]>
git.proxmox.com Git - mirror_spl.git/blob - module/spl/spl-cred.c
1d486c1f0b1b62ceec02632abeba095d32b6cd55
1 /*****************************************************************************\
2 * Copyright (C) 2007-2010 Lawrence Livermore National Security, LLC.
3 * Copyright (C) 2007 The Regents of the University of California.
4 * Produced at Lawrence Livermore National Laboratory (cf, DISCLAIMER).
5 * Written by Brian Behlendorf <behlendorf1@llnl.gov>.
8 * This file is part of the SPL, Solaris Porting Layer.
9 * For details, see <http://zfsonlinux.org/>.
11 * The SPL is free software; you can redistribute it and/or modify it
12 * under the terms of the GNU General Public License as published by the
13 * Free Software Foundation; either version 2 of the License, or (at your
14 * option) any later version.
16 * The SPL is distributed in the hope that it will be useful, but WITHOUT
17 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
18 * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
21 * You should have received a copy of the GNU General Public License along
22 * with the SPL. If not, see <http://www.gnu.org/licenses/>.
23 *****************************************************************************
24 * Solaris Porting Layer (SPL) Credential Implementation.
25 \*****************************************************************************/
29 #ifdef DEBUG_SUBSYSTEM
30 #undef DEBUG_SUBSYSTEM
33 #define DEBUG_SUBSYSTEM S_CRED
37 cr_groups_search(const struct group_info
*group_info
, kgid_t grp
)
39 cr_groups_search(const struct group_info
*group_info
, gid_t grp
)
42 unsigned int left
, right
, mid
;
49 right
= group_info
->ngroups
;
50 while (left
< right
) {
51 mid
= (left
+ right
) / 2;
52 cmp
= KGID_TO_SGID(grp
) -
53 KGID_TO_SGID(GROUP_AT(group_info
, mid
));
65 /* Hold a reference on the credential */
69 (void)get_cred((const cred_t
*)cr
);
72 /* Free a reference on the credential */
76 put_cred((const cred_t
*)cr
);
79 /* Return the number of supplemental groups */
81 crgetngroups(const cred_t
*cr
)
83 struct group_info
*gi
;
88 #ifndef HAVE_GROUP_INFO_GID
91 * crgetgroups will only returns gi->blocks[0], which contains only
92 * the first NGROUPS_PER_BLOCK groups.
94 if (rc
> NGROUPS_PER_BLOCK
) {
96 rc
= NGROUPS_PER_BLOCK
;
103 * Return an array of supplemental gids. The returned address is safe
104 * to use as long as the caller has taken a reference with crhold().
106 * Linux 4.9 API change, group_info changed from 2d array via ->blocks to 1d
110 crgetgroups(const cred_t
*cr
)
112 struct group_info
*gi
;
116 #ifdef HAVE_GROUP_INFO_GID
117 gids
= KGIDP_TO_SGIDP(gi
->gid
);
120 gids
= KGIDP_TO_SGIDP(gi
->blocks
[0]);
125 /* Check if the passed gid is available in supplied credential. */
127 groupmember(gid_t gid
, const cred_t
*cr
)
129 struct group_info
*gi
;
133 rc
= cr_groups_search(gi
, SGID_TO_KGID(gid
));
138 /* Return the effective user id */
140 crgetuid(const cred_t
*cr
)
142 return KUID_TO_SUID(cr
->euid
);
145 /* Return the real user id */
147 crgetruid(const cred_t
*cr
)
149 return KUID_TO_SUID(cr
->uid
);
152 /* Return the saved user id */
154 crgetsuid(const cred_t
*cr
)
156 return KUID_TO_SUID(cr
->suid
);
159 /* Return the filesystem user id */
161 crgetfsuid(const cred_t
*cr
)
163 return KUID_TO_SUID(cr
->fsuid
);
166 /* Return the effective group id */
168 crgetgid(const cred_t
*cr
)
170 return KGID_TO_SGID(cr
->egid
);
173 /* Return the real group id */
175 crgetrgid(const cred_t
*cr
)
177 return KGID_TO_SGID(cr
->gid
);
180 /* Return the saved group id */
182 crgetsgid(const cred_t
*cr
)
184 return KGID_TO_SGID(cr
->sgid
);
187 /* Return the filesystem group id */
189 crgetfsgid(const cred_t
*cr
)
191 return KGID_TO_SGID(cr
->fsgid
);
194 EXPORT_SYMBOL(crhold
);
195 EXPORT_SYMBOL(crfree
);
196 EXPORT_SYMBOL(crgetuid
);
197 EXPORT_SYMBOL(crgetruid
);
198 EXPORT_SYMBOL(crgetsuid
);
199 EXPORT_SYMBOL(crgetfsuid
);
200 EXPORT_SYMBOL(crgetgid
);
201 EXPORT_SYMBOL(crgetrgid
);
202 EXPORT_SYMBOL(crgetsgid
);
203 EXPORT_SYMBOL(crgetfsgid
);
204 EXPORT_SYMBOL(crgetngroups
);
205 EXPORT_SYMBOL(crgetgroups
);
206 EXPORT_SYMBOL(groupmember
);