#include "util/util.h"

#include <sys/socket.h>

#include <sys/un.h>

#include <popt.h>

#include "responder/common/responder.h"

#include "responder/secrets/secsrv.h"

#include "resolv/async_resolv.h"

#define DEFAULT_SEC_FD_LIMIT 2048

#define DEFAULT_SEC_CONTAINERS_NEST_LEVEL 4

#define DEFAULT_SEC_MAX_SECRETS 1024

#define DEFAULT_SEC_MAX_UID_SECRETS 256

#define DEFAULT_SEC_MAX_PAYLOAD_SIZE 16

#define DEFAULT_SEC_KCM_MAX_SECRETS 256

#define DEFAULT_SEC_KCM_MAX_UID_SECRETS 64

#define DEFAULT_SEC_KCM_MAX_PAYLOAD_SIZE 65536

static int sec_get_quota(struct sec_ctx *sctx,

const char *section_config_path,

int default_max_containers_nest_level,

int default_max_num_secrets,

int default_max_num_uid_secrets,

int default_max_payload,

struct sec_quota *quota)

{

int ret;

ret = confdb_get_int(sctx->rctx->cdb,

section_config_path,

CONFDB_SEC_CONTAINERS_NEST_LEVEL,

default_max_containers_nest_level,

&quota->containers_nest_level);

if (ret != EOK) {

DEBUG(SSSDBG_FATAL_FAILURE,

"Failed to get container nesting level for %s\n",

section_config_path);

return ret;

}

ret = confdb_get_int(sctx->rctx->cdb,

section_config_path,

CONFDB_SEC_MAX_SECRETS,

default_max_num_secrets,

&quota->max_secrets);

if (ret != EOK) {

DEBUG(SSSDBG_FATAL_FAILURE,

"Failed to get maximum number of entries for %s\n",

section_config_path);

return ret;

}

ret = confdb_get_int(sctx->rctx->cdb,

section_config_path,

CONFDB_SEC_MAX_UID_SECRETS,

default_max_num_uid_secrets,

&quota->max_uid_secrets);

if (ret != EOK) {

DEBUG(SSSDBG_FATAL_FAILURE,

"Failed to get maximum number of per-UID entries for %s\n",

section_config_path);

return ret;

}

ret = confdb_get_int(sctx->rctx->cdb,

section_config_path,

CONFDB_SEC_MAX_PAYLOAD_SIZE,

default_max_payload,

&quota->max_payload_size);

if (ret != EOK) {

DEBUG(SSSDBG_FATAL_FAILURE,

"Failed to get payload's maximum size for an entry in %s\n",

section_config_path);

return ret;

}

return EOK;

}

static int sec_get_hive_config(struct sec_ctx *sctx,

const char *hive_name,

struct sec_hive_config *hive_config,

int default_max_containers_nest_level,

int default_max_num_secrets,

int default_max_num_uid_secrets,

int default_max_payload)

{

int ret;

TALLOC_CTX *tmp_ctx;

tmp_ctx = talloc_new(sctx);

if (tmp_ctx == NULL) {

return ENOMEM;

}

hive_config->confdb_section = talloc_asprintf(sctx,

"config/secrets/%s",

hive_name);

if (hive_config->confdb_section == NULL) {

ret = ENOMEM;

goto done;

}

ret = sec_get_quota(sctx,

hive_config->confdb_section,

default_max_containers_nest_level,

default_max_num_secrets,

default_max_num_uid_secrets,

default_max_payload,

&hive_config->quota);

if (ret != EOK) {

DEBUG(SSSDBG_OP_FAILURE,

"Cannot read quota settings for %s [%d]: %s\n",

hive_name, ret, sss_strerror(ret));

goto done;

}

if (hive_config->quota.max_payload_size == 0

|| (sctx->max_payload_size != 0

&& hive_config->quota.max_payload_size > sctx->max_payload_size)) {

/* If the quota is unlimited or it's larger than what

sctx->max_payload_size = hive_config->quota.max_payload_size;

}

ret = EOK;

done:

talloc_free(tmp_ctx);

return ret;

}

static int sec_get_config(struct sec_ctx *sctx)

{

int ret;

ret = confdb_get_int(sctx->rctx->cdb,

sctx->rctx->confdb_service_path,

CONFDB_SERVICE_FD_LIMIT,

DEFAULT_SEC_FD_LIMIT,

&sctx->fd_limit);

if (ret != EOK) {

DEBUG(SSSDBG_FATAL_FAILURE,

"Failed to get file descriptors limit\n");

goto fail;

}

/* Set the global max_payload to ridiculously small value so that either 0 (unlimited)

sctx->max_payload_size = 1;

/* Read the global quota first -- this should be removed in a future release */

/* Note that this sets the defaults for the sec_config quota to be used

ret = sec_get_quota(sctx,

sctx->rctx->confdb_service_path,

DEFAULT_SEC_CONTAINERS_NEST_LEVEL,

DEFAULT_SEC_MAX_SECRETS,

DEFAULT_SEC_MAX_UID_SECRETS,

DEFAULT_SEC_MAX_PAYLOAD_SIZE,

&sctx->sec_config.quota);

if (ret != EOK) {

DEBUG(SSSDBG_FATAL_FAILURE,

"Failed to get legacy global quotas\n");

goto fail;

}

/* Read the per-hive configuration */

ret = sec_get_hive_config(sctx,

"secrets",

&sctx->sec_config,

sctx->sec_config.quota.containers_nest_level,

sctx->sec_config.quota.max_secrets,

sctx->sec_config.quota.max_uid_secrets,

sctx->sec_config.quota.max_payload_size);

if (ret != EOK) {

DEBUG(SSSDBG_FATAL_FAILURE,

"Failed to get configuration of the secrets hive\n");

goto fail;

}

ret = sec_get_hive_config(sctx,

"kcm",

&sctx->kcm_config,

DEFAULT_SEC_CONTAINERS_NEST_LEVEL,

DEFAULT_SEC_KCM_MAX_SECRETS,

DEFAULT_SEC_KCM_MAX_UID_SECRETS,

DEFAULT_SEC_KCM_MAX_PAYLOAD_SIZE);

if (ret != EOK) {

DEBUG(SSSDBG_FATAL_FAILURE,

"Failed to get configuration of the secrets hive\n");

goto fail;

}

ret = confdb_get_int(sctx->rctx->cdb, sctx->rctx->confdb_service_path,

CONFDB_RESPONDER_CLI_IDLE_TIMEOUT,

CONFDB_RESPONDER_CLI_IDLE_DEFAULT_TIMEOUT,

&sctx->rctx->client_idle_timeout);

if (ret != EOK) {

DEBUG(SSSDBG_OP_FAILURE,

"Cannot get the client idle timeout [%d]: %s\n",

ret, strerror(ret));

goto fail;

}

/* Ensure that the client timeout is at least ten seconds */

if (sctx->rctx->client_idle_timeout < 10) {

sctx->rctx->client_idle_timeout = 10;

}

ret = responder_setup_idle_timeout_config(sctx->rctx);

if (ret != EOK) {

goto fail;

}

ret = EOK;

fail:

return ret;

}

static int sec_responder_ctx_destructor(void *ptr)

{

struct resp_ctx *rctx = talloc_get_type(ptr, struct resp_ctx);

/* mark that we are shutting down the responder, so it is propagated

DEBUG(SSSDBG_TRACE_FUNC, "Responder is being shut down\n");

rctx->shutting_down = true;

return 0;

}

static int sec_process_init(TALLOC_CTX *mem_ctx,

struct tevent_context *ev,

struct confdb_ctx *cdb)

{

struct resp_ctx *rctx;

struct sec_ctx *sctx;

int ret;

rctx = talloc_zero(mem_ctx, struct resp_ctx);

if (!rctx) {

DEBUG(SSSDBG_FATAL_FAILURE, "fatal error initializing resp_ctx\n");

return ENOMEM;

}

rctx->ev = ev;

rctx->cdb = cdb;

rctx->sock_name = SSS_SEC_SOCKET_NAME;

rctx->confdb_service_path = CONFDB_SEC_CONF_ENTRY;

rctx->shutting_down = false;

rctx->lfd = -1;

rctx->priv_lfd = -1;

talloc_set_destructor((TALLOC_CTX*)rctx, sec_responder_ctx_destructor);

sctx = talloc_zero(rctx, struct sec_ctx);

if (!sctx) {

DEBUG(SSSDBG_FATAL_FAILURE, "fatal error initializing sec_ctx\n");

ret = ENOMEM;

goto fail;

}

sctx->rctx = rctx;

sctx->rctx->pvt_ctx = sctx;

ret = sec_get_config(sctx);

if (ret != EOK) {

DEBUG(SSSDBG_FATAL_FAILURE, "fatal error getting secrets config\n");

goto fail;

}

/* Set up file descriptor limits */

responder_set_fd_limit(sctx->fd_limit);

ret = activate_unix_sockets(rctx, sec_connection_setup);

if (ret != EOK) goto fail;

DEBUG(SSSDBG_TRACE_FUNC, "Secrets Initialization complete\n");

return EOK;

fail:

talloc_free(rctx);

return ret;

}

int main(int argc, const char *argv[])

{

int opt;

poptContext pc;

char *opt_logger = NULL;

struct main_context *main_ctx;

int ret;

uid_t uid;

gid_t gid;

struct poptOption long_options[] = {

POPT_AUTOHELP

SSSD_MAIN_OPTS

SSSD_LOGGER_OPTS

SSSD_SERVER_OPTS(uid, gid)

POPT_TABLEEND

};

/* Set debug level to invalid value so we can decide if -d 0 was used. */

debug_level = SSSDBG_INVALID;

umask(DFL_RSP_UMASK);

pc = poptGetContext(argv[0], argc, argv, long_options, 0);

while((opt = poptGetNextOpt(pc)) != -1) {

switch(opt) {

default:

fprintf(stderr, "\nInvalid option %s: %s\n\n",

poptBadOption(pc, 0), poptStrerror(opt));

poptPrintUsage(pc, stderr, 0);

return 1;

}

}

poptFreeContext(pc);

DEBUG_INIT(debug_level);

/* set up things like debug, signals, daemonization, etc. */

debug_log_file = "sssd_secrets";

sss_set_logger(opt_logger);

ret = server_setup("sssd[secrets]", 0, uid, gid, CONFDB_SEC_CONF_ENTRY,

&main_ctx);

if (ret != EOK) return 2;

ret = die_if_parent_died();

if (ret != EOK) {

/* This is not fatal, don't return */

DEBUG(SSSDBG_OP_FAILURE,

"Could not set up to exit when parent process does\n");

}

ret = sec_process_init(main_ctx,

main_ctx->event_ctx,

main_ctx->confdb_ctx);

if (ret != EOK) return 3;

/* loop on main */

server_loop(main_ctx);

return 0;

}