common/sys/kidmap.h

*8329232eSGordon Ross/*
*8329232eSGordon Ross * CDDL HEADER START
*8329232eSGordon Ross *
*8329232eSGordon Ross * The contents of this file are subject to the terms of the
*8329232eSGordon Ross * Common Development and Distribution License (the "License").
*8329232eSGordon Ross * You may not use this file except in compliance with the License.
*8329232eSGordon Ross *
*8329232eSGordon Ross * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
*8329232eSGordon Ross * or http://www.opensolaris.org/os/licensing.
*8329232eSGordon Ross * See the License for the specific language governing permissions
*8329232eSGordon Ross * and limitations under the License.
*8329232eSGordon Ross *
*8329232eSGordon Ross * When distributing Covered Code, include this CDDL HEADER in each
*8329232eSGordon Ross * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
*8329232eSGordon Ross * If applicable, add the following below this CDDL HEADER, with the
*8329232eSGordon Ross * fields enclosed by brackets "[]" replaced with your own identifying
*8329232eSGordon Ross * information: Portions Copyright [yyyy] [name of copyright owner]
*8329232eSGordon Ross *
*8329232eSGordon Ross * CDDL HEADER END
*8329232eSGordon Ross */
*8329232eSGordon Ross
*8329232eSGordon Ross/*
*8329232eSGordon Ross * Copyright 2008 Sun Microsystems, Inc.  All rights reserved.
*8329232eSGordon Ross * Use is subject to license terms.
*8329232eSGordon Ross *
*8329232eSGordon Ross * Copyright 2017 Nexenta Systems, Inc.  All rights reserved.
*8329232eSGordon Ross */
*8329232eSGordon Ross
*8329232eSGordon Ross/*
*8329232eSGordon Ross * Windows to Solaris Identity Mapping kernel API
*8329232eSGordon Ross * This header defines an API to map Windows SIDs to
*8329232eSGordon Ross * Solaris UID and GIDs and versa visa.
*8329232eSGordon Ross */
*8329232eSGordon Ross
*8329232eSGordon Ross#ifndef	_SYS_KIDMAP_H
*8329232eSGordon Ross#define	_SYS_KIDMAP_H
*8329232eSGordon Ross
*8329232eSGordon Ross#include <sys/idmap.h>
*8329232eSGordon Ross#include <sys/door.h>
*8329232eSGordon Ross#include <sys/zone.h>
*8329232eSGordon Ross
*8329232eSGordon Ross#ifdef	__cplusplus
*8329232eSGordon Rossextern "C" {
*8329232eSGordon Ross#endif
*8329232eSGordon Ross
*8329232eSGordon Ross/*
*8329232eSGordon Ross * The ifdef's for these two accomodate duplicate definitions in
*8329232eSGordon Ross * lib/libidmap/common/idmap.h (the real one).  In this code we
*8329232eSGordon Ross * simulate a kernel environment in user space using the real
*8329232eSGordon Ross * idmap library, so need to be able to use both headers.
*8329232eSGordon Ross */
*8329232eSGordon Ross
*8329232eSGordon Ross/* Return status */
*8329232eSGordon Ross#ifndef	_IDMAP_STAT_TYPE
*8329232eSGordon Ross#define	_IDMAP_STAT_TYPE
*8329232eSGordon Rosstypedef int32_t	idmap_stat;
*8329232eSGordon Ross#endif	/* _IDMAP_STAT_TYPE */
*8329232eSGordon Ross
*8329232eSGordon Ross/* Opaque get handle */
*8329232eSGordon Ross#ifndef	_IDMAP_GET_HANDLE_T
*8329232eSGordon Ross#define	_IDMAP_GET_HANDLE_T
*8329232eSGordon Rosstypedef struct idmap_get_handle idmap_get_handle_t;
*8329232eSGordon Ross#endif	/* _IDMAP_GET_HANDLE_T */
*8329232eSGordon Ross
*8329232eSGordon Ross/*
*8329232eSGordon Ross * In all the routines a Windows SID is handled as a
*8329232eSGordon Ross * string SID prefix plus a RID. For example
*8329232eSGordon Ross *
*8329232eSGordon Ross * S-1-5-5-12-34-568 will be passed as SID prefix
*8329232eSGordon Ross * S-1-5-5-12-34 and RID 568
*8329232eSGordon Ross *
*8329232eSGordon Ross * Certain routines returns pointers to a SID prefix string.
*8329232eSGordon Ross * These strings are stored internally and should not be modified
*8329232eSGordon Ross * or freed.
*8329232eSGordon Ross */
*8329232eSGordon Ross
*8329232eSGordon Ross
*8329232eSGordon Ross/*
*8329232eSGordon Ross * The following routines are simple get ID mapping routines.
*8329232eSGordon Ross */
*8329232eSGordon Ross
*8329232eSGordon Ross
*8329232eSGordon Rossidmap_stat
*8329232eSGordon Rosskidmap_getuidbysid(zone_t *zone, const char *sid_prefix, uint32_t rid,
*8329232eSGordon Ross		uid_t *uid);
*8329232eSGordon Ross
*8329232eSGordon Rossidmap_stat
*8329232eSGordon Rosskidmap_getgidbysid(zone_t *zone, const char *sid_prefix, uint32_t rid,
*8329232eSGordon Ross		gid_t *gid);
*8329232eSGordon Ross
*8329232eSGordon Rossidmap_stat
*8329232eSGordon Rosskidmap_getpidbysid(zone_t *zone, const char *sid_prefix, uint32_t rid,
*8329232eSGordon Ross		uid_t *pid, int *is_user);
*8329232eSGordon Ross
*8329232eSGordon Rossidmap_stat
*8329232eSGordon Rosskidmap_getsidbyuid(zone_t *zone, uid_t uid, const char **sid_prefix,
*8329232eSGordon Ross		uint32_t *rid);
*8329232eSGordon Ross
*8329232eSGordon Rossidmap_stat
*8329232eSGordon Rosskidmap_getsidbygid(zone_t *zone, gid_t gid, const char **sid_prefix,
*8329232eSGordon Ross		uint32_t *rid);
*8329232eSGordon Ross
*8329232eSGordon Ross
*8329232eSGordon Ross
*8329232eSGordon Ross/*
*8329232eSGordon Ross * The following routines provide a batch interface for mapping IDs.
*8329232eSGordon Ross */
*8329232eSGordon Ross
*8329232eSGordon Ross/*
*8329232eSGordon Ross * Create a batch "get mapping" handle for batch mappings.
*8329232eSGordon Ross */
*8329232eSGordon Rossidmap_get_handle_t *
*8329232eSGordon Rosskidmap_get_create(zone_t *zone);
*8329232eSGordon Ross
*8329232eSGordon Ross/*
*8329232eSGordon Ross * These routines queue the request to the "get mapping" handle
*8329232eSGordon Ross */
*8329232eSGordon Ross
*8329232eSGordon Rossidmap_stat
*8329232eSGordon Rosskidmap_batch_getuidbysid(idmap_get_handle_t *get_handle,
*8329232eSGordon Ross		const char *sid_prefix, uint32_t rid,
*8329232eSGordon Ross		uid_t *uid, idmap_stat *stat);
*8329232eSGordon Ross
*8329232eSGordon Rossidmap_stat
*8329232eSGordon Rosskidmap_batch_getgidbysid(idmap_get_handle_t *get_handle,
*8329232eSGordon Ross		const char *sid_prefix, uint32_t rid,
*8329232eSGordon Ross		gid_t *gid, idmap_stat *stat);
*8329232eSGordon Ross
*8329232eSGordon Rossidmap_stat
*8329232eSGordon Rosskidmap_batch_getpidbysid(idmap_get_handle_t *get_handle,
*8329232eSGordon Ross		const char *sid_prefix, uint32_t rid,
*8329232eSGordon Ross		uid_t *pid, int *is_user, idmap_stat *stat);
*8329232eSGordon Ross
*8329232eSGordon Rossidmap_stat
*8329232eSGordon Rosskidmap_batch_getsidbyuid(idmap_get_handle_t *get_handle, uid_t uid,
*8329232eSGordon Ross		const char **sid_prefix, uint32_t *rid, idmap_stat *stat);
*8329232eSGordon Ross
*8329232eSGordon Rossidmap_stat
*8329232eSGordon Rosskidmap_batch_getsidbygid(idmap_get_handle_t *get_handle, gid_t gid,
*8329232eSGordon Ross		const char **sid_prefix, uint32_t *rid, idmap_stat *stat);
*8329232eSGordon Ross
*8329232eSGordon Ross/*
*8329232eSGordon Ross * Process the queued "get mapping" requests. The results (i.e.
*8329232eSGordon Ross * status and identity) will be available in the data areas
*8329232eSGordon Ross * provided by individual requests.
*8329232eSGordon Ross */
*8329232eSGordon Rossidmap_stat
*8329232eSGordon Rosskidmap_get_mappings(idmap_get_handle_t *get_handle);
*8329232eSGordon Ross
*8329232eSGordon Ross/*
*8329232eSGordon Ross * Destroy the "get mapping" handle
*8329232eSGordon Ross */
*8329232eSGordon Rossvoid
*8329232eSGordon Rosskidmap_get_destroy(idmap_get_handle_t *get_handle);
*8329232eSGordon Ross
*8329232eSGordon Ross#ifdef	_KERNEL
*8329232eSGordon Ross/*
*8329232eSGordon Ross * Functions that do the hard part of door registration/unregistration
*8329232eSGordon Ross * for the idmap_reg()/idmap_unreg() syscalls
*8329232eSGordon Ross */
*8329232eSGordon Rossint idmap_reg_dh(zone_t *zone, door_handle_t dh);
*8329232eSGordon Rossint idmap_unreg_dh(zone_t *zone, door_handle_t dh);
*8329232eSGordon Ross
*8329232eSGordon Ross/*
*8329232eSGordon Ross * Function needed by allocids() to ensure only the daemon that owns
*8329232eSGordon Ross * the door gets ephemeral IDS
*8329232eSGordon Ross */
*8329232eSGordon Rossdoor_handle_t idmap_get_door(zone_t *zone);
*8329232eSGordon Ross
*8329232eSGordon Ross/*
*8329232eSGordon Ross * Function used by system call allocids() to purge the
*8329232eSGordon Ross * ID mapping cache
*8329232eSGordon Ross */
*8329232eSGordon Rossvoid idmap_purge_cache(zone_t *zone);
*8329232eSGordon Ross
*8329232eSGordon Ross#endif	/* _KERNEL */
*8329232eSGordon Ross
*8329232eSGordon Ross
*8329232eSGordon Ross#ifdef	__cplusplus
*8329232eSGordon Ross}
*8329232eSGordon Ross#endif
*8329232eSGordon Ross
*8329232eSGordon Ross#endif	/* _SYS_KIDMAP_H */