diff options
| author | Massimo Maggi <[email protected]> | 2013-10-28 09:22:15 -0700 |
|---|---|---|
| committer | Brian Behlendorf <[email protected]> | 2013-10-29 14:54:26 -0700 |
| commit | 023699cd62eb033ebed5e5fae4e13acaba4c5461 (patch) | |
| tree | cc36188907422afa2ae4f74c217760d5379805b4 /include/sys | |
| parent | 7c2448a33ee71be1671c158a167559d1320ff839 (diff) | |
Posix ACL Support
This change adds support for Posix ACLs by storing them as an xattr
which is common practice for many Linux file systems. Since the
Posix ACL is stored as an xattr it will not overwrite any existing
ZFS/NFSv4 ACLs which may have been set. The Posix ACL will also
be non-functional on other platforms although it may be visible
as an xattr if that platform understands SA based xattrs.
By default Posix ACLs are disabled but they may be enabled with
the new 'aclmode=noacl|posixacl' property. Set the property to
'posixacl' to enable them. If ZFS/NFSv4 ACL support is ever added
an appropriate acltype will be added.
This change passes the POSIX Test Suite cleanly with the exception
of xacl/00.t test 45 which is incorrect for Linux (Ext4 fails too).
http://www.tuxera.com/community/posix-test-suite/
Signed-off-by: Massimo Maggi <[email protected]>
Signed-off-by: Richard Yao <[email protected]>
Signed-off-by: Brian Behlendorf <[email protected]>
Closes #170
Diffstat (limited to 'include/sys')
| -rw-r--r-- | include/sys/fs/zfs.h | 1 | ||||
| -rw-r--r-- | include/sys/zfs_ioctl.h | 5 | ||||
| -rw-r--r-- | include/sys/zfs_vfsops.h | 1 | ||||
| -rw-r--r-- | include/sys/zpl.h | 16 |
4 files changed, 23 insertions, 0 deletions
diff --git a/include/sys/fs/zfs.h b/include/sys/fs/zfs.h index 164bf3591..92a843b8c 100644 --- a/include/sys/fs/zfs.h +++ b/include/sys/fs/zfs.h @@ -139,6 +139,7 @@ typedef enum { ZFS_PROP_WRITTEN, ZFS_PROP_CLONES, ZFS_PROP_SNAPDEV, + ZFS_PROP_ACLTYPE, ZFS_NUM_PROPS } zfs_prop_t; diff --git a/include/sys/zfs_ioctl.h b/include/sys/zfs_ioctl.h index 8838322a9..0ee6cc1cd 100644 --- a/include/sys/zfs_ioctl.h +++ b/include/sys/zfs_ioctl.h @@ -61,6 +61,11 @@ extern "C" { */ #define ZFS_SNAPDEV_HIDDEN 0 #define ZFS_SNAPDEV_VISIBLE 1 +/* + * Property values for acltype + */ +#define ZFS_ACLTYPE_OFF 0 +#define ZFS_ACLTYPE_POSIXACL 1 /* * Field manipulation macros for the drr_versioninfo field of the diff --git a/include/sys/zfs_vfsops.h b/include/sys/zfs_vfsops.h index f685c1296..c9e9ba7f9 100644 --- a/include/sys/zfs_vfsops.h +++ b/include/sys/zfs_vfsops.h @@ -60,6 +60,7 @@ typedef struct zfs_sb { struct zfs_fuid_info *z_fuid_replay; /* fuid info for replay */ zilog_t *z_log; /* intent log pointer */ uint_t z_acl_inherit; /* acl inheritance behavior */ + uint_t z_acl_type; /* type of ACL usable on this FS */ zfs_case_t z_case; /* case-sense */ boolean_t z_utf8; /* utf8-only */ int z_norm; /* normalization flags */ diff --git a/include/sys/zpl.h b/include/sys/zpl.h index 89cf8240c..1e338b1cd 100644 --- a/include/sys/zpl.h +++ b/include/sys/zpl.h @@ -71,6 +71,22 @@ extern struct file_system_type zpl_fs_type; extern ssize_t zpl_xattr_list(struct dentry *dentry, char *buf, size_t size); extern int zpl_xattr_security_init(struct inode *ip, struct inode *dip, const struct qstr *qstr); +extern int zpl_set_acl(struct inode *ip, int type, struct posix_acl *acl); +extern struct posix_acl *zpl_get_acl(struct inode *ip, int type); +#if !defined(HAVE_GET_ACL) +#if defined(HAVE_CHECK_ACL_WITH_FLAGS) +extern int zpl_check_acl(struct inode *inode, int mask,unsigned int flags); +#elif defined(HAVE_CHECK_ACL) +extern int zpl_check_acl(struct inode *inode, int mask); +#elif defined(HAVE_PERMISSION_WITH_NAMEIDATA) +extern int zpl_permission(struct inode *ip, int mask, struct nameidata *nd); +#elif defined(HAVE_PERMISSION) +extern int zpl_permission(struct inode *ip, int mask); +#endif /* HAVE_CHECK_ACL | HAVE_PERMISSION */ +#endif /* HAVE_GET_ACL */ + +extern int zpl_init_acl(struct inode *ip, struct inode *dir); +extern int zpl_chmod_acl(struct inode *ip); extern xattr_handler_t *zpl_xattr_handlers[]; |