2 * Copyright (C) 2006-2011 Andre Noll <maan@systemlinux.org>
4 * Licensed under the GPL v2. For licencing details see COPYING.
7 /** \file user_list.c User handling for para_server. */
10 #include <sys/types.h>
19 #include "user_list.h"
22 static struct list_head user_list
;
25 * Fill the list of users known to para_server.
27 * Populates a linked list of all users in \a user_list_file. Returns on
28 * success, calls exit() on errors.
30 static void populate_user_list(char *user_list_file
)
32 int ret
= -E_USERLIST
;
33 FILE *file_ptr
= fopen(user_list_file
, "r");
40 /* keyword, name, key, perms */
41 char w
[255], n
[255], k
[255], p
[255], tmp
[4][255];
43 struct asymmetric_key
*pubkey
;
45 ret
= para_fgets(line
, sizeof(line
), file_ptr
);
48 if (sscanf(line
,"%200s %200s %200s %200s", w
, n
, k
, p
) < 3)
50 if (strcmp(w
, "user"))
52 PARA_DEBUG_LOG("found entry for user %s\n", n
);
53 ret
= get_asymmetric_key(k
, LOAD_PUBLIC_KEY
, &pubkey
);
55 PARA_NOTICE_LOG("skipping entry for user %s: %s\n", n
,
60 * In order to encrypt len := CHALLENGE_SIZE + 2 * RC4_KEY_LEN
61 * bytes using RSA_public_encrypt() with EME-OAEP padding mode,
62 * RSA_size(rsa) must be greater than len + 41. So ignore keys
63 * which are too short. For details see RSA_public_encrypt(3).
65 if (ret
<= CHALLENGE_SIZE
+ 2 * RC4_KEY_LEN
+ 41) {
66 PARA_WARNING_LOG("public key %s too short (%d)\n",
68 free_asymmetric_key(pubkey
);
71 u
= para_malloc(sizeof(*u
));
72 u
->name
= para_strdup(n
);
75 num
= sscanf(p
, "%200[A-Z_],%200[A-Z_],%200[A-Z_],%200[A-Z_]",
76 tmp
[0], tmp
[1], tmp
[2], tmp
[3]);
77 PARA_DEBUG_LOG("found %i perm entries\n", num
);
80 if (!strcmp(tmp
[num
], "VSS_READ"))
82 else if (!strcmp(tmp
[num
], "VSS_WRITE"))
83 u
->perms
|= VSS_WRITE
;
84 else if (!strcmp(tmp
[num
], "AFS_READ"))
86 else if (!strcmp(tmp
[num
], "AFS_WRITE"))
87 u
->perms
|= AFS_WRITE
;
88 else /* unknown permission */
89 PARA_WARNING_LOG("ignoring unknown permission: %s\n",
92 para_list_add(&u
->node
, &user_list
);
98 PARA_EMERG_LOG("%s\n", para_strerror(-ret
));
103 * Initialize the list of users allowed to connect to to para_server.
105 * \param user_list_file The file containing access information.
107 * If this function is called for the second time, the contents of the
108 * previous call are discarded, i.e. the user list is reloaded.
110 void init_user_list(char *user_list_file
)
112 struct user
*u
, *tmp
;
113 static int initialized
;
116 list_for_each_entry_safe(u
, tmp
, &user_list
, node
) {
119 free_asymmetric_key(u
->pubkey
);
123 INIT_LIST_HEAD(&user_list
);
125 populate_user_list(user_list_file
);
129 * Lookup a user in the user list.
131 * \param name The name of the user.
133 * \return A pointer to the corresponding user struct if the user was found, \p
136 struct user
*lookup_user(const char *name
)
139 list_for_each_entry(u
, &user_list
, node
) {
140 if (strcmp(u
->name
, name
))