2 * lslogins - List information about users on the system
4 * Copyright (C) 2014 Ondrej Oprala <ooprala@redhat.com>
5 * Copyright (C) 2014 Karel Zak <kzak@redhat.com>
7 * This program is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU General Public License as published by
9 * the Free Software Foundation; either version 2 of the License, or
10 * (at your option) any later version.
12 * This program is distributed in the hope that it would be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 * GNU General Public License for more details.
17 * You should have received a copy of the GNU General Public License along
18 * with this program; if not, write to the Free Software Foundation, Inc.,
19 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
26 #include <sys/types.h>
28 #include <sys/syslog.h>
40 #include <libsmartcols.h>
41 #ifdef HAVE_LIBSELINUX
42 # include <selinux/selinux.h>
45 #ifdef HAVE_LIBSYSTEMD
46 # include <systemd/sd-journal.h>
51 #include "closestream.h"
56 #include "pathnames.h"
57 #include "logindefs.h"
58 #include "procutils.h"
59 #include "timeutils.h"
64 struct lslogins_coldesc
{
67 const char *pretty_name
;
69 double whint
; /* width hint */
73 static int lslogins_flag
;
75 #define UL_UID_MIN 1000
76 #define UL_UID_MAX 60000
77 #define UL_SYS_UID_MIN 101
78 #define UL_SYS_UID_MAX 999
80 /* we use the value of outmode to determine
81 * appropriate flags for the libsmartcols table
82 * (e.g., a value of out_newline would imply a raw
83 * table with the column separator set to '\n').
98 struct lslogins_user
{
118 const char *pwd_method
;
127 #ifdef HAVE_LIBSELINUX
128 security_context_t context
;
190 #define is_wtmp_col(x) ((x) == COL_LAST_LOGIN || \
191 (x) == COL_LAST_TTY || \
192 (x) == COL_LAST_HOSTNAME)
194 #define is_btmp_col(x) ((x) == COL_FAILED_LOGIN || \
195 (x) == COL_FAILED_TTY)
203 static const char *const status
[] = {
204 [STATUS_FALSE
] = "0",
206 [STATUS_UNKNOWN
]= NULL
209 static const char *const pretty_status
[] = {
210 [STATUS_FALSE
] = N_("no"),
211 [STATUS_TRUE
] = N_("yes"),
212 [STATUS_UNKNOWN
]= NULL
215 #define get_status(x) (outmode == OUT_PRETTY ? pretty_status[(x)] : status[(x)])
217 static const struct lslogins_coldesc coldescs
[] =
219 [COL_USER
] = { "USER", N_("user name"), N_("Username"), 0.1, SCOLS_FL_NOEXTREMES
},
220 [COL_UID
] = { "UID", N_("user ID"), "UID", 1, SCOLS_FL_RIGHT
},
221 [COL_PWDEMPTY
] = { "PWD-EMPTY", N_("password not required"), N_("Password not required"), 1, SCOLS_FL_RIGHT
},
222 [COL_PWDDENY
] = { "PWD-DENY", N_("login by password disabled"), N_("Login by password disabled"), 1, SCOLS_FL_RIGHT
},
223 [COL_PWDLOCK
] = { "PWD-LOCK", N_("password defined, but locked"), N_("Password is locked"), 1, SCOLS_FL_RIGHT
},
224 [COL_PWDMETHOD
] = { "PWD-METHOD", N_("password encryption method"), N_("Password encryption method"), 0.1 },
225 [COL_NOLOGIN
] = { "NOLOGIN", N_("log in disabled by nologin(8) or pam_nologin(8)"), N_("No login"), 1, SCOLS_FL_RIGHT
},
226 [COL_GROUP
] = { "GROUP", N_("primary group name"), N_("Primary group"), 0.1 },
227 [COL_GID
] = { "GID", N_("primary group ID"), "GID", 1, SCOLS_FL_RIGHT
},
228 [COL_SGROUPS
] = { "SUPP-GROUPS", N_("supplementary group names"), N_("Supplementary groups"), 0.1 },
229 [COL_SGIDS
] = { "SUPP-GIDS", N_("supplementary group IDs"), N_("Supplementary group IDs"), 0.1 },
230 [COL_HOME
] = { "HOMEDIR", N_("home directory"), N_("Home directory"), 0.1 },
231 [COL_SHELL
] = { "SHELL", N_("login shell"), N_("Shell"), 0.1 },
232 [COL_GECOS
] = { "GECOS", N_("full user name"), N_("Gecos field"), 0.1, SCOLS_FL_TRUNC
},
233 [COL_LAST_LOGIN
] = { "LAST-LOGIN", N_("date of last login"), N_("Last login"), 0.1, SCOLS_FL_RIGHT
},
234 [COL_LAST_TTY
] = { "LAST-TTY", N_("last tty used"), N_("Last terminal"), 0.05 },
235 [COL_LAST_HOSTNAME
] = { "LAST-HOSTNAME",N_("hostname during the last session"), N_("Last hostname"), 0.1},
236 [COL_FAILED_LOGIN
] = { "FAILED-LOGIN", N_("date of last failed login"), N_("Failed login"), 0.1 },
237 [COL_FAILED_TTY
] = { "FAILED-TTY", N_("where did the login fail?"), N_("Failed login terminal"), 0.05 },
238 [COL_HUSH_STATUS
] = { "HUSHED", N_("user's hush settings"), N_("Hushed"), 1, SCOLS_FL_RIGHT
},
239 [COL_PWD_WARN
] = { "PWD-WARN", N_("days user is warned of password expiration"), N_("Password expiration warn interval"), 0.1, SCOLS_FL_RIGHT
},
240 [COL_PWD_EXPIR
] = { "PWD-EXPIR", N_("password expiration date"), N_("Password expiration"), 0.1, SCOLS_FL_RIGHT
},
241 [COL_PWD_CTIME
] = { "PWD-CHANGE", N_("date of last password change"), N_("Password changed"), 0.1, SCOLS_FL_RIGHT
},
242 [COL_PWD_CTIME_MIN
] = { "PWD-MIN", N_("number of days required between changes"), N_("Minimum change time"), 0.1, SCOLS_FL_RIGHT
},
243 [COL_PWD_CTIME_MAX
] = { "PWD-MAX", N_("max number of days a password may remain unchanged"), N_("Maximum change time"), 0.1, SCOLS_FL_RIGHT
},
244 [COL_SELINUX
] = { "CONTEXT", N_("the user's security context"), N_("Selinux context"), 0.1 },
245 [COL_NPROCS
] = { "PROC", N_("number of processes run by the user"), N_("Running processes"), 1, SCOLS_FL_RIGHT
},
248 struct lslogins_control
{
267 unsigned int time_mode
;
269 const char *journal_path
;
271 unsigned int selinux_enabled
: 1,
272 fail_on_unknown
: 1, /* fail if user does not exist */
278 /* these have to remain global since there's no other reasonable way to pass
279 * them for each call of fill_table() via twalk() */
280 static struct libscols_table
*tb
;
282 /* columns[] array specifies all currently wanted output column. The columns
283 * are defined by coldescs[] array and you can specify (on command line) each
284 * column twice. That's enough, dynamically allocated array of the columns is
285 * unnecessary overkill and over-engineering in this case */
286 static int columns
[ARRAY_SIZE(coldescs
) * 2];
287 static size_t ncolumns
;
289 static inline size_t err_columns_index(size_t arysz
, size_t idx
)
292 errx(EXIT_FAILURE
, _("too many columns specified, "
293 "the limit is %zu columns"),
298 #define add_column(ary, n, id) \
299 ((ary)[ err_columns_index(ARRAY_SIZE(ary), (n)) ] = (id))
301 static int column_name_to_id(const char *name
, size_t namesz
)
305 for (i
= 0; i
< ARRAY_SIZE(coldescs
); i
++) {
306 const char *cn
= coldescs
[i
].name
;
308 if (!strncasecmp(name
, cn
, namesz
) && !*(cn
+ namesz
))
311 warnx(_("unknown column: %s"), name
);
315 static struct timeval now
;
317 static char *make_time(int mode
, time_t time
)
327 localtime_r(&time
, &tm
);
330 if (*(s
= buf
+ strlen(buf
) - 1) == '\n')
336 rc
= strtime_short(&time
, &now
, UL_SHORTTIME_THISYEAR_HHMM
,
340 rc
= strtime_iso(&time
, ISO_TIMESTAMP_T
, buf
, sizeof(buf
));
343 rc
= strtime_iso(&time
, ISO_DATE
, buf
, sizeof(buf
));
346 errx(EXIT_FAILURE
, _("unsupported time type"));
350 errx(EXIT_FAILURE
, _("failed to compose time string"));
356 static char *uidtostr(uid_t uid
)
358 char *str_uid
= NULL
;
359 xasprintf(&str_uid
, "%u", uid
);
363 static char *gidtostr(gid_t gid
)
365 char *str_gid
= NULL
;
366 xasprintf(&str_gid
, "%u", gid
);
370 static char *build_sgroups_string(gid_t
*sgroups
, size_t nsgroups
, int want_names
)
372 size_t n
= 0, maxlen
, len
;
378 len
= maxlen
= nsgroups
* 10;
379 res
= p
= xmalloc(maxlen
);
381 while (n
< nsgroups
) {
385 x
= snprintf(p
, len
, "%u,", sgroups
[n
]);
387 struct group
*grp
= getgrgid(sgroups
[n
]);
392 x
= snprintf(p
, len
, "%s,", grp
->gr_name
);
395 if (x
< 0 || (size_t) x
>= len
) {
396 size_t cur
= p
- res
;
399 res
= xrealloc(res
, maxlen
);
416 static struct utmpx
*get_last_wtmp(struct lslogins_control
*ctl
, const char *username
)
423 n
= ctl
->wtmp_size
- 1;
425 if (!strncmp(username
, ctl
->wtmp
[n
].ut_user
,
426 sizeof(ctl
->wtmp
[0].ut_user
)))
427 return ctl
->wtmp
+ n
;
433 static int require_wtmp(void)
436 for (i
= 0; i
< ncolumns
; i
++)
437 if (is_wtmp_col(columns
[i
]))
442 static int require_btmp(void)
445 for (i
= 0; i
< ncolumns
; i
++)
446 if (is_btmp_col(columns
[i
]))
451 static struct utmpx
*get_last_btmp(struct lslogins_control
*ctl
, const char *username
)
458 n
= ctl
->btmp_size
- 1;
460 if (!strncmp(username
, ctl
->btmp
[n
].ut_user
,
461 sizeof(ctl
->wtmp
[0].ut_user
)))
462 return ctl
->btmp
+ n
;
468 static int read_utmp(char const *file
, size_t *nents
, struct utmpx
**res
)
470 size_t n_read
= 0, n_alloc
= 0;
471 struct utmpx
*utmp
= NULL
, *u
;
473 if (utmpxname(file
) < 0)
479 while ((u
= getutxent()) != NULL
) {
480 if (n_read
== n_alloc
) {
482 utmp
= xrealloc(utmp
, n_alloc
* sizeof (struct utmpx
));
499 static int parse_wtmp(struct lslogins_control
*ctl
, char *path
)
503 rc
= read_utmp(path
, &ctl
->wtmp_size
, &ctl
->wtmp
);
504 if (rc
< 0 && errno
!= EACCES
)
505 err(EXIT_FAILURE
, "%s", path
);
509 static int parse_btmp(struct lslogins_control
*ctl
, char *path
)
513 rc
= read_utmp(path
, &ctl
->btmp_size
, &ctl
->btmp
);
514 if (rc
< 0 && errno
!= EACCES
)
515 err(EXIT_FAILURE
, "%s", path
);
519 static int get_sgroups(gid_t
**list
, size_t *len
, struct passwd
*pwd
)
527 /* first let's get a supp. group count */
528 getgrouplist(pwd
->pw_name
, pwd
->pw_gid
, *list
, &ngroups
);
532 *list
= xcalloc(1, ngroups
* sizeof(gid_t
));
534 /* now for the actual list of GIDs */
535 if (-1 == getgrouplist(pwd
->pw_name
, pwd
->pw_gid
, *list
, &ngroups
))
538 *len
= (size_t) ngroups
;
540 /* getgroups also returns the user's primary GID - dispose of it */
542 if ((*list
)[n
] == pwd
->pw_gid
)
548 (*list
)[n
] = (*list
)[--(*len
)];
553 static int get_nprocs(const uid_t uid
)
557 struct proc_processes
*proc
= proc_open_processes();
559 proc_processes_filter_by_uid(proc
, uid
);
561 while (!proc_next_pid(proc
, &pid
))
564 proc_close_processes(proc
);
568 static const char *get_pwd_method(const char *str
, const char **next
, unsigned int *sz
)
571 const char *res
= NULL
;
573 if (!p
|| *p
++ != '$')
587 if (*p
== 'a' || *p
== 'y')
612 #define is_valid_pwd_char(x) (isalnum((unsigned char) (x)) || (x) == '.' || (x) == '/')
615 * This function do not accept empty passwords or locked accouns.
617 static int valid_pwd(const char *str
)
620 unsigned int sz
= 0, n
;
626 if (get_pwd_method(str
, &p
, &sz
) == NULL
)
637 if (!is_valid_pwd_char(*p
))
644 for (n
= 0; *p
; p
++, n
++) {
645 if (!is_valid_pwd_char(*p
))
654 static struct lslogins_user
*get_user_info(struct lslogins_control
*ctl
, const char *username
)
656 struct lslogins_user
*user
;
660 struct utmpx
*user_wtmp
= NULL
, *user_btmp
= NULL
;
667 pwd
= username
? getpwnam(username
) : getpwent();
671 ctl
->uid
= uid
= pwd
->pw_uid
;
673 /* nfsnobody is an exception to the UID_MAX limit. This is "nobody" on
674 * some systems; the decisive point is the UID - 65534 */
675 if ((lslogins_flag
& F_USRAC
) &&
676 strcmp("nfsnobody", pwd
->pw_name
) != 0 &&
678 if (uid
< ctl
->UID_MIN
|| uid
> ctl
->UID_MAX
) {
683 } else if ((lslogins_flag
& F_SYSAC
) &&
684 (uid
< ctl
->SYS_UID_MIN
|| uid
> ctl
->SYS_UID_MAX
)) {
690 grp
= getgrgid(pwd
->pw_gid
);
694 user
= xcalloc(1, sizeof(struct lslogins_user
));
697 user_wtmp
= get_last_wtmp(ctl
, pwd
->pw_name
);
699 user_btmp
= get_last_btmp(ctl
, pwd
->pw_name
);
702 shadow
= getspnam(pwd
->pw_name
);
705 /* required by tseach() stuff */
706 user
->uid
= pwd
->pw_uid
;
708 while (n
< ncolumns
) {
709 switch (columns
[n
++]) {
711 user
->login
= xstrdup(pwd
->pw_name
);
714 user
->uid
= pwd
->pw_uid
;
717 user
->group
= xstrdup(grp
->gr_name
);
720 user
->gid
= pwd
->pw_gid
;
724 if (get_sgroups(&user
->sgroups
, &user
->nsgroups
, pwd
))
725 err(EXIT_FAILURE
, _("failed to get supplementary groups"));
728 user
->homedir
= xstrdup(pwd
->pw_dir
);
731 user
->shell
= xstrdup(pwd
->pw_shell
);
734 user
->gecos
= xstrdup(pwd
->pw_gecos
);
738 time
= user_wtmp
->ut_tv
.tv_sec
;
739 user
->last_login
= make_time(ctl
->time_mode
, time
);
744 user
->last_tty
= xstrdup(user_wtmp
->ut_line
);
746 case COL_LAST_HOSTNAME
:
748 user
->last_hostname
= xstrdup(user_wtmp
->ut_host
);
750 case COL_FAILED_LOGIN
:
752 time
= user_btmp
->ut_tv
.tv_sec
;
753 user
->failed_login
= make_time(ctl
->time_mode
, time
);
758 user
->failed_tty
= xstrdup(user_btmp
->ut_line
);
760 case COL_HUSH_STATUS
:
761 user
->hushed
= get_hushlogin_status(pwd
, 0);
762 if (user
->hushed
== -1)
763 user
->hushed
= STATUS_UNKNOWN
;
767 if (!*shadow
->sp_pwdp
) /* '\0' */
768 user
->pwd_empty
= STATUS_TRUE
;
770 user
->pwd_empty
= STATUS_UNKNOWN
;
774 if ((*shadow
->sp_pwdp
== '!' ||
775 *shadow
->sp_pwdp
== '*') &&
776 !valid_pwd(shadow
->sp_pwdp
+ 1))
777 user
->pwd_deny
= STATUS_TRUE
;
779 user
->pwd_deny
= STATUS_UNKNOWN
;
783 if (*shadow
->sp_pwdp
== '!' && valid_pwd(shadow
->sp_pwdp
+ 1))
784 user
->pwd_lock
= STATUS_TRUE
;
786 user
->pwd_lock
= STATUS_UNKNOWN
;
790 const char *p
= shadow
->sp_pwdp
;
792 if (*p
== '!' || *p
== '*')
794 user
->pwd_method
= get_pwd_method(p
, NULL
, NULL
);
796 user
->pwd_method
= NULL
;
799 if (strstr(pwd
->pw_shell
, "nologin"))
801 else if (pwd
->pw_uid
)
802 user
->nologin
= access(_PATH_NOLOGIN
, F_OK
) == 0 ||
803 access(_PATH_VAR_NOLOGIN
, F_OK
) == 0;
806 if (shadow
&& shadow
->sp_warn
>= 0)
807 xasprintf(&user
->pwd_warn
, "%ld", shadow
->sp_warn
);
810 if (shadow
&& shadow
->sp_expire
>= 0)
811 user
->pwd_expire
= make_time(ctl
->time_mode
== TIME_ISO
?
812 TIME_ISO_SHORT
: ctl
->time_mode
,
813 shadow
->sp_expire
* 86400);
816 /* sp_lstchg is specified in days, showing hours
817 * (especially in non-GMT timezones) would only serve
820 user
->pwd_ctime
= make_time(ctl
->time_mode
== TIME_ISO
?
821 TIME_ISO_SHORT
: ctl
->time_mode
,
822 shadow
->sp_lstchg
* 86400);
824 case COL_PWD_CTIME_MIN
:
825 if (shadow
&& shadow
->sp_min
> 0)
826 xasprintf(&user
->pwd_ctime_min
, "%ld", shadow
->sp_min
);
828 case COL_PWD_CTIME_MAX
:
829 if (shadow
&& shadow
->sp_max
> 0)
830 xasprintf(&user
->pwd_ctime_max
, "%ld", shadow
->sp_max
);
833 #ifdef HAVE_LIBSELINUX
834 if (ctl
->selinux_enabled
) {
835 /* typedefs and pointers are pure evil */
836 security_context_t con
= NULL
;
837 if (getcon(&con
) == 0)
843 xasprintf(&user
->nprocs
, "%d", get_nprocs(pwd
->pw_uid
));
846 /* something went very wrong here */
847 err(EXIT_FAILURE
, "fatal: unknown error");
855 static int str_to_uint(char *s
, unsigned int *ul
)
860 *ul
= strtoul(s
, &end
, 0);
866 /* get a definitive list of users we want info about... */
867 static int get_ulist(struct lslogins_control
*ctl
, char *logins
, char *groups
)
870 size_t i
= 0, n
= 0, *arsiz
;
880 /* an arbitrary starting value */
882 *ar
= xcalloc(1, sizeof(char *) * (*arsiz
));
885 while ((u
= strtok(logins
, ","))) {
888 /* user specified by UID? */
889 if (!str_to_uint(u
, &uid
)) {
895 (*ar
)[i
++] = xstrdup(u
);
898 *ar
= xrealloc(*ar
, sizeof(char *) * (*arsiz
+= 32));
904 /* FIXME: this might lead to duplicate entries, although not visible
905 * in output, crunching a user's info multiple times is very redundant */
906 while ((g
= strtok(groups
, ","))) {
910 /* user specified by GID? */
911 if (!str_to_uint(g
, &gid
))
919 while ((u
= grp
->gr_mem
[n
++])) {
920 (*ar
)[i
++] = xstrdup(u
);
923 *ar
= xrealloc(*ar
, sizeof(char *) * (*arsiz
+= 32));
932 static void free_ctl(struct lslogins_control
*ctl
)
939 while (n
< ctl
->ulsiz
)
940 free(ctl
->ulist
[n
++]);
946 static struct lslogins_user
*get_next_user(struct lslogins_control
*ctl
)
948 struct lslogins_user
*u
;
950 while (!(u
= get_user_info(ctl
, NULL
))) {
951 /* no "false" errno-s here, iff we're unable to
952 * get a valid user entry for any reason, quit */
960 /* some UNIX implementations set errno iff a passwd/grp/...
961 * entry was not found. The original UNIX logins(1) utility always
962 * ignores invalid login/group names, so we're going to as well.*/
963 #define IS_REAL_ERRNO(e) !((e) == ENOENT || (e) == ESRCH || \
964 (e) == EBADF || (e) == EPERM || (e) == EAGAIN)
966 static int get_user(struct lslogins_control
*ctl
, struct lslogins_user
**user
,
967 const char *username
)
969 *user
= get_user_info(ctl
, username
);
970 if (!*user
&& IS_REAL_ERRNO(errno
))
975 static int cmp_uid(const void *a
, const void *b
)
977 uid_t x
= ((const struct lslogins_user
*)a
)->uid
;
978 uid_t z
= ((const struct lslogins_user
*)b
)->uid
;
979 return x
> z
? 1 : (x
< z
? -1 : 0);
982 static int create_usertree(struct lslogins_control
*ctl
)
984 struct lslogins_user
*user
= NULL
;
988 for (n
= 0; n
< ctl
->ulsiz
; n
++) {
989 int rc
= get_user(ctl
, &user
, ctl
->ulist
[n
]);
991 if (ctl
->fail_on_unknown
&& !user
) {
992 warnx(_("cannot found '%s'"), ctl
->ulist
[n
]);
998 tsearch(user
, &ctl
->usertree
, cmp_uid
);
1001 while ((user
= get_next_user(ctl
)))
1002 tsearch(user
, &ctl
->usertree
, cmp_uid
);
1007 static struct libscols_table
*setup_table(struct lslogins_control
*ctl
)
1009 struct libscols_table
*table
= scols_new_table();
1013 err(EXIT_FAILURE
, _("failed to allocate output table"));
1014 if (ctl
->noheadings
)
1015 scols_table_enable_noheadings(table
, 1);
1019 scols_table_enable_raw(table
, 1);
1020 scols_table_set_column_separator(table
, ":");
1023 scols_table_set_column_separator(table
, "\n");
1026 scols_table_enable_export(table
, 1);
1029 scols_table_set_line_separator(table
, "\0");
1032 scols_table_enable_raw(table
, 1);
1035 scols_table_enable_noheadings(table
, 1);
1040 while (n
< ncolumns
) {
1041 int flags
= coldescs
[columns
[n
]].flag
;
1044 flags
&= ~SCOLS_FL_TRUNC
;
1046 if (!scols_table_new_column(table
,
1047 coldescs
[columns
[n
]].name
,
1048 coldescs
[columns
[n
]].whint
,
1056 scols_unref_table(table
);
1060 static void fill_table(const void *u
, const VISIT which
, const int depth
__attribute__((unused
)))
1062 struct libscols_line
*ln
;
1063 const struct lslogins_user
*user
= *(struct lslogins_user
* const *)u
;
1066 if (which
== preorder
|| which
== endorder
)
1069 ln
= scols_table_new_line(tb
, NULL
);
1071 err(EXIT_FAILURE
, _("failed to allocate output line"));
1073 while (n
< ncolumns
) {
1076 switch (columns
[n
]) {
1078 rc
= scols_line_set_data(ln
, n
, user
->login
);
1081 rc
= scols_line_refer_data(ln
, n
, uidtostr(user
->uid
));
1084 rc
= scols_line_set_data(ln
, n
, get_status(user
->pwd_empty
));
1087 rc
= scols_line_set_data(ln
, n
, get_status(user
->nologin
));
1090 rc
= scols_line_set_data(ln
, n
, get_status(user
->pwd_lock
));
1093 rc
= scols_line_set_data(ln
, n
, get_status(user
->pwd_deny
));
1096 rc
= scols_line_set_data(ln
, n
, user
->pwd_method
);
1099 rc
= scols_line_set_data(ln
, n
, user
->group
);
1102 rc
= scols_line_refer_data(ln
, n
, gidtostr(user
->gid
));
1105 rc
= scols_line_refer_data(ln
, n
,
1106 build_sgroups_string(user
->sgroups
,
1111 rc
= scols_line_refer_data(ln
, n
,
1112 build_sgroups_string(user
->sgroups
,
1117 rc
= scols_line_set_data(ln
, n
, user
->homedir
);
1120 rc
= scols_line_set_data(ln
, n
, user
->shell
);
1123 rc
= scols_line_set_data(ln
, n
, user
->gecos
);
1125 case COL_LAST_LOGIN
:
1126 rc
= scols_line_set_data(ln
, n
, user
->last_login
);
1129 rc
= scols_line_set_data(ln
, n
, user
->last_tty
);
1131 case COL_LAST_HOSTNAME
:
1132 rc
= scols_line_set_data(ln
, n
, user
->last_hostname
);
1134 case COL_FAILED_LOGIN
:
1135 rc
= scols_line_set_data(ln
, n
, user
->failed_login
);
1137 case COL_FAILED_TTY
:
1138 rc
= scols_line_set_data(ln
, n
, user
->failed_tty
);
1140 case COL_HUSH_STATUS
:
1141 rc
= scols_line_set_data(ln
, n
, get_status(user
->hushed
));
1144 rc
= scols_line_set_data(ln
, n
, user
->pwd_warn
);
1147 rc
= scols_line_set_data(ln
, n
, user
->pwd_expire
);
1150 rc
= scols_line_set_data(ln
, n
, user
->pwd_ctime
);
1152 case COL_PWD_CTIME_MIN
:
1153 rc
= scols_line_set_data(ln
, n
, user
->pwd_ctime_min
);
1155 case COL_PWD_CTIME_MAX
:
1156 rc
= scols_line_set_data(ln
, n
, user
->pwd_ctime_max
);
1159 #ifdef HAVE_LIBSELINUX
1160 rc
= scols_line_set_data(ln
, n
, user
->context
);
1164 rc
= scols_line_set_data(ln
, n
, user
->nprocs
);
1167 /* something went very wrong here */
1168 err(EXIT_FAILURE
, _("internal error: unknown column"));
1172 err(EXIT_FAILURE
, _("failed to add output data"));
1177 #ifdef HAVE_LIBSYSTEMD
1178 static void print_journal_tail(const char *journal_path
, uid_t uid
, size_t len
, int time_mode
)
1181 char *match
, *timestamp
;
1184 const char *identifier
, *pid
, *message
;
1185 size_t identifier_len
, pid_len
, message_len
;
1188 sd_journal_open_directory(&j
, journal_path
, 0);
1190 sd_journal_open(&j
, SD_JOURNAL_LOCAL_ONLY
);
1192 xasprintf(&match
, "_UID=%d", uid
);
1194 sd_journal_add_match(j
, match
, 0);
1195 sd_journal_seek_tail(j
);
1196 sd_journal_previous_skip(j
, len
);
1199 if (0 > sd_journal_get_data(j
, "SYSLOG_IDENTIFIER",
1200 (const void **) &identifier
, &identifier_len
))
1202 if (0 > sd_journal_get_data(j
, "_PID",
1203 (const void **) &pid
, &pid_len
))
1205 if (0 > sd_journal_get_data(j
, "MESSAGE",
1206 (const void **) &message
, &message_len
))
1209 sd_journal_get_realtime_usec(j
, &x
);
1211 timestamp
= make_time(time_mode
, t
);
1212 /* Get rid of journal entry field identifiers */
1213 identifier
= strchr(identifier
, '=') + 1;
1214 pid
= strchr(pid
, '=') + 1;
1215 message
= strchr(message
, '=') + 1;
1217 fprintf(stdout
, "%s %s[%s]: %s\n", timestamp
, identifier
, pid
,
1220 } while (sd_journal_next(j
));
1224 sd_journal_flush_matches(j
);
1225 sd_journal_close(j
);
1229 static int print_pretty(struct libscols_table
*table
)
1231 struct libscols_iter
*itr
= scols_new_iter(SCOLS_ITER_FORWARD
);
1232 struct libscols_column
*col
;
1233 struct libscols_cell
*data
;
1234 struct libscols_line
*ln
;
1235 const char *hstr
, *dstr
;
1238 ln
= scols_table_get_line(table
, 0);
1239 while (!scols_table_next_column(table
, itr
, &col
)) {
1241 data
= scols_line_get_cell(ln
, n
);
1243 hstr
= _(coldescs
[columns
[n
]].pretty_name
);
1244 dstr
= scols_cell_get_data(data
);
1247 printf("%s:%*c%-36s\n", hstr
, 35 - (int)strlen(hstr
), ' ', dstr
);
1251 scols_free_iter(itr
);
1256 static int print_user_table(struct lslogins_control
*ctl
)
1258 tb
= setup_table(ctl
);
1262 twalk(ctl
->usertree
, fill_table
);
1263 if (outmode
== OUT_PRETTY
) {
1265 #ifdef HAVE_LIBSYSTEMD
1266 fprintf(stdout
, _("\nLast logs:\n"));
1267 print_journal_tail(ctl
->journal_path
, ctl
->uid
, 3, ctl
->time_mode
);
1268 fputc('\n', stdout
);
1271 scols_print_table(tb
);
1275 static void free_user(void *f
)
1277 struct lslogins_user
*u
= f
;
1284 free(u
->pwd_ctime_min
);
1285 free(u
->pwd_ctime_max
);
1286 free(u
->last_login
);
1288 free(u
->last_hostname
);
1289 free(u
->failed_login
);
1290 free(u
->failed_tty
);
1293 free(u
->pwd_status
);
1294 #ifdef HAVE_LIBSELINUX
1295 freecon(u
->context
);
1300 static int parse_time_mode(const char *s
)
1302 struct lslogins_timefmt
{
1306 static const struct lslogins_timefmt timefmts
[] = {
1308 {"full", TIME_FULL
},
1309 {"short", TIME_SHORT
},
1313 for (i
= 0; i
< ARRAY_SIZE(timefmts
); i
++) {
1314 if (strcmp(timefmts
[i
].name
, s
) == 0)
1315 return timefmts
[i
].val
;
1317 errx(EXIT_FAILURE
, _("unknown time format: %s"), s
);
1320 static void __attribute__((__noreturn__
)) usage(void)
1325 fputs(USAGE_HEADER
, out
);
1326 fprintf(out
, _(" %s [options] [<username>]\n"), program_invocation_short_name
);
1328 fputs(USAGE_SEPARATOR
, out
);
1329 fputs(_("Display information about known users in the system.\n"), out
);
1331 fputs(USAGE_OPTIONS
, out
);
1332 fputs(_(" -a, --acc-expiration display info about passwords expiration\n"), out
);
1333 fputs(_(" -c, --colon-separate display data in a format similar to /etc/passwd\n"), out
);
1334 fputs(_(" -e, --export display in an export-able output format\n"), out
);
1335 fputs(_(" -f, --failed display data about the users' last failed logins\n"), out
);
1336 fputs(_(" -G, --supp-groups display information about groups\n"), out
);
1337 fputs(_(" -g, --groups=<groups> display users belonging to a group in <groups>\n"), out
);
1338 fputs(_(" -L, --last show info about the users' last login sessions\n"), out
);
1339 fputs(_(" -l, --logins=<logins> display only users from <logins>\n"), out
);
1340 fputs(_(" -n, --newline display each piece of information on a new line\n"), out
);
1341 fputs(_(" --noheadings don't print headings\n"), out
);
1342 fputs(_(" --notruncate don't truncate output\n"), out
);
1343 fputs(_(" -o, --output[=<list>] define the columns to output\n"), out
);
1344 fputs(_(" --output-all output all columns\n"), out
);
1345 fputs(_(" -p, --pwd display information related to login by password.\n"), out
);
1346 fputs(_(" -r, --raw display in raw mode\n"), out
);
1347 fputs(_(" -s, --system-accs display system accounts\n"), out
);
1348 fputs(_(" --time-format=<type> display dates in short, full or iso format\n"), out
);
1349 fputs(_(" -u, --user-accs display user accounts\n"), out
);
1350 fputs(_(" -Z, --context display SELinux contexts\n"), out
);
1351 fputs(_(" -z, --print0 delimit user entries with a nul character\n"), out
);
1352 fputs(_(" --wtmp-file <path> set an alternate path for wtmp\n"), out
);
1353 fputs(_(" --btmp-file <path> set an alternate path for btmp\n"), out
);
1354 fputs(USAGE_SEPARATOR
, out
);
1355 printf(USAGE_HELP_OPTIONS(26));
1357 fputs(USAGE_COLUMNS
, out
);
1358 for (i
= 0; i
< ARRAY_SIZE(coldescs
); i
++)
1359 fprintf(out
, " %14s %s\n", coldescs
[i
].name
, _(coldescs
[i
].help
));
1361 printf(USAGE_MAN_TAIL("lslogins(1)"));
1366 int main(int argc
, char *argv
[])
1369 char *logins
= NULL
, *groups
= NULL
, *outarg
= NULL
;
1370 char *path_wtmp
= _PATH_WTMP
, *path_btmp
= _PATH_BTMP
;
1371 struct lslogins_control
*ctl
= xcalloc(1, sizeof(struct lslogins_control
));
1374 /* long only options. */
1376 OPT_WTMP
= CHAR_MAX
+ 1,
1384 static const struct option longopts
[] = {
1385 { "acc-expiration", no_argument
, 0, 'a' },
1386 { "colon-separate", no_argument
, 0, 'c' },
1387 { "export", no_argument
, 0, 'e' },
1388 { "failed", no_argument
, 0, 'f' },
1389 { "groups", required_argument
, 0, 'g' },
1390 { "help", no_argument
, 0, 'h' },
1391 { "logins", required_argument
, 0, 'l' },
1392 { "supp-groups", no_argument
, 0, 'G' },
1393 { "newline", no_argument
, 0, 'n' },
1394 { "notruncate", no_argument
, 0, OPT_NOTRUNC
},
1395 { "noheadings", no_argument
, 0, OPT_NOHEAD
},
1396 { "output", required_argument
, 0, 'o' },
1397 { "output-all", no_argument
, 0, OPT_OUTPUT_ALL
},
1398 { "last", no_argument
, 0, 'L', },
1399 { "raw", no_argument
, 0, 'r' },
1400 { "system-accs", no_argument
, 0, 's' },
1401 { "time-format", required_argument
, 0, OPT_TIME_FMT
},
1402 { "user-accs", no_argument
, 0, 'u' },
1403 { "version", no_argument
, 0, 'V' },
1404 { "pwd", no_argument
, 0, 'p' },
1405 { "print0", no_argument
, 0, 'z' },
1406 { "wtmp-file", required_argument
, 0, OPT_WTMP
},
1407 { "btmp-file", required_argument
, 0, OPT_BTMP
},
1408 #ifdef HAVE_LIBSELINUX
1409 { "context", no_argument
, 0, 'Z' },
1414 static const ul_excl_t excl
[] = { /* rows and cols in ASCII order */
1419 { 'c','n','r','z' },
1423 int excl_st
[ARRAY_SIZE(excl
)] = UL_EXCL_STATUS_INIT
;
1425 setlocale(LC_ALL
, "");
1426 bindtextdomain(PACKAGE
, LOCALEDIR
);
1427 textdomain(PACKAGE
);
1428 close_stdout_atexit();
1430 ctl
->time_mode
= TIME_SHORT
;
1432 /* very basic default */
1433 add_column(columns
, ncolumns
++, COL_UID
);
1434 add_column(columns
, ncolumns
++, COL_USER
);
1436 while ((c
= getopt_long(argc
, argv
, "acefGg:hLl:no:prsuVzZ",
1437 longopts
, NULL
)) != -1) {
1439 err_exclusive_options(c
, longopts
, excl
, excl_st
);
1443 add_column(columns
, ncolumns
++, COL_PWD_WARN
);
1444 add_column(columns
, ncolumns
++, COL_PWD_CTIME_MIN
);
1445 add_column(columns
, ncolumns
++, COL_PWD_CTIME_MAX
);
1446 add_column(columns
, ncolumns
++, COL_PWD_CTIME
);
1447 add_column(columns
, ncolumns
++, COL_PWD_EXPIR
);
1450 outmode
= OUT_COLON
;
1453 outmode
= OUT_EXPORT
;
1456 add_column(columns
, ncolumns
++, COL_FAILED_LOGIN
);
1457 add_column(columns
, ncolumns
++, COL_FAILED_TTY
);
1460 add_column(columns
, ncolumns
++, COL_GID
);
1461 add_column(columns
, ncolumns
++, COL_GROUP
);
1462 add_column(columns
, ncolumns
++, COL_SGIDS
);
1463 add_column(columns
, ncolumns
++, COL_SGROUPS
);
1472 add_column(columns
, ncolumns
++, COL_LAST_TTY
);
1473 add_column(columns
, ncolumns
++, COL_LAST_HOSTNAME
);
1474 add_column(columns
, ncolumns
++, COL_LAST_LOGIN
);
1480 outmode
= OUT_NEWLINE
;
1487 case OPT_OUTPUT_ALL
:
1488 for (ncolumns
= 0; ncolumns
< ARRAY_SIZE(coldescs
); ncolumns
++)
1489 columns
[ncolumns
] = ncolumns
;
1495 ctl
->SYS_UID_MIN
= getlogindefs_num("SYS_UID_MIN", UL_SYS_UID_MIN
);
1496 ctl
->SYS_UID_MAX
= getlogindefs_num("SYS_UID_MAX", UL_SYS_UID_MAX
);
1497 lslogins_flag
|= F_SYSAC
;
1500 ctl
->UID_MIN
= getlogindefs_num("UID_MIN", UL_UID_MIN
);
1501 ctl
->UID_MAX
= getlogindefs_num("UID_MAX", UL_UID_MAX
);
1502 lslogins_flag
|= F_USRAC
;
1505 add_column(columns
, ncolumns
++, COL_PWDEMPTY
);
1506 add_column(columns
, ncolumns
++, COL_PWDLOCK
);
1507 add_column(columns
, ncolumns
++, COL_PWDDENY
);
1508 add_column(columns
, ncolumns
++, COL_NOLOGIN
);
1509 add_column(columns
, ncolumns
++, COL_HUSH_STATUS
);
1510 add_column(columns
, ncolumns
++, COL_PWDMETHOD
);
1525 ctl
->noheadings
= 1;
1528 ctl
->time_mode
= parse_time_mode(optarg
);
1531 print_version(EXIT_SUCCESS
);
1534 #ifdef HAVE_LIBSELINUX
1535 int sl
= is_selinux_enabled();
1537 warn(_("failed to request selinux state"));
1539 ctl
->selinux_enabled
= sl
== 1;
1541 add_column(columns
, ncolumns
++, COL_SELINUX
);
1545 errtryhelp(EXIT_FAILURE
);
1549 if (argc
- optind
== 1) {
1550 if (strchr(argv
[optind
], ','))
1551 errx(EXIT_FAILURE
, _("Only one user may be specified. Use -l for multiple users."));
1552 logins
= argv
[optind
];
1553 outmode
= OUT_PRETTY
;
1554 ctl
->fail_on_unknown
= 1;
1555 } else if (argc
!= optind
)
1556 errx(EXIT_FAILURE
, _("Only one user may be specified. Use -l for multiple users."));
1558 scols_init_debug(0);
1560 /* lslogins -u -s == lslogins */
1561 if (lslogins_flag
& F_USRAC
&& lslogins_flag
& F_SYSAC
)
1562 lslogins_flag
&= ~(F_USRAC
| F_SYSAC
);
1564 if (outmode
== OUT_PRETTY
) {
1565 /* all columns for lslogins <username> */
1566 for (ncolumns
= 0, i
= 0; i
< ARRAY_SIZE(coldescs
); i
++)
1567 columns
[ncolumns
++] = i
;
1569 } else if (ncolumns
== 2) {
1570 /* default columns */
1571 add_column(columns
, ncolumns
++, COL_NPROCS
);
1572 add_column(columns
, ncolumns
++, COL_PWDLOCK
);
1573 add_column(columns
, ncolumns
++, COL_PWDDENY
);
1574 add_column(columns
, ncolumns
++, COL_LAST_LOGIN
);
1575 add_column(columns
, ncolumns
++, COL_GECOS
);
1578 if (outarg
&& string_add_to_idarray(outarg
, columns
, ARRAY_SIZE(columns
),
1579 &ncolumns
, column_name_to_id
) < 0)
1580 return EXIT_FAILURE
;
1583 parse_wtmp(ctl
, path_wtmp
);
1585 parse_btmp(ctl
, path_btmp
);
1587 if (logins
|| groups
)
1588 get_ulist(ctl
, logins
, groups
);
1590 if (create_usertree(ctl
))
1591 return EXIT_FAILURE
;
1593 print_user_table(ctl
);
1595 scols_unref_table(tb
);
1596 tdestroy(ctl
->usertree
, free_user
);
1599 return EXIT_SUCCESS
;