1da6c28aaSamw /* 2da6c28aaSamw * CDDL HEADER START 3da6c28aaSamw * 4da6c28aaSamw * The contents of this file are subject to the terms of the 5da6c28aaSamw * Common Development and Distribution License (the "License"). 6da6c28aaSamw * You may not use this file except in compliance with the License. 7da6c28aaSamw * 8da6c28aaSamw * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE 9da6c28aaSamw * or http://www.opensolaris.org/os/licensing. 10da6c28aaSamw * See the License for the specific language governing permissions 11da6c28aaSamw * and limitations under the License. 12da6c28aaSamw * 13da6c28aaSamw * When distributing Covered Code, include this CDDL HEADER in each 14da6c28aaSamw * file and include the License file at usr/src/OPENSOLARIS.LICENSE. 15da6c28aaSamw * If applicable, add the following below this CDDL HEADER, with the 16da6c28aaSamw * fields enclosed by brackets "[]" replaced with your own identifying 17da6c28aaSamw * information: Portions Copyright [yyyy] [name of copyright owner] 18da6c28aaSamw * 19da6c28aaSamw * CDDL HEADER END 20da6c28aaSamw */ 21da6c28aaSamw /* 22b3874165SJohn Harres * Copyright 2010 Sun Microsystems, Inc. All rights reserved. 23da6c28aaSamw * Use is subject to license terms. 24*4fbfc69bSGordon Ross * 25*4fbfc69bSGordon Ross * Copyright 2017 Nexenta Systems, Inc. All rights reserved. 26da6c28aaSamw */ 27da6c28aaSamw 28da6c28aaSamw #ifndef _SYS_FS_ZFS_FUID_H 29da6c28aaSamw #define _SYS_FS_ZFS_FUID_H 30da6c28aaSamw 31da6c28aaSamw #ifdef _KERNEL 32da6c28aaSamw #include <sys/kidmap.h> 33da6c28aaSamw #include <sys/sid.h> 34da6c28aaSamw #include <sys/dmu.h> 35da6c28aaSamw #include <sys/zfs_vfsops.h> 36da6c28aaSamw #endif 37e0d35c44Smarks #include <sys/avl.h> 38da6c28aaSamw 39e0d35c44Smarks #ifdef __cplusplus 40e0d35c44Smarks extern "C" { 41e0d35c44Smarks #endif 42da6c28aaSamw 43da6c28aaSamw typedef enum { 44da6c28aaSamw ZFS_OWNER, 45da6c28aaSamw ZFS_GROUP, 46da6c28aaSamw ZFS_ACE_USER, 47da6c28aaSamw ZFS_ACE_GROUP 48da6c28aaSamw } zfs_fuid_type_t; 49da6c28aaSamw 504c841f60Smarks /* 514c841f60Smarks * Estimate space needed for one more fuid table entry. 524c841f60Smarks * for now assume its current size + 1K 534c841f60Smarks */ 5414843421SMatthew Ahrens #define FUID_SIZE_ESTIMATE(z) ((z)->z_fuid_size + (SPA_MINBLOCKSIZE << 1)) 55da6c28aaSamw 5614843421SMatthew Ahrens #define FUID_INDEX(x) ((x) >> 32) 5714843421SMatthew Ahrens #define FUID_RID(x) ((x) & 0xffffffff) 5814843421SMatthew Ahrens #define FUID_ENCODE(idx, rid) (((uint64_t)(idx) << 32) | (rid)) 59da6c28aaSamw /* 60da6c28aaSamw * FUIDs cause problems for the intent log 61da6c28aaSamw * we need to replay the creation of the FUID, 62da6c28aaSamw * but we can't count on the idmapper to be around 63da6c28aaSamw * and during replay the FUID index may be different than 64da6c28aaSamw * before. Also, if an ACL has 100 ACEs and 12 different 65da6c28aaSamw * domains we don't want to log 100 domain strings, but rather 66da6c28aaSamw * just the unique 12. 67da6c28aaSamw */ 68da6c28aaSamw 69da6c28aaSamw /* 70da6c28aaSamw * The FUIDs in the log will index into 71da6c28aaSamw * domain string table and the bottom half will be the rid. 72da6c28aaSamw * Used for mapping ephemeral uid/gid during ACL setting to FUIDs 73da6c28aaSamw */ 74da6c28aaSamw typedef struct zfs_fuid { 75da6c28aaSamw list_node_t z_next; 76da6c28aaSamw uint64_t z_id; /* uid/gid being converted to fuid */ 77da6c28aaSamw uint64_t z_domidx; /* index in AVL domain table */ 78da6c28aaSamw uint64_t z_logfuid; /* index for domain in log */ 79da6c28aaSamw } zfs_fuid_t; 80da6c28aaSamw 81da6c28aaSamw /* list of unique domains */ 82da6c28aaSamw typedef struct zfs_fuid_domain { 83da6c28aaSamw list_node_t z_next; 84da6c28aaSamw uint64_t z_domidx; /* AVL tree idx */ 85da6c28aaSamw const char *z_domain; /* domain string */ 86da6c28aaSamw } zfs_fuid_domain_t; 87da6c28aaSamw 88da6c28aaSamw /* 89da6c28aaSamw * FUID information necessary for logging create, setattr, and setacl. 90da6c28aaSamw */ 91da6c28aaSamw typedef struct zfs_fuid_info { 92da6c28aaSamw list_t z_fuids; 93da6c28aaSamw list_t z_domains; 94da6c28aaSamw uint64_t z_fuid_owner; 95da6c28aaSamw uint64_t z_fuid_group; 96da6c28aaSamw char **z_domain_table; /* Used during replay */ 97da6c28aaSamw uint32_t z_fuid_cnt; /* How many fuids in z_fuids */ 98da6c28aaSamw uint32_t z_domain_cnt; /* How many domains */ 99da6c28aaSamw size_t z_domain_str_sz; /* len of domain strings z_domain list */ 100da6c28aaSamw } zfs_fuid_info_t; 101da6c28aaSamw 102da6c28aaSamw #ifdef _KERNEL 103da6c28aaSamw struct znode; 104e0d35c44Smarks extern uid_t zfs_fuid_map_id(zfsvfs_t *, uint64_t, cred_t *, zfs_fuid_type_t); 105b3874165SJohn Harres extern void zfs_fuid_node_add(zfs_fuid_info_t **, const char *, uint32_t, 106b3874165SJohn Harres uint64_t, uint64_t, zfs_fuid_type_t); 107da6c28aaSamw extern void zfs_fuid_destroy(zfsvfs_t *); 108e0d35c44Smarks extern uint64_t zfs_fuid_create_cred(zfsvfs_t *, zfs_fuid_type_t, 10989459e17SMark Shellenbaum cred_t *, zfs_fuid_info_t **); 110bda89588Sjp151216 extern uint64_t zfs_fuid_create(zfsvfs_t *, uint64_t, cred_t *, zfs_fuid_type_t, 11189459e17SMark Shellenbaum zfs_fuid_info_t **); 11289459e17SMark Shellenbaum extern void zfs_fuid_map_ids(struct znode *zp, cred_t *cr, 11389459e17SMark Shellenbaum uid_t *uid, uid_t *gid); 114da6c28aaSamw extern zfs_fuid_info_t *zfs_fuid_info_alloc(void); 11589459e17SMark Shellenbaum extern void zfs_fuid_info_free(zfs_fuid_info_t *); 116*4fbfc69bSGordon Ross extern boolean_t zfs_user_in_cred(zfsvfs_t *, uint64_t, cred_t *); 117da6c28aaSamw extern boolean_t zfs_groupmember(zfsvfs_t *, uint64_t, cred_t *); 11889459e17SMark Shellenbaum void zfs_fuid_sync(zfsvfs_t *, dmu_tx_t *); 11914843421SMatthew Ahrens extern int zfs_fuid_find_by_domain(zfsvfs_t *, const char *domain, 12014843421SMatthew Ahrens char **retdomain, boolean_t addok); 12114843421SMatthew Ahrens extern const char *zfs_fuid_find_by_idx(zfsvfs_t *zfsvfs, uint32_t idx); 12214843421SMatthew Ahrens extern void zfs_fuid_txhold(zfsvfs_t *zfsvfs, dmu_tx_t *tx); 123da6c28aaSamw #endif 124da6c28aaSamw 125e0d35c44Smarks char *zfs_fuid_idx_domain(avl_tree_t *, uint32_t); 12689459e17SMark Shellenbaum void zfs_fuid_avl_tree_create(avl_tree_t *, avl_tree_t *); 127e0d35c44Smarks uint64_t zfs_fuid_table_load(objset_t *, uint64_t, avl_tree_t *, avl_tree_t *); 128e0d35c44Smarks void zfs_fuid_table_destroy(avl_tree_t *, avl_tree_t *); 129da6c28aaSamw 130da6c28aaSamw #ifdef __cplusplus 131da6c28aaSamw } 132da6c28aaSamw #endif 133da6c28aaSamw 134da6c28aaSamw #endif /* _SYS_FS_ZFS_FUID_H */ 135