2 * Unix SMB/CIFS implementation.
3 * Samba VFS module for GPFS filesystem
4 * Copyright (C) Christian Ambach <cambach1@de.ibm.com> 2006
5 * Copyright (C) Christof Schmitt 2015
6 * Major code contributions by Chetan Shringarpure <chetan.sh@in.ibm.com>
7 * and Gomati Mohanan <gomati.mohanan@in.ibm.com>
9 * This program is free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 3 of the License, or
12 * (at your option) any later version.
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 * GNU General Public License for more details.
19 * You should have received a copy of the GNU General Public License
20 * along with this program; if not, see <http://www.gnu.org/licenses/>.
24 #include "smbd/smbd.h"
25 #include "include/smbprofile.h"
26 #include "modules/non_posix_acls.h"
27 #include "libcli/security/security.h"
28 #include "nfs4_acls.h"
29 #include "system/filesys.h"
31 #include "lib/util/tevent_unix.h"
32 #include "lib/util/gpfswrap.h"
35 #define DBGC_CLASS DBGC_VFS
37 #ifndef GPFS_GETACL_NATIVE
38 #define GPFS_GETACL_NATIVE 0x00000004
41 struct gpfs_config_data {
42 struct smbacl4_vfs_params nfs4_params;
56 struct gpfs_fsp_extension {
60 static inline unsigned int gpfs_acl_flags(gpfs_acl_t *gacl)
62 if (gacl->acl_level == GPFS_ACL_LEVEL_V4FLAGS) {
63 return gacl->v4Level1.acl_flags;
68 static inline gpfs_ace_v4_t *gpfs_ace_ptr(gpfs_acl_t *gacl, unsigned int i)
70 if (gacl->acl_level == GPFS_ACL_LEVEL_V4FLAGS) {
71 return &gacl->v4Level1.ace_v4[i];
73 return &gacl->ace_v4[i];
76 static bool set_gpfs_sharemode(files_struct *fsp, uint32_t access_mask,
77 uint32_t share_access)
79 unsigned int allow = GPFS_SHARE_NONE;
80 unsigned int deny = GPFS_DENY_NONE;
83 if ((fsp == NULL) || (fsp->fh == NULL) || (fsp->fh->fd < 0)) {
84 /* No real file, don't disturb */
88 allow |= (access_mask & (FILE_WRITE_DATA|FILE_APPEND_DATA)) ?
90 allow |= (access_mask & (FILE_READ_DATA|FILE_EXECUTE)) ?
93 if (allow == GPFS_SHARE_NONE) {
94 DEBUG(10, ("special case am=no_access:%x\n",access_mask));
97 deny |= (share_access & FILE_SHARE_WRITE) ?
99 deny |= (share_access & (FILE_SHARE_READ)) ?
103 * GPFS_DENY_DELETE can only be set together with either
104 * GPFS_DENY_WRITE or GPFS_DENY_READ.
106 if (deny & (GPFS_DENY_WRITE|GPFS_DENY_READ)) {
107 deny |= (share_access & (FILE_SHARE_DELETE)) ?
108 0 : GPFS_DENY_DELETE;
111 DEBUG(10, ("am=%x, allow=%d, sa=%x, deny=%d\n",
112 access_mask, allow, share_access, deny));
114 result = gpfswrap_set_share(fsp->fh->fd, allow, deny);
116 if (errno == ENOSYS) {
117 DEBUG(5, ("VFS module vfs_gpfs loaded, but gpfs "
118 "set_share function support not available. "
119 "Allowing access\n"));
122 DEBUG(10, ("gpfs_set_share failed: %s\n",
127 return (result == 0);
130 static int vfs_gpfs_kernel_flock(vfs_handle_struct *handle, files_struct *fsp,
131 uint32_t share_mode, uint32_t access_mask)
134 struct gpfs_config_data *config;
137 START_PROFILE(syscall_kernel_flock);
139 SMB_VFS_HANDLE_GET_DATA(handle, config,
140 struct gpfs_config_data,
143 if(!config->sharemodes) {
148 * A named stream fsp will have the basefile open in the fsp
149 * fd, so lacking a distinct fd for the stream we have to skip
150 * kernel_flock and set_gpfs_sharemode for stream.
152 if (is_named_stream(fsp->fsp_name)) {
153 DEBUG(2,("%s: kernel_flock on stream\n", fsp_str_dbg(fsp)));
157 kernel_flock(fsp->fh->fd, share_mode, access_mask);
159 if (!set_gpfs_sharemode(fsp, access_mask, share_mode)) {
163 END_PROFILE(syscall_kernel_flock);
168 static int vfs_gpfs_close(vfs_handle_struct *handle, files_struct *fsp)
171 struct gpfs_config_data *config;
173 SMB_VFS_HANDLE_GET_DATA(handle, config,
174 struct gpfs_config_data,
177 if (config->sharemodes && (fsp->fh != NULL) && (fsp->fh->fd != -1)) {
178 set_gpfs_sharemode(fsp, 0, 0);
181 return SMB_VFS_NEXT_CLOSE(handle, fsp);
184 static int set_gpfs_lease(int fd, int leasetype)
186 int gpfs_type = GPFS_LEASE_NONE;
188 if (leasetype == F_RDLCK) {
189 gpfs_type = GPFS_LEASE_READ;
191 if (leasetype == F_WRLCK) {
192 gpfs_type = GPFS_LEASE_WRITE;
195 /* we unconditionally set CAP_LEASE, rather than looking for
196 -1/EACCES as there is a bug in some versions of
197 libgpfs_gpl.so which results in a leaked fd on /dev/ss0
198 each time we try this with the wrong capabilities set
200 linux_set_lease_capability();
201 return gpfswrap_set_lease(fd, gpfs_type);
204 static int vfs_gpfs_setlease(vfs_handle_struct *handle, files_struct *fsp,
207 struct gpfs_config_data *config;
210 START_PROFILE(syscall_linux_setlease);
212 SMB_VFS_HANDLE_GET_DATA(handle, config,
213 struct gpfs_config_data,
216 if (linux_set_lease_sighandler(fsp->fh->fd) == -1) {
221 if (config->leases) {
223 * Ensure the lease owner is root to allow
224 * correct delivery of lease-break signals.
227 ret = set_gpfs_lease(fsp->fh->fd,leasetype);
232 END_PROFILE(syscall_linux_setlease);
237 static int vfs_gpfs_get_real_filename(struct vfs_handle_struct *handle,
244 char *full_path = NULL;
245 char *to_free = NULL;
246 char real_pathname[PATH_MAX+1], tmpbuf[PATH_MAX];
247 size_t full_path_len;
250 struct gpfs_config_data *config;
252 SMB_VFS_HANDLE_GET_DATA(handle, config,
253 struct gpfs_config_data,
256 if (!config->getrealfilename) {
257 return SMB_VFS_NEXT_GET_REAL_FILENAME(handle, path, name,
258 mem_ctx, found_name);
261 mangled = mangle_is_mangled(name, handle->conn->params);
263 return SMB_VFS_NEXT_GET_REAL_FILENAME(handle, path, name,
264 mem_ctx, found_name);
267 full_path_len = full_path_tos(path, name, tmpbuf, sizeof(tmpbuf),
268 &full_path, &to_free);
269 if (full_path_len == -1) {
274 buflen = sizeof(real_pathname) - 1;
276 result = gpfswrap_get_realfilename_path(full_path, real_pathname,
279 TALLOC_FREE(to_free);
281 if ((result == -1) && (errno == ENOSYS)) {
282 return SMB_VFS_NEXT_GET_REAL_FILENAME(
283 handle, path, name, mem_ctx, found_name);
287 DEBUG(10, ("smbd_gpfs_get_realfilename_path returned %s\n",
293 * GPFS does not necessarily null-terminate the returned path
294 * but instead returns the buffer length in buflen.
297 if (buflen < sizeof(real_pathname)) {
298 real_pathname[buflen] = '\0';
300 real_pathname[sizeof(real_pathname)-1] = '\0';
303 DEBUG(10, ("smbd_gpfs_get_realfilename_path: %s/%s -> %s\n",
304 path, name, real_pathname));
306 name = strrchr_m(real_pathname, '/');
312 *found_name = talloc_strdup(mem_ctx, name+1);
313 if (*found_name == NULL) {
321 static void sd2gpfs_control(uint16_t control, struct gpfs_acl *gacl)
323 unsigned int gpfs_aclflags = 0;
324 control &= SEC_DESC_DACL_PROTECTED | SEC_DESC_SACL_PROTECTED |
325 SEC_DESC_DACL_AUTO_INHERITED | SEC_DESC_SACL_AUTO_INHERITED |
326 SEC_DESC_DACL_DEFAULTED | SEC_DESC_SACL_DEFAULTED |
327 SEC_DESC_DACL_PRESENT | SEC_DESC_SACL_PRESENT;
328 gpfs_aclflags = control << 8;
329 if (!(control & SEC_DESC_DACL_PRESENT))
330 gpfs_aclflags |= ACL4_FLAG_NULL_DACL;
331 if (!(control & SEC_DESC_SACL_PRESENT))
332 gpfs_aclflags |= ACL4_FLAG_NULL_SACL;
333 gacl->acl_level = GPFS_ACL_LEVEL_V4FLAGS;
334 gacl->v4Level1.acl_flags = gpfs_aclflags;
337 static uint16_t gpfs2sd_control(unsigned int gpfs_aclflags)
339 uint16_t control = gpfs_aclflags >> 8;
340 control &= SEC_DESC_DACL_PROTECTED | SEC_DESC_SACL_PROTECTED |
341 SEC_DESC_DACL_AUTO_INHERITED | SEC_DESC_SACL_AUTO_INHERITED |
342 SEC_DESC_DACL_DEFAULTED | SEC_DESC_SACL_DEFAULTED |
343 SEC_DESC_DACL_PRESENT | SEC_DESC_SACL_PRESENT;
344 control |= SEC_DESC_SELF_RELATIVE;
348 static void gpfs_dumpacl(int level, struct gpfs_acl *gacl)
353 DEBUG(0, ("gpfs acl is NULL\n"));
357 DEBUG(level, ("len: %d, level: %d, version: %d, nace: %d, "
359 gacl->acl_len, gacl->acl_level, gacl->acl_version,
360 gacl->acl_nace, gpfs_acl_flags(gacl)));
362 for(i=0; i<gacl->acl_nace; i++)
364 struct gpfs_ace_v4 *gace = gpfs_ace_ptr(gacl, i);
365 DEBUG(level, ("\tace[%d]: type:%d, flags:0x%x, mask:0x%x, "
366 "iflags:0x%x, who:%u\n",
367 i, gace->aceType, gace->aceFlags, gace->aceMask,
368 gace->aceIFlags, gace->aceWho));
372 static int gpfs_getacl_with_capability(const char *fname, int flags, void *buf)
374 int ret, saved_errno;
376 set_effective_capability(DAC_OVERRIDE_CAPABILITY);
378 ret = gpfswrap_getacl(discard_const_p(char, fname), flags, buf);
381 drop_effective_capability(DAC_OVERRIDE_CAPABILITY);
388 * get the ACL from GPFS, allocated on the specified mem_ctx
389 * internally retries when initial buffer was too small
391 * caller needs to cast result to either
392 * raw = yes: struct gpfs_opaque_acl
393 * raw = no: struct gpfs_acl
396 static void *vfs_gpfs_getacl(TALLOC_CTX *mem_ctx,
399 const gpfs_aclType_t type)
407 bool use_capability = false;
411 aclbuf = talloc_zero_size(mem_ctx, size);
412 if (aclbuf == NULL) {
418 struct gpfs_opaque_acl *buf = (struct gpfs_opaque_acl *) aclbuf;
419 buf->acl_type = type;
420 flags = GPFS_GETACL_NATIVE;
421 len = (unsigned int *) &(buf->acl_buffer_len);
422 struct_size = sizeof(struct gpfs_opaque_acl);
424 struct gpfs_acl *buf = (struct gpfs_acl *) aclbuf;
425 buf->acl_type = type;
426 buf->acl_level = GPFS_ACL_LEVEL_V4FLAGS;
427 flags = GPFS_GETACL_STRUCT;
428 len = &(buf->acl_len);
429 /* reserve space for control flags in gpfs 3.5 and beyond */
430 struct_size = sizeof(struct gpfs_acl) + sizeof(unsigned int);
433 /* set the length of the buffer as input value */
436 if (use_capability) {
437 ret = gpfs_getacl_with_capability(fname, flags, aclbuf);
439 ret = gpfswrap_getacl(discard_const_p(char, fname),
441 if ((ret != 0) && (errno == EACCES)) {
442 DBG_DEBUG("Retry with DAC capability for %s\n", fname);
443 use_capability = true;
444 ret = gpfs_getacl_with_capability(fname, flags, aclbuf);
448 if ((ret != 0) && (errno == ENOSPC)) {
450 * get the size needed to accommodate the complete buffer
452 * the value returned only applies to the ACL blob in the
453 * struct so make sure to also have headroom for the first
454 * struct members by adding room for the complete struct
455 * (might be a few bytes too much then)
457 size = *len + struct_size;
459 DEBUG(10, ("Increasing ACL buffer size to %zu\n", size));
464 DEBUG(5, ("smbd_gpfs_getacl failed with %s\n",
473 /* Tries to get nfs4 acls and returns SMB ACL allocated.
474 * On failure returns 1 if it got non-NFSv4 ACL to prompt
475 * retry with POSIX ACL checks.
476 * On failure returns -1 if there is system (GPFS) error, check errno.
477 * Returns 0 on success
479 static int gpfs_get_nfs4_acl(TALLOC_CTX *mem_ctx, const char *fname,
480 struct SMB4ACL_T **ppacl)
483 struct gpfs_acl *gacl = NULL;
484 DEBUG(10, ("gpfs_get_nfs4_acl invoked for %s\n", fname));
487 gacl = (struct gpfs_acl*) vfs_gpfs_getacl(talloc_tos(), fname,
490 DEBUG(9, ("gpfs_getacl failed for %s with %s\n",
491 fname, strerror(errno)));
492 if (errno == ENODATA) {
494 * GPFS returns ENODATA for snapshot
495 * directories. Retry with POSIX ACLs check.
503 if (gacl->acl_type != GPFS_ACL_TYPE_NFS4) {
504 DEBUG(10, ("Got non-nfsv4 acl\n"));
505 /* Retry with POSIX ACLs check */
510 *ppacl = smb_create_smb4acl(mem_ctx);
512 if (gacl->acl_level == GPFS_ACL_LEVEL_V4FLAGS) {
513 uint16_t control = gpfs2sd_control(gpfs_acl_flags(gacl));
514 smbacl4_set_controlflags(*ppacl, control);
517 DEBUG(10, ("len: %d, level: %d, version: %d, nace: %d, control: %x\n",
518 gacl->acl_len, gacl->acl_level, gacl->acl_version,
519 gacl->acl_nace, gpfs_acl_flags(gacl)));
521 for (i=0; i<gacl->acl_nace; i++) {
522 struct gpfs_ace_v4 *gace = gpfs_ace_ptr(gacl, i);
523 SMB_ACE4PROP_T smbace = { 0 };
524 DEBUG(10, ("type: %d, iflags: %x, flags: %x, mask: %x, "
525 "who: %d\n", gace->aceType, gace->aceIFlags,
526 gace->aceFlags, gace->aceMask, gace->aceWho));
528 if (gace->aceIFlags & ACE4_IFLAG_SPECIAL_ID) {
529 smbace.flags |= SMB_ACE4_ID_SPECIAL;
530 switch (gace->aceWho) {
531 case ACE4_SPECIAL_OWNER:
532 smbace.who.special_id = SMB_ACE4_WHO_OWNER;
534 case ACE4_SPECIAL_GROUP:
535 smbace.who.special_id = SMB_ACE4_WHO_GROUP;
537 case ACE4_SPECIAL_EVERYONE:
538 smbace.who.special_id = SMB_ACE4_WHO_EVERYONE;
541 DEBUG(8, ("invalid special gpfs id %d "
542 "ignored\n", gace->aceWho));
543 continue; /* don't add it */
546 if (gace->aceFlags & ACE4_FLAG_GROUP_ID)
547 smbace.who.gid = gace->aceWho;
549 smbace.who.uid = gace->aceWho;
552 /* remove redundant deny entries */
553 if (i > 0 && gace->aceType == SMB_ACE4_ACCESS_DENIED_ACE_TYPE) {
554 struct gpfs_ace_v4 *prev = gpfs_ace_ptr(gacl, i - 1);
555 if (prev->aceType == SMB_ACE4_ACCESS_ALLOWED_ACE_TYPE &&
556 prev->aceFlags == gace->aceFlags &&
557 prev->aceIFlags == gace->aceIFlags &&
558 (gace->aceMask & prev->aceMask) == 0 &&
559 gace->aceWho == prev->aceWho) {
560 /* it's redundant - skip it */
565 smbace.aceType = gace->aceType;
566 smbace.aceFlags = gace->aceFlags;
567 smbace.aceMask = gace->aceMask;
568 smb_add_ace4(*ppacl, &smbace);
576 static NTSTATUS gpfsacl_fget_nt_acl(vfs_handle_struct *handle,
577 files_struct *fsp, uint32_t security_info,
579 struct security_descriptor **ppdesc)
581 struct SMB4ACL_T *pacl = NULL;
583 struct gpfs_config_data *config;
584 TALLOC_CTX *frame = talloc_stackframe();
589 SMB_VFS_HANDLE_GET_DATA(handle, config,
590 struct gpfs_config_data,
591 return NT_STATUS_INTERNAL_ERROR);
594 status = SMB_VFS_NEXT_FGET_NT_ACL(handle, fsp, security_info,
600 result = gpfs_get_nfs4_acl(frame, fsp->fsp_name->base_name, &pacl);
603 status = smb_fget_nt_acl_nfs4(fsp, &config->nfs4_params,
605 mem_ctx, ppdesc, pacl);
611 DEBUG(10, ("retrying with posix acl...\n"));
612 status = posix_fget_nt_acl(fsp, security_info,
620 /* GPFS ACL was not read, something wrong happened, error code is set in errno */
621 return map_nt_error_from_unix(errno);
624 static NTSTATUS gpfsacl_get_nt_acl(vfs_handle_struct *handle,
625 const struct smb_filename *smb_fname,
626 uint32_t security_info,
628 struct security_descriptor **ppdesc)
630 struct SMB4ACL_T *pacl = NULL;
632 struct gpfs_config_data *config;
633 TALLOC_CTX *frame = talloc_stackframe();
638 SMB_VFS_HANDLE_GET_DATA(handle, config,
639 struct gpfs_config_data,
640 return NT_STATUS_INTERNAL_ERROR);
643 status = SMB_VFS_NEXT_GET_NT_ACL(handle, smb_fname,
650 result = gpfs_get_nfs4_acl(frame, smb_fname->base_name, &pacl);
653 status = smb_get_nt_acl_nfs4(handle->conn, smb_fname,
654 &config->nfs4_params,
655 security_info, mem_ctx, ppdesc,
662 DEBUG(10, ("retrying with posix acl...\n"));
663 status = posix_get_nt_acl(handle->conn, smb_fname,
664 security_info, mem_ctx, ppdesc);
669 /* GPFS ACL was not read, something wrong happened, error code is set in errno */
671 return map_nt_error_from_unix(errno);
674 static bool vfs_gpfs_nfs4_ace_to_gpfs_ace(SMB_ACE4PROP_T *nfs4_ace,
675 struct gpfs_ace_v4 *gace,
678 gace->aceType = nfs4_ace->aceType;
679 gace->aceFlags = nfs4_ace->aceFlags;
680 gace->aceMask = nfs4_ace->aceMask;
682 if (nfs4_ace->flags & SMB_ACE4_ID_SPECIAL) {
683 switch(nfs4_ace->who.special_id) {
684 case SMB_ACE4_WHO_EVERYONE:
685 gace->aceIFlags = ACE4_IFLAG_SPECIAL_ID;
686 gace->aceWho = ACE4_SPECIAL_EVERYONE;
688 case SMB_ACE4_WHO_OWNER:
690 * With GPFS it is not possible to deny ACL or
691 * attribute access to the owner. Setting an
692 * ACL with such an entry is not possible.
693 * Denying ACL or attribute access for the
694 * owner through a named ACL entry can be
695 * stored in an ACL, it is just not effective.
697 * Map this case to a named entry to allow at
698 * least setting this ACL, which will be
699 * enforced by the smbd permission check. Do
700 * not do this for an inheriting OWNER entry,
701 * as this represents a CREATOR OWNER ACE. The
702 * remaining limitation is that CREATOR OWNER
703 * cannot deny ACL or attribute access.
705 if (!nfs_ace_is_inherit(nfs4_ace) &&
707 SMB_ACE4_ACCESS_DENIED_ACE_TYPE &&
708 nfs4_ace->aceMask & (SMB_ACE4_READ_ATTRIBUTES|
709 SMB_ACE4_WRITE_ATTRIBUTES|
711 SMB_ACE4_WRITE_ACL)) {
713 gace->aceWho = owner_uid;
715 gace->aceIFlags = ACE4_IFLAG_SPECIAL_ID;
716 gace->aceWho = ACE4_SPECIAL_OWNER;
719 case SMB_ACE4_WHO_GROUP:
720 gace->aceIFlags = ACE4_IFLAG_SPECIAL_ID;
721 gace->aceWho = ACE4_SPECIAL_GROUP;
724 DBG_WARNING("Unsupported special_id %d\n",
725 nfs4_ace->who.special_id);
733 gace->aceWho = (nfs4_ace->aceFlags & SMB_ACE4_IDENTIFIER_GROUP) ?
734 nfs4_ace->who.gid : nfs4_ace->who.uid;
739 static struct gpfs_acl *vfs_gpfs_smbacl2gpfsacl(TALLOC_CTX *mem_ctx,
741 struct SMB4ACL_T *smbacl,
744 struct gpfs_acl *gacl;
745 gpfs_aclLen_t gacl_len;
746 struct SMB4ACE_T *smbace;
748 gacl_len = offsetof(gpfs_acl_t, ace_v4) + sizeof(unsigned int)
749 + smb_get_naces(smbacl) * sizeof(gpfs_ace_v4_t);
751 gacl = (struct gpfs_acl *)TALLOC_SIZE(mem_ctx, gacl_len);
753 DEBUG(0, ("talloc failed\n"));
758 gacl->acl_level = GPFS_ACL_LEVEL_BASE;
759 gacl->acl_version = GPFS_ACL_VERSION_NFS4;
760 gacl->acl_type = GPFS_ACL_TYPE_NFS4;
761 gacl->acl_nace = 0; /* change later... */
764 gacl->acl_level = GPFS_ACL_LEVEL_V4FLAGS;
765 sd2gpfs_control(smbacl4_get_controlflags(smbacl), gacl);
768 for (smbace=smb_first_ace4(smbacl); smbace!=NULL; smbace = smb_next_ace4(smbace)) {
769 struct gpfs_ace_v4 *gace = gpfs_ace_ptr(gacl, gacl->acl_nace);
770 SMB_ACE4PROP_T *aceprop = smb_get_ace4(smbace);
773 add_ace = vfs_gpfs_nfs4_ace_to_gpfs_ace(aceprop, gace,
774 fsp->fsp_name->st.st_ex_uid);
781 gacl->acl_len = (char *)gpfs_ace_ptr(gacl, gacl->acl_nace)
786 static bool gpfsacl_process_smbacl(vfs_handle_struct *handle,
788 struct SMB4ACL_T *smbacl)
791 struct gpfs_acl *gacl;
792 TALLOC_CTX *mem_ctx = talloc_tos();
794 gacl = vfs_gpfs_smbacl2gpfsacl(mem_ctx, fsp, smbacl, true);
795 if (gacl == NULL) { /* out of memory */
798 ret = gpfswrap_putacl(fsp->fsp_name->base_name,
799 GPFS_PUTACL_STRUCT | GPFS_ACL_SAMBA, gacl);
801 if ((ret != 0) && (errno == EINVAL)) {
802 DEBUG(10, ("Retry without nfs41 control flags\n"));
804 gacl = vfs_gpfs_smbacl2gpfsacl(mem_ctx, fsp, smbacl, false);
805 if (gacl == NULL) { /* out of memory */
808 ret = gpfswrap_putacl(fsp->fsp_name->base_name,
809 GPFS_PUTACL_STRUCT | GPFS_ACL_SAMBA,
814 DEBUG(8, ("gpfs_putacl failed with %s\n", strerror(errno)));
815 gpfs_dumpacl(8, gacl);
819 DEBUG(10, ("gpfs_putacl succeeded\n"));
823 static NTSTATUS gpfsacl_set_nt_acl_internal(vfs_handle_struct *handle, files_struct *fsp, uint32_t security_info_sent, const struct security_descriptor *psd)
825 struct gpfs_acl *acl;
826 NTSTATUS result = NT_STATUS_ACCESS_DENIED;
828 acl = (struct gpfs_acl*) vfs_gpfs_getacl(talloc_tos(),
829 fsp->fsp_name->base_name,
832 return map_nt_error_from_unix(errno);
835 if (acl->acl_version == GPFS_ACL_VERSION_NFS4) {
836 struct gpfs_config_data *config;
838 if (lp_parm_bool(fsp->conn->params->service, "gpfs",
839 "refuse_dacl_protected", false)
840 && (psd->type&SEC_DESC_DACL_PROTECTED)) {
841 DEBUG(2, ("Rejecting unsupported ACL with DACL_PROTECTED bit set\n"));
843 return NT_STATUS_NOT_SUPPORTED;
846 SMB_VFS_HANDLE_GET_DATA(handle, config,
847 struct gpfs_config_data,
848 return NT_STATUS_INTERNAL_ERROR);
850 result = smb_set_nt_acl_nfs4(handle,
851 fsp, &config->nfs4_params, security_info_sent, psd,
852 gpfsacl_process_smbacl);
853 } else { /* assume POSIX ACL - by default... */
854 result = set_nt_acl(fsp, security_info_sent, psd);
861 static NTSTATUS gpfsacl_fset_nt_acl(vfs_handle_struct *handle, files_struct *fsp, uint32_t security_info_sent, const struct security_descriptor *psd)
863 struct gpfs_config_data *config;
865 SMB_VFS_HANDLE_GET_DATA(handle, config,
866 struct gpfs_config_data,
867 return NT_STATUS_INTERNAL_ERROR);
870 return SMB_VFS_NEXT_FSET_NT_ACL(handle, fsp, security_info_sent, psd);
873 return gpfsacl_set_nt_acl_internal(handle, fsp, security_info_sent, psd);
876 static SMB_ACL_T gpfs2smb_acl(const struct gpfs_acl *pacl, TALLOC_CTX *mem_ctx)
881 result = sys_acl_init(mem_ctx);
882 if (result == NULL) {
887 result->count = pacl->acl_nace;
888 result->acl = talloc_realloc(result, result->acl, struct smb_acl_entry,
890 if (result->acl == NULL) {
896 for (i=0; i<pacl->acl_nace; i++) {
897 struct smb_acl_entry *ace = &result->acl[i];
898 const struct gpfs_ace_v1 *g_ace = &pacl->ace_v1[i];
900 DEBUG(10, ("Converting type %d id %lu perm %x\n",
901 (int)g_ace->ace_type, (unsigned long)g_ace->ace_who,
902 (int)g_ace->ace_perm));
904 switch (g_ace->ace_type) {
906 ace->a_type = SMB_ACL_USER;
907 ace->info.user.uid = (uid_t)g_ace->ace_who;
909 case GPFS_ACL_USER_OBJ:
910 ace->a_type = SMB_ACL_USER_OBJ;
913 ace->a_type = SMB_ACL_GROUP;
914 ace->info.group.gid = (gid_t)g_ace->ace_who;
916 case GPFS_ACL_GROUP_OBJ:
917 ace->a_type = SMB_ACL_GROUP_OBJ;
920 ace->a_type = SMB_ACL_OTHER;
923 ace->a_type = SMB_ACL_MASK;
926 DEBUG(10, ("Got invalid ace_type: %d\n",
934 ace->a_perm |= (g_ace->ace_perm & ACL_PERM_READ) ?
936 ace->a_perm |= (g_ace->ace_perm & ACL_PERM_WRITE) ?
938 ace->a_perm |= (g_ace->ace_perm & ACL_PERM_EXECUTE) ?
941 DEBUGADD(10, ("Converted to %d perm %x\n",
942 ace->a_type, ace->a_perm));
948 static SMB_ACL_T gpfsacl_get_posix_acl(const char *path, gpfs_aclType_t type,
951 struct gpfs_acl *pacl;
952 SMB_ACL_T result = NULL;
954 pacl = vfs_gpfs_getacl(talloc_tos(), path, false, type);
957 DEBUG(10, ("vfs_gpfs_getacl failed for %s with %s\n",
958 path, strerror(errno)));
965 if (pacl->acl_version != GPFS_ACL_VERSION_POSIX) {
966 DEBUG(10, ("Got acl version %d, expected %d\n",
967 pacl->acl_version, GPFS_ACL_VERSION_POSIX));
972 DEBUG(10, ("len: %d, level: %d, version: %d, nace: %d\n",
973 pacl->acl_len, pacl->acl_level, pacl->acl_version,
976 result = gpfs2smb_acl(pacl, mem_ctx);
977 if (result != NULL) {
992 static SMB_ACL_T gpfsacl_sys_acl_get_file(vfs_handle_struct *handle,
993 const struct smb_filename *smb_fname,
997 gpfs_aclType_t gpfs_type;
998 struct gpfs_config_data *config;
1000 SMB_VFS_HANDLE_GET_DATA(handle, config,
1001 struct gpfs_config_data,
1005 return SMB_VFS_NEXT_SYS_ACL_GET_FILE(handle, smb_fname,
1010 case SMB_ACL_TYPE_ACCESS:
1011 gpfs_type = GPFS_ACL_TYPE_ACCESS;
1013 case SMB_ACL_TYPE_DEFAULT:
1014 gpfs_type = GPFS_ACL_TYPE_DEFAULT;
1017 DEBUG(0, ("Got invalid type: %d\n", type));
1018 smb_panic("exiting");
1021 return gpfsacl_get_posix_acl(smb_fname->base_name, gpfs_type, mem_ctx);
1024 static SMB_ACL_T gpfsacl_sys_acl_get_fd(vfs_handle_struct *handle,
1026 TALLOC_CTX *mem_ctx)
1028 struct gpfs_config_data *config;
1030 SMB_VFS_HANDLE_GET_DATA(handle, config,
1031 struct gpfs_config_data,
1035 return SMB_VFS_NEXT_SYS_ACL_GET_FD(handle, fsp, mem_ctx);
1038 return gpfsacl_get_posix_acl(fsp->fsp_name->base_name,
1039 GPFS_ACL_TYPE_ACCESS, mem_ctx);
1042 static int gpfsacl_sys_acl_blob_get_file(vfs_handle_struct *handle,
1043 const struct smb_filename *smb_fname,
1044 TALLOC_CTX *mem_ctx,
1045 char **blob_description,
1048 struct gpfs_config_data *config;
1049 struct gpfs_opaque_acl *acl = NULL;
1052 const char *path_p = smb_fname->base_name;
1054 SMB_VFS_HANDLE_GET_DATA(handle, config,
1055 struct gpfs_config_data,
1059 return SMB_VFS_NEXT_SYS_ACL_BLOB_GET_FILE(handle, smb_fname,
1066 acl = (struct gpfs_opaque_acl *)
1067 vfs_gpfs_getacl(mem_ctx,
1070 GPFS_ACL_TYPE_NFS4);
1073 DEBUG(5, ("vfs_gpfs_getacl finished with errno %d: %s\n",
1074 errno, strerror(errno)));
1076 /* EINVAL means POSIX ACL, bail out on other cases */
1077 if (errno != EINVAL) {
1084 * file has NFSv4 ACL
1086 * we only need the actual ACL blob here
1087 * acl_version will always be NFS4 because we asked
1089 * acl_type is only used for POSIX ACLs
1091 aclblob.data = (uint8_t*) acl->acl_var_data;
1092 aclblob.length = acl->acl_buffer_len;
1094 *blob_description = talloc_strdup(mem_ctx, "gpfs_nfs4_acl");
1095 if (!*blob_description) {
1101 result = non_posix_sys_acl_blob_get_file_helper(handle, smb_fname,
1109 /* fall back to POSIX ACL */
1110 return posix_sys_acl_blob_get_file(handle, smb_fname, mem_ctx,
1111 blob_description, blob);
1114 static int gpfsacl_sys_acl_blob_get_fd(vfs_handle_struct *handle,
1116 TALLOC_CTX *mem_ctx,
1117 char **blob_description,
1120 struct gpfs_config_data *config;
1121 struct gpfs_opaque_acl *acl = NULL;
1125 SMB_VFS_HANDLE_GET_DATA(handle, config,
1126 struct gpfs_config_data,
1130 return SMB_VFS_NEXT_SYS_ACL_BLOB_GET_FD(handle, fsp, mem_ctx,
1131 blob_description, blob);
1135 acl = (struct gpfs_opaque_acl *) vfs_gpfs_getacl(mem_ctx,
1136 fsp->fsp_name->base_name,
1138 GPFS_ACL_TYPE_NFS4);
1141 DEBUG(5, ("vfs_gpfs_getacl finished with errno %d: %s\n",
1142 errno, strerror(errno)));
1144 /* EINVAL means POSIX ACL, bail out on other cases */
1145 if (errno != EINVAL) {
1152 * file has NFSv4 ACL
1154 * we only need the actual ACL blob here
1155 * acl_version will always be NFS4 because we asked
1157 * acl_type is only used for POSIX ACLs
1159 aclblob.data = (uint8_t*) acl->acl_var_data;
1160 aclblob.length = acl->acl_buffer_len;
1162 *blob_description = talloc_strdup(mem_ctx, "gpfs_nfs4_acl");
1163 if (!*blob_description) {
1169 result = non_posix_sys_acl_blob_get_fd_helper(handle, fsp,
1177 /* fall back to POSIX ACL */
1178 return posix_sys_acl_blob_get_fd(handle, fsp, mem_ctx,
1179 blob_description, blob);
1182 static struct gpfs_acl *smb2gpfs_acl(const SMB_ACL_T pacl,
1183 SMB_ACL_TYPE_T type)
1186 struct gpfs_acl *result;
1189 DEBUG(10, ("smb2gpfs_acl: Got ACL with %d entries\n", pacl->count));
1191 len = offsetof(gpfs_acl_t, ace_v1) + (pacl->count) *
1192 sizeof(gpfs_ace_v1_t);
1194 result = (struct gpfs_acl *)SMB_MALLOC(len);
1195 if (result == NULL) {
1200 result->acl_len = len;
1201 result->acl_level = 0;
1202 result->acl_version = GPFS_ACL_VERSION_POSIX;
1203 result->acl_type = (type == SMB_ACL_TYPE_DEFAULT) ?
1204 GPFS_ACL_TYPE_DEFAULT : GPFS_ACL_TYPE_ACCESS;
1205 result->acl_nace = pacl->count;
1207 for (i=0; i<pacl->count; i++) {
1208 const struct smb_acl_entry *ace = &pacl->acl[i];
1209 struct gpfs_ace_v1 *g_ace = &result->ace_v1[i];
1211 DEBUG(10, ("Converting type %d perm %x\n",
1212 (int)ace->a_type, (int)ace->a_perm));
1214 g_ace->ace_perm = 0;
1216 switch(ace->a_type) {
1218 g_ace->ace_type = GPFS_ACL_USER;
1219 g_ace->ace_who = (gpfs_uid_t)ace->info.user.uid;
1221 case SMB_ACL_USER_OBJ:
1222 g_ace->ace_type = GPFS_ACL_USER_OBJ;
1223 g_ace->ace_perm |= ACL_PERM_CONTROL;
1227 g_ace->ace_type = GPFS_ACL_GROUP;
1228 g_ace->ace_who = (gpfs_uid_t)ace->info.group.gid;
1230 case SMB_ACL_GROUP_OBJ:
1231 g_ace->ace_type = GPFS_ACL_GROUP_OBJ;
1235 g_ace->ace_type = GPFS_ACL_MASK;
1236 g_ace->ace_perm = 0x8f;
1240 g_ace->ace_type = GPFS_ACL_OTHER;
1244 DEBUG(10, ("Got invalid ace_type: %d\n", ace->a_type));
1250 g_ace->ace_perm |= (ace->a_perm & SMB_ACL_READ) ?
1252 g_ace->ace_perm |= (ace->a_perm & SMB_ACL_WRITE) ?
1254 g_ace->ace_perm |= (ace->a_perm & SMB_ACL_EXECUTE) ?
1255 ACL_PERM_EXECUTE : 0;
1257 DEBUGADD(10, ("Converted to %d id %d perm %x\n",
1258 g_ace->ace_type, g_ace->ace_who, g_ace->ace_perm));
1264 static int gpfsacl_sys_acl_set_file(vfs_handle_struct *handle,
1265 const struct smb_filename *smb_fname,
1266 SMB_ACL_TYPE_T type,
1269 struct gpfs_acl *gpfs_acl;
1271 struct gpfs_config_data *config;
1273 SMB_VFS_HANDLE_GET_DATA(handle, config,
1274 struct gpfs_config_data,
1278 return SMB_VFS_NEXT_SYS_ACL_SET_FILE(handle, smb_fname,
1282 gpfs_acl = smb2gpfs_acl(theacl, type);
1283 if (gpfs_acl == NULL) {
1287 result = gpfswrap_putacl(discard_const_p(char, smb_fname->base_name),
1288 GPFS_PUTACL_STRUCT|GPFS_ACL_SAMBA, gpfs_acl);
1290 SAFE_FREE(gpfs_acl);
1294 static int gpfsacl_sys_acl_set_fd(vfs_handle_struct *handle,
1298 struct gpfs_config_data *config;
1300 SMB_VFS_HANDLE_GET_DATA(handle, config,
1301 struct gpfs_config_data,
1305 return SMB_VFS_NEXT_SYS_ACL_SET_FD(handle, fsp, theacl);
1308 return gpfsacl_sys_acl_set_file(handle, fsp->fsp_name,
1309 SMB_ACL_TYPE_ACCESS, theacl);
1312 static int gpfsacl_sys_acl_delete_def_file(vfs_handle_struct *handle,
1313 const struct smb_filename *smb_fname)
1315 struct gpfs_config_data *config;
1317 SMB_VFS_HANDLE_GET_DATA(handle, config,
1318 struct gpfs_config_data,
1322 return SMB_VFS_NEXT_SYS_ACL_DELETE_DEF_FILE(handle, smb_fname);
1330 * Assumed: mode bits are shiftable and standard
1331 * Output: the new aceMask field for an smb nfs4 ace
1333 static uint32_t gpfsacl_mask_filter(uint32_t aceType, uint32_t aceMask, uint32_t rwx)
1335 const uint32_t posix_nfs4map[3] = {
1336 SMB_ACE4_EXECUTE, /* execute */
1337 SMB_ACE4_WRITE_DATA | SMB_ACE4_APPEND_DATA, /* write; GPFS specific */
1338 SMB_ACE4_READ_DATA /* read */
1341 uint32_t posix_mask = 0x01;
1345 for(i=0; i<3; i++) {
1346 nfs4_bits = posix_nfs4map[i];
1347 posix_bit = rwx & posix_mask;
1349 if (aceType==SMB_ACE4_ACCESS_ALLOWED_ACE_TYPE) {
1351 aceMask |= nfs4_bits;
1353 aceMask &= ~nfs4_bits;
1355 /* add deny bits when suitable */
1357 aceMask |= nfs4_bits;
1359 aceMask &= ~nfs4_bits;
1360 } /* other ace types are unexpected */
1368 static int gpfsacl_emu_chmod(vfs_handle_struct *handle,
1369 const char *path, mode_t mode)
1371 struct SMB4ACL_T *pacl = NULL;
1373 bool haveAllowEntry[SMB_ACE4_WHO_EVERYONE + 1] = {False, False, False, False};
1375 files_struct fake_fsp = { 0 }; /* TODO: rationalize parametrization */
1376 struct SMB4ACE_T *smbace;
1377 TALLOC_CTX *frame = talloc_stackframe();
1379 DEBUG(10, ("gpfsacl_emu_chmod invoked for %s mode %o\n", path, mode));
1381 result = gpfs_get_nfs4_acl(frame, path, &pacl);
1387 if (mode & ~(S_IRWXU | S_IRWXG | S_IRWXO)) {
1388 DEBUG(2, ("WARNING: cutting extra mode bits %o on %s\n", mode, path));
1391 for (smbace=smb_first_ace4(pacl); smbace!=NULL; smbace = smb_next_ace4(smbace)) {
1392 SMB_ACE4PROP_T *ace = smb_get_ace4(smbace);
1393 uint32_t specid = ace->who.special_id;
1395 if (ace->flags&SMB_ACE4_ID_SPECIAL &&
1396 ace->aceType<=SMB_ACE4_ACCESS_DENIED_ACE_TYPE &&
1397 specid <= SMB_ACE4_WHO_EVERYONE) {
1401 if (ace->aceType==SMB_ACE4_ACCESS_ALLOWED_ACE_TYPE)
1402 haveAllowEntry[specid] = True;
1404 /* mode >> 6 for @owner, mode >> 3 for @group,
1405 * mode >> 0 for @everyone */
1406 newMask = gpfsacl_mask_filter(ace->aceType, ace->aceMask,
1407 mode >> ((SMB_ACE4_WHO_EVERYONE - specid) * 3));
1408 if (ace->aceMask!=newMask) {
1409 DEBUG(10, ("ace changed for %s (%o -> %o) id=%d\n",
1410 path, ace->aceMask, newMask, specid));
1412 ace->aceMask = newMask;
1416 /* make sure we have at least ALLOW entries
1417 * for all the 3 special ids (@EVERYONE, @OWNER, @GROUP)
1420 for(i = SMB_ACE4_WHO_OWNER; i<=SMB_ACE4_WHO_EVERYONE; i++) {
1421 SMB_ACE4PROP_T ace = { 0 };
1423 if (haveAllowEntry[i]==True)
1426 ace.aceType = SMB_ACE4_ACCESS_ALLOWED_ACE_TYPE;
1427 ace.flags |= SMB_ACE4_ID_SPECIAL;
1428 ace.who.special_id = i;
1430 if (i==SMB_ACE4_WHO_GROUP) /* not sure it's necessary... */
1431 ace.aceFlags |= SMB_ACE4_IDENTIFIER_GROUP;
1433 ace.aceMask = gpfsacl_mask_filter(ace.aceType, ace.aceMask,
1434 mode >> ((SMB_ACE4_WHO_EVERYONE - i) * 3));
1436 /* don't add unnecessary aces */
1440 /* we add it to the END - as windows expects allow aces */
1441 smb_add_ace4(pacl, &ace);
1442 DEBUG(10, ("Added ALLOW ace for %s, mode=%o, id=%d, aceMask=%x\n",
1443 path, mode, i, ace.aceMask));
1446 /* don't add complementary DENY ACEs here */
1447 fake_fsp.fsp_name = synthetic_smb_fname(
1448 frame, path, NULL, NULL, 0);
1449 if (fake_fsp.fsp_name == NULL) {
1455 if (gpfsacl_process_smbacl(handle, &fake_fsp, pacl) == False) {
1461 return 0; /* ok for [f]chmod */
1464 static int vfs_gpfs_chmod(vfs_handle_struct *handle,
1465 const struct smb_filename *smb_fname,
1468 struct smb_filename *smb_fname_cpath;
1471 smb_fname_cpath = cp_smb_filename(talloc_tos(), smb_fname);
1472 if (smb_fname_cpath == NULL) {
1477 if (SMB_VFS_NEXT_STAT(handle, smb_fname_cpath) != 0) {
1478 TALLOC_FREE(smb_fname_cpath);
1482 /* avoid chmod() if possible, to preserve acls */
1483 if ((smb_fname_cpath->st.st_ex_mode & ~S_IFMT) == mode) {
1484 TALLOC_FREE(smb_fname_cpath);
1488 rc = gpfsacl_emu_chmod(handle, smb_fname->base_name, mode);
1490 return SMB_VFS_NEXT_CHMOD(handle, smb_fname, mode);
1492 TALLOC_FREE(smb_fname_cpath);
1496 static int vfs_gpfs_fchmod(vfs_handle_struct *handle, files_struct *fsp, mode_t mode)
1501 if (SMB_VFS_NEXT_FSTAT(handle, fsp, &st) != 0) {
1505 /* avoid chmod() if possible, to preserve acls */
1506 if ((st.st_ex_mode & ~S_IFMT) == mode) {
1510 rc = gpfsacl_emu_chmod(handle, fsp->fsp_name->base_name,
1513 return SMB_VFS_NEXT_FCHMOD(handle, fsp, mode);
1517 static uint32_t vfs_gpfs_winattrs_to_dosmode(unsigned int winattrs)
1519 uint32_t dosmode = 0;
1521 if (winattrs & GPFS_WINATTR_ARCHIVE){
1522 dosmode |= FILE_ATTRIBUTE_ARCHIVE;
1524 if (winattrs & GPFS_WINATTR_HIDDEN){
1525 dosmode |= FILE_ATTRIBUTE_HIDDEN;
1527 if (winattrs & GPFS_WINATTR_SYSTEM){
1528 dosmode |= FILE_ATTRIBUTE_SYSTEM;
1530 if (winattrs & GPFS_WINATTR_READONLY){
1531 dosmode |= FILE_ATTRIBUTE_READONLY;
1533 if (winattrs & GPFS_WINATTR_SPARSE_FILE) {
1534 dosmode |= FILE_ATTRIBUTE_SPARSE;
1536 if (winattrs & GPFS_WINATTR_OFFLINE) {
1537 dosmode |= FILE_ATTRIBUTE_OFFLINE;
1543 static unsigned int vfs_gpfs_dosmode_to_winattrs(uint32_t dosmode)
1545 unsigned int winattrs = 0;
1547 if (dosmode & FILE_ATTRIBUTE_ARCHIVE){
1548 winattrs |= GPFS_WINATTR_ARCHIVE;
1550 if (dosmode & FILE_ATTRIBUTE_HIDDEN){
1551 winattrs |= GPFS_WINATTR_HIDDEN;
1553 if (dosmode & FILE_ATTRIBUTE_SYSTEM){
1554 winattrs |= GPFS_WINATTR_SYSTEM;
1556 if (dosmode & FILE_ATTRIBUTE_READONLY){
1557 winattrs |= GPFS_WINATTR_READONLY;
1559 if (dosmode & FILE_ATTRIBUTE_SPARSE) {
1560 winattrs |= GPFS_WINATTR_SPARSE_FILE;
1562 if (dosmode & FILE_ATTRIBUTE_OFFLINE) {
1563 winattrs |= GPFS_WINATTR_OFFLINE;
1569 static int get_dos_attr_with_capability(struct smb_filename *smb_fname,
1570 struct gpfs_winattr *attr)
1572 int saved_errno = 0;
1576 * According to MS-FSA 2.1.5.1.2.1 "Algorithm to Check Access to an
1577 * Existing File" FILE_LIST_DIRECTORY on a directory implies
1578 * FILE_READ_ATTRIBUTES for directory entries. Being able to stat() a
1579 * file implies FILE_LIST_DIRECTORY for the directory containing the
1583 if (!VALID_STAT(smb_fname->st)) {
1585 * Safety net: dos_mode() already checks this, but as we set
1586 * DAC_OVERRIDE_CAPABILITY based on this, add an additional
1589 DBG_ERR("Rejecting DAC override, invalid stat [%s]\n",
1590 smb_fname_str_dbg(smb_fname));
1595 set_effective_capability(DAC_OVERRIDE_CAPABILITY);
1597 ret = gpfswrap_get_winattrs_path(smb_fname->base_name, attr);
1599 saved_errno = errno;
1602 drop_effective_capability(DAC_OVERRIDE_CAPABILITY);
1604 if (saved_errno != 0) {
1605 errno = saved_errno;
1610 static NTSTATUS vfs_gpfs_get_dos_attributes(struct vfs_handle_struct *handle,
1611 struct smb_filename *smb_fname,
1614 struct gpfs_config_data *config;
1615 struct gpfs_winattr attrs = { };
1618 SMB_VFS_HANDLE_GET_DATA(handle, config,
1619 struct gpfs_config_data,
1620 return NT_STATUS_INTERNAL_ERROR);
1622 if (!config->winattr) {
1623 return SMB_VFS_NEXT_GET_DOS_ATTRIBUTES(handle,
1624 smb_fname, dosmode);
1627 ret = gpfswrap_get_winattrs_path(smb_fname->base_name, &attrs);
1628 if (ret == -1 && errno == ENOSYS) {
1629 return SMB_VFS_NEXT_GET_DOS_ATTRIBUTES(handle, smb_fname,
1632 if (ret == -1 && errno == EACCES) {
1633 ret = get_dos_attr_with_capability(smb_fname, &attrs);
1636 if (ret == -1 && errno == EBADF) {
1638 * Returned for directory listings in gpfs root for
1639 * .. entry which steps out of gpfs.
1641 DBG_DEBUG("Getting winattrs for %s returned EBADF.\n",
1642 smb_fname->base_name);
1643 return map_nt_error_from_unix(errno);
1644 } else if (ret == -1) {
1645 DBG_WARNING("Getting winattrs failed for %s: %s\n",
1646 smb_fname->base_name, strerror(errno));
1647 return map_nt_error_from_unix(errno);
1650 *dosmode |= vfs_gpfs_winattrs_to_dosmode(attrs.winAttrs);
1651 smb_fname->st.st_ex_iflags &= ~ST_EX_IFLAG_CALCULATED_BTIME;
1652 smb_fname->st.st_ex_btime.tv_sec = attrs.creationTime.tv_sec;
1653 smb_fname->st.st_ex_btime.tv_nsec = attrs.creationTime.tv_nsec;
1655 return NT_STATUS_OK;
1658 static NTSTATUS vfs_gpfs_fget_dos_attributes(struct vfs_handle_struct *handle,
1659 struct files_struct *fsp,
1662 struct gpfs_config_data *config;
1663 struct gpfs_winattr attrs = { };
1666 SMB_VFS_HANDLE_GET_DATA(handle, config,
1667 struct gpfs_config_data,
1668 return NT_STATUS_INTERNAL_ERROR);
1670 if (!config->winattr) {
1671 return SMB_VFS_NEXT_FGET_DOS_ATTRIBUTES(handle, fsp, dosmode);
1674 ret = gpfswrap_get_winattrs(fsp->fh->fd, &attrs);
1675 if (ret == -1 && errno == ENOSYS) {
1676 return SMB_VFS_NEXT_FGET_DOS_ATTRIBUTES(handle, fsp, dosmode);
1679 if (ret == -1 && errno == EACCES) {
1680 int saved_errno = 0;
1683 * According to MS-FSA 2.1.5.1.2.1 "Algorithm to Check Access to
1684 * an Existing File" FILE_LIST_DIRECTORY on a directory implies
1685 * FILE_READ_ATTRIBUTES for directory entries. Being able to
1686 * open a file implies FILE_LIST_DIRECTORY.
1689 set_effective_capability(DAC_OVERRIDE_CAPABILITY);
1691 ret = gpfswrap_get_winattrs(fsp->fh->fd, &attrs);
1693 saved_errno = errno;
1696 drop_effective_capability(DAC_OVERRIDE_CAPABILITY);
1698 if (saved_errno != 0) {
1699 errno = saved_errno;
1704 DBG_WARNING("Getting winattrs failed for %s: %s\n",
1705 fsp->fsp_name->base_name, strerror(errno));
1706 return map_nt_error_from_unix(errno);
1709 *dosmode |= vfs_gpfs_winattrs_to_dosmode(attrs.winAttrs);
1710 fsp->fsp_name->st.st_ex_iflags &= ~ST_EX_IFLAG_CALCULATED_BTIME;
1711 fsp->fsp_name->st.st_ex_btime.tv_sec = attrs.creationTime.tv_sec;
1712 fsp->fsp_name->st.st_ex_btime.tv_nsec = attrs.creationTime.tv_nsec;
1714 return NT_STATUS_OK;
1717 static NTSTATUS vfs_gpfs_set_dos_attributes(struct vfs_handle_struct *handle,
1718 const struct smb_filename *smb_fname,
1721 struct gpfs_config_data *config;
1722 struct gpfs_winattr attrs = { };
1725 SMB_VFS_HANDLE_GET_DATA(handle, config,
1726 struct gpfs_config_data,
1727 return NT_STATUS_INTERNAL_ERROR);
1729 if (!config->winattr) {
1730 return SMB_VFS_NEXT_SET_DOS_ATTRIBUTES(handle,
1731 smb_fname, dosmode);
1734 attrs.winAttrs = vfs_gpfs_dosmode_to_winattrs(dosmode);
1735 ret = gpfswrap_set_winattrs_path(smb_fname->base_name,
1736 GPFS_WINATTR_SET_ATTRS, &attrs);
1738 if (ret == -1 && errno == ENOSYS) {
1739 return SMB_VFS_NEXT_SET_DOS_ATTRIBUTES(handle,
1740 smb_fname, dosmode);
1744 DBG_WARNING("Setting winattrs failed for %s: %s\n",
1745 smb_fname->base_name, strerror(errno));
1746 return map_nt_error_from_unix(errno);
1749 return NT_STATUS_OK;
1752 static NTSTATUS vfs_gpfs_fset_dos_attributes(struct vfs_handle_struct *handle,
1753 struct files_struct *fsp,
1756 struct gpfs_config_data *config;
1757 struct gpfs_winattr attrs = { };
1760 SMB_VFS_HANDLE_GET_DATA(handle, config,
1761 struct gpfs_config_data,
1762 return NT_STATUS_INTERNAL_ERROR);
1764 if (!config->winattr) {
1765 return SMB_VFS_NEXT_FSET_DOS_ATTRIBUTES(handle, fsp, dosmode);
1768 attrs.winAttrs = vfs_gpfs_dosmode_to_winattrs(dosmode);
1769 ret = gpfswrap_set_winattrs(fsp->fh->fd,
1770 GPFS_WINATTR_SET_ATTRS, &attrs);
1772 if (ret == -1 && errno == ENOSYS) {
1773 return SMB_VFS_NEXT_FSET_DOS_ATTRIBUTES(handle, fsp, dosmode);
1777 DBG_WARNING("Setting winattrs failed for %s: %s\n",
1778 fsp->fsp_name->base_name, strerror(errno));
1779 return map_nt_error_from_unix(errno);
1782 return NT_STATUS_OK;
1785 static int stat_with_capability(struct vfs_handle_struct *handle,
1786 struct smb_filename *smb_fname, int flag)
1788 #if defined(HAVE_FSTATAT)
1792 const char *rel_name = NULL;
1796 b = parent_dirname(talloc_tos(), smb_fname->base_name,
1797 &dir_name, &rel_name);
1803 fd = open(dir_name, O_RDONLY, 0);
1804 TALLOC_FREE(dir_name);
1809 set_effective_capability(DAC_OVERRIDE_CAPABILITY);
1810 ret = fstatat(fd, rel_name, &st, flag);
1811 drop_effective_capability(DAC_OVERRIDE_CAPABILITY);
1816 init_stat_ex_from_stat(
1817 &smb_fname->st, &st,
1818 lp_fake_directory_create_times(SNUM(handle->conn)));
1827 static int vfs_gpfs_stat(struct vfs_handle_struct *handle,
1828 struct smb_filename *smb_fname)
1831 struct gpfs_config_data *config;
1833 SMB_VFS_HANDLE_GET_DATA(handle, config,
1834 struct gpfs_config_data,
1837 ret = SMB_VFS_NEXT_STAT(handle, smb_fname);
1838 if (ret == -1 && errno == EACCES) {
1839 DEBUG(10, ("Trying stat with capability for %s\n",
1840 smb_fname->base_name));
1841 ret = stat_with_capability(handle, smb_fname, 0);
1846 static int vfs_gpfs_lstat(struct vfs_handle_struct *handle,
1847 struct smb_filename *smb_fname)
1850 struct gpfs_config_data *config;
1852 SMB_VFS_HANDLE_GET_DATA(handle, config,
1853 struct gpfs_config_data,
1856 ret = SMB_VFS_NEXT_LSTAT(handle, smb_fname);
1857 if (ret == -1 && errno == EACCES) {
1858 DEBUG(10, ("Trying lstat with capability for %s\n",
1859 smb_fname->base_name));
1860 ret = stat_with_capability(handle, smb_fname,
1861 AT_SYMLINK_NOFOLLOW);
1866 static void timespec_to_gpfs_time(struct timespec ts, gpfs_timestruc_t *gt,
1867 int idx, int *flags)
1869 if (!null_timespec(ts)) {
1871 gt[idx].tv_sec = ts.tv_sec;
1872 gt[idx].tv_nsec = ts.tv_nsec;
1873 DEBUG(10, ("Setting GPFS time %d, flags 0x%x\n", idx, *flags));
1877 static int smbd_gpfs_set_times_path(char *path, struct smb_file_time *ft)
1879 gpfs_timestruc_t gpfs_times[4];
1883 ZERO_ARRAY(gpfs_times);
1884 timespec_to_gpfs_time(ft->atime, gpfs_times, 0, &flags);
1885 timespec_to_gpfs_time(ft->mtime, gpfs_times, 1, &flags);
1886 /* No good mapping from LastChangeTime to ctime, not storing */
1887 timespec_to_gpfs_time(ft->create_time, gpfs_times, 3, &flags);
1890 DEBUG(10, ("nothing to do, return to avoid EINVAL\n"));
1894 rc = gpfswrap_set_times_path(path, flags, gpfs_times);
1896 if (rc != 0 && errno != ENOSYS) {
1897 DEBUG(1,("gpfs_set_times() returned with error %s\n",
1904 static int vfs_gpfs_ntimes(struct vfs_handle_struct *handle,
1905 const struct smb_filename *smb_fname,
1906 struct smb_file_time *ft)
1909 struct gpfs_winattr attrs;
1911 struct gpfs_config_data *config;
1913 SMB_VFS_HANDLE_GET_DATA(handle, config,
1914 struct gpfs_config_data,
1917 /* Try to use gpfs_set_times if it is enabled and available */
1918 if (config->settimes) {
1919 ret = smbd_gpfs_set_times_path(smb_fname->base_name, ft);
1921 if (ret == 0 || (ret == -1 && errno != ENOSYS)) {
1926 DEBUG(10,("gpfs_set_times() not available or disabled, "
1927 "use ntimes and winattr\n"));
1929 ret = SMB_VFS_NEXT_NTIMES(handle, smb_fname, ft);
1931 /* don't complain if access was denied */
1932 if (errno != EPERM && errno != EACCES) {
1933 DEBUG(1,("vfs_gpfs_ntimes: SMB_VFS_NEXT_NTIMES failed:"
1934 "%s", strerror(errno)));
1939 if(null_timespec(ft->create_time)){
1940 DEBUG(10,("vfs_gpfs_ntimes:Create Time is NULL\n"));
1944 if (!config->winattr) {
1949 attrs.creationTime.tv_sec = ft->create_time.tv_sec;
1950 attrs.creationTime.tv_nsec = ft->create_time.tv_nsec;
1952 ret = gpfswrap_set_winattrs_path(smb_fname->base_name,
1953 GPFS_WINATTR_SET_CREATION_TIME,
1955 if(ret == -1 && errno != ENOSYS){
1956 DEBUG(1,("vfs_gpfs_ntimes: set GPFS ntimes failed %d\n",ret));
1963 static int vfs_gpfs_fallocate(struct vfs_handle_struct *handle,
1964 struct files_struct *fsp, uint32_t mode,
1965 off_t offset, off_t len)
1967 if (mode == (VFS_FALLOCATE_FL_PUNCH_HOLE|VFS_FALLOCATE_FL_KEEP_SIZE) &&
1969 lp_strict_allocate(SNUM(fsp->conn))) {
1971 * This is from a ZERO_DATA request on a non-sparse
1972 * file. GPFS does not support FL_KEEP_SIZE and thus
1973 * cannot fill the whole again in the subsequent
1974 * fallocate(FL_KEEP_SIZE). Deny this FL_PUNCH_HOLE
1975 * call to not end up with a hole in a non-sparse
1982 return SMB_VFS_NEXT_FALLOCATE(handle, fsp, mode, offset, len);
1985 static int vfs_gpfs_ftruncate(vfs_handle_struct *handle, files_struct *fsp,
1989 struct gpfs_config_data *config;
1991 SMB_VFS_HANDLE_GET_DATA(handle, config,
1992 struct gpfs_config_data,
1995 if (!config->ftruncate) {
1996 return SMB_VFS_NEXT_FTRUNCATE(handle, fsp, len);
1999 result = gpfswrap_ftruncate(fsp->fh->fd, len);
2000 if ((result == -1) && (errno == ENOSYS)) {
2001 return SMB_VFS_NEXT_FTRUNCATE(handle, fsp, len);
2006 static bool vfs_gpfs_is_offline(struct vfs_handle_struct *handle,
2007 const struct smb_filename *fname,
2008 SMB_STRUCT_STAT *sbuf)
2010 struct gpfs_winattr attrs;
2011 struct gpfs_config_data *config;
2014 SMB_VFS_HANDLE_GET_DATA(handle, config,
2015 struct gpfs_config_data,
2018 if (!config->winattr) {
2022 ret = gpfswrap_get_winattrs_path(fname->base_name, &attrs);
2027 if ((attrs.winAttrs & GPFS_WINATTR_OFFLINE) != 0) {
2028 DBG_DEBUG("%s is offline\n", fname->base_name);
2032 DBG_DEBUG("%s is online\n", fname->base_name);
2036 static bool vfs_gpfs_fsp_is_offline(struct vfs_handle_struct *handle,
2037 struct files_struct *fsp)
2039 struct gpfs_fsp_extension *ext;
2041 ext = VFS_FETCH_FSP_EXTENSION(handle, fsp);
2044 * Something bad happened, always ask.
2046 return vfs_gpfs_is_offline(handle, fsp->fsp_name,
2047 &fsp->fsp_name->st);
2052 * As long as it's offline, ask.
2054 ext->offline = vfs_gpfs_is_offline(handle, fsp->fsp_name,
2055 &fsp->fsp_name->st);
2058 return ext->offline;
2061 static bool vfs_gpfs_aio_force(struct vfs_handle_struct *handle,
2062 struct files_struct *fsp)
2064 return vfs_gpfs_fsp_is_offline(handle, fsp);
2067 static ssize_t vfs_gpfs_sendfile(vfs_handle_struct *handle, int tofd,
2068 files_struct *fsp, const DATA_BLOB *hdr,
2069 off_t offset, size_t n)
2071 if (vfs_gpfs_fsp_is_offline(handle, fsp)) {
2075 return SMB_VFS_NEXT_SENDFILE(handle, tofd, fsp, hdr, offset, n);
2078 static int vfs_gpfs_connect(struct vfs_handle_struct *handle,
2079 const char *service, const char *user)
2081 struct gpfs_config_data *config;
2085 gpfswrap_lib_init(0);
2087 config = talloc_zero(handle->conn, struct gpfs_config_data);
2089 DEBUG(0, ("talloc_zero() failed\n"));
2094 ret = SMB_VFS_NEXT_CONNECT(handle, service, user);
2096 TALLOC_FREE(config);
2100 check_fstype = lp_parm_bool(SNUM(handle->conn), "gpfs",
2101 "check_fstype", true);
2103 if (check_fstype && !IS_IPC(handle->conn)) {
2104 const char *connectpath = handle->conn->connectpath;
2105 struct statfs buf = { 0 };
2107 ret = statfs(connectpath, &buf);
2109 DBG_ERR("statfs failed for share %s at path %s: %s\n",
2110 service, connectpath, strerror(errno));
2111 TALLOC_FREE(config);
2115 if (buf.f_type != GPFS_SUPER_MAGIC) {
2116 DBG_ERR("SMB share %s, path %s not in GPFS file system."
2117 " statfs magic: 0x%jx\n",
2120 (uintmax_t)buf.f_type);
2122 TALLOC_FREE(config);
2127 ret = smbacl4_get_vfs_params(handle->conn, &config->nfs4_params);
2129 TALLOC_FREE(config);
2133 config->sharemodes = lp_parm_bool(SNUM(handle->conn), "gpfs",
2134 "sharemodes", true);
2136 config->leases = lp_parm_bool(SNUM(handle->conn), "gpfs",
2139 config->hsm = lp_parm_bool(SNUM(handle->conn), "gpfs",
2142 config->syncio = lp_parm_bool(SNUM(handle->conn), "gpfs",
2145 config->winattr = lp_parm_bool(SNUM(handle->conn), "gpfs",
2148 config->ftruncate = lp_parm_bool(SNUM(handle->conn), "gpfs",
2151 config->getrealfilename = lp_parm_bool(SNUM(handle->conn), "gpfs",
2152 "getrealfilename", true);
2154 config->dfreequota = lp_parm_bool(SNUM(handle->conn), "gpfs",
2155 "dfreequota", false);
2157 config->acl = lp_parm_bool(SNUM(handle->conn), "gpfs", "acl", true);
2159 config->settimes = lp_parm_bool(SNUM(handle->conn), "gpfs",
2161 config->recalls = lp_parm_bool(SNUM(handle->conn), "gpfs",
2164 SMB_VFS_HANDLE_SET_DATA(handle, config,
2165 NULL, struct gpfs_config_data,
2168 if (config->leases) {
2170 * GPFS lease code is based on kernel oplock code
2171 * so make sure it is turned on
2173 if (!lp_kernel_oplocks(SNUM(handle->conn))) {
2174 DEBUG(5, ("Enabling kernel oplocks for "
2175 "gpfs:leases to work\n"));
2176 lp_do_parameter(SNUM(handle->conn), "kernel oplocks",
2181 * as the kernel does not properly support Level II oplocks
2182 * and GPFS leases code is based on kernel infrastructure, we
2183 * need to turn off Level II oplocks if gpfs:leases is enabled
2185 if (lp_level2_oplocks(SNUM(handle->conn))) {
2186 DEBUG(5, ("gpfs:leases are enabled, disabling "
2187 "Level II oplocks\n"));
2188 lp_do_parameter(SNUM(handle->conn), "level2 oplocks",
2194 * Unless we have an async implementation of get_dos_attributes turn
2197 lp_do_parameter(SNUM(handle->conn), "smbd async dosmode", "false");
2202 static int get_gpfs_quota(const char *pathname, int type, int id,
2203 struct gpfs_quotaInfo *qi)
2207 ret = gpfswrap_quotactl(discard_const_p(char, pathname),
2208 GPFS_QCMD(Q_GETQUOTA, type), id, qi);
2211 if (errno == GPFS_E_NO_QUOTA_INST) {
2212 DEBUG(10, ("Quotas disabled on GPFS filesystem.\n"));
2213 } else if (errno != ENOSYS) {
2214 DEBUG(0, ("Get quota failed, type %d, id, %d, "
2215 "errno %d.\n", type, id, errno));
2221 DEBUG(10, ("quota type %d, id %d, blk u:%lld h:%lld s:%lld gt:%u\n",
2222 type, id, qi->blockUsage, qi->blockHardLimit,
2223 qi->blockSoftLimit, qi->blockGraceTime));
2228 static void vfs_gpfs_disk_free_quota(struct gpfs_quotaInfo qi, time_t cur_time,
2229 uint64_t *dfree, uint64_t *dsize)
2231 uint64_t usage, limit;
2234 * The quota reporting is done in units of 1024 byte blocks, but
2235 * sys_fsusage uses units of 512 byte blocks, adjust the block number
2236 * accordingly. Also filter possibly negative usage counts from gpfs.
2238 usage = qi.blockUsage < 0 ? 0 : (uint64_t)qi.blockUsage * 2;
2239 limit = (uint64_t)qi.blockHardLimit * 2;
2242 * When the grace time for the exceeded soft block quota has been
2243 * exceeded, the soft block quota becomes an additional hard limit.
2245 if (qi.blockSoftLimit &&
2246 qi.blockGraceTime && cur_time > qi.blockGraceTime) {
2247 /* report disk as full */
2249 *dsize = MIN(*dsize, usage);
2252 if (!qi.blockHardLimit)
2255 if (usage >= limit) {
2256 /* report disk as full */
2258 *dsize = MIN(*dsize, usage);
2261 /* limit has not been reached, determine "free space" */
2262 *dfree = MIN(*dfree, limit - usage);
2263 *dsize = MIN(*dsize, limit);
2267 static uint64_t vfs_gpfs_disk_free(vfs_handle_struct *handle,
2268 const struct smb_filename *smb_fname,
2273 struct security_unix_token *utok;
2274 struct gpfs_quotaInfo qi_user = { 0 }, qi_group = { 0 };
2275 struct gpfs_config_data *config;
2279 SMB_VFS_HANDLE_GET_DATA(handle, config, struct gpfs_config_data,
2280 return (uint64_t)-1);
2281 if (!config->dfreequota) {
2282 return SMB_VFS_NEXT_DISK_FREE(handle, smb_fname,
2283 bsize, dfree, dsize);
2286 err = sys_fsusage(smb_fname->base_name, dfree, dsize);
2288 DEBUG (0, ("Could not get fs usage, errno %d\n", errno));
2289 return SMB_VFS_NEXT_DISK_FREE(handle, smb_fname,
2290 bsize, dfree, dsize);
2293 /* sys_fsusage returns units of 512 bytes */
2296 DEBUG(10, ("fs dfree %llu, dsize %llu\n",
2297 (unsigned long long)*dfree, (unsigned long long)*dsize));
2299 utok = handle->conn->session_info->unix_token;
2301 err = get_gpfs_quota(smb_fname->base_name,
2302 GPFS_USRQUOTA, utok->uid, &qi_user);
2304 return SMB_VFS_NEXT_DISK_FREE(handle, smb_fname,
2305 bsize, dfree, dsize);
2309 * If new files created under this folder get this folder's
2310 * GID, then available space is governed by the quota of the
2311 * folder's GID, not the primary group of the creating user.
2313 if (VALID_STAT(smb_fname->st) &&
2314 S_ISDIR(smb_fname->st.st_ex_mode) &&
2315 smb_fname->st.st_ex_mode & S_ISGID) {
2317 err = get_gpfs_quota(smb_fname->base_name, GPFS_GRPQUOTA,
2318 smb_fname->st.st_ex_gid, &qi_group);
2322 err = get_gpfs_quota(smb_fname->base_name, GPFS_GRPQUOTA,
2323 utok->gid, &qi_group);
2327 return SMB_VFS_NEXT_DISK_FREE(handle, smb_fname,
2328 bsize, dfree, dsize);
2331 cur_time = time(NULL);
2333 /* Adjust free space and size according to quota limits. */
2334 vfs_gpfs_disk_free_quota(qi_user, cur_time, dfree, dsize);
2335 vfs_gpfs_disk_free_quota(qi_group, cur_time, dfree, dsize);
2340 static int vfs_gpfs_get_quota(vfs_handle_struct *handle,
2341 const struct smb_filename *smb_fname,
2342 enum SMB_QUOTA_TYPE qtype,
2348 * User/group quota are being used for disk-free
2349 * determination, which in this module is done directly
2350 * by the disk-free function. It's important that this
2351 * module does not return wrong quota values by mistake,
2352 * which would modify the correct values set by disk-free.
2353 * User/group quota are also being used for processing
2354 * NT_TRANSACT_GET_USER_QUOTA in smb1 protocol, which is
2355 * currently not supported by this module.
2357 case SMB_USER_QUOTA_TYPE:
2358 case SMB_GROUP_QUOTA_TYPE:
2362 return SMB_VFS_NEXT_GET_QUOTA(handle, smb_fname,
2367 static uint32_t vfs_gpfs_capabilities(struct vfs_handle_struct *handle,
2368 enum timestamp_set_resolution *p_ts_res)
2370 struct gpfs_config_data *config;
2373 next = SMB_VFS_NEXT_FS_CAPABILITIES(handle, p_ts_res);
2375 SMB_VFS_HANDLE_GET_DATA(handle, config,
2376 struct gpfs_config_data,
2380 next |= FILE_SUPPORTS_REMOTE_STORAGE;
2385 static int vfs_gpfs_open(struct vfs_handle_struct *handle,
2386 struct smb_filename *smb_fname, files_struct *fsp,
2387 int flags, mode_t mode)
2389 struct gpfs_config_data *config;
2391 struct gpfs_fsp_extension *ext;
2393 SMB_VFS_HANDLE_GET_DATA(handle, config,
2394 struct gpfs_config_data,
2397 if (config->hsm && !config->recalls &&
2398 vfs_gpfs_fsp_is_offline(handle, fsp)) {
2399 DEBUG(10, ("Refusing access to offline file %s\n",
2405 if (config->syncio) {
2409 ext = VFS_ADD_FSP_EXTENSION(handle, fsp, struct gpfs_fsp_extension,
2417 * Assume the file is offline until gpfs tells us it's online.
2419 *ext = (struct gpfs_fsp_extension) { .offline = true };
2421 ret = SMB_VFS_NEXT_OPEN(handle, smb_fname, fsp, flags, mode);
2423 VFS_REMOVE_FSP_EXTENSION(handle, fsp);
2428 static ssize_t vfs_gpfs_pread(vfs_handle_struct *handle, files_struct *fsp,
2429 void *data, size_t n, off_t offset)
2434 was_offline = vfs_gpfs_fsp_is_offline(handle, fsp);
2436 ret = SMB_VFS_NEXT_PREAD(handle, fsp, data, n, offset);
2438 if ((ret != -1) && was_offline) {
2439 notify_fname(handle->conn, NOTIFY_ACTION_MODIFIED,
2440 FILE_NOTIFY_CHANGE_ATTRIBUTES,
2441 fsp->fsp_name->base_name);
2447 struct vfs_gpfs_pread_state {
2448 struct files_struct *fsp;
2451 struct vfs_aio_state vfs_aio_state;
2454 static void vfs_gpfs_pread_done(struct tevent_req *subreq);
2456 static struct tevent_req *vfs_gpfs_pread_send(struct vfs_handle_struct *handle,
2457 TALLOC_CTX *mem_ctx,
2458 struct tevent_context *ev,
2459 struct files_struct *fsp,
2460 void *data, size_t n,
2463 struct tevent_req *req, *subreq;
2464 struct vfs_gpfs_pread_state *state;
2466 req = tevent_req_create(mem_ctx, &state, struct vfs_gpfs_pread_state);
2470 state->was_offline = vfs_gpfs_fsp_is_offline(handle, fsp);
2472 subreq = SMB_VFS_NEXT_PREAD_SEND(state, ev, handle, fsp, data,
2474 if (tevent_req_nomem(subreq, req)) {
2475 return tevent_req_post(req, ev);
2477 tevent_req_set_callback(subreq, vfs_gpfs_pread_done, req);
2481 static void vfs_gpfs_pread_done(struct tevent_req *subreq)
2483 struct tevent_req *req = tevent_req_callback_data(
2484 subreq, struct tevent_req);
2485 struct vfs_gpfs_pread_state *state = tevent_req_data(
2486 req, struct vfs_gpfs_pread_state);
2488 state->ret = SMB_VFS_PREAD_RECV(subreq, &state->vfs_aio_state);
2489 TALLOC_FREE(subreq);
2490 tevent_req_done(req);
2493 static ssize_t vfs_gpfs_pread_recv(struct tevent_req *req,
2494 struct vfs_aio_state *vfs_aio_state)
2496 struct vfs_gpfs_pread_state *state = tevent_req_data(
2497 req, struct vfs_gpfs_pread_state);
2498 struct files_struct *fsp = state->fsp;
2500 if (tevent_req_is_unix_error(req, &vfs_aio_state->error)) {
2503 *vfs_aio_state = state->vfs_aio_state;
2505 if ((state->ret != -1) && state->was_offline) {
2506 DEBUG(10, ("sending notify\n"));
2507 notify_fname(fsp->conn, NOTIFY_ACTION_MODIFIED,
2508 FILE_NOTIFY_CHANGE_ATTRIBUTES,
2509 fsp->fsp_name->base_name);
2515 static ssize_t vfs_gpfs_pwrite(vfs_handle_struct *handle, files_struct *fsp,
2516 const void *data, size_t n, off_t offset)
2521 was_offline = vfs_gpfs_fsp_is_offline(handle, fsp);
2523 ret = SMB_VFS_NEXT_PWRITE(handle, fsp, data, n, offset);
2525 if ((ret != -1) && was_offline) {
2526 notify_fname(handle->conn, NOTIFY_ACTION_MODIFIED,
2527 FILE_NOTIFY_CHANGE_ATTRIBUTES,
2528 fsp->fsp_name->base_name);
2534 struct vfs_gpfs_pwrite_state {
2535 struct files_struct *fsp;
2538 struct vfs_aio_state vfs_aio_state;
2541 static void vfs_gpfs_pwrite_done(struct tevent_req *subreq);
2543 static struct tevent_req *vfs_gpfs_pwrite_send(
2544 struct vfs_handle_struct *handle,
2545 TALLOC_CTX *mem_ctx,
2546 struct tevent_context *ev,
2547 struct files_struct *fsp,
2548 const void *data, size_t n,
2551 struct tevent_req *req, *subreq;
2552 struct vfs_gpfs_pwrite_state *state;
2554 req = tevent_req_create(mem_ctx, &state, struct vfs_gpfs_pwrite_state);
2558 state->was_offline = vfs_gpfs_fsp_is_offline(handle, fsp);
2560 subreq = SMB_VFS_NEXT_PWRITE_SEND(state, ev, handle, fsp, data,
2562 if (tevent_req_nomem(subreq, req)) {
2563 return tevent_req_post(req, ev);
2565 tevent_req_set_callback(subreq, vfs_gpfs_pwrite_done, req);
2569 static void vfs_gpfs_pwrite_done(struct tevent_req *subreq)
2571 struct tevent_req *req = tevent_req_callback_data(
2572 subreq, struct tevent_req);
2573 struct vfs_gpfs_pwrite_state *state = tevent_req_data(
2574 req, struct vfs_gpfs_pwrite_state);
2576 state->ret = SMB_VFS_PWRITE_RECV(subreq, &state->vfs_aio_state);
2577 TALLOC_FREE(subreq);
2578 tevent_req_done(req);
2581 static ssize_t vfs_gpfs_pwrite_recv(struct tevent_req *req,
2582 struct vfs_aio_state *vfs_aio_state)
2584 struct vfs_gpfs_pwrite_state *state = tevent_req_data(
2585 req, struct vfs_gpfs_pwrite_state);
2586 struct files_struct *fsp = state->fsp;
2588 if (tevent_req_is_unix_error(req, &vfs_aio_state->error)) {
2591 *vfs_aio_state = state->vfs_aio_state;
2593 if ((state->ret != -1) && state->was_offline) {
2594 DEBUG(10, ("sending notify\n"));
2595 notify_fname(fsp->conn, NOTIFY_ACTION_MODIFIED,
2596 FILE_NOTIFY_CHANGE_ATTRIBUTES,
2597 fsp->fsp_name->base_name);
2604 static struct vfs_fn_pointers vfs_gpfs_fns = {
2605 .connect_fn = vfs_gpfs_connect,
2606 .disk_free_fn = vfs_gpfs_disk_free,
2607 .get_quota_fn = vfs_gpfs_get_quota,
2608 .fs_capabilities_fn = vfs_gpfs_capabilities,
2609 .kernel_flock_fn = vfs_gpfs_kernel_flock,
2610 .linux_setlease_fn = vfs_gpfs_setlease,
2611 .get_real_filename_fn = vfs_gpfs_get_real_filename,
2612 .get_dos_attributes_fn = vfs_gpfs_get_dos_attributes,
2613 .get_dos_attributes_send_fn = vfs_not_implemented_get_dos_attributes_send,
2614 .get_dos_attributes_recv_fn = vfs_not_implemented_get_dos_attributes_recv,
2615 .fget_dos_attributes_fn = vfs_gpfs_fget_dos_attributes,
2616 .set_dos_attributes_fn = vfs_gpfs_set_dos_attributes,
2617 .fset_dos_attributes_fn = vfs_gpfs_fset_dos_attributes,
2618 .fget_nt_acl_fn = gpfsacl_fget_nt_acl,
2619 .get_nt_acl_fn = gpfsacl_get_nt_acl,
2620 .fset_nt_acl_fn = gpfsacl_fset_nt_acl,
2621 .sys_acl_get_file_fn = gpfsacl_sys_acl_get_file,
2622 .sys_acl_get_fd_fn = gpfsacl_sys_acl_get_fd,
2623 .sys_acl_blob_get_file_fn = gpfsacl_sys_acl_blob_get_file,
2624 .sys_acl_blob_get_fd_fn = gpfsacl_sys_acl_blob_get_fd,
2625 .sys_acl_set_file_fn = gpfsacl_sys_acl_set_file,
2626 .sys_acl_set_fd_fn = gpfsacl_sys_acl_set_fd,
2627 .sys_acl_delete_def_file_fn = gpfsacl_sys_acl_delete_def_file,
2628 .chmod_fn = vfs_gpfs_chmod,
2629 .fchmod_fn = vfs_gpfs_fchmod,
2630 .close_fn = vfs_gpfs_close,
2631 .stat_fn = vfs_gpfs_stat,
2632 .lstat_fn = vfs_gpfs_lstat,
2633 .ntimes_fn = vfs_gpfs_ntimes,
2634 .aio_force_fn = vfs_gpfs_aio_force,
2635 .sendfile_fn = vfs_gpfs_sendfile,
2636 .fallocate_fn = vfs_gpfs_fallocate,
2637 .open_fn = vfs_gpfs_open,
2638 .pread_fn = vfs_gpfs_pread,
2639 .pread_send_fn = vfs_gpfs_pread_send,
2640 .pread_recv_fn = vfs_gpfs_pread_recv,
2641 .pwrite_fn = vfs_gpfs_pwrite,
2642 .pwrite_send_fn = vfs_gpfs_pwrite_send,
2643 .pwrite_recv_fn = vfs_gpfs_pwrite_recv,
2644 .ftruncate_fn = vfs_gpfs_ftruncate
2648 NTSTATUS vfs_gpfs_init(TALLOC_CTX *ctx)
2652 ret = gpfswrap_init();
2654 DEBUG(1, ("Could not initialize GPFS library wrapper\n"));
2657 return smb_register_vfs(SMB_VFS_INTERFACE_VERSION, "gpfs",