vmm: comparison VirtualMailManager/handler.py

equal deleted inserted replaced

-:38e344ba3d0f
+:06c0457036a0
 or deletes directories of domains or users.
 """
 import os
 import re
+import stat
 from shutil import rmtree
 from subprocess import Popen, PIPE
 from pyPgSQL import PgSQL  # python-pgsql - http://pypgsql.sourceforge.net
 from VirtualMailManager.account import Account
 from VirtualMailManager.alias import Alias
 from VirtualMailManager.aliasdomain import AliasDomain
 from VirtualMailManager.common import exec_ok
 from VirtualMailManager.config import Config as Cfg
-from VirtualMailManager.constants import \
+from VirtualMailManager.constants import MIN_GID, MIN_UID, \
 ACCOUNT_EXISTS, ALIAS_EXISTS, CONF_NOFILE, CONF_NOPERM, CONF_WRONGPERM, \
 DATABASE_ERROR, DOMAINDIR_GROUP_MISMATCH, DOMAIN_INVALID, \
 FOUND_DOTS_IN_PATH, INVALID_ARGUMENT, MAILDIR_PERM_MISMATCH, \
 NOT_EXECUTABLE, NO_SUCH_ACCOUNT, NO_SUCH_ALIAS, NO_SUCH_BINARY, \
 NO_SUCH_DIRECTORY, NO_SUCH_RELOCATED, RELOCATED_EXISTS
 from VirtualMailManager.domain import Domain, get_gid
 from VirtualMailManager.emailaddress import EmailAddress
 from VirtualMailManager.errors import \
 DomainError, NotRootError, PermissionError, VMMError
 from VirtualMailManager.mailbox import new as new_mailbox
-from VirtualMailManager.pycompat import any
+from VirtualMailManager.pycompat import all, any
 from VirtualMailManager.relocated import Relocated
 from VirtualMailManager.transport import Transport
 _ = lambda msg: msg
 return Domain(self._dbh, domainname)
 def _get_disk_usage(self, directory):
 """Estimate file space usage for the given directory.
-Keyword arguments:
+Arguments:
-directory -- the directory to summarize recursively disk usage for
-"""
+`directory` : basestring
-if self._isdir(directory):
+The directory to summarize recursively disk usage for
+"""
+if os.path.isdir(directory):
 return Popen([self._cfg.dget('bin.du'), "-hs", directory],
 stdout=PIPE).communicate()[0].split('\t')[0]
 else:
+self._warnings.append(_('No such directory: %s') % directory)
 return 0
-def _isdir(self, directory):
-"""Check if `directory` is a directory. Returns bool.
-When `directory` isn't a directory, a warning will be appended to
-_warnings."""
-isdir = os.path.isdir(directory)
-if not isdir:
-self._warnings.append(_('No such directory: %s') % directory)
-return isdir
 def _make_domain_dir(self, domain):
 """Create a directory for the `domain` and its accounts."""
 cwd = os.getcwd()
 hashdir, domdir = domain.directory.split(os.path.sep)[-2:]
 os.chdir(account.domain_directory)
 os.mkdir('%s' % account.uid, self._cfg.dget('account.directory_mode'))
 os.chown('%s' % account.uid, account.uid, account.gid)
 def _delete_home(self, domdir, uid, gid):
-"""Delete a user's home directory."""
+"""Delete a user's home directory.
-if uid > 0 and gid > 0:
-userdir = '%s' % uid
+Arguments:
-if userdir.count('..') or domdir.count('..'):
-raise VMMError(_(u'Found ".." in home directory path.'),
+`domdir` : basestring
-FOUND_DOTS_IN_PATH)
+The directory of the domain the user belongs to
-if os.path.isdir(domdir):
+(commonly AccountObj.domain_directory)
-os.chdir(domdir)
+`uid` : int/long
-if os.path.isdir(userdir):
+The user's UID (commonly AccountObj.uid)
-mdstat = os.stat(userdir)
+`gid` : int/long
-if (mdstat.st_uid, mdstat.st_gid) != (uid, gid):
+The user's GID (commonly AccountObj.gid)
-raise VMMError(_(u'Detected owner/group mismatch in '
+"""
-u'home directory.'),
+assert all(isinstance(xid, (long, int)) for xid in (uid, gid)) and \
-MAILDIR_PERM_MISMATCH)
+isinstance(domdir, basestring)
-rmtree(userdir, ignore_errors=True)
+if uid < MIN_UID or gid < MIN_GID:
-else:
+raise VMMError(_(u"UID '%(uid)u' and/or GID '%(gid)u' are less "
-raise VMMError(_(u"No such directory: %s") %
+u"than %(min_uid)u/%(min_gid)u.") % {'uid': uid,
-os.path.join(domdir, userdir),
+'gid': gid, 'min_gid': MIN_GID, 'min_uid': MIN_UID},
-NO_SUCH_DIRECTORY)
+MAILDIR_PERM_MISMATCH)
+if domdir.count('..'):
+raise VMMError(_(u'Found ".." in domain directory path: %s') %
+domdir, FOUND_DOTS_IN_PATH)
+if not os.path.isdir(domdir):
+raise VMMError(_(u"No such directory: %s") % domdir,
+NO_SUCH_DIRECTORY)
+os.chdir(domdir)
+userdir = '%s' % uid
+if not os.path.isdir(userdir):
+self._warnings.append(_(u"No such directory: %s") %
+os.path.join(domdir, userdir))
+return
+mdstat = os.lstat(userdir)
+if (mdstat.st_uid, mdstat.st_gid) != (uid, gid):
+raise VMMError(_(u'Detected owner/group mismatch in home '
+u'directory.'), MAILDIR_PERM_MISMATCH)
+rmtree(userdir, ignore_errors=True)
 def _delete_domain_dir(self, domdir, gid):
-"""Delete a domain's directory."""
+"""Delete a domain's directory.
-if gid > 0:
-if not self._isdir(domdir):
+Arguments:
-return
-basedir = self._cfg.dget('misc.base_directory')
+`domdir` : basestring
-domdirdirs = domdir.replace(basedir + '/', '').split('/')
+The domain's directory (commonly DomainObj.directory)
-domdirparent = os.path.join(basedir, domdirdirs[0])
+`gid` : int/long
-if basedir.count('..') or domdir.count('..'):
+The domain's GID (commonly DomainObj.gid)
-raise VMMError(_(u'Found ".." in domain directory path.'),
+"""
-FOUND_DOTS_IN_PATH)
+assert isinstance(domdir, basestring) and isinstance(gid, (long, int))
-if os.path.isdir(domdirparent):
+if gid < MIN_GID:
-os.chdir(domdirparent)
+raise VMMError(_(u"GID '%(gid)u' is less than '%(min_gid)u'.") %
-if os.lstat(domdirdirs[1]).st_gid != gid:
+{'gid': gid, 'min_gid': MIN_GID},
-raise VMMError(_(u'Detected group mismatch in domain '
+DOMAINDIR_GROUP_MISMATCH)
-u'directory.'), DOMAINDIR_GROUP_MISMATCH)
+if domdir.count('..'):
-rmtree(domdirdirs[1], ignore_errors=True)
+raise VMMError(_(u'Found ".." in domain directory path: %s') %
+domdir, FOUND_DOTS_IN_PATH)
+try:
+dirst = os.lstat(domdir)
+except OSError:
+dirst = None
+if not dirst or not stat.S_ISDIR(dirst.st_mode):
+self._warnings.append(_('No such directory: %s') % domdir)
+return
+if dirst.st_gid != gid:
+raise VMMError(_(u'Detected group mismatch in domain directory: '
+u'%s') % domdir, DOMAINDIR_GROUP_MISMATCH)
+rmtree(domdir, ignore_errors=True)
 def has_warnings(self):
 """Checks if warnings are present, returns bool."""
 return bool(len(self._warnings))

branch	v0.6.x
changeset 325	06c0457036a0
parent 320	011066435e6f
child 327	bb9ff81928f1