4 * The contents of this file are subject to the terms of the
5 * Common Development and Distribution License (the "License").
6 * You may not use this file except in compliance with the License.
8 * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
9 * or http://www.opensolaris.org/os/licensing.
10 * See the License for the specific language governing permissions
11 * and limitations under the License.
13 * When distributing Covered Code, include this CDDL HEADER in each
14 * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
15 * If applicable, add the following below this CDDL HEADER, with the
16 * fields enclosed by brackets "[]" replaced with your own identifying
17 * information: Portions Copyright [yyyy] [name of copyright owner]
23 * Copyright (c) 2005, 2010, Oracle and/or its affiliates. All rights reserved.
24 * Portions Copyright 2011 Martin Matuska
25 * Portions Copyright 2012 Pawel Jakub Dawidek <pawel@dawidek.net>
26 * Copyright (c) 2012, Joyent, Inc. All rights reserved.
27 * Copyright 2015 Nexenta Systems, Inc. All rights reserved.
28 * Copyright (c) 2014, Joyent, Inc. All rights reserved.
29 * Copyright (c) 2011, 2014 by Delphix. All rights reserved.
30 * Copyright (c) 2013 by Saso Kiselkov. All rights reserved.
31 * Copyright (c) 2013 Steven Hartland. All rights reserved.
32 * Copyright (c) 2016 Actifio, Inc. All rights reserved.
38 * This file handles the ioctls to /dev/zfs, used for configuring ZFS storage
39 * pools and filesystems, e.g. with /sbin/zfs and /sbin/zpool.
41 * There are two ways that we handle ioctls: the legacy way where almost
42 * all of the logic is in the ioctl callback, and the new way where most
43 * of the marshalling is handled in the common entry point, zfsdev_ioctl().
45 * Non-legacy ioctls should be registered by calling
46 * zfs_ioctl_register() from zfs_ioctl_init(). The ioctl is invoked
47 * from userland by lzc_ioctl().
49 * The registration arguments are as follows:
52 * The name of the ioctl. This is used for history logging. If the
53 * ioctl returns successfully (the callback returns 0), and allow_log
54 * is true, then a history log entry will be recorded with the input &
55 * output nvlists. The log entry can be printed with "zpool history -i".
58 * The ioctl request number, which userland will pass to ioctl(2).
59 * The ioctl numbers can change from release to release, because
60 * the caller (libzfs) must be matched to the kernel.
62 * zfs_secpolicy_func_t *secpolicy
63 * This function will be called before the zfs_ioc_func_t, to
64 * determine if this operation is permitted. It should return EPERM
65 * on failure, and 0 on success. Checks include determining if the
66 * dataset is visible in this zone, and if the user has either all
67 * zfs privileges in the zone (SYS_MOUNT), or has been granted permission
68 * to do this operation on this dataset with "zfs allow".
70 * zfs_ioc_namecheck_t namecheck
71 * This specifies what to expect in the zfs_cmd_t:zc_name -- a pool
72 * name, a dataset name, or nothing. If the name is not well-formed,
73 * the ioctl will fail and the callback will not be called.
74 * Therefore, the callback can assume that the name is well-formed
75 * (e.g. is null-terminated, doesn't have more than one '@' character,
76 * doesn't have invalid characters).
78 * zfs_ioc_poolcheck_t pool_check
79 * This specifies requirements on the pool state. If the pool does
80 * not meet them (is suspended or is readonly), the ioctl will fail
81 * and the callback will not be called. If any checks are specified
82 * (i.e. it is not POOL_CHECK_NONE), namecheck must not be NO_NAME.
83 * Multiple checks can be or-ed together (e.g. POOL_CHECK_SUSPENDED |
84 * POOL_CHECK_READONLY).
86 * boolean_t smush_outnvlist
87 * If smush_outnvlist is true, then the output is presumed to be a
88 * list of errors, and it will be "smushed" down to fit into the
89 * caller's buffer, by removing some entries and replacing them with a
90 * single "N_MORE_ERRORS" entry indicating how many were removed. See
91 * nvlist_smush() for details. If smush_outnvlist is false, and the
92 * outnvlist does not fit into the userland-provided buffer, then the
93 * ioctl will fail with ENOMEM.
95 * zfs_ioc_func_t *func
96 * The callback function that will perform the operation.
98 * The callback should return 0 on success, or an error number on
99 * failure. If the function fails, the userland ioctl will return -1,
100 * and errno will be set to the callback's return value. The callback
101 * will be called with the following arguments:
104 * The name of the pool or dataset to operate on, from
105 * zfs_cmd_t:zc_name. The 'namecheck' argument specifies the
106 * expected type (pool, dataset, or none).
109 * The input nvlist, deserialized from zfs_cmd_t:zc_nvlist_src. Or
110 * NULL if no input nvlist was provided. Changes to this nvlist are
111 * ignored. If the input nvlist could not be deserialized, the
112 * ioctl will fail and the callback will not be called.
115 * The output nvlist, initially empty. The callback can fill it in,
116 * and it will be returned to userland by serializing it into
117 * zfs_cmd_t:zc_nvlist_dst. If it is non-empty, and serialization
118 * fails (e.g. because the caller didn't supply a large enough
119 * buffer), then the overall ioctl will fail. See the
120 * 'smush_nvlist' argument above for additional behaviors.
122 * There are two typical uses of the output nvlist:
123 * - To return state, e.g. property values. In this case,
124 * smush_outnvlist should be false. If the buffer was not large
125 * enough, the caller will reallocate a larger buffer and try
128 * - To return multiple errors from an ioctl which makes on-disk
129 * changes. In this case, smush_outnvlist should be true.
130 * Ioctls which make on-disk modifications should generally not
131 * use the outnvl if they succeed, because the caller can not
132 * distinguish between the operation failing, and
133 * deserialization failing.
136 #include <sys/types.h>
137 #include <sys/param.h>
138 #include <sys/errno.h>
141 #include <sys/modctl.h>
142 #include <sys/open.h>
143 #include <sys/file.h>
144 #include <sys/kmem.h>
145 #include <sys/conf.h>
146 #include <sys/cmn_err.h>
147 #include <sys/stat.h>
148 #include <sys/zfs_ioctl.h>
149 #include <sys/zfs_vfsops.h>
150 #include <sys/zfs_znode.h>
153 #include <sys/spa_impl.h>
154 #include <sys/vdev.h>
155 #include <sys/priv_impl.h>
157 #include <sys/dsl_dir.h>
158 #include <sys/dsl_dataset.h>
159 #include <sys/dsl_prop.h>
160 #include <sys/dsl_deleg.h>
161 #include <sys/dmu_objset.h>
162 #include <sys/dmu_impl.h>
163 #include <sys/dmu_tx.h>
165 #include <sys/sunddi.h>
166 #include <sys/sunldi.h>
167 #include <sys/policy.h>
168 #include <sys/zone.h>
169 #include <sys/nvpair.h>
170 #include <sys/pathname.h>
171 #include <sys/mount.h>
173 #include <sys/fs/zfs.h>
174 #include <sys/zfs_ctldir.h>
175 #include <sys/zfs_dir.h>
176 #include <sys/zfs_onexit.h>
177 #include <sys/zvol.h>
178 #include <sys/dsl_scan.h>
179 #include <sharefs/share.h>
180 #include <sys/fm/util.h>
182 #include <sys/dmu_send.h>
183 #include <sys/dsl_destroy.h>
184 #include <sys/dsl_bookmark.h>
185 #include <sys/dsl_userhold.h>
186 #include <sys/zfeature.h>
188 #include <linux/miscdevice.h>
190 #include "zfs_namecheck.h"
191 #include "zfs_prop.h"
192 #include "zfs_deleg.h"
193 #include "zfs_comutil.h"
195 kmutex_t zfsdev_state_lock
;
196 zfsdev_state_t
*zfsdev_state_list
;
198 extern void zfs_init(void);
199 extern void zfs_fini(void);
201 uint_t zfs_fsyncer_key
;
202 extern uint_t rrw_tsd_key
;
203 static uint_t zfs_allow_log_key
;
205 typedef int zfs_ioc_legacy_func_t(zfs_cmd_t
*);
206 typedef int zfs_ioc_func_t(const char *, nvlist_t
*, nvlist_t
*);
207 typedef int zfs_secpolicy_func_t(zfs_cmd_t
*, nvlist_t
*, cred_t
*);
213 } zfs_ioc_namecheck_t
;
216 POOL_CHECK_NONE
= 1 << 0,
217 POOL_CHECK_SUSPENDED
= 1 << 1,
218 POOL_CHECK_READONLY
= 1 << 2,
219 } zfs_ioc_poolcheck_t
;
221 typedef struct zfs_ioc_vec
{
222 zfs_ioc_legacy_func_t
*zvec_legacy_func
;
223 zfs_ioc_func_t
*zvec_func
;
224 zfs_secpolicy_func_t
*zvec_secpolicy
;
225 zfs_ioc_namecheck_t zvec_namecheck
;
226 boolean_t zvec_allow_log
;
227 zfs_ioc_poolcheck_t zvec_pool_check
;
228 boolean_t zvec_smush_outnvlist
;
229 const char *zvec_name
;
232 /* This array is indexed by zfs_userquota_prop_t */
233 static const char *userquota_perms
[] = {
234 ZFS_DELEG_PERM_USERUSED
,
235 ZFS_DELEG_PERM_USERQUOTA
,
236 ZFS_DELEG_PERM_GROUPUSED
,
237 ZFS_DELEG_PERM_GROUPQUOTA
,
240 static int zfs_ioc_userspace_upgrade(zfs_cmd_t
*zc
);
241 static int zfs_check_settable(const char *name
, nvpair_t
*property
,
243 static int zfs_check_clearable(char *dataset
, nvlist_t
*props
,
245 static int zfs_fill_zplprops_root(uint64_t, nvlist_t
*, nvlist_t
*,
247 int zfs_set_prop_nvlist(const char *, zprop_source_t
, nvlist_t
*, nvlist_t
*);
248 static int get_nvlist(uint64_t nvl
, uint64_t size
, int iflag
, nvlist_t
**nvp
);
251 history_str_free(char *buf
)
253 kmem_free(buf
, HIS_MAX_RECORD_LEN
);
257 history_str_get(zfs_cmd_t
*zc
)
261 if (zc
->zc_history
== 0)
264 buf
= kmem_alloc(HIS_MAX_RECORD_LEN
, KM_SLEEP
);
265 if (copyinstr((void *)(uintptr_t)zc
->zc_history
,
266 buf
, HIS_MAX_RECORD_LEN
, NULL
) != 0) {
267 history_str_free(buf
);
271 buf
[HIS_MAX_RECORD_LEN
-1] = '\0';
277 * Check to see if the named dataset is currently defined as bootable
280 zfs_is_bootfs(const char *name
)
284 if (dmu_objset_hold(name
, FTAG
, &os
) == 0) {
286 ret
= (dmu_objset_id(os
) == spa_bootfs(dmu_objset_spa(os
)));
287 dmu_objset_rele(os
, FTAG
);
294 * Return non-zero if the spa version is less than requested version.
297 zfs_earlier_version(const char *name
, int version
)
301 if (spa_open(name
, &spa
, FTAG
) == 0) {
302 if (spa_version(spa
) < version
) {
303 spa_close(spa
, FTAG
);
306 spa_close(spa
, FTAG
);
312 * Return TRUE if the ZPL version is less than requested version.
315 zpl_earlier_version(const char *name
, int version
)
318 boolean_t rc
= B_TRUE
;
320 if (dmu_objset_hold(name
, FTAG
, &os
) == 0) {
323 if (dmu_objset_type(os
) != DMU_OST_ZFS
) {
324 dmu_objset_rele(os
, FTAG
);
327 /* XXX reading from non-owned objset */
328 if (zfs_get_zplprop(os
, ZFS_PROP_VERSION
, &zplversion
) == 0)
329 rc
= zplversion
< version
;
330 dmu_objset_rele(os
, FTAG
);
336 zfs_log_history(zfs_cmd_t
*zc
)
341 if ((buf
= history_str_get(zc
)) == NULL
)
344 if (spa_open(zc
->zc_name
, &spa
, FTAG
) == 0) {
345 if (spa_version(spa
) >= SPA_VERSION_ZPOOL_HISTORY
)
346 (void) spa_history_log(spa
, buf
);
347 spa_close(spa
, FTAG
);
349 history_str_free(buf
);
353 * Policy for top-level read operations (list pools). Requires no privileges,
354 * and can be used in the local zone, as there is no associated dataset.
358 zfs_secpolicy_none(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
364 * Policy for dataset read operations (list children, get statistics). Requires
365 * no privileges, but must be visible in the local zone.
369 zfs_secpolicy_read(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
371 if (INGLOBALZONE(curproc
) ||
372 zone_dataset_visible(zc
->zc_name
, NULL
))
375 return (SET_ERROR(ENOENT
));
379 zfs_dozonecheck_impl(const char *dataset
, uint64_t zoned
, cred_t
*cr
)
384 * The dataset must be visible by this zone -- check this first
385 * so they don't see EPERM on something they shouldn't know about.
387 if (!INGLOBALZONE(curproc
) &&
388 !zone_dataset_visible(dataset
, &writable
))
389 return (SET_ERROR(ENOENT
));
391 if (INGLOBALZONE(curproc
)) {
393 * If the fs is zoned, only root can access it from the
396 if (secpolicy_zfs(cr
) && zoned
)
397 return (SET_ERROR(EPERM
));
400 * If we are in a local zone, the 'zoned' property must be set.
403 return (SET_ERROR(EPERM
));
405 /* must be writable by this zone */
407 return (SET_ERROR(EPERM
));
413 zfs_dozonecheck(const char *dataset
, cred_t
*cr
)
417 if (dsl_prop_get_integer(dataset
, "zoned", &zoned
, NULL
))
418 return (SET_ERROR(ENOENT
));
420 return (zfs_dozonecheck_impl(dataset
, zoned
, cr
));
424 zfs_dozonecheck_ds(const char *dataset
, dsl_dataset_t
*ds
, cred_t
*cr
)
428 if (dsl_prop_get_int_ds(ds
, "zoned", &zoned
))
429 return (SET_ERROR(ENOENT
));
431 return (zfs_dozonecheck_impl(dataset
, zoned
, cr
));
435 zfs_secpolicy_write_perms_ds(const char *name
, dsl_dataset_t
*ds
,
436 const char *perm
, cred_t
*cr
)
440 error
= zfs_dozonecheck_ds(name
, ds
, cr
);
442 error
= secpolicy_zfs(cr
);
444 error
= dsl_deleg_access_impl(ds
, perm
, cr
);
450 zfs_secpolicy_write_perms(const char *name
, const char *perm
, cred_t
*cr
)
456 error
= dsl_pool_hold(name
, FTAG
, &dp
);
460 error
= dsl_dataset_hold(dp
, name
, FTAG
, &ds
);
462 dsl_pool_rele(dp
, FTAG
);
466 error
= zfs_secpolicy_write_perms_ds(name
, ds
, perm
, cr
);
468 dsl_dataset_rele(ds
, FTAG
);
469 dsl_pool_rele(dp
, FTAG
);
474 * Policy for setting the security label property.
476 * Returns 0 for success, non-zero for access and other errors.
479 zfs_set_slabel_policy(const char *name
, char *strval
, cred_t
*cr
)
482 char ds_hexsl
[MAXNAMELEN
];
483 bslabel_t ds_sl
, new_sl
;
484 boolean_t new_default
= FALSE
;
486 int needed_priv
= -1;
489 /* First get the existing dataset label. */
490 error
= dsl_prop_get(name
, zfs_prop_to_name(ZFS_PROP_MLSLABEL
),
491 1, sizeof (ds_hexsl
), &ds_hexsl
, NULL
);
493 return (SET_ERROR(EPERM
));
495 if (strcasecmp(strval
, ZFS_MLSLABEL_DEFAULT
) == 0)
498 /* The label must be translatable */
499 if (!new_default
&& (hexstr_to_label(strval
, &new_sl
) != 0))
500 return (SET_ERROR(EINVAL
));
503 * In a non-global zone, disallow attempts to set a label that
504 * doesn't match that of the zone; otherwise no other checks
507 if (!INGLOBALZONE(curproc
)) {
508 if (new_default
|| !blequal(&new_sl
, CR_SL(CRED())))
509 return (SET_ERROR(EPERM
));
514 * For global-zone datasets (i.e., those whose zoned property is
515 * "off", verify that the specified new label is valid for the
518 if (dsl_prop_get_integer(name
,
519 zfs_prop_to_name(ZFS_PROP_ZONED
), &zoned
, NULL
))
520 return (SET_ERROR(EPERM
));
522 if (zfs_check_global_label(name
, strval
) != 0)
523 return (SET_ERROR(EPERM
));
527 * If the existing dataset label is nondefault, check if the
528 * dataset is mounted (label cannot be changed while mounted).
529 * Get the zfs_sb_t; if there isn't one, then the dataset isn't
530 * mounted (or isn't a dataset, doesn't exist, ...).
532 if (strcasecmp(ds_hexsl
, ZFS_MLSLABEL_DEFAULT
) != 0) {
534 static char *setsl_tag
= "setsl_tag";
537 * Try to own the dataset; abort if there is any error,
538 * (e.g., already mounted, in use, or other error).
540 error
= dmu_objset_own(name
, DMU_OST_ZFS
, B_TRUE
,
543 return (SET_ERROR(EPERM
));
545 dmu_objset_disown(os
, setsl_tag
);
548 needed_priv
= PRIV_FILE_DOWNGRADE_SL
;
552 if (hexstr_to_label(strval
, &new_sl
) != 0)
553 return (SET_ERROR(EPERM
));
555 if (blstrictdom(&ds_sl
, &new_sl
))
556 needed_priv
= PRIV_FILE_DOWNGRADE_SL
;
557 else if (blstrictdom(&new_sl
, &ds_sl
))
558 needed_priv
= PRIV_FILE_UPGRADE_SL
;
560 /* dataset currently has a default label */
562 needed_priv
= PRIV_FILE_UPGRADE_SL
;
566 if (needed_priv
!= -1)
567 return (PRIV_POLICY(cr
, needed_priv
, B_FALSE
, EPERM
, NULL
));
571 #endif /* HAVE_MLSLABEL */
575 zfs_secpolicy_setprop(const char *dsname
, zfs_prop_t prop
, nvpair_t
*propval
,
581 * Check permissions for special properties.
588 * Disallow setting of 'zoned' from within a local zone.
590 if (!INGLOBALZONE(curproc
))
591 return (SET_ERROR(EPERM
));
595 case ZFS_PROP_FILESYSTEM_LIMIT
:
596 case ZFS_PROP_SNAPSHOT_LIMIT
:
597 if (!INGLOBALZONE(curproc
)) {
599 char setpoint
[MAXNAMELEN
];
601 * Unprivileged users are allowed to modify the
602 * limit on things *under* (ie. contained by)
603 * the thing they own.
605 if (dsl_prop_get_integer(dsname
, "zoned", &zoned
,
607 return (SET_ERROR(EPERM
));
608 if (!zoned
|| strlen(dsname
) <= strlen(setpoint
))
609 return (SET_ERROR(EPERM
));
613 case ZFS_PROP_MLSLABEL
:
614 if (!is_system_labeled())
615 return (SET_ERROR(EPERM
));
617 if (nvpair_value_string(propval
, &strval
) == 0) {
620 err
= zfs_set_slabel_policy(dsname
, strval
, CRED());
627 return (zfs_secpolicy_write_perms(dsname
, zfs_prop_to_name(prop
), cr
));
632 zfs_secpolicy_set_fsacl(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
636 error
= zfs_dozonecheck(zc
->zc_name
, cr
);
641 * permission to set permissions will be evaluated later in
642 * dsl_deleg_can_allow()
649 zfs_secpolicy_rollback(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
651 return (zfs_secpolicy_write_perms(zc
->zc_name
,
652 ZFS_DELEG_PERM_ROLLBACK
, cr
));
657 zfs_secpolicy_send(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
665 * Generate the current snapshot name from the given objsetid, then
666 * use that name for the secpolicy/zone checks.
668 cp
= strchr(zc
->zc_name
, '@');
670 return (SET_ERROR(EINVAL
));
671 error
= dsl_pool_hold(zc
->zc_name
, FTAG
, &dp
);
675 error
= dsl_dataset_hold_obj(dp
, zc
->zc_sendobj
, FTAG
, &ds
);
677 dsl_pool_rele(dp
, FTAG
);
681 dsl_dataset_name(ds
, zc
->zc_name
);
683 error
= zfs_secpolicy_write_perms_ds(zc
->zc_name
, ds
,
684 ZFS_DELEG_PERM_SEND
, cr
);
685 dsl_dataset_rele(ds
, FTAG
);
686 dsl_pool_rele(dp
, FTAG
);
693 zfs_secpolicy_send_new(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
695 return (zfs_secpolicy_write_perms(zc
->zc_name
,
696 ZFS_DELEG_PERM_SEND
, cr
));
699 #ifdef HAVE_SMB_SHARE
702 zfs_secpolicy_deleg_share(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
707 if ((error
= lookupname(zc
->zc_value
, UIO_SYSSPACE
,
708 NO_FOLLOW
, NULL
, &vp
)) != 0)
711 /* Now make sure mntpnt and dataset are ZFS */
713 if (vp
->v_vfsp
->vfs_fstype
!= zfsfstype
||
714 (strcmp((char *)refstr_value(vp
->v_vfsp
->vfs_resource
),
715 zc
->zc_name
) != 0)) {
717 return (SET_ERROR(EPERM
));
721 return (dsl_deleg_access(zc
->zc_name
,
722 ZFS_DELEG_PERM_SHARE
, cr
));
724 #endif /* HAVE_SMB_SHARE */
727 zfs_secpolicy_share(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
729 #ifdef HAVE_SMB_SHARE
730 if (!INGLOBALZONE(curproc
))
731 return (SET_ERROR(EPERM
));
733 if (secpolicy_nfs(cr
) == 0) {
736 return (zfs_secpolicy_deleg_share(zc
, innvl
, cr
));
739 return (SET_ERROR(ENOTSUP
));
740 #endif /* HAVE_SMB_SHARE */
744 zfs_secpolicy_smb_acl(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
746 #ifdef HAVE_SMB_SHARE
747 if (!INGLOBALZONE(curproc
))
748 return (SET_ERROR(EPERM
));
750 if (secpolicy_smb(cr
) == 0) {
753 return (zfs_secpolicy_deleg_share(zc
, innvl
, cr
));
756 return (SET_ERROR(ENOTSUP
));
757 #endif /* HAVE_SMB_SHARE */
761 zfs_get_parent(const char *datasetname
, char *parent
, int parentsize
)
766 * Remove the @bla or /bla from the end of the name to get the parent.
768 (void) strncpy(parent
, datasetname
, parentsize
);
769 cp
= strrchr(parent
, '@');
773 cp
= strrchr(parent
, '/');
775 return (SET_ERROR(ENOENT
));
783 zfs_secpolicy_destroy_perms(const char *name
, cred_t
*cr
)
787 if ((error
= zfs_secpolicy_write_perms(name
,
788 ZFS_DELEG_PERM_MOUNT
, cr
)) != 0)
791 return (zfs_secpolicy_write_perms(name
, ZFS_DELEG_PERM_DESTROY
, cr
));
796 zfs_secpolicy_destroy(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
798 return (zfs_secpolicy_destroy_perms(zc
->zc_name
, cr
));
802 * Destroying snapshots with delegated permissions requires
803 * descendant mount and destroy permissions.
807 zfs_secpolicy_destroy_snaps(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
810 nvpair_t
*pair
, *nextpair
;
813 if (nvlist_lookup_nvlist(innvl
, "snaps", &snaps
) != 0)
814 return (SET_ERROR(EINVAL
));
815 for (pair
= nvlist_next_nvpair(snaps
, NULL
); pair
!= NULL
;
817 nextpair
= nvlist_next_nvpair(snaps
, pair
);
818 error
= zfs_secpolicy_destroy_perms(nvpair_name(pair
), cr
);
819 if (error
== ENOENT
) {
821 * Ignore any snapshots that don't exist (we consider
822 * them "already destroyed"). Remove the name from the
823 * nvl here in case the snapshot is created between
824 * now and when we try to destroy it (in which case
825 * we don't want to destroy it since we haven't
826 * checked for permission).
828 fnvlist_remove_nvpair(snaps
, pair
);
839 zfs_secpolicy_rename_perms(const char *from
, const char *to
, cred_t
*cr
)
841 char parentname
[MAXNAMELEN
];
844 if ((error
= zfs_secpolicy_write_perms(from
,
845 ZFS_DELEG_PERM_RENAME
, cr
)) != 0)
848 if ((error
= zfs_secpolicy_write_perms(from
,
849 ZFS_DELEG_PERM_MOUNT
, cr
)) != 0)
852 if ((error
= zfs_get_parent(to
, parentname
,
853 sizeof (parentname
))) != 0)
856 if ((error
= zfs_secpolicy_write_perms(parentname
,
857 ZFS_DELEG_PERM_CREATE
, cr
)) != 0)
860 if ((error
= zfs_secpolicy_write_perms(parentname
,
861 ZFS_DELEG_PERM_MOUNT
, cr
)) != 0)
869 zfs_secpolicy_rename(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
871 return (zfs_secpolicy_rename_perms(zc
->zc_name
, zc
->zc_value
, cr
));
876 zfs_secpolicy_promote(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
879 dsl_dataset_t
*clone
;
882 error
= zfs_secpolicy_write_perms(zc
->zc_name
,
883 ZFS_DELEG_PERM_PROMOTE
, cr
);
887 error
= dsl_pool_hold(zc
->zc_name
, FTAG
, &dp
);
891 error
= dsl_dataset_hold(dp
, zc
->zc_name
, FTAG
, &clone
);
894 char parentname
[MAXNAMELEN
];
895 dsl_dataset_t
*origin
= NULL
;
899 error
= dsl_dataset_hold_obj(dd
->dd_pool
,
900 dsl_dir_phys(dd
)->dd_origin_obj
, FTAG
, &origin
);
902 dsl_dataset_rele(clone
, FTAG
);
903 dsl_pool_rele(dp
, FTAG
);
907 error
= zfs_secpolicy_write_perms_ds(zc
->zc_name
, clone
,
908 ZFS_DELEG_PERM_MOUNT
, cr
);
910 dsl_dataset_name(origin
, parentname
);
912 error
= zfs_secpolicy_write_perms_ds(parentname
, origin
,
913 ZFS_DELEG_PERM_PROMOTE
, cr
);
915 dsl_dataset_rele(clone
, FTAG
);
916 dsl_dataset_rele(origin
, FTAG
);
918 dsl_pool_rele(dp
, FTAG
);
924 zfs_secpolicy_recv(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
928 if ((error
= zfs_secpolicy_write_perms(zc
->zc_name
,
929 ZFS_DELEG_PERM_RECEIVE
, cr
)) != 0)
932 if ((error
= zfs_secpolicy_write_perms(zc
->zc_name
,
933 ZFS_DELEG_PERM_MOUNT
, cr
)) != 0)
936 return (zfs_secpolicy_write_perms(zc
->zc_name
,
937 ZFS_DELEG_PERM_CREATE
, cr
));
941 zfs_secpolicy_snapshot_perms(const char *name
, cred_t
*cr
)
943 return (zfs_secpolicy_write_perms(name
,
944 ZFS_DELEG_PERM_SNAPSHOT
, cr
));
948 * Check for permission to create each snapshot in the nvlist.
952 zfs_secpolicy_snapshot(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
958 if (nvlist_lookup_nvlist(innvl
, "snaps", &snaps
) != 0)
959 return (SET_ERROR(EINVAL
));
960 for (pair
= nvlist_next_nvpair(snaps
, NULL
); pair
!= NULL
;
961 pair
= nvlist_next_nvpair(snaps
, pair
)) {
962 char *name
= nvpair_name(pair
);
963 char *atp
= strchr(name
, '@');
966 error
= SET_ERROR(EINVAL
);
970 error
= zfs_secpolicy_snapshot_perms(name
, cr
);
979 * Check for permission to create each snapshot in the nvlist.
983 zfs_secpolicy_bookmark(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
988 for (pair
= nvlist_next_nvpair(innvl
, NULL
);
989 pair
!= NULL
; pair
= nvlist_next_nvpair(innvl
, pair
)) {
990 char *name
= nvpair_name(pair
);
991 char *hashp
= strchr(name
, '#');
994 error
= SET_ERROR(EINVAL
);
998 error
= zfs_secpolicy_write_perms(name
,
999 ZFS_DELEG_PERM_BOOKMARK
, cr
);
1009 zfs_secpolicy_destroy_bookmarks(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
1011 nvpair_t
*pair
, *nextpair
;
1014 for (pair
= nvlist_next_nvpair(innvl
, NULL
); pair
!= NULL
;
1016 char *name
= nvpair_name(pair
);
1017 char *hashp
= strchr(name
, '#');
1018 nextpair
= nvlist_next_nvpair(innvl
, pair
);
1020 if (hashp
== NULL
) {
1021 error
= SET_ERROR(EINVAL
);
1026 error
= zfs_secpolicy_write_perms(name
,
1027 ZFS_DELEG_PERM_DESTROY
, cr
);
1029 if (error
== ENOENT
) {
1031 * Ignore any filesystems that don't exist (we consider
1032 * their bookmarks "already destroyed"). Remove
1033 * the name from the nvl here in case the filesystem
1034 * is created between now and when we try to destroy
1035 * the bookmark (in which case we don't want to
1036 * destroy it since we haven't checked for permission).
1038 fnvlist_remove_nvpair(innvl
, pair
);
1050 zfs_secpolicy_log_history(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
1053 * Even root must have a proper TSD so that we know what pool
1056 if (tsd_get(zfs_allow_log_key
) == NULL
)
1057 return (SET_ERROR(EPERM
));
1062 zfs_secpolicy_create_clone(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
1064 char parentname
[MAXNAMELEN
];
1068 if ((error
= zfs_get_parent(zc
->zc_name
, parentname
,
1069 sizeof (parentname
))) != 0)
1072 if (nvlist_lookup_string(innvl
, "origin", &origin
) == 0 &&
1073 (error
= zfs_secpolicy_write_perms(origin
,
1074 ZFS_DELEG_PERM_CLONE
, cr
)) != 0)
1077 if ((error
= zfs_secpolicy_write_perms(parentname
,
1078 ZFS_DELEG_PERM_CREATE
, cr
)) != 0)
1081 return (zfs_secpolicy_write_perms(parentname
,
1082 ZFS_DELEG_PERM_MOUNT
, cr
));
1086 * Policy for pool operations - create/destroy pools, add vdevs, etc. Requires
1087 * SYS_CONFIG privilege, which is not available in a local zone.
1091 zfs_secpolicy_config(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
1093 if (secpolicy_sys_config(cr
, B_FALSE
) != 0)
1094 return (SET_ERROR(EPERM
));
1100 * Policy for object to name lookups.
1104 zfs_secpolicy_diff(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
1108 if ((error
= secpolicy_sys_config(cr
, B_FALSE
)) == 0)
1111 error
= zfs_secpolicy_write_perms(zc
->zc_name
, ZFS_DELEG_PERM_DIFF
, cr
);
1116 * Policy for fault injection. Requires all privileges.
1120 zfs_secpolicy_inject(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
1122 return (secpolicy_zinject(cr
));
1127 zfs_secpolicy_inherit_prop(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
1129 zfs_prop_t prop
= zfs_name_to_prop(zc
->zc_value
);
1131 if (prop
== ZPROP_INVAL
) {
1132 if (!zfs_prop_user(zc
->zc_value
))
1133 return (SET_ERROR(EINVAL
));
1134 return (zfs_secpolicy_write_perms(zc
->zc_name
,
1135 ZFS_DELEG_PERM_USERPROP
, cr
));
1137 return (zfs_secpolicy_setprop(zc
->zc_name
, prop
,
1143 zfs_secpolicy_userspace_one(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
1145 int err
= zfs_secpolicy_read(zc
, innvl
, cr
);
1149 if (zc
->zc_objset_type
>= ZFS_NUM_USERQUOTA_PROPS
)
1150 return (SET_ERROR(EINVAL
));
1152 if (zc
->zc_value
[0] == 0) {
1154 * They are asking about a posix uid/gid. If it's
1155 * themself, allow it.
1157 if (zc
->zc_objset_type
== ZFS_PROP_USERUSED
||
1158 zc
->zc_objset_type
== ZFS_PROP_USERQUOTA
) {
1159 if (zc
->zc_guid
== crgetuid(cr
))
1162 if (groupmember(zc
->zc_guid
, cr
))
1167 return (zfs_secpolicy_write_perms(zc
->zc_name
,
1168 userquota_perms
[zc
->zc_objset_type
], cr
));
1172 zfs_secpolicy_userspace_many(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
1174 int err
= zfs_secpolicy_read(zc
, innvl
, cr
);
1178 if (zc
->zc_objset_type
>= ZFS_NUM_USERQUOTA_PROPS
)
1179 return (SET_ERROR(EINVAL
));
1181 return (zfs_secpolicy_write_perms(zc
->zc_name
,
1182 userquota_perms
[zc
->zc_objset_type
], cr
));
1187 zfs_secpolicy_userspace_upgrade(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
1189 return (zfs_secpolicy_setprop(zc
->zc_name
, ZFS_PROP_VERSION
,
1195 zfs_secpolicy_hold(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
1201 error
= nvlist_lookup_nvlist(innvl
, "holds", &holds
);
1203 return (SET_ERROR(EINVAL
));
1205 for (pair
= nvlist_next_nvpair(holds
, NULL
); pair
!= NULL
;
1206 pair
= nvlist_next_nvpair(holds
, pair
)) {
1207 char fsname
[MAXNAMELEN
];
1208 error
= dmu_fsname(nvpair_name(pair
), fsname
);
1211 error
= zfs_secpolicy_write_perms(fsname
,
1212 ZFS_DELEG_PERM_HOLD
, cr
);
1221 zfs_secpolicy_release(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
1226 for (pair
= nvlist_next_nvpair(innvl
, NULL
); pair
!= NULL
;
1227 pair
= nvlist_next_nvpair(innvl
, pair
)) {
1228 char fsname
[MAXNAMELEN
];
1229 error
= dmu_fsname(nvpair_name(pair
), fsname
);
1232 error
= zfs_secpolicy_write_perms(fsname
,
1233 ZFS_DELEG_PERM_RELEASE
, cr
);
1241 * Policy for allowing temporary snapshots to be taken or released
1244 zfs_secpolicy_tmp_snapshot(zfs_cmd_t
*zc
, nvlist_t
*innvl
, cred_t
*cr
)
1247 * A temporary snapshot is the same as a snapshot,
1248 * hold, destroy and release all rolled into one.
1249 * Delegated diff alone is sufficient that we allow this.
1253 if ((error
= zfs_secpolicy_write_perms(zc
->zc_name
,
1254 ZFS_DELEG_PERM_DIFF
, cr
)) == 0)
1257 error
= zfs_secpolicy_snapshot_perms(zc
->zc_name
, cr
);
1259 error
= zfs_secpolicy_hold(zc
, innvl
, cr
);
1261 error
= zfs_secpolicy_release(zc
, innvl
, cr
);
1263 error
= zfs_secpolicy_destroy(zc
, innvl
, cr
);
1268 * Returns the nvlist as specified by the user in the zfs_cmd_t.
1271 get_nvlist(uint64_t nvl
, uint64_t size
, int iflag
, nvlist_t
**nvp
)
1275 nvlist_t
*list
= NULL
;
1278 * Read in and unpack the user-supplied nvlist.
1281 return (SET_ERROR(EINVAL
));
1283 packed
= vmem_alloc(size
, KM_SLEEP
);
1285 if ((error
= ddi_copyin((void *)(uintptr_t)nvl
, packed
, size
,
1287 vmem_free(packed
, size
);
1288 return (SET_ERROR(EFAULT
));
1291 if ((error
= nvlist_unpack(packed
, size
, &list
, 0)) != 0) {
1292 vmem_free(packed
, size
);
1296 vmem_free(packed
, size
);
1303 * Reduce the size of this nvlist until it can be serialized in 'max' bytes.
1304 * Entries will be removed from the end of the nvlist, and one int32 entry
1305 * named "N_MORE_ERRORS" will be added indicating how many entries were
1309 nvlist_smush(nvlist_t
*errors
, size_t max
)
1313 size
= fnvlist_size(errors
);
1316 nvpair_t
*more_errors
;
1320 return (SET_ERROR(ENOMEM
));
1322 fnvlist_add_int32(errors
, ZPROP_N_MORE_ERRORS
, 0);
1323 more_errors
= nvlist_prev_nvpair(errors
, NULL
);
1326 nvpair_t
*pair
= nvlist_prev_nvpair(errors
,
1328 fnvlist_remove_nvpair(errors
, pair
);
1330 size
= fnvlist_size(errors
);
1331 } while (size
> max
);
1333 fnvlist_remove_nvpair(errors
, more_errors
);
1334 fnvlist_add_int32(errors
, ZPROP_N_MORE_ERRORS
, n
);
1335 ASSERT3U(fnvlist_size(errors
), <=, max
);
1342 put_nvlist(zfs_cmd_t
*zc
, nvlist_t
*nvl
)
1344 char *packed
= NULL
;
1348 size
= fnvlist_size(nvl
);
1350 if (size
> zc
->zc_nvlist_dst_size
) {
1351 error
= SET_ERROR(ENOMEM
);
1353 packed
= fnvlist_pack(nvl
, &size
);
1354 if (ddi_copyout(packed
, (void *)(uintptr_t)zc
->zc_nvlist_dst
,
1355 size
, zc
->zc_iflags
) != 0)
1356 error
= SET_ERROR(EFAULT
);
1357 fnvlist_pack_free(packed
, size
);
1360 zc
->zc_nvlist_dst_size
= size
;
1361 zc
->zc_nvlist_dst_filled
= B_TRUE
;
1366 get_zfs_sb(const char *dsname
, zfs_sb_t
**zsbp
)
1371 error
= dmu_objset_hold(dsname
, FTAG
, &os
);
1374 if (dmu_objset_type(os
) != DMU_OST_ZFS
) {
1375 dmu_objset_rele(os
, FTAG
);
1376 return (SET_ERROR(EINVAL
));
1379 mutex_enter(&os
->os_user_ptr_lock
);
1380 *zsbp
= dmu_objset_get_user(os
);
1381 if (*zsbp
&& (*zsbp
)->z_sb
) {
1382 atomic_inc(&((*zsbp
)->z_sb
->s_active
));
1384 error
= SET_ERROR(ESRCH
);
1386 mutex_exit(&os
->os_user_ptr_lock
);
1387 dmu_objset_rele(os
, FTAG
);
1392 * Find a zfs_sb_t for a mounted filesystem, or create our own, in which
1393 * case its z_sb will be NULL, and it will be opened as the owner.
1394 * If 'writer' is set, the z_teardown_lock will be held for RW_WRITER,
1395 * which prevents all inode ops from running.
1398 zfs_sb_hold(const char *name
, void *tag
, zfs_sb_t
**zsbp
, boolean_t writer
)
1402 if (get_zfs_sb(name
, zsbp
) != 0)
1403 error
= zfs_sb_create(name
, NULL
, zsbp
);
1405 rrm_enter(&(*zsbp
)->z_teardown_lock
, (writer
) ? RW_WRITER
:
1407 if ((*zsbp
)->z_unmounted
) {
1409 * XXX we could probably try again, since the unmounting
1410 * thread should be just about to disassociate the
1411 * objset from the zsb.
1413 rrm_exit(&(*zsbp
)->z_teardown_lock
, tag
);
1414 return (SET_ERROR(EBUSY
));
1421 zfs_sb_rele(zfs_sb_t
*zsb
, void *tag
)
1423 rrm_exit(&zsb
->z_teardown_lock
, tag
);
1426 deactivate_super(zsb
->z_sb
);
1428 dmu_objset_disown(zsb
->z_os
, zsb
);
1434 zfs_ioc_pool_create(zfs_cmd_t
*zc
)
1437 nvlist_t
*config
, *props
= NULL
;
1438 nvlist_t
*rootprops
= NULL
;
1439 nvlist_t
*zplprops
= NULL
;
1441 if ((error
= get_nvlist(zc
->zc_nvlist_conf
, zc
->zc_nvlist_conf_size
,
1442 zc
->zc_iflags
, &config
)))
1445 if (zc
->zc_nvlist_src_size
!= 0 && (error
=
1446 get_nvlist(zc
->zc_nvlist_src
, zc
->zc_nvlist_src_size
,
1447 zc
->zc_iflags
, &props
))) {
1448 nvlist_free(config
);
1453 nvlist_t
*nvl
= NULL
;
1454 uint64_t version
= SPA_VERSION
;
1456 (void) nvlist_lookup_uint64(props
,
1457 zpool_prop_to_name(ZPOOL_PROP_VERSION
), &version
);
1458 if (!SPA_VERSION_IS_SUPPORTED(version
)) {
1459 error
= SET_ERROR(EINVAL
);
1460 goto pool_props_bad
;
1462 (void) nvlist_lookup_nvlist(props
, ZPOOL_ROOTFS_PROPS
, &nvl
);
1464 error
= nvlist_dup(nvl
, &rootprops
, KM_SLEEP
);
1466 nvlist_free(config
);
1470 (void) nvlist_remove_all(props
, ZPOOL_ROOTFS_PROPS
);
1472 VERIFY(nvlist_alloc(&zplprops
, NV_UNIQUE_NAME
, KM_SLEEP
) == 0);
1473 error
= zfs_fill_zplprops_root(version
, rootprops
,
1476 goto pool_props_bad
;
1479 error
= spa_create(zc
->zc_name
, config
, props
, zplprops
);
1482 * Set the remaining root properties
1484 if (!error
&& (error
= zfs_set_prop_nvlist(zc
->zc_name
,
1485 ZPROP_SRC_LOCAL
, rootprops
, NULL
)) != 0)
1486 (void) spa_destroy(zc
->zc_name
);
1489 nvlist_free(rootprops
);
1490 nvlist_free(zplprops
);
1491 nvlist_free(config
);
1498 zfs_ioc_pool_destroy(zfs_cmd_t
*zc
)
1501 zfs_log_history(zc
);
1502 error
= spa_destroy(zc
->zc_name
);
1508 zfs_ioc_pool_import(zfs_cmd_t
*zc
)
1510 nvlist_t
*config
, *props
= NULL
;
1514 if ((error
= get_nvlist(zc
->zc_nvlist_conf
, zc
->zc_nvlist_conf_size
,
1515 zc
->zc_iflags
, &config
)) != 0)
1518 if (zc
->zc_nvlist_src_size
!= 0 && (error
=
1519 get_nvlist(zc
->zc_nvlist_src
, zc
->zc_nvlist_src_size
,
1520 zc
->zc_iflags
, &props
))) {
1521 nvlist_free(config
);
1525 if (nvlist_lookup_uint64(config
, ZPOOL_CONFIG_POOL_GUID
, &guid
) != 0 ||
1526 guid
!= zc
->zc_guid
)
1527 error
= SET_ERROR(EINVAL
);
1529 error
= spa_import(zc
->zc_name
, config
, props
, zc
->zc_cookie
);
1531 if (zc
->zc_nvlist_dst
!= 0) {
1534 if ((err
= put_nvlist(zc
, config
)) != 0)
1538 nvlist_free(config
);
1545 zfs_ioc_pool_export(zfs_cmd_t
*zc
)
1548 boolean_t force
= (boolean_t
)zc
->zc_cookie
;
1549 boolean_t hardforce
= (boolean_t
)zc
->zc_guid
;
1551 zfs_log_history(zc
);
1552 error
= spa_export(zc
->zc_name
, NULL
, force
, hardforce
);
1558 zfs_ioc_pool_configs(zfs_cmd_t
*zc
)
1563 if ((configs
= spa_all_configs(&zc
->zc_cookie
)) == NULL
)
1564 return (SET_ERROR(EEXIST
));
1566 error
= put_nvlist(zc
, configs
);
1568 nvlist_free(configs
);
1575 * zc_name name of the pool
1578 * zc_cookie real errno
1579 * zc_nvlist_dst config nvlist
1580 * zc_nvlist_dst_size size of config nvlist
1583 zfs_ioc_pool_stats(zfs_cmd_t
*zc
)
1589 error
= spa_get_stats(zc
->zc_name
, &config
, zc
->zc_value
,
1590 sizeof (zc
->zc_value
));
1592 if (config
!= NULL
) {
1593 ret
= put_nvlist(zc
, config
);
1594 nvlist_free(config
);
1597 * The config may be present even if 'error' is non-zero.
1598 * In this case we return success, and preserve the real errno
1601 zc
->zc_cookie
= error
;
1610 * Try to import the given pool, returning pool stats as appropriate so that
1611 * user land knows which devices are available and overall pool health.
1614 zfs_ioc_pool_tryimport(zfs_cmd_t
*zc
)
1616 nvlist_t
*tryconfig
, *config
;
1619 if ((error
= get_nvlist(zc
->zc_nvlist_conf
, zc
->zc_nvlist_conf_size
,
1620 zc
->zc_iflags
, &tryconfig
)) != 0)
1623 config
= spa_tryimport(tryconfig
);
1625 nvlist_free(tryconfig
);
1628 return (SET_ERROR(EINVAL
));
1630 error
= put_nvlist(zc
, config
);
1631 nvlist_free(config
);
1638 * zc_name name of the pool
1639 * zc_cookie scan func (pool_scan_func_t)
1642 zfs_ioc_pool_scan(zfs_cmd_t
*zc
)
1647 if ((error
= spa_open(zc
->zc_name
, &spa
, FTAG
)) != 0)
1650 if (zc
->zc_cookie
== POOL_SCAN_NONE
)
1651 error
= spa_scan_stop(spa
);
1653 error
= spa_scan(spa
, zc
->zc_cookie
);
1655 spa_close(spa
, FTAG
);
1661 zfs_ioc_pool_freeze(zfs_cmd_t
*zc
)
1666 error
= spa_open(zc
->zc_name
, &spa
, FTAG
);
1669 spa_close(spa
, FTAG
);
1675 zfs_ioc_pool_upgrade(zfs_cmd_t
*zc
)
1680 if ((error
= spa_open(zc
->zc_name
, &spa
, FTAG
)) != 0)
1683 if (zc
->zc_cookie
< spa_version(spa
) ||
1684 !SPA_VERSION_IS_SUPPORTED(zc
->zc_cookie
)) {
1685 spa_close(spa
, FTAG
);
1686 return (SET_ERROR(EINVAL
));
1689 spa_upgrade(spa
, zc
->zc_cookie
);
1690 spa_close(spa
, FTAG
);
1696 zfs_ioc_pool_get_history(zfs_cmd_t
*zc
)
1703 if ((size
= zc
->zc_history_len
) == 0)
1704 return (SET_ERROR(EINVAL
));
1706 if ((error
= spa_open(zc
->zc_name
, &spa
, FTAG
)) != 0)
1709 if (spa_version(spa
) < SPA_VERSION_ZPOOL_HISTORY
) {
1710 spa_close(spa
, FTAG
);
1711 return (SET_ERROR(ENOTSUP
));
1714 hist_buf
= vmem_alloc(size
, KM_SLEEP
);
1715 if ((error
= spa_history_get(spa
, &zc
->zc_history_offset
,
1716 &zc
->zc_history_len
, hist_buf
)) == 0) {
1717 error
= ddi_copyout(hist_buf
,
1718 (void *)(uintptr_t)zc
->zc_history
,
1719 zc
->zc_history_len
, zc
->zc_iflags
);
1722 spa_close(spa
, FTAG
);
1723 vmem_free(hist_buf
, size
);
1728 zfs_ioc_pool_reguid(zfs_cmd_t
*zc
)
1733 error
= spa_open(zc
->zc_name
, &spa
, FTAG
);
1735 error
= spa_change_guid(spa
);
1736 spa_close(spa
, FTAG
);
1742 zfs_ioc_dsobj_to_dsname(zfs_cmd_t
*zc
)
1744 return (dsl_dsobj_to_dsname(zc
->zc_name
, zc
->zc_obj
, zc
->zc_value
));
1749 * zc_name name of filesystem
1750 * zc_obj object to find
1753 * zc_value name of object
1756 zfs_ioc_obj_to_path(zfs_cmd_t
*zc
)
1761 /* XXX reading from objset not owned */
1762 if ((error
= dmu_objset_hold(zc
->zc_name
, FTAG
, &os
)) != 0)
1764 if (dmu_objset_type(os
) != DMU_OST_ZFS
) {
1765 dmu_objset_rele(os
, FTAG
);
1766 return (SET_ERROR(EINVAL
));
1768 error
= zfs_obj_to_path(os
, zc
->zc_obj
, zc
->zc_value
,
1769 sizeof (zc
->zc_value
));
1770 dmu_objset_rele(os
, FTAG
);
1777 * zc_name name of filesystem
1778 * zc_obj object to find
1781 * zc_stat stats on object
1782 * zc_value path to object
1785 zfs_ioc_obj_to_stats(zfs_cmd_t
*zc
)
1790 /* XXX reading from objset not owned */
1791 if ((error
= dmu_objset_hold(zc
->zc_name
, FTAG
, &os
)) != 0)
1793 if (dmu_objset_type(os
) != DMU_OST_ZFS
) {
1794 dmu_objset_rele(os
, FTAG
);
1795 return (SET_ERROR(EINVAL
));
1797 error
= zfs_obj_to_stats(os
, zc
->zc_obj
, &zc
->zc_stat
, zc
->zc_value
,
1798 sizeof (zc
->zc_value
));
1799 dmu_objset_rele(os
, FTAG
);
1805 zfs_ioc_vdev_add(zfs_cmd_t
*zc
)
1811 error
= spa_open(zc
->zc_name
, &spa
, FTAG
);
1815 error
= get_nvlist(zc
->zc_nvlist_conf
, zc
->zc_nvlist_conf_size
,
1816 zc
->zc_iflags
, &config
);
1818 error
= spa_vdev_add(spa
, config
);
1819 nvlist_free(config
);
1821 spa_close(spa
, FTAG
);
1827 * zc_name name of the pool
1828 * zc_nvlist_conf nvlist of devices to remove
1829 * zc_cookie to stop the remove?
1832 zfs_ioc_vdev_remove(zfs_cmd_t
*zc
)
1837 error
= spa_open(zc
->zc_name
, &spa
, FTAG
);
1840 error
= spa_vdev_remove(spa
, zc
->zc_guid
, B_FALSE
);
1841 spa_close(spa
, FTAG
);
1846 zfs_ioc_vdev_set_state(zfs_cmd_t
*zc
)
1850 vdev_state_t newstate
= VDEV_STATE_UNKNOWN
;
1852 if ((error
= spa_open(zc
->zc_name
, &spa
, FTAG
)) != 0)
1854 switch (zc
->zc_cookie
) {
1855 case VDEV_STATE_ONLINE
:
1856 error
= vdev_online(spa
, zc
->zc_guid
, zc
->zc_obj
, &newstate
);
1859 case VDEV_STATE_OFFLINE
:
1860 error
= vdev_offline(spa
, zc
->zc_guid
, zc
->zc_obj
);
1863 case VDEV_STATE_FAULTED
:
1864 if (zc
->zc_obj
!= VDEV_AUX_ERR_EXCEEDED
&&
1865 zc
->zc_obj
!= VDEV_AUX_EXTERNAL
)
1866 zc
->zc_obj
= VDEV_AUX_ERR_EXCEEDED
;
1868 error
= vdev_fault(spa
, zc
->zc_guid
, zc
->zc_obj
);
1871 case VDEV_STATE_DEGRADED
:
1872 if (zc
->zc_obj
!= VDEV_AUX_ERR_EXCEEDED
&&
1873 zc
->zc_obj
!= VDEV_AUX_EXTERNAL
)
1874 zc
->zc_obj
= VDEV_AUX_ERR_EXCEEDED
;
1876 error
= vdev_degrade(spa
, zc
->zc_guid
, zc
->zc_obj
);
1880 error
= SET_ERROR(EINVAL
);
1882 zc
->zc_cookie
= newstate
;
1883 spa_close(spa
, FTAG
);
1888 zfs_ioc_vdev_attach(zfs_cmd_t
*zc
)
1891 int replacing
= zc
->zc_cookie
;
1895 if ((error
= spa_open(zc
->zc_name
, &spa
, FTAG
)) != 0)
1898 if ((error
= get_nvlist(zc
->zc_nvlist_conf
, zc
->zc_nvlist_conf_size
,
1899 zc
->zc_iflags
, &config
)) == 0) {
1900 error
= spa_vdev_attach(spa
, zc
->zc_guid
, config
, replacing
);
1901 nvlist_free(config
);
1904 spa_close(spa
, FTAG
);
1909 zfs_ioc_vdev_detach(zfs_cmd_t
*zc
)
1914 if ((error
= spa_open(zc
->zc_name
, &spa
, FTAG
)) != 0)
1917 error
= spa_vdev_detach(spa
, zc
->zc_guid
, 0, B_FALSE
);
1919 spa_close(spa
, FTAG
);
1924 zfs_ioc_vdev_split(zfs_cmd_t
*zc
)
1927 nvlist_t
*config
, *props
= NULL
;
1929 boolean_t exp
= !!(zc
->zc_cookie
& ZPOOL_EXPORT_AFTER_SPLIT
);
1931 if ((error
= spa_open(zc
->zc_name
, &spa
, FTAG
)) != 0)
1934 if ((error
= get_nvlist(zc
->zc_nvlist_conf
, zc
->zc_nvlist_conf_size
,
1935 zc
->zc_iflags
, &config
))) {
1936 spa_close(spa
, FTAG
);
1940 if (zc
->zc_nvlist_src_size
!= 0 && (error
=
1941 get_nvlist(zc
->zc_nvlist_src
, zc
->zc_nvlist_src_size
,
1942 zc
->zc_iflags
, &props
))) {
1943 spa_close(spa
, FTAG
);
1944 nvlist_free(config
);
1948 error
= spa_vdev_split_mirror(spa
, zc
->zc_string
, config
, props
, exp
);
1950 spa_close(spa
, FTAG
);
1952 nvlist_free(config
);
1959 zfs_ioc_vdev_setpath(zfs_cmd_t
*zc
)
1962 char *path
= zc
->zc_value
;
1963 uint64_t guid
= zc
->zc_guid
;
1966 error
= spa_open(zc
->zc_name
, &spa
, FTAG
);
1970 error
= spa_vdev_setpath(spa
, guid
, path
);
1971 spa_close(spa
, FTAG
);
1976 zfs_ioc_vdev_setfru(zfs_cmd_t
*zc
)
1979 char *fru
= zc
->zc_value
;
1980 uint64_t guid
= zc
->zc_guid
;
1983 error
= spa_open(zc
->zc_name
, &spa
, FTAG
);
1987 error
= spa_vdev_setfru(spa
, guid
, fru
);
1988 spa_close(spa
, FTAG
);
1993 zfs_ioc_objset_stats_impl(zfs_cmd_t
*zc
, objset_t
*os
)
1998 dmu_objset_fast_stat(os
, &zc
->zc_objset_stats
);
2000 if (zc
->zc_nvlist_dst
!= 0 &&
2001 (error
= dsl_prop_get_all(os
, &nv
)) == 0) {
2002 dmu_objset_stats(os
, nv
);
2004 * NB: zvol_get_stats() will read the objset contents,
2005 * which we aren't supposed to do with a
2006 * DS_MODE_USER hold, because it could be
2007 * inconsistent. So this is a bit of a workaround...
2008 * XXX reading with out owning
2010 if (!zc
->zc_objset_stats
.dds_inconsistent
&&
2011 dmu_objset_type(os
) == DMU_OST_ZVOL
) {
2012 error
= zvol_get_stats(os
, nv
);
2018 error
= put_nvlist(zc
, nv
);
2027 * zc_name name of filesystem
2028 * zc_nvlist_dst_size size of buffer for property nvlist
2031 * zc_objset_stats stats
2032 * zc_nvlist_dst property nvlist
2033 * zc_nvlist_dst_size size of property nvlist
2036 zfs_ioc_objset_stats(zfs_cmd_t
*zc
)
2041 error
= dmu_objset_hold(zc
->zc_name
, FTAG
, &os
);
2043 error
= zfs_ioc_objset_stats_impl(zc
, os
);
2044 dmu_objset_rele(os
, FTAG
);
2052 * zc_name name of filesystem
2053 * zc_nvlist_dst_size size of buffer for property nvlist
2056 * zc_nvlist_dst received property nvlist
2057 * zc_nvlist_dst_size size of received property nvlist
2059 * Gets received properties (distinct from local properties on or after
2060 * SPA_VERSION_RECVD_PROPS) for callers who want to differentiate received from
2061 * local property values.
2064 zfs_ioc_objset_recvd_props(zfs_cmd_t
*zc
)
2070 * Without this check, we would return local property values if the
2071 * caller has not already received properties on or after
2072 * SPA_VERSION_RECVD_PROPS.
2074 if (!dsl_prop_get_hasrecvd(zc
->zc_name
))
2075 return (SET_ERROR(ENOTSUP
));
2077 if (zc
->zc_nvlist_dst
!= 0 &&
2078 (error
= dsl_prop_get_received(zc
->zc_name
, &nv
)) == 0) {
2079 error
= put_nvlist(zc
, nv
);
2087 nvl_add_zplprop(objset_t
*os
, nvlist_t
*props
, zfs_prop_t prop
)
2093 * zfs_get_zplprop() will either find a value or give us
2094 * the default value (if there is one).
2096 if ((error
= zfs_get_zplprop(os
, prop
, &value
)) != 0)
2098 VERIFY(nvlist_add_uint64(props
, zfs_prop_to_name(prop
), value
) == 0);
2104 * zc_name name of filesystem
2105 * zc_nvlist_dst_size size of buffer for zpl property nvlist
2108 * zc_nvlist_dst zpl property nvlist
2109 * zc_nvlist_dst_size size of zpl property nvlist
2112 zfs_ioc_objset_zplprops(zfs_cmd_t
*zc
)
2117 /* XXX reading without owning */
2118 if ((err
= dmu_objset_hold(zc
->zc_name
, FTAG
, &os
)))
2121 dmu_objset_fast_stat(os
, &zc
->zc_objset_stats
);
2124 * NB: nvl_add_zplprop() will read the objset contents,
2125 * which we aren't supposed to do with a DS_MODE_USER
2126 * hold, because it could be inconsistent.
2128 if (zc
->zc_nvlist_dst
!= 0 &&
2129 !zc
->zc_objset_stats
.dds_inconsistent
&&
2130 dmu_objset_type(os
) == DMU_OST_ZFS
) {
2133 VERIFY(nvlist_alloc(&nv
, NV_UNIQUE_NAME
, KM_SLEEP
) == 0);
2134 if ((err
= nvl_add_zplprop(os
, nv
, ZFS_PROP_VERSION
)) == 0 &&
2135 (err
= nvl_add_zplprop(os
, nv
, ZFS_PROP_NORMALIZE
)) == 0 &&
2136 (err
= nvl_add_zplprop(os
, nv
, ZFS_PROP_UTF8ONLY
)) == 0 &&
2137 (err
= nvl_add_zplprop(os
, nv
, ZFS_PROP_CASE
)) == 0)
2138 err
= put_nvlist(zc
, nv
);
2141 err
= SET_ERROR(ENOENT
);
2143 dmu_objset_rele(os
, FTAG
);
2148 dataset_name_hidden(const char *name
)
2151 * Skip over datasets that are not visible in this zone,
2152 * internal datasets (which have a $ in their name), and
2153 * temporary datasets (which have a % in their name).
2155 if (strchr(name
, '$') != NULL
)
2157 if (strchr(name
, '%') != NULL
)
2159 if (!INGLOBALZONE(curproc
) && !zone_dataset_visible(name
, NULL
))
2166 * zc_name name of filesystem
2167 * zc_cookie zap cursor
2168 * zc_nvlist_dst_size size of buffer for property nvlist
2171 * zc_name name of next filesystem
2172 * zc_cookie zap cursor
2173 * zc_objset_stats stats
2174 * zc_nvlist_dst property nvlist
2175 * zc_nvlist_dst_size size of property nvlist
2178 zfs_ioc_dataset_list_next(zfs_cmd_t
*zc
)
2183 size_t orig_len
= strlen(zc
->zc_name
);
2186 if ((error
= dmu_objset_hold(zc
->zc_name
, FTAG
, &os
))) {
2187 if (error
== ENOENT
)
2188 error
= SET_ERROR(ESRCH
);
2192 p
= strrchr(zc
->zc_name
, '/');
2193 if (p
== NULL
|| p
[1] != '\0')
2194 (void) strlcat(zc
->zc_name
, "/", sizeof (zc
->zc_name
));
2195 p
= zc
->zc_name
+ strlen(zc
->zc_name
);
2198 error
= dmu_dir_list_next(os
,
2199 sizeof (zc
->zc_name
) - (p
- zc
->zc_name
), p
,
2200 NULL
, &zc
->zc_cookie
);
2201 if (error
== ENOENT
)
2202 error
= SET_ERROR(ESRCH
);
2203 } while (error
== 0 && dataset_name_hidden(zc
->zc_name
));
2204 dmu_objset_rele(os
, FTAG
);
2207 * If it's an internal dataset (ie. with a '$' in its name),
2208 * don't try to get stats for it, otherwise we'll return ENOENT.
2210 if (error
== 0 && strchr(zc
->zc_name
, '$') == NULL
) {
2211 error
= zfs_ioc_objset_stats(zc
); /* fill in the stats */
2212 if (error
== ENOENT
) {
2213 /* We lost a race with destroy, get the next one. */
2214 zc
->zc_name
[orig_len
] = '\0';
2223 * zc_name name of filesystem
2224 * zc_cookie zap cursor
2225 * zc_nvlist_dst_size size of buffer for property nvlist
2228 * zc_name name of next snapshot
2229 * zc_objset_stats stats
2230 * zc_nvlist_dst property nvlist
2231 * zc_nvlist_dst_size size of property nvlist
2234 zfs_ioc_snapshot_list_next(zfs_cmd_t
*zc
)
2239 error
= dmu_objset_hold(zc
->zc_name
, FTAG
, &os
);
2241 return (error
== ENOENT
? ESRCH
: error
);
2245 * A dataset name of maximum length cannot have any snapshots,
2246 * so exit immediately.
2248 if (strlcat(zc
->zc_name
, "@", sizeof (zc
->zc_name
)) >= MAXNAMELEN
) {
2249 dmu_objset_rele(os
, FTAG
);
2250 return (SET_ERROR(ESRCH
));
2253 error
= dmu_snapshot_list_next(os
,
2254 sizeof (zc
->zc_name
) - strlen(zc
->zc_name
),
2255 zc
->zc_name
+ strlen(zc
->zc_name
), &zc
->zc_obj
, &zc
->zc_cookie
,
2258 if (error
== 0 && !zc
->zc_simple
) {
2260 dsl_pool_t
*dp
= os
->os_dsl_dataset
->ds_dir
->dd_pool
;
2262 error
= dsl_dataset_hold_obj(dp
, zc
->zc_obj
, FTAG
, &ds
);
2266 error
= dmu_objset_from_ds(ds
, &ossnap
);
2268 error
= zfs_ioc_objset_stats_impl(zc
, ossnap
);
2269 dsl_dataset_rele(ds
, FTAG
);
2271 } else if (error
== ENOENT
) {
2272 error
= SET_ERROR(ESRCH
);
2275 dmu_objset_rele(os
, FTAG
);
2276 /* if we failed, undo the @ that we tacked on to zc_name */
2278 *strchr(zc
->zc_name
, '@') = '\0';
2283 zfs_prop_set_userquota(const char *dsname
, nvpair_t
*pair
)
2285 const char *propname
= nvpair_name(pair
);
2287 unsigned int vallen
;
2290 zfs_userquota_prop_t type
;
2296 if (nvpair_type(pair
) == DATA_TYPE_NVLIST
) {
2298 VERIFY(nvpair_value_nvlist(pair
, &attrs
) == 0);
2299 if (nvlist_lookup_nvpair(attrs
, ZPROP_VALUE
,
2301 return (SET_ERROR(EINVAL
));
2305 * A correctly constructed propname is encoded as
2306 * userquota@<rid>-<domain>.
2308 if ((dash
= strchr(propname
, '-')) == NULL
||
2309 nvpair_value_uint64_array(pair
, &valary
, &vallen
) != 0 ||
2311 return (SET_ERROR(EINVAL
));
2318 err
= zfs_sb_hold(dsname
, FTAG
, &zsb
, B_FALSE
);
2320 err
= zfs_set_userquota(zsb
, type
, domain
, rid
, quota
);
2321 zfs_sb_rele(zsb
, FTAG
);
2328 * If the named property is one that has a special function to set its value,
2329 * return 0 on success and a positive error code on failure; otherwise if it is
2330 * not one of the special properties handled by this function, return -1.
2332 * XXX: It would be better for callers of the property interface if we handled
2333 * these special cases in dsl_prop.c (in the dsl layer).
2336 zfs_prop_set_special(const char *dsname
, zprop_source_t source
,
2339 const char *propname
= nvpair_name(pair
);
2340 zfs_prop_t prop
= zfs_name_to_prop(propname
);
2344 if (prop
== ZPROP_INVAL
) {
2345 if (zfs_prop_userquota(propname
))
2346 return (zfs_prop_set_userquota(dsname
, pair
));
2350 if (nvpair_type(pair
) == DATA_TYPE_NVLIST
) {
2352 VERIFY(nvpair_value_nvlist(pair
, &attrs
) == 0);
2353 VERIFY(nvlist_lookup_nvpair(attrs
, ZPROP_VALUE
,
2357 if (zfs_prop_get_type(prop
) == PROP_TYPE_STRING
)
2360 VERIFY(0 == nvpair_value_uint64(pair
, &intval
));
2363 case ZFS_PROP_QUOTA
:
2364 err
= dsl_dir_set_quota(dsname
, source
, intval
);
2366 case ZFS_PROP_REFQUOTA
:
2367 err
= dsl_dataset_set_refquota(dsname
, source
, intval
);
2369 case ZFS_PROP_FILESYSTEM_LIMIT
:
2370 case ZFS_PROP_SNAPSHOT_LIMIT
:
2371 if (intval
== UINT64_MAX
) {
2372 /* clearing the limit, just do it */
2375 err
= dsl_dir_activate_fs_ss_limit(dsname
);
2378 * Set err to -1 to force the zfs_set_prop_nvlist code down the
2379 * default path to set the value in the nvlist.
2384 case ZFS_PROP_RESERVATION
:
2385 err
= dsl_dir_set_reservation(dsname
, source
, intval
);
2387 case ZFS_PROP_REFRESERVATION
:
2388 err
= dsl_dataset_set_refreservation(dsname
, source
, intval
);
2390 case ZFS_PROP_VOLSIZE
:
2391 err
= zvol_set_volsize(dsname
, intval
);
2393 case ZFS_PROP_SNAPDEV
:
2394 err
= zvol_set_snapdev(dsname
, source
, intval
);
2396 case ZFS_PROP_VERSION
:
2400 if ((err
= zfs_sb_hold(dsname
, FTAG
, &zsb
, B_TRUE
)) != 0)
2403 err
= zfs_set_version(zsb
, intval
);
2404 zfs_sb_rele(zsb
, FTAG
);
2406 if (err
== 0 && intval
>= ZPL_VERSION_USERSPACE
) {
2409 zc
= kmem_zalloc(sizeof (zfs_cmd_t
), KM_SLEEP
);
2410 (void) strcpy(zc
->zc_name
, dsname
);
2411 (void) zfs_ioc_userspace_upgrade(zc
);
2412 kmem_free(zc
, sizeof (zfs_cmd_t
));
2424 * This function is best effort. If it fails to set any of the given properties,
2425 * it continues to set as many as it can and returns the last error
2426 * encountered. If the caller provides a non-NULL errlist, it will be filled in
2427 * with the list of names of all the properties that failed along with the
2428 * corresponding error numbers.
2430 * If every property is set successfully, zero is returned and errlist is not
2434 zfs_set_prop_nvlist(const char *dsname
, zprop_source_t source
, nvlist_t
*nvl
,
2443 nvlist_t
*genericnvl
= fnvlist_alloc();
2444 nvlist_t
*retrynvl
= fnvlist_alloc();
2447 while ((pair
= nvlist_next_nvpair(nvl
, pair
)) != NULL
) {
2448 const char *propname
= nvpair_name(pair
);
2449 zfs_prop_t prop
= zfs_name_to_prop(propname
);
2452 /* decode the property value */
2454 if (nvpair_type(pair
) == DATA_TYPE_NVLIST
) {
2456 attrs
= fnvpair_value_nvlist(pair
);
2457 if (nvlist_lookup_nvpair(attrs
, ZPROP_VALUE
,
2459 err
= SET_ERROR(EINVAL
);
2462 /* Validate value type */
2463 if (err
== 0 && prop
== ZPROP_INVAL
) {
2464 if (zfs_prop_user(propname
)) {
2465 if (nvpair_type(propval
) != DATA_TYPE_STRING
)
2466 err
= SET_ERROR(EINVAL
);
2467 } else if (zfs_prop_userquota(propname
)) {
2468 if (nvpair_type(propval
) !=
2469 DATA_TYPE_UINT64_ARRAY
)
2470 err
= SET_ERROR(EINVAL
);
2472 err
= SET_ERROR(EINVAL
);
2474 } else if (err
== 0) {
2475 if (nvpair_type(propval
) == DATA_TYPE_STRING
) {
2476 if (zfs_prop_get_type(prop
) != PROP_TYPE_STRING
)
2477 err
= SET_ERROR(EINVAL
);
2478 } else if (nvpair_type(propval
) == DATA_TYPE_UINT64
) {
2481 intval
= fnvpair_value_uint64(propval
);
2483 switch (zfs_prop_get_type(prop
)) {
2484 case PROP_TYPE_NUMBER
:
2486 case PROP_TYPE_STRING
:
2487 err
= SET_ERROR(EINVAL
);
2489 case PROP_TYPE_INDEX
:
2490 if (zfs_prop_index_to_string(prop
,
2491 intval
, &unused
) != 0)
2492 err
= SET_ERROR(EINVAL
);
2496 "unknown property type");
2499 err
= SET_ERROR(EINVAL
);
2503 /* Validate permissions */
2505 err
= zfs_check_settable(dsname
, pair
, CRED());
2508 err
= zfs_prop_set_special(dsname
, source
, pair
);
2511 * For better performance we build up a list of
2512 * properties to set in a single transaction.
2514 err
= nvlist_add_nvpair(genericnvl
, pair
);
2515 } else if (err
!= 0 && nvl
!= retrynvl
) {
2517 * This may be a spurious error caused by
2518 * receiving quota and reservation out of order.
2519 * Try again in a second pass.
2521 err
= nvlist_add_nvpair(retrynvl
, pair
);
2526 if (errlist
!= NULL
)
2527 fnvlist_add_int32(errlist
, propname
, err
);
2532 if (nvl
!= retrynvl
&& !nvlist_empty(retrynvl
)) {
2537 if (!nvlist_empty(genericnvl
) &&
2538 dsl_props_set(dsname
, source
, genericnvl
) != 0) {
2540 * If this fails, we still want to set as many properties as we
2541 * can, so try setting them individually.
2544 while ((pair
= nvlist_next_nvpair(genericnvl
, pair
)) != NULL
) {
2545 const char *propname
= nvpair_name(pair
);
2549 if (nvpair_type(pair
) == DATA_TYPE_NVLIST
) {
2551 attrs
= fnvpair_value_nvlist(pair
);
2552 propval
= fnvlist_lookup_nvpair(attrs
,
2556 if (nvpair_type(propval
) == DATA_TYPE_STRING
) {
2557 strval
= fnvpair_value_string(propval
);
2558 err
= dsl_prop_set_string(dsname
, propname
,
2561 intval
= fnvpair_value_uint64(propval
);
2562 err
= dsl_prop_set_int(dsname
, propname
, source
,
2567 if (errlist
!= NULL
) {
2568 fnvlist_add_int32(errlist
, propname
,
2575 nvlist_free(genericnvl
);
2576 nvlist_free(retrynvl
);
2582 * Check that all the properties are valid user properties.
2585 zfs_check_userprops(const char *fsname
, nvlist_t
*nvl
)
2587 nvpair_t
*pair
= NULL
;
2590 while ((pair
= nvlist_next_nvpair(nvl
, pair
)) != NULL
) {
2591 const char *propname
= nvpair_name(pair
);
2593 if (!zfs_prop_user(propname
) ||
2594 nvpair_type(pair
) != DATA_TYPE_STRING
)
2595 return (SET_ERROR(EINVAL
));
2597 if ((error
= zfs_secpolicy_write_perms(fsname
,
2598 ZFS_DELEG_PERM_USERPROP
, CRED())))
2601 if (strlen(propname
) >= ZAP_MAXNAMELEN
)
2602 return (SET_ERROR(ENAMETOOLONG
));
2604 if (strlen(fnvpair_value_string(pair
)) >= ZAP_MAXVALUELEN
)
2605 return (SET_ERROR(E2BIG
));
2611 props_skip(nvlist_t
*props
, nvlist_t
*skipped
, nvlist_t
**newprops
)
2615 VERIFY(nvlist_alloc(newprops
, NV_UNIQUE_NAME
, KM_SLEEP
) == 0);
2618 while ((pair
= nvlist_next_nvpair(props
, pair
)) != NULL
) {
2619 if (nvlist_exists(skipped
, nvpair_name(pair
)))
2622 VERIFY(nvlist_add_nvpair(*newprops
, pair
) == 0);
2627 clear_received_props(const char *dsname
, nvlist_t
*props
,
2631 nvlist_t
*cleared_props
= NULL
;
2632 props_skip(props
, skipped
, &cleared_props
);
2633 if (!nvlist_empty(cleared_props
)) {
2635 * Acts on local properties until the dataset has received
2636 * properties at least once on or after SPA_VERSION_RECVD_PROPS.
2638 zprop_source_t flags
= (ZPROP_SRC_NONE
|
2639 (dsl_prop_get_hasrecvd(dsname
) ? ZPROP_SRC_RECEIVED
: 0));
2640 err
= zfs_set_prop_nvlist(dsname
, flags
, cleared_props
, NULL
);
2642 nvlist_free(cleared_props
);
2648 * zc_name name of filesystem
2649 * zc_value name of property to set
2650 * zc_nvlist_src{_size} nvlist of properties to apply
2651 * zc_cookie received properties flag
2654 * zc_nvlist_dst{_size} error for each unapplied received property
2657 zfs_ioc_set_prop(zfs_cmd_t
*zc
)
2660 boolean_t received
= zc
->zc_cookie
;
2661 zprop_source_t source
= (received
? ZPROP_SRC_RECEIVED
:
2666 if ((error
= get_nvlist(zc
->zc_nvlist_src
, zc
->zc_nvlist_src_size
,
2667 zc
->zc_iflags
, &nvl
)) != 0)
2671 nvlist_t
*origprops
;
2673 if (dsl_prop_get_received(zc
->zc_name
, &origprops
) == 0) {
2674 (void) clear_received_props(zc
->zc_name
,
2676 nvlist_free(origprops
);
2679 error
= dsl_prop_set_hasrecvd(zc
->zc_name
);
2682 errors
= fnvlist_alloc();
2684 error
= zfs_set_prop_nvlist(zc
->zc_name
, source
, nvl
, errors
);
2686 if (zc
->zc_nvlist_dst
!= 0 && errors
!= NULL
) {
2687 (void) put_nvlist(zc
, errors
);
2690 nvlist_free(errors
);
2697 * zc_name name of filesystem
2698 * zc_value name of property to inherit
2699 * zc_cookie revert to received value if TRUE
2704 zfs_ioc_inherit_prop(zfs_cmd_t
*zc
)
2706 const char *propname
= zc
->zc_value
;
2707 zfs_prop_t prop
= zfs_name_to_prop(propname
);
2708 boolean_t received
= zc
->zc_cookie
;
2709 zprop_source_t source
= (received
2710 ? ZPROP_SRC_NONE
/* revert to received value, if any */
2711 : ZPROP_SRC_INHERITED
); /* explicitly inherit */
2720 * zfs_prop_set_special() expects properties in the form of an
2721 * nvpair with type info.
2723 if (prop
== ZPROP_INVAL
) {
2724 if (!zfs_prop_user(propname
))
2725 return (SET_ERROR(EINVAL
));
2727 type
= PROP_TYPE_STRING
;
2728 } else if (prop
== ZFS_PROP_VOLSIZE
||
2729 prop
== ZFS_PROP_VERSION
) {
2730 return (SET_ERROR(EINVAL
));
2732 type
= zfs_prop_get_type(prop
);
2735 VERIFY(nvlist_alloc(&dummy
, NV_UNIQUE_NAME
, KM_SLEEP
) == 0);
2738 case PROP_TYPE_STRING
:
2739 VERIFY(0 == nvlist_add_string(dummy
, propname
, ""));
2741 case PROP_TYPE_NUMBER
:
2742 case PROP_TYPE_INDEX
:
2743 VERIFY(0 == nvlist_add_uint64(dummy
, propname
, 0));
2747 return (SET_ERROR(EINVAL
));
2750 pair
= nvlist_next_nvpair(dummy
, NULL
);
2751 err
= zfs_prop_set_special(zc
->zc_name
, source
, pair
);
2754 return (err
); /* special property already handled */
2757 * Only check this in the non-received case. We want to allow
2758 * 'inherit -S' to revert non-inheritable properties like quota
2759 * and reservation to the received or default values even though
2760 * they are not considered inheritable.
2762 if (prop
!= ZPROP_INVAL
&& !zfs_prop_inheritable(prop
))
2763 return (SET_ERROR(EINVAL
));
2766 /* property name has been validated by zfs_secpolicy_inherit_prop() */
2767 return (dsl_prop_inherit(zc
->zc_name
, zc
->zc_value
, source
));
2771 zfs_ioc_pool_set_props(zfs_cmd_t
*zc
)
2778 if ((error
= get_nvlist(zc
->zc_nvlist_src
, zc
->zc_nvlist_src_size
,
2779 zc
->zc_iflags
, &props
)))
2783 * If the only property is the configfile, then just do a spa_lookup()
2784 * to handle the faulted case.
2786 pair
= nvlist_next_nvpair(props
, NULL
);
2787 if (pair
!= NULL
&& strcmp(nvpair_name(pair
),
2788 zpool_prop_to_name(ZPOOL_PROP_CACHEFILE
)) == 0 &&
2789 nvlist_next_nvpair(props
, pair
) == NULL
) {
2790 mutex_enter(&spa_namespace_lock
);
2791 if ((spa
= spa_lookup(zc
->zc_name
)) != NULL
) {
2792 spa_configfile_set(spa
, props
, B_FALSE
);
2793 spa_config_sync(spa
, B_FALSE
, B_TRUE
);
2795 mutex_exit(&spa_namespace_lock
);
2802 if ((error
= spa_open(zc
->zc_name
, &spa
, FTAG
)) != 0) {
2807 error
= spa_prop_set(spa
, props
);
2810 spa_close(spa
, FTAG
);
2816 zfs_ioc_pool_get_props(zfs_cmd_t
*zc
)
2820 nvlist_t
*nvp
= NULL
;
2822 if ((error
= spa_open(zc
->zc_name
, &spa
, FTAG
)) != 0) {
2824 * If the pool is faulted, there may be properties we can still
2825 * get (such as altroot and cachefile), so attempt to get them
2828 mutex_enter(&spa_namespace_lock
);
2829 if ((spa
= spa_lookup(zc
->zc_name
)) != NULL
)
2830 error
= spa_prop_get(spa
, &nvp
);
2831 mutex_exit(&spa_namespace_lock
);
2833 error
= spa_prop_get(spa
, &nvp
);
2834 spa_close(spa
, FTAG
);
2837 if (error
== 0 && zc
->zc_nvlist_dst
!= 0)
2838 error
= put_nvlist(zc
, nvp
);
2840 error
= SET_ERROR(EFAULT
);
2848 * zc_name name of filesystem
2849 * zc_nvlist_src{_size} nvlist of delegated permissions
2850 * zc_perm_action allow/unallow flag
2855 zfs_ioc_set_fsacl(zfs_cmd_t
*zc
)
2858 nvlist_t
*fsaclnv
= NULL
;
2860 if ((error
= get_nvlist(zc
->zc_nvlist_src
, zc
->zc_nvlist_src_size
,
2861 zc
->zc_iflags
, &fsaclnv
)) != 0)
2865 * Verify nvlist is constructed correctly
2867 if ((error
= zfs_deleg_verify_nvlist(fsaclnv
)) != 0) {
2868 nvlist_free(fsaclnv
);
2869 return (SET_ERROR(EINVAL
));
2873 * If we don't have PRIV_SYS_MOUNT, then validate
2874 * that user is allowed to hand out each permission in
2878 error
= secpolicy_zfs(CRED());
2880 if (zc
->zc_perm_action
== B_FALSE
) {
2881 error
= dsl_deleg_can_allow(zc
->zc_name
,
2884 error
= dsl_deleg_can_unallow(zc
->zc_name
,
2890 error
= dsl_deleg_set(zc
->zc_name
, fsaclnv
, zc
->zc_perm_action
);
2892 nvlist_free(fsaclnv
);
2898 * zc_name name of filesystem
2901 * zc_nvlist_src{_size} nvlist of delegated permissions
2904 zfs_ioc_get_fsacl(zfs_cmd_t
*zc
)
2909 if ((error
= dsl_deleg_get(zc
->zc_name
, &nvp
)) == 0) {
2910 error
= put_nvlist(zc
, nvp
);
2919 zfs_create_cb(objset_t
*os
, void *arg
, cred_t
*cr
, dmu_tx_t
*tx
)
2921 zfs_creat_t
*zct
= arg
;
2923 zfs_create_fs(os
, cr
, zct
->zct_zplprops
, tx
);
2926 #define ZFS_PROP_UNDEFINED ((uint64_t)-1)
2930 * os parent objset pointer (NULL if root fs)
2931 * fuids_ok fuids allowed in this version of the spa?
2932 * sa_ok SAs allowed in this version of the spa?
2933 * createprops list of properties requested by creator
2936 * zplprops values for the zplprops we attach to the master node object
2937 * is_ci true if requested file system will be purely case-insensitive
2939 * Determine the settings for utf8only, normalization and
2940 * casesensitivity. Specific values may have been requested by the
2941 * creator and/or we can inherit values from the parent dataset. If
2942 * the file system is of too early a vintage, a creator can not
2943 * request settings for these properties, even if the requested
2944 * setting is the default value. We don't actually want to create dsl
2945 * properties for these, so remove them from the source nvlist after
2949 zfs_fill_zplprops_impl(objset_t
*os
, uint64_t zplver
,
2950 boolean_t fuids_ok
, boolean_t sa_ok
, nvlist_t
*createprops
,
2951 nvlist_t
*zplprops
, boolean_t
*is_ci
)
2953 uint64_t sense
= ZFS_PROP_UNDEFINED
;
2954 uint64_t norm
= ZFS_PROP_UNDEFINED
;
2955 uint64_t u8
= ZFS_PROP_UNDEFINED
;
2958 ASSERT(zplprops
!= NULL
);
2961 * Pull out creator prop choices, if any.
2964 (void) nvlist_lookup_uint64(createprops
,
2965 zfs_prop_to_name(ZFS_PROP_VERSION
), &zplver
);
2966 (void) nvlist_lookup_uint64(createprops
,
2967 zfs_prop_to_name(ZFS_PROP_NORMALIZE
), &norm
);
2968 (void) nvlist_remove_all(createprops
,
2969 zfs_prop_to_name(ZFS_PROP_NORMALIZE
));
2970 (void) nvlist_lookup_uint64(createprops
,
2971 zfs_prop_to_name(ZFS_PROP_UTF8ONLY
), &u8
);
2972 (void) nvlist_remove_all(createprops
,
2973 zfs_prop_to_name(ZFS_PROP_UTF8ONLY
));
2974 (void) nvlist_lookup_uint64(createprops
,
2975 zfs_prop_to_name(ZFS_PROP_CASE
), &sense
);
2976 (void) nvlist_remove_all(createprops
,
2977 zfs_prop_to_name(ZFS_PROP_CASE
));
2981 * If the zpl version requested is whacky or the file system
2982 * or pool is version is too "young" to support normalization
2983 * and the creator tried to set a value for one of the props,
2986 if ((zplver
< ZPL_VERSION_INITIAL
|| zplver
> ZPL_VERSION
) ||
2987 (zplver
>= ZPL_VERSION_FUID
&& !fuids_ok
) ||
2988 (zplver
>= ZPL_VERSION_SA
&& !sa_ok
) ||
2989 (zplver
< ZPL_VERSION_NORMALIZATION
&&
2990 (norm
!= ZFS_PROP_UNDEFINED
|| u8
!= ZFS_PROP_UNDEFINED
||
2991 sense
!= ZFS_PROP_UNDEFINED
)))
2992 return (SET_ERROR(ENOTSUP
));
2995 * Put the version in the zplprops
2997 VERIFY(nvlist_add_uint64(zplprops
,
2998 zfs_prop_to_name(ZFS_PROP_VERSION
), zplver
) == 0);
3000 if (norm
== ZFS_PROP_UNDEFINED
&&
3001 (error
= zfs_get_zplprop(os
, ZFS_PROP_NORMALIZE
, &norm
)) != 0)
3003 VERIFY(nvlist_add_uint64(zplprops
,
3004 zfs_prop_to_name(ZFS_PROP_NORMALIZE
), norm
) == 0);
3007 * If we're normalizing, names must always be valid UTF-8 strings.
3011 if (u8
== ZFS_PROP_UNDEFINED
&&
3012 (error
= zfs_get_zplprop(os
, ZFS_PROP_UTF8ONLY
, &u8
)) != 0)
3014 VERIFY(nvlist_add_uint64(zplprops
,
3015 zfs_prop_to_name(ZFS_PROP_UTF8ONLY
), u8
) == 0);
3017 if (sense
== ZFS_PROP_UNDEFINED
&&
3018 (error
= zfs_get_zplprop(os
, ZFS_PROP_CASE
, &sense
)) != 0)
3020 VERIFY(nvlist_add_uint64(zplprops
,
3021 zfs_prop_to_name(ZFS_PROP_CASE
), sense
) == 0);
3024 *is_ci
= (sense
== ZFS_CASE_INSENSITIVE
);
3030 zfs_fill_zplprops(const char *dataset
, nvlist_t
*createprops
,
3031 nvlist_t
*zplprops
, boolean_t
*is_ci
)
3033 boolean_t fuids_ok
, sa_ok
;
3034 uint64_t zplver
= ZPL_VERSION
;
3035 objset_t
*os
= NULL
;
3036 char parentname
[MAXNAMELEN
];
3042 (void) strlcpy(parentname
, dataset
, sizeof (parentname
));
3043 cp
= strrchr(parentname
, '/');
3047 if ((error
= spa_open(dataset
, &spa
, FTAG
)) != 0)
3050 spa_vers
= spa_version(spa
);
3051 spa_close(spa
, FTAG
);
3053 zplver
= zfs_zpl_version_map(spa_vers
);
3054 fuids_ok
= (zplver
>= ZPL_VERSION_FUID
);
3055 sa_ok
= (zplver
>= ZPL_VERSION_SA
);
3058 * Open parent object set so we can inherit zplprop values.
3060 if ((error
= dmu_objset_hold(parentname
, FTAG
, &os
)) != 0)
3063 error
= zfs_fill_zplprops_impl(os
, zplver
, fuids_ok
, sa_ok
, createprops
,
3065 dmu_objset_rele(os
, FTAG
);
3070 zfs_fill_zplprops_root(uint64_t spa_vers
, nvlist_t
*createprops
,
3071 nvlist_t
*zplprops
, boolean_t
*is_ci
)
3075 uint64_t zplver
= ZPL_VERSION
;
3078 zplver
= zfs_zpl_version_map(spa_vers
);
3079 fuids_ok
= (zplver
>= ZPL_VERSION_FUID
);
3080 sa_ok
= (zplver
>= ZPL_VERSION_SA
);
3082 error
= zfs_fill_zplprops_impl(NULL
, zplver
, fuids_ok
, sa_ok
,
3083 createprops
, zplprops
, is_ci
);
3089 * "type" -> dmu_objset_type_t (int32)
3090 * (optional) "props" -> { prop -> value }
3093 * outnvl: propname -> error code (int32)
3096 zfs_ioc_create(const char *fsname
, nvlist_t
*innvl
, nvlist_t
*outnvl
)
3099 zfs_creat_t zct
= { 0 };
3100 nvlist_t
*nvprops
= NULL
;
3101 void (*cbfunc
)(objset_t
*os
, void *arg
, cred_t
*cr
, dmu_tx_t
*tx
);
3103 dmu_objset_type_t type
;
3104 boolean_t is_insensitive
= B_FALSE
;
3106 if (nvlist_lookup_int32(innvl
, "type", &type32
) != 0)
3107 return (SET_ERROR(EINVAL
));
3109 (void) nvlist_lookup_nvlist(innvl
, "props", &nvprops
);
3113 cbfunc
= zfs_create_cb
;
3117 cbfunc
= zvol_create_cb
;
3124 if (strchr(fsname
, '@') ||
3125 strchr(fsname
, '%'))
3126 return (SET_ERROR(EINVAL
));
3128 zct
.zct_props
= nvprops
;
3131 return (SET_ERROR(EINVAL
));
3133 if (type
== DMU_OST_ZVOL
) {
3134 uint64_t volsize
, volblocksize
;
3136 if (nvprops
== NULL
)
3137 return (SET_ERROR(EINVAL
));
3138 if (nvlist_lookup_uint64(nvprops
,
3139 zfs_prop_to_name(ZFS_PROP_VOLSIZE
), &volsize
) != 0)
3140 return (SET_ERROR(EINVAL
));
3142 if ((error
= nvlist_lookup_uint64(nvprops
,
3143 zfs_prop_to_name(ZFS_PROP_VOLBLOCKSIZE
),
3144 &volblocksize
)) != 0 && error
!= ENOENT
)
3145 return (SET_ERROR(EINVAL
));
3148 volblocksize
= zfs_prop_default_numeric(
3149 ZFS_PROP_VOLBLOCKSIZE
);
3151 if ((error
= zvol_check_volblocksize(fsname
,
3152 volblocksize
)) != 0 ||
3153 (error
= zvol_check_volsize(volsize
,
3154 volblocksize
)) != 0)
3156 } else if (type
== DMU_OST_ZFS
) {
3160 * We have to have normalization and
3161 * case-folding flags correct when we do the
3162 * file system creation, so go figure them out
3165 VERIFY(nvlist_alloc(&zct
.zct_zplprops
,
3166 NV_UNIQUE_NAME
, KM_SLEEP
) == 0);
3167 error
= zfs_fill_zplprops(fsname
, nvprops
,
3168 zct
.zct_zplprops
, &is_insensitive
);
3170 nvlist_free(zct
.zct_zplprops
);
3175 error
= dmu_objset_create(fsname
, type
,
3176 is_insensitive
? DS_FLAG_CI_DATASET
: 0, cbfunc
, &zct
);
3177 nvlist_free(zct
.zct_zplprops
);
3180 * It would be nice to do this atomically.
3183 error
= zfs_set_prop_nvlist(fsname
, ZPROP_SRC_LOCAL
,
3186 (void) dsl_destroy_head(fsname
);
3193 * "origin" -> name of origin snapshot
3194 * (optional) "props" -> { prop -> value }
3198 * outnvl: propname -> error code (int32)
3201 zfs_ioc_clone(const char *fsname
, nvlist_t
*innvl
, nvlist_t
*outnvl
)
3204 nvlist_t
*nvprops
= NULL
;
3207 if (nvlist_lookup_string(innvl
, "origin", &origin_name
) != 0)
3208 return (SET_ERROR(EINVAL
));
3209 (void) nvlist_lookup_nvlist(innvl
, "props", &nvprops
);
3211 if (strchr(fsname
, '@') ||
3212 strchr(fsname
, '%'))
3213 return (SET_ERROR(EINVAL
));
3215 if (dataset_namecheck(origin_name
, NULL
, NULL
) != 0)
3216 return (SET_ERROR(EINVAL
));
3217 error
= dmu_objset_clone(fsname
, origin_name
);
3222 * It would be nice to do this atomically.
3225 error
= zfs_set_prop_nvlist(fsname
, ZPROP_SRC_LOCAL
,
3228 (void) dsl_destroy_head(fsname
);
3235 * "snaps" -> { snapshot1, snapshot2 }
3236 * (optional) "props" -> { prop -> value (string) }
3239 * outnvl: snapshot -> error code (int32)
3242 zfs_ioc_snapshot(const char *poolname
, nvlist_t
*innvl
, nvlist_t
*outnvl
)
3245 nvlist_t
*props
= NULL
;
3247 nvpair_t
*pair
, *pair2
;
3249 (void) nvlist_lookup_nvlist(innvl
, "props", &props
);
3250 if ((error
= zfs_check_userprops(poolname
, props
)) != 0)
3253 if (!nvlist_empty(props
) &&
3254 zfs_earlier_version(poolname
, SPA_VERSION_SNAP_PROPS
))
3255 return (SET_ERROR(ENOTSUP
));
3257 if (nvlist_lookup_nvlist(innvl
, "snaps", &snaps
) != 0)
3258 return (SET_ERROR(EINVAL
));
3259 poollen
= strlen(poolname
);
3260 for (pair
= nvlist_next_nvpair(snaps
, NULL
); pair
!= NULL
;
3261 pair
= nvlist_next_nvpair(snaps
, pair
)) {
3262 const char *name
= nvpair_name(pair
);
3263 const char *cp
= strchr(name
, '@');
3266 * The snap name must contain an @, and the part after it must
3267 * contain only valid characters.
3270 zfs_component_namecheck(cp
+ 1, NULL
, NULL
) != 0)
3271 return (SET_ERROR(EINVAL
));
3274 * The snap must be in the specified pool.
3276 if (strncmp(name
, poolname
, poollen
) != 0 ||
3277 (name
[poollen
] != '/' && name
[poollen
] != '@'))
3278 return (SET_ERROR(EXDEV
));
3280 /* This must be the only snap of this fs. */
3281 for (pair2
= nvlist_next_nvpair(snaps
, pair
);
3282 pair2
!= NULL
; pair2
= nvlist_next_nvpair(snaps
, pair2
)) {
3283 if (strncmp(name
, nvpair_name(pair2
), cp
- name
+ 1)
3285 return (SET_ERROR(EXDEV
));
3290 error
= dsl_dataset_snapshot(snaps
, props
, outnvl
);
3296 * innvl: "message" -> string
3300 zfs_ioc_log_history(const char *unused
, nvlist_t
*innvl
, nvlist_t
*outnvl
)
3308 * The poolname in the ioctl is not set, we get it from the TSD,
3309 * which was set at the end of the last successful ioctl that allows
3310 * logging. The secpolicy func already checked that it is set.
3311 * Only one log ioctl is allowed after each successful ioctl, so
3312 * we clear the TSD here.
3314 poolname
= tsd_get(zfs_allow_log_key
);
3315 (void) tsd_set(zfs_allow_log_key
, NULL
);
3316 error
= spa_open(poolname
, &spa
, FTAG
);
3321 if (nvlist_lookup_string(innvl
, "message", &message
) != 0) {
3322 spa_close(spa
, FTAG
);
3323 return (SET_ERROR(EINVAL
));
3326 if (spa_version(spa
) < SPA_VERSION_ZPOOL_HISTORY
) {
3327 spa_close(spa
, FTAG
);
3328 return (SET_ERROR(ENOTSUP
));
3331 error
= spa_history_log(spa
, message
);
3332 spa_close(spa
, FTAG
);
3337 * The dp_config_rwlock must not be held when calling this, because the
3338 * unmount may need to write out data.
3340 * This function is best-effort. Callers must deal gracefully if it
3341 * remains mounted (or is remounted after this call).
3343 * Returns 0 if the argument is not a snapshot, or it is not currently a
3344 * filesystem, or we were able to unmount it. Returns error code otherwise.
3347 zfs_unmount_snap(const char *snapname
)
3351 if (strchr(snapname
, '@') == NULL
)
3354 err
= zfsctl_snapshot_unmount((char *)snapname
, MNT_FORCE
);
3355 if (err
!= 0 && err
!= ENOENT
)
3356 return (SET_ERROR(err
));
3363 zfs_unmount_snap_cb(const char *snapname
, void *arg
)
3365 return (zfs_unmount_snap(snapname
));
3369 * When a clone is destroyed, its origin may also need to be destroyed,
3370 * in which case it must be unmounted. This routine will do that unmount
3374 zfs_destroy_unmount_origin(const char *fsname
)
3380 error
= dmu_objset_hold(fsname
, FTAG
, &os
);
3383 ds
= dmu_objset_ds(os
);
3384 if (dsl_dir_is_clone(ds
->ds_dir
) && DS_IS_DEFER_DESTROY(ds
->ds_prev
)) {
3385 char originname
[MAXNAMELEN
];
3386 dsl_dataset_name(ds
->ds_prev
, originname
);
3387 dmu_objset_rele(os
, FTAG
);
3388 (void) zfs_unmount_snap(originname
);
3390 dmu_objset_rele(os
, FTAG
);
3396 * "snaps" -> { snapshot1, snapshot2 }
3397 * (optional boolean) "defer"
3400 * outnvl: snapshot -> error code (int32)
3404 zfs_ioc_destroy_snaps(const char *poolname
, nvlist_t
*innvl
, nvlist_t
*outnvl
)
3410 if (nvlist_lookup_nvlist(innvl
, "snaps", &snaps
) != 0)
3411 return (SET_ERROR(EINVAL
));
3412 defer
= nvlist_exists(innvl
, "defer");
3414 for (pair
= nvlist_next_nvpair(snaps
, NULL
); pair
!= NULL
;
3415 pair
= nvlist_next_nvpair(snaps
, pair
)) {
3416 (void) zfs_unmount_snap(nvpair_name(pair
));
3419 return (dsl_destroy_snapshots_nvl(snaps
, defer
, outnvl
));
3423 * Create bookmarks. Bookmark names are of the form <fs>#<bmark>.
3424 * All bookmarks must be in the same pool.
3427 * bookmark1 -> snapshot1, bookmark2 -> snapshot2
3430 * outnvl: bookmark -> error code (int32)
3435 zfs_ioc_bookmark(const char *poolname
, nvlist_t
*innvl
, nvlist_t
*outnvl
)
3437 nvpair_t
*pair
, *pair2
;
3439 for (pair
= nvlist_next_nvpair(innvl
, NULL
);
3440 pair
!= NULL
; pair
= nvlist_next_nvpair(innvl
, pair
)) {
3444 * Verify the snapshot argument.
3446 if (nvpair_value_string(pair
, &snap_name
) != 0)
3447 return (SET_ERROR(EINVAL
));
3450 /* Verify that the keys (bookmarks) are unique */
3451 for (pair2
= nvlist_next_nvpair(innvl
, pair
);
3452 pair2
!= NULL
; pair2
= nvlist_next_nvpair(innvl
, pair2
)) {
3453 if (strcmp(nvpair_name(pair
), nvpair_name(pair2
)) == 0)
3454 return (SET_ERROR(EINVAL
));
3458 return (dsl_bookmark_create(innvl
, outnvl
));
3463 * property 1, property 2, ...
3467 * bookmark name 1 -> { property 1, property 2, ... },
3468 * bookmark name 2 -> { property 1, property 2, ... }
3473 zfs_ioc_get_bookmarks(const char *fsname
, nvlist_t
*innvl
, nvlist_t
*outnvl
)
3475 return (dsl_get_bookmarks(fsname
, innvl
, outnvl
));
3480 * bookmark name 1, bookmark name 2
3483 * outnvl: bookmark -> error code (int32)
3487 zfs_ioc_destroy_bookmarks(const char *poolname
, nvlist_t
*innvl
,
3493 poollen
= strlen(poolname
);
3494 for (pair
= nvlist_next_nvpair(innvl
, NULL
);
3495 pair
!= NULL
; pair
= nvlist_next_nvpair(innvl
, pair
)) {
3496 const char *name
= nvpair_name(pair
);
3497 const char *cp
= strchr(name
, '#');
3500 * The bookmark name must contain an #, and the part after it
3501 * must contain only valid characters.
3504 zfs_component_namecheck(cp
+ 1, NULL
, NULL
) != 0)
3505 return (SET_ERROR(EINVAL
));
3508 * The bookmark must be in the specified pool.
3510 if (strncmp(name
, poolname
, poollen
) != 0 ||
3511 (name
[poollen
] != '/' && name
[poollen
] != '#'))
3512 return (SET_ERROR(EXDEV
));
3515 error
= dsl_bookmark_destroy(innvl
, outnvl
);
3521 * zc_name name of dataset to destroy
3522 * zc_objset_type type of objset
3523 * zc_defer_destroy mark for deferred destroy
3528 zfs_ioc_destroy(zfs_cmd_t
*zc
)
3532 if (zc
->zc_objset_type
== DMU_OST_ZFS
) {
3533 err
= zfs_unmount_snap(zc
->zc_name
);
3538 if (strchr(zc
->zc_name
, '@'))
3539 err
= dsl_destroy_snapshot(zc
->zc_name
, zc
->zc_defer_destroy
);
3541 err
= dsl_destroy_head(zc
->zc_name
);
3547 * fsname is name of dataset to rollback (to most recent snapshot)
3549 * innvl is not used.
3551 * outnvl: "target" -> name of most recent snapshot
3556 zfs_ioc_rollback(const char *fsname
, nvlist_t
*args
, nvlist_t
*outnvl
)
3561 if (get_zfs_sb(fsname
, &zsb
) == 0) {
3562 error
= zfs_suspend_fs(zsb
);
3566 error
= dsl_dataset_rollback(fsname
, zsb
, outnvl
);
3567 resume_err
= zfs_resume_fs(zsb
, fsname
);
3568 error
= error
? error
: resume_err
;
3570 deactivate_super(zsb
->z_sb
);
3572 error
= dsl_dataset_rollback(fsname
, NULL
, outnvl
);
3578 recursive_unmount(const char *fsname
, void *arg
)
3580 const char *snapname
= arg
;
3584 fullname
= kmem_asprintf("%s@%s", fsname
, snapname
);
3585 error
= zfs_unmount_snap(fullname
);
3593 * zc_name old name of dataset
3594 * zc_value new name of dataset
3595 * zc_cookie recursive flag (only valid for snapshots)
3600 zfs_ioc_rename(zfs_cmd_t
*zc
)
3602 boolean_t recursive
= zc
->zc_cookie
& 1;
3605 zc
->zc_value
[sizeof (zc
->zc_value
) - 1] = '\0';
3606 if (dataset_namecheck(zc
->zc_value
, NULL
, NULL
) != 0 ||
3607 strchr(zc
->zc_value
, '%'))
3608 return (SET_ERROR(EINVAL
));
3610 at
= strchr(zc
->zc_name
, '@');
3612 /* snaps must be in same fs */
3615 if (strncmp(zc
->zc_name
, zc
->zc_value
, at
- zc
->zc_name
+ 1))
3616 return (SET_ERROR(EXDEV
));
3618 if (zc
->zc_objset_type
== DMU_OST_ZFS
) {
3619 error
= dmu_objset_find(zc
->zc_name
,
3620 recursive_unmount
, at
+ 1,
3621 recursive
? DS_FIND_CHILDREN
: 0);
3627 error
= dsl_dataset_rename_snapshot(zc
->zc_name
,
3628 at
+ 1, strchr(zc
->zc_value
, '@') + 1, recursive
);
3633 return (dsl_dir_rename(zc
->zc_name
, zc
->zc_value
));
3638 zfs_check_settable(const char *dsname
, nvpair_t
*pair
, cred_t
*cr
)
3640 const char *propname
= nvpair_name(pair
);
3641 boolean_t issnap
= (strchr(dsname
, '@') != NULL
);
3642 zfs_prop_t prop
= zfs_name_to_prop(propname
);
3646 if (prop
== ZPROP_INVAL
) {
3647 if (zfs_prop_user(propname
)) {
3648 if ((err
= zfs_secpolicy_write_perms(dsname
,
3649 ZFS_DELEG_PERM_USERPROP
, cr
)))
3654 if (!issnap
&& zfs_prop_userquota(propname
)) {
3655 const char *perm
= NULL
;
3656 const char *uq_prefix
=
3657 zfs_userquota_prop_prefixes
[ZFS_PROP_USERQUOTA
];
3658 const char *gq_prefix
=
3659 zfs_userquota_prop_prefixes
[ZFS_PROP_GROUPQUOTA
];
3661 if (strncmp(propname
, uq_prefix
,
3662 strlen(uq_prefix
)) == 0) {
3663 perm
= ZFS_DELEG_PERM_USERQUOTA
;
3664 } else if (strncmp(propname
, gq_prefix
,
3665 strlen(gq_prefix
)) == 0) {
3666 perm
= ZFS_DELEG_PERM_GROUPQUOTA
;
3668 /* USERUSED and GROUPUSED are read-only */
3669 return (SET_ERROR(EINVAL
));
3672 if ((err
= zfs_secpolicy_write_perms(dsname
, perm
, cr
)))
3677 return (SET_ERROR(EINVAL
));
3681 return (SET_ERROR(EINVAL
));
3683 if (nvpair_type(pair
) == DATA_TYPE_NVLIST
) {
3685 * dsl_prop_get_all_impl() returns properties in this
3689 VERIFY(nvpair_value_nvlist(pair
, &attrs
) == 0);
3690 VERIFY(nvlist_lookup_nvpair(attrs
, ZPROP_VALUE
,
3695 * Check that this value is valid for this pool version
3698 case ZFS_PROP_COMPRESSION
:
3700 * If the user specified gzip compression, make sure
3701 * the SPA supports it. We ignore any errors here since
3702 * we'll catch them later.
3704 if (nvpair_value_uint64(pair
, &intval
) == 0) {
3705 if (intval
>= ZIO_COMPRESS_GZIP_1
&&
3706 intval
<= ZIO_COMPRESS_GZIP_9
&&
3707 zfs_earlier_version(dsname
,
3708 SPA_VERSION_GZIP_COMPRESSION
)) {
3709 return (SET_ERROR(ENOTSUP
));
3712 if (intval
== ZIO_COMPRESS_ZLE
&&
3713 zfs_earlier_version(dsname
,
3714 SPA_VERSION_ZLE_COMPRESSION
))
3715 return (SET_ERROR(ENOTSUP
));
3717 if (intval
== ZIO_COMPRESS_LZ4
) {
3720 if ((err
= spa_open(dsname
, &spa
, FTAG
)) != 0)
3723 if (!spa_feature_is_enabled(spa
,
3724 SPA_FEATURE_LZ4_COMPRESS
)) {
3725 spa_close(spa
, FTAG
);
3726 return (SET_ERROR(ENOTSUP
));
3728 spa_close(spa
, FTAG
);
3732 * If this is a bootable dataset then
3733 * verify that the compression algorithm
3734 * is supported for booting. We must return
3735 * something other than ENOTSUP since it
3736 * implies a downrev pool version.
3738 if (zfs_is_bootfs(dsname
) &&
3739 !BOOTFS_COMPRESS_VALID(intval
)) {
3740 return (SET_ERROR(ERANGE
));
3745 case ZFS_PROP_COPIES
:
3746 if (zfs_earlier_version(dsname
, SPA_VERSION_DITTO_BLOCKS
))
3747 return (SET_ERROR(ENOTSUP
));
3750 case ZFS_PROP_DEDUP
:
3751 if (zfs_earlier_version(dsname
, SPA_VERSION_DEDUP
))
3752 return (SET_ERROR(ENOTSUP
));
3755 case ZFS_PROP_VOLBLOCKSIZE
:
3756 case ZFS_PROP_RECORDSIZE
:
3757 /* Record sizes above 128k need the feature to be enabled */
3758 if (nvpair_value_uint64(pair
, &intval
) == 0 &&
3759 intval
> SPA_OLD_MAXBLOCKSIZE
) {
3763 * If this is a bootable dataset then
3764 * the we don't allow large (>128K) blocks,
3765 * because GRUB doesn't support them.
3767 if (zfs_is_bootfs(dsname
) &&
3768 intval
> SPA_OLD_MAXBLOCKSIZE
) {
3769 return (SET_ERROR(EDOM
));
3773 * We don't allow setting the property above 1MB,
3774 * unless the tunable has been changed.
3776 if (intval
> zfs_max_recordsize
||
3777 intval
> SPA_MAXBLOCKSIZE
)
3778 return (SET_ERROR(EDOM
));
3780 if ((err
= spa_open(dsname
, &spa
, FTAG
)) != 0)
3783 if (!spa_feature_is_enabled(spa
,
3784 SPA_FEATURE_LARGE_BLOCKS
)) {
3785 spa_close(spa
, FTAG
);
3786 return (SET_ERROR(ENOTSUP
));
3788 spa_close(spa
, FTAG
);
3792 case ZFS_PROP_SHARESMB
:
3793 if (zpl_earlier_version(dsname
, ZPL_VERSION_FUID
))
3794 return (SET_ERROR(ENOTSUP
));
3797 case ZFS_PROP_ACLINHERIT
:
3798 if (nvpair_type(pair
) == DATA_TYPE_UINT64
&&
3799 nvpair_value_uint64(pair
, &intval
) == 0) {
3800 if (intval
== ZFS_ACL_PASSTHROUGH_X
&&
3801 zfs_earlier_version(dsname
,
3802 SPA_VERSION_PASSTHROUGH_X
))
3803 return (SET_ERROR(ENOTSUP
));
3810 return (zfs_secpolicy_setprop(dsname
, prop
, pair
, CRED()));
3814 * Removes properties from the given props list that fail permission checks
3815 * needed to clear them and to restore them in case of a receive error. For each
3816 * property, make sure we have both set and inherit permissions.
3818 * Returns the first error encountered if any permission checks fail. If the
3819 * caller provides a non-NULL errlist, it also gives the complete list of names
3820 * of all the properties that failed a permission check along with the
3821 * corresponding error numbers. The caller is responsible for freeing the
3824 * If every property checks out successfully, zero is returned and the list
3825 * pointed at by errlist is NULL.
3828 zfs_check_clearable(char *dataset
, nvlist_t
*props
, nvlist_t
**errlist
)
3831 nvpair_t
*pair
, *next_pair
;
3838 VERIFY(nvlist_alloc(&errors
, NV_UNIQUE_NAME
, KM_SLEEP
) == 0);
3840 zc
= kmem_alloc(sizeof (zfs_cmd_t
), KM_SLEEP
);
3841 (void) strcpy(zc
->zc_name
, dataset
);
3842 pair
= nvlist_next_nvpair(props
, NULL
);
3843 while (pair
!= NULL
) {
3844 next_pair
= nvlist_next_nvpair(props
, pair
);
3846 (void) strcpy(zc
->zc_value
, nvpair_name(pair
));
3847 if ((err
= zfs_check_settable(dataset
, pair
, CRED())) != 0 ||
3848 (err
= zfs_secpolicy_inherit_prop(zc
, NULL
, CRED())) != 0) {
3849 VERIFY(nvlist_remove_nvpair(props
, pair
) == 0);
3850 VERIFY(nvlist_add_int32(errors
,
3851 zc
->zc_value
, err
) == 0);
3855 kmem_free(zc
, sizeof (zfs_cmd_t
));
3857 if ((pair
= nvlist_next_nvpair(errors
, NULL
)) == NULL
) {
3858 nvlist_free(errors
);
3861 VERIFY(nvpair_value_int32(pair
, &rv
) == 0);
3864 if (errlist
== NULL
)
3865 nvlist_free(errors
);
3873 propval_equals(nvpair_t
*p1
, nvpair_t
*p2
)
3875 if (nvpair_type(p1
) == DATA_TYPE_NVLIST
) {
3876 /* dsl_prop_get_all_impl() format */
3878 VERIFY(nvpair_value_nvlist(p1
, &attrs
) == 0);
3879 VERIFY(nvlist_lookup_nvpair(attrs
, ZPROP_VALUE
,
3883 if (nvpair_type(p2
) == DATA_TYPE_NVLIST
) {
3885 VERIFY(nvpair_value_nvlist(p2
, &attrs
) == 0);
3886 VERIFY(nvlist_lookup_nvpair(attrs
, ZPROP_VALUE
,
3890 if (nvpair_type(p1
) != nvpair_type(p2
))
3893 if (nvpair_type(p1
) == DATA_TYPE_STRING
) {
3894 char *valstr1
, *valstr2
;
3896 VERIFY(nvpair_value_string(p1
, (char **)&valstr1
) == 0);
3897 VERIFY(nvpair_value_string(p2
, (char **)&valstr2
) == 0);
3898 return (strcmp(valstr1
, valstr2
) == 0);
3900 uint64_t intval1
, intval2
;
3902 VERIFY(nvpair_value_uint64(p1
, &intval1
) == 0);
3903 VERIFY(nvpair_value_uint64(p2
, &intval2
) == 0);
3904 return (intval1
== intval2
);
3909 * Remove properties from props if they are not going to change (as determined
3910 * by comparison with origprops). Remove them from origprops as well, since we
3911 * do not need to clear or restore properties that won't change.
3914 props_reduce(nvlist_t
*props
, nvlist_t
*origprops
)
3916 nvpair_t
*pair
, *next_pair
;
3918 if (origprops
== NULL
)
3919 return; /* all props need to be received */
3921 pair
= nvlist_next_nvpair(props
, NULL
);
3922 while (pair
!= NULL
) {
3923 const char *propname
= nvpair_name(pair
);
3926 next_pair
= nvlist_next_nvpair(props
, pair
);
3928 if ((nvlist_lookup_nvpair(origprops
, propname
,
3929 &match
) != 0) || !propval_equals(pair
, match
))
3930 goto next
; /* need to set received value */
3932 /* don't clear the existing received value */
3933 (void) nvlist_remove_nvpair(origprops
, match
);
3934 /* don't bother receiving the property */
3935 (void) nvlist_remove_nvpair(props
, pair
);
3942 static boolean_t zfs_ioc_recv_inject_err
;
3947 * zc_name name of containing filesystem
3948 * zc_nvlist_src{_size} nvlist of properties to apply
3949 * zc_value name of snapshot to create
3950 * zc_string name of clone origin (if DRR_FLAG_CLONE)
3951 * zc_cookie file descriptor to recv from
3952 * zc_begin_record the BEGIN record of the stream (not byteswapped)
3953 * zc_guid force flag
3954 * zc_cleanup_fd cleanup-on-exit file descriptor
3955 * zc_action_handle handle for this guid/ds mapping (or zero on first call)
3958 * zc_cookie number of bytes read
3959 * zc_nvlist_dst{_size} error for each unapplied received property
3960 * zc_obj zprop_errflags_t
3961 * zc_action_handle handle for this guid/ds mapping
3964 zfs_ioc_recv(zfs_cmd_t
*zc
)
3967 dmu_recv_cookie_t drc
;
3968 boolean_t force
= (boolean_t
)zc
->zc_guid
;
3971 int props_error
= 0;
3974 nvlist_t
*props
= NULL
; /* sent properties */
3975 nvlist_t
*origprops
= NULL
; /* existing properties */
3976 char *origin
= NULL
;
3978 char tofs
[ZFS_MAXNAMELEN
];
3979 boolean_t first_recvd_props
= B_FALSE
;
3981 if (dataset_namecheck(zc
->zc_value
, NULL
, NULL
) != 0 ||
3982 strchr(zc
->zc_value
, '@') == NULL
||
3983 strchr(zc
->zc_value
, '%'))
3984 return (SET_ERROR(EINVAL
));
3986 (void) strcpy(tofs
, zc
->zc_value
);
3987 tosnap
= strchr(tofs
, '@');
3990 if (zc
->zc_nvlist_src
!= 0 &&
3991 (error
= get_nvlist(zc
->zc_nvlist_src
, zc
->zc_nvlist_src_size
,
3992 zc
->zc_iflags
, &props
)) != 0)
3999 return (SET_ERROR(EBADF
));
4002 VERIFY(nvlist_alloc(&errors
, NV_UNIQUE_NAME
, KM_SLEEP
) == 0);
4004 if (zc
->zc_string
[0])
4005 origin
= zc
->zc_string
;
4007 error
= dmu_recv_begin(tofs
, tosnap
,
4008 &zc
->zc_begin_record
, force
, origin
, &drc
);
4013 * Set properties before we receive the stream so that they are applied
4014 * to the new data. Note that we must call dmu_recv_stream() if
4015 * dmu_recv_begin() succeeds.
4017 if (props
!= NULL
&& !drc
.drc_newfs
) {
4018 if (spa_version(dsl_dataset_get_spa(drc
.drc_ds
)) >=
4019 SPA_VERSION_RECVD_PROPS
&&
4020 !dsl_prop_get_hasrecvd(tofs
))
4021 first_recvd_props
= B_TRUE
;
4024 * If new received properties are supplied, they are to
4025 * completely replace the existing received properties, so stash
4026 * away the existing ones.
4028 if (dsl_prop_get_received(tofs
, &origprops
) == 0) {
4029 nvlist_t
*errlist
= NULL
;
4031 * Don't bother writing a property if its value won't
4032 * change (and avoid the unnecessary security checks).
4034 * The first receive after SPA_VERSION_RECVD_PROPS is a
4035 * special case where we blow away all local properties
4038 if (!first_recvd_props
)
4039 props_reduce(props
, origprops
);
4040 if (zfs_check_clearable(tofs
, origprops
, &errlist
) != 0)
4041 (void) nvlist_merge(errors
, errlist
, 0);
4042 nvlist_free(errlist
);
4044 if (clear_received_props(tofs
, origprops
,
4045 first_recvd_props
? NULL
: props
) != 0)
4046 zc
->zc_obj
|= ZPROP_ERR_NOCLEAR
;
4048 zc
->zc_obj
|= ZPROP_ERR_NOCLEAR
;
4052 if (props
!= NULL
) {
4053 props_error
= dsl_prop_set_hasrecvd(tofs
);
4055 if (props_error
== 0) {
4056 (void) zfs_set_prop_nvlist(tofs
, ZPROP_SRC_RECEIVED
,
4061 if (zc
->zc_nvlist_dst_size
!= 0 &&
4062 (nvlist_smush(errors
, zc
->zc_nvlist_dst_size
) != 0 ||
4063 put_nvlist(zc
, errors
) != 0)) {
4065 * Caller made zc->zc_nvlist_dst less than the minimum expected
4066 * size or supplied an invalid address.
4068 props_error
= SET_ERROR(EINVAL
);
4072 error
= dmu_recv_stream(&drc
, fp
->f_vnode
, &off
, zc
->zc_cleanup_fd
,
4073 &zc
->zc_action_handle
);
4076 zfs_sb_t
*zsb
= NULL
;
4078 if (get_zfs_sb(tofs
, &zsb
) == 0) {
4082 error
= zfs_suspend_fs(zsb
);
4084 * If the suspend fails, then the recv_end will
4085 * likely also fail, and clean up after itself.
4087 end_err
= dmu_recv_end(&drc
, zsb
);
4089 error
= zfs_resume_fs(zsb
, tofs
);
4090 error
= error
? error
: end_err
;
4091 deactivate_super(zsb
->z_sb
);
4093 error
= dmu_recv_end(&drc
, NULL
);
4097 zc
->zc_cookie
= off
- fp
->f_offset
;
4098 if (VOP_SEEK(fp
->f_vnode
, fp
->f_offset
, &off
, NULL
) == 0)
4102 if (zfs_ioc_recv_inject_err
) {
4103 zfs_ioc_recv_inject_err
= B_FALSE
;
4109 * On error, restore the original props.
4111 if (error
!= 0 && props
!= NULL
&& !drc
.drc_newfs
) {
4112 if (clear_received_props(tofs
, props
, NULL
) != 0) {
4114 * We failed to clear the received properties.
4115 * Since we may have left a $recvd value on the
4116 * system, we can't clear the $hasrecvd flag.
4118 zc
->zc_obj
|= ZPROP_ERR_NORESTORE
;
4119 } else if (first_recvd_props
) {
4120 dsl_prop_unset_hasrecvd(tofs
);
4123 if (origprops
== NULL
&& !drc
.drc_newfs
) {
4124 /* We failed to stash the original properties. */
4125 zc
->zc_obj
|= ZPROP_ERR_NORESTORE
;
4129 * dsl_props_set() will not convert RECEIVED to LOCAL on or
4130 * after SPA_VERSION_RECVD_PROPS, so we need to specify LOCAL
4131 * explictly if we're restoring local properties cleared in the
4132 * first new-style receive.
4134 if (origprops
!= NULL
&&
4135 zfs_set_prop_nvlist(tofs
, (first_recvd_props
?
4136 ZPROP_SRC_LOCAL
: ZPROP_SRC_RECEIVED
),
4137 origprops
, NULL
) != 0) {
4139 * We stashed the original properties but failed to
4142 zc
->zc_obj
|= ZPROP_ERR_NORESTORE
;
4147 nvlist_free(origprops
);
4148 nvlist_free(errors
);
4152 error
= props_error
;
4159 * zc_name name of snapshot to send
4160 * zc_cookie file descriptor to send stream to
4161 * zc_obj fromorigin flag (mutually exclusive with zc_fromobj)
4162 * zc_sendobj objsetid of snapshot to send
4163 * zc_fromobj objsetid of incremental fromsnap (may be zero)
4164 * zc_guid if set, estimate size of stream only. zc_cookie is ignored.
4165 * output size in zc_objset_type.
4166 * zc_flags lzc_send_flags
4169 * zc_objset_type estimated size, if zc_guid is set
4172 zfs_ioc_send(zfs_cmd_t
*zc
)
4176 boolean_t estimate
= (zc
->zc_guid
!= 0);
4177 boolean_t embedok
= (zc
->zc_flags
& 0x1);
4178 boolean_t large_block_ok
= (zc
->zc_flags
& 0x2);
4180 if (zc
->zc_obj
!= 0) {
4182 dsl_dataset_t
*tosnap
;
4184 error
= dsl_pool_hold(zc
->zc_name
, FTAG
, &dp
);
4188 error
= dsl_dataset_hold_obj(dp
, zc
->zc_sendobj
, FTAG
, &tosnap
);
4190 dsl_pool_rele(dp
, FTAG
);
4194 if (dsl_dir_is_clone(tosnap
->ds_dir
))
4196 dsl_dir_phys(tosnap
->ds_dir
)->dd_origin_obj
;
4197 dsl_dataset_rele(tosnap
, FTAG
);
4198 dsl_pool_rele(dp
, FTAG
);
4203 dsl_dataset_t
*tosnap
;
4204 dsl_dataset_t
*fromsnap
= NULL
;
4206 error
= dsl_pool_hold(zc
->zc_name
, FTAG
, &dp
);
4210 error
= dsl_dataset_hold_obj(dp
, zc
->zc_sendobj
, FTAG
, &tosnap
);
4212 dsl_pool_rele(dp
, FTAG
);
4216 if (zc
->zc_fromobj
!= 0) {
4217 error
= dsl_dataset_hold_obj(dp
, zc
->zc_fromobj
,
4220 dsl_dataset_rele(tosnap
, FTAG
);
4221 dsl_pool_rele(dp
, FTAG
);
4226 error
= dmu_send_estimate(tosnap
, fromsnap
,
4227 &zc
->zc_objset_type
);
4229 if (fromsnap
!= NULL
)
4230 dsl_dataset_rele(fromsnap
, FTAG
);
4231 dsl_dataset_rele(tosnap
, FTAG
);
4232 dsl_pool_rele(dp
, FTAG
);
4234 file_t
*fp
= getf(zc
->zc_cookie
);
4236 return (SET_ERROR(EBADF
));
4239 error
= dmu_send_obj(zc
->zc_name
, zc
->zc_sendobj
,
4240 zc
->zc_fromobj
, embedok
, large_block_ok
,
4241 zc
->zc_cookie
, fp
->f_vnode
, &off
);
4243 if (VOP_SEEK(fp
->f_vnode
, fp
->f_offset
, &off
, NULL
) == 0)
4245 releasef(zc
->zc_cookie
);
4252 * zc_name name of snapshot on which to report progress
4253 * zc_cookie file descriptor of send stream
4256 * zc_cookie number of bytes written in send stream thus far
4259 zfs_ioc_send_progress(zfs_cmd_t
*zc
)
4263 dmu_sendarg_t
*dsp
= NULL
;
4266 error
= dsl_pool_hold(zc
->zc_name
, FTAG
, &dp
);
4270 error
= dsl_dataset_hold(dp
, zc
->zc_name
, FTAG
, &ds
);
4272 dsl_pool_rele(dp
, FTAG
);
4276 mutex_enter(&ds
->ds_sendstream_lock
);
4279 * Iterate over all the send streams currently active on this dataset.
4280 * If there's one which matches the specified file descriptor _and_ the
4281 * stream was started by the current process, return the progress of
4285 for (dsp
= list_head(&ds
->ds_sendstreams
); dsp
!= NULL
;
4286 dsp
= list_next(&ds
->ds_sendstreams
, dsp
)) {
4287 if (dsp
->dsa_outfd
== zc
->zc_cookie
&&
4288 dsp
->dsa_proc
->group_leader
== curproc
->group_leader
)
4293 zc
->zc_cookie
= *(dsp
->dsa_off
);
4295 error
= SET_ERROR(ENOENT
);
4297 mutex_exit(&ds
->ds_sendstream_lock
);
4298 dsl_dataset_rele(ds
, FTAG
);
4299 dsl_pool_rele(dp
, FTAG
);
4304 zfs_ioc_inject_fault(zfs_cmd_t
*zc
)
4308 error
= zio_inject_fault(zc
->zc_name
, (int)zc
->zc_guid
, &id
,
4309 &zc
->zc_inject_record
);
4312 zc
->zc_guid
= (uint64_t)id
;
4318 zfs_ioc_clear_fault(zfs_cmd_t
*zc
)
4320 return (zio_clear_fault((int)zc
->zc_guid
));
4324 zfs_ioc_inject_list_next(zfs_cmd_t
*zc
)
4326 int id
= (int)zc
->zc_guid
;
4329 error
= zio_inject_list_next(&id
, zc
->zc_name
, sizeof (zc
->zc_name
),
4330 &zc
->zc_inject_record
);
4338 zfs_ioc_error_log(zfs_cmd_t
*zc
)
4342 size_t count
= (size_t)zc
->zc_nvlist_dst_size
;
4344 if ((error
= spa_open(zc
->zc_name
, &spa
, FTAG
)) != 0)
4347 error
= spa_get_errlog(spa
, (void *)(uintptr_t)zc
->zc_nvlist_dst
,
4350 zc
->zc_nvlist_dst_size
= count
;
4352 zc
->zc_nvlist_dst_size
= spa_get_errlog_size(spa
);
4354 spa_close(spa
, FTAG
);
4360 zfs_ioc_clear(zfs_cmd_t
*zc
)
4367 * On zpool clear we also fix up missing slogs
4369 mutex_enter(&spa_namespace_lock
);
4370 spa
= spa_lookup(zc
->zc_name
);
4372 mutex_exit(&spa_namespace_lock
);
4373 return (SET_ERROR(EIO
));
4375 if (spa_get_log_state(spa
) == SPA_LOG_MISSING
) {
4376 /* we need to let spa_open/spa_load clear the chains */
4377 spa_set_log_state(spa
, SPA_LOG_CLEAR
);
4379 spa
->spa_last_open_failed
= 0;
4380 mutex_exit(&spa_namespace_lock
);
4382 if (zc
->zc_cookie
& ZPOOL_NO_REWIND
) {
4383 error
= spa_open(zc
->zc_name
, &spa
, FTAG
);
4386 nvlist_t
*config
= NULL
;
4388 if (zc
->zc_nvlist_src
== 0)
4389 return (SET_ERROR(EINVAL
));
4391 if ((error
= get_nvlist(zc
->zc_nvlist_src
,
4392 zc
->zc_nvlist_src_size
, zc
->zc_iflags
, &policy
)) == 0) {
4393 error
= spa_open_rewind(zc
->zc_name
, &spa
, FTAG
,
4395 if (config
!= NULL
) {
4398 if ((err
= put_nvlist(zc
, config
)) != 0)
4400 nvlist_free(config
);
4402 nvlist_free(policy
);
4409 spa_vdev_state_enter(spa
, SCL_NONE
);
4411 if (zc
->zc_guid
== 0) {
4414 vd
= spa_lookup_by_guid(spa
, zc
->zc_guid
, B_TRUE
);
4416 (void) spa_vdev_state_exit(spa
, NULL
, ENODEV
);
4417 spa_close(spa
, FTAG
);
4418 return (SET_ERROR(ENODEV
));
4422 vdev_clear(spa
, vd
);
4424 (void) spa_vdev_state_exit(spa
, NULL
, 0);
4427 * Resume any suspended I/Os.
4429 if (zio_resume(spa
) != 0)
4430 error
= SET_ERROR(EIO
);
4432 spa_close(spa
, FTAG
);
4438 zfs_ioc_pool_reopen(zfs_cmd_t
*zc
)
4443 error
= spa_open(zc
->zc_name
, &spa
, FTAG
);
4447 spa_vdev_state_enter(spa
, SCL_NONE
);
4450 * If a resilver is already in progress then set the
4451 * spa_scrub_reopen flag to B_TRUE so that we don't restart
4452 * the scan as a side effect of the reopen. Otherwise, let
4453 * vdev_open() decided if a resilver is required.
4455 spa
->spa_scrub_reopen
= dsl_scan_resilvering(spa
->spa_dsl_pool
);
4456 vdev_reopen(spa
->spa_root_vdev
);
4457 spa
->spa_scrub_reopen
= B_FALSE
;
4459 (void) spa_vdev_state_exit(spa
, NULL
, 0);
4460 spa_close(spa
, FTAG
);
4465 * zc_name name of filesystem
4466 * zc_value name of origin snapshot
4469 * zc_string name of conflicting snapshot, if there is one
4472 zfs_ioc_promote(zfs_cmd_t
*zc
)
4477 * We don't need to unmount *all* the origin fs's snapshots, but
4480 cp
= strchr(zc
->zc_value
, '@');
4483 (void) dmu_objset_find(zc
->zc_value
,
4484 zfs_unmount_snap_cb
, NULL
, DS_FIND_SNAPSHOTS
);
4485 return (dsl_dataset_promote(zc
->zc_name
, zc
->zc_string
));
4489 * Retrieve a single {user|group}{used|quota}@... property.
4492 * zc_name name of filesystem
4493 * zc_objset_type zfs_userquota_prop_t
4494 * zc_value domain name (eg. "S-1-234-567-89")
4495 * zc_guid RID/UID/GID
4498 * zc_cookie property value
4501 zfs_ioc_userspace_one(zfs_cmd_t
*zc
)
4506 if (zc
->zc_objset_type
>= ZFS_NUM_USERQUOTA_PROPS
)
4507 return (SET_ERROR(EINVAL
));
4509 error
= zfs_sb_hold(zc
->zc_name
, FTAG
, &zsb
, B_FALSE
);
4513 error
= zfs_userspace_one(zsb
,
4514 zc
->zc_objset_type
, zc
->zc_value
, zc
->zc_guid
, &zc
->zc_cookie
);
4515 zfs_sb_rele(zsb
, FTAG
);
4522 * zc_name name of filesystem
4523 * zc_cookie zap cursor
4524 * zc_objset_type zfs_userquota_prop_t
4525 * zc_nvlist_dst[_size] buffer to fill (not really an nvlist)
4528 * zc_nvlist_dst[_size] data buffer (array of zfs_useracct_t)
4529 * zc_cookie zap cursor
4532 zfs_ioc_userspace_many(zfs_cmd_t
*zc
)
4535 int bufsize
= zc
->zc_nvlist_dst_size
;
4540 return (SET_ERROR(ENOMEM
));
4542 error
= zfs_sb_hold(zc
->zc_name
, FTAG
, &zsb
, B_FALSE
);
4546 buf
= vmem_alloc(bufsize
, KM_SLEEP
);
4548 error
= zfs_userspace_many(zsb
, zc
->zc_objset_type
, &zc
->zc_cookie
,
4549 buf
, &zc
->zc_nvlist_dst_size
);
4552 error
= xcopyout(buf
,
4553 (void *)(uintptr_t)zc
->zc_nvlist_dst
,
4554 zc
->zc_nvlist_dst_size
);
4556 vmem_free(buf
, bufsize
);
4557 zfs_sb_rele(zsb
, FTAG
);
4564 * zc_name name of filesystem
4570 zfs_ioc_userspace_upgrade(zfs_cmd_t
*zc
)
4576 if (get_zfs_sb(zc
->zc_name
, &zsb
) == 0) {
4577 if (!dmu_objset_userused_enabled(zsb
->z_os
)) {
4579 * If userused is not enabled, it may be because the
4580 * objset needs to be closed & reopened (to grow the
4581 * objset_phys_t). Suspend/resume the fs will do that.
4583 error
= zfs_suspend_fs(zsb
);
4585 dmu_objset_refresh_ownership(zsb
->z_os
,
4587 error
= zfs_resume_fs(zsb
, zc
->zc_name
);
4591 error
= dmu_objset_userspace_upgrade(zsb
->z_os
);
4592 deactivate_super(zsb
->z_sb
);
4594 /* XXX kind of reading contents without owning */
4595 error
= dmu_objset_hold(zc
->zc_name
, FTAG
, &os
);
4599 error
= dmu_objset_userspace_upgrade(os
);
4600 dmu_objset_rele(os
, FTAG
);
4607 zfs_ioc_share(zfs_cmd_t
*zc
)
4609 return (SET_ERROR(ENOSYS
));
4612 ace_t full_access
[] = {
4613 {(uid_t
)-1, ACE_ALL_PERMS
, ACE_EVERYONE
, 0}
4618 * zc_name name of containing filesystem
4619 * zc_obj object # beyond which we want next in-use object #
4622 * zc_obj next in-use object #
4625 zfs_ioc_next_obj(zfs_cmd_t
*zc
)
4627 objset_t
*os
= NULL
;
4630 error
= dmu_objset_hold(zc
->zc_name
, FTAG
, &os
);
4634 error
= dmu_object_next(os
, &zc
->zc_obj
, B_FALSE
, 0);
4636 dmu_objset_rele(os
, FTAG
);
4642 * zc_name name of filesystem
4643 * zc_value prefix name for snapshot
4644 * zc_cleanup_fd cleanup-on-exit file descriptor for calling process
4647 * zc_value short name of new snapshot
4650 zfs_ioc_tmp_snapshot(zfs_cmd_t
*zc
)
4657 error
= zfs_onexit_fd_hold(zc
->zc_cleanup_fd
, &minor
);
4661 snap_name
= kmem_asprintf("%s-%016llx", zc
->zc_value
,
4662 (u_longlong_t
)ddi_get_lbolt64());
4663 hold_name
= kmem_asprintf("%%%s", zc
->zc_value
);
4665 error
= dsl_dataset_snapshot_tmp(zc
->zc_name
, snap_name
, minor
,
4668 (void) strcpy(zc
->zc_value
, snap_name
);
4671 zfs_onexit_fd_rele(zc
->zc_cleanup_fd
);
4677 * zc_name name of "to" snapshot
4678 * zc_value name of "from" snapshot
4679 * zc_cookie file descriptor to write diff data on
4682 * dmu_diff_record_t's to the file descriptor
4685 zfs_ioc_diff(zfs_cmd_t
*zc
)
4691 fp
= getf(zc
->zc_cookie
);
4693 return (SET_ERROR(EBADF
));
4697 error
= dmu_diff(zc
->zc_name
, zc
->zc_value
, fp
->f_vnode
, &off
);
4699 if (VOP_SEEK(fp
->f_vnode
, fp
->f_offset
, &off
, NULL
) == 0)
4701 releasef(zc
->zc_cookie
);
4707 * Remove all ACL files in shares dir
4709 #ifdef HAVE_SMB_SHARE
4711 zfs_smb_acl_purge(znode_t
*dzp
)
4714 zap_attribute_t zap
;
4715 zfs_sb_t
*zsb
= ZTOZSB(dzp
);
4718 for (zap_cursor_init(&zc
, zsb
->z_os
, dzp
->z_id
);
4719 (error
= zap_cursor_retrieve(&zc
, &zap
)) == 0;
4720 zap_cursor_advance(&zc
)) {
4721 if ((error
= VOP_REMOVE(ZTOV(dzp
), zap
.za_name
, kcred
,
4725 zap_cursor_fini(&zc
);
4728 #endif /* HAVE_SMB_SHARE */
4731 zfs_ioc_smb_acl(zfs_cmd_t
*zc
)
4733 #ifdef HAVE_SMB_SHARE
4736 vnode_t
*resourcevp
= NULL
;
4745 if ((error
= lookupname(zc
->zc_value
, UIO_SYSSPACE
,
4746 NO_FOLLOW
, NULL
, &vp
)) != 0)
4749 /* Now make sure mntpnt and dataset are ZFS */
4751 if (vp
->v_vfsp
->vfs_fstype
!= zfsfstype
||
4752 (strcmp((char *)refstr_value(vp
->v_vfsp
->vfs_resource
),
4753 zc
->zc_name
) != 0)) {
4755 return (SET_ERROR(EINVAL
));
4763 * Create share dir if its missing.
4765 mutex_enter(&zsb
->z_lock
);
4766 if (zsb
->z_shares_dir
== 0) {
4769 tx
= dmu_tx_create(zsb
->z_os
);
4770 dmu_tx_hold_zap(tx
, MASTER_NODE_OBJ
, TRUE
,
4772 dmu_tx_hold_zap(tx
, DMU_NEW_OBJECT
, FALSE
, NULL
);
4773 error
= dmu_tx_assign(tx
, TXG_WAIT
);
4777 error
= zfs_create_share_dir(zsb
, tx
);
4781 mutex_exit(&zsb
->z_lock
);
4787 mutex_exit(&zsb
->z_lock
);
4789 ASSERT(zsb
->z_shares_dir
);
4790 if ((error
= zfs_zget(zsb
, zsb
->z_shares_dir
, &sharedir
)) != 0) {
4796 switch (zc
->zc_cookie
) {
4797 case ZFS_SMB_ACL_ADD
:
4798 vattr
.va_mask
= AT_MODE
|AT_UID
|AT_GID
|AT_TYPE
;
4799 vattr
.va_mode
= S_IFREG
|0777;
4803 vsec
.vsa_mask
= VSA_ACE
;
4804 vsec
.vsa_aclentp
= &full_access
;
4805 vsec
.vsa_aclentsz
= sizeof (full_access
);
4806 vsec
.vsa_aclcnt
= 1;
4808 error
= VOP_CREATE(ZTOV(sharedir
), zc
->zc_string
,
4809 &vattr
, EXCL
, 0, &resourcevp
, kcred
, 0, NULL
, &vsec
);
4811 VN_RELE(resourcevp
);
4814 case ZFS_SMB_ACL_REMOVE
:
4815 error
= VOP_REMOVE(ZTOV(sharedir
), zc
->zc_string
, kcred
,
4819 case ZFS_SMB_ACL_RENAME
:
4820 if ((error
= get_nvlist(zc
->zc_nvlist_src
,
4821 zc
->zc_nvlist_src_size
, zc
->zc_iflags
, &nvlist
)) != 0) {
4823 VN_RELE(ZTOV(sharedir
));
4827 if (nvlist_lookup_string(nvlist
, ZFS_SMB_ACL_SRC
, &src
) ||
4828 nvlist_lookup_string(nvlist
, ZFS_SMB_ACL_TARGET
,
4831 VN_RELE(ZTOV(sharedir
));
4833 nvlist_free(nvlist
);
4836 error
= VOP_RENAME(ZTOV(sharedir
), src
, ZTOV(sharedir
), target
,
4838 nvlist_free(nvlist
);
4841 case ZFS_SMB_ACL_PURGE
:
4842 error
= zfs_smb_acl_purge(sharedir
);
4846 error
= SET_ERROR(EINVAL
);
4851 VN_RELE(ZTOV(sharedir
));
4857 return (SET_ERROR(ENOTSUP
));
4858 #endif /* HAVE_SMB_SHARE */
4863 * "holds" -> { snapname -> holdname (string), ... }
4864 * (optional) "cleanup_fd" -> fd (int32)
4868 * snapname -> error value (int32)
4874 zfs_ioc_hold(const char *pool
, nvlist_t
*args
, nvlist_t
*errlist
)
4878 int cleanup_fd
= -1;
4882 error
= nvlist_lookup_nvlist(args
, "holds", &holds
);
4884 return (SET_ERROR(EINVAL
));
4886 /* make sure the user didn't pass us any invalid (empty) tags */
4887 for (pair
= nvlist_next_nvpair(holds
, NULL
); pair
!= NULL
;
4888 pair
= nvlist_next_nvpair(holds
, pair
)) {
4891 error
= nvpair_value_string(pair
, &htag
);
4893 return (SET_ERROR(error
));
4895 if (strlen(htag
) == 0)
4896 return (SET_ERROR(EINVAL
));
4899 if (nvlist_lookup_int32(args
, "cleanup_fd", &cleanup_fd
) == 0) {
4900 error
= zfs_onexit_fd_hold(cleanup_fd
, &minor
);
4905 error
= dsl_dataset_user_hold(holds
, minor
, errlist
);
4907 zfs_onexit_fd_rele(cleanup_fd
);
4912 * innvl is not used.
4915 * holdname -> time added (uint64 seconds since epoch)
4921 zfs_ioc_get_holds(const char *snapname
, nvlist_t
*args
, nvlist_t
*outnvl
)
4923 return (dsl_dataset_get_holds(snapname
, outnvl
));
4928 * snapname -> { holdname, ... }
4933 * snapname -> error value (int32)
4939 zfs_ioc_release(const char *pool
, nvlist_t
*holds
, nvlist_t
*errlist
)
4941 return (dsl_dataset_user_release(holds
, errlist
));
4946 * zc_guid flags (ZEVENT_NONBLOCK)
4947 * zc_cleanup_fd zevent file descriptor
4950 * zc_nvlist_dst next nvlist event
4951 * zc_cookie dropped events since last get
4954 zfs_ioc_events_next(zfs_cmd_t
*zc
)
4957 nvlist_t
*event
= NULL
;
4959 uint64_t dropped
= 0;
4962 error
= zfs_zevent_fd_hold(zc
->zc_cleanup_fd
, &minor
, &ze
);
4967 error
= zfs_zevent_next(ze
, &event
,
4968 &zc
->zc_nvlist_dst_size
, &dropped
);
4969 if (event
!= NULL
) {
4970 zc
->zc_cookie
= dropped
;
4971 error
= put_nvlist(zc
, event
);
4975 if (zc
->zc_guid
& ZEVENT_NONBLOCK
)
4978 if ((error
== 0) || (error
!= ENOENT
))
4981 error
= zfs_zevent_wait(ze
);
4986 zfs_zevent_fd_rele(zc
->zc_cleanup_fd
);
4993 * zc_cookie cleared events count
4996 zfs_ioc_events_clear(zfs_cmd_t
*zc
)
5000 zfs_zevent_drain_all(&count
);
5001 zc
->zc_cookie
= count
;
5008 * zc_guid eid | ZEVENT_SEEK_START | ZEVENT_SEEK_END
5009 * zc_cleanup zevent file descriptor
5012 zfs_ioc_events_seek(zfs_cmd_t
*zc
)
5018 error
= zfs_zevent_fd_hold(zc
->zc_cleanup_fd
, &minor
, &ze
);
5022 error
= zfs_zevent_seek(ze
, zc
->zc_guid
);
5023 zfs_zevent_fd_rele(zc
->zc_cleanup_fd
);
5030 * zc_name name of new filesystem or snapshot
5031 * zc_value full name of old snapshot
5034 * zc_cookie space in bytes
5035 * zc_objset_type compressed space in bytes
5036 * zc_perm_action uncompressed space in bytes
5039 zfs_ioc_space_written(zfs_cmd_t
*zc
)
5043 dsl_dataset_t
*new, *old
;
5045 error
= dsl_pool_hold(zc
->zc_name
, FTAG
, &dp
);
5048 error
= dsl_dataset_hold(dp
, zc
->zc_name
, FTAG
, &new);
5050 dsl_pool_rele(dp
, FTAG
);
5053 error
= dsl_dataset_hold(dp
, zc
->zc_value
, FTAG
, &old
);
5055 dsl_dataset_rele(new, FTAG
);
5056 dsl_pool_rele(dp
, FTAG
);
5060 error
= dsl_dataset_space_written(old
, new, &zc
->zc_cookie
,
5061 &zc
->zc_objset_type
, &zc
->zc_perm_action
);
5062 dsl_dataset_rele(old
, FTAG
);
5063 dsl_dataset_rele(new, FTAG
);
5064 dsl_pool_rele(dp
, FTAG
);
5070 * "firstsnap" -> snapshot name
5074 * "used" -> space in bytes
5075 * "compressed" -> compressed space in bytes
5076 * "uncompressed" -> uncompressed space in bytes
5080 zfs_ioc_space_snaps(const char *lastsnap
, nvlist_t
*innvl
, nvlist_t
*outnvl
)
5084 dsl_dataset_t
*new, *old
;
5086 uint64_t used
, comp
, uncomp
;
5088 if (nvlist_lookup_string(innvl
, "firstsnap", &firstsnap
) != 0)
5089 return (SET_ERROR(EINVAL
));
5091 error
= dsl_pool_hold(lastsnap
, FTAG
, &dp
);
5095 error
= dsl_dataset_hold(dp
, lastsnap
, FTAG
, &new);
5096 if (error
== 0 && !new->ds_is_snapshot
) {
5097 dsl_dataset_rele(new, FTAG
);
5098 error
= SET_ERROR(EINVAL
);
5101 dsl_pool_rele(dp
, FTAG
);
5104 error
= dsl_dataset_hold(dp
, firstsnap
, FTAG
, &old
);
5105 if (error
== 0 && !old
->ds_is_snapshot
) {
5106 dsl_dataset_rele(old
, FTAG
);
5107 error
= SET_ERROR(EINVAL
);
5110 dsl_dataset_rele(new, FTAG
);
5111 dsl_pool_rele(dp
, FTAG
);
5115 error
= dsl_dataset_space_wouldfree(old
, new, &used
, &comp
, &uncomp
);
5116 dsl_dataset_rele(old
, FTAG
);
5117 dsl_dataset_rele(new, FTAG
);
5118 dsl_pool_rele(dp
, FTAG
);
5119 fnvlist_add_uint64(outnvl
, "used", used
);
5120 fnvlist_add_uint64(outnvl
, "compressed", comp
);
5121 fnvlist_add_uint64(outnvl
, "uncompressed", uncomp
);
5127 * "fd" -> file descriptor to write stream to (int32)
5128 * (optional) "fromsnap" -> full snap name to send an incremental from
5129 * (optional) "largeblockok" -> (value ignored)
5130 * indicates that blocks > 128KB are permitted
5131 * (optional) "embedok" -> (value ignored)
5132 * presence indicates DRR_WRITE_EMBEDDED records are permitted
5139 zfs_ioc_send_new(const char *snapname
, nvlist_t
*innvl
, nvlist_t
*outnvl
)
5143 char *fromname
= NULL
;
5146 boolean_t largeblockok
;
5149 error
= nvlist_lookup_int32(innvl
, "fd", &fd
);
5151 return (SET_ERROR(EINVAL
));
5153 (void) nvlist_lookup_string(innvl
, "fromsnap", &fromname
);
5155 largeblockok
= nvlist_exists(innvl
, "largeblockok");
5156 embedok
= nvlist_exists(innvl
, "embedok");
5158 if ((fp
= getf(fd
)) == NULL
)
5159 return (SET_ERROR(EBADF
));
5162 error
= dmu_send(snapname
, fromname
, embedok
, largeblockok
,
5163 fd
, fp
->f_vnode
, &off
);
5165 if (VOP_SEEK(fp
->f_vnode
, fp
->f_offset
, &off
, NULL
) == 0)
5173 * Determine approximately how large a zfs send stream will be -- the number
5174 * of bytes that will be written to the fd supplied to zfs_ioc_send_new().
5177 * (optional) "from" -> full snap or bookmark name to send an incremental
5182 * "space" -> bytes of space (uint64)
5186 zfs_ioc_send_space(const char *snapname
, nvlist_t
*innvl
, nvlist_t
*outnvl
)
5189 dsl_dataset_t
*tosnap
;
5194 error
= dsl_pool_hold(snapname
, FTAG
, &dp
);
5198 error
= dsl_dataset_hold(dp
, snapname
, FTAG
, &tosnap
);
5200 dsl_pool_rele(dp
, FTAG
);
5204 error
= nvlist_lookup_string(innvl
, "from", &fromname
);
5206 if (strchr(fromname
, '@') != NULL
) {
5208 * If from is a snapshot, hold it and use the more
5209 * efficient dmu_send_estimate to estimate send space
5210 * size using deadlists.
5212 dsl_dataset_t
*fromsnap
;
5213 error
= dsl_dataset_hold(dp
, fromname
, FTAG
, &fromsnap
);
5216 error
= dmu_send_estimate(tosnap
, fromsnap
, &space
);
5217 dsl_dataset_rele(fromsnap
, FTAG
);
5218 } else if (strchr(fromname
, '#') != NULL
) {
5220 * If from is a bookmark, fetch the creation TXG of the
5221 * snapshot it was created from and use that to find
5222 * blocks that were born after it.
5224 zfs_bookmark_phys_t frombm
;
5226 error
= dsl_bookmark_lookup(dp
, fromname
, tosnap
,
5230 error
= dmu_send_estimate_from_txg(tosnap
,
5231 frombm
.zbm_creation_txg
, &space
);
5234 * from is not properly formatted as a snapshot or
5237 error
= SET_ERROR(EINVAL
);
5241 // If estimating the size of a full send, use dmu_send_estimate
5242 error
= dmu_send_estimate(tosnap
, NULL
, &space
);
5245 fnvlist_add_uint64(outnvl
, "space", space
);
5248 dsl_dataset_rele(tosnap
, FTAG
);
5249 dsl_pool_rele(dp
, FTAG
);
5253 static zfs_ioc_vec_t zfs_ioc_vec
[ZFS_IOC_LAST
- ZFS_IOC_FIRST
];
5256 zfs_ioctl_register_legacy(zfs_ioc_t ioc
, zfs_ioc_legacy_func_t
*func
,
5257 zfs_secpolicy_func_t
*secpolicy
, zfs_ioc_namecheck_t namecheck
,
5258 boolean_t log_history
, zfs_ioc_poolcheck_t pool_check
)
5260 zfs_ioc_vec_t
*vec
= &zfs_ioc_vec
[ioc
- ZFS_IOC_FIRST
];
5262 ASSERT3U(ioc
, >=, ZFS_IOC_FIRST
);
5263 ASSERT3U(ioc
, <, ZFS_IOC_LAST
);
5264 ASSERT3P(vec
->zvec_legacy_func
, ==, NULL
);
5265 ASSERT3P(vec
->zvec_func
, ==, NULL
);
5267 vec
->zvec_legacy_func
= func
;
5268 vec
->zvec_secpolicy
= secpolicy
;
5269 vec
->zvec_namecheck
= namecheck
;
5270 vec
->zvec_allow_log
= log_history
;
5271 vec
->zvec_pool_check
= pool_check
;
5275 * See the block comment at the beginning of this file for details on
5276 * each argument to this function.
5279 zfs_ioctl_register(const char *name
, zfs_ioc_t ioc
, zfs_ioc_func_t
*func
,
5280 zfs_secpolicy_func_t
*secpolicy
, zfs_ioc_namecheck_t namecheck
,
5281 zfs_ioc_poolcheck_t pool_check
, boolean_t smush_outnvlist
,
5282 boolean_t allow_log
)
5284 zfs_ioc_vec_t
*vec
= &zfs_ioc_vec
[ioc
- ZFS_IOC_FIRST
];
5286 ASSERT3U(ioc
, >=, ZFS_IOC_FIRST
);
5287 ASSERT3U(ioc
, <, ZFS_IOC_LAST
);
5288 ASSERT3P(vec
->zvec_legacy_func
, ==, NULL
);
5289 ASSERT3P(vec
->zvec_func
, ==, NULL
);
5291 /* if we are logging, the name must be valid */
5292 ASSERT(!allow_log
|| namecheck
!= NO_NAME
);
5294 vec
->zvec_name
= name
;
5295 vec
->zvec_func
= func
;
5296 vec
->zvec_secpolicy
= secpolicy
;
5297 vec
->zvec_namecheck
= namecheck
;
5298 vec
->zvec_pool_check
= pool_check
;
5299 vec
->zvec_smush_outnvlist
= smush_outnvlist
;
5300 vec
->zvec_allow_log
= allow_log
;
5304 zfs_ioctl_register_pool(zfs_ioc_t ioc
, zfs_ioc_legacy_func_t
*func
,
5305 zfs_secpolicy_func_t
*secpolicy
, boolean_t log_history
,
5306 zfs_ioc_poolcheck_t pool_check
)
5308 zfs_ioctl_register_legacy(ioc
, func
, secpolicy
,
5309 POOL_NAME
, log_history
, pool_check
);
5313 zfs_ioctl_register_dataset_nolog(zfs_ioc_t ioc
, zfs_ioc_legacy_func_t
*func
,
5314 zfs_secpolicy_func_t
*secpolicy
, zfs_ioc_poolcheck_t pool_check
)
5316 zfs_ioctl_register_legacy(ioc
, func
, secpolicy
,
5317 DATASET_NAME
, B_FALSE
, pool_check
);
5321 zfs_ioctl_register_pool_modify(zfs_ioc_t ioc
, zfs_ioc_legacy_func_t
*func
)
5323 zfs_ioctl_register_legacy(ioc
, func
, zfs_secpolicy_config
,
5324 POOL_NAME
, B_TRUE
, POOL_CHECK_SUSPENDED
| POOL_CHECK_READONLY
);
5328 zfs_ioctl_register_pool_meta(zfs_ioc_t ioc
, zfs_ioc_legacy_func_t
*func
,
5329 zfs_secpolicy_func_t
*secpolicy
)
5331 zfs_ioctl_register_legacy(ioc
, func
, secpolicy
,
5332 NO_NAME
, B_FALSE
, POOL_CHECK_NONE
);
5336 zfs_ioctl_register_dataset_read_secpolicy(zfs_ioc_t ioc
,
5337 zfs_ioc_legacy_func_t
*func
, zfs_secpolicy_func_t
*secpolicy
)
5339 zfs_ioctl_register_legacy(ioc
, func
, secpolicy
,
5340 DATASET_NAME
, B_FALSE
, POOL_CHECK_SUSPENDED
);
5344 zfs_ioctl_register_dataset_read(zfs_ioc_t ioc
, zfs_ioc_legacy_func_t
*func
)
5346 zfs_ioctl_register_dataset_read_secpolicy(ioc
, func
,
5347 zfs_secpolicy_read
);
5351 zfs_ioctl_register_dataset_modify(zfs_ioc_t ioc
, zfs_ioc_legacy_func_t
*func
,
5352 zfs_secpolicy_func_t
*secpolicy
)
5354 zfs_ioctl_register_legacy(ioc
, func
, secpolicy
,
5355 DATASET_NAME
, B_TRUE
, POOL_CHECK_SUSPENDED
| POOL_CHECK_READONLY
);
5359 zfs_ioctl_init(void)
5361 zfs_ioctl_register("snapshot", ZFS_IOC_SNAPSHOT
,
5362 zfs_ioc_snapshot
, zfs_secpolicy_snapshot
, POOL_NAME
,
5363 POOL_CHECK_SUSPENDED
| POOL_CHECK_READONLY
, B_TRUE
, B_TRUE
);
5365 zfs_ioctl_register("log_history", ZFS_IOC_LOG_HISTORY
,
5366 zfs_ioc_log_history
, zfs_secpolicy_log_history
, NO_NAME
,
5367 POOL_CHECK_SUSPENDED
| POOL_CHECK_READONLY
, B_FALSE
, B_FALSE
);
5369 zfs_ioctl_register("space_snaps", ZFS_IOC_SPACE_SNAPS
,
5370 zfs_ioc_space_snaps
, zfs_secpolicy_read
, DATASET_NAME
,
5371 POOL_CHECK_SUSPENDED
, B_FALSE
, B_FALSE
);
5373 zfs_ioctl_register("send", ZFS_IOC_SEND_NEW
,
5374 zfs_ioc_send_new
, zfs_secpolicy_send_new
, DATASET_NAME
,
5375 POOL_CHECK_SUSPENDED
, B_FALSE
, B_FALSE
);
5377 zfs_ioctl_register("send_space", ZFS_IOC_SEND_SPACE
,
5378 zfs_ioc_send_space
, zfs_secpolicy_read
, DATASET_NAME
,
5379 POOL_CHECK_SUSPENDED
, B_FALSE
, B_FALSE
);
5381 zfs_ioctl_register("create", ZFS_IOC_CREATE
,
5382 zfs_ioc_create
, zfs_secpolicy_create_clone
, DATASET_NAME
,
5383 POOL_CHECK_SUSPENDED
| POOL_CHECK_READONLY
, B_TRUE
, B_TRUE
);
5385 zfs_ioctl_register("clone", ZFS_IOC_CLONE
,
5386 zfs_ioc_clone
, zfs_secpolicy_create_clone
, DATASET_NAME
,
5387 POOL_CHECK_SUSPENDED
| POOL_CHECK_READONLY
, B_TRUE
, B_TRUE
);
5389 zfs_ioctl_register("destroy_snaps", ZFS_IOC_DESTROY_SNAPS
,
5390 zfs_ioc_destroy_snaps
, zfs_secpolicy_destroy_snaps
, POOL_NAME
,
5391 POOL_CHECK_SUSPENDED
| POOL_CHECK_READONLY
, B_TRUE
, B_TRUE
);
5393 zfs_ioctl_register("hold", ZFS_IOC_HOLD
,
5394 zfs_ioc_hold
, zfs_secpolicy_hold
, POOL_NAME
,
5395 POOL_CHECK_SUSPENDED
| POOL_CHECK_READONLY
, B_TRUE
, B_TRUE
);
5396 zfs_ioctl_register("release", ZFS_IOC_RELEASE
,
5397 zfs_ioc_release
, zfs_secpolicy_release
, POOL_NAME
,
5398 POOL_CHECK_SUSPENDED
| POOL_CHECK_READONLY
, B_TRUE
, B_TRUE
);
5400 zfs_ioctl_register("get_holds", ZFS_IOC_GET_HOLDS
,
5401 zfs_ioc_get_holds
, zfs_secpolicy_read
, DATASET_NAME
,
5402 POOL_CHECK_SUSPENDED
, B_FALSE
, B_FALSE
);
5404 zfs_ioctl_register("rollback", ZFS_IOC_ROLLBACK
,
5405 zfs_ioc_rollback
, zfs_secpolicy_rollback
, DATASET_NAME
,
5406 POOL_CHECK_SUSPENDED
| POOL_CHECK_READONLY
, B_FALSE
, B_TRUE
);
5408 zfs_ioctl_register("bookmark", ZFS_IOC_BOOKMARK
,
5409 zfs_ioc_bookmark
, zfs_secpolicy_bookmark
, POOL_NAME
,
5410 POOL_CHECK_SUSPENDED
| POOL_CHECK_READONLY
, B_TRUE
, B_TRUE
);
5412 zfs_ioctl_register("get_bookmarks", ZFS_IOC_GET_BOOKMARKS
,
5413 zfs_ioc_get_bookmarks
, zfs_secpolicy_read
, DATASET_NAME
,
5414 POOL_CHECK_SUSPENDED
, B_FALSE
, B_FALSE
);
5416 zfs_ioctl_register("destroy_bookmarks", ZFS_IOC_DESTROY_BOOKMARKS
,
5417 zfs_ioc_destroy_bookmarks
, zfs_secpolicy_destroy_bookmarks
,
5419 POOL_CHECK_SUSPENDED
| POOL_CHECK_READONLY
, B_TRUE
, B_TRUE
);
5421 /* IOCTLS that use the legacy function signature */
5423 zfs_ioctl_register_legacy(ZFS_IOC_POOL_FREEZE
, zfs_ioc_pool_freeze
,
5424 zfs_secpolicy_config
, NO_NAME
, B_FALSE
, POOL_CHECK_READONLY
);
5426 zfs_ioctl_register_pool(ZFS_IOC_POOL_CREATE
, zfs_ioc_pool_create
,
5427 zfs_secpolicy_config
, B_TRUE
, POOL_CHECK_NONE
);
5428 zfs_ioctl_register_pool_modify(ZFS_IOC_POOL_SCAN
,
5430 zfs_ioctl_register_pool_modify(ZFS_IOC_POOL_UPGRADE
,
5431 zfs_ioc_pool_upgrade
);
5432 zfs_ioctl_register_pool_modify(ZFS_IOC_VDEV_ADD
,
5434 zfs_ioctl_register_pool_modify(ZFS_IOC_VDEV_REMOVE
,
5435 zfs_ioc_vdev_remove
);
5436 zfs_ioctl_register_pool_modify(ZFS_IOC_VDEV_SET_STATE
,
5437 zfs_ioc_vdev_set_state
);
5438 zfs_ioctl_register_pool_modify(ZFS_IOC_VDEV_ATTACH
,
5439 zfs_ioc_vdev_attach
);
5440 zfs_ioctl_register_pool_modify(ZFS_IOC_VDEV_DETACH
,
5441 zfs_ioc_vdev_detach
);
5442 zfs_ioctl_register_pool_modify(ZFS_IOC_VDEV_SETPATH
,
5443 zfs_ioc_vdev_setpath
);
5444 zfs_ioctl_register_pool_modify(ZFS_IOC_VDEV_SETFRU
,
5445 zfs_ioc_vdev_setfru
);
5446 zfs_ioctl_register_pool_modify(ZFS_IOC_POOL_SET_PROPS
,
5447 zfs_ioc_pool_set_props
);
5448 zfs_ioctl_register_pool_modify(ZFS_IOC_VDEV_SPLIT
,
5449 zfs_ioc_vdev_split
);
5450 zfs_ioctl_register_pool_modify(ZFS_IOC_POOL_REGUID
,
5451 zfs_ioc_pool_reguid
);
5453 zfs_ioctl_register_pool_meta(ZFS_IOC_POOL_CONFIGS
,
5454 zfs_ioc_pool_configs
, zfs_secpolicy_none
);
5455 zfs_ioctl_register_pool_meta(ZFS_IOC_POOL_TRYIMPORT
,
5456 zfs_ioc_pool_tryimport
, zfs_secpolicy_config
);
5457 zfs_ioctl_register_pool_meta(ZFS_IOC_INJECT_FAULT
,
5458 zfs_ioc_inject_fault
, zfs_secpolicy_inject
);
5459 zfs_ioctl_register_pool_meta(ZFS_IOC_CLEAR_FAULT
,
5460 zfs_ioc_clear_fault
, zfs_secpolicy_inject
);
5461 zfs_ioctl_register_pool_meta(ZFS_IOC_INJECT_LIST_NEXT
,
5462 zfs_ioc_inject_list_next
, zfs_secpolicy_inject
);
5465 * pool destroy, and export don't log the history as part of
5466 * zfsdev_ioctl, but rather zfs_ioc_pool_export
5467 * does the logging of those commands.
5469 zfs_ioctl_register_pool(ZFS_IOC_POOL_DESTROY
, zfs_ioc_pool_destroy
,
5470 zfs_secpolicy_config
, B_FALSE
, POOL_CHECK_SUSPENDED
);
5471 zfs_ioctl_register_pool(ZFS_IOC_POOL_EXPORT
, zfs_ioc_pool_export
,
5472 zfs_secpolicy_config
, B_FALSE
, POOL_CHECK_SUSPENDED
);
5474 zfs_ioctl_register_pool(ZFS_IOC_POOL_STATS
, zfs_ioc_pool_stats
,
5475 zfs_secpolicy_read
, B_FALSE
, POOL_CHECK_NONE
);
5476 zfs_ioctl_register_pool(ZFS_IOC_POOL_GET_PROPS
, zfs_ioc_pool_get_props
,
5477 zfs_secpolicy_read
, B_FALSE
, POOL_CHECK_NONE
);
5479 zfs_ioctl_register_pool(ZFS_IOC_ERROR_LOG
, zfs_ioc_error_log
,
5480 zfs_secpolicy_inject
, B_FALSE
, POOL_CHECK_SUSPENDED
);
5481 zfs_ioctl_register_pool(ZFS_IOC_DSOBJ_TO_DSNAME
,
5482 zfs_ioc_dsobj_to_dsname
,
5483 zfs_secpolicy_diff
, B_FALSE
, POOL_CHECK_SUSPENDED
);
5484 zfs_ioctl_register_pool(ZFS_IOC_POOL_GET_HISTORY
,
5485 zfs_ioc_pool_get_history
,
5486 zfs_secpolicy_config
, B_FALSE
, POOL_CHECK_SUSPENDED
);
5488 zfs_ioctl_register_pool(ZFS_IOC_POOL_IMPORT
, zfs_ioc_pool_import
,
5489 zfs_secpolicy_config
, B_TRUE
, POOL_CHECK_NONE
);
5491 zfs_ioctl_register_pool(ZFS_IOC_CLEAR
, zfs_ioc_clear
,
5492 zfs_secpolicy_config
, B_TRUE
, POOL_CHECK_NONE
);
5493 zfs_ioctl_register_pool(ZFS_IOC_POOL_REOPEN
, zfs_ioc_pool_reopen
,
5494 zfs_secpolicy_config
, B_TRUE
, POOL_CHECK_SUSPENDED
);
5496 zfs_ioctl_register_dataset_read(ZFS_IOC_SPACE_WRITTEN
,
5497 zfs_ioc_space_written
);
5498 zfs_ioctl_register_dataset_read(ZFS_IOC_OBJSET_RECVD_PROPS
,
5499 zfs_ioc_objset_recvd_props
);
5500 zfs_ioctl_register_dataset_read(ZFS_IOC_NEXT_OBJ
,
5502 zfs_ioctl_register_dataset_read(ZFS_IOC_GET_FSACL
,
5504 zfs_ioctl_register_dataset_read(ZFS_IOC_OBJSET_STATS
,
5505 zfs_ioc_objset_stats
);
5506 zfs_ioctl_register_dataset_read(ZFS_IOC_OBJSET_ZPLPROPS
,
5507 zfs_ioc_objset_zplprops
);
5508 zfs_ioctl_register_dataset_read(ZFS_IOC_DATASET_LIST_NEXT
,
5509 zfs_ioc_dataset_list_next
);
5510 zfs_ioctl_register_dataset_read(ZFS_IOC_SNAPSHOT_LIST_NEXT
,
5511 zfs_ioc_snapshot_list_next
);
5512 zfs_ioctl_register_dataset_read(ZFS_IOC_SEND_PROGRESS
,
5513 zfs_ioc_send_progress
);
5515 zfs_ioctl_register_dataset_read_secpolicy(ZFS_IOC_DIFF
,
5516 zfs_ioc_diff
, zfs_secpolicy_diff
);
5517 zfs_ioctl_register_dataset_read_secpolicy(ZFS_IOC_OBJ_TO_STATS
,
5518 zfs_ioc_obj_to_stats
, zfs_secpolicy_diff
);
5519 zfs_ioctl_register_dataset_read_secpolicy(ZFS_IOC_OBJ_TO_PATH
,
5520 zfs_ioc_obj_to_path
, zfs_secpolicy_diff
);
5521 zfs_ioctl_register_dataset_read_secpolicy(ZFS_IOC_USERSPACE_ONE
,
5522 zfs_ioc_userspace_one
, zfs_secpolicy_userspace_one
);
5523 zfs_ioctl_register_dataset_read_secpolicy(ZFS_IOC_USERSPACE_MANY
,
5524 zfs_ioc_userspace_many
, zfs_secpolicy_userspace_many
);
5525 zfs_ioctl_register_dataset_read_secpolicy(ZFS_IOC_SEND
,
5526 zfs_ioc_send
, zfs_secpolicy_send
);
5528 zfs_ioctl_register_dataset_modify(ZFS_IOC_SET_PROP
, zfs_ioc_set_prop
,
5529 zfs_secpolicy_none
);
5530 zfs_ioctl_register_dataset_modify(ZFS_IOC_DESTROY
, zfs_ioc_destroy
,
5531 zfs_secpolicy_destroy
);
5532 zfs_ioctl_register_dataset_modify(ZFS_IOC_RENAME
, zfs_ioc_rename
,
5533 zfs_secpolicy_rename
);
5534 zfs_ioctl_register_dataset_modify(ZFS_IOC_RECV
, zfs_ioc_recv
,
5535 zfs_secpolicy_recv
);
5536 zfs_ioctl_register_dataset_modify(ZFS_IOC_PROMOTE
, zfs_ioc_promote
,
5537 zfs_secpolicy_promote
);
5538 zfs_ioctl_register_dataset_modify(ZFS_IOC_INHERIT_PROP
,
5539 zfs_ioc_inherit_prop
, zfs_secpolicy_inherit_prop
);
5540 zfs_ioctl_register_dataset_modify(ZFS_IOC_SET_FSACL
, zfs_ioc_set_fsacl
,
5541 zfs_secpolicy_set_fsacl
);
5543 zfs_ioctl_register_dataset_nolog(ZFS_IOC_SHARE
, zfs_ioc_share
,
5544 zfs_secpolicy_share
, POOL_CHECK_NONE
);
5545 zfs_ioctl_register_dataset_nolog(ZFS_IOC_SMB_ACL
, zfs_ioc_smb_acl
,
5546 zfs_secpolicy_smb_acl
, POOL_CHECK_NONE
);
5547 zfs_ioctl_register_dataset_nolog(ZFS_IOC_USERSPACE_UPGRADE
,
5548 zfs_ioc_userspace_upgrade
, zfs_secpolicy_userspace_upgrade
,
5549 POOL_CHECK_SUSPENDED
| POOL_CHECK_READONLY
);
5550 zfs_ioctl_register_dataset_nolog(ZFS_IOC_TMP_SNAPSHOT
,
5551 zfs_ioc_tmp_snapshot
, zfs_secpolicy_tmp_snapshot
,
5552 POOL_CHECK_SUSPENDED
| POOL_CHECK_READONLY
);
5557 zfs_ioctl_register_legacy(ZFS_IOC_EVENTS_NEXT
, zfs_ioc_events_next
,
5558 zfs_secpolicy_config
, NO_NAME
, B_FALSE
, POOL_CHECK_NONE
);
5559 zfs_ioctl_register_legacy(ZFS_IOC_EVENTS_CLEAR
, zfs_ioc_events_clear
,
5560 zfs_secpolicy_config
, NO_NAME
, B_FALSE
, POOL_CHECK_NONE
);
5561 zfs_ioctl_register_legacy(ZFS_IOC_EVENTS_SEEK
, zfs_ioc_events_seek
,
5562 zfs_secpolicy_config
, NO_NAME
, B_FALSE
, POOL_CHECK_NONE
);
5566 pool_status_check(const char *name
, zfs_ioc_namecheck_t type
,
5567 zfs_ioc_poolcheck_t check
)
5572 ASSERT(type
== POOL_NAME
|| type
== DATASET_NAME
);
5574 if (check
& POOL_CHECK_NONE
)
5577 error
= spa_open(name
, &spa
, FTAG
);
5579 if ((check
& POOL_CHECK_SUSPENDED
) && spa_suspended(spa
))
5580 error
= SET_ERROR(EAGAIN
);
5581 else if ((check
& POOL_CHECK_READONLY
) && !spa_writeable(spa
))
5582 error
= SET_ERROR(EROFS
);
5583 spa_close(spa
, FTAG
);
5589 zfsdev_get_state_impl(minor_t minor
, enum zfsdev_state_type which
)
5593 for (zs
= zfsdev_state_list
; zs
!= NULL
; zs
= zs
->zs_next
) {
5594 if (zs
->zs_minor
== minor
) {
5598 return (zs
->zs_onexit
);
5600 return (zs
->zs_zevent
);
5611 zfsdev_get_state(minor_t minor
, enum zfsdev_state_type which
)
5615 ptr
= zfsdev_get_state_impl(minor
, which
);
5621 zfsdev_getminor(struct file
*filp
, minor_t
*minorp
)
5623 zfsdev_state_t
*zs
, *fpd
;
5625 ASSERT(filp
!= NULL
);
5626 ASSERT(!MUTEX_HELD(&zfsdev_state_lock
));
5628 fpd
= filp
->private_data
;
5632 mutex_enter(&zfsdev_state_lock
);
5634 for (zs
= zfsdev_state_list
; zs
!= NULL
; zs
= zs
->zs_next
) {
5636 if (zs
->zs_minor
== -1)
5640 *minorp
= fpd
->zs_minor
;
5641 mutex_exit(&zfsdev_state_lock
);
5646 mutex_exit(&zfsdev_state_lock
);
5652 * Find a free minor number. The zfsdev_state_list is expected to
5653 * be short since it is only a list of currently open file handles.
5656 zfsdev_minor_alloc(void)
5658 static minor_t last_minor
= 0;
5661 ASSERT(MUTEX_HELD(&zfsdev_state_lock
));
5663 for (m
= last_minor
+ 1; m
!= last_minor
; m
++) {
5664 if (m
> ZFSDEV_MAX_MINOR
)
5666 if (zfsdev_get_state_impl(m
, ZST_ALL
) == NULL
) {
5676 zfsdev_state_init(struct file
*filp
)
5678 zfsdev_state_t
*zs
, *zsprev
= NULL
;
5680 boolean_t newzs
= B_FALSE
;
5682 ASSERT(MUTEX_HELD(&zfsdev_state_lock
));
5684 minor
= zfsdev_minor_alloc();
5686 return (SET_ERROR(ENXIO
));
5688 for (zs
= zfsdev_state_list
; zs
!= NULL
; zs
= zs
->zs_next
) {
5689 if (zs
->zs_minor
== -1)
5695 zs
= kmem_zalloc(sizeof (zfsdev_state_t
), KM_SLEEP
);
5700 filp
->private_data
= zs
;
5702 zfs_onexit_init((zfs_onexit_t
**)&zs
->zs_onexit
);
5703 zfs_zevent_init((zfs_zevent_t
**)&zs
->zs_zevent
);
5707 * In order to provide for lock-free concurrent read access
5708 * to the minor list in zfsdev_get_state_impl(), new entries
5709 * must be completely written before linking them into the
5710 * list whereas existing entries are already linked; the last
5711 * operation must be updating zs_minor (from -1 to the new
5715 zs
->zs_minor
= minor
;
5717 zsprev
->zs_next
= zs
;
5720 zs
->zs_minor
= minor
;
5727 zfsdev_state_destroy(struct file
*filp
)
5731 ASSERT(MUTEX_HELD(&zfsdev_state_lock
));
5732 ASSERT(filp
->private_data
!= NULL
);
5734 zs
= filp
->private_data
;
5736 zfs_onexit_destroy(zs
->zs_onexit
);
5737 zfs_zevent_destroy(zs
->zs_zevent
);
5743 zfsdev_open(struct inode
*ino
, struct file
*filp
)
5747 mutex_enter(&zfsdev_state_lock
);
5748 error
= zfsdev_state_init(filp
);
5749 mutex_exit(&zfsdev_state_lock
);
5755 zfsdev_release(struct inode
*ino
, struct file
*filp
)
5759 mutex_enter(&zfsdev_state_lock
);
5760 error
= zfsdev_state_destroy(filp
);
5761 mutex_exit(&zfsdev_state_lock
);
5767 zfsdev_ioctl(struct file
*filp
, unsigned cmd
, unsigned long arg
)
5771 int error
, rc
, flag
= 0;
5772 const zfs_ioc_vec_t
*vec
;
5773 char *saved_poolname
= NULL
;
5774 nvlist_t
*innvl
= NULL
;
5775 fstrans_cookie_t cookie
;
5777 vecnum
= cmd
- ZFS_IOC_FIRST
;
5778 if (vecnum
>= sizeof (zfs_ioc_vec
) / sizeof (zfs_ioc_vec
[0]))
5779 return (-SET_ERROR(EINVAL
));
5780 vec
= &zfs_ioc_vec
[vecnum
];
5783 * The registered ioctl list may be sparse, verify that either
5784 * a normal or legacy handler are registered.
5786 if (vec
->zvec_func
== NULL
&& vec
->zvec_legacy_func
== NULL
)
5787 return (-SET_ERROR(EINVAL
));
5789 zc
= kmem_zalloc(sizeof (zfs_cmd_t
), KM_SLEEP
);
5791 error
= ddi_copyin((void *)arg
, zc
, sizeof (zfs_cmd_t
), flag
);
5793 error
= SET_ERROR(EFAULT
);
5797 zc
->zc_iflags
= flag
& FKIOCTL
;
5798 if (zc
->zc_nvlist_src_size
!= 0) {
5799 error
= get_nvlist(zc
->zc_nvlist_src
, zc
->zc_nvlist_src_size
,
5800 zc
->zc_iflags
, &innvl
);
5806 * Ensure that all pool/dataset names are valid before we pass down to
5809 zc
->zc_name
[sizeof (zc
->zc_name
) - 1] = '\0';
5810 switch (vec
->zvec_namecheck
) {
5812 if (pool_namecheck(zc
->zc_name
, NULL
, NULL
) != 0)
5813 error
= SET_ERROR(EINVAL
);
5815 error
= pool_status_check(zc
->zc_name
,
5816 vec
->zvec_namecheck
, vec
->zvec_pool_check
);
5820 if (dataset_namecheck(zc
->zc_name
, NULL
, NULL
) != 0)
5821 error
= SET_ERROR(EINVAL
);
5823 error
= pool_status_check(zc
->zc_name
,
5824 vec
->zvec_namecheck
, vec
->zvec_pool_check
);
5832 if (error
== 0 && !(flag
& FKIOCTL
)) {
5833 cookie
= spl_fstrans_mark();
5834 error
= vec
->zvec_secpolicy(zc
, innvl
, CRED());
5835 spl_fstrans_unmark(cookie
);
5841 /* legacy ioctls can modify zc_name */
5842 saved_poolname
= strdup(zc
->zc_name
);
5843 if (saved_poolname
== NULL
) {
5844 error
= SET_ERROR(ENOMEM
);
5847 saved_poolname
[strcspn(saved_poolname
, "/@#")] = '\0';
5850 if (vec
->zvec_func
!= NULL
) {
5854 nvlist_t
*lognv
= NULL
;
5856 ASSERT(vec
->zvec_legacy_func
== NULL
);
5859 * Add the innvl to the lognv before calling the func,
5860 * in case the func changes the innvl.
5862 if (vec
->zvec_allow_log
) {
5863 lognv
= fnvlist_alloc();
5864 fnvlist_add_string(lognv
, ZPOOL_HIST_IOCTL
,
5866 if (!nvlist_empty(innvl
)) {
5867 fnvlist_add_nvlist(lognv
, ZPOOL_HIST_INPUT_NVL
,
5872 outnvl
= fnvlist_alloc();
5873 cookie
= spl_fstrans_mark();
5874 error
= vec
->zvec_func(zc
->zc_name
, innvl
, outnvl
);
5875 spl_fstrans_unmark(cookie
);
5877 if (error
== 0 && vec
->zvec_allow_log
&&
5878 spa_open(zc
->zc_name
, &spa
, FTAG
) == 0) {
5879 if (!nvlist_empty(outnvl
)) {
5880 fnvlist_add_nvlist(lognv
, ZPOOL_HIST_OUTPUT_NVL
,
5883 (void) spa_history_log_nvl(spa
, lognv
);
5884 spa_close(spa
, FTAG
);
5886 fnvlist_free(lognv
);
5888 if (!nvlist_empty(outnvl
) || zc
->zc_nvlist_dst_size
!= 0) {
5890 if (vec
->zvec_smush_outnvlist
) {
5891 smusherror
= nvlist_smush(outnvl
,
5892 zc
->zc_nvlist_dst_size
);
5894 if (smusherror
== 0)
5895 puterror
= put_nvlist(zc
, outnvl
);
5901 nvlist_free(outnvl
);
5903 cookie
= spl_fstrans_mark();
5904 error
= vec
->zvec_legacy_func(zc
);
5905 spl_fstrans_unmark(cookie
);
5910 rc
= ddi_copyout(zc
, (void *)arg
, sizeof (zfs_cmd_t
), flag
);
5911 if (error
== 0 && rc
!= 0)
5912 error
= SET_ERROR(EFAULT
);
5913 if (error
== 0 && vec
->zvec_allow_log
) {
5914 char *s
= tsd_get(zfs_allow_log_key
);
5917 (void) tsd_set(zfs_allow_log_key
, saved_poolname
);
5919 if (saved_poolname
!= NULL
)
5920 strfree(saved_poolname
);
5923 kmem_free(zc
, sizeof (zfs_cmd_t
));
5927 #ifdef CONFIG_COMPAT
5929 zfsdev_compat_ioctl(struct file
*filp
, unsigned cmd
, unsigned long arg
)
5931 return (zfsdev_ioctl(filp
, cmd
, arg
));
5934 #define zfsdev_compat_ioctl NULL
5937 static const struct file_operations zfsdev_fops
= {
5938 .open
= zfsdev_open
,
5939 .release
= zfsdev_release
,
5940 .unlocked_ioctl
= zfsdev_ioctl
,
5941 .compat_ioctl
= zfsdev_compat_ioctl
,
5942 .owner
= THIS_MODULE
,
5945 static struct miscdevice zfs_misc
= {
5946 .minor
= MISC_DYNAMIC_MINOR
,
5948 .fops
= &zfsdev_fops
,
5956 mutex_init(&zfsdev_state_lock
, NULL
, MUTEX_DEFAULT
, NULL
);
5957 zfsdev_state_list
= kmem_zalloc(sizeof (zfsdev_state_t
), KM_SLEEP
);
5958 zfsdev_state_list
->zs_minor
= -1;
5960 error
= misc_register(&zfs_misc
);
5962 printk(KERN_INFO
"ZFS: misc_register() failed %d\n", error
);
5972 zfsdev_state_t
*zs
, *zsprev
= NULL
;
5974 misc_deregister(&zfs_misc
);
5975 mutex_destroy(&zfsdev_state_lock
);
5977 for (zs
= zfsdev_state_list
; zs
!= NULL
; zs
= zs
->zs_next
) {
5979 kmem_free(zsprev
, sizeof (zfsdev_state_t
));
5983 kmem_free(zsprev
, sizeof (zfsdev_state_t
));
5987 zfs_allow_log_destroy(void *arg
)
5989 char *poolname
= arg
;
5994 #define ZFS_DEBUG_STR " (DEBUG mode)"
5996 #define ZFS_DEBUG_STR ""
6004 error
= -vn_set_pwd("/");
6007 "ZFS: Warning unable to set pwd to '/': %d\n", error
);
6011 if ((error
= -zvol_init()) != 0)
6014 spa_init(FREAD
| FWRITE
);
6019 if ((error
= zfs_attach()) != 0)
6022 tsd_create(&zfs_fsyncer_key
, NULL
);
6023 tsd_create(&rrw_tsd_key
, rrw_tsd_destroy
);
6024 tsd_create(&zfs_allow_log_key
, zfs_allow_log_destroy
);
6026 printk(KERN_NOTICE
"ZFS: Loaded module v%s-%s%s, "
6027 "ZFS pool version %s, ZFS filesystem version %s\n",
6028 ZFS_META_VERSION
, ZFS_META_RELEASE
, ZFS_DEBUG_STR
,
6029 SPA_VERSION_STRING
, ZPL_VERSION_STRING
);
6030 #ifndef CONFIG_FS_POSIX_ACL
6031 printk(KERN_NOTICE
"ZFS: Posix ACLs disabled by kernel\n");
6032 #endif /* CONFIG_FS_POSIX_ACL */
6040 printk(KERN_NOTICE
"ZFS: Failed to Load ZFS Filesystem v%s-%s%s"
6041 ", rc = %d\n", ZFS_META_VERSION
, ZFS_META_RELEASE
,
6042 ZFS_DEBUG_STR
, error
);
6055 tsd_destroy(&zfs_fsyncer_key
);
6056 tsd_destroy(&rrw_tsd_key
);
6057 tsd_destroy(&zfs_allow_log_key
);
6059 printk(KERN_NOTICE
"ZFS: Unloaded module v%s-%s%s\n",
6060 ZFS_META_VERSION
, ZFS_META_RELEASE
, ZFS_DEBUG_STR
);
6067 MODULE_DESCRIPTION("ZFS");
6068 MODULE_AUTHOR(ZFS_META_AUTHOR
);
6069 MODULE_LICENSE(ZFS_META_LICENSE
);
6070 MODULE_VERSION(ZFS_META_VERSION
"-" ZFS_META_RELEASE
);
6071 #endif /* HAVE_SPL */