4 * The contents of this file are subject to the terms of the
5 * Common Development and Distribution License (the "License").
6 * You may not use this file except in compliance with the License.
8 * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
9 * or http://www.opensolaris.org/os/licensing.
10 * See the License for the specific language governing permissions
11 * and limitations under the License.
13 * When distributing Covered Code, include this CDDL HEADER in each
14 * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
15 * If applicable, add the following below this CDDL HEADER, with the
16 * fields enclosed by brackets "[]" replaced with your own identifying
17 * information: Portions Copyright [yyyy] [name of copyright owner]
22 * Copyright 2009 Sun Microsystems, Inc. All rights reserved.
23 * Use is subject to license terms.
26 #include <sys/types.h>
27 #include <sys/param.h>
28 #include <sys/systm.h>
30 #include <sys/kernel.h>
32 #include <sys/malloc.h>
33 #include <sys/mutex.h>
35 #include <sys/errno.h>
41 #include <sys/cmn_err.h>
43 #include <sys/zfs_ioctl.h>
44 #include <sys/zfs_vfsops.h>
45 #include <sys/zfs_znode.h>
48 #include <sys/spa_impl.h>
50 #include <sys/vdev_impl.h>
52 #include <sys/dsl_dir.h>
53 #include <sys/dsl_dataset.h>
54 #include <sys/dsl_prop.h>
55 #include <sys/dsl_deleg.h>
56 #include <sys/dmu_objset.h>
57 #include <sys/sunddi.h>
58 #include <sys/policy.h>
60 #include <sys/nvpair.h>
61 #include <sys/mount.h>
62 #include <sys/taskqueue.h>
64 #include <sys/varargs.h>
65 #include <sys/fs/zfs.h>
66 #include <sys/zfs_ctldir.h>
67 #include <sys/zfs_dir.h>
69 #include <sys/dmu_objset.h>
71 #include "zfs_namecheck.h"
73 #include "zfs_deleg.h"
75 CTASSERT(sizeof(zfs_cmd_t) <= PAGE_SIZE);
77 static struct cdev *zfsdev;
79 extern void zfs_init(void);
80 extern void zfs_fini(void);
82 typedef int zfs_ioc_func_t(zfs_cmd_t *);
83 typedef int zfs_secpolicy_func_t(zfs_cmd_t *, cred_t *);
89 } zfs_ioc_namecheck_t;
91 typedef struct zfs_ioc_vec {
92 zfs_ioc_func_t *zvec_func;
93 zfs_secpolicy_func_t *zvec_secpolicy;
94 zfs_ioc_namecheck_t zvec_namecheck;
95 boolean_t zvec_his_log;
96 boolean_t zvec_pool_check;
99 /* This array is indexed by zfs_userquota_prop_t */
100 static const char *userquota_perms[] = {
101 ZFS_DELEG_PERM_USERUSED,
102 ZFS_DELEG_PERM_USERQUOTA,
103 ZFS_DELEG_PERM_GROUPUSED,
104 ZFS_DELEG_PERM_GROUPQUOTA,
107 static int zfs_ioc_userspace_upgrade(zfs_cmd_t *zc);
108 static void clear_props(char *dataset, nvlist_t *props, nvlist_t *newprops);
109 static int zfs_fill_zplprops_root(uint64_t, nvlist_t *, nvlist_t *,
111 int zfs_set_prop_nvlist(const char *, nvlist_t *);
113 /* _NOTE(PRINTFLIKE(4)) - this is printf-like, but lint is too whiney */
115 __dprintf(const char *file, const char *func, int line, const char *fmt, ...)
122 * Get rid of annoying "../common/" prefix to filename.
124 newfile = strrchr(file, '/');
125 if (newfile != NULL) {
126 newfile = newfile + 1; /* Get rid of leading / */
132 (void) vsnprintf(buf, sizeof (buf), fmt, adx);
136 * To get this data, use the zfs-dprintf probe as so:
137 * dtrace -q -n 'zfs-dprintf \
138 * /stringof(arg0) == "dbuf.c"/ \
139 * {printf("%s: %s", stringof(arg1), stringof(arg3))}'
141 * arg1 = function name
145 DTRACE_PROBE4(zfs__dprintf,
146 char *, newfile, char *, func, int, line, char *, buf);
150 history_str_free(char *buf)
152 kmem_free(buf, HIS_MAX_RECORD_LEN);
156 history_str_get(zfs_cmd_t *zc)
160 if (zc->zc_history == 0)
163 buf = kmem_alloc(HIS_MAX_RECORD_LEN, KM_SLEEP);
164 if (copyinstr((void *)(uintptr_t)zc->zc_history,
165 buf, HIS_MAX_RECORD_LEN, NULL) != 0) {
166 history_str_free(buf);
170 buf[HIS_MAX_RECORD_LEN -1] = '\0';
176 * Check to see if the named dataset is currently defined as bootable
179 zfs_is_bootfs(const char *name)
182 boolean_t ret = B_FALSE;
184 if (spa_open(name, &spa, FTAG) == 0) {
185 if (spa->spa_bootfs) {
188 if (dmu_objset_open(name, DMU_OST_ZFS,
189 DS_MODE_USER | DS_MODE_READONLY, &os) == 0) {
190 ret = (dmu_objset_id(os) == spa->spa_bootfs);
191 dmu_objset_close(os);
194 spa_close(spa, FTAG);
200 * zfs_earlier_version
202 * Return non-zero if the spa version is less than requested version.
205 zfs_earlier_version(const char *name, int version)
209 if (spa_open(name, &spa, FTAG) == 0) {
210 if (spa_version(spa) < version) {
211 spa_close(spa, FTAG);
214 spa_close(spa, FTAG);
220 * zpl_earlier_version
222 * Return TRUE if the ZPL version is less than requested version.
225 zpl_earlier_version(const char *name, int version)
228 boolean_t rc = B_TRUE;
230 if (dmu_objset_open(name, DMU_OST_ANY,
231 DS_MODE_USER | DS_MODE_READONLY, &os) == 0) {
234 if (zfs_get_zplprop(os, ZFS_PROP_VERSION, &zplversion) == 0)
235 rc = zplversion < version;
236 dmu_objset_close(os);
242 zfs_log_history(zfs_cmd_t *zc)
247 if ((buf = history_str_get(zc)) == NULL)
250 if (spa_open(zc->zc_name, &spa, FTAG) == 0) {
251 if (spa_version(spa) >= SPA_VERSION_ZPOOL_HISTORY)
252 (void) spa_history_log(spa, buf, LOG_CMD_NORMAL);
253 spa_close(spa, FTAG);
255 history_str_free(buf);
259 * Policy for top-level read operations (list pools). Requires no privileges,
260 * and can be used in the local zone, as there is no associated dataset.
264 zfs_secpolicy_none(zfs_cmd_t *zc, cred_t *cr)
270 * Policy for dataset read operations (list children, get statistics). Requires
271 * no privileges, but must be visible in the local zone.
275 zfs_secpolicy_read(zfs_cmd_t *zc, cred_t *cr)
277 if (INGLOBALZONE(curthread) ||
278 zone_dataset_visible(zc->zc_name, NULL))
285 zfs_dozonecheck(const char *dataset, cred_t *cr)
291 * The dataset must be visible by this zone -- check this first
292 * so they don't see EPERM on something they shouldn't know about.
294 if (!INGLOBALZONE(curthread) &&
295 !zone_dataset_visible(dataset, &writable))
298 if (dsl_prop_get_integer(dataset, "jailed", &zoned, NULL))
301 if (INGLOBALZONE(curthread)) {
303 * If the fs is zoned, only root can access it from the
306 if (secpolicy_zfs(cr) && zoned)
310 * If we are in a local zone, the 'zoned' property must be set.
315 /* must be writable by this zone */
323 zfs_secpolicy_write_perms(const char *name, const char *perm, cred_t *cr)
327 error = zfs_dozonecheck(name, cr);
329 error = secpolicy_zfs(cr);
331 error = dsl_deleg_access(name, perm, cr);
337 zfs_secpolicy_setprop(const char *name, zfs_prop_t prop, cred_t *cr)
340 * Check permissions for special properties.
345 * Disallow setting of 'zoned' from within a local zone.
347 if (!INGLOBALZONE(curthread))
352 if (!INGLOBALZONE(curthread)) {
354 char setpoint[MAXNAMELEN];
356 * Unprivileged users are allowed to modify the
357 * quota on things *under* (ie. contained by)
358 * the thing they own.
360 if (dsl_prop_get_integer(name, "zoned", &zoned,
363 if (!zoned || strlen(name) <= strlen(setpoint))
369 return (zfs_secpolicy_write_perms(name, zfs_prop_to_name(prop), cr));
373 zfs_secpolicy_fsacl(zfs_cmd_t *zc, cred_t *cr)
377 error = zfs_dozonecheck(zc->zc_name, cr);
382 * permission to set permissions will be evaluated later in
383 * dsl_deleg_can_allow()
389 zfs_secpolicy_rollback(zfs_cmd_t *zc, cred_t *cr)
392 error = zfs_secpolicy_write_perms(zc->zc_name,
393 ZFS_DELEG_PERM_ROLLBACK, cr);
395 error = zfs_secpolicy_write_perms(zc->zc_name,
396 ZFS_DELEG_PERM_MOUNT, cr);
401 zfs_secpolicy_send(zfs_cmd_t *zc, cred_t *cr)
403 return (zfs_secpolicy_write_perms(zc->zc_name,
404 ZFS_DELEG_PERM_SEND, cr));
408 zfs_secpolicy_deleg_share(zfs_cmd_t *zc, cred_t *cr)
413 if ((error = lookupname(zc->zc_value, UIO_SYSSPACE,
414 NO_FOLLOW, NULL, &vp)) != 0)
417 /* Now make sure mntpnt and dataset are ZFS */
419 if (strcmp(vp->v_vfsp->mnt_stat.f_fstypename, "zfs") != 0 ||
420 (strcmp((char *)refstr_value(vp->v_vfsp->vfs_resource),
421 zc->zc_name) != 0)) {
427 return (dsl_deleg_access(zc->zc_name,
428 ZFS_DELEG_PERM_SHARE, cr));
432 zfs_secpolicy_share(zfs_cmd_t *zc, cred_t *cr)
434 if (!INGLOBALZONE(curthread))
437 if (secpolicy_nfs(cr) == 0) {
440 return (zfs_secpolicy_deleg_share(zc, cr));
445 zfs_secpolicy_smb_acl(zfs_cmd_t *zc, cred_t *cr)
447 if (!INGLOBALZONE(curthread))
450 if (secpolicy_smb(cr) == 0) {
453 return (zfs_secpolicy_deleg_share(zc, cr));
458 zfs_get_parent(const char *datasetname, char *parent, int parentsize)
463 * Remove the @bla or /bla from the end of the name to get the parent.
465 (void) strncpy(parent, datasetname, parentsize);
466 cp = strrchr(parent, '@');
470 cp = strrchr(parent, '/');
480 zfs_secpolicy_destroy_perms(const char *name, cred_t *cr)
484 if ((error = zfs_secpolicy_write_perms(name,
485 ZFS_DELEG_PERM_MOUNT, cr)) != 0)
488 return (zfs_secpolicy_write_perms(name, ZFS_DELEG_PERM_DESTROY, cr));
492 zfs_secpolicy_destroy(zfs_cmd_t *zc, cred_t *cr)
494 return (zfs_secpolicy_destroy_perms(zc->zc_name, cr));
498 * Must have sys_config privilege to check the iscsi permission
502 zfs_secpolicy_iscsi(zfs_cmd_t *zc, cred_t *cr)
504 return (secpolicy_zfs(cr));
508 zfs_secpolicy_rename_perms(const char *from, const char *to, cred_t *cr)
510 char parentname[MAXNAMELEN];
513 if ((error = zfs_secpolicy_write_perms(from,
514 ZFS_DELEG_PERM_RENAME, cr)) != 0)
517 if ((error = zfs_secpolicy_write_perms(from,
518 ZFS_DELEG_PERM_MOUNT, cr)) != 0)
521 if ((error = zfs_get_parent(to, parentname,
522 sizeof (parentname))) != 0)
525 if ((error = zfs_secpolicy_write_perms(parentname,
526 ZFS_DELEG_PERM_CREATE, cr)) != 0)
529 if ((error = zfs_secpolicy_write_perms(parentname,
530 ZFS_DELEG_PERM_MOUNT, cr)) != 0)
537 zfs_secpolicy_rename(zfs_cmd_t *zc, cred_t *cr)
539 return (zfs_secpolicy_rename_perms(zc->zc_name, zc->zc_value, cr));
543 zfs_secpolicy_promote(zfs_cmd_t *zc, cred_t *cr)
545 char parentname[MAXNAMELEN];
549 error = zfs_secpolicy_write_perms(zc->zc_name,
550 ZFS_DELEG_PERM_PROMOTE, cr);
554 error = dmu_objset_open(zc->zc_name, DMU_OST_ANY,
555 DS_MODE_USER | DS_MODE_READONLY, &clone);
558 dsl_dataset_t *pclone = NULL;
560 dd = clone->os->os_dsl_dataset->ds_dir;
562 rw_enter(&dd->dd_pool->dp_config_rwlock, RW_READER);
563 error = dsl_dataset_hold_obj(dd->dd_pool,
564 dd->dd_phys->dd_origin_obj, FTAG, &pclone);
565 rw_exit(&dd->dd_pool->dp_config_rwlock);
567 dmu_objset_close(clone);
571 error = zfs_secpolicy_write_perms(zc->zc_name,
572 ZFS_DELEG_PERM_MOUNT, cr);
574 dsl_dataset_name(pclone, parentname);
575 dmu_objset_close(clone);
576 dsl_dataset_rele(pclone, FTAG);
578 error = zfs_secpolicy_write_perms(parentname,
579 ZFS_DELEG_PERM_PROMOTE, cr);
585 zfs_secpolicy_receive(zfs_cmd_t *zc, cred_t *cr)
589 if ((error = zfs_secpolicy_write_perms(zc->zc_name,
590 ZFS_DELEG_PERM_RECEIVE, cr)) != 0)
593 if ((error = zfs_secpolicy_write_perms(zc->zc_name,
594 ZFS_DELEG_PERM_MOUNT, cr)) != 0)
597 return (zfs_secpolicy_write_perms(zc->zc_name,
598 ZFS_DELEG_PERM_CREATE, cr));
602 zfs_secpolicy_snapshot_perms(const char *name, cred_t *cr)
606 if ((error = zfs_secpolicy_write_perms(name,
607 ZFS_DELEG_PERM_SNAPSHOT, cr)) != 0)
610 error = zfs_secpolicy_write_perms(name,
611 ZFS_DELEG_PERM_MOUNT, cr);
617 zfs_secpolicy_snapshot(zfs_cmd_t *zc, cred_t *cr)
620 return (zfs_secpolicy_snapshot_perms(zc->zc_name, cr));
624 zfs_secpolicy_create(zfs_cmd_t *zc, cred_t *cr)
626 char parentname[MAXNAMELEN];
629 if ((error = zfs_get_parent(zc->zc_name, parentname,
630 sizeof (parentname))) != 0)
633 if (zc->zc_value[0] != '\0') {
634 if ((error = zfs_secpolicy_write_perms(zc->zc_value,
635 ZFS_DELEG_PERM_CLONE, cr)) != 0)
639 if ((error = zfs_secpolicy_write_perms(parentname,
640 ZFS_DELEG_PERM_CREATE, cr)) != 0)
643 error = zfs_secpolicy_write_perms(parentname,
644 ZFS_DELEG_PERM_MOUNT, cr);
650 zfs_secpolicy_umount(zfs_cmd_t *zc, cred_t *cr)
654 error = secpolicy_fs_unmount(cr, NULL);
656 error = dsl_deleg_access(zc->zc_name, ZFS_DELEG_PERM_MOUNT, cr);
662 * Policy for pool operations - create/destroy pools, add vdevs, etc. Requires
663 * SYS_CONFIG privilege, which is not available in a local zone.
667 zfs_secpolicy_config(zfs_cmd_t *zc, cred_t *cr)
669 if (secpolicy_sys_config(cr, B_FALSE) != 0)
676 * Just like zfs_secpolicy_config, except that we will check for
677 * mount permission on the dataset for permission to create/remove
681 zfs_secpolicy_minor(zfs_cmd_t *zc, cred_t *cr)
683 if (secpolicy_sys_config(cr, B_FALSE) != 0) {
684 return (dsl_deleg_access(zc->zc_name,
685 ZFS_DELEG_PERM_MOUNT, cr));
692 * Policy for fault injection. Requires all privileges.
696 zfs_secpolicy_inject(zfs_cmd_t *zc, cred_t *cr)
698 return (secpolicy_zinject(cr));
702 zfs_secpolicy_inherit(zfs_cmd_t *zc, cred_t *cr)
704 zfs_prop_t prop = zfs_name_to_prop(zc->zc_value);
706 if (prop == ZPROP_INVAL) {
707 if (!zfs_prop_user(zc->zc_value))
709 return (zfs_secpolicy_write_perms(zc->zc_name,
710 ZFS_DELEG_PERM_USERPROP, cr));
712 if (!zfs_prop_inheritable(prop))
714 return (zfs_secpolicy_setprop(zc->zc_name, prop, cr));
719 * Policy for dataset backup operations (sendbackup).
720 * Requires SYS_MOUNT privilege, and must be writable in the local zone.
723 zfs_secpolicy_operator(const char *dataset, cred_t *cr)
727 if (!INGLOBALZONE(curthread) && !zone_dataset_visible(dataset, &writable))
729 if (secpolicy_zfs(cr) != 0 && !groupmember(GID_OPERATOR, cr))
735 zfs_secpolicy_userspace_one(zfs_cmd_t *zc, cred_t *cr)
737 int err = zfs_secpolicy_read(zc, cr);
741 if (zc->zc_objset_type >= ZFS_NUM_USERQUOTA_PROPS)
744 if (zc->zc_value[0] == 0) {
746 * They are asking about a posix uid/gid. If it's
747 * themself, allow it.
749 if (zc->zc_objset_type == ZFS_PROP_USERUSED ||
750 zc->zc_objset_type == ZFS_PROP_USERQUOTA) {
751 if (zc->zc_guid == crgetuid(cr))
754 if (groupmember(zc->zc_guid, cr))
759 return (zfs_secpolicy_write_perms(zc->zc_name,
760 userquota_perms[zc->zc_objset_type], cr));
764 zfs_secpolicy_userspace_many(zfs_cmd_t *zc, cred_t *cr)
766 int err = zfs_secpolicy_read(zc, cr);
770 if (zc->zc_objset_type >= ZFS_NUM_USERQUOTA_PROPS)
773 return (zfs_secpolicy_write_perms(zc->zc_name,
774 userquota_perms[zc->zc_objset_type], cr));
778 zfs_secpolicy_userspace_upgrade(zfs_cmd_t *zc, cred_t *cr)
780 return (zfs_secpolicy_setprop(zc->zc_name, ZFS_PROP_VERSION, cr));
784 * Returns the nvlist as specified by the user in the zfs_cmd_t.
787 get_nvlist(uint64_t nvl, uint64_t size, nvlist_t **nvp)
791 nvlist_t *list = NULL;
794 * Read in and unpack the user-supplied nvlist.
799 packed = kmem_alloc(size, KM_SLEEP);
801 if ((error = xcopyin((void *)(uintptr_t)nvl, packed, size)) != 0) {
802 kmem_free(packed, size);
806 if ((error = nvlist_unpack(packed, size, &list, 0)) != 0) {
807 kmem_free(packed, size);
811 kmem_free(packed, size);
818 put_nvlist(zfs_cmd_t *zc, nvlist_t *nvl)
824 VERIFY(nvlist_size(nvl, &size, NV_ENCODE_NATIVE) == 0);
826 if (size > zc->zc_nvlist_dst_size) {
828 * Solaris returns ENOMEM here, because even if an error is
829 * returned from an ioctl(2), new zc_nvlist_dst_size will be
830 * passed to the userland. This is not the case for FreeBSD.
831 * We need to return 0, so the kernel will copy the
832 * zc_nvlist_dst_size back and the userland can discover that a
833 * bigger buffer is needed.
837 packed = kmem_alloc(size, KM_SLEEP);
838 VERIFY(nvlist_pack(nvl, &packed, &size, NV_ENCODE_NATIVE,
840 error = xcopyout(packed, (void *)(uintptr_t)zc->zc_nvlist_dst,
842 kmem_free(packed, size);
845 zc->zc_nvlist_dst_size = size;
850 getzfsvfs(const char *dsname, zfsvfs_t **zvp)
855 error = dmu_objset_open(dsname, DMU_OST_ZFS,
856 DS_MODE_USER | DS_MODE_READONLY, &os);
860 mutex_enter(&os->os->os_user_ptr_lock);
861 *zvp = dmu_objset_get_user(os);
863 VFS_HOLD((*zvp)->z_vfs);
867 mutex_exit(&os->os->os_user_ptr_lock);
868 dmu_objset_close(os);
873 * Find a zfsvfs_t for a mounted filesystem, or create our own, in which
874 * case its z_vfs will be NULL, and it will be opened as the owner.
877 zfsvfs_hold(const char *name, boolean_t readonly, void *tag, zfsvfs_t **zvp)
880 int mode = DS_MODE_OWNER | (readonly ? DS_MODE_READONLY : 0);
882 if (getzfsvfs(name, zvp) != 0)
883 error = zfsvfs_create(name, mode, zvp);
885 rrw_enter(&(*zvp)->z_teardown_lock, RW_READER, tag);
886 if ((*zvp)->z_unmounted) {
888 * XXX we could probably try again, since the unmounting
889 * thread should be just about to disassociate the
890 * objset from the zfsvfs.
892 rrw_exit(&(*zvp)->z_teardown_lock, tag);
900 zfsvfs_rele(zfsvfs_t *zfsvfs, void *tag)
902 rrw_exit(&zfsvfs->z_teardown_lock, tag);
905 VFS_RELE(zfsvfs->z_vfs);
907 dmu_objset_close(zfsvfs->z_os);
913 zfs_ioc_pool_create(zfs_cmd_t *zc)
916 nvlist_t *config, *props = NULL;
917 nvlist_t *rootprops = NULL;
918 nvlist_t *zplprops = NULL;
921 if (error = get_nvlist(zc->zc_nvlist_conf, zc->zc_nvlist_conf_size,
925 if (zc->zc_nvlist_src_size != 0 && (error =
926 get_nvlist(zc->zc_nvlist_src, zc->zc_nvlist_src_size, &props))) {
932 nvlist_t *nvl = NULL;
933 uint64_t version = SPA_VERSION;
935 (void) nvlist_lookup_uint64(props,
936 zpool_prop_to_name(ZPOOL_PROP_VERSION), &version);
937 if (version < SPA_VERSION_INITIAL || version > SPA_VERSION) {
941 (void) nvlist_lookup_nvlist(props, ZPOOL_ROOTFS_PROPS, &nvl);
943 error = nvlist_dup(nvl, &rootprops, KM_SLEEP);
949 (void) nvlist_remove_all(props, ZPOOL_ROOTFS_PROPS);
951 VERIFY(nvlist_alloc(&zplprops, NV_UNIQUE_NAME, KM_SLEEP) == 0);
952 error = zfs_fill_zplprops_root(version, rootprops,
958 buf = history_str_get(zc);
960 error = spa_create(zc->zc_name, config, props, buf, zplprops);
963 * Set the remaining root properties
966 (error = zfs_set_prop_nvlist(zc->zc_name, rootprops)) != 0)
967 (void) spa_destroy(zc->zc_name);
970 history_str_free(buf);
973 nvlist_free(rootprops);
974 nvlist_free(zplprops);
982 zfs_ioc_pool_destroy(zfs_cmd_t *zc)
986 error = spa_destroy(zc->zc_name);
991 zfs_ioc_pool_import(zfs_cmd_t *zc)
994 nvlist_t *config, *props = NULL;
997 if ((error = get_nvlist(zc->zc_nvlist_conf, zc->zc_nvlist_conf_size,
1001 if (zc->zc_nvlist_src_size != 0 && (error =
1002 get_nvlist(zc->zc_nvlist_src, zc->zc_nvlist_src_size, &props))) {
1003 nvlist_free(config);
1007 if (nvlist_lookup_uint64(config, ZPOOL_CONFIG_POOL_GUID, &guid) != 0 ||
1008 guid != zc->zc_guid)
1010 else if (zc->zc_cookie)
1011 error = spa_import_verbatim(zc->zc_name, config,
1014 error = spa_import(zc->zc_name, config, props);
1016 nvlist_free(config);
1025 zfs_ioc_pool_export(zfs_cmd_t *zc)
1028 boolean_t force = (boolean_t)zc->zc_cookie;
1029 boolean_t hardforce = (boolean_t)zc->zc_guid;
1031 zfs_log_history(zc);
1032 error = spa_export(zc->zc_name, NULL, force, hardforce);
1037 zfs_ioc_pool_configs(zfs_cmd_t *zc)
1042 if ((configs = spa_all_configs(&zc->zc_cookie)) == NULL)
1045 error = put_nvlist(zc, configs);
1047 nvlist_free(configs);
1053 zfs_ioc_pool_stats(zfs_cmd_t *zc)
1059 error = spa_get_stats(zc->zc_name, &config, zc->zc_value,
1060 sizeof (zc->zc_value));
1062 if (config != NULL) {
1063 ret = put_nvlist(zc, config);
1064 nvlist_free(config);
1067 * The config may be present even if 'error' is non-zero.
1068 * In this case we return success, and preserve the real errno
1071 zc->zc_cookie = error;
1080 * Try to import the given pool, returning pool stats as appropriate so that
1081 * user land knows which devices are available and overall pool health.
1084 zfs_ioc_pool_tryimport(zfs_cmd_t *zc)
1086 nvlist_t *tryconfig, *config;
1089 if ((error = get_nvlist(zc->zc_nvlist_conf, zc->zc_nvlist_conf_size,
1093 config = spa_tryimport(tryconfig);
1095 nvlist_free(tryconfig);
1100 error = put_nvlist(zc, config);
1101 nvlist_free(config);
1107 zfs_ioc_pool_scrub(zfs_cmd_t *zc)
1112 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0)
1115 error = spa_scrub(spa, zc->zc_cookie);
1117 spa_close(spa, FTAG);
1123 zfs_ioc_pool_freeze(zfs_cmd_t *zc)
1128 error = spa_open(zc->zc_name, &spa, FTAG);
1131 spa_close(spa, FTAG);
1137 zfs_ioc_pool_upgrade(zfs_cmd_t *zc)
1142 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0)
1145 if (zc->zc_cookie < spa_version(spa) || zc->zc_cookie > SPA_VERSION) {
1146 spa_close(spa, FTAG);
1150 spa_upgrade(spa, zc->zc_cookie);
1151 spa_close(spa, FTAG);
1157 zfs_ioc_pool_get_history(zfs_cmd_t *zc)
1164 if ((size = zc->zc_history_len) == 0)
1167 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0)
1170 if (spa_version(spa) < SPA_VERSION_ZPOOL_HISTORY) {
1171 spa_close(spa, FTAG);
1175 hist_buf = kmem_alloc(size, KM_SLEEP);
1176 if ((error = spa_history_get(spa, &zc->zc_history_offset,
1177 &zc->zc_history_len, hist_buf)) == 0) {
1178 error = xcopyout(hist_buf,
1179 (char *)(uintptr_t)zc->zc_history,
1180 zc->zc_history_len);
1183 spa_close(spa, FTAG);
1184 kmem_free(hist_buf, size);
1189 zfs_ioc_dsobj_to_dsname(zfs_cmd_t *zc)
1193 if (error = dsl_dsobj_to_dsname(zc->zc_name, zc->zc_obj, zc->zc_value))
1200 zfs_ioc_obj_to_path(zfs_cmd_t *zc)
1205 if ((error = dmu_objset_open(zc->zc_name, DMU_OST_ZFS,
1206 DS_MODE_USER | DS_MODE_READONLY, &osp)) != 0)
1208 error = zfs_obj_to_path(osp, zc->zc_obj, zc->zc_value,
1209 sizeof (zc->zc_value));
1210 dmu_objset_close(osp);
1216 zfs_ioc_vdev_add(zfs_cmd_t *zc)
1220 nvlist_t *config, **l2cache, **spares;
1221 uint_t nl2cache = 0, nspares = 0;
1223 error = spa_open(zc->zc_name, &spa, FTAG);
1227 error = get_nvlist(zc->zc_nvlist_conf, zc->zc_nvlist_conf_size,
1229 (void) nvlist_lookup_nvlist_array(config, ZPOOL_CONFIG_L2CACHE,
1230 &l2cache, &nl2cache);
1232 (void) nvlist_lookup_nvlist_array(config, ZPOOL_CONFIG_SPARES,
1236 * A root pool with concatenated devices is not supported.
1237 * Thus, can not add a device to a root pool.
1239 * Intent log device can not be added to a rootpool because
1240 * during mountroot, zil is replayed, a seperated log device
1241 * can not be accessed during the mountroot time.
1243 * l2cache and spare devices are ok to be added to a rootpool.
1245 if (spa->spa_bootfs != 0 && nl2cache == 0 && nspares == 0) {
1246 spa_close(spa, FTAG);
1251 error = spa_vdev_add(spa, config);
1252 nvlist_free(config);
1254 spa_close(spa, FTAG);
1259 zfs_ioc_vdev_remove(zfs_cmd_t *zc)
1264 error = spa_open(zc->zc_name, &spa, FTAG);
1267 error = spa_vdev_remove(spa, zc->zc_guid, B_FALSE);
1268 spa_close(spa, FTAG);
1273 zfs_ioc_vdev_set_state(zfs_cmd_t *zc)
1277 vdev_state_t newstate = VDEV_STATE_UNKNOWN;
1279 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0)
1281 switch (zc->zc_cookie) {
1282 case VDEV_STATE_ONLINE:
1283 error = vdev_online(spa, zc->zc_guid, zc->zc_obj, &newstate);
1286 case VDEV_STATE_OFFLINE:
1287 error = vdev_offline(spa, zc->zc_guid, zc->zc_obj);
1290 case VDEV_STATE_FAULTED:
1291 error = vdev_fault(spa, zc->zc_guid);
1294 case VDEV_STATE_DEGRADED:
1295 error = vdev_degrade(spa, zc->zc_guid);
1301 zc->zc_cookie = newstate;
1302 spa_close(spa, FTAG);
1307 zfs_ioc_vdev_attach(zfs_cmd_t *zc)
1310 int replacing = zc->zc_cookie;
1314 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0)
1317 if ((error = get_nvlist(zc->zc_nvlist_conf, zc->zc_nvlist_conf_size,
1319 error = spa_vdev_attach(spa, zc->zc_guid, config, replacing);
1320 nvlist_free(config);
1323 spa_close(spa, FTAG);
1328 zfs_ioc_vdev_detach(zfs_cmd_t *zc)
1333 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0)
1336 error = spa_vdev_detach(spa, zc->zc_guid, 0, B_FALSE);
1338 spa_close(spa, FTAG);
1343 zfs_ioc_vdev_setpath(zfs_cmd_t *zc)
1346 char *path = zc->zc_value;
1347 uint64_t guid = zc->zc_guid;
1350 error = spa_open(zc->zc_name, &spa, FTAG);
1354 error = spa_vdev_setpath(spa, guid, path);
1355 spa_close(spa, FTAG);
1360 zfs_ioc_vdev_setfru(zfs_cmd_t *zc)
1363 char *fru = zc->zc_value;
1364 uint64_t guid = zc->zc_guid;
1367 error = spa_open(zc->zc_name, &spa, FTAG);
1371 error = spa_vdev_setfru(spa, guid, fru);
1372 spa_close(spa, FTAG);
1378 * zc_name name of filesystem
1379 * zc_nvlist_dst_size size of buffer for property nvlist
1382 * zc_objset_stats stats
1383 * zc_nvlist_dst property nvlist
1384 * zc_nvlist_dst_size size of property nvlist
1387 zfs_ioc_objset_stats(zfs_cmd_t *zc)
1389 objset_t *os = NULL;
1393 if (error = dmu_objset_open(zc->zc_name,
1394 DMU_OST_ANY, DS_MODE_USER | DS_MODE_READONLY, &os))
1397 dmu_objset_fast_stat(os, &zc->zc_objset_stats);
1399 if (zc->zc_nvlist_dst != 0 &&
1400 (error = dsl_prop_get_all(os, &nv, FALSE)) == 0) {
1401 dmu_objset_stats(os, nv);
1403 * NB: zvol_get_stats() will read the objset contents,
1404 * which we aren't supposed to do with a
1405 * DS_MODE_USER hold, because it could be
1406 * inconsistent. So this is a bit of a workaround...
1408 if (!zc->zc_objset_stats.dds_inconsistent) {
1409 if (dmu_objset_type(os) == DMU_OST_ZVOL)
1410 VERIFY(zvol_get_stats(os, nv) == 0);
1412 error = put_nvlist(zc, nv);
1416 dmu_objset_close(os);
1417 if (error == ENOMEM)
1423 nvl_add_zplprop(objset_t *os, nvlist_t *props, zfs_prop_t prop)
1429 * zfs_get_zplprop() will either find a value or give us
1430 * the default value (if there is one).
1432 if ((error = zfs_get_zplprop(os, prop, &value)) != 0)
1434 VERIFY(nvlist_add_uint64(props, zfs_prop_to_name(prop), value) == 0);
1440 * zc_name name of filesystem
1441 * zc_nvlist_dst_size size of buffer for zpl property nvlist
1444 * zc_nvlist_dst zpl property nvlist
1445 * zc_nvlist_dst_size size of zpl property nvlist
1448 zfs_ioc_objset_zplprops(zfs_cmd_t *zc)
1453 if (err = dmu_objset_open(zc->zc_name,
1454 DMU_OST_ANY, DS_MODE_USER | DS_MODE_READONLY, &os))
1457 dmu_objset_fast_stat(os, &zc->zc_objset_stats);
1460 * NB: nvl_add_zplprop() will read the objset contents,
1461 * which we aren't supposed to do with a DS_MODE_USER
1462 * hold, because it could be inconsistent.
1464 if (zc->zc_nvlist_dst != 0 &&
1465 !zc->zc_objset_stats.dds_inconsistent &&
1466 dmu_objset_type(os) == DMU_OST_ZFS) {
1469 VERIFY(nvlist_alloc(&nv, NV_UNIQUE_NAME, KM_SLEEP) == 0);
1470 if ((err = nvl_add_zplprop(os, nv, ZFS_PROP_VERSION)) == 0 &&
1471 (err = nvl_add_zplprop(os, nv, ZFS_PROP_NORMALIZE)) == 0 &&
1472 (err = nvl_add_zplprop(os, nv, ZFS_PROP_UTF8ONLY)) == 0 &&
1473 (err = nvl_add_zplprop(os, nv, ZFS_PROP_CASE)) == 0)
1474 err = put_nvlist(zc, nv);
1479 dmu_objset_close(os);
1484 dataset_name_hidden(const char *name)
1487 * Skip over datasets that are not visible in this zone,
1488 * internal datasets (which have a $ in their name), and
1489 * temporary datasets (which have a % in their name).
1491 if (strchr(name, '$') != NULL)
1493 if (strchr(name, '%') != NULL)
1495 if (!INGLOBALZONE(curthread) && !zone_dataset_visible(name, NULL))
1502 * zc_name name of filesystem
1503 * zc_cookie zap cursor
1504 * zc_nvlist_dst_size size of buffer for property nvlist
1507 * zc_name name of next filesystem
1508 * zc_cookie zap cursor
1509 * zc_objset_stats stats
1510 * zc_nvlist_dst property nvlist
1511 * zc_nvlist_dst_size size of property nvlist
1514 zfs_ioc_dataset_list_next(zfs_cmd_t *zc)
1520 if (error = dmu_objset_open(zc->zc_name,
1521 DMU_OST_ANY, DS_MODE_USER | DS_MODE_READONLY, &os)) {
1522 if (error == ENOENT)
1527 p = strrchr(zc->zc_name, '/');
1528 if (p == NULL || p[1] != '\0')
1529 (void) strlcat(zc->zc_name, "/", sizeof (zc->zc_name));
1530 p = zc->zc_name + strlen(zc->zc_name);
1533 * Pre-fetch the datasets. dmu_objset_prefetch() always returns 0
1534 * but is not declared void because its called by dmu_objset_find().
1536 if (zc->zc_cookie == 0) {
1537 uint64_t cookie = 0;
1538 int len = sizeof (zc->zc_name) - (p - zc->zc_name);
1540 while (dmu_dir_list_next(os, len, p, NULL, &cookie) == 0)
1541 (void) dmu_objset_prefetch(p, NULL);
1545 error = dmu_dir_list_next(os,
1546 sizeof (zc->zc_name) - (p - zc->zc_name), p,
1547 NULL, &zc->zc_cookie);
1548 if (error == ENOENT)
1550 } while (error == 0 && dataset_name_hidden(zc->zc_name));
1551 dmu_objset_close(os);
1554 error = zfs_ioc_objset_stats(zc); /* fill in the stats */
1561 * zc_name name of filesystem
1562 * zc_cookie zap cursor
1563 * zc_nvlist_dst_size size of buffer for property nvlist
1566 * zc_name name of next snapshot
1567 * zc_objset_stats stats
1568 * zc_nvlist_dst property nvlist
1569 * zc_nvlist_dst_size size of property nvlist
1572 zfs_ioc_snapshot_list_next(zfs_cmd_t *zc)
1577 error = dmu_objset_open(zc->zc_name,
1578 DMU_OST_ANY, DS_MODE_USER | DS_MODE_READONLY, &os);
1580 return (error == ENOENT ? ESRCH : error);
1582 if (zc->zc_cookie == 0) {
1583 (void) dmu_objset_find(zc->zc_name, dmu_objset_prefetch,
1584 NULL, DS_FIND_SNAPSHOTS);
1587 * A dataset name of maximum length cannot have any snapshots,
1588 * so exit immediately.
1590 if (strlcat(zc->zc_name, "@", sizeof (zc->zc_name)) >= MAXNAMELEN) {
1591 dmu_objset_close(os);
1595 error = dmu_snapshot_list_next(os,
1596 sizeof (zc->zc_name) - strlen(zc->zc_name),
1597 zc->zc_name + strlen(zc->zc_name), NULL, &zc->zc_cookie, NULL);
1598 dmu_objset_close(os);
1600 error = zfs_ioc_objset_stats(zc); /* fill in the stats */
1601 else if (error == ENOENT)
1604 /* if we failed, undo the @ that we tacked on to zc_name */
1606 *strchr(zc->zc_name, '@') = '\0';
1611 zfs_set_prop_nvlist(const char *name, nvlist_t *nvl)
1617 nvlist_t *genericnvl;
1618 boolean_t issnap = (strchr(name, '@') != NULL);
1621 * First validate permission to set all of the properties
1623 VERIFY(nvlist_alloc(&genericnvl, NV_UNIQUE_NAME, KM_SLEEP) == 0);
1625 while ((elem = nvlist_next_nvpair(nvl, elem)) != NULL) {
1626 const char *propname = nvpair_name(elem);
1627 zfs_prop_t prop = zfs_name_to_prop(propname);
1629 if (prop == ZPROP_INVAL) {
1631 * If this is a user-defined property, it must be a
1632 * string, and there is no further validation to do.
1634 if (zfs_prop_user(propname) &&
1635 nvpair_type(elem) == DATA_TYPE_STRING) {
1636 if (error = zfs_secpolicy_write_perms(name,
1637 ZFS_DELEG_PERM_USERPROP, CRED()))
1642 if (!issnap && zfs_prop_userquota(propname) &&
1643 nvpair_type(elem) == DATA_TYPE_UINT64_ARRAY) {
1645 const char *up = zfs_userquota_prop_prefixes
1646 [ZFS_PROP_USERQUOTA];
1647 if (strncmp(propname, up, strlen(up)) == 0)
1648 perm = ZFS_DELEG_PERM_USERQUOTA;
1650 perm = ZFS_DELEG_PERM_GROUPQUOTA;
1651 if (error = zfs_secpolicy_write_perms(name,
1663 if ((error = zfs_secpolicy_setprop(name, prop, CRED())) != 0)
1667 * Check that this value is valid for this pool version
1670 case ZFS_PROP_COMPRESSION:
1672 * If the user specified gzip compression, make sure
1673 * the SPA supports it. We ignore any errors here since
1674 * we'll catch them later.
1676 if (nvpair_type(elem) == DATA_TYPE_UINT64 &&
1677 nvpair_value_uint64(elem, &intval) == 0) {
1678 if (intval >= ZIO_COMPRESS_GZIP_1 &&
1679 intval <= ZIO_COMPRESS_GZIP_9 &&
1680 zfs_earlier_version(name,
1681 SPA_VERSION_GZIP_COMPRESSION))
1685 * If this is a bootable dataset then
1686 * verify that the compression algorithm
1687 * is supported for booting. We must return
1688 * something other than ENOTSUP since it
1689 * implies a downrev pool version.
1691 if (zfs_is_bootfs(name) &&
1692 !BOOTFS_COMPRESS_VALID(intval))
1697 case ZFS_PROP_COPIES:
1698 if (zfs_earlier_version(name, SPA_VERSION_DITTO_BLOCKS))
1702 case ZFS_PROP_SHARESMB:
1703 if (zpl_earlier_version(name, ZPL_VERSION_FUID))
1707 case ZFS_PROP_ACLINHERIT:
1708 if (nvpair_type(elem) == DATA_TYPE_UINT64 &&
1709 nvpair_value_uint64(elem, &intval) == 0)
1710 if (intval == ZFS_ACL_PASSTHROUGH_X &&
1711 zfs_earlier_version(name,
1712 SPA_VERSION_PASSTHROUGH_X))
1718 while ((elem = nvlist_next_nvpair(nvl, elem)) != NULL) {
1719 const char *propname = nvpair_name(elem);
1720 zfs_prop_t prop = zfs_name_to_prop(propname);
1722 if (prop == ZPROP_INVAL) {
1723 if (zfs_prop_userquota(propname)) {
1725 unsigned int vallen;
1727 zfs_userquota_prop_t type;
1732 VERIFY(nvpair_value_uint64_array(elem,
1733 &valary, &vallen) == 0);
1734 VERIFY(vallen == 3);
1739 strlen(zfs_userquota_prop_prefixes[type]);
1741 error = zfsvfs_hold(name, B_FALSE, FTAG,
1744 error = zfs_set_userquota(zfsvfs,
1745 type, domain, rid, quota);
1746 zfsvfs_rele(zfsvfs, FTAG);
1752 } else if (zfs_prop_user(propname)) {
1753 VERIFY(nvpair_value_string(elem, &strval) == 0);
1754 error = dsl_prop_set(name, propname, 1,
1755 strlen(strval) + 1, strval);
1764 case ZFS_PROP_QUOTA:
1765 if ((error = nvpair_value_uint64(elem, &intval)) != 0 ||
1766 (error = dsl_dir_set_quota(name, intval)) != 0)
1770 case ZFS_PROP_REFQUOTA:
1771 if ((error = nvpair_value_uint64(elem, &intval)) != 0 ||
1772 (error = dsl_dataset_set_quota(name, intval)) != 0)
1776 case ZFS_PROP_RESERVATION:
1777 if ((error = nvpair_value_uint64(elem, &intval)) != 0 ||
1778 (error = dsl_dir_set_reservation(name,
1783 case ZFS_PROP_REFRESERVATION:
1784 if ((error = nvpair_value_uint64(elem, &intval)) != 0 ||
1785 (error = dsl_dataset_set_reservation(name,
1790 case ZFS_PROP_VOLSIZE:
1791 if ((error = nvpair_value_uint64(elem, &intval)) != 0 ||
1792 (error = zvol_set_volsize(name,
1793 ddi_driver_major(zfs_dip), intval)) != 0)
1797 case ZFS_PROP_VOLBLOCKSIZE:
1798 if ((error = nvpair_value_uint64(elem, &intval)) != 0 ||
1799 (error = zvol_set_volblocksize(name, intval)) != 0)
1803 case ZFS_PROP_VERSION:
1807 if ((error = nvpair_value_uint64(elem, &intval)) != 0)
1809 if ((error = zfsvfs_hold(name, B_FALSE, FTAG,
1812 error = zfs_set_version(zfsvfs, intval);
1813 zfsvfs_rele(zfsvfs, FTAG);
1815 if (error == 0 && intval >= ZPL_VERSION_USERSPACE) {
1816 zfs_cmd_t zc = { 0 };
1817 (void) strcpy(zc.zc_name, name);
1818 (void) zfs_ioc_userspace_upgrade(&zc);
1826 if (nvpair_type(elem) == DATA_TYPE_STRING) {
1827 if (zfs_prop_get_type(prop) !=
1832 } else if (nvpair_type(elem) == DATA_TYPE_UINT64) {
1835 VERIFY(nvpair_value_uint64(elem, &intval) == 0);
1837 switch (zfs_prop_get_type(prop)) {
1838 case PROP_TYPE_NUMBER:
1840 case PROP_TYPE_STRING:
1843 case PROP_TYPE_INDEX:
1844 if (zfs_prop_index_to_string(prop,
1845 intval, &unused) != 0) {
1852 "unknown property type");
1859 if ((error = nvlist_add_nvpair(genericnvl, elem)) != 0)
1864 if (nvlist_next_nvpair(genericnvl, NULL) != NULL) {
1865 error = dsl_props_set(name, genericnvl);
1868 nvlist_free(genericnvl);
1873 * Check that all the properties are valid user properties.
1876 zfs_check_userprops(char *fsname, nvlist_t *nvl)
1878 nvpair_t *elem = NULL;
1881 while ((elem = nvlist_next_nvpair(nvl, elem)) != NULL) {
1882 const char *propname = nvpair_name(elem);
1885 if (!zfs_prop_user(propname) ||
1886 nvpair_type(elem) != DATA_TYPE_STRING)
1889 if (error = zfs_secpolicy_write_perms(fsname,
1890 ZFS_DELEG_PERM_USERPROP, CRED()))
1893 if (strlen(propname) >= ZAP_MAXNAMELEN)
1894 return (ENAMETOOLONG);
1896 VERIFY(nvpair_value_string(elem, &valstr) == 0);
1897 if (strlen(valstr) >= ZAP_MAXVALUELEN)
1905 * zc_name name of filesystem
1906 * zc_value name of property to set
1907 * zc_nvlist_src{_size} nvlist of properties to apply
1908 * zc_cookie clear existing local props?
1913 zfs_ioc_set_prop(zfs_cmd_t *zc)
1918 if ((error = get_nvlist(zc->zc_nvlist_src, zc->zc_nvlist_src_size,
1922 if (zc->zc_cookie) {
1923 nvlist_t *origprops;
1926 if (dmu_objset_open(zc->zc_name, DMU_OST_ANY,
1927 DS_MODE_USER | DS_MODE_READONLY, &os) == 0) {
1928 if (dsl_prop_get_all(os, &origprops, TRUE) == 0) {
1929 clear_props(zc->zc_name, origprops, nvl);
1930 nvlist_free(origprops);
1932 dmu_objset_close(os);
1937 error = zfs_set_prop_nvlist(zc->zc_name, nvl);
1945 * zc_name name of filesystem
1946 * zc_value name of property to inherit
1951 zfs_ioc_inherit_prop(zfs_cmd_t *zc)
1953 /* the property name has been validated by zfs_secpolicy_inherit() */
1954 return (dsl_prop_set(zc->zc_name, zc->zc_value, 0, 0, NULL));
1958 zfs_ioc_pool_set_props(zfs_cmd_t *zc)
1965 if ((error = get_nvlist(zc->zc_nvlist_src, zc->zc_nvlist_src_size,
1970 * If the only property is the configfile, then just do a spa_lookup()
1971 * to handle the faulted case.
1973 elem = nvlist_next_nvpair(props, NULL);
1974 if (elem != NULL && strcmp(nvpair_name(elem),
1975 zpool_prop_to_name(ZPOOL_PROP_CACHEFILE)) == 0 &&
1976 nvlist_next_nvpair(props, elem) == NULL) {
1977 mutex_enter(&spa_namespace_lock);
1978 if ((spa = spa_lookup(zc->zc_name)) != NULL) {
1979 spa_configfile_set(spa, props, B_FALSE);
1980 spa_config_sync(spa, B_FALSE, B_TRUE);
1982 mutex_exit(&spa_namespace_lock);
1987 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0) {
1992 error = spa_prop_set(spa, props);
1995 spa_close(spa, FTAG);
2001 zfs_ioc_pool_get_props(zfs_cmd_t *zc)
2005 nvlist_t *nvp = NULL;
2007 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0) {
2009 * If the pool is faulted, there may be properties we can still
2010 * get (such as altroot and cachefile), so attempt to get them
2013 mutex_enter(&spa_namespace_lock);
2014 if ((spa = spa_lookup(zc->zc_name)) != NULL)
2015 error = spa_prop_get(spa, &nvp);
2016 mutex_exit(&spa_namespace_lock);
2018 error = spa_prop_get(spa, &nvp);
2019 spa_close(spa, FTAG);
2022 if (error == 0 && zc->zc_nvlist_dst != 0)
2023 error = put_nvlist(zc, nvp);
2032 zfs_ioc_iscsi_perm_check(zfs_cmd_t *zc)
2043 if ((error = get_nvlist(zc->zc_nvlist_src, zc->zc_nvlist_src_size,
2048 if ((error = nvlist_lookup_uint32(nvp,
2049 ZFS_DELEG_PERM_UID, &uid)) != 0) {
2054 if ((error = nvlist_lookup_uint32(nvp,
2055 ZFS_DELEG_PERM_GID, &gid)) != 0) {
2060 if ((error = nvlist_lookup_uint32_array(nvp, ZFS_DELEG_PERM_GROUPS,
2061 &groups, &group_cnt)) != 0) {
2065 usercred = cralloc();
2066 if ((crsetugid(usercred, uid, gid) != 0) ||
2067 (crsetgroups(usercred, group_cnt, (gid_t *)groups) != 0)) {
2073 error = dsl_deleg_access(zc->zc_name,
2074 zfs_prop_to_name(ZFS_PROP_SHAREISCSI), usercred);
2084 * zc_name name of filesystem
2085 * zc_nvlist_src{_size} nvlist of delegated permissions
2086 * zc_perm_action allow/unallow flag
2091 zfs_ioc_set_fsacl(zfs_cmd_t *zc)
2094 nvlist_t *fsaclnv = NULL;
2096 if ((error = get_nvlist(zc->zc_nvlist_src, zc->zc_nvlist_src_size,
2101 * Verify nvlist is constructed correctly
2103 if ((error = zfs_deleg_verify_nvlist(fsaclnv)) != 0) {
2104 nvlist_free(fsaclnv);
2109 * If we don't have PRIV_SYS_MOUNT, then validate
2110 * that user is allowed to hand out each permission in
2114 error = secpolicy_zfs(CRED());
2116 if (zc->zc_perm_action == B_FALSE) {
2117 error = dsl_deleg_can_allow(zc->zc_name,
2120 error = dsl_deleg_can_unallow(zc->zc_name,
2126 error = dsl_deleg_set(zc->zc_name, fsaclnv, zc->zc_perm_action);
2128 nvlist_free(fsaclnv);
2134 * zc_name name of filesystem
2137 * zc_nvlist_src{_size} nvlist of delegated permissions
2140 zfs_ioc_get_fsacl(zfs_cmd_t *zc)
2145 if ((error = dsl_deleg_get(zc->zc_name, &nvp)) == 0) {
2146 error = put_nvlist(zc, nvp);
2155 * zc_name name of volume
2160 zfs_ioc_create_minor(zfs_cmd_t *zc)
2162 return (zvol_create_minor(zc->zc_name, ddi_driver_major(zfs_dip)));
2167 * zc_name name of volume
2172 zfs_ioc_remove_minor(zfs_cmd_t *zc)
2174 return (zvol_remove_minor(zc->zc_name));
2178 * Search the vfs list for a specified resource. Returns a pointer to it
2179 * or NULL if no suitable entry is found. The caller of this routine
2180 * is responsible for releasing the returned vfs pointer.
2183 zfs_get_vfs(const char *resource)
2187 mtx_lock(&mountlist_mtx);
2188 TAILQ_FOREACH(vfsp, &mountlist, mnt_list) {
2189 if (strcmp(refstr_value(vfsp->vfs_resource), resource) == 0) {
2194 mtx_unlock(&mountlist_mtx);
2200 zfs_create_cb(objset_t *os, void *arg, cred_t *cr, dmu_tx_t *tx)
2202 zfs_creat_t *zct = arg;
2204 zfs_create_fs(os, cr, zct->zct_zplprops, tx);
2207 #define ZFS_PROP_UNDEFINED ((uint64_t)-1)
2211 * createprops list of properties requested by creator
2212 * default_zplver zpl version to use if unspecified in createprops
2213 * fuids_ok fuids allowed in this version of the spa?
2214 * os parent objset pointer (NULL if root fs)
2217 * zplprops values for the zplprops we attach to the master node object
2218 * is_ci true if requested file system will be purely case-insensitive
2220 * Determine the settings for utf8only, normalization and
2221 * casesensitivity. Specific values may have been requested by the
2222 * creator and/or we can inherit values from the parent dataset. If
2223 * the file system is of too early a vintage, a creator can not
2224 * request settings for these properties, even if the requested
2225 * setting is the default value. We don't actually want to create dsl
2226 * properties for these, so remove them from the source nvlist after
2230 zfs_fill_zplprops_impl(objset_t *os, uint64_t zplver,
2231 boolean_t fuids_ok, nvlist_t *createprops, nvlist_t *zplprops,
2234 uint64_t sense = ZFS_PROP_UNDEFINED;
2235 uint64_t norm = ZFS_PROP_UNDEFINED;
2236 uint64_t u8 = ZFS_PROP_UNDEFINED;
2238 ASSERT(zplprops != NULL);
2241 * Pull out creator prop choices, if any.
2244 (void) nvlist_lookup_uint64(createprops,
2245 zfs_prop_to_name(ZFS_PROP_VERSION), &zplver);
2246 (void) nvlist_lookup_uint64(createprops,
2247 zfs_prop_to_name(ZFS_PROP_NORMALIZE), &norm);
2248 (void) nvlist_remove_all(createprops,
2249 zfs_prop_to_name(ZFS_PROP_NORMALIZE));
2250 (void) nvlist_lookup_uint64(createprops,
2251 zfs_prop_to_name(ZFS_PROP_UTF8ONLY), &u8);
2252 (void) nvlist_remove_all(createprops,
2253 zfs_prop_to_name(ZFS_PROP_UTF8ONLY));
2254 (void) nvlist_lookup_uint64(createprops,
2255 zfs_prop_to_name(ZFS_PROP_CASE), &sense);
2256 (void) nvlist_remove_all(createprops,
2257 zfs_prop_to_name(ZFS_PROP_CASE));
2261 * If the zpl version requested is whacky or the file system
2262 * or pool is version is too "young" to support normalization
2263 * and the creator tried to set a value for one of the props,
2266 if ((zplver < ZPL_VERSION_INITIAL || zplver > ZPL_VERSION) ||
2267 (zplver >= ZPL_VERSION_FUID && !fuids_ok) ||
2268 (zplver < ZPL_VERSION_NORMALIZATION &&
2269 (norm != ZFS_PROP_UNDEFINED || u8 != ZFS_PROP_UNDEFINED ||
2270 sense != ZFS_PROP_UNDEFINED)))
2274 * Put the version in the zplprops
2276 VERIFY(nvlist_add_uint64(zplprops,
2277 zfs_prop_to_name(ZFS_PROP_VERSION), zplver) == 0);
2279 if (norm == ZFS_PROP_UNDEFINED)
2280 VERIFY(zfs_get_zplprop(os, ZFS_PROP_NORMALIZE, &norm) == 0);
2281 VERIFY(nvlist_add_uint64(zplprops,
2282 zfs_prop_to_name(ZFS_PROP_NORMALIZE), norm) == 0);
2285 * If we're normalizing, names must always be valid UTF-8 strings.
2289 if (u8 == ZFS_PROP_UNDEFINED)
2290 VERIFY(zfs_get_zplprop(os, ZFS_PROP_UTF8ONLY, &u8) == 0);
2291 VERIFY(nvlist_add_uint64(zplprops,
2292 zfs_prop_to_name(ZFS_PROP_UTF8ONLY), u8) == 0);
2294 if (sense == ZFS_PROP_UNDEFINED)
2295 VERIFY(zfs_get_zplprop(os, ZFS_PROP_CASE, &sense) == 0);
2296 VERIFY(nvlist_add_uint64(zplprops,
2297 zfs_prop_to_name(ZFS_PROP_CASE), sense) == 0);
2300 *is_ci = (sense == ZFS_CASE_INSENSITIVE);
2306 zfs_fill_zplprops(const char *dataset, nvlist_t *createprops,
2307 nvlist_t *zplprops, boolean_t *is_ci)
2309 boolean_t fuids_ok = B_TRUE;
2310 uint64_t zplver = ZPL_VERSION;
2311 objset_t *os = NULL;
2312 char parentname[MAXNAMELEN];
2316 (void) strlcpy(parentname, dataset, sizeof (parentname));
2317 cp = strrchr(parentname, '/');
2321 if (zfs_earlier_version(dataset, SPA_VERSION_USERSPACE))
2322 zplver = ZPL_VERSION_USERSPACE - 1;
2323 if (zfs_earlier_version(dataset, SPA_VERSION_FUID)) {
2324 zplver = ZPL_VERSION_FUID - 1;
2329 * Open parent object set so we can inherit zplprop values.
2331 if ((error = dmu_objset_open(parentname, DMU_OST_ANY,
2332 DS_MODE_USER | DS_MODE_READONLY, &os)) != 0)
2335 error = zfs_fill_zplprops_impl(os, zplver, fuids_ok, createprops,
2337 dmu_objset_close(os);
2342 zfs_fill_zplprops_root(uint64_t spa_vers, nvlist_t *createprops,
2343 nvlist_t *zplprops, boolean_t *is_ci)
2345 boolean_t fuids_ok = B_TRUE;
2346 uint64_t zplver = ZPL_VERSION;
2349 if (spa_vers < SPA_VERSION_FUID) {
2350 zplver = ZPL_VERSION_FUID - 1;
2354 error = zfs_fill_zplprops_impl(NULL, zplver, fuids_ok, createprops,
2361 * zc_objset_type type of objset to create (fs vs zvol)
2362 * zc_name name of new objset
2363 * zc_value name of snapshot to clone from (may be empty)
2364 * zc_nvlist_src{_size} nvlist of properties to apply
2369 zfs_ioc_create(zfs_cmd_t *zc)
2374 nvlist_t *nvprops = NULL;
2375 void (*cbfunc)(objset_t *os, void *arg, cred_t *cr, dmu_tx_t *tx);
2376 dmu_objset_type_t type = zc->zc_objset_type;
2381 cbfunc = zfs_create_cb;
2385 cbfunc = zvol_create_cb;
2392 if (strchr(zc->zc_name, '@') ||
2393 strchr(zc->zc_name, '%'))
2396 if (zc->zc_nvlist_src != 0 &&
2397 (error = get_nvlist(zc->zc_nvlist_src, zc->zc_nvlist_src_size,
2401 zct.zct_zplprops = NULL;
2402 zct.zct_props = nvprops;
2404 if (zc->zc_value[0] != '\0') {
2406 * We're creating a clone of an existing snapshot.
2408 zc->zc_value[sizeof (zc->zc_value) - 1] = '\0';
2409 if (dataset_namecheck(zc->zc_value, NULL, NULL) != 0) {
2410 nvlist_free(nvprops);
2414 error = dmu_objset_open(zc->zc_value, type,
2415 DS_MODE_USER | DS_MODE_READONLY, &clone);
2417 nvlist_free(nvprops);
2421 error = dmu_objset_create(zc->zc_name, type, clone, 0,
2424 dmu_objset_close(clone);
2425 nvlist_free(nvprops);
2428 dmu_objset_close(clone);
2430 boolean_t is_insensitive = B_FALSE;
2432 if (cbfunc == NULL) {
2433 nvlist_free(nvprops);
2437 if (type == DMU_OST_ZVOL) {
2438 uint64_t volsize, volblocksize;
2440 if (nvprops == NULL ||
2441 nvlist_lookup_uint64(nvprops,
2442 zfs_prop_to_name(ZFS_PROP_VOLSIZE),
2444 nvlist_free(nvprops);
2448 if ((error = nvlist_lookup_uint64(nvprops,
2449 zfs_prop_to_name(ZFS_PROP_VOLBLOCKSIZE),
2450 &volblocksize)) != 0 && error != ENOENT) {
2451 nvlist_free(nvprops);
2456 volblocksize = zfs_prop_default_numeric(
2457 ZFS_PROP_VOLBLOCKSIZE);
2459 if ((error = zvol_check_volblocksize(
2460 volblocksize)) != 0 ||
2461 (error = zvol_check_volsize(volsize,
2462 volblocksize)) != 0) {
2463 nvlist_free(nvprops);
2466 } else if (type == DMU_OST_ZFS) {
2470 * We have to have normalization and
2471 * case-folding flags correct when we do the
2472 * file system creation, so go figure them out
2475 VERIFY(nvlist_alloc(&zct.zct_zplprops,
2476 NV_UNIQUE_NAME, KM_SLEEP) == 0);
2477 error = zfs_fill_zplprops(zc->zc_name, nvprops,
2478 zct.zct_zplprops, &is_insensitive);
2480 nvlist_free(nvprops);
2481 nvlist_free(zct.zct_zplprops);
2485 error = dmu_objset_create(zc->zc_name, type, NULL,
2486 is_insensitive ? DS_FLAG_CI_DATASET : 0, cbfunc, &zct);
2487 nvlist_free(zct.zct_zplprops);
2491 * It would be nice to do this atomically.
2494 if ((error = zfs_set_prop_nvlist(zc->zc_name, nvprops)) != 0)
2495 (void) dmu_objset_destroy(zc->zc_name);
2497 nvlist_free(nvprops);
2503 * zc_name name of filesystem
2504 * zc_value short name of snapshot
2505 * zc_cookie recursive flag
2506 * zc_nvlist_src[_size] property list
2511 zfs_ioc_snapshot(zfs_cmd_t *zc)
2513 nvlist_t *nvprops = NULL;
2515 boolean_t recursive = zc->zc_cookie;
2517 if (snapshot_namecheck(zc->zc_value, NULL, NULL) != 0)
2520 if (zc->zc_nvlist_src != 0 &&
2521 (error = get_nvlist(zc->zc_nvlist_src, zc->zc_nvlist_src_size,
2525 error = zfs_check_userprops(zc->zc_name, nvprops);
2529 if (nvprops != NULL && nvlist_next_nvpair(nvprops, NULL) != NULL &&
2530 zfs_earlier_version(zc->zc_name, SPA_VERSION_SNAP_PROPS)) {
2535 error = dmu_objset_snapshot(zc->zc_name, zc->zc_value,
2536 nvprops, recursive);
2539 nvlist_free(nvprops);
2544 zfs_unmount_snap(char *name, void *arg)
2549 char *snapname = arg;
2550 int len = strlen(name) + strlen(snapname) + 2;
2551 char *buf = kmem_alloc(len, KM_SLEEP);
2553 (void) strcpy(buf, name);
2554 (void) strcat(buf, "@");
2555 (void) strcat(buf, snapname);
2556 vfsp = zfs_get_vfs(buf);
2557 kmem_free(buf, len);
2558 } else if (strchr(name, '@')) {
2559 vfsp = zfs_get_vfs(name);
2564 * Always force the unmount for snapshots.
2566 int flag = MS_FORCE;
2569 if ((err = vn_vfswlock(vfsp->vfs_vnodecovered)) != 0) {
2574 mtx_lock(&Giant); /* dounmount() */
2575 dounmount(vfsp, flag, curthread);
2576 mtx_unlock(&Giant); /* dounmount() */
2583 * zc_name name of filesystem
2584 * zc_value short name of snapshot
2589 zfs_ioc_destroy_snaps(zfs_cmd_t *zc)
2593 if (snapshot_namecheck(zc->zc_value, NULL, NULL) != 0)
2595 err = dmu_objset_find(zc->zc_name,
2596 zfs_unmount_snap, zc->zc_value, DS_FIND_CHILDREN);
2599 return (dmu_snapshots_destroy(zc->zc_name, zc->zc_value));
2604 * zc_name name of dataset to destroy
2605 * zc_objset_type type of objset
2610 zfs_ioc_destroy(zfs_cmd_t *zc)
2612 if (strchr(zc->zc_name, '@') && zc->zc_objset_type == DMU_OST_ZFS) {
2613 int err = zfs_unmount_snap(zc->zc_name, NULL);
2618 return (dmu_objset_destroy(zc->zc_name));
2623 * zc_name name of dataset to rollback (to most recent snapshot)
2628 zfs_ioc_rollback(zfs_cmd_t *zc)
2632 zfsvfs_t *zfsvfs = NULL;
2635 * Get the zfsvfs for the receiving objset. There
2636 * won't be one if we're operating on a zvol, if the
2637 * objset doesn't exist yet, or is not mounted.
2639 error = dmu_objset_open(zc->zc_name, DMU_OST_ANY, DS_MODE_USER, &os);
2643 if (getzfsvfs(zc->zc_name, &zfsvfs) == 0) {
2646 error = zfs_suspend_fs(zfsvfs, NULL, &mode);
2650 error = dmu_objset_rollback(os);
2651 resume_err = zfs_resume_fs(zfsvfs, zc->zc_name, mode);
2652 error = error ? error : resume_err;
2654 dmu_objset_close(os);
2656 VFS_RELE(zfsvfs->z_vfs);
2658 error = dmu_objset_rollback(os);
2660 /* Note, the dmu_objset_rollback() releases the objset for us. */
2667 * zc_name old name of dataset
2668 * zc_value new name of dataset
2669 * zc_cookie recursive flag (only valid for snapshots)
2674 zfs_ioc_rename(zfs_cmd_t *zc)
2676 boolean_t recursive = zc->zc_cookie & 1;
2678 zc->zc_value[sizeof (zc->zc_value) - 1] = '\0';
2679 if (dataset_namecheck(zc->zc_value, NULL, NULL) != 0 ||
2680 strchr(zc->zc_value, '%'))
2684 * Unmount snapshot unless we're doing a recursive rename,
2685 * in which case the dataset code figures out which snapshots
2688 if (!recursive && strchr(zc->zc_name, '@') != NULL &&
2689 zc->zc_objset_type == DMU_OST_ZFS) {
2690 int err = zfs_unmount_snap(zc->zc_name, NULL);
2694 return (dmu_objset_rename(zc->zc_name, zc->zc_value, recursive));
2698 clear_props(char *dataset, nvlist_t *props, nvlist_t *newprops)
2705 zc = kmem_alloc(sizeof (zfs_cmd_t), KM_SLEEP);
2706 (void) strcpy(zc->zc_name, dataset);
2707 for (prop = nvlist_next_nvpair(props, NULL); prop;
2708 prop = nvlist_next_nvpair(props, prop)) {
2709 if (newprops != NULL &&
2710 nvlist_exists(newprops, nvpair_name(prop)))
2712 (void) strcpy(zc->zc_value, nvpair_name(prop));
2713 if (zfs_secpolicy_inherit(zc, CRED()) == 0)
2714 (void) zfs_ioc_inherit_prop(zc);
2716 kmem_free(zc, sizeof (zfs_cmd_t));
2721 * zc_name name of containing filesystem
2722 * zc_nvlist_src{_size} nvlist of properties to apply
2723 * zc_value name of snapshot to create
2724 * zc_string name of clone origin (if DRR_FLAG_CLONE)
2725 * zc_cookie file descriptor to recv from
2726 * zc_begin_record the BEGIN record of the stream (not byteswapped)
2727 * zc_guid force flag
2730 * zc_cookie number of bytes read
2733 zfs_ioc_recv(zfs_cmd_t *zc)
2737 dmu_recv_cookie_t drc;
2738 zfsvfs_t *zfsvfs = NULL;
2739 boolean_t force = (boolean_t)zc->zc_guid;
2742 nvlist_t *props = NULL;
2743 nvlist_t *origprops = NULL;
2744 objset_t *origin = NULL;
2746 char tofs[ZFS_MAXNAMELEN];
2748 if (dataset_namecheck(zc->zc_value, NULL, NULL) != 0 ||
2749 strchr(zc->zc_value, '@') == NULL ||
2750 strchr(zc->zc_value, '%'))
2753 (void) strcpy(tofs, zc->zc_value);
2754 tosnap = strchr(tofs, '@');
2758 if (zc->zc_nvlist_src != 0 &&
2759 (error = get_nvlist(zc->zc_nvlist_src, zc->zc_nvlist_src_size,
2770 if (getzfsvfs(tofs, &zfsvfs) == 0) {
2771 if (!mutex_tryenter(&zfsvfs->z_online_recv_lock)) {
2772 VFS_RELE(zfsvfs->z_vfs);
2778 * If new properties are supplied, they are to completely
2779 * replace the existing ones, so stash away the existing ones.
2782 (void) dsl_prop_get_all(zfsvfs->z_os, &origprops, TRUE);
2783 } else if (props && dmu_objset_open(tofs, DMU_OST_ANY,
2784 DS_MODE_USER | DS_MODE_READONLY, &os) == 0) {
2786 * Get the props even if there was no zfsvfs (zvol or
2789 (void) dsl_prop_get_all(os, &origprops, TRUE);
2791 dmu_objset_close(os);
2794 if (zc->zc_string[0]) {
2795 error = dmu_objset_open(zc->zc_string, DMU_OST_ANY,
2796 DS_MODE_USER | DS_MODE_READONLY, &origin);
2801 error = dmu_recv_begin(tofs, tosnap, &zc->zc_begin_record,
2802 force, origin, zfsvfs != NULL, &drc);
2804 dmu_objset_close(origin);
2809 * Reset properties. We do this before we receive the stream
2810 * so that the properties are applied to the new data.
2813 clear_props(tofs, origprops, props);
2815 * XXX - Note, this is all-or-nothing; should be best-effort.
2817 (void) zfs_set_prop_nvlist(tofs, props);
2821 error = dmu_recv_stream(&drc, fp, &off);
2823 if (error == 0 && zfsvfs) {
2828 osname = kmem_alloc(MAXNAMELEN, KM_SLEEP);
2829 error = zfs_suspend_fs(zfsvfs, osname, &mode);
2833 error = dmu_recv_end(&drc);
2834 resume_err = zfs_resume_fs(zfsvfs, osname, mode);
2835 error = error ? error : resume_err;
2837 dmu_recv_abort_cleanup(&drc);
2839 kmem_free(osname, MAXNAMELEN);
2840 } else if (error == 0) {
2841 error = dmu_recv_end(&drc);
2844 zc->zc_cookie = off - fp->f_offset;
2845 if (off >= 0 && off <= MAXOFFSET_T)
2849 * On error, restore the original props.
2851 if (error && props) {
2852 clear_props(tofs, props, NULL);
2853 (void) zfs_set_prop_nvlist(tofs, origprops);
2857 mutex_exit(&zfsvfs->z_online_recv_lock);
2858 VFS_RELE(zfsvfs->z_vfs);
2861 nvlist_free(origprops);
2868 * zc_name name of snapshot to send
2869 * zc_value short name of incremental fromsnap (may be empty)
2870 * zc_cookie file descriptor to send stream to
2871 * zc_obj fromorigin flag (mutually exclusive with zc_value)
2876 zfs_ioc_send(zfs_cmd_t *zc)
2878 objset_t *fromsnap = NULL;
2884 error = dmu_objset_open(zc->zc_name, DMU_OST_ANY,
2885 DS_MODE_USER | DS_MODE_READONLY, &tosnap);
2889 if (zc->zc_value[0] != '\0') {
2893 buf = kmem_alloc(MAXPATHLEN, KM_SLEEP);
2894 (void) strncpy(buf, zc->zc_name, MAXPATHLEN);
2895 cp = strchr(buf, '@');
2898 (void) strlcat(buf, zc->zc_value, MAXPATHLEN);
2899 error = dmu_objset_open(buf, DMU_OST_ANY,
2900 DS_MODE_USER | DS_MODE_READONLY, &fromsnap);
2901 kmem_free(buf, MAXPATHLEN);
2903 dmu_objset_close(tosnap);
2908 fp = getf(zc->zc_cookie, 1);
2910 dmu_objset_close(tosnap);
2912 dmu_objset_close(fromsnap);
2917 error = dmu_sendbackup(tosnap, fromsnap, zc->zc_obj, fp, &off);
2919 if (off >= 0 && off <= MAXOFFSET_T)
2923 dmu_objset_close(fromsnap);
2924 dmu_objset_close(tosnap);
2929 zfs_ioc_inject_fault(zfs_cmd_t *zc)
2933 error = zio_inject_fault(zc->zc_name, (int)zc->zc_guid, &id,
2934 &zc->zc_inject_record);
2937 zc->zc_guid = (uint64_t)id;
2943 zfs_ioc_clear_fault(zfs_cmd_t *zc)
2945 return (zio_clear_fault((int)zc->zc_guid));
2949 zfs_ioc_inject_list_next(zfs_cmd_t *zc)
2951 int id = (int)zc->zc_guid;
2954 error = zio_inject_list_next(&id, zc->zc_name, sizeof (zc->zc_name),
2955 &zc->zc_inject_record);
2963 zfs_ioc_error_log(zfs_cmd_t *zc)
2967 size_t count = (size_t)zc->zc_nvlist_dst_size;
2969 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0)
2972 error = spa_get_errlog(spa, (void *)(uintptr_t)zc->zc_nvlist_dst,
2975 zc->zc_nvlist_dst_size = count;
2977 zc->zc_nvlist_dst_size = spa_get_errlog_size(spa);
2979 spa_close(spa, FTAG);
2985 zfs_ioc_clear(zfs_cmd_t *zc)
2992 * On zpool clear we also fix up missing slogs
2994 mutex_enter(&spa_namespace_lock);
2995 spa = spa_lookup(zc->zc_name);
2997 mutex_exit(&spa_namespace_lock);
3000 if (spa->spa_log_state == SPA_LOG_MISSING) {
3001 /* we need to let spa_open/spa_load clear the chains */
3002 spa->spa_log_state = SPA_LOG_CLEAR;
3004 mutex_exit(&spa_namespace_lock);
3006 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0)
3009 spa_vdev_state_enter(spa);
3011 if (zc->zc_guid == 0) {
3014 vd = spa_lookup_by_guid(spa, zc->zc_guid, B_TRUE);
3016 (void) spa_vdev_state_exit(spa, NULL, ENODEV);
3017 spa_close(spa, FTAG);
3022 vdev_clear(spa, vd);
3024 (void) spa_vdev_state_exit(spa, NULL, 0);
3027 * Resume any suspended I/Os.
3029 if (zio_resume(spa) != 0)
3032 spa_close(spa, FTAG);
3039 * zc_name name of filesystem
3040 * zc_value name of origin snapshot
3045 zfs_ioc_promote(zfs_cmd_t *zc)
3050 * We don't need to unmount *all* the origin fs's snapshots, but
3053 cp = strchr(zc->zc_value, '@');
3056 (void) dmu_objset_find(zc->zc_value,
3057 zfs_unmount_snap, NULL, DS_FIND_SNAPSHOTS);
3058 return (dsl_dataset_promote(zc->zc_name));
3062 * Retrieve a single {user|group}{used|quota}@... property.
3065 * zc_name name of filesystem
3066 * zc_objset_type zfs_userquota_prop_t
3067 * zc_value domain name (eg. "S-1-234-567-89")
3068 * zc_guid RID/UID/GID
3071 * zc_cookie property value
3074 zfs_ioc_userspace_one(zfs_cmd_t *zc)
3079 if (zc->zc_objset_type >= ZFS_NUM_USERQUOTA_PROPS)
3082 error = zfsvfs_hold(zc->zc_name, B_TRUE, FTAG, &zfsvfs);
3086 error = zfs_userspace_one(zfsvfs,
3087 zc->zc_objset_type, zc->zc_value, zc->zc_guid, &zc->zc_cookie);
3088 zfsvfs_rele(zfsvfs, FTAG);
3095 * zc_name name of filesystem
3096 * zc_cookie zap cursor
3097 * zc_objset_type zfs_userquota_prop_t
3098 * zc_nvlist_dst[_size] buffer to fill (not really an nvlist)
3101 * zc_nvlist_dst[_size] data buffer (array of zfs_useracct_t)
3102 * zc_cookie zap cursor
3105 zfs_ioc_userspace_many(zfs_cmd_t *zc)
3110 error = zfsvfs_hold(zc->zc_name, B_TRUE, FTAG, &zfsvfs);
3114 int bufsize = zc->zc_nvlist_dst_size;
3115 void *buf = kmem_alloc(bufsize, KM_SLEEP);
3117 error = zfs_userspace_many(zfsvfs, zc->zc_objset_type, &zc->zc_cookie,
3118 buf, &zc->zc_nvlist_dst_size);
3121 error = xcopyout(buf,
3122 (void *)(uintptr_t)zc->zc_nvlist_dst,
3123 zc->zc_nvlist_dst_size);
3125 kmem_free(buf, bufsize);
3126 zfsvfs_rele(zfsvfs, FTAG);
3133 * zc_name name of filesystem
3139 zfs_ioc_userspace_upgrade(zfs_cmd_t *zc)
3145 if (getzfsvfs(zc->zc_name, &zfsvfs) == 0) {
3146 if (!dmu_objset_userused_enabled(zfsvfs->z_os->os)) {
3148 * If userused is not enabled, it may be because the
3149 * objset needs to be closed & reopened (to grow the
3150 * objset_phys_t). Suspend/resume the fs will do that.
3153 error = zfs_suspend_fs(zfsvfs, NULL, &mode);
3155 error = zfs_resume_fs(zfsvfs,
3160 error = dmu_objset_userspace_upgrade(zfsvfs->z_os);
3161 VFS_RELE(zfsvfs->z_vfs);
3163 error = dmu_objset_open(zc->zc_name, DMU_OST_ANY,
3168 error = dmu_objset_userspace_upgrade(os);
3169 dmu_objset_close(os);
3177 * We don't want to have a hard dependency
3178 * against some special symbols in sharefs
3179 * nfs, and smbsrv. Determine them if needed when
3180 * the first file system is shared.
3181 * Neither sharefs, nfs or smbsrv are unloadable modules.
3183 int (*znfsexport_fs)(void *arg);
3184 int (*zshare_fs)(enum sharefs_sys_op, share_t *, uint32_t);
3185 int (*zsmbexport_fs)(void *arg, boolean_t add_share);
3187 int zfs_nfsshare_inited;
3188 int zfs_smbshare_inited;
3190 ddi_modhandle_t nfs_mod;
3191 ddi_modhandle_t sharefs_mod;
3192 ddi_modhandle_t smbsrv_mod;
3194 kmutex_t zfs_share_lock;
3202 ASSERT(MUTEX_HELD(&zfs_share_lock));
3203 /* Both NFS and SMB shares also require sharetab support. */
3204 if (sharefs_mod == NULL && ((sharefs_mod =
3205 ddi_modopen("fs/sharefs",
3206 KRTLD_MODE_FIRST, &error)) == NULL)) {
3209 if (zshare_fs == NULL && ((zshare_fs =
3210 (int (*)(enum sharefs_sys_op, share_t *, uint32_t))
3211 ddi_modsym(sharefs_mod, "sharefs_impl", &error)) == NULL)) {
3219 zfs_ioc_share(zfs_cmd_t *zc)
3225 switch (zc->zc_share.z_sharetype) {
3227 case ZFS_UNSHARE_NFS:
3228 if (zfs_nfsshare_inited == 0) {
3229 mutex_enter(&zfs_share_lock);
3230 if (nfs_mod == NULL && ((nfs_mod = ddi_modopen("fs/nfs",
3231 KRTLD_MODE_FIRST, &error)) == NULL)) {
3232 mutex_exit(&zfs_share_lock);
3235 if (znfsexport_fs == NULL &&
3236 ((znfsexport_fs = (int (*)(void *))
3238 "nfs_export", &error)) == NULL)) {
3239 mutex_exit(&zfs_share_lock);
3242 error = zfs_init_sharefs();
3244 mutex_exit(&zfs_share_lock);
3247 zfs_nfsshare_inited = 1;
3248 mutex_exit(&zfs_share_lock);
3252 case ZFS_UNSHARE_SMB:
3253 if (zfs_smbshare_inited == 0) {
3254 mutex_enter(&zfs_share_lock);
3255 if (smbsrv_mod == NULL && ((smbsrv_mod =
3256 ddi_modopen("drv/smbsrv",
3257 KRTLD_MODE_FIRST, &error)) == NULL)) {
3258 mutex_exit(&zfs_share_lock);
3261 if (zsmbexport_fs == NULL && ((zsmbexport_fs =
3262 (int (*)(void *, boolean_t))ddi_modsym(smbsrv_mod,
3263 "smb_server_share", &error)) == NULL)) {
3264 mutex_exit(&zfs_share_lock);
3267 error = zfs_init_sharefs();
3269 mutex_exit(&zfs_share_lock);
3272 zfs_smbshare_inited = 1;
3273 mutex_exit(&zfs_share_lock);
3280 switch (zc->zc_share.z_sharetype) {
3282 case ZFS_UNSHARE_NFS:
3284 znfsexport_fs((void *)
3285 (uintptr_t)zc->zc_share.z_exportdata))
3289 case ZFS_UNSHARE_SMB:
3290 if (error = zsmbexport_fs((void *)
3291 (uintptr_t)zc->zc_share.z_exportdata,
3292 zc->zc_share.z_sharetype == ZFS_SHARE_SMB ?
3299 opcode = (zc->zc_share.z_sharetype == ZFS_SHARE_NFS ||
3300 zc->zc_share.z_sharetype == ZFS_SHARE_SMB) ?
3301 SHAREFS_ADD : SHAREFS_REMOVE;
3304 * Add or remove share from sharetab
3306 error = zshare_fs(opcode,
3307 (void *)(uintptr_t)zc->zc_share.z_sharedata,
3308 zc->zc_share.z_sharemax);
3316 ace_t full_access[] = {
3317 {(uid_t)-1, ACE_ALL_PERMS, ACE_EVERYONE, 0}
3322 * Remove all ACL files in shares dir
3325 zfs_smb_acl_purge(znode_t *dzp)
3328 zap_attribute_t zap;
3329 zfsvfs_t *zfsvfs = dzp->z_zfsvfs;
3332 for (zap_cursor_init(&zc, zfsvfs->z_os, dzp->z_id);
3333 (error = zap_cursor_retrieve(&zc, &zap)) == 0;
3334 zap_cursor_advance(&zc)) {
3335 if ((error = VOP_REMOVE(ZTOV(dzp), zap.za_name, kcred,
3339 zap_cursor_fini(&zc);
3345 zfs_ioc_smb_acl(zfs_cmd_t *zc)
3350 vnode_t *resourcevp = NULL;
3359 if ((error = lookupname(zc->zc_value, UIO_SYSSPACE,
3360 NO_FOLLOW, NULL, &vp)) != 0)
3363 /* Now make sure mntpnt and dataset are ZFS */
3365 if (vp->v_vfsp->vfs_fstype != zfsfstype ||
3366 (strcmp((char *)refstr_value(vp->v_vfsp->vfs_resource),
3367 zc->zc_name) != 0)) {
3373 zfsvfs = dzp->z_zfsvfs;
3378 * Create share dir if its missing.
3380 mutex_enter(&zfsvfs->z_lock);
3381 if (zfsvfs->z_shares_dir == 0) {
3384 tx = dmu_tx_create(zfsvfs->z_os);
3385 dmu_tx_hold_zap(tx, MASTER_NODE_OBJ, TRUE,
3387 dmu_tx_hold_zap(tx, DMU_NEW_OBJECT, FALSE, NULL);
3388 error = dmu_tx_assign(tx, TXG_WAIT);
3392 error = zfs_create_share_dir(zfsvfs, tx);
3396 mutex_exit(&zfsvfs->z_lock);
3402 mutex_exit(&zfsvfs->z_lock);
3404 ASSERT(zfsvfs->z_shares_dir);
3405 if ((error = zfs_zget(zfsvfs, zfsvfs->z_shares_dir, &sharedir)) != 0) {
3411 switch (zc->zc_cookie) {
3412 case ZFS_SMB_ACL_ADD:
3413 vattr.va_mask = AT_MODE|AT_UID|AT_GID|AT_TYPE;
3414 vattr.va_type = VREG;
3415 vattr.va_mode = S_IFREG|0777;
3419 vsec.vsa_mask = VSA_ACE;
3420 vsec.vsa_aclentp = &full_access;
3421 vsec.vsa_aclentsz = sizeof (full_access);
3422 vsec.vsa_aclcnt = 1;
3424 error = VOP_CREATE(ZTOV(sharedir), zc->zc_string,
3425 &vattr, EXCL, 0, &resourcevp, kcred, 0, NULL, &vsec);
3427 VN_RELE(resourcevp);
3430 case ZFS_SMB_ACL_REMOVE:
3431 error = VOP_REMOVE(ZTOV(sharedir), zc->zc_string, kcred,
3435 case ZFS_SMB_ACL_RENAME:
3436 if ((error = get_nvlist(zc->zc_nvlist_src,
3437 zc->zc_nvlist_src_size, &nvlist)) != 0) {
3442 if (nvlist_lookup_string(nvlist, ZFS_SMB_ACL_SRC, &src) ||
3443 nvlist_lookup_string(nvlist, ZFS_SMB_ACL_TARGET,
3446 VN_RELE(ZTOV(sharedir));
3450 error = VOP_RENAME(ZTOV(sharedir), src, ZTOV(sharedir), target,
3452 nvlist_free(nvlist);
3455 case ZFS_SMB_ACL_PURGE:
3456 error = zfs_smb_acl_purge(sharedir);
3465 VN_RELE(ZTOV(sharedir));
3471 return (EOPNOTSUPP);
3476 * pool create, destroy, and export don't log the history as part of
3477 * zfsdev_ioctl, but rather zfs_ioc_pool_create, and zfs_ioc_pool_export
3478 * do the logging of those commands.
3481 zfs_ioc_jail(zfs_cmd_t *zc)
3484 return (zone_dataset_attach(curthread->td_ucred, zc->zc_name,
3485 (int)zc->zc_jailid));
3489 zfs_ioc_unjail(zfs_cmd_t *zc)
3492 return (zone_dataset_detach(curthread->td_ucred, zc->zc_name,
3493 (int)zc->zc_jailid));
3496 static zfs_ioc_vec_t zfs_ioc_vec[] = {
3497 { zfs_ioc_pool_create, zfs_secpolicy_config, POOL_NAME, B_FALSE,
3499 { zfs_ioc_pool_destroy, zfs_secpolicy_config, POOL_NAME, B_FALSE,
3501 { zfs_ioc_pool_import, zfs_secpolicy_config, POOL_NAME, B_TRUE,
3503 { zfs_ioc_pool_export, zfs_secpolicy_config, POOL_NAME, B_FALSE,
3505 { zfs_ioc_pool_configs, zfs_secpolicy_none, NO_NAME, B_FALSE,
3507 { zfs_ioc_pool_stats, zfs_secpolicy_read, POOL_NAME, B_FALSE,
3509 { zfs_ioc_pool_tryimport, zfs_secpolicy_config, NO_NAME, B_FALSE,
3511 { zfs_ioc_pool_scrub, zfs_secpolicy_config, POOL_NAME, B_TRUE,
3513 { zfs_ioc_pool_freeze, zfs_secpolicy_config, NO_NAME, B_FALSE,
3515 { zfs_ioc_pool_upgrade, zfs_secpolicy_config, POOL_NAME, B_TRUE,
3517 { zfs_ioc_pool_get_history, zfs_secpolicy_config, POOL_NAME, B_FALSE,
3519 { zfs_ioc_vdev_add, zfs_secpolicy_config, POOL_NAME, B_TRUE,
3521 { zfs_ioc_vdev_remove, zfs_secpolicy_config, POOL_NAME, B_TRUE,
3523 { zfs_ioc_vdev_set_state, zfs_secpolicy_config, POOL_NAME, B_TRUE,
3525 { zfs_ioc_vdev_attach, zfs_secpolicy_config, POOL_NAME, B_TRUE,
3527 { zfs_ioc_vdev_detach, zfs_secpolicy_config, POOL_NAME, B_TRUE,
3529 { zfs_ioc_vdev_setpath, zfs_secpolicy_config, POOL_NAME, B_FALSE,
3531 { zfs_ioc_objset_stats, zfs_secpolicy_read, DATASET_NAME, B_FALSE,
3533 { zfs_ioc_objset_zplprops, zfs_secpolicy_read, DATASET_NAME, B_FALSE,
3535 { zfs_ioc_dataset_list_next, zfs_secpolicy_read, DATASET_NAME, B_FALSE,
3537 { zfs_ioc_snapshot_list_next, zfs_secpolicy_read, DATASET_NAME, B_FALSE,
3539 { zfs_ioc_set_prop, zfs_secpolicy_none, DATASET_NAME, B_TRUE, B_TRUE },
3540 { zfs_ioc_create_minor, zfs_secpolicy_minor, DATASET_NAME, B_FALSE,
3542 { zfs_ioc_remove_minor, zfs_secpolicy_minor, DATASET_NAME, B_FALSE,
3544 { zfs_ioc_create, zfs_secpolicy_create, DATASET_NAME, B_TRUE, B_TRUE },
3545 { zfs_ioc_destroy, zfs_secpolicy_destroy, DATASET_NAME, B_TRUE,
3547 { zfs_ioc_rollback, zfs_secpolicy_rollback, DATASET_NAME, B_TRUE,
3549 { zfs_ioc_rename, zfs_secpolicy_rename, DATASET_NAME, B_TRUE, B_TRUE },
3550 { zfs_ioc_recv, zfs_secpolicy_receive, DATASET_NAME, B_TRUE, B_TRUE },
3551 { zfs_ioc_send, zfs_secpolicy_send, DATASET_NAME, B_TRUE, B_FALSE },
3552 { zfs_ioc_inject_fault, zfs_secpolicy_inject, NO_NAME, B_FALSE,
3554 { zfs_ioc_clear_fault, zfs_secpolicy_inject, NO_NAME, B_FALSE,
3556 { zfs_ioc_inject_list_next, zfs_secpolicy_inject, NO_NAME, B_FALSE,
3558 { zfs_ioc_error_log, zfs_secpolicy_inject, POOL_NAME, B_FALSE,
3560 { zfs_ioc_clear, zfs_secpolicy_config, POOL_NAME, B_TRUE, B_FALSE },
3561 { zfs_ioc_promote, zfs_secpolicy_promote, DATASET_NAME, B_TRUE,
3563 { zfs_ioc_destroy_snaps, zfs_secpolicy_destroy, DATASET_NAME, B_TRUE,
3565 { zfs_ioc_snapshot, zfs_secpolicy_snapshot, DATASET_NAME, B_TRUE,
3567 { zfs_ioc_dsobj_to_dsname, zfs_secpolicy_config, POOL_NAME, B_FALSE,
3569 { zfs_ioc_obj_to_path, zfs_secpolicy_config, NO_NAME, B_FALSE,
3571 { zfs_ioc_pool_set_props, zfs_secpolicy_config, POOL_NAME, B_TRUE,
3573 { zfs_ioc_pool_get_props, zfs_secpolicy_read, POOL_NAME, B_FALSE,
3575 { zfs_ioc_set_fsacl, zfs_secpolicy_fsacl, DATASET_NAME, B_TRUE,
3577 { zfs_ioc_get_fsacl, zfs_secpolicy_read, DATASET_NAME, B_FALSE,
3579 { zfs_ioc_iscsi_perm_check, zfs_secpolicy_iscsi, DATASET_NAME, B_FALSE,
3581 { zfs_ioc_share, zfs_secpolicy_share, DATASET_NAME, B_FALSE, B_FALSE },
3582 { zfs_ioc_inherit_prop, zfs_secpolicy_inherit, DATASET_NAME, B_TRUE,
3584 { zfs_ioc_jail, zfs_secpolicy_config, DATASET_NAME, B_TRUE, B_FALSE },
3585 { zfs_ioc_unjail, zfs_secpolicy_config, DATASET_NAME, B_TRUE, B_FALSE },
3586 { zfs_ioc_smb_acl, zfs_secpolicy_smb_acl, DATASET_NAME, B_FALSE,
3588 { zfs_ioc_userspace_one, zfs_secpolicy_userspace_one,
3589 DATASET_NAME, B_FALSE, B_FALSE },
3590 { zfs_ioc_userspace_many, zfs_secpolicy_userspace_many,
3591 DATASET_NAME, B_FALSE, B_FALSE },
3592 { zfs_ioc_userspace_upgrade, zfs_secpolicy_userspace_upgrade,
3593 DATASET_NAME, B_FALSE, B_TRUE },
3594 { zfs_ioc_vdev_setfru, zfs_secpolicy_config, POOL_NAME, B_FALSE,
3599 pool_status_check(const char *name, zfs_ioc_namecheck_t type)
3602 char pool[ZFS_MAXNAMELEN];
3605 ASSERT(type == POOL_NAME || type == DATASET_NAME);
3607 error = spa_open(name, &spa, FTAG);
3609 if (spa_suspended(spa))
3611 spa_close(spa, FTAG);
3617 zfsdev_ioctl(struct cdev *dev, u_long cmd, caddr_t addr, int flag,
3620 zfs_cmd_t *zc = (void *)addr;
3626 if (vec >= sizeof (zfs_ioc_vec) / sizeof (zfs_ioc_vec[0]))
3629 error = zfs_ioc_vec[vec].zvec_secpolicy(zc, td->td_ucred);
3632 * Ensure that all pool/dataset names are valid before we pass down to
3636 zc->zc_name[sizeof (zc->zc_name) - 1] = '\0';
3637 switch (zfs_ioc_vec[vec].zvec_namecheck) {
3639 if (pool_namecheck(zc->zc_name, NULL, NULL) != 0)
3641 if (zfs_ioc_vec[vec].zvec_pool_check)
3642 error = pool_status_check(zc->zc_name,
3643 zfs_ioc_vec[vec].zvec_namecheck);
3647 if (dataset_namecheck(zc->zc_name, NULL, NULL) != 0)
3649 if (zfs_ioc_vec[vec].zvec_pool_check)
3650 error = pool_status_check(zc->zc_name,
3651 zfs_ioc_vec[vec].zvec_namecheck);
3660 error = zfs_ioc_vec[vec].zvec_func(zc);
3663 if (zfs_ioc_vec[vec].zvec_his_log)
3664 zfs_log_history(zc);
3671 * OK, so this is a little weird.
3673 * /dev/zfs is the control node, i.e. minor 0.
3674 * /dev/zvol/[r]dsk/pool/dataset are the zvols, minor > 0.
3676 * /dev/zfs has basically nothing to do except serve up ioctls,
3677 * so most of the standard driver entry points are in zvol.c.
3679 static struct cdevsw zfs_cdevsw = {
3680 .d_version = D_VERSION,
3681 .d_ioctl = zfsdev_ioctl,
3682 .d_name = ZFS_DEV_NAME
3688 zfsdev = make_dev(&zfs_cdevsw, 0x0, UID_ROOT, GID_OPERATOR, 0666,
3696 destroy_dev(zfsdev);
3699 static struct root_hold_token *zfs_root_token;
3700 struct proc *zfsproc;
3702 uint_t zfs_fsyncer_key;
3703 extern uint_t rrw_tsd_key;
3706 zfs_modevent(module_t mod, int type, void *unused __unused)
3712 zfs_root_token = root_mount_hold("ZFS");
3714 mutex_init(&zfs_share_lock, NULL, MUTEX_DEFAULT, NULL);
3716 spa_init(FREAD | FWRITE);
3720 tsd_create(&zfs_fsyncer_key, NULL);
3721 tsd_create(&rrw_tsd_key, NULL);
3723 printf("ZFS storage pool version " SPA_VERSION_STRING "\n");
3724 root_mount_rel(zfs_root_token);
3729 if (spa_busy() || zfs_busy() || zvol_busy() ||
3730 zio_injection_enabled) {
3740 tsd_destroy(&zfs_fsyncer_key);
3741 tsd_destroy(&rrw_tsd_key);
3743 mutex_destroy(&zfs_share_lock);
3752 static moduledata_t zfs_mod = {
3757 DECLARE_MODULE(zfsctrl, zfs_mod, SI_SUB_VFS, SI_ORDER_ANY);
3758 MODULE_DEPEND(zfsctrl, opensolaris, 1, 1, 1);
3759 MODULE_DEPEND(zfsctrl, krpc, 1, 1, 1);