adyxax/bastion
Archived
1
0
Fork 0
Code Issues Activity

Implemented session id management and session logs in database

Browse source
This commit is contained in:
Julien Dessaux 2018-11-03 00:49:22 +01:00
parent fecf526ed3
commit 03f712e583
6 changed files with 39 additions and 13 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

23
src/mysql.c
View file

@ -155,6 +155,29 @@ void db_set_host_publickey_hash(const char * hostname, const char * hash)
} }
} }
unsigned long long // returns 0 on error, or the session_id
db_init_session_and_get_id(const char * hostname, const char * username)
{
char buff[255];
sprintf(buff, "INSERT INTO sessions (created_at, status, user_id, host_id) SELECT NOW(), \"opened\", users.id, hosts.id from users, hosts WHERE users.name = \"%s\" and hosts.name = \"%s\"", username, hostname);
int res = mysql_query(db, buff);
if (res != 0) {
fprintf(stderr, "FATAL: Couldn't insert new session in database for %s to %s\n", username, hostname);
return 0;
}
unsigned long long id = mysql_insert_id(db);
if (id == 0) {
fprintf(stderr, "FATAL: Didn't get proper mysql last insert id after inserting new session for %s to %s\n", username, hostname);
return 0;
}
res = mysql_commit(db);
if (res != 0) {
fprintf(stderr, "FATAL: Couldn't commit after inserting session for %s to %s\n", username, hostname);
return 0;
}
return id;
}
void db_free_host_info(struct db_host_info * info) void db_free_host_info(struct db_host_info * info)
{ {
free(info->privkeytxt); free(info->privkeytxt);

10
src/mysql.h
View file

@ -10,9 +10,13 @@ struct db_host_info {
char db_init(void); char db_init(void);
void db_clean(void); void db_clean(void);
char * db_get_username_from_pubkey(ssh_key pubkey); char * // returns NULL if no user found, this char * is to be freed from the calling code
struct db_host_info * db_get_host_info(const char * hostname); db_get_username_from_pubkey(ssh_key pubkey);
void db_free_host_info(struct db_host_info * info); struct db_host_info * // returns NULL if no key found, this char * is to be freed from the calling code
db_get_host_info(const char * hostname);
void db_set_host_publickey_hash(const char * hostname, const char * hash); void db_set_host_publickey_hash(const char * hostname, const char * hash);
unsigned long long // returns 0 on error, or the session_id
db_init_session_and_get_id(const char * hostname, const char * username);
void db_free_host_info(struct db_host_info * info);
#endif #endif

2
src/recording.c
View file

@ -54,7 +54,7 @@ make_filename(void)
strcpy(filename + fname_pos, username); strcpy(filename + fname_pos, username);
fname_pos += len; fname_pos += len;
} else if (format[format_pos] == 'i') { } else if (format[format_pos] == 'i') {
sprintf(filename + fname_pos, "%d", state_get_session_id()); sprintf(filename + fname_pos, "%llu", state_get_session_id());
fname_pos += strlen(filename + fname_pos); fname_pos += strlen(filename + fname_pos);
} }
format_pos++; format_pos++;

4
src/session.c
View file

@ -38,9 +38,9 @@ static int auth_pubkey(ssh_session session, const char *user, ssh_key pubkey, ch
return SSH_ERROR; return SSH_ERROR;
// TODO check access rights and host configs // TODO check access rights and host configs
state_set_bastion_username(bastion_username); state_set_bastion_username(bastion_username);
unsigned long long session_id = db_init_session_and_get_id(user, bastion_username);
state_set_session_id(session_id);
free(bastion_username); free(bastion_username);
// TODO log session creation in db
state_set_session_id(1337);
return SSH_AUTH_SUCCESS; return SSH_AUTH_SUCCESS;
} else { } else {
free(bastion_username); free(bastion_username);

9
src/state.c
View file

@ -6,10 +6,9 @@
#include "state.h" #include "state.h"
struct state { struct state {
unsigned long long session_id;
char * destination; char * destination;
char * bastion_username; char * bastion_username;
int session_id;
int padding; // makes compiler happy
}; };
static struct state state = {0}; static struct state state = {0};
@ -59,17 +58,17 @@ const char * state_get_bastion_username(void)
} }
char // return 0 if ok, greater than 0 otherwise char // return 0 if ok, greater than 0 otherwise
state_set_session_id(const int id) state_set_session_id(const unsigned long long id)
{ {
if (state.session_id != 0) { if (state.session_id != 0) {
fprintf(stderr, "BUG found, attempting to overwrite state.username that has already been set\n"); fprintf(stderr, "BUG found, attempting to set a state.session_id that has already been set\n");
return 1; return 1;
} }
state.session_id = id; state.session_id = id;
return 0; return 0;
} }
int state_get_session_id(void) unsigned long long state_get_session_id(void)
{ {
return state.session_id; return state.session_id;
} }

4
src/state.h
View file

@ -5,8 +5,8 @@ char state_set_ssh_destination(const char * dest);
const char * state_get_ssh_destination(void); const char * state_get_ssh_destination(void);
char state_set_bastion_username(const char * name); char state_set_bastion_username(const char * name);
const char * state_get_bastion_username(void); const char * state_get_bastion_username(void);
char state_set_session_id(const int id); char state_set_session_id(const unsigned long long id);
int state_get_session_id(void); unsigned long long state_get_session_id(void);
void state_clean(void); void state_clean(void);
#endif #endif