permissioner

@@ -2,13 +2,17 @@ add_library(

   permissioner

   STATIC

   include/permissioner/Config.h

+  include/permissioner/Group.h

   include/permissioner/Permissions.h

   include/permissioner/StringUtils.h

   include/permissioner/Tree.h

+  include/permissioner/User.h

   src/Config.cpp

+  src/Group.cpp

   src/Permissions.cpp

   src/StringUtils.cpp

   src/Tree.cpp

+  src/User.cpp

 )

 target_include_directories(

@@ -0,0 +1,28 @@

+#ifndef GROUP_H

+#define GROUP_H

+

+#include <boost/optional.hpp>

+#include <string>

+

+/// group name and ID configuration

+class Group {

+public:

+  /**

+   * @brief parse group name

+   * @param[in] groupNameStr group name

+   * @throws std::exception if something goes wrong

+   */

+  void parseGroupName(std::string const &groupNameStr);

+

+  /// return group name

+  boost::optional<std::string> const & getGroupName() const;

+

+  /// return group ID (or -1 if none)

+  int getGid() const;

+

+protected:

+  boost::optional<std::string> groupName;

+  int gid = -1;

+};

+

+#endif // #ifndef GROUP_H

@@ -1,10 +1,11 @@

 #ifndef TREE_H

 #define TREE_H

+#include <permissioner/Group.h>

 #include <permissioner/Permissions.h>

+#include <permissioner/User.h>

 #include <boost/filesystem.hpp>

-#include <boost/optional.hpp>

 #include <string>

 /// directory tree configuration

@@ -18,8 +19,8 @@ public:

   void parseParams(std::string const &paramStr);

 protected:

-  boost::optional<std::string> user;

-  boost::optional<std::string> group;

+  User user;

+  Group group;

   Permissions permissions;

   boost::filesystem::path root;

 };

@@ -0,0 +1,28 @@

+#ifndef USER_H

+#define USER_H

+

+#include <boost/optional.hpp>

+#include <string>

+

+/// user name and ID configuration

+class User {

+public:

+  /**

+   * @brief parse user name

+   * @param[in] userNameStr user name

+   * @throws std::exception if something goes wrong

+   */

+  void parseUserName(std::string const &userNameStr);

+

+  /// return user name

+  boost::optional<std::string> const & getUserName() const;

+

+  /// return user ID (or -1 if none)

+  int getUid() const;

+

+protected:

+  boost::optional<std::string> userName;

+  int uid = -1;

+};

+

+#endif // #ifndef USER_H

@@ -0,0 +1,50 @@

+#include <permissioner/Group.h>

+

+#include <boost/optional.hpp>

+#include <cerrno>

+#include <cstring>

+#include <grp.h>

+#include <sstream>

+#include <stdexcept>

+#include <string>

+#include <sys/types.h>

+#include <unistd.h>

+

+void Group::parseGroupName(std::string const &groupNameStr) {

+  if (groupNameStr == "-") {

+    groupName = boost::none;

+    gid = -1;

+    return;

+  }

+

+  long size_max = sysconf(_SC_GETGR_R_SIZE_MAX);

+  if (size_max <= 0) {

+    std::stringstream msg;

+    msg << "invalid maximum size of group entry structure " << size_max;

+    throw std::runtime_error(msg.str());

+  }

+

+  struct group gr_buf, *gr;

+  char buf[size_max];

+  if (getgrnam_r(groupNameStr.c_str(), &gr_buf, buf, sizeof(buf), &gr) != 0) {

+    std::string err(strerror(errno));

+    std::stringstream msg;

+    msg << "looking up group name \"" << groupNameStr << "\" failed: " << err;

+    throw std::runtime_error(msg.str());

+  }

+  if (! gr) {

+    std::stringstream msg;

+    msg << "group name \"" << groupNameStr << "\" not found";

+    throw std::runtime_error(msg.str());

+  }

+

+  gid = gr->gr_gid;

+}

+

+boost::optional<std::string> const & Group::getGroupName() const {

+  return groupName;

+}

+

+int Group::getGid() const {

+  return gid;

+}

@@ -1,5 +1,7 @@

 #include <permissioner/Permissions.h>

+#include <sstream>

+#include <stdexcept>

 #include <string>

 void Permissions::parseParams(std::string const &paramStr) {

@@ -65,6 +67,13 @@ void Permissions::parseParams(std::string const &paramStr) {

     case 'X':

       whatCond |= flagExecute;

       break;

+    default:

+      {

+        std::stringstream msg;

+        msg << "invalid character \"" << c << "\" in permission string \""

+            << paramStr << "\"";

+        throw std::runtime_error(msg.str());

+      }

     }

   }

 }

@@ -1,10 +1,11 @@

 #include <permissioner/Tree.h>

+#include <permissioner/Group.h>

 #include <permissioner/Permissions.h>

+#include <permissioner/User.h>

 #include <permissioner/StringUtils.h>

 #include <boost/filesystem.hpp>

-#include <boost/optional.hpp>

 #include <sstream>

 #include <stdexcept>

 #include <string>

@@ -25,23 +26,32 @@ void Tree::parseParams(std::string const &paramStr) {

     throw std::runtime_error(msg.str());

   }

-  if (userStr == "-") {

-    user = boost::none;

-  } else {

-    user = userStr;

+  try {

+    user.parseUserName(userStr);

+  } catch (std::exception const & e) {

+    std::stringstream msg;

+    msg << "invalid <user> field \"" << userStr << "\" in \""

+        << paramStr << "\": " << e.what();

+    throw std::runtime_error(msg.str());

   }

-  if (groupStr == "-") {

-    group = boost::none;

-  } else {

-    group = groupStr;

+

+  try {

+    group.parseGroupName(groupStr);

+  } catch (std::exception const & e) {

+    std::stringstream msg;

+    msg << "invalid <group> field \"" << groupStr << "\" in \""

+        << paramStr << "\": " << e.what();

+    throw std::runtime_error(msg.str());

   }

+

   try {

     permissions.parseParams(permissionsStr);

   } catch (std::exception const & e) {

     std::stringstream msg;

-    msg << "invalid <permissions> field in \"" << paramStr << "\": "

-        << e.what();

+    msg << "invalid <permissions> field \"" << permissionsStr << "\" in \""

+        << paramStr << "\": " << e.what();

     throw std::runtime_error(msg.str());

   }

+

   root = rootStr;

 }

@@ -0,0 +1,50 @@

+#include <permissioner/User.h>

+

+#include <boost/optional.hpp>

+#include <cerrno>

+#include <cstring>

+#include <pwd.h>

+#include <sstream>

+#include <stdexcept>

+#include <string>

+#include <sys/types.h>

+#include <unistd.h>

+

+void User::parseUserName(std::string const &userNameStr) {

+  if (userNameStr == "-") {

+    userName = boost::none;

+    uid = -1;

+    return;

+  }

+

+  long size_max = sysconf(_SC_GETPW_R_SIZE_MAX);

+  if (size_max <= 0) {

+    std::stringstream msg;

+    msg << "invalid maximum size of passwd entry structure " << size_max;

+    throw std::runtime_error(msg.str());

+  }

+

+  struct passwd pw_buf, *pw;

+  char buf[size_max];

+  if (getpwnam_r(userNameStr.c_str(), &pw_buf, buf, sizeof(buf), &pw) != 0) {

+    std::string err(strerror(errno));

+    std::stringstream msg;

+    msg << "looking up user name \"" << userNameStr << "\" failed: " << err;

+    throw std::runtime_error(msg.str());

+  }

+  if (! pw) {

+    std::stringstream msg;

+    msg << "user name \"" << userNameStr << "\" not found";

+    throw std::runtime_error(msg.str());

+  }

+

+  uid = pw->pw_uid;

+}

+

+boost::optional<std::string> const & User::getUserName() const {

+  return userName;

+}

+

+int User::getUid() const {

+  return uid;

+}

@@ -1 +1,2 @@

-tree myuser mygroup go+rX,go-w /some/dir

+tree nobody nogroup go+rX,go-w /some/dir

+tree - - a=rwx /some/other/dir