2 * Unix SMB/CIFS implementation.
3 * Samba VFS module for GPFS filesystem
4 * Copyright (C) Christian Ambach <cambach1@de.ibm.com> 2006
5 * Copyright (C) Christof Schmitt 2015
6 * Major code contributions by Chetan Shringarpure <chetan.sh@in.ibm.com>
7 * and Gomati Mohanan <gomati.mohanan@in.ibm.com>
9 * This program is free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 3 of the License, or
12 * (at your option) any later version.
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 * GNU General Public License for more details.
19 * You should have received a copy of the GNU General Public License
20 * along with this program; if not, see <http://www.gnu.org/licenses/>.
24 #include "smbd/smbd.h"
25 #include "include/smbprofile.h"
26 #include "modules/non_posix_acls.h"
27 #include "libcli/security/security.h"
28 #include "nfs4_acls.h"
29 #include "system/filesys.h"
31 #include "lib/util/tevent_unix.h"
32 #include "lib/util/gpfswrap.h"
34 #include <gnutls/gnutls.h>
35 #include <gnutls/crypto.h>
36 #include "lib/crypto/gnutls_helpers.h"
39 #define DBGC_CLASS DBGC_VFS
41 #ifndef GPFS_GETACL_NATIVE
42 #define GPFS_GETACL_NATIVE 0x00000004
45 struct gpfs_config_data {
46 struct smbacl4_vfs_params nfs4_params;
63 struct gpfs_fsp_extension {
67 static inline unsigned int gpfs_acl_flags(gpfs_acl_t *gacl)
69 if (gacl->acl_level == GPFS_ACL_LEVEL_V4FLAGS) {
70 return gacl->v4Level1.acl_flags;
75 static inline gpfs_ace_v4_t *gpfs_ace_ptr(gpfs_acl_t *gacl, unsigned int i)
77 if (gacl->acl_level == GPFS_ACL_LEVEL_V4FLAGS) {
78 return &gacl->v4Level1.ace_v4[i];
80 return &gacl->ace_v4[i];
83 static unsigned int vfs_gpfs_access_mask_to_allow(uint32_t access_mask)
85 unsigned int allow = GPFS_SHARE_NONE;
87 if (access_mask & (FILE_WRITE_DATA|FILE_APPEND_DATA)) {
88 allow |= GPFS_SHARE_WRITE;
90 if (access_mask & (FILE_READ_DATA|FILE_EXECUTE)) {
91 allow |= GPFS_SHARE_READ;
97 static unsigned int vfs_gpfs_share_access_to_deny(uint32_t share_access)
99 unsigned int deny = GPFS_DENY_NONE;
101 if (!(share_access & FILE_SHARE_WRITE)) {
102 deny |= GPFS_DENY_WRITE;
104 if (!(share_access & FILE_SHARE_READ)) {
105 deny |= GPFS_DENY_READ;
109 * GPFS_DENY_DELETE can only be set together with either
110 * GPFS_DENY_WRITE or GPFS_DENY_READ.
112 if ((deny & (GPFS_DENY_WRITE|GPFS_DENY_READ)) &&
113 !(share_access & FILE_SHARE_DELETE)) {
114 deny |= GPFS_DENY_DELETE;
120 static int set_gpfs_sharemode(files_struct *fsp, uint32_t access_mask,
121 uint32_t share_access)
123 unsigned int allow = GPFS_SHARE_NONE;
124 unsigned int deny = GPFS_DENY_NONE;
127 if (access_mask == 0) {
128 DBG_DEBUG("Clearing file system share mode.\n");
130 allow = vfs_gpfs_access_mask_to_allow(access_mask);
131 deny = vfs_gpfs_share_access_to_deny(share_access);
133 DBG_DEBUG("access_mask=0x%x, allow=0x%x, share_access=0x%x, "
134 "deny=0x%x\n", access_mask, allow, share_access, deny);
136 result = gpfswrap_set_share(fsp_get_io_fd(fsp), allow, deny);
141 if (errno == EACCES) {
142 DBG_NOTICE("GPFS share mode denied for %s/%s.\n",
143 fsp->conn->connectpath,
144 fsp->fsp_name->base_name);
145 } else if (errno == EPERM) {
146 DBG_ERR("Samba requested GPFS sharemode for %s/%s, but the "
147 "GPFS file system is not configured accordingly. "
148 "Configure file system with mmchfs -D nfs4 or "
149 "set gpfs:sharemodes=no in Samba.\n",
150 fsp->conn->connectpath,
151 fsp->fsp_name->base_name);
153 DBG_ERR("gpfs_set_share failed: %s\n", strerror(errno));
159 static int vfs_gpfs_kernel_flock(vfs_handle_struct *handle, files_struct *fsp,
160 uint32_t share_access, uint32_t access_mask)
163 struct gpfs_config_data *config;
166 SMB_VFS_HANDLE_GET_DATA(handle, config,
167 struct gpfs_config_data,
170 if(!config->sharemodes) {
175 * A named stream fsp will have the basefile open in the fsp
176 * fd, so lacking a distinct fd for the stream we have to skip
177 * set_gpfs_sharemode for stream.
179 if (is_named_stream(fsp->fsp_name)) {
180 DBG_NOTICE("Not requesting GPFS sharemode on stream: %s/%s\n",
181 fsp->conn->connectpath,
186 ret = set_gpfs_sharemode(fsp, access_mask, share_access);
191 static int vfs_gpfs_close(vfs_handle_struct *handle, files_struct *fsp)
194 struct gpfs_config_data *config;
196 SMB_VFS_HANDLE_GET_DATA(handle, config,
197 struct gpfs_config_data,
200 if (config->sharemodes &&
201 (fsp->fsp_flags.kernel_share_modes_taken))
204 * Always clear GPFS sharemode in case the actual
205 * close gets deferred due to outstanding POSIX locks
206 * (see fd_close_posix)
208 int ret = gpfswrap_set_share(fsp_get_io_fd(fsp), 0, 0);
210 DBG_ERR("Clearing GPFS sharemode on close failed for "
212 fsp->conn->connectpath,
213 fsp->fsp_name->base_name,
218 return SMB_VFS_NEXT_CLOSE(handle, fsp);
221 static int lease_type_to_gpfs(int leasetype)
223 if (leasetype == F_RDLCK) {
224 return GPFS_LEASE_READ;
227 if (leasetype == F_WRLCK) {
228 return GPFS_LEASE_WRITE;
231 return GPFS_LEASE_NONE;
234 static int vfs_gpfs_setlease(vfs_handle_struct *handle,
238 struct gpfs_config_data *config;
241 START_PROFILE(syscall_linux_setlease);
243 SMB_VFS_HANDLE_GET_DATA(handle, config,
244 struct gpfs_config_data,
247 ret = linux_set_lease_sighandler(fsp_get_io_fd(fsp));
252 if (config->leases) {
253 int gpfs_lease_type = lease_type_to_gpfs(leasetype);
257 * Ensure the lease owner is root to allow
258 * correct delivery of lease-break signals.
261 ret = gpfswrap_set_lease(fsp_get_io_fd(fsp), gpfs_lease_type);
267 if (saved_errno != 0) {
273 END_PROFILE(syscall_linux_setlease);
278 static int vfs_gpfs_get_real_filename(struct vfs_handle_struct *handle,
279 const struct smb_filename *path,
285 char *full_path = NULL;
286 char *to_free = NULL;
287 char real_pathname[PATH_MAX+1], tmpbuf[PATH_MAX];
288 size_t full_path_len;
291 struct gpfs_config_data *config;
293 SMB_VFS_HANDLE_GET_DATA(handle, config,
294 struct gpfs_config_data,
297 if (!config->getrealfilename) {
298 return SMB_VFS_NEXT_GET_REAL_FILENAME(handle, path, name,
299 mem_ctx, found_name);
302 mangled = mangle_is_mangled(name, handle->conn->params);
304 return SMB_VFS_NEXT_GET_REAL_FILENAME(handle, path, name,
305 mem_ctx, found_name);
308 full_path_len = full_path_tos(path->base_name, name,
309 tmpbuf, sizeof(tmpbuf),
310 &full_path, &to_free);
311 if (full_path_len == -1) {
316 buflen = sizeof(real_pathname) - 1;
318 result = gpfswrap_get_realfilename_path(full_path, real_pathname,
321 TALLOC_FREE(to_free);
323 if ((result == -1) && (errno == ENOSYS)) {
324 return SMB_VFS_NEXT_GET_REAL_FILENAME(
325 handle, path, name, mem_ctx, found_name);
329 DEBUG(10, ("smbd_gpfs_get_realfilename_path returned %s\n",
335 * GPFS does not necessarily null-terminate the returned path
336 * but instead returns the buffer length in buflen.
339 if (buflen < sizeof(real_pathname)) {
340 real_pathname[buflen] = '\0';
342 real_pathname[sizeof(real_pathname)-1] = '\0';
345 DEBUG(10, ("smbd_gpfs_get_realfilename_path: %s/%s -> %s\n",
346 path->base_name, name, real_pathname));
348 name = strrchr_m(real_pathname, '/');
354 *found_name = talloc_strdup(mem_ctx, name+1);
355 if (*found_name == NULL) {
363 static void sd2gpfs_control(uint16_t control, struct gpfs_acl *gacl)
365 unsigned int gpfs_aclflags = 0;
366 control &= SEC_DESC_DACL_PROTECTED | SEC_DESC_SACL_PROTECTED |
367 SEC_DESC_DACL_AUTO_INHERITED | SEC_DESC_SACL_AUTO_INHERITED |
368 SEC_DESC_DACL_DEFAULTED | SEC_DESC_SACL_DEFAULTED |
369 SEC_DESC_DACL_PRESENT | SEC_DESC_SACL_PRESENT;
370 gpfs_aclflags = control << 8;
371 if (!(control & SEC_DESC_DACL_PRESENT))
372 gpfs_aclflags |= ACL4_FLAG_NULL_DACL;
373 if (!(control & SEC_DESC_SACL_PRESENT))
374 gpfs_aclflags |= ACL4_FLAG_NULL_SACL;
375 gacl->acl_level = GPFS_ACL_LEVEL_V4FLAGS;
376 gacl->v4Level1.acl_flags = gpfs_aclflags;
379 static uint16_t gpfs2sd_control(unsigned int gpfs_aclflags)
381 uint16_t control = gpfs_aclflags >> 8;
382 control &= SEC_DESC_DACL_PROTECTED | SEC_DESC_SACL_PROTECTED |
383 SEC_DESC_DACL_AUTO_INHERITED | SEC_DESC_SACL_AUTO_INHERITED |
384 SEC_DESC_DACL_DEFAULTED | SEC_DESC_SACL_DEFAULTED |
385 SEC_DESC_DACL_PRESENT | SEC_DESC_SACL_PRESENT;
386 control |= SEC_DESC_SELF_RELATIVE;
390 static void gpfs_dumpacl(int level, struct gpfs_acl *gacl)
395 DEBUG(0, ("gpfs acl is NULL\n"));
399 DEBUG(level, ("len: %d, level: %d, version: %d, nace: %d, "
401 gacl->acl_len, gacl->acl_level, gacl->acl_version,
402 gacl->acl_nace, gpfs_acl_flags(gacl)));
404 for(i=0; i<gacl->acl_nace; i++)
406 struct gpfs_ace_v4 *gace = gpfs_ace_ptr(gacl, i);
407 DEBUG(level, ("\tace[%d]: type:%d, flags:0x%x, mask:0x%x, "
408 "iflags:0x%x, who:%u\n",
409 i, gace->aceType, gace->aceFlags, gace->aceMask,
410 gace->aceIFlags, gace->aceWho));
414 static int gpfs_getacl_with_capability(const char *fname, int flags, void *buf)
416 int ret, saved_errno;
418 set_effective_capability(DAC_OVERRIDE_CAPABILITY);
420 ret = gpfswrap_getacl(fname, flags, buf);
423 drop_effective_capability(DAC_OVERRIDE_CAPABILITY);
430 * get the ACL from GPFS, allocated on the specified mem_ctx
431 * internally retries when initial buffer was too small
433 * caller needs to cast result to either
434 * raw = yes: struct gpfs_opaque_acl
435 * raw = no: struct gpfs_acl
438 static void *vfs_gpfs_getacl(TALLOC_CTX *mem_ctx,
441 const gpfs_aclType_t type)
449 bool use_capability = false;
453 aclbuf = talloc_zero_size(mem_ctx, size);
454 if (aclbuf == NULL) {
460 struct gpfs_opaque_acl *buf = (struct gpfs_opaque_acl *) aclbuf;
461 buf->acl_type = type;
462 flags = GPFS_GETACL_NATIVE;
463 len = (unsigned int *) &(buf->acl_buffer_len);
464 struct_size = sizeof(struct gpfs_opaque_acl);
466 struct gpfs_acl *buf = (struct gpfs_acl *) aclbuf;
467 buf->acl_type = type;
468 buf->acl_level = GPFS_ACL_LEVEL_V4FLAGS;
469 flags = GPFS_GETACL_STRUCT;
470 len = &(buf->acl_len);
471 /* reserve space for control flags in gpfs 3.5 and beyond */
472 struct_size = sizeof(struct gpfs_acl) + sizeof(unsigned int);
475 /* set the length of the buffer as input value */
478 if (use_capability) {
479 ret = gpfs_getacl_with_capability(fname, flags, aclbuf);
481 ret = gpfswrap_getacl(fname, flags, aclbuf);
482 if ((ret != 0) && (errno == EACCES)) {
483 DBG_DEBUG("Retry with DAC capability for %s\n", fname);
484 use_capability = true;
485 ret = gpfs_getacl_with_capability(fname, flags, aclbuf);
489 if ((ret != 0) && (errno == ENOSPC)) {
491 * get the size needed to accommodate the complete buffer
493 * the value returned only applies to the ACL blob in the
494 * struct so make sure to also have headroom for the first
495 * struct members by adding room for the complete struct
496 * (might be a few bytes too much then)
498 size = *len + struct_size;
500 DEBUG(10, ("Increasing ACL buffer size to %zu\n", size));
505 DEBUG(5, ("smbd_gpfs_getacl failed with %s\n",
514 /* Tries to get nfs4 acls and returns SMB ACL allocated.
515 * On failure returns 1 if it got non-NFSv4 ACL to prompt
516 * retry with POSIX ACL checks.
517 * On failure returns -1 if there is system (GPFS) error, check errno.
518 * Returns 0 on success
520 static int gpfs_get_nfs4_acl(TALLOC_CTX *mem_ctx, const char *fname,
521 struct SMB4ACL_T **ppacl)
524 struct gpfs_acl *gacl = NULL;
525 DEBUG(10, ("gpfs_get_nfs4_acl invoked for %s\n", fname));
528 gacl = (struct gpfs_acl*) vfs_gpfs_getacl(talloc_tos(), fname,
531 DEBUG(9, ("gpfs_getacl failed for %s with %s\n",
532 fname, strerror(errno)));
533 if (errno == ENODATA) {
535 * GPFS returns ENODATA for snapshot
536 * directories. Retry with POSIX ACLs check.
544 if (gacl->acl_type != GPFS_ACL_TYPE_NFS4) {
545 DEBUG(10, ("Got non-nfsv4 acl\n"));
546 /* Retry with POSIX ACLs check */
551 *ppacl = smb_create_smb4acl(mem_ctx);
553 if (gacl->acl_level == GPFS_ACL_LEVEL_V4FLAGS) {
554 uint16_t control = gpfs2sd_control(gpfs_acl_flags(gacl));
555 smbacl4_set_controlflags(*ppacl, control);
558 DEBUG(10, ("len: %d, level: %d, version: %d, nace: %d, control: %x\n",
559 gacl->acl_len, gacl->acl_level, gacl->acl_version,
560 gacl->acl_nace, gpfs_acl_flags(gacl)));
562 for (i=0; i<gacl->acl_nace; i++) {
563 struct gpfs_ace_v4 *gace = gpfs_ace_ptr(gacl, i);
564 SMB_ACE4PROP_T smbace = { 0 };
565 DEBUG(10, ("type: %d, iflags: %x, flags: %x, mask: %x, "
566 "who: %d\n", gace->aceType, gace->aceIFlags,
567 gace->aceFlags, gace->aceMask, gace->aceWho));
569 if (gace->aceIFlags & ACE4_IFLAG_SPECIAL_ID) {
570 smbace.flags |= SMB_ACE4_ID_SPECIAL;
571 switch (gace->aceWho) {
572 case ACE4_SPECIAL_OWNER:
573 smbace.who.special_id = SMB_ACE4_WHO_OWNER;
575 case ACE4_SPECIAL_GROUP:
576 smbace.who.special_id = SMB_ACE4_WHO_GROUP;
578 case ACE4_SPECIAL_EVERYONE:
579 smbace.who.special_id = SMB_ACE4_WHO_EVERYONE;
582 DEBUG(8, ("invalid special gpfs id %d "
583 "ignored\n", gace->aceWho));
584 continue; /* don't add it */
587 if (gace->aceFlags & ACE4_FLAG_GROUP_ID)
588 smbace.who.gid = gace->aceWho;
590 smbace.who.uid = gace->aceWho;
593 /* remove redundant deny entries */
594 if (i > 0 && gace->aceType == SMB_ACE4_ACCESS_DENIED_ACE_TYPE) {
595 struct gpfs_ace_v4 *prev = gpfs_ace_ptr(gacl, i - 1);
596 if (prev->aceType == SMB_ACE4_ACCESS_ALLOWED_ACE_TYPE &&
597 prev->aceFlags == gace->aceFlags &&
598 prev->aceIFlags == gace->aceIFlags &&
599 (gace->aceMask & prev->aceMask) == 0 &&
600 gace->aceWho == prev->aceWho) {
601 /* it's redundant - skip it */
606 smbace.aceType = gace->aceType;
607 smbace.aceFlags = gace->aceFlags;
608 smbace.aceMask = gace->aceMask;
609 smb_add_ace4(*ppacl, &smbace);
617 static NTSTATUS gpfsacl_fget_nt_acl(vfs_handle_struct *handle,
618 files_struct *fsp, uint32_t security_info,
620 struct security_descriptor **ppdesc)
622 struct SMB4ACL_T *pacl = NULL;
624 struct gpfs_config_data *config;
625 TALLOC_CTX *frame = talloc_stackframe();
630 SMB_VFS_HANDLE_GET_DATA(handle, config,
631 struct gpfs_config_data,
632 return NT_STATUS_INTERNAL_ERROR);
635 status = SMB_VFS_NEXT_FGET_NT_ACL(handle, fsp, security_info,
641 result = gpfs_get_nfs4_acl(frame, fsp->fsp_name->base_name, &pacl);
644 status = smb_fget_nt_acl_nfs4(fsp, &config->nfs4_params,
646 mem_ctx, ppdesc, pacl);
652 DEBUG(10, ("retrying with posix acl...\n"));
653 status = posix_fget_nt_acl(fsp, security_info,
661 /* GPFS ACL was not read, something wrong happened, error code is set in errno */
662 return map_nt_error_from_unix(errno);
665 static bool vfs_gpfs_nfs4_ace_to_gpfs_ace(SMB_ACE4PROP_T *nfs4_ace,
666 struct gpfs_ace_v4 *gace,
669 gace->aceType = nfs4_ace->aceType;
670 gace->aceFlags = nfs4_ace->aceFlags;
671 gace->aceMask = nfs4_ace->aceMask;
673 if (nfs4_ace->flags & SMB_ACE4_ID_SPECIAL) {
674 switch(nfs4_ace->who.special_id) {
675 case SMB_ACE4_WHO_EVERYONE:
676 gace->aceIFlags = ACE4_IFLAG_SPECIAL_ID;
677 gace->aceWho = ACE4_SPECIAL_EVERYONE;
679 case SMB_ACE4_WHO_OWNER:
681 * With GPFS it is not possible to deny ACL or
682 * attribute access to the owner. Setting an
683 * ACL with such an entry is not possible.
684 * Denying ACL or attribute access for the
685 * owner through a named ACL entry can be
686 * stored in an ACL, it is just not effective.
688 * Map this case to a named entry to allow at
689 * least setting this ACL, which will be
690 * enforced by the smbd permission check. Do
691 * not do this for an inheriting OWNER entry,
692 * as this represents a CREATOR OWNER ACE. The
693 * remaining limitation is that CREATOR OWNER
694 * cannot deny ACL or attribute access.
696 if (!nfs_ace_is_inherit(nfs4_ace) &&
698 SMB_ACE4_ACCESS_DENIED_ACE_TYPE &&
699 nfs4_ace->aceMask & (SMB_ACE4_READ_ATTRIBUTES|
700 SMB_ACE4_WRITE_ATTRIBUTES|
702 SMB_ACE4_WRITE_ACL)) {
704 gace->aceWho = owner_uid;
706 gace->aceIFlags = ACE4_IFLAG_SPECIAL_ID;
707 gace->aceWho = ACE4_SPECIAL_OWNER;
710 case SMB_ACE4_WHO_GROUP:
711 gace->aceIFlags = ACE4_IFLAG_SPECIAL_ID;
712 gace->aceWho = ACE4_SPECIAL_GROUP;
715 DBG_WARNING("Unsupported special_id %d\n",
716 nfs4_ace->who.special_id);
724 gace->aceWho = (nfs4_ace->aceFlags & SMB_ACE4_IDENTIFIER_GROUP) ?
725 nfs4_ace->who.gid : nfs4_ace->who.uid;
730 static struct gpfs_acl *vfs_gpfs_smbacl2gpfsacl(TALLOC_CTX *mem_ctx,
732 struct SMB4ACL_T *smbacl,
735 struct gpfs_acl *gacl;
736 gpfs_aclLen_t gacl_len;
737 struct SMB4ACE_T *smbace;
739 gacl_len = offsetof(gpfs_acl_t, ace_v4) + sizeof(unsigned int)
740 + smb_get_naces(smbacl) * sizeof(gpfs_ace_v4_t);
742 gacl = (struct gpfs_acl *)TALLOC_SIZE(mem_ctx, gacl_len);
744 DEBUG(0, ("talloc failed\n"));
749 gacl->acl_level = GPFS_ACL_LEVEL_BASE;
750 gacl->acl_version = GPFS_ACL_VERSION_NFS4;
751 gacl->acl_type = GPFS_ACL_TYPE_NFS4;
752 gacl->acl_nace = 0; /* change later... */
755 gacl->acl_level = GPFS_ACL_LEVEL_V4FLAGS;
756 sd2gpfs_control(smbacl4_get_controlflags(smbacl), gacl);
759 for (smbace=smb_first_ace4(smbacl); smbace!=NULL; smbace = smb_next_ace4(smbace)) {
760 struct gpfs_ace_v4 *gace = gpfs_ace_ptr(gacl, gacl->acl_nace);
761 SMB_ACE4PROP_T *aceprop = smb_get_ace4(smbace);
764 add_ace = vfs_gpfs_nfs4_ace_to_gpfs_ace(aceprop, gace,
765 fsp->fsp_name->st.st_ex_uid);
772 gacl->acl_len = (char *)gpfs_ace_ptr(gacl, gacl->acl_nace)
777 static bool gpfsacl_process_smbacl(vfs_handle_struct *handle,
779 struct SMB4ACL_T *smbacl)
782 struct gpfs_acl *gacl;
783 TALLOC_CTX *mem_ctx = talloc_tos();
785 gacl = vfs_gpfs_smbacl2gpfsacl(mem_ctx, fsp, smbacl, true);
786 if (gacl == NULL) { /* out of memory */
789 ret = gpfswrap_putacl(fsp->fsp_name->base_name,
790 GPFS_PUTACL_STRUCT | GPFS_ACL_SAMBA, gacl);
792 if ((ret != 0) && (errno == EINVAL)) {
793 DEBUG(10, ("Retry without nfs41 control flags\n"));
795 gacl = vfs_gpfs_smbacl2gpfsacl(mem_ctx, fsp, smbacl, false);
796 if (gacl == NULL) { /* out of memory */
799 ret = gpfswrap_putacl(fsp->fsp_name->base_name,
800 GPFS_PUTACL_STRUCT | GPFS_ACL_SAMBA,
805 DEBUG(8, ("gpfs_putacl failed with %s\n", strerror(errno)));
806 gpfs_dumpacl(8, gacl);
810 DEBUG(10, ("gpfs_putacl succeeded\n"));
814 static NTSTATUS gpfsacl_set_nt_acl_internal(vfs_handle_struct *handle, files_struct *fsp, uint32_t security_info_sent, const struct security_descriptor *psd)
816 struct gpfs_acl *acl;
817 NTSTATUS result = NT_STATUS_ACCESS_DENIED;
819 acl = (struct gpfs_acl*) vfs_gpfs_getacl(talloc_tos(),
820 fsp->fsp_name->base_name,
823 return map_nt_error_from_unix(errno);
826 if (acl->acl_version == GPFS_ACL_VERSION_NFS4) {
827 struct gpfs_config_data *config;
829 if (lp_parm_bool(fsp->conn->params->service, "gpfs",
830 "refuse_dacl_protected", false)
831 && (psd->type&SEC_DESC_DACL_PROTECTED)) {
832 DEBUG(2, ("Rejecting unsupported ACL with DACL_PROTECTED bit set\n"));
834 return NT_STATUS_NOT_SUPPORTED;
837 SMB_VFS_HANDLE_GET_DATA(handle, config,
838 struct gpfs_config_data,
839 return NT_STATUS_INTERNAL_ERROR);
841 result = smb_set_nt_acl_nfs4(handle,
842 fsp, &config->nfs4_params, security_info_sent, psd,
843 gpfsacl_process_smbacl);
844 } else { /* assume POSIX ACL - by default... */
845 result = set_nt_acl(fsp, security_info_sent, psd);
852 static NTSTATUS gpfsacl_fset_nt_acl(vfs_handle_struct *handle, files_struct *fsp, uint32_t security_info_sent, const struct security_descriptor *psd)
854 struct gpfs_config_data *config;
856 SMB_VFS_HANDLE_GET_DATA(handle, config,
857 struct gpfs_config_data,
858 return NT_STATUS_INTERNAL_ERROR);
861 return SMB_VFS_NEXT_FSET_NT_ACL(handle, fsp, security_info_sent, psd);
864 return gpfsacl_set_nt_acl_internal(handle, fsp, security_info_sent, psd);
867 static SMB_ACL_T gpfs2smb_acl(const struct gpfs_acl *pacl, TALLOC_CTX *mem_ctx)
872 result = sys_acl_init(mem_ctx);
873 if (result == NULL) {
878 result->count = pacl->acl_nace;
879 result->acl = talloc_realloc(result, result->acl, struct smb_acl_entry,
881 if (result->acl == NULL) {
887 for (i=0; i<pacl->acl_nace; i++) {
888 struct smb_acl_entry *ace = &result->acl[i];
889 const struct gpfs_ace_v1 *g_ace = &pacl->ace_v1[i];
891 DEBUG(10, ("Converting type %d id %lu perm %x\n",
892 (int)g_ace->ace_type, (unsigned long)g_ace->ace_who,
893 (int)g_ace->ace_perm));
895 switch (g_ace->ace_type) {
897 ace->a_type = SMB_ACL_USER;
898 ace->info.user.uid = (uid_t)g_ace->ace_who;
900 case GPFS_ACL_USER_OBJ:
901 ace->a_type = SMB_ACL_USER_OBJ;
904 ace->a_type = SMB_ACL_GROUP;
905 ace->info.group.gid = (gid_t)g_ace->ace_who;
907 case GPFS_ACL_GROUP_OBJ:
908 ace->a_type = SMB_ACL_GROUP_OBJ;
911 ace->a_type = SMB_ACL_OTHER;
914 ace->a_type = SMB_ACL_MASK;
917 DEBUG(10, ("Got invalid ace_type: %d\n",
925 ace->a_perm |= (g_ace->ace_perm & ACL_PERM_READ) ?
927 ace->a_perm |= (g_ace->ace_perm & ACL_PERM_WRITE) ?
929 ace->a_perm |= (g_ace->ace_perm & ACL_PERM_EXECUTE) ?
932 DEBUGADD(10, ("Converted to %d perm %x\n",
933 ace->a_type, ace->a_perm));
939 static SMB_ACL_T gpfsacl_get_posix_acl(const char *path, gpfs_aclType_t type,
942 struct gpfs_acl *pacl;
943 SMB_ACL_T result = NULL;
945 pacl = vfs_gpfs_getacl(talloc_tos(), path, false, type);
948 DEBUG(10, ("vfs_gpfs_getacl failed for %s with %s\n",
949 path, strerror(errno)));
956 if (pacl->acl_version != GPFS_ACL_VERSION_POSIX) {
957 DEBUG(10, ("Got acl version %d, expected %d\n",
958 pacl->acl_version, GPFS_ACL_VERSION_POSIX));
963 DEBUG(10, ("len: %d, level: %d, version: %d, nace: %d\n",
964 pacl->acl_len, pacl->acl_level, pacl->acl_version,
967 result = gpfs2smb_acl(pacl, mem_ctx);
968 if (result != NULL) {
983 static SMB_ACL_T gpfsacl_sys_acl_get_fd(vfs_handle_struct *handle,
988 gpfs_aclType_t gpfs_type;
989 struct gpfs_config_data *config;
991 SMB_VFS_HANDLE_GET_DATA(handle, config,
992 struct gpfs_config_data,
996 return SMB_VFS_NEXT_SYS_ACL_GET_FD(handle, fsp, type, mem_ctx);
1000 case SMB_ACL_TYPE_ACCESS:
1001 gpfs_type = GPFS_ACL_TYPE_ACCESS;
1003 case SMB_ACL_TYPE_DEFAULT:
1004 gpfs_type = GPFS_ACL_TYPE_DEFAULT;
1007 DEBUG(0, ("Got invalid type: %d\n", type));
1008 smb_panic("exiting");
1010 return gpfsacl_get_posix_acl(fsp->fsp_name->base_name,
1011 gpfs_type, mem_ctx);
1014 static int gpfsacl_sys_acl_blob_get_fd(vfs_handle_struct *handle,
1016 TALLOC_CTX *mem_ctx,
1017 char **blob_description,
1020 struct gpfs_config_data *config;
1021 struct gpfs_opaque_acl *acl = NULL;
1025 SMB_VFS_HANDLE_GET_DATA(handle, config,
1026 struct gpfs_config_data,
1030 return SMB_VFS_NEXT_SYS_ACL_BLOB_GET_FD(handle, fsp, mem_ctx,
1031 blob_description, blob);
1035 acl = (struct gpfs_opaque_acl *) vfs_gpfs_getacl(mem_ctx,
1036 fsp->fsp_name->base_name,
1038 GPFS_ACL_TYPE_NFS4);
1041 DEBUG(5, ("vfs_gpfs_getacl finished with errno %d: %s\n",
1042 errno, strerror(errno)));
1044 /* EINVAL means POSIX ACL, bail out on other cases */
1045 if (errno != EINVAL) {
1052 * file has NFSv4 ACL
1054 * we only need the actual ACL blob here
1055 * acl_version will always be NFS4 because we asked
1057 * acl_type is only used for POSIX ACLs
1059 aclblob.data = (uint8_t*) acl->acl_var_data;
1060 aclblob.length = acl->acl_buffer_len;
1062 *blob_description = talloc_strdup(mem_ctx, "gpfs_nfs4_acl");
1063 if (!*blob_description) {
1069 result = non_posix_sys_acl_blob_get_fd_helper(handle, fsp,
1077 /* fall back to POSIX ACL */
1078 return posix_sys_acl_blob_get_fd(handle, fsp, mem_ctx,
1079 blob_description, blob);
1082 static struct gpfs_acl *smb2gpfs_acl(const SMB_ACL_T pacl,
1083 SMB_ACL_TYPE_T type)
1086 struct gpfs_acl *result;
1089 DEBUG(10, ("smb2gpfs_acl: Got ACL with %d entries\n", pacl->count));
1091 len = offsetof(gpfs_acl_t, ace_v1) + (pacl->count) *
1092 sizeof(gpfs_ace_v1_t);
1094 result = (struct gpfs_acl *)SMB_MALLOC(len);
1095 if (result == NULL) {
1100 result->acl_len = len;
1101 result->acl_level = 0;
1102 result->acl_version = GPFS_ACL_VERSION_POSIX;
1103 result->acl_type = (type == SMB_ACL_TYPE_DEFAULT) ?
1104 GPFS_ACL_TYPE_DEFAULT : GPFS_ACL_TYPE_ACCESS;
1105 result->acl_nace = pacl->count;
1107 for (i=0; i<pacl->count; i++) {
1108 const struct smb_acl_entry *ace = &pacl->acl[i];
1109 struct gpfs_ace_v1 *g_ace = &result->ace_v1[i];
1111 DEBUG(10, ("Converting type %d perm %x\n",
1112 (int)ace->a_type, (int)ace->a_perm));
1114 g_ace->ace_perm = 0;
1116 switch(ace->a_type) {
1118 g_ace->ace_type = GPFS_ACL_USER;
1119 g_ace->ace_who = (gpfs_uid_t)ace->info.user.uid;
1121 case SMB_ACL_USER_OBJ:
1122 g_ace->ace_type = GPFS_ACL_USER_OBJ;
1123 g_ace->ace_perm |= ACL_PERM_CONTROL;
1127 g_ace->ace_type = GPFS_ACL_GROUP;
1128 g_ace->ace_who = (gpfs_uid_t)ace->info.group.gid;
1130 case SMB_ACL_GROUP_OBJ:
1131 g_ace->ace_type = GPFS_ACL_GROUP_OBJ;
1135 g_ace->ace_type = GPFS_ACL_MASK;
1136 g_ace->ace_perm = 0x8f;
1140 g_ace->ace_type = GPFS_ACL_OTHER;
1144 DEBUG(10, ("Got invalid ace_type: %d\n", ace->a_type));
1150 g_ace->ace_perm |= (ace->a_perm & SMB_ACL_READ) ?
1152 g_ace->ace_perm |= (ace->a_perm & SMB_ACL_WRITE) ?
1154 g_ace->ace_perm |= (ace->a_perm & SMB_ACL_EXECUTE) ?
1155 ACL_PERM_EXECUTE : 0;
1157 DEBUGADD(10, ("Converted to %d id %d perm %x\n",
1158 g_ace->ace_type, g_ace->ace_who, g_ace->ace_perm));
1164 static int gpfsacl_sys_acl_set_fd(vfs_handle_struct *handle,
1166 SMB_ACL_TYPE_T type,
1169 struct gpfs_config_data *config;
1170 struct gpfs_acl *gpfs_acl = NULL;
1173 SMB_VFS_HANDLE_GET_DATA(handle, config,
1174 struct gpfs_config_data,
1178 return SMB_VFS_NEXT_SYS_ACL_SET_FD(handle, fsp, type, theacl);
1181 gpfs_acl = smb2gpfs_acl(theacl, type);
1182 if (gpfs_acl == NULL) {
1187 * This is no longer a handle based call.
1189 result = gpfswrap_putacl(fsp->fsp_name->base_name,
1190 GPFS_PUTACL_STRUCT|GPFS_ACL_SAMBA,
1192 SAFE_FREE(gpfs_acl);
1196 static int gpfsacl_sys_acl_delete_def_fd(vfs_handle_struct *handle,
1199 struct gpfs_config_data *config;
1201 SMB_VFS_HANDLE_GET_DATA(handle, config,
1202 struct gpfs_config_data,
1206 return SMB_VFS_NEXT_SYS_ACL_DELETE_DEF_FD(handle, fsp);
1215 * Assumed: mode bits are shiftable and standard
1216 * Output: the new aceMask field for an smb nfs4 ace
1218 static uint32_t gpfsacl_mask_filter(uint32_t aceType, uint32_t aceMask, uint32_t rwx)
1220 const uint32_t posix_nfs4map[3] = {
1221 SMB_ACE4_EXECUTE, /* execute */
1222 SMB_ACE4_WRITE_DATA | SMB_ACE4_APPEND_DATA, /* write; GPFS specific */
1223 SMB_ACE4_READ_DATA /* read */
1226 uint32_t posix_mask = 0x01;
1230 for(i=0; i<3; i++) {
1231 nfs4_bits = posix_nfs4map[i];
1232 posix_bit = rwx & posix_mask;
1234 if (aceType==SMB_ACE4_ACCESS_ALLOWED_ACE_TYPE) {
1236 aceMask |= nfs4_bits;
1238 aceMask &= ~nfs4_bits;
1240 /* add deny bits when suitable */
1242 aceMask |= nfs4_bits;
1244 aceMask &= ~nfs4_bits;
1245 } /* other ace types are unexpected */
1253 static int gpfsacl_emu_chmod(vfs_handle_struct *handle,
1254 const struct smb_filename *fname, mode_t mode)
1256 char *path = fname->base_name;
1257 struct SMB4ACL_T *pacl = NULL;
1259 bool haveAllowEntry[SMB_ACE4_WHO_EVERYONE + 1] = {False, False, False, False};
1261 files_struct fake_fsp = { 0 }; /* TODO: rationalize parametrization */
1262 struct SMB4ACE_T *smbace;
1263 TALLOC_CTX *frame = talloc_stackframe();
1265 DEBUG(10, ("gpfsacl_emu_chmod invoked for %s mode %o\n", path, mode));
1267 result = gpfs_get_nfs4_acl(frame, path, &pacl);
1273 if (mode & ~(S_IRWXU | S_IRWXG | S_IRWXO)) {
1274 DEBUG(2, ("WARNING: cutting extra mode bits %o on %s\n", mode, path));
1277 for (smbace=smb_first_ace4(pacl); smbace!=NULL; smbace = smb_next_ace4(smbace)) {
1278 SMB_ACE4PROP_T *ace = smb_get_ace4(smbace);
1279 uint32_t specid = ace->who.special_id;
1281 if (ace->flags&SMB_ACE4_ID_SPECIAL &&
1282 ace->aceType<=SMB_ACE4_ACCESS_DENIED_ACE_TYPE &&
1283 specid <= SMB_ACE4_WHO_EVERYONE) {
1287 if (ace->aceType==SMB_ACE4_ACCESS_ALLOWED_ACE_TYPE)
1288 haveAllowEntry[specid] = True;
1290 /* mode >> 6 for @owner, mode >> 3 for @group,
1291 * mode >> 0 for @everyone */
1292 newMask = gpfsacl_mask_filter(ace->aceType, ace->aceMask,
1293 mode >> ((SMB_ACE4_WHO_EVERYONE - specid) * 3));
1294 if (ace->aceMask!=newMask) {
1295 DEBUG(10, ("ace changed for %s (%o -> %o) id=%d\n",
1296 path, ace->aceMask, newMask, specid));
1298 ace->aceMask = newMask;
1302 /* make sure we have at least ALLOW entries
1303 * for all the 3 special ids (@EVERYONE, @OWNER, @GROUP)
1306 for(i = SMB_ACE4_WHO_OWNER; i<=SMB_ACE4_WHO_EVERYONE; i++) {
1307 SMB_ACE4PROP_T ace = { 0 };
1309 if (haveAllowEntry[i]==True)
1312 ace.aceType = SMB_ACE4_ACCESS_ALLOWED_ACE_TYPE;
1313 ace.flags |= SMB_ACE4_ID_SPECIAL;
1314 ace.who.special_id = i;
1316 if (i==SMB_ACE4_WHO_GROUP) /* not sure it's necessary... */
1317 ace.aceFlags |= SMB_ACE4_IDENTIFIER_GROUP;
1319 ace.aceMask = gpfsacl_mask_filter(ace.aceType, ace.aceMask,
1320 mode >> ((SMB_ACE4_WHO_EVERYONE - i) * 3));
1322 /* don't add unnecessary aces */
1326 /* we add it to the END - as windows expects allow aces */
1327 smb_add_ace4(pacl, &ace);
1328 DEBUG(10, ("Added ALLOW ace for %s, mode=%o, id=%d, aceMask=%x\n",
1329 path, mode, i, ace.aceMask));
1332 /* don't add complementary DENY ACEs here */
1333 fake_fsp.fsp_name = synthetic_smb_fname(frame,
1339 if (fake_fsp.fsp_name == NULL) {
1345 if (gpfsacl_process_smbacl(handle, &fake_fsp, pacl) == False) {
1351 return 0; /* ok for [f]chmod */
1354 static int vfs_gpfs_fchmod(vfs_handle_struct *handle, files_struct *fsp, mode_t mode)
1359 if (SMB_VFS_NEXT_FSTAT(handle, fsp, &st) != 0) {
1363 /* avoid chmod() if possible, to preserve acls */
1364 if ((st.st_ex_mode & ~S_IFMT) == mode) {
1368 rc = gpfsacl_emu_chmod(handle, fsp->fsp_name,
1371 return SMB_VFS_NEXT_FCHMOD(handle, fsp, mode);
1375 static uint32_t vfs_gpfs_winattrs_to_dosmode(unsigned int winattrs)
1377 uint32_t dosmode = 0;
1379 if (winattrs & GPFS_WINATTR_ARCHIVE){
1380 dosmode |= FILE_ATTRIBUTE_ARCHIVE;
1382 if (winattrs & GPFS_WINATTR_HIDDEN){
1383 dosmode |= FILE_ATTRIBUTE_HIDDEN;
1385 if (winattrs & GPFS_WINATTR_SYSTEM){
1386 dosmode |= FILE_ATTRIBUTE_SYSTEM;
1388 if (winattrs & GPFS_WINATTR_READONLY){
1389 dosmode |= FILE_ATTRIBUTE_READONLY;
1391 if (winattrs & GPFS_WINATTR_SPARSE_FILE) {
1392 dosmode |= FILE_ATTRIBUTE_SPARSE;
1394 if (winattrs & GPFS_WINATTR_OFFLINE) {
1395 dosmode |= FILE_ATTRIBUTE_OFFLINE;
1401 static unsigned int vfs_gpfs_dosmode_to_winattrs(uint32_t dosmode)
1403 unsigned int winattrs = 0;
1405 if (dosmode & FILE_ATTRIBUTE_ARCHIVE){
1406 winattrs |= GPFS_WINATTR_ARCHIVE;
1408 if (dosmode & FILE_ATTRIBUTE_HIDDEN){
1409 winattrs |= GPFS_WINATTR_HIDDEN;
1411 if (dosmode & FILE_ATTRIBUTE_SYSTEM){
1412 winattrs |= GPFS_WINATTR_SYSTEM;
1414 if (dosmode & FILE_ATTRIBUTE_READONLY){
1415 winattrs |= GPFS_WINATTR_READONLY;
1417 if (dosmode & FILE_ATTRIBUTE_SPARSE) {
1418 winattrs |= GPFS_WINATTR_SPARSE_FILE;
1420 if (dosmode & FILE_ATTRIBUTE_OFFLINE) {
1421 winattrs |= GPFS_WINATTR_OFFLINE;
1427 static NTSTATUS vfs_gpfs_get_file_id(struct gpfs_iattr64 *iattr,
1430 uint8_t input[sizeof(gpfs_ino64_t) +
1431 sizeof(gpfs_gen64_t) +
1432 sizeof(gpfs_snapid64_t)];
1433 uint8_t digest[gnutls_hash_get_len(GNUTLS_DIG_SHA1)];
1436 DBG_DEBUG("ia_inode 0x%llx, ia_gen 0x%llx, ia_modsnapid 0x%llx\n",
1437 iattr->ia_inode, iattr->ia_gen, iattr->ia_modsnapid);
1440 0, iattr->ia_inode);
1442 sizeof(gpfs_ino64_t), iattr->ia_gen);
1444 sizeof(gpfs_ino64_t) + sizeof(gpfs_gen64_t), iattr->ia_modsnapid);
1446 GNUTLS_FIPS140_SET_LAX_MODE();
1447 rc = gnutls_hash_fast(GNUTLS_DIG_SHA1, input, sizeof(input), &digest);
1448 GNUTLS_FIPS140_SET_STRICT_MODE();
1451 return gnutls_error_to_ntstatus(rc,
1452 NT_STATUS_HASH_NOT_SUPPORTED);
1455 memcpy(fileid, &digest, sizeof(*fileid));
1456 DBG_DEBUG("file_id 0x%" PRIx64 "\n", *fileid);
1458 return NT_STATUS_OK;
1461 static struct timespec gpfs_timestruc64_to_timespec(struct gpfs_timestruc64 g)
1463 return (struct timespec) { .tv_sec = g.tv_sec, .tv_nsec = g.tv_nsec };
1466 static NTSTATUS vfs_gpfs_fget_dos_attributes(struct vfs_handle_struct *handle,
1467 struct files_struct *fsp,
1470 struct gpfs_config_data *config;
1471 int fd = fsp_get_pathref_fd(fsp);
1473 const char *p = NULL;
1474 struct gpfs_iattr64 iattr = { };
1475 unsigned int litemask;
1481 SMB_VFS_HANDLE_GET_DATA(handle, config,
1482 struct gpfs_config_data,
1483 return NT_STATUS_INTERNAL_ERROR);
1485 if (!config->winattr) {
1486 return SMB_VFS_NEXT_FGET_DOS_ATTRIBUTES(handle, fsp, dosmode);
1489 if (fsp->fsp_flags.is_pathref && !config->pathref_ok.gpfs_fstat_x) {
1490 if (fsp->fsp_flags.have_proc_fds) {
1491 p = sys_proc_fd_path(fd, buf, sizeof(buf));
1493 return NT_STATUS_NO_MEMORY;
1496 p = fsp->fsp_name->base_name;
1501 ret = gpfswrap_stat_x(p, &litemask, &iattr, sizeof(iattr));
1503 ret = gpfswrap_fstat_x(fd, &litemask, &iattr, sizeof(iattr));
1505 if (ret == -1 && errno == ENOSYS) {
1506 return SMB_VFS_NEXT_FGET_DOS_ATTRIBUTES(handle, fsp, dosmode);
1509 if (ret == -1 && errno == EACCES) {
1510 int saved_errno = 0;
1513 * According to MS-FSA 2.1.5.1.2.1 "Algorithm to Check Access to
1514 * an Existing File" FILE_LIST_DIRECTORY on a directory implies
1515 * FILE_READ_ATTRIBUTES for directory entries. Being able to
1516 * open a file implies FILE_LIST_DIRECTORY.
1519 set_effective_capability(DAC_OVERRIDE_CAPABILITY);
1522 ret = gpfswrap_stat_x(p,
1527 ret = gpfswrap_fstat_x(fd,
1533 saved_errno = errno;
1536 drop_effective_capability(DAC_OVERRIDE_CAPABILITY);
1538 if (saved_errno != 0) {
1539 errno = saved_errno;
1544 DBG_WARNING("Getting winattrs failed for %s: %s\n",
1545 fsp->fsp_name->base_name, strerror(errno));
1546 return map_nt_error_from_unix(errno);
1549 ZERO_STRUCT(file_id);
1550 status = vfs_gpfs_get_file_id(&iattr, &file_id);
1551 if (!NT_STATUS_IS_OK(status)) {
1555 ts = gpfs_timestruc64_to_timespec(iattr.ia_createtime);
1557 *dosmode |= vfs_gpfs_winattrs_to_dosmode(iattr.ia_winflags);
1558 update_stat_ex_create_time(&fsp->fsp_name->st, ts);
1559 update_stat_ex_file_id(&fsp->fsp_name->st, file_id);
1561 return NT_STATUS_OK;
1564 static NTSTATUS vfs_gpfs_fset_dos_attributes(struct vfs_handle_struct *handle,
1565 struct files_struct *fsp,
1568 struct gpfs_config_data *config;
1569 struct gpfs_winattr attrs = { };
1572 SMB_VFS_HANDLE_GET_DATA(handle, config,
1573 struct gpfs_config_data,
1574 return NT_STATUS_INTERNAL_ERROR);
1576 if (!config->winattr) {
1577 return SMB_VFS_NEXT_FSET_DOS_ATTRIBUTES(handle, fsp, dosmode);
1580 attrs.winAttrs = vfs_gpfs_dosmode_to_winattrs(dosmode);
1582 if (!fsp->fsp_flags.is_pathref) {
1583 ret = gpfswrap_set_winattrs(fsp_get_io_fd(fsp),
1584 GPFS_WINATTR_SET_ATTRS, &attrs);
1586 DBG_WARNING("Setting winattrs failed for %s: %s\n",
1587 fsp_str_dbg(fsp), strerror(errno));
1588 return map_nt_error_from_unix(errno);
1590 return NT_STATUS_OK;
1593 if (fsp->fsp_flags.have_proc_fds) {
1594 int fd = fsp_get_pathref_fd(fsp);
1595 const char *p = NULL;
1598 p = sys_proc_fd_path(fd, buf, sizeof(buf));
1600 return NT_STATUS_NO_MEMORY;
1603 ret = gpfswrap_set_winattrs_path(p,
1604 GPFS_WINATTR_SET_ATTRS,
1607 DBG_WARNING("Setting winattrs failed for [%s][%s]: %s\n",
1608 p, fsp_str_dbg(fsp), strerror(errno));
1609 return map_nt_error_from_unix(errno);
1611 return NT_STATUS_OK;
1615 * This is no longer a handle based call.
1617 ret = gpfswrap_set_winattrs_path(fsp->fsp_name->base_name,
1618 GPFS_WINATTR_SET_ATTRS,
1621 DBG_WARNING("Setting winattrs failed for [%s]: %s\n",
1622 fsp_str_dbg(fsp), strerror(errno));
1623 return map_nt_error_from_unix(errno);
1626 return NT_STATUS_OK;
1629 static int stat_with_capability(struct vfs_handle_struct *handle,
1630 struct smb_filename *smb_fname, int flag)
1634 struct smb_filename *dir_name = NULL;
1635 struct smb_filename *rel_name = NULL;
1639 status = SMB_VFS_PARENT_PATHNAME(handle->conn,
1644 if (!NT_STATUS_IS_OK(status)) {
1645 errno = map_errno_from_nt_status(status);
1649 fd = open(dir_name->base_name, O_RDONLY, 0);
1651 TALLOC_FREE(dir_name);
1655 set_effective_capability(DAC_OVERRIDE_CAPABILITY);
1656 ret = fstatat(fd, rel_name->base_name, &st, flag);
1657 drop_effective_capability(DAC_OVERRIDE_CAPABILITY);
1659 TALLOC_FREE(dir_name);
1663 init_stat_ex_from_stat(
1664 &smb_fname->st, &st,
1665 lp_fake_directory_create_times(SNUM(handle->conn)));
1671 static int vfs_gpfs_stat(struct vfs_handle_struct *handle,
1672 struct smb_filename *smb_fname)
1676 ret = SMB_VFS_NEXT_STAT(handle, smb_fname);
1677 if (ret == -1 && errno == EACCES) {
1678 DEBUG(10, ("Trying stat with capability for %s\n",
1679 smb_fname->base_name));
1680 ret = stat_with_capability(handle, smb_fname, 0);
1685 static int vfs_gpfs_lstat(struct vfs_handle_struct *handle,
1686 struct smb_filename *smb_fname)
1690 ret = SMB_VFS_NEXT_LSTAT(handle, smb_fname);
1691 if (ret == -1 && errno == EACCES) {
1692 DEBUG(10, ("Trying lstat with capability for %s\n",
1693 smb_fname->base_name));
1694 ret = stat_with_capability(handle, smb_fname,
1695 AT_SYMLINK_NOFOLLOW);
1700 static void timespec_to_gpfs_time(struct timespec ts, gpfs_timestruc_t *gt,
1701 int idx, int *flags)
1703 if (!is_omit_timespec(&ts)) {
1705 gt[idx].tv_sec = ts.tv_sec;
1706 gt[idx].tv_nsec = ts.tv_nsec;
1707 DEBUG(10, ("Setting GPFS time %d, flags 0x%x\n", idx, *flags));
1711 static int smbd_gpfs_set_times(struct files_struct *fsp,
1712 struct smb_file_time *ft)
1714 gpfs_timestruc_t gpfs_times[4];
1718 ZERO_ARRAY(gpfs_times);
1719 timespec_to_gpfs_time(ft->atime, gpfs_times, 0, &flags);
1720 timespec_to_gpfs_time(ft->mtime, gpfs_times, 1, &flags);
1721 /* No good mapping from LastChangeTime to ctime, not storing */
1722 timespec_to_gpfs_time(ft->create_time, gpfs_times, 3, &flags);
1725 DBG_DEBUG("nothing to do, return to avoid EINVAL\n");
1729 if (!fsp->fsp_flags.is_pathref) {
1730 rc = gpfswrap_set_times(fsp_get_io_fd(fsp), flags, gpfs_times);
1732 DBG_WARNING("gpfs_set_times(%s) failed: %s\n",
1733 fsp_str_dbg(fsp), strerror(errno));
1739 if (fsp->fsp_flags.have_proc_fds) {
1740 int fd = fsp_get_pathref_fd(fsp);
1741 const char *p = NULL;
1744 p = sys_proc_fd_path(fd, buf, sizeof(buf));
1749 rc = gpfswrap_set_times_path(buf, flags, gpfs_times);
1751 DBG_WARNING("gpfs_set_times_path(%s,%s) failed: %s\n",
1752 fsp_str_dbg(fsp), p, strerror(errno));
1758 * This is no longer a handle based call.
1761 rc = gpfswrap_set_times_path(fsp->fsp_name->base_name,
1765 DBG_WARNING("gpfs_set_times_path(%s) failed: %s\n",
1766 fsp_str_dbg(fsp), strerror(errno));
1771 static int vfs_gpfs_fntimes(struct vfs_handle_struct *handle,
1773 struct smb_file_time *ft)
1776 struct gpfs_winattr attrs;
1778 struct gpfs_config_data *config;
1780 SMB_VFS_HANDLE_GET_DATA(handle,
1782 struct gpfs_config_data,
1785 /* Try to use gpfs_set_times if it is enabled and available */
1786 if (config->settimes) {
1787 return smbd_gpfs_set_times(fsp, ft);
1790 DBG_DEBUG("gpfs_set_times() not available or disabled, "
1791 "use ntimes and winattr\n");
1793 ret = SMB_VFS_NEXT_FNTIMES(handle, fsp, ft);
1795 /* don't complain if access was denied */
1796 if (errno != EPERM && errno != EACCES) {
1797 DBG_WARNING("SMB_VFS_NEXT_FNTIMES failed: %s",
1803 if (is_omit_timespec(&ft->create_time)) {
1804 DBG_DEBUG("Create Time is NULL\n");
1808 if (!config->winattr) {
1813 attrs.creationTime.tv_sec = ft->create_time.tv_sec;
1814 attrs.creationTime.tv_nsec = ft->create_time.tv_nsec;
1816 if (!fsp->fsp_flags.is_pathref) {
1817 ret = gpfswrap_set_winattrs(fsp_get_io_fd(fsp),
1818 GPFS_WINATTR_SET_CREATION_TIME,
1820 if (ret == -1 && errno != ENOSYS) {
1821 DBG_WARNING("Set GPFS ntimes failed %d\n", ret);
1827 if (fsp->fsp_flags.have_proc_fds) {
1828 int fd = fsp_get_pathref_fd(fsp);
1829 const char *p = NULL;
1832 p = sys_proc_fd_path(fd, buf, sizeof(buf));
1837 ret = gpfswrap_set_winattrs_path(p,
1838 GPFS_WINATTR_SET_CREATION_TIME,
1840 if (ret == -1 && errno != ENOSYS) {
1841 DBG_WARNING("Set GPFS ntimes failed %d\n", ret);
1848 * This is no longer a handle based call.
1850 ret = gpfswrap_set_winattrs_path(fsp->fsp_name->base_name,
1851 GPFS_WINATTR_SET_CREATION_TIME,
1853 if (ret == -1 && errno != ENOSYS) {
1854 DBG_WARNING("Set GPFS ntimes failed %d\n", ret);
1861 static int vfs_gpfs_fallocate(struct vfs_handle_struct *handle,
1862 struct files_struct *fsp, uint32_t mode,
1863 off_t offset, off_t len)
1865 if (mode == (VFS_FALLOCATE_FL_PUNCH_HOLE|VFS_FALLOCATE_FL_KEEP_SIZE) &&
1866 !fsp->fsp_flags.is_sparse &&
1867 lp_strict_allocate(SNUM(fsp->conn))) {
1869 * This is from a ZERO_DATA request on a non-sparse
1870 * file. GPFS does not support FL_KEEP_SIZE and thus
1871 * cannot fill the whole again in the subsequent
1872 * fallocate(FL_KEEP_SIZE). Deny this FL_PUNCH_HOLE
1873 * call to not end up with a hole in a non-sparse
1880 return SMB_VFS_NEXT_FALLOCATE(handle, fsp, mode, offset, len);
1883 static int vfs_gpfs_ftruncate(vfs_handle_struct *handle, files_struct *fsp,
1887 struct gpfs_config_data *config;
1889 SMB_VFS_HANDLE_GET_DATA(handle, config,
1890 struct gpfs_config_data,
1893 if (!config->ftruncate) {
1894 return SMB_VFS_NEXT_FTRUNCATE(handle, fsp, len);
1897 result = gpfswrap_ftruncate(fsp_get_io_fd(fsp), len);
1898 if ((result == -1) && (errno == ENOSYS)) {
1899 return SMB_VFS_NEXT_FTRUNCATE(handle, fsp, len);
1904 static bool vfs_gpfs_is_offline(struct vfs_handle_struct *handle,
1905 const struct smb_filename *fname,
1906 SMB_STRUCT_STAT *sbuf)
1908 struct gpfs_winattr attrs;
1909 struct gpfs_config_data *config;
1912 SMB_VFS_HANDLE_GET_DATA(handle, config,
1913 struct gpfs_config_data,
1916 if (!config->winattr) {
1920 ret = gpfswrap_get_winattrs_path(fname->base_name, &attrs);
1925 if ((attrs.winAttrs & GPFS_WINATTR_OFFLINE) != 0) {
1926 DBG_DEBUG("%s is offline\n", fname->base_name);
1930 DBG_DEBUG("%s is online\n", fname->base_name);
1934 static bool vfs_gpfs_fsp_is_offline(struct vfs_handle_struct *handle,
1935 struct files_struct *fsp)
1937 struct gpfs_fsp_extension *ext;
1939 ext = VFS_FETCH_FSP_EXTENSION(handle, fsp);
1942 * Something bad happened, always ask.
1944 return vfs_gpfs_is_offline(handle, fsp->fsp_name,
1945 &fsp->fsp_name->st);
1950 * As long as it's offline, ask.
1952 ext->offline = vfs_gpfs_is_offline(handle, fsp->fsp_name,
1953 &fsp->fsp_name->st);
1956 return ext->offline;
1959 static bool vfs_gpfs_aio_force(struct vfs_handle_struct *handle,
1960 struct files_struct *fsp)
1962 return vfs_gpfs_fsp_is_offline(handle, fsp);
1965 static ssize_t vfs_gpfs_sendfile(vfs_handle_struct *handle, int tofd,
1966 files_struct *fsp, const DATA_BLOB *hdr,
1967 off_t offset, size_t n)
1969 if (vfs_gpfs_fsp_is_offline(handle, fsp)) {
1973 return SMB_VFS_NEXT_SENDFILE(handle, tofd, fsp, hdr, offset, n);
1977 static int vfs_gpfs_check_pathref_fstat_x(struct gpfs_config_data *config,
1978 struct connection_struct *conn)
1980 struct gpfs_iattr64 iattr = {0};
1981 unsigned int litemask;
1986 fd = open(conn->connectpath, O_PATH);
1988 DBG_ERR("openat() of share with O_PATH failed: %s\n",
1993 ret = gpfswrap_fstat_x(fd, &litemask, &iattr, sizeof(iattr));
1996 config->pathref_ok.gpfs_fstat_x = true;
2000 saved_errno = errno;
2003 DBG_ERR("close failed: %s\n", strerror(errno));
2007 if (saved_errno != EBADF) {
2008 DBG_ERR("gpfswrap_fstat_x() of O_PATH handle failed: %s\n",
2009 strerror(saved_errno));
2017 static int vfs_gpfs_check_pathref(struct gpfs_config_data *config,
2018 struct connection_struct *conn)
2022 * This code path leaves all struct gpfs_config_data.pathref_ok members
2023 * initialized to false.
2029 ret = vfs_gpfs_check_pathref_fstat_x(config, conn);
2038 static int vfs_gpfs_connect(struct vfs_handle_struct *handle,
2039 const char *service, const char *user)
2041 struct gpfs_config_data *config;
2045 ret = SMB_VFS_NEXT_CONNECT(handle, service, user);
2050 if (IS_IPC(handle->conn)) {
2054 gpfswrap_lib_init(0);
2056 config = talloc_zero(handle->conn, struct gpfs_config_data);
2058 DEBUG(0, ("talloc_zero() failed\n"));
2063 check_fstype = lp_parm_bool(SNUM(handle->conn), "gpfs",
2064 "check_fstype", true);
2067 const char *connectpath = handle->conn->connectpath;
2068 struct statfs buf = { 0 };
2070 ret = statfs(connectpath, &buf);
2072 DBG_ERR("statfs failed for share %s at path %s: %s\n",
2073 service, connectpath, strerror(errno));
2074 TALLOC_FREE(config);
2078 if (buf.f_type != GPFS_SUPER_MAGIC) {
2079 DBG_ERR("SMB share %s, path %s not in GPFS file system."
2080 " statfs magic: 0x%jx\n",
2083 (uintmax_t)buf.f_type);
2085 TALLOC_FREE(config);
2090 ret = smbacl4_get_vfs_params(handle->conn, &config->nfs4_params);
2092 TALLOC_FREE(config);
2096 config->sharemodes = lp_parm_bool(SNUM(handle->conn), "gpfs",
2097 "sharemodes", true);
2099 config->leases = lp_parm_bool(SNUM(handle->conn), "gpfs",
2102 config->hsm = lp_parm_bool(SNUM(handle->conn), "gpfs",
2105 config->syncio = lp_parm_bool(SNUM(handle->conn), "gpfs",
2108 config->winattr = lp_parm_bool(SNUM(handle->conn), "gpfs",
2111 config->ftruncate = lp_parm_bool(SNUM(handle->conn), "gpfs",
2114 config->getrealfilename = lp_parm_bool(SNUM(handle->conn), "gpfs",
2115 "getrealfilename", true);
2117 config->dfreequota = lp_parm_bool(SNUM(handle->conn), "gpfs",
2118 "dfreequota", false);
2120 config->acl = lp_parm_bool(SNUM(handle->conn), "gpfs", "acl", true);
2122 config->settimes = lp_parm_bool(SNUM(handle->conn), "gpfs",
2124 config->recalls = lp_parm_bool(SNUM(handle->conn), "gpfs",
2127 ret = vfs_gpfs_check_pathref(config, handle->conn);
2129 DBG_ERR("vfs_gpfs_check_pathref() on [%s] failed\n",
2130 handle->conn->connectpath);
2131 TALLOC_FREE(config);
2135 SMB_VFS_HANDLE_SET_DATA(handle, config,
2136 NULL, struct gpfs_config_data,
2139 if (config->leases) {
2141 * GPFS lease code is based on kernel oplock code
2142 * so make sure it is turned on
2144 if (!lp_kernel_oplocks(SNUM(handle->conn))) {
2145 DEBUG(5, ("Enabling kernel oplocks for "
2146 "gpfs:leases to work\n"));
2147 lp_do_parameter(SNUM(handle->conn), "kernel oplocks",
2152 * as the kernel does not properly support Level II oplocks
2153 * and GPFS leases code is based on kernel infrastructure, we
2154 * need to turn off Level II oplocks if gpfs:leases is enabled
2156 if (lp_level2_oplocks(SNUM(handle->conn))) {
2157 DEBUG(5, ("gpfs:leases are enabled, disabling "
2158 "Level II oplocks\n"));
2159 lp_do_parameter(SNUM(handle->conn), "level2 oplocks",
2165 * Unless we have an async implementation of get_dos_attributes turn
2168 lp_do_parameter(SNUM(handle->conn), "smbd async dosmode", "false");
2173 static int get_gpfs_quota(const char *pathname, int type, int id,
2174 struct gpfs_quotaInfo *qi)
2178 ret = gpfswrap_quotactl(pathname, GPFS_QCMD(Q_GETQUOTA, type), id, qi);
2181 if (errno == GPFS_E_NO_QUOTA_INST) {
2182 DEBUG(10, ("Quotas disabled on GPFS filesystem.\n"));
2183 } else if (errno != ENOSYS) {
2184 DEBUG(0, ("Get quota failed, type %d, id, %d, "
2185 "errno %d.\n", type, id, errno));
2191 DEBUG(10, ("quota type %d, id %d, blk u:%lld h:%lld s:%lld gt:%u\n",
2192 type, id, qi->blockUsage, qi->blockHardLimit,
2193 qi->blockSoftLimit, qi->blockGraceTime));
2198 static void vfs_gpfs_disk_free_quota(struct gpfs_quotaInfo qi, time_t cur_time,
2199 uint64_t *dfree, uint64_t *dsize)
2201 uint64_t usage, limit;
2204 * The quota reporting is done in units of 1024 byte blocks, but
2205 * sys_fsusage uses units of 512 byte blocks, adjust the block number
2206 * accordingly. Also filter possibly negative usage counts from gpfs.
2208 usage = qi.blockUsage < 0 ? 0 : (uint64_t)qi.blockUsage * 2;
2209 limit = (uint64_t)qi.blockHardLimit * 2;
2212 * When the grace time for the exceeded soft block quota has been
2213 * exceeded, the soft block quota becomes an additional hard limit.
2215 if (qi.blockSoftLimit &&
2216 qi.blockGraceTime && cur_time > qi.blockGraceTime) {
2217 /* report disk as full */
2219 *dsize = MIN(*dsize, usage);
2222 if (!qi.blockHardLimit)
2225 if (usage >= limit) {
2226 /* report disk as full */
2228 *dsize = MIN(*dsize, usage);
2231 /* limit has not been reached, determine "free space" */
2232 *dfree = MIN(*dfree, limit - usage);
2233 *dsize = MIN(*dsize, limit);
2237 static uint64_t vfs_gpfs_disk_free(vfs_handle_struct *handle,
2238 const struct smb_filename *smb_fname,
2243 struct security_unix_token *utok;
2244 struct gpfs_quotaInfo qi_user = { 0 }, qi_group = { 0 };
2245 struct gpfs_config_data *config;
2249 SMB_VFS_HANDLE_GET_DATA(handle, config, struct gpfs_config_data,
2250 return (uint64_t)-1);
2251 if (!config->dfreequota) {
2252 return SMB_VFS_NEXT_DISK_FREE(handle, smb_fname,
2253 bsize, dfree, dsize);
2256 err = sys_fsusage(smb_fname->base_name, dfree, dsize);
2258 DEBUG (0, ("Could not get fs usage, errno %d\n", errno));
2259 return SMB_VFS_NEXT_DISK_FREE(handle, smb_fname,
2260 bsize, dfree, dsize);
2263 /* sys_fsusage returns units of 512 bytes */
2266 DEBUG(10, ("fs dfree %llu, dsize %llu\n",
2267 (unsigned long long)*dfree, (unsigned long long)*dsize));
2269 utok = handle->conn->session_info->unix_token;
2271 err = get_gpfs_quota(smb_fname->base_name,
2272 GPFS_USRQUOTA, utok->uid, &qi_user);
2274 return SMB_VFS_NEXT_DISK_FREE(handle, smb_fname,
2275 bsize, dfree, dsize);
2279 * If new files created under this folder get this folder's
2280 * GID, then available space is governed by the quota of the
2281 * folder's GID, not the primary group of the creating user.
2283 if (VALID_STAT(smb_fname->st) &&
2284 S_ISDIR(smb_fname->st.st_ex_mode) &&
2285 smb_fname->st.st_ex_mode & S_ISGID) {
2287 err = get_gpfs_quota(smb_fname->base_name, GPFS_GRPQUOTA,
2288 smb_fname->st.st_ex_gid, &qi_group);
2292 err = get_gpfs_quota(smb_fname->base_name, GPFS_GRPQUOTA,
2293 utok->gid, &qi_group);
2297 return SMB_VFS_NEXT_DISK_FREE(handle, smb_fname,
2298 bsize, dfree, dsize);
2301 cur_time = time(NULL);
2303 /* Adjust free space and size according to quota limits. */
2304 vfs_gpfs_disk_free_quota(qi_user, cur_time, dfree, dsize);
2305 vfs_gpfs_disk_free_quota(qi_group, cur_time, dfree, dsize);
2310 static int vfs_gpfs_get_quota(vfs_handle_struct *handle,
2311 const struct smb_filename *smb_fname,
2312 enum SMB_QUOTA_TYPE qtype,
2318 * User/group quota are being used for disk-free
2319 * determination, which in this module is done directly
2320 * by the disk-free function. It's important that this
2321 * module does not return wrong quota values by mistake,
2322 * which would modify the correct values set by disk-free.
2323 * User/group quota are also being used for processing
2324 * NT_TRANSACT_GET_USER_QUOTA in smb1 protocol, which is
2325 * currently not supported by this module.
2327 case SMB_USER_QUOTA_TYPE:
2328 case SMB_GROUP_QUOTA_TYPE:
2332 return SMB_VFS_NEXT_GET_QUOTA(handle, smb_fname,
2337 static uint32_t vfs_gpfs_capabilities(struct vfs_handle_struct *handle,
2338 enum timestamp_set_resolution *p_ts_res)
2340 struct gpfs_config_data *config;
2343 next = SMB_VFS_NEXT_FS_CAPABILITIES(handle, p_ts_res);
2345 SMB_VFS_HANDLE_GET_DATA(handle, config,
2346 struct gpfs_config_data,
2350 next |= FILE_SUPPORTS_REMOTE_STORAGE;
2355 static int vfs_gpfs_openat(struct vfs_handle_struct *handle,
2356 const struct files_struct *dirfsp,
2357 const struct smb_filename *smb_fname,
2362 struct gpfs_config_data *config = NULL;
2363 struct gpfs_fsp_extension *ext = NULL;
2366 SMB_VFS_HANDLE_GET_DATA(handle, config,
2367 struct gpfs_config_data,
2370 if (config->hsm && !config->recalls &&
2371 vfs_gpfs_fsp_is_offline(handle, fsp))
2373 DBG_DEBUG("Refusing access to offline file %s\n",
2379 if (config->syncio) {
2383 ext = VFS_ADD_FSP_EXTENSION(handle, fsp, struct gpfs_fsp_extension,
2391 * Assume the file is offline until gpfs tells us it's online.
2393 *ext = (struct gpfs_fsp_extension) { .offline = true };
2395 ret = SMB_VFS_NEXT_OPENAT(handle, dirfsp, smb_fname, fsp, flags, mode);
2397 VFS_REMOVE_FSP_EXTENSION(handle, fsp);
2402 static ssize_t vfs_gpfs_pread(vfs_handle_struct *handle, files_struct *fsp,
2403 void *data, size_t n, off_t offset)
2408 was_offline = vfs_gpfs_fsp_is_offline(handle, fsp);
2410 ret = SMB_VFS_NEXT_PREAD(handle, fsp, data, n, offset);
2412 if ((ret != -1) && was_offline) {
2413 notify_fname(handle->conn, NOTIFY_ACTION_MODIFIED,
2414 FILE_NOTIFY_CHANGE_ATTRIBUTES,
2415 fsp->fsp_name->base_name);
2421 struct vfs_gpfs_pread_state {
2422 struct files_struct *fsp;
2425 struct vfs_aio_state vfs_aio_state;
2428 static void vfs_gpfs_pread_done(struct tevent_req *subreq);
2430 static struct tevent_req *vfs_gpfs_pread_send(struct vfs_handle_struct *handle,
2431 TALLOC_CTX *mem_ctx,
2432 struct tevent_context *ev,
2433 struct files_struct *fsp,
2434 void *data, size_t n,
2437 struct tevent_req *req, *subreq;
2438 struct vfs_gpfs_pread_state *state;
2440 req = tevent_req_create(mem_ctx, &state, struct vfs_gpfs_pread_state);
2444 state->was_offline = vfs_gpfs_fsp_is_offline(handle, fsp);
2446 subreq = SMB_VFS_NEXT_PREAD_SEND(state, ev, handle, fsp, data,
2448 if (tevent_req_nomem(subreq, req)) {
2449 return tevent_req_post(req, ev);
2451 tevent_req_set_callback(subreq, vfs_gpfs_pread_done, req);
2455 static void vfs_gpfs_pread_done(struct tevent_req *subreq)
2457 struct tevent_req *req = tevent_req_callback_data(
2458 subreq, struct tevent_req);
2459 struct vfs_gpfs_pread_state *state = tevent_req_data(
2460 req, struct vfs_gpfs_pread_state);
2462 state->ret = SMB_VFS_PREAD_RECV(subreq, &state->vfs_aio_state);
2463 TALLOC_FREE(subreq);
2464 tevent_req_done(req);
2467 static ssize_t vfs_gpfs_pread_recv(struct tevent_req *req,
2468 struct vfs_aio_state *vfs_aio_state)
2470 struct vfs_gpfs_pread_state *state = tevent_req_data(
2471 req, struct vfs_gpfs_pread_state);
2472 struct files_struct *fsp = state->fsp;
2474 if (tevent_req_is_unix_error(req, &vfs_aio_state->error)) {
2477 *vfs_aio_state = state->vfs_aio_state;
2479 if ((state->ret != -1) && state->was_offline) {
2480 DEBUG(10, ("sending notify\n"));
2481 notify_fname(fsp->conn, NOTIFY_ACTION_MODIFIED,
2482 FILE_NOTIFY_CHANGE_ATTRIBUTES,
2483 fsp->fsp_name->base_name);
2489 static ssize_t vfs_gpfs_pwrite(vfs_handle_struct *handle, files_struct *fsp,
2490 const void *data, size_t n, off_t offset)
2495 was_offline = vfs_gpfs_fsp_is_offline(handle, fsp);
2497 ret = SMB_VFS_NEXT_PWRITE(handle, fsp, data, n, offset);
2499 if ((ret != -1) && was_offline) {
2500 notify_fname(handle->conn, NOTIFY_ACTION_MODIFIED,
2501 FILE_NOTIFY_CHANGE_ATTRIBUTES,
2502 fsp->fsp_name->base_name);
2508 struct vfs_gpfs_pwrite_state {
2509 struct files_struct *fsp;
2512 struct vfs_aio_state vfs_aio_state;
2515 static void vfs_gpfs_pwrite_done(struct tevent_req *subreq);
2517 static struct tevent_req *vfs_gpfs_pwrite_send(
2518 struct vfs_handle_struct *handle,
2519 TALLOC_CTX *mem_ctx,
2520 struct tevent_context *ev,
2521 struct files_struct *fsp,
2522 const void *data, size_t n,
2525 struct tevent_req *req, *subreq;
2526 struct vfs_gpfs_pwrite_state *state;
2528 req = tevent_req_create(mem_ctx, &state, struct vfs_gpfs_pwrite_state);
2532 state->was_offline = vfs_gpfs_fsp_is_offline(handle, fsp);
2534 subreq = SMB_VFS_NEXT_PWRITE_SEND(state, ev, handle, fsp, data,
2536 if (tevent_req_nomem(subreq, req)) {
2537 return tevent_req_post(req, ev);
2539 tevent_req_set_callback(subreq, vfs_gpfs_pwrite_done, req);
2543 static void vfs_gpfs_pwrite_done(struct tevent_req *subreq)
2545 struct tevent_req *req = tevent_req_callback_data(
2546 subreq, struct tevent_req);
2547 struct vfs_gpfs_pwrite_state *state = tevent_req_data(
2548 req, struct vfs_gpfs_pwrite_state);
2550 state->ret = SMB_VFS_PWRITE_RECV(subreq, &state->vfs_aio_state);
2551 TALLOC_FREE(subreq);
2552 tevent_req_done(req);
2555 static ssize_t vfs_gpfs_pwrite_recv(struct tevent_req *req,
2556 struct vfs_aio_state *vfs_aio_state)
2558 struct vfs_gpfs_pwrite_state *state = tevent_req_data(
2559 req, struct vfs_gpfs_pwrite_state);
2560 struct files_struct *fsp = state->fsp;
2562 if (tevent_req_is_unix_error(req, &vfs_aio_state->error)) {
2565 *vfs_aio_state = state->vfs_aio_state;
2567 if ((state->ret != -1) && state->was_offline) {
2568 DEBUG(10, ("sending notify\n"));
2569 notify_fname(fsp->conn, NOTIFY_ACTION_MODIFIED,
2570 FILE_NOTIFY_CHANGE_ATTRIBUTES,
2571 fsp->fsp_name->base_name);
2578 static struct vfs_fn_pointers vfs_gpfs_fns = {
2579 .connect_fn = vfs_gpfs_connect,
2580 .disk_free_fn = vfs_gpfs_disk_free,
2581 .get_quota_fn = vfs_gpfs_get_quota,
2582 .fs_capabilities_fn = vfs_gpfs_capabilities,
2583 .kernel_flock_fn = vfs_gpfs_kernel_flock,
2584 .linux_setlease_fn = vfs_gpfs_setlease,
2585 .get_real_filename_fn = vfs_gpfs_get_real_filename,
2586 .get_dos_attributes_send_fn = vfs_not_implemented_get_dos_attributes_send,
2587 .get_dos_attributes_recv_fn = vfs_not_implemented_get_dos_attributes_recv,
2588 .fget_dos_attributes_fn = vfs_gpfs_fget_dos_attributes,
2589 .fset_dos_attributes_fn = vfs_gpfs_fset_dos_attributes,
2590 .fget_nt_acl_fn = gpfsacl_fget_nt_acl,
2591 .fset_nt_acl_fn = gpfsacl_fset_nt_acl,
2592 .sys_acl_get_fd_fn = gpfsacl_sys_acl_get_fd,
2593 .sys_acl_blob_get_fd_fn = gpfsacl_sys_acl_blob_get_fd,
2594 .sys_acl_set_fd_fn = gpfsacl_sys_acl_set_fd,
2595 .sys_acl_delete_def_fd_fn = gpfsacl_sys_acl_delete_def_fd,
2596 .fchmod_fn = vfs_gpfs_fchmod,
2597 .close_fn = vfs_gpfs_close,
2598 .stat_fn = vfs_gpfs_stat,
2599 .lstat_fn = vfs_gpfs_lstat,
2600 .fntimes_fn = vfs_gpfs_fntimes,
2601 .aio_force_fn = vfs_gpfs_aio_force,
2602 .sendfile_fn = vfs_gpfs_sendfile,
2603 .fallocate_fn = vfs_gpfs_fallocate,
2604 .openat_fn = vfs_gpfs_openat,
2605 .pread_fn = vfs_gpfs_pread,
2606 .pread_send_fn = vfs_gpfs_pread_send,
2607 .pread_recv_fn = vfs_gpfs_pread_recv,
2608 .pwrite_fn = vfs_gpfs_pwrite,
2609 .pwrite_send_fn = vfs_gpfs_pwrite_send,
2610 .pwrite_recv_fn = vfs_gpfs_pwrite_recv,
2611 .ftruncate_fn = vfs_gpfs_ftruncate
2615 NTSTATUS vfs_gpfs_init(TALLOC_CTX *ctx)
2619 ret = gpfswrap_init();
2621 DEBUG(1, ("Could not initialize GPFS library wrapper\n"));
2624 return smb_register_vfs(SMB_VFS_INTERFACE_VERSION, "gpfs",