📄 radwho.c
字号:
/* * radwho.c Show who is logged in on the terminal servers. * Can also be installed as fingerd on the UNIX * machine RADIUS runs on. * * Version: $Id: radwho.c,v 1.44.2.1 2005/04/11 23:29:50 aland Exp $ * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation; either version 2 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program; if not, write to the Free Software * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA * * Copyright 2000 The FreeRADIUS server project * Copyright 2000 Alan DeKok <aland@ox.org> */static const char rcsid[] ="$Id: radwho.c,v 1.44.2.1 2005/04/11 23:29:50 aland Exp $";#include "autoconf.h"#include "libradius.h"#include <stdlib.h>#include <string.h>#include <pwd.h>#include <sys/stat.h>#include <sys/utsname.h>#include <ctype.h>#ifdef HAVE_NETINET_IN_H#include <netinet/in.h>#endif#include "sysutmp.h"#include "radutmp.h"#include "radiusd.h"#include "conffile.h"/* * FIXME: put in header file. */#define SYS_FINGER "/usr/bin/finger"#define FINGER_DIR "/usr/local/lib/finger"/* * Header above output and format. */static const char *hdr1 ="Login Name What TTY When From Location";static const char *rfmt1 = "%-10.10s %-17.17s %-5.5s %s%-3d %-9.9s %-9.9s %-.19s%s";static const char *rfmt1r = "%s,%s,%s,%s%d,%s,%s,%s%s";static const char *hdr2 ="Login Port What When From Location";static const char *rfmt2 = "%-10.10s %s%-5d %-6.6s %-13.13s %-10.10s %-.28s%s";static const char *rfmt2r = "%s,%s%d,%s,%s,%s,%s%s";static const char *eol = "\n";static int showname = -1;static int showptype = 0;static int showcid = 0;int debug_flag = 0;const char *progname = "radwho";const char *radlog_dir = NULL;const char *radutmp_file = NULL;const char *radius_dir = NULL;const char *radacct_dir = NULL;const char *radlib_dir = NULL;uint32_t myip = INADDR_ANY;int log_stripped_names;radlog_dest_t radlog_dest = RADLOG_STDOUT;/* * Global, for log.c to use. */struct main_config_t mainconfig;struct radutmp_config_t { char *radutmp_fn;} radutmpconfig;static const CONF_PARSER module_config[] = { { "filename", PW_TYPE_STRING_PTR, 0, &radutmpconfig.radutmp_fn, RADUTMP }, { NULL, -1, 0, NULL, NULL }};/* * Safe popen. Ugh. */static FILE *safe_popen(const char *cmd, const char *mode){ char *p; char buf[1024]; /* * Change all suspect characters into a space. */ strncpy(buf, cmd, sizeof(buf)); buf[sizeof(buf) - 1] = 0; for (p = buf; *p; p++) { if (isalnum((int) *p)) continue; if (strchr("@%-_ \t+:,./", *p) == NULL) *p = ' '; } return popen(buf, mode);}/* * Print a file from FINGER_DIR. If the file is executable, * execute it instead. Return 0 if succesfull. */static int ffile(const char *arg){ FILE *fp; char fn[1024]; int p = 0; char *s; snprintf(fn, sizeof(fn), "%s/%.32s", FINGER_DIR, arg); if (access(fn, X_OK) == 0) { p = 1; snprintf(fn, sizeof(fn), "exec %s/%.32s 2>&1", FINGER_DIR, arg); fp = safe_popen(fn, "r"); } else fp = fopen(fn, "r"); if (fp == NULL) return -1; while(fgets(fn, 1024, fp)) { if ((s = strchr(fn, '\n')) != NULL) *s = 0; fprintf(stdout, "%s\r\n", fn); } if (p) pclose(fp); else fclose(fp); fflush(stdout); return 0;}/* * Execute the system finger and translate LF to CRLF. */static void sys_finger(const char *l){ FILE *fp; char fn[1024]; char *p; if (ffile(l) == 0) exit(0); snprintf(fn, sizeof(fn), "exec %s %s", SYS_FINGER, l); if ((fp = safe_popen(fn, "r")) == NULL) { printf("popen: %s\r\n", strerror(errno)); exit(1); } while(fgets(fn, 1024, fp)) { if ((p = strchr(fn, '\n')) != NULL) *p = 0; fprintf(stdout, "%s\r\n", fn); } pclose(fp); exit(0);}/* * Get fullname of a user. */static char *fullname(char *username){ struct passwd *pwd; char *s; if ((pwd = getpwnam(username)) != NULL) { if ((s = strchr(pwd->pw_gecos, ',')) != NULL) *s = 0; return pwd->pw_gecos; } return username;}/* * Return protocol type. */static const char *proto(int id, int porttype){ static char buf[8]; if (showptype) { if (!strchr("ASITX", porttype)) porttype = ' '; if (id == 'S') snprintf(buf, sizeof(buf), "SLP %c", porttype); else if (id == 'P') snprintf(buf, sizeof(buf), "PPP %c", porttype); else snprintf(buf, sizeof(buf), "shl %c", porttype); return buf; } if (id == 'S') return "SLIP"; if (id == 'P') return "PPP"; return "shell";}/* * Return a time in the form day hh:mm */static char *dotime(time_t t){ char *s = ctime(&t); if (showname) { strncpy(s + 4, s + 11, 5); s[9] = 0; } else { strncpy(s + 4, s + 8, 8); s[12] = 0; } return s;}/* * Print address of NAS. */static const char *hostname(char *buf, size_t buflen, uint32_t ipaddr){ if (ipaddr == 0 || ipaddr == (uint32_t)-1 || ipaddr == (uint32_t)-2) return ""; return ip_hostname(buf, buflen, ipaddr);}/* * Print usage message and exit. */static void usage(int status){ FILE *output = status?stderr:stdout; fprintf(output, "Usage: radwho [-d raddb] [-cfihnprRsSZ] [-N nas] [-P nas_port] [-u user] [-U user]\n"); fprintf(output, " -c: show caller ID, if available\n"); fprintf(output, " -d: set the raddb directory (default is %s)\n", RADIUS_DIR); fprintf(output, " -f: give fingerd output\n"); fprintf(output, " -i: show session ID\n"); fprintf(output, " -n: no full name\n"); fprintf(output, " -N <nas-ip-address>: Show entries matching the given NAS IP address\n"); fprintf(output, " -p: show port type\n"); fprintf(output, " -P <port>: Show entries matching the given nas port\n"); fprintf(output, " -r: Print output as raw comma-delimited data\n"); fprintf(output, " -R: Print output as RADIUS attributes and values\n"); fprintf(output, " Includes ALL information from the radutmp record.\n"); fprintf(output, " -s: show full name\n"); fprintf(output, " -S: hide shell users from radius\n"); fprintf(output, " -u <user>: Show entries matching the given user\n"); fprintf(output, " -U <user>: like -u, but case-sensitive\n"); fprintf(output, " -Z: Include accounting stop information in radius output. Requires -R.\n"); exit(status);}/* * Main program, either pmwho or fingerd. */int main(int argc, char **argv){ CONF_SECTION *maincs, *cs; FILE *fp; struct radutmp rt; char inbuf[128]; char othername[256]; char nasname[1024]; char session_id[sizeof(rt.session_id)+1]; int fingerd = 0; int hideshell = 0; int showsid = 0; int rawoutput = 0; int radiusoutput = 0; /* Radius attributes */ char *p, *q; const char *portind; int c, portno; char buffer[2048]; const char *user = NULL; int user_cmp = 0; time_t now = 0; uint32_t nas_port = ~0; uint32_t nas_ip_address = INADDR_NONE; int zap = 0; radius_dir = RADIUS_DIR; while((c = getopt(argc, argv, "d:flnN:sSipP:crRu:U:Z")) != EOF) switch(c) { case 'd': radius_dir = optarg; break; case 'f': fingerd++; showname = 0; break; case 'h': usage(0); break; case 'S': hideshell = 1; break; case 'n': showname = 0; break; case 'N': nas_ip_address = ip_addr(optarg); if (nas_ip_address == INADDR_NONE) { usage(1); } break; case 's': showname = 1; break; case 'i': showsid = 1; break; case 'p': showptype = 1; break; case 'P': nas_port = atoi(optarg); break; case 'c': showcid = 1; showname = 1; break; case 'r': rawoutput = 1; break; case 'R': radiusoutput = 1; now = time(NULL); break; case 'u': user = optarg; user_cmp = 0; break; case 'U': user = optarg; user_cmp = 1; break; case 'Z': zap = 1; break; default: usage(1); break; } /* * Be safe. */ if (zap && !radiusoutput) zap = 0; /* * zap EVERYONE, but only on this nas */ if (zap && !user && (~nas_port == 0)) { /* * We need to know which NAS to zap users in. */ if (nas_ip_address == INADDR_NONE) usage(1); printf("Acct-Status-Type = Accounting-Off\n"); printf("NAS-IP-Address = %s\n", ip_hostname(buffer, sizeof(buffer), nas_ip_address)); printf("Acct-Delay-Time = 0\n"); exit(0); /* don't bother printing anything else */ } /* * Initialize mainconfig */ memset(&mainconfig, 0, sizeof(mainconfig)); /* Read radiusd.conf */ snprintf(buffer, sizeof(buffer), "%.200s/radiusd.conf", radius_dir); maincs = conf_read(NULL, 0, buffer, NULL); if (!maincs) { fprintf(stderr, "%s: Error reading radiusd.conf.\n", argv[0]); exit(1); } /* Read the radutmp section of radiusd.conf */ cs = cf_section_sub_find(cf_section_sub_find(maincs, "modules"), "radutmp"); if(!cs) { fprintf(stderr, "%s: No configuration information in radutmp section of radiusd.conf!\n", argv[0]); exit(1); } cf_section_parse(cs, NULL, module_config); /* Assign the correct path for the radutmp file */ radutmp_file = radutmpconfig.radutmp_fn; /* * See if we are "fingerd". */ if (strstr(argv[0], "fingerd")) { fingerd++; eol = "\r\n"; if (showname < 0) showname = 0; } if (showname < 0) showname = 1; if (fingerd) { /* * Read first line of the input. */ fgets(inbuf, 128, stdin); p = inbuf; while(*p == ' ' || *p == '\t') p++; if (*p == '/' && *(p + 1)) p += 2; while(*p == ' ' || *p == '\t') p++; for(q = p; *q && *q != '\r' && *q != '\n'; q++) ; *q = 0; /* * See if we fingered a specific user. */ ffile("header"); if (*p) sys_finger(p); } /* * Show the users logged in on the terminal server(s). */ if ((fp = fopen(radutmp_file, "r")) == NULL) { fprintf(stderr, "%s: Error reading %s: %s\n", progname, radutmp_file, strerror(errno)); return 0; } /* * Don't print the headers if raw or RADIUS */ if (!rawoutput && !radiusoutput) { fputs(showname ? hdr1 : hdr2, stdout); fputs(eol, stdout); } /* * Read the file, printing out active entries. */ while (fread(&rt, sizeof(rt), 1, fp) == 1) { if (rt.type != P_LOGIN) continue; /* hide logout sessions */ /* * We don't show shell users if we are * fingerd, as we have done that above. */ if (hideshell && !strchr("PCS", rt.proto)) continue; /* * Print out sessions only for the given user. */ if (user) { /* only for a particular user */ if (((user_cmp == 0) && (strncasecmp(rt.login, user, strlen(user)) != 0)) || ((user_cmp == 1) && (strncmp(rt.login, user, strlen(user)) != 0))) { continue; } } /* * Print out only for the given NAS port. */ if (~nas_port != 0) { if (rt.nas_port != nas_port) continue; } /* * Print out only for the given NAS IP address */ if (nas_ip_address != INADDR_NONE) { if (rt.nas_address != nas_ip_address) continue; } memcpy(session_id, rt.session_id, sizeof(rt.session_id)); session_id[sizeof(rt.session_id)] = 0; if (!rawoutput && rt.nas_port > (showname ? 999 : 99999)) { portind = ">"; portno = (showname ? 999 : 99999); } else { portind = "S"; portno = rt.nas_port; } /* * Print output as RADIUS attributes */ if (radiusoutput) { memcpy(nasname, rt.login, sizeof(rt.login)); nasname[sizeof(rt.login)] = '\0'; librad_safeprint(nasname, -1, buffer, sizeof(buffer)); printf("User-Name = \"%s\"\n", buffer); librad_safeprint(session_id, -1, buffer, sizeof(buffer)); printf("Acct-Session-Id = \"%s\"\n", buffer); if (zap) printf("Acct-Status-Type = Stop\n"); printf("NAS-IP-Address = %s\n", ip_hostname(buffer, sizeof(buffer), rt.nas_address)); printf("NAS-Port = %d\n", rt.nas_port); switch (rt.proto) { case 'S': printf("Service-Type = Framed-User\n"); printf("Framed-Protocol = SLIP\n"); break; case 'P': printf("Service-Type = Framed-User\n"); printf("Framed-Protocol = PPP\n"); break; default: printf("Service-type = Login-User\n"); break; } if (rt.framed_address != INADDR_NONE) { printf("Framed-IP-Address = %s\n", ip_hostname(buffer, sizeof(buffer), rt.framed_address)); } /* * Some sanity checks on the time */ if ((rt.time <= now) && (now - rt.time) <= (86400 * 365)) { printf("Acct-Session-Time = %ld\n", now - rt.time); } if (rt.caller_id[0] != '\0') { memcpy(nasname, rt.caller_id, sizeof(rt.caller_id)); nasname[sizeof(rt.caller_id)] = '\0'; librad_safeprint(nasname, -1, buffer, sizeof(buffer)); printf("Calling-Station-Id = \"%s\"\n", buffer); } printf("\n"); /* separate entries with a blank line */ continue; } /* * Show the fill name, or not. */ if (showname) { printf((rawoutput == 0? rfmt1: rfmt1r), rt.login, showcid ? rt.caller_id : (showsid? session_id : fullname(rt.login)), proto(rt.proto, rt.porttype), portind, portno, dotime(rt.time), ip_hostname(nasname, sizeof(nasname), rt.nas_address), hostname(othername, sizeof(othername), rt.framed_address), eol); } else { printf((rawoutput == 0? rfmt2: rfmt2r), rt.login, portind, portno, proto(rt.proto, rt.porttype), dotime(rt.time), ip_hostname(nasname, sizeof(nasname), rt.nas_address), hostname(othername, sizeof(othername), rt.framed_address), eol); } } fclose(fp); return 0;}⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -