/*
* Copyright (C) 2013, Trustees of Indiana University
*
- * Copyright (c) 2014, 2015, Intel Corporation.
+ * Copyright (c) 2014, 2017, Intel Corporation.
*
* Author: Joshua Walgenbach <jjw@iu.edu>
*/
}
seq_printf(m, "[\n");
- read_lock(&nodemap->nm_idmap_lock);
+ down_read(&nodemap->nm_idmap_lock);
for (node = rb_first(&nodemap->nm_client_to_fs_uidmap); node;
node = rb_next(node)) {
if (cont)
"fs_id: %u }", idmap->id_client,
idmap->id_fs);
}
- read_unlock(&nodemap->nm_idmap_lock);
+ for (node = rb_first(&nodemap->nm_client_to_fs_projidmap);
+ node; node = rb_next(node)) {
+ if (cont)
+ seq_printf(m, ",\n");
+ idmap = rb_entry(node, struct lu_idmap, id_client_to_fs);
+ if (idmap != NULL)
+ seq_printf(m,
+ " { idtype: projid, client_id: %u, fs_id: %u }",
+ idmap->id_client,
+ idmap->id_fs);
+ }
+ up_read(&nodemap->nm_idmap_lock);
seq_printf(m, "\n");
seq_printf(m, "]\n");
*/
static int nodemap_idmap_open(struct inode *inode, struct file *file)
{
- return single_open(file, nodemap_idmap_show, PDE_DATA(inode));
+ return single_open(file, nodemap_idmap_show, pde_data(inode));
}
/**
{
struct lu_nodemap *nodemap;
struct lu_nid_range *range;
- struct interval_node_extent ext;
char start_nidstr[LNET_NIDSTR_SIZE];
char end_nidstr[LNET_NIDSTR_SIZE];
bool cont = false;
if (cont)
seq_printf(m, ",\n");
cont = 1;
- ext = range->rn_node.in_extent;
- libcfs_nid2str_r(ext.start, start_nidstr, sizeof(start_nidstr));
- libcfs_nid2str_r(ext.end, end_nidstr, sizeof(end_nidstr));
+ libcfs_nidstr_r(&range->rn_start, start_nidstr, sizeof(start_nidstr));
+ libcfs_nidstr_r(&range->rn_end, end_nidstr, sizeof(end_nidstr));
seq_printf(m, " { id: %u, start_nid: %s, end_nid: %s }",
range->rn_id, start_nidstr, end_nidstr);
}
*/
static int nodemap_ranges_open(struct inode *inode, struct file *file)
{
- return single_open(file, nodemap_ranges_show, PDE_DATA(inode));
+ return single_open(file, nodemap_ranges_show, pde_data(inode));
}
/**
if (count > PATH_MAX)
RETURN(-EINVAL);
- OBD_ALLOC(nm_fileset, count);
+ OBD_ALLOC(nm_fileset, count + 1);
+ /* OBD_ALLOC zero-fills the buffer */
if (nm_fileset == NULL)
RETURN(-ENOMEM);
rc = count;
out:
- OBD_FREE(nm_fileset, count);
+ OBD_FREE(nm_fileset, count + 1);
return rc;
}
LPROC_SEQ_FOPS(nodemap_fileset);
/**
+ * Reads and prints the SELinux policy info for the given nodemap.
+ *
+ * \param m seq file in proc fs
+ * \param data unused
+ * \retval 0 success
+ */
+static int nodemap_sepol_seq_show(struct seq_file *m, void *data)
+{
+ struct lu_nodemap *nodemap;
+ int rc = 0;
+
+ mutex_lock(&active_config_lock);
+ nodemap = nodemap_lookup(m->private);
+ mutex_unlock(&active_config_lock);
+ if (IS_ERR(nodemap)) {
+ rc = PTR_ERR(nodemap);
+ CERROR("cannot find nodemap '%s': rc = %d\n",
+ (char *)m->private, rc);
+ return rc;
+ }
+
+ seq_printf(m, "%s\n", nodemap_get_sepol(nodemap));
+ nodemap_putref(nodemap);
+ return rc;
+}
+
+/**
+ * Set SELinux policy info on a nodemap.
+ *
+ * \param[in] file proc file
+ * \param[in] buffer string, "<sepol>"
+ * \param[in] count \a buffer length
+ * \param[in] off unused
+ * \retval \a count on success
+ * \retval negative number on error
+ */
+static ssize_t
+nodemap_sepol_seq_write(struct file *file,
+ const char __user *buffer,
+ size_t count, loff_t *off)
+{
+ struct seq_file *m = file->private_data;
+ char sepol[LUSTRE_NODEMAP_SEPOL_LENGTH + 1];
+ int rc = 0;
+
+ BUILD_BUG_ON(sizeof(sepol) !=
+ sizeof(((struct lu_nodemap *)0)->nm_sepol));
+
+ if (count > 0) {
+ if (count >= sizeof(sepol))
+ GOTO(out, rc = -ENAMETOOLONG);
+
+ if (copy_from_user(sepol, buffer, count))
+ GOTO(out, rc = -EFAULT);
+
+ sepol[count] = '\0';
+
+ rc = nodemap_set_sepol(m->private, sepol);
+ }
+
+out:
+ if (rc != 0)
+ return rc;
+
+ return count;
+}
+LPROC_SEQ_FOPS(nodemap_sepol);
+
+/**
* Reads and prints the exports attached to the given nodemap.
*
* \param m seq file in proc fs, stores nodemap
list_for_each_entry(exp, &nodemap->nm_member_list,
exp_target_data.ted_nodemap_member) {
if (exp->exp_connection != NULL)
- libcfs_nid2str_r(exp->exp_connection->c_peer.nid,
- nidstr, sizeof(nidstr));
+ libcfs_nidstr_r(&exp->exp_connection->c_peer.nid,
+ nidstr, sizeof(nidstr));
seq_printf(m, " { nid: %s, uuid: %s },",
nidstr, exp->exp_client_uuid.uuid);
*/
static int nodemap_exports_open(struct inode *inode, struct file *file)
{
- return single_open(file, nodemap_exports_show, PDE_DATA(inode));
+ return single_open(file, nodemap_exports_show, pde_data(inode));
}
/**
}
/**
+ * Reads and prints the squash PROJID for the given nodemap.
+ *
+ * \param m seq file in proc fs
+ * \param data unused
+ * \retval 0 success
+ */
+static int nodemap_squash_projid_seq_show(struct seq_file *m, void *data)
+{
+ struct lu_nodemap *nodemap;
+
+ mutex_lock(&active_config_lock);
+ nodemap = nodemap_lookup(m->private);
+ mutex_unlock(&active_config_lock);
+ if (IS_ERR(nodemap)) {
+ int rc = PTR_ERR(nodemap);
+
+ CERROR("cannot find nodemap '%s': rc = %d\n",
+ (char *)m->private, rc);
+ return rc;
+ }
+
+ seq_printf(m, "%u\n", nodemap->nm_squash_projid);
+ nodemap_putref(nodemap);
+ return 0;
+}
+
+/**
* Reads and prints the trusted flag for the given nodemap.
*
* \param m seq file in proc fs
static int nodemap_map_mode_seq_show(struct seq_file *m, void *data)
{
struct lu_nodemap *nodemap;
+ bool need_sep = false;
int rc;
mutex_lock(&active_config_lock);
return rc;
}
- if (nodemap->nmf_map_uid_only)
- seq_printf(m, "uid_only\n");
- else if (nodemap->nmf_map_gid_only)
- seq_printf(m, "gid_only\n");
- else
- seq_printf(m, "both\n");
+ if (nodemap->nmf_map_mode == NODEMAP_MAP_ALL) {
+ seq_puts(m, "all\n");
+ } else {
+ if (nodemap->nmf_map_mode & NODEMAP_MAP_UID) {
+ seq_puts(m, "uid");
+ need_sep = true;
+ }
+ if (nodemap->nmf_map_mode & NODEMAP_MAP_GID) {
+ seq_puts(m, need_sep ? ",gid" : "gid");
+ need_sep = true;
+ }
+ if (nodemap->nmf_map_mode & NODEMAP_MAP_PROJID)
+ seq_puts(m, need_sep ? ",projid" : "projid");
+ seq_puts(m, "\n");
+ }
nodemap_putref(nodemap);
return 0;
}
/**
- * Reads and prints the deny_unknown flag for the given nodemap.
+ * Reads and prints the rbac for the given nodemap.
*
* \param m seq file in proc fs
* \param data unused
* \retval 0 success
*/
-static int nodemap_deny_unknown_seq_show(struct seq_file *m, void *data)
+static int nodemap_rbac_seq_show(struct seq_file *m, void *data)
{
struct lu_nodemap *nodemap;
- int rc;
+ char *sep = "";
+ int i, rc;
mutex_lock(&active_config_lock);
nodemap = nodemap_lookup(m->private);
if (IS_ERR(nodemap)) {
rc = PTR_ERR(nodemap);
CERROR("cannot find nodemap '%s': rc = %d\n",
- (char *)m->private, rc);
+ (char *)m->private, rc);
return rc;
}
- seq_printf(m, "%d\n", (int)nodemap->nmf_deny_unknown);
+ if (nodemap->nmf_rbac == NODEMAP_RBAC_ALL) {
+ for (i = 0; i < ARRAY_SIZE(nodemap_rbac_names); i++)
+ seq_printf(m, "%s%s", i == 0 ? "" : ",",
+ nodemap_rbac_names[i].nrn_name);
+ seq_puts(m, "\n");
+ } else if (nodemap->nmf_rbac == NODEMAP_RBAC_NONE) {
+ seq_puts(m, "none\n");
+ } else {
+ for (i = 0; i < ARRAY_SIZE(nodemap_rbac_names); i++) {
+ if (nodemap->nmf_rbac &
+ nodemap_rbac_names[i].nrn_mode) {
+ seq_printf(m, "%s%s", sep,
+ nodemap_rbac_names[i].nrn_name);
+ sep = ",";
+ }
+ }
+ seq_puts(m, "\n");
+ }
+
nodemap_putref(nodemap);
return 0;
}
-#ifdef NODEMAP_PROC_DEBUG
/**
- * Helper functions to set nodemap flags.
+ * Reads and prints the deny_unknown flag for the given nodemap.
*
- * \param[in] buffer string, which is "1" or "0" to set/unset flag
- * \param[in] count \a buffer length
- * \param[out] flag_p where to store flag value
- * \retval \a count on success
- * \retval negative number on error
+ * \param m seq file in proc fs
+ * \param data unused
+ * \retval 0 success
*/
-static int nodemap_proc_read_flag(const char __user *buffer,
- unsigned long count, unsigned int *flag_p)
+static int nodemap_deny_unknown_seq_show(struct seq_file *m, void *data)
{
- char scratch[NODEMAP_LPROC_FLAG_LEN + 1];
- long unsigned int flag_buf;
- int rc;
-
- if (count == 0)
- return 0;
-
- if (count >= sizeof(scratch))
- return -EINVAL;
-
- if (copy_from_user(scratch, buffer, count))
- return -EFAULT;
-
- scratch[count] = '\0';
- rc = kstrtoul(scratch, 10, &flag_buf);
- if (rc != 0)
- return -EINVAL;
+ struct lu_nodemap *nodemap;
+ int rc;
- *flag_p = flag_buf;
+ mutex_lock(&active_config_lock);
+ nodemap = nodemap_lookup(m->private);
+ mutex_unlock(&active_config_lock);
+ if (IS_ERR(nodemap)) {
+ rc = PTR_ERR(nodemap);
+ CERROR("cannot find nodemap '%s': rc = %d\n",
+ (char *)m->private, rc);
+ return rc;
+ }
- return count;
+ seq_printf(m, "%d\n", (int)nodemap->nmf_deny_unknown);
+ nodemap_putref(nodemap);
+ return 0;
}
/**
- * Set the squash UID.
+ * Reads and prints the audit_mode flag for the given nodemap.
*
- * \param[in] file proc file
- * \param[in] buffer string representing squash UID to set
- * \param[in] count \a buffer length
- * \param[in] off unused
- * \retval \a count on success
- * \retval negative number on error
+ * \param m seq file in proc fs
+ * \param data unused
+ * \retval 0 success
*/
-static ssize_t
-nodemap_squash_uid_seq_write(struct file *file, const char __user *buffer,
- size_t count, loff_t *off)
+static int nodemap_audit_mode_seq_show(struct seq_file *m, void *data)
{
- char squash[NODEMAP_LPROC_ID_LEN + 1];
- struct seq_file *m = file->private_data;
- long unsigned int squash_uid;
- int rc;
-
- if (count == 0)
- return 0;
-
- if (count >= sizeof(squash))
- return -EINVAL;
-
- if (copy_from_user(squash, buffer, count))
- return -EFAULT;
-
- squash[count] = '\0';
- rc = kstrtoul(squash, 10, &squash_uid);
- if (rc != 0)
- return -EINVAL;
+ struct lu_nodemap *nodemap;
+ int rc;
- rc = nodemap_set_squash_uid(m->private, squash_uid);
- if (rc != 0)
+ mutex_lock(&active_config_lock);
+ nodemap = nodemap_lookup(m->private);
+ mutex_unlock(&active_config_lock);
+ if (IS_ERR(nodemap)) {
+ rc = PTR_ERR(nodemap);
+ CERROR("cannot find nodemap '%s': rc = %d\n",
+ (char *)m->private, rc);
return rc;
+ }
- return count;
+ seq_printf(m, "%d\n", (int)nodemap->nmf_enable_audit);
+ nodemap_putref(nodemap);
+ return 0;
}
/**
- * Set the squash GID.
+ * Reads and prints the forbid_encryption flag for the given nodemap.
*
- * \param[in] file proc file
- * \param[in] buffer string representing squash GID to set
- * \param[in] count \a buffer length
- * \param[in] off unused
- * \retval \a count on success
- * \retval negative number on error
+ * \param m seq file in proc fs
+ * \param data unused
+ * \retval 0 success
*/
-static ssize_t
-nodemap_squash_gid_seq_write(struct file *file, const char __user *buffer,
- size_t count, loff_t *off)
+static int nodemap_forbid_encryption_seq_show(struct seq_file *m, void *data)
{
- char squash[NODEMAP_LPROC_ID_LEN + 1];
- struct seq_file *m = file->private_data;
- long unsigned int squash_gid;
- int rc;
-
- if (count == 0)
- return 0;
-
- if (count >= sizeof(squash))
- return -EINVAL;
-
- if (copy_from_user(squash, buffer, count))
- return -EFAULT;
-
- squash[count] = '\0';
- rc = kstrtoul(squash, 10, &squash_gid);
- if (rc != 0)
- return -EINVAL;
+ struct lu_nodemap *nodemap;
+ int rc;
- rc = nodemap_set_squash_gid(m->private, squash_gid);
- if (rc != 0)
+ mutex_lock(&active_config_lock);
+ nodemap = nodemap_lookup(m->private);
+ mutex_unlock(&active_config_lock);
+ if (IS_ERR(nodemap)) {
+ rc = PTR_ERR(nodemap);
+ CERROR("cannot find nodemap '%s': rc = %d\n",
+ (char *)m->private, rc);
return rc;
+ }
- return count;
+ seq_printf(m, "%d\n", (int)nodemap->nmf_forbid_encryption);
+ nodemap_putref(nodemap);
+ return 0;
}
/**
- * Set/unset the trusted flag.
+ * Reads and prints the readonly_mount flag for the given nodemap.
*
- * \param[in] file proc file
- * \param[in] buffer string, "1" or "0"
- * \param[in] count \a buffer length
- * \param[in] off unused
- * \retval \a count on success
- * \retval negative number on error
+ * \param m seq file in proc fs
+ * \param data unused
+ * \retval 0 success
*/
-static ssize_t
-nodemap_trusted_seq_write(struct file *file, const char __user *buffer,
- size_t count, loff_t *off)
+static int nodemap_readonly_mount_seq_show(struct seq_file *m, void *data)
{
- struct seq_file *m = file->private_data;
- int flags;
- int rc;
-
- rc = nodemap_proc_read_flag(buffer, count, &flags);
- if (rc < 0)
- return rc;
+ struct lu_nodemap *nodemap;
+ int rc;
- rc = nodemap_set_trust_client_ids(m->private, flags);
- if (rc != 0)
+ mutex_lock(&active_config_lock);
+ nodemap = nodemap_lookup(m->private);
+ mutex_unlock(&active_config_lock);
+ if (IS_ERR(nodemap)) {
+ rc = PTR_ERR(nodemap);
+ CERROR("cannot find nodemap '%s': rc = %d\n",
+ (char *)m->private, rc);
return rc;
+ }
- return count;
+ seq_printf(m, "%d\n", (int)nodemap->nmf_readonly_mount);
+ nodemap_putref(nodemap);
+ return 0;
}
-/**
- * Set/unset the admin flag.
- *
- * \param[in] file proc file
- * \param[in] buffer string, "1" or "0"
- * \param[in] count \a buffer length
- * \param[in] off unused
- * \retval \a count on success
- * \retval negative number on error
- */
-static ssize_t
-nodemap_admin_seq_write(struct file *file, const char __user *buffer,
- size_t count, loff_t *off)
-{
- struct seq_file *m = file->private_data;
- int flags;
- int rc;
+static struct lprocfs_vars lprocfs_nm_module_vars[] = {
+ {
+ .name = "active",
+ .fops = &nodemap_active_fops,
+ },
+ {
+ NULL
+ }
+};
- rc = nodemap_proc_read_flag(buffer, count, &flags);
- if (rc < 0)
- return rc;
+LPROC_SEQ_FOPS_RO(nodemap_trusted);
+LPROC_SEQ_FOPS_RO(nodemap_admin);
+LPROC_SEQ_FOPS_RO(nodemap_squash_uid);
+LPROC_SEQ_FOPS_RO(nodemap_squash_gid);
+LPROC_SEQ_FOPS_RO(nodemap_squash_projid);
- rc = nodemap_set_allow_root(m->private, flags);
- if (rc != 0)
- return rc;
+LPROC_SEQ_FOPS_RO(nodemap_deny_unknown);
+LPROC_SEQ_FOPS_RO(nodemap_map_mode);
+LPROC_SEQ_FOPS_RO(nodemap_rbac);
+LPROC_SEQ_FOPS_RO(nodemap_audit_mode);
+LPROC_SEQ_FOPS_RO(nodemap_forbid_encryption);
+LPROC_SEQ_FOPS_RO(nodemap_readonly_mount);
+
+static const struct proc_ops nodemap_ranges_fops = {
+ .proc_open = nodemap_ranges_open,
+ .proc_read = seq_read,
+ .proc_lseek = seq_lseek,
+ .proc_release = single_release
+};
- return count;
-}
+static const struct proc_ops nodemap_idmap_fops = {
+ .proc_open = nodemap_idmap_open,
+ .proc_read = seq_read,
+ .proc_lseek = seq_lseek,
+ .proc_release = single_release
+};
-/**
- * Add a nodemap.
- *
- * \param[in] file proc file
- * \param[in] buffer string, name of the nodemap to add
- * \param[in] count \a buffer length
- * \param[in] off unused
- * \retval \a count on success
- * \retval negative number on error
- */
-static ssize_t
-lprocfs_add_nodemap_seq_write(struct file *file, const char __user *buffer,
- size_t count, loff_t *off)
-{
- char nodemap_name[LUSTRE_NODEMAP_NAME_LENGTH + 1];
- char *cpybuf = NULL;
- char *pos;
- int rc;
-
- if (count == 0)
- return 0;
-
- if (count >= sizeof(nodemap_name))
- return -EINVAL;
-
- if (copy_from_user(nodemap_name, buffer, count))
- return -EFAULT;
-
- nodemap_name[count] = '\0';
-
- cpybuf = nodemap_name;
- pos = strsep(&cpybuf, " \n");
- if (pos == NULL)
- return -EINVAL;
-
- rc = nodemap_add(nodemap_name);
- if (rc == 0)
- rc = count;
-
- return rc;
-}
-LPROC_SEQ_FOPS_WO_TYPE(nodemap, add_nodemap);
-
-/**
- * Delete a nodemap.
- *
- * \param[in] file proc file
- * \param[in] buffer string, name of the nodemap to delete
- * \param[in] count \a buffer length
- * \param[in] off unused
- * \retval \a count on success
- * \retval negative number on error
- */
-static ssize_t
-lprocfs_del_nodemap_seq_write(struct file *file, const char __user *buffer,
- size_t count, loff_t *off)
-{
- char nodemap_name[LUSTRE_NODEMAP_NAME_LENGTH + 1];
- char *cpybuf = NULL;
- char *pos;
- int rc = count;
-
- if (count == 0)
- return 0;
-
- if (count >= sizeof(nodemap_name))
- return -EINVAL;
-
- if (copy_from_user(nodemap_name, buffer, count))
- return -EFAULT;
-
- nodemap_name[count] = '\0';
-
- cpybuf = nodemap_name;
- pos = strsep(&cpybuf, " \n");
- if (pos == NULL)
- return -EINVAL;
-
- rc = nodemap_del(nodemap_name);
- if (rc == 0)
- rc = count;
-
- return rc;
-
-}
-LPROC_SEQ_FOPS_WO_TYPE(nodemap, del_nodemap);
-
-/**
- * Helper function to parse a NID string.
- *
- * \param[in] rangestr string representation of NIDs, see libcfs_str2nid()
- * \param[out] nids array of two nids
- * \retval 0 on success
- * \retval negative number on error
- */
-static int parse_nids(char *rangestr, lnet_nid_t nids[2])
-{
- struct list_head nidlist;
- char nidstr[2][LNET_NIDSTR_SIZE];
- char nidrange_str[2 * LNET_NIDSTR_SIZE + 2];
- int rc = 0;
-
- INIT_LIST_HEAD(&nidlist);
-
- if (cfs_parse_nidlist(rangestr, strlen(rangestr),
- &nidlist) <= 0)
- return -EINVAL;
-
- if (!cfs_nidrange_is_contiguous(&nidlist))
- return -EINVAL;
-
- cfs_nidrange_find_min_max(&nidlist, nidstr[0], nidstr[1],
- LNET_NIDSTR_SIZE);
- snprintf(nidrange_str, sizeof(nidrange_str), "%s:%s",
- nidstr[0], nidstr[1]);
-
- rc = nodemap_parse_range(nidrange_str, nids);
- if (rc != 0)
- return -EINVAL;
-
- cfs_free_nidlist(&nidlist);
-
- return 0;
-}
-
-/**
- * Add a NID range to nodemap.
- *
- * \param[in] file proc file
- * \param[in] buffer string, "<nodemap name> <nid range>"
- * \param[in] count \a buffer length
- * \param[in] off unused
- * \retval \a count on success
- * \retval negative number on error
- */
-static ssize_t
-lprocfs_add_nodemap_range_seq_write(struct file *file,
- const char __user *buffer,
- size_t count, loff_t *off)
-{
- char name_range[LUSTRE_NODEMAP_NAME_LENGTH +
- LNET_NIDSTR_SIZE * 2 + 2];
- char *cpybuf = NULL;
- char *name;
- char *rangestr = NULL;
- lnet_nid_t nids[2];
- int rc;
-
- if (count == 0)
- return 0;
-
- if (count >= sizeof(name_range))
- GOTO(out, rc = -EINVAL);
-
- if (copy_from_user(name_range, buffer, count))
- GOTO(out, rc = -EFAULT);
-
- name_range[count] = '\0';
-
- cpybuf = name_range;
- name = strsep(&cpybuf, " ");
- if (name == NULL)
- GOTO(out, rc = -EINVAL);
-
- rangestr = strsep(&cpybuf, " \n");
- if (rangestr == NULL)
- GOTO(out, rc = -EINVAL);
-
- rc = parse_nids(rangestr, nids);
- if (rc != 0)
- GOTO(out, rc = rc);
-
- rc = nodemap_add_range(name, nids);
- if (rc != 0)
- GOTO(out, rc = -EINVAL);
-
- if (rc == 0)
- rc = count;
-
-out:
- return rc;
-}
-LPROC_SEQ_FOPS_WO_TYPE(nodemap, add_nodemap_range);
-
-/**
- * Delete a NID range from nodemap.
- *
- * \param[in] file proc file
- * \param[in] buffer string, "<nodemap name> <nid range>"
- * \param[in] count \a buffer length
- * \param[in] off unused
- * \retval \a count on success
- * \retval negative number on error
- */
-static ssize_t
-lprocfs_del_nodemap_range_seq_write(struct file *file,
- const char __user *buffer,
- size_t count, loff_t *off)
-{
- char name_range[LUSTRE_NODEMAP_NAME_LENGTH +
- LNET_NIDSTR_SIZE * 2 + 2];
- char *cpybuf = NULL;
- char *name;
- char *rangestr = NULL;
- lnet_nid_t nids[2];
- int rc;
-
- if (count == 0)
- return 0;
-
- if (count >= sizeof(name_range))
- GOTO(out, rc = -EINVAL);
-
- if (copy_from_user(name_range, buffer, count))
- GOTO(out, rc = -EFAULT);
-
- name_range[count] = '\0';
-
- cpybuf = name_range;
- name = strsep(&cpybuf, " ");
- if (name == NULL)
- GOTO(out, rc = -EINVAL);
-
- rangestr = strsep(&cpybuf, " \n");
- if (rangestr == NULL)
- GOTO(out, rc = -EINVAL);
-
- rc = parse_nids(rangestr, nids);
- if (rc != 0)
- GOTO(out, rc = rc);
-
- rc = nodemap_del_range(name, nids);
- if (rc != 0)
- GOTO(out, rc = -EINVAL);
-
- if (rc == 0)
- rc = count;
-
-out:
- return rc;
-}
-LPROC_SEQ_FOPS_WO_TYPE(nodemap, del_nodemap_range);
-
-/**
- * Add an idmap to nodemap.
- *
- * \param[in] file proc file
- * \param[in] buffer string, "<nodemap name> <uid|gid> <idmap>"
- * \param[in] count \a buffer length
- * \param[in] off unused
- * \retval \a count on success
- * \retval negative number on error
- */
-static ssize_t
-lprocfs_add_nodemap_idmap_seq_write(struct file *file,
- const char __user *buffer,
- size_t count, loff_t *off)
-{
- char name_idmapstr[LUSTRE_NODEMAP_NAME_LENGTH + 16];
- char *cpybuf = NULL;
- char *name;
- char *idtypestr = NULL;
- char *idmapstr = NULL;
- __u32 idmap[2];
- int rc = count;
-
- if (count == 0)
- return 0;
-
- if (count >= sizeof(name_idmapstr))
- GOTO(out, rc = -EINVAL);
-
- if (copy_from_user(name_idmapstr, buffer, count))
- GOTO(out, rc = -EFAULT);
-
- name_idmapstr[count] = '\0';
-
- cpybuf = name_idmapstr;
- name = strsep(&cpybuf, " ");
- if (name == NULL)
- GOTO(out, rc = -EINVAL);
-
- idtypestr = strsep(&cpybuf, " ");
- if (idtypestr == NULL)
- GOTO(out, rc = -EINVAL);
-
- idmapstr = strsep(&cpybuf, " \n");
- if (idmapstr == NULL)
- GOTO(out, rc = -EINVAL);
-
- rc = nodemap_parse_idmap(idmapstr, idmap);
- if (rc != 0)
- GOTO(out, rc = -EINVAL);
-
- if (strcmp(idtypestr, "uid") == 0)
- rc = nodemap_add_idmap(name, NODEMAP_UID, idmap);
- else if (strcmp(idtypestr, "gid") == 0)
- rc = nodemap_add_idmap(name, NODEMAP_GID, idmap);
- else
- GOTO(out, rc = -EINVAL);
-
- if (rc != 0)
- GOTO(out, rc = -EINVAL);
-
- if (rc == 0)
- rc = count;
-
-out:
- return rc;
-}
-LPROC_SEQ_FOPS_WO_TYPE(nodemap, add_nodemap_idmap);
-
-/**
- * Delete an idmap from nodemap.
- *
- * \param[in] file proc file
- * \param[in] buffer string, "<nodemap name> <uid|gid> <idmap>"
- * \param[in] count \a buffer length
- * \param[in] off unused
- * \retval \a count on success
- * \retval negative number on error
- */
-static ssize_t
-lprocfs_del_nodemap_idmap_seq_write(struct file *file,
- const char __user *buffer,
- size_t count, loff_t *off)
-{
- char name_idmapstr[LUSTRE_NODEMAP_NAME_LENGTH + 16];
- char *cpybuf = NULL;
- char *name;
- char *idtypestr = NULL;
- char *idmapstr = NULL;
- __u32 idmap[2];
- int rc = count;
-
- if (count == 0)
- return 0;
-
- if (count >= sizeof(name_idmapstr))
- GOTO(out, rc = -EINVAL);
-
- if (copy_from_user(name_idmapstr, buffer, count))
- GOTO(out, rc = -EFAULT);
-
- name_idmapstr[count] = '\0';
-
- cpybuf = name_idmapstr;
- name = strsep(&cpybuf, " ");
- if (name == NULL)
- GOTO(out, rc = -EINVAL);
-
- idtypestr = strsep(&cpybuf, " ");
- if (idtypestr == NULL)
- GOTO(out, rc = -EINVAL);
-
- idmapstr = strsep(&cpybuf, " \n");
- if (idmapstr == NULL)
- GOTO(out, rc = -EINVAL);
-
- rc = nodemap_parse_idmap(idmapstr, idmap);
- if (rc != 0)
- GOTO(out, rc = -EINVAL);
-
- if (strcmp(idtypestr, "uid") == 0)
- rc = nodemap_del_idmap(name, NODEMAP_UID, idmap);
- else if (strcmp(idtypestr, "gid") == 0)
- rc = nodemap_del_idmap(name, NODEMAP_GID, idmap);
- else
- GOTO(out, rc = -EINVAL);
-
- if (rc != 0)
- GOTO(out, rc = -EINVAL);
-
- if (rc == 0)
- rc = count;
-
-out:
- return rc;
-}
-LPROC_SEQ_FOPS_WO_TYPE(nodemap, del_nodemap_idmap);
-#endif /* NODEMAP_PROC_DEBUG */
+static const struct proc_ops nodemap_exports_fops = {
+ .proc_open = nodemap_exports_open,
+ .proc_read = seq_read,
+ .proc_lseek = seq_lseek,
+ .proc_release = single_release
+};
-static struct lprocfs_vars lprocfs_nm_module_vars[] = {
- {
- .name = "active",
- .fops = &nodemap_active_fops,
- },
-#ifdef NODEMAP_PROC_DEBUG
+static struct lprocfs_vars lprocfs_nodemap_vars[] = {
+ /* in alphabetical order */
{
- .name = "add_nodemap",
- .fops = &nodemap_add_nodemap_fops,
+ .name = "admin_nodemap",
+ .fops = &nodemap_admin_fops,
},
{
- .name = "remove_nodemap",
- .fops = &nodemap_del_nodemap_fops,
+ .name = "audit_mode",
+ .fops = &nodemap_audit_mode_fops,
},
{
- .name = "add_nodemap_range",
- .fops = &nodemap_add_nodemap_range_fops,
+ .name = "deny_unknown",
+ .fops = &nodemap_deny_unknown_fops,
},
{
- .name = "del_nodemap_range",
- .fops = &nodemap_del_nodemap_range_fops,
+ .name = "exports",
+ .fops = &nodemap_exports_fops,
},
{
- .name = "add_nodemap_idmap",
- .fops = &nodemap_add_nodemap_idmap_fops,
+ .name = "fileset",
+ .fops = &nodemap_fileset_fops,
},
{
- .name = "del_nodemap_idmap",
- .fops = &nodemap_del_nodemap_idmap_fops,
+ .name = "forbid_encryption",
+ .fops = &nodemap_forbid_encryption_fops,
},
-#endif /* NODEMAP_PROC_DEBUG */
- {
- NULL
- }
-};
-
-#ifdef NODEMAP_PROC_DEBUG
-LPROC_SEQ_FOPS(nodemap_trusted);
-LPROC_SEQ_FOPS(nodemap_admin);
-LPROC_SEQ_FOPS(nodemap_squash_uid);
-LPROC_SEQ_FOPS(nodemap_squash_gid);
-#else
-LPROC_SEQ_FOPS_RO(nodemap_trusted);
-LPROC_SEQ_FOPS_RO(nodemap_admin);
-LPROC_SEQ_FOPS_RO(nodemap_squash_uid);
-LPROC_SEQ_FOPS_RO(nodemap_squash_gid);
-#endif
-
-LPROC_SEQ_FOPS_RO(nodemap_deny_unknown);
-LPROC_SEQ_FOPS_RO(nodemap_map_mode);
-
-const struct file_operations nodemap_ranges_fops = {
- .open = nodemap_ranges_open,
- .read = seq_read,
- .llseek = seq_lseek,
- .release = single_release
-};
-
-const struct file_operations nodemap_idmap_fops = {
- .open = nodemap_idmap_open,
- .read = seq_read,
- .llseek = seq_lseek,
- .release = single_release
-};
-
-const struct file_operations nodemap_exports_fops = {
- .open = nodemap_exports_open,
- .read = seq_read,
- .llseek = seq_lseek,
- .release = single_release
-};
-
-static struct lprocfs_vars lprocfs_nodemap_vars[] = {
{
.name = "id",
.fops = &nodemap_id_fops,
},
{
- .name = "trusted_nodemap",
- .fops = &nodemap_trusted_fops,
+ .name = "idmap",
+ .fops = &nodemap_idmap_fops,
},
{
- .name = "admin_nodemap",
- .fops = &nodemap_admin_fops,
+ .name = "map_mode",
+ .fops = &nodemap_map_mode_fops,
},
{
- .name = "deny_unknown",
- .fops = &nodemap_deny_unknown_fops,
+ .name = "ranges",
+ .fops = &nodemap_ranges_fops,
},
{
- .name = "map_mode",
- .fops = &nodemap_map_mode_fops,
+ .name = "rbac",
+ .fops = &nodemap_rbac_fops,
},
{
- .name = "squash_uid",
- .fops = &nodemap_squash_uid_fops,
+ .name = "readonly_mount",
+ .fops = &nodemap_readonly_mount_fops,
},
{
- .name = "squash_gid",
- .fops = &nodemap_squash_gid_fops,
+ .name = "sepol",
+ .fops = &nodemap_sepol_fops,
},
{
- .name = "ranges",
- .fops = &nodemap_ranges_fops,
+ .name = "squash_gid",
+ .fops = &nodemap_squash_gid_fops,
},
{
- .name = "fileset",
- .fops = &nodemap_fileset_fops,
+ .name = "squash_projid",
+ .fops = &nodemap_squash_projid_fops,
},
{
- .name = "exports",
- .fops = &nodemap_exports_fops,
+ .name = "squash_uid",
+ .fops = &nodemap_squash_uid_fops,
},
{
- .name = "idmap",
- .fops = &nodemap_idmap_fops,
+ .name = "trusted_nodemap",
+ .fops = &nodemap_trusted_fops,
},
{
NULL
};
static struct lprocfs_vars lprocfs_default_nodemap_vars[] = {
+ /* in alphabetical order */
{
- .name = "id",
- .fops = &nodemap_id_fops,
+ .name = "admin_nodemap",
+ .fops = &nodemap_admin_fops,
},
{
- .name = "trusted_nodemap",
- .fops = &nodemap_trusted_fops,
+ .name = "audit_mode",
+ .fops = &nodemap_audit_mode_fops,
},
{
- .name = "admin_nodemap",
- .fops = &nodemap_admin_fops,
+ .name = "deny_unknown",
+ .fops = &nodemap_deny_unknown_fops,
},
{
- .name = "squash_uid",
- .fops = &nodemap_squash_uid_fops,
+ .name = "exports",
+ .fops = &nodemap_exports_fops,
+ },
+ {
+ .name = "fileset",
+ .fops = &nodemap_fileset_fops,
+ },
+ {
+ .name = "forbid_encryption",
+ .fops = &nodemap_forbid_encryption_fops,
+ },
+ {
+ .name = "id",
+ .fops = &nodemap_id_fops,
+ },
+ {
+ .name = "map_mode",
+ .fops = &nodemap_map_mode_fops,
+ },
+ {
+ .name = "readonly_mount",
+ .fops = &nodemap_readonly_mount_fops,
},
{
.name = "squash_gid",
.fops = &nodemap_squash_gid_fops,
},
{
- .name = "exports",
- .fops = &nodemap_exports_fops,
+ .name = "squash_projid",
+ .fops = &nodemap_squash_projid_fops,
+ },
+ {
+ .name = "squash_uid",
+ .fops = &nodemap_squash_uid_fops,
+ },
+ {
+ .name = "trusted_nodemap",
+ .fops = &nodemap_trusted_fops,
},
{
NULL