webdiss/conf.c

#include <stdlib.h>
#include <stdio.h>
#include <string.h>
#include <ctype.h>
#include <arpa/inet.h>
#include <unistd.h>
#include <pwd.h>
#include <grp.h>

#include <jansson.h>
#include <evhttp.h>
#include <b64/cencode.h>
#include "conf.h"
#include "acl.h"

static struct acl *
conf_parse_acls(json_t *jtab);

struct conf *
conf_read(const char *filename) {

	json_t *j;
	json_error_t error;
	struct conf *conf;
	void *kv;

	/* defaults */
	conf = calloc(1, sizeof(struct conf));
	conf->redis_host = strdup("127.0.0.1");
	conf->redis_port = 6379;
	conf->http_host = strdup("0.0.0.0");
	conf->http_port = 7379;
	conf->http_max_request_size = 128*1024*1024;
	conf->http_threads = 4;
	conf->user = getuid();
	conf->group = getgid();
	conf->logfile = "webdis.log";
	conf->verbosity = WEBDIS_NOTICE;
	conf->daemonize = 0;
	conf->pidfile = "webdis.pid";
	conf->database = 0;
	conf->pool_size_per_thread = 2;

	j = json_load_file(filename, 0, &error);
	if(!j) {
		fprintf(stderr, "Error: %s (line %d)\n", error.text, error.line);
		return conf;
	}

	for(kv = json_object_iter(j); kv; kv = json_object_iter_next(j, kv)) {
		json_t *jtmp = json_object_iter_value(kv);

		if(strcmp(json_object_iter_key(kv), "redis_host") == 0 && json_typeof(jtmp) == JSON_STRING) {
			free(conf->redis_host);
			conf->redis_host = strdup(json_string_value(jtmp));
		} else if(strcmp(json_object_iter_key(kv), "redis_port") == 0 && json_typeof(jtmp) == JSON_INTEGER) {
			conf->redis_port = (int)json_integer_value(jtmp);
		} else if(strcmp(json_object_iter_key(kv), "redis_auth") == 0 && json_typeof(jtmp) == JSON_STRING) {
			conf->redis_auth = strdup(json_string_value(jtmp));
		} else if(strcmp(json_object_iter_key(kv), "http_host") == 0 && json_typeof(jtmp) == JSON_STRING) {
			free(conf->http_host);
			conf->http_host = strdup(json_string_value(jtmp));
		} else if(strcmp(json_object_iter_key(kv), "http_port") == 0 && json_typeof(jtmp) == JSON_INTEGER) {
			conf->http_port = (int)json_integer_value(jtmp);
		} else if(strcmp(json_object_iter_key(kv), "http_max_request_size") == 0 && json_typeof(jtmp) == JSON_INTEGER) {
			conf->http_max_request_size = (size_t)json_integer_value(jtmp);
		} else if(strcmp(json_object_iter_key(kv), "threads") == 0 && json_typeof(jtmp) == JSON_INTEGER) {
			conf->http_threads = (int)json_integer_value(jtmp);
		} else if(strcmp(json_object_iter_key(kv), "acl") == 0 && json_typeof(jtmp) == JSON_ARRAY) {
			conf->perms = conf_parse_acls(jtmp);
		} else if(strcmp(json_object_iter_key(kv), "user") == 0 && json_typeof(jtmp) == JSON_STRING) {
			struct passwd *u;
			if((u = getpwnam(json_string_value(jtmp)))) {
				conf->user = u->pw_uid;
			}
		} else if(strcmp(json_object_iter_key(kv), "group") == 0 && json_typeof(jtmp) == JSON_STRING) {
			struct group *g;
			if((g = getgrnam(json_string_value(jtmp)))) {
				conf->group = g->gr_gid;
			}
		} else if(strcmp(json_object_iter_key(kv),"logfile") == 0 && json_typeof(jtmp) == JSON_STRING){
			conf->logfile = strdup(json_string_value(jtmp));
		} else if(strcmp(json_object_iter_key(kv),"verbosity") == 0 && json_typeof(jtmp) == JSON_INTEGER){
			int tmp = json_integer_value(jtmp);
			if(tmp < 0) conf->verbosity = WEBDIS_ERROR;
			else if(tmp > (int)WEBDIS_DEBUG) conf->verbosity = WEBDIS_DEBUG;
			else conf->verbosity = (log_level)tmp;
		} else if(strcmp(json_object_iter_key(kv), "daemonize") == 0 && json_typeof(jtmp) == JSON_TRUE) {
			conf->daemonize = 1;
		} else if(strcmp(json_object_iter_key(kv),"pidfile") == 0 && json_typeof(jtmp) == JSON_STRING){
			conf->pidfile = strdup(json_string_value(jtmp));
		} else if(strcmp(json_object_iter_key(kv), "websockets") == 0 && json_typeof(jtmp) == JSON_TRUE) {
			conf->websockets = 1;
		} else if(strcmp(json_object_iter_key(kv), "database") == 0 && json_typeof(jtmp) == JSON_INTEGER) {
			conf->database = json_integer_value(jtmp);
		} else if(strcmp(json_object_iter_key(kv), "pool_size") == 0 && json_typeof(jtmp) == JSON_INTEGER) {
			conf->pool_size_per_thread = json_integer_value(jtmp);
		} else if(strcmp(json_object_iter_key(kv), "default_root") == 0 && json_typeof(jtmp) == JSON_STRING) {
			conf->default_root = strdup(json_string_value(jtmp));
		}
	}

	json_decref(j);

	return conf;
}

void
acl_read_commands(json_t *jlist, struct acl_commands *ac) {

	unsigned int i, n, cur;

	/* count strings in the array */
	for(i = 0, n = 0; i < json_array_size(jlist); ++i) {
		json_t *jelem = json_array_get(jlist, (size_t)i);
		if(json_typeof(jelem) == JSON_STRING) {
			n++;
		}
	}

	/* allocate block */
	ac->commands = calloc((size_t)n, sizeof(char*));
	ac->count = n;

	/* add all disabled commands */
	for(i = 0, cur = 0; i < json_array_size(jlist); ++i) {
		json_t *jelem = json_array_get(jlist, i);
		if(json_typeof(jelem) == JSON_STRING) {
			size_t sz;
			const char *s = json_string_value(jelem);
			sz = strlen(s);

			ac->commands[cur] = calloc(1 + sz, 1);
			memcpy(ac->commands[cur], s, sz);
			cur++;
		}
	}
}

struct acl *
conf_parse_acl(json_t *j) {

	json_t *jcidr, *jbasic, *jlist;
	unsigned short mask_bits = 0;

	struct acl *a = calloc(1, sizeof(struct acl));

	/* parse CIDR */
	if((jcidr = json_object_get(j, "ip")) && json_typeof(jcidr) == JSON_STRING) {
		const char *s;
		char *p, *ip;

		s = json_string_value(jcidr);
		p = strchr(s, '/');
		if(!p) {
			ip = strdup(s);
		} else {
			ip = calloc((size_t)(p - s + 1), 1);
			memcpy(ip, s, (size_t)(p - s));
			mask_bits = (unsigned short)atoi(p+1);
		}
		a->cidr.enabled = 1;
		a->cidr.mask = (mask_bits == 0 ? 0xffffffff : (0xffffffff << (32 - mask_bits)));
		a->cidr.subnet = ntohl(inet_addr(ip)) & a->cidr.mask;
		free(ip);
	}

	/* parse basic_auth */
	if((jbasic = json_object_get(j, "http_basic_auth")) && json_typeof(jbasic) == JSON_STRING) {

		/* base64 encode */
		base64_encodestate b64;
		int pos;
		char *p;
		const char *plain = json_string_value(jbasic);
		size_t len, plain_len = strlen(plain) + 0;
		len = (plain_len + 8) * 8 / 6;
		a->http_basic_auth = calloc(len, 1);
		
		base64_init_encodestate(&b64);
		pos = base64_encode_block(plain, (int)plain_len, a->http_basic_auth, &b64); /* FIXME: check return value */
		base64_encode_blockend(a->http_basic_auth + pos, &b64);

		/* end string with \0 rather than \n */
		if((p = strchr(a->http_basic_auth + pos, '\n'))) {
			*p = 0;
		}
	}

	/* parse enabled commands */
	if((jlist = json_object_get(j, "enabled")) && json_typeof(jlist) == JSON_ARRAY) {
		acl_read_commands(jlist, &a->enabled);
	}

	/* parse disabled commands */
	if((jlist = json_object_get(j, "disabled")) && json_typeof(jlist) == JSON_ARRAY) {
		acl_read_commands(jlist, &a->disabled);
	}

	return a;
}

struct acl *
conf_parse_acls(json_t *jtab) {

	struct acl *head = NULL, *tail = NULL, *tmp;

	unsigned int i;
	for(i = 0; i < json_array_size(jtab); ++i) {
		json_t *val = json_array_get(jtab, i);

		tmp = conf_parse_acl(val);
		if(head == NULL && tail == NULL) {
			head = tail = tmp;
		} else {
			tail->next = tmp;
			tail = tmp;
		}
	}

	return head;
}

void
conf_free(struct conf *conf) {

	free(conf->redis_host);
	free(conf->redis_auth);

	free(conf->http_host);

	free(conf);
}
Added simplistic config file. 14 years ago			`#include <stdlib.h>`
			`#include <stdio.h>`
			`#include <string.h>`
Better conf parsing. 14 years ago			`#include <ctype.h>`
Parsed and stored disabled commands. 14 years ago			`#include <arpa/inet.h>`
Drop privileges. 14 years ago			`#include <unistd.h>`
			`#include <pwd.h>`
			`#include <grp.h>`
Added simplistic config file. 14 years ago
Switched conf file to JSON. 14 years ago			`#include <jansson.h>`
Working HTTP Basic Auth. 14 years ago			`#include <evhttp.h>`
Rename libb64 to b64 for compatibility reasons, move to DEPS. 11 years ago			`#include <b64/cencode.h>`
Added simplistic config file. 14 years ago			`#include "conf.h"`
ACL refactoring. 14 years ago			`#include "acl.h"`
Added simplistic config file. 14 years ago
Parsed ACLs. 14 years ago			`static struct acl *`
			`conf_parse_acls(json_t *jtab);`
Parsed and stored disabled commands. 14 years ago
Added simplistic config file. 14 years ago			`struct conf *`
			`conf_read(const char *filename) {`

Parsed and stored disabled commands. 14 years ago			`json_t *j;`
Switched conf file to JSON. 14 years ago			`json_error_t error;`
Added simplistic config file. 14 years ago			`struct conf *conf;`
Refactoring in JSON conf loader. 14 years ago			`void *kv;`
Added simplistic config file. 14 years ago
Switched conf file to JSON. 14 years ago			`/* defaults */`
Added simplistic config file. 14 years ago			`conf = calloc(1, sizeof(struct conf));`
Switched conf file to JSON. 14 years ago			`conf->redis_host = strdup("127.0.0.1");`
Added simplistic config file. 14 years ago			`conf->redis_port = 6379;`
Switched conf file to JSON. 14 years ago			`conf->http_host = strdup("0.0.0.0");`
Added simplistic config file. 14 years ago			`conf->http_port = 7379;`
Add HTTP limits (security feature). * Limit the total HTTP request size. * Fail early, as soon as invalid characters are found. * Fixes issue #33. 13 years ago			`conf->http_max_request_size = 12810241024;`
Partial rewrite, adding WebSockets, threads, pool. 14 years ago			`conf->http_threads = 4;`
Drop privileges. 14 years ago			`conf->user = getuid();`
			`conf->group = getgid();`
Merge branch 'slog' of https://github.com/mrb/webdis into slog Conflicts: Makefile 14 years ago			`conf->logfile = "webdis.log";`
Log refactoring. 14 years ago			`conf->verbosity = WEBDIS_NOTICE;`
Add daemonize support. 14 years ago			`conf->daemonize = 0;`
Write pidfile when daemonized (GitHub issue #10) 11 years ago			`conf->pidfile = "webdis.pid";`
Add database switch in config file. 14 years ago			`conf->database = 0;`
Configurable pool size. 14 years ago			`conf->pool_size_per_thread = 2;`
Added simplistic config file. 14 years ago
Switched conf file to JSON. 14 years ago			`j = json_load_file(filename, 0, &error);`
			`if(!j) {`
			`fprintf(stderr, "Error: %s (line %d)\n", error.text, error.line);`
			`return conf;`
			`}`
Added simplistic config file. 14 years ago
Refactoring in JSON conf loader. 14 years ago			`for(kv = json_object_iter(j); kv; kv = json_object_iter_next(j, kv)) {`
Parsed and stored disabled commands. 14 years ago			`json_t *jtmp = json_object_iter_value(kv);`

Refactoring in JSON conf loader. 14 years ago			`if(strcmp(json_object_iter_key(kv), "redis_host") == 0 && json_typeof(jtmp) == JSON_STRING) {`
			`free(conf->redis_host);`
			`conf->redis_host = strdup(json_string_value(jtmp));`
			`} else if(strcmp(json_object_iter_key(kv), "redis_port") == 0 && json_typeof(jtmp) == JSON_INTEGER) {`
Fix handling of ports over 32767 by using 'int' instead of 'short'. 10 years ago			`conf->redis_port = (int)json_integer_value(jtmp);`
Added support for Redis AUTH command. 14 years ago			`} else if(strcmp(json_object_iter_key(kv), "redis_auth") == 0 && json_typeof(jtmp) == JSON_STRING) {`
			`conf->redis_auth = strdup(json_string_value(jtmp));`
Refactoring in JSON conf loader. 14 years ago			`} else if(strcmp(json_object_iter_key(kv), "http_host") == 0 && json_typeof(jtmp) == JSON_STRING) {`
			`free(conf->http_host);`
			`conf->http_host = strdup(json_string_value(jtmp));`
			`} else if(strcmp(json_object_iter_key(kv), "http_port") == 0 && json_typeof(jtmp) == JSON_INTEGER) {`
Fix handling of ports over 32767 by using 'int' instead of 'short'. 10 years ago			`conf->http_port = (int)json_integer_value(jtmp);`
Add HTTP limits (security feature). * Limit the total HTTP request size. * Fail early, as soon as invalid characters are found. * Fixes issue #33. 13 years ago			`} else if(strcmp(json_object_iter_key(kv), "http_max_request_size") == 0 && json_typeof(jtmp) == JSON_INTEGER) {`
			`conf->http_max_request_size = (size_t)json_integer_value(jtmp);`
Partial rewrite, adding WebSockets, threads, pool. 14 years ago			`} else if(strcmp(json_object_iter_key(kv), "threads") == 0 && json_typeof(jtmp) == JSON_INTEGER) {`
Fix handling of ports over 32767 by using 'int' instead of 'short'. 10 years ago			`conf->http_threads = (int)json_integer_value(jtmp);`
ACL now working again. 14 years ago			`} else if(strcmp(json_object_iter_key(kv), "acl") == 0 && json_typeof(jtmp) == JSON_ARRAY) {`
Parsed ACLs. 14 years ago			`conf->perms = conf_parse_acls(jtmp);`
Drop privileges. 14 years ago			`} else if(strcmp(json_object_iter_key(kv), "user") == 0 && json_typeof(jtmp) == JSON_STRING) {`
			`struct passwd *u;`
			`if((u = getpwnam(json_string_value(jtmp)))) {`
			`conf->user = u->pw_uid;`
			`}`
			`} else if(strcmp(json_object_iter_key(kv), "group") == 0 && json_typeof(jtmp) == JSON_STRING) {`
			`struct group *g;`
			`if((g = getgrnam(json_string_value(jtmp)))) {`
			`conf->group = g->gr_gid;`
			`}`
first pass at a simple log 14 years ago			`} else if(strcmp(json_object_iter_key(kv),"logfile") == 0 && json_typeof(jtmp) == JSON_STRING){`
Merge branch 'slog' of https://github.com/mrb/webdis into slog Conflicts: Makefile 14 years ago			`conf->logfile = strdup(json_string_value(jtmp));`
			`} else if(strcmp(json_object_iter_key(kv),"verbosity") == 0 && json_typeof(jtmp) == JSON_INTEGER){`
Saved a few syscalls and opening/closing the log. Log either to a file or to stdout. 14 years ago			`int tmp = json_integer_value(jtmp);`
			`if(tmp < 0) conf->verbosity = WEBDIS_ERROR;`
			`else if(tmp > (int)WEBDIS_DEBUG) conf->verbosity = WEBDIS_DEBUG;`
			`else conf->verbosity = (log_level)tmp;`
Add daemonize support. 14 years ago			`} else if(strcmp(json_object_iter_key(kv), "daemonize") == 0 && json_typeof(jtmp) == JSON_TRUE) {`
			`conf->daemonize = 1;`
Write pidfile when daemonized (GitHub issue #10) 11 years ago			`} else if(strcmp(json_object_iter_key(kv),"pidfile") == 0 && json_typeof(jtmp) == JSON_STRING){`
			`conf->pidfile = strdup(json_string_value(jtmp));`
Disabled Websockets by default. Due to a possible crash, WebSockets are disabled until their implementation is completed. 13 years ago			`} else if(strcmp(json_object_iter_key(kv), "websockets") == 0 && json_typeof(jtmp) == JSON_TRUE) {`
			`conf->websockets = 1;`
Add database switch in config file. 14 years ago			`} else if(strcmp(json_object_iter_key(kv), "database") == 0 && json_typeof(jtmp) == JSON_INTEGER) {`
			`conf->database = json_integer_value(jtmp);`
Configurable pool size. 14 years ago			`} else if(strcmp(json_object_iter_key(kv), "pool_size") == 0 && json_typeof(jtmp) == JSON_INTEGER) {`
			`conf->pool_size_per_thread = json_integer_value(jtmp);`
Added support for a default root object (fix #26) 13 years ago			`} else if(strcmp(json_object_iter_key(kv), "default_root") == 0 && json_typeof(jtmp) == JSON_STRING) {`
			`conf->default_root = strdup(json_string_value(jtmp));`
Refactoring in JSON conf loader. 14 years ago			`}`
Added simplistic config file. 14 years ago			`}`

Switched conf file to JSON. 14 years ago			`json_decref(j);`

Added simplistic config file. 14 years ago			`return conf;`
			`}`

Parsed ACLs. 14 years ago			`void`
			`acl_read_commands(json_t jlist, struct acl_commands ac) {`
Parsed and stored disabled commands. 14 years ago
Parsed ACLs. 14 years ago			`unsigned int i, n, cur;`
Parsed and stored disabled commands. 14 years ago
Parsed ACLs. 14 years ago			`/* count strings in the array */`
			`for(i = 0, n = 0; i < json_array_size(jlist); ++i) {`
			`json_t *jelem = json_array_get(jlist, (size_t)i);`
			`if(json_typeof(jelem) == JSON_STRING) {`
			`n++;`
			`}`
			`}`
Parsed and stored disabled commands. 14 years ago
Parsed ACLs. 14 years ago			`/* allocate block */`
			`ac->commands = calloc((size_t)n, sizeof(char*));`
			`ac->count = n;`

			`/* add all disabled commands */`
			`for(i = 0, cur = 0; i < json_array_size(jlist); ++i) {`
			`json_t *jelem = json_array_get(jlist, i);`
			`if(json_typeof(jelem) == JSON_STRING) {`
			`size_t sz;`
			`const char *s = json_string_value(jelem);`
			`sz = strlen(s);`

			`ac->commands[cur] = calloc(1 + sz, 1);`
			`memcpy(ac->commands[cur], s, sz);`
			`cur++;`
			`}`
			`}`
			`}`
Parsed and stored disabled commands. 14 years ago
Parsed ACLs. 14 years ago			`struct acl *`
			`conf_parse_acl(json_t *j) {`
Parsed and stored disabled commands. 14 years ago
Parsed ACLs. 14 years ago			`json_t jcidr, jbasic, *jlist;`
			`unsigned short mask_bits = 0;`
Parsed and stored disabled commands. 14 years ago
Parsed ACLs. 14 years ago			`struct acl *a = calloc(1, sizeof(struct acl));`

			`/* parse CIDR */`
			`if((jcidr = json_object_get(j, "ip")) && json_typeof(jcidr) == JSON_STRING) {`
			`const char *s;`
			`char p, ip;`
Parsed and stored disabled commands. 14 years ago
Parsed ACLs. 14 years ago			`s = json_string_value(jcidr);`
Added IP range restriction. 14 years ago			`p = strchr(s, '/');`
Parsed and stored disabled commands. 14 years ago			`if(!p) {`
			`ip = strdup(s);`
			`} else {`
Lint. 14 years ago			`ip = calloc((size_t)(p - s + 1), 1);`
			`memcpy(ip, s, (size_t)(p - s));`
			`mask_bits = (unsigned short)atoi(p+1);`
Parsed and stored disabled commands. 14 years ago			`}`
ACL now working again. 14 years ago			`a->cidr.enabled = 1;`
Fixed ACL mask bug. 14 years ago			`a->cidr.mask = (mask_bits == 0 ? 0xffffffff : (0xffffffff << (32 - mask_bits)));`
Parsed ACLs. 14 years ago			`a->cidr.subnet = ntohl(inet_addr(ip)) & a->cidr.mask;`
			`free(ip);`
			`}`
Parsed and stored disabled commands. 14 years ago
Parsed ACLs. 14 years ago			`/* parse basic_auth */`
			`if((jbasic = json_object_get(j, "http_basic_auth")) && json_typeof(jbasic) == JSON_STRING) {`
Base64 encode of user:password for HTTP Basic Auth. 14 years ago
			`/* base64 encode */`
			`base64_encodestate b64;`
			`int pos;`
			`char *p;`
			`const char *plain = json_string_value(jbasic);`
			`size_t len, plain_len = strlen(plain) + 0;`
			`len = (plain_len + 8) * 8 / 6;`
			`a->http_basic_auth = calloc(len, 1);`

			`base64_init_encodestate(&b64);`
			`pos = base64_encode_block(plain, (int)plain_len, a->http_basic_auth, &b64); /* FIXME: check return value */`
			`base64_encode_blockend(a->http_basic_auth + pos, &b64);`

Small refactoring. 14 years ago			`/* end string with \0 rather than \n */`
Base64 encode of user:password for HTTP Basic Auth. 14 years ago			`if((p = strchr(a->http_basic_auth + pos, '\n'))) {`
			`*p = 0;`
			`}`
Parsed ACLs. 14 years ago			`}`

			`/* parse enabled commands */`
ACL now working again. 14 years ago			`if((jlist = json_object_get(j, "enabled")) && json_typeof(jlist) == JSON_ARRAY) {`
			`acl_read_commands(jlist, &a->enabled);`
Parsed ACLs. 14 years ago			`}`

			`/* parse disabled commands */`
ACL now working again. 14 years ago			`if((jlist = json_object_get(j, "disabled")) && json_typeof(jlist) == JSON_ARRAY) {`
			`acl_read_commands(jlist, &a->disabled);`
Parsed ACLs. 14 years ago			`}`

			`return a;`
			`}`

			`struct acl *`
			`conf_parse_acls(json_t *jtab) {`

ACL now working again. 14 years ago			`struct acl head = NULL, tail = NULL, *tmp;`
Parsed ACLs. 14 years ago
ACL now working again. 14 years ago			`unsigned int i;`
			`for(i = 0; i < json_array_size(jtab); ++i) {`
			`json_t *val = json_array_get(jtab, i);`
Parsed ACLs. 14 years ago
			`tmp = conf_parse_acl(val);`
ACL now working again. 14 years ago			`if(head == NULL && tail == NULL) {`
			`head = tail = tmp;`
			`} else {`
			`tail->next = tmp;`
			`tail = tmp;`
			`}`
			`}`

			`return head;`
			`}`

Added simplistic config file. 14 years ago			`void`
			`conf_free(struct conf *conf) {`

			`free(conf->redis_host);`
Added support for Redis AUTH command. 14 years ago			`free(conf->redis_auth);`

Added simplistic config file. 14 years ago			`free(conf->http_host);`

			`free(conf);`
			`}`