2018-11-02 07:07:23 +08:00
|
|
|
#ifndef _UAPI_LINUX_MOUNT_H
|
|
|
|
#define _UAPI_LINUX_MOUNT_H
|
|
|
|
|
|
|
|
/*
|
|
|
|
* These are the fs-independent mount-flags: up to 32 flags are supported
|
|
|
|
*
|
|
|
|
* Usage of these is restricted within the kernel to core mount(2) code and
|
|
|
|
* callers of sys_mount() only. Filesystems should be using the SB_*
|
|
|
|
* equivalent instead.
|
|
|
|
*/
|
|
|
|
#define MS_RDONLY 1 /* Mount read-only */
|
|
|
|
#define MS_NOSUID 2 /* Ignore suid and sgid bits */
|
|
|
|
#define MS_NODEV 4 /* Disallow access to device special files */
|
|
|
|
#define MS_NOEXEC 8 /* Disallow program execution */
|
|
|
|
#define MS_SYNCHRONOUS 16 /* Writes are synced at once */
|
|
|
|
#define MS_REMOUNT 32 /* Alter flags of a mounted FS */
|
|
|
|
#define MS_MANDLOCK 64 /* Allow mandatory locks on an FS */
|
|
|
|
#define MS_DIRSYNC 128 /* Directory modifications are synchronous */
|
2020-08-28 01:09:46 +08:00
|
|
|
#define MS_NOSYMFOLLOW 256 /* Do not follow symlinks */
|
2018-11-02 07:07:23 +08:00
|
|
|
#define MS_NOATIME 1024 /* Do not update access times. */
|
|
|
|
#define MS_NODIRATIME 2048 /* Do not update directory access times */
|
|
|
|
#define MS_BIND 4096
|
|
|
|
#define MS_MOVE 8192
|
|
|
|
#define MS_REC 16384
|
|
|
|
#define MS_VERBOSE 32768 /* War is peace. Verbosity is silence.
|
|
|
|
MS_VERBOSE is deprecated. */
|
|
|
|
#define MS_SILENT 32768
|
|
|
|
#define MS_POSIXACL (1<<16) /* VFS does not apply the umask */
|
|
|
|
#define MS_UNBINDABLE (1<<17) /* change to unbindable */
|
|
|
|
#define MS_PRIVATE (1<<18) /* change to private */
|
|
|
|
#define MS_SLAVE (1<<19) /* change to slave */
|
|
|
|
#define MS_SHARED (1<<20) /* change to shared */
|
|
|
|
#define MS_RELATIME (1<<21) /* Update atime relative to mtime/ctime. */
|
|
|
|
#define MS_KERNMOUNT (1<<22) /* this is a kern_mount call */
|
|
|
|
#define MS_I_VERSION (1<<23) /* Update inode I_version field */
|
|
|
|
#define MS_STRICTATIME (1<<24) /* Always perform atime updates */
|
|
|
|
#define MS_LAZYTIME (1<<25) /* Update the on-disk [acm]times lazily */
|
|
|
|
|
|
|
|
/* These sb flags are internal to the kernel */
|
|
|
|
#define MS_SUBMOUNT (1<<26)
|
|
|
|
#define MS_NOREMOTELOCK (1<<27)
|
|
|
|
#define MS_NOSEC (1<<28)
|
|
|
|
#define MS_BORN (1<<29)
|
|
|
|
#define MS_ACTIVE (1<<30)
|
|
|
|
#define MS_NOUSER (1<<31)
|
|
|
|
|
|
|
|
/*
|
|
|
|
* Superblock flags that can be altered by MS_REMOUNT
|
|
|
|
*/
|
|
|
|
#define MS_RMT_MASK (MS_RDONLY|MS_SYNCHRONOUS|MS_MANDLOCK|MS_I_VERSION|\
|
|
|
|
MS_LAZYTIME)
|
|
|
|
|
|
|
|
/*
|
|
|
|
* Old magic mount flag and mask
|
|
|
|
*/
|
|
|
|
#define MS_MGC_VAL 0xC0ED0000
|
|
|
|
#define MS_MGC_MSK 0xffff0000
|
|
|
|
|
2018-11-06 01:40:30 +08:00
|
|
|
/*
|
|
|
|
* open_tree() flags.
|
|
|
|
*/
|
|
|
|
#define OPEN_TREE_CLONE 1 /* Clone the target tree and attach the clone */
|
|
|
|
#define OPEN_TREE_CLOEXEC O_CLOEXEC /* Close the file on execve() */
|
|
|
|
|
2018-11-06 01:40:30 +08:00
|
|
|
/*
|
|
|
|
* move_mount() flags.
|
|
|
|
*/
|
|
|
|
#define MOVE_MOUNT_F_SYMLINKS 0x00000001 /* Follow symlinks on from path */
|
|
|
|
#define MOVE_MOUNT_F_AUTOMOUNTS 0x00000002 /* Follow automounts on from path */
|
|
|
|
#define MOVE_MOUNT_F_EMPTY_PATH 0x00000004 /* Empty from path permitted */
|
|
|
|
#define MOVE_MOUNT_T_SYMLINKS 0x00000010 /* Follow symlinks on to path */
|
|
|
|
#define MOVE_MOUNT_T_AUTOMOUNTS 0x00000020 /* Follow automounts on to path */
|
|
|
|
#define MOVE_MOUNT_T_EMPTY_PATH 0x00000040 /* Empty to path permitted */
|
|
|
|
#define MOVE_MOUNT__MASK 0x00000077
|
|
|
|
|
vfs: syscall: Add fsopen() to prepare for superblock creation
Provide an fsopen() system call that starts the process of preparing to
create a superblock that will then be mountable, using an fd as a context
handle. fsopen() is given the name of the filesystem that will be used:
int mfd = fsopen(const char *fsname, unsigned int flags);
where flags can be 0 or FSOPEN_CLOEXEC.
For example:
sfd = fsopen("ext4", FSOPEN_CLOEXEC);
fsconfig(sfd, FSCONFIG_SET_PATH, "source", "/dev/sda1", AT_FDCWD);
fsconfig(sfd, FSCONFIG_SET_FLAG, "noatime", NULL, 0);
fsconfig(sfd, FSCONFIG_SET_FLAG, "acl", NULL, 0);
fsconfig(sfd, FSCONFIG_SET_FLAG, "user_xattr", NULL, 0);
fsconfig(sfd, FSCONFIG_SET_STRING, "sb", "1", 0);
fsconfig(sfd, FSCONFIG_CMD_CREATE, NULL, NULL, 0);
fsinfo(sfd, NULL, ...); // query new superblock attributes
mfd = fsmount(sfd, FSMOUNT_CLOEXEC, MS_RELATIME);
move_mount(mfd, "", sfd, AT_FDCWD, "/mnt", MOVE_MOUNT_F_EMPTY_PATH);
sfd = fsopen("afs", -1);
fsconfig(fd, FSCONFIG_SET_STRING, "source",
"#grand.central.org:root.cell", 0);
fsconfig(fd, FSCONFIG_CMD_CREATE, NULL, NULL, 0);
mfd = fsmount(sfd, 0, MS_NODEV);
move_mount(mfd, "", sfd, AT_FDCWD, "/mnt", MOVE_MOUNT_F_EMPTY_PATH);
If an error is reported at any step, an error message may be available to be
read() back (ENODATA will be reported if there isn't an error available) in
the form:
"e <subsys>:<problem>"
"e SELinux:Mount on mountpoint not permitted"
Once fsmount() has been called, further fsconfig() calls will incur EBUSY,
even if the fsmount() fails. read() is still possible to retrieve error
information.
The fsopen() syscall creates a mount context and hangs it of the fd that it
returns.
Netlink is not used because it is optional and would make the core VFS
dependent on the networking layer and also potentially add network
namespace issues.
Note that, for the moment, the caller must have SYS_CAP_ADMIN to use
fsopen().
Signed-off-by: David Howells <dhowells@redhat.com>
cc: linux-api@vger.kernel.org
Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
2018-11-02 07:33:31 +08:00
|
|
|
/*
|
|
|
|
* fsopen() flags.
|
|
|
|
*/
|
|
|
|
#define FSOPEN_CLOEXEC 0x00000001
|
|
|
|
|
vfs: syscall: Add fspick() to select a superblock for reconfiguration
Provide an fspick() system call that can be used to pick an existing
mountpoint into an fs_context which can thereafter be used to reconfigure a
superblock (equivalent of the superblock side of -o remount).
This looks like:
int fd = fspick(AT_FDCWD, "/mnt",
FSPICK_CLOEXEC | FSPICK_NO_AUTOMOUNT);
fsconfig(fd, FSCONFIG_SET_FLAG, "intr", NULL, 0);
fsconfig(fd, FSCONFIG_SET_FLAG, "noac", NULL, 0);
fsconfig(fd, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0);
At the point of fspick being called, the file descriptor referring to the
filesystem context is in exactly the same state as the one that was created
by fsopen() after fsmount() has been successfully called.
Signed-off-by: David Howells <dhowells@redhat.com>
cc: linux-api@vger.kernel.org
Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
2018-11-02 07:36:23 +08:00
|
|
|
/*
|
|
|
|
* fspick() flags.
|
|
|
|
*/
|
|
|
|
#define FSPICK_CLOEXEC 0x00000001
|
|
|
|
#define FSPICK_SYMLINK_NOFOLLOW 0x00000002
|
|
|
|
#define FSPICK_NO_AUTOMOUNT 0x00000004
|
|
|
|
#define FSPICK_EMPTY_PATH 0x00000008
|
|
|
|
|
vfs: syscall: Add fsconfig() for configuring and managing a context
Add a syscall for configuring a filesystem creation context and triggering
actions upon it, to be used in conjunction with fsopen, fspick and fsmount.
long fsconfig(int fs_fd, unsigned int cmd, const char *key,
const void *value, int aux);
Where fs_fd indicates the context, cmd indicates the action to take, key
indicates the parameter name for parameter-setting actions and, if needed,
value points to a buffer containing the value and aux can give more
information for the value.
The following command IDs are proposed:
(*) FSCONFIG_SET_FLAG: No value is specified. The parameter must be
boolean in nature. The key may be prefixed with "no" to invert the
setting. value must be NULL and aux must be 0.
(*) FSCONFIG_SET_STRING: A string value is specified. The parameter can
be expecting boolean, integer, string or take a path. A conversion to
an appropriate type will be attempted (which may include looking up as
a path). value points to a NUL-terminated string and aux must be 0.
(*) FSCONFIG_SET_BINARY: A binary blob is specified. value points to
the blob and aux indicates its size. The parameter must be expecting
a blob.
(*) FSCONFIG_SET_PATH: A non-empty path is specified. The parameter must
be expecting a path object. value points to a NUL-terminated string
that is the path and aux is a file descriptor at which to start a
relative lookup or AT_FDCWD.
(*) FSCONFIG_SET_PATH_EMPTY: As fsconfig_set_path, but with AT_EMPTY_PATH
implied.
(*) FSCONFIG_SET_FD: An open file descriptor is specified. value must
be NULL and aux indicates the file descriptor.
(*) FSCONFIG_CMD_CREATE: Trigger superblock creation.
(*) FSCONFIG_CMD_RECONFIGURE: Trigger superblock reconfiguration.
For the "set" command IDs, the idea is that the file_system_type will point
to a list of parameters and the types of value that those parameters expect
to take. The core code can then do the parse and argument conversion and
then give the LSM and FS a cooked option or array of options to use.
Source specification is also done the same way same way, using special keys
"source", "source1", "source2", etc..
[!] Note that, for the moment, the key and value are just glued back
together and handed to the filesystem. Every filesystem that uses options
uses match_token() and co. to do this, and this will need to be changed -
but not all at once.
Example usage:
fd = fsopen("ext4", FSOPEN_CLOEXEC);
fsconfig(fd, fsconfig_set_path, "source", "/dev/sda1", AT_FDCWD);
fsconfig(fd, fsconfig_set_path_empty, "journal_path", "", journal_fd);
fsconfig(fd, fsconfig_set_fd, "journal_fd", "", journal_fd);
fsconfig(fd, fsconfig_set_flag, "user_xattr", NULL, 0);
fsconfig(fd, fsconfig_set_flag, "noacl", NULL, 0);
fsconfig(fd, fsconfig_set_string, "sb", "1", 0);
fsconfig(fd, fsconfig_set_string, "errors", "continue", 0);
fsconfig(fd, fsconfig_set_string, "data", "journal", 0);
fsconfig(fd, fsconfig_set_string, "context", "unconfined_u:...", 0);
fsconfig(fd, fsconfig_cmd_create, NULL, NULL, 0);
mfd = fsmount(fd, FSMOUNT_CLOEXEC, MS_NOEXEC);
or:
fd = fsopen("ext4", FSOPEN_CLOEXEC);
fsconfig(fd, fsconfig_set_string, "source", "/dev/sda1", 0);
fsconfig(fd, fsconfig_cmd_create, NULL, NULL, 0);
mfd = fsmount(fd, FSMOUNT_CLOEXEC, MS_NOEXEC);
or:
fd = fsopen("afs", FSOPEN_CLOEXEC);
fsconfig(fd, fsconfig_set_string, "source", "#grand.central.org:root.cell", 0);
fsconfig(fd, fsconfig_cmd_create, NULL, NULL, 0);
mfd = fsmount(fd, FSMOUNT_CLOEXEC, MS_NOEXEC);
or:
fd = fsopen("jffs2", FSOPEN_CLOEXEC);
fsconfig(fd, fsconfig_set_string, "source", "mtd0", 0);
fsconfig(fd, fsconfig_cmd_create, NULL, NULL, 0);
mfd = fsmount(fd, FSMOUNT_CLOEXEC, MS_NOEXEC);
Signed-off-by: David Howells <dhowells@redhat.com>
cc: linux-api@vger.kernel.org
Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
2018-11-02 07:36:09 +08:00
|
|
|
/*
|
|
|
|
* The type of fsconfig() call made.
|
|
|
|
*/
|
|
|
|
enum fsconfig_command {
|
|
|
|
FSCONFIG_SET_FLAG = 0, /* Set parameter, supplying no value */
|
|
|
|
FSCONFIG_SET_STRING = 1, /* Set parameter, supplying a string value */
|
|
|
|
FSCONFIG_SET_BINARY = 2, /* Set parameter, supplying a binary blob value */
|
|
|
|
FSCONFIG_SET_PATH = 3, /* Set parameter, supplying an object by path */
|
|
|
|
FSCONFIG_SET_PATH_EMPTY = 4, /* Set parameter, supplying an object by (empty) path */
|
|
|
|
FSCONFIG_SET_FD = 5, /* Set parameter, supplying an object by fd */
|
|
|
|
FSCONFIG_CMD_CREATE = 6, /* Invoke superblock creation */
|
|
|
|
FSCONFIG_CMD_RECONFIGURE = 7, /* Invoke superblock reconfiguration */
|
|
|
|
};
|
|
|
|
|
2018-11-02 07:36:14 +08:00
|
|
|
/*
|
|
|
|
* fsmount() flags.
|
|
|
|
*/
|
|
|
|
#define FSMOUNT_CLOEXEC 0x00000001
|
|
|
|
|
|
|
|
/*
|
|
|
|
* Mount attributes.
|
|
|
|
*/
|
|
|
|
#define MOUNT_ATTR_RDONLY 0x00000001 /* Mount read-only */
|
|
|
|
#define MOUNT_ATTR_NOSUID 0x00000002 /* Ignore suid and sgid bits */
|
|
|
|
#define MOUNT_ATTR_NODEV 0x00000004 /* Disallow access to device special files */
|
|
|
|
#define MOUNT_ATTR_NOEXEC 0x00000008 /* Disallow program execution */
|
|
|
|
#define MOUNT_ATTR__ATIME 0x00000070 /* Setting on how atime should be updated */
|
|
|
|
#define MOUNT_ATTR_RELATIME 0x00000000 /* - Update atime relative to mtime/ctime. */
|
|
|
|
#define MOUNT_ATTR_NOATIME 0x00000010 /* - Do not update access times. */
|
|
|
|
#define MOUNT_ATTR_STRICTATIME 0x00000020 /* - Always perform atime updates */
|
|
|
|
#define MOUNT_ATTR_NODIRATIME 0x00000080 /* Do not update directory access times */
|
|
|
|
|
2018-11-02 07:07:23 +08:00
|
|
|
#endif /* _UAPI_LINUX_MOUNT_H */
|