Print this page
3744 zfs shouldn't ignore errors unmounting snapshots
Submitted by: Will Andrews <willa@spectralogic.com>
Reviewed by: Matthew Ahrens <mahrens@delphix.com>
Split |
Close |
Expand all |
Collapse all |
--- old/usr/src/uts/common/fs/zfs/zfs_ioctl.c
+++ new/usr/src/uts/common/fs/zfs/zfs_ioctl.c
1 1 /*
2 2 * CDDL HEADER START
3 3 *
4 4 * The contents of this file are subject to the terms of the
5 5 * Common Development and Distribution License (the "License").
6 6 * You may not use this file except in compliance with the License.
7 7 *
8 8 * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
9 9 * or http://www.opensolaris.org/os/licensing.
10 10 * See the License for the specific language governing permissions
11 11 * and limitations under the License.
12 12 *
13 13 * When distributing Covered Code, include this CDDL HEADER in each
14 14 * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
15 15 * If applicable, add the following below this CDDL HEADER, with the
16 16 * fields enclosed by brackets "[]" replaced with your own identifying
17 17 * information: Portions Copyright [yyyy] [name of copyright owner]
18 18 *
19 19 * CDDL HEADER END
20 20 */
21 21
22 22 /*
23 23 * Copyright (c) 2005, 2010, Oracle and/or its affiliates. All rights reserved.
24 24 * Portions Copyright 2011 Martin Matuska
25 25 * Copyright 2011 Nexenta Systems, Inc. All rights reserved.
26 26 * Copyright (c) 2012, Joyent, Inc. All rights reserved.
27 27 * Copyright (c) 2013 by Delphix. All rights reserved.
28 28 * Copyright (c) 2013 by Saso Kiselkov. All rights reserved.
29 29 */
30 30
31 31 /*
32 32 * ZFS ioctls.
33 33 *
34 34 * This file handles the ioctls to /dev/zfs, used for configuring ZFS storage
35 35 * pools and filesystems, e.g. with /sbin/zfs and /sbin/zpool.
36 36 *
37 37 * There are two ways that we handle ioctls: the legacy way where almost
38 38 * all of the logic is in the ioctl callback, and the new way where most
39 39 * of the marshalling is handled in the common entry point, zfsdev_ioctl().
40 40 *
41 41 * Non-legacy ioctls should be registered by calling
42 42 * zfs_ioctl_register() from zfs_ioctl_init(). The ioctl is invoked
43 43 * from userland by lzc_ioctl().
44 44 *
45 45 * The registration arguments are as follows:
46 46 *
47 47 * const char *name
48 48 * The name of the ioctl. This is used for history logging. If the
49 49 * ioctl returns successfully (the callback returns 0), and allow_log
50 50 * is true, then a history log entry will be recorded with the input &
51 51 * output nvlists. The log entry can be printed with "zpool history -i".
52 52 *
53 53 * zfs_ioc_t ioc
54 54 * The ioctl request number, which userland will pass to ioctl(2).
55 55 * The ioctl numbers can change from release to release, because
56 56 * the caller (libzfs) must be matched to the kernel.
57 57 *
58 58 * zfs_secpolicy_func_t *secpolicy
59 59 * This function will be called before the zfs_ioc_func_t, to
60 60 * determine if this operation is permitted. It should return EPERM
61 61 * on failure, and 0 on success. Checks include determining if the
62 62 * dataset is visible in this zone, and if the user has either all
63 63 * zfs privileges in the zone (SYS_MOUNT), or has been granted permission
64 64 * to do this operation on this dataset with "zfs allow".
65 65 *
66 66 * zfs_ioc_namecheck_t namecheck
67 67 * This specifies what to expect in the zfs_cmd_t:zc_name -- a pool
68 68 * name, a dataset name, or nothing. If the name is not well-formed,
69 69 * the ioctl will fail and the callback will not be called.
70 70 * Therefore, the callback can assume that the name is well-formed
71 71 * (e.g. is null-terminated, doesn't have more than one '@' character,
72 72 * doesn't have invalid characters).
73 73 *
74 74 * zfs_ioc_poolcheck_t pool_check
75 75 * This specifies requirements on the pool state. If the pool does
76 76 * not meet them (is suspended or is readonly), the ioctl will fail
77 77 * and the callback will not be called. If any checks are specified
78 78 * (i.e. it is not POOL_CHECK_NONE), namecheck must not be NO_NAME.
79 79 * Multiple checks can be or-ed together (e.g. POOL_CHECK_SUSPENDED |
80 80 * POOL_CHECK_READONLY).
81 81 *
82 82 * boolean_t smush_outnvlist
83 83 * If smush_outnvlist is true, then the output is presumed to be a
84 84 * list of errors, and it will be "smushed" down to fit into the
85 85 * caller's buffer, by removing some entries and replacing them with a
86 86 * single "N_MORE_ERRORS" entry indicating how many were removed. See
87 87 * nvlist_smush() for details. If smush_outnvlist is false, and the
88 88 * outnvlist does not fit into the userland-provided buffer, then the
89 89 * ioctl will fail with ENOMEM.
90 90 *
91 91 * zfs_ioc_func_t *func
92 92 * The callback function that will perform the operation.
93 93 *
94 94 * The callback should return 0 on success, or an error number on
95 95 * failure. If the function fails, the userland ioctl will return -1,
96 96 * and errno will be set to the callback's return value. The callback
97 97 * will be called with the following arguments:
98 98 *
99 99 * const char *name
100 100 * The name of the pool or dataset to operate on, from
101 101 * zfs_cmd_t:zc_name. The 'namecheck' argument specifies the
102 102 * expected type (pool, dataset, or none).
103 103 *
104 104 * nvlist_t *innvl
105 105 * The input nvlist, deserialized from zfs_cmd_t:zc_nvlist_src. Or
106 106 * NULL if no input nvlist was provided. Changes to this nvlist are
107 107 * ignored. If the input nvlist could not be deserialized, the
108 108 * ioctl will fail and the callback will not be called.
109 109 *
110 110 * nvlist_t *outnvl
111 111 * The output nvlist, initially empty. The callback can fill it in,
112 112 * and it will be returned to userland by serializing it into
113 113 * zfs_cmd_t:zc_nvlist_dst. If it is non-empty, and serialization
114 114 * fails (e.g. because the caller didn't supply a large enough
115 115 * buffer), then the overall ioctl will fail. See the
116 116 * 'smush_nvlist' argument above for additional behaviors.
117 117 *
118 118 * There are two typical uses of the output nvlist:
119 119 * - To return state, e.g. property values. In this case,
120 120 * smush_outnvlist should be false. If the buffer was not large
121 121 * enough, the caller will reallocate a larger buffer and try
122 122 * the ioctl again.
123 123 *
124 124 * - To return multiple errors from an ioctl which makes on-disk
125 125 * changes. In this case, smush_outnvlist should be true.
126 126 * Ioctls which make on-disk modifications should generally not
127 127 * use the outnvl if they succeed, because the caller can not
128 128 * distinguish between the operation failing, and
129 129 * deserialization failing.
130 130 */
131 131
132 132 #include <sys/types.h>
133 133 #include <sys/param.h>
134 134 #include <sys/errno.h>
135 135 #include <sys/uio.h>
136 136 #include <sys/buf.h>
137 137 #include <sys/modctl.h>
138 138 #include <sys/open.h>
139 139 #include <sys/file.h>
140 140 #include <sys/kmem.h>
141 141 #include <sys/conf.h>
142 142 #include <sys/cmn_err.h>
143 143 #include <sys/stat.h>
144 144 #include <sys/zfs_ioctl.h>
145 145 #include <sys/zfs_vfsops.h>
146 146 #include <sys/zfs_znode.h>
147 147 #include <sys/zap.h>
148 148 #include <sys/spa.h>
149 149 #include <sys/spa_impl.h>
150 150 #include <sys/vdev.h>
151 151 #include <sys/priv_impl.h>
152 152 #include <sys/dmu.h>
153 153 #include <sys/dsl_dir.h>
154 154 #include <sys/dsl_dataset.h>
155 155 #include <sys/dsl_prop.h>
156 156 #include <sys/dsl_deleg.h>
157 157 #include <sys/dmu_objset.h>
158 158 #include <sys/dmu_impl.h>
159 159 #include <sys/dmu_tx.h>
160 160 #include <sys/ddi.h>
161 161 #include <sys/sunddi.h>
162 162 #include <sys/sunldi.h>
163 163 #include <sys/policy.h>
164 164 #include <sys/zone.h>
165 165 #include <sys/nvpair.h>
166 166 #include <sys/pathname.h>
167 167 #include <sys/mount.h>
168 168 #include <sys/sdt.h>
169 169 #include <sys/fs/zfs.h>
170 170 #include <sys/zfs_ctldir.h>
171 171 #include <sys/zfs_dir.h>
172 172 #include <sys/zfs_onexit.h>
173 173 #include <sys/zvol.h>
174 174 #include <sys/dsl_scan.h>
175 175 #include <sharefs/share.h>
176 176 #include <sys/dmu_objset.h>
177 177 #include <sys/dmu_send.h>
178 178 #include <sys/dsl_destroy.h>
179 179 #include <sys/dsl_userhold.h>
180 180 #include <sys/zfeature.h>
181 181
182 182 #include "zfs_namecheck.h"
183 183 #include "zfs_prop.h"
184 184 #include "zfs_deleg.h"
185 185 #include "zfs_comutil.h"
186 186
187 187 extern struct modlfs zfs_modlfs;
188 188
189 189 extern void zfs_init(void);
190 190 extern void zfs_fini(void);
191 191
192 192 ldi_ident_t zfs_li = NULL;
193 193 dev_info_t *zfs_dip;
194 194
195 195 uint_t zfs_fsyncer_key;
196 196 extern uint_t rrw_tsd_key;
197 197 static uint_t zfs_allow_log_key;
198 198
199 199 typedef int zfs_ioc_legacy_func_t(zfs_cmd_t *);
200 200 typedef int zfs_ioc_func_t(const char *, nvlist_t *, nvlist_t *);
201 201 typedef int zfs_secpolicy_func_t(zfs_cmd_t *, nvlist_t *, cred_t *);
202 202
203 203 typedef enum {
204 204 NO_NAME,
205 205 POOL_NAME,
206 206 DATASET_NAME
207 207 } zfs_ioc_namecheck_t;
208 208
209 209 typedef enum {
210 210 POOL_CHECK_NONE = 1 << 0,
211 211 POOL_CHECK_SUSPENDED = 1 << 1,
212 212 POOL_CHECK_READONLY = 1 << 2,
213 213 } zfs_ioc_poolcheck_t;
214 214
215 215 typedef struct zfs_ioc_vec {
216 216 zfs_ioc_legacy_func_t *zvec_legacy_func;
217 217 zfs_ioc_func_t *zvec_func;
218 218 zfs_secpolicy_func_t *zvec_secpolicy;
219 219 zfs_ioc_namecheck_t zvec_namecheck;
220 220 boolean_t zvec_allow_log;
221 221 zfs_ioc_poolcheck_t zvec_pool_check;
222 222 boolean_t zvec_smush_outnvlist;
223 223 const char *zvec_name;
224 224 } zfs_ioc_vec_t;
225 225
226 226 /* This array is indexed by zfs_userquota_prop_t */
227 227 static const char *userquota_perms[] = {
228 228 ZFS_DELEG_PERM_USERUSED,
229 229 ZFS_DELEG_PERM_USERQUOTA,
230 230 ZFS_DELEG_PERM_GROUPUSED,
231 231 ZFS_DELEG_PERM_GROUPQUOTA,
232 232 };
233 233
234 234 static int zfs_ioc_userspace_upgrade(zfs_cmd_t *zc);
235 235 static int zfs_check_settable(const char *name, nvpair_t *property,
236 236 cred_t *cr);
237 237 static int zfs_check_clearable(char *dataset, nvlist_t *props,
238 238 nvlist_t **errors);
239 239 static int zfs_fill_zplprops_root(uint64_t, nvlist_t *, nvlist_t *,
240 240 boolean_t *);
241 241 int zfs_set_prop_nvlist(const char *, zprop_source_t, nvlist_t *, nvlist_t *);
242 242 static int get_nvlist(uint64_t nvl, uint64_t size, int iflag, nvlist_t **nvp);
243 243
244 244 static int zfs_prop_activate_feature(spa_t *spa, zfeature_info_t *feature);
245 245
246 246 /* _NOTE(PRINTFLIKE(4)) - this is printf-like, but lint is too whiney */
247 247 void
248 248 __dprintf(const char *file, const char *func, int line, const char *fmt, ...)
249 249 {
250 250 const char *newfile;
251 251 char buf[512];
252 252 va_list adx;
253 253
254 254 /*
255 255 * Get rid of annoying "../common/" prefix to filename.
256 256 */
257 257 newfile = strrchr(file, '/');
258 258 if (newfile != NULL) {
259 259 newfile = newfile + 1; /* Get rid of leading / */
260 260 } else {
261 261 newfile = file;
262 262 }
263 263
264 264 va_start(adx, fmt);
265 265 (void) vsnprintf(buf, sizeof (buf), fmt, adx);
266 266 va_end(adx);
267 267
268 268 /*
269 269 * To get this data, use the zfs-dprintf probe as so:
270 270 * dtrace -q -n 'zfs-dprintf \
271 271 * /stringof(arg0) == "dbuf.c"/ \
272 272 * {printf("%s: %s", stringof(arg1), stringof(arg3))}'
273 273 * arg0 = file name
274 274 * arg1 = function name
275 275 * arg2 = line number
276 276 * arg3 = message
277 277 */
278 278 DTRACE_PROBE4(zfs__dprintf,
279 279 char *, newfile, char *, func, int, line, char *, buf);
280 280 }
281 281
282 282 static void
283 283 history_str_free(char *buf)
284 284 {
285 285 kmem_free(buf, HIS_MAX_RECORD_LEN);
286 286 }
287 287
288 288 static char *
289 289 history_str_get(zfs_cmd_t *zc)
290 290 {
291 291 char *buf;
292 292
293 293 if (zc->zc_history == NULL)
294 294 return (NULL);
295 295
296 296 buf = kmem_alloc(HIS_MAX_RECORD_LEN, KM_SLEEP);
297 297 if (copyinstr((void *)(uintptr_t)zc->zc_history,
298 298 buf, HIS_MAX_RECORD_LEN, NULL) != 0) {
299 299 history_str_free(buf);
300 300 return (NULL);
301 301 }
302 302
303 303 buf[HIS_MAX_RECORD_LEN -1] = '\0';
304 304
305 305 return (buf);
306 306 }
307 307
308 308 /*
309 309 * Check to see if the named dataset is currently defined as bootable
310 310 */
311 311 static boolean_t
312 312 zfs_is_bootfs(const char *name)
313 313 {
314 314 objset_t *os;
315 315
316 316 if (dmu_objset_hold(name, FTAG, &os) == 0) {
317 317 boolean_t ret;
318 318 ret = (dmu_objset_id(os) == spa_bootfs(dmu_objset_spa(os)));
319 319 dmu_objset_rele(os, FTAG);
320 320 return (ret);
321 321 }
322 322 return (B_FALSE);
323 323 }
324 324
325 325 /*
326 326 * zfs_earlier_version
327 327 *
328 328 * Return non-zero if the spa version is less than requested version.
329 329 */
330 330 static int
331 331 zfs_earlier_version(const char *name, int version)
332 332 {
333 333 spa_t *spa;
334 334
335 335 if (spa_open(name, &spa, FTAG) == 0) {
336 336 if (spa_version(spa) < version) {
337 337 spa_close(spa, FTAG);
338 338 return (1);
339 339 }
340 340 spa_close(spa, FTAG);
341 341 }
342 342 return (0);
343 343 }
344 344
345 345 /*
346 346 * zpl_earlier_version
347 347 *
348 348 * Return TRUE if the ZPL version is less than requested version.
349 349 */
350 350 static boolean_t
351 351 zpl_earlier_version(const char *name, int version)
352 352 {
353 353 objset_t *os;
354 354 boolean_t rc = B_TRUE;
355 355
356 356 if (dmu_objset_hold(name, FTAG, &os) == 0) {
357 357 uint64_t zplversion;
358 358
359 359 if (dmu_objset_type(os) != DMU_OST_ZFS) {
360 360 dmu_objset_rele(os, FTAG);
361 361 return (B_TRUE);
362 362 }
363 363 /* XXX reading from non-owned objset */
364 364 if (zfs_get_zplprop(os, ZFS_PROP_VERSION, &zplversion) == 0)
365 365 rc = zplversion < version;
366 366 dmu_objset_rele(os, FTAG);
367 367 }
368 368 return (rc);
369 369 }
370 370
371 371 static void
372 372 zfs_log_history(zfs_cmd_t *zc)
373 373 {
374 374 spa_t *spa;
375 375 char *buf;
376 376
377 377 if ((buf = history_str_get(zc)) == NULL)
378 378 return;
379 379
380 380 if (spa_open(zc->zc_name, &spa, FTAG) == 0) {
381 381 if (spa_version(spa) >= SPA_VERSION_ZPOOL_HISTORY)
382 382 (void) spa_history_log(spa, buf);
383 383 spa_close(spa, FTAG);
384 384 }
385 385 history_str_free(buf);
386 386 }
387 387
388 388 /*
389 389 * Policy for top-level read operations (list pools). Requires no privileges,
390 390 * and can be used in the local zone, as there is no associated dataset.
391 391 */
392 392 /* ARGSUSED */
393 393 static int
394 394 zfs_secpolicy_none(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
395 395 {
396 396 return (0);
397 397 }
398 398
399 399 /*
400 400 * Policy for dataset read operations (list children, get statistics). Requires
401 401 * no privileges, but must be visible in the local zone.
402 402 */
403 403 /* ARGSUSED */
404 404 static int
405 405 zfs_secpolicy_read(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
406 406 {
407 407 if (INGLOBALZONE(curproc) ||
408 408 zone_dataset_visible(zc->zc_name, NULL))
409 409 return (0);
410 410
411 411 return (SET_ERROR(ENOENT));
412 412 }
413 413
414 414 static int
415 415 zfs_dozonecheck_impl(const char *dataset, uint64_t zoned, cred_t *cr)
416 416 {
417 417 int writable = 1;
418 418
419 419 /*
420 420 * The dataset must be visible by this zone -- check this first
421 421 * so they don't see EPERM on something they shouldn't know about.
422 422 */
423 423 if (!INGLOBALZONE(curproc) &&
424 424 !zone_dataset_visible(dataset, &writable))
425 425 return (SET_ERROR(ENOENT));
426 426
427 427 if (INGLOBALZONE(curproc)) {
428 428 /*
429 429 * If the fs is zoned, only root can access it from the
430 430 * global zone.
431 431 */
432 432 if (secpolicy_zfs(cr) && zoned)
433 433 return (SET_ERROR(EPERM));
434 434 } else {
435 435 /*
436 436 * If we are in a local zone, the 'zoned' property must be set.
437 437 */
438 438 if (!zoned)
439 439 return (SET_ERROR(EPERM));
440 440
441 441 /* must be writable by this zone */
442 442 if (!writable)
443 443 return (SET_ERROR(EPERM));
444 444 }
445 445 return (0);
446 446 }
447 447
448 448 static int
449 449 zfs_dozonecheck(const char *dataset, cred_t *cr)
450 450 {
451 451 uint64_t zoned;
452 452
453 453 if (dsl_prop_get_integer(dataset, "zoned", &zoned, NULL))
454 454 return (SET_ERROR(ENOENT));
455 455
456 456 return (zfs_dozonecheck_impl(dataset, zoned, cr));
457 457 }
458 458
459 459 static int
460 460 zfs_dozonecheck_ds(const char *dataset, dsl_dataset_t *ds, cred_t *cr)
461 461 {
462 462 uint64_t zoned;
463 463
464 464 if (dsl_prop_get_int_ds(ds, "zoned", &zoned))
465 465 return (SET_ERROR(ENOENT));
466 466
467 467 return (zfs_dozonecheck_impl(dataset, zoned, cr));
468 468 }
469 469
470 470 static int
471 471 zfs_secpolicy_write_perms_ds(const char *name, dsl_dataset_t *ds,
472 472 const char *perm, cred_t *cr)
473 473 {
474 474 int error;
475 475
476 476 error = zfs_dozonecheck_ds(name, ds, cr);
477 477 if (error == 0) {
478 478 error = secpolicy_zfs(cr);
479 479 if (error != 0)
480 480 error = dsl_deleg_access_impl(ds, perm, cr);
481 481 }
482 482 return (error);
483 483 }
484 484
485 485 static int
486 486 zfs_secpolicy_write_perms(const char *name, const char *perm, cred_t *cr)
487 487 {
488 488 int error;
489 489 dsl_dataset_t *ds;
490 490 dsl_pool_t *dp;
491 491
492 492 error = dsl_pool_hold(name, FTAG, &dp);
493 493 if (error != 0)
494 494 return (error);
495 495
496 496 error = dsl_dataset_hold(dp, name, FTAG, &ds);
497 497 if (error != 0) {
498 498 dsl_pool_rele(dp, FTAG);
499 499 return (error);
500 500 }
501 501
502 502 error = zfs_secpolicy_write_perms_ds(name, ds, perm, cr);
503 503
504 504 dsl_dataset_rele(ds, FTAG);
505 505 dsl_pool_rele(dp, FTAG);
506 506 return (error);
507 507 }
508 508
509 509 /*
510 510 * Policy for setting the security label property.
511 511 *
512 512 * Returns 0 for success, non-zero for access and other errors.
513 513 */
514 514 static int
515 515 zfs_set_slabel_policy(const char *name, char *strval, cred_t *cr)
516 516 {
517 517 char ds_hexsl[MAXNAMELEN];
518 518 bslabel_t ds_sl, new_sl;
519 519 boolean_t new_default = FALSE;
520 520 uint64_t zoned;
521 521 int needed_priv = -1;
522 522 int error;
523 523
524 524 /* First get the existing dataset label. */
525 525 error = dsl_prop_get(name, zfs_prop_to_name(ZFS_PROP_MLSLABEL),
526 526 1, sizeof (ds_hexsl), &ds_hexsl, NULL);
527 527 if (error != 0)
528 528 return (SET_ERROR(EPERM));
529 529
530 530 if (strcasecmp(strval, ZFS_MLSLABEL_DEFAULT) == 0)
531 531 new_default = TRUE;
532 532
533 533 /* The label must be translatable */
534 534 if (!new_default && (hexstr_to_label(strval, &new_sl) != 0))
535 535 return (SET_ERROR(EINVAL));
536 536
537 537 /*
538 538 * In a non-global zone, disallow attempts to set a label that
539 539 * doesn't match that of the zone; otherwise no other checks
540 540 * are needed.
541 541 */
542 542 if (!INGLOBALZONE(curproc)) {
543 543 if (new_default || !blequal(&new_sl, CR_SL(CRED())))
544 544 return (SET_ERROR(EPERM));
545 545 return (0);
546 546 }
547 547
548 548 /*
549 549 * For global-zone datasets (i.e., those whose zoned property is
550 550 * "off", verify that the specified new label is valid for the
551 551 * global zone.
552 552 */
553 553 if (dsl_prop_get_integer(name,
554 554 zfs_prop_to_name(ZFS_PROP_ZONED), &zoned, NULL))
555 555 return (SET_ERROR(EPERM));
556 556 if (!zoned) {
557 557 if (zfs_check_global_label(name, strval) != 0)
558 558 return (SET_ERROR(EPERM));
559 559 }
560 560
561 561 /*
562 562 * If the existing dataset label is nondefault, check if the
563 563 * dataset is mounted (label cannot be changed while mounted).
564 564 * Get the zfsvfs; if there isn't one, then the dataset isn't
565 565 * mounted (or isn't a dataset, doesn't exist, ...).
566 566 */
567 567 if (strcasecmp(ds_hexsl, ZFS_MLSLABEL_DEFAULT) != 0) {
568 568 objset_t *os;
569 569 static char *setsl_tag = "setsl_tag";
570 570
571 571 /*
572 572 * Try to own the dataset; abort if there is any error,
573 573 * (e.g., already mounted, in use, or other error).
574 574 */
575 575 error = dmu_objset_own(name, DMU_OST_ZFS, B_TRUE,
576 576 setsl_tag, &os);
577 577 if (error != 0)
578 578 return (SET_ERROR(EPERM));
579 579
580 580 dmu_objset_disown(os, setsl_tag);
581 581
582 582 if (new_default) {
583 583 needed_priv = PRIV_FILE_DOWNGRADE_SL;
584 584 goto out_check;
585 585 }
586 586
587 587 if (hexstr_to_label(strval, &new_sl) != 0)
588 588 return (SET_ERROR(EPERM));
589 589
590 590 if (blstrictdom(&ds_sl, &new_sl))
591 591 needed_priv = PRIV_FILE_DOWNGRADE_SL;
592 592 else if (blstrictdom(&new_sl, &ds_sl))
593 593 needed_priv = PRIV_FILE_UPGRADE_SL;
594 594 } else {
595 595 /* dataset currently has a default label */
596 596 if (!new_default)
597 597 needed_priv = PRIV_FILE_UPGRADE_SL;
598 598 }
599 599
600 600 out_check:
601 601 if (needed_priv != -1)
602 602 return (PRIV_POLICY(cr, needed_priv, B_FALSE, EPERM, NULL));
603 603 return (0);
604 604 }
605 605
606 606 static int
607 607 zfs_secpolicy_setprop(const char *dsname, zfs_prop_t prop, nvpair_t *propval,
608 608 cred_t *cr)
609 609 {
610 610 char *strval;
611 611
612 612 /*
613 613 * Check permissions for special properties.
614 614 */
615 615 switch (prop) {
616 616 case ZFS_PROP_ZONED:
617 617 /*
618 618 * Disallow setting of 'zoned' from within a local zone.
619 619 */
620 620 if (!INGLOBALZONE(curproc))
621 621 return (SET_ERROR(EPERM));
622 622 break;
623 623
624 624 case ZFS_PROP_QUOTA:
625 625 if (!INGLOBALZONE(curproc)) {
626 626 uint64_t zoned;
627 627 char setpoint[MAXNAMELEN];
628 628 /*
629 629 * Unprivileged users are allowed to modify the
630 630 * quota on things *under* (ie. contained by)
631 631 * the thing they own.
632 632 */
633 633 if (dsl_prop_get_integer(dsname, "zoned", &zoned,
634 634 setpoint))
635 635 return (SET_ERROR(EPERM));
636 636 if (!zoned || strlen(dsname) <= strlen(setpoint))
637 637 return (SET_ERROR(EPERM));
638 638 }
639 639 break;
640 640
641 641 case ZFS_PROP_MLSLABEL:
642 642 if (!is_system_labeled())
643 643 return (SET_ERROR(EPERM));
644 644
645 645 if (nvpair_value_string(propval, &strval) == 0) {
646 646 int err;
647 647
648 648 err = zfs_set_slabel_policy(dsname, strval, CRED());
649 649 if (err != 0)
650 650 return (err);
651 651 }
652 652 break;
653 653 }
654 654
655 655 return (zfs_secpolicy_write_perms(dsname, zfs_prop_to_name(prop), cr));
656 656 }
657 657
658 658 /* ARGSUSED */
659 659 static int
660 660 zfs_secpolicy_set_fsacl(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
661 661 {
662 662 int error;
663 663
664 664 error = zfs_dozonecheck(zc->zc_name, cr);
665 665 if (error != 0)
666 666 return (error);
667 667
668 668 /*
669 669 * permission to set permissions will be evaluated later in
670 670 * dsl_deleg_can_allow()
671 671 */
672 672 return (0);
673 673 }
674 674
675 675 /* ARGSUSED */
676 676 static int
677 677 zfs_secpolicy_rollback(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
678 678 {
679 679 return (zfs_secpolicy_write_perms(zc->zc_name,
680 680 ZFS_DELEG_PERM_ROLLBACK, cr));
681 681 }
682 682
683 683 /* ARGSUSED */
684 684 static int
685 685 zfs_secpolicy_send(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
686 686 {
687 687 dsl_pool_t *dp;
688 688 dsl_dataset_t *ds;
689 689 char *cp;
690 690 int error;
691 691
692 692 /*
693 693 * Generate the current snapshot name from the given objsetid, then
694 694 * use that name for the secpolicy/zone checks.
695 695 */
696 696 cp = strchr(zc->zc_name, '@');
697 697 if (cp == NULL)
698 698 return (SET_ERROR(EINVAL));
699 699 error = dsl_pool_hold(zc->zc_name, FTAG, &dp);
700 700 if (error != 0)
701 701 return (error);
702 702
703 703 error = dsl_dataset_hold_obj(dp, zc->zc_sendobj, FTAG, &ds);
704 704 if (error != 0) {
705 705 dsl_pool_rele(dp, FTAG);
706 706 return (error);
707 707 }
708 708
709 709 dsl_dataset_name(ds, zc->zc_name);
710 710
711 711 error = zfs_secpolicy_write_perms_ds(zc->zc_name, ds,
712 712 ZFS_DELEG_PERM_SEND, cr);
713 713 dsl_dataset_rele(ds, FTAG);
714 714 dsl_pool_rele(dp, FTAG);
715 715
716 716 return (error);
717 717 }
718 718
719 719 /* ARGSUSED */
720 720 static int
721 721 zfs_secpolicy_send_new(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
722 722 {
723 723 return (zfs_secpolicy_write_perms(zc->zc_name,
724 724 ZFS_DELEG_PERM_SEND, cr));
725 725 }
726 726
727 727 /* ARGSUSED */
728 728 static int
729 729 zfs_secpolicy_deleg_share(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
730 730 {
731 731 vnode_t *vp;
732 732 int error;
733 733
734 734 if ((error = lookupname(zc->zc_value, UIO_SYSSPACE,
735 735 NO_FOLLOW, NULL, &vp)) != 0)
736 736 return (error);
737 737
738 738 /* Now make sure mntpnt and dataset are ZFS */
739 739
740 740 if (vp->v_vfsp->vfs_fstype != zfsfstype ||
741 741 (strcmp((char *)refstr_value(vp->v_vfsp->vfs_resource),
742 742 zc->zc_name) != 0)) {
743 743 VN_RELE(vp);
744 744 return (SET_ERROR(EPERM));
745 745 }
746 746
747 747 VN_RELE(vp);
748 748 return (dsl_deleg_access(zc->zc_name,
749 749 ZFS_DELEG_PERM_SHARE, cr));
750 750 }
751 751
752 752 int
753 753 zfs_secpolicy_share(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
754 754 {
755 755 if (!INGLOBALZONE(curproc))
756 756 return (SET_ERROR(EPERM));
757 757
758 758 if (secpolicy_nfs(cr) == 0) {
759 759 return (0);
760 760 } else {
761 761 return (zfs_secpolicy_deleg_share(zc, innvl, cr));
762 762 }
763 763 }
764 764
765 765 int
766 766 zfs_secpolicy_smb_acl(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
767 767 {
768 768 if (!INGLOBALZONE(curproc))
769 769 return (SET_ERROR(EPERM));
770 770
771 771 if (secpolicy_smb(cr) == 0) {
772 772 return (0);
773 773 } else {
774 774 return (zfs_secpolicy_deleg_share(zc, innvl, cr));
775 775 }
776 776 }
777 777
778 778 static int
779 779 zfs_get_parent(const char *datasetname, char *parent, int parentsize)
780 780 {
781 781 char *cp;
782 782
783 783 /*
784 784 * Remove the @bla or /bla from the end of the name to get the parent.
785 785 */
786 786 (void) strncpy(parent, datasetname, parentsize);
787 787 cp = strrchr(parent, '@');
788 788 if (cp != NULL) {
789 789 cp[0] = '\0';
790 790 } else {
791 791 cp = strrchr(parent, '/');
792 792 if (cp == NULL)
793 793 return (SET_ERROR(ENOENT));
794 794 cp[0] = '\0';
795 795 }
796 796
797 797 return (0);
798 798 }
799 799
800 800 int
801 801 zfs_secpolicy_destroy_perms(const char *name, cred_t *cr)
802 802 {
803 803 int error;
804 804
805 805 if ((error = zfs_secpolicy_write_perms(name,
806 806 ZFS_DELEG_PERM_MOUNT, cr)) != 0)
807 807 return (error);
808 808
809 809 return (zfs_secpolicy_write_perms(name, ZFS_DELEG_PERM_DESTROY, cr));
810 810 }
811 811
812 812 /* ARGSUSED */
813 813 static int
814 814 zfs_secpolicy_destroy(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
815 815 {
816 816 return (zfs_secpolicy_destroy_perms(zc->zc_name, cr));
817 817 }
818 818
819 819 /*
820 820 * Destroying snapshots with delegated permissions requires
821 821 * descendant mount and destroy permissions.
822 822 */
823 823 /* ARGSUSED */
824 824 static int
825 825 zfs_secpolicy_destroy_snaps(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
826 826 {
827 827 nvlist_t *snaps;
828 828 nvpair_t *pair, *nextpair;
829 829 int error = 0;
830 830
831 831 if (nvlist_lookup_nvlist(innvl, "snaps", &snaps) != 0)
832 832 return (SET_ERROR(EINVAL));
833 833 for (pair = nvlist_next_nvpair(snaps, NULL); pair != NULL;
834 834 pair = nextpair) {
835 835 dsl_pool_t *dp;
836 836 dsl_dataset_t *ds;
837 837
838 838 error = dsl_pool_hold(nvpair_name(pair), FTAG, &dp);
839 839 if (error != 0)
840 840 break;
841 841 nextpair = nvlist_next_nvpair(snaps, pair);
842 842 error = dsl_dataset_hold(dp, nvpair_name(pair), FTAG, &ds);
843 843 if (error == 0)
844 844 dsl_dataset_rele(ds, FTAG);
845 845 dsl_pool_rele(dp, FTAG);
846 846
847 847 if (error == 0) {
848 848 error = zfs_secpolicy_destroy_perms(nvpair_name(pair),
849 849 cr);
850 850 } else if (error == ENOENT) {
851 851 /*
852 852 * Ignore any snapshots that don't exist (we consider
853 853 * them "already destroyed"). Remove the name from the
854 854 * nvl here in case the snapshot is created between
855 855 * now and when we try to destroy it (in which case
856 856 * we don't want to destroy it since we haven't
857 857 * checked for permission).
858 858 */
859 859 fnvlist_remove_nvpair(snaps, pair);
860 860 error = 0;
861 861 }
862 862 if (error != 0)
863 863 break;
864 864 }
865 865
866 866 return (error);
867 867 }
868 868
869 869 int
870 870 zfs_secpolicy_rename_perms(const char *from, const char *to, cred_t *cr)
871 871 {
872 872 char parentname[MAXNAMELEN];
873 873 int error;
874 874
875 875 if ((error = zfs_secpolicy_write_perms(from,
876 876 ZFS_DELEG_PERM_RENAME, cr)) != 0)
877 877 return (error);
878 878
879 879 if ((error = zfs_secpolicy_write_perms(from,
880 880 ZFS_DELEG_PERM_MOUNT, cr)) != 0)
881 881 return (error);
882 882
883 883 if ((error = zfs_get_parent(to, parentname,
884 884 sizeof (parentname))) != 0)
885 885 return (error);
886 886
887 887 if ((error = zfs_secpolicy_write_perms(parentname,
888 888 ZFS_DELEG_PERM_CREATE, cr)) != 0)
889 889 return (error);
890 890
891 891 if ((error = zfs_secpolicy_write_perms(parentname,
892 892 ZFS_DELEG_PERM_MOUNT, cr)) != 0)
893 893 return (error);
894 894
895 895 return (error);
896 896 }
897 897
898 898 /* ARGSUSED */
899 899 static int
900 900 zfs_secpolicy_rename(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
901 901 {
902 902 return (zfs_secpolicy_rename_perms(zc->zc_name, zc->zc_value, cr));
903 903 }
904 904
905 905 /* ARGSUSED */
906 906 static int
907 907 zfs_secpolicy_promote(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
908 908 {
909 909 dsl_pool_t *dp;
910 910 dsl_dataset_t *clone;
911 911 int error;
912 912
913 913 error = zfs_secpolicy_write_perms(zc->zc_name,
914 914 ZFS_DELEG_PERM_PROMOTE, cr);
915 915 if (error != 0)
916 916 return (error);
917 917
918 918 error = dsl_pool_hold(zc->zc_name, FTAG, &dp);
919 919 if (error != 0)
920 920 return (error);
921 921
922 922 error = dsl_dataset_hold(dp, zc->zc_name, FTAG, &clone);
923 923
924 924 if (error == 0) {
925 925 char parentname[MAXNAMELEN];
926 926 dsl_dataset_t *origin = NULL;
927 927 dsl_dir_t *dd;
928 928 dd = clone->ds_dir;
929 929
930 930 error = dsl_dataset_hold_obj(dd->dd_pool,
931 931 dd->dd_phys->dd_origin_obj, FTAG, &origin);
932 932 if (error != 0) {
933 933 dsl_dataset_rele(clone, FTAG);
934 934 dsl_pool_rele(dp, FTAG);
935 935 return (error);
936 936 }
937 937
938 938 error = zfs_secpolicy_write_perms_ds(zc->zc_name, clone,
939 939 ZFS_DELEG_PERM_MOUNT, cr);
940 940
941 941 dsl_dataset_name(origin, parentname);
942 942 if (error == 0) {
943 943 error = zfs_secpolicy_write_perms_ds(parentname, origin,
944 944 ZFS_DELEG_PERM_PROMOTE, cr);
945 945 }
946 946 dsl_dataset_rele(clone, FTAG);
947 947 dsl_dataset_rele(origin, FTAG);
948 948 }
949 949 dsl_pool_rele(dp, FTAG);
950 950 return (error);
951 951 }
952 952
953 953 /* ARGSUSED */
954 954 static int
955 955 zfs_secpolicy_recv(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
956 956 {
957 957 int error;
958 958
959 959 if ((error = zfs_secpolicy_write_perms(zc->zc_name,
960 960 ZFS_DELEG_PERM_RECEIVE, cr)) != 0)
961 961 return (error);
962 962
963 963 if ((error = zfs_secpolicy_write_perms(zc->zc_name,
964 964 ZFS_DELEG_PERM_MOUNT, cr)) != 0)
965 965 return (error);
966 966
967 967 return (zfs_secpolicy_write_perms(zc->zc_name,
968 968 ZFS_DELEG_PERM_CREATE, cr));
969 969 }
970 970
971 971 int
972 972 zfs_secpolicy_snapshot_perms(const char *name, cred_t *cr)
973 973 {
974 974 return (zfs_secpolicy_write_perms(name,
975 975 ZFS_DELEG_PERM_SNAPSHOT, cr));
976 976 }
977 977
978 978 /*
979 979 * Check for permission to create each snapshot in the nvlist.
980 980 */
981 981 /* ARGSUSED */
982 982 static int
983 983 zfs_secpolicy_snapshot(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
984 984 {
985 985 nvlist_t *snaps;
986 986 int error = 0;
987 987 nvpair_t *pair;
988 988
989 989 if (nvlist_lookup_nvlist(innvl, "snaps", &snaps) != 0)
990 990 return (SET_ERROR(EINVAL));
991 991 for (pair = nvlist_next_nvpair(snaps, NULL); pair != NULL;
992 992 pair = nvlist_next_nvpair(snaps, pair)) {
993 993 char *name = nvpair_name(pair);
994 994 char *atp = strchr(name, '@');
995 995
996 996 if (atp == NULL) {
997 997 error = SET_ERROR(EINVAL);
998 998 break;
999 999 }
1000 1000 *atp = '\0';
1001 1001 error = zfs_secpolicy_snapshot_perms(name, cr);
1002 1002 *atp = '@';
1003 1003 if (error != 0)
1004 1004 break;
1005 1005 }
1006 1006 return (error);
1007 1007 }
1008 1008
1009 1009 /* ARGSUSED */
1010 1010 static int
1011 1011 zfs_secpolicy_log_history(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
1012 1012 {
1013 1013 /*
1014 1014 * Even root must have a proper TSD so that we know what pool
1015 1015 * to log to.
1016 1016 */
1017 1017 if (tsd_get(zfs_allow_log_key) == NULL)
1018 1018 return (SET_ERROR(EPERM));
1019 1019 return (0);
1020 1020 }
1021 1021
1022 1022 static int
1023 1023 zfs_secpolicy_create_clone(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
1024 1024 {
1025 1025 char parentname[MAXNAMELEN];
1026 1026 int error;
1027 1027 char *origin;
1028 1028
1029 1029 if ((error = zfs_get_parent(zc->zc_name, parentname,
1030 1030 sizeof (parentname))) != 0)
1031 1031 return (error);
1032 1032
1033 1033 if (nvlist_lookup_string(innvl, "origin", &origin) == 0 &&
1034 1034 (error = zfs_secpolicy_write_perms(origin,
1035 1035 ZFS_DELEG_PERM_CLONE, cr)) != 0)
1036 1036 return (error);
1037 1037
1038 1038 if ((error = zfs_secpolicy_write_perms(parentname,
1039 1039 ZFS_DELEG_PERM_CREATE, cr)) != 0)
1040 1040 return (error);
1041 1041
1042 1042 return (zfs_secpolicy_write_perms(parentname,
1043 1043 ZFS_DELEG_PERM_MOUNT, cr));
1044 1044 }
1045 1045
1046 1046 /*
1047 1047 * Policy for pool operations - create/destroy pools, add vdevs, etc. Requires
1048 1048 * SYS_CONFIG privilege, which is not available in a local zone.
1049 1049 */
1050 1050 /* ARGSUSED */
1051 1051 static int
1052 1052 zfs_secpolicy_config(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
1053 1053 {
1054 1054 if (secpolicy_sys_config(cr, B_FALSE) != 0)
1055 1055 return (SET_ERROR(EPERM));
1056 1056
1057 1057 return (0);
1058 1058 }
1059 1059
1060 1060 /*
1061 1061 * Policy for object to name lookups.
1062 1062 */
1063 1063 /* ARGSUSED */
1064 1064 static int
1065 1065 zfs_secpolicy_diff(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
1066 1066 {
1067 1067 int error;
1068 1068
1069 1069 if ((error = secpolicy_sys_config(cr, B_FALSE)) == 0)
1070 1070 return (0);
1071 1071
1072 1072 error = zfs_secpolicy_write_perms(zc->zc_name, ZFS_DELEG_PERM_DIFF, cr);
1073 1073 return (error);
1074 1074 }
1075 1075
1076 1076 /*
1077 1077 * Policy for fault injection. Requires all privileges.
1078 1078 */
1079 1079 /* ARGSUSED */
1080 1080 static int
1081 1081 zfs_secpolicy_inject(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
1082 1082 {
1083 1083 return (secpolicy_zinject(cr));
1084 1084 }
1085 1085
1086 1086 /* ARGSUSED */
1087 1087 static int
1088 1088 zfs_secpolicy_inherit_prop(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
1089 1089 {
1090 1090 zfs_prop_t prop = zfs_name_to_prop(zc->zc_value);
1091 1091
1092 1092 if (prop == ZPROP_INVAL) {
1093 1093 if (!zfs_prop_user(zc->zc_value))
1094 1094 return (SET_ERROR(EINVAL));
1095 1095 return (zfs_secpolicy_write_perms(zc->zc_name,
1096 1096 ZFS_DELEG_PERM_USERPROP, cr));
1097 1097 } else {
1098 1098 return (zfs_secpolicy_setprop(zc->zc_name, prop,
1099 1099 NULL, cr));
1100 1100 }
1101 1101 }
1102 1102
1103 1103 static int
1104 1104 zfs_secpolicy_userspace_one(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
1105 1105 {
1106 1106 int err = zfs_secpolicy_read(zc, innvl, cr);
1107 1107 if (err)
1108 1108 return (err);
1109 1109
1110 1110 if (zc->zc_objset_type >= ZFS_NUM_USERQUOTA_PROPS)
1111 1111 return (SET_ERROR(EINVAL));
1112 1112
1113 1113 if (zc->zc_value[0] == 0) {
1114 1114 /*
1115 1115 * They are asking about a posix uid/gid. If it's
1116 1116 * themself, allow it.
1117 1117 */
1118 1118 if (zc->zc_objset_type == ZFS_PROP_USERUSED ||
1119 1119 zc->zc_objset_type == ZFS_PROP_USERQUOTA) {
1120 1120 if (zc->zc_guid == crgetuid(cr))
1121 1121 return (0);
1122 1122 } else {
1123 1123 if (groupmember(zc->zc_guid, cr))
1124 1124 return (0);
1125 1125 }
1126 1126 }
1127 1127
1128 1128 return (zfs_secpolicy_write_perms(zc->zc_name,
1129 1129 userquota_perms[zc->zc_objset_type], cr));
1130 1130 }
1131 1131
1132 1132 static int
1133 1133 zfs_secpolicy_userspace_many(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
1134 1134 {
1135 1135 int err = zfs_secpolicy_read(zc, innvl, cr);
1136 1136 if (err)
1137 1137 return (err);
1138 1138
1139 1139 if (zc->zc_objset_type >= ZFS_NUM_USERQUOTA_PROPS)
1140 1140 return (SET_ERROR(EINVAL));
1141 1141
1142 1142 return (zfs_secpolicy_write_perms(zc->zc_name,
1143 1143 userquota_perms[zc->zc_objset_type], cr));
1144 1144 }
1145 1145
1146 1146 /* ARGSUSED */
1147 1147 static int
1148 1148 zfs_secpolicy_userspace_upgrade(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
1149 1149 {
1150 1150 return (zfs_secpolicy_setprop(zc->zc_name, ZFS_PROP_VERSION,
1151 1151 NULL, cr));
1152 1152 }
1153 1153
1154 1154 /* ARGSUSED */
1155 1155 static int
1156 1156 zfs_secpolicy_hold(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
1157 1157 {
1158 1158 nvpair_t *pair;
1159 1159 nvlist_t *holds;
1160 1160 int error;
1161 1161
1162 1162 error = nvlist_lookup_nvlist(innvl, "holds", &holds);
1163 1163 if (error != 0)
1164 1164 return (SET_ERROR(EINVAL));
1165 1165
1166 1166 for (pair = nvlist_next_nvpair(holds, NULL); pair != NULL;
1167 1167 pair = nvlist_next_nvpair(holds, pair)) {
1168 1168 char fsname[MAXNAMELEN];
1169 1169 error = dmu_fsname(nvpair_name(pair), fsname);
1170 1170 if (error != 0)
1171 1171 return (error);
1172 1172 error = zfs_secpolicy_write_perms(fsname,
1173 1173 ZFS_DELEG_PERM_HOLD, cr);
1174 1174 if (error != 0)
1175 1175 return (error);
1176 1176 }
1177 1177 return (0);
1178 1178 }
1179 1179
1180 1180 /* ARGSUSED */
1181 1181 static int
1182 1182 zfs_secpolicy_release(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
1183 1183 {
1184 1184 nvpair_t *pair;
1185 1185 int error;
1186 1186
1187 1187 for (pair = nvlist_next_nvpair(innvl, NULL); pair != NULL;
1188 1188 pair = nvlist_next_nvpair(innvl, pair)) {
1189 1189 char fsname[MAXNAMELEN];
1190 1190 error = dmu_fsname(nvpair_name(pair), fsname);
1191 1191 if (error != 0)
1192 1192 return (error);
1193 1193 error = zfs_secpolicy_write_perms(fsname,
1194 1194 ZFS_DELEG_PERM_RELEASE, cr);
1195 1195 if (error != 0)
1196 1196 return (error);
1197 1197 }
1198 1198 return (0);
1199 1199 }
1200 1200
1201 1201 /*
1202 1202 * Policy for allowing temporary snapshots to be taken or released
1203 1203 */
1204 1204 static int
1205 1205 zfs_secpolicy_tmp_snapshot(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
1206 1206 {
1207 1207 /*
1208 1208 * A temporary snapshot is the same as a snapshot,
1209 1209 * hold, destroy and release all rolled into one.
1210 1210 * Delegated diff alone is sufficient that we allow this.
1211 1211 */
1212 1212 int error;
1213 1213
1214 1214 if ((error = zfs_secpolicy_write_perms(zc->zc_name,
1215 1215 ZFS_DELEG_PERM_DIFF, cr)) == 0)
1216 1216 return (0);
1217 1217
1218 1218 error = zfs_secpolicy_snapshot_perms(zc->zc_name, cr);
1219 1219 if (error == 0)
1220 1220 error = zfs_secpolicy_hold(zc, innvl, cr);
1221 1221 if (error == 0)
1222 1222 error = zfs_secpolicy_release(zc, innvl, cr);
1223 1223 if (error == 0)
1224 1224 error = zfs_secpolicy_destroy(zc, innvl, cr);
1225 1225 return (error);
1226 1226 }
1227 1227
1228 1228 /*
1229 1229 * Returns the nvlist as specified by the user in the zfs_cmd_t.
1230 1230 */
1231 1231 static int
1232 1232 get_nvlist(uint64_t nvl, uint64_t size, int iflag, nvlist_t **nvp)
1233 1233 {
1234 1234 char *packed;
1235 1235 int error;
1236 1236 nvlist_t *list = NULL;
1237 1237
1238 1238 /*
1239 1239 * Read in and unpack the user-supplied nvlist.
1240 1240 */
1241 1241 if (size == 0)
1242 1242 return (SET_ERROR(EINVAL));
1243 1243
1244 1244 packed = kmem_alloc(size, KM_SLEEP);
1245 1245
1246 1246 if ((error = ddi_copyin((void *)(uintptr_t)nvl, packed, size,
1247 1247 iflag)) != 0) {
1248 1248 kmem_free(packed, size);
1249 1249 return (error);
1250 1250 }
1251 1251
1252 1252 if ((error = nvlist_unpack(packed, size, &list, 0)) != 0) {
1253 1253 kmem_free(packed, size);
1254 1254 return (error);
1255 1255 }
1256 1256
1257 1257 kmem_free(packed, size);
1258 1258
1259 1259 *nvp = list;
1260 1260 return (0);
1261 1261 }
1262 1262
1263 1263 /*
1264 1264 * Reduce the size of this nvlist until it can be serialized in 'max' bytes.
1265 1265 * Entries will be removed from the end of the nvlist, and one int32 entry
1266 1266 * named "N_MORE_ERRORS" will be added indicating how many entries were
1267 1267 * removed.
1268 1268 */
1269 1269 static int
1270 1270 nvlist_smush(nvlist_t *errors, size_t max)
1271 1271 {
1272 1272 size_t size;
1273 1273
1274 1274 size = fnvlist_size(errors);
1275 1275
1276 1276 if (size > max) {
1277 1277 nvpair_t *more_errors;
1278 1278 int n = 0;
1279 1279
1280 1280 if (max < 1024)
1281 1281 return (SET_ERROR(ENOMEM));
1282 1282
1283 1283 fnvlist_add_int32(errors, ZPROP_N_MORE_ERRORS, 0);
1284 1284 more_errors = nvlist_prev_nvpair(errors, NULL);
1285 1285
1286 1286 do {
1287 1287 nvpair_t *pair = nvlist_prev_nvpair(errors,
1288 1288 more_errors);
1289 1289 fnvlist_remove_nvpair(errors, pair);
1290 1290 n++;
1291 1291 size = fnvlist_size(errors);
1292 1292 } while (size > max);
1293 1293
1294 1294 fnvlist_remove_nvpair(errors, more_errors);
1295 1295 fnvlist_add_int32(errors, ZPROP_N_MORE_ERRORS, n);
1296 1296 ASSERT3U(fnvlist_size(errors), <=, max);
1297 1297 }
1298 1298
1299 1299 return (0);
1300 1300 }
1301 1301
1302 1302 static int
1303 1303 put_nvlist(zfs_cmd_t *zc, nvlist_t *nvl)
1304 1304 {
1305 1305 char *packed = NULL;
1306 1306 int error = 0;
1307 1307 size_t size;
1308 1308
1309 1309 size = fnvlist_size(nvl);
1310 1310
1311 1311 if (size > zc->zc_nvlist_dst_size) {
1312 1312 error = SET_ERROR(ENOMEM);
1313 1313 } else {
1314 1314 packed = fnvlist_pack(nvl, &size);
1315 1315 if (ddi_copyout(packed, (void *)(uintptr_t)zc->zc_nvlist_dst,
1316 1316 size, zc->zc_iflags) != 0)
1317 1317 error = SET_ERROR(EFAULT);
1318 1318 fnvlist_pack_free(packed, size);
1319 1319 }
1320 1320
1321 1321 zc->zc_nvlist_dst_size = size;
1322 1322 zc->zc_nvlist_dst_filled = B_TRUE;
1323 1323 return (error);
1324 1324 }
1325 1325
1326 1326 static int
1327 1327 getzfsvfs(const char *dsname, zfsvfs_t **zfvp)
1328 1328 {
1329 1329 objset_t *os;
1330 1330 int error;
1331 1331
1332 1332 error = dmu_objset_hold(dsname, FTAG, &os);
1333 1333 if (error != 0)
1334 1334 return (error);
1335 1335 if (dmu_objset_type(os) != DMU_OST_ZFS) {
1336 1336 dmu_objset_rele(os, FTAG);
1337 1337 return (SET_ERROR(EINVAL));
1338 1338 }
1339 1339
1340 1340 mutex_enter(&os->os_user_ptr_lock);
1341 1341 *zfvp = dmu_objset_get_user(os);
1342 1342 if (*zfvp) {
1343 1343 VFS_HOLD((*zfvp)->z_vfs);
1344 1344 } else {
1345 1345 error = SET_ERROR(ESRCH);
1346 1346 }
1347 1347 mutex_exit(&os->os_user_ptr_lock);
1348 1348 dmu_objset_rele(os, FTAG);
1349 1349 return (error);
1350 1350 }
1351 1351
1352 1352 /*
1353 1353 * Find a zfsvfs_t for a mounted filesystem, or create our own, in which
1354 1354 * case its z_vfs will be NULL, and it will be opened as the owner.
1355 1355 * If 'writer' is set, the z_teardown_lock will be held for RW_WRITER,
1356 1356 * which prevents all vnode ops from running.
1357 1357 */
1358 1358 static int
1359 1359 zfsvfs_hold(const char *name, void *tag, zfsvfs_t **zfvp, boolean_t writer)
1360 1360 {
1361 1361 int error = 0;
1362 1362
1363 1363 if (getzfsvfs(name, zfvp) != 0)
1364 1364 error = zfsvfs_create(name, zfvp);
1365 1365 if (error == 0) {
1366 1366 rrw_enter(&(*zfvp)->z_teardown_lock, (writer) ? RW_WRITER :
1367 1367 RW_READER, tag);
1368 1368 if ((*zfvp)->z_unmounted) {
1369 1369 /*
1370 1370 * XXX we could probably try again, since the unmounting
1371 1371 * thread should be just about to disassociate the
1372 1372 * objset from the zfsvfs.
1373 1373 */
1374 1374 rrw_exit(&(*zfvp)->z_teardown_lock, tag);
1375 1375 return (SET_ERROR(EBUSY));
1376 1376 }
1377 1377 }
1378 1378 return (error);
1379 1379 }
1380 1380
1381 1381 static void
1382 1382 zfsvfs_rele(zfsvfs_t *zfsvfs, void *tag)
1383 1383 {
1384 1384 rrw_exit(&zfsvfs->z_teardown_lock, tag);
1385 1385
1386 1386 if (zfsvfs->z_vfs) {
1387 1387 VFS_RELE(zfsvfs->z_vfs);
1388 1388 } else {
1389 1389 dmu_objset_disown(zfsvfs->z_os, zfsvfs);
1390 1390 zfsvfs_free(zfsvfs);
1391 1391 }
1392 1392 }
1393 1393
1394 1394 static int
1395 1395 zfs_ioc_pool_create(zfs_cmd_t *zc)
1396 1396 {
1397 1397 int error;
1398 1398 nvlist_t *config, *props = NULL;
1399 1399 nvlist_t *rootprops = NULL;
1400 1400 nvlist_t *zplprops = NULL;
1401 1401
1402 1402 if (error = get_nvlist(zc->zc_nvlist_conf, zc->zc_nvlist_conf_size,
1403 1403 zc->zc_iflags, &config))
1404 1404 return (error);
1405 1405
1406 1406 if (zc->zc_nvlist_src_size != 0 && (error =
1407 1407 get_nvlist(zc->zc_nvlist_src, zc->zc_nvlist_src_size,
1408 1408 zc->zc_iflags, &props))) {
1409 1409 nvlist_free(config);
1410 1410 return (error);
1411 1411 }
1412 1412
1413 1413 if (props) {
1414 1414 nvlist_t *nvl = NULL;
1415 1415 uint64_t version = SPA_VERSION;
1416 1416
1417 1417 (void) nvlist_lookup_uint64(props,
1418 1418 zpool_prop_to_name(ZPOOL_PROP_VERSION), &version);
1419 1419 if (!SPA_VERSION_IS_SUPPORTED(version)) {
1420 1420 error = SET_ERROR(EINVAL);
1421 1421 goto pool_props_bad;
1422 1422 }
1423 1423 (void) nvlist_lookup_nvlist(props, ZPOOL_ROOTFS_PROPS, &nvl);
1424 1424 if (nvl) {
1425 1425 error = nvlist_dup(nvl, &rootprops, KM_SLEEP);
1426 1426 if (error != 0) {
1427 1427 nvlist_free(config);
1428 1428 nvlist_free(props);
1429 1429 return (error);
1430 1430 }
1431 1431 (void) nvlist_remove_all(props, ZPOOL_ROOTFS_PROPS);
1432 1432 }
1433 1433 VERIFY(nvlist_alloc(&zplprops, NV_UNIQUE_NAME, KM_SLEEP) == 0);
1434 1434 error = zfs_fill_zplprops_root(version, rootprops,
1435 1435 zplprops, NULL);
1436 1436 if (error != 0)
1437 1437 goto pool_props_bad;
1438 1438 }
1439 1439
1440 1440 error = spa_create(zc->zc_name, config, props, zplprops);
1441 1441
1442 1442 /*
1443 1443 * Set the remaining root properties
1444 1444 */
1445 1445 if (!error && (error = zfs_set_prop_nvlist(zc->zc_name,
1446 1446 ZPROP_SRC_LOCAL, rootprops, NULL)) != 0)
1447 1447 (void) spa_destroy(zc->zc_name);
1448 1448
1449 1449 pool_props_bad:
1450 1450 nvlist_free(rootprops);
1451 1451 nvlist_free(zplprops);
1452 1452 nvlist_free(config);
1453 1453 nvlist_free(props);
1454 1454
1455 1455 return (error);
1456 1456 }
1457 1457
1458 1458 static int
1459 1459 zfs_ioc_pool_destroy(zfs_cmd_t *zc)
1460 1460 {
1461 1461 int error;
1462 1462 zfs_log_history(zc);
1463 1463 error = spa_destroy(zc->zc_name);
1464 1464 if (error == 0)
1465 1465 zvol_remove_minors(zc->zc_name);
1466 1466 return (error);
1467 1467 }
1468 1468
1469 1469 static int
1470 1470 zfs_ioc_pool_import(zfs_cmd_t *zc)
1471 1471 {
1472 1472 nvlist_t *config, *props = NULL;
1473 1473 uint64_t guid;
1474 1474 int error;
1475 1475
1476 1476 if ((error = get_nvlist(zc->zc_nvlist_conf, zc->zc_nvlist_conf_size,
1477 1477 zc->zc_iflags, &config)) != 0)
1478 1478 return (error);
1479 1479
1480 1480 if (zc->zc_nvlist_src_size != 0 && (error =
1481 1481 get_nvlist(zc->zc_nvlist_src, zc->zc_nvlist_src_size,
1482 1482 zc->zc_iflags, &props))) {
1483 1483 nvlist_free(config);
1484 1484 return (error);
1485 1485 }
1486 1486
1487 1487 if (nvlist_lookup_uint64(config, ZPOOL_CONFIG_POOL_GUID, &guid) != 0 ||
1488 1488 guid != zc->zc_guid)
1489 1489 error = SET_ERROR(EINVAL);
1490 1490 else
1491 1491 error = spa_import(zc->zc_name, config, props, zc->zc_cookie);
1492 1492
1493 1493 if (zc->zc_nvlist_dst != 0) {
1494 1494 int err;
1495 1495
1496 1496 if ((err = put_nvlist(zc, config)) != 0)
1497 1497 error = err;
1498 1498 }
1499 1499
1500 1500 nvlist_free(config);
1501 1501
1502 1502 if (props)
1503 1503 nvlist_free(props);
1504 1504
1505 1505 return (error);
1506 1506 }
1507 1507
1508 1508 static int
1509 1509 zfs_ioc_pool_export(zfs_cmd_t *zc)
1510 1510 {
1511 1511 int error;
1512 1512 boolean_t force = (boolean_t)zc->zc_cookie;
1513 1513 boolean_t hardforce = (boolean_t)zc->zc_guid;
1514 1514
1515 1515 zfs_log_history(zc);
1516 1516 error = spa_export(zc->zc_name, NULL, force, hardforce);
1517 1517 if (error == 0)
1518 1518 zvol_remove_minors(zc->zc_name);
1519 1519 return (error);
1520 1520 }
1521 1521
1522 1522 static int
1523 1523 zfs_ioc_pool_configs(zfs_cmd_t *zc)
1524 1524 {
1525 1525 nvlist_t *configs;
1526 1526 int error;
1527 1527
1528 1528 if ((configs = spa_all_configs(&zc->zc_cookie)) == NULL)
1529 1529 return (SET_ERROR(EEXIST));
1530 1530
1531 1531 error = put_nvlist(zc, configs);
1532 1532
1533 1533 nvlist_free(configs);
1534 1534
1535 1535 return (error);
1536 1536 }
1537 1537
1538 1538 /*
1539 1539 * inputs:
1540 1540 * zc_name name of the pool
1541 1541 *
1542 1542 * outputs:
1543 1543 * zc_cookie real errno
1544 1544 * zc_nvlist_dst config nvlist
1545 1545 * zc_nvlist_dst_size size of config nvlist
1546 1546 */
1547 1547 static int
1548 1548 zfs_ioc_pool_stats(zfs_cmd_t *zc)
1549 1549 {
1550 1550 nvlist_t *config;
1551 1551 int error;
1552 1552 int ret = 0;
1553 1553
1554 1554 error = spa_get_stats(zc->zc_name, &config, zc->zc_value,
1555 1555 sizeof (zc->zc_value));
1556 1556
1557 1557 if (config != NULL) {
1558 1558 ret = put_nvlist(zc, config);
1559 1559 nvlist_free(config);
1560 1560
1561 1561 /*
1562 1562 * The config may be present even if 'error' is non-zero.
1563 1563 * In this case we return success, and preserve the real errno
1564 1564 * in 'zc_cookie'.
1565 1565 */
1566 1566 zc->zc_cookie = error;
1567 1567 } else {
1568 1568 ret = error;
1569 1569 }
1570 1570
1571 1571 return (ret);
1572 1572 }
1573 1573
1574 1574 /*
1575 1575 * Try to import the given pool, returning pool stats as appropriate so that
1576 1576 * user land knows which devices are available and overall pool health.
1577 1577 */
1578 1578 static int
1579 1579 zfs_ioc_pool_tryimport(zfs_cmd_t *zc)
1580 1580 {
1581 1581 nvlist_t *tryconfig, *config;
1582 1582 int error;
1583 1583
1584 1584 if ((error = get_nvlist(zc->zc_nvlist_conf, zc->zc_nvlist_conf_size,
1585 1585 zc->zc_iflags, &tryconfig)) != 0)
1586 1586 return (error);
1587 1587
1588 1588 config = spa_tryimport(tryconfig);
1589 1589
1590 1590 nvlist_free(tryconfig);
1591 1591
1592 1592 if (config == NULL)
1593 1593 return (SET_ERROR(EINVAL));
1594 1594
1595 1595 error = put_nvlist(zc, config);
1596 1596 nvlist_free(config);
1597 1597
1598 1598 return (error);
1599 1599 }
1600 1600
1601 1601 /*
1602 1602 * inputs:
1603 1603 * zc_name name of the pool
1604 1604 * zc_cookie scan func (pool_scan_func_t)
1605 1605 */
1606 1606 static int
1607 1607 zfs_ioc_pool_scan(zfs_cmd_t *zc)
1608 1608 {
1609 1609 spa_t *spa;
1610 1610 int error;
1611 1611
1612 1612 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0)
1613 1613 return (error);
1614 1614
1615 1615 if (zc->zc_cookie == POOL_SCAN_NONE)
1616 1616 error = spa_scan_stop(spa);
1617 1617 else
1618 1618 error = spa_scan(spa, zc->zc_cookie);
1619 1619
1620 1620 spa_close(spa, FTAG);
1621 1621
1622 1622 return (error);
1623 1623 }
1624 1624
1625 1625 static int
1626 1626 zfs_ioc_pool_freeze(zfs_cmd_t *zc)
1627 1627 {
1628 1628 spa_t *spa;
1629 1629 int error;
1630 1630
1631 1631 error = spa_open(zc->zc_name, &spa, FTAG);
1632 1632 if (error == 0) {
1633 1633 spa_freeze(spa);
1634 1634 spa_close(spa, FTAG);
1635 1635 }
1636 1636 return (error);
1637 1637 }
1638 1638
1639 1639 static int
1640 1640 zfs_ioc_pool_upgrade(zfs_cmd_t *zc)
1641 1641 {
1642 1642 spa_t *spa;
1643 1643 int error;
1644 1644
1645 1645 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0)
1646 1646 return (error);
1647 1647
1648 1648 if (zc->zc_cookie < spa_version(spa) ||
1649 1649 !SPA_VERSION_IS_SUPPORTED(zc->zc_cookie)) {
1650 1650 spa_close(spa, FTAG);
1651 1651 return (SET_ERROR(EINVAL));
1652 1652 }
1653 1653
1654 1654 spa_upgrade(spa, zc->zc_cookie);
1655 1655 spa_close(spa, FTAG);
1656 1656
1657 1657 return (error);
1658 1658 }
1659 1659
1660 1660 static int
1661 1661 zfs_ioc_pool_get_history(zfs_cmd_t *zc)
1662 1662 {
1663 1663 spa_t *spa;
1664 1664 char *hist_buf;
1665 1665 uint64_t size;
1666 1666 int error;
1667 1667
1668 1668 if ((size = zc->zc_history_len) == 0)
1669 1669 return (SET_ERROR(EINVAL));
1670 1670
1671 1671 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0)
1672 1672 return (error);
1673 1673
1674 1674 if (spa_version(spa) < SPA_VERSION_ZPOOL_HISTORY) {
1675 1675 spa_close(spa, FTAG);
1676 1676 return (SET_ERROR(ENOTSUP));
1677 1677 }
1678 1678
1679 1679 hist_buf = kmem_alloc(size, KM_SLEEP);
1680 1680 if ((error = spa_history_get(spa, &zc->zc_history_offset,
1681 1681 &zc->zc_history_len, hist_buf)) == 0) {
1682 1682 error = ddi_copyout(hist_buf,
1683 1683 (void *)(uintptr_t)zc->zc_history,
1684 1684 zc->zc_history_len, zc->zc_iflags);
1685 1685 }
1686 1686
1687 1687 spa_close(spa, FTAG);
1688 1688 kmem_free(hist_buf, size);
1689 1689 return (error);
1690 1690 }
1691 1691
1692 1692 static int
1693 1693 zfs_ioc_pool_reguid(zfs_cmd_t *zc)
1694 1694 {
1695 1695 spa_t *spa;
1696 1696 int error;
1697 1697
1698 1698 error = spa_open(zc->zc_name, &spa, FTAG);
1699 1699 if (error == 0) {
1700 1700 error = spa_change_guid(spa);
1701 1701 spa_close(spa, FTAG);
1702 1702 }
1703 1703 return (error);
1704 1704 }
1705 1705
1706 1706 static int
1707 1707 zfs_ioc_dsobj_to_dsname(zfs_cmd_t *zc)
1708 1708 {
1709 1709 return (dsl_dsobj_to_dsname(zc->zc_name, zc->zc_obj, zc->zc_value));
1710 1710 }
1711 1711
1712 1712 /*
1713 1713 * inputs:
1714 1714 * zc_name name of filesystem
1715 1715 * zc_obj object to find
1716 1716 *
1717 1717 * outputs:
1718 1718 * zc_value name of object
1719 1719 */
1720 1720 static int
1721 1721 zfs_ioc_obj_to_path(zfs_cmd_t *zc)
1722 1722 {
1723 1723 objset_t *os;
1724 1724 int error;
1725 1725
1726 1726 /* XXX reading from objset not owned */
1727 1727 if ((error = dmu_objset_hold(zc->zc_name, FTAG, &os)) != 0)
1728 1728 return (error);
1729 1729 if (dmu_objset_type(os) != DMU_OST_ZFS) {
1730 1730 dmu_objset_rele(os, FTAG);
1731 1731 return (SET_ERROR(EINVAL));
1732 1732 }
1733 1733 error = zfs_obj_to_path(os, zc->zc_obj, zc->zc_value,
1734 1734 sizeof (zc->zc_value));
1735 1735 dmu_objset_rele(os, FTAG);
1736 1736
1737 1737 return (error);
1738 1738 }
1739 1739
1740 1740 /*
1741 1741 * inputs:
1742 1742 * zc_name name of filesystem
1743 1743 * zc_obj object to find
1744 1744 *
1745 1745 * outputs:
1746 1746 * zc_stat stats on object
1747 1747 * zc_value path to object
1748 1748 */
1749 1749 static int
1750 1750 zfs_ioc_obj_to_stats(zfs_cmd_t *zc)
1751 1751 {
1752 1752 objset_t *os;
1753 1753 int error;
1754 1754
1755 1755 /* XXX reading from objset not owned */
1756 1756 if ((error = dmu_objset_hold(zc->zc_name, FTAG, &os)) != 0)
1757 1757 return (error);
1758 1758 if (dmu_objset_type(os) != DMU_OST_ZFS) {
1759 1759 dmu_objset_rele(os, FTAG);
1760 1760 return (SET_ERROR(EINVAL));
1761 1761 }
1762 1762 error = zfs_obj_to_stats(os, zc->zc_obj, &zc->zc_stat, zc->zc_value,
1763 1763 sizeof (zc->zc_value));
1764 1764 dmu_objset_rele(os, FTAG);
1765 1765
1766 1766 return (error);
1767 1767 }
1768 1768
1769 1769 static int
1770 1770 zfs_ioc_vdev_add(zfs_cmd_t *zc)
1771 1771 {
1772 1772 spa_t *spa;
1773 1773 int error;
1774 1774 nvlist_t *config, **l2cache, **spares;
1775 1775 uint_t nl2cache = 0, nspares = 0;
1776 1776
1777 1777 error = spa_open(zc->zc_name, &spa, FTAG);
1778 1778 if (error != 0)
1779 1779 return (error);
1780 1780
1781 1781 error = get_nvlist(zc->zc_nvlist_conf, zc->zc_nvlist_conf_size,
1782 1782 zc->zc_iflags, &config);
1783 1783 (void) nvlist_lookup_nvlist_array(config, ZPOOL_CONFIG_L2CACHE,
1784 1784 &l2cache, &nl2cache);
1785 1785
1786 1786 (void) nvlist_lookup_nvlist_array(config, ZPOOL_CONFIG_SPARES,
1787 1787 &spares, &nspares);
1788 1788
1789 1789 /*
1790 1790 * A root pool with concatenated devices is not supported.
1791 1791 * Thus, can not add a device to a root pool.
1792 1792 *
1793 1793 * Intent log device can not be added to a rootpool because
1794 1794 * during mountroot, zil is replayed, a seperated log device
1795 1795 * can not be accessed during the mountroot time.
1796 1796 *
1797 1797 * l2cache and spare devices are ok to be added to a rootpool.
1798 1798 */
1799 1799 if (spa_bootfs(spa) != 0 && nl2cache == 0 && nspares == 0) {
1800 1800 nvlist_free(config);
1801 1801 spa_close(spa, FTAG);
1802 1802 return (SET_ERROR(EDOM));
1803 1803 }
1804 1804
1805 1805 if (error == 0) {
1806 1806 error = spa_vdev_add(spa, config);
1807 1807 nvlist_free(config);
1808 1808 }
1809 1809 spa_close(spa, FTAG);
1810 1810 return (error);
1811 1811 }
1812 1812
1813 1813 /*
1814 1814 * inputs:
1815 1815 * zc_name name of the pool
1816 1816 * zc_nvlist_conf nvlist of devices to remove
1817 1817 * zc_cookie to stop the remove?
1818 1818 */
1819 1819 static int
1820 1820 zfs_ioc_vdev_remove(zfs_cmd_t *zc)
1821 1821 {
1822 1822 spa_t *spa;
1823 1823 int error;
1824 1824
1825 1825 error = spa_open(zc->zc_name, &spa, FTAG);
1826 1826 if (error != 0)
1827 1827 return (error);
1828 1828 error = spa_vdev_remove(spa, zc->zc_guid, B_FALSE);
1829 1829 spa_close(spa, FTAG);
1830 1830 return (error);
1831 1831 }
1832 1832
1833 1833 static int
1834 1834 zfs_ioc_vdev_set_state(zfs_cmd_t *zc)
1835 1835 {
1836 1836 spa_t *spa;
1837 1837 int error;
1838 1838 vdev_state_t newstate = VDEV_STATE_UNKNOWN;
1839 1839
1840 1840 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0)
1841 1841 return (error);
1842 1842 switch (zc->zc_cookie) {
1843 1843 case VDEV_STATE_ONLINE:
1844 1844 error = vdev_online(spa, zc->zc_guid, zc->zc_obj, &newstate);
1845 1845 break;
1846 1846
1847 1847 case VDEV_STATE_OFFLINE:
1848 1848 error = vdev_offline(spa, zc->zc_guid, zc->zc_obj);
1849 1849 break;
1850 1850
1851 1851 case VDEV_STATE_FAULTED:
1852 1852 if (zc->zc_obj != VDEV_AUX_ERR_EXCEEDED &&
1853 1853 zc->zc_obj != VDEV_AUX_EXTERNAL)
1854 1854 zc->zc_obj = VDEV_AUX_ERR_EXCEEDED;
1855 1855
1856 1856 error = vdev_fault(spa, zc->zc_guid, zc->zc_obj);
1857 1857 break;
1858 1858
1859 1859 case VDEV_STATE_DEGRADED:
1860 1860 if (zc->zc_obj != VDEV_AUX_ERR_EXCEEDED &&
1861 1861 zc->zc_obj != VDEV_AUX_EXTERNAL)
1862 1862 zc->zc_obj = VDEV_AUX_ERR_EXCEEDED;
1863 1863
1864 1864 error = vdev_degrade(spa, zc->zc_guid, zc->zc_obj);
1865 1865 break;
1866 1866
1867 1867 default:
1868 1868 error = SET_ERROR(EINVAL);
1869 1869 }
1870 1870 zc->zc_cookie = newstate;
1871 1871 spa_close(spa, FTAG);
1872 1872 return (error);
1873 1873 }
1874 1874
1875 1875 static int
1876 1876 zfs_ioc_vdev_attach(zfs_cmd_t *zc)
1877 1877 {
1878 1878 spa_t *spa;
1879 1879 int replacing = zc->zc_cookie;
1880 1880 nvlist_t *config;
1881 1881 int error;
1882 1882
1883 1883 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0)
1884 1884 return (error);
1885 1885
1886 1886 if ((error = get_nvlist(zc->zc_nvlist_conf, zc->zc_nvlist_conf_size,
1887 1887 zc->zc_iflags, &config)) == 0) {
1888 1888 error = spa_vdev_attach(spa, zc->zc_guid, config, replacing);
1889 1889 nvlist_free(config);
1890 1890 }
1891 1891
1892 1892 spa_close(spa, FTAG);
1893 1893 return (error);
1894 1894 }
1895 1895
1896 1896 static int
1897 1897 zfs_ioc_vdev_detach(zfs_cmd_t *zc)
1898 1898 {
1899 1899 spa_t *spa;
1900 1900 int error;
1901 1901
1902 1902 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0)
1903 1903 return (error);
1904 1904
1905 1905 error = spa_vdev_detach(spa, zc->zc_guid, 0, B_FALSE);
1906 1906
1907 1907 spa_close(spa, FTAG);
1908 1908 return (error);
1909 1909 }
1910 1910
1911 1911 static int
1912 1912 zfs_ioc_vdev_split(zfs_cmd_t *zc)
1913 1913 {
1914 1914 spa_t *spa;
1915 1915 nvlist_t *config, *props = NULL;
1916 1916 int error;
1917 1917 boolean_t exp = !!(zc->zc_cookie & ZPOOL_EXPORT_AFTER_SPLIT);
1918 1918
1919 1919 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0)
1920 1920 return (error);
1921 1921
1922 1922 if (error = get_nvlist(zc->zc_nvlist_conf, zc->zc_nvlist_conf_size,
1923 1923 zc->zc_iflags, &config)) {
1924 1924 spa_close(spa, FTAG);
1925 1925 return (error);
1926 1926 }
1927 1927
1928 1928 if (zc->zc_nvlist_src_size != 0 && (error =
1929 1929 get_nvlist(zc->zc_nvlist_src, zc->zc_nvlist_src_size,
1930 1930 zc->zc_iflags, &props))) {
1931 1931 spa_close(spa, FTAG);
1932 1932 nvlist_free(config);
1933 1933 return (error);
1934 1934 }
1935 1935
1936 1936 error = spa_vdev_split_mirror(spa, zc->zc_string, config, props, exp);
1937 1937
1938 1938 spa_close(spa, FTAG);
1939 1939
1940 1940 nvlist_free(config);
1941 1941 nvlist_free(props);
1942 1942
1943 1943 return (error);
1944 1944 }
1945 1945
1946 1946 static int
1947 1947 zfs_ioc_vdev_setpath(zfs_cmd_t *zc)
1948 1948 {
1949 1949 spa_t *spa;
1950 1950 char *path = zc->zc_value;
1951 1951 uint64_t guid = zc->zc_guid;
1952 1952 int error;
1953 1953
1954 1954 error = spa_open(zc->zc_name, &spa, FTAG);
1955 1955 if (error != 0)
1956 1956 return (error);
1957 1957
1958 1958 error = spa_vdev_setpath(spa, guid, path);
1959 1959 spa_close(spa, FTAG);
1960 1960 return (error);
1961 1961 }
1962 1962
1963 1963 static int
1964 1964 zfs_ioc_vdev_setfru(zfs_cmd_t *zc)
1965 1965 {
1966 1966 spa_t *spa;
1967 1967 char *fru = zc->zc_value;
1968 1968 uint64_t guid = zc->zc_guid;
1969 1969 int error;
1970 1970
1971 1971 error = spa_open(zc->zc_name, &spa, FTAG);
1972 1972 if (error != 0)
1973 1973 return (error);
1974 1974
1975 1975 error = spa_vdev_setfru(spa, guid, fru);
1976 1976 spa_close(spa, FTAG);
1977 1977 return (error);
1978 1978 }
1979 1979
1980 1980 static int
1981 1981 zfs_ioc_objset_stats_impl(zfs_cmd_t *zc, objset_t *os)
1982 1982 {
1983 1983 int error = 0;
1984 1984 nvlist_t *nv;
1985 1985
1986 1986 dmu_objset_fast_stat(os, &zc->zc_objset_stats);
1987 1987
1988 1988 if (zc->zc_nvlist_dst != 0 &&
1989 1989 (error = dsl_prop_get_all(os, &nv)) == 0) {
1990 1990 dmu_objset_stats(os, nv);
1991 1991 /*
1992 1992 * NB: zvol_get_stats() will read the objset contents,
1993 1993 * which we aren't supposed to do with a
1994 1994 * DS_MODE_USER hold, because it could be
1995 1995 * inconsistent. So this is a bit of a workaround...
1996 1996 * XXX reading with out owning
1997 1997 */
1998 1998 if (!zc->zc_objset_stats.dds_inconsistent &&
1999 1999 dmu_objset_type(os) == DMU_OST_ZVOL) {
2000 2000 error = zvol_get_stats(os, nv);
2001 2001 if (error == EIO)
2002 2002 return (error);
2003 2003 /*
2004 2004 * If the zvol's parent dataset was being destroyed
2005 2005 * when we called zvol_get_stats, then it's possible
2006 2006 * that the ZAP still existed but its blocks had
2007 2007 * been already been freed when we tried to read it.
2008 2008 * It would then appear that the ZAP had no entries.
2009 2009 */
2010 2010 if (error == ENOENT)
2011 2011 return (error);
2012 2012 VERIFY0(error);
2013 2013 }
2014 2014 error = put_nvlist(zc, nv);
2015 2015 nvlist_free(nv);
2016 2016 }
2017 2017
2018 2018 return (error);
2019 2019 }
2020 2020
2021 2021 /*
2022 2022 * inputs:
2023 2023 * zc_name name of filesystem
2024 2024 * zc_nvlist_dst_size size of buffer for property nvlist
2025 2025 *
2026 2026 * outputs:
2027 2027 * zc_objset_stats stats
2028 2028 * zc_nvlist_dst property nvlist
2029 2029 * zc_nvlist_dst_size size of property nvlist
2030 2030 */
2031 2031 static int
2032 2032 zfs_ioc_objset_stats(zfs_cmd_t *zc)
2033 2033 {
2034 2034 objset_t *os;
2035 2035 int error;
2036 2036
2037 2037 error = dmu_objset_hold(zc->zc_name, FTAG, &os);
2038 2038 if (error == 0) {
2039 2039 error = zfs_ioc_objset_stats_impl(zc, os);
2040 2040 dmu_objset_rele(os, FTAG);
2041 2041 }
2042 2042
2043 2043 return (error);
2044 2044 }
2045 2045
2046 2046 /*
2047 2047 * inputs:
2048 2048 * zc_name name of filesystem
2049 2049 * zc_nvlist_dst_size size of buffer for property nvlist
2050 2050 *
2051 2051 * outputs:
2052 2052 * zc_nvlist_dst received property nvlist
2053 2053 * zc_nvlist_dst_size size of received property nvlist
2054 2054 *
2055 2055 * Gets received properties (distinct from local properties on or after
2056 2056 * SPA_VERSION_RECVD_PROPS) for callers who want to differentiate received from
2057 2057 * local property values.
2058 2058 */
2059 2059 static int
2060 2060 zfs_ioc_objset_recvd_props(zfs_cmd_t *zc)
2061 2061 {
2062 2062 int error = 0;
2063 2063 nvlist_t *nv;
2064 2064
2065 2065 /*
2066 2066 * Without this check, we would return local property values if the
2067 2067 * caller has not already received properties on or after
2068 2068 * SPA_VERSION_RECVD_PROPS.
2069 2069 */
2070 2070 if (!dsl_prop_get_hasrecvd(zc->zc_name))
2071 2071 return (SET_ERROR(ENOTSUP));
2072 2072
2073 2073 if (zc->zc_nvlist_dst != 0 &&
2074 2074 (error = dsl_prop_get_received(zc->zc_name, &nv)) == 0) {
2075 2075 error = put_nvlist(zc, nv);
2076 2076 nvlist_free(nv);
2077 2077 }
2078 2078
2079 2079 return (error);
2080 2080 }
2081 2081
2082 2082 static int
2083 2083 nvl_add_zplprop(objset_t *os, nvlist_t *props, zfs_prop_t prop)
2084 2084 {
2085 2085 uint64_t value;
2086 2086 int error;
2087 2087
2088 2088 /*
2089 2089 * zfs_get_zplprop() will either find a value or give us
2090 2090 * the default value (if there is one).
2091 2091 */
2092 2092 if ((error = zfs_get_zplprop(os, prop, &value)) != 0)
2093 2093 return (error);
2094 2094 VERIFY(nvlist_add_uint64(props, zfs_prop_to_name(prop), value) == 0);
2095 2095 return (0);
2096 2096 }
2097 2097
2098 2098 /*
2099 2099 * inputs:
2100 2100 * zc_name name of filesystem
2101 2101 * zc_nvlist_dst_size size of buffer for zpl property nvlist
2102 2102 *
2103 2103 * outputs:
2104 2104 * zc_nvlist_dst zpl property nvlist
2105 2105 * zc_nvlist_dst_size size of zpl property nvlist
2106 2106 */
2107 2107 static int
2108 2108 zfs_ioc_objset_zplprops(zfs_cmd_t *zc)
2109 2109 {
2110 2110 objset_t *os;
2111 2111 int err;
2112 2112
2113 2113 /* XXX reading without owning */
2114 2114 if (err = dmu_objset_hold(zc->zc_name, FTAG, &os))
2115 2115 return (err);
2116 2116
2117 2117 dmu_objset_fast_stat(os, &zc->zc_objset_stats);
2118 2118
2119 2119 /*
2120 2120 * NB: nvl_add_zplprop() will read the objset contents,
2121 2121 * which we aren't supposed to do with a DS_MODE_USER
2122 2122 * hold, because it could be inconsistent.
2123 2123 */
2124 2124 if (zc->zc_nvlist_dst != NULL &&
2125 2125 !zc->zc_objset_stats.dds_inconsistent &&
2126 2126 dmu_objset_type(os) == DMU_OST_ZFS) {
2127 2127 nvlist_t *nv;
2128 2128
2129 2129 VERIFY(nvlist_alloc(&nv, NV_UNIQUE_NAME, KM_SLEEP) == 0);
2130 2130 if ((err = nvl_add_zplprop(os, nv, ZFS_PROP_VERSION)) == 0 &&
2131 2131 (err = nvl_add_zplprop(os, nv, ZFS_PROP_NORMALIZE)) == 0 &&
2132 2132 (err = nvl_add_zplprop(os, nv, ZFS_PROP_UTF8ONLY)) == 0 &&
2133 2133 (err = nvl_add_zplprop(os, nv, ZFS_PROP_CASE)) == 0)
2134 2134 err = put_nvlist(zc, nv);
2135 2135 nvlist_free(nv);
2136 2136 } else {
2137 2137 err = SET_ERROR(ENOENT);
2138 2138 }
2139 2139 dmu_objset_rele(os, FTAG);
2140 2140 return (err);
2141 2141 }
2142 2142
2143 2143 static boolean_t
2144 2144 dataset_name_hidden(const char *name)
2145 2145 {
2146 2146 /*
2147 2147 * Skip over datasets that are not visible in this zone,
2148 2148 * internal datasets (which have a $ in their name), and
2149 2149 * temporary datasets (which have a % in their name).
2150 2150 */
2151 2151 if (strchr(name, '$') != NULL)
2152 2152 return (B_TRUE);
2153 2153 if (strchr(name, '%') != NULL)
2154 2154 return (B_TRUE);
2155 2155 if (!INGLOBALZONE(curproc) && !zone_dataset_visible(name, NULL))
2156 2156 return (B_TRUE);
2157 2157 return (B_FALSE);
2158 2158 }
2159 2159
2160 2160 /*
2161 2161 * inputs:
2162 2162 * zc_name name of filesystem
2163 2163 * zc_cookie zap cursor
2164 2164 * zc_nvlist_dst_size size of buffer for property nvlist
2165 2165 *
2166 2166 * outputs:
2167 2167 * zc_name name of next filesystem
2168 2168 * zc_cookie zap cursor
2169 2169 * zc_objset_stats stats
2170 2170 * zc_nvlist_dst property nvlist
2171 2171 * zc_nvlist_dst_size size of property nvlist
2172 2172 */
2173 2173 static int
2174 2174 zfs_ioc_dataset_list_next(zfs_cmd_t *zc)
2175 2175 {
2176 2176 objset_t *os;
2177 2177 int error;
2178 2178 char *p;
2179 2179 size_t orig_len = strlen(zc->zc_name);
2180 2180
2181 2181 top:
2182 2182 if (error = dmu_objset_hold(zc->zc_name, FTAG, &os)) {
2183 2183 if (error == ENOENT)
2184 2184 error = SET_ERROR(ESRCH);
2185 2185 return (error);
2186 2186 }
2187 2187
2188 2188 p = strrchr(zc->zc_name, '/');
2189 2189 if (p == NULL || p[1] != '\0')
2190 2190 (void) strlcat(zc->zc_name, "/", sizeof (zc->zc_name));
2191 2191 p = zc->zc_name + strlen(zc->zc_name);
2192 2192
2193 2193 do {
2194 2194 error = dmu_dir_list_next(os,
2195 2195 sizeof (zc->zc_name) - (p - zc->zc_name), p,
2196 2196 NULL, &zc->zc_cookie);
2197 2197 if (error == ENOENT)
2198 2198 error = SET_ERROR(ESRCH);
2199 2199 } while (error == 0 && dataset_name_hidden(zc->zc_name));
2200 2200 dmu_objset_rele(os, FTAG);
2201 2201
2202 2202 /*
2203 2203 * If it's an internal dataset (ie. with a '$' in its name),
2204 2204 * don't try to get stats for it, otherwise we'll return ENOENT.
2205 2205 */
2206 2206 if (error == 0 && strchr(zc->zc_name, '$') == NULL) {
2207 2207 error = zfs_ioc_objset_stats(zc); /* fill in the stats */
2208 2208 if (error == ENOENT) {
2209 2209 /* We lost a race with destroy, get the next one. */
2210 2210 zc->zc_name[orig_len] = '\0';
2211 2211 goto top;
2212 2212 }
2213 2213 }
2214 2214 return (error);
2215 2215 }
2216 2216
2217 2217 /*
2218 2218 * inputs:
2219 2219 * zc_name name of filesystem
2220 2220 * zc_cookie zap cursor
2221 2221 * zc_nvlist_dst_size size of buffer for property nvlist
2222 2222 *
2223 2223 * outputs:
2224 2224 * zc_name name of next snapshot
2225 2225 * zc_objset_stats stats
2226 2226 * zc_nvlist_dst property nvlist
2227 2227 * zc_nvlist_dst_size size of property nvlist
2228 2228 */
2229 2229 static int
2230 2230 zfs_ioc_snapshot_list_next(zfs_cmd_t *zc)
2231 2231 {
2232 2232 objset_t *os;
2233 2233 int error;
2234 2234
2235 2235 error = dmu_objset_hold(zc->zc_name, FTAG, &os);
2236 2236 if (error != 0) {
2237 2237 return (error == ENOENT ? ESRCH : error);
2238 2238 }
2239 2239
2240 2240 /*
2241 2241 * A dataset name of maximum length cannot have any snapshots,
2242 2242 * so exit immediately.
2243 2243 */
2244 2244 if (strlcat(zc->zc_name, "@", sizeof (zc->zc_name)) >= MAXNAMELEN) {
2245 2245 dmu_objset_rele(os, FTAG);
2246 2246 return (SET_ERROR(ESRCH));
2247 2247 }
2248 2248
2249 2249 error = dmu_snapshot_list_next(os,
2250 2250 sizeof (zc->zc_name) - strlen(zc->zc_name),
2251 2251 zc->zc_name + strlen(zc->zc_name), &zc->zc_obj, &zc->zc_cookie,
2252 2252 NULL);
2253 2253
2254 2254 if (error == 0) {
2255 2255 dsl_dataset_t *ds;
2256 2256 dsl_pool_t *dp = os->os_dsl_dataset->ds_dir->dd_pool;
2257 2257
2258 2258 error = dsl_dataset_hold_obj(dp, zc->zc_obj, FTAG, &ds);
2259 2259 if (error == 0) {
2260 2260 objset_t *ossnap;
2261 2261
2262 2262 error = dmu_objset_from_ds(ds, &ossnap);
2263 2263 if (error == 0)
2264 2264 error = zfs_ioc_objset_stats_impl(zc, ossnap);
2265 2265 dsl_dataset_rele(ds, FTAG);
2266 2266 }
2267 2267 } else if (error == ENOENT) {
2268 2268 error = SET_ERROR(ESRCH);
2269 2269 }
2270 2270
2271 2271 dmu_objset_rele(os, FTAG);
2272 2272 /* if we failed, undo the @ that we tacked on to zc_name */
2273 2273 if (error != 0)
2274 2274 *strchr(zc->zc_name, '@') = '\0';
2275 2275 return (error);
2276 2276 }
2277 2277
2278 2278 static int
2279 2279 zfs_prop_set_userquota(const char *dsname, nvpair_t *pair)
2280 2280 {
2281 2281 const char *propname = nvpair_name(pair);
2282 2282 uint64_t *valary;
2283 2283 unsigned int vallen;
2284 2284 const char *domain;
2285 2285 char *dash;
2286 2286 zfs_userquota_prop_t type;
2287 2287 uint64_t rid;
2288 2288 uint64_t quota;
2289 2289 zfsvfs_t *zfsvfs;
2290 2290 int err;
2291 2291
2292 2292 if (nvpair_type(pair) == DATA_TYPE_NVLIST) {
2293 2293 nvlist_t *attrs;
2294 2294 VERIFY(nvpair_value_nvlist(pair, &attrs) == 0);
2295 2295 if (nvlist_lookup_nvpair(attrs, ZPROP_VALUE,
2296 2296 &pair) != 0)
2297 2297 return (SET_ERROR(EINVAL));
2298 2298 }
2299 2299
2300 2300 /*
2301 2301 * A correctly constructed propname is encoded as
2302 2302 * userquota@<rid>-<domain>.
2303 2303 */
2304 2304 if ((dash = strchr(propname, '-')) == NULL ||
2305 2305 nvpair_value_uint64_array(pair, &valary, &vallen) != 0 ||
2306 2306 vallen != 3)
2307 2307 return (SET_ERROR(EINVAL));
2308 2308
2309 2309 domain = dash + 1;
2310 2310 type = valary[0];
2311 2311 rid = valary[1];
2312 2312 quota = valary[2];
2313 2313
2314 2314 err = zfsvfs_hold(dsname, FTAG, &zfsvfs, B_FALSE);
2315 2315 if (err == 0) {
2316 2316 err = zfs_set_userquota(zfsvfs, type, domain, rid, quota);
2317 2317 zfsvfs_rele(zfsvfs, FTAG);
2318 2318 }
2319 2319
2320 2320 return (err);
2321 2321 }
2322 2322
2323 2323 /*
2324 2324 * If the named property is one that has a special function to set its value,
2325 2325 * return 0 on success and a positive error code on failure; otherwise if it is
2326 2326 * not one of the special properties handled by this function, return -1.
2327 2327 *
2328 2328 * XXX: It would be better for callers of the property interface if we handled
2329 2329 * these special cases in dsl_prop.c (in the dsl layer).
2330 2330 */
2331 2331 static int
2332 2332 zfs_prop_set_special(const char *dsname, zprop_source_t source,
2333 2333 nvpair_t *pair)
2334 2334 {
2335 2335 const char *propname = nvpair_name(pair);
2336 2336 zfs_prop_t prop = zfs_name_to_prop(propname);
2337 2337 uint64_t intval;
2338 2338 int err;
2339 2339
2340 2340 if (prop == ZPROP_INVAL) {
2341 2341 if (zfs_prop_userquota(propname))
2342 2342 return (zfs_prop_set_userquota(dsname, pair));
2343 2343 return (-1);
2344 2344 }
2345 2345
2346 2346 if (nvpair_type(pair) == DATA_TYPE_NVLIST) {
2347 2347 nvlist_t *attrs;
2348 2348 VERIFY(nvpair_value_nvlist(pair, &attrs) == 0);
2349 2349 VERIFY(nvlist_lookup_nvpair(attrs, ZPROP_VALUE,
2350 2350 &pair) == 0);
2351 2351 }
2352 2352
2353 2353 if (zfs_prop_get_type(prop) == PROP_TYPE_STRING)
2354 2354 return (-1);
2355 2355
2356 2356 VERIFY(0 == nvpair_value_uint64(pair, &intval));
2357 2357
2358 2358 switch (prop) {
2359 2359 case ZFS_PROP_QUOTA:
2360 2360 err = dsl_dir_set_quota(dsname, source, intval);
2361 2361 break;
2362 2362 case ZFS_PROP_REFQUOTA:
2363 2363 err = dsl_dataset_set_refquota(dsname, source, intval);
2364 2364 break;
2365 2365 case ZFS_PROP_RESERVATION:
2366 2366 err = dsl_dir_set_reservation(dsname, source, intval);
2367 2367 break;
2368 2368 case ZFS_PROP_REFRESERVATION:
2369 2369 err = dsl_dataset_set_refreservation(dsname, source, intval);
2370 2370 break;
2371 2371 case ZFS_PROP_VOLSIZE:
2372 2372 err = zvol_set_volsize(dsname, intval);
2373 2373 break;
2374 2374 case ZFS_PROP_VERSION:
2375 2375 {
2376 2376 zfsvfs_t *zfsvfs;
2377 2377
2378 2378 if ((err = zfsvfs_hold(dsname, FTAG, &zfsvfs, B_TRUE)) != 0)
2379 2379 break;
2380 2380
2381 2381 err = zfs_set_version(zfsvfs, intval);
2382 2382 zfsvfs_rele(zfsvfs, FTAG);
2383 2383
2384 2384 if (err == 0 && intval >= ZPL_VERSION_USERSPACE) {
2385 2385 zfs_cmd_t *zc;
2386 2386
2387 2387 zc = kmem_zalloc(sizeof (zfs_cmd_t), KM_SLEEP);
2388 2388 (void) strcpy(zc->zc_name, dsname);
2389 2389 (void) zfs_ioc_userspace_upgrade(zc);
2390 2390 kmem_free(zc, sizeof (zfs_cmd_t));
2391 2391 }
2392 2392 break;
2393 2393 }
2394 2394 case ZFS_PROP_COMPRESSION:
2395 2395 {
2396 2396 if (intval == ZIO_COMPRESS_LZ4) {
2397 2397 zfeature_info_t *feature =
2398 2398 &spa_feature_table[SPA_FEATURE_LZ4_COMPRESS];
2399 2399 spa_t *spa;
2400 2400
2401 2401 if ((err = spa_open(dsname, &spa, FTAG)) != 0)
2402 2402 return (err);
2403 2403
2404 2404 /*
2405 2405 * Setting the LZ4 compression algorithm activates
2406 2406 * the feature.
2407 2407 */
2408 2408 if (!spa_feature_is_active(spa, feature)) {
2409 2409 if ((err = zfs_prop_activate_feature(spa,
2410 2410 feature)) != 0) {
2411 2411 spa_close(spa, FTAG);
2412 2412 return (err);
2413 2413 }
2414 2414 }
2415 2415
2416 2416 spa_close(spa, FTAG);
2417 2417 }
2418 2418 /*
2419 2419 * We still want the default set action to be performed in the
2420 2420 * caller, we only performed zfeature settings here.
2421 2421 */
2422 2422 err = -1;
2423 2423 break;
2424 2424 }
2425 2425
2426 2426 default:
2427 2427 err = -1;
2428 2428 }
2429 2429
2430 2430 return (err);
2431 2431 }
2432 2432
2433 2433 /*
2434 2434 * This function is best effort. If it fails to set any of the given properties,
2435 2435 * it continues to set as many as it can and returns the last error
2436 2436 * encountered. If the caller provides a non-NULL errlist, it will be filled in
2437 2437 * with the list of names of all the properties that failed along with the
2438 2438 * corresponding error numbers.
2439 2439 *
2440 2440 * If every property is set successfully, zero is returned and errlist is not
2441 2441 * modified.
2442 2442 */
2443 2443 int
2444 2444 zfs_set_prop_nvlist(const char *dsname, zprop_source_t source, nvlist_t *nvl,
2445 2445 nvlist_t *errlist)
2446 2446 {
2447 2447 nvpair_t *pair;
2448 2448 nvpair_t *propval;
2449 2449 int rv = 0;
2450 2450 uint64_t intval;
2451 2451 char *strval;
2452 2452 nvlist_t *genericnvl = fnvlist_alloc();
2453 2453 nvlist_t *retrynvl = fnvlist_alloc();
2454 2454
2455 2455 retry:
2456 2456 pair = NULL;
2457 2457 while ((pair = nvlist_next_nvpair(nvl, pair)) != NULL) {
2458 2458 const char *propname = nvpair_name(pair);
2459 2459 zfs_prop_t prop = zfs_name_to_prop(propname);
2460 2460 int err = 0;
2461 2461
2462 2462 /* decode the property value */
2463 2463 propval = pair;
2464 2464 if (nvpair_type(pair) == DATA_TYPE_NVLIST) {
2465 2465 nvlist_t *attrs;
2466 2466 attrs = fnvpair_value_nvlist(pair);
2467 2467 if (nvlist_lookup_nvpair(attrs, ZPROP_VALUE,
2468 2468 &propval) != 0)
2469 2469 err = SET_ERROR(EINVAL);
2470 2470 }
2471 2471
2472 2472 /* Validate value type */
2473 2473 if (err == 0 && prop == ZPROP_INVAL) {
2474 2474 if (zfs_prop_user(propname)) {
2475 2475 if (nvpair_type(propval) != DATA_TYPE_STRING)
2476 2476 err = SET_ERROR(EINVAL);
2477 2477 } else if (zfs_prop_userquota(propname)) {
2478 2478 if (nvpair_type(propval) !=
2479 2479 DATA_TYPE_UINT64_ARRAY)
2480 2480 err = SET_ERROR(EINVAL);
2481 2481 } else {
2482 2482 err = SET_ERROR(EINVAL);
2483 2483 }
2484 2484 } else if (err == 0) {
2485 2485 if (nvpair_type(propval) == DATA_TYPE_STRING) {
2486 2486 if (zfs_prop_get_type(prop) != PROP_TYPE_STRING)
2487 2487 err = SET_ERROR(EINVAL);
2488 2488 } else if (nvpair_type(propval) == DATA_TYPE_UINT64) {
2489 2489 const char *unused;
2490 2490
2491 2491 intval = fnvpair_value_uint64(propval);
2492 2492
2493 2493 switch (zfs_prop_get_type(prop)) {
2494 2494 case PROP_TYPE_NUMBER:
2495 2495 break;
2496 2496 case PROP_TYPE_STRING:
2497 2497 err = SET_ERROR(EINVAL);
2498 2498 break;
2499 2499 case PROP_TYPE_INDEX:
2500 2500 if (zfs_prop_index_to_string(prop,
2501 2501 intval, &unused) != 0)
2502 2502 err = SET_ERROR(EINVAL);
2503 2503 break;
2504 2504 default:
2505 2505 cmn_err(CE_PANIC,
2506 2506 "unknown property type");
2507 2507 }
2508 2508 } else {
2509 2509 err = SET_ERROR(EINVAL);
2510 2510 }
2511 2511 }
2512 2512
2513 2513 /* Validate permissions */
2514 2514 if (err == 0)
2515 2515 err = zfs_check_settable(dsname, pair, CRED());
2516 2516
2517 2517 if (err == 0) {
2518 2518 err = zfs_prop_set_special(dsname, source, pair);
2519 2519 if (err == -1) {
2520 2520 /*
2521 2521 * For better performance we build up a list of
2522 2522 * properties to set in a single transaction.
2523 2523 */
2524 2524 err = nvlist_add_nvpair(genericnvl, pair);
2525 2525 } else if (err != 0 && nvl != retrynvl) {
2526 2526 /*
2527 2527 * This may be a spurious error caused by
2528 2528 * receiving quota and reservation out of order.
2529 2529 * Try again in a second pass.
2530 2530 */
2531 2531 err = nvlist_add_nvpair(retrynvl, pair);
2532 2532 }
2533 2533 }
2534 2534
2535 2535 if (err != 0) {
2536 2536 if (errlist != NULL)
2537 2537 fnvlist_add_int32(errlist, propname, err);
2538 2538 rv = err;
2539 2539 }
2540 2540 }
2541 2541
2542 2542 if (nvl != retrynvl && !nvlist_empty(retrynvl)) {
2543 2543 nvl = retrynvl;
2544 2544 goto retry;
2545 2545 }
2546 2546
2547 2547 if (!nvlist_empty(genericnvl) &&
2548 2548 dsl_props_set(dsname, source, genericnvl) != 0) {
2549 2549 /*
2550 2550 * If this fails, we still want to set as many properties as we
2551 2551 * can, so try setting them individually.
2552 2552 */
2553 2553 pair = NULL;
2554 2554 while ((pair = nvlist_next_nvpair(genericnvl, pair)) != NULL) {
2555 2555 const char *propname = nvpair_name(pair);
2556 2556 int err = 0;
2557 2557
2558 2558 propval = pair;
2559 2559 if (nvpair_type(pair) == DATA_TYPE_NVLIST) {
2560 2560 nvlist_t *attrs;
2561 2561 attrs = fnvpair_value_nvlist(pair);
2562 2562 propval = fnvlist_lookup_nvpair(attrs,
2563 2563 ZPROP_VALUE);
2564 2564 }
2565 2565
2566 2566 if (nvpair_type(propval) == DATA_TYPE_STRING) {
2567 2567 strval = fnvpair_value_string(propval);
2568 2568 err = dsl_prop_set_string(dsname, propname,
2569 2569 source, strval);
2570 2570 } else {
2571 2571 intval = fnvpair_value_uint64(propval);
2572 2572 err = dsl_prop_set_int(dsname, propname, source,
2573 2573 intval);
2574 2574 }
2575 2575
2576 2576 if (err != 0) {
2577 2577 if (errlist != NULL) {
2578 2578 fnvlist_add_int32(errlist, propname,
2579 2579 err);
2580 2580 }
2581 2581 rv = err;
2582 2582 }
2583 2583 }
2584 2584 }
2585 2585 nvlist_free(genericnvl);
2586 2586 nvlist_free(retrynvl);
2587 2587
2588 2588 return (rv);
2589 2589 }
2590 2590
2591 2591 /*
2592 2592 * Check that all the properties are valid user properties.
2593 2593 */
2594 2594 static int
2595 2595 zfs_check_userprops(const char *fsname, nvlist_t *nvl)
2596 2596 {
2597 2597 nvpair_t *pair = NULL;
2598 2598 int error = 0;
2599 2599
2600 2600 while ((pair = nvlist_next_nvpair(nvl, pair)) != NULL) {
2601 2601 const char *propname = nvpair_name(pair);
2602 2602 char *valstr;
2603 2603
2604 2604 if (!zfs_prop_user(propname) ||
2605 2605 nvpair_type(pair) != DATA_TYPE_STRING)
2606 2606 return (SET_ERROR(EINVAL));
2607 2607
2608 2608 if (error = zfs_secpolicy_write_perms(fsname,
2609 2609 ZFS_DELEG_PERM_USERPROP, CRED()))
2610 2610 return (error);
2611 2611
2612 2612 if (strlen(propname) >= ZAP_MAXNAMELEN)
2613 2613 return (SET_ERROR(ENAMETOOLONG));
2614 2614
2615 2615 VERIFY(nvpair_value_string(pair, &valstr) == 0);
2616 2616 if (strlen(valstr) >= ZAP_MAXVALUELEN)
2617 2617 return (E2BIG);
2618 2618 }
2619 2619 return (0);
2620 2620 }
2621 2621
2622 2622 static void
2623 2623 props_skip(nvlist_t *props, nvlist_t *skipped, nvlist_t **newprops)
2624 2624 {
2625 2625 nvpair_t *pair;
2626 2626
2627 2627 VERIFY(nvlist_alloc(newprops, NV_UNIQUE_NAME, KM_SLEEP) == 0);
2628 2628
2629 2629 pair = NULL;
2630 2630 while ((pair = nvlist_next_nvpair(props, pair)) != NULL) {
2631 2631 if (nvlist_exists(skipped, nvpair_name(pair)))
2632 2632 continue;
2633 2633
2634 2634 VERIFY(nvlist_add_nvpair(*newprops, pair) == 0);
2635 2635 }
2636 2636 }
2637 2637
2638 2638 static int
2639 2639 clear_received_props(const char *dsname, nvlist_t *props,
2640 2640 nvlist_t *skipped)
2641 2641 {
2642 2642 int err = 0;
2643 2643 nvlist_t *cleared_props = NULL;
2644 2644 props_skip(props, skipped, &cleared_props);
2645 2645 if (!nvlist_empty(cleared_props)) {
2646 2646 /*
2647 2647 * Acts on local properties until the dataset has received
2648 2648 * properties at least once on or after SPA_VERSION_RECVD_PROPS.
2649 2649 */
2650 2650 zprop_source_t flags = (ZPROP_SRC_NONE |
2651 2651 (dsl_prop_get_hasrecvd(dsname) ? ZPROP_SRC_RECEIVED : 0));
2652 2652 err = zfs_set_prop_nvlist(dsname, flags, cleared_props, NULL);
2653 2653 }
2654 2654 nvlist_free(cleared_props);
2655 2655 return (err);
2656 2656 }
2657 2657
2658 2658 /*
2659 2659 * inputs:
2660 2660 * zc_name name of filesystem
2661 2661 * zc_value name of property to set
2662 2662 * zc_nvlist_src{_size} nvlist of properties to apply
2663 2663 * zc_cookie received properties flag
2664 2664 *
2665 2665 * outputs:
2666 2666 * zc_nvlist_dst{_size} error for each unapplied received property
2667 2667 */
2668 2668 static int
2669 2669 zfs_ioc_set_prop(zfs_cmd_t *zc)
2670 2670 {
2671 2671 nvlist_t *nvl;
2672 2672 boolean_t received = zc->zc_cookie;
2673 2673 zprop_source_t source = (received ? ZPROP_SRC_RECEIVED :
2674 2674 ZPROP_SRC_LOCAL);
2675 2675 nvlist_t *errors;
2676 2676 int error;
2677 2677
2678 2678 if ((error = get_nvlist(zc->zc_nvlist_src, zc->zc_nvlist_src_size,
2679 2679 zc->zc_iflags, &nvl)) != 0)
2680 2680 return (error);
2681 2681
2682 2682 if (received) {
2683 2683 nvlist_t *origprops;
2684 2684
2685 2685 if (dsl_prop_get_received(zc->zc_name, &origprops) == 0) {
2686 2686 (void) clear_received_props(zc->zc_name,
2687 2687 origprops, nvl);
2688 2688 nvlist_free(origprops);
2689 2689 }
2690 2690
2691 2691 error = dsl_prop_set_hasrecvd(zc->zc_name);
2692 2692 }
2693 2693
2694 2694 errors = fnvlist_alloc();
2695 2695 if (error == 0)
2696 2696 error = zfs_set_prop_nvlist(zc->zc_name, source, nvl, errors);
2697 2697
2698 2698 if (zc->zc_nvlist_dst != NULL && errors != NULL) {
2699 2699 (void) put_nvlist(zc, errors);
2700 2700 }
2701 2701
2702 2702 nvlist_free(errors);
2703 2703 nvlist_free(nvl);
2704 2704 return (error);
2705 2705 }
2706 2706
2707 2707 /*
2708 2708 * inputs:
2709 2709 * zc_name name of filesystem
2710 2710 * zc_value name of property to inherit
2711 2711 * zc_cookie revert to received value if TRUE
2712 2712 *
2713 2713 * outputs: none
2714 2714 */
2715 2715 static int
2716 2716 zfs_ioc_inherit_prop(zfs_cmd_t *zc)
2717 2717 {
2718 2718 const char *propname = zc->zc_value;
2719 2719 zfs_prop_t prop = zfs_name_to_prop(propname);
2720 2720 boolean_t received = zc->zc_cookie;
2721 2721 zprop_source_t source = (received
2722 2722 ? ZPROP_SRC_NONE /* revert to received value, if any */
2723 2723 : ZPROP_SRC_INHERITED); /* explicitly inherit */
2724 2724
2725 2725 if (received) {
2726 2726 nvlist_t *dummy;
2727 2727 nvpair_t *pair;
2728 2728 zprop_type_t type;
2729 2729 int err;
2730 2730
2731 2731 /*
2732 2732 * zfs_prop_set_special() expects properties in the form of an
2733 2733 * nvpair with type info.
2734 2734 */
2735 2735 if (prop == ZPROP_INVAL) {
2736 2736 if (!zfs_prop_user(propname))
2737 2737 return (SET_ERROR(EINVAL));
2738 2738
2739 2739 type = PROP_TYPE_STRING;
2740 2740 } else if (prop == ZFS_PROP_VOLSIZE ||
2741 2741 prop == ZFS_PROP_VERSION) {
2742 2742 return (SET_ERROR(EINVAL));
2743 2743 } else {
2744 2744 type = zfs_prop_get_type(prop);
2745 2745 }
2746 2746
2747 2747 VERIFY(nvlist_alloc(&dummy, NV_UNIQUE_NAME, KM_SLEEP) == 0);
2748 2748
2749 2749 switch (type) {
2750 2750 case PROP_TYPE_STRING:
2751 2751 VERIFY(0 == nvlist_add_string(dummy, propname, ""));
2752 2752 break;
2753 2753 case PROP_TYPE_NUMBER:
2754 2754 case PROP_TYPE_INDEX:
2755 2755 VERIFY(0 == nvlist_add_uint64(dummy, propname, 0));
2756 2756 break;
2757 2757 default:
2758 2758 nvlist_free(dummy);
2759 2759 return (SET_ERROR(EINVAL));
2760 2760 }
2761 2761
2762 2762 pair = nvlist_next_nvpair(dummy, NULL);
2763 2763 err = zfs_prop_set_special(zc->zc_name, source, pair);
2764 2764 nvlist_free(dummy);
2765 2765 if (err != -1)
2766 2766 return (err); /* special property already handled */
2767 2767 } else {
2768 2768 /*
2769 2769 * Only check this in the non-received case. We want to allow
2770 2770 * 'inherit -S' to revert non-inheritable properties like quota
2771 2771 * and reservation to the received or default values even though
2772 2772 * they are not considered inheritable.
2773 2773 */
2774 2774 if (prop != ZPROP_INVAL && !zfs_prop_inheritable(prop))
2775 2775 return (SET_ERROR(EINVAL));
2776 2776 }
2777 2777
2778 2778 /* property name has been validated by zfs_secpolicy_inherit_prop() */
2779 2779 return (dsl_prop_inherit(zc->zc_name, zc->zc_value, source));
2780 2780 }
2781 2781
2782 2782 static int
2783 2783 zfs_ioc_pool_set_props(zfs_cmd_t *zc)
2784 2784 {
2785 2785 nvlist_t *props;
2786 2786 spa_t *spa;
2787 2787 int error;
2788 2788 nvpair_t *pair;
2789 2789
2790 2790 if (error = get_nvlist(zc->zc_nvlist_src, zc->zc_nvlist_src_size,
2791 2791 zc->zc_iflags, &props))
2792 2792 return (error);
2793 2793
2794 2794 /*
2795 2795 * If the only property is the configfile, then just do a spa_lookup()
2796 2796 * to handle the faulted case.
2797 2797 */
2798 2798 pair = nvlist_next_nvpair(props, NULL);
2799 2799 if (pair != NULL && strcmp(nvpair_name(pair),
2800 2800 zpool_prop_to_name(ZPOOL_PROP_CACHEFILE)) == 0 &&
2801 2801 nvlist_next_nvpair(props, pair) == NULL) {
2802 2802 mutex_enter(&spa_namespace_lock);
2803 2803 if ((spa = spa_lookup(zc->zc_name)) != NULL) {
2804 2804 spa_configfile_set(spa, props, B_FALSE);
2805 2805 spa_config_sync(spa, B_FALSE, B_TRUE);
2806 2806 }
2807 2807 mutex_exit(&spa_namespace_lock);
2808 2808 if (spa != NULL) {
2809 2809 nvlist_free(props);
2810 2810 return (0);
2811 2811 }
2812 2812 }
2813 2813
2814 2814 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0) {
2815 2815 nvlist_free(props);
2816 2816 return (error);
2817 2817 }
2818 2818
2819 2819 error = spa_prop_set(spa, props);
2820 2820
2821 2821 nvlist_free(props);
2822 2822 spa_close(spa, FTAG);
2823 2823
2824 2824 return (error);
2825 2825 }
2826 2826
2827 2827 static int
2828 2828 zfs_ioc_pool_get_props(zfs_cmd_t *zc)
2829 2829 {
2830 2830 spa_t *spa;
2831 2831 int error;
2832 2832 nvlist_t *nvp = NULL;
2833 2833
2834 2834 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0) {
2835 2835 /*
2836 2836 * If the pool is faulted, there may be properties we can still
2837 2837 * get (such as altroot and cachefile), so attempt to get them
2838 2838 * anyway.
2839 2839 */
2840 2840 mutex_enter(&spa_namespace_lock);
2841 2841 if ((spa = spa_lookup(zc->zc_name)) != NULL)
2842 2842 error = spa_prop_get(spa, &nvp);
2843 2843 mutex_exit(&spa_namespace_lock);
2844 2844 } else {
2845 2845 error = spa_prop_get(spa, &nvp);
2846 2846 spa_close(spa, FTAG);
2847 2847 }
2848 2848
2849 2849 if (error == 0 && zc->zc_nvlist_dst != NULL)
2850 2850 error = put_nvlist(zc, nvp);
2851 2851 else
2852 2852 error = SET_ERROR(EFAULT);
2853 2853
2854 2854 nvlist_free(nvp);
2855 2855 return (error);
2856 2856 }
2857 2857
2858 2858 /*
2859 2859 * inputs:
2860 2860 * zc_name name of filesystem
2861 2861 * zc_nvlist_src{_size} nvlist of delegated permissions
2862 2862 * zc_perm_action allow/unallow flag
2863 2863 *
2864 2864 * outputs: none
2865 2865 */
2866 2866 static int
2867 2867 zfs_ioc_set_fsacl(zfs_cmd_t *zc)
2868 2868 {
2869 2869 int error;
2870 2870 nvlist_t *fsaclnv = NULL;
2871 2871
2872 2872 if ((error = get_nvlist(zc->zc_nvlist_src, zc->zc_nvlist_src_size,
2873 2873 zc->zc_iflags, &fsaclnv)) != 0)
2874 2874 return (error);
2875 2875
2876 2876 /*
2877 2877 * Verify nvlist is constructed correctly
2878 2878 */
2879 2879 if ((error = zfs_deleg_verify_nvlist(fsaclnv)) != 0) {
2880 2880 nvlist_free(fsaclnv);
2881 2881 return (SET_ERROR(EINVAL));
2882 2882 }
2883 2883
2884 2884 /*
2885 2885 * If we don't have PRIV_SYS_MOUNT, then validate
2886 2886 * that user is allowed to hand out each permission in
2887 2887 * the nvlist(s)
2888 2888 */
2889 2889
2890 2890 error = secpolicy_zfs(CRED());
2891 2891 if (error != 0) {
2892 2892 if (zc->zc_perm_action == B_FALSE) {
2893 2893 error = dsl_deleg_can_allow(zc->zc_name,
2894 2894 fsaclnv, CRED());
2895 2895 } else {
2896 2896 error = dsl_deleg_can_unallow(zc->zc_name,
2897 2897 fsaclnv, CRED());
2898 2898 }
2899 2899 }
2900 2900
2901 2901 if (error == 0)
2902 2902 error = dsl_deleg_set(zc->zc_name, fsaclnv, zc->zc_perm_action);
2903 2903
2904 2904 nvlist_free(fsaclnv);
2905 2905 return (error);
2906 2906 }
2907 2907
2908 2908 /*
2909 2909 * inputs:
2910 2910 * zc_name name of filesystem
2911 2911 *
2912 2912 * outputs:
2913 2913 * zc_nvlist_src{_size} nvlist of delegated permissions
2914 2914 */
2915 2915 static int
2916 2916 zfs_ioc_get_fsacl(zfs_cmd_t *zc)
2917 2917 {
2918 2918 nvlist_t *nvp;
2919 2919 int error;
2920 2920
2921 2921 if ((error = dsl_deleg_get(zc->zc_name, &nvp)) == 0) {
2922 2922 error = put_nvlist(zc, nvp);
2923 2923 nvlist_free(nvp);
2924 2924 }
2925 2925
2926 2926 return (error);
2927 2927 }
2928 2928
2929 2929 /*
2930 2930 * Search the vfs list for a specified resource. Returns a pointer to it
2931 2931 * or NULL if no suitable entry is found. The caller of this routine
2932 2932 * is responsible for releasing the returned vfs pointer.
2933 2933 */
2934 2934 static vfs_t *
2935 2935 zfs_get_vfs(const char *resource)
2936 2936 {
2937 2937 struct vfs *vfsp;
2938 2938 struct vfs *vfs_found = NULL;
2939 2939
2940 2940 vfs_list_read_lock();
2941 2941 vfsp = rootvfs;
2942 2942 do {
2943 2943 if (strcmp(refstr_value(vfsp->vfs_resource), resource) == 0) {
2944 2944 VFS_HOLD(vfsp);
2945 2945 vfs_found = vfsp;
2946 2946 break;
2947 2947 }
2948 2948 vfsp = vfsp->vfs_next;
2949 2949 } while (vfsp != rootvfs);
2950 2950 vfs_list_unlock();
2951 2951 return (vfs_found);
2952 2952 }
2953 2953
2954 2954 /* ARGSUSED */
2955 2955 static void
2956 2956 zfs_create_cb(objset_t *os, void *arg, cred_t *cr, dmu_tx_t *tx)
2957 2957 {
2958 2958 zfs_creat_t *zct = arg;
2959 2959
2960 2960 zfs_create_fs(os, cr, zct->zct_zplprops, tx);
2961 2961 }
2962 2962
2963 2963 #define ZFS_PROP_UNDEFINED ((uint64_t)-1)
2964 2964
2965 2965 /*
2966 2966 * inputs:
2967 2967 * createprops list of properties requested by creator
2968 2968 * default_zplver zpl version to use if unspecified in createprops
2969 2969 * fuids_ok fuids allowed in this version of the spa?
2970 2970 * os parent objset pointer (NULL if root fs)
2971 2971 *
2972 2972 * outputs:
2973 2973 * zplprops values for the zplprops we attach to the master node object
2974 2974 * is_ci true if requested file system will be purely case-insensitive
2975 2975 *
2976 2976 * Determine the settings for utf8only, normalization and
2977 2977 * casesensitivity. Specific values may have been requested by the
2978 2978 * creator and/or we can inherit values from the parent dataset. If
2979 2979 * the file system is of too early a vintage, a creator can not
2980 2980 * request settings for these properties, even if the requested
2981 2981 * setting is the default value. We don't actually want to create dsl
2982 2982 * properties for these, so remove them from the source nvlist after
2983 2983 * processing.
2984 2984 */
2985 2985 static int
2986 2986 zfs_fill_zplprops_impl(objset_t *os, uint64_t zplver,
2987 2987 boolean_t fuids_ok, boolean_t sa_ok, nvlist_t *createprops,
2988 2988 nvlist_t *zplprops, boolean_t *is_ci)
2989 2989 {
2990 2990 uint64_t sense = ZFS_PROP_UNDEFINED;
2991 2991 uint64_t norm = ZFS_PROP_UNDEFINED;
2992 2992 uint64_t u8 = ZFS_PROP_UNDEFINED;
2993 2993
2994 2994 ASSERT(zplprops != NULL);
2995 2995
2996 2996 /*
2997 2997 * Pull out creator prop choices, if any.
2998 2998 */
2999 2999 if (createprops) {
3000 3000 (void) nvlist_lookup_uint64(createprops,
3001 3001 zfs_prop_to_name(ZFS_PROP_VERSION), &zplver);
3002 3002 (void) nvlist_lookup_uint64(createprops,
3003 3003 zfs_prop_to_name(ZFS_PROP_NORMALIZE), &norm);
3004 3004 (void) nvlist_remove_all(createprops,
3005 3005 zfs_prop_to_name(ZFS_PROP_NORMALIZE));
3006 3006 (void) nvlist_lookup_uint64(createprops,
3007 3007 zfs_prop_to_name(ZFS_PROP_UTF8ONLY), &u8);
3008 3008 (void) nvlist_remove_all(createprops,
3009 3009 zfs_prop_to_name(ZFS_PROP_UTF8ONLY));
3010 3010 (void) nvlist_lookup_uint64(createprops,
3011 3011 zfs_prop_to_name(ZFS_PROP_CASE), &sense);
3012 3012 (void) nvlist_remove_all(createprops,
3013 3013 zfs_prop_to_name(ZFS_PROP_CASE));
3014 3014 }
3015 3015
3016 3016 /*
3017 3017 * If the zpl version requested is whacky or the file system
3018 3018 * or pool is version is too "young" to support normalization
3019 3019 * and the creator tried to set a value for one of the props,
3020 3020 * error out.
3021 3021 */
3022 3022 if ((zplver < ZPL_VERSION_INITIAL || zplver > ZPL_VERSION) ||
3023 3023 (zplver >= ZPL_VERSION_FUID && !fuids_ok) ||
3024 3024 (zplver >= ZPL_VERSION_SA && !sa_ok) ||
3025 3025 (zplver < ZPL_VERSION_NORMALIZATION &&
3026 3026 (norm != ZFS_PROP_UNDEFINED || u8 != ZFS_PROP_UNDEFINED ||
3027 3027 sense != ZFS_PROP_UNDEFINED)))
3028 3028 return (SET_ERROR(ENOTSUP));
3029 3029
3030 3030 /*
3031 3031 * Put the version in the zplprops
3032 3032 */
3033 3033 VERIFY(nvlist_add_uint64(zplprops,
3034 3034 zfs_prop_to_name(ZFS_PROP_VERSION), zplver) == 0);
3035 3035
3036 3036 if (norm == ZFS_PROP_UNDEFINED)
3037 3037 VERIFY(zfs_get_zplprop(os, ZFS_PROP_NORMALIZE, &norm) == 0);
3038 3038 VERIFY(nvlist_add_uint64(zplprops,
3039 3039 zfs_prop_to_name(ZFS_PROP_NORMALIZE), norm) == 0);
3040 3040
3041 3041 /*
3042 3042 * If we're normalizing, names must always be valid UTF-8 strings.
3043 3043 */
3044 3044 if (norm)
3045 3045 u8 = 1;
3046 3046 if (u8 == ZFS_PROP_UNDEFINED)
3047 3047 VERIFY(zfs_get_zplprop(os, ZFS_PROP_UTF8ONLY, &u8) == 0);
3048 3048 VERIFY(nvlist_add_uint64(zplprops,
3049 3049 zfs_prop_to_name(ZFS_PROP_UTF8ONLY), u8) == 0);
3050 3050
3051 3051 if (sense == ZFS_PROP_UNDEFINED)
3052 3052 VERIFY(zfs_get_zplprop(os, ZFS_PROP_CASE, &sense) == 0);
3053 3053 VERIFY(nvlist_add_uint64(zplprops,
3054 3054 zfs_prop_to_name(ZFS_PROP_CASE), sense) == 0);
3055 3055
3056 3056 if (is_ci)
3057 3057 *is_ci = (sense == ZFS_CASE_INSENSITIVE);
3058 3058
3059 3059 return (0);
3060 3060 }
3061 3061
3062 3062 static int
3063 3063 zfs_fill_zplprops(const char *dataset, nvlist_t *createprops,
3064 3064 nvlist_t *zplprops, boolean_t *is_ci)
3065 3065 {
3066 3066 boolean_t fuids_ok, sa_ok;
3067 3067 uint64_t zplver = ZPL_VERSION;
3068 3068 objset_t *os = NULL;
3069 3069 char parentname[MAXNAMELEN];
3070 3070 char *cp;
3071 3071 spa_t *spa;
3072 3072 uint64_t spa_vers;
3073 3073 int error;
3074 3074
3075 3075 (void) strlcpy(parentname, dataset, sizeof (parentname));
3076 3076 cp = strrchr(parentname, '/');
3077 3077 ASSERT(cp != NULL);
3078 3078 cp[0] = '\0';
3079 3079
3080 3080 if ((error = spa_open(dataset, &spa, FTAG)) != 0)
3081 3081 return (error);
3082 3082
3083 3083 spa_vers = spa_version(spa);
3084 3084 spa_close(spa, FTAG);
3085 3085
3086 3086 zplver = zfs_zpl_version_map(spa_vers);
3087 3087 fuids_ok = (zplver >= ZPL_VERSION_FUID);
3088 3088 sa_ok = (zplver >= ZPL_VERSION_SA);
3089 3089
3090 3090 /*
3091 3091 * Open parent object set so we can inherit zplprop values.
3092 3092 */
3093 3093 if ((error = dmu_objset_hold(parentname, FTAG, &os)) != 0)
3094 3094 return (error);
3095 3095
3096 3096 error = zfs_fill_zplprops_impl(os, zplver, fuids_ok, sa_ok, createprops,
3097 3097 zplprops, is_ci);
3098 3098 dmu_objset_rele(os, FTAG);
3099 3099 return (error);
3100 3100 }
3101 3101
3102 3102 static int
3103 3103 zfs_fill_zplprops_root(uint64_t spa_vers, nvlist_t *createprops,
3104 3104 nvlist_t *zplprops, boolean_t *is_ci)
3105 3105 {
3106 3106 boolean_t fuids_ok;
3107 3107 boolean_t sa_ok;
3108 3108 uint64_t zplver = ZPL_VERSION;
3109 3109 int error;
3110 3110
3111 3111 zplver = zfs_zpl_version_map(spa_vers);
3112 3112 fuids_ok = (zplver >= ZPL_VERSION_FUID);
3113 3113 sa_ok = (zplver >= ZPL_VERSION_SA);
3114 3114
3115 3115 error = zfs_fill_zplprops_impl(NULL, zplver, fuids_ok, sa_ok,
3116 3116 createprops, zplprops, is_ci);
3117 3117 return (error);
3118 3118 }
3119 3119
3120 3120 /*
3121 3121 * innvl: {
3122 3122 * "type" -> dmu_objset_type_t (int32)
3123 3123 * (optional) "props" -> { prop -> value }
3124 3124 * }
3125 3125 *
3126 3126 * outnvl: propname -> error code (int32)
3127 3127 */
3128 3128 static int
3129 3129 zfs_ioc_create(const char *fsname, nvlist_t *innvl, nvlist_t *outnvl)
3130 3130 {
3131 3131 int error = 0;
3132 3132 zfs_creat_t zct = { 0 };
3133 3133 nvlist_t *nvprops = NULL;
3134 3134 void (*cbfunc)(objset_t *os, void *arg, cred_t *cr, dmu_tx_t *tx);
3135 3135 int32_t type32;
3136 3136 dmu_objset_type_t type;
3137 3137 boolean_t is_insensitive = B_FALSE;
3138 3138
3139 3139 if (nvlist_lookup_int32(innvl, "type", &type32) != 0)
3140 3140 return (SET_ERROR(EINVAL));
3141 3141 type = type32;
3142 3142 (void) nvlist_lookup_nvlist(innvl, "props", &nvprops);
3143 3143
3144 3144 switch (type) {
3145 3145 case DMU_OST_ZFS:
3146 3146 cbfunc = zfs_create_cb;
3147 3147 break;
3148 3148
3149 3149 case DMU_OST_ZVOL:
3150 3150 cbfunc = zvol_create_cb;
3151 3151 break;
3152 3152
3153 3153 default:
3154 3154 cbfunc = NULL;
3155 3155 break;
3156 3156 }
3157 3157 if (strchr(fsname, '@') ||
3158 3158 strchr(fsname, '%'))
3159 3159 return (SET_ERROR(EINVAL));
3160 3160
3161 3161 zct.zct_props = nvprops;
3162 3162
3163 3163 if (cbfunc == NULL)
3164 3164 return (SET_ERROR(EINVAL));
3165 3165
3166 3166 if (type == DMU_OST_ZVOL) {
3167 3167 uint64_t volsize, volblocksize;
3168 3168
3169 3169 if (nvprops == NULL)
3170 3170 return (SET_ERROR(EINVAL));
3171 3171 if (nvlist_lookup_uint64(nvprops,
3172 3172 zfs_prop_to_name(ZFS_PROP_VOLSIZE), &volsize) != 0)
3173 3173 return (SET_ERROR(EINVAL));
3174 3174
3175 3175 if ((error = nvlist_lookup_uint64(nvprops,
3176 3176 zfs_prop_to_name(ZFS_PROP_VOLBLOCKSIZE),
3177 3177 &volblocksize)) != 0 && error != ENOENT)
3178 3178 return (SET_ERROR(EINVAL));
3179 3179
3180 3180 if (error != 0)
3181 3181 volblocksize = zfs_prop_default_numeric(
3182 3182 ZFS_PROP_VOLBLOCKSIZE);
3183 3183
3184 3184 if ((error = zvol_check_volblocksize(
3185 3185 volblocksize)) != 0 ||
3186 3186 (error = zvol_check_volsize(volsize,
3187 3187 volblocksize)) != 0)
3188 3188 return (error);
3189 3189 } else if (type == DMU_OST_ZFS) {
3190 3190 int error;
3191 3191
3192 3192 /*
3193 3193 * We have to have normalization and
3194 3194 * case-folding flags correct when we do the
3195 3195 * file system creation, so go figure them out
3196 3196 * now.
3197 3197 */
3198 3198 VERIFY(nvlist_alloc(&zct.zct_zplprops,
3199 3199 NV_UNIQUE_NAME, KM_SLEEP) == 0);
3200 3200 error = zfs_fill_zplprops(fsname, nvprops,
3201 3201 zct.zct_zplprops, &is_insensitive);
3202 3202 if (error != 0) {
3203 3203 nvlist_free(zct.zct_zplprops);
3204 3204 return (error);
3205 3205 }
3206 3206 }
3207 3207
3208 3208 error = dmu_objset_create(fsname, type,
3209 3209 is_insensitive ? DS_FLAG_CI_DATASET : 0, cbfunc, &zct);
3210 3210 nvlist_free(zct.zct_zplprops);
3211 3211
3212 3212 /*
3213 3213 * It would be nice to do this atomically.
3214 3214 */
3215 3215 if (error == 0)
3216 3216 error = zfs_set_prop_nvlist(fsname, ZPROP_SRC_LOCAL,
3217 3217 nvprops, outnvl);
3218 3218 if (error != 0)
3219 3219 (void) dsl_destroy_head(fsname);
3220 3220 return (error);
3221 3221 }
3222 3222
3223 3223 /*
3224 3224 * innvl: {
3225 3225 * "origin" -> name of origin snapshot
3226 3226 * (optional) "props" -> { prop -> value }
3227 3227 * }
3228 3228 *
3229 3229 * outnvl: propname -> error code (int32)
3230 3230 */
3231 3231 static int
3232 3232 zfs_ioc_clone(const char *fsname, nvlist_t *innvl, nvlist_t *outnvl)
3233 3233 {
3234 3234 int error = 0;
3235 3235 nvlist_t *nvprops = NULL;
3236 3236 char *origin_name;
3237 3237
3238 3238 if (nvlist_lookup_string(innvl, "origin", &origin_name) != 0)
3239 3239 return (SET_ERROR(EINVAL));
3240 3240 (void) nvlist_lookup_nvlist(innvl, "props", &nvprops);
3241 3241
3242 3242 if (strchr(fsname, '@') ||
3243 3243 strchr(fsname, '%'))
3244 3244 return (SET_ERROR(EINVAL));
3245 3245
3246 3246 if (dataset_namecheck(origin_name, NULL, NULL) != 0)
3247 3247 return (SET_ERROR(EINVAL));
3248 3248 error = dmu_objset_clone(fsname, origin_name);
3249 3249 if (error != 0)
3250 3250 return (error);
3251 3251
3252 3252 /*
3253 3253 * It would be nice to do this atomically.
3254 3254 */
3255 3255 if (error == 0) {
3256 3256 error = zfs_set_prop_nvlist(fsname, ZPROP_SRC_LOCAL,
3257 3257 nvprops, outnvl);
3258 3258 if (error != 0)
3259 3259 (void) dsl_destroy_head(fsname);
3260 3260 }
3261 3261 return (error);
3262 3262 }
3263 3263
3264 3264 /*
3265 3265 * innvl: {
3266 3266 * "snaps" -> { snapshot1, snapshot2 }
3267 3267 * (optional) "props" -> { prop -> value (string) }
3268 3268 * }
3269 3269 *
3270 3270 * outnvl: snapshot -> error code (int32)
3271 3271 */
3272 3272 static int
3273 3273 zfs_ioc_snapshot(const char *poolname, nvlist_t *innvl, nvlist_t *outnvl)
3274 3274 {
3275 3275 nvlist_t *snaps;
3276 3276 nvlist_t *props = NULL;
3277 3277 int error, poollen;
3278 3278 nvpair_t *pair;
3279 3279
3280 3280 (void) nvlist_lookup_nvlist(innvl, "props", &props);
3281 3281 if ((error = zfs_check_userprops(poolname, props)) != 0)
3282 3282 return (error);
3283 3283
3284 3284 if (!nvlist_empty(props) &&
3285 3285 zfs_earlier_version(poolname, SPA_VERSION_SNAP_PROPS))
3286 3286 return (SET_ERROR(ENOTSUP));
3287 3287
3288 3288 if (nvlist_lookup_nvlist(innvl, "snaps", &snaps) != 0)
3289 3289 return (SET_ERROR(EINVAL));
3290 3290 poollen = strlen(poolname);
3291 3291 for (pair = nvlist_next_nvpair(snaps, NULL); pair != NULL;
3292 3292 pair = nvlist_next_nvpair(snaps, pair)) {
3293 3293 const char *name = nvpair_name(pair);
3294 3294 const char *cp = strchr(name, '@');
3295 3295
3296 3296 /*
3297 3297 * The snap name must contain an @, and the part after it must
3298 3298 * contain only valid characters.
3299 3299 */
3300 3300 if (cp == NULL || snapshot_namecheck(cp + 1, NULL, NULL) != 0)
3301 3301 return (SET_ERROR(EINVAL));
3302 3302
3303 3303 /*
3304 3304 * The snap must be in the specified pool.
3305 3305 */
3306 3306 if (strncmp(name, poolname, poollen) != 0 ||
3307 3307 (name[poollen] != '/' && name[poollen] != '@'))
3308 3308 return (SET_ERROR(EXDEV));
3309 3309
3310 3310 /* This must be the only snap of this fs. */
3311 3311 for (nvpair_t *pair2 = nvlist_next_nvpair(snaps, pair);
3312 3312 pair2 != NULL; pair2 = nvlist_next_nvpair(snaps, pair2)) {
3313 3313 if (strncmp(name, nvpair_name(pair2), cp - name + 1)
3314 3314 == 0) {
3315 3315 return (SET_ERROR(EXDEV));
3316 3316 }
3317 3317 }
3318 3318 }
3319 3319
3320 3320 error = dsl_dataset_snapshot(snaps, props, outnvl);
3321 3321 return (error);
3322 3322 }
3323 3323
3324 3324 /*
3325 3325 * innvl: "message" -> string
3326 3326 */
3327 3327 /* ARGSUSED */
3328 3328 static int
3329 3329 zfs_ioc_log_history(const char *unused, nvlist_t *innvl, nvlist_t *outnvl)
3330 3330 {
3331 3331 char *message;
3332 3332 spa_t *spa;
3333 3333 int error;
3334 3334 char *poolname;
3335 3335
3336 3336 /*
3337 3337 * The poolname in the ioctl is not set, we get it from the TSD,
3338 3338 * which was set at the end of the last successful ioctl that allows
3339 3339 * logging. The secpolicy func already checked that it is set.
3340 3340 * Only one log ioctl is allowed after each successful ioctl, so
3341 3341 * we clear the TSD here.
3342 3342 */
3343 3343 poolname = tsd_get(zfs_allow_log_key);
3344 3344 (void) tsd_set(zfs_allow_log_key, NULL);
3345 3345 error = spa_open(poolname, &spa, FTAG);
3346 3346 strfree(poolname);
3347 3347 if (error != 0)
3348 3348 return (error);
3349 3349
3350 3350 if (nvlist_lookup_string(innvl, "message", &message) != 0) {
3351 3351 spa_close(spa, FTAG);
3352 3352 return (SET_ERROR(EINVAL));
3353 3353 }
3354 3354
3355 3355 if (spa_version(spa) < SPA_VERSION_ZPOOL_HISTORY) {
3356 3356 spa_close(spa, FTAG);
3357 3357 return (SET_ERROR(ENOTSUP));
3358 3358 }
3359 3359
3360 3360 error = spa_history_log(spa, message);
↓ open down ↓ |
3360 lines elided |
↑ open up ↑ |
3361 3361 spa_close(spa, FTAG);
3362 3362 return (error);
3363 3363 }
3364 3364
3365 3365 /*
3366 3366 * The dp_config_rwlock must not be held when calling this, because the
3367 3367 * unmount may need to write out data.
3368 3368 *
3369 3369 * This function is best-effort. Callers must deal gracefully if it
3370 3370 * remains mounted (or is remounted after this call).
3371 + *
3372 + * Returns 0 if the argument is not a snapshot, or it is not currently a
3373 + * filesystem, or we were able to unmount it. Returns error code otherwise.
3371 3374 */
3372 -void
3375 +int
3373 3376 zfs_unmount_snap(const char *snapname)
3374 3377 {
3375 3378 vfs_t *vfsp;
3376 3379 zfsvfs_t *zfsvfs;
3380 + int err;
3377 3381
3378 3382 if (strchr(snapname, '@') == NULL)
3379 - return;
3383 + return (0);
3380 3384
3381 3385 vfsp = zfs_get_vfs(snapname);
3382 3386 if (vfsp == NULL)
3383 - return;
3387 + return (0);
3384 3388
3385 3389 zfsvfs = vfsp->vfs_data;
3386 3390 ASSERT(!dsl_pool_config_held(dmu_objset_pool(zfsvfs->z_os)));
3387 3391
3388 - if (vn_vfswlock(vfsp->vfs_vnodecovered) != 0) {
3389 - VFS_RELE(vfsp);
3390 - return;
3391 - }
3392 + err = vn_vfswlock(vfsp->vfs_vnodecovered);
3392 3393 VFS_RELE(vfsp);
3394 + if (err != 0)
3395 + return (err);
3393 3396
3394 3397 /*
3395 3398 * Always force the unmount for snapshots.
3396 3399 */
3397 3400 (void) dounmount(vfsp, MS_FORCE, kcred);
3401 + return (0);
3398 3402 }
3399 3403
3400 3404 /* ARGSUSED */
3401 3405 static int
3402 3406 zfs_unmount_snap_cb(const char *snapname, void *arg)
3403 3407 {
3404 - zfs_unmount_snap(snapname);
3405 - return (0);
3408 + return (zfs_unmount_snap(snapname));
3406 3409 }
3407 3410
3408 3411 /*
3409 3412 * When a clone is destroyed, its origin may also need to be destroyed,
3410 3413 * in which case it must be unmounted. This routine will do that unmount
3411 3414 * if necessary.
3412 3415 */
3413 3416 void
3414 3417 zfs_destroy_unmount_origin(const char *fsname)
3415 3418 {
3416 3419 int error;
3417 3420 objset_t *os;
↓ open down ↓ |
2 lines elided |
↑ open up ↑ |
3418 3421 dsl_dataset_t *ds;
3419 3422
3420 3423 error = dmu_objset_hold(fsname, FTAG, &os);
3421 3424 if (error != 0)
3422 3425 return;
3423 3426 ds = dmu_objset_ds(os);
3424 3427 if (dsl_dir_is_clone(ds->ds_dir) && DS_IS_DEFER_DESTROY(ds->ds_prev)) {
3425 3428 char originname[MAXNAMELEN];
3426 3429 dsl_dataset_name(ds->ds_prev, originname);
3427 3430 dmu_objset_rele(os, FTAG);
3428 - zfs_unmount_snap(originname);
3431 + (void) zfs_unmount_snap(originname);
3429 3432 } else {
3430 3433 dmu_objset_rele(os, FTAG);
3431 3434 }
3432 3435 }
3433 3436
3434 3437 /*
3435 3438 * innvl: {
3436 3439 * "snaps" -> { snapshot1, snapshot2 }
3437 3440 * (optional boolean) "defer"
3438 3441 * }
3439 3442 *
3440 3443 * outnvl: snapshot -> error code (int32)
3441 3444 *
3442 3445 */
3443 3446 static int
3444 3447 zfs_ioc_destroy_snaps(const char *poolname, nvlist_t *innvl, nvlist_t *outnvl)
3445 3448 {
3446 - int poollen;
3449 + int error, poollen;
3447 3450 nvlist_t *snaps;
3448 3451 nvpair_t *pair;
3449 3452 boolean_t defer;
3450 3453
3451 3454 if (nvlist_lookup_nvlist(innvl, "snaps", &snaps) != 0)
3452 3455 return (SET_ERROR(EINVAL));
3453 3456 defer = nvlist_exists(innvl, "defer");
3454 3457
3455 3458 poollen = strlen(poolname);
3456 3459 for (pair = nvlist_next_nvpair(snaps, NULL); pair != NULL;
3457 3460 pair = nvlist_next_nvpair(snaps, pair)) {
3458 3461 const char *name = nvpair_name(pair);
3459 3462
3460 3463 /*
3461 3464 * The snap must be in the specified pool.
3462 3465 */
3463 3466 if (strncmp(name, poolname, poollen) != 0 ||
3464 3467 (name[poollen] != '/' && name[poollen] != '@'))
3465 3468 return (SET_ERROR(EXDEV));
3466 3469
3467 - zfs_unmount_snap(name);
3470 + error = zfs_unmount_snap(name);
3471 + if (error)
3472 + return (SET_ERROR(error));
3468 3473 }
3469 3474
3470 3475 return (dsl_destroy_snapshots_nvl(snaps, defer, outnvl));
3471 3476 }
3472 3477
3473 3478 /*
3474 3479 * inputs:
3475 3480 * zc_name name of dataset to destroy
3476 3481 * zc_objset_type type of objset
3477 3482 * zc_defer_destroy mark for deferred destroy
3478 3483 *
3479 3484 * outputs: none
3480 3485 */
3481 3486 static int
3482 3487 zfs_ioc_destroy(zfs_cmd_t *zc)
3483 3488 {
3484 3489 int err;
3485 - if (strchr(zc->zc_name, '@') && zc->zc_objset_type == DMU_OST_ZFS)
3486 - zfs_unmount_snap(zc->zc_name);
3490 +
3491 + if (zc->zc_objset_type == DMU_OST_ZFS) {
3492 + err = zfs_unmount_snap(zc->zc_name);
3493 + if (err)
3494 + return (err);
3495 + }
3487 3496
3488 3497 if (strchr(zc->zc_name, '@'))
3489 3498 err = dsl_destroy_snapshot(zc->zc_name, zc->zc_defer_destroy);
3490 3499 else
3491 3500 err = dsl_destroy_head(zc->zc_name);
3492 3501 if (zc->zc_objset_type == DMU_OST_ZVOL && err == 0)
3493 3502 (void) zvol_remove_minor(zc->zc_name);
3494 3503 return (err);
3495 3504 }
3496 3505
3497 3506 /*
3498 3507 * inputs:
3499 3508 * zc_name name of dataset to rollback (to most recent snapshot)
3500 3509 *
3501 3510 * outputs: none
3502 3511 */
3503 3512 static int
3504 3513 zfs_ioc_rollback(zfs_cmd_t *zc)
3505 3514 {
3506 3515 zfsvfs_t *zfsvfs;
3507 3516 int error;
3508 3517
3509 3518 if (getzfsvfs(zc->zc_name, &zfsvfs) == 0) {
3510 3519 error = zfs_suspend_fs(zfsvfs);
3511 3520 if (error == 0) {
3512 3521 int resume_err;
3513 3522
3514 3523 error = dsl_dataset_rollback(zc->zc_name);
3515 3524 resume_err = zfs_resume_fs(zfsvfs, zc->zc_name);
3516 3525 error = error ? error : resume_err;
3517 3526 }
3518 3527 VFS_RELE(zfsvfs->z_vfs);
3519 3528 } else {
3520 3529 error = dsl_dataset_rollback(zc->zc_name);
3521 3530 }
↓ open down ↓ |
25 lines elided |
↑ open up ↑ |
3522 3531 return (error);
3523 3532 }
3524 3533
3525 3534 static int
3526 3535 recursive_unmount(const char *fsname, void *arg)
3527 3536 {
3528 3537 const char *snapname = arg;
3529 3538 char fullname[MAXNAMELEN];
3530 3539
3531 3540 (void) snprintf(fullname, sizeof (fullname), "%s@%s", fsname, snapname);
3532 - zfs_unmount_snap(fullname);
3533 - return (0);
3541 + return (zfs_unmount_snap(fullname));
3534 3542 }
3535 3543
3536 3544 /*
3537 3545 * inputs:
3538 3546 * zc_name old name of dataset
3539 3547 * zc_value new name of dataset
3540 3548 * zc_cookie recursive flag (only valid for snapshots)
3541 3549 *
3542 3550 * outputs: none
3543 3551 */
3544 3552 static int
3545 3553 zfs_ioc_rename(zfs_cmd_t *zc)
3546 3554 {
3547 3555 boolean_t recursive = zc->zc_cookie & 1;
3548 3556 char *at;
3549 3557
3550 3558 zc->zc_value[sizeof (zc->zc_value) - 1] = '\0';
3551 3559 if (dataset_namecheck(zc->zc_value, NULL, NULL) != 0 ||
3552 3560 strchr(zc->zc_value, '%'))
3553 3561 return (SET_ERROR(EINVAL));
3554 3562
3555 3563 at = strchr(zc->zc_name, '@');
3556 3564 if (at != NULL) {
3557 3565 /* snaps must be in same fs */
3558 3566 if (strncmp(zc->zc_name, zc->zc_value, at - zc->zc_name + 1))
3559 3567 return (SET_ERROR(EXDEV));
3560 3568 *at = '\0';
3561 3569 if (zc->zc_objset_type == DMU_OST_ZFS) {
3562 3570 int error = dmu_objset_find(zc->zc_name,
3563 3571 recursive_unmount, at + 1,
3564 3572 recursive ? DS_FIND_CHILDREN : 0);
3565 3573 if (error != 0)
3566 3574 return (error);
3567 3575 }
3568 3576 return (dsl_dataset_rename_snapshot(zc->zc_name,
3569 3577 at + 1, strchr(zc->zc_value, '@') + 1, recursive));
3570 3578 } else {
3571 3579 if (zc->zc_objset_type == DMU_OST_ZVOL)
3572 3580 (void) zvol_remove_minor(zc->zc_name);
3573 3581 return (dsl_dir_rename(zc->zc_name, zc->zc_value));
3574 3582 }
3575 3583 }
3576 3584
3577 3585 static int
3578 3586 zfs_check_settable(const char *dsname, nvpair_t *pair, cred_t *cr)
3579 3587 {
3580 3588 const char *propname = nvpair_name(pair);
3581 3589 boolean_t issnap = (strchr(dsname, '@') != NULL);
3582 3590 zfs_prop_t prop = zfs_name_to_prop(propname);
3583 3591 uint64_t intval;
3584 3592 int err;
3585 3593
3586 3594 if (prop == ZPROP_INVAL) {
3587 3595 if (zfs_prop_user(propname)) {
3588 3596 if (err = zfs_secpolicy_write_perms(dsname,
3589 3597 ZFS_DELEG_PERM_USERPROP, cr))
3590 3598 return (err);
3591 3599 return (0);
3592 3600 }
3593 3601
3594 3602 if (!issnap && zfs_prop_userquota(propname)) {
3595 3603 const char *perm = NULL;
3596 3604 const char *uq_prefix =
3597 3605 zfs_userquota_prop_prefixes[ZFS_PROP_USERQUOTA];
3598 3606 const char *gq_prefix =
3599 3607 zfs_userquota_prop_prefixes[ZFS_PROP_GROUPQUOTA];
3600 3608
3601 3609 if (strncmp(propname, uq_prefix,
3602 3610 strlen(uq_prefix)) == 0) {
3603 3611 perm = ZFS_DELEG_PERM_USERQUOTA;
3604 3612 } else if (strncmp(propname, gq_prefix,
3605 3613 strlen(gq_prefix)) == 0) {
3606 3614 perm = ZFS_DELEG_PERM_GROUPQUOTA;
3607 3615 } else {
3608 3616 /* USERUSED and GROUPUSED are read-only */
3609 3617 return (SET_ERROR(EINVAL));
3610 3618 }
3611 3619
3612 3620 if (err = zfs_secpolicy_write_perms(dsname, perm, cr))
3613 3621 return (err);
3614 3622 return (0);
3615 3623 }
3616 3624
3617 3625 return (SET_ERROR(EINVAL));
3618 3626 }
3619 3627
3620 3628 if (issnap)
3621 3629 return (SET_ERROR(EINVAL));
3622 3630
3623 3631 if (nvpair_type(pair) == DATA_TYPE_NVLIST) {
3624 3632 /*
3625 3633 * dsl_prop_get_all_impl() returns properties in this
3626 3634 * format.
3627 3635 */
3628 3636 nvlist_t *attrs;
3629 3637 VERIFY(nvpair_value_nvlist(pair, &attrs) == 0);
3630 3638 VERIFY(nvlist_lookup_nvpair(attrs, ZPROP_VALUE,
3631 3639 &pair) == 0);
3632 3640 }
3633 3641
3634 3642 /*
3635 3643 * Check that this value is valid for this pool version
3636 3644 */
3637 3645 switch (prop) {
3638 3646 case ZFS_PROP_COMPRESSION:
3639 3647 /*
3640 3648 * If the user specified gzip compression, make sure
3641 3649 * the SPA supports it. We ignore any errors here since
3642 3650 * we'll catch them later.
3643 3651 */
3644 3652 if (nvpair_type(pair) == DATA_TYPE_UINT64 &&
3645 3653 nvpair_value_uint64(pair, &intval) == 0) {
3646 3654 if (intval >= ZIO_COMPRESS_GZIP_1 &&
3647 3655 intval <= ZIO_COMPRESS_GZIP_9 &&
3648 3656 zfs_earlier_version(dsname,
3649 3657 SPA_VERSION_GZIP_COMPRESSION)) {
3650 3658 return (SET_ERROR(ENOTSUP));
3651 3659 }
3652 3660
3653 3661 if (intval == ZIO_COMPRESS_ZLE &&
3654 3662 zfs_earlier_version(dsname,
3655 3663 SPA_VERSION_ZLE_COMPRESSION))
3656 3664 return (SET_ERROR(ENOTSUP));
3657 3665
3658 3666 if (intval == ZIO_COMPRESS_LZ4) {
3659 3667 zfeature_info_t *feature =
3660 3668 &spa_feature_table[
3661 3669 SPA_FEATURE_LZ4_COMPRESS];
3662 3670 spa_t *spa;
3663 3671
3664 3672 if ((err = spa_open(dsname, &spa, FTAG)) != 0)
3665 3673 return (err);
3666 3674
3667 3675 if (!spa_feature_is_enabled(spa, feature)) {
3668 3676 spa_close(spa, FTAG);
3669 3677 return (SET_ERROR(ENOTSUP));
3670 3678 }
3671 3679 spa_close(spa, FTAG);
3672 3680 }
3673 3681
3674 3682 /*
3675 3683 * If this is a bootable dataset then
3676 3684 * verify that the compression algorithm
3677 3685 * is supported for booting. We must return
3678 3686 * something other than ENOTSUP since it
3679 3687 * implies a downrev pool version.
3680 3688 */
3681 3689 if (zfs_is_bootfs(dsname) &&
3682 3690 !BOOTFS_COMPRESS_VALID(intval)) {
3683 3691 return (SET_ERROR(ERANGE));
3684 3692 }
3685 3693 }
3686 3694 break;
3687 3695
3688 3696 case ZFS_PROP_COPIES:
3689 3697 if (zfs_earlier_version(dsname, SPA_VERSION_DITTO_BLOCKS))
3690 3698 return (SET_ERROR(ENOTSUP));
3691 3699 break;
3692 3700
3693 3701 case ZFS_PROP_DEDUP:
3694 3702 if (zfs_earlier_version(dsname, SPA_VERSION_DEDUP))
3695 3703 return (SET_ERROR(ENOTSUP));
3696 3704 break;
3697 3705
3698 3706 case ZFS_PROP_SHARESMB:
3699 3707 if (zpl_earlier_version(dsname, ZPL_VERSION_FUID))
3700 3708 return (SET_ERROR(ENOTSUP));
3701 3709 break;
3702 3710
3703 3711 case ZFS_PROP_ACLINHERIT:
3704 3712 if (nvpair_type(pair) == DATA_TYPE_UINT64 &&
3705 3713 nvpair_value_uint64(pair, &intval) == 0) {
3706 3714 if (intval == ZFS_ACL_PASSTHROUGH_X &&
3707 3715 zfs_earlier_version(dsname,
3708 3716 SPA_VERSION_PASSTHROUGH_X))
3709 3717 return (SET_ERROR(ENOTSUP));
3710 3718 }
3711 3719 break;
3712 3720 }
3713 3721
3714 3722 return (zfs_secpolicy_setprop(dsname, prop, pair, CRED()));
3715 3723 }
3716 3724
3717 3725 /*
3718 3726 * Checks for a race condition to make sure we don't increment a feature flag
3719 3727 * multiple times.
3720 3728 */
3721 3729 static int
3722 3730 zfs_prop_activate_feature_check(void *arg, dmu_tx_t *tx)
3723 3731 {
3724 3732 spa_t *spa = dmu_tx_pool(tx)->dp_spa;
3725 3733 zfeature_info_t *feature = arg;
3726 3734
3727 3735 if (!spa_feature_is_active(spa, feature))
3728 3736 return (0);
3729 3737 else
3730 3738 return (SET_ERROR(EBUSY));
3731 3739 }
3732 3740
3733 3741 /*
3734 3742 * The callback invoked on feature activation in the sync task caused by
3735 3743 * zfs_prop_activate_feature.
3736 3744 */
3737 3745 static void
3738 3746 zfs_prop_activate_feature_sync(void *arg, dmu_tx_t *tx)
3739 3747 {
3740 3748 spa_t *spa = dmu_tx_pool(tx)->dp_spa;
3741 3749 zfeature_info_t *feature = arg;
3742 3750
3743 3751 spa_feature_incr(spa, feature, tx);
3744 3752 }
3745 3753
3746 3754 /*
3747 3755 * Activates a feature on a pool in response to a property setting. This
3748 3756 * creates a new sync task which modifies the pool to reflect the feature
3749 3757 * as being active.
3750 3758 */
3751 3759 static int
3752 3760 zfs_prop_activate_feature(spa_t *spa, zfeature_info_t *feature)
3753 3761 {
3754 3762 int err;
3755 3763
3756 3764 /* EBUSY here indicates that the feature is already active */
3757 3765 err = dsl_sync_task(spa_name(spa),
3758 3766 zfs_prop_activate_feature_check, zfs_prop_activate_feature_sync,
3759 3767 feature, 2);
3760 3768
3761 3769 if (err != 0 && err != EBUSY)
3762 3770 return (err);
3763 3771 else
3764 3772 return (0);
3765 3773 }
3766 3774
3767 3775 /*
3768 3776 * Removes properties from the given props list that fail permission checks
3769 3777 * needed to clear them and to restore them in case of a receive error. For each
3770 3778 * property, make sure we have both set and inherit permissions.
3771 3779 *
3772 3780 * Returns the first error encountered if any permission checks fail. If the
3773 3781 * caller provides a non-NULL errlist, it also gives the complete list of names
3774 3782 * of all the properties that failed a permission check along with the
3775 3783 * corresponding error numbers. The caller is responsible for freeing the
3776 3784 * returned errlist.
3777 3785 *
3778 3786 * If every property checks out successfully, zero is returned and the list
3779 3787 * pointed at by errlist is NULL.
3780 3788 */
3781 3789 static int
3782 3790 zfs_check_clearable(char *dataset, nvlist_t *props, nvlist_t **errlist)
3783 3791 {
3784 3792 zfs_cmd_t *zc;
3785 3793 nvpair_t *pair, *next_pair;
3786 3794 nvlist_t *errors;
3787 3795 int err, rv = 0;
3788 3796
3789 3797 if (props == NULL)
3790 3798 return (0);
3791 3799
3792 3800 VERIFY(nvlist_alloc(&errors, NV_UNIQUE_NAME, KM_SLEEP) == 0);
3793 3801
3794 3802 zc = kmem_alloc(sizeof (zfs_cmd_t), KM_SLEEP);
3795 3803 (void) strcpy(zc->zc_name, dataset);
3796 3804 pair = nvlist_next_nvpair(props, NULL);
3797 3805 while (pair != NULL) {
3798 3806 next_pair = nvlist_next_nvpair(props, pair);
3799 3807
3800 3808 (void) strcpy(zc->zc_value, nvpair_name(pair));
3801 3809 if ((err = zfs_check_settable(dataset, pair, CRED())) != 0 ||
3802 3810 (err = zfs_secpolicy_inherit_prop(zc, NULL, CRED())) != 0) {
3803 3811 VERIFY(nvlist_remove_nvpair(props, pair) == 0);
3804 3812 VERIFY(nvlist_add_int32(errors,
3805 3813 zc->zc_value, err) == 0);
3806 3814 }
3807 3815 pair = next_pair;
3808 3816 }
3809 3817 kmem_free(zc, sizeof (zfs_cmd_t));
3810 3818
3811 3819 if ((pair = nvlist_next_nvpair(errors, NULL)) == NULL) {
3812 3820 nvlist_free(errors);
3813 3821 errors = NULL;
3814 3822 } else {
3815 3823 VERIFY(nvpair_value_int32(pair, &rv) == 0);
3816 3824 }
3817 3825
3818 3826 if (errlist == NULL)
3819 3827 nvlist_free(errors);
3820 3828 else
3821 3829 *errlist = errors;
3822 3830
3823 3831 return (rv);
3824 3832 }
3825 3833
3826 3834 static boolean_t
3827 3835 propval_equals(nvpair_t *p1, nvpair_t *p2)
3828 3836 {
3829 3837 if (nvpair_type(p1) == DATA_TYPE_NVLIST) {
3830 3838 /* dsl_prop_get_all_impl() format */
3831 3839 nvlist_t *attrs;
3832 3840 VERIFY(nvpair_value_nvlist(p1, &attrs) == 0);
3833 3841 VERIFY(nvlist_lookup_nvpair(attrs, ZPROP_VALUE,
3834 3842 &p1) == 0);
3835 3843 }
3836 3844
3837 3845 if (nvpair_type(p2) == DATA_TYPE_NVLIST) {
3838 3846 nvlist_t *attrs;
3839 3847 VERIFY(nvpair_value_nvlist(p2, &attrs) == 0);
3840 3848 VERIFY(nvlist_lookup_nvpair(attrs, ZPROP_VALUE,
3841 3849 &p2) == 0);
3842 3850 }
3843 3851
3844 3852 if (nvpair_type(p1) != nvpair_type(p2))
3845 3853 return (B_FALSE);
3846 3854
3847 3855 if (nvpair_type(p1) == DATA_TYPE_STRING) {
3848 3856 char *valstr1, *valstr2;
3849 3857
3850 3858 VERIFY(nvpair_value_string(p1, (char **)&valstr1) == 0);
3851 3859 VERIFY(nvpair_value_string(p2, (char **)&valstr2) == 0);
3852 3860 return (strcmp(valstr1, valstr2) == 0);
3853 3861 } else {
3854 3862 uint64_t intval1, intval2;
3855 3863
3856 3864 VERIFY(nvpair_value_uint64(p1, &intval1) == 0);
3857 3865 VERIFY(nvpair_value_uint64(p2, &intval2) == 0);
3858 3866 return (intval1 == intval2);
3859 3867 }
3860 3868 }
3861 3869
3862 3870 /*
3863 3871 * Remove properties from props if they are not going to change (as determined
3864 3872 * by comparison with origprops). Remove them from origprops as well, since we
3865 3873 * do not need to clear or restore properties that won't change.
3866 3874 */
3867 3875 static void
3868 3876 props_reduce(nvlist_t *props, nvlist_t *origprops)
3869 3877 {
3870 3878 nvpair_t *pair, *next_pair;
3871 3879
3872 3880 if (origprops == NULL)
3873 3881 return; /* all props need to be received */
3874 3882
3875 3883 pair = nvlist_next_nvpair(props, NULL);
3876 3884 while (pair != NULL) {
3877 3885 const char *propname = nvpair_name(pair);
3878 3886 nvpair_t *match;
3879 3887
3880 3888 next_pair = nvlist_next_nvpair(props, pair);
3881 3889
3882 3890 if ((nvlist_lookup_nvpair(origprops, propname,
3883 3891 &match) != 0) || !propval_equals(pair, match))
3884 3892 goto next; /* need to set received value */
3885 3893
3886 3894 /* don't clear the existing received value */
3887 3895 (void) nvlist_remove_nvpair(origprops, match);
3888 3896 /* don't bother receiving the property */
3889 3897 (void) nvlist_remove_nvpair(props, pair);
3890 3898 next:
3891 3899 pair = next_pair;
3892 3900 }
3893 3901 }
3894 3902
3895 3903 #ifdef DEBUG
3896 3904 static boolean_t zfs_ioc_recv_inject_err;
3897 3905 #endif
3898 3906
3899 3907 /*
3900 3908 * inputs:
3901 3909 * zc_name name of containing filesystem
3902 3910 * zc_nvlist_src{_size} nvlist of properties to apply
3903 3911 * zc_value name of snapshot to create
3904 3912 * zc_string name of clone origin (if DRR_FLAG_CLONE)
3905 3913 * zc_cookie file descriptor to recv from
3906 3914 * zc_begin_record the BEGIN record of the stream (not byteswapped)
3907 3915 * zc_guid force flag
3908 3916 * zc_cleanup_fd cleanup-on-exit file descriptor
3909 3917 * zc_action_handle handle for this guid/ds mapping (or zero on first call)
3910 3918 *
3911 3919 * outputs:
3912 3920 * zc_cookie number of bytes read
3913 3921 * zc_nvlist_dst{_size} error for each unapplied received property
3914 3922 * zc_obj zprop_errflags_t
3915 3923 * zc_action_handle handle for this guid/ds mapping
3916 3924 */
3917 3925 static int
3918 3926 zfs_ioc_recv(zfs_cmd_t *zc)
3919 3927 {
3920 3928 file_t *fp;
3921 3929 dmu_recv_cookie_t drc;
3922 3930 boolean_t force = (boolean_t)zc->zc_guid;
3923 3931 int fd;
3924 3932 int error = 0;
3925 3933 int props_error = 0;
3926 3934 nvlist_t *errors;
3927 3935 offset_t off;
3928 3936 nvlist_t *props = NULL; /* sent properties */
3929 3937 nvlist_t *origprops = NULL; /* existing properties */
3930 3938 char *origin = NULL;
3931 3939 char *tosnap;
3932 3940 char tofs[ZFS_MAXNAMELEN];
3933 3941 boolean_t first_recvd_props = B_FALSE;
3934 3942
3935 3943 if (dataset_namecheck(zc->zc_value, NULL, NULL) != 0 ||
3936 3944 strchr(zc->zc_value, '@') == NULL ||
3937 3945 strchr(zc->zc_value, '%'))
3938 3946 return (SET_ERROR(EINVAL));
3939 3947
3940 3948 (void) strcpy(tofs, zc->zc_value);
3941 3949 tosnap = strchr(tofs, '@');
3942 3950 *tosnap++ = '\0';
3943 3951
3944 3952 if (zc->zc_nvlist_src != NULL &&
3945 3953 (error = get_nvlist(zc->zc_nvlist_src, zc->zc_nvlist_src_size,
3946 3954 zc->zc_iflags, &props)) != 0)
3947 3955 return (error);
3948 3956
3949 3957 fd = zc->zc_cookie;
3950 3958 fp = getf(fd);
3951 3959 if (fp == NULL) {
3952 3960 nvlist_free(props);
3953 3961 return (SET_ERROR(EBADF));
3954 3962 }
3955 3963
3956 3964 VERIFY(nvlist_alloc(&errors, NV_UNIQUE_NAME, KM_SLEEP) == 0);
3957 3965
3958 3966 if (zc->zc_string[0])
3959 3967 origin = zc->zc_string;
3960 3968
3961 3969 error = dmu_recv_begin(tofs, tosnap,
3962 3970 &zc->zc_begin_record, force, origin, &drc);
3963 3971 if (error != 0)
3964 3972 goto out;
3965 3973
3966 3974 /*
3967 3975 * Set properties before we receive the stream so that they are applied
3968 3976 * to the new data. Note that we must call dmu_recv_stream() if
3969 3977 * dmu_recv_begin() succeeds.
3970 3978 */
3971 3979 if (props != NULL && !drc.drc_newfs) {
3972 3980 if (spa_version(dsl_dataset_get_spa(drc.drc_ds)) >=
3973 3981 SPA_VERSION_RECVD_PROPS &&
3974 3982 !dsl_prop_get_hasrecvd(tofs))
3975 3983 first_recvd_props = B_TRUE;
3976 3984
3977 3985 /*
3978 3986 * If new received properties are supplied, they are to
3979 3987 * completely replace the existing received properties, so stash
3980 3988 * away the existing ones.
3981 3989 */
3982 3990 if (dsl_prop_get_received(tofs, &origprops) == 0) {
3983 3991 nvlist_t *errlist = NULL;
3984 3992 /*
3985 3993 * Don't bother writing a property if its value won't
3986 3994 * change (and avoid the unnecessary security checks).
3987 3995 *
3988 3996 * The first receive after SPA_VERSION_RECVD_PROPS is a
3989 3997 * special case where we blow away all local properties
3990 3998 * regardless.
3991 3999 */
3992 4000 if (!first_recvd_props)
3993 4001 props_reduce(props, origprops);
3994 4002 if (zfs_check_clearable(tofs, origprops, &errlist) != 0)
3995 4003 (void) nvlist_merge(errors, errlist, 0);
3996 4004 nvlist_free(errlist);
3997 4005
3998 4006 if (clear_received_props(tofs, origprops,
3999 4007 first_recvd_props ? NULL : props) != 0)
4000 4008 zc->zc_obj |= ZPROP_ERR_NOCLEAR;
4001 4009 } else {
4002 4010 zc->zc_obj |= ZPROP_ERR_NOCLEAR;
4003 4011 }
4004 4012 }
4005 4013
4006 4014 if (props != NULL) {
4007 4015 props_error = dsl_prop_set_hasrecvd(tofs);
4008 4016
4009 4017 if (props_error == 0) {
4010 4018 (void) zfs_set_prop_nvlist(tofs, ZPROP_SRC_RECEIVED,
4011 4019 props, errors);
4012 4020 }
4013 4021 }
4014 4022
4015 4023 if (zc->zc_nvlist_dst_size != 0 &&
4016 4024 (nvlist_smush(errors, zc->zc_nvlist_dst_size) != 0 ||
4017 4025 put_nvlist(zc, errors) != 0)) {
4018 4026 /*
4019 4027 * Caller made zc->zc_nvlist_dst less than the minimum expected
4020 4028 * size or supplied an invalid address.
4021 4029 */
4022 4030 props_error = SET_ERROR(EINVAL);
4023 4031 }
4024 4032
4025 4033 off = fp->f_offset;
4026 4034 error = dmu_recv_stream(&drc, fp->f_vnode, &off, zc->zc_cleanup_fd,
4027 4035 &zc->zc_action_handle);
4028 4036
4029 4037 if (error == 0) {
4030 4038 zfsvfs_t *zfsvfs = NULL;
4031 4039
4032 4040 if (getzfsvfs(tofs, &zfsvfs) == 0) {
4033 4041 /* online recv */
4034 4042 int end_err;
4035 4043
4036 4044 error = zfs_suspend_fs(zfsvfs);
4037 4045 /*
4038 4046 * If the suspend fails, then the recv_end will
4039 4047 * likely also fail, and clean up after itself.
4040 4048 */
4041 4049 end_err = dmu_recv_end(&drc);
4042 4050 if (error == 0)
4043 4051 error = zfs_resume_fs(zfsvfs, tofs);
4044 4052 error = error ? error : end_err;
4045 4053 VFS_RELE(zfsvfs->z_vfs);
4046 4054 } else {
4047 4055 error = dmu_recv_end(&drc);
4048 4056 }
4049 4057 }
4050 4058
4051 4059 zc->zc_cookie = off - fp->f_offset;
4052 4060 if (VOP_SEEK(fp->f_vnode, fp->f_offset, &off, NULL) == 0)
4053 4061 fp->f_offset = off;
4054 4062
4055 4063 #ifdef DEBUG
4056 4064 if (zfs_ioc_recv_inject_err) {
4057 4065 zfs_ioc_recv_inject_err = B_FALSE;
4058 4066 error = 1;
4059 4067 }
4060 4068 #endif
4061 4069 /*
4062 4070 * On error, restore the original props.
4063 4071 */
4064 4072 if (error != 0 && props != NULL && !drc.drc_newfs) {
4065 4073 if (clear_received_props(tofs, props, NULL) != 0) {
4066 4074 /*
4067 4075 * We failed to clear the received properties.
4068 4076 * Since we may have left a $recvd value on the
4069 4077 * system, we can't clear the $hasrecvd flag.
4070 4078 */
4071 4079 zc->zc_obj |= ZPROP_ERR_NORESTORE;
4072 4080 } else if (first_recvd_props) {
4073 4081 dsl_prop_unset_hasrecvd(tofs);
4074 4082 }
4075 4083
4076 4084 if (origprops == NULL && !drc.drc_newfs) {
4077 4085 /* We failed to stash the original properties. */
4078 4086 zc->zc_obj |= ZPROP_ERR_NORESTORE;
4079 4087 }
4080 4088
4081 4089 /*
4082 4090 * dsl_props_set() will not convert RECEIVED to LOCAL on or
4083 4091 * after SPA_VERSION_RECVD_PROPS, so we need to specify LOCAL
4084 4092 * explictly if we're restoring local properties cleared in the
4085 4093 * first new-style receive.
4086 4094 */
4087 4095 if (origprops != NULL &&
4088 4096 zfs_set_prop_nvlist(tofs, (first_recvd_props ?
4089 4097 ZPROP_SRC_LOCAL : ZPROP_SRC_RECEIVED),
4090 4098 origprops, NULL) != 0) {
4091 4099 /*
4092 4100 * We stashed the original properties but failed to
4093 4101 * restore them.
4094 4102 */
4095 4103 zc->zc_obj |= ZPROP_ERR_NORESTORE;
4096 4104 }
4097 4105 }
4098 4106 out:
4099 4107 nvlist_free(props);
4100 4108 nvlist_free(origprops);
4101 4109 nvlist_free(errors);
4102 4110 releasef(fd);
4103 4111
4104 4112 if (error == 0)
4105 4113 error = props_error;
4106 4114
4107 4115 return (error);
4108 4116 }
4109 4117
4110 4118 /*
4111 4119 * inputs:
4112 4120 * zc_name name of snapshot to send
4113 4121 * zc_cookie file descriptor to send stream to
4114 4122 * zc_obj fromorigin flag (mutually exclusive with zc_fromobj)
4115 4123 * zc_sendobj objsetid of snapshot to send
4116 4124 * zc_fromobj objsetid of incremental fromsnap (may be zero)
4117 4125 * zc_guid if set, estimate size of stream only. zc_cookie is ignored.
4118 4126 * output size in zc_objset_type.
4119 4127 *
4120 4128 * outputs: none
4121 4129 */
4122 4130 static int
4123 4131 zfs_ioc_send(zfs_cmd_t *zc)
4124 4132 {
4125 4133 int error;
4126 4134 offset_t off;
4127 4135 boolean_t estimate = (zc->zc_guid != 0);
4128 4136
4129 4137 if (zc->zc_obj != 0) {
4130 4138 dsl_pool_t *dp;
4131 4139 dsl_dataset_t *tosnap;
4132 4140
4133 4141 error = dsl_pool_hold(zc->zc_name, FTAG, &dp);
4134 4142 if (error != 0)
4135 4143 return (error);
4136 4144
4137 4145 error = dsl_dataset_hold_obj(dp, zc->zc_sendobj, FTAG, &tosnap);
4138 4146 if (error != 0) {
4139 4147 dsl_pool_rele(dp, FTAG);
4140 4148 return (error);
4141 4149 }
4142 4150
4143 4151 if (dsl_dir_is_clone(tosnap->ds_dir))
4144 4152 zc->zc_fromobj = tosnap->ds_dir->dd_phys->dd_origin_obj;
4145 4153 dsl_dataset_rele(tosnap, FTAG);
4146 4154 dsl_pool_rele(dp, FTAG);
4147 4155 }
4148 4156
4149 4157 if (estimate) {
4150 4158 dsl_pool_t *dp;
4151 4159 dsl_dataset_t *tosnap;
4152 4160 dsl_dataset_t *fromsnap = NULL;
4153 4161
4154 4162 error = dsl_pool_hold(zc->zc_name, FTAG, &dp);
4155 4163 if (error != 0)
4156 4164 return (error);
4157 4165
4158 4166 error = dsl_dataset_hold_obj(dp, zc->zc_sendobj, FTAG, &tosnap);
4159 4167 if (error != 0) {
4160 4168 dsl_pool_rele(dp, FTAG);
4161 4169 return (error);
4162 4170 }
4163 4171
4164 4172 if (zc->zc_fromobj != 0) {
4165 4173 error = dsl_dataset_hold_obj(dp, zc->zc_fromobj,
4166 4174 FTAG, &fromsnap);
4167 4175 if (error != 0) {
4168 4176 dsl_dataset_rele(tosnap, FTAG);
4169 4177 dsl_pool_rele(dp, FTAG);
4170 4178 return (error);
4171 4179 }
4172 4180 }
4173 4181
4174 4182 error = dmu_send_estimate(tosnap, fromsnap,
4175 4183 &zc->zc_objset_type);
4176 4184
4177 4185 if (fromsnap != NULL)
4178 4186 dsl_dataset_rele(fromsnap, FTAG);
4179 4187 dsl_dataset_rele(tosnap, FTAG);
4180 4188 dsl_pool_rele(dp, FTAG);
4181 4189 } else {
4182 4190 file_t *fp = getf(zc->zc_cookie);
4183 4191 if (fp == NULL)
4184 4192 return (SET_ERROR(EBADF));
4185 4193
4186 4194 off = fp->f_offset;
4187 4195 error = dmu_send_obj(zc->zc_name, zc->zc_sendobj,
4188 4196 zc->zc_fromobj, zc->zc_cookie, fp->f_vnode, &off);
4189 4197
4190 4198 if (VOP_SEEK(fp->f_vnode, fp->f_offset, &off, NULL) == 0)
4191 4199 fp->f_offset = off;
4192 4200 releasef(zc->zc_cookie);
4193 4201 }
4194 4202 return (error);
4195 4203 }
4196 4204
4197 4205 /*
4198 4206 * inputs:
4199 4207 * zc_name name of snapshot on which to report progress
4200 4208 * zc_cookie file descriptor of send stream
4201 4209 *
4202 4210 * outputs:
4203 4211 * zc_cookie number of bytes written in send stream thus far
4204 4212 */
4205 4213 static int
4206 4214 zfs_ioc_send_progress(zfs_cmd_t *zc)
4207 4215 {
4208 4216 dsl_pool_t *dp;
4209 4217 dsl_dataset_t *ds;
4210 4218 dmu_sendarg_t *dsp = NULL;
4211 4219 int error;
4212 4220
4213 4221 error = dsl_pool_hold(zc->zc_name, FTAG, &dp);
4214 4222 if (error != 0)
4215 4223 return (error);
4216 4224
4217 4225 error = dsl_dataset_hold(dp, zc->zc_name, FTAG, &ds);
4218 4226 if (error != 0) {
4219 4227 dsl_pool_rele(dp, FTAG);
4220 4228 return (error);
4221 4229 }
4222 4230
4223 4231 mutex_enter(&ds->ds_sendstream_lock);
4224 4232
4225 4233 /*
4226 4234 * Iterate over all the send streams currently active on this dataset.
4227 4235 * If there's one which matches the specified file descriptor _and_ the
4228 4236 * stream was started by the current process, return the progress of
4229 4237 * that stream.
4230 4238 */
4231 4239 for (dsp = list_head(&ds->ds_sendstreams); dsp != NULL;
4232 4240 dsp = list_next(&ds->ds_sendstreams, dsp)) {
4233 4241 if (dsp->dsa_outfd == zc->zc_cookie &&
4234 4242 dsp->dsa_proc == curproc)
4235 4243 break;
4236 4244 }
4237 4245
4238 4246 if (dsp != NULL)
4239 4247 zc->zc_cookie = *(dsp->dsa_off);
4240 4248 else
4241 4249 error = SET_ERROR(ENOENT);
4242 4250
4243 4251 mutex_exit(&ds->ds_sendstream_lock);
4244 4252 dsl_dataset_rele(ds, FTAG);
4245 4253 dsl_pool_rele(dp, FTAG);
4246 4254 return (error);
4247 4255 }
4248 4256
4249 4257 static int
4250 4258 zfs_ioc_inject_fault(zfs_cmd_t *zc)
4251 4259 {
4252 4260 int id, error;
4253 4261
4254 4262 error = zio_inject_fault(zc->zc_name, (int)zc->zc_guid, &id,
4255 4263 &zc->zc_inject_record);
4256 4264
4257 4265 if (error == 0)
4258 4266 zc->zc_guid = (uint64_t)id;
4259 4267
4260 4268 return (error);
4261 4269 }
4262 4270
4263 4271 static int
4264 4272 zfs_ioc_clear_fault(zfs_cmd_t *zc)
4265 4273 {
4266 4274 return (zio_clear_fault((int)zc->zc_guid));
4267 4275 }
4268 4276
4269 4277 static int
4270 4278 zfs_ioc_inject_list_next(zfs_cmd_t *zc)
4271 4279 {
4272 4280 int id = (int)zc->zc_guid;
4273 4281 int error;
4274 4282
4275 4283 error = zio_inject_list_next(&id, zc->zc_name, sizeof (zc->zc_name),
4276 4284 &zc->zc_inject_record);
4277 4285
4278 4286 zc->zc_guid = id;
4279 4287
4280 4288 return (error);
4281 4289 }
4282 4290
4283 4291 static int
4284 4292 zfs_ioc_error_log(zfs_cmd_t *zc)
4285 4293 {
4286 4294 spa_t *spa;
4287 4295 int error;
4288 4296 size_t count = (size_t)zc->zc_nvlist_dst_size;
4289 4297
4290 4298 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0)
4291 4299 return (error);
4292 4300
4293 4301 error = spa_get_errlog(spa, (void *)(uintptr_t)zc->zc_nvlist_dst,
4294 4302 &count);
4295 4303 if (error == 0)
4296 4304 zc->zc_nvlist_dst_size = count;
4297 4305 else
4298 4306 zc->zc_nvlist_dst_size = spa_get_errlog_size(spa);
4299 4307
4300 4308 spa_close(spa, FTAG);
4301 4309
4302 4310 return (error);
4303 4311 }
4304 4312
4305 4313 static int
4306 4314 zfs_ioc_clear(zfs_cmd_t *zc)
4307 4315 {
4308 4316 spa_t *spa;
4309 4317 vdev_t *vd;
4310 4318 int error;
4311 4319
4312 4320 /*
4313 4321 * On zpool clear we also fix up missing slogs
4314 4322 */
4315 4323 mutex_enter(&spa_namespace_lock);
4316 4324 spa = spa_lookup(zc->zc_name);
4317 4325 if (spa == NULL) {
4318 4326 mutex_exit(&spa_namespace_lock);
4319 4327 return (SET_ERROR(EIO));
4320 4328 }
4321 4329 if (spa_get_log_state(spa) == SPA_LOG_MISSING) {
4322 4330 /* we need to let spa_open/spa_load clear the chains */
4323 4331 spa_set_log_state(spa, SPA_LOG_CLEAR);
4324 4332 }
4325 4333 spa->spa_last_open_failed = 0;
4326 4334 mutex_exit(&spa_namespace_lock);
4327 4335
4328 4336 if (zc->zc_cookie & ZPOOL_NO_REWIND) {
4329 4337 error = spa_open(zc->zc_name, &spa, FTAG);
4330 4338 } else {
4331 4339 nvlist_t *policy;
4332 4340 nvlist_t *config = NULL;
4333 4341
4334 4342 if (zc->zc_nvlist_src == NULL)
4335 4343 return (SET_ERROR(EINVAL));
4336 4344
4337 4345 if ((error = get_nvlist(zc->zc_nvlist_src,
4338 4346 zc->zc_nvlist_src_size, zc->zc_iflags, &policy)) == 0) {
4339 4347 error = spa_open_rewind(zc->zc_name, &spa, FTAG,
4340 4348 policy, &config);
4341 4349 if (config != NULL) {
4342 4350 int err;
4343 4351
4344 4352 if ((err = put_nvlist(zc, config)) != 0)
4345 4353 error = err;
4346 4354 nvlist_free(config);
4347 4355 }
4348 4356 nvlist_free(policy);
4349 4357 }
4350 4358 }
4351 4359
4352 4360 if (error != 0)
4353 4361 return (error);
4354 4362
4355 4363 spa_vdev_state_enter(spa, SCL_NONE);
4356 4364
4357 4365 if (zc->zc_guid == 0) {
4358 4366 vd = NULL;
4359 4367 } else {
4360 4368 vd = spa_lookup_by_guid(spa, zc->zc_guid, B_TRUE);
4361 4369 if (vd == NULL) {
4362 4370 (void) spa_vdev_state_exit(spa, NULL, ENODEV);
4363 4371 spa_close(spa, FTAG);
4364 4372 return (SET_ERROR(ENODEV));
4365 4373 }
4366 4374 }
4367 4375
4368 4376 vdev_clear(spa, vd);
4369 4377
4370 4378 (void) spa_vdev_state_exit(spa, NULL, 0);
4371 4379
4372 4380 /*
4373 4381 * Resume any suspended I/Os.
4374 4382 */
4375 4383 if (zio_resume(spa) != 0)
4376 4384 error = SET_ERROR(EIO);
4377 4385
4378 4386 spa_close(spa, FTAG);
4379 4387
4380 4388 return (error);
4381 4389 }
4382 4390
4383 4391 static int
4384 4392 zfs_ioc_pool_reopen(zfs_cmd_t *zc)
4385 4393 {
4386 4394 spa_t *spa;
4387 4395 int error;
4388 4396
4389 4397 error = spa_open(zc->zc_name, &spa, FTAG);
4390 4398 if (error != 0)
4391 4399 return (error);
4392 4400
4393 4401 spa_vdev_state_enter(spa, SCL_NONE);
4394 4402
4395 4403 /*
4396 4404 * If a resilver is already in progress then set the
4397 4405 * spa_scrub_reopen flag to B_TRUE so that we don't restart
4398 4406 * the scan as a side effect of the reopen. Otherwise, let
4399 4407 * vdev_open() decided if a resilver is required.
4400 4408 */
4401 4409 spa->spa_scrub_reopen = dsl_scan_resilvering(spa->spa_dsl_pool);
4402 4410 vdev_reopen(spa->spa_root_vdev);
4403 4411 spa->spa_scrub_reopen = B_FALSE;
4404 4412
4405 4413 (void) spa_vdev_state_exit(spa, NULL, 0);
4406 4414 spa_close(spa, FTAG);
4407 4415 return (0);
4408 4416 }
4409 4417 /*
4410 4418 * inputs:
4411 4419 * zc_name name of filesystem
4412 4420 * zc_value name of origin snapshot
4413 4421 *
4414 4422 * outputs:
4415 4423 * zc_string name of conflicting snapshot, if there is one
4416 4424 */
4417 4425 static int
4418 4426 zfs_ioc_promote(zfs_cmd_t *zc)
4419 4427 {
4420 4428 char *cp;
4421 4429
4422 4430 /*
4423 4431 * We don't need to unmount *all* the origin fs's snapshots, but
4424 4432 * it's easier.
4425 4433 */
4426 4434 cp = strchr(zc->zc_value, '@');
4427 4435 if (cp)
4428 4436 *cp = '\0';
4429 4437 (void) dmu_objset_find(zc->zc_value,
4430 4438 zfs_unmount_snap_cb, NULL, DS_FIND_SNAPSHOTS);
4431 4439 return (dsl_dataset_promote(zc->zc_name, zc->zc_string));
4432 4440 }
4433 4441
4434 4442 /*
4435 4443 * Retrieve a single {user|group}{used|quota}@... property.
4436 4444 *
4437 4445 * inputs:
4438 4446 * zc_name name of filesystem
4439 4447 * zc_objset_type zfs_userquota_prop_t
4440 4448 * zc_value domain name (eg. "S-1-234-567-89")
4441 4449 * zc_guid RID/UID/GID
4442 4450 *
4443 4451 * outputs:
4444 4452 * zc_cookie property value
4445 4453 */
4446 4454 static int
4447 4455 zfs_ioc_userspace_one(zfs_cmd_t *zc)
4448 4456 {
4449 4457 zfsvfs_t *zfsvfs;
4450 4458 int error;
4451 4459
4452 4460 if (zc->zc_objset_type >= ZFS_NUM_USERQUOTA_PROPS)
4453 4461 return (SET_ERROR(EINVAL));
4454 4462
4455 4463 error = zfsvfs_hold(zc->zc_name, FTAG, &zfsvfs, B_FALSE);
4456 4464 if (error != 0)
4457 4465 return (error);
4458 4466
4459 4467 error = zfs_userspace_one(zfsvfs,
4460 4468 zc->zc_objset_type, zc->zc_value, zc->zc_guid, &zc->zc_cookie);
4461 4469 zfsvfs_rele(zfsvfs, FTAG);
4462 4470
4463 4471 return (error);
4464 4472 }
4465 4473
4466 4474 /*
4467 4475 * inputs:
4468 4476 * zc_name name of filesystem
4469 4477 * zc_cookie zap cursor
4470 4478 * zc_objset_type zfs_userquota_prop_t
4471 4479 * zc_nvlist_dst[_size] buffer to fill (not really an nvlist)
4472 4480 *
4473 4481 * outputs:
4474 4482 * zc_nvlist_dst[_size] data buffer (array of zfs_useracct_t)
4475 4483 * zc_cookie zap cursor
4476 4484 */
4477 4485 static int
4478 4486 zfs_ioc_userspace_many(zfs_cmd_t *zc)
4479 4487 {
4480 4488 zfsvfs_t *zfsvfs;
4481 4489 int bufsize = zc->zc_nvlist_dst_size;
4482 4490
4483 4491 if (bufsize <= 0)
4484 4492 return (SET_ERROR(ENOMEM));
4485 4493
4486 4494 int error = zfsvfs_hold(zc->zc_name, FTAG, &zfsvfs, B_FALSE);
4487 4495 if (error != 0)
4488 4496 return (error);
4489 4497
4490 4498 void *buf = kmem_alloc(bufsize, KM_SLEEP);
4491 4499
4492 4500 error = zfs_userspace_many(zfsvfs, zc->zc_objset_type, &zc->zc_cookie,
4493 4501 buf, &zc->zc_nvlist_dst_size);
4494 4502
4495 4503 if (error == 0) {
4496 4504 error = xcopyout(buf,
4497 4505 (void *)(uintptr_t)zc->zc_nvlist_dst,
4498 4506 zc->zc_nvlist_dst_size);
4499 4507 }
4500 4508 kmem_free(buf, bufsize);
4501 4509 zfsvfs_rele(zfsvfs, FTAG);
4502 4510
4503 4511 return (error);
4504 4512 }
4505 4513
4506 4514 /*
4507 4515 * inputs:
4508 4516 * zc_name name of filesystem
4509 4517 *
4510 4518 * outputs:
4511 4519 * none
4512 4520 */
4513 4521 static int
4514 4522 zfs_ioc_userspace_upgrade(zfs_cmd_t *zc)
4515 4523 {
4516 4524 objset_t *os;
4517 4525 int error = 0;
4518 4526 zfsvfs_t *zfsvfs;
4519 4527
4520 4528 if (getzfsvfs(zc->zc_name, &zfsvfs) == 0) {
4521 4529 if (!dmu_objset_userused_enabled(zfsvfs->z_os)) {
4522 4530 /*
4523 4531 * If userused is not enabled, it may be because the
4524 4532 * objset needs to be closed & reopened (to grow the
4525 4533 * objset_phys_t). Suspend/resume the fs will do that.
4526 4534 */
4527 4535 error = zfs_suspend_fs(zfsvfs);
4528 4536 if (error == 0)
4529 4537 error = zfs_resume_fs(zfsvfs, zc->zc_name);
4530 4538 }
4531 4539 if (error == 0)
4532 4540 error = dmu_objset_userspace_upgrade(zfsvfs->z_os);
4533 4541 VFS_RELE(zfsvfs->z_vfs);
4534 4542 } else {
4535 4543 /* XXX kind of reading contents without owning */
4536 4544 error = dmu_objset_hold(zc->zc_name, FTAG, &os);
4537 4545 if (error != 0)
4538 4546 return (error);
4539 4547
4540 4548 error = dmu_objset_userspace_upgrade(os);
4541 4549 dmu_objset_rele(os, FTAG);
4542 4550 }
4543 4551
4544 4552 return (error);
4545 4553 }
4546 4554
4547 4555 /*
4548 4556 * We don't want to have a hard dependency
4549 4557 * against some special symbols in sharefs
4550 4558 * nfs, and smbsrv. Determine them if needed when
4551 4559 * the first file system is shared.
4552 4560 * Neither sharefs, nfs or smbsrv are unloadable modules.
4553 4561 */
4554 4562 int (*znfsexport_fs)(void *arg);
4555 4563 int (*zshare_fs)(enum sharefs_sys_op, share_t *, uint32_t);
4556 4564 int (*zsmbexport_fs)(void *arg, boolean_t add_share);
4557 4565
4558 4566 int zfs_nfsshare_inited;
4559 4567 int zfs_smbshare_inited;
4560 4568
4561 4569 ddi_modhandle_t nfs_mod;
4562 4570 ddi_modhandle_t sharefs_mod;
4563 4571 ddi_modhandle_t smbsrv_mod;
4564 4572 kmutex_t zfs_share_lock;
4565 4573
4566 4574 static int
4567 4575 zfs_init_sharefs()
4568 4576 {
4569 4577 int error;
4570 4578
4571 4579 ASSERT(MUTEX_HELD(&zfs_share_lock));
4572 4580 /* Both NFS and SMB shares also require sharetab support. */
4573 4581 if (sharefs_mod == NULL && ((sharefs_mod =
4574 4582 ddi_modopen("fs/sharefs",
4575 4583 KRTLD_MODE_FIRST, &error)) == NULL)) {
4576 4584 return (SET_ERROR(ENOSYS));
4577 4585 }
4578 4586 if (zshare_fs == NULL && ((zshare_fs =
4579 4587 (int (*)(enum sharefs_sys_op, share_t *, uint32_t))
4580 4588 ddi_modsym(sharefs_mod, "sharefs_impl", &error)) == NULL)) {
4581 4589 return (SET_ERROR(ENOSYS));
4582 4590 }
4583 4591 return (0);
4584 4592 }
4585 4593
4586 4594 static int
4587 4595 zfs_ioc_share(zfs_cmd_t *zc)
4588 4596 {
4589 4597 int error;
4590 4598 int opcode;
4591 4599
4592 4600 switch (zc->zc_share.z_sharetype) {
4593 4601 case ZFS_SHARE_NFS:
4594 4602 case ZFS_UNSHARE_NFS:
4595 4603 if (zfs_nfsshare_inited == 0) {
4596 4604 mutex_enter(&zfs_share_lock);
4597 4605 if (nfs_mod == NULL && ((nfs_mod = ddi_modopen("fs/nfs",
4598 4606 KRTLD_MODE_FIRST, &error)) == NULL)) {
4599 4607 mutex_exit(&zfs_share_lock);
4600 4608 return (SET_ERROR(ENOSYS));
4601 4609 }
4602 4610 if (znfsexport_fs == NULL &&
4603 4611 ((znfsexport_fs = (int (*)(void *))
4604 4612 ddi_modsym(nfs_mod,
4605 4613 "nfs_export", &error)) == NULL)) {
4606 4614 mutex_exit(&zfs_share_lock);
4607 4615 return (SET_ERROR(ENOSYS));
4608 4616 }
4609 4617 error = zfs_init_sharefs();
4610 4618 if (error != 0) {
4611 4619 mutex_exit(&zfs_share_lock);
4612 4620 return (SET_ERROR(ENOSYS));
4613 4621 }
4614 4622 zfs_nfsshare_inited = 1;
4615 4623 mutex_exit(&zfs_share_lock);
4616 4624 }
4617 4625 break;
4618 4626 case ZFS_SHARE_SMB:
4619 4627 case ZFS_UNSHARE_SMB:
4620 4628 if (zfs_smbshare_inited == 0) {
4621 4629 mutex_enter(&zfs_share_lock);
4622 4630 if (smbsrv_mod == NULL && ((smbsrv_mod =
4623 4631 ddi_modopen("drv/smbsrv",
4624 4632 KRTLD_MODE_FIRST, &error)) == NULL)) {
4625 4633 mutex_exit(&zfs_share_lock);
4626 4634 return (SET_ERROR(ENOSYS));
4627 4635 }
4628 4636 if (zsmbexport_fs == NULL && ((zsmbexport_fs =
4629 4637 (int (*)(void *, boolean_t))ddi_modsym(smbsrv_mod,
4630 4638 "smb_server_share", &error)) == NULL)) {
4631 4639 mutex_exit(&zfs_share_lock);
4632 4640 return (SET_ERROR(ENOSYS));
4633 4641 }
4634 4642 error = zfs_init_sharefs();
4635 4643 if (error != 0) {
4636 4644 mutex_exit(&zfs_share_lock);
4637 4645 return (SET_ERROR(ENOSYS));
4638 4646 }
4639 4647 zfs_smbshare_inited = 1;
4640 4648 mutex_exit(&zfs_share_lock);
4641 4649 }
4642 4650 break;
4643 4651 default:
4644 4652 return (SET_ERROR(EINVAL));
4645 4653 }
4646 4654
4647 4655 switch (zc->zc_share.z_sharetype) {
4648 4656 case ZFS_SHARE_NFS:
4649 4657 case ZFS_UNSHARE_NFS:
4650 4658 if (error =
4651 4659 znfsexport_fs((void *)
4652 4660 (uintptr_t)zc->zc_share.z_exportdata))
4653 4661 return (error);
4654 4662 break;
4655 4663 case ZFS_SHARE_SMB:
4656 4664 case ZFS_UNSHARE_SMB:
4657 4665 if (error = zsmbexport_fs((void *)
4658 4666 (uintptr_t)zc->zc_share.z_exportdata,
4659 4667 zc->zc_share.z_sharetype == ZFS_SHARE_SMB ?
4660 4668 B_TRUE: B_FALSE)) {
4661 4669 return (error);
4662 4670 }
4663 4671 break;
4664 4672 }
4665 4673
4666 4674 opcode = (zc->zc_share.z_sharetype == ZFS_SHARE_NFS ||
4667 4675 zc->zc_share.z_sharetype == ZFS_SHARE_SMB) ?
4668 4676 SHAREFS_ADD : SHAREFS_REMOVE;
4669 4677
4670 4678 /*
4671 4679 * Add or remove share from sharetab
4672 4680 */
4673 4681 error = zshare_fs(opcode,
4674 4682 (void *)(uintptr_t)zc->zc_share.z_sharedata,
4675 4683 zc->zc_share.z_sharemax);
4676 4684
4677 4685 return (error);
4678 4686
4679 4687 }
4680 4688
4681 4689 ace_t full_access[] = {
4682 4690 {(uid_t)-1, ACE_ALL_PERMS, ACE_EVERYONE, 0}
4683 4691 };
4684 4692
4685 4693 /*
4686 4694 * inputs:
4687 4695 * zc_name name of containing filesystem
4688 4696 * zc_obj object # beyond which we want next in-use object #
4689 4697 *
4690 4698 * outputs:
4691 4699 * zc_obj next in-use object #
4692 4700 */
4693 4701 static int
4694 4702 zfs_ioc_next_obj(zfs_cmd_t *zc)
4695 4703 {
4696 4704 objset_t *os = NULL;
4697 4705 int error;
4698 4706
4699 4707 error = dmu_objset_hold(zc->zc_name, FTAG, &os);
4700 4708 if (error != 0)
4701 4709 return (error);
4702 4710
4703 4711 error = dmu_object_next(os, &zc->zc_obj, B_FALSE,
4704 4712 os->os_dsl_dataset->ds_phys->ds_prev_snap_txg);
4705 4713
4706 4714 dmu_objset_rele(os, FTAG);
4707 4715 return (error);
4708 4716 }
4709 4717
4710 4718 /*
4711 4719 * inputs:
4712 4720 * zc_name name of filesystem
4713 4721 * zc_value prefix name for snapshot
4714 4722 * zc_cleanup_fd cleanup-on-exit file descriptor for calling process
4715 4723 *
4716 4724 * outputs:
4717 4725 * zc_value short name of new snapshot
4718 4726 */
4719 4727 static int
4720 4728 zfs_ioc_tmp_snapshot(zfs_cmd_t *zc)
4721 4729 {
4722 4730 char *snap_name;
4723 4731 char *hold_name;
4724 4732 int error;
4725 4733 minor_t minor;
4726 4734
4727 4735 error = zfs_onexit_fd_hold(zc->zc_cleanup_fd, &minor);
4728 4736 if (error != 0)
4729 4737 return (error);
4730 4738
4731 4739 snap_name = kmem_asprintf("%s-%016llx", zc->zc_value,
4732 4740 (u_longlong_t)ddi_get_lbolt64());
4733 4741 hold_name = kmem_asprintf("%%%s", zc->zc_value);
4734 4742
4735 4743 error = dsl_dataset_snapshot_tmp(zc->zc_name, snap_name, minor,
4736 4744 hold_name);
4737 4745 if (error == 0)
4738 4746 (void) strcpy(zc->zc_value, snap_name);
4739 4747 strfree(snap_name);
4740 4748 strfree(hold_name);
4741 4749 zfs_onexit_fd_rele(zc->zc_cleanup_fd);
4742 4750 return (error);
4743 4751 }
4744 4752
4745 4753 /*
4746 4754 * inputs:
4747 4755 * zc_name name of "to" snapshot
4748 4756 * zc_value name of "from" snapshot
4749 4757 * zc_cookie file descriptor to write diff data on
4750 4758 *
4751 4759 * outputs:
4752 4760 * dmu_diff_record_t's to the file descriptor
4753 4761 */
4754 4762 static int
4755 4763 zfs_ioc_diff(zfs_cmd_t *zc)
4756 4764 {
4757 4765 file_t *fp;
4758 4766 offset_t off;
4759 4767 int error;
4760 4768
4761 4769 fp = getf(zc->zc_cookie);
4762 4770 if (fp == NULL)
4763 4771 return (SET_ERROR(EBADF));
4764 4772
4765 4773 off = fp->f_offset;
4766 4774
4767 4775 error = dmu_diff(zc->zc_name, zc->zc_value, fp->f_vnode, &off);
4768 4776
4769 4777 if (VOP_SEEK(fp->f_vnode, fp->f_offset, &off, NULL) == 0)
4770 4778 fp->f_offset = off;
4771 4779 releasef(zc->zc_cookie);
4772 4780
4773 4781 return (error);
4774 4782 }
4775 4783
4776 4784 /*
4777 4785 * Remove all ACL files in shares dir
4778 4786 */
4779 4787 static int
4780 4788 zfs_smb_acl_purge(znode_t *dzp)
4781 4789 {
4782 4790 zap_cursor_t zc;
4783 4791 zap_attribute_t zap;
4784 4792 zfsvfs_t *zfsvfs = dzp->z_zfsvfs;
4785 4793 int error;
4786 4794
4787 4795 for (zap_cursor_init(&zc, zfsvfs->z_os, dzp->z_id);
4788 4796 (error = zap_cursor_retrieve(&zc, &zap)) == 0;
4789 4797 zap_cursor_advance(&zc)) {
4790 4798 if ((error = VOP_REMOVE(ZTOV(dzp), zap.za_name, kcred,
4791 4799 NULL, 0)) != 0)
4792 4800 break;
4793 4801 }
4794 4802 zap_cursor_fini(&zc);
4795 4803 return (error);
4796 4804 }
4797 4805
4798 4806 static int
4799 4807 zfs_ioc_smb_acl(zfs_cmd_t *zc)
4800 4808 {
4801 4809 vnode_t *vp;
4802 4810 znode_t *dzp;
4803 4811 vnode_t *resourcevp = NULL;
4804 4812 znode_t *sharedir;
4805 4813 zfsvfs_t *zfsvfs;
4806 4814 nvlist_t *nvlist;
4807 4815 char *src, *target;
4808 4816 vattr_t vattr;
4809 4817 vsecattr_t vsec;
4810 4818 int error = 0;
4811 4819
4812 4820 if ((error = lookupname(zc->zc_value, UIO_SYSSPACE,
4813 4821 NO_FOLLOW, NULL, &vp)) != 0)
4814 4822 return (error);
4815 4823
4816 4824 /* Now make sure mntpnt and dataset are ZFS */
4817 4825
4818 4826 if (vp->v_vfsp->vfs_fstype != zfsfstype ||
4819 4827 (strcmp((char *)refstr_value(vp->v_vfsp->vfs_resource),
4820 4828 zc->zc_name) != 0)) {
4821 4829 VN_RELE(vp);
4822 4830 return (SET_ERROR(EINVAL));
4823 4831 }
4824 4832
4825 4833 dzp = VTOZ(vp);
4826 4834 zfsvfs = dzp->z_zfsvfs;
4827 4835 ZFS_ENTER(zfsvfs);
4828 4836
4829 4837 /*
4830 4838 * Create share dir if its missing.
4831 4839 */
4832 4840 mutex_enter(&zfsvfs->z_lock);
4833 4841 if (zfsvfs->z_shares_dir == 0) {
4834 4842 dmu_tx_t *tx;
4835 4843
4836 4844 tx = dmu_tx_create(zfsvfs->z_os);
4837 4845 dmu_tx_hold_zap(tx, MASTER_NODE_OBJ, TRUE,
4838 4846 ZFS_SHARES_DIR);
4839 4847 dmu_tx_hold_zap(tx, DMU_NEW_OBJECT, FALSE, NULL);
4840 4848 error = dmu_tx_assign(tx, TXG_WAIT);
4841 4849 if (error != 0) {
4842 4850 dmu_tx_abort(tx);
4843 4851 } else {
4844 4852 error = zfs_create_share_dir(zfsvfs, tx);
4845 4853 dmu_tx_commit(tx);
4846 4854 }
4847 4855 if (error != 0) {
4848 4856 mutex_exit(&zfsvfs->z_lock);
4849 4857 VN_RELE(vp);
4850 4858 ZFS_EXIT(zfsvfs);
4851 4859 return (error);
4852 4860 }
4853 4861 }
4854 4862 mutex_exit(&zfsvfs->z_lock);
4855 4863
4856 4864 ASSERT(zfsvfs->z_shares_dir);
4857 4865 if ((error = zfs_zget(zfsvfs, zfsvfs->z_shares_dir, &sharedir)) != 0) {
4858 4866 VN_RELE(vp);
4859 4867 ZFS_EXIT(zfsvfs);
4860 4868 return (error);
4861 4869 }
4862 4870
4863 4871 switch (zc->zc_cookie) {
4864 4872 case ZFS_SMB_ACL_ADD:
4865 4873 vattr.va_mask = AT_MODE|AT_UID|AT_GID|AT_TYPE;
4866 4874 vattr.va_type = VREG;
4867 4875 vattr.va_mode = S_IFREG|0777;
4868 4876 vattr.va_uid = 0;
4869 4877 vattr.va_gid = 0;
4870 4878
4871 4879 vsec.vsa_mask = VSA_ACE;
4872 4880 vsec.vsa_aclentp = &full_access;
4873 4881 vsec.vsa_aclentsz = sizeof (full_access);
4874 4882 vsec.vsa_aclcnt = 1;
4875 4883
4876 4884 error = VOP_CREATE(ZTOV(sharedir), zc->zc_string,
4877 4885 &vattr, EXCL, 0, &resourcevp, kcred, 0, NULL, &vsec);
4878 4886 if (resourcevp)
4879 4887 VN_RELE(resourcevp);
4880 4888 break;
4881 4889
4882 4890 case ZFS_SMB_ACL_REMOVE:
4883 4891 error = VOP_REMOVE(ZTOV(sharedir), zc->zc_string, kcred,
4884 4892 NULL, 0);
4885 4893 break;
4886 4894
4887 4895 case ZFS_SMB_ACL_RENAME:
4888 4896 if ((error = get_nvlist(zc->zc_nvlist_src,
4889 4897 zc->zc_nvlist_src_size, zc->zc_iflags, &nvlist)) != 0) {
4890 4898 VN_RELE(vp);
4891 4899 ZFS_EXIT(zfsvfs);
4892 4900 return (error);
4893 4901 }
4894 4902 if (nvlist_lookup_string(nvlist, ZFS_SMB_ACL_SRC, &src) ||
4895 4903 nvlist_lookup_string(nvlist, ZFS_SMB_ACL_TARGET,
4896 4904 &target)) {
4897 4905 VN_RELE(vp);
4898 4906 VN_RELE(ZTOV(sharedir));
4899 4907 ZFS_EXIT(zfsvfs);
4900 4908 nvlist_free(nvlist);
4901 4909 return (error);
4902 4910 }
4903 4911 error = VOP_RENAME(ZTOV(sharedir), src, ZTOV(sharedir), target,
4904 4912 kcred, NULL, 0);
4905 4913 nvlist_free(nvlist);
4906 4914 break;
4907 4915
4908 4916 case ZFS_SMB_ACL_PURGE:
4909 4917 error = zfs_smb_acl_purge(sharedir);
4910 4918 break;
4911 4919
4912 4920 default:
4913 4921 error = SET_ERROR(EINVAL);
4914 4922 break;
4915 4923 }
4916 4924
4917 4925 VN_RELE(vp);
4918 4926 VN_RELE(ZTOV(sharedir));
4919 4927
4920 4928 ZFS_EXIT(zfsvfs);
4921 4929
4922 4930 return (error);
4923 4931 }
4924 4932
4925 4933 /*
4926 4934 * innvl: {
4927 4935 * "holds" -> { snapname -> holdname (string), ... }
4928 4936 * (optional) "cleanup_fd" -> fd (int32)
4929 4937 * }
4930 4938 *
4931 4939 * outnvl: {
4932 4940 * snapname -> error value (int32)
4933 4941 * ...
4934 4942 * }
4935 4943 */
4936 4944 /* ARGSUSED */
4937 4945 static int
4938 4946 zfs_ioc_hold(const char *pool, nvlist_t *args, nvlist_t *errlist)
4939 4947 {
4940 4948 nvlist_t *holds;
4941 4949 int cleanup_fd = -1;
4942 4950 int error;
4943 4951 minor_t minor = 0;
4944 4952
4945 4953 error = nvlist_lookup_nvlist(args, "holds", &holds);
4946 4954 if (error != 0)
4947 4955 return (SET_ERROR(EINVAL));
4948 4956
4949 4957 if (nvlist_lookup_int32(args, "cleanup_fd", &cleanup_fd) == 0) {
4950 4958 error = zfs_onexit_fd_hold(cleanup_fd, &minor);
4951 4959 if (error != 0)
4952 4960 return (error);
4953 4961 }
4954 4962
4955 4963 error = dsl_dataset_user_hold(holds, minor, errlist);
4956 4964 if (minor != 0)
4957 4965 zfs_onexit_fd_rele(cleanup_fd);
4958 4966 return (error);
4959 4967 }
4960 4968
4961 4969 /*
4962 4970 * innvl is not used.
4963 4971 *
4964 4972 * outnvl: {
4965 4973 * holdname -> time added (uint64 seconds since epoch)
4966 4974 * ...
4967 4975 * }
4968 4976 */
4969 4977 /* ARGSUSED */
4970 4978 static int
4971 4979 zfs_ioc_get_holds(const char *snapname, nvlist_t *args, nvlist_t *outnvl)
4972 4980 {
4973 4981 return (dsl_dataset_get_holds(snapname, outnvl));
4974 4982 }
4975 4983
4976 4984 /*
4977 4985 * innvl: {
4978 4986 * snapname -> { holdname, ... }
4979 4987 * ...
4980 4988 * }
4981 4989 *
↓ open down ↓ |
1438 lines elided |
↑ open up ↑ |
4982 4990 * outnvl: {
4983 4991 * snapname -> error value (int32)
4984 4992 * ...
4985 4993 * }
4986 4994 */
4987 4995 /* ARGSUSED */
4988 4996 static int
4989 4997 zfs_ioc_release(const char *pool, nvlist_t *holds, nvlist_t *errlist)
4990 4998 {
4991 4999 nvpair_t *pair;
5000 + int err;
4992 5001
4993 5002 /*
4994 5003 * The release may cause the snapshot to be destroyed; make sure it
4995 5004 * is not mounted.
4996 5005 */
4997 5006 for (pair = nvlist_next_nvpair(holds, NULL); pair != NULL;
4998 - pair = nvlist_next_nvpair(holds, pair))
4999 - zfs_unmount_snap(nvpair_name(pair));
5007 + pair = nvlist_next_nvpair(holds, pair)) {
5008 + err = zfs_unmount_snap(nvpair_name(pair));
5009 + if (err)
5010 + return (err);
5011 + }
5000 5012
5001 5013 return (dsl_dataset_user_release(holds, errlist));
5002 5014 }
5003 5015
5004 5016 /*
5005 5017 * inputs:
5006 5018 * zc_name name of new filesystem or snapshot
5007 5019 * zc_value full name of old snapshot
5008 5020 *
5009 5021 * outputs:
5010 5022 * zc_cookie space in bytes
5011 5023 * zc_objset_type compressed space in bytes
5012 5024 * zc_perm_action uncompressed space in bytes
5013 5025 */
5014 5026 static int
5015 5027 zfs_ioc_space_written(zfs_cmd_t *zc)
5016 5028 {
5017 5029 int error;
5018 5030 dsl_pool_t *dp;
5019 5031 dsl_dataset_t *new, *old;
5020 5032
5021 5033 error = dsl_pool_hold(zc->zc_name, FTAG, &dp);
5022 5034 if (error != 0)
5023 5035 return (error);
5024 5036 error = dsl_dataset_hold(dp, zc->zc_name, FTAG, &new);
5025 5037 if (error != 0) {
5026 5038 dsl_pool_rele(dp, FTAG);
5027 5039 return (error);
5028 5040 }
5029 5041 error = dsl_dataset_hold(dp, zc->zc_value, FTAG, &old);
5030 5042 if (error != 0) {
5031 5043 dsl_dataset_rele(new, FTAG);
5032 5044 dsl_pool_rele(dp, FTAG);
5033 5045 return (error);
5034 5046 }
5035 5047
5036 5048 error = dsl_dataset_space_written(old, new, &zc->zc_cookie,
5037 5049 &zc->zc_objset_type, &zc->zc_perm_action);
5038 5050 dsl_dataset_rele(old, FTAG);
5039 5051 dsl_dataset_rele(new, FTAG);
5040 5052 dsl_pool_rele(dp, FTAG);
5041 5053 return (error);
5042 5054 }
5043 5055
5044 5056 /*
5045 5057 * innvl: {
5046 5058 * "firstsnap" -> snapshot name
5047 5059 * }
5048 5060 *
5049 5061 * outnvl: {
5050 5062 * "used" -> space in bytes
5051 5063 * "compressed" -> compressed space in bytes
5052 5064 * "uncompressed" -> uncompressed space in bytes
5053 5065 * }
5054 5066 */
5055 5067 static int
5056 5068 zfs_ioc_space_snaps(const char *lastsnap, nvlist_t *innvl, nvlist_t *outnvl)
5057 5069 {
5058 5070 int error;
5059 5071 dsl_pool_t *dp;
5060 5072 dsl_dataset_t *new, *old;
5061 5073 char *firstsnap;
5062 5074 uint64_t used, comp, uncomp;
5063 5075
5064 5076 if (nvlist_lookup_string(innvl, "firstsnap", &firstsnap) != 0)
5065 5077 return (SET_ERROR(EINVAL));
5066 5078
5067 5079 error = dsl_pool_hold(lastsnap, FTAG, &dp);
5068 5080 if (error != 0)
5069 5081 return (error);
5070 5082
5071 5083 error = dsl_dataset_hold(dp, lastsnap, FTAG, &new);
5072 5084 if (error != 0) {
5073 5085 dsl_pool_rele(dp, FTAG);
5074 5086 return (error);
5075 5087 }
5076 5088 error = dsl_dataset_hold(dp, firstsnap, FTAG, &old);
5077 5089 if (error != 0) {
5078 5090 dsl_dataset_rele(new, FTAG);
5079 5091 dsl_pool_rele(dp, FTAG);
5080 5092 return (error);
5081 5093 }
5082 5094
5083 5095 error = dsl_dataset_space_wouldfree(old, new, &used, &comp, &uncomp);
5084 5096 dsl_dataset_rele(old, FTAG);
5085 5097 dsl_dataset_rele(new, FTAG);
5086 5098 dsl_pool_rele(dp, FTAG);
5087 5099 fnvlist_add_uint64(outnvl, "used", used);
5088 5100 fnvlist_add_uint64(outnvl, "compressed", comp);
5089 5101 fnvlist_add_uint64(outnvl, "uncompressed", uncomp);
5090 5102 return (error);
5091 5103 }
5092 5104
5093 5105 /*
5094 5106 * innvl: {
5095 5107 * "fd" -> file descriptor to write stream to (int32)
5096 5108 * (optional) "fromsnap" -> full snap name to send an incremental from
5097 5109 * }
5098 5110 *
5099 5111 * outnvl is unused
5100 5112 */
5101 5113 /* ARGSUSED */
5102 5114 static int
5103 5115 zfs_ioc_send_new(const char *snapname, nvlist_t *innvl, nvlist_t *outnvl)
5104 5116 {
5105 5117 int error;
5106 5118 offset_t off;
5107 5119 char *fromname = NULL;
5108 5120 int fd;
5109 5121
5110 5122 error = nvlist_lookup_int32(innvl, "fd", &fd);
5111 5123 if (error != 0)
5112 5124 return (SET_ERROR(EINVAL));
5113 5125
5114 5126 (void) nvlist_lookup_string(innvl, "fromsnap", &fromname);
5115 5127
5116 5128 file_t *fp = getf(fd);
5117 5129 if (fp == NULL)
5118 5130 return (SET_ERROR(EBADF));
5119 5131
5120 5132 off = fp->f_offset;
5121 5133 error = dmu_send(snapname, fromname, fd, fp->f_vnode, &off);
5122 5134
5123 5135 if (VOP_SEEK(fp->f_vnode, fp->f_offset, &off, NULL) == 0)
5124 5136 fp->f_offset = off;
5125 5137 releasef(fd);
5126 5138 return (error);
5127 5139 }
5128 5140
5129 5141 /*
5130 5142 * Determine approximately how large a zfs send stream will be -- the number
5131 5143 * of bytes that will be written to the fd supplied to zfs_ioc_send_new().
5132 5144 *
5133 5145 * innvl: {
5134 5146 * (optional) "fromsnap" -> full snap name to send an incremental from
5135 5147 * }
5136 5148 *
5137 5149 * outnvl: {
5138 5150 * "space" -> bytes of space (uint64)
5139 5151 * }
5140 5152 */
5141 5153 static int
5142 5154 zfs_ioc_send_space(const char *snapname, nvlist_t *innvl, nvlist_t *outnvl)
5143 5155 {
5144 5156 dsl_pool_t *dp;
5145 5157 dsl_dataset_t *fromsnap = NULL;
5146 5158 dsl_dataset_t *tosnap;
5147 5159 int error;
5148 5160 char *fromname;
5149 5161 uint64_t space;
5150 5162
5151 5163 error = dsl_pool_hold(snapname, FTAG, &dp);
5152 5164 if (error != 0)
5153 5165 return (error);
5154 5166
5155 5167 error = dsl_dataset_hold(dp, snapname, FTAG, &tosnap);
5156 5168 if (error != 0) {
5157 5169 dsl_pool_rele(dp, FTAG);
5158 5170 return (error);
5159 5171 }
5160 5172
5161 5173 error = nvlist_lookup_string(innvl, "fromsnap", &fromname);
5162 5174 if (error == 0) {
5163 5175 error = dsl_dataset_hold(dp, fromname, FTAG, &fromsnap);
5164 5176 if (error != 0) {
5165 5177 dsl_dataset_rele(tosnap, FTAG);
5166 5178 dsl_pool_rele(dp, FTAG);
5167 5179 return (error);
5168 5180 }
5169 5181 }
5170 5182
5171 5183 error = dmu_send_estimate(tosnap, fromsnap, &space);
5172 5184 fnvlist_add_uint64(outnvl, "space", space);
5173 5185
5174 5186 if (fromsnap != NULL)
5175 5187 dsl_dataset_rele(fromsnap, FTAG);
5176 5188 dsl_dataset_rele(tosnap, FTAG);
5177 5189 dsl_pool_rele(dp, FTAG);
5178 5190 return (error);
5179 5191 }
5180 5192
5181 5193
5182 5194 static zfs_ioc_vec_t zfs_ioc_vec[ZFS_IOC_LAST - ZFS_IOC_FIRST];
5183 5195
5184 5196 static void
5185 5197 zfs_ioctl_register_legacy(zfs_ioc_t ioc, zfs_ioc_legacy_func_t *func,
5186 5198 zfs_secpolicy_func_t *secpolicy, zfs_ioc_namecheck_t namecheck,
5187 5199 boolean_t log_history, zfs_ioc_poolcheck_t pool_check)
5188 5200 {
5189 5201 zfs_ioc_vec_t *vec = &zfs_ioc_vec[ioc - ZFS_IOC_FIRST];
5190 5202
5191 5203 ASSERT3U(ioc, >=, ZFS_IOC_FIRST);
5192 5204 ASSERT3U(ioc, <, ZFS_IOC_LAST);
5193 5205 ASSERT3P(vec->zvec_legacy_func, ==, NULL);
5194 5206 ASSERT3P(vec->zvec_func, ==, NULL);
5195 5207
5196 5208 vec->zvec_legacy_func = func;
5197 5209 vec->zvec_secpolicy = secpolicy;
5198 5210 vec->zvec_namecheck = namecheck;
5199 5211 vec->zvec_allow_log = log_history;
5200 5212 vec->zvec_pool_check = pool_check;
5201 5213 }
5202 5214
5203 5215 /*
5204 5216 * See the block comment at the beginning of this file for details on
5205 5217 * each argument to this function.
5206 5218 */
5207 5219 static void
5208 5220 zfs_ioctl_register(const char *name, zfs_ioc_t ioc, zfs_ioc_func_t *func,
5209 5221 zfs_secpolicy_func_t *secpolicy, zfs_ioc_namecheck_t namecheck,
5210 5222 zfs_ioc_poolcheck_t pool_check, boolean_t smush_outnvlist,
5211 5223 boolean_t allow_log)
5212 5224 {
5213 5225 zfs_ioc_vec_t *vec = &zfs_ioc_vec[ioc - ZFS_IOC_FIRST];
5214 5226
5215 5227 ASSERT3U(ioc, >=, ZFS_IOC_FIRST);
5216 5228 ASSERT3U(ioc, <, ZFS_IOC_LAST);
5217 5229 ASSERT3P(vec->zvec_legacy_func, ==, NULL);
5218 5230 ASSERT3P(vec->zvec_func, ==, NULL);
5219 5231
5220 5232 /* if we are logging, the name must be valid */
5221 5233 ASSERT(!allow_log || namecheck != NO_NAME);
5222 5234
5223 5235 vec->zvec_name = name;
5224 5236 vec->zvec_func = func;
5225 5237 vec->zvec_secpolicy = secpolicy;
5226 5238 vec->zvec_namecheck = namecheck;
5227 5239 vec->zvec_pool_check = pool_check;
5228 5240 vec->zvec_smush_outnvlist = smush_outnvlist;
5229 5241 vec->zvec_allow_log = allow_log;
5230 5242 }
5231 5243
5232 5244 static void
5233 5245 zfs_ioctl_register_pool(zfs_ioc_t ioc, zfs_ioc_legacy_func_t *func,
5234 5246 zfs_secpolicy_func_t *secpolicy, boolean_t log_history,
5235 5247 zfs_ioc_poolcheck_t pool_check)
5236 5248 {
5237 5249 zfs_ioctl_register_legacy(ioc, func, secpolicy,
5238 5250 POOL_NAME, log_history, pool_check);
5239 5251 }
5240 5252
5241 5253 static void
5242 5254 zfs_ioctl_register_dataset_nolog(zfs_ioc_t ioc, zfs_ioc_legacy_func_t *func,
5243 5255 zfs_secpolicy_func_t *secpolicy, zfs_ioc_poolcheck_t pool_check)
5244 5256 {
5245 5257 zfs_ioctl_register_legacy(ioc, func, secpolicy,
5246 5258 DATASET_NAME, B_FALSE, pool_check);
5247 5259 }
5248 5260
5249 5261 static void
5250 5262 zfs_ioctl_register_pool_modify(zfs_ioc_t ioc, zfs_ioc_legacy_func_t *func)
5251 5263 {
5252 5264 zfs_ioctl_register_legacy(ioc, func, zfs_secpolicy_config,
5253 5265 POOL_NAME, B_TRUE, POOL_CHECK_SUSPENDED | POOL_CHECK_READONLY);
5254 5266 }
5255 5267
5256 5268 static void
5257 5269 zfs_ioctl_register_pool_meta(zfs_ioc_t ioc, zfs_ioc_legacy_func_t *func,
5258 5270 zfs_secpolicy_func_t *secpolicy)
5259 5271 {
5260 5272 zfs_ioctl_register_legacy(ioc, func, secpolicy,
5261 5273 NO_NAME, B_FALSE, POOL_CHECK_NONE);
5262 5274 }
5263 5275
5264 5276 static void
5265 5277 zfs_ioctl_register_dataset_read_secpolicy(zfs_ioc_t ioc,
5266 5278 zfs_ioc_legacy_func_t *func, zfs_secpolicy_func_t *secpolicy)
5267 5279 {
5268 5280 zfs_ioctl_register_legacy(ioc, func, secpolicy,
5269 5281 DATASET_NAME, B_FALSE, POOL_CHECK_SUSPENDED);
5270 5282 }
5271 5283
5272 5284 static void
5273 5285 zfs_ioctl_register_dataset_read(zfs_ioc_t ioc, zfs_ioc_legacy_func_t *func)
5274 5286 {
5275 5287 zfs_ioctl_register_dataset_read_secpolicy(ioc, func,
5276 5288 zfs_secpolicy_read);
5277 5289 }
5278 5290
5279 5291 static void
5280 5292 zfs_ioctl_register_dataset_modify(zfs_ioc_t ioc, zfs_ioc_legacy_func_t *func,
5281 5293 zfs_secpolicy_func_t *secpolicy)
5282 5294 {
5283 5295 zfs_ioctl_register_legacy(ioc, func, secpolicy,
5284 5296 DATASET_NAME, B_TRUE, POOL_CHECK_SUSPENDED | POOL_CHECK_READONLY);
5285 5297 }
5286 5298
5287 5299 static void
5288 5300 zfs_ioctl_init(void)
5289 5301 {
5290 5302 zfs_ioctl_register("snapshot", ZFS_IOC_SNAPSHOT,
5291 5303 zfs_ioc_snapshot, zfs_secpolicy_snapshot, POOL_NAME,
5292 5304 POOL_CHECK_SUSPENDED | POOL_CHECK_READONLY, B_TRUE, B_TRUE);
5293 5305
5294 5306 zfs_ioctl_register("log_history", ZFS_IOC_LOG_HISTORY,
5295 5307 zfs_ioc_log_history, zfs_secpolicy_log_history, NO_NAME,
5296 5308 POOL_CHECK_SUSPENDED | POOL_CHECK_READONLY, B_FALSE, B_FALSE);
5297 5309
5298 5310 zfs_ioctl_register("space_snaps", ZFS_IOC_SPACE_SNAPS,
5299 5311 zfs_ioc_space_snaps, zfs_secpolicy_read, DATASET_NAME,
5300 5312 POOL_CHECK_SUSPENDED, B_FALSE, B_FALSE);
5301 5313
5302 5314 zfs_ioctl_register("send", ZFS_IOC_SEND_NEW,
5303 5315 zfs_ioc_send_new, zfs_secpolicy_send_new, DATASET_NAME,
5304 5316 POOL_CHECK_SUSPENDED, B_FALSE, B_FALSE);
5305 5317
5306 5318 zfs_ioctl_register("send_space", ZFS_IOC_SEND_SPACE,
5307 5319 zfs_ioc_send_space, zfs_secpolicy_read, DATASET_NAME,
5308 5320 POOL_CHECK_SUSPENDED, B_FALSE, B_FALSE);
5309 5321
5310 5322 zfs_ioctl_register("create", ZFS_IOC_CREATE,
5311 5323 zfs_ioc_create, zfs_secpolicy_create_clone, DATASET_NAME,
5312 5324 POOL_CHECK_SUSPENDED | POOL_CHECK_READONLY, B_TRUE, B_TRUE);
5313 5325
5314 5326 zfs_ioctl_register("clone", ZFS_IOC_CLONE,
5315 5327 zfs_ioc_clone, zfs_secpolicy_create_clone, DATASET_NAME,
5316 5328 POOL_CHECK_SUSPENDED | POOL_CHECK_READONLY, B_TRUE, B_TRUE);
5317 5329
5318 5330 zfs_ioctl_register("destroy_snaps", ZFS_IOC_DESTROY_SNAPS,
5319 5331 zfs_ioc_destroy_snaps, zfs_secpolicy_destroy_snaps, POOL_NAME,
5320 5332 POOL_CHECK_SUSPENDED | POOL_CHECK_READONLY, B_TRUE, B_TRUE);
5321 5333
5322 5334 zfs_ioctl_register("hold", ZFS_IOC_HOLD,
5323 5335 zfs_ioc_hold, zfs_secpolicy_hold, POOL_NAME,
5324 5336 POOL_CHECK_SUSPENDED | POOL_CHECK_READONLY, B_TRUE, B_TRUE);
5325 5337 zfs_ioctl_register("release", ZFS_IOC_RELEASE,
5326 5338 zfs_ioc_release, zfs_secpolicy_release, POOL_NAME,
5327 5339 POOL_CHECK_SUSPENDED | POOL_CHECK_READONLY, B_TRUE, B_TRUE);
5328 5340
5329 5341 zfs_ioctl_register("get_holds", ZFS_IOC_GET_HOLDS,
5330 5342 zfs_ioc_get_holds, zfs_secpolicy_read, DATASET_NAME,
5331 5343 POOL_CHECK_SUSPENDED, B_FALSE, B_FALSE);
5332 5344
5333 5345 /* IOCTLS that use the legacy function signature */
5334 5346
5335 5347 zfs_ioctl_register_legacy(ZFS_IOC_POOL_FREEZE, zfs_ioc_pool_freeze,
5336 5348 zfs_secpolicy_config, NO_NAME, B_FALSE, POOL_CHECK_READONLY);
5337 5349
5338 5350 zfs_ioctl_register_pool(ZFS_IOC_POOL_CREATE, zfs_ioc_pool_create,
5339 5351 zfs_secpolicy_config, B_TRUE, POOL_CHECK_NONE);
5340 5352 zfs_ioctl_register_pool_modify(ZFS_IOC_POOL_SCAN,
5341 5353 zfs_ioc_pool_scan);
5342 5354 zfs_ioctl_register_pool_modify(ZFS_IOC_POOL_UPGRADE,
5343 5355 zfs_ioc_pool_upgrade);
5344 5356 zfs_ioctl_register_pool_modify(ZFS_IOC_VDEV_ADD,
5345 5357 zfs_ioc_vdev_add);
5346 5358 zfs_ioctl_register_pool_modify(ZFS_IOC_VDEV_REMOVE,
5347 5359 zfs_ioc_vdev_remove);
5348 5360 zfs_ioctl_register_pool_modify(ZFS_IOC_VDEV_SET_STATE,
5349 5361 zfs_ioc_vdev_set_state);
5350 5362 zfs_ioctl_register_pool_modify(ZFS_IOC_VDEV_ATTACH,
5351 5363 zfs_ioc_vdev_attach);
5352 5364 zfs_ioctl_register_pool_modify(ZFS_IOC_VDEV_DETACH,
5353 5365 zfs_ioc_vdev_detach);
5354 5366 zfs_ioctl_register_pool_modify(ZFS_IOC_VDEV_SETPATH,
5355 5367 zfs_ioc_vdev_setpath);
5356 5368 zfs_ioctl_register_pool_modify(ZFS_IOC_VDEV_SETFRU,
5357 5369 zfs_ioc_vdev_setfru);
5358 5370 zfs_ioctl_register_pool_modify(ZFS_IOC_POOL_SET_PROPS,
5359 5371 zfs_ioc_pool_set_props);
5360 5372 zfs_ioctl_register_pool_modify(ZFS_IOC_VDEV_SPLIT,
5361 5373 zfs_ioc_vdev_split);
5362 5374 zfs_ioctl_register_pool_modify(ZFS_IOC_POOL_REGUID,
5363 5375 zfs_ioc_pool_reguid);
5364 5376
5365 5377 zfs_ioctl_register_pool_meta(ZFS_IOC_POOL_CONFIGS,
5366 5378 zfs_ioc_pool_configs, zfs_secpolicy_none);
5367 5379 zfs_ioctl_register_pool_meta(ZFS_IOC_POOL_TRYIMPORT,
5368 5380 zfs_ioc_pool_tryimport, zfs_secpolicy_config);
5369 5381 zfs_ioctl_register_pool_meta(ZFS_IOC_INJECT_FAULT,
5370 5382 zfs_ioc_inject_fault, zfs_secpolicy_inject);
5371 5383 zfs_ioctl_register_pool_meta(ZFS_IOC_CLEAR_FAULT,
5372 5384 zfs_ioc_clear_fault, zfs_secpolicy_inject);
5373 5385 zfs_ioctl_register_pool_meta(ZFS_IOC_INJECT_LIST_NEXT,
5374 5386 zfs_ioc_inject_list_next, zfs_secpolicy_inject);
5375 5387
5376 5388 /*
5377 5389 * pool destroy, and export don't log the history as part of
5378 5390 * zfsdev_ioctl, but rather zfs_ioc_pool_export
5379 5391 * does the logging of those commands.
5380 5392 */
5381 5393 zfs_ioctl_register_pool(ZFS_IOC_POOL_DESTROY, zfs_ioc_pool_destroy,
5382 5394 zfs_secpolicy_config, B_FALSE, POOL_CHECK_NONE);
5383 5395 zfs_ioctl_register_pool(ZFS_IOC_POOL_EXPORT, zfs_ioc_pool_export,
5384 5396 zfs_secpolicy_config, B_FALSE, POOL_CHECK_NONE);
5385 5397
5386 5398 zfs_ioctl_register_pool(ZFS_IOC_POOL_STATS, zfs_ioc_pool_stats,
5387 5399 zfs_secpolicy_read, B_FALSE, POOL_CHECK_NONE);
5388 5400 zfs_ioctl_register_pool(ZFS_IOC_POOL_GET_PROPS, zfs_ioc_pool_get_props,
5389 5401 zfs_secpolicy_read, B_FALSE, POOL_CHECK_NONE);
5390 5402
5391 5403 zfs_ioctl_register_pool(ZFS_IOC_ERROR_LOG, zfs_ioc_error_log,
5392 5404 zfs_secpolicy_inject, B_FALSE, POOL_CHECK_SUSPENDED);
5393 5405 zfs_ioctl_register_pool(ZFS_IOC_DSOBJ_TO_DSNAME,
5394 5406 zfs_ioc_dsobj_to_dsname,
5395 5407 zfs_secpolicy_diff, B_FALSE, POOL_CHECK_SUSPENDED);
5396 5408 zfs_ioctl_register_pool(ZFS_IOC_POOL_GET_HISTORY,
5397 5409 zfs_ioc_pool_get_history,
5398 5410 zfs_secpolicy_config, B_FALSE, POOL_CHECK_SUSPENDED);
5399 5411
5400 5412 zfs_ioctl_register_pool(ZFS_IOC_POOL_IMPORT, zfs_ioc_pool_import,
5401 5413 zfs_secpolicy_config, B_TRUE, POOL_CHECK_NONE);
5402 5414
5403 5415 zfs_ioctl_register_pool(ZFS_IOC_CLEAR, zfs_ioc_clear,
5404 5416 zfs_secpolicy_config, B_TRUE, POOL_CHECK_SUSPENDED);
5405 5417 zfs_ioctl_register_pool(ZFS_IOC_POOL_REOPEN, zfs_ioc_pool_reopen,
5406 5418 zfs_secpolicy_config, B_TRUE, POOL_CHECK_SUSPENDED);
5407 5419
5408 5420 zfs_ioctl_register_dataset_read(ZFS_IOC_SPACE_WRITTEN,
5409 5421 zfs_ioc_space_written);
5410 5422 zfs_ioctl_register_dataset_read(ZFS_IOC_OBJSET_RECVD_PROPS,
5411 5423 zfs_ioc_objset_recvd_props);
5412 5424 zfs_ioctl_register_dataset_read(ZFS_IOC_NEXT_OBJ,
5413 5425 zfs_ioc_next_obj);
5414 5426 zfs_ioctl_register_dataset_read(ZFS_IOC_GET_FSACL,
5415 5427 zfs_ioc_get_fsacl);
5416 5428 zfs_ioctl_register_dataset_read(ZFS_IOC_OBJSET_STATS,
5417 5429 zfs_ioc_objset_stats);
5418 5430 zfs_ioctl_register_dataset_read(ZFS_IOC_OBJSET_ZPLPROPS,
5419 5431 zfs_ioc_objset_zplprops);
5420 5432 zfs_ioctl_register_dataset_read(ZFS_IOC_DATASET_LIST_NEXT,
5421 5433 zfs_ioc_dataset_list_next);
5422 5434 zfs_ioctl_register_dataset_read(ZFS_IOC_SNAPSHOT_LIST_NEXT,
5423 5435 zfs_ioc_snapshot_list_next);
5424 5436 zfs_ioctl_register_dataset_read(ZFS_IOC_SEND_PROGRESS,
5425 5437 zfs_ioc_send_progress);
5426 5438
5427 5439 zfs_ioctl_register_dataset_read_secpolicy(ZFS_IOC_DIFF,
5428 5440 zfs_ioc_diff, zfs_secpolicy_diff);
5429 5441 zfs_ioctl_register_dataset_read_secpolicy(ZFS_IOC_OBJ_TO_STATS,
5430 5442 zfs_ioc_obj_to_stats, zfs_secpolicy_diff);
5431 5443 zfs_ioctl_register_dataset_read_secpolicy(ZFS_IOC_OBJ_TO_PATH,
5432 5444 zfs_ioc_obj_to_path, zfs_secpolicy_diff);
5433 5445 zfs_ioctl_register_dataset_read_secpolicy(ZFS_IOC_USERSPACE_ONE,
5434 5446 zfs_ioc_userspace_one, zfs_secpolicy_userspace_one);
5435 5447 zfs_ioctl_register_dataset_read_secpolicy(ZFS_IOC_USERSPACE_MANY,
5436 5448 zfs_ioc_userspace_many, zfs_secpolicy_userspace_many);
5437 5449 zfs_ioctl_register_dataset_read_secpolicy(ZFS_IOC_SEND,
5438 5450 zfs_ioc_send, zfs_secpolicy_send);
5439 5451
5440 5452 zfs_ioctl_register_dataset_modify(ZFS_IOC_SET_PROP, zfs_ioc_set_prop,
5441 5453 zfs_secpolicy_none);
5442 5454 zfs_ioctl_register_dataset_modify(ZFS_IOC_DESTROY, zfs_ioc_destroy,
5443 5455 zfs_secpolicy_destroy);
5444 5456 zfs_ioctl_register_dataset_modify(ZFS_IOC_ROLLBACK, zfs_ioc_rollback,
5445 5457 zfs_secpolicy_rollback);
5446 5458 zfs_ioctl_register_dataset_modify(ZFS_IOC_RENAME, zfs_ioc_rename,
5447 5459 zfs_secpolicy_rename);
5448 5460 zfs_ioctl_register_dataset_modify(ZFS_IOC_RECV, zfs_ioc_recv,
5449 5461 zfs_secpolicy_recv);
5450 5462 zfs_ioctl_register_dataset_modify(ZFS_IOC_PROMOTE, zfs_ioc_promote,
5451 5463 zfs_secpolicy_promote);
5452 5464 zfs_ioctl_register_dataset_modify(ZFS_IOC_INHERIT_PROP,
5453 5465 zfs_ioc_inherit_prop, zfs_secpolicy_inherit_prop);
5454 5466 zfs_ioctl_register_dataset_modify(ZFS_IOC_SET_FSACL, zfs_ioc_set_fsacl,
5455 5467 zfs_secpolicy_set_fsacl);
5456 5468
5457 5469 zfs_ioctl_register_dataset_nolog(ZFS_IOC_SHARE, zfs_ioc_share,
5458 5470 zfs_secpolicy_share, POOL_CHECK_NONE);
5459 5471 zfs_ioctl_register_dataset_nolog(ZFS_IOC_SMB_ACL, zfs_ioc_smb_acl,
5460 5472 zfs_secpolicy_smb_acl, POOL_CHECK_NONE);
5461 5473 zfs_ioctl_register_dataset_nolog(ZFS_IOC_USERSPACE_UPGRADE,
5462 5474 zfs_ioc_userspace_upgrade, zfs_secpolicy_userspace_upgrade,
5463 5475 POOL_CHECK_SUSPENDED | POOL_CHECK_READONLY);
5464 5476 zfs_ioctl_register_dataset_nolog(ZFS_IOC_TMP_SNAPSHOT,
5465 5477 zfs_ioc_tmp_snapshot, zfs_secpolicy_tmp_snapshot,
5466 5478 POOL_CHECK_SUSPENDED | POOL_CHECK_READONLY);
5467 5479 }
5468 5480
5469 5481 int
5470 5482 pool_status_check(const char *name, zfs_ioc_namecheck_t type,
5471 5483 zfs_ioc_poolcheck_t check)
5472 5484 {
5473 5485 spa_t *spa;
5474 5486 int error;
5475 5487
5476 5488 ASSERT(type == POOL_NAME || type == DATASET_NAME);
5477 5489
5478 5490 if (check & POOL_CHECK_NONE)
5479 5491 return (0);
5480 5492
5481 5493 error = spa_open(name, &spa, FTAG);
5482 5494 if (error == 0) {
5483 5495 if ((check & POOL_CHECK_SUSPENDED) && spa_suspended(spa))
5484 5496 error = SET_ERROR(EAGAIN);
5485 5497 else if ((check & POOL_CHECK_READONLY) && !spa_writeable(spa))
5486 5498 error = SET_ERROR(EROFS);
5487 5499 spa_close(spa, FTAG);
5488 5500 }
5489 5501 return (error);
5490 5502 }
5491 5503
5492 5504 /*
5493 5505 * Find a free minor number.
5494 5506 */
5495 5507 minor_t
5496 5508 zfsdev_minor_alloc(void)
5497 5509 {
5498 5510 static minor_t last_minor;
5499 5511 minor_t m;
5500 5512
5501 5513 ASSERT(MUTEX_HELD(&zfsdev_state_lock));
5502 5514
5503 5515 for (m = last_minor + 1; m != last_minor; m++) {
5504 5516 if (m > ZFSDEV_MAX_MINOR)
5505 5517 m = 1;
5506 5518 if (ddi_get_soft_state(zfsdev_state, m) == NULL) {
5507 5519 last_minor = m;
5508 5520 return (m);
5509 5521 }
5510 5522 }
5511 5523
5512 5524 return (0);
5513 5525 }
5514 5526
5515 5527 static int
5516 5528 zfs_ctldev_init(dev_t *devp)
5517 5529 {
5518 5530 minor_t minor;
5519 5531 zfs_soft_state_t *zs;
5520 5532
5521 5533 ASSERT(MUTEX_HELD(&zfsdev_state_lock));
5522 5534 ASSERT(getminor(*devp) == 0);
5523 5535
5524 5536 minor = zfsdev_minor_alloc();
5525 5537 if (minor == 0)
5526 5538 return (SET_ERROR(ENXIO));
5527 5539
5528 5540 if (ddi_soft_state_zalloc(zfsdev_state, minor) != DDI_SUCCESS)
5529 5541 return (SET_ERROR(EAGAIN));
5530 5542
5531 5543 *devp = makedevice(getemajor(*devp), minor);
5532 5544
5533 5545 zs = ddi_get_soft_state(zfsdev_state, minor);
5534 5546 zs->zss_type = ZSST_CTLDEV;
5535 5547 zfs_onexit_init((zfs_onexit_t **)&zs->zss_data);
5536 5548
5537 5549 return (0);
5538 5550 }
5539 5551
5540 5552 static void
5541 5553 zfs_ctldev_destroy(zfs_onexit_t *zo, minor_t minor)
5542 5554 {
5543 5555 ASSERT(MUTEX_HELD(&zfsdev_state_lock));
5544 5556
5545 5557 zfs_onexit_destroy(zo);
5546 5558 ddi_soft_state_free(zfsdev_state, minor);
5547 5559 }
5548 5560
5549 5561 void *
5550 5562 zfsdev_get_soft_state(minor_t minor, enum zfs_soft_state_type which)
5551 5563 {
5552 5564 zfs_soft_state_t *zp;
5553 5565
5554 5566 zp = ddi_get_soft_state(zfsdev_state, minor);
5555 5567 if (zp == NULL || zp->zss_type != which)
5556 5568 return (NULL);
5557 5569
5558 5570 return (zp->zss_data);
5559 5571 }
5560 5572
5561 5573 static int
5562 5574 zfsdev_open(dev_t *devp, int flag, int otyp, cred_t *cr)
5563 5575 {
5564 5576 int error = 0;
5565 5577
5566 5578 if (getminor(*devp) != 0)
5567 5579 return (zvol_open(devp, flag, otyp, cr));
5568 5580
5569 5581 /* This is the control device. Allocate a new minor if requested. */
5570 5582 if (flag & FEXCL) {
5571 5583 mutex_enter(&zfsdev_state_lock);
5572 5584 error = zfs_ctldev_init(devp);
5573 5585 mutex_exit(&zfsdev_state_lock);
5574 5586 }
5575 5587
5576 5588 return (error);
5577 5589 }
5578 5590
5579 5591 static int
5580 5592 zfsdev_close(dev_t dev, int flag, int otyp, cred_t *cr)
5581 5593 {
5582 5594 zfs_onexit_t *zo;
5583 5595 minor_t minor = getminor(dev);
5584 5596
5585 5597 if (minor == 0)
5586 5598 return (0);
5587 5599
5588 5600 mutex_enter(&zfsdev_state_lock);
5589 5601 zo = zfsdev_get_soft_state(minor, ZSST_CTLDEV);
5590 5602 if (zo == NULL) {
5591 5603 mutex_exit(&zfsdev_state_lock);
5592 5604 return (zvol_close(dev, flag, otyp, cr));
5593 5605 }
5594 5606 zfs_ctldev_destroy(zo, minor);
5595 5607 mutex_exit(&zfsdev_state_lock);
5596 5608
5597 5609 return (0);
5598 5610 }
5599 5611
5600 5612 static int
5601 5613 zfsdev_ioctl(dev_t dev, int cmd, intptr_t arg, int flag, cred_t *cr, int *rvalp)
5602 5614 {
5603 5615 zfs_cmd_t *zc;
5604 5616 uint_t vecnum;
5605 5617 int error, rc, len;
5606 5618 minor_t minor = getminor(dev);
5607 5619 const zfs_ioc_vec_t *vec;
5608 5620 char *saved_poolname = NULL;
5609 5621 nvlist_t *innvl = NULL;
5610 5622
5611 5623 if (minor != 0 &&
5612 5624 zfsdev_get_soft_state(minor, ZSST_CTLDEV) == NULL)
5613 5625 return (zvol_ioctl(dev, cmd, arg, flag, cr, rvalp));
5614 5626
5615 5627 vecnum = cmd - ZFS_IOC_FIRST;
5616 5628 ASSERT3U(getmajor(dev), ==, ddi_driver_major(zfs_dip));
5617 5629
5618 5630 if (vecnum >= sizeof (zfs_ioc_vec) / sizeof (zfs_ioc_vec[0]))
5619 5631 return (SET_ERROR(EINVAL));
5620 5632 vec = &zfs_ioc_vec[vecnum];
5621 5633
5622 5634 zc = kmem_zalloc(sizeof (zfs_cmd_t), KM_SLEEP);
5623 5635
5624 5636 error = ddi_copyin((void *)arg, zc, sizeof (zfs_cmd_t), flag);
5625 5637 if (error != 0) {
5626 5638 error = SET_ERROR(EFAULT);
5627 5639 goto out;
5628 5640 }
5629 5641
5630 5642 zc->zc_iflags = flag & FKIOCTL;
5631 5643 if (zc->zc_nvlist_src_size != 0) {
5632 5644 error = get_nvlist(zc->zc_nvlist_src, zc->zc_nvlist_src_size,
5633 5645 zc->zc_iflags, &innvl);
5634 5646 if (error != 0)
5635 5647 goto out;
5636 5648 }
5637 5649
5638 5650 /*
5639 5651 * Ensure that all pool/dataset names are valid before we pass down to
5640 5652 * the lower layers.
5641 5653 */
5642 5654 zc->zc_name[sizeof (zc->zc_name) - 1] = '\0';
5643 5655 switch (vec->zvec_namecheck) {
5644 5656 case POOL_NAME:
5645 5657 if (pool_namecheck(zc->zc_name, NULL, NULL) != 0)
5646 5658 error = SET_ERROR(EINVAL);
5647 5659 else
5648 5660 error = pool_status_check(zc->zc_name,
5649 5661 vec->zvec_namecheck, vec->zvec_pool_check);
5650 5662 break;
5651 5663
5652 5664 case DATASET_NAME:
5653 5665 if (dataset_namecheck(zc->zc_name, NULL, NULL) != 0)
5654 5666 error = SET_ERROR(EINVAL);
5655 5667 else
5656 5668 error = pool_status_check(zc->zc_name,
5657 5669 vec->zvec_namecheck, vec->zvec_pool_check);
5658 5670 break;
5659 5671
5660 5672 case NO_NAME:
5661 5673 break;
5662 5674 }
5663 5675
5664 5676
5665 5677 if (error == 0 && !(flag & FKIOCTL))
5666 5678 error = vec->zvec_secpolicy(zc, innvl, cr);
5667 5679
5668 5680 if (error != 0)
5669 5681 goto out;
5670 5682
5671 5683 /* legacy ioctls can modify zc_name */
5672 5684 len = strcspn(zc->zc_name, "/@") + 1;
5673 5685 saved_poolname = kmem_alloc(len, KM_SLEEP);
5674 5686 (void) strlcpy(saved_poolname, zc->zc_name, len);
5675 5687
5676 5688 if (vec->zvec_func != NULL) {
5677 5689 nvlist_t *outnvl;
5678 5690 int puterror = 0;
5679 5691 spa_t *spa;
5680 5692 nvlist_t *lognv = NULL;
5681 5693
5682 5694 ASSERT(vec->zvec_legacy_func == NULL);
5683 5695
5684 5696 /*
5685 5697 * Add the innvl to the lognv before calling the func,
5686 5698 * in case the func changes the innvl.
5687 5699 */
5688 5700 if (vec->zvec_allow_log) {
5689 5701 lognv = fnvlist_alloc();
5690 5702 fnvlist_add_string(lognv, ZPOOL_HIST_IOCTL,
5691 5703 vec->zvec_name);
5692 5704 if (!nvlist_empty(innvl)) {
5693 5705 fnvlist_add_nvlist(lognv, ZPOOL_HIST_INPUT_NVL,
5694 5706 innvl);
5695 5707 }
5696 5708 }
5697 5709
5698 5710 outnvl = fnvlist_alloc();
5699 5711 error = vec->zvec_func(zc->zc_name, innvl, outnvl);
5700 5712
5701 5713 if (error == 0 && vec->zvec_allow_log &&
5702 5714 spa_open(zc->zc_name, &spa, FTAG) == 0) {
5703 5715 if (!nvlist_empty(outnvl)) {
5704 5716 fnvlist_add_nvlist(lognv, ZPOOL_HIST_OUTPUT_NVL,
5705 5717 outnvl);
5706 5718 }
5707 5719 (void) spa_history_log_nvl(spa, lognv);
5708 5720 spa_close(spa, FTAG);
5709 5721 }
5710 5722 fnvlist_free(lognv);
5711 5723
5712 5724 if (!nvlist_empty(outnvl) || zc->zc_nvlist_dst_size != 0) {
5713 5725 int smusherror = 0;
5714 5726 if (vec->zvec_smush_outnvlist) {
5715 5727 smusherror = nvlist_smush(outnvl,
5716 5728 zc->zc_nvlist_dst_size);
5717 5729 }
5718 5730 if (smusherror == 0)
5719 5731 puterror = put_nvlist(zc, outnvl);
5720 5732 }
5721 5733
5722 5734 if (puterror != 0)
5723 5735 error = puterror;
5724 5736
5725 5737 nvlist_free(outnvl);
5726 5738 } else {
5727 5739 error = vec->zvec_legacy_func(zc);
5728 5740 }
5729 5741
5730 5742 out:
5731 5743 nvlist_free(innvl);
5732 5744 rc = ddi_copyout(zc, (void *)arg, sizeof (zfs_cmd_t), flag);
5733 5745 if (error == 0 && rc != 0)
5734 5746 error = SET_ERROR(EFAULT);
5735 5747 if (error == 0 && vec->zvec_allow_log) {
5736 5748 char *s = tsd_get(zfs_allow_log_key);
5737 5749 if (s != NULL)
5738 5750 strfree(s);
5739 5751 (void) tsd_set(zfs_allow_log_key, saved_poolname);
5740 5752 } else {
5741 5753 if (saved_poolname != NULL)
5742 5754 strfree(saved_poolname);
5743 5755 }
5744 5756
5745 5757 kmem_free(zc, sizeof (zfs_cmd_t));
5746 5758 return (error);
5747 5759 }
5748 5760
5749 5761 static int
5750 5762 zfs_attach(dev_info_t *dip, ddi_attach_cmd_t cmd)
5751 5763 {
5752 5764 if (cmd != DDI_ATTACH)
5753 5765 return (DDI_FAILURE);
5754 5766
5755 5767 if (ddi_create_minor_node(dip, "zfs", S_IFCHR, 0,
5756 5768 DDI_PSEUDO, 0) == DDI_FAILURE)
5757 5769 return (DDI_FAILURE);
5758 5770
5759 5771 zfs_dip = dip;
5760 5772
5761 5773 ddi_report_dev(dip);
5762 5774
5763 5775 return (DDI_SUCCESS);
5764 5776 }
5765 5777
5766 5778 static int
5767 5779 zfs_detach(dev_info_t *dip, ddi_detach_cmd_t cmd)
5768 5780 {
5769 5781 if (spa_busy() || zfs_busy() || zvol_busy())
5770 5782 return (DDI_FAILURE);
5771 5783
5772 5784 if (cmd != DDI_DETACH)
5773 5785 return (DDI_FAILURE);
5774 5786
5775 5787 zfs_dip = NULL;
5776 5788
5777 5789 ddi_prop_remove_all(dip);
5778 5790 ddi_remove_minor_node(dip, NULL);
5779 5791
5780 5792 return (DDI_SUCCESS);
5781 5793 }
5782 5794
5783 5795 /*ARGSUSED*/
5784 5796 static int
5785 5797 zfs_info(dev_info_t *dip, ddi_info_cmd_t infocmd, void *arg, void **result)
5786 5798 {
5787 5799 switch (infocmd) {
5788 5800 case DDI_INFO_DEVT2DEVINFO:
5789 5801 *result = zfs_dip;
5790 5802 return (DDI_SUCCESS);
5791 5803
5792 5804 case DDI_INFO_DEVT2INSTANCE:
5793 5805 *result = (void *)0;
5794 5806 return (DDI_SUCCESS);
5795 5807 }
5796 5808
5797 5809 return (DDI_FAILURE);
5798 5810 }
5799 5811
5800 5812 /*
5801 5813 * OK, so this is a little weird.
5802 5814 *
5803 5815 * /dev/zfs is the control node, i.e. minor 0.
5804 5816 * /dev/zvol/[r]dsk/pool/dataset are the zvols, minor > 0.
5805 5817 *
5806 5818 * /dev/zfs has basically nothing to do except serve up ioctls,
5807 5819 * so most of the standard driver entry points are in zvol.c.
5808 5820 */
5809 5821 static struct cb_ops zfs_cb_ops = {
5810 5822 zfsdev_open, /* open */
5811 5823 zfsdev_close, /* close */
5812 5824 zvol_strategy, /* strategy */
5813 5825 nodev, /* print */
5814 5826 zvol_dump, /* dump */
5815 5827 zvol_read, /* read */
5816 5828 zvol_write, /* write */
5817 5829 zfsdev_ioctl, /* ioctl */
5818 5830 nodev, /* devmap */
5819 5831 nodev, /* mmap */
5820 5832 nodev, /* segmap */
5821 5833 nochpoll, /* poll */
5822 5834 ddi_prop_op, /* prop_op */
5823 5835 NULL, /* streamtab */
5824 5836 D_NEW | D_MP | D_64BIT, /* Driver compatibility flag */
5825 5837 CB_REV, /* version */
5826 5838 nodev, /* async read */
5827 5839 nodev, /* async write */
5828 5840 };
5829 5841
5830 5842 static struct dev_ops zfs_dev_ops = {
5831 5843 DEVO_REV, /* version */
5832 5844 0, /* refcnt */
5833 5845 zfs_info, /* info */
5834 5846 nulldev, /* identify */
5835 5847 nulldev, /* probe */
5836 5848 zfs_attach, /* attach */
5837 5849 zfs_detach, /* detach */
5838 5850 nodev, /* reset */
5839 5851 &zfs_cb_ops, /* driver operations */
5840 5852 NULL, /* no bus operations */
5841 5853 NULL, /* power */
5842 5854 ddi_quiesce_not_needed, /* quiesce */
5843 5855 };
5844 5856
5845 5857 static struct modldrv zfs_modldrv = {
5846 5858 &mod_driverops,
5847 5859 "ZFS storage pool",
5848 5860 &zfs_dev_ops
5849 5861 };
5850 5862
5851 5863 static struct modlinkage modlinkage = {
5852 5864 MODREV_1,
5853 5865 (void *)&zfs_modlfs,
5854 5866 (void *)&zfs_modldrv,
5855 5867 NULL
5856 5868 };
5857 5869
5858 5870 static void
5859 5871 zfs_allow_log_destroy(void *arg)
5860 5872 {
5861 5873 char *poolname = arg;
5862 5874 strfree(poolname);
5863 5875 }
5864 5876
5865 5877 int
5866 5878 _init(void)
5867 5879 {
5868 5880 int error;
5869 5881
5870 5882 spa_init(FREAD | FWRITE);
5871 5883 zfs_init();
5872 5884 zvol_init();
5873 5885 zfs_ioctl_init();
5874 5886
5875 5887 if ((error = mod_install(&modlinkage)) != 0) {
5876 5888 zvol_fini();
5877 5889 zfs_fini();
5878 5890 spa_fini();
5879 5891 return (error);
5880 5892 }
5881 5893
5882 5894 tsd_create(&zfs_fsyncer_key, NULL);
5883 5895 tsd_create(&rrw_tsd_key, rrw_tsd_destroy);
5884 5896 tsd_create(&zfs_allow_log_key, zfs_allow_log_destroy);
5885 5897
5886 5898 error = ldi_ident_from_mod(&modlinkage, &zfs_li);
5887 5899 ASSERT(error == 0);
5888 5900 mutex_init(&zfs_share_lock, NULL, MUTEX_DEFAULT, NULL);
5889 5901
5890 5902 return (0);
5891 5903 }
5892 5904
5893 5905 int
5894 5906 _fini(void)
5895 5907 {
5896 5908 int error;
5897 5909
5898 5910 if (spa_busy() || zfs_busy() || zvol_busy() || zio_injection_enabled)
5899 5911 return (SET_ERROR(EBUSY));
5900 5912
5901 5913 if ((error = mod_remove(&modlinkage)) != 0)
5902 5914 return (error);
5903 5915
5904 5916 zvol_fini();
5905 5917 zfs_fini();
5906 5918 spa_fini();
5907 5919 if (zfs_nfsshare_inited)
5908 5920 (void) ddi_modclose(nfs_mod);
5909 5921 if (zfs_smbshare_inited)
5910 5922 (void) ddi_modclose(smbsrv_mod);
5911 5923 if (zfs_nfsshare_inited || zfs_smbshare_inited)
5912 5924 (void) ddi_modclose(sharefs_mod);
5913 5925
5914 5926 tsd_destroy(&zfs_fsyncer_key);
5915 5927 ldi_ident_release(zfs_li);
5916 5928 zfs_li = NULL;
5917 5929 mutex_destroy(&zfs_share_lock);
5918 5930
5919 5931 return (error);
5920 5932 }
5921 5933
5922 5934 int
5923 5935 _info(struct modinfo *modinfop)
5924 5936 {
5925 5937 return (mod_info(&modlinkage, modinfop));
5926 5938 }
↓ open down ↓ |
917 lines elided |
↑ open up ↑ |
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX