Improvements to fogbugz oo stuff to make it more schedulator-compatible.

[wvapps.git] / nss / libnss_uniconf.cc

#include "uniconfroot.h"
#include "wvlog.h"
#include "wvlogfile.h"
#include "wvtclstring.h"

#include <stdlib.h>
#include <nss.h>
#include <pwd.h>
#include <grp.h>
#include <shadow.h>
#include <utmp.h>
#include <time.h>
#include <sys/types.h>
#include <pthread.h>
#include <errno.h>

#define MY_RETURN(x) do \
                     { \
                         pthread_mutex_unlock(&nssunilock); \
                         return x; \
                     } while(0)
#define MY_INIT do \
                { \
                    pthread_mutex_lock(&nssunilock); \
                    init(); \
                } while (0)
#define LOCK pthread_mutex_lock(&nssunilock)
#define UNLOCK pthread_mutex_unlock(&nssunilock)

pthread_mutex_t nssunilock = PTHREAD_MUTEX_INITIALIZER;

#ifdef DOLOG
#define LOG(info...) log(info)
static WvLog log("nss-uniconf", WvLog::Debug4);
static WvLogFile logger("/tmp/nss-uniconf", WvLog::Debug5);
#else
#define LOG(info...) ;
static WvLogFileBase logger("/dev/null", WvLog::Debug5);
#endif

static UniConfRoot *cfgroot = NULL;
static UniConf cfg, fnames, uids, groups;
static UniConf::Iter *uiter = NULL;
static UniConf::Iter *giter = NULL;
static UniConf::Iter *siter = NULL;

static void init()
{
    // FIXME: when do we plan to _free_ these?
    if (!cfgroot)
    {
        // connect to the local UniConf daemon
        cfgroot = new UniConfRoot();
        cfg = UniConf(*cfgroot);

        // cache in the daemon, not here
        cfg.mount("auto:ca/nit/nssuniconf");

        fnames = cfg["Full Names"];
        uids = cfg["UIDs"];
        groups = cfg["Groups"];

        uiter = new UniConf::Iter(uids);
        giter = new UniConf::Iter(uids);
        siter = new UniConf::Iter(uids);
        uiter->rewind();
        giter->rewind();
        siter->rewind();
    }
}

static bool putgroup(
    gid_t newgrp, gid_t **groupsp,
    long int *start, long int *size, long int limit)
{
    if (*start == *size && limit <= 0)
    {
        LOG("Not enough room for group entries. Reallocating.\n");
        gid_t *newgroups =
            (gid_t *)realloc((*groupsp), (2 * (*size) + 1) * sizeof(gid_t));

        if (!newgroups)
        {
            LOG("Failed to reallocate.\n");
            return false;
        }

        *groupsp = newgroups;
        *size = 2 * (*size) + 1;
    }

    if (*start < *size)
    {
        (*groupsp)[*start] = newgrp;
        *start += 1;
    }

    LOG("Successfully added group %s to the list", newgrp);
    return true;
}

static char *putmatch(WvBuf &out, WvStringParm s)
{
    WvConstStringBuffer buf(s);
    
    int startofs = out.used();
    while (buf.used())
    {
        out.putstr(wvtcl_getword(buf));
        if (buf.used())
            out.putstr(" ");
    }
    out.putch(0);
    
    return (char *)out.mutablepeek(startofs, out.used() - (unsigned)startofs);
}

static char **putmatches(WvBuf &out, WvStringParm s)
{
    WvStringList users;
    users.split(s, " ");

    if (0 == users.count())
        return NULL;

    int startofl = out.used();
    int currptr = startofl;

    // an extra ptr for NULL at the end
    size_t ptrsize = (users.count() + 1)*sizeof(char *);
    char *ptrs = new char[ptrsize];

    memset(ptrs, 0, ptrsize);
    out.put(ptrs, ptrsize);

    deletev ptrs;

    // dump the strings into the buffer
    WvStringList::Iter i(users);
    for (i.rewind(); i.next(); )
    {
        char *bufstr = putmatch(out, i());
        out.poke(&bufstr, currptr, sizeof(char *));
        currptr += sizeof(char *);
    }

    return (char **)out.mutablepeek(startofl, out.used() - (unsigned)startofl);
}


static enum nss_status pwmatch(struct passwd *pw, int *errnop,
                   char *buf, size_t buflen,
                   WvStringParm username)
{
    WvInPlaceBuf out(buf, 0, buflen);

    WvString homedir("/export/home/%s", username);
    WvString shell("/bin/bash");
    WvString gecos(fnames[username].getme());
    if (!gecos)
        gecos = username;

    pw->pw_name   = putmatch(out, username);
    pw->pw_passwd = putmatch(out, "x");
    pw->pw_uid    = uids[username].getmeint(65534);
    pw->pw_gid    = uids[username].getmeint(65534);
    pw->pw_gecos  = putmatch(out, gecos);
    pw->pw_dir    = putmatch(out, homedir);
    pw->pw_shell  = putmatch(out, shell);
    
    if (out.free() == 0)
    {
        *errnop = errno = ERANGE;
        return NSS_STATUS_TRYAGAIN;
    }
    else
    {
        *errnop = errno = 0;
        return NSS_STATUS_SUCCESS;
    }
}


static enum nss_status grmatch(struct group *gr, int *errnop,
                 char *buf, size_t buflen,
                 WvStringParm username)
{
    WvInPlaceBuf out(buf, 0, buflen);
    WvString members = groups[username].getme();
    if (!members)
        members = username;
    
    gr->gr_name   = putmatch(out, username);
    gr->gr_passwd = putmatch(out, "x");
    gr->gr_gid    = uids[username].getmeint(65534);
    gr->gr_mem    = putmatches(out, members);
    
    if (out.free() == 0)
    {
        *errnop = errno = ERANGE;
        return NSS_STATUS_TRYAGAIN;
    }
    else
    {
        *errnop = errno = 0;
        return NSS_STATUS_SUCCESS;
    }
}


static enum nss_status spmatch(struct spwd *sp, int *errnop,
                 char *buf, size_t buflen,
                 WvStringParm username)
{
    WvInPlaceBuf out(buf, 0, buflen);
    time_t now = time(NULL);
    long lastchg = (now / (60*60*24)) - 1;
 
    sp->sp_namp   = putmatch(out, username);
    sp->sp_pwdp   = NULL;
    sp->sp_lstchg = lastchg;
    sp->sp_min    = 0;
    sp->sp_max    = LONG_MAX;
    sp->sp_warn   = 10;
    sp->sp_inact  = LONG_MAX;
    sp->sp_expire = LONG_MAX;
 
    if (out.free() == 0)
    {
        *errnop = errno = ERANGE;
        return NSS_STATUS_TRYAGAIN;
    }
    else
    {
        *errnop = errno = 0;
        return NSS_STATUS_SUCCESS;
    }
}


extern "C" enum nss_status _nss_uniconf_getpwnam_r(
        const char *user, struct passwd *pw,
        char *buf, size_t buflen, int *errnop)
{
    MY_INIT;
    LOG("%s(%s) called.\n", __func__, user);

    enum nss_status ret = NSS_STATUS_NOTFOUND;
    *errnop = errno = ENOENT;

    if (uids[user].exists())
        ret = pwmatch(pw, errnop, buf, buflen, user);

    MY_RETURN(ret);
}


extern "C" enum nss_status _nss_uniconf_getpwuid_r(
        uid_t uid, struct passwd *pw,
        char *buf, size_t buflen, int *errnop)
{
    MY_INIT;
    LOG("%s(%s) called.\n", __func__, uid);

    WvString username;
    enum nss_status ret = NSS_STATUS_NOTFOUND;
    *errnop = errno = ENOENT;

    UniConf::Iter i(uids);
    for (i.rewind(); i.next(); )
    {
        if (uid == (unsigned)i._value().num())
        {
            username = i().key().printable();
            ret = pwmatch(pw, errnop, buf, buflen, username);
            break;
        }
    }

    MY_RETURN(ret);
}



extern "C" enum nss_status _nss_uniconf_getgrnam_r(
        const char *user, struct group *gr,
        char *buf, size_t buflen, int *errnop)
{
    MY_INIT;
    LOG("%s(%s) called.\n", __func__, user);

    enum nss_status ret = NSS_STATUS_NOTFOUND;
    *errnop = errno = ENOENT;

    if (uids[user].exists())
        ret = grmatch(gr, errnop, buf, buflen, user);

    MY_RETURN(ret);
}


extern "C" enum nss_status _nss_uniconf_getgrgid_r(
        gid_t gid, struct group *gr,
        char *buf, size_t buflen, int *errnop)
{
    MY_INIT;
    LOG("%s(%s) called.\n", __func__, gid);

    WvString username;
    enum nss_status ret = NSS_STATUS_NOTFOUND;
    *errnop = errno = ENOENT;

    UniConf::Iter i(uids);
    for (i.rewind(); i.next(); )
    {
        if (gid == (unsigned)i._value().num())
        {
            username = i().key().printable();
            ret = grmatch(gr, errnop, buf, buflen, username);
            break;
        }
    }

    MY_RETURN(ret);
}

extern "C" enum nss_status _nss_uniconf_getspnam_r(
        const char *user, struct spwd *sp,
        char *buf, size_t buflen, int *errnop)
{
    MY_INIT;
    LOG("%s(%s) called.\n", __func__, user);

    enum nss_status ret = NSS_STATUS_NOTFOUND;
    *errnop = errno = ENOENT;

    if (uids[user].exists())
        ret = spmatch(sp, errnop, buf, buflen, user);

    MY_RETURN(ret);
}


extern "C" enum nss_status _nss_uniconf_getspuid_r(
        uid_t uid, struct spwd *sp,
        char *buf, size_t buflen, int *errnop)
{
    MY_INIT;
    LOG("%s(%s) called.\n", __func__, uid);

    WvString username;
    enum nss_status ret = NSS_STATUS_NOTFOUND;
    *errnop = errno = ENOENT;

    UniConf::Iter i(uids);
    for (i.rewind(); i.next(); )
    {
        if (uid == (unsigned)i._value().num())
        {
            username = i().key().printable();
            ret = spmatch(sp, errnop, buf, buflen, username);
            break;
        }
    }

    MY_RETURN(ret);
}

extern "C" enum nss_status _nss_uniconf_setpwent()
{
    MY_INIT;
    LOG("%s() called.\n", __func__);

    MY_RETURN(NSS_STATUS_SUCCESS);
}

extern "C" enum nss_status _nss_uniconf_setgrent()
{
    MY_INIT;
    LOG("%s() called.\n", __func__);

    MY_RETURN(NSS_STATUS_SUCCESS);
}

extern "C" enum nss_status _nss_uniconf_endpwent()
{
    MY_INIT;
    LOG("%s() called.\n", __func__);

    MY_RETURN(NSS_STATUS_SUCCESS);
}

extern "C" enum nss_status _nss_uniconf_endgrent()
{
    MY_INIT;
    LOG("%s() called.\n", __func__);

    MY_RETURN(NSS_STATUS_SUCCESS);
}

extern "C" enum nss_status _nss_uniconf_setspent()
{
    MY_INIT;
    LOG("%s() called.\n", __func__);

    MY_RETURN(NSS_STATUS_SUCCESS);
}

extern "C" enum nss_status _nss_uniconf_endspent()
{
    MY_INIT;
    LOG("%s() called.\n", __func__);

    MY_RETURN(NSS_STATUS_SUCCESS);
}

extern "C" enum nss_status _nss_uniconf_getpwent_r(
        struct passwd *pw, char *buf,
        int buflen, int *errnop)
{
    MY_INIT;
    LOG("%s() called.\n", __func__);

    UniConf::Iter &i = *uiter;

    if (i.next())
    {
        WvString username = i().key().printable();
        MY_RETURN(_nss_uniconf_getpwnam_r(username, pw,
                                          buf, buflen, errnop));
    }
    else
        i.rewind();

    errno = *errnop = ENOENT;
    MY_RETURN(NSS_STATUS_NOTFOUND);
}

extern "C" enum nss_status _nss_uniconf_getgrent_r(
        struct group *gr, char *buf,
        int buflen, int *errnop)
{
    MY_INIT;
    LOG("%s() called.\n", __func__);

    UniConf::Iter &i = *uiter;

    if (i.next())
    {
        WvString username = i().key().printable();
        MY_RETURN(_nss_uniconf_getgrnam_r(username, gr,
                                          buf, buflen, errnop));
    }
    else
        i.rewind();

    errno = *errnop = ENOENT;
    MY_RETURN(NSS_STATUS_NOTFOUND);
}

extern "C" enum nss_status _nss_uniconf_getspent_r(
        struct spwd *sp, char *buf,
        int buflen, int *errnop)
{
    MY_INIT;
    LOG("%s() called.\n", __func__);

    UniConf::Iter &i = *uiter;

    if (i.next())
    {
        WvString username = i().key().printable();
        MY_RETURN(_nss_uniconf_getspnam_r(username, sp,
                                          buf, buflen, errnop));
    }
    else
        i.rewind();

    errno = *errnop = ENOENT;
    MY_RETURN(NSS_STATUS_NOTFOUND);
}

extern "C" struct passwd *_nss_uniconf_getpwent(void)
{
    MY_INIT;
    LOG("%s() called.\n", __func__);

    struct passwd *ret = (struct passwd *)malloc(sizeof(struct passwd));
    if (!ret)
        MY_RETURN(NULL);

    int errnum = 0;
    size_t bufsize = sysconf(_SC_GETPW_R_SIZE_MAX);
    UniConf::Iter &i = *uiter;

    if (i.next())
    {
        char *buf = (char *)malloc(bufsize);
        if (!buf)
            goto fail;

        WvString username = i().key().printable();

        // don't double-lock
        UNLOCK;
        enum nss_status status =
            _nss_uniconf_getpwnam_r(username, ret,
                                    buf, bufsize, &errnum);
        LOCK;
        
        if (NSS_STATUS_SUCCESS == status)
            MY_RETURN(ret);
        else
            free(buf);
    }
    else
        i.rewind();

fail:
    free(ret);

    MY_RETURN(NULL);
}

extern "C" struct group *_nss_uniconf_getgrent(void)
{
    MY_INIT;
    LOG("%s() called.\n", __func__);

    struct group *ret = (struct group *)malloc(sizeof(struct group));
    if (!ret)
        MY_RETURN(NULL);

    int errnum = 0;
    size_t bufsize = sysconf(_SC_GETGR_R_SIZE_MAX);
    UniConf::Iter &i = *giter;

    if (i.next())
    {
        char *buf = (char *)malloc(bufsize);
        if (!buf)
            goto fail;

        WvString username = i().key().printable();

        // don't double-lock
        UNLOCK;
        enum nss_status status =
            _nss_uniconf_getgrnam_r(username, ret,
                                    buf, bufsize, &errnum);
        LOCK;
        
        if (NSS_STATUS_SUCCESS == status)
            MY_RETURN(ret);
        else
            free(buf);
    }
    else
        i.rewind();

fail:
    free(ret);

    MY_RETURN(NULL);
}

extern "C" struct spwd *_nss_uniconf_getspent(void)
{
    MY_INIT;
    LOG("%s() called.\n", __func__);

    struct spwd *ret = (struct spwd *)malloc(sizeof(struct spwd));
    if (!ret)
        return NULL;

    int errnum = 0;
    size_t bufsize = UT_NAMESIZE;
    UniConf::Iter &i = *siter;

    if (i.next())
    {
        char *buf = (char *)malloc(bufsize);
        if (!buf)
            goto fail;
        
        WvString username = i().key().printable();

        // don't double-lock
        UNLOCK;
        enum nss_status status =
            _nss_uniconf_getspnam_r(username, ret,
                                    buf, bufsize, &errnum);
        LOCK;
        
        if (NSS_STATUS_SUCCESS == status)
            MY_RETURN(ret);
        else
            free(buf);
    }
    else
        i.rewind();

fail:
    free(ret);

    MY_RETURN(NULL);
}

extern "C" enum nss_status _nss_uniconf_initgroups_dyn(
        const char *user, gid_t group, long int *start, long int *size,
        gid_t **groupsp, long int limit, int *errnop)
{
    MY_INIT;
    LOG("%s() called.\n", __func__);

    if (!user || !uids[user].exists())
    {
        errno = *errnop = ENOENT;
        MY_RETURN(NSS_STATUS_NOTFOUND);
    }

    if (*start > *size)
    {
        errno = *errnop = EINVAL;
        MY_RETURN(NSS_STATUS_UNAVAIL);
    }

    gid_t curr = 65534;
    int nmem = 0;
    WvString members;
    WvStringList mlist;

    UniConf::Iter i(groups);
    for (i.rewind(); i.next(); )
    {
        members = i().getme();
        mlist.split(members, " ");
        curr = uids[i().key().printable()].getmeint();
        nmem = mlist.count();

        if (curr == group || !nmem)
            continue;
        
        while (nmem)
        {
            if (mlist.popstr() == user)
            {
                LOG("I think %s is in group %s.\n", user, curr);
                if (!putgroup(curr, groupsp, start, size, limit))
                {
                    errno = *errnop = ENOMEM;
                    MY_RETURN(NSS_STATUS_TRYAGAIN);
                }

                break;
            }

            nmem--;
        }
    }

    errno = *errnop = 0;
    MY_RETURN(NSS_STATUS_SUCCESS);
}