1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
|
/*
* ProFTPD: mod_quotatab_ldap -- a mod_quotatab sub-module for obtaining
* quota information from an LDAP directory.
*
* Copyright (c) 2002-2014 TJ Saunders
* Copyright (c) 2002-3 John Morrissey
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, write to the Free Software
* Foundation, Inc., 51 Franklin Street, Suite 500, Boston, MA 02110-1335, USA.
*
* As a special exemption, the respective copyright holders give permission
* to link this program with OpenSSL, and distribute the resulting
* executable, without including the source code for OpenSSL in the source
* distribution.
*/
#include "mod_quotatab.h"
module quotatab_ldap_module;
static int ldaptab_close(quota_table_t *ldaptab) {
/* Nothing really needs to be done here. */
return 0;
}
static unsigned char ldaptab_lookup(quota_table_t *ldaptab, void *ptr,
const char *name, quota_type_t quota_type) {
char **values = NULL;
array_header *ldap_data = NULL;
pool *tmp_pool = NULL;
cmdtable *ldap_cmdtab = NULL;
cmd_rec *ldap_cmd = NULL;
modret_t *ldap_res = NULL;
quota_limit_t *limit = ptr;
if (quota_type != USER_QUOTA) {
quotatab_log("error: mod_quotatab_ldap only supports user quotas");
return FALSE;
}
/* Find the cmdtable for the ldap_quota_lookup command. */
ldap_cmdtab = pr_stash_get_symbol2(PR_SYM_HOOK, "ldap_quota_lookup", NULL,
NULL, NULL);
if (ldap_cmdtab == NULL) {
quotatab_log("error: unable to find LDAP hook symbol 'ldap_quota_lookup'");
return FALSE;
}
/* Allocate a temporary pool for the duration of this lookup. */
tmp_pool = make_sub_pool(ldaptab->tab_pool);
/* Prepare the command and call the handler. */
ldap_cmd = pr_cmd_alloc(tmp_pool, 1, name);
ldap_res = pr_module_call(ldap_cmdtab->m, ldap_cmdtab->handler, ldap_cmd);
destroy_pool(tmp_pool);
/* Check the results. */
if (!ldap_res || MODRET_ISERROR(ldap_res)) {
quotatab_log("error performing LDAP search");
return FALSE;
}
ldap_data = (array_header *) ldap_res->data;
if (ldap_data->nelts != 9) {
quotatab_log("LDAP search returned wrong number of elements");
return FALSE;
}
values = (char **) ldap_data->elts;
/* Retrieve the limit record (9 values):
* name
* per_session
* limit_type
* bytes_{in,out,xfer}_avail
* files_{in,out,xfer}_avail
*/
memmove(limit->name, values[0], strlen(values[0]) + 1);
limit->quota_type = USER_QUOTA;
if (!strcasecmp(values[1], "false"))
limit->quota_per_session = FALSE;
else if (!strcasecmp(values[1], "true"))
limit->quota_per_session = TRUE;
if (!strcasecmp(values[2], "soft"))
limit->quota_limit_type = SOFT_LIMIT;
else if (!strcasecmp(values[2], "hard"))
limit->quota_limit_type = HARD_LIMIT;
limit->bytes_in_avail = atof(values[3]);
limit->bytes_out_avail = atof(values[4]);
limit->bytes_xfer_avail = atof(values[5]);
limit->files_in_avail = atoi(values[6]);
limit->files_out_avail = atoi(values[7]);
limit->files_xfer_avail = atoi(values[8]);
return TRUE;
}
static unsigned char ldaptab_verify(quota_table_t *ldaptab) {
/* Always TRUE. */
return TRUE;
}
static quota_table_t *ldaptab_open(pool *parent_pool, quota_tabtype_t tab_type,
const char *srcinfo) {
pool *tab_pool = make_sub_pool(parent_pool);
quota_table_t *tab = NULL;
tab = (quota_table_t *) pcalloc(tab_pool, sizeof(quota_table_t));
tab->tab_pool = tab_pool;
tab->tab_type = tab_type;
/* Set all the necessary function pointers. */
tab->tab_close = ldaptab_close;
tab->tab_lookup = ldaptab_lookup;
tab->tab_verify = ldaptab_verify;
return tab;
}
/* Event handlers
*/
#if defined(PR_SHARED_MODULE)
static void ldaptab_mod_unload_ev(const void *event_data, void *user_data) {
if (strcmp("mod_quotatab_ldap.c", (const char *) event_data) == 0) {
pr_event_unregister("atab_ldap_module, NULL, NULL);
quotatab_unregister_backend("ldap", QUOTATAB_LIMIT_SRC);
}
}
#endif /* PR_SHARED_MODULE */
/* Initialization routines
*/
static int ldaptab_init(void) {
quotatab_register_backend("ldap", ldaptab_open, QUOTATAB_LIMIT_SRC);
#if defined(PR_SHARED_MODULE)
pr_event_register("atab_ldap_module, "core.module-unload",
ldaptab_mod_unload_ev, NULL);
#endif /* PR_SHARED_MODULE */
return 0;
}
module quotatab_ldap_module = {
NULL, NULL,
/* Module API version 2.0 */
0x20,
/* Module name */
"quotatab_ldap",
/* Module configuration handler table */
NULL,
/* Module command handler table */
NULL,
/* Module authentication handler table */
NULL,
/* Module initialization function */
ldaptab_init,
/* Module child initialization function */
NULL
};
|
