set_data(ln
, n
, get_status(user
->hushed
));
1156 rc
= scols_line_set_data(ln
, n
, user
->pwd_warn
);
1159 rc
= scols_line_set_data(ln
, n
, user
->pwd_expire
);
1162 rc
= scols_line_set_data(ln
, n
, user
->pwd_ctime
);
1164 case COL_PWD_CTIME_MIN
:
1165 rc
= scols_line_set_data(ln
, n
, user
->pwd_ctime_min
);
1167 case COL_PWD_CTIME_MAX
:
1168 rc
= scols_line_set_data(ln
, n
, user
->pwd_ctime_max
);
1171 #ifdef HAVE_LIBSELINUX
1172 rc
= scols_line_set_data(ln
, n
, user
->context
);
1176 rc
= scols_line_set_data(ln
, n
, user
->nprocs
);
1179 /* something went very wrong here */
1180 err(EXIT_FAILURE
, _("internal error: unknown column"));
1184 err(EXIT_FAILURE
, _("failed to add output data"));
1189 #ifdef HAVE_LIBSYSTEMD
1190 static void print_journal_tail(const char *journal_path
, uid_t uid
, size_t len
, int time_mode
)
1193 char *match
, *timestamp
;
1196 const char *identifier
, *pid
, *message
;
1197 size_t identifier_len
, pid_len
, message_len
;
1200 sd_journal_open_directory(&j
, journal_path
, 0);
1202 sd_journal_open(&j
, SD_JOURNAL_LOCAL_ONLY
);
1204 xasprintf(&match
, "_UID=%d", uid
);
1206 sd_journal_add_match(j
, match
, 0);
1207 sd_journal_seek_tail(j
);
1208 sd_journal_previous_skip(j
, len
);
1211 if (0 > sd_journal_get_data(j
, "SYSLOG_IDENTIFIER",
1212 (const void **) &identifier
, &identifier_len
))
1214 if (0 > sd_journal_get_data(j
, "_PID",
1215 (const void **) &pid
, &pid_len
))
1217 if (0 > sd_journal_get_data(j
, "MESSAGE",
1218 (const void **) &message
, &message_len
))
1221 sd_journal_get_realtime_usec(j
, &x
);
1223 timestamp
= make_time(time_mode
, t
);
1224 /* Get rid of journal entry field identifiers */
1225 identifier
= strchr(identifier
, '=') + 1;
1226 pid
= strchr(pid
, '=') + 1;
1227 message
= strchr(message
, '=') + 1;
1229 fprintf(stdout
, "%s %s[%s]: %s\n", timestamp
, identifier
, pid
,
1232 } while (sd_journal_next(j
));
1236 sd_journal_flush_matches(j
);
1237 sd_journal_close(j
);
1241 static int print_pretty(struct libscols_table
*table
)
1243 struct libscols_iter
*itr
= scols_new_iter(SCOLS_ITER_FORWARD
);
1244 struct libscols_column
*col
;
1245 struct libscols_cell
*data
;
1246 struct libscols_line
*ln
;
1247 const char *hstr
, *dstr
;
1250 ln
= scols_table_get_line(table
, 0);
1251 while (!scols_table_next_column(table
, itr
, &col
)) {
1253 data
= scols_line_get_cell(ln
, n
);
1255 hstr
= _(coldescs
[columns
[n
]].pretty_name
);
1256 dstr
= scols_cell_get_data(data
);
1259 printf("%s:%*c%-36s\n", hstr
, 35 - (int)strlen(hstr
), ' ', dstr
);
1263 scols_free_iter(itr
);
1268 static int print_user_table(struct lslogins_control
*ctl
)
1270 tb
= setup_table(ctl
);
1274 twalk(ctl
->usertree
, fill_table
);
1275 if (outmode
== OUT_PRETTY
) {
1277 #ifdef HAVE_LIBSYSTEMD
1278 fprintf(stdout
, _("\nLast logs:\n"));
1279 print_journal_tail(ctl
->journal_path
, ctl
->uid
, 3, ctl
->time_mode
);
1280 fputc('\n', stdout
);
1283 scols_print_table(tb
);
1287 static void free_user(void *f
)
1289 struct lslogins_user
*u
= f
;
1296 free(u
->pwd_ctime_min
);
1297 free(u
->pwd_ctime_max
);
1298 free(u
->last_login
);
1300 free(u
->last_hostname
);
1301 free(u
->failed_login
);
1302 free(u
->failed_tty
);
1305 free(u
->pwd_status
);
1306 #ifdef HAVE_LIBSELINUX
1307 freecon(u
->context
);
1312 static int parse_time_mode(const char *s
)
1314 struct lslogins_timefmt
{
1318 static const struct lslogins_timefmt timefmts
[] = {
1320 {"full", TIME_FULL
},
1321 {"short", TIME_SHORT
},
1325 for (i
= 0; i
< ARRAY_SIZE(timefmts
); i
++) {
1326 if (strcmp(timefmts
[i
].name
, s
) == 0)
1327 return timefmts
[i
].val
;
1329 errx(EXIT_FAILURE
, _("unknown time format: %s"), s
);
1332 static void __attribute__((__noreturn__
)) usage(void)
1337 fputs(USAGE_HEADER
, out
);
1338 fprintf(out
, _(" %s [options] [<username>]\n"), program_invocation_short_name
);
1340 fputs(USAGE_SEPARATOR
, out
);
1341 fputs(_("Display information about known users in the system.\n"), out
);
1343 fputs(USAGE_OPTIONS
, out
);
1344 fputs(_(" -a, --acc-expiration display info about passwords expiration\n"), out
);
1345 fputs(_(" -c, --colon-separate display data in a format similar to /etc/passwd\n"), out
);
1346 fputs(_(" -e, --export display in an export-able output format\n"), out
);
1347 fputs(_(" -f, --failed display data about the users' last failed logins\n"), out
);
1348 fputs(_(" -G, --supp-groups display information about groups\n"), out
);
1349 fputs(_(" -g, --groups=<groups> display users belonging to a group in <groups>\n"), out
);
1350 fputs(_(" -L, --last show info about the users' last login sessions\n"), out
);
1351 fputs(_(" -l, --logins=<logins> display only users from <logins>\n"), out
);
1352 fputs(_(" -n, --newline display each piece of information on a new line\n"), out
);
1353 fputs(_(" --noheadings don't print headings\n"), out
);
1354 fputs(_(" --notruncate don't truncate output\n"), out
);
1355 fputs(_(" -o, --output[=<list>] define the columns to output\n"), out
);
1356 fputs(_(" --output-all output all columns\n"), out
);
1357 fputs(_(" -p, --pwd display information related to login by password.\n"), out
);
1358 fputs(_(" -r, --raw display in raw mode\n"), out
);
1359 fputs(_(" -s, --system-accs display system accounts\n"), out
);
1360 fputs(_(" --time-format=<type> display dates in short, full or iso format\n"), out
);
1361 fputs(_(" -u, --user-accs display user accounts\n"), out
);
1362 fputs(_(" -Z, --context display SELinux contexts\n"), out
);
1363 fputs(_(" -z, --print0 delimit user entries with a nul character\n"), out
);
1364 fputs(_(" --wtmp-file <path> set an alternate path for wtmp\n"), out
);
1365 fputs(_(" --btmp-file <path> set an alternate path for btmp\n"), out
);
1366 fputs(USAGE_SEPARATOR
, out
);
1367 printf(USAGE_HELP_OPTIONS(26));
1369 fputs(USAGE_COLUMNS
, out
);
1370 for (i
= 0; i
< ARRAY_SIZE(coldescs
); i
++)
1371 fprintf(out
, " %14s %s\n", coldescs
[i
].name
, _(coldescs
[i
].help
));
1373 printf(USAGE_MAN_TAIL("lslogins(1)"));
1378 int main(int argc
, char *argv
[])
1381 char *logins
= NULL
, *groups
= NULL
, *outarg
= NULL
;
1382 char *path_wtmp
= _PATH_WTMP
, *path_btmp
= _PATH_BTMP
;
1383 struct lslogins_control
*ctl
= xcalloc(1, sizeof(struct lslogins_control
));
1386 /* long only options. */
1388 OPT_WTMP
= CHAR_MAX
+ 1,
1396 static const struct option longopts
[] = {
1397 { "acc-expiration", no_argument
, 0, 'a' },
1398 { "colon-separate", no_argument
, 0, 'c' },
1399 { "export", no_argument
, 0, 'e' },
1400 { "failed", no_argument
, 0, 'f' },
1401 { "groups", required_argument
, 0, 'g' },
1402 { "help", no_argument
, 0, 'h' },
1403 { "logins", required_argument
, 0, 'l' },
1404 { "supp-groups", no_argument
, 0, 'G' },
1405 { "newline", no_argument
, 0, 'n' },
1406 { "notruncate", no_argument
, 0, OPT_NOTRUNC
},
1407 { "noheadings", no_argument
, 0, OPT_NOHEAD
},
1408 { "output", required_argument
, 0, 'o' },
1409 { "output-all", no_argument
, 0, OPT_OUTPUT_ALL
},
1410 { "last", no_argument
, 0, 'L', },
1411 { "raw", no_argument
, 0, 'r' },
1412 { "system-accs", no_argument
, 0, 's' },
1413 { "time-format", required_argument
, 0, OPT_TIME_FMT
},
1414 { "user-accs", no_argument
, 0, 'u' },
1415 { "version", no_argument
, 0, 'V' },
1416 { "pwd", no_argument
, 0, 'p' },
1417 { "print0", no_argument
, 0, 'z' },
1418 { "wtmp-file", required_argument
, 0, OPT_WTMP
},
1419 { "btmp-file", required_argument
, 0, OPT_BTMP
},
1420 #ifdef HAVE_LIBSELINUX
1421 { "context", no_argument
, 0, 'Z' },
1426 static const ul_excl_t excl
[] = { /* rows and cols in ASCII order */
1431 { 'c','n','r','z' },
1435 int excl_st
[ARRAY_SIZE(excl
)] = UL_EXCL_STATUS_INIT
;
1437 setlocale(LC_ALL
, "");
1438 bindtextdomain(PACKAGE
, LOCALEDIR
);
1439 textdomain(PACKAGE
);
1440 close_stdout_atexit();
1442 ctl
->time_mode
= TIME_SHORT
;
1444 /* very basic default */
1445 add_column(columns
, ncolumns
++, COL_UID
);
1446 add_column(columns
, ncolumns
++, COL_USER
);
1448 while ((c
= getopt_long(argc
, argv
, "acefGg:hLl:no:prsuVzZ",
1449 longopts
, NULL
)) != -1) {
1451 err_exclusive_options(c
, longopts
, excl
, excl_st
);
1455 add_column(columns
, ncolumns
++, COL_PWD_WARN
);
1456 add_column(columns
, ncolumns
++, COL_PWD_CTIME_MIN
);
1457 add_column(columns
, ncolumns
++, COL_PWD_CTIME_MAX
);
1458 add_column(columns
, ncolumns
++, COL_PWD_CTIME
);
1459 add_column(columns
, ncolumns
++, COL_PWD_EXPIR
);
1462 outmode
= OUT_COLON
;
1465 outmode
= OUT_EXPORT
;
1468 add_column(columns
, ncolumns
++, COL_FAILED_LOGIN
);
1469 add_column(columns
, ncolumns
++, COL_FAILED_TTY
);
1472 add_column(columns
, ncolumns
++, COL_GID
);
1473 add_column(columns
, ncolumns
++, COL_GROUP
);
1474 add_column(columns
, ncolumns
++, COL_SGIDS
);
1475 add_column(columns
, ncolumns
++, COL_SGROUPS
);
1484 add_column(columns
, ncolumns
++, COL_LAST_TTY
);
1485 add_column(columns
, ncolumns
++, COL_LAST_HOSTNAME
);
1486 add_column(columns
, ncolumns
++, COL_LAST_LOGIN
);
1492 outmode
= OUT_NEWLINE
;
1499 case OPT_OUTPUT_ALL
:
1500 for (ncolumns
= 0; ncolumns
< ARRAY_SIZE(coldescs
); ncolumns
++)
1501 columns
[ncolumns
] = ncolumns
;
1507 ctl
->SYS_UID_MIN
= getlogindefs_num("SYS_UID_MIN", UL_SYS_UID_MIN
);
1508 ctl
->SYS_UID_MAX
= getlogindefs_num("SYS_UID_MAX", UL_SYS_UID_MAX
);
1509 lslogins_flag
|= F_SYSAC
;
1512 ctl
->UID_MIN
= getlogindefs_num("UID_MIN", UL_UID_MIN
);
1513 ctl
->UID_MAX
= getlogindefs_num("UID_MAX", UL_UID_MAX
);
1514 lslogins_flag
|= F_USRAC
;
1517 add_column(columns
, ncolumns
++, COL_PWDEMPTY
);
1518 add_column(columns
, ncolumns
++, COL_PWDLOCK
);
1519 add_column(columns
, ncolumns
++, COL_PWDDENY
);
1520 add_column(columns
, ncolumns
++, COL_NOLOGIN
);
1521 add_column(columns
, ncolumns
++, COL_HUSH_STATUS
);
1522 add_column(columns
, ncolumns
++, COL_PWDMETHOD
);
1537 ctl
->noheadings
= 1;
1540 ctl
->time_mode
= parse_time_mode(optarg
);
1543 print_version(EXIT_SUCCESS
);
1546 #ifdef HAVE_LIBSELINUX
1547 int sl
= is_selinux_enabled();
1549 warn(_("failed to request selinux state"));
1551 ctl
->selinux_enabled
= sl
== 1;
1553 add_column(columns
, ncolumns
++, COL_SELINUX
);
1557 errtryhelp(EXIT_FAILURE
);
1561 if (argc
- optind
== 1) {
1562 if (strchr(argv
[optind
], ','))
1563 errx(EXIT_FAILURE
, _("Only one user may be specified. Use -l for multiple users."));
1564 logins
= argv
[optind
];
1565 outmode
= OUT_PRETTY
;
1566 ctl
->fail_on_unknown
= 1;
1567 } else if (argc
!= optind
)
1568 errx(EXIT_FAILURE
, _("Only one user may be specified. Use -l for multiple users."));
1570 scols_init_debug(0);
1572 /* lslogins -u -s == lslogins */
1573 if (lslogins_flag
& F_USRAC
&& lslogins_flag
& F_SYSAC
)
1574 lslogins_flag
&= ~(F_USRAC
| F_SYSAC
);
1576 if (outmode
== OUT_PRETTY
) {
1577 /* all columns for lslogins <username> */
1578 for (ncolumns
= 0, i
= 0; i
< ARRAY_SIZE(coldescs
); i
++)
1579 columns
[ncolumns
++] = i
;
1581 } else if (ncolumns
== 2) {
1582 /* default columns */
1583 add_column(columns
, ncolumns
++, COL_NPROCS
);
1584 add_column(columns
, ncolumns
++, COL_PWDLOCK
);
1585 add_column(columns
, ncolumns
++, COL_PWDDENY
);
1586 add_column(columns
, ncolumns
++, COL_LAST_LOGIN
);
1587 add_column(columns
, ncolumns
++, COL_GECOS
);
1590 if (outarg
&& string_add_to_idarray(outarg
, columns
, ARRAY_SIZE(columns
),
1591 &ncolumns
, column_name_to_id
) < 0)
1592 return EXIT_FAILURE
;
1595 parse_wtmp(ctl
, path_wtmp
);
1597 parse_btmp(ctl
, path_btmp
);
1599 if (logins
|| groups
)
1600 get_ulist(ctl
, logins
, groups
);
1602 if (create_usertree(ctl
))
1603 return EXIT_FAILURE
;
1605 print_user_table(ctl
);
1607 scols_unref_table(tb
);
1608 tdestroy(ctl
->usertree
, free_user
);
1611 return EXIT_SUCCESS
;