X-Git-Url: https://git.whamcloud.com/?a=blobdiff_plain;f=lustre%2Finclude%2Flustre_nodemap.h;h=9d200bf651b64cf4b8d261f17f577bdbcf26513c;hb=489afbe69d5b7a867e44f6c2364513e660cf862b;hp=6eb79ce03d89002be46c14f7e73f20841e050c7a;hpb=b18132d1201b48805503d23c4f9f403e769b27a9;p=fs%2Flustre-release.git

diff --git a/lustre/include/lustre_nodemap.h b/lustre/include/lustre_nodemap.h
index 6eb79ce..9d200bf 100644
--- a/lustre/include/lustre_nodemap.h
+++ b/lustre/include/lustre_nodemap.h
@@ -15,19 +15,22 @@
  *
  * You should have received a copy of the GNU General Public License
  * version 2 along with this program; If not, see
- * http://www.sun.com/software/products/lustre/docs/GPLv2.pdf
+ * http://www.gnu.org/licenses/gpl-2.0.html
  *
  * GPL HEADER END
  */
 /*
  * Copyright (C) 2013, Trustees of Indiana University
+ *
+ * Copyright (c) 2017, Intel Corporation.
+ *
  * Author: Joshua Walgenbach <jjw@iu.edu>
  */
 
 #ifndef _LUSTRE_NODEMAP_H
 #define _LUSTRE_NODEMAP_H
 
-#include <lustre/lustre_idl.h>
+#include <uapi/linux/lustre/lustre_idl.h>
 
 #define LUSTRE_NODEMAP_NAME "nodemap"
 
@@ -48,6 +51,12 @@ enum nodemap_tree_type {
 	NODEMAP_CLIENT_TO_FS,
 };
 
+enum nodemap_mapping_modes {
+	NODEMAP_MAP_BOTH,
+	NODEMAP_MAP_UID_ONLY,
+	NODEMAP_MAP_GID_ONLY,
+};
+
 struct nodemap_pde {
 	char			 npe_name[LUSTRE_NODEMAP_NAME_LENGTH + 1];
 	struct proc_dir_entry	*npe_proc_entry;
@@ -65,7 +74,10 @@ struct lu_nodemap {
 	/* flags to govern nodemap behavior */
 	bool			 nmf_trust_client_ids:1,
 				 nmf_deny_unknown:1,
-				 nmf_allow_root_access:1;
+				 nmf_allow_root_access:1,
+				 nmf_map_uid_only:1,
+				 nmf_map_gid_only:1,
+				 nmf_enable_audit:1;
 	/* unique ID set by MGS */
 	unsigned int		 nm_id;
 	/* nodemap ref counter */
@@ -77,7 +89,7 @@ struct lu_nodemap {
 	/* NID range list */
 	struct list_head	 nm_ranges;
 	/* lock for idmap red/black trees */
-	rwlock_t		 nm_idmap_lock;
+	struct rw_semaphore	 nm_idmap_lock;
 	/* UID map keyed by local UID */
 	struct rb_root		 nm_fs_to_client_uidmap;
 	/* UID map keyed by remote UID */
@@ -94,6 +106,8 @@ struct lu_nodemap {
 	struct nodemap_pde	*nm_pde_data;
 	/* fileset the nodes of this nodemap are restricted to */
 	char			 nm_fileset[PATH_MAX+1];
+	/* information about the expected SELinux policy on the nodes */
+	char			 nm_sepol[LUSTRE_NODEMAP_SEPOL_LENGTH + 1];
 
 	/* used when loading/unloading nodemaps */
 	struct list_head	 nm_list;
@@ -121,8 +135,10 @@ int nodemap_del_range(const char *name, const lnet_nid_t nid[2]);
 int nodemap_set_allow_root(const char *name, bool allow_root);
 int nodemap_set_trust_client_ids(const char *name, bool trust_client_ids);
 int nodemap_set_deny_unknown(const char *name, bool deny_unknown);
+int nodemap_set_mapping_mode(const char *name, enum nodemap_mapping_modes mode);
 int nodemap_set_squash_uid(const char *name, uid_t uid);
 int nodemap_set_squash_gid(const char *name, gid_t gid);
+int nodemap_set_audit_mode(const char *name, bool enable_audit);
 bool nodemap_can_setquota(const struct lu_nodemap *nodemap);
 int nodemap_add_idmap(const char *name, enum nodemap_id_type id_type,
 		      const __u32 map[2]);
@@ -130,6 +146,8 @@ int nodemap_del_idmap(const char *name, enum nodemap_id_type id_type,
 		      const __u32 map[2]);
 int nodemap_set_fileset(const char *name, const char *fileset);
 char *nodemap_get_fileset(const struct lu_nodemap *nodemap);
+int nodemap_set_sepol(const char *name, const char *sepol);
+const char *nodemap_get_sepol(const struct lu_nodemap *nodemap);
 __u32 nodemap_map_id(struct lu_nodemap *nodemap,
 		     enum nodemap_id_type id_type,
 		     enum nodemap_tree_type tree_type, __u32 id);
@@ -143,17 +161,17 @@ void nodemap_test_nid(lnet_nid_t nid, char *name_buf, size_t name_len);
 int nodemap_test_id(lnet_nid_t nid, enum nodemap_id_type idtype,
 		    __u32 client_id, __u32 *fs_id);
 
-enum nm_config_file_type {
-	NCFT_MGS,
-	NCFT_TGT,
-};
-struct nm_config_file *nm_config_file_register(const struct lu_env *env,
-					       struct dt_object *obj,
-					       struct local_oid_storage *los,
-					       enum nm_config_file_type ncf_type);
-void nm_config_file_deregister(const struct lu_env *env,
-			       struct nm_config_file *ncf,
-			       enum nm_config_file_type ncf_type);
+struct nm_config_file *nm_config_file_register_mgs(const struct lu_env *env,
+						   struct dt_object *obj,
+						   struct local_oid_storage *los);
+struct dt_device;
+struct nm_config_file *nm_config_file_register_tgt(const struct lu_env *env,
+						   struct dt_device *dev,
+						   struct local_oid_storage *los);
+void nm_config_file_deregister_mgs(const struct lu_env *env,
+				   struct nm_config_file *ncf);
+void nm_config_file_deregister_tgt(const struct lu_env *env,
+				   struct nm_config_file *ncf);
 struct lu_nodemap *nodemap_get_from_exp(struct obd_export *exp);
 void nodemap_putref(struct lu_nodemap *nodemap);
 
@@ -192,6 +210,7 @@ void nodemap_config_set_active_mgc(struct nodemap_config *config);
 
 int nodemap_process_idx_pages(struct nodemap_config *config, union lu_page *lip,
 			      struct lu_nodemap **recent_nodemap);
+
 #else /* disable nodemap processing in MGC of non-servers */
 static inline int nodemap_process_idx_pages(void *config,
 					    union lu_page *lip,