4 * The contents of this file are subject to the terms of the
5 * Common Development and Distribution License (the "License").
6 * You may not use this file except in compliance with the License.
8 * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
9 * or http://www.opensolaris.org/os/licensing.
10 * See the License for the specific language governing permissions
11 * and limitations under the License.
13 * When distributing Covered Code, include this CDDL HEADER in each
14 * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
15 * If applicable, add the following below this CDDL HEADER, with the
16 * fields enclosed by brackets "[]" replaced with your own identifying
17 * information: Portions Copyright [yyyy] [name of copyright owner]
23 * Copyright (c) 2005, 2010, Oracle and/or its affiliates. All rights reserved.
24 * Portions Copyright 2011 Martin Matuska
25 * Portions Copyright 2012 Pawel Jakub Dawidek <pawel@dawidek.net>
26 * Copyright (c) 2012, Joyent, Inc. All rights reserved.
27 * Copyright 2015 Nexenta Systems, Inc. All rights reserved.
28 * Copyright (c) 2014, Joyent, Inc. All rights reserved.
29 * Copyright (c) 2011, 2015 by Delphix. All rights reserved.
30 * Copyright (c) 2013 by Saso Kiselkov. All rights reserved.
31 * Copyright (c) 2013 Steven Hartland. All rights reserved.
32 * Copyright (c) 2016 Actifio, Inc. All rights reserved.
38 * This file handles the ioctls to /dev/zfs, used for configuring ZFS storage
39 * pools and filesystems, e.g. with /sbin/zfs and /sbin/zpool.
41 * There are two ways that we handle ioctls: the legacy way where almost
42 * all of the logic is in the ioctl callback, and the new way where most
43 * of the marshalling is handled in the common entry point, zfsdev_ioctl().
45 * Non-legacy ioctls should be registered by calling
46 * zfs_ioctl_register() from zfs_ioctl_init(). The ioctl is invoked
47 * from userland by lzc_ioctl().
49 * The registration arguments are as follows:
52 * The name of the ioctl. This is used for history logging. If the
53 * ioctl returns successfully (the callback returns 0), and allow_log
54 * is true, then a history log entry will be recorded with the input &
55 * output nvlists. The log entry can be printed with "zpool history -i".
58 * The ioctl request number, which userland will pass to ioctl(2).
59 * The ioctl numbers can change from release to release, because
60 * the caller (libzfs) must be matched to the kernel.
62 * zfs_secpolicy_func_t *secpolicy
63 * This function will be called before the zfs_ioc_func_t, to
64 * determine if this operation is permitted. It should return EPERM
65 * on failure, and 0 on success. Checks include determining if the
66 * dataset is visible in this zone, and if the user has either all
67 * zfs privileges in the zone (SYS_MOUNT), or has been granted permission
68 * to do this operation on this dataset with "zfs allow".
70 * zfs_ioc_namecheck_t namecheck
71 * This specifies what to expect in the zfs_cmd_t:zc_name -- a pool
72 * name, a dataset name, or nothing. If the name is not well-formed,
73 * the ioctl will fail and the callback will not be called.
74 * Therefore, the callback can assume that the name is well-formed
75 * (e.g. is null-terminated, doesn't have more than one '@' character,
76 * doesn't have invalid characters).
78 * zfs_ioc_poolcheck_t pool_check
79 * This specifies requirements on the pool state. If the pool does
80 * not meet them (is suspended or is readonly), the ioctl will fail
81 * and the callback will not be called. If any checks are specified
82 * (i.e. it is not POOL_CHECK_NONE), namecheck must not be NO_NAME.
83 * Multiple checks can be or-ed together (e.g. POOL_CHECK_SUSPENDED |
84 * POOL_CHECK_READONLY).
86 * boolean_t smush_outnvlist
87 * If smush_outnvlist is true, then the output is presumed to be a
88 * list of errors, and it will be "smushed" down to fit into the
89 * caller's buffer, by removing some entries and replacing them with a
90 * single "N_MORE_ERRORS" entry indicating how many were removed. See
91 * nvlist_smush() for details. If smush_outnvlist is false, and the
92 * outnvlist does not fit into the userland-provided buffer, then the
93 * ioctl will fail with ENOMEM.
95 * zfs_ioc_func_t *func
96 * The callback function that will perform the operation.
98 * The callback should return 0 on success, or an error number on
99 * failure. If the function fails, the userland ioctl will return -1,
100 * and errno will be set to the callback's return value. The callback
101 * will be called with the following arguments:
104 * The name of the pool or dataset to operate on, from
105 * zfs_cmd_t:zc_name. The 'namecheck' argument specifies the
106 * expected type (pool, dataset, or none).
109 * The input nvlist, deserialized from zfs_cmd_t:zc_nvlist_src. Or
110 * NULL if no input nvlist was provided. Changes to this nvlist are
111 * ignored. If the input nvlist could not be deserialized, the
112 * ioctl will fail and the callback will not be called.
115 * The output nvlist, initially empty. The callback can fill it in,
116 * and it will be returned to userland by serializing it into
117 * zfs_cmd_t:zc_nvlist_dst. If it is non-empty, and serialization
118 * fails (e.g. because the caller didn't supply a large enough
119 * buffer), then the overall ioctl will fail. See the
120 * 'smush_nvlist' argument above for additional behaviors.
122 * There are two typical uses of the output nvlist:
123 * - To return state, e.g. property values. In this case,
124 * smush_outnvlist should be false. If the buffer was not large
125 * enough, the caller will reallocate a larger buffer and try
128 * - To return multiple errors from an ioctl which makes on-disk
129 * changes. In this case, smush_outnvlist should be true.
130 * Ioctls which make on-disk modifications should generally not
131 * use the outnvl if they succeed, because the caller can not
132 * distinguish between the operation failing, and
133 * deserialization failing.
136 #include <sys/types.h>
137 #include <sys/param.h>
138 #include <sys/errno.h>
141 #include <sys/modctl.h>
142 #include <sys/open.h>
143 #include <sys/file.h>
144 #include <sys/kmem.h>
145 #include <sys/conf.h>
146 #include <sys/cmn_err.h>
147 #include <sys/stat.h>
148 #include <sys/zfs_ioctl.h>
149 #include <sys/zfs_vfsops.h>
150 #include <sys/zfs_znode.h>
153 #include <sys/spa_impl.h>
154 #include <sys/vdev.h>
155 #include <sys/priv_impl.h>
157 #include <sys/dsl_dir.h>
158 #include <sys/dsl_dataset.h>
159 #include <sys/dsl_prop.h>
160 #include <sys/dsl_deleg.h>
161 #include <sys/dmu_objset.h>
162 #include <sys/dmu_impl.h>
163 #include <sys/dmu_tx.h>
165 #include <sys/sunddi.h>
166 #include <sys/sunldi.h>
167 #include <sys/policy.h>
168 #include <sys/zone.h>
169 #include <sys/nvpair.h>
170 #include <sys/pathname.h>
171 #include <sys/mount.h>
173 #include <sys/fs/zfs.h>
174 #include <sys/zfs_ctldir.h>
175 #include <sys/zfs_dir.h>
176 #include <sys/zfs_onexit.h>
177 #include <sys/zvol.h>
178 #include <sys/dsl_scan.h>
179 #include <sharefs/share.h>
180 #include <sys/fm/util.h>
182 #include <sys/dmu_send.h>
183 #include <sys/dsl_destroy.h>
184 #include <sys/dsl_bookmark.h>
185 #include <sys/dsl_userhold.h>
186 #include <sys/zfeature.h>
188 #include <linux/miscdevice.h>
190 #include "zfs_namecheck.h"
191 #include "zfs_prop.h"
192 #include "zfs_deleg.h"
193 #include "zfs_comutil.h"
195 kmutex_t zfsdev_state_lock;
196 zfsdev_state_t *zfsdev_state_list;
198 extern void zfs_init(void);
199 extern void zfs_fini(void);
201 uint_t zfs_fsyncer_key;
202 extern uint_t rrw_tsd_key;
203 static uint_t zfs_allow_log_key;
205 typedef int zfs_ioc_legacy_func_t(zfs_cmd_t *);
206 typedef int zfs_ioc_func_t(const char *, nvlist_t *, nvlist_t *);
207 typedef int zfs_secpolicy_func_t(zfs_cmd_t *, nvlist_t *, cred_t *);
213 } zfs_ioc_namecheck_t;
216 POOL_CHECK_NONE = 1 << 0,
217 POOL_CHECK_SUSPENDED = 1 << 1,
218 POOL_CHECK_READONLY = 1 << 2,
219 } zfs_ioc_poolcheck_t;
221 typedef struct zfs_ioc_vec {
222 zfs_ioc_legacy_func_t *zvec_legacy_func;
223 zfs_ioc_func_t *zvec_func;
224 zfs_secpolicy_func_t *zvec_secpolicy;
225 zfs_ioc_namecheck_t zvec_namecheck;
226 boolean_t zvec_allow_log;
227 zfs_ioc_poolcheck_t zvec_pool_check;
228 boolean_t zvec_smush_outnvlist;
229 const char *zvec_name;
232 /* This array is indexed by zfs_userquota_prop_t */
233 static const char *userquota_perms[] = {
234 ZFS_DELEG_PERM_USERUSED,
235 ZFS_DELEG_PERM_USERQUOTA,
236 ZFS_DELEG_PERM_GROUPUSED,
237 ZFS_DELEG_PERM_GROUPQUOTA,
240 static int zfs_ioc_userspace_upgrade(zfs_cmd_t *zc);
241 static int zfs_check_settable(const char *name, nvpair_t *property,
243 static int zfs_check_clearable(char *dataset, nvlist_t *props,
245 static int zfs_fill_zplprops_root(uint64_t, nvlist_t *, nvlist_t *,
247 int zfs_set_prop_nvlist(const char *, zprop_source_t, nvlist_t *, nvlist_t *);
248 static int get_nvlist(uint64_t nvl, uint64_t size, int iflag, nvlist_t **nvp);
251 history_str_free(char *buf)
253 kmem_free(buf, HIS_MAX_RECORD_LEN);
257 history_str_get(zfs_cmd_t *zc)
261 if (zc->zc_history == 0)
264 buf = kmem_alloc(HIS_MAX_RECORD_LEN, KM_SLEEP);
265 if (copyinstr((void *)(uintptr_t)zc->zc_history,
266 buf, HIS_MAX_RECORD_LEN, NULL) != 0) {
267 history_str_free(buf);
271 buf[HIS_MAX_RECORD_LEN -1] = '\0';
277 * Check to see if the named dataset is currently defined as bootable
280 zfs_is_bootfs(const char *name)
284 if (dmu_objset_hold(name, FTAG, &os) == 0) {
286 ret = (dmu_objset_id(os) == spa_bootfs(dmu_objset_spa(os)));
287 dmu_objset_rele(os, FTAG);
294 * Return non-zero if the spa version is less than requested version.
297 zfs_earlier_version(const char *name, int version)
301 if (spa_open(name, &spa, FTAG) == 0) {
302 if (spa_version(spa) < version) {
303 spa_close(spa, FTAG);
306 spa_close(spa, FTAG);
312 * Return TRUE if the ZPL version is less than requested version.
315 zpl_earlier_version(const char *name, int version)
318 boolean_t rc = B_TRUE;
320 if (dmu_objset_hold(name, FTAG, &os) == 0) {
323 if (dmu_objset_type(os) != DMU_OST_ZFS) {
324 dmu_objset_rele(os, FTAG);
327 /* XXX reading from non-owned objset */
328 if (zfs_get_zplprop(os, ZFS_PROP_VERSION, &zplversion) == 0)
329 rc = zplversion < version;
330 dmu_objset_rele(os, FTAG);
336 zfs_log_history(zfs_cmd_t *zc)
341 if ((buf = history_str_get(zc)) == NULL)
344 if (spa_open(zc->zc_name, &spa, FTAG) == 0) {
345 if (spa_version(spa) >= SPA_VERSION_ZPOOL_HISTORY)
346 (void) spa_history_log(spa, buf);
347 spa_close(spa, FTAG);
349 history_str_free(buf);
353 * Policy for top-level read operations (list pools). Requires no privileges,
354 * and can be used in the local zone, as there is no associated dataset.
358 zfs_secpolicy_none(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
364 * Policy for dataset read operations (list children, get statistics). Requires
365 * no privileges, but must be visible in the local zone.
369 zfs_secpolicy_read(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
371 if (INGLOBALZONE(curproc) ||
372 zone_dataset_visible(zc->zc_name, NULL))
375 return (SET_ERROR(ENOENT));
379 zfs_dozonecheck_impl(const char *dataset, uint64_t zoned, cred_t *cr)
384 * The dataset must be visible by this zone -- check this first
385 * so they don't see EPERM on something they shouldn't know about.
387 if (!INGLOBALZONE(curproc) &&
388 !zone_dataset_visible(dataset, &writable))
389 return (SET_ERROR(ENOENT));
391 if (INGLOBALZONE(curproc)) {
393 * If the fs is zoned, only root can access it from the
396 if (secpolicy_zfs(cr) && zoned)
397 return (SET_ERROR(EPERM));
400 * If we are in a local zone, the 'zoned' property must be set.
403 return (SET_ERROR(EPERM));
405 /* must be writable by this zone */
407 return (SET_ERROR(EPERM));
413 zfs_dozonecheck(const char *dataset, cred_t *cr)
417 if (dsl_prop_get_integer(dataset, "zoned", &zoned, NULL))
418 return (SET_ERROR(ENOENT));
420 return (zfs_dozonecheck_impl(dataset, zoned, cr));
424 zfs_dozonecheck_ds(const char *dataset, dsl_dataset_t *ds, cred_t *cr)
428 if (dsl_prop_get_int_ds(ds, "zoned", &zoned))
429 return (SET_ERROR(ENOENT));
431 return (zfs_dozonecheck_impl(dataset, zoned, cr));
435 zfs_secpolicy_write_perms_ds(const char *name, dsl_dataset_t *ds,
436 const char *perm, cred_t *cr)
440 error = zfs_dozonecheck_ds(name, ds, cr);
442 error = secpolicy_zfs(cr);
444 error = dsl_deleg_access_impl(ds, perm, cr);
450 zfs_secpolicy_write_perms(const char *name, const char *perm, cred_t *cr)
456 error = dsl_pool_hold(name, FTAG, &dp);
460 error = dsl_dataset_hold(dp, name, FTAG, &ds);
462 dsl_pool_rele(dp, FTAG);
466 error = zfs_secpolicy_write_perms_ds(name, ds, perm, cr);
468 dsl_dataset_rele(ds, FTAG);
469 dsl_pool_rele(dp, FTAG);
474 * Policy for setting the security label property.
476 * Returns 0 for success, non-zero for access and other errors.
479 zfs_set_slabel_policy(const char *name, char *strval, cred_t *cr)
482 char ds_hexsl[MAXNAMELEN];
483 bslabel_t ds_sl, new_sl;
484 boolean_t new_default = FALSE;
486 int needed_priv = -1;
489 /* First get the existing dataset label. */
490 error = dsl_prop_get(name, zfs_prop_to_name(ZFS_PROP_MLSLABEL),
491 1, sizeof (ds_hexsl), &ds_hexsl, NULL);
493 return (SET_ERROR(EPERM));
495 if (strcasecmp(strval, ZFS_MLSLABEL_DEFAULT) == 0)
498 /* The label must be translatable */
499 if (!new_default && (hexstr_to_label(strval, &new_sl) != 0))
500 return (SET_ERROR(EINVAL));
503 * In a non-global zone, disallow attempts to set a label that
504 * doesn't match that of the zone; otherwise no other checks
507 if (!INGLOBALZONE(curproc)) {
508 if (new_default || !blequal(&new_sl, CR_SL(CRED())))
509 return (SET_ERROR(EPERM));
514 * For global-zone datasets (i.e., those whose zoned property is
515 * "off", verify that the specified new label is valid for the
518 if (dsl_prop_get_integer(name,
519 zfs_prop_to_name(ZFS_PROP_ZONED), &zoned, NULL))
520 return (SET_ERROR(EPERM));
522 if (zfs_check_global_label(name, strval) != 0)
523 return (SET_ERROR(EPERM));
527 * If the existing dataset label is nondefault, check if the
528 * dataset is mounted (label cannot be changed while mounted).
529 * Get the zfs_sb_t; if there isn't one, then the dataset isn't
530 * mounted (or isn't a dataset, doesn't exist, ...).
532 if (strcasecmp(ds_hexsl, ZFS_MLSLABEL_DEFAULT) != 0) {
534 static char *setsl_tag = "setsl_tag";
537 * Try to own the dataset; abort if there is any error,
538 * (e.g., already mounted, in use, or other error).
540 error = dmu_objset_own(name, DMU_OST_ZFS, B_TRUE,
543 return (SET_ERROR(EPERM));
545 dmu_objset_disown(os, setsl_tag);
548 needed_priv = PRIV_FILE_DOWNGRADE_SL;
552 if (hexstr_to_label(strval, &new_sl) != 0)
553 return (SET_ERROR(EPERM));
555 if (blstrictdom(&ds_sl, &new_sl))
556 needed_priv = PRIV_FILE_DOWNGRADE_SL;
557 else if (blstrictdom(&new_sl, &ds_sl))
558 needed_priv = PRIV_FILE_UPGRADE_SL;
560 /* dataset currently has a default label */
562 needed_priv = PRIV_FILE_UPGRADE_SL;
566 if (needed_priv != -1)
567 return (PRIV_POLICY(cr, needed_priv, B_FALSE, EPERM, NULL));
571 #endif /* HAVE_MLSLABEL */
575 zfs_secpolicy_setprop(const char *dsname, zfs_prop_t prop, nvpair_t *propval,
581 * Check permissions for special properties.
588 * Disallow setting of 'zoned' from within a local zone.
590 if (!INGLOBALZONE(curproc))
591 return (SET_ERROR(EPERM));
595 case ZFS_PROP_FILESYSTEM_LIMIT:
596 case ZFS_PROP_SNAPSHOT_LIMIT:
597 if (!INGLOBALZONE(curproc)) {
599 char setpoint[MAXNAMELEN];
601 * Unprivileged users are allowed to modify the
602 * limit on things *under* (ie. contained by)
603 * the thing they own.
605 if (dsl_prop_get_integer(dsname, "zoned", &zoned,
607 return (SET_ERROR(EPERM));
608 if (!zoned || strlen(dsname) <= strlen(setpoint))
609 return (SET_ERROR(EPERM));
613 case ZFS_PROP_MLSLABEL:
614 if (!is_system_labeled())
615 return (SET_ERROR(EPERM));
617 if (nvpair_value_string(propval, &strval) == 0) {
620 err = zfs_set_slabel_policy(dsname, strval, CRED());
627 return (zfs_secpolicy_write_perms(dsname, zfs_prop_to_name(prop), cr));
632 zfs_secpolicy_set_fsacl(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
636 error = zfs_dozonecheck(zc->zc_name, cr);
641 * permission to set permissions will be evaluated later in
642 * dsl_deleg_can_allow()
649 zfs_secpolicy_rollback(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
651 return (zfs_secpolicy_write_perms(zc->zc_name,
652 ZFS_DELEG_PERM_ROLLBACK, cr));
657 zfs_secpolicy_send(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
665 * Generate the current snapshot name from the given objsetid, then
666 * use that name for the secpolicy/zone checks.
668 cp = strchr(zc->zc_name, '@');
670 return (SET_ERROR(EINVAL));
671 error = dsl_pool_hold(zc->zc_name, FTAG, &dp);
675 error = dsl_dataset_hold_obj(dp, zc->zc_sendobj, FTAG, &ds);
677 dsl_pool_rele(dp, FTAG);
681 dsl_dataset_name(ds, zc->zc_name);
683 error = zfs_secpolicy_write_perms_ds(zc->zc_name, ds,
684 ZFS_DELEG_PERM_SEND, cr);
685 dsl_dataset_rele(ds, FTAG);
686 dsl_pool_rele(dp, FTAG);
693 zfs_secpolicy_send_new(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
695 return (zfs_secpolicy_write_perms(zc->zc_name,
696 ZFS_DELEG_PERM_SEND, cr));
699 #ifdef HAVE_SMB_SHARE
702 zfs_secpolicy_deleg_share(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
707 if ((error = lookupname(zc->zc_value, UIO_SYSSPACE,
708 NO_FOLLOW, NULL, &vp)) != 0)
711 /* Now make sure mntpnt and dataset are ZFS */
713 if (vp->v_vfsp->vfs_fstype != zfsfstype ||
714 (strcmp((char *)refstr_value(vp->v_vfsp->vfs_resource),
715 zc->zc_name) != 0)) {
717 return (SET_ERROR(EPERM));
721 return (dsl_deleg_access(zc->zc_name,
722 ZFS_DELEG_PERM_SHARE, cr));
724 #endif /* HAVE_SMB_SHARE */
727 zfs_secpolicy_share(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
729 #ifdef HAVE_SMB_SHARE
730 if (!INGLOBALZONE(curproc))
731 return (SET_ERROR(EPERM));
733 if (secpolicy_nfs(cr) == 0) {
736 return (zfs_secpolicy_deleg_share(zc, innvl, cr));
739 return (SET_ERROR(ENOTSUP));
740 #endif /* HAVE_SMB_SHARE */
744 zfs_secpolicy_smb_acl(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
746 #ifdef HAVE_SMB_SHARE
747 if (!INGLOBALZONE(curproc))
748 return (SET_ERROR(EPERM));
750 if (secpolicy_smb(cr) == 0) {
753 return (zfs_secpolicy_deleg_share(zc, innvl, cr));
756 return (SET_ERROR(ENOTSUP));
757 #endif /* HAVE_SMB_SHARE */
761 zfs_get_parent(const char *datasetname, char *parent, int parentsize)
766 * Remove the @bla or /bla from the end of the name to get the parent.
768 (void) strncpy(parent, datasetname, parentsize);
769 cp = strrchr(parent, '@');
773 cp = strrchr(parent, '/');
775 return (SET_ERROR(ENOENT));
783 zfs_secpolicy_destroy_perms(const char *name, cred_t *cr)
787 if ((error = zfs_secpolicy_write_perms(name,
788 ZFS_DELEG_PERM_MOUNT, cr)) != 0)
791 return (zfs_secpolicy_write_perms(name, ZFS_DELEG_PERM_DESTROY, cr));
796 zfs_secpolicy_destroy(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
798 return (zfs_secpolicy_destroy_perms(zc->zc_name, cr));
802 * Destroying snapshots with delegated permissions requires
803 * descendant mount and destroy permissions.
807 zfs_secpolicy_destroy_snaps(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
810 nvpair_t *pair, *nextpair;
813 if (nvlist_lookup_nvlist(innvl, "snaps", &snaps) != 0)
814 return (SET_ERROR(EINVAL));
815 for (pair = nvlist_next_nvpair(snaps, NULL); pair != NULL;
817 nextpair = nvlist_next_nvpair(snaps, pair);
818 error = zfs_secpolicy_destroy_perms(nvpair_name(pair), cr);
819 if (error == ENOENT) {
821 * Ignore any snapshots that don't exist (we consider
822 * them "already destroyed"). Remove the name from the
823 * nvl here in case the snapshot is created between
824 * now and when we try to destroy it (in which case
825 * we don't want to destroy it since we haven't
826 * checked for permission).
828 fnvlist_remove_nvpair(snaps, pair);
839 zfs_secpolicy_rename_perms(const char *from, const char *to, cred_t *cr)
841 char parentname[MAXNAMELEN];
844 if ((error = zfs_secpolicy_write_perms(from,
845 ZFS_DELEG_PERM_RENAME, cr)) != 0)
848 if ((error = zfs_secpolicy_write_perms(from,
849 ZFS_DELEG_PERM_MOUNT, cr)) != 0)
852 if ((error = zfs_get_parent(to, parentname,
853 sizeof (parentname))) != 0)
856 if ((error = zfs_secpolicy_write_perms(parentname,
857 ZFS_DELEG_PERM_CREATE, cr)) != 0)
860 if ((error = zfs_secpolicy_write_perms(parentname,
861 ZFS_DELEG_PERM_MOUNT, cr)) != 0)
869 zfs_secpolicy_rename(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
871 return (zfs_secpolicy_rename_perms(zc->zc_name, zc->zc_value, cr));
876 zfs_secpolicy_promote(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
879 dsl_dataset_t *clone;
882 error = zfs_secpolicy_write_perms(zc->zc_name,
883 ZFS_DELEG_PERM_PROMOTE, cr);
887 error = dsl_pool_hold(zc->zc_name, FTAG, &dp);
891 error = dsl_dataset_hold(dp, zc->zc_name, FTAG, &clone);
894 char parentname[MAXNAMELEN];
895 dsl_dataset_t *origin = NULL;
899 error = dsl_dataset_hold_obj(dd->dd_pool,
900 dsl_dir_phys(dd)->dd_origin_obj, FTAG, &origin);
902 dsl_dataset_rele(clone, FTAG);
903 dsl_pool_rele(dp, FTAG);
907 error = zfs_secpolicy_write_perms_ds(zc->zc_name, clone,
908 ZFS_DELEG_PERM_MOUNT, cr);
910 dsl_dataset_name(origin, parentname);
912 error = zfs_secpolicy_write_perms_ds(parentname, origin,
913 ZFS_DELEG_PERM_PROMOTE, cr);
915 dsl_dataset_rele(clone, FTAG);
916 dsl_dataset_rele(origin, FTAG);
918 dsl_pool_rele(dp, FTAG);
924 zfs_secpolicy_recv(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
928 if ((error = zfs_secpolicy_write_perms(zc->zc_name,
929 ZFS_DELEG_PERM_RECEIVE, cr)) != 0)
932 if ((error = zfs_secpolicy_write_perms(zc->zc_name,
933 ZFS_DELEG_PERM_MOUNT, cr)) != 0)
936 return (zfs_secpolicy_write_perms(zc->zc_name,
937 ZFS_DELEG_PERM_CREATE, cr));
941 zfs_secpolicy_snapshot_perms(const char *name, cred_t *cr)
943 return (zfs_secpolicy_write_perms(name,
944 ZFS_DELEG_PERM_SNAPSHOT, cr));
948 * Check for permission to create each snapshot in the nvlist.
952 zfs_secpolicy_snapshot(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
958 if (nvlist_lookup_nvlist(innvl, "snaps", &snaps) != 0)
959 return (SET_ERROR(EINVAL));
960 for (pair = nvlist_next_nvpair(snaps, NULL); pair != NULL;
961 pair = nvlist_next_nvpair(snaps, pair)) {
962 char *name = nvpair_name(pair);
963 char *atp = strchr(name, '@');
966 error = SET_ERROR(EINVAL);
970 error = zfs_secpolicy_snapshot_perms(name, cr);
979 * Check for permission to create each snapshot in the nvlist.
983 zfs_secpolicy_bookmark(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
988 for (pair = nvlist_next_nvpair(innvl, NULL);
989 pair != NULL; pair = nvlist_next_nvpair(innvl, pair)) {
990 char *name = nvpair_name(pair);
991 char *hashp = strchr(name, '#');
994 error = SET_ERROR(EINVAL);
998 error = zfs_secpolicy_write_perms(name,
999 ZFS_DELEG_PERM_BOOKMARK, cr);
1009 zfs_secpolicy_destroy_bookmarks(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
1011 nvpair_t *pair, *nextpair;
1014 for (pair = nvlist_next_nvpair(innvl, NULL); pair != NULL;
1016 char *name = nvpair_name(pair);
1017 char *hashp = strchr(name, '#');
1018 nextpair = nvlist_next_nvpair(innvl, pair);
1020 if (hashp == NULL) {
1021 error = SET_ERROR(EINVAL);
1026 error = zfs_secpolicy_write_perms(name,
1027 ZFS_DELEG_PERM_DESTROY, cr);
1029 if (error == ENOENT) {
1031 * Ignore any filesystems that don't exist (we consider
1032 * their bookmarks "already destroyed"). Remove
1033 * the name from the nvl here in case the filesystem
1034 * is created between now and when we try to destroy
1035 * the bookmark (in which case we don't want to
1036 * destroy it since we haven't checked for permission).
1038 fnvlist_remove_nvpair(innvl, pair);
1050 zfs_secpolicy_log_history(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
1053 * Even root must have a proper TSD so that we know what pool
1056 if (tsd_get(zfs_allow_log_key) == NULL)
1057 return (SET_ERROR(EPERM));
1062 zfs_secpolicy_create_clone(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
1064 char parentname[MAXNAMELEN];
1068 if ((error = zfs_get_parent(zc->zc_name, parentname,
1069 sizeof (parentname))) != 0)
1072 if (nvlist_lookup_string(innvl, "origin", &origin) == 0 &&
1073 (error = zfs_secpolicy_write_perms(origin,
1074 ZFS_DELEG_PERM_CLONE, cr)) != 0)
1077 if ((error = zfs_secpolicy_write_perms(parentname,
1078 ZFS_DELEG_PERM_CREATE, cr)) != 0)
1081 return (zfs_secpolicy_write_perms(parentname,
1082 ZFS_DELEG_PERM_MOUNT, cr));
1086 * Policy for pool operations - create/destroy pools, add vdevs, etc. Requires
1087 * SYS_CONFIG privilege, which is not available in a local zone.
1091 zfs_secpolicy_config(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
1093 if (secpolicy_sys_config(cr, B_FALSE) != 0)
1094 return (SET_ERROR(EPERM));
1100 * Policy for object to name lookups.
1104 zfs_secpolicy_diff(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
1108 if ((error = secpolicy_sys_config(cr, B_FALSE)) == 0)
1111 error = zfs_secpolicy_write_perms(zc->zc_name, ZFS_DELEG_PERM_DIFF, cr);
1116 * Policy for fault injection. Requires all privileges.
1120 zfs_secpolicy_inject(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
1122 return (secpolicy_zinject(cr));
1127 zfs_secpolicy_inherit_prop(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
1129 zfs_prop_t prop = zfs_name_to_prop(zc->zc_value);
1131 if (prop == ZPROP_INVAL) {
1132 if (!zfs_prop_user(zc->zc_value))
1133 return (SET_ERROR(EINVAL));
1134 return (zfs_secpolicy_write_perms(zc->zc_name,
1135 ZFS_DELEG_PERM_USERPROP, cr));
1137 return (zfs_secpolicy_setprop(zc->zc_name, prop,
1143 zfs_secpolicy_userspace_one(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
1145 int err = zfs_secpolicy_read(zc, innvl, cr);
1149 if (zc->zc_objset_type >= ZFS_NUM_USERQUOTA_PROPS)
1150 return (SET_ERROR(EINVAL));
1152 if (zc->zc_value[0] == 0) {
1154 * They are asking about a posix uid/gid. If it's
1155 * themself, allow it.
1157 if (zc->zc_objset_type == ZFS_PROP_USERUSED ||
1158 zc->zc_objset_type == ZFS_PROP_USERQUOTA) {
1159 if (zc->zc_guid == crgetuid(cr))
1162 if (groupmember(zc->zc_guid, cr))
1167 return (zfs_secpolicy_write_perms(zc->zc_name,
1168 userquota_perms[zc->zc_objset_type], cr));
1172 zfs_secpolicy_userspace_many(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
1174 int err = zfs_secpolicy_read(zc, innvl, cr);
1178 if (zc->zc_objset_type >= ZFS_NUM_USERQUOTA_PROPS)
1179 return (SET_ERROR(EINVAL));
1181 return (zfs_secpolicy_write_perms(zc->zc_name,
1182 userquota_perms[zc->zc_objset_type], cr));
1187 zfs_secpolicy_userspace_upgrade(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
1189 return (zfs_secpolicy_setprop(zc->zc_name, ZFS_PROP_VERSION,
1195 zfs_secpolicy_hold(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
1201 error = nvlist_lookup_nvlist(innvl, "holds", &holds);
1203 return (SET_ERROR(EINVAL));
1205 for (pair = nvlist_next_nvpair(holds, NULL); pair != NULL;
1206 pair = nvlist_next_nvpair(holds, pair)) {
1207 char fsname[MAXNAMELEN];
1208 error = dmu_fsname(nvpair_name(pair), fsname);
1211 error = zfs_secpolicy_write_perms(fsname,
1212 ZFS_DELEG_PERM_HOLD, cr);
1221 zfs_secpolicy_release(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
1226 for (pair = nvlist_next_nvpair(innvl, NULL); pair != NULL;
1227 pair = nvlist_next_nvpair(innvl, pair)) {
1228 char fsname[MAXNAMELEN];
1229 error = dmu_fsname(nvpair_name(pair), fsname);
1232 error = zfs_secpolicy_write_perms(fsname,
1233 ZFS_DELEG_PERM_RELEASE, cr);
1241 * Policy for allowing temporary snapshots to be taken or released
1244 zfs_secpolicy_tmp_snapshot(zfs_cmd_t *zc, nvlist_t *innvl, cred_t *cr)
1247 * A temporary snapshot is the same as a snapshot,
1248 * hold, destroy and release all rolled into one.
1249 * Delegated diff alone is sufficient that we allow this.
1253 if ((error = zfs_secpolicy_write_perms(zc->zc_name,
1254 ZFS_DELEG_PERM_DIFF, cr)) == 0)
1257 error = zfs_secpolicy_snapshot_perms(zc->zc_name, cr);
1259 error = zfs_secpolicy_hold(zc, innvl, cr);
1261 error = zfs_secpolicy_release(zc, innvl, cr);
1263 error = zfs_secpolicy_destroy(zc, innvl, cr);
1268 * Returns the nvlist as specified by the user in the zfs_cmd_t.
1271 get_nvlist(uint64_t nvl, uint64_t size, int iflag, nvlist_t **nvp)
1275 nvlist_t *list = NULL;
1278 * Read in and unpack the user-supplied nvlist.
1281 return (SET_ERROR(EINVAL));
1283 packed = vmem_alloc(size, KM_SLEEP);
1285 if ((error = ddi_copyin((void *)(uintptr_t)nvl, packed, size,
1287 vmem_free(packed, size);
1288 return (SET_ERROR(EFAULT));
1291 if ((error = nvlist_unpack(packed, size, &list, 0)) != 0) {
1292 vmem_free(packed, size);
1296 vmem_free(packed, size);
1303 * Reduce the size of this nvlist until it can be serialized in 'max' bytes.
1304 * Entries will be removed from the end of the nvlist, and one int32 entry
1305 * named "N_MORE_ERRORS" will be added indicating how many entries were
1309 nvlist_smush(nvlist_t *errors, size_t max)
1313 size = fnvlist_size(errors);
1316 nvpair_t *more_errors;
1320 return (SET_ERROR(ENOMEM));
1322 fnvlist_add_int32(errors, ZPROP_N_MORE_ERRORS, 0);
1323 more_errors = nvlist_prev_nvpair(errors, NULL);
1326 nvpair_t *pair = nvlist_prev_nvpair(errors,
1328 fnvlist_remove_nvpair(errors, pair);
1330 size = fnvlist_size(errors);
1331 } while (size > max);
1333 fnvlist_remove_nvpair(errors, more_errors);
1334 fnvlist_add_int32(errors, ZPROP_N_MORE_ERRORS, n);
1335 ASSERT3U(fnvlist_size(errors), <=, max);
1342 put_nvlist(zfs_cmd_t *zc, nvlist_t *nvl)
1344 char *packed = NULL;
1348 size = fnvlist_size(nvl);
1350 if (size > zc->zc_nvlist_dst_size) {
1351 error = SET_ERROR(ENOMEM);
1353 packed = fnvlist_pack(nvl, &size);
1354 if (ddi_copyout(packed, (void *)(uintptr_t)zc->zc_nvlist_dst,
1355 size, zc->zc_iflags) != 0)
1356 error = SET_ERROR(EFAULT);
1357 fnvlist_pack_free(packed, size);
1360 zc->zc_nvlist_dst_size = size;
1361 zc->zc_nvlist_dst_filled = B_TRUE;
1366 get_zfs_sb(const char *dsname, zfs_sb_t **zsbp)
1371 error = dmu_objset_hold(dsname, FTAG, &os);
1374 if (dmu_objset_type(os) != DMU_OST_ZFS) {
1375 dmu_objset_rele(os, FTAG);
1376 return (SET_ERROR(EINVAL));
1379 mutex_enter(&os->os_user_ptr_lock);
1380 *zsbp = dmu_objset_get_user(os);
1381 if (*zsbp && (*zsbp)->z_sb) {
1382 atomic_inc(&((*zsbp)->z_sb->s_active));
1384 error = SET_ERROR(ESRCH);
1386 mutex_exit(&os->os_user_ptr_lock);
1387 dmu_objset_rele(os, FTAG);
1392 * Find a zfs_sb_t for a mounted filesystem, or create our own, in which
1393 * case its z_sb will be NULL, and it will be opened as the owner.
1394 * If 'writer' is set, the z_teardown_lock will be held for RW_WRITER,
1395 * which prevents all inode ops from running.
1398 zfs_sb_hold(const char *name, void *tag, zfs_sb_t **zsbp, boolean_t writer)
1402 if (get_zfs_sb(name, zsbp) != 0)
1403 error = zfs_sb_create(name, NULL, zsbp);
1405 rrm_enter(&(*zsbp)->z_teardown_lock, (writer) ? RW_WRITER :
1407 if ((*zsbp)->z_unmounted) {
1409 * XXX we could probably try again, since the unmounting
1410 * thread should be just about to disassociate the
1411 * objset from the zsb.
1413 rrm_exit(&(*zsbp)->z_teardown_lock, tag);
1414 return (SET_ERROR(EBUSY));
1421 zfs_sb_rele(zfs_sb_t *zsb, void *tag)
1423 rrm_exit(&zsb->z_teardown_lock, tag);
1426 deactivate_super(zsb->z_sb);
1428 dmu_objset_disown(zsb->z_os, zsb);
1434 zfs_ioc_pool_create(zfs_cmd_t *zc)
1437 nvlist_t *config, *props = NULL;
1438 nvlist_t *rootprops = NULL;
1439 nvlist_t *zplprops = NULL;
1441 if ((error = get_nvlist(zc->zc_nvlist_conf, zc->zc_nvlist_conf_size,
1442 zc->zc_iflags, &config)))
1445 if (zc->zc_nvlist_src_size != 0 && (error =
1446 get_nvlist(zc->zc_nvlist_src, zc->zc_nvlist_src_size,
1447 zc->zc_iflags, &props))) {
1448 nvlist_free(config);
1453 nvlist_t *nvl = NULL;
1454 uint64_t version = SPA_VERSION;
1456 (void) nvlist_lookup_uint64(props,
1457 zpool_prop_to_name(ZPOOL_PROP_VERSION), &version);
1458 if (!SPA_VERSION_IS_SUPPORTED(version)) {
1459 error = SET_ERROR(EINVAL);
1460 goto pool_props_bad;
1462 (void) nvlist_lookup_nvlist(props, ZPOOL_ROOTFS_PROPS, &nvl);
1464 error = nvlist_dup(nvl, &rootprops, KM_SLEEP);
1466 nvlist_free(config);
1470 (void) nvlist_remove_all(props, ZPOOL_ROOTFS_PROPS);
1472 VERIFY(nvlist_alloc(&zplprops, NV_UNIQUE_NAME, KM_SLEEP) == 0);
1473 error = zfs_fill_zplprops_root(version, rootprops,
1476 goto pool_props_bad;
1479 error = spa_create(zc->zc_name, config, props, zplprops);
1482 * Set the remaining root properties
1484 if (!error && (error = zfs_set_prop_nvlist(zc->zc_name,
1485 ZPROP_SRC_LOCAL, rootprops, NULL)) != 0)
1486 (void) spa_destroy(zc->zc_name);
1489 nvlist_free(rootprops);
1490 nvlist_free(zplprops);
1491 nvlist_free(config);
1498 zfs_ioc_pool_destroy(zfs_cmd_t *zc)
1501 zfs_log_history(zc);
1502 error = spa_destroy(zc->zc_name);
1508 zfs_ioc_pool_import(zfs_cmd_t *zc)
1510 nvlist_t *config, *props = NULL;
1514 if ((error = get_nvlist(zc->zc_nvlist_conf, zc->zc_nvlist_conf_size,
1515 zc->zc_iflags, &config)) != 0)
1518 if (zc->zc_nvlist_src_size != 0 && (error =
1519 get_nvlist(zc->zc_nvlist_src, zc->zc_nvlist_src_size,
1520 zc->zc_iflags, &props))) {
1521 nvlist_free(config);
1525 if (nvlist_lookup_uint64(config, ZPOOL_CONFIG_POOL_GUID, &guid) != 0 ||
1526 guid != zc->zc_guid)
1527 error = SET_ERROR(EINVAL);
1529 error = spa_import(zc->zc_name, config, props, zc->zc_cookie);
1531 if (zc->zc_nvlist_dst != 0) {
1534 if ((err = put_nvlist(zc, config)) != 0)
1538 nvlist_free(config);
1545 zfs_ioc_pool_export(zfs_cmd_t *zc)
1548 boolean_t force = (boolean_t)zc->zc_cookie;
1549 boolean_t hardforce = (boolean_t)zc->zc_guid;
1551 zfs_log_history(zc);
1552 error = spa_export(zc->zc_name, NULL, force, hardforce);
1558 zfs_ioc_pool_configs(zfs_cmd_t *zc)
1563 if ((configs = spa_all_configs(&zc->zc_cookie)) == NULL)
1564 return (SET_ERROR(EEXIST));
1566 error = put_nvlist(zc, configs);
1568 nvlist_free(configs);
1575 * zc_name name of the pool
1578 * zc_cookie real errno
1579 * zc_nvlist_dst config nvlist
1580 * zc_nvlist_dst_size size of config nvlist
1583 zfs_ioc_pool_stats(zfs_cmd_t *zc)
1589 error = spa_get_stats(zc->zc_name, &config, zc->zc_value,
1590 sizeof (zc->zc_value));
1592 if (config != NULL) {
1593 ret = put_nvlist(zc, config);
1594 nvlist_free(config);
1597 * The config may be present even if 'error' is non-zero.
1598 * In this case we return success, and preserve the real errno
1601 zc->zc_cookie = error;
1610 * Try to import the given pool, returning pool stats as appropriate so that
1611 * user land knows which devices are available and overall pool health.
1614 zfs_ioc_pool_tryimport(zfs_cmd_t *zc)
1616 nvlist_t *tryconfig, *config;
1619 if ((error = get_nvlist(zc->zc_nvlist_conf, zc->zc_nvlist_conf_size,
1620 zc->zc_iflags, &tryconfig)) != 0)
1623 config = spa_tryimport(tryconfig);
1625 nvlist_free(tryconfig);
1628 return (SET_ERROR(EINVAL));
1630 error = put_nvlist(zc, config);
1631 nvlist_free(config);
1638 * zc_name name of the pool
1639 * zc_cookie scan func (pool_scan_func_t)
1642 zfs_ioc_pool_scan(zfs_cmd_t *zc)
1647 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0)
1650 if (zc->zc_cookie == POOL_SCAN_NONE)
1651 error = spa_scan_stop(spa);
1653 error = spa_scan(spa, zc->zc_cookie);
1655 spa_close(spa, FTAG);
1661 zfs_ioc_pool_freeze(zfs_cmd_t *zc)
1666 error = spa_open(zc->zc_name, &spa, FTAG);
1669 spa_close(spa, FTAG);
1675 zfs_ioc_pool_upgrade(zfs_cmd_t *zc)
1680 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0)
1683 if (zc->zc_cookie < spa_version(spa) ||
1684 !SPA_VERSION_IS_SUPPORTED(zc->zc_cookie)) {
1685 spa_close(spa, FTAG);
1686 return (SET_ERROR(EINVAL));
1689 spa_upgrade(spa, zc->zc_cookie);
1690 spa_close(spa, FTAG);
1696 zfs_ioc_pool_get_history(zfs_cmd_t *zc)
1703 if ((size = zc->zc_history_len) == 0)
1704 return (SET_ERROR(EINVAL));
1706 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0)
1709 if (spa_version(spa) < SPA_VERSION_ZPOOL_HISTORY) {
1710 spa_close(spa, FTAG);
1711 return (SET_ERROR(ENOTSUP));
1714 hist_buf = vmem_alloc(size, KM_SLEEP);
1715 if ((error = spa_history_get(spa, &zc->zc_history_offset,
1716 &zc->zc_history_len, hist_buf)) == 0) {
1717 error = ddi_copyout(hist_buf,
1718 (void *)(uintptr_t)zc->zc_history,
1719 zc->zc_history_len, zc->zc_iflags);
1722 spa_close(spa, FTAG);
1723 vmem_free(hist_buf, size);
1728 zfs_ioc_pool_reguid(zfs_cmd_t *zc)
1733 error = spa_open(zc->zc_name, &spa, FTAG);
1735 error = spa_change_guid(spa);
1736 spa_close(spa, FTAG);
1742 zfs_ioc_dsobj_to_dsname(zfs_cmd_t *zc)
1744 return (dsl_dsobj_to_dsname(zc->zc_name, zc->zc_obj, zc->zc_value));
1749 * zc_name name of filesystem
1750 * zc_obj object to find
1753 * zc_value name of object
1756 zfs_ioc_obj_to_path(zfs_cmd_t *zc)
1761 /* XXX reading from objset not owned */
1762 if ((error = dmu_objset_hold(zc->zc_name, FTAG, &os)) != 0)
1764 if (dmu_objset_type(os) != DMU_OST_ZFS) {
1765 dmu_objset_rele(os, FTAG);
1766 return (SET_ERROR(EINVAL));
1768 error = zfs_obj_to_path(os, zc->zc_obj, zc->zc_value,
1769 sizeof (zc->zc_value));
1770 dmu_objset_rele(os, FTAG);
1777 * zc_name name of filesystem
1778 * zc_obj object to find
1781 * zc_stat stats on object
1782 * zc_value path to object
1785 zfs_ioc_obj_to_stats(zfs_cmd_t *zc)
1790 /* XXX reading from objset not owned */
1791 if ((error = dmu_objset_hold(zc->zc_name, FTAG, &os)) != 0)
1793 if (dmu_objset_type(os) != DMU_OST_ZFS) {
1794 dmu_objset_rele(os, FTAG);
1795 return (SET_ERROR(EINVAL));
1797 error = zfs_obj_to_stats(os, zc->zc_obj, &zc->zc_stat, zc->zc_value,
1798 sizeof (zc->zc_value));
1799 dmu_objset_rele(os, FTAG);
1805 zfs_ioc_vdev_add(zfs_cmd_t *zc)
1811 error = spa_open(zc->zc_name, &spa, FTAG);
1815 error = get_nvlist(zc->zc_nvlist_conf, zc->zc_nvlist_conf_size,
1816 zc->zc_iflags, &config);
1818 error = spa_vdev_add(spa, config);
1819 nvlist_free(config);
1821 spa_close(spa, FTAG);
1827 * zc_name name of the pool
1828 * zc_nvlist_conf nvlist of devices to remove
1829 * zc_cookie to stop the remove?
1832 zfs_ioc_vdev_remove(zfs_cmd_t *zc)
1837 error = spa_open(zc->zc_name, &spa, FTAG);
1840 error = spa_vdev_remove(spa, zc->zc_guid, B_FALSE);
1841 spa_close(spa, FTAG);
1846 zfs_ioc_vdev_set_state(zfs_cmd_t *zc)
1850 vdev_state_t newstate = VDEV_STATE_UNKNOWN;
1852 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0)
1854 switch (zc->zc_cookie) {
1855 case VDEV_STATE_ONLINE:
1856 error = vdev_online(spa, zc->zc_guid, zc->zc_obj, &newstate);
1859 case VDEV_STATE_OFFLINE:
1860 error = vdev_offline(spa, zc->zc_guid, zc->zc_obj);
1863 case VDEV_STATE_FAULTED:
1864 if (zc->zc_obj != VDEV_AUX_ERR_EXCEEDED &&
1865 zc->zc_obj != VDEV_AUX_EXTERNAL)
1866 zc->zc_obj = VDEV_AUX_ERR_EXCEEDED;
1868 error = vdev_fault(spa, zc->zc_guid, zc->zc_obj);
1871 case VDEV_STATE_DEGRADED:
1872 if (zc->zc_obj != VDEV_AUX_ERR_EXCEEDED &&
1873 zc->zc_obj != VDEV_AUX_EXTERNAL)
1874 zc->zc_obj = VDEV_AUX_ERR_EXCEEDED;
1876 error = vdev_degrade(spa, zc->zc_guid, zc->zc_obj);
1880 error = SET_ERROR(EINVAL);
1882 zc->zc_cookie = newstate;
1883 spa_close(spa, FTAG);
1888 zfs_ioc_vdev_attach(zfs_cmd_t *zc)
1891 int replacing = zc->zc_cookie;
1895 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0)
1898 if ((error = get_nvlist(zc->zc_nvlist_conf, zc->zc_nvlist_conf_size,
1899 zc->zc_iflags, &config)) == 0) {
1900 error = spa_vdev_attach(spa, zc->zc_guid, config, replacing);
1901 nvlist_free(config);
1904 spa_close(spa, FTAG);
1909 zfs_ioc_vdev_detach(zfs_cmd_t *zc)
1914 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0)
1917 error = spa_vdev_detach(spa, zc->zc_guid, 0, B_FALSE);
1919 spa_close(spa, FTAG);
1924 zfs_ioc_vdev_split(zfs_cmd_t *zc)
1927 nvlist_t *config, *props = NULL;
1929 boolean_t exp = !!(zc->zc_cookie & ZPOOL_EXPORT_AFTER_SPLIT);
1931 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0)
1934 if ((error = get_nvlist(zc->zc_nvlist_conf, zc->zc_nvlist_conf_size,
1935 zc->zc_iflags, &config))) {
1936 spa_close(spa, FTAG);
1940 if (zc->zc_nvlist_src_size != 0 && (error =
1941 get_nvlist(zc->zc_nvlist_src, zc->zc_nvlist_src_size,
1942 zc->zc_iflags, &props))) {
1943 spa_close(spa, FTAG);
1944 nvlist_free(config);
1948 error = spa_vdev_split_mirror(spa, zc->zc_string, config, props, exp);
1950 spa_close(spa, FTAG);
1952 nvlist_free(config);
1959 zfs_ioc_vdev_setpath(zfs_cmd_t *zc)
1962 char *path = zc->zc_value;
1963 uint64_t guid = zc->zc_guid;
1966 error = spa_open(zc->zc_name, &spa, FTAG);
1970 error = spa_vdev_setpath(spa, guid, path);
1971 spa_close(spa, FTAG);
1976 zfs_ioc_vdev_setfru(zfs_cmd_t *zc)
1979 char *fru = zc->zc_value;
1980 uint64_t guid = zc->zc_guid;
1983 error = spa_open(zc->zc_name, &spa, FTAG);
1987 error = spa_vdev_setfru(spa, guid, fru);
1988 spa_close(spa, FTAG);
1993 zfs_ioc_objset_stats_impl(zfs_cmd_t *zc, objset_t *os)
1998 dmu_objset_fast_stat(os, &zc->zc_objset_stats);
2000 if (zc->zc_nvlist_dst != 0 &&
2001 (error = dsl_prop_get_all(os, &nv)) == 0) {
2002 dmu_objset_stats(os, nv);
2004 * NB: zvol_get_stats() will read the objset contents,
2005 * which we aren't supposed to do with a
2006 * DS_MODE_USER hold, because it could be
2007 * inconsistent. So this is a bit of a workaround...
2008 * XXX reading with out owning
2010 if (!zc->zc_objset_stats.dds_inconsistent &&
2011 dmu_objset_type(os) == DMU_OST_ZVOL) {
2012 error = zvol_get_stats(os, nv);
2018 error = put_nvlist(zc, nv);
2027 * zc_name name of filesystem
2028 * zc_nvlist_dst_size size of buffer for property nvlist
2031 * zc_objset_stats stats
2032 * zc_nvlist_dst property nvlist
2033 * zc_nvlist_dst_size size of property nvlist
2036 zfs_ioc_objset_stats(zfs_cmd_t *zc)
2041 error = dmu_objset_hold(zc->zc_name, FTAG, &os);
2043 error = zfs_ioc_objset_stats_impl(zc, os);
2044 dmu_objset_rele(os, FTAG);
2052 * zc_name name of filesystem
2053 * zc_nvlist_dst_size size of buffer for property nvlist
2056 * zc_nvlist_dst received property nvlist
2057 * zc_nvlist_dst_size size of received property nvlist
2059 * Gets received properties (distinct from local properties on or after
2060 * SPA_VERSION_RECVD_PROPS) for callers who want to differentiate received from
2061 * local property values.
2064 zfs_ioc_objset_recvd_props(zfs_cmd_t *zc)
2070 * Without this check, we would return local property values if the
2071 * caller has not already received properties on or after
2072 * SPA_VERSION_RECVD_PROPS.
2074 if (!dsl_prop_get_hasrecvd(zc->zc_name))
2075 return (SET_ERROR(ENOTSUP));
2077 if (zc->zc_nvlist_dst != 0 &&
2078 (error = dsl_prop_get_received(zc->zc_name, &nv)) == 0) {
2079 error = put_nvlist(zc, nv);
2087 nvl_add_zplprop(objset_t *os, nvlist_t *props, zfs_prop_t prop)
2093 * zfs_get_zplprop() will either find a value or give us
2094 * the default value (if there is one).
2096 if ((error = zfs_get_zplprop(os, prop, &value)) != 0)
2098 VERIFY(nvlist_add_uint64(props, zfs_prop_to_name(prop), value) == 0);
2104 * zc_name name of filesystem
2105 * zc_nvlist_dst_size size of buffer for zpl property nvlist
2108 * zc_nvlist_dst zpl property nvlist
2109 * zc_nvlist_dst_size size of zpl property nvlist
2112 zfs_ioc_objset_zplprops(zfs_cmd_t *zc)
2117 /* XXX reading without owning */
2118 if ((err = dmu_objset_hold(zc->zc_name, FTAG, &os)))
2121 dmu_objset_fast_stat(os, &zc->zc_objset_stats);
2124 * NB: nvl_add_zplprop() will read the objset contents,
2125 * which we aren't supposed to do with a DS_MODE_USER
2126 * hold, because it could be inconsistent.
2128 if (zc->zc_nvlist_dst != 0 &&
2129 !zc->zc_objset_stats.dds_inconsistent &&
2130 dmu_objset_type(os) == DMU_OST_ZFS) {
2133 VERIFY(nvlist_alloc(&nv, NV_UNIQUE_NAME, KM_SLEEP) == 0);
2134 if ((err = nvl_add_zplprop(os, nv, ZFS_PROP_VERSION)) == 0 &&
2135 (err = nvl_add_zplprop(os, nv, ZFS_PROP_NORMALIZE)) == 0 &&
2136 (err = nvl_add_zplprop(os, nv, ZFS_PROP_UTF8ONLY)) == 0 &&
2137 (err = nvl_add_zplprop(os, nv, ZFS_PROP_CASE)) == 0)
2138 err = put_nvlist(zc, nv);
2141 err = SET_ERROR(ENOENT);
2143 dmu_objset_rele(os, FTAG);
2148 dataset_name_hidden(const char *name)
2151 * Skip over datasets that are not visible in this zone,
2152 * internal datasets (which have a $ in their name), and
2153 * temporary datasets (which have a % in their name).
2155 if (strchr(name, '$') != NULL)
2157 if (strchr(name, '%') != NULL)
2159 if (!INGLOBALZONE(curproc) && !zone_dataset_visible(name, NULL))
2166 * zc_name name of filesystem
2167 * zc_cookie zap cursor
2168 * zc_nvlist_dst_size size of buffer for property nvlist
2171 * zc_name name of next filesystem
2172 * zc_cookie zap cursor
2173 * zc_objset_stats stats
2174 * zc_nvlist_dst property nvlist
2175 * zc_nvlist_dst_size size of property nvlist
2178 zfs_ioc_dataset_list_next(zfs_cmd_t *zc)
2183 size_t orig_len = strlen(zc->zc_name);
2186 if ((error = dmu_objset_hold(zc->zc_name, FTAG, &os))) {
2187 if (error == ENOENT)
2188 error = SET_ERROR(ESRCH);
2192 p = strrchr(zc->zc_name, '/');
2193 if (p == NULL || p[1] != '\0')
2194 (void) strlcat(zc->zc_name, "/", sizeof (zc->zc_name));
2195 p = zc->zc_name + strlen(zc->zc_name);
2198 error = dmu_dir_list_next(os,
2199 sizeof (zc->zc_name) - (p - zc->zc_name), p,
2200 NULL, &zc->zc_cookie);
2201 if (error == ENOENT)
2202 error = SET_ERROR(ESRCH);
2203 } while (error == 0 && dataset_name_hidden(zc->zc_name));
2204 dmu_objset_rele(os, FTAG);
2207 * If it's an internal dataset (ie. with a '$' in its name),
2208 * don't try to get stats for it, otherwise we'll return ENOENT.
2210 if (error == 0 && strchr(zc->zc_name, '$') == NULL) {
2211 error = zfs_ioc_objset_stats(zc); /* fill in the stats */
2212 if (error == ENOENT) {
2213 /* We lost a race with destroy, get the next one. */
2214 zc->zc_name[orig_len] = '\0';
2223 * zc_name name of filesystem
2224 * zc_cookie zap cursor
2225 * zc_nvlist_dst_size size of buffer for property nvlist
2228 * zc_name name of next snapshot
2229 * zc_objset_stats stats
2230 * zc_nvlist_dst property nvlist
2231 * zc_nvlist_dst_size size of property nvlist
2234 zfs_ioc_snapshot_list_next(zfs_cmd_t *zc)
2239 error = dmu_objset_hold(zc->zc_name, FTAG, &os);
2241 return (error == ENOENT ? ESRCH : error);
2245 * A dataset name of maximum length cannot have any snapshots,
2246 * so exit immediately.
2248 if (strlcat(zc->zc_name, "@", sizeof (zc->zc_name)) >= MAXNAMELEN) {
2249 dmu_objset_rele(os, FTAG);
2250 return (SET_ERROR(ESRCH));
2253 error = dmu_snapshot_list_next(os,
2254 sizeof (zc->zc_name) - strlen(zc->zc_name),
2255 zc->zc_name + strlen(zc->zc_name), &zc->zc_obj, &zc->zc_cookie,
2258 if (error == 0 && !zc->zc_simple) {
2260 dsl_pool_t *dp = os->os_dsl_dataset->ds_dir->dd_pool;
2262 error = dsl_dataset_hold_obj(dp, zc->zc_obj, FTAG, &ds);
2266 error = dmu_objset_from_ds(ds, &ossnap);
2268 error = zfs_ioc_objset_stats_impl(zc, ossnap);
2269 dsl_dataset_rele(ds, FTAG);
2271 } else if (error == ENOENT) {
2272 error = SET_ERROR(ESRCH);
2275 dmu_objset_rele(os, FTAG);
2276 /* if we failed, undo the @ that we tacked on to zc_name */
2278 *strchr(zc->zc_name, '@') = '\0';
2283 zfs_prop_set_userquota(const char *dsname, nvpair_t *pair)
2285 const char *propname = nvpair_name(pair);
2287 unsigned int vallen;
2290 zfs_userquota_prop_t type;
2296 if (nvpair_type(pair) == DATA_TYPE_NVLIST) {
2298 VERIFY(nvpair_value_nvlist(pair, &attrs) == 0);
2299 if (nvlist_lookup_nvpair(attrs, ZPROP_VALUE,
2301 return (SET_ERROR(EINVAL));
2305 * A correctly constructed propname is encoded as
2306 * userquota@<rid>-<domain>.
2308 if ((dash = strchr(propname, '-')) == NULL ||
2309 nvpair_value_uint64_array(pair, &valary, &vallen) != 0 ||
2311 return (SET_ERROR(EINVAL));
2318 err = zfs_sb_hold(dsname, FTAG, &zsb, B_FALSE);
2320 err = zfs_set_userquota(zsb, type, domain, rid, quota);
2321 zfs_sb_rele(zsb, FTAG);
2328 * If the named property is one that has a special function to set its value,
2329 * return 0 on success and a positive error code on failure; otherwise if it is
2330 * not one of the special properties handled by this function, return -1.
2332 * XXX: It would be better for callers of the property interface if we handled
2333 * these special cases in dsl_prop.c (in the dsl layer).
2336 zfs_prop_set_special(const char *dsname, zprop_source_t source,
2339 const char *propname = nvpair_name(pair);
2340 zfs_prop_t prop = zfs_name_to_prop(propname);
2344 if (prop == ZPROP_INVAL) {
2345 if (zfs_prop_userquota(propname))
2346 return (zfs_prop_set_userquota(dsname, pair));
2350 if (nvpair_type(pair) == DATA_TYPE_NVLIST) {
2352 VERIFY(nvpair_value_nvlist(pair, &attrs) == 0);
2353 VERIFY(nvlist_lookup_nvpair(attrs, ZPROP_VALUE,
2357 if (zfs_prop_get_type(prop) == PROP_TYPE_STRING)
2360 VERIFY(0 == nvpair_value_uint64(pair, &intval));
2363 case ZFS_PROP_QUOTA:
2364 err = dsl_dir_set_quota(dsname, source, intval);
2366 case ZFS_PROP_REFQUOTA:
2367 err = dsl_dataset_set_refquota(dsname, source, intval);
2369 case ZFS_PROP_FILESYSTEM_LIMIT:
2370 case ZFS_PROP_SNAPSHOT_LIMIT:
2371 if (intval == UINT64_MAX) {
2372 /* clearing the limit, just do it */
2375 err = dsl_dir_activate_fs_ss_limit(dsname);
2378 * Set err to -1 to force the zfs_set_prop_nvlist code down the
2379 * default path to set the value in the nvlist.
2384 case ZFS_PROP_RESERVATION:
2385 err = dsl_dir_set_reservation(dsname, source, intval);
2387 case ZFS_PROP_REFRESERVATION:
2388 err = dsl_dataset_set_refreservation(dsname, source, intval);
2390 case ZFS_PROP_VOLSIZE:
2391 err = zvol_set_volsize(dsname, intval);
2393 case ZFS_PROP_SNAPDEV:
2394 err = zvol_set_snapdev(dsname, source, intval);
2396 case ZFS_PROP_VERSION:
2400 if ((err = zfs_sb_hold(dsname, FTAG, &zsb, B_TRUE)) != 0)
2403 err = zfs_set_version(zsb, intval);
2404 zfs_sb_rele(zsb, FTAG);
2406 if (err == 0 && intval >= ZPL_VERSION_USERSPACE) {
2409 zc = kmem_zalloc(sizeof (zfs_cmd_t), KM_SLEEP);
2410 (void) strcpy(zc->zc_name, dsname);
2411 (void) zfs_ioc_userspace_upgrade(zc);
2412 kmem_free(zc, sizeof (zfs_cmd_t));
2424 * This function is best effort. If it fails to set any of the given properties,
2425 * it continues to set as many as it can and returns the last error
2426 * encountered. If the caller provides a non-NULL errlist, it will be filled in
2427 * with the list of names of all the properties that failed along with the
2428 * corresponding error numbers.
2430 * If every property is set successfully, zero is returned and errlist is not
2434 zfs_set_prop_nvlist(const char *dsname, zprop_source_t source, nvlist_t *nvl,
2443 nvlist_t *genericnvl = fnvlist_alloc();
2444 nvlist_t *retrynvl = fnvlist_alloc();
2447 while ((pair = nvlist_next_nvpair(nvl, pair)) != NULL) {
2448 const char *propname = nvpair_name(pair);
2449 zfs_prop_t prop = zfs_name_to_prop(propname);
2452 /* decode the property value */
2454 if (nvpair_type(pair) == DATA_TYPE_NVLIST) {
2456 attrs = fnvpair_value_nvlist(pair);
2457 if (nvlist_lookup_nvpair(attrs, ZPROP_VALUE,
2459 err = SET_ERROR(EINVAL);
2462 /* Validate value type */
2463 if (err == 0 && prop == ZPROP_INVAL) {
2464 if (zfs_prop_user(propname)) {
2465 if (nvpair_type(propval) != DATA_TYPE_STRING)
2466 err = SET_ERROR(EINVAL);
2467 } else if (zfs_prop_userquota(propname)) {
2468 if (nvpair_type(propval) !=
2469 DATA_TYPE_UINT64_ARRAY)
2470 err = SET_ERROR(EINVAL);
2472 err = SET_ERROR(EINVAL);
2474 } else if (err == 0) {
2475 if (nvpair_type(propval) == DATA_TYPE_STRING) {
2476 if (zfs_prop_get_type(prop) != PROP_TYPE_STRING)
2477 err = SET_ERROR(EINVAL);
2478 } else if (nvpair_type(propval) == DATA_TYPE_UINT64) {
2481 intval = fnvpair_value_uint64(propval);
2483 switch (zfs_prop_get_type(prop)) {
2484 case PROP_TYPE_NUMBER:
2486 case PROP_TYPE_STRING:
2487 err = SET_ERROR(EINVAL);
2489 case PROP_TYPE_INDEX:
2490 if (zfs_prop_index_to_string(prop,
2491 intval, &unused) != 0)
2492 err = SET_ERROR(EINVAL);
2496 "unknown property type");
2499 err = SET_ERROR(EINVAL);
2503 /* Validate permissions */
2505 err = zfs_check_settable(dsname, pair, CRED());
2508 err = zfs_prop_set_special(dsname, source, pair);
2511 * For better performance we build up a list of
2512 * properties to set in a single transaction.
2514 err = nvlist_add_nvpair(genericnvl, pair);
2515 } else if (err != 0 && nvl != retrynvl) {
2517 * This may be a spurious error caused by
2518 * receiving quota and reservation out of order.
2519 * Try again in a second pass.
2521 err = nvlist_add_nvpair(retrynvl, pair);
2526 if (errlist != NULL)
2527 fnvlist_add_int32(errlist, propname, err);
2532 if (nvl != retrynvl && !nvlist_empty(retrynvl)) {
2537 if (!nvlist_empty(genericnvl) &&
2538 dsl_props_set(dsname, source, genericnvl) != 0) {
2540 * If this fails, we still want to set as many properties as we
2541 * can, so try setting them individually.
2544 while ((pair = nvlist_next_nvpair(genericnvl, pair)) != NULL) {
2545 const char *propname = nvpair_name(pair);
2549 if (nvpair_type(pair) == DATA_TYPE_NVLIST) {
2551 attrs = fnvpair_value_nvlist(pair);
2552 propval = fnvlist_lookup_nvpair(attrs,
2556 if (nvpair_type(propval) == DATA_TYPE_STRING) {
2557 strval = fnvpair_value_string(propval);
2558 err = dsl_prop_set_string(dsname, propname,
2561 intval = fnvpair_value_uint64(propval);
2562 err = dsl_prop_set_int(dsname, propname, source,
2567 if (errlist != NULL) {
2568 fnvlist_add_int32(errlist, propname,
2575 nvlist_free(genericnvl);
2576 nvlist_free(retrynvl);
2582 * Check that all the properties are valid user properties.
2585 zfs_check_userprops(const char *fsname, nvlist_t *nvl)
2587 nvpair_t *pair = NULL;
2590 while ((pair = nvlist_next_nvpair(nvl, pair)) != NULL) {
2591 const char *propname = nvpair_name(pair);
2593 if (!zfs_prop_user(propname) ||
2594 nvpair_type(pair) != DATA_TYPE_STRING)
2595 return (SET_ERROR(EINVAL));
2597 if ((error = zfs_secpolicy_write_perms(fsname,
2598 ZFS_DELEG_PERM_USERPROP, CRED())))
2601 if (strlen(propname) >= ZAP_MAXNAMELEN)
2602 return (SET_ERROR(ENAMETOOLONG));
2604 if (strlen(fnvpair_value_string(pair)) >= ZAP_MAXVALUELEN)
2605 return (SET_ERROR(E2BIG));
2611 props_skip(nvlist_t *props, nvlist_t *skipped, nvlist_t **newprops)
2615 VERIFY(nvlist_alloc(newprops, NV_UNIQUE_NAME, KM_SLEEP) == 0);
2618 while ((pair = nvlist_next_nvpair(props, pair)) != NULL) {
2619 if (nvlist_exists(skipped, nvpair_name(pair)))
2622 VERIFY(nvlist_add_nvpair(*newprops, pair) == 0);
2627 clear_received_props(const char *dsname, nvlist_t *props,
2631 nvlist_t *cleared_props = NULL;
2632 props_skip(props, skipped, &cleared_props);
2633 if (!nvlist_empty(cleared_props)) {
2635 * Acts on local properties until the dataset has received
2636 * properties at least once on or after SPA_VERSION_RECVD_PROPS.
2638 zprop_source_t flags = (ZPROP_SRC_NONE |
2639 (dsl_prop_get_hasrecvd(dsname) ? ZPROP_SRC_RECEIVED : 0));
2640 err = zfs_set_prop_nvlist(dsname, flags, cleared_props, NULL);
2642 nvlist_free(cleared_props);
2648 * zc_name name of filesystem
2649 * zc_value name of property to set
2650 * zc_nvlist_src{_size} nvlist of properties to apply
2651 * zc_cookie received properties flag
2654 * zc_nvlist_dst{_size} error for each unapplied received property
2657 zfs_ioc_set_prop(zfs_cmd_t *zc)
2660 boolean_t received = zc->zc_cookie;
2661 zprop_source_t source = (received ? ZPROP_SRC_RECEIVED :
2666 if ((error = get_nvlist(zc->zc_nvlist_src, zc->zc_nvlist_src_size,
2667 zc->zc_iflags, &nvl)) != 0)
2671 nvlist_t *origprops;
2673 if (dsl_prop_get_received(zc->zc_name, &origprops) == 0) {
2674 (void) clear_received_props(zc->zc_name,
2676 nvlist_free(origprops);
2679 error = dsl_prop_set_hasrecvd(zc->zc_name);
2682 errors = fnvlist_alloc();
2684 error = zfs_set_prop_nvlist(zc->zc_name, source, nvl, errors);
2686 if (zc->zc_nvlist_dst != 0 && errors != NULL) {
2687 (void) put_nvlist(zc, errors);
2690 nvlist_free(errors);
2697 * zc_name name of filesystem
2698 * zc_value name of property to inherit
2699 * zc_cookie revert to received value if TRUE
2704 zfs_ioc_inherit_prop(zfs_cmd_t *zc)
2706 const char *propname = zc->zc_value;
2707 zfs_prop_t prop = zfs_name_to_prop(propname);
2708 boolean_t received = zc->zc_cookie;
2709 zprop_source_t source = (received
2710 ? ZPROP_SRC_NONE /* revert to received value, if any */
2711 : ZPROP_SRC_INHERITED); /* explicitly inherit */
2720 * zfs_prop_set_special() expects properties in the form of an
2721 * nvpair with type info.
2723 if (prop == ZPROP_INVAL) {
2724 if (!zfs_prop_user(propname))
2725 return (SET_ERROR(EINVAL));
2727 type = PROP_TYPE_STRING;
2728 } else if (prop == ZFS_PROP_VOLSIZE ||
2729 prop == ZFS_PROP_VERSION) {
2730 return (SET_ERROR(EINVAL));
2732 type = zfs_prop_get_type(prop);
2735 VERIFY(nvlist_alloc(&dummy, NV_UNIQUE_NAME, KM_SLEEP) == 0);
2738 case PROP_TYPE_STRING:
2739 VERIFY(0 == nvlist_add_string(dummy, propname, ""));
2741 case PROP_TYPE_NUMBER:
2742 case PROP_TYPE_INDEX:
2743 VERIFY(0 == nvlist_add_uint64(dummy, propname, 0));
2747 return (SET_ERROR(EINVAL));
2750 pair = nvlist_next_nvpair(dummy, NULL);
2751 err = zfs_prop_set_special(zc->zc_name, source, pair);
2754 return (err); /* special property already handled */
2757 * Only check this in the non-received case. We want to allow
2758 * 'inherit -S' to revert non-inheritable properties like quota
2759 * and reservation to the received or default values even though
2760 * they are not considered inheritable.
2762 if (prop != ZPROP_INVAL && !zfs_prop_inheritable(prop))
2763 return (SET_ERROR(EINVAL));
2766 /* property name has been validated by zfs_secpolicy_inherit_prop() */
2767 return (dsl_prop_inherit(zc->zc_name, zc->zc_value, source));
2771 zfs_ioc_pool_set_props(zfs_cmd_t *zc)
2778 if ((error = get_nvlist(zc->zc_nvlist_src, zc->zc_nvlist_src_size,
2779 zc->zc_iflags, &props)))
2783 * If the only property is the configfile, then just do a spa_lookup()
2784 * to handle the faulted case.
2786 pair = nvlist_next_nvpair(props, NULL);
2787 if (pair != NULL && strcmp(nvpair_name(pair),
2788 zpool_prop_to_name(ZPOOL_PROP_CACHEFILE)) == 0 &&
2789 nvlist_next_nvpair(props, pair) == NULL) {
2790 mutex_enter(&spa_namespace_lock);
2791 if ((spa = spa_lookup(zc->zc_name)) != NULL) {
2792 spa_configfile_set(spa, props, B_FALSE);
2793 spa_config_sync(spa, B_FALSE, B_TRUE);
2795 mutex_exit(&spa_namespace_lock);
2802 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0) {
2807 error = spa_prop_set(spa, props);
2810 spa_close(spa, FTAG);
2816 zfs_ioc_pool_get_props(zfs_cmd_t *zc)
2820 nvlist_t *nvp = NULL;
2822 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0) {
2824 * If the pool is faulted, there may be properties we can still
2825 * get (such as altroot and cachefile), so attempt to get them
2828 mutex_enter(&spa_namespace_lock);
2829 if ((spa = spa_lookup(zc->zc_name)) != NULL)
2830 error = spa_prop_get(spa, &nvp);
2831 mutex_exit(&spa_namespace_lock);
2833 error = spa_prop_get(spa, &nvp);
2834 spa_close(spa, FTAG);
2837 if (error == 0 && zc->zc_nvlist_dst != 0)
2838 error = put_nvlist(zc, nvp);
2840 error = SET_ERROR(EFAULT);
2848 * zc_name name of filesystem
2849 * zc_nvlist_src{_size} nvlist of delegated permissions
2850 * zc_perm_action allow/unallow flag
2855 zfs_ioc_set_fsacl(zfs_cmd_t *zc)
2858 nvlist_t *fsaclnv = NULL;
2860 if ((error = get_nvlist(zc->zc_nvlist_src, zc->zc_nvlist_src_size,
2861 zc->zc_iflags, &fsaclnv)) != 0)
2865 * Verify nvlist is constructed correctly
2867 if ((error = zfs_deleg_verify_nvlist(fsaclnv)) != 0) {
2868 nvlist_free(fsaclnv);
2869 return (SET_ERROR(EINVAL));
2873 * If we don't have PRIV_SYS_MOUNT, then validate
2874 * that user is allowed to hand out each permission in
2878 error = secpolicy_zfs(CRED());
2880 if (zc->zc_perm_action == B_FALSE) {
2881 error = dsl_deleg_can_allow(zc->zc_name,
2884 error = dsl_deleg_can_unallow(zc->zc_name,
2890 error = dsl_deleg_set(zc->zc_name, fsaclnv, zc->zc_perm_action);
2892 nvlist_free(fsaclnv);
2898 * zc_name name of filesystem
2901 * zc_nvlist_src{_size} nvlist of delegated permissions
2904 zfs_ioc_get_fsacl(zfs_cmd_t *zc)
2909 if ((error = dsl_deleg_get(zc->zc_name, &nvp)) == 0) {
2910 error = put_nvlist(zc, nvp);
2919 zfs_create_cb(objset_t *os, void *arg, cred_t *cr, dmu_tx_t *tx)
2921 zfs_creat_t *zct = arg;
2923 zfs_create_fs(os, cr, zct->zct_zplprops, tx);
2926 #define ZFS_PROP_UNDEFINED ((uint64_t)-1)
2930 * os parent objset pointer (NULL if root fs)
2931 * fuids_ok fuids allowed in this version of the spa?
2932 * sa_ok SAs allowed in this version of the spa?
2933 * createprops list of properties requested by creator
2936 * zplprops values for the zplprops we attach to the master node object
2937 * is_ci true if requested file system will be purely case-insensitive
2939 * Determine the settings for utf8only, normalization and
2940 * casesensitivity. Specific values may have been requested by the
2941 * creator and/or we can inherit values from the parent dataset. If
2942 * the file system is of too early a vintage, a creator can not
2943 * request settings for these properties, even if the requested
2944 * setting is the default value. We don't actually want to create dsl
2945 * properties for these, so remove them from the source nvlist after
2949 zfs_fill_zplprops_impl(objset_t *os, uint64_t zplver,
2950 boolean_t fuids_ok, boolean_t sa_ok, nvlist_t *createprops,
2951 nvlist_t *zplprops, boolean_t *is_ci)
2953 uint64_t sense = ZFS_PROP_UNDEFINED;
2954 uint64_t norm = ZFS_PROP_UNDEFINED;
2955 uint64_t u8 = ZFS_PROP_UNDEFINED;
2958 ASSERT(zplprops != NULL);
2961 * Pull out creator prop choices, if any.
2964 (void) nvlist_lookup_uint64(createprops,
2965 zfs_prop_to_name(ZFS_PROP_VERSION), &zplver);
2966 (void) nvlist_lookup_uint64(createprops,
2967 zfs_prop_to_name(ZFS_PROP_NORMALIZE), &norm);
2968 (void) nvlist_remove_all(createprops,
2969 zfs_prop_to_name(ZFS_PROP_NORMALIZE));
2970 (void) nvlist_lookup_uint64(createprops,
2971 zfs_prop_to_name(ZFS_PROP_UTF8ONLY), &u8);
2972 (void) nvlist_remove_all(createprops,
2973 zfs_prop_to_name(ZFS_PROP_UTF8ONLY));
2974 (void) nvlist_lookup_uint64(createprops,
2975 zfs_prop_to_name(ZFS_PROP_CASE), &sense);
2976 (void) nvlist_remove_all(createprops,
2977 zfs_prop_to_name(ZFS_PROP_CASE));
2981 * If the zpl version requested is whacky or the file system
2982 * or pool is version is too "young" to support normalization
2983 * and the creator tried to set a value for one of the props,
2986 if ((zplver < ZPL_VERSION_INITIAL || zplver > ZPL_VERSION) ||
2987 (zplver >= ZPL_VERSION_FUID && !fuids_ok) ||
2988 (zplver >= ZPL_VERSION_SA && !sa_ok) ||
2989 (zplver < ZPL_VERSION_NORMALIZATION &&
2990 (norm != ZFS_PROP_UNDEFINED || u8 != ZFS_PROP_UNDEFINED ||
2991 sense != ZFS_PROP_UNDEFINED)))
2992 return (SET_ERROR(ENOTSUP));
2995 * Put the version in the zplprops
2997 VERIFY(nvlist_add_uint64(zplprops,
2998 zfs_prop_to_name(ZFS_PROP_VERSION), zplver) == 0);
3000 if (norm == ZFS_PROP_UNDEFINED &&
3001 (error = zfs_get_zplprop(os, ZFS_PROP_NORMALIZE, &norm)) != 0)
3003 VERIFY(nvlist_add_uint64(zplprops,
3004 zfs_prop_to_name(ZFS_PROP_NORMALIZE), norm) == 0);
3007 * If we're normalizing, names must always be valid UTF-8 strings.
3011 if (u8 == ZFS_PROP_UNDEFINED &&
3012 (error = zfs_get_zplprop(os, ZFS_PROP_UTF8ONLY, &u8)) != 0)
3014 VERIFY(nvlist_add_uint64(zplprops,
3015 zfs_prop_to_name(ZFS_PROP_UTF8ONLY), u8) == 0);
3017 if (sense == ZFS_PROP_UNDEFINED &&
3018 (error = zfs_get_zplprop(os, ZFS_PROP_CASE, &sense)) != 0)
3020 VERIFY(nvlist_add_uint64(zplprops,
3021 zfs_prop_to_name(ZFS_PROP_CASE), sense) == 0);
3024 *is_ci = (sense == ZFS_CASE_INSENSITIVE);
3030 zfs_fill_zplprops(const char *dataset, nvlist_t *createprops,
3031 nvlist_t *zplprops, boolean_t *is_ci)
3033 boolean_t fuids_ok, sa_ok;
3034 uint64_t zplver = ZPL_VERSION;
3035 objset_t *os = NULL;
3036 char parentname[MAXNAMELEN];
3042 (void) strlcpy(parentname, dataset, sizeof (parentname));
3043 cp = strrchr(parentname, '/');
3047 if ((error = spa_open(dataset, &spa, FTAG)) != 0)
3050 spa_vers = spa_version(spa);
3051 spa_close(spa, FTAG);
3053 zplver = zfs_zpl_version_map(spa_vers);
3054 fuids_ok = (zplver >= ZPL_VERSION_FUID);
3055 sa_ok = (zplver >= ZPL_VERSION_SA);
3058 * Open parent object set so we can inherit zplprop values.
3060 if ((error = dmu_objset_hold(parentname, FTAG, &os)) != 0)
3063 error = zfs_fill_zplprops_impl(os, zplver, fuids_ok, sa_ok, createprops,
3065 dmu_objset_rele(os, FTAG);
3070 zfs_fill_zplprops_root(uint64_t spa_vers, nvlist_t *createprops,
3071 nvlist_t *zplprops, boolean_t *is_ci)
3075 uint64_t zplver = ZPL_VERSION;
3078 zplver = zfs_zpl_version_map(spa_vers);
3079 fuids_ok = (zplver >= ZPL_VERSION_FUID);
3080 sa_ok = (zplver >= ZPL_VERSION_SA);
3082 error = zfs_fill_zplprops_impl(NULL, zplver, fuids_ok, sa_ok,
3083 createprops, zplprops, is_ci);
3089 * "type" -> dmu_objset_type_t (int32)
3090 * (optional) "props" -> { prop -> value }
3093 * outnvl: propname -> error code (int32)
3096 zfs_ioc_create(const char *fsname, nvlist_t *innvl, nvlist_t *outnvl)
3099 zfs_creat_t zct = { 0 };
3100 nvlist_t *nvprops = NULL;
3101 void (*cbfunc)(objset_t *os, void *arg, cred_t *cr, dmu_tx_t *tx);
3103 dmu_objset_type_t type;
3104 boolean_t is_insensitive = B_FALSE;
3106 if (nvlist_lookup_int32(innvl, "type", &type32) != 0)
3107 return (SET_ERROR(EINVAL));
3109 (void) nvlist_lookup_nvlist(innvl, "props", &nvprops);
3113 cbfunc = zfs_create_cb;
3117 cbfunc = zvol_create_cb;
3124 if (strchr(fsname, '@') ||
3125 strchr(fsname, '%'))
3126 return (SET_ERROR(EINVAL));
3128 zct.zct_props = nvprops;
3131 return (SET_ERROR(EINVAL));
3133 if (type == DMU_OST_ZVOL) {
3134 uint64_t volsize, volblocksize;
3136 if (nvprops == NULL)
3137 return (SET_ERROR(EINVAL));
3138 if (nvlist_lookup_uint64(nvprops,
3139 zfs_prop_to_name(ZFS_PROP_VOLSIZE), &volsize) != 0)
3140 return (SET_ERROR(EINVAL));
3142 if ((error = nvlist_lookup_uint64(nvprops,
3143 zfs_prop_to_name(ZFS_PROP_VOLBLOCKSIZE),
3144 &volblocksize)) != 0 && error != ENOENT)
3145 return (SET_ERROR(EINVAL));
3148 volblocksize = zfs_prop_default_numeric(
3149 ZFS_PROP_VOLBLOCKSIZE);
3151 if ((error = zvol_check_volblocksize(fsname,
3152 volblocksize)) != 0 ||
3153 (error = zvol_check_volsize(volsize,
3154 volblocksize)) != 0)
3156 } else if (type == DMU_OST_ZFS) {
3160 * We have to have normalization and
3161 * case-folding flags correct when we do the
3162 * file system creation, so go figure them out
3165 VERIFY(nvlist_alloc(&zct.zct_zplprops,
3166 NV_UNIQUE_NAME, KM_SLEEP) == 0);
3167 error = zfs_fill_zplprops(fsname, nvprops,
3168 zct.zct_zplprops, &is_insensitive);
3170 nvlist_free(zct.zct_zplprops);
3175 error = dmu_objset_create(fsname, type,
3176 is_insensitive ? DS_FLAG_CI_DATASET : 0, cbfunc, &zct);
3177 nvlist_free(zct.zct_zplprops);
3180 * It would be nice to do this atomically.
3183 error = zfs_set_prop_nvlist(fsname, ZPROP_SRC_LOCAL,
3186 (void) dsl_destroy_head(fsname);
3193 * "origin" -> name of origin snapshot
3194 * (optional) "props" -> { prop -> value }
3198 * outnvl: propname -> error code (int32)
3201 zfs_ioc_clone(const char *fsname, nvlist_t *innvl, nvlist_t *outnvl)
3204 nvlist_t *nvprops = NULL;
3207 if (nvlist_lookup_string(innvl, "origin", &origin_name) != 0)
3208 return (SET_ERROR(EINVAL));
3209 (void) nvlist_lookup_nvlist(innvl, "props", &nvprops);
3211 if (strchr(fsname, '@') ||
3212 strchr(fsname, '%'))
3213 return (SET_ERROR(EINVAL));
3215 if (dataset_namecheck(origin_name, NULL, NULL) != 0)
3216 return (SET_ERROR(EINVAL));
3217 error = dmu_objset_clone(fsname, origin_name);
3222 * It would be nice to do this atomically.
3225 error = zfs_set_prop_nvlist(fsname, ZPROP_SRC_LOCAL,
3228 (void) dsl_destroy_head(fsname);
3235 * "snaps" -> { snapshot1, snapshot2 }
3236 * (optional) "props" -> { prop -> value (string) }
3239 * outnvl: snapshot -> error code (int32)
3242 zfs_ioc_snapshot(const char *poolname, nvlist_t *innvl, nvlist_t *outnvl)
3245 nvlist_t *props = NULL;
3247 nvpair_t *pair, *pair2;
3249 (void) nvlist_lookup_nvlist(innvl, "props", &props);
3250 if ((error = zfs_check_userprops(poolname, props)) != 0)
3253 if (!nvlist_empty(props) &&
3254 zfs_earlier_version(poolname, SPA_VERSION_SNAP_PROPS))
3255 return (SET_ERROR(ENOTSUP));
3257 if (nvlist_lookup_nvlist(innvl, "snaps", &snaps) != 0)
3258 return (SET_ERROR(EINVAL));
3259 poollen = strlen(poolname);
3260 for (pair = nvlist_next_nvpair(snaps, NULL); pair != NULL;
3261 pair = nvlist_next_nvpair(snaps, pair)) {
3262 const char *name = nvpair_name(pair);
3263 const char *cp = strchr(name, '@');
3266 * The snap name must contain an @, and the part after it must
3267 * contain only valid characters.
3270 zfs_component_namecheck(cp + 1, NULL, NULL) != 0)
3271 return (SET_ERROR(EINVAL));
3274 * The snap must be in the specified pool.
3276 if (strncmp(name, poolname, poollen) != 0 ||
3277 (name[poollen] != '/' && name[poollen] != '@'))
3278 return (SET_ERROR(EXDEV));
3280 /* This must be the only snap of this fs. */
3281 for (pair2 = nvlist_next_nvpair(snaps, pair);
3282 pair2 != NULL; pair2 = nvlist_next_nvpair(snaps, pair2)) {
3283 if (strncmp(name, nvpair_name(pair2), cp - name + 1)
3285 return (SET_ERROR(EXDEV));
3290 error = dsl_dataset_snapshot(snaps, props, outnvl);
3296 * innvl: "message" -> string
3300 zfs_ioc_log_history(const char *unused, nvlist_t *innvl, nvlist_t *outnvl)
3308 * The poolname in the ioctl is not set, we get it from the TSD,
3309 * which was set at the end of the last successful ioctl that allows
3310 * logging. The secpolicy func already checked that it is set.
3311 * Only one log ioctl is allowed after each successful ioctl, so
3312 * we clear the TSD here.
3314 poolname = tsd_get(zfs_allow_log_key);
3315 (void) tsd_set(zfs_allow_log_key, NULL);
3316 error = spa_open(poolname, &spa, FTAG);
3321 if (nvlist_lookup_string(innvl, "message", &message) != 0) {
3322 spa_close(spa, FTAG);
3323 return (SET_ERROR(EINVAL));
3326 if (spa_version(spa) < SPA_VERSION_ZPOOL_HISTORY) {
3327 spa_close(spa, FTAG);
3328 return (SET_ERROR(ENOTSUP));
3331 error = spa_history_log(spa, message);
3332 spa_close(spa, FTAG);
3337 * The dp_config_rwlock must not be held when calling this, because the
3338 * unmount may need to write out data.
3340 * This function is best-effort. Callers must deal gracefully if it
3341 * remains mounted (or is remounted after this call).
3343 * Returns 0 if the argument is not a snapshot, or it is not currently a
3344 * filesystem, or we were able to unmount it. Returns error code otherwise.
3347 zfs_unmount_snap(const char *snapname)
3351 if (strchr(snapname, '@') == NULL)
3354 err = zfsctl_snapshot_unmount((char *)snapname, MNT_FORCE);
3355 if (err != 0 && err != ENOENT)
3356 return (SET_ERROR(err));
3363 zfs_unmount_snap_cb(const char *snapname, void *arg)
3365 return (zfs_unmount_snap(snapname));
3369 * When a clone is destroyed, its origin may also need to be destroyed,
3370 * in which case it must be unmounted. This routine will do that unmount
3374 zfs_destroy_unmount_origin(const char *fsname)
3380 error = dmu_objset_hold(fsname, FTAG, &os);
3383 ds = dmu_objset_ds(os);
3384 if (dsl_dir_is_clone(ds->ds_dir) && DS_IS_DEFER_DESTROY(ds->ds_prev)) {
3385 char originname[MAXNAMELEN];
3386 dsl_dataset_name(ds->ds_prev, originname);
3387 dmu_objset_rele(os, FTAG);
3388 (void) zfs_unmount_snap(originname);
3390 dmu_objset_rele(os, FTAG);
3396 * "snaps" -> { snapshot1, snapshot2 }
3397 * (optional boolean) "defer"
3400 * outnvl: snapshot -> error code (int32)
3404 zfs_ioc_destroy_snaps(const char *poolname, nvlist_t *innvl, nvlist_t *outnvl)
3410 if (nvlist_lookup_nvlist(innvl, "snaps", &snaps) != 0)
3411 return (SET_ERROR(EINVAL));
3412 defer = nvlist_exists(innvl, "defer");
3414 for (pair = nvlist_next_nvpair(snaps, NULL); pair != NULL;
3415 pair = nvlist_next_nvpair(snaps, pair)) {
3416 (void) zfs_unmount_snap(nvpair_name(pair));
3419 return (dsl_destroy_snapshots_nvl(snaps, defer, outnvl));
3423 * Create bookmarks. Bookmark names are of the form <fs>#<bmark>.
3424 * All bookmarks must be in the same pool.
3427 * bookmark1 -> snapshot1, bookmark2 -> snapshot2
3430 * outnvl: bookmark -> error code (int32)
3435 zfs_ioc_bookmark(const char *poolname, nvlist_t *innvl, nvlist_t *outnvl)
3437 nvpair_t *pair, *pair2;
3439 for (pair = nvlist_next_nvpair(innvl, NULL);
3440 pair != NULL; pair = nvlist_next_nvpair(innvl, pair)) {
3444 * Verify the snapshot argument.
3446 if (nvpair_value_string(pair, &snap_name) != 0)
3447 return (SET_ERROR(EINVAL));
3450 /* Verify that the keys (bookmarks) are unique */
3451 for (pair2 = nvlist_next_nvpair(innvl, pair);
3452 pair2 != NULL; pair2 = nvlist_next_nvpair(innvl, pair2)) {
3453 if (strcmp(nvpair_name(pair), nvpair_name(pair2)) == 0)
3454 return (SET_ERROR(EINVAL));
3458 return (dsl_bookmark_create(innvl, outnvl));
3463 * property 1, property 2, ...
3467 * bookmark name 1 -> { property 1, property 2, ... },
3468 * bookmark name 2 -> { property 1, property 2, ... }
3473 zfs_ioc_get_bookmarks(const char *fsname, nvlist_t *innvl, nvlist_t *outnvl)
3475 return (dsl_get_bookmarks(fsname, innvl, outnvl));
3480 * bookmark name 1, bookmark name 2
3483 * outnvl: bookmark -> error code (int32)
3487 zfs_ioc_destroy_bookmarks(const char *poolname, nvlist_t *innvl,
3493 poollen = strlen(poolname);
3494 for (pair = nvlist_next_nvpair(innvl, NULL);
3495 pair != NULL; pair = nvlist_next_nvpair(innvl, pair)) {
3496 const char *name = nvpair_name(pair);
3497 const char *cp = strchr(name, '#');
3500 * The bookmark name must contain an #, and the part after it
3501 * must contain only valid characters.
3504 zfs_component_namecheck(cp + 1, NULL, NULL) != 0)
3505 return (SET_ERROR(EINVAL));
3508 * The bookmark must be in the specified pool.
3510 if (strncmp(name, poolname, poollen) != 0 ||
3511 (name[poollen] != '/' && name[poollen] != '#'))
3512 return (SET_ERROR(EXDEV));
3515 error = dsl_bookmark_destroy(innvl, outnvl);
3521 * zc_name name of dataset to destroy
3522 * zc_objset_type type of objset
3523 * zc_defer_destroy mark for deferred destroy
3528 zfs_ioc_destroy(zfs_cmd_t *zc)
3532 if (zc->zc_objset_type == DMU_OST_ZFS) {
3533 err = zfs_unmount_snap(zc->zc_name);
3538 if (strchr(zc->zc_name, '@'))
3539 err = dsl_destroy_snapshot(zc->zc_name, zc->zc_defer_destroy);
3541 err = dsl_destroy_head(zc->zc_name);
3547 * fsname is name of dataset to rollback (to most recent snapshot)
3549 * innvl is not used.
3551 * outnvl: "target" -> name of most recent snapshot
3556 zfs_ioc_rollback(const char *fsname, nvlist_t *args, nvlist_t *outnvl)
3561 if (get_zfs_sb(fsname, &zsb) == 0) {
3562 error = zfs_suspend_fs(zsb);
3566 error = dsl_dataset_rollback(fsname, zsb, outnvl);
3567 resume_err = zfs_resume_fs(zsb, fsname);
3568 error = error ? error : resume_err;
3570 deactivate_super(zsb->z_sb);
3572 error = dsl_dataset_rollback(fsname, NULL, outnvl);
3578 recursive_unmount(const char *fsname, void *arg)
3580 const char *snapname = arg;
3584 fullname = kmem_asprintf("%s@%s", fsname, snapname);
3585 error = zfs_unmount_snap(fullname);
3593 * zc_name old name of dataset
3594 * zc_value new name of dataset
3595 * zc_cookie recursive flag (only valid for snapshots)
3600 zfs_ioc_rename(zfs_cmd_t *zc)
3602 boolean_t recursive = zc->zc_cookie & 1;
3605 zc->zc_value[sizeof (zc->zc_value) - 1] = '\0';
3606 if (dataset_namecheck(zc->zc_value, NULL, NULL) != 0 ||
3607 strchr(zc->zc_value, '%'))
3608 return (SET_ERROR(EINVAL));
3610 at = strchr(zc->zc_name, '@');
3612 /* snaps must be in same fs */
3615 if (strncmp(zc->zc_name, zc->zc_value, at - zc->zc_name + 1))
3616 return (SET_ERROR(EXDEV));
3618 if (zc->zc_objset_type == DMU_OST_ZFS) {
3619 error = dmu_objset_find(zc->zc_name,
3620 recursive_unmount, at + 1,
3621 recursive ? DS_FIND_CHILDREN : 0);
3627 error = dsl_dataset_rename_snapshot(zc->zc_name,
3628 at + 1, strchr(zc->zc_value, '@') + 1, recursive);
3633 return (dsl_dir_rename(zc->zc_name, zc->zc_value));
3638 zfs_check_settable(const char *dsname, nvpair_t *pair, cred_t *cr)
3640 const char *propname = nvpair_name(pair);
3641 boolean_t issnap = (strchr(dsname, '@') != NULL);
3642 zfs_prop_t prop = zfs_name_to_prop(propname);
3646 if (prop == ZPROP_INVAL) {
3647 if (zfs_prop_user(propname)) {
3648 if ((err = zfs_secpolicy_write_perms(dsname,
3649 ZFS_DELEG_PERM_USERPROP, cr)))
3654 if (!issnap && zfs_prop_userquota(propname)) {
3655 const char *perm = NULL;
3656 const char *uq_prefix =
3657 zfs_userquota_prop_prefixes[ZFS_PROP_USERQUOTA];
3658 const char *gq_prefix =
3659 zfs_userquota_prop_prefixes[ZFS_PROP_GROUPQUOTA];
3661 if (strncmp(propname, uq_prefix,
3662 strlen(uq_prefix)) == 0) {
3663 perm = ZFS_DELEG_PERM_USERQUOTA;
3664 } else if (strncmp(propname, gq_prefix,
3665 strlen(gq_prefix)) == 0) {
3666 perm = ZFS_DELEG_PERM_GROUPQUOTA;
3668 /* USERUSED and GROUPUSED are read-only */
3669 return (SET_ERROR(EINVAL));
3672 if ((err = zfs_secpolicy_write_perms(dsname, perm, cr)))
3677 return (SET_ERROR(EINVAL));
3681 return (SET_ERROR(EINVAL));
3683 if (nvpair_type(pair) == DATA_TYPE_NVLIST) {
3685 * dsl_prop_get_all_impl() returns properties in this
3689 VERIFY(nvpair_value_nvlist(pair, &attrs) == 0);
3690 VERIFY(nvlist_lookup_nvpair(attrs, ZPROP_VALUE,
3695 * Check that this value is valid for this pool version
3698 case ZFS_PROP_COMPRESSION:
3700 * If the user specified gzip compression, make sure
3701 * the SPA supports it. We ignore any errors here since
3702 * we'll catch them later.
3704 if (nvpair_value_uint64(pair, &intval) == 0) {
3705 if (intval >= ZIO_COMPRESS_GZIP_1 &&
3706 intval <= ZIO_COMPRESS_GZIP_9 &&
3707 zfs_earlier_version(dsname,
3708 SPA_VERSION_GZIP_COMPRESSION)) {
3709 return (SET_ERROR(ENOTSUP));
3712 if (intval == ZIO_COMPRESS_ZLE &&
3713 zfs_earlier_version(dsname,
3714 SPA_VERSION_ZLE_COMPRESSION))
3715 return (SET_ERROR(ENOTSUP));
3717 if (intval == ZIO_COMPRESS_LZ4) {
3720 if ((err = spa_open(dsname, &spa, FTAG)) != 0)
3723 if (!spa_feature_is_enabled(spa,
3724 SPA_FEATURE_LZ4_COMPRESS)) {
3725 spa_close(spa, FTAG);
3726 return (SET_ERROR(ENOTSUP));
3728 spa_close(spa, FTAG);
3732 * If this is a bootable dataset then
3733 * verify that the compression algorithm
3734 * is supported for booting. We must return
3735 * something other than ENOTSUP since it
3736 * implies a downrev pool version.
3738 if (zfs_is_bootfs(dsname) &&
3739 !BOOTFS_COMPRESS_VALID(intval)) {
3740 return (SET_ERROR(ERANGE));
3745 case ZFS_PROP_COPIES:
3746 if (zfs_earlier_version(dsname, SPA_VERSION_DITTO_BLOCKS))
3747 return (SET_ERROR(ENOTSUP));
3750 case ZFS_PROP_DEDUP:
3751 if (zfs_earlier_version(dsname, SPA_VERSION_DEDUP))
3752 return (SET_ERROR(ENOTSUP));
3755 case ZFS_PROP_VOLBLOCKSIZE:
3756 case ZFS_PROP_RECORDSIZE:
3757 /* Record sizes above 128k need the feature to be enabled */
3758 if (nvpair_value_uint64(pair, &intval) == 0 &&
3759 intval > SPA_OLD_MAXBLOCKSIZE) {
3763 * If this is a bootable dataset then
3764 * the we don't allow large (>128K) blocks,
3765 * because GRUB doesn't support them.
3767 if (zfs_is_bootfs(dsname) &&
3768 intval > SPA_OLD_MAXBLOCKSIZE) {
3769 return (SET_ERROR(ERANGE));
3773 * We don't allow setting the property above 1MB,
3774 * unless the tunable has been changed.
3776 if (intval > zfs_max_recordsize ||
3777 intval > SPA_MAXBLOCKSIZE)
3778 return (SET_ERROR(ERANGE));
3780 if ((err = spa_open(dsname, &spa, FTAG)) != 0)
3783 if (!spa_feature_is_enabled(spa,
3784 SPA_FEATURE_LARGE_BLOCKS)) {
3785 spa_close(spa, FTAG);
3786 return (SET_ERROR(ENOTSUP));
3788 spa_close(spa, FTAG);
3792 case ZFS_PROP_SHARESMB:
3793 if (zpl_earlier_version(dsname, ZPL_VERSION_FUID))
3794 return (SET_ERROR(ENOTSUP));
3797 case ZFS_PROP_ACLINHERIT:
3798 if (nvpair_type(pair) == DATA_TYPE_UINT64 &&
3799 nvpair_value_uint64(pair, &intval) == 0) {
3800 if (intval == ZFS_ACL_PASSTHROUGH_X &&
3801 zfs_earlier_version(dsname,
3802 SPA_VERSION_PASSTHROUGH_X))
3803 return (SET_ERROR(ENOTSUP));
3810 return (zfs_secpolicy_setprop(dsname, prop, pair, CRED()));
3814 * Removes properties from the given props list that fail permission checks
3815 * needed to clear them and to restore them in case of a receive error. For each
3816 * property, make sure we have both set and inherit permissions.
3818 * Returns the first error encountered if any permission checks fail. If the
3819 * caller provides a non-NULL errlist, it also gives the complete list of names
3820 * of all the properties that failed a permission check along with the
3821 * corresponding error numbers. The caller is responsible for freeing the
3824 * If every property checks out successfully, zero is returned and the list
3825 * pointed at by errlist is NULL.
3828 zfs_check_clearable(char *dataset, nvlist_t *props, nvlist_t **errlist)
3831 nvpair_t *pair, *next_pair;
3838 VERIFY(nvlist_alloc(&errors, NV_UNIQUE_NAME, KM_SLEEP) == 0);
3840 zc = kmem_alloc(sizeof (zfs_cmd_t), KM_SLEEP);
3841 (void) strcpy(zc->zc_name, dataset);
3842 pair = nvlist_next_nvpair(props, NULL);
3843 while (pair != NULL) {
3844 next_pair = nvlist_next_nvpair(props, pair);
3846 (void) strcpy(zc->zc_value, nvpair_name(pair));
3847 if ((err = zfs_check_settable(dataset, pair, CRED())) != 0 ||
3848 (err = zfs_secpolicy_inherit_prop(zc, NULL, CRED())) != 0) {
3849 VERIFY(nvlist_remove_nvpair(props, pair) == 0);
3850 VERIFY(nvlist_add_int32(errors,
3851 zc->zc_value, err) == 0);
3855 kmem_free(zc, sizeof (zfs_cmd_t));
3857 if ((pair = nvlist_next_nvpair(errors, NULL)) == NULL) {
3858 nvlist_free(errors);
3861 VERIFY(nvpair_value_int32(pair, &rv) == 0);
3864 if (errlist == NULL)
3865 nvlist_free(errors);
3873 propval_equals(nvpair_t *p1, nvpair_t *p2)
3875 if (nvpair_type(p1) == DATA_TYPE_NVLIST) {
3876 /* dsl_prop_get_all_impl() format */
3878 VERIFY(nvpair_value_nvlist(p1, &attrs) == 0);
3879 VERIFY(nvlist_lookup_nvpair(attrs, ZPROP_VALUE,
3883 if (nvpair_type(p2) == DATA_TYPE_NVLIST) {
3885 VERIFY(nvpair_value_nvlist(p2, &attrs) == 0);
3886 VERIFY(nvlist_lookup_nvpair(attrs, ZPROP_VALUE,
3890 if (nvpair_type(p1) != nvpair_type(p2))
3893 if (nvpair_type(p1) == DATA_TYPE_STRING) {
3894 char *valstr1, *valstr2;
3896 VERIFY(nvpair_value_string(p1, (char **)&valstr1) == 0);
3897 VERIFY(nvpair_value_string(p2, (char **)&valstr2) == 0);
3898 return (strcmp(valstr1, valstr2) == 0);
3900 uint64_t intval1, intval2;
3902 VERIFY(nvpair_value_uint64(p1, &intval1) == 0);
3903 VERIFY(nvpair_value_uint64(p2, &intval2) == 0);
3904 return (intval1 == intval2);
3909 * Remove properties from props if they are not going to change (as determined
3910 * by comparison with origprops). Remove them from origprops as well, since we
3911 * do not need to clear or restore properties that won't change.
3914 props_reduce(nvlist_t *props, nvlist_t *origprops)
3916 nvpair_t *pair, *next_pair;
3918 if (origprops == NULL)
3919 return; /* all props need to be received */
3921 pair = nvlist_next_nvpair(props, NULL);
3922 while (pair != NULL) {
3923 const char *propname = nvpair_name(pair);
3926 next_pair = nvlist_next_nvpair(props, pair);
3928 if ((nvlist_lookup_nvpair(origprops, propname,
3929 &match) != 0) || !propval_equals(pair, match))
3930 goto next; /* need to set received value */
3932 /* don't clear the existing received value */
3933 (void) nvlist_remove_nvpair(origprops, match);
3934 /* don't bother receiving the property */
3935 (void) nvlist_remove_nvpair(props, pair);
3942 static boolean_t zfs_ioc_recv_inject_err;
3947 * zc_name name of containing filesystem
3948 * zc_nvlist_src{_size} nvlist of properties to apply
3949 * zc_value name of snapshot to create
3950 * zc_string name of clone origin (if DRR_FLAG_CLONE)
3951 * zc_cookie file descriptor to recv from
3952 * zc_begin_record the BEGIN record of the stream (not byteswapped)
3953 * zc_guid force flag
3954 * zc_cleanup_fd cleanup-on-exit file descriptor
3955 * zc_action_handle handle for this guid/ds mapping (or zero on first call)
3958 * zc_cookie number of bytes read
3959 * zc_nvlist_dst{_size} error for each unapplied received property
3960 * zc_obj zprop_errflags_t
3961 * zc_action_handle handle for this guid/ds mapping
3964 zfs_ioc_recv(zfs_cmd_t *zc)
3967 dmu_recv_cookie_t drc;
3968 boolean_t force = (boolean_t)zc->zc_guid;
3971 int props_error = 0;
3974 nvlist_t *props = NULL; /* sent properties */
3975 nvlist_t *origprops = NULL; /* existing properties */
3976 char *origin = NULL;
3978 char tofs[ZFS_MAXNAMELEN];
3979 boolean_t first_recvd_props = B_FALSE;
3981 if (dataset_namecheck(zc->zc_value, NULL, NULL) != 0 ||
3982 strchr(zc->zc_value, '@') == NULL ||
3983 strchr(zc->zc_value, '%'))
3984 return (SET_ERROR(EINVAL));
3986 (void) strcpy(tofs, zc->zc_value);
3987 tosnap = strchr(tofs, '@');
3990 if (zc->zc_nvlist_src != 0 &&
3991 (error = get_nvlist(zc->zc_nvlist_src, zc->zc_nvlist_src_size,
3992 zc->zc_iflags, &props)) != 0)
3999 return (SET_ERROR(EBADF));
4002 VERIFY(nvlist_alloc(&errors, NV_UNIQUE_NAME, KM_SLEEP) == 0);
4004 if (zc->zc_string[0])
4005 origin = zc->zc_string;
4007 error = dmu_recv_begin(tofs, tosnap,
4008 &zc->zc_begin_record, force, origin, &drc);
4013 * Set properties before we receive the stream so that they are applied
4014 * to the new data. Note that we must call dmu_recv_stream() if
4015 * dmu_recv_begin() succeeds.
4017 if (props != NULL && !drc.drc_newfs) {
4018 if (spa_version(dsl_dataset_get_spa(drc.drc_ds)) >=
4019 SPA_VERSION_RECVD_PROPS &&
4020 !dsl_prop_get_hasrecvd(tofs))
4021 first_recvd_props = B_TRUE;
4024 * If new received properties are supplied, they are to
4025 * completely replace the existing received properties, so stash
4026 * away the existing ones.
4028 if (dsl_prop_get_received(tofs, &origprops) == 0) {
4029 nvlist_t *errlist = NULL;
4031 * Don't bother writing a property if its value won't
4032 * change (and avoid the unnecessary security checks).
4034 * The first receive after SPA_VERSION_RECVD_PROPS is a
4035 * special case where we blow away all local properties
4038 if (!first_recvd_props)
4039 props_reduce(props, origprops);
4040 if (zfs_check_clearable(tofs, origprops, &errlist) != 0)
4041 (void) nvlist_merge(errors, errlist, 0);
4042 nvlist_free(errlist);
4044 if (clear_received_props(tofs, origprops,
4045 first_recvd_props ? NULL : props) != 0)
4046 zc->zc_obj |= ZPROP_ERR_NOCLEAR;
4048 zc->zc_obj |= ZPROP_ERR_NOCLEAR;
4052 if (props != NULL) {
4053 props_error = dsl_prop_set_hasrecvd(tofs);
4055 if (props_error == 0) {
4056 (void) zfs_set_prop_nvlist(tofs, ZPROP_SRC_RECEIVED,
4061 if (zc->zc_nvlist_dst_size != 0 &&
4062 (nvlist_smush(errors, zc->zc_nvlist_dst_size) != 0 ||
4063 put_nvlist(zc, errors) != 0)) {
4065 * Caller made zc->zc_nvlist_dst less than the minimum expected
4066 * size or supplied an invalid address.
4068 props_error = SET_ERROR(EINVAL);
4072 error = dmu_recv_stream(&drc, fp->f_vnode, &off, zc->zc_cleanup_fd,
4073 &zc->zc_action_handle);
4076 zfs_sb_t *zsb = NULL;
4078 if (get_zfs_sb(tofs, &zsb) == 0) {
4082 error = zfs_suspend_fs(zsb);
4084 * If the suspend fails, then the recv_end will
4085 * likely also fail, and clean up after itself.
4087 end_err = dmu_recv_end(&drc, zsb);
4089 error = zfs_resume_fs(zsb, tofs);
4090 error = error ? error : end_err;
4091 deactivate_super(zsb->z_sb);
4093 error = dmu_recv_end(&drc, NULL);
4097 zc->zc_cookie = off - fp->f_offset;
4098 if (VOP_SEEK(fp->f_vnode, fp->f_offset, &off, NULL) == 0)
4102 if (zfs_ioc_recv_inject_err) {
4103 zfs_ioc_recv_inject_err = B_FALSE;
4109 * On error, restore the original props.
4111 if (error != 0 && props != NULL && !drc.drc_newfs) {
4112 if (clear_received_props(tofs, props, NULL) != 0) {
4114 * We failed to clear the received properties.
4115 * Since we may have left a $recvd value on the
4116 * system, we can't clear the $hasrecvd flag.
4118 zc->zc_obj |= ZPROP_ERR_NORESTORE;
4119 } else if (first_recvd_props) {
4120 dsl_prop_unset_hasrecvd(tofs);
4123 if (origprops == NULL && !drc.drc_newfs) {
4124 /* We failed to stash the original properties. */
4125 zc->zc_obj |= ZPROP_ERR_NORESTORE;
4129 * dsl_props_set() will not convert RECEIVED to LOCAL on or
4130 * after SPA_VERSION_RECVD_PROPS, so we need to specify LOCAL
4131 * explictly if we're restoring local properties cleared in the
4132 * first new-style receive.
4134 if (origprops != NULL &&
4135 zfs_set_prop_nvlist(tofs, (first_recvd_props ?
4136 ZPROP_SRC_LOCAL : ZPROP_SRC_RECEIVED),
4137 origprops, NULL) != 0) {
4139 * We stashed the original properties but failed to
4142 zc->zc_obj |= ZPROP_ERR_NORESTORE;
4147 nvlist_free(origprops);
4148 nvlist_free(errors);
4152 error = props_error;
4159 * zc_name name of snapshot to send
4160 * zc_cookie file descriptor to send stream to
4161 * zc_obj fromorigin flag (mutually exclusive with zc_fromobj)
4162 * zc_sendobj objsetid of snapshot to send
4163 * zc_fromobj objsetid of incremental fromsnap (may be zero)
4164 * zc_guid if set, estimate size of stream only. zc_cookie is ignored.
4165 * output size in zc_objset_type.
4166 * zc_flags lzc_send_flags
4169 * zc_objset_type estimated size, if zc_guid is set
4172 zfs_ioc_send(zfs_cmd_t *zc)
4176 boolean_t estimate = (zc->zc_guid != 0);
4177 boolean_t embedok = (zc->zc_flags & 0x1);
4178 boolean_t large_block_ok = (zc->zc_flags & 0x2);
4180 if (zc->zc_obj != 0) {
4182 dsl_dataset_t *tosnap;
4184 error = dsl_pool_hold(zc->zc_name, FTAG, &dp);
4188 error = dsl_dataset_hold_obj(dp, zc->zc_sendobj, FTAG, &tosnap);
4190 dsl_pool_rele(dp, FTAG);
4194 if (dsl_dir_is_clone(tosnap->ds_dir))
4196 dsl_dir_phys(tosnap->ds_dir)->dd_origin_obj;
4197 dsl_dataset_rele(tosnap, FTAG);
4198 dsl_pool_rele(dp, FTAG);
4203 dsl_dataset_t *tosnap;
4204 dsl_dataset_t *fromsnap = NULL;
4206 error = dsl_pool_hold(zc->zc_name, FTAG, &dp);
4210 error = dsl_dataset_hold_obj(dp, zc->zc_sendobj, FTAG, &tosnap);
4212 dsl_pool_rele(dp, FTAG);
4216 if (zc->zc_fromobj != 0) {
4217 error = dsl_dataset_hold_obj(dp, zc->zc_fromobj,
4220 dsl_dataset_rele(tosnap, FTAG);
4221 dsl_pool_rele(dp, FTAG);
4226 error = dmu_send_estimate(tosnap, fromsnap,
4227 &zc->zc_objset_type);
4229 if (fromsnap != NULL)
4230 dsl_dataset_rele(fromsnap, FTAG);
4231 dsl_dataset_rele(tosnap, FTAG);
4232 dsl_pool_rele(dp, FTAG);
4234 file_t *fp = getf(zc->zc_cookie);
4236 return (SET_ERROR(EBADF));
4239 error = dmu_send_obj(zc->zc_name, zc->zc_sendobj,
4240 zc->zc_fromobj, embedok, large_block_ok,
4241 zc->zc_cookie, fp->f_vnode, &off);
4243 if (VOP_SEEK(fp->f_vnode, fp->f_offset, &off, NULL) == 0)
4245 releasef(zc->zc_cookie);
4252 * zc_name name of snapshot on which to report progress
4253 * zc_cookie file descriptor of send stream
4256 * zc_cookie number of bytes written in send stream thus far
4259 zfs_ioc_send_progress(zfs_cmd_t *zc)
4263 dmu_sendarg_t *dsp = NULL;
4266 error = dsl_pool_hold(zc->zc_name, FTAG, &dp);
4270 error = dsl_dataset_hold(dp, zc->zc_name, FTAG, &ds);
4272 dsl_pool_rele(dp, FTAG);
4276 mutex_enter(&ds->ds_sendstream_lock);
4279 * Iterate over all the send streams currently active on this dataset.
4280 * If there's one which matches the specified file descriptor _and_ the
4281 * stream was started by the current process, return the progress of
4285 for (dsp = list_head(&ds->ds_sendstreams); dsp != NULL;
4286 dsp = list_next(&ds->ds_sendstreams, dsp)) {
4287 if (dsp->dsa_outfd == zc->zc_cookie &&
4288 dsp->dsa_proc->group_leader == curproc->group_leader)
4293 zc->zc_cookie = *(dsp->dsa_off);
4295 error = SET_ERROR(ENOENT);
4297 mutex_exit(&ds->ds_sendstream_lock);
4298 dsl_dataset_rele(ds, FTAG);
4299 dsl_pool_rele(dp, FTAG);
4304 zfs_ioc_inject_fault(zfs_cmd_t *zc)
4308 error = zio_inject_fault(zc->zc_name, (int)zc->zc_guid, &id,
4309 &zc->zc_inject_record);
4312 zc->zc_guid = (uint64_t)id;
4318 zfs_ioc_clear_fault(zfs_cmd_t *zc)
4320 return (zio_clear_fault((int)zc->zc_guid));
4324 zfs_ioc_inject_list_next(zfs_cmd_t *zc)
4326 int id = (int)zc->zc_guid;
4329 error = zio_inject_list_next(&id, zc->zc_name, sizeof (zc->zc_name),
4330 &zc->zc_inject_record);
4338 zfs_ioc_error_log(zfs_cmd_t *zc)
4342 size_t count = (size_t)zc->zc_nvlist_dst_size;
4344 if ((error = spa_open(zc->zc_name, &spa, FTAG)) != 0)
4347 error = spa_get_errlog(spa, (void *)(uintptr_t)zc->zc_nvlist_dst,
4350 zc->zc_nvlist_dst_size = count;
4352 zc->zc_nvlist_dst_size = spa_get_errlog_size(spa);
4354 spa_close(spa, FTAG);
4360 zfs_ioc_clear(zfs_cmd_t *zc)
4367 * On zpool clear we also fix up missing slogs
4369 mutex_enter(&spa_namespace_lock);
4370 spa = spa_lookup(zc->zc_name);
4372 mutex_exit(&spa_namespace_lock);
4373 return (SET_ERROR(EIO));
4375 if (spa_get_log_state(spa) == SPA_LOG_MISSING) {
4376 /* we need to let spa_open/spa_load clear the chains */
4377 spa_set_log_state(spa, SPA_LOG_CLEAR);
4379 spa->spa_last_open_failed = 0;
4380 mutex_exit(&spa_namespace_lock);
4382 if (zc->zc_cookie & ZPOOL_NO_REWIND) {
4383 error = spa_open(zc->zc_name, &spa, FTAG);
4386 nvlist_t *config = NULL;
4388 if (zc->zc_nvlist_src == 0)
4389 return (SET_ERROR(EINVAL));
4391 if ((error = get_nvlist(zc->zc_nvlist_src,
4392 zc->zc_nvlist_src_size, zc->zc_iflags, &policy)) == 0) {
4393 error = spa_open_rewind(zc->zc_name, &spa, FTAG,
4395 if (config != NULL) {
4398 if ((err = put_nvlist(zc, config)) != 0)
4400 nvlist_free(config);
4402 nvlist_free(policy);
4409 spa_vdev_state_enter(spa, SCL_NONE);
4411 if (zc->zc_guid == 0) {
4414 vd = spa_lookup_by_guid(spa, zc->zc_guid, B_TRUE);
4416 (void) spa_vdev_state_exit(spa, NULL, ENODEV);
4417 spa_close(spa, FTAG);
4418 return (SET_ERROR(ENODEV));
4422 vdev_clear(spa, vd);
4424 (void) spa_vdev_state_exit(spa, NULL, 0);
4427 * Resume any suspended I/Os.
4429 if (zio_resume(spa) != 0)
4430 error = SET_ERROR(EIO);
4432 spa_close(spa, FTAG);
4438 zfs_ioc_pool_reopen(zfs_cmd_t *zc)
4443 error = spa_open(zc->zc_name, &spa, FTAG);
4447 spa_vdev_state_enter(spa, SCL_NONE);
4450 * If a resilver is already in progress then set the
4451 * spa_scrub_reopen flag to B_TRUE so that we don't restart
4452 * the scan as a side effect of the reopen. Otherwise, let
4453 * vdev_open() decided if a resilver is required.
4455 spa->spa_scrub_reopen = dsl_scan_resilvering(spa->spa_dsl_pool);
4456 vdev_reopen(spa->spa_root_vdev);
4457 spa->spa_scrub_reopen = B_FALSE;
4459 (void) spa_vdev_state_exit(spa, NULL, 0);
4460 spa_close(spa, FTAG);
4465 * zc_name name of filesystem
4466 * zc_value name of origin snapshot
4469 * zc_string name of conflicting snapshot, if there is one
4472 zfs_ioc_promote(zfs_cmd_t *zc)
4477 * We don't need to unmount *all* the origin fs's snapshots, but
4480 cp = strchr(zc->zc_value, '@');
4483 (void) dmu_objset_find(zc->zc_value,
4484 zfs_unmount_snap_cb, NULL, DS_FIND_SNAPSHOTS);
4485 return (dsl_dataset_promote(zc->zc_name, zc->zc_string));
4489 * Retrieve a single {user|group}{used|quota}@... property.
4492 * zc_name name of filesystem
4493 * zc_objset_type zfs_userquota_prop_t
4494 * zc_value domain name (eg. "S-1-234-567-89")
4495 * zc_guid RID/UID/GID
4498 * zc_cookie property value
4501 zfs_ioc_userspace_one(zfs_cmd_t *zc)
4506 if (zc->zc_objset_type >= ZFS_NUM_USERQUOTA_PROPS)
4507 return (SET_ERROR(EINVAL));
4509 error = zfs_sb_hold(zc->zc_name, FTAG, &zsb, B_FALSE);
4513 error = zfs_userspace_one(zsb,
4514 zc->zc_objset_type, zc->zc_value, zc->zc_guid, &zc->zc_cookie);
4515 zfs_sb_rele(zsb, FTAG);
4522 * zc_name name of filesystem
4523 * zc_cookie zap cursor
4524 * zc_objset_type zfs_userquota_prop_t
4525 * zc_nvlist_dst[_size] buffer to fill (not really an nvlist)
4528 * zc_nvlist_dst[_size] data buffer (array of zfs_useracct_t)
4529 * zc_cookie zap cursor
4532 zfs_ioc_userspace_many(zfs_cmd_t *zc)
4535 int bufsize = zc->zc_nvlist_dst_size;
4540 return (SET_ERROR(ENOMEM));
4542 error = zfs_sb_hold(zc->zc_name, FTAG, &zsb, B_FALSE);
4546 buf = vmem_alloc(bufsize, KM_SLEEP);
4548 error = zfs_userspace_many(zsb, zc->zc_objset_type, &zc->zc_cookie,
4549 buf, &zc->zc_nvlist_dst_size);
4552 error = xcopyout(buf,
4553 (void *)(uintptr_t)zc->zc_nvlist_dst,
4554 zc->zc_nvlist_dst_size);
4556 vmem_free(buf, bufsize);
4557 zfs_sb_rele(zsb, FTAG);
4564 * zc_name name of filesystem
4570 zfs_ioc_userspace_upgrade(zfs_cmd_t *zc)
4576 if (get_zfs_sb(zc->zc_name, &zsb) == 0) {
4577 if (!dmu_objset_userused_enabled(zsb->z_os)) {
4579 * If userused is not enabled, it may be because the
4580 * objset needs to be closed & reopened (to grow the
4581 * objset_phys_t). Suspend/resume the fs will do that.
4583 error = zfs_suspend_fs(zsb);
4585 dmu_objset_refresh_ownership(zsb->z_os,
4587 error = zfs_resume_fs(zsb, zc->zc_name);
4591 error = dmu_objset_userspace_upgrade(zsb->z_os);
4592 deactivate_super(zsb->z_sb);
4594 /* XXX kind of reading contents without owning */
4595 error = dmu_objset_hold(zc->zc_name, FTAG, &os);
4599 error = dmu_objset_userspace_upgrade(os);
4600 dmu_objset_rele(os, FTAG);
4607 zfs_ioc_share(zfs_cmd_t *zc)
4609 return (SET_ERROR(ENOSYS));
4612 ace_t full_access[] = {
4613 {(uid_t)-1, ACE_ALL_PERMS, ACE_EVERYONE, 0}
4618 * zc_name name of containing filesystem
4619 * zc_obj object # beyond which we want next in-use object #
4622 * zc_obj next in-use object #
4625 zfs_ioc_next_obj(zfs_cmd_t *zc)
4627 objset_t *os = NULL;
4630 error = dmu_objset_hold(zc->zc_name, FTAG, &os);
4634 error = dmu_object_next(os, &zc->zc_obj, B_FALSE, 0);
4636 dmu_objset_rele(os, FTAG);
4642 * zc_name name of filesystem
4643 * zc_value prefix name for snapshot
4644 * zc_cleanup_fd cleanup-on-exit file descriptor for calling process
4647 * zc_value short name of new snapshot
4650 zfs_ioc_tmp_snapshot(zfs_cmd_t *zc)
4657 error = zfs_onexit_fd_hold(zc->zc_cleanup_fd, &minor);
4661 snap_name = kmem_asprintf("%s-%016llx", zc->zc_value,
4662 (u_longlong_t)ddi_get_lbolt64());
4663 hold_name = kmem_asprintf("%%%s", zc->zc_value);
4665 error = dsl_dataset_snapshot_tmp(zc->zc_name, snap_name, minor,
4668 (void) strcpy(zc->zc_value, snap_name);
4671 zfs_onexit_fd_rele(zc->zc_cleanup_fd);
4677 * zc_name name of "to" snapshot
4678 * zc_value name of "from" snapshot
4679 * zc_cookie file descriptor to write diff data on
4682 * dmu_diff_record_t's to the file descriptor
4685 zfs_ioc_diff(zfs_cmd_t *zc)
4691 fp = getf(zc->zc_cookie);
4693 return (SET_ERROR(EBADF));
4697 error = dmu_diff(zc->zc_name, zc->zc_value, fp->f_vnode, &off);
4699 if (VOP_SEEK(fp->f_vnode, fp->f_offset, &off, NULL) == 0)
4701 releasef(zc->zc_cookie);
4707 * Remove all ACL files in shares dir
4709 #ifdef HAVE_SMB_SHARE
4711 zfs_smb_acl_purge(znode_t *dzp)
4714 zap_attribute_t zap;
4715 zfs_sb_t *zsb = ZTOZSB(dzp);
4718 for (zap_cursor_init(&zc, zsb->z_os, dzp->z_id);
4719 (error = zap_cursor_retrieve(&zc, &zap)) == 0;
4720 zap_cursor_advance(&zc)) {
4721 if ((error = VOP_REMOVE(ZTOV(dzp), zap.za_name, kcred,
4725 zap_cursor_fini(&zc);
4728 #endif /* HAVE_SMB_SHARE */
4731 zfs_ioc_smb_acl(zfs_cmd_t *zc)
4733 #ifdef HAVE_SMB_SHARE
4736 vnode_t *resourcevp = NULL;
4745 if ((error = lookupname(zc->zc_value, UIO_SYSSPACE,
4746 NO_FOLLOW, NULL, &vp)) != 0)
4749 /* Now make sure mntpnt and dataset are ZFS */
4751 if (vp->v_vfsp->vfs_fstype != zfsfstype ||
4752 (strcmp((char *)refstr_value(vp->v_vfsp->vfs_resource),
4753 zc->zc_name) != 0)) {
4755 return (SET_ERROR(EINVAL));
4763 * Create share dir if its missing.
4765 mutex_enter(&zsb->z_lock);
4766 if (zsb->z_shares_dir == 0) {
4769 tx = dmu_tx_create(zsb->z_os);
4770 dmu_tx_hold_zap(tx, MASTER_NODE_OBJ, TRUE,
4772 dmu_tx_hold_zap(tx, DMU_NEW_OBJECT, FALSE, NULL);
4773 error = dmu_tx_assign(tx, TXG_WAIT);
4777 error = zfs_create_share_dir(zsb, tx);
4781 mutex_exit(&zsb->z_lock);
4787 mutex_exit(&zsb->z_lock);
4789 ASSERT(zsb->z_shares_dir);
4790 if ((error = zfs_zget(zsb, zsb->z_shares_dir, &sharedir)) != 0) {
4796 switch (zc->zc_cookie) {
4797 case ZFS_SMB_ACL_ADD:
4798 vattr.va_mask = AT_MODE|AT_UID|AT_GID|AT_TYPE;
4799 vattr.va_mode = S_IFREG|0777;
4803 vsec.vsa_mask = VSA_ACE;
4804 vsec.vsa_aclentp = &full_access;
4805 vsec.vsa_aclentsz = sizeof (full_access);
4806 vsec.vsa_aclcnt = 1;
4808 error = VOP_CREATE(ZTOV(sharedir), zc->zc_string,
4809 &vattr, EXCL, 0, &resourcevp, kcred, 0, NULL, &vsec);
4811 VN_RELE(resourcevp);
4814 case ZFS_SMB_ACL_REMOVE:
4815 error = VOP_REMOVE(ZTOV(sharedir), zc->zc_string, kcred,
4819 case ZFS_SMB_ACL_RENAME:
4820 if ((error = get_nvlist(zc->zc_nvlist_src,
4821 zc->zc_nvlist_src_size, zc->zc_iflags, &nvlist)) != 0) {
4823 VN_RELE(ZTOV(sharedir));
4827 if (nvlist_lookup_string(nvlist, ZFS_SMB_ACL_SRC, &src) ||
4828 nvlist_lookup_string(nvlist, ZFS_SMB_ACL_TARGET,
4831 VN_RELE(ZTOV(sharedir));
4833 nvlist_free(nvlist);
4836 error = VOP_RENAME(ZTOV(sharedir), src, ZTOV(sharedir), target,
4838 nvlist_free(nvlist);
4841 case ZFS_SMB_ACL_PURGE:
4842 error = zfs_smb_acl_purge(sharedir);
4846 error = SET_ERROR(EINVAL);
4851 VN_RELE(ZTOV(sharedir));
4857 return (SET_ERROR(ENOTSUP));
4858 #endif /* HAVE_SMB_SHARE */
4863 * "holds" -> { snapname -> holdname (string), ... }
4864 * (optional) "cleanup_fd" -> fd (int32)
4868 * snapname -> error value (int32)
4874 zfs_ioc_hold(const char *pool, nvlist_t *args, nvlist_t *errlist)
4878 int cleanup_fd = -1;
4882 error = nvlist_lookup_nvlist(args, "holds", &holds);
4884 return (SET_ERROR(EINVAL));
4886 /* make sure the user didn't pass us any invalid (empty) tags */
4887 for (pair = nvlist_next_nvpair(holds, NULL); pair != NULL;
4888 pair = nvlist_next_nvpair(holds, pair)) {
4891 error = nvpair_value_string(pair, &htag);
4893 return (SET_ERROR(error));
4895 if (strlen(htag) == 0)
4896 return (SET_ERROR(EINVAL));
4899 if (nvlist_lookup_int32(args, "cleanup_fd", &cleanup_fd) == 0) {
4900 error = zfs_onexit_fd_hold(cleanup_fd, &minor);
4905 error = dsl_dataset_user_hold(holds, minor, errlist);
4907 zfs_onexit_fd_rele(cleanup_fd);
4912 * innvl is not used.
4915 * holdname -> time added (uint64 seconds since epoch)
4921 zfs_ioc_get_holds(const char *snapname, nvlist_t *args, nvlist_t *outnvl)
4923 return (dsl_dataset_get_holds(snapname, outnvl));
4928 * snapname -> { holdname, ... }
4933 * snapname -> error value (int32)
4939 zfs_ioc_release(const char *pool, nvlist_t *holds, nvlist_t *errlist)
4941 return (dsl_dataset_user_release(holds, errlist));
4946 * zc_guid flags (ZEVENT_NONBLOCK)
4947 * zc_cleanup_fd zevent file descriptor
4950 * zc_nvlist_dst next nvlist event
4951 * zc_cookie dropped events since last get
4954 zfs_ioc_events_next(zfs_cmd_t *zc)
4957 nvlist_t *event = NULL;
4959 uint64_t dropped = 0;
4962 error = zfs_zevent_fd_hold(zc->zc_cleanup_fd, &minor, &ze);
4967 error = zfs_zevent_next(ze, &event,
4968 &zc->zc_nvlist_dst_size, &dropped);
4969 if (event != NULL) {
4970 zc->zc_cookie = dropped;
4971 error = put_nvlist(zc, event);
4975 if (zc->zc_guid & ZEVENT_NONBLOCK)
4978 if ((error == 0) || (error != ENOENT))
4981 error = zfs_zevent_wait(ze);
4986 zfs_zevent_fd_rele(zc->zc_cleanup_fd);
4993 * zc_cookie cleared events count
4996 zfs_ioc_events_clear(zfs_cmd_t *zc)
5000 zfs_zevent_drain_all(&count);
5001 zc->zc_cookie = count;
5008 * zc_guid eid | ZEVENT_SEEK_START | ZEVENT_SEEK_END
5009 * zc_cleanup zevent file descriptor
5012 zfs_ioc_events_seek(zfs_cmd_t *zc)
5018 error = zfs_zevent_fd_hold(zc->zc_cleanup_fd, &minor, &ze);
5022 error = zfs_zevent_seek(ze, zc->zc_guid);
5023 zfs_zevent_fd_rele(zc->zc_cleanup_fd);
5030 * zc_name name of new filesystem or snapshot
5031 * zc_value full name of old snapshot
5034 * zc_cookie space in bytes
5035 * zc_objset_type compressed space in bytes
5036 * zc_perm_action uncompressed space in bytes
5039 zfs_ioc_space_written(zfs_cmd_t *zc)
5043 dsl_dataset_t *new, *old;
5045 error = dsl_pool_hold(zc->zc_name, FTAG, &dp);
5048 error = dsl_dataset_hold(dp, zc->zc_name, FTAG, &new);
5050 dsl_pool_rele(dp, FTAG);
5053 error = dsl_dataset_hold(dp, zc->zc_value, FTAG, &old);
5055 dsl_dataset_rele(new, FTAG);
5056 dsl_pool_rele(dp, FTAG);
5060 error = dsl_dataset_space_written(old, new, &zc->zc_cookie,
5061 &zc->zc_objset_type, &zc->zc_perm_action);
5062 dsl_dataset_rele(old, FTAG);
5063 dsl_dataset_rele(new, FTAG);
5064 dsl_pool_rele(dp, FTAG);
5070 * "firstsnap" -> snapshot name
5074 * "used" -> space in bytes
5075 * "compressed" -> compressed space in bytes
5076 * "uncompressed" -> uncompressed space in bytes
5080 zfs_ioc_space_snaps(const char *lastsnap, nvlist_t *innvl, nvlist_t *outnvl)
5084 dsl_dataset_t *new, *old;
5086 uint64_t used, comp, uncomp;
5088 if (nvlist_lookup_string(innvl, "firstsnap", &firstsnap) != 0)
5089 return (SET_ERROR(EINVAL));
5091 error = dsl_pool_hold(lastsnap, FTAG, &dp);
5095 error = dsl_dataset_hold(dp, lastsnap, FTAG, &new);
5096 if (error == 0 && !new->ds_is_snapshot) {
5097 dsl_dataset_rele(new, FTAG);
5098 error = SET_ERROR(EINVAL);
5101 dsl_pool_rele(dp, FTAG);
5104 error = dsl_dataset_hold(dp, firstsnap, FTAG, &old);
5105 if (error == 0 && !old->ds_is_snapshot) {
5106 dsl_dataset_rele(old, FTAG);
5107 error = SET_ERROR(EINVAL);
5110 dsl_dataset_rele(new, FTAG);
5111 dsl_pool_rele(dp, FTAG);
5115 error = dsl_dataset_space_wouldfree(old, new, &used, &comp, &uncomp);
5116 dsl_dataset_rele(old, FTAG);
5117 dsl_dataset_rele(new, FTAG);
5118 dsl_pool_rele(dp, FTAG);
5119 fnvlist_add_uint64(outnvl, "used", used);
5120 fnvlist_add_uint64(outnvl, "compressed", comp);
5121 fnvlist_add_uint64(outnvl, "uncompressed", uncomp);
5127 * "fd" -> file descriptor to write stream to (int32)
5128 * (optional) "fromsnap" -> full snap name to send an incremental from
5129 * (optional) "largeblockok" -> (value ignored)
5130 * indicates that blocks > 128KB are permitted
5131 * (optional) "embedok" -> (value ignored)
5132 * presence indicates DRR_WRITE_EMBEDDED records are permitted
5139 zfs_ioc_send_new(const char *snapname, nvlist_t *innvl, nvlist_t *outnvl)
5143 char *fromname = NULL;
5146 boolean_t largeblockok;
5149 error = nvlist_lookup_int32(innvl, "fd", &fd);
5151 return (SET_ERROR(EINVAL));
5153 (void) nvlist_lookup_string(innvl, "fromsnap", &fromname);
5155 largeblockok = nvlist_exists(innvl, "largeblockok");
5156 embedok = nvlist_exists(innvl, "embedok");
5158 if ((fp = getf(fd)) == NULL)
5159 return (SET_ERROR(EBADF));
5162 error = dmu_send(snapname, fromname, embedok, largeblockok,
5163 fd, fp->f_vnode, &off);
5165 if (VOP_SEEK(fp->f_vnode, fp->f_offset, &off, NULL) == 0)
5173 * Determine approximately how large a zfs send stream will be -- the number
5174 * of bytes that will be written to the fd supplied to zfs_ioc_send_new().
5177 * (optional) "from" -> full snap or bookmark name to send an incremental
5182 * "space" -> bytes of space (uint64)
5186 zfs_ioc_send_space(const char *snapname, nvlist_t *innvl, nvlist_t *outnvl)
5189 dsl_dataset_t *tosnap;
5194 error = dsl_pool_hold(snapname, FTAG, &dp);
5198 error = dsl_dataset_hold(dp, snapname, FTAG, &tosnap);
5200 dsl_pool_rele(dp, FTAG);
5204 error = nvlist_lookup_string(innvl, "from", &fromname);
5206 if (strchr(fromname, '@') != NULL) {
5208 * If from is a snapshot, hold it and use the more
5209 * efficient dmu_send_estimate to estimate send space
5210 * size using deadlists.
5212 dsl_dataset_t *fromsnap;
5213 error = dsl_dataset_hold(dp, fromname, FTAG, &fromsnap);
5216 error = dmu_send_estimate(tosnap, fromsnap, &space);
5217 dsl_dataset_rele(fromsnap, FTAG);
5218 } else if (strchr(fromname, '#') != NULL) {
5220 * If from is a bookmark, fetch the creation TXG of the
5221 * snapshot it was created from and use that to find
5222 * blocks that were born after it.
5224 zfs_bookmark_phys_t frombm;
5226 error = dsl_bookmark_lookup(dp, fromname, tosnap,
5230 error = dmu_send_estimate_from_txg(tosnap,
5231 frombm.zbm_creation_txg, &space);
5234 * from is not properly formatted as a snapshot or
5237 error = SET_ERROR(EINVAL);
5241 // If estimating the size of a full send, use dmu_send_estimate
5242 error = dmu_send_estimate(tosnap, NULL, &space);
5245 fnvlist_add_uint64(outnvl, "space", space);
5248 dsl_dataset_rele(tosnap, FTAG);
5249 dsl_pool_rele(dp, FTAG);
5253 static zfs_ioc_vec_t zfs_ioc_vec[ZFS_IOC_LAST - ZFS_IOC_FIRST];
5256 zfs_ioctl_register_legacy(zfs_ioc_t ioc, zfs_ioc_legacy_func_t *func,
5257 zfs_secpolicy_func_t *secpolicy, zfs_ioc_namecheck_t namecheck,
5258 boolean_t log_history, zfs_ioc_poolcheck_t pool_check)
5260 zfs_ioc_vec_t *vec = &zfs_ioc_vec[ioc - ZFS_IOC_FIRST];
5262 ASSERT3U(ioc, >=, ZFS_IOC_FIRST);
5263 ASSERT3U(ioc, <, ZFS_IOC_LAST);
5264 ASSERT3P(vec->zvec_legacy_func, ==, NULL);
5265 ASSERT3P(vec->zvec_func, ==, NULL);
5267 vec->zvec_legacy_func = func;
5268 vec->zvec_secpolicy = secpolicy;
5269 vec->zvec_namecheck = namecheck;
5270 vec->zvec_allow_log = log_history;
5271 vec->zvec_pool_check = pool_check;
5275 * See the block comment at the beginning of this file for details on
5276 * each argument to this function.
5279 zfs_ioctl_register(const char *name, zfs_ioc_t ioc, zfs_ioc_func_t *func,
5280 zfs_secpolicy_func_t *secpolicy, zfs_ioc_namecheck_t namecheck,
5281 zfs_ioc_poolcheck_t pool_check, boolean_t smush_outnvlist,
5282 boolean_t allow_log)
5284 zfs_ioc_vec_t *vec = &zfs_ioc_vec[ioc - ZFS_IOC_FIRST];
5286 ASSERT3U(ioc, >=, ZFS_IOC_FIRST);
5287 ASSERT3U(ioc, <, ZFS_IOC_LAST);
5288 ASSERT3P(vec->zvec_legacy_func, ==, NULL);
5289 ASSERT3P(vec->zvec_func, ==, NULL);
5291 /* if we are logging, the name must be valid */
5292 ASSERT(!allow_log || namecheck != NO_NAME);
5294 vec->zvec_name = name;
5295 vec->zvec_func = func;
5296 vec->zvec_secpolicy = secpolicy;
5297 vec->zvec_namecheck = namecheck;
5298 vec->zvec_pool_check = pool_check;
5299 vec->zvec_smush_outnvlist = smush_outnvlist;
5300 vec->zvec_allow_log = allow_log;
5304 zfs_ioctl_register_pool(zfs_ioc_t ioc, zfs_ioc_legacy_func_t *func,
5305 zfs_secpolicy_func_t *secpolicy, boolean_t log_history,
5306 zfs_ioc_poolcheck_t pool_check)
5308 zfs_ioctl_register_legacy(ioc, func, secpolicy,
5309 POOL_NAME, log_history, pool_check);
5313 zfs_ioctl_register_dataset_nolog(zfs_ioc_t ioc, zfs_ioc_legacy_func_t *func,
5314 zfs_secpolicy_func_t *secpolicy, zfs_ioc_poolcheck_t pool_check)
5316 zfs_ioctl_register_legacy(ioc, func, secpolicy,
5317 DATASET_NAME, B_FALSE, pool_check);
5321 zfs_ioctl_register_pool_modify(zfs_ioc_t ioc, zfs_ioc_legacy_func_t *func)
5323 zfs_ioctl_register_legacy(ioc, func, zfs_secpolicy_config,
5324 POOL_NAME, B_TRUE, POOL_CHECK_SUSPENDED | POOL_CHECK_READONLY);
5328 zfs_ioctl_register_pool_meta(zfs_ioc_t ioc, zfs_ioc_legacy_func_t *func,
5329 zfs_secpolicy_func_t *secpolicy)
5331 zfs_ioctl_register_legacy(ioc, func, secpolicy,
5332 NO_NAME, B_FALSE, POOL_CHECK_NONE);
5336 zfs_ioctl_register_dataset_read_secpolicy(zfs_ioc_t ioc,
5337 zfs_ioc_legacy_func_t *func, zfs_secpolicy_func_t *secpolicy)
5339 zfs_ioctl_register_legacy(ioc, func, secpolicy,
5340 DATASET_NAME, B_FALSE, POOL_CHECK_SUSPENDED);
5344 zfs_ioctl_register_dataset_read(zfs_ioc_t ioc, zfs_ioc_legacy_func_t *func)
5346 zfs_ioctl_register_dataset_read_secpolicy(ioc, func,
5347 zfs_secpolicy_read);
5351 zfs_ioctl_register_dataset_modify(zfs_ioc_t ioc, zfs_ioc_legacy_func_t *func,
5352 zfs_secpolicy_func_t *secpolicy)
5354 zfs_ioctl_register_legacy(ioc, func, secpolicy,
5355 DATASET_NAME, B_TRUE, POOL_CHECK_SUSPENDED | POOL_CHECK_READONLY);
5359 zfs_ioctl_init(void)
5361 zfs_ioctl_register("snapshot", ZFS_IOC_SNAPSHOT,
5362 zfs_ioc_snapshot, zfs_secpolicy_snapshot, POOL_NAME,
5363 POOL_CHECK_SUSPENDED | POOL_CHECK_READONLY, B_TRUE, B_TRUE);
5365 zfs_ioctl_register("log_history", ZFS_IOC_LOG_HISTORY,
5366 zfs_ioc_log_history, zfs_secpolicy_log_history, NO_NAME,
5367 POOL_CHECK_SUSPENDED | POOL_CHECK_READONLY, B_FALSE, B_FALSE);
5369 zfs_ioctl_register("space_snaps", ZFS_IOC_SPACE_SNAPS,
5370 zfs_ioc_space_snaps, zfs_secpolicy_read, DATASET_NAME,
5371 POOL_CHECK_SUSPENDED, B_FALSE, B_FALSE);
5373 zfs_ioctl_register("send", ZFS_IOC_SEND_NEW,
5374 zfs_ioc_send_new, zfs_secpolicy_send_new, DATASET_NAME,
5375 POOL_CHECK_SUSPENDED, B_FALSE, B_FALSE);
5377 zfs_ioctl_register("send_space", ZFS_IOC_SEND_SPACE,
5378 zfs_ioc_send_space, zfs_secpolicy_read, DATASET_NAME,
5379 POOL_CHECK_SUSPENDED, B_FALSE, B_FALSE);
5381 zfs_ioctl_register("create", ZFS_IOC_CREATE,
5382 zfs_ioc_create, zfs_secpolicy_create_clone, DATASET_NAME,
5383 POOL_CHECK_SUSPENDED | POOL_CHECK_READONLY, B_TRUE, B_TRUE);
5385 zfs_ioctl_register("clone", ZFS_IOC_CLONE,
5386 zfs_ioc_clone, zfs_secpolicy_create_clone, DATASET_NAME,
5387 POOL_CHECK_SUSPENDED | POOL_CHECK_READONLY, B_TRUE, B_TRUE);
5389 zfs_ioctl_register("destroy_snaps", ZFS_IOC_DESTROY_SNAPS,
5390 zfs_ioc_destroy_snaps, zfs_secpolicy_destroy_snaps, POOL_NAME,
5391 POOL_CHECK_SUSPENDED | POOL_CHECK_READONLY, B_TRUE, B_TRUE);
5393 zfs_ioctl_register("hold", ZFS_IOC_HOLD,
5394 zfs_ioc_hold, zfs_secpolicy_hold, POOL_NAME,
5395 POOL_CHECK_SUSPENDED | POOL_CHECK_READONLY, B_TRUE, B_TRUE);
5396 zfs_ioctl_register("release", ZFS_IOC_RELEASE,
5397 zfs_ioc_release, zfs_secpolicy_release, POOL_NAME,
5398 POOL_CHECK_SUSPENDED | POOL_CHECK_READONLY, B_TRUE, B_TRUE);
5400 zfs_ioctl_register("get_holds", ZFS_IOC_GET_HOLDS,
5401 zfs_ioc_get_holds, zfs_secpolicy_read, DATASET_NAME,
5402 POOL_CHECK_SUSPENDED, B_FALSE, B_FALSE);
5404 zfs_ioctl_register("rollback", ZFS_IOC_ROLLBACK,
5405 zfs_ioc_rollback, zfs_secpolicy_rollback, DATASET_NAME,
5406 POOL_CHECK_SUSPENDED | POOL_CHECK_READONLY, B_FALSE, B_TRUE);
5408 zfs_ioctl_register("bookmark", ZFS_IOC_BOOKMARK,
5409 zfs_ioc_bookmark, zfs_secpolicy_bookmark, POOL_NAME,
5410 POOL_CHECK_SUSPENDED | POOL_CHECK_READONLY, B_TRUE, B_TRUE);
5412 zfs_ioctl_register("get_bookmarks", ZFS_IOC_GET_BOOKMARKS,
5413 zfs_ioc_get_bookmarks, zfs_secpolicy_read, DATASET_NAME,
5414 POOL_CHECK_SUSPENDED, B_FALSE, B_FALSE);
5416 zfs_ioctl_register("destroy_bookmarks", ZFS_IOC_DESTROY_BOOKMARKS,
5417 zfs_ioc_destroy_bookmarks, zfs_secpolicy_destroy_bookmarks,
5419 POOL_CHECK_SUSPENDED | POOL_CHECK_READONLY, B_TRUE, B_TRUE);
5421 /* IOCTLS that use the legacy function signature */
5423 zfs_ioctl_register_legacy(ZFS_IOC_POOL_FREEZE, zfs_ioc_pool_freeze,
5424 zfs_secpolicy_config, NO_NAME, B_FALSE, POOL_CHECK_READONLY);
5426 zfs_ioctl_register_pool(ZFS_IOC_POOL_CREATE, zfs_ioc_pool_create,
5427 zfs_secpolicy_config, B_TRUE, POOL_CHECK_NONE);
5428 zfs_ioctl_register_pool_modify(ZFS_IOC_POOL_SCAN,
5430 zfs_ioctl_register_pool_modify(ZFS_IOC_POOL_UPGRADE,
5431 zfs_ioc_pool_upgrade);
5432 zfs_ioctl_register_pool_modify(ZFS_IOC_VDEV_ADD,
5434 zfs_ioctl_register_pool_modify(ZFS_IOC_VDEV_REMOVE,
5435 zfs_ioc_vdev_remove);
5436 zfs_ioctl_register_pool_modify(ZFS_IOC_VDEV_SET_STATE,
5437 zfs_ioc_vdev_set_state);
5438 zfs_ioctl_register_pool_modify(ZFS_IOC_VDEV_ATTACH,
5439 zfs_ioc_vdev_attach);
5440 zfs_ioctl_register_pool_modify(ZFS_IOC_VDEV_DETACH,
5441 zfs_ioc_vdev_detach);
5442 zfs_ioctl_register_pool_modify(ZFS_IOC_VDEV_SETPATH,
5443 zfs_ioc_vdev_setpath);
5444 zfs_ioctl_register_pool_modify(ZFS_IOC_VDEV_SETFRU,
5445 zfs_ioc_vdev_setfru);
5446 zfs_ioctl_register_pool_modify(ZFS_IOC_POOL_SET_PROPS,
5447 zfs_ioc_pool_set_props);
5448 zfs_ioctl_register_pool_modify(ZFS_IOC_VDEV_SPLIT,
5449 zfs_ioc_vdev_split);
5450 zfs_ioctl_register_pool_modify(ZFS_IOC_POOL_REGUID,
5451 zfs_ioc_pool_reguid);
5453 zfs_ioctl_register_pool_meta(ZFS_IOC_POOL_CONFIGS,
5454 zfs_ioc_pool_configs, zfs_secpolicy_none);
5455 zfs_ioctl_register_pool_meta(ZFS_IOC_POOL_TRYIMPORT,
5456 zfs_ioc_pool_tryimport, zfs_secpolicy_config);
5457 zfs_ioctl_register_pool_meta(ZFS_IOC_INJECT_FAULT,
5458 zfs_ioc_inject_fault, zfs_secpolicy_inject);
5459 zfs_ioctl_register_pool_meta(ZFS_IOC_CLEAR_FAULT,
5460 zfs_ioc_clear_fault, zfs_secpolicy_inject);
5461 zfs_ioctl_register_pool_meta(ZFS_IOC_INJECT_LIST_NEXT,
5462 zfs_ioc_inject_list_next, zfs_secpolicy_inject);
5465 * pool destroy, and export don't log the history as part of
5466 * zfsdev_ioctl, but rather zfs_ioc_pool_export
5467 * does the logging of those commands.
5469 zfs_ioctl_register_pool(ZFS_IOC_POOL_DESTROY, zfs_ioc_pool_destroy,
5470 zfs_secpolicy_config, B_FALSE, POOL_CHECK_SUSPENDED);
5471 zfs_ioctl_register_pool(ZFS_IOC_POOL_EXPORT, zfs_ioc_pool_export,
5472 zfs_secpolicy_config, B_FALSE, POOL_CHECK_SUSPENDED);
5474 zfs_ioctl_register_pool(ZFS_IOC_POOL_STATS, zfs_ioc_pool_stats,
5475 zfs_secpolicy_read, B_FALSE, POOL_CHECK_NONE);
5476 zfs_ioctl_register_pool(ZFS_IOC_POOL_GET_PROPS, zfs_ioc_pool_get_props,
5477 zfs_secpolicy_read, B_FALSE, POOL_CHECK_NONE);
5479 zfs_ioctl_register_pool(ZFS_IOC_ERROR_LOG, zfs_ioc_error_log,
5480 zfs_secpolicy_inject, B_FALSE, POOL_CHECK_SUSPENDED);
5481 zfs_ioctl_register_pool(ZFS_IOC_DSOBJ_TO_DSNAME,
5482 zfs_ioc_dsobj_to_dsname,
5483 zfs_secpolicy_diff, B_FALSE, POOL_CHECK_SUSPENDED);
5484 zfs_ioctl_register_pool(ZFS_IOC_POOL_GET_HISTORY,
5485 zfs_ioc_pool_get_history,
5486 zfs_secpolicy_config, B_FALSE, POOL_CHECK_SUSPENDED);
5488 zfs_ioctl_register_pool(ZFS_IOC_POOL_IMPORT, zfs_ioc_pool_import,
5489 zfs_secpolicy_config, B_TRUE, POOL_CHECK_NONE);
5491 zfs_ioctl_register_pool(ZFS_IOC_CLEAR, zfs_ioc_clear,
5492 zfs_secpolicy_config, B_TRUE, POOL_CHECK_NONE);
5493 zfs_ioctl_register_pool(ZFS_IOC_POOL_REOPEN, zfs_ioc_pool_reopen,
5494 zfs_secpolicy_config, B_TRUE, POOL_CHECK_SUSPENDED);
5496 zfs_ioctl_register_dataset_read(ZFS_IOC_SPACE_WRITTEN,
5497 zfs_ioc_space_written);
5498 zfs_ioctl_register_dataset_read(ZFS_IOC_OBJSET_RECVD_PROPS,
5499 zfs_ioc_objset_recvd_props);
5500 zfs_ioctl_register_dataset_read(ZFS_IOC_NEXT_OBJ,
5502 zfs_ioctl_register_dataset_read(ZFS_IOC_GET_FSACL,
5504 zfs_ioctl_register_dataset_read(ZFS_IOC_OBJSET_STATS,
5505 zfs_ioc_objset_stats);
5506 zfs_ioctl_register_dataset_read(ZFS_IOC_OBJSET_ZPLPROPS,
5507 zfs_ioc_objset_zplprops);
5508 zfs_ioctl_register_dataset_read(ZFS_IOC_DATASET_LIST_NEXT,
5509 zfs_ioc_dataset_list_next);
5510 zfs_ioctl_register_dataset_read(ZFS_IOC_SNAPSHOT_LIST_NEXT,
5511 zfs_ioc_snapshot_list_next);
5512 zfs_ioctl_register_dataset_read(ZFS_IOC_SEND_PROGRESS,
5513 zfs_ioc_send_progress);
5515 zfs_ioctl_register_dataset_read_secpolicy(ZFS_IOC_DIFF,
5516 zfs_ioc_diff, zfs_secpolicy_diff);
5517 zfs_ioctl_register_dataset_read_secpolicy(ZFS_IOC_OBJ_TO_STATS,
5518 zfs_ioc_obj_to_stats, zfs_secpolicy_diff);
5519 zfs_ioctl_register_dataset_read_secpolicy(ZFS_IOC_OBJ_TO_PATH,
5520 zfs_ioc_obj_to_path, zfs_secpolicy_diff);
5521 zfs_ioctl_register_dataset_read_secpolicy(ZFS_IOC_USERSPACE_ONE,
5522 zfs_ioc_userspace_one, zfs_secpolicy_userspace_one);
5523 zfs_ioctl_register_dataset_read_secpolicy(ZFS_IOC_USERSPACE_MANY,
5524 zfs_ioc_userspace_many, zfs_secpolicy_userspace_many);
5525 zfs_ioctl_register_dataset_read_secpolicy(ZFS_IOC_SEND,
5526 zfs_ioc_send, zfs_secpolicy_send);
5528 zfs_ioctl_register_dataset_modify(ZFS_IOC_SET_PROP, zfs_ioc_set_prop,
5529 zfs_secpolicy_none);
5530 zfs_ioctl_register_dataset_modify(ZFS_IOC_DESTROY, zfs_ioc_destroy,
5531 zfs_secpolicy_destroy);
5532 zfs_ioctl_register_dataset_modify(ZFS_IOC_RENAME, zfs_ioc_rename,
5533 zfs_secpolicy_rename);
5534 zfs_ioctl_register_dataset_modify(ZFS_IOC_RECV, zfs_ioc_recv,
5535 zfs_secpolicy_recv);
5536 zfs_ioctl_register_dataset_modify(ZFS_IOC_PROMOTE, zfs_ioc_promote,
5537 zfs_secpolicy_promote);
5538 zfs_ioctl_register_dataset_modify(ZFS_IOC_INHERIT_PROP,
5539 zfs_ioc_inherit_prop, zfs_secpolicy_inherit_prop);
5540 zfs_ioctl_register_dataset_modify(ZFS_IOC_SET_FSACL, zfs_ioc_set_fsacl,
5541 zfs_secpolicy_set_fsacl);
5543 zfs_ioctl_register_dataset_nolog(ZFS_IOC_SHARE, zfs_ioc_share,
5544 zfs_secpolicy_share, POOL_CHECK_NONE);
5545 zfs_ioctl_register_dataset_nolog(ZFS_IOC_SMB_ACL, zfs_ioc_smb_acl,
5546 zfs_secpolicy_smb_acl, POOL_CHECK_NONE);
5547 zfs_ioctl_register_dataset_nolog(ZFS_IOC_USERSPACE_UPGRADE,
5548 zfs_ioc_userspace_upgrade, zfs_secpolicy_userspace_upgrade,
5549 POOL_CHECK_SUSPENDED | POOL_CHECK_READONLY);
5550 zfs_ioctl_register_dataset_nolog(ZFS_IOC_TMP_SNAPSHOT,
5551 zfs_ioc_tmp_snapshot, zfs_secpolicy_tmp_snapshot,
5552 POOL_CHECK_SUSPENDED | POOL_CHECK_READONLY);
5557 zfs_ioctl_register_legacy(ZFS_IOC_EVENTS_NEXT, zfs_ioc_events_next,
5558 zfs_secpolicy_config, NO_NAME, B_FALSE, POOL_CHECK_NONE);
5559 zfs_ioctl_register_legacy(ZFS_IOC_EVENTS_CLEAR, zfs_ioc_events_clear,
5560 zfs_secpolicy_config, NO_NAME, B_FALSE, POOL_CHECK_NONE);
5561 zfs_ioctl_register_legacy(ZFS_IOC_EVENTS_SEEK, zfs_ioc_events_seek,
5562 zfs_secpolicy_config, NO_NAME, B_FALSE, POOL_CHECK_NONE);
5566 pool_status_check(const char *name, zfs_ioc_namecheck_t type,
5567 zfs_ioc_poolcheck_t check)
5572 ASSERT(type == POOL_NAME || type == DATASET_NAME);
5574 if (check & POOL_CHECK_NONE)
5577 error = spa_open(name, &spa, FTAG);
5579 if ((check & POOL_CHECK_SUSPENDED) && spa_suspended(spa))
5580 error = SET_ERROR(EAGAIN);
5581 else if ((check & POOL_CHECK_READONLY) && !spa_writeable(spa))
5582 error = SET_ERROR(EROFS);
5583 spa_close(spa, FTAG);
5589 zfsdev_get_state_impl(minor_t minor, enum zfsdev_state_type which)
5593 for (zs = zfsdev_state_list; zs != NULL; zs = zs->zs_next) {
5594 if (zs->zs_minor == minor) {
5598 return (zs->zs_onexit);
5600 return (zs->zs_zevent);
5611 zfsdev_get_state(minor_t minor, enum zfsdev_state_type which)
5615 ptr = zfsdev_get_state_impl(minor, which);
5621 zfsdev_getminor(struct file *filp, minor_t *minorp)
5623 zfsdev_state_t *zs, *fpd;
5625 ASSERT(filp != NULL);
5626 ASSERT(!MUTEX_HELD(&zfsdev_state_lock));
5628 fpd = filp->private_data;
5632 mutex_enter(&zfsdev_state_lock);
5634 for (zs = zfsdev_state_list; zs != NULL; zs = zs->zs_next) {
5636 if (zs->zs_minor == -1)
5640 *minorp = fpd->zs_minor;
5641 mutex_exit(&zfsdev_state_lock);
5646 mutex_exit(&zfsdev_state_lock);
5652 * Find a free minor number. The zfsdev_state_list is expected to
5653 * be short since it is only a list of currently open file handles.
5656 zfsdev_minor_alloc(void)
5658 static minor_t last_minor = 0;
5661 ASSERT(MUTEX_HELD(&zfsdev_state_lock));
5663 for (m = last_minor + 1; m != last_minor; m++) {
5664 if (m > ZFSDEV_MAX_MINOR)
5666 if (zfsdev_get_state_impl(m, ZST_ALL) == NULL) {
5676 zfsdev_state_init(struct file *filp)
5678 zfsdev_state_t *zs, *zsprev = NULL;
5680 boolean_t newzs = B_FALSE;
5682 ASSERT(MUTEX_HELD(&zfsdev_state_lock));
5684 minor = zfsdev_minor_alloc();
5686 return (SET_ERROR(ENXIO));
5688 for (zs = zfsdev_state_list; zs != NULL; zs = zs->zs_next) {
5689 if (zs->zs_minor == -1)
5695 zs = kmem_zalloc(sizeof (zfsdev_state_t), KM_SLEEP);
5700 filp->private_data = zs;
5702 zfs_onexit_init((zfs_onexit_t **)&zs->zs_onexit);
5703 zfs_zevent_init((zfs_zevent_t **)&zs->zs_zevent);
5707 * In order to provide for lock-free concurrent read access
5708 * to the minor list in zfsdev_get_state_impl(), new entries
5709 * must be completely written before linking them into the
5710 * list whereas existing entries are already linked; the last
5711 * operation must be updating zs_minor (from -1 to the new
5715 zs->zs_minor = minor;
5717 zsprev->zs_next = zs;
5720 zs->zs_minor = minor;
5727 zfsdev_state_destroy(struct file *filp)
5731 ASSERT(MUTEX_HELD(&zfsdev_state_lock));
5732 ASSERT(filp->private_data != NULL);
5734 zs = filp->private_data;
5736 zfs_onexit_destroy(zs->zs_onexit);
5737 zfs_zevent_destroy(zs->zs_zevent);
5743 zfsdev_open(struct inode *ino, struct file *filp)
5747 mutex_enter(&zfsdev_state_lock);
5748 error = zfsdev_state_init(filp);
5749 mutex_exit(&zfsdev_state_lock);
5755 zfsdev_release(struct inode *ino, struct file *filp)
5759 mutex_enter(&zfsdev_state_lock);
5760 error = zfsdev_state_destroy(filp);
5761 mutex_exit(&zfsdev_state_lock);
5767 zfsdev_ioctl(struct file *filp, unsigned cmd, unsigned long arg)
5771 int error, rc, flag = 0;
5772 const zfs_ioc_vec_t *vec;
5773 char *saved_poolname = NULL;
5774 nvlist_t *innvl = NULL;
5775 fstrans_cookie_t cookie;
5777 vecnum = cmd - ZFS_IOC_FIRST;
5778 if (vecnum >= sizeof (zfs_ioc_vec) / sizeof (zfs_ioc_vec[0]))
5779 return (-SET_ERROR(EINVAL));
5780 vec = &zfs_ioc_vec[vecnum];
5783 * The registered ioctl list may be sparse, verify that either
5784 * a normal or legacy handler are registered.
5786 if (vec->zvec_func == NULL && vec->zvec_legacy_func == NULL)
5787 return (-SET_ERROR(EINVAL));
5789 zc = kmem_zalloc(sizeof (zfs_cmd_t), KM_SLEEP);
5791 error = ddi_copyin((void *)arg, zc, sizeof (zfs_cmd_t), flag);
5793 error = SET_ERROR(EFAULT);
5797 zc->zc_iflags = flag & FKIOCTL;
5798 if (zc->zc_nvlist_src_size != 0) {
5799 error = get_nvlist(zc->zc_nvlist_src, zc->zc_nvlist_src_size,
5800 zc->zc_iflags, &innvl);
5806 * Ensure that all pool/dataset names are valid before we pass down to
5809 zc->zc_name[sizeof (zc->zc_name) - 1] = '\0';
5810 switch (vec->zvec_namecheck) {
5812 if (pool_namecheck(zc->zc_name, NULL, NULL) != 0)
5813 error = SET_ERROR(EINVAL);
5815 error = pool_status_check(zc->zc_name,
5816 vec->zvec_namecheck, vec->zvec_pool_check);
5820 if (dataset_namecheck(zc->zc_name, NULL, NULL) != 0)
5821 error = SET_ERROR(EINVAL);
5823 error = pool_status_check(zc->zc_name,
5824 vec->zvec_namecheck, vec->zvec_pool_check);
5832 if (error == 0 && !(flag & FKIOCTL)) {
5833 cookie = spl_fstrans_mark();
5834 error = vec->zvec_secpolicy(zc, innvl, CRED());
5835 spl_fstrans_unmark(cookie);
5841 /* legacy ioctls can modify zc_name */
5842 saved_poolname = strdup(zc->zc_name);
5843 if (saved_poolname == NULL) {
5844 error = SET_ERROR(ENOMEM);
5847 saved_poolname[strcspn(saved_poolname, "/@#")] = '\0';
5850 if (vec->zvec_func != NULL) {
5854 nvlist_t *lognv = NULL;
5856 ASSERT(vec->zvec_legacy_func == NULL);
5859 * Add the innvl to the lognv before calling the func,
5860 * in case the func changes the innvl.
5862 if (vec->zvec_allow_log) {
5863 lognv = fnvlist_alloc();
5864 fnvlist_add_string(lognv, ZPOOL_HIST_IOCTL,
5866 if (!nvlist_empty(innvl)) {
5867 fnvlist_add_nvlist(lognv, ZPOOL_HIST_INPUT_NVL,
5872 outnvl = fnvlist_alloc();
5873 cookie = spl_fstrans_mark();
5874 error = vec->zvec_func(zc->zc_name, innvl, outnvl);
5875 spl_fstrans_unmark(cookie);
5877 if (error == 0 && vec->zvec_allow_log &&
5878 spa_open(zc->zc_name, &spa, FTAG) == 0) {
5879 if (!nvlist_empty(outnvl)) {
5880 fnvlist_add_nvlist(lognv, ZPOOL_HIST_OUTPUT_NVL,
5883 (void) spa_history_log_nvl(spa, lognv);
5884 spa_close(spa, FTAG);
5886 fnvlist_free(lognv);
5888 if (!nvlist_empty(outnvl) || zc->zc_nvlist_dst_size != 0) {
5890 if (vec->zvec_smush_outnvlist) {
5891 smusherror = nvlist_smush(outnvl,
5892 zc->zc_nvlist_dst_size);
5894 if (smusherror == 0)
5895 puterror = put_nvlist(zc, outnvl);
5901 nvlist_free(outnvl);
5903 cookie = spl_fstrans_mark();
5904 error = vec->zvec_legacy_func(zc);
5905 spl_fstrans_unmark(cookie);
5910 rc = ddi_copyout(zc, (void *)arg, sizeof (zfs_cmd_t), flag);
5911 if (error == 0 && rc != 0)
5912 error = SET_ERROR(EFAULT);
5913 if (error == 0 && vec->zvec_allow_log) {
5914 char *s = tsd_get(zfs_allow_log_key);
5917 (void) tsd_set(zfs_allow_log_key, saved_poolname);
5919 if (saved_poolname != NULL)
5920 strfree(saved_poolname);
5923 kmem_free(zc, sizeof (zfs_cmd_t));
5927 #ifdef CONFIG_COMPAT
5929 zfsdev_compat_ioctl(struct file *filp, unsigned cmd, unsigned long arg)
5931 return (zfsdev_ioctl(filp, cmd, arg));
5934 #define zfsdev_compat_ioctl NULL
5937 static const struct file_operations zfsdev_fops = {
5938 .open = zfsdev_open,
5939 .release = zfsdev_release,
5940 .unlocked_ioctl = zfsdev_ioctl,
5941 .compat_ioctl = zfsdev_compat_ioctl,
5942 .owner = THIS_MODULE,
5945 static struct miscdevice zfs_misc = {
5946 .minor = MISC_DYNAMIC_MINOR,
5948 .fops = &zfsdev_fops,
5956 mutex_init(&zfsdev_state_lock, NULL, MUTEX_DEFAULT, NULL);
5957 zfsdev_state_list = kmem_zalloc(sizeof (zfsdev_state_t), KM_SLEEP);
5958 zfsdev_state_list->zs_minor = -1;
5960 error = misc_register(&zfs_misc);
5962 printk(KERN_INFO "ZFS: misc_register() failed %d\n", error);
5972 zfsdev_state_t *zs, *zsprev = NULL;
5974 misc_deregister(&zfs_misc);
5975 mutex_destroy(&zfsdev_state_lock);
5977 for (zs = zfsdev_state_list; zs != NULL; zs = zs->zs_next) {
5979 kmem_free(zsprev, sizeof (zfsdev_state_t));
5983 kmem_free(zsprev, sizeof (zfsdev_state_t));
5987 zfs_allow_log_destroy(void *arg)
5989 char *poolname = arg;
5994 #define ZFS_DEBUG_STR " (DEBUG mode)"
5996 #define ZFS_DEBUG_STR ""
6004 error = -vn_set_pwd("/");
6007 "ZFS: Warning unable to set pwd to '/': %d\n", error);
6011 if ((error = -zvol_init()) != 0)
6014 spa_init(FREAD | FWRITE);
6019 if ((error = zfs_attach()) != 0)
6022 tsd_create(&zfs_fsyncer_key, NULL);
6023 tsd_create(&rrw_tsd_key, rrw_tsd_destroy);
6024 tsd_create(&zfs_allow_log_key, zfs_allow_log_destroy);
6026 printk(KERN_NOTICE "ZFS: Loaded module v%s-%s%s, "
6027 "ZFS pool version %s, ZFS filesystem version %s\n",
6028 ZFS_META_VERSION, ZFS_META_RELEASE, ZFS_DEBUG_STR,
6029 SPA_VERSION_STRING, ZPL_VERSION_STRING);
6030 #ifndef CONFIG_FS_POSIX_ACL
6031 printk(KERN_NOTICE "ZFS: Posix ACLs disabled by kernel\n");
6032 #endif /* CONFIG_FS_POSIX_ACL */
6040 printk(KERN_NOTICE "ZFS: Failed to Load ZFS Filesystem v%s-%s%s"
6041 ", rc = %d\n", ZFS_META_VERSION, ZFS_META_RELEASE,
6042 ZFS_DEBUG_STR, error);
6055 tsd_destroy(&zfs_fsyncer_key);
6056 tsd_destroy(&rrw_tsd_key);
6057 tsd_destroy(&zfs_allow_log_key);
6059 printk(KERN_NOTICE "ZFS: Unloaded module v%s-%s%s\n",
6060 ZFS_META_VERSION, ZFS_META_RELEASE, ZFS_DEBUG_STR);
6067 MODULE_DESCRIPTION("ZFS");
6068 MODULE_AUTHOR(ZFS_META_AUTHOR);
6069 MODULE_LICENSE(ZFS_META_LICENSE);
6070 MODULE_VERSION(ZFS_META_VERSION "-" ZFS_META_RELEASE);
6071 #endif /* HAVE_SPL */
projects / zfs / blob