1 /* -*- mode: c; c-basic-offset: 8; indent-tabs-mode: nil; -*-
2 * vim:expandtab:shiftwidth=8:tabstop=8:
6 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
8 * This program is free software; you can redistribute it and/or modify
9 * it under the terms of the GNU General Public License version 2 only,
10 * as published by the Free Software Foundation.
12 * This program is distributed in the hope that it will be useful, but
13 * WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
15 * General Public License version 2 for more details (a copy is included
16 * in the LICENSE file that accompanied this code).
18 * You should have received a copy of the GNU General Public License
19 * version 2 along with this program; If not, see
20 * http://www.sun.com/software/products/lustre/docs/GPLv2.pdf
22 * Please contact Sun Microsystems, Inc., 4150 Network Circle, Santa Clara,
23 * CA 95054 USA or visit www.sun.com if you need additional information or
29 * Copyright (c) 2007, 2010, Oracle and/or its affiliates. All rights reserved.
30 * Use is subject to license terms.
33 * This file is part of Lustre, http://www.lustre.org/
34 * Lustre is a trademark of Sun Microsystems, Inc.
36 * lustre/mdt/mdt_lib.c
38 * Lustre Metadata Target (mdt) request unpacking helper.
40 * Author: Peter Braam <braam@clusterfs.com>
41 * Author: Andreas Dilger <adilger@clusterfs.com>
42 * Author: Phil Schwan <phil@clusterfs.com>
43 * Author: Mike Shaver <shaver@clusterfs.com>
44 * Author: Nikita Danilov <nikita@clusterfs.com>
45 * Author: Huang Hua <huanghua@clusterfs.com>
46 * Author: Fan Yong <fanyong@clusterfs.com>
51 # define EXPORT_SYMTAB
53 #define DEBUG_SUBSYSTEM S_MDS
55 #include "mdt_internal.h"
56 #include <lnet/lib-lnet.h>
59 typedef enum ucred_init_type {
65 void mdt_exit_ucred(struct mdt_thread_info *info)
67 struct md_ucred *uc = mdt_ucred(info);
68 struct mdt_device *mdt = info->mti_mdt;
70 if (uc->mu_valid != UCRED_INIT) {
71 uc->mu_suppgids[0] = uc->mu_suppgids[1] = -1;
73 cfs_put_group_info(uc->mu_ginfo);
76 if (uc->mu_identity) {
77 mdt_identity_put(mdt->mdt_identity_cache,
79 uc->mu_identity = NULL;
81 uc->mu_valid = UCRED_INIT;
85 static int match_nosquash_list(cfs_rw_semaphore_t *sem,
92 rc = cfs_match_nid(peernid, nidlist);
97 /* root_squash for inter-MDS operations */
98 static int mdt_root_squash(struct mdt_thread_info *info, lnet_nid_t peernid)
100 struct md_ucred *ucred = mdt_ucred(info);
103 if (!info->mti_mdt->mdt_squash_uid || ucred->mu_fsuid)
106 if (match_nosquash_list(&info->mti_mdt->mdt_squash_sem,
107 &info->mti_mdt->mdt_nosquash_nids,
109 CDEBUG(D_OTHER, "%s is in nosquash_nids list\n",
110 libcfs_nid2str(peernid));
114 CDEBUG(D_OTHER, "squash req from %s, (%d:%d/%x)=>(%d:%d/%x)\n",
115 libcfs_nid2str(peernid),
116 ucred->mu_fsuid, ucred->mu_fsgid, ucred->mu_cap,
117 info->mti_mdt->mdt_squash_uid, info->mti_mdt->mdt_squash_gid,
120 ucred->mu_fsuid = info->mti_mdt->mdt_squash_uid;
121 ucred->mu_fsgid = info->mti_mdt->mdt_squash_gid;
123 ucred->mu_suppgids[0] = -1;
124 ucred->mu_suppgids[1] = -1;
129 static int new_init_ucred(struct mdt_thread_info *info, ucred_init_type_t type,
132 struct ptlrpc_request *req = mdt_info_req(info);
133 struct mdt_device *mdt = info->mti_mdt;
134 struct ptlrpc_user_desc *pud = req->rq_user_desc;
135 struct md_ucred *ucred = mdt_ucred(info);
136 lnet_nid_t peernid = req->rq_peer.nid;
138 __u32 remote = exp_connect_rmtclient(info->mti_exp);
145 LASSERT(req->rq_auth_gss);
146 LASSERT(!req->rq_auth_usr_mdt);
147 LASSERT(req->rq_user_desc);
149 ucred->mu_valid = UCRED_INVALID;
151 ucred->mu_o_uid = pud->pud_uid;
152 ucred->mu_o_gid = pud->pud_gid;
153 ucred->mu_o_fsuid = pud->pud_fsuid;
154 ucred->mu_o_fsgid = pud->pud_fsgid;
156 if (type == BODY_INIT) {
157 struct mdt_body *body = (struct mdt_body *)buf;
159 ucred->mu_suppgids[0] = body->suppgid;
160 ucred->mu_suppgids[1] = -1;
163 /* sanity check: we expect the uid which client claimed is true */
165 if (req->rq_auth_mapped_uid == INVALID_UID) {
166 CDEBUG(D_SEC, "remote user not mapped, deny access!\n");
170 if (ptlrpc_user_desc_do_idmap(req, pud))
173 if (req->rq_auth_mapped_uid != pud->pud_uid) {
174 CDEBUG(D_SEC, "remote client %s: auth/mapped uid %u/%u "
175 "while client claims %u:%u/%u:%u\n",
176 libcfs_nid2str(peernid), req->rq_auth_uid,
177 req->rq_auth_mapped_uid,
178 pud->pud_uid, pud->pud_gid,
179 pud->pud_fsuid, pud->pud_fsgid);
183 if (req->rq_auth_uid != pud->pud_uid) {
184 CDEBUG(D_SEC, "local client %s: auth uid %u "
185 "while client claims %u:%u/%u:%u\n",
186 libcfs_nid2str(peernid), req->rq_auth_uid,
187 pud->pud_uid, pud->pud_gid,
188 pud->pud_fsuid, pud->pud_fsgid);
193 if (is_identity_get_disabled(mdt->mdt_identity_cache)) {
195 CDEBUG(D_SEC, "remote client must run with identity_get "
199 ucred->mu_identity = NULL;
200 perm = CFS_SETUID_PERM | CFS_SETGID_PERM |
204 struct md_identity *identity;
206 identity = mdt_identity_get(mdt->mdt_identity_cache,
208 if (IS_ERR(identity)) {
209 if (unlikely(PTR_ERR(identity) == -EREMCHG &&
211 ucred->mu_identity = NULL;
212 perm = CFS_SETUID_PERM | CFS_SETGID_PERM |
215 CDEBUG(D_SEC, "Deny access without identity: uid %u\n",
220 ucred->mu_identity = identity;
221 perm = mdt_identity_get_perm(ucred->mu_identity,
226 /* find out the setuid/setgid attempt */
227 setuid = (pud->pud_uid != pud->pud_fsuid);
228 setgid = ((pud->pud_gid != pud->pud_fsgid) ||
229 (ucred->mu_identity &&
230 (pud->pud_gid != ucred->mu_identity->mi_gid)));
232 /* check permission of setuid */
233 if (setuid && !(perm & CFS_SETUID_PERM)) {
234 CDEBUG(D_SEC, "mdt blocked setuid attempt (%u -> %u) from %s\n",
235 pud->pud_uid, pud->pud_fsuid, libcfs_nid2str(peernid));
236 GOTO(out, rc = -EACCES);
239 /* check permission of setgid */
240 if (setgid && !(perm & CFS_SETGID_PERM)) {
241 CDEBUG(D_SEC, "mdt blocked setgid attempt (%u:%u/%u:%u -> %u) "
242 "from %s\n", pud->pud_uid, pud->pud_gid,
243 pud->pud_fsuid, pud->pud_fsgid,
244 ucred->mu_identity->mi_gid, libcfs_nid2str(peernid));
245 GOTO(out, rc = -EACCES);
249 * NB: remote client not allowed to setgroups anyway.
251 if (!remote && perm & CFS_SETGRP_PERM) {
252 if (pud->pud_ngroups) {
253 /* setgroups for local client */
254 ucred->mu_ginfo = cfs_groups_alloc(pud->pud_ngroups);
255 if (!ucred->mu_ginfo) {
256 CERROR("failed to alloc %d groups\n",
258 GOTO(out, rc = -ENOMEM);
261 lustre_groups_from_list(ucred->mu_ginfo,
263 lustre_groups_sort(ucred->mu_ginfo);
265 ucred->mu_ginfo = NULL;
268 ucred->mu_suppgids[0] = -1;
269 ucred->mu_suppgids[1] = -1;
270 ucred->mu_ginfo = NULL;
273 ucred->mu_uid = pud->pud_uid;
274 ucred->mu_gid = pud->pud_gid;
275 ucred->mu_fsuid = pud->pud_fsuid;
276 ucred->mu_fsgid = pud->pud_fsgid;
278 /* process root_squash here. */
279 mdt_root_squash(info, peernid);
281 /* remove fs privilege for non-root user. */
283 ucred->mu_cap = pud->pud_cap & ~CFS_CAP_FS_MASK;
285 ucred->mu_cap = pud->pud_cap;
286 if (remote && !(perm & CFS_RMTOWN_PERM))
287 ucred->mu_cap &= ~(CFS_CAP_SYS_RESOURCE_MASK |
289 ucred->mu_valid = UCRED_NEW;
295 if (ucred->mu_ginfo) {
296 cfs_put_group_info(ucred->mu_ginfo);
297 ucred->mu_ginfo = NULL;
299 if (ucred->mu_identity) {
300 mdt_identity_put(mdt->mdt_identity_cache,
302 ucred->mu_identity = NULL;
309 int mdt_check_ucred(struct mdt_thread_info *info)
311 struct ptlrpc_request *req = mdt_info_req(info);
312 struct mdt_device *mdt = info->mti_mdt;
313 struct ptlrpc_user_desc *pud = req->rq_user_desc;
314 struct md_ucred *ucred = mdt_ucred(info);
315 struct md_identity *identity = NULL;
316 lnet_nid_t peernid = req->rq_peer.nid;
318 __u32 remote = exp_connect_rmtclient(info->mti_exp);
325 if ((ucred->mu_valid == UCRED_OLD) || (ucred->mu_valid == UCRED_NEW))
328 if (!req->rq_auth_gss || req->rq_auth_usr_mdt || !req->rq_user_desc)
331 /* sanity check: if we use strong authentication, we expect the
332 * uid which client claimed is true */
334 if (req->rq_auth_mapped_uid == INVALID_UID) {
335 CDEBUG(D_SEC, "remote user not mapped, deny access!\n");
339 if (ptlrpc_user_desc_do_idmap(req, pud))
342 if (req->rq_auth_mapped_uid != pud->pud_uid) {
343 CDEBUG(D_SEC, "remote client %s: auth/mapped uid %u/%u "
344 "while client claims %u:%u/%u:%u\n",
345 libcfs_nid2str(peernid), req->rq_auth_uid,
346 req->rq_auth_mapped_uid,
347 pud->pud_uid, pud->pud_gid,
348 pud->pud_fsuid, pud->pud_fsgid);
352 if (req->rq_auth_uid != pud->pud_uid) {
353 CDEBUG(D_SEC, "local client %s: auth uid %u "
354 "while client claims %u:%u/%u:%u\n",
355 libcfs_nid2str(peernid), req->rq_auth_uid,
356 pud->pud_uid, pud->pud_gid,
357 pud->pud_fsuid, pud->pud_fsgid);
362 if (is_identity_get_disabled(mdt->mdt_identity_cache)) {
364 CDEBUG(D_SEC, "remote client must run with identity_get "
371 identity = mdt_identity_get(mdt->mdt_identity_cache, pud->pud_uid);
372 if (IS_ERR(identity)) {
373 if (unlikely(PTR_ERR(identity) == -EREMCHG &&
377 CDEBUG(D_SEC, "Deny access without identity: uid %u\n",
383 perm = mdt_identity_get_perm(identity, remote, peernid);
384 /* find out the setuid/setgid attempt */
385 setuid = (pud->pud_uid != pud->pud_fsuid);
386 setgid = (pud->pud_gid != pud->pud_fsgid ||
387 pud->pud_gid != identity->mi_gid);
389 /* check permission of setuid */
390 if (setuid && !(perm & CFS_SETUID_PERM)) {
391 CDEBUG(D_SEC, "mdt blocked setuid attempt (%u -> %u) from %s\n",
392 pud->pud_uid, pud->pud_fsuid, libcfs_nid2str(peernid));
393 GOTO(out, rc = -EACCES);
396 /* check permission of setgid */
397 if (setgid && !(perm & CFS_SETGID_PERM)) {
398 CDEBUG(D_SEC, "mdt blocked setgid attempt (%u:%u/%u:%u -> %u) "
399 "from %s\n", pud->pud_uid, pud->pud_gid,
400 pud->pud_fsuid, pud->pud_fsgid, identity->mi_gid,
401 libcfs_nid2str(peernid));
402 GOTO(out, rc = -EACCES);
408 mdt_identity_put(mdt->mdt_identity_cache, identity);
412 static int old_init_ucred(struct mdt_thread_info *info,
413 struct mdt_body *body)
415 struct md_ucred *uc = mdt_ucred(info);
416 struct mdt_device *mdt = info->mti_mdt;
417 struct md_identity *identity = NULL;
421 uc->mu_valid = UCRED_INVALID;
422 uc->mu_o_uid = uc->mu_uid = body->uid;
423 uc->mu_o_gid = uc->mu_gid = body->gid;
424 uc->mu_o_fsuid = uc->mu_fsuid = body->fsuid;
425 uc->mu_o_fsgid = uc->mu_fsgid = body->fsgid;
426 uc->mu_suppgids[0] = body->suppgid;
427 uc->mu_suppgids[1] = -1;
429 if (!is_identity_get_disabled(mdt->mdt_identity_cache)) {
430 identity = mdt_identity_get(mdt->mdt_identity_cache,
432 if (IS_ERR(identity)) {
433 if (unlikely(PTR_ERR(identity) == -EREMCHG)) {
436 CDEBUG(D_SEC, "Deny access without identity: "
437 "uid %u\n", uc->mu_fsuid);
442 uc->mu_identity = identity;
444 /* process root_squash here. */
445 mdt_root_squash(info, mdt_info_req(info)->rq_peer.nid);
447 /* remove fs privilege for non-root user. */
449 uc->mu_cap = body->capability & ~CFS_CAP_FS_MASK;
451 uc->mu_cap = body->capability;
452 uc->mu_valid = UCRED_OLD;
457 static int old_init_ucred_reint(struct mdt_thread_info *info)
459 struct md_ucred *uc = mdt_ucred(info);
460 struct mdt_device *mdt = info->mti_mdt;
461 struct md_identity *identity = NULL;
465 uc->mu_valid = UCRED_INVALID;
466 uc->mu_o_uid = uc->mu_o_fsuid = uc->mu_uid = uc->mu_fsuid;
467 uc->mu_o_gid = uc->mu_o_fsgid = uc->mu_gid = uc->mu_fsgid;
469 if (!is_identity_get_disabled(mdt->mdt_identity_cache)) {
470 identity = mdt_identity_get(mdt->mdt_identity_cache,
472 if (IS_ERR(identity)) {
473 if (unlikely(PTR_ERR(identity) == -EREMCHG)) {
476 CDEBUG(D_SEC, "Deny access without identity: "
477 "uid %u\n", uc->mu_fsuid);
482 uc->mu_identity = identity;
484 /* process root_squash here. */
485 mdt_root_squash(info, mdt_info_req(info)->rq_peer.nid);
487 /* remove fs privilege for non-root user. */
489 uc->mu_cap &= ~CFS_CAP_FS_MASK;
490 uc->mu_valid = UCRED_OLD;
495 int mdt_init_ucred(struct mdt_thread_info *info, struct mdt_body *body)
497 struct ptlrpc_request *req = mdt_info_req(info);
498 struct md_ucred *uc = mdt_ucred(info);
500 if ((uc->mu_valid == UCRED_OLD) || (uc->mu_valid == UCRED_NEW))
503 mdt_exit_ucred(info);
505 if (!req->rq_auth_gss || req->rq_auth_usr_mdt || !req->rq_user_desc)
506 return old_init_ucred(info, body);
508 return new_init_ucred(info, BODY_INIT, body);
511 int mdt_init_ucred_reint(struct mdt_thread_info *info)
513 struct ptlrpc_request *req = mdt_info_req(info);
514 struct md_ucred *uc = mdt_ucred(info);
516 if ((uc->mu_valid == UCRED_OLD) || (uc->mu_valid == UCRED_NEW))
519 mdt_exit_ucred(info);
521 if (!req->rq_auth_gss || req->rq_auth_usr_mdt || !req->rq_user_desc)
522 return old_init_ucred_reint(info);
524 return new_init_ucred(info, REC_INIT, NULL);
527 /* copied from lov/lov_ea.c, just for debugging, will be removed later */
528 void mdt_dump_lmm(int level, const struct lov_mds_md *lmm)
530 const struct lov_ost_data_v1 *lod;
533 le16_to_cpu(((struct lov_user_md*)lmm)->lmm_stripe_count);
535 CDEBUG(level, "objid "LPX64", magic 0x%08X, pattern %#X\n",
536 le64_to_cpu(lmm->lmm_object_id), le32_to_cpu(lmm->lmm_magic),
537 le32_to_cpu(lmm->lmm_pattern));
538 CDEBUG(level,"stripe_size=0x%x, stripe_count=0x%x\n",
539 le32_to_cpu(lmm->lmm_stripe_size),
540 le32_to_cpu(lmm->lmm_stripe_count));
541 LASSERT(stripe_count <= (__s16)LOV_MAX_STRIPE_COUNT);
542 for (i = 0, lod = lmm->lmm_objects; i < stripe_count; i++, lod++) {
543 CDEBUG(level, "stripe %u idx %u subobj "LPX64"/"LPX64"\n",
544 i, le32_to_cpu(lod->l_ost_idx),
545 le64_to_cpu(lod->l_object_seq),
546 le64_to_cpu(lod->l_object_id));
550 void mdt_shrink_reply(struct mdt_thread_info *info)
552 struct req_capsule *pill = info->mti_pill;
553 struct mdt_body *body;
558 body = req_capsule_server_get(pill, &RMF_MDT_BODY);
559 LASSERT(body != NULL);
561 if (body->valid & (OBD_MD_FLDIREA | OBD_MD_FLEASIZE | OBD_MD_LINKNAME))
562 md_size = body->eadatasize;
566 acl_size = body->aclsize;
568 /* this replay - not send info to client */
569 if (info->mti_spec.no_create == 1) {
574 CDEBUG(D_INFO, "Shrink to md_size = %d cookie/acl_size = %d"
575 " MDSCAPA = %llx, OSSCAPA = %llx\n",
577 (unsigned long long)(body->valid & OBD_MD_FLMDSCAPA),
578 (unsigned long long)(body->valid & OBD_MD_FLOSSCAPA));
582 &RMF_ACL, or &RMF_LOGCOOKIES
583 (optional) &RMF_CAPA1,
584 (optional) &RMF_CAPA2,
585 (optional) something else
588 if (req_capsule_has_field(pill, &RMF_MDT_MD, RCL_SERVER))
589 req_capsule_shrink(pill, &RMF_MDT_MD, md_size,
591 if (req_capsule_has_field(pill, &RMF_ACL, RCL_SERVER))
592 req_capsule_shrink(pill, &RMF_ACL, acl_size, RCL_SERVER);
593 else if (req_capsule_has_field(pill, &RMF_LOGCOOKIES, RCL_SERVER))
594 req_capsule_shrink(pill, &RMF_LOGCOOKIES,
595 acl_size, RCL_SERVER);
597 if (req_capsule_has_field(pill, &RMF_CAPA1, RCL_SERVER) &&
598 !(body->valid & OBD_MD_FLMDSCAPA))
599 req_capsule_shrink(pill, &RMF_CAPA1, 0, RCL_SERVER);
601 if (req_capsule_has_field(pill, &RMF_CAPA2, RCL_SERVER) &&
602 !(body->valid & OBD_MD_FLOSSCAPA))
603 req_capsule_shrink(pill, &RMF_CAPA2, 0, RCL_SERVER);
606 * Some more field should be shrinked if needed.
607 * This should be done by those who added fields to reply message.
613 /* if object is dying, pack the lov/llog data,
614 * parameter info->mti_attr should be valid at this point! */
615 int mdt_handle_last_unlink(struct mdt_thread_info *info, struct mdt_object *mo,
616 const struct md_attr *ma)
618 struct mdt_body *repbody;
619 const struct lu_attr *la = &ma->ma_attr;
623 repbody = req_capsule_server_get(info->mti_pill, &RMF_MDT_BODY);
624 LASSERT(repbody != NULL);
626 if (ma->ma_valid & MA_INODE)
627 mdt_pack_attr2body(info, repbody, la, mdt_object_fid(mo));
629 if (ma->ma_valid & MA_LOV) {
632 if (mdt_object_exists(mo) < 0)
633 /* If it is a remote object, and we do not retrieve
634 * EA back unlink reg file*/
637 mode = lu_object_attr(&mo->mot_obj.mo_lu);
639 LASSERT(ma->ma_lmm_size);
640 mdt_dump_lmm(D_INFO, ma->ma_lmm);
641 repbody->eadatasize = ma->ma_lmm_size;
643 repbody->valid |= OBD_MD_FLEASIZE;
644 else if (S_ISDIR(mode))
645 repbody->valid |= OBD_MD_FLDIREA;
650 if (ma->ma_cookie_size && (ma->ma_valid & MA_COOKIE)) {
651 repbody->aclsize = ma->ma_cookie_size;
652 repbody->valid |= OBD_MD_FLCOOKIE;
655 if (info->mti_mdt->mdt_opts.mo_oss_capa &&
656 info->mti_exp->exp_connect_flags & OBD_CONNECT_OSS_CAPA &&
657 repbody->valid & OBD_MD_FLEASIZE) {
658 struct lustre_capa *capa;
660 capa = req_capsule_server_get(info->mti_pill, &RMF_CAPA2);
662 capa->lc_opc = CAPA_OPC_OSS_DESTROY;
663 rc = mo_capa_get(info->mti_env, mdt_object_child(mo), capa, 0);
667 repbody->valid |= OBD_MD_FLOSSCAPA;
673 static inline unsigned int attr_unpack(__u64 sa_valid) {
674 unsigned int ia_valid = 0;
676 if (sa_valid & MDS_ATTR_MODE)
677 ia_valid |= ATTR_MODE;
678 if (sa_valid & MDS_ATTR_UID)
679 ia_valid |= ATTR_UID;
680 if (sa_valid & MDS_ATTR_GID)
681 ia_valid |= ATTR_GID;
682 if (sa_valid & MDS_ATTR_SIZE)
683 ia_valid |= ATTR_SIZE;
684 if (sa_valid & MDS_ATTR_ATIME)
685 ia_valid |= ATTR_ATIME;
686 if (sa_valid & MDS_ATTR_MTIME)
687 ia_valid |= ATTR_MTIME;
688 if (sa_valid & MDS_ATTR_CTIME)
689 ia_valid |= ATTR_CTIME;
690 if (sa_valid & MDS_ATTR_ATIME_SET)
691 ia_valid |= ATTR_ATIME_SET;
692 if (sa_valid & MDS_ATTR_MTIME_SET)
693 ia_valid |= ATTR_MTIME_SET;
694 if (sa_valid & MDS_ATTR_FORCE)
695 ia_valid |= ATTR_FORCE;
696 if (sa_valid & MDS_ATTR_ATTR_FLAG)
697 ia_valid |= ATTR_ATTR_FLAG;
698 if (sa_valid & MDS_ATTR_KILL_SUID)
699 ia_valid |= ATTR_KILL_SUID;
700 if (sa_valid & MDS_ATTR_KILL_SGID)
701 ia_valid |= ATTR_KILL_SGID;
702 if (sa_valid & MDS_ATTR_CTIME_SET)
703 ia_valid |= ATTR_CTIME_SET;
704 if (sa_valid & MDS_ATTR_FROM_OPEN)
705 ia_valid |= ATTR_FROM_OPEN;
706 if (sa_valid & MDS_ATTR_BLOCKS)
707 ia_valid |= ATTR_BLOCKS;
708 if (sa_valid & MDS_OPEN_OWNEROVERRIDE)
709 ia_valid |= MDS_OPEN_OWNEROVERRIDE;
713 static __u64 mdt_attr_valid_xlate(__u64 in, struct mdt_reint_record *rr,
727 if (in & ATTR_BLOCKS)
730 if (in & ATTR_FROM_OPEN)
731 rr->rr_flags |= MRF_SETATTR_LOCKED;
733 if (in & ATTR_ATIME_SET)
736 if (in & ATTR_CTIME_SET)
739 if (in & ATTR_MTIME_SET)
742 if (in & ATTR_ATTR_FLAG)
745 if (in & ATTR_KILL_SUID)
748 if (in & ATTR_KILL_SGID)
751 if (in & MDS_OPEN_OWNEROVERRIDE)
752 ma->ma_attr_flags |= MDS_OPEN_OWNEROVERRIDE;
755 ma->ma_attr_flags |= MDS_PERM_BYPASS;
757 /*XXX need ATTR_RAW?*/
758 in &= ~(ATTR_MODE|ATTR_UID|ATTR_GID|ATTR_SIZE|ATTR_BLOCKS|
759 ATTR_ATIME|ATTR_MTIME|ATTR_CTIME|ATTR_FROM_OPEN|
760 ATTR_ATIME_SET|ATTR_CTIME_SET|ATTR_MTIME_SET|
761 ATTR_ATTR_FLAG|ATTR_RAW|MDS_OPEN_OWNEROVERRIDE|
762 ATTR_FORCE|ATTR_KILL_SUID|ATTR_KILL_SGID);
764 CERROR("Unknown attr bits: "LPX64"\n", in);
769 static int mdt_setattr_unpack_rec(struct mdt_thread_info *info)
771 struct md_ucred *uc = mdt_ucred(info);
772 struct md_attr *ma = &info->mti_attr;
773 struct lu_attr *la = &ma->ma_attr;
774 struct req_capsule *pill = info->mti_pill;
775 struct mdt_reint_record *rr = &info->mti_rr;
776 struct mdt_rec_setattr *rec;
779 CLASSERT(sizeof(struct mdt_rec_setattr)== sizeof(struct mdt_rec_reint));
780 rec = req_capsule_client_get(pill, &RMF_REC_REINT);
784 uc->mu_fsuid = rec->sa_fsuid;
785 uc->mu_fsgid = rec->sa_fsgid;
786 uc->mu_cap = rec->sa_cap;
787 uc->mu_suppgids[0] = rec->sa_suppgid;
788 uc->mu_suppgids[1] = -1;
790 rr->rr_fid1 = &rec->sa_fid;
791 la->la_valid = mdt_attr_valid_xlate(attr_unpack(rec->sa_valid), rr, ma);
792 la->la_mode = rec->sa_mode;
793 la->la_flags = rec->sa_attr_flags;
794 la->la_uid = rec->sa_uid;
795 la->la_gid = rec->sa_gid;
796 la->la_size = rec->sa_size;
797 la->la_blocks = rec->sa_blocks;
798 la->la_ctime = rec->sa_ctime;
799 la->la_atime = rec->sa_atime;
800 la->la_mtime = rec->sa_mtime;
801 ma->ma_valid = MA_INODE;
803 if (req_capsule_get_size(pill, &RMF_CAPA1, RCL_CLIENT))
804 mdt_set_capainfo(info, 0, rr->rr_fid1,
805 req_capsule_client_get(pill, &RMF_CAPA1));
810 static int mdt_ioepoch_unpack(struct mdt_thread_info *info)
812 struct req_capsule *pill = info->mti_pill;
815 if (req_capsule_get_size(pill, &RMF_MDT_EPOCH, RCL_CLIENT))
817 req_capsule_client_get(pill, &RMF_MDT_EPOCH);
819 info->mti_ioepoch = NULL;
820 RETURN(info->mti_ioepoch == NULL ? -EFAULT : 0);
823 static inline int mdt_dlmreq_unpack(struct mdt_thread_info *info) {
824 struct req_capsule *pill = info->mti_pill;
826 if (req_capsule_get_size(pill, &RMF_DLM_REQ, RCL_CLIENT)) {
827 info->mti_dlm_req = req_capsule_client_get(pill, &RMF_DLM_REQ);
828 if (info->mti_dlm_req == NULL)
835 static int mdt_setattr_unpack(struct mdt_thread_info *info)
837 struct md_attr *ma = &info->mti_attr;
838 struct req_capsule *pill = info->mti_pill;
842 rc = mdt_setattr_unpack_rec(info);
846 /* Epoch may be absent */
847 mdt_ioepoch_unpack(info);
849 ma->ma_lmm_size = req_capsule_get_size(pill, &RMF_EADATA, RCL_CLIENT);
850 if (ma->ma_lmm_size) {
851 ma->ma_lmm = req_capsule_client_get(pill, &RMF_EADATA);
852 ma->ma_valid |= MA_LOV;
855 ma->ma_cookie_size = req_capsule_get_size(pill, &RMF_LOGCOOKIES,
857 if (ma->ma_cookie_size) {
858 ma->ma_cookie = req_capsule_client_get(pill, &RMF_LOGCOOKIES);
859 ma->ma_valid |= MA_COOKIE;
862 rc = mdt_dlmreq_unpack(info);
866 int mdt_close_unpack(struct mdt_thread_info *info)
871 rc = mdt_ioepoch_unpack(info);
875 RETURN(mdt_setattr_unpack_rec(info));
878 static int mdt_create_unpack(struct mdt_thread_info *info)
880 struct md_ucred *uc = mdt_ucred(info);
881 struct mdt_rec_create *rec;
882 struct lu_attr *attr = &info->mti_attr.ma_attr;
883 struct mdt_reint_record *rr = &info->mti_rr;
884 struct req_capsule *pill = info->mti_pill;
885 struct md_op_spec *sp = &info->mti_spec;
889 CLASSERT(sizeof(struct mdt_rec_create) == sizeof(struct mdt_rec_reint));
890 rec = req_capsule_client_get(pill, &RMF_REC_REINT);
894 uc->mu_fsuid = rec->cr_fsuid;
895 uc->mu_fsgid = rec->cr_fsgid;
896 uc->mu_cap = rec->cr_cap;
897 uc->mu_suppgids[0] = rec->cr_suppgid1;
898 uc->mu_suppgids[1] = -1;
900 rr->rr_fid1 = &rec->cr_fid1;
901 rr->rr_fid2 = &rec->cr_fid2;
902 attr->la_mode = rec->cr_mode;
903 attr->la_rdev = rec->cr_rdev;
904 attr->la_uid = rec->cr_fsuid;
905 attr->la_gid = rec->cr_fsgid;
906 attr->la_ctime = rec->cr_time;
907 attr->la_mtime = rec->cr_time;
908 attr->la_atime = rec->cr_time;
909 attr->la_valid = LA_MODE | LA_RDEV | LA_UID | LA_GID |
910 LA_CTIME | LA_MTIME | LA_ATIME;
911 memset(&sp->u, 0, sizeof(sp->u));
912 sp->sp_cr_flags = get_mrc_cr_flags(rec);
913 sp->sp_ck_split = !!(rec->cr_bias & MDS_CHECK_SPLIT);
914 info->mti_cross_ref = !!(rec->cr_bias & MDS_CROSS_REF);
916 if (req_capsule_get_size(pill, &RMF_CAPA1, RCL_CLIENT))
917 mdt_set_capainfo(info, 0, rr->rr_fid1,
918 req_capsule_client_get(pill, &RMF_CAPA1));
919 mdt_set_capainfo(info, 1, rr->rr_fid2, BYPASS_CAPA);
921 if (!info->mti_cross_ref) {
922 rr->rr_name = req_capsule_client_get(pill, &RMF_NAME);
923 rr->rr_namelen = req_capsule_get_size(pill, &RMF_NAME,
925 LASSERT(rr->rr_name && rr->rr_namelen > 0);
931 #ifdef CONFIG_FS_POSIX_ACL
932 if (sp->sp_cr_flags & MDS_CREATE_RMT_ACL) {
933 if (S_ISDIR(attr->la_mode))
934 sp->u.sp_pfid = rr->rr_fid1;
935 req_capsule_extend(pill, &RQF_MDS_REINT_CREATE_RMT_ACL);
936 LASSERT(req_capsule_field_present(pill, &RMF_EADATA,
938 sp->u.sp_ea.eadata = req_capsule_client_get(pill, &RMF_EADATA);
939 sp->u.sp_ea.eadatalen = req_capsule_get_size(pill, &RMF_EADATA,
941 sp->u.sp_ea.fid = rr->rr_fid1;
945 if (S_ISDIR(attr->la_mode)) {
946 /* pass parent fid for cross-ref cases */
947 sp->u.sp_pfid = rr->rr_fid1;
948 if (sp->sp_cr_flags & MDS_CREATE_SLAVE_OBJ) {
949 /* create salve object req, need
950 * unpack split ea here
952 req_capsule_extend(pill, &RQF_MDS_REINT_CREATE_SLAVE);
953 LASSERT(req_capsule_field_present(pill, &RMF_EADATA,
955 sp->u.sp_ea.eadata = req_capsule_client_get(pill,
957 sp->u.sp_ea.eadatalen = req_capsule_get_size(pill,
960 sp->u.sp_ea.fid = rr->rr_fid1;
963 req_capsule_extend(pill, &RQF_MDS_REINT_CREATE_RMT_ACL);
964 } else if (S_ISLNK(attr->la_mode)) {
965 const char *tgt = NULL;
967 req_capsule_extend(pill, &RQF_MDS_REINT_CREATE_SYM);
968 if (req_capsule_get_size(pill, &RMF_SYMTGT, RCL_CLIENT)) {
969 tgt = req_capsule_client_get(pill, &RMF_SYMTGT);
970 sp->u.sp_symname = tgt;
975 req_capsule_extend(pill, &RQF_MDS_REINT_CREATE_RMT_ACL);
977 rc = mdt_dlmreq_unpack(info);
981 static int mdt_link_unpack(struct mdt_thread_info *info)
983 struct md_ucred *uc = mdt_ucred(info);
984 struct mdt_rec_link *rec;
985 struct lu_attr *attr = &info->mti_attr.ma_attr;
986 struct mdt_reint_record *rr = &info->mti_rr;
987 struct req_capsule *pill = info->mti_pill;
991 CLASSERT(sizeof(struct mdt_rec_link) == sizeof(struct mdt_rec_reint));
992 rec = req_capsule_client_get(pill, &RMF_REC_REINT);
996 uc->mu_fsuid = rec->lk_fsuid;
997 uc->mu_fsgid = rec->lk_fsgid;
998 uc->mu_cap = rec->lk_cap;
999 uc->mu_suppgids[0] = rec->lk_suppgid1;
1000 uc->mu_suppgids[1] = rec->lk_suppgid2;
1002 attr->la_uid = rec->lk_fsuid;
1003 attr->la_gid = rec->lk_fsgid;
1004 rr->rr_fid1 = &rec->lk_fid1;
1005 rr->rr_fid2 = &rec->lk_fid2;
1006 attr->la_ctime = rec->lk_time;
1007 attr->la_mtime = rec->lk_time;
1008 attr->la_valid = LA_UID | LA_GID | LA_CTIME | LA_MTIME;
1010 if (req_capsule_get_size(pill, &RMF_CAPA1, RCL_CLIENT))
1011 mdt_set_capainfo(info, 0, rr->rr_fid1,
1012 req_capsule_client_get(pill, &RMF_CAPA1));
1013 if (req_capsule_get_size(pill, &RMF_CAPA2, RCL_CLIENT))
1014 mdt_set_capainfo(info, 1, rr->rr_fid2,
1015 req_capsule_client_get(pill, &RMF_CAPA2));
1017 info->mti_spec.sp_ck_split = !!(rec->lk_bias & MDS_CHECK_SPLIT);
1018 info->mti_cross_ref = !!(rec->lk_bias & MDS_CROSS_REF);
1019 rr->rr_name = req_capsule_client_get(pill, &RMF_NAME);
1020 if (rr->rr_name == NULL)
1022 rr->rr_namelen = req_capsule_get_size(pill, &RMF_NAME, RCL_CLIENT) - 1;
1023 if (!info->mti_cross_ref)
1024 LASSERT(rr->rr_namelen > 0);
1026 rc = mdt_dlmreq_unpack(info);
1030 static int mdt_unlink_unpack(struct mdt_thread_info *info)
1032 struct md_ucred *uc = mdt_ucred(info);
1033 struct mdt_rec_unlink *rec;
1034 struct md_attr *ma = &info->mti_attr;
1035 struct lu_attr *attr = &info->mti_attr.ma_attr;
1036 struct mdt_reint_record *rr = &info->mti_rr;
1037 struct req_capsule *pill = info->mti_pill;
1041 CLASSERT(sizeof(struct mdt_rec_unlink) == sizeof(struct mdt_rec_reint));
1042 rec = req_capsule_client_get(pill, &RMF_REC_REINT);
1046 uc->mu_fsuid = rec->ul_fsuid;
1047 uc->mu_fsgid = rec->ul_fsgid;
1048 uc->mu_cap = rec->ul_cap;
1049 uc->mu_suppgids[0] = rec->ul_suppgid1;
1050 uc->mu_suppgids[1] = -1;
1052 attr->la_uid = rec->ul_fsuid;
1053 attr->la_gid = rec->ul_fsgid;
1054 rr->rr_fid1 = &rec->ul_fid1;
1055 rr->rr_fid2 = &rec->ul_fid2;
1056 attr->la_ctime = rec->ul_time;
1057 attr->la_mtime = rec->ul_time;
1058 attr->la_mode = rec->ul_mode;
1059 attr->la_valid = LA_UID | LA_GID | LA_CTIME | LA_MTIME | LA_MODE;
1061 if (req_capsule_get_size(pill, &RMF_CAPA1, RCL_CLIENT))
1062 mdt_set_capainfo(info, 0, rr->rr_fid1,
1063 req_capsule_client_get(pill, &RMF_CAPA1));
1065 info->mti_cross_ref = !!(rec->ul_bias & MDS_CROSS_REF);
1066 if (!info->mti_cross_ref) {
1067 rr->rr_name = req_capsule_client_get(pill, &RMF_NAME);
1068 rr->rr_namelen = req_capsule_get_size(pill, &RMF_NAME, RCL_CLIENT) - 1;
1069 if (rr->rr_name == NULL || rr->rr_namelen == 0)
1075 info->mti_spec.sp_ck_split = !!(rec->ul_bias & MDS_CHECK_SPLIT);
1076 if (rec->ul_bias & MDS_VTX_BYPASS)
1077 ma->ma_attr_flags |= MDS_VTX_BYPASS;
1079 ma->ma_attr_flags &= ~MDS_VTX_BYPASS;
1081 info->mti_spec.no_create = !!req_is_replay(mdt_info_req(info));
1083 rc = mdt_dlmreq_unpack(info);
1087 static int mdt_rename_unpack(struct mdt_thread_info *info)
1089 struct md_ucred *uc = mdt_ucred(info);
1090 struct mdt_rec_rename *rec;
1091 struct md_attr *ma = &info->mti_attr;
1092 struct lu_attr *attr = &info->mti_attr.ma_attr;
1093 struct mdt_reint_record *rr = &info->mti_rr;
1094 struct req_capsule *pill = info->mti_pill;
1098 CLASSERT(sizeof(struct mdt_rec_rename) == sizeof(struct mdt_rec_reint));
1099 rec = req_capsule_client_get(pill, &RMF_REC_REINT);
1103 uc->mu_fsuid = rec->rn_fsuid;
1104 uc->mu_fsgid = rec->rn_fsgid;
1105 uc->mu_cap = rec->rn_cap;
1106 uc->mu_suppgids[0] = rec->rn_suppgid1;
1107 uc->mu_suppgids[1] = rec->rn_suppgid2;
1109 attr->la_uid = rec->rn_fsuid;
1110 attr->la_gid = rec->rn_fsgid;
1111 rr->rr_fid1 = &rec->rn_fid1;
1112 rr->rr_fid2 = &rec->rn_fid2;
1113 attr->la_ctime = rec->rn_time;
1114 attr->la_mtime = rec->rn_time;
1115 /* rename_tgt contains the mode already */
1116 attr->la_mode = rec->rn_mode;
1117 attr->la_valid = LA_UID | LA_GID | LA_CTIME | LA_MTIME | LA_MODE;
1119 if (req_capsule_get_size(pill, &RMF_CAPA1, RCL_CLIENT))
1120 mdt_set_capainfo(info, 0, rr->rr_fid1,
1121 req_capsule_client_get(pill, &RMF_CAPA1));
1122 if (req_capsule_get_size(pill, &RMF_CAPA2, RCL_CLIENT))
1123 mdt_set_capainfo(info, 1, rr->rr_fid2,
1124 req_capsule_client_get(pill, &RMF_CAPA2));
1126 info->mti_spec.sp_ck_split = !!(rec->rn_bias & MDS_CHECK_SPLIT);
1127 info->mti_cross_ref = !!(rec->rn_bias & MDS_CROSS_REF);
1128 rr->rr_name = req_capsule_client_get(pill, &RMF_NAME);
1129 rr->rr_tgt = req_capsule_client_get(pill, &RMF_SYMTGT);
1130 if (rr->rr_name == NULL || rr->rr_tgt == NULL)
1132 rr->rr_namelen = req_capsule_get_size(pill, &RMF_NAME, RCL_CLIENT) - 1;
1133 rr->rr_tgtlen = req_capsule_get_size(pill, &RMF_SYMTGT, RCL_CLIENT) - 1;
1134 if (!info->mti_cross_ref)
1135 LASSERT(rr->rr_namelen > 0 && rr->rr_tgtlen > 0);
1136 if (rec->rn_bias & MDS_VTX_BYPASS)
1137 ma->ma_attr_flags |= MDS_VTX_BYPASS;
1139 ma->ma_attr_flags &= ~MDS_VTX_BYPASS;
1141 info->mti_spec.no_create = !!req_is_replay(mdt_info_req(info));
1143 rc = mdt_dlmreq_unpack(info);
1147 static int mdt_open_unpack(struct mdt_thread_info *info)
1149 struct md_ucred *uc = mdt_ucred(info);
1150 struct mdt_rec_create *rec;
1151 struct lu_attr *attr = &info->mti_attr.ma_attr;
1152 struct req_capsule *pill = info->mti_pill;
1153 struct mdt_reint_record *rr = &info->mti_rr;
1154 struct ptlrpc_request *req = mdt_info_req(info);
1155 struct md_op_spec *sp = &info->mti_spec;
1158 CLASSERT(sizeof(struct mdt_rec_create) == sizeof(struct mdt_rec_reint));
1159 rec = req_capsule_client_get(pill, &RMF_REC_REINT);
1163 uc->mu_fsuid = rec->cr_fsuid;
1164 uc->mu_fsgid = rec->cr_fsgid;
1165 uc->mu_cap = rec->cr_cap;
1166 uc->mu_suppgids[0] = rec->cr_suppgid1;
1167 uc->mu_suppgids[1] = rec->cr_suppgid2;
1169 rr->rr_fid1 = &rec->cr_fid1;
1170 rr->rr_fid2 = &rec->cr_fid2;
1171 rr->rr_handle = &rec->cr_old_handle;
1172 attr->la_mode = rec->cr_mode;
1173 attr->la_rdev = rec->cr_rdev;
1174 attr->la_uid = rec->cr_fsuid;
1175 attr->la_gid = rec->cr_fsgid;
1176 attr->la_ctime = rec->cr_time;
1177 attr->la_mtime = rec->cr_time;
1178 attr->la_atime = rec->cr_time;
1179 attr->la_valid = LA_MODE | LA_RDEV | LA_UID | LA_GID |
1180 LA_CTIME | LA_MTIME | LA_ATIME;
1181 memset(&info->mti_spec.u, 0, sizeof(info->mti_spec.u));
1182 info->mti_spec.sp_cr_flags = get_mrc_cr_flags(rec);
1183 /* Do not trigger ASSERTION if client miss to set such flags. */
1184 if (unlikely(info->mti_spec.sp_cr_flags == 0))
1186 info->mti_replayepoch = rec->cr_ioepoch;
1188 info->mti_spec.sp_ck_split = !!(rec->cr_bias & MDS_CHECK_SPLIT);
1189 info->mti_cross_ref = !!(rec->cr_bias & MDS_CROSS_REF);
1191 if (req_capsule_get_size(pill, &RMF_CAPA1, RCL_CLIENT))
1192 mdt_set_capainfo(info, 0, rr->rr_fid1,
1193 req_capsule_client_get(pill, &RMF_CAPA1));
1194 if (req_is_replay(req) &&
1195 req_capsule_get_size(pill, &RMF_CAPA2, RCL_CLIENT)) {
1197 mdt_set_capainfo(info, 1, rr->rr_fid2,
1198 req_capsule_client_get(pill, &RMF_CAPA2));
1201 * FIXME: capa in replay open request might have expired,
1202 * bypass capa check. Security hole?
1204 mdt_set_capainfo(info, 0, rr->rr_fid1, BYPASS_CAPA);
1205 mdt_set_capainfo(info, 1, rr->rr_fid2, BYPASS_CAPA);
1209 rr->rr_name = req_capsule_client_get(pill, &RMF_NAME);
1210 if (rr->rr_name == NULL)
1212 rr->rr_namelen = req_capsule_get_size(pill, &RMF_NAME, RCL_CLIENT) - 1;
1214 sp->u.sp_ea.eadatalen = req_capsule_get_size(pill, &RMF_EADATA,
1216 if (sp->u.sp_ea.eadatalen) {
1217 sp->u.sp_ea.eadata = req_capsule_client_get(pill, &RMF_EADATA);
1218 sp->no_create = !!req_is_replay(req);
1224 static int mdt_setxattr_unpack(struct mdt_thread_info *info)
1226 struct mdt_reint_record *rr = &info->mti_rr;
1227 struct md_ucred *uc = mdt_ucred(info);
1228 struct lu_attr *attr = &info->mti_attr.ma_attr;
1229 struct req_capsule *pill = info->mti_pill;
1230 struct mdt_rec_setxattr *rec;
1234 CLASSERT(sizeof(struct mdt_rec_setxattr) ==
1235 sizeof(struct mdt_rec_reint));
1237 rec = req_capsule_client_get(pill, &RMF_REC_REINT);
1241 uc->mu_fsuid = rec->sx_fsuid;
1242 uc->mu_fsgid = rec->sx_fsgid;
1243 uc->mu_cap = rec->sx_cap;
1244 uc->mu_suppgids[0] = rec->sx_suppgid1;
1245 uc->mu_suppgids[1] = -1;
1247 rr->rr_opcode = rec->sx_opcode;
1248 rr->rr_fid1 = &rec->sx_fid;
1249 attr->la_valid = rec->sx_valid;
1250 attr->la_ctime = rec->sx_time;
1251 attr->la_size = rec->sx_size;
1252 attr->la_flags = rec->sx_flags;
1254 if (req_capsule_get_size(pill, &RMF_CAPA1, RCL_CLIENT))
1255 mdt_set_capainfo(info, 0, rr->rr_fid1,
1256 req_capsule_client_get(pill, &RMF_CAPA1));
1258 mdt_set_capainfo(info, 0, rr->rr_fid1, BYPASS_CAPA);
1260 rr->rr_name = req_capsule_client_get(pill, &RMF_NAME);
1261 if (rr->rr_name == NULL)
1263 rr->rr_namelen = req_capsule_get_size(pill, &RMF_NAME, RCL_CLIENT) - 1;
1264 LASSERT(rr->rr_namelen > 0);
1266 rr->rr_eadatalen = req_capsule_get_size(pill, &RMF_EADATA, RCL_CLIENT);
1267 if (rr->rr_eadatalen > 0) {
1268 rr->rr_eadata = req_capsule_client_get(pill, &RMF_EADATA);
1269 if (rr->rr_eadata == NULL)
1277 typedef int (*reint_unpacker)(struct mdt_thread_info *info);
1279 static reint_unpacker mdt_reint_unpackers[REINT_MAX] = {
1280 [REINT_SETATTR] = mdt_setattr_unpack,
1281 [REINT_CREATE] = mdt_create_unpack,
1282 [REINT_LINK] = mdt_link_unpack,
1283 [REINT_UNLINK] = mdt_unlink_unpack,
1284 [REINT_RENAME] = mdt_rename_unpack,
1285 [REINT_OPEN] = mdt_open_unpack,
1286 [REINT_SETXATTR] = mdt_setxattr_unpack
1289 int mdt_reint_unpack(struct mdt_thread_info *info, __u32 op)
1294 memset(&info->mti_rr, 0, sizeof(info->mti_rr));
1295 if (op < REINT_MAX && mdt_reint_unpackers[op] != NULL) {
1296 info->mti_rr.rr_opcode = op;
1297 rc = mdt_reint_unpackers[op](info);
1299 CERROR("Unexpected opcode %d\n", op);
git://git.whamcloud.com / fs / lustre-release.git / blob