]>
git.proxmox.com Git - pve-storage.git/blob - PVE/Storage/CIFSPlugin.pm
1 package PVE
::Storage
::CIFSPlugin
;
6 use PVE
::Tools
qw(run_command);
9 use PVE
::Storage
::Plugin
;
10 use PVE
::JSONSchema
qw(get_standard_option);
12 use base
qw(PVE::Storage::Plugin);
14 # CIFS helper functions
17 my ($server, $share, $mountpoint, $mountdata) = @_;
19 $server = "[$server]" if Net
::IP
::ip_is_ipv6
($server);
20 my $source = "//${server}/$share";
21 $mountdata = PVE
::ProcFSTools
::parse_proc_mounts
() if !$mountdata;
23 return $mountpoint if grep {
25 $_->[0] =~ m
|^\Q
$source\E/?$| &&
26 $_->[1] eq $mountpoint
31 sub cifs_cred_file_name
{
33 return "/etc/pve/priv/storage/${storeid}.pw";
36 sub cifs_delete_credentials
{
39 if (my $cred_file = get_cred_file
($storeid)) {
40 unlink($cred_file) or warn "removing cifs credientials '$cred_file' failed: $!\n";
44 sub cifs_set_credentials
{
45 my ($password, $storeid) = @_;
47 my $cred_file = cifs_cred_file_name
($storeid);
48 mkdir "/etc/pve/priv/storage";
50 PVE
::Tools
::file_set_contents
($cred_file, "password=$password\n");
58 my $cred_file = cifs_cred_file_name
($storeid);
67 my ($server, $share, $mountpoint, $storeid, $smbver, $user, $domain) = @_;
69 $server = "[$server]" if Net
::IP
::ip_is_ipv6
($server);
70 my $source = "//${server}/$share";
72 my $cmd = ['/bin/mount', '-t', 'cifs', $source, $mountpoint, '-o', 'soft', '-o'];
74 if (my $cred_file = get_cred_file
($storeid)) {
75 push @$cmd, "username=$user", '-o', "credentials=$cred_file";
76 push @$cmd, '-o', "domain=$domain" if defined($domain);
78 push @$cmd, 'guest,username=guest';
81 push @$cmd, '-o', defined($smbver) ?
"vers=$smbver" : "vers=default";
83 run_command
($cmd, errmsg
=> "mount error");
94 content
=> [ { images
=> 1, rootdir
=> 1, vztmpl
=> 1, iso
=> 1,
95 backup
=> 1, snippets
=> 1}, { images
=> 1 }],
96 format
=> [ { raw
=> 1, qcow2
=> 1, vmdk
=> 1 } , 'raw' ],
103 description
=> "CIFS share.",
107 description
=> "Password for accessing the share/datastore.",
112 description
=> "CIFS domain.",
118 description
=> "SMB protocol version. 'default' if not set, negotiates the highest SMB2+"
119 ." version supported by both the client and server.",
121 default => 'default',
122 enum
=> ['default', '2.0', '2.1', '3', '3.0', '3.11'],
130 path
=> { fixed
=> 1 },
131 server
=> { fixed
=> 1 },
132 share
=> { fixed
=> 1 },
133 nodes
=> { optional
=> 1 },
134 disable
=> { optional
=> 1 },
135 maxfiles
=> { optional
=> 1 },
136 'prune-backups' => { optional
=> 1 },
137 'max-protected-backups' => { optional
=> 1 },
138 content
=> { optional
=> 1 },
139 format
=> { optional
=> 1 },
140 username
=> { optional
=> 1 },
141 password
=> { optional
=> 1},
142 domain
=> { optional
=> 1},
143 smbversion
=> { optional
=> 1},
144 mkdir => { optional
=> 1 },
145 bwlimit
=> { optional
=> 1 },
146 preallocation
=> { optional
=> 1 },
152 my ($class, $sectionId, $config, $create, $skipSchemaCheck) = @_;
154 $config->{path
} = "/mnt/pve/$sectionId" if $create && !$config->{path
};
156 return $class->SUPER::check_config
($sectionId, $config, $create, $skipSchemaCheck);
159 # Storage implementation
162 my ($class, $storeid, $scfg, %sensitive) = @_;
164 if (defined($sensitive{password
})) {
165 cifs_set_credentials
($sensitive{password
}, $storeid);
166 if (!exists($scfg->{username
})) {
167 warn "storage $storeid: ignoring password parameter, no user set\n";
170 cifs_delete_credentials
($storeid);
177 my ($class, $storeid, $scfg, %sensitive) = @_;
179 return if !exists($sensitive{password
});
181 if (defined($sensitive{password
})) {
182 cifs_set_credentials
($sensitive{password
}, $storeid);
183 if (!exists($scfg->{username
})) {
184 warn "storage $storeid: ignoring password parameter, no user set\n";
187 cifs_delete_credentials
($storeid);
194 my ($class, $storeid, $scfg) = @_;
196 cifs_delete_credentials
($storeid);
202 my ($class, $storeid, $scfg, $cache) = @_;
204 $cache->{mountdata
} = PVE
::ProcFSTools
::parse_proc_mounts
()
205 if !$cache->{mountdata
};
207 my $path = $scfg->{path
};
208 my $server = $scfg->{server
};
209 my $share = $scfg->{share
};
212 if !cifs_is_mounted
($server, $share, $path, $cache->{mountdata
});
214 return $class->SUPER::status
($storeid, $scfg, $cache);
217 sub activate_storage
{
218 my ($class, $storeid, $scfg, $cache) = @_;
220 $cache->{mountdata
} = PVE
::ProcFSTools
::parse_proc_mounts
()
221 if !$cache->{mountdata
};
223 my $path = $scfg->{path
};
224 my $server = $scfg->{server
};
225 my $share = $scfg->{share
};
227 if (!cifs_is_mounted
($server, $share, $path, $cache->{mountdata
})) {
229 mkpath
$path if !(defined($scfg->{mkdir}) && !$scfg->{mkdir});
231 die "unable to activate storage '$storeid' - " .
232 "directory '$path' does not exist\n" if ! -d
$path;
234 cifs_mount
($server, $share, $path, $storeid, $scfg->{smbversion
},
235 $scfg->{username
}, $scfg->{domain
});
238 $class->SUPER::activate_storage
($storeid, $scfg, $cache);
241 sub deactivate_storage
{
242 my ($class, $storeid, $scfg, $cache) = @_;
244 $cache->{mountdata
} = PVE
::ProcFSTools
::parse_proc_mounts
()
245 if !$cache->{mountdata
};
247 my $path = $scfg->{path
};
248 my $server = $scfg->{server
};
249 my $share = $scfg->{share
};
251 if (cifs_is_mounted
($server, $share, $path, $cache->{mountdata
})) {
252 my $cmd = ['/bin/umount', $path];
253 run_command
($cmd, errmsg
=> 'umount error');
257 sub check_connection
{
258 my ($class, $storeid, $scfg) = @_;
260 my $servicename = '//'.$scfg->{server
}.'/'.$scfg->{share
};
262 my $cmd = ['/usr/bin/smbclient', $servicename, '-d', '0'];
264 if (defined($scfg->{smbversion
}) && $scfg->{smbversion
} ne 'default') {
265 # max-protocol version, so basically only relevant for smb2 vs smb3
266 push @$cmd, '-m', "smb" . int($scfg->{smbversion
});
269 if (my $cred_file = get_cred_file
($storeid)) {
270 push @$cmd, '-U', $scfg->{username
}, '-A', $cred_file;
271 push @$cmd, '-W', $scfg->{domain
} if defined($scfg->{domain
});
273 push @$cmd, '-U', 'Guest','-N';
275 push @$cmd, '-c', 'echo 1 0';
278 my $out = sub { $out_str .= shift };
280 eval { run_command
($cmd, timeout
=> 10, outfunc
=> $out, errfunc
=> sub {}) };
283 die "$out_str\n" if defined($out_str) &&
284 ($out_str =~ m/NT_STATUS_(ACCESS_DENIED|LOGON_FAILURE)/);
291 # FIXME remove on the next APIAGE reset.
292 # Deprecated, use get_volume_attribute instead.
293 sub get_volume_notes
{
295 PVE
::Storage
::DirPlugin
::get_volume_notes
($class, @_);
298 # FIXME remove on the next APIAGE reset.
299 # Deprecated, use update_volume_attribute instead.
300 sub update_volume_notes
{
302 PVE
::Storage
::DirPlugin
::update_volume_notes
($class, @_);
305 sub get_volume_attribute
{
306 return PVE
::Storage
::DirPlugin
::get_volume_attribute
(@_);
309 sub update_volume_attribute
{
310 return PVE
::Storage
::DirPlugin
::update_volume_attribute
(@_);