16185db85Sdougm /* 26185db85Sdougm * CDDL HEADER START 36185db85Sdougm * 46185db85Sdougm * The contents of this file are subject to the terms of the 56185db85Sdougm * Common Development and Distribution License (the "License"). 66185db85Sdougm * You may not use this file except in compliance with the License. 76185db85Sdougm * 86185db85Sdougm * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE 96185db85Sdougm * or http://www.opensolaris.org/os/licensing. 106185db85Sdougm * See the License for the specific language governing permissions 116185db85Sdougm * and limitations under the License. 126185db85Sdougm * 136185db85Sdougm * When distributing Covered Code, include this CDDL HEADER in each 146185db85Sdougm * file and include the License file at usr/src/OPENSOLARIS.LICENSE. 156185db85Sdougm * If applicable, add the following below this CDDL HEADER, with the 166185db85Sdougm * fields enclosed by brackets "[]" replaced with your own identifying 176185db85Sdougm * information: Portions Copyright [yyyy] [name of copyright owner] 186185db85Sdougm * 196185db85Sdougm * CDDL HEADER END 206185db85Sdougm */ 216185db85Sdougm 226185db85Sdougm /* 23*dc20a302Sas200622 * Copyright 2008 Sun Microsystems, Inc. All rights reserved. 246185db85Sdougm * Use is subject to license terms. 256185db85Sdougm */ 266185db85Sdougm 276185db85Sdougm #pragma ident "%Z%%M% %I% %E% SMI" 286185db85Sdougm 296185db85Sdougm #include <sys/types.h> 306185db85Sdougm #include <sys/stat.h> 316185db85Sdougm #include <fcntl.h> 326185db85Sdougm #include <stdlib.h> 336185db85Sdougm #include <stdio.h> 346185db85Sdougm #include <string.h> 356185db85Sdougm #include <ctype.h> 366185db85Sdougm #include <unistd.h> 376185db85Sdougm #include <getopt.h> 386185db85Sdougm #include <utmpx.h> 396185db85Sdougm #include <pwd.h> 406185db85Sdougm #include <auth_attr.h> 416185db85Sdougm #include <secdb.h> 426185db85Sdougm #include <sys/param.h> 436185db85Sdougm #include <sys/stat.h> 446185db85Sdougm #include <errno.h> 456185db85Sdougm 466185db85Sdougm #include <libshare.h> 476185db85Sdougm #include "sharemgr.h" 486185db85Sdougm #include <libscf.h> 496185db85Sdougm #include <libxml/tree.h> 506185db85Sdougm #include <libintl.h> 51da6c28aaSamw #include <assert.h> 52da6c28aaSamw #include <iconv.h> 53da6c28aaSamw #include <langinfo.h> 54da6c28aaSamw #include <dirent.h> 556185db85Sdougm 566185db85Sdougm static char *sa_get_usage(sa_usage_t); 576185db85Sdougm 586185db85Sdougm /* 596185db85Sdougm * Implementation of the common sub-commands supported by sharemgr. 606185db85Sdougm * A number of helper functions are also included. 616185db85Sdougm */ 626185db85Sdougm 636185db85Sdougm /* 646185db85Sdougm * has_protocol(group, proto) 656185db85Sdougm * If the group has an optionset with the specified protocol, 666185db85Sdougm * return true (1) otherwise false (0). 676185db85Sdougm */ 686185db85Sdougm static int 696185db85Sdougm has_protocol(sa_group_t group, char *protocol) 706185db85Sdougm { 716185db85Sdougm sa_optionset_t optionset; 726185db85Sdougm int result = 0; 736185db85Sdougm 746185db85Sdougm optionset = sa_get_optionset(group, protocol); 756185db85Sdougm if (optionset != NULL) { 766185db85Sdougm result++; 776185db85Sdougm } 786185db85Sdougm return (result); 796185db85Sdougm } 806185db85Sdougm 816185db85Sdougm /* 82da6c28aaSamw * validresource(name) 83da6c28aaSamw * 84da6c28aaSamw * Check that name only has valid characters in it. The current valid 85da6c28aaSamw * set are the printable characters but not including: 86da6c28aaSamw * " / \ [ ] : | < > + ; , ? * = \t 87da6c28aaSamw * Note that space is included and there is a maximum length. 88da6c28aaSamw */ 89da6c28aaSamw static int 90da6c28aaSamw validresource(const char *name) 91da6c28aaSamw { 92da6c28aaSamw const char *cp; 93da6c28aaSamw size_t len; 94da6c28aaSamw 95da6c28aaSamw if (name == NULL) 96da6c28aaSamw return (B_FALSE); 97da6c28aaSamw 98da6c28aaSamw len = strlen(name); 99da6c28aaSamw if (len == 0 || len > SA_MAX_RESOURCE_NAME) 100da6c28aaSamw return (B_FALSE); 101da6c28aaSamw 102da6c28aaSamw if (strpbrk(name, "\"/\\[]:|<>+;,?*=\t") != NULL) { 103da6c28aaSamw return (B_FALSE); 104da6c28aaSamw } 105da6c28aaSamw 106da6c28aaSamw for (cp = name; *cp != '\0'; cp++) 107da6c28aaSamw if (iscntrl(*cp)) 108da6c28aaSamw return (B_FALSE); 109da6c28aaSamw 110da6c28aaSamw return (B_TRUE); 111da6c28aaSamw } 112da6c28aaSamw 113da6c28aaSamw /* 114da6c28aaSamw * conv_to_utf8(input) 115da6c28aaSamw * 116da6c28aaSamw * Convert the input string to utf8 from the current locale. If the 117da6c28aaSamw * conversion fails, use the current locale, it is likely close 118da6c28aaSamw * enough. For example, the "C" locale is a subset of utf-8. The 119da6c28aaSamw * return value may be a new string or the original input string. 120da6c28aaSamw */ 121da6c28aaSamw 122da6c28aaSamw static char * 123da6c28aaSamw conv_to_utf8(char *input) 124da6c28aaSamw { 125da6c28aaSamw iconv_t cd; 12655bf511dSas200622 char *inval = input; 127da6c28aaSamw char *output = input; 128da6c28aaSamw char *outleft; 129da6c28aaSamw char *curlocale; 130da6c28aaSamw size_t bytesleft; 131da6c28aaSamw size_t size; 132da6c28aaSamw size_t osize; 133da6c28aaSamw static int warned = 0; 134da6c28aaSamw 135da6c28aaSamw curlocale = nl_langinfo(CODESET); 136da6c28aaSamw if (curlocale == NULL) 137da6c28aaSamw curlocale = "C"; 138da6c28aaSamw cd = iconv_open("UTF-8", curlocale); 139da6c28aaSamw if (cd != NULL && cd != (iconv_t)-1) { 140da6c28aaSamw size = strlen(input); 141da6c28aaSamw /* Assume worst case of characters expanding to 4 bytes. */ 142da6c28aaSamw bytesleft = size * 4; 143da6c28aaSamw output = calloc(bytesleft, 1); 144da6c28aaSamw if (output != NULL) { 145da6c28aaSamw outleft = output; 14655bf511dSas200622 /* inval can be modified on return */ 14755bf511dSas200622 osize = iconv(cd, (const char **)&inval, &size, 148da6c28aaSamw &outleft, &bytesleft); 149da6c28aaSamw if (osize == (size_t)-1 || size != 0) { 150da6c28aaSamw free(output); 151da6c28aaSamw output = input; 152da6c28aaSamw } 15355bf511dSas200622 } else { 15455bf511dSas200622 /* Need to return something. */ 15555bf511dSas200622 output = input; 156da6c28aaSamw } 157da6c28aaSamw (void) iconv_close(cd); 158da6c28aaSamw } else { 159da6c28aaSamw if (!warned) 160da6c28aaSamw (void) fprintf(stderr, 161da6c28aaSamw gettext("Cannot convert to UTF-8 from %s\n"), 162da6c28aaSamw curlocale ? curlocale : gettext("unknown")); 163da6c28aaSamw warned = 1; 164da6c28aaSamw } 165da6c28aaSamw return (output); 166da6c28aaSamw } 167da6c28aaSamw 168da6c28aaSamw /* 169da6c28aaSamw * conv_from(input) 170da6c28aaSamw * 171da6c28aaSamw * Convert the input string from utf8 to current locale. If the 172da6c28aaSamw * conversion isn't supported, just use as is. The return value may be 173da6c28aaSamw * a new string or the original input string. 174da6c28aaSamw */ 175da6c28aaSamw 176da6c28aaSamw static char * 177da6c28aaSamw conv_from_utf8(char *input) 178da6c28aaSamw { 179da6c28aaSamw iconv_t cd; 180da6c28aaSamw char *output = input; 18155bf511dSas200622 char *inval = input; 182da6c28aaSamw char *outleft; 183da6c28aaSamw char *curlocale; 184da6c28aaSamw size_t bytesleft; 185da6c28aaSamw size_t size; 186da6c28aaSamw size_t osize; 187da6c28aaSamw static int warned = 0; 188da6c28aaSamw 189da6c28aaSamw curlocale = nl_langinfo(CODESET); 190da6c28aaSamw if (curlocale == NULL) 191da6c28aaSamw curlocale = "C"; 192da6c28aaSamw cd = iconv_open(curlocale, "UTF-8"); 193da6c28aaSamw if (cd != NULL && cd != (iconv_t)-1) { 194da6c28aaSamw size = strlen(input); 195da6c28aaSamw /* Assume worst case of characters expanding to 4 bytes. */ 196da6c28aaSamw bytesleft = size * 4; 197da6c28aaSamw output = calloc(bytesleft, 1); 198da6c28aaSamw if (output != NULL) { 199da6c28aaSamw outleft = output; 20055bf511dSas200622 osize = iconv(cd, (const char **)&inval, &size, 201da6c28aaSamw &outleft, &bytesleft); 20255bf511dSas200622 if (osize == (size_t)-1 || size != 0) 203da6c28aaSamw output = input; 20455bf511dSas200622 } else { 20555bf511dSas200622 /* Need to return something. */ 20655bf511dSas200622 output = input; 207da6c28aaSamw } 208da6c28aaSamw (void) iconv_close(cd); 209da6c28aaSamw } else { 210da6c28aaSamw if (!warned) 211da6c28aaSamw (void) fprintf(stderr, 212da6c28aaSamw gettext("Cannot convert to %s from UTF-8\n"), 213da6c28aaSamw curlocale ? curlocale : gettext("unknown")); 214da6c28aaSamw warned = 1; 215da6c28aaSamw } 216da6c28aaSamw return (output); 217da6c28aaSamw } 218da6c28aaSamw 219da6c28aaSamw static void 220da6c28aaSamw print_rsrc_desc(char *resource) 221da6c28aaSamw { 222da6c28aaSamw char *description; 223da6c28aaSamw char *desc; 224da6c28aaSamw 225da6c28aaSamw description = sa_get_resource_description(resource); 226da6c28aaSamw if (description != NULL) { 227da6c28aaSamw desc = conv_from_utf8(description); 228da6c28aaSamw if (desc != description) { 229da6c28aaSamw sa_free_share_description(description); 230da6c28aaSamw description = desc; 231da6c28aaSamw } 232da6c28aaSamw (void) printf("\t\"%s\"", description); 233da6c28aaSamw sa_free_share_description(description); 234da6c28aaSamw } 235da6c28aaSamw } 236da6c28aaSamw 237da6c28aaSamw static int 238da6c28aaSamw set_share_desc(sa_share_t share, char *description) 239da6c28aaSamw { 240da6c28aaSamw char *desc; 241da6c28aaSamw int ret; 242da6c28aaSamw 243da6c28aaSamw desc = conv_to_utf8(description); 244da6c28aaSamw ret = sa_set_share_description(share, desc); 245da6c28aaSamw if (description != desc) 246da6c28aaSamw sa_free_share_description(desc); 247da6c28aaSamw return (ret); 248da6c28aaSamw } 249da6c28aaSamw 250da6c28aaSamw /* 251da6c28aaSamw * add_list(list, item, data, proto) 252da6c28aaSamw * Adds a new list member that points holds item in the list. 2536185db85Sdougm * If list is NULL, it starts a new list. The function returns 2546185db85Sdougm * the first member of the list. 2556185db85Sdougm */ 2566185db85Sdougm struct list * 257da6c28aaSamw add_list(struct list *listp, void *item, void *data, char *proto) 2586185db85Sdougm { 2596185db85Sdougm struct list *new, *tmp; 2606185db85Sdougm 2616185db85Sdougm new = malloc(sizeof (struct list)); 2626185db85Sdougm if (new != NULL) { 2636185db85Sdougm new->next = NULL; 2646185db85Sdougm new->item = item; 2656185db85Sdougm new->itemdata = data; 266da6c28aaSamw new->proto = proto; 2676185db85Sdougm } else { 2686185db85Sdougm return (listp); 2696185db85Sdougm } 2706185db85Sdougm 2716185db85Sdougm if (listp == NULL) 2726185db85Sdougm return (new); 2736185db85Sdougm 2746185db85Sdougm for (tmp = listp; tmp->next != NULL; tmp = tmp->next) { 2756185db85Sdougm /* get to end of list */ 2766185db85Sdougm } 2776185db85Sdougm tmp->next = new; 2786185db85Sdougm return (listp); 2796185db85Sdougm } 2806185db85Sdougm 2816185db85Sdougm /* 2826185db85Sdougm * free_list(list) 2836185db85Sdougm * Given a list, free all the members of the list; 2846185db85Sdougm */ 2856185db85Sdougm static void 2866185db85Sdougm free_list(struct list *listp) 2876185db85Sdougm { 2886185db85Sdougm struct list *tmp; 2896185db85Sdougm while (listp != NULL) { 2906185db85Sdougm tmp = listp; 2916185db85Sdougm listp = listp->next; 2926185db85Sdougm free(tmp); 2936185db85Sdougm } 2946185db85Sdougm } 2956185db85Sdougm 2966185db85Sdougm /* 2976185db85Sdougm * check_authorization(instname, which) 2986185db85Sdougm * 2996185db85Sdougm * Checks to see if the specific type of authorization in which is 3006185db85Sdougm * enabled for the user in this SMF service instance. 3016185db85Sdougm */ 3026185db85Sdougm 3036185db85Sdougm static int 3046185db85Sdougm check_authorization(char *instname, int which) 3056185db85Sdougm { 3066185db85Sdougm scf_handle_t *handle = NULL; 3076185db85Sdougm scf_simple_prop_t *prop = NULL; 3086185db85Sdougm char svcstring[SA_MAX_NAME_LEN + sizeof (SA_SVC_FMRI_BASE) + 1]; 3096185db85Sdougm char *authstr = NULL; 3106185db85Sdougm ssize_t numauths; 31125a68471Sdougm int ret = B_TRUE; 3126185db85Sdougm uid_t uid; 3136185db85Sdougm struct passwd *pw = NULL; 3146185db85Sdougm 3156185db85Sdougm uid = getuid(); 3166185db85Sdougm pw = getpwuid(uid); 31725a68471Sdougm if (pw == NULL) { 31825a68471Sdougm ret = B_FALSE; 31925a68471Sdougm } else { 32025a68471Sdougm /* 32125a68471Sdougm * Since names are restricted to SA_MAX_NAME_LEN won't 32225a68471Sdougm * overflow. 32325a68471Sdougm */ 32425a68471Sdougm (void) snprintf(svcstring, sizeof (svcstring), "%s:%s", 32525a68471Sdougm SA_SVC_FMRI_BASE, instname); 3266185db85Sdougm handle = scf_handle_create(SCF_VERSION); 3276185db85Sdougm if (handle != NULL) { 3286185db85Sdougm if (scf_handle_bind(handle) == 0) { 3296185db85Sdougm switch (which) { 3306185db85Sdougm case SVC_SET: 33125a68471Sdougm prop = scf_simple_prop_get(handle, 33225a68471Sdougm svcstring, "general", 3336185db85Sdougm SVC_AUTH_VALUE); 3346185db85Sdougm break; 3356185db85Sdougm case SVC_ACTION: 33625a68471Sdougm prop = scf_simple_prop_get(handle, 33725a68471Sdougm svcstring, "general", 3386185db85Sdougm SVC_AUTH_ACTION); 3396185db85Sdougm break; 3406185db85Sdougm } 3416185db85Sdougm } 3426185db85Sdougm } 3436185db85Sdougm } 3446185db85Sdougm /* make sure we have an authorization string property */ 3456185db85Sdougm if (prop != NULL) { 3466185db85Sdougm int i; 3476185db85Sdougm numauths = scf_simple_prop_numvalues(prop); 3486185db85Sdougm for (ret = 0, i = 0; i < numauths; i++) { 3496185db85Sdougm authstr = scf_simple_prop_next_astring(prop); 3506185db85Sdougm if (authstr != NULL) { 3516185db85Sdougm /* check if this user has one of the strings */ 3526185db85Sdougm if (chkauthattr(authstr, pw->pw_name)) { 3536185db85Sdougm ret = 1; 3546185db85Sdougm break; 3556185db85Sdougm } 3566185db85Sdougm } 3576185db85Sdougm } 3586185db85Sdougm endauthattr(); 3596185db85Sdougm scf_simple_prop_free(prop); 3606185db85Sdougm } else { 3616185db85Sdougm /* no authorization string defined */ 3626185db85Sdougm ret = 0; 3636185db85Sdougm } 3646185db85Sdougm if (handle != NULL) 3656185db85Sdougm scf_handle_destroy(handle); 3666185db85Sdougm return (ret); 3676185db85Sdougm } 3686185db85Sdougm 3696185db85Sdougm /* 3706185db85Sdougm * check_authorizations(instname, flags) 3716185db85Sdougm * 3726185db85Sdougm * check all the needed authorizations for the user in this service 3736185db85Sdougm * instance. Return value of 1(true) or 0(false) indicates whether 3746185db85Sdougm * there are authorizations for the user or not. 3756185db85Sdougm */ 3766185db85Sdougm 3776185db85Sdougm static int 3786185db85Sdougm check_authorizations(char *instname, int flags) 3796185db85Sdougm { 3806185db85Sdougm int ret1 = 0; 3816185db85Sdougm int ret2 = 0; 3826185db85Sdougm int ret; 3836185db85Sdougm 3846185db85Sdougm if (flags & SVC_SET) 3856185db85Sdougm ret1 = check_authorization(instname, SVC_SET); 3866185db85Sdougm if (flags & SVC_ACTION) 3876185db85Sdougm ret2 = check_authorization(instname, SVC_ACTION); 3886185db85Sdougm switch (flags) { 3896185db85Sdougm case SVC_ACTION: 3906185db85Sdougm ret = ret2; 3916185db85Sdougm break; 3926185db85Sdougm case SVC_SET: 3936185db85Sdougm ret = ret1; 3946185db85Sdougm break; 3956185db85Sdougm case SVC_ACTION|SVC_SET: 3966185db85Sdougm ret = ret1 & ret2; 3976185db85Sdougm break; 3986185db85Sdougm default: 3996185db85Sdougm /* if not flags set, we assume we don't need authorizations */ 4006185db85Sdougm ret = 1; 4016185db85Sdougm } 4026185db85Sdougm return (ret); 4036185db85Sdougm } 4046185db85Sdougm 4056185db85Sdougm /* 406da6c28aaSamw * notify_or_enable_share(share, protocol) 407da6c28aaSamw * 408da6c28aaSamw * Since some protocols don't want an "enable" when properties change, 409da6c28aaSamw * this function will use the protocol specific notify function 410da6c28aaSamw * first. If that fails, it will then attempt to use the 411da6c28aaSamw * sa_enable_share(). "protocol" is the protocol that was specified 412da6c28aaSamw * on the command line. 413da6c28aaSamw */ 414da6c28aaSamw static void 415da6c28aaSamw notify_or_enable_share(sa_share_t share, char *protocol) 416da6c28aaSamw { 417da6c28aaSamw sa_group_t group; 418da6c28aaSamw sa_optionset_t opt; 419da6c28aaSamw int ret = SA_OK; 420da6c28aaSamw char *path; 421da6c28aaSamw char *groupproto; 422da6c28aaSamw sa_share_t parent = share; 423da6c28aaSamw 424da6c28aaSamw /* If really a resource, get parent share */ 425da6c28aaSamw if (!sa_is_share(share)) { 426da6c28aaSamw parent = sa_get_resource_parent((sa_resource_t)share); 427da6c28aaSamw } 428da6c28aaSamw 429da6c28aaSamw /* 430da6c28aaSamw * Now that we've got a share in "parent", make sure it has a path. 431da6c28aaSamw */ 432da6c28aaSamw path = sa_get_share_attr(parent, "path"); 433da6c28aaSamw if (path == NULL) 434da6c28aaSamw return; 435da6c28aaSamw 436da6c28aaSamw group = sa_get_parent_group(parent); 437da6c28aaSamw 438da6c28aaSamw if (group == NULL) { 439da6c28aaSamw sa_free_attr_string(path); 440da6c28aaSamw return; 441da6c28aaSamw } 442da6c28aaSamw for (opt = sa_get_optionset(group, NULL); 443da6c28aaSamw opt != NULL; 444da6c28aaSamw opt = sa_get_next_optionset(opt)) { 445da6c28aaSamw groupproto = sa_get_optionset_attr(opt, "type"); 446da6c28aaSamw if (groupproto == NULL || 447da6c28aaSamw (protocol != NULL && strcmp(groupproto, protocol) != 0)) { 448da6c28aaSamw sa_free_attr_string(groupproto); 449da6c28aaSamw continue; 450da6c28aaSamw } 451da6c28aaSamw if (sa_is_share(share)) { 452da6c28aaSamw if ((ret = sa_proto_change_notify(share, 453da6c28aaSamw groupproto)) != SA_OK) { 454da6c28aaSamw ret = sa_enable_share(share, groupproto); 455da6c28aaSamw if (ret != SA_OK) { 456da6c28aaSamw (void) printf( 457da6c28aaSamw gettext("Could not reenable" 458da6c28aaSamw " share %s: %s\n"), 459da6c28aaSamw path, sa_errorstr(ret)); 460da6c28aaSamw } 461da6c28aaSamw } 462da6c28aaSamw } else { 463da6c28aaSamw /* Must be a resource */ 464da6c28aaSamw if ((ret = sa_proto_notify_resource(share, 465da6c28aaSamw groupproto)) != SA_OK) { 466da6c28aaSamw ret = sa_enable_resource(share, groupproto); 467da6c28aaSamw if (ret != SA_OK) { 468da6c28aaSamw (void) printf( 469da6c28aaSamw gettext("Could not " 470da6c28aaSamw "reenable resource %s: " 471da6c28aaSamw "%s\n"), path, 472da6c28aaSamw sa_errorstr(ret)); 473da6c28aaSamw } 474da6c28aaSamw } 475da6c28aaSamw } 476da6c28aaSamw sa_free_attr_string(groupproto); 477da6c28aaSamw } 478da6c28aaSamw sa_free_attr_string(path); 479da6c28aaSamw } 480da6c28aaSamw 481da6c28aaSamw /* 482da6c28aaSamw * enable_group(group, updateproto, notify, proto) 4837d968cb8Sdougm * 4847d968cb8Sdougm * enable all the shares in the specified group. This is a helper for 4857d968cb8Sdougm * enable_all_groups in order to simplify regular and subgroup (zfs) 486da6c28aaSamw * enabling. Group has already been checked for non-NULL. If notify 487da6c28aaSamw * is non-zero, attempt to use the notify interface rather than 488da6c28aaSamw * enable. 4896185db85Sdougm */ 4907d968cb8Sdougm static void 491da6c28aaSamw enable_group(sa_group_t group, char *updateproto, int notify, char *proto) 4926185db85Sdougm { 4936185db85Sdougm sa_share_t share; 4947d968cb8Sdougm 4957d968cb8Sdougm for (share = sa_get_share(group, NULL); 4967d968cb8Sdougm share != NULL; 4977d968cb8Sdougm share = sa_get_next_share(share)) { 4987d968cb8Sdougm if (updateproto != NULL) 4997d968cb8Sdougm (void) sa_update_legacy(share, updateproto); 500da6c28aaSamw if (notify) 501da6c28aaSamw notify_or_enable_share(share, proto); 502da6c28aaSamw else 503da6c28aaSamw (void) sa_enable_share(share, proto); 5047d968cb8Sdougm } 5057d968cb8Sdougm } 5067d968cb8Sdougm 5077d968cb8Sdougm /* 508330ef417Sdougm * isenabled(group) 509330ef417Sdougm * 510330ef417Sdougm * Returns B_TRUE if the group is enabled or B_FALSE if it isn't. 511330ef417Sdougm * Moved to separate function to reduce clutter in the code. 512330ef417Sdougm */ 513330ef417Sdougm 514330ef417Sdougm static int 515330ef417Sdougm isenabled(sa_group_t group) 516330ef417Sdougm { 517330ef417Sdougm char *state; 518330ef417Sdougm int ret = B_FALSE; 519330ef417Sdougm 520330ef417Sdougm if (group != NULL) { 521330ef417Sdougm state = sa_get_group_attr(group, "state"); 522330ef417Sdougm if (state != NULL) { 523da6c28aaSamw 524330ef417Sdougm if (strcmp(state, "enabled") == 0) 525330ef417Sdougm ret = B_TRUE; 526330ef417Sdougm sa_free_attr_string(state); 527330ef417Sdougm } 528330ef417Sdougm } 529330ef417Sdougm return (ret); 530330ef417Sdougm } 531330ef417Sdougm 532330ef417Sdougm /* 5337d968cb8Sdougm * enable_all_groups(list, setstate, online, updateproto) 534da6c28aaSamw * 535da6c28aaSamw * Given a list of groups, enable each one found. If updateproto is 536da6c28aaSamw * not NULL, then update all the shares for the protocol that was 537da6c28aaSamw * passed in. If enable is non-zero, tell enable_group to try the 538da6c28aaSamw * notify interface since this is a property change. 5397d968cb8Sdougm */ 5407d968cb8Sdougm static int 541549ec3ffSdougm enable_all_groups(sa_handle_t handle, struct list *work, int setstate, 542da6c28aaSamw int online, char *updateproto, int enable) 5437d968cb8Sdougm { 544330ef417Sdougm int ret; 5456185db85Sdougm char instance[SA_MAX_NAME_LEN + sizeof (SA_SVC_FMRI_BASE) + 1]; 5466185db85Sdougm char *state; 5476185db85Sdougm char *name; 5486185db85Sdougm char *zfs = NULL; 5496185db85Sdougm sa_group_t group; 5507d968cb8Sdougm sa_group_t subgroup; 5516185db85Sdougm 552330ef417Sdougm for (ret = SA_OK; work != NULL; work = work->next) { 5536185db85Sdougm group = (sa_group_t)work->item; 554330ef417Sdougm 555330ef417Sdougm /* 556330ef417Sdougm * If setstate == TRUE, then make sure to set 557330ef417Sdougm * enabled. This needs to be done here in order for 558330ef417Sdougm * the isenabled check to succeed on a newly enabled 559330ef417Sdougm * group. 560330ef417Sdougm */ 561330ef417Sdougm if (setstate == B_TRUE) { 562330ef417Sdougm ret = sa_set_group_attr(group, "state", "enabled"); 563330ef417Sdougm if (ret != SA_OK) 564330ef417Sdougm break; 565330ef417Sdougm } 566330ef417Sdougm 567330ef417Sdougm /* 568330ef417Sdougm * Check to see if group is enabled. If it isn't, skip 569330ef417Sdougm * the rest. We don't want shares starting if the 570330ef417Sdougm * group is disabled. The properties may have been 571330ef417Sdougm * updated, but there won't be a change until the 572330ef417Sdougm * group is enabled. 573330ef417Sdougm */ 574330ef417Sdougm if (!isenabled(group)) 575330ef417Sdougm continue; 576330ef417Sdougm 5776185db85Sdougm /* if itemdata != NULL then a single share */ 5786185db85Sdougm if (work->itemdata != NULL) { 579da6c28aaSamw if (enable) { 580da6c28aaSamw if (work->itemdata != NULL) 581da6c28aaSamw notify_or_enable_share(work->itemdata, 582da6c28aaSamw updateproto); 583da6c28aaSamw else 584da6c28aaSamw ret = SA_CONFIG_ERR; 585da6c28aaSamw } else { 586da6c28aaSamw if (sa_is_share(work->itemdata)) { 587da6c28aaSamw ret = sa_enable_share( 588da6c28aaSamw (sa_share_t)work->itemdata, 589da6c28aaSamw updateproto); 590da6c28aaSamw } else { 591da6c28aaSamw ret = sa_enable_resource( 592da6c28aaSamw (sa_resource_t)work->itemdata, 593da6c28aaSamw updateproto); 594da6c28aaSamw } 595da6c28aaSamw } 5966185db85Sdougm } 597330ef417Sdougm if (ret != SA_OK) 598330ef417Sdougm break; 599330ef417Sdougm 6006185db85Sdougm /* if itemdata == NULL then the whole group */ 6016185db85Sdougm if (work->itemdata == NULL) { 6027d968cb8Sdougm zfs = sa_get_group_attr(group, "zfs"); 6037d968cb8Sdougm /* 604da6c28aaSamw * If the share is managed by ZFS, don't 6057d968cb8Sdougm * update any of the protocols since ZFS is 606da6c28aaSamw * handling this. Updateproto will contain 6077d968cb8Sdougm * the name of the protocol that we want to 6087d968cb8Sdougm * update legacy files for. 6097d968cb8Sdougm */ 610da6c28aaSamw enable_group(group, zfs == NULL ? updateproto : NULL, 611da6c28aaSamw enable, work->proto); 61225a68471Sdougm for (subgroup = sa_get_sub_group(group); 61325a68471Sdougm subgroup != NULL; 6147d968cb8Sdougm subgroup = sa_get_next_group(subgroup)) { 6157d968cb8Sdougm /* never update legacy for ZFS subgroups */ 616da6c28aaSamw enable_group(subgroup, NULL, enable, 617da6c28aaSamw work->proto); 6186185db85Sdougm } 6196185db85Sdougm } 6206185db85Sdougm if (online) { 6216185db85Sdougm zfs = sa_get_group_attr(group, "zfs"); 6227d968cb8Sdougm name = sa_get_group_attr(group, "name"); 6236185db85Sdougm if (name != NULL) { 6246185db85Sdougm if (zfs == NULL) { 62525a68471Sdougm (void) snprintf(instance, 62625a68471Sdougm sizeof (instance), "%s:%s", 6276185db85Sdougm SA_SVC_FMRI_BASE, name); 6286185db85Sdougm state = smf_get_state(instance); 6296185db85Sdougm if (state == NULL || 6306185db85Sdougm strcmp(state, "online") != 0) { 63125a68471Sdougm (void) smf_enable_instance( 63225a68471Sdougm instance, 0); 6336185db85Sdougm free(state); 6346185db85Sdougm } 6356185db85Sdougm } else { 6366185db85Sdougm sa_free_attr_string(zfs); 6376185db85Sdougm zfs = NULL; 6386185db85Sdougm } 6396185db85Sdougm if (name != NULL) 6406185db85Sdougm sa_free_attr_string(name); 6416185db85Sdougm } 6426185db85Sdougm } 6436185db85Sdougm } 6446185db85Sdougm if (ret == SA_OK) { 645549ec3ffSdougm ret = sa_update_config(handle); 6466185db85Sdougm } 6476185db85Sdougm return (ret); 6486185db85Sdougm } 6496185db85Sdougm 6506185db85Sdougm /* 6516185db85Sdougm * chk_opt(optlistp, security, proto) 6526185db85Sdougm * 6536185db85Sdougm * Do a sanity check on the optlist provided for the protocol. This 6546185db85Sdougm * is a syntax check and verification that the property is either a 6556185db85Sdougm * general or specific to a names optionset. 6566185db85Sdougm */ 6576185db85Sdougm 6586185db85Sdougm static int 6596185db85Sdougm chk_opt(struct options *optlistp, int security, char *proto) 6606185db85Sdougm { 6616185db85Sdougm struct options *optlist; 6626185db85Sdougm char *sep = ""; 6636185db85Sdougm int notfirst = 0; 6646185db85Sdougm int ret; 6656185db85Sdougm 6666185db85Sdougm for (optlist = optlistp; optlist != NULL; optlist = optlist->next) { 6676185db85Sdougm char *optname; 6686185db85Sdougm 6696185db85Sdougm optname = optlist->optname; 6706185db85Sdougm ret = OPT_ADD_OK; 6716185db85Sdougm /* extract property/value pair */ 6726185db85Sdougm if (sa_is_security(optname, proto)) { 6736185db85Sdougm if (!security) 6746185db85Sdougm ret = OPT_ADD_SECURITY; 6756185db85Sdougm } else { 6766185db85Sdougm if (security) 6776185db85Sdougm ret = OPT_ADD_PROPERTY; 6786185db85Sdougm } 6796185db85Sdougm if (ret != OPT_ADD_OK) { 6806185db85Sdougm if (notfirst == 0) 68125a68471Sdougm (void) printf( 68225a68471Sdougm gettext("Property syntax error: ")); 6836185db85Sdougm switch (ret) { 6846185db85Sdougm case OPT_ADD_SYNTAX: 6856185db85Sdougm (void) printf(gettext("%ssyntax error: %s"), 6866185db85Sdougm sep, optname); 6876185db85Sdougm sep = ", "; 6886185db85Sdougm break; 6896185db85Sdougm case OPT_ADD_SECURITY: 6906185db85Sdougm (void) printf(gettext("%s%s requires -S"), 6916185db85Sdougm optname, sep); 6926185db85Sdougm sep = ", "; 6936185db85Sdougm break; 6946185db85Sdougm case OPT_ADD_PROPERTY: 69525a68471Sdougm (void) printf( 69625a68471Sdougm gettext("%s%s not supported with -S"), 6976185db85Sdougm optname, sep); 6986185db85Sdougm sep = ", "; 6996185db85Sdougm break; 7006185db85Sdougm } 7016185db85Sdougm notfirst++; 7026185db85Sdougm } 7036185db85Sdougm } 7046185db85Sdougm if (notfirst) { 7056185db85Sdougm (void) printf("\n"); 7066185db85Sdougm ret = SA_SYNTAX_ERR; 7076185db85Sdougm } 7086185db85Sdougm return (ret); 7096185db85Sdougm } 7106185db85Sdougm 7116185db85Sdougm /* 7126185db85Sdougm * free_opt(optlist) 7136185db85Sdougm * Free the specified option list. 7146185db85Sdougm */ 7156185db85Sdougm static void 7166185db85Sdougm free_opt(struct options *optlist) 7176185db85Sdougm { 7186185db85Sdougm struct options *nextopt; 7196185db85Sdougm while (optlist != NULL) { 7206185db85Sdougm nextopt = optlist->next; 7216185db85Sdougm free(optlist); 7226185db85Sdougm optlist = nextopt; 7236185db85Sdougm } 7246185db85Sdougm } 7256185db85Sdougm 7266185db85Sdougm /* 7276185db85Sdougm * check property list for valid properties 7286185db85Sdougm * A null value is a remove which is always valid. 7296185db85Sdougm */ 7306185db85Sdougm static int 7316185db85Sdougm valid_options(struct options *optlist, char *proto, void *object, char *sec) 7326185db85Sdougm { 7336185db85Sdougm int ret = SA_OK; 7346185db85Sdougm struct options *cur; 7356185db85Sdougm sa_property_t prop; 7366185db85Sdougm sa_optionset_t parent = NULL; 7376185db85Sdougm 7386185db85Sdougm if (object != NULL) { 7396185db85Sdougm if (sec == NULL) 7406185db85Sdougm parent = sa_get_optionset(object, proto); 7416185db85Sdougm else 7426185db85Sdougm parent = sa_get_security(object, sec, proto); 7436185db85Sdougm } 7446185db85Sdougm 7456185db85Sdougm for (cur = optlist; cur != NULL; cur = cur->next) { 74625a68471Sdougm if (cur->optvalue == NULL) 74725a68471Sdougm continue; 7486185db85Sdougm prop = sa_create_property(cur->optname, cur->optvalue); 7496185db85Sdougm if (prop == NULL) 7506185db85Sdougm ret = SA_NO_MEMORY; 7516185db85Sdougm if (ret != SA_OK || 7526185db85Sdougm (ret = sa_valid_property(parent, proto, prop)) != SA_OK) { 75325a68471Sdougm (void) printf( 75425a68471Sdougm gettext("Could not add property %s: %s\n"), 75525a68471Sdougm cur->optname, sa_errorstr(ret)); 7566185db85Sdougm } 7576185db85Sdougm (void) sa_remove_property(prop); 7586185db85Sdougm } 7596185db85Sdougm return (ret); 7606185db85Sdougm } 7616185db85Sdougm 7626185db85Sdougm /* 7636185db85Sdougm * add_optionset(group, optlist, protocol, *err) 7646185db85Sdougm * Add the options in optlist to an optionset and then add the optionset 7656185db85Sdougm * to the group. 7666185db85Sdougm * 7676185db85Sdougm * The return value indicates if there was a "change" while errors are 7686185db85Sdougm * returned via the *err parameters. 7696185db85Sdougm */ 7706185db85Sdougm static int 7716185db85Sdougm add_optionset(sa_group_t group, struct options *optlist, char *proto, int *err) 7726185db85Sdougm { 7736185db85Sdougm sa_optionset_t optionset; 7746185db85Sdougm int ret = SA_OK; 775da6c28aaSamw int result = B_FALSE; 7766185db85Sdougm 7776185db85Sdougm optionset = sa_get_optionset(group, proto); 7786185db85Sdougm if (optionset == NULL) { 7796185db85Sdougm optionset = sa_create_optionset(group, proto); 780da6c28aaSamw if (optionset == NULL) 781da6c28aaSamw ret = SA_NO_MEMORY; 782da6c28aaSamw result = B_TRUE; /* adding a protocol is a change */ 7836185db85Sdougm } 78425a68471Sdougm if (optionset == NULL) { 78525a68471Sdougm ret = SA_NO_MEMORY; 78625a68471Sdougm goto out; 78725a68471Sdougm } 7886185db85Sdougm while (optlist != NULL) { 7896185db85Sdougm sa_property_t prop; 7906185db85Sdougm prop = sa_get_property(optionset, optlist->optname); 7916185db85Sdougm if (prop == NULL) { 7926185db85Sdougm /* 7936185db85Sdougm * add the property, but only if it is 7946185db85Sdougm * a non-NULL or non-zero length value 7956185db85Sdougm */ 7966185db85Sdougm if (optlist->optvalue != NULL) { 7976185db85Sdougm prop = sa_create_property(optlist->optname, 7986185db85Sdougm optlist->optvalue); 7996185db85Sdougm if (prop != NULL) { 80025a68471Sdougm ret = sa_valid_property(optionset, 80125a68471Sdougm proto, prop); 8026185db85Sdougm if (ret != SA_OK) { 8036185db85Sdougm (void) sa_remove_property(prop); 80425a68471Sdougm (void) printf(gettext("Could " 80525a68471Sdougm "not add property " 8066185db85Sdougm "%s: %s\n"), 8076185db85Sdougm optlist->optname, 8086185db85Sdougm sa_errorstr(ret)); 8096185db85Sdougm } 8106185db85Sdougm } 8116185db85Sdougm if (ret == SA_OK) { 8126185db85Sdougm ret = sa_add_property(optionset, prop); 8136185db85Sdougm if (ret != SA_OK) { 81425a68471Sdougm (void) printf(gettext( 81525a68471Sdougm "Could not add property " 8166185db85Sdougm "%s: %s\n"), 8176185db85Sdougm optlist->optname, 8186185db85Sdougm sa_errorstr(ret)); 8196185db85Sdougm } else { 8206185db85Sdougm /* there was a change */ 821da6c28aaSamw result = B_TRUE; 8226185db85Sdougm } 8236185db85Sdougm } 8246185db85Sdougm } 8256185db85Sdougm } else { 8266185db85Sdougm ret = sa_update_property(prop, optlist->optvalue); 8276185db85Sdougm /* should check to see if value changed */ 8286185db85Sdougm if (ret != SA_OK) { 8296185db85Sdougm (void) printf(gettext("Could not update " 83025a68471Sdougm "property %s: %s\n"), optlist->optname, 8316185db85Sdougm sa_errorstr(ret)); 8326185db85Sdougm } else { 833da6c28aaSamw result = B_TRUE; 8346185db85Sdougm } 8356185db85Sdougm } 8366185db85Sdougm optlist = optlist->next; 8376185db85Sdougm } 8386185db85Sdougm ret = sa_commit_properties(optionset, 0); 83925a68471Sdougm 84025a68471Sdougm out: 8416185db85Sdougm if (err != NULL) 8426185db85Sdougm *err = ret; 8436185db85Sdougm return (result); 8446185db85Sdougm } 8456185db85Sdougm 8466185db85Sdougm /* 847da6c28aaSamw * resource_compliant(group) 848da6c28aaSamw * 849da6c28aaSamw * Go through all the shares in the group. Assume compliant, but if 850da6c28aaSamw * any share doesn't have at least one resource name, it isn't 851da6c28aaSamw * compliant. 852da6c28aaSamw */ 853da6c28aaSamw static int 854da6c28aaSamw resource_compliant(sa_group_t group) 855da6c28aaSamw { 856da6c28aaSamw sa_share_t share; 857da6c28aaSamw 858da6c28aaSamw for (share = sa_get_share(group, NULL); share != NULL; 859da6c28aaSamw share = sa_get_next_share(share)) { 860da6c28aaSamw if (sa_get_share_resource(share, NULL) == NULL) { 861da6c28aaSamw return (B_FALSE); 862da6c28aaSamw } 863da6c28aaSamw } 864da6c28aaSamw return (B_TRUE); 865da6c28aaSamw } 866da6c28aaSamw 867da6c28aaSamw /* 868da6c28aaSamw * fix_path(path) 869da6c28aaSamw * 870da6c28aaSamw * change all illegal characters to something else. For now, all get 871da6c28aaSamw * converted to '_' and the leading '/' is stripped off. This is used 872da6c28aaSamw * to construct an resource name (SMB share name) that is valid. 873da6c28aaSamw * Caller must pass a valid path. 874da6c28aaSamw */ 875da6c28aaSamw static void 876da6c28aaSamw fix_path(char *path) 877da6c28aaSamw { 878da6c28aaSamw char *cp; 879da6c28aaSamw size_t len; 880da6c28aaSamw 881da6c28aaSamw assert(path != NULL); 882da6c28aaSamw 883da6c28aaSamw /* make sure we are appropriate length */ 884da6c28aaSamw cp = path + 1; /* skip leading slash */ 885da6c28aaSamw while (cp != NULL && strlen(cp) > SA_MAX_RESOURCE_NAME) { 886da6c28aaSamw cp = strchr(cp, '/'); 887da6c28aaSamw if (cp != NULL) 888da6c28aaSamw cp++; 889da6c28aaSamw } 890da6c28aaSamw /* two cases - cp == NULL and cp is substring of path */ 891da6c28aaSamw if (cp == NULL) { 892da6c28aaSamw /* just take last SA_MAX_RESOURCE_NAME chars */ 893da6c28aaSamw len = 1 + strlen(path) - SA_MAX_RESOURCE_NAME; 894da6c28aaSamw (void) memmove(path, path + len, SA_MAX_RESOURCE_NAME); 895da6c28aaSamw path[SA_MAX_RESOURCE_NAME] = '\0'; 896da6c28aaSamw } else { 897da6c28aaSamw len = strlen(cp) + 1; 898da6c28aaSamw (void) memmove(path, cp, len); 899da6c28aaSamw } 900da6c28aaSamw 901da6c28aaSamw /* 902da6c28aaSamw * Don't want any of the characters that are not allowed 903da6c28aaSamw * in and SMB share name. Replace them with '_'. 904da6c28aaSamw */ 905da6c28aaSamw while (*path) { 906da6c28aaSamw switch (*path) { 907da6c28aaSamw case '/': 908da6c28aaSamw case '"': 909da6c28aaSamw case '\\': 910da6c28aaSamw case '[': 911da6c28aaSamw case ']': 912da6c28aaSamw case ':': 913da6c28aaSamw case '|': 914da6c28aaSamw case '<': 915da6c28aaSamw case '>': 916da6c28aaSamw case '+': 917da6c28aaSamw case ';': 918da6c28aaSamw case ',': 919da6c28aaSamw case '?': 920da6c28aaSamw case '*': 921da6c28aaSamw case '=': 922da6c28aaSamw case '\t': 923da6c28aaSamw *path = '_'; 924da6c28aaSamw break; 925da6c28aaSamw } 926da6c28aaSamw path++; 927da6c28aaSamw } 928da6c28aaSamw } 929da6c28aaSamw 930da6c28aaSamw /* 931da6c28aaSamw * name_adjust(path, count) 932da6c28aaSamw * 933da6c28aaSamw * Add a ~<count> in place of last few characters. The total number of 934da6c28aaSamw * characters is dependent on count. 935da6c28aaSamw */ 936da6c28aaSamw #define MAX_MANGLE_NUMBER 10000 937da6c28aaSamw 938da6c28aaSamw static int 939da6c28aaSamw name_adjust(char *path, int count) 940da6c28aaSamw { 941da6c28aaSamw size_t len; 942da6c28aaSamw 943da6c28aaSamw len = strlen(path) - 2; 944da6c28aaSamw if (count > 10) 945da6c28aaSamw len--; 946da6c28aaSamw if (count > 100) 947da6c28aaSamw len--; 948da6c28aaSamw if (count > 1000) 949da6c28aaSamw len--; 950da6c28aaSamw if (len > 0) 951da6c28aaSamw (void) sprintf(path + len, "~%d", count); 952da6c28aaSamw else 953da6c28aaSamw return (SA_BAD_VALUE); 954da6c28aaSamw 955da6c28aaSamw return (SA_OK); 956da6c28aaSamw } 957da6c28aaSamw 958da6c28aaSamw /* 959da6c28aaSamw * make_resources(group) 960da6c28aaSamw * 961da6c28aaSamw * Go through all the shares in the group and make them have resource 962da6c28aaSamw * names. 963da6c28aaSamw */ 964da6c28aaSamw static void 965da6c28aaSamw make_resources(sa_group_t group) 966da6c28aaSamw { 967da6c28aaSamw sa_share_t share; 968da6c28aaSamw int count; 969da6c28aaSamw int err = SA_OK; 970da6c28aaSamw 971da6c28aaSamw for (share = sa_get_share(group, NULL); share != NULL; 972da6c28aaSamw share = sa_get_next_share(share)) { 973da6c28aaSamw /* Skip those with resources */ 974da6c28aaSamw if (sa_get_share_resource(share, NULL) == NULL) { 975da6c28aaSamw char *path; 976da6c28aaSamw path = sa_get_share_attr(share, "path"); 977da6c28aaSamw if (path == NULL) 978da6c28aaSamw continue; 979da6c28aaSamw fix_path(path); 980da6c28aaSamw count = 0; /* reset for next resource */ 981da6c28aaSamw while (sa_add_resource(share, path, 982da6c28aaSamw SA_SHARE_PERMANENT, &err) == NULL && 983da6c28aaSamw err == SA_DUPLICATE_NAME) { 984da6c28aaSamw int ret; 985da6c28aaSamw ret = name_adjust(path, count); 986da6c28aaSamw count++; 987da6c28aaSamw if (ret != SA_OK || 988da6c28aaSamw count >= MAX_MANGLE_NUMBER) { 989da6c28aaSamw (void) printf(gettext( 990da6c28aaSamw "Cannot create resource name for" 991da6c28aaSamw " path: %s\n"), path); 992da6c28aaSamw break; 993da6c28aaSamw } 994da6c28aaSamw } 995da6c28aaSamw sa_free_attr_string(path); 996da6c28aaSamw } 997da6c28aaSamw } 998da6c28aaSamw } 999da6c28aaSamw 1000da6c28aaSamw /* 10016185db85Sdougm * sa_create(flags, argc, argv) 10026185db85Sdougm * create a new group 10036185db85Sdougm * this may or may not have a protocol associated with it. 10046185db85Sdougm * No protocol means "all" protocols in this case. 10056185db85Sdougm */ 10066185db85Sdougm static int 1007549ec3ffSdougm sa_create(sa_handle_t handle, int flags, int argc, char *argv[]) 10086185db85Sdougm { 10096185db85Sdougm char *groupname; 10106185db85Sdougm 10116185db85Sdougm sa_group_t group; 1012da6c28aaSamw int force = 0; 10136185db85Sdougm int verbose = 0; 10146185db85Sdougm int dryrun = 0; 10156185db85Sdougm int c; 10166185db85Sdougm char *protocol = NULL; 10176185db85Sdougm int ret = SA_OK; 10186185db85Sdougm struct options *optlist = NULL; 10196185db85Sdougm int err = 0; 10206185db85Sdougm int auth; 10216185db85Sdougm 1022da6c28aaSamw while ((c = getopt(argc, argv, "?fhvnP:p:")) != EOF) { 10236185db85Sdougm switch (c) { 1024da6c28aaSamw case 'f': 1025da6c28aaSamw force++; 1026da6c28aaSamw break; 10276185db85Sdougm case 'v': 10286185db85Sdougm verbose++; 10296185db85Sdougm break; 10306185db85Sdougm case 'n': 10316185db85Sdougm dryrun++; 10326185db85Sdougm break; 10336185db85Sdougm case 'P': 1034da6c28aaSamw if (protocol != NULL) { 1035da6c28aaSamw (void) printf(gettext("Specifying " 1036da6c28aaSamw "multiple protocols " 1037da6c28aaSamw "not supported: %s\n"), protocol); 1038da6c28aaSamw return (SA_SYNTAX_ERR); 1039da6c28aaSamw } 10406185db85Sdougm protocol = optarg; 104125a68471Sdougm if (sa_valid_protocol(protocol)) 104225a68471Sdougm break; 104325a68471Sdougm (void) printf(gettext( 104425a68471Sdougm "Invalid protocol specified: %s\n"), protocol); 10456185db85Sdougm return (SA_INVALID_PROTOCOL); 10466185db85Sdougm break; 10476185db85Sdougm case 'p': 10486185db85Sdougm ret = add_opt(&optlist, optarg, 0); 10496185db85Sdougm switch (ret) { 10506185db85Sdougm case OPT_ADD_SYNTAX: 105125a68471Sdougm (void) printf(gettext( 105225a68471Sdougm "Property syntax error for property: %s\n"), 10536185db85Sdougm optarg); 10546185db85Sdougm return (SA_SYNTAX_ERR); 10556185db85Sdougm case OPT_ADD_SECURITY: 105625a68471Sdougm (void) printf(gettext( 105725a68471Sdougm "Security properties need " 10586185db85Sdougm "to be set with set-security: %s\n"), 10596185db85Sdougm optarg); 10606185db85Sdougm return (SA_SYNTAX_ERR); 10616185db85Sdougm default: 10626185db85Sdougm break; 10636185db85Sdougm } 10646185db85Sdougm break; 10656185db85Sdougm default: 10666185db85Sdougm case 'h': 10676185db85Sdougm case '?': 10686185db85Sdougm (void) printf(gettext("usage: %s\n"), 10696185db85Sdougm sa_get_usage(USAGE_CREATE)); 10706185db85Sdougm return (0); 10716185db85Sdougm } 10726185db85Sdougm } 10736185db85Sdougm 10746185db85Sdougm if (optind >= argc) { 107525a68471Sdougm (void) printf(gettext("usage: %s\n"), 107625a68471Sdougm sa_get_usage(USAGE_CREATE)); 10776185db85Sdougm (void) printf(gettext("\tgroup must be specified.\n")); 10786185db85Sdougm return (SA_BAD_PATH); 10796185db85Sdougm } 10806185db85Sdougm 10816185db85Sdougm if ((optind + 1) < argc) { 108225a68471Sdougm (void) printf(gettext("usage: %s\n"), 108325a68471Sdougm sa_get_usage(USAGE_CREATE)); 10846185db85Sdougm (void) printf(gettext("\textraneous group(s) at end\n")); 10856185db85Sdougm return (SA_SYNTAX_ERR); 10866185db85Sdougm } 10876185db85Sdougm 10886185db85Sdougm if (protocol == NULL && optlist != NULL) { 10896185db85Sdougm /* lookup default protocol */ 109025a68471Sdougm (void) printf(gettext("usage: %s\n"), 109125a68471Sdougm sa_get_usage(USAGE_CREATE)); 10926185db85Sdougm (void) printf(gettext("\tprotocol must be specified " 10936185db85Sdougm "with properties\n")); 10946185db85Sdougm return (SA_INVALID_PROTOCOL); 10956185db85Sdougm } 10966185db85Sdougm 10976185db85Sdougm if (optlist != NULL) 10986185db85Sdougm ret = chk_opt(optlist, 0, protocol); 10996185db85Sdougm if (ret == OPT_ADD_SECURITY) { 11006185db85Sdougm (void) printf(gettext("Security properties not " 11016185db85Sdougm "supported with create\n")); 11026185db85Sdougm return (SA_SYNTAX_ERR); 11036185db85Sdougm } 11046185db85Sdougm 11056185db85Sdougm /* 110625a68471Sdougm * If a group already exists, we can only add a new protocol 11076185db85Sdougm * to it and not create a new one or add the same protocol 11086185db85Sdougm * again. 11096185db85Sdougm */ 11106185db85Sdougm 11116185db85Sdougm groupname = argv[optind]; 11126185db85Sdougm 11136185db85Sdougm auth = check_authorizations(groupname, flags); 11146185db85Sdougm 1115549ec3ffSdougm group = sa_get_group(handle, groupname); 11166185db85Sdougm if (group != NULL) { 11176185db85Sdougm /* group exists so must be a protocol add */ 11186185db85Sdougm if (protocol != NULL) { 11196185db85Sdougm if (has_protocol(group, protocol)) { 112025a68471Sdougm (void) printf(gettext( 112125a68471Sdougm "Group \"%s\" already exists" 112225a68471Sdougm " with protocol %s\n"), groupname, 112325a68471Sdougm protocol); 11246185db85Sdougm ret = SA_DUPLICATE_NAME; 11256185db85Sdougm } 11266185db85Sdougm } else { 11276185db85Sdougm /* must add new protocol */ 112825a68471Sdougm (void) printf(gettext( 112925a68471Sdougm "Group already exists and no protocol " 11306185db85Sdougm "specified.\n")); 11316185db85Sdougm ret = SA_DUPLICATE_NAME; 11326185db85Sdougm } 11336185db85Sdougm } else { 11346185db85Sdougm /* 11356185db85Sdougm * is it a valid name? Must comply with SMF instance 11366185db85Sdougm * name restrictions. 11376185db85Sdougm */ 11386185db85Sdougm if (!sa_valid_group_name(groupname)) { 11396185db85Sdougm ret = SA_INVALID_NAME; 114025a68471Sdougm (void) printf(gettext("Invalid group name: %s\n"), 114125a68471Sdougm groupname); 11426185db85Sdougm } 11436185db85Sdougm } 11446185db85Sdougm if (ret == SA_OK) { 11456185db85Sdougm /* check protocol vs optlist */ 11466185db85Sdougm if (optlist != NULL) { 11476185db85Sdougm /* check options, if any, for validity */ 11486185db85Sdougm ret = valid_options(optlist, protocol, group, NULL); 11496185db85Sdougm } 11506185db85Sdougm } 11516185db85Sdougm if (ret == SA_OK && !dryrun) { 11526185db85Sdougm if (group == NULL) { 115325a68471Sdougm group = sa_create_group(handle, (char *)groupname, 115425a68471Sdougm &err); 11556185db85Sdougm } 11566185db85Sdougm if (group != NULL) { 11576185db85Sdougm sa_optionset_t optionset; 1158da6c28aaSamw /* 1159da6c28aaSamw * First check to see if the new protocol is one that 1160da6c28aaSamw * requires resource names and make sure we are 1161da6c28aaSamw * compliant before proceeding. 1162da6c28aaSamw */ 1163da6c28aaSamw if (protocol != NULL) { 1164da6c28aaSamw uint64_t features; 1165da6c28aaSamw 1166da6c28aaSamw features = sa_proto_get_featureset(protocol); 1167da6c28aaSamw if ((features & SA_FEATURE_RESOURCE) && 1168da6c28aaSamw !resource_compliant(group)) { 1169da6c28aaSamw if (force) { 1170da6c28aaSamw make_resources(group); 1171da6c28aaSamw } else { 1172da6c28aaSamw ret = SA_RESOURCE_REQUIRED; 1173da6c28aaSamw (void) printf( 1174da6c28aaSamw gettext("Protocol " 1175da6c28aaSamw "requires resource " 1176da6c28aaSamw "names to be " 1177da6c28aaSamw "set: %s\n"), 1178da6c28aaSamw protocol); 1179da6c28aaSamw goto err; 1180da6c28aaSamw } 1181da6c28aaSamw } 1182da6c28aaSamw } 11836185db85Sdougm if (optlist != NULL) { 118425a68471Sdougm (void) add_optionset(group, optlist, protocol, 118525a68471Sdougm &ret); 11866185db85Sdougm } else if (protocol != NULL) { 118725a68471Sdougm optionset = sa_create_optionset(group, 118825a68471Sdougm protocol); 11896185db85Sdougm if (optionset == NULL) 11906185db85Sdougm ret = SA_NO_MEMORY; 11916185db85Sdougm } else if (protocol == NULL) { 11926185db85Sdougm char **protolist; 11936185db85Sdougm int numprotos, i; 11946185db85Sdougm numprotos = sa_get_protocols(&protolist); 11956185db85Sdougm for (i = 0; i < numprotos; i++) { 119625a68471Sdougm optionset = sa_create_optionset(group, 119725a68471Sdougm protolist[i]); 11986185db85Sdougm } 11996185db85Sdougm if (protolist != NULL) 12006185db85Sdougm free(protolist); 12016185db85Sdougm } 12026185db85Sdougm /* 120325a68471Sdougm * We have a group and legal additions 12046185db85Sdougm */ 12056185db85Sdougm if (ret == SA_OK) { 12066185db85Sdougm /* 120725a68471Sdougm * Commit to configuration for protocols that 12086185db85Sdougm * need to do block updates. For NFS, this 12096185db85Sdougm * doesn't do anything but it will be run for 12106185db85Sdougm * all protocols that implement the 12116185db85Sdougm * appropriate plugin. 12126185db85Sdougm */ 1213549ec3ffSdougm ret = sa_update_config(handle); 12146185db85Sdougm } else { 12156185db85Sdougm if (group != NULL) 12166185db85Sdougm (void) sa_remove_group(group); 12176185db85Sdougm } 12186185db85Sdougm } else { 12196185db85Sdougm ret = err; 12206185db85Sdougm (void) printf(gettext("Could not create group: %s\n"), 12216185db85Sdougm sa_errorstr(ret)); 12226185db85Sdougm } 12236185db85Sdougm } 12246185db85Sdougm if (dryrun && ret == SA_OK && !auth && verbose) { 12256185db85Sdougm (void) printf(gettext("Command would fail: %s\n"), 12266185db85Sdougm sa_errorstr(SA_NO_PERMISSION)); 12276185db85Sdougm ret = SA_NO_PERMISSION; 12286185db85Sdougm } 1229da6c28aaSamw err: 12306185db85Sdougm free_opt(optlist); 12316185db85Sdougm return (ret); 12326185db85Sdougm } 12336185db85Sdougm 12346185db85Sdougm /* 12356185db85Sdougm * group_status(group) 12366185db85Sdougm * 12376185db85Sdougm * return the current status (enabled/disabled) of the group. 12386185db85Sdougm */ 12396185db85Sdougm 12406185db85Sdougm static char * 12416185db85Sdougm group_status(sa_group_t group) 12426185db85Sdougm { 12436185db85Sdougm char *state; 12446185db85Sdougm int enabled = 0; 12456185db85Sdougm 12466185db85Sdougm state = sa_get_group_attr(group, "state"); 12476185db85Sdougm if (state != NULL) { 12486185db85Sdougm if (strcmp(state, "enabled") == 0) { 12496185db85Sdougm enabled = 1; 12506185db85Sdougm } 12516185db85Sdougm sa_free_attr_string(state); 12526185db85Sdougm } 12534db300d5Sdougm return (enabled ? "enabled" : "disabled"); 12546185db85Sdougm } 12556185db85Sdougm 12566185db85Sdougm /* 12576185db85Sdougm * sa_delete(flags, argc, argv) 12586185db85Sdougm * 12596185db85Sdougm * Delete a group. 12606185db85Sdougm */ 12616185db85Sdougm 12626185db85Sdougm static int 1263549ec3ffSdougm sa_delete(sa_handle_t handle, int flags, int argc, char *argv[]) 12646185db85Sdougm { 12656185db85Sdougm char *groupname; 12666185db85Sdougm sa_group_t group; 12676185db85Sdougm sa_share_t share; 12686185db85Sdougm int verbose = 0; 12696185db85Sdougm int dryrun = 0; 12706185db85Sdougm int force = 0; 12716185db85Sdougm int c; 12726185db85Sdougm char *protocol = NULL; 12736185db85Sdougm char *sectype = NULL; 12746185db85Sdougm int ret = SA_OK; 12756185db85Sdougm int auth; 12766185db85Sdougm 12776185db85Sdougm while ((c = getopt(argc, argv, "?hvnP:fS:")) != EOF) { 12786185db85Sdougm switch (c) { 12796185db85Sdougm case 'v': 12806185db85Sdougm verbose++; 12816185db85Sdougm break; 12826185db85Sdougm case 'n': 12836185db85Sdougm dryrun++; 12846185db85Sdougm break; 12856185db85Sdougm case 'P': 1286da6c28aaSamw if (protocol != NULL) { 1287da6c28aaSamw (void) printf(gettext("Specifying " 1288da6c28aaSamw "multiple protocols " 1289da6c28aaSamw "not supported: %s\n"), protocol); 1290da6c28aaSamw return (SA_SYNTAX_ERR); 1291da6c28aaSamw } 12926185db85Sdougm protocol = optarg; 12936185db85Sdougm if (!sa_valid_protocol(protocol)) { 129425a68471Sdougm (void) printf(gettext("Invalid protocol " 129525a68471Sdougm "specified: %s\n"), protocol); 12966185db85Sdougm return (SA_INVALID_PROTOCOL); 12976185db85Sdougm } 12986185db85Sdougm break; 12996185db85Sdougm case 'S': 1300da6c28aaSamw if (sectype != NULL) { 1301da6c28aaSamw (void) printf(gettext("Specifying " 1302da6c28aaSamw "multiple property " 1303da6c28aaSamw "spaces not supported: %s\n"), sectype); 1304da6c28aaSamw return (SA_SYNTAX_ERR); 1305da6c28aaSamw } 13066185db85Sdougm sectype = optarg; 13076185db85Sdougm break; 13086185db85Sdougm case 'f': 13096185db85Sdougm force++; 13106185db85Sdougm break; 13116185db85Sdougm default: 13126185db85Sdougm case 'h': 13136185db85Sdougm case '?': 13146185db85Sdougm (void) printf(gettext("usage: %s\n"), 13156185db85Sdougm sa_get_usage(USAGE_DELETE)); 13166185db85Sdougm return (0); 13176185db85Sdougm } 13186185db85Sdougm } 13196185db85Sdougm 13206185db85Sdougm if (optind >= argc) { 132125a68471Sdougm (void) printf(gettext("usage: %s\n"), 132225a68471Sdougm sa_get_usage(USAGE_DELETE)); 13236185db85Sdougm (void) printf(gettext("\tgroup must be specified.\n")); 13246185db85Sdougm return (SA_SYNTAX_ERR); 13256185db85Sdougm } 13266185db85Sdougm 13276185db85Sdougm if ((optind + 1) < argc) { 132825a68471Sdougm (void) printf(gettext("usage: %s\n"), 132925a68471Sdougm sa_get_usage(USAGE_DELETE)); 13306185db85Sdougm (void) printf(gettext("\textraneous group(s) at end\n")); 13316185db85Sdougm return (SA_SYNTAX_ERR); 13326185db85Sdougm } 13336185db85Sdougm 13346185db85Sdougm if (sectype != NULL && protocol == NULL) { 133525a68471Sdougm (void) printf(gettext("usage: %s\n"), 133625a68471Sdougm sa_get_usage(USAGE_DELETE)); 13376185db85Sdougm (void) printf(gettext("\tsecurity requires protocol to be " 13386185db85Sdougm "specified.\n")); 13396185db85Sdougm return (SA_SYNTAX_ERR); 13406185db85Sdougm } 13416185db85Sdougm 13426185db85Sdougm /* 13436185db85Sdougm * Determine if the group already exists since it must in 13446185db85Sdougm * order to be removed. 13456185db85Sdougm * 13466185db85Sdougm * We can delete when: 13476185db85Sdougm * 13486185db85Sdougm * - group is empty 13496185db85Sdougm * - force flag is set 13506185db85Sdougm * - if protocol specified, only delete the protocol 13516185db85Sdougm */ 13526185db85Sdougm 13536185db85Sdougm groupname = argv[optind]; 1354549ec3ffSdougm group = sa_get_group(handle, groupname); 13556185db85Sdougm if (group == NULL) { 13566185db85Sdougm ret = SA_NO_SUCH_GROUP; 135725a68471Sdougm goto done; 135825a68471Sdougm } 13596185db85Sdougm auth = check_authorizations(groupname, flags); 13606185db85Sdougm if (protocol == NULL) { 13616185db85Sdougm share = sa_get_share(group, NULL); 13626185db85Sdougm if (share != NULL) 13636185db85Sdougm ret = SA_BUSY; 13646185db85Sdougm if (share == NULL || (share != NULL && force == 1)) { 13656185db85Sdougm ret = SA_OK; 13666185db85Sdougm if (!dryrun) { 13676185db85Sdougm while (share != NULL) { 13686185db85Sdougm sa_share_t next_share; 13696185db85Sdougm next_share = sa_get_next_share(share); 13706185db85Sdougm /* 137125a68471Sdougm * need to do the disable of 137225a68471Sdougm * each share, but don't 137325a68471Sdougm * actually do anything on a 137425a68471Sdougm * dryrun. 13756185db85Sdougm */ 13766185db85Sdougm ret = sa_disable_share(share, NULL); 13776185db85Sdougm ret = sa_remove_share(share); 13786185db85Sdougm share = next_share; 13796185db85Sdougm } 13806185db85Sdougm ret = sa_remove_group(group); 13816185db85Sdougm } 13826185db85Sdougm } 138325a68471Sdougm /* Commit to configuration if not a dryrun */ 13846185db85Sdougm if (!dryrun && ret == SA_OK) { 1385549ec3ffSdougm ret = sa_update_config(handle); 13866185db85Sdougm } 13876185db85Sdougm } else { 13886185db85Sdougm /* a protocol delete */ 13896185db85Sdougm sa_optionset_t optionset; 13906185db85Sdougm sa_security_t security; 13916185db85Sdougm if (sectype != NULL) { 13926185db85Sdougm /* only delete specified security */ 13936185db85Sdougm security = sa_get_security(group, sectype, protocol); 139425a68471Sdougm if (security != NULL && !dryrun) 13956185db85Sdougm ret = sa_destroy_security(security); 139625a68471Sdougm else 13976185db85Sdougm ret = SA_INVALID_PROTOCOL; 13986185db85Sdougm } else { 13996185db85Sdougm optionset = sa_get_optionset(group, protocol); 14006185db85Sdougm if (optionset != NULL && !dryrun) { 140125a68471Sdougm /* 140225a68471Sdougm * have an optionset with 140325a68471Sdougm * protocol to delete 140425a68471Sdougm */ 14056185db85Sdougm ret = sa_destroy_optionset(optionset); 14066185db85Sdougm /* 140725a68471Sdougm * Now find all security sets 140825a68471Sdougm * for the protocol and remove 140925a68471Sdougm * them. Don't remove other 14106185db85Sdougm * protocols. 14116185db85Sdougm */ 141225a68471Sdougm for (security = 141325a68471Sdougm sa_get_security(group, NULL, NULL); 14146185db85Sdougm ret == SA_OK && security != NULL; 14156185db85Sdougm security = sa_get_next_security(security)) { 14166185db85Sdougm char *secprot; 141725a68471Sdougm secprot = sa_get_security_attr(security, 141825a68471Sdougm "type"); 14196185db85Sdougm if (secprot != NULL && 14206185db85Sdougm strcmp(secprot, protocol) == 0) 142125a68471Sdougm ret = sa_destroy_security( 142225a68471Sdougm security); 14236185db85Sdougm if (secprot != NULL) 14246185db85Sdougm sa_free_attr_string(secprot); 14256185db85Sdougm } 14266185db85Sdougm } else { 14276185db85Sdougm if (!dryrun) 14286185db85Sdougm ret = SA_INVALID_PROTOCOL; 14296185db85Sdougm } 14306185db85Sdougm } 1431da6c28aaSamw /* 1432da6c28aaSamw * With the protocol items removed, make sure that all 1433da6c28aaSamw * the shares are updated in the legacy files, if 1434da6c28aaSamw * necessary. 1435da6c28aaSamw */ 1436da6c28aaSamw for (share = sa_get_share(group, NULL); 1437da6c28aaSamw share != NULL; 1438da6c28aaSamw share = sa_get_next_share(share)) { 1439da6c28aaSamw (void) sa_delete_legacy(share, protocol); 1440da6c28aaSamw } 14416185db85Sdougm } 144225a68471Sdougm 144325a68471Sdougm done: 14446185db85Sdougm if (ret != SA_OK) { 14456185db85Sdougm (void) printf(gettext("Could not delete group: %s\n"), 14466185db85Sdougm sa_errorstr(ret)); 14476185db85Sdougm } else if (dryrun && !auth && verbose) { 14486185db85Sdougm (void) printf(gettext("Command would fail: %s\n"), 14496185db85Sdougm sa_errorstr(SA_NO_PERMISSION)); 14506185db85Sdougm } 14516185db85Sdougm return (ret); 14526185db85Sdougm } 14536185db85Sdougm 14546185db85Sdougm /* 14556185db85Sdougm * strndupr(*buff, str, buffsize) 14566185db85Sdougm * 14576185db85Sdougm * used with small strings to duplicate and possibly increase the 14586185db85Sdougm * buffer size of a string. 14596185db85Sdougm */ 14606185db85Sdougm static char * 14616185db85Sdougm strndupr(char *buff, char *str, int *buffsize) 14626185db85Sdougm { 14636185db85Sdougm int limit; 14646185db85Sdougm char *orig_buff = buff; 14656185db85Sdougm 14666185db85Sdougm if (buff == NULL) { 14676185db85Sdougm buff = (char *)malloc(64); 14686185db85Sdougm if (buff == NULL) 14696185db85Sdougm return (NULL); 14706185db85Sdougm *buffsize = 64; 14716185db85Sdougm buff[0] = '\0'; 14726185db85Sdougm } 14736185db85Sdougm limit = strlen(buff) + strlen(str) + 1; 14746185db85Sdougm if (limit > *buffsize) { 14756185db85Sdougm limit = *buffsize = *buffsize + ((limit / 64) + 64); 14766185db85Sdougm buff = realloc(buff, limit); 14776185db85Sdougm } 14786185db85Sdougm if (buff != NULL) { 14796185db85Sdougm (void) strcat(buff, str); 14806185db85Sdougm } else { 14816185db85Sdougm /* if it fails, fail it hard */ 14826185db85Sdougm if (orig_buff != NULL) 14836185db85Sdougm free(orig_buff); 14846185db85Sdougm } 14856185db85Sdougm return (buff); 14866185db85Sdougm } 14876185db85Sdougm 14886185db85Sdougm /* 14896185db85Sdougm * group_proto(group) 14906185db85Sdougm * 14916185db85Sdougm * return a string of all the protocols (space separated) associated 14926185db85Sdougm * with this group. 14936185db85Sdougm */ 14946185db85Sdougm 14956185db85Sdougm static char * 14966185db85Sdougm group_proto(sa_group_t group) 14976185db85Sdougm { 14986185db85Sdougm sa_optionset_t optionset; 14996185db85Sdougm char *proto; 15006185db85Sdougm char *buff = NULL; 15016185db85Sdougm int buffsize = 0; 15026185db85Sdougm int addspace = 0; 15036185db85Sdougm /* 15046185db85Sdougm * get the protocol list by finding the optionsets on this 15056185db85Sdougm * group and extracting the type value. The initial call to 15066185db85Sdougm * strndupr() initailizes buff. 15076185db85Sdougm */ 15086185db85Sdougm buff = strndupr(buff, "", &buffsize); 15096185db85Sdougm if (buff != NULL) { 15106185db85Sdougm for (optionset = sa_get_optionset(group, NULL); 15116185db85Sdougm optionset != NULL && buff != NULL; 15126185db85Sdougm optionset = sa_get_next_optionset(optionset)) { 15136185db85Sdougm /* 15146185db85Sdougm * extract out the protocol type from this optionset 15156185db85Sdougm * and append it to the buffer "buff". strndupr() will 15166185db85Sdougm * reallocate space as necessay. 15176185db85Sdougm */ 15186185db85Sdougm proto = sa_get_optionset_attr(optionset, "type"); 15196185db85Sdougm if (proto != NULL) { 15206185db85Sdougm if (addspace++) 15216185db85Sdougm buff = strndupr(buff, " ", &buffsize); 15226185db85Sdougm buff = strndupr(buff, proto, &buffsize); 15236185db85Sdougm sa_free_attr_string(proto); 15246185db85Sdougm } 15256185db85Sdougm } 15266185db85Sdougm } 15276185db85Sdougm return (buff); 15286185db85Sdougm } 15296185db85Sdougm 15306185db85Sdougm /* 15316185db85Sdougm * sa_list(flags, argc, argv) 15326185db85Sdougm * 15336185db85Sdougm * implements the "list" subcommand to list groups and optionally 15346185db85Sdougm * their state and protocols. 15356185db85Sdougm */ 15366185db85Sdougm 15376185db85Sdougm static int 1538549ec3ffSdougm sa_list(sa_handle_t handle, int flags, int argc, char *argv[]) 15396185db85Sdougm { 15406185db85Sdougm sa_group_t group; 15416185db85Sdougm int verbose = 0; 15426185db85Sdougm int c; 15436185db85Sdougm char *protocol = NULL; 1544da6c28aaSamw #ifdef lint 1545da6c28aaSamw flags = flags; 1546da6c28aaSamw #endif 15476185db85Sdougm 15486185db85Sdougm while ((c = getopt(argc, argv, "?hvP:")) != EOF) { 15496185db85Sdougm switch (c) { 15506185db85Sdougm case 'v': 15516185db85Sdougm verbose++; 15526185db85Sdougm break; 15536185db85Sdougm case 'P': 1554da6c28aaSamw if (protocol != NULL) { 1555da6c28aaSamw (void) printf(gettext( 1556da6c28aaSamw "Specifying multiple protocols " 1557da6c28aaSamw "not supported: %s\n"), 1558da6c28aaSamw protocol); 1559da6c28aaSamw return (SA_SYNTAX_ERR); 1560da6c28aaSamw } 15616185db85Sdougm protocol = optarg; 15626185db85Sdougm if (!sa_valid_protocol(protocol)) { 156325a68471Sdougm (void) printf(gettext( 156425a68471Sdougm "Invalid protocol specified: %s\n"), 15656185db85Sdougm protocol); 15666185db85Sdougm return (SA_INVALID_PROTOCOL); 15676185db85Sdougm } 15686185db85Sdougm break; 15696185db85Sdougm default: 15706185db85Sdougm case 'h': 15716185db85Sdougm case '?': 157225a68471Sdougm (void) printf(gettext("usage: %s\n"), 157325a68471Sdougm sa_get_usage(USAGE_LIST)); 15746185db85Sdougm return (0); 15756185db85Sdougm } 15766185db85Sdougm } 15776185db85Sdougm 157825a68471Sdougm for (group = sa_get_group(handle, NULL); 157925a68471Sdougm group != NULL; 15806185db85Sdougm group = sa_get_next_group(group)) { 15816185db85Sdougm char *name; 15826185db85Sdougm char *proto; 15836185db85Sdougm if (protocol == NULL || has_protocol(group, protocol)) { 15846185db85Sdougm name = sa_get_group_attr(group, "name"); 15856185db85Sdougm if (name != NULL && (verbose > 1 || name[0] != '#')) { 15866185db85Sdougm (void) printf("%s", (char *)name); 15876185db85Sdougm if (verbose) { 15886185db85Sdougm /* 158925a68471Sdougm * Need the list of protocols 159025a68471Sdougm * and current status once 159125a68471Sdougm * available. We do want to 159225a68471Sdougm * translate the 159325a68471Sdougm * enabled/disabled text here. 15946185db85Sdougm */ 15954db300d5Sdougm (void) printf("\t%s", isenabled(group) ? 15964db300d5Sdougm gettext("enabled") : 15974db300d5Sdougm gettext("disabled")); 15986185db85Sdougm proto = group_proto(group); 15996185db85Sdougm if (proto != NULL) { 160025a68471Sdougm (void) printf("\t%s", 160125a68471Sdougm (char *)proto); 16026185db85Sdougm free(proto); 16036185db85Sdougm } 16046185db85Sdougm } 16056185db85Sdougm (void) printf("\n"); 16066185db85Sdougm } 16076185db85Sdougm if (name != NULL) 16086185db85Sdougm sa_free_attr_string(name); 16096185db85Sdougm } 16106185db85Sdougm } 16116185db85Sdougm return (0); 16126185db85Sdougm } 16136185db85Sdougm 16146185db85Sdougm /* 16156185db85Sdougm * out_properties(optionset, proto, sec) 16166185db85Sdougm * 16176185db85Sdougm * Format the properties and encode the protocol and optional named 16186185db85Sdougm * optionset into the string. 16196185db85Sdougm * 16206185db85Sdougm * format is protocol[:name]=(property-list) 16216185db85Sdougm */ 16226185db85Sdougm 16236185db85Sdougm static void 16246185db85Sdougm out_properties(sa_optionset_t optionset, char *proto, char *sec) 16256185db85Sdougm { 16266185db85Sdougm char *type; 16276185db85Sdougm char *value; 16286185db85Sdougm int spacer; 16296185db85Sdougm sa_property_t prop; 16306185db85Sdougm 163125a68471Sdougm if (sec == NULL) 16326185db85Sdougm (void) printf(" %s=(", proto ? proto : gettext("all")); 163325a68471Sdougm else 16346185db85Sdougm (void) printf(" %s:%s=(", proto ? proto : gettext("all"), sec); 16356185db85Sdougm 16366185db85Sdougm for (spacer = 0, prop = sa_get_property(optionset, NULL); 163725a68471Sdougm prop != NULL; 163825a68471Sdougm prop = sa_get_next_property(prop)) { 16396185db85Sdougm 16406185db85Sdougm /* 16416185db85Sdougm * extract the property name/value and output with 16426185db85Sdougm * appropriate spacing. I.e. no prefixed space the 16436185db85Sdougm * first time through but a space on subsequent 16446185db85Sdougm * properties. 16456185db85Sdougm */ 16466185db85Sdougm type = sa_get_property_attr(prop, "type"); 16476185db85Sdougm value = sa_get_property_attr(prop, "value"); 16486185db85Sdougm if (type != NULL) { 16496185db85Sdougm (void) printf("%s%s=", spacer ? " " : "", type); 16506185db85Sdougm spacer = 1; 16516185db85Sdougm if (value != NULL) 16526185db85Sdougm (void) printf("\"%s\"", value); 16536185db85Sdougm else 16546185db85Sdougm (void) printf("\"\""); 16556185db85Sdougm } 16566185db85Sdougm if (type != NULL) 16576185db85Sdougm sa_free_attr_string(type); 16586185db85Sdougm if (value != NULL) 16596185db85Sdougm sa_free_attr_string(value); 16606185db85Sdougm } 16616185db85Sdougm (void) printf(")"); 16626185db85Sdougm } 16636185db85Sdougm 16646185db85Sdougm /* 16656185db85Sdougm * show_properties(group, protocol, prefix) 16666185db85Sdougm * 16676185db85Sdougm * print the properties for a group. If protocol is NULL, do all 16686185db85Sdougm * protocols otherwise only the specified protocol. All security 16696185db85Sdougm * (named groups specific to the protocol) are included. 16706185db85Sdougm * 16716185db85Sdougm * The "prefix" is always applied. The caller knows whether it wants 16726185db85Sdougm * some type of prefix string (white space) or not. Once the prefix 16736185db85Sdougm * has been output, it is reduced to the zero length string for the 16746185db85Sdougm * remainder of the property output. 16756185db85Sdougm */ 16766185db85Sdougm 16776185db85Sdougm static void 16786185db85Sdougm show_properties(sa_group_t group, char *protocol, char *prefix) 16796185db85Sdougm { 16806185db85Sdougm sa_optionset_t optionset; 16816185db85Sdougm sa_security_t security; 16826185db85Sdougm char *value; 16836185db85Sdougm char *secvalue; 16846185db85Sdougm 16856185db85Sdougm if (protocol != NULL) { 16866185db85Sdougm optionset = sa_get_optionset(group, protocol); 16876185db85Sdougm if (optionset != NULL) { 16886185db85Sdougm (void) printf("%s", prefix); 16896185db85Sdougm prefix = ""; 16906185db85Sdougm out_properties(optionset, protocol, NULL); 16916185db85Sdougm } 16926185db85Sdougm security = sa_get_security(group, protocol, NULL); 16936185db85Sdougm if (security != NULL) { 16946185db85Sdougm (void) printf("%s", prefix); 16956185db85Sdougm prefix = ""; 16966185db85Sdougm out_properties(security, protocol, NULL); 16976185db85Sdougm } 16986185db85Sdougm } else { 16996185db85Sdougm for (optionset = sa_get_optionset(group, protocol); 17006185db85Sdougm optionset != NULL; 17016185db85Sdougm optionset = sa_get_next_optionset(optionset)) { 17026185db85Sdougm 17036185db85Sdougm value = sa_get_optionset_attr(optionset, "type"); 17046185db85Sdougm (void) printf("%s", prefix); 17056185db85Sdougm prefix = ""; 17066185db85Sdougm out_properties(optionset, value, 0); 17076185db85Sdougm if (value != NULL) 17086185db85Sdougm sa_free_attr_string(value); 17096185db85Sdougm } 17106185db85Sdougm for (security = sa_get_security(group, NULL, protocol); 17116185db85Sdougm security != NULL; 17126185db85Sdougm security = sa_get_next_security(security)) { 17136185db85Sdougm 17146185db85Sdougm value = sa_get_security_attr(security, "type"); 17156185db85Sdougm secvalue = sa_get_security_attr(security, "sectype"); 17166185db85Sdougm (void) printf("%s", prefix); 17176185db85Sdougm prefix = ""; 17186185db85Sdougm out_properties(security, value, secvalue); 17196185db85Sdougm if (value != NULL) 17206185db85Sdougm sa_free_attr_string(value); 17216185db85Sdougm if (secvalue != NULL) 17226185db85Sdougm sa_free_attr_string(secvalue); 17236185db85Sdougm } 17246185db85Sdougm } 17256185db85Sdougm } 17266185db85Sdougm 17276185db85Sdougm /* 1728da6c28aaSamw * get_resource(share) 1729da6c28aaSamw * 1730da6c28aaSamw * Get the first resource name, if any, and fix string to be in 1731da6c28aaSamw * current locale and have quotes if it has embedded spaces. Return 1732da6c28aaSamw * an attr string that must be freed. 1733da6c28aaSamw */ 1734da6c28aaSamw 1735da6c28aaSamw static char * 1736da6c28aaSamw get_resource(sa_share_t share) 1737da6c28aaSamw { 1738da6c28aaSamw sa_resource_t resource; 1739da6c28aaSamw char *resstring = NULL; 1740da6c28aaSamw char *retstring; 1741da6c28aaSamw 1742da6c28aaSamw if ((resource = sa_get_share_resource(share, NULL)) != NULL) { 1743da6c28aaSamw resstring = sa_get_resource_attr(resource, "name"); 1744da6c28aaSamw if (resstring != NULL) { 1745da6c28aaSamw char *cp; 1746da6c28aaSamw int len; 1747da6c28aaSamw 1748da6c28aaSamw retstring = conv_from_utf8(resstring); 1749da6c28aaSamw if (retstring != resstring) { 1750da6c28aaSamw sa_free_attr_string(resstring); 1751da6c28aaSamw resstring = retstring; 1752da6c28aaSamw } 1753da6c28aaSamw if (strpbrk(resstring, " ") != NULL) { 1754da6c28aaSamw /* account for quotes */ 1755da6c28aaSamw len = strlen(resstring) + 3; 1756da6c28aaSamw cp = calloc(len, sizeof (char)); 1757da6c28aaSamw if (cp != NULL) { 1758da6c28aaSamw (void) snprintf(cp, len, 1759da6c28aaSamw "\"%s\"", resstring); 1760da6c28aaSamw sa_free_attr_string(resstring); 1761da6c28aaSamw resstring = cp; 1762da6c28aaSamw } else { 1763da6c28aaSamw sa_free_attr_string(resstring); 1764da6c28aaSamw resstring = NULL; 1765da6c28aaSamw } 1766da6c28aaSamw } 1767da6c28aaSamw } 1768da6c28aaSamw } 1769da6c28aaSamw return (resstring); 1770da6c28aaSamw } 1771da6c28aaSamw 1772da6c28aaSamw /* 1773da6c28aaSamw * has_resource_with_opt(share) 1774da6c28aaSamw * 1775da6c28aaSamw * Check to see if the share has any resource names with optionsets 1776da6c28aaSamw * set. Also indicate if multiple resource names since the syntax 1777da6c28aaSamw * would be about the same. 1778da6c28aaSamw */ 1779da6c28aaSamw static int 1780da6c28aaSamw has_resource_with_opt(sa_share_t share) 1781da6c28aaSamw { 1782da6c28aaSamw sa_resource_t resource; 1783da6c28aaSamw int ret = B_FALSE; 1784da6c28aaSamw 1785da6c28aaSamw for (resource = sa_get_share_resource(share, NULL); 1786da6c28aaSamw resource != NULL; 1787da6c28aaSamw resource = sa_get_next_resource(resource)) { 1788da6c28aaSamw 1789da6c28aaSamw if (sa_get_optionset(resource, NULL) != NULL) { 1790da6c28aaSamw ret = B_TRUE; 1791da6c28aaSamw break; 1792da6c28aaSamw } 1793da6c28aaSamw } 1794da6c28aaSamw return (ret); 1795da6c28aaSamw } 1796da6c28aaSamw 1797da6c28aaSamw /* 1798da6c28aaSamw * has_multiple_resource(share) 1799da6c28aaSamw * 1800da6c28aaSamw * Check to see if the share has any resource names with optionsets 1801da6c28aaSamw * set. Also indicate if multiple resource names since the syntax 1802da6c28aaSamw * would be about the same. 1803da6c28aaSamw */ 1804da6c28aaSamw static int 1805da6c28aaSamw has_multiple_resource(sa_share_t share) 1806da6c28aaSamw { 1807da6c28aaSamw sa_resource_t resource; 1808da6c28aaSamw int num; 1809da6c28aaSamw 1810da6c28aaSamw for (num = 0, resource = sa_get_share_resource(share, NULL); 1811da6c28aaSamw resource != NULL; 1812da6c28aaSamw resource = sa_get_next_resource(resource)) { 1813da6c28aaSamw num++; 1814da6c28aaSamw if (num > 1) 1815da6c28aaSamw return (B_TRUE); 1816da6c28aaSamw } 1817da6c28aaSamw return (B_FALSE); 1818da6c28aaSamw } 1819da6c28aaSamw 1820da6c28aaSamw /* 1821da6c28aaSamw * show_share(share, verbose, properties, proto, iszfs, sharepath) 1822da6c28aaSamw * 1823da6c28aaSamw * print out the share information. With the addition of resource as a 1824da6c28aaSamw * full object that can have multiple instances below the share, we 1825da6c28aaSamw * need to display that as well. 1826da6c28aaSamw */ 1827da6c28aaSamw 1828da6c28aaSamw static void 1829da6c28aaSamw show_share(sa_share_t share, int verbose, int properties, char *proto, 1830da6c28aaSamw int iszfs, char *sharepath) 1831da6c28aaSamw { 1832da6c28aaSamw char *drive; 1833da6c28aaSamw char *exclude; 1834da6c28aaSamw sa_resource_t resource = NULL; 1835da6c28aaSamw char *description; 1836da6c28aaSamw char *desc; 1837da6c28aaSamw char *rsrcname; 1838da6c28aaSamw int rsrcwithopt; 1839da6c28aaSamw int multiple; 1840da6c28aaSamw char *type; 1841da6c28aaSamw 1842da6c28aaSamw rsrcwithopt = has_resource_with_opt(share); 1843da6c28aaSamw 1844da6c28aaSamw if (verbose || (properties && rsrcwithopt)) { 1845da6c28aaSamw /* First, indicate if transient */ 1846da6c28aaSamw type = sa_get_share_attr(share, "type"); 1847da6c28aaSamw if (type != NULL && !iszfs && verbose && 1848da6c28aaSamw strcmp(type, "transient") == 0) 1849da6c28aaSamw (void) printf("\t* "); 1850da6c28aaSamw else 1851da6c28aaSamw (void) printf("\t "); 1852da6c28aaSamw 1853da6c28aaSamw if (type != NULL) 1854da6c28aaSamw sa_free_attr_string(type); 1855da6c28aaSamw 1856da6c28aaSamw /* 1857da6c28aaSamw * If we came in with verbose, we want to handle the case of 1858da6c28aaSamw * multiple resources as though they had properties set. 1859da6c28aaSamw */ 1860da6c28aaSamw multiple = has_multiple_resource(share); 1861da6c28aaSamw 1862da6c28aaSamw /* Next, if not multiple follow old model */ 1863da6c28aaSamw if (!multiple && !rsrcwithopt) { 1864da6c28aaSamw rsrcname = get_resource(share); 1865da6c28aaSamw if (rsrcname != NULL && strlen(rsrcname) > 0) { 1866da6c28aaSamw (void) printf("%s=%s", rsrcname, sharepath); 1867da6c28aaSamw } else { 1868da6c28aaSamw (void) printf("%s", sharepath); 1869da6c28aaSamw } 1870da6c28aaSamw if (rsrcname != NULL) 1871da6c28aaSamw sa_free_attr_string(rsrcname); 1872da6c28aaSamw } else { 1873da6c28aaSamw /* Treat as simple and then resources come later */ 1874da6c28aaSamw (void) printf("%s", sharepath); 1875da6c28aaSamw } 1876da6c28aaSamw drive = sa_get_share_attr(share, "drive-letter"); 1877da6c28aaSamw if (drive != NULL) { 1878da6c28aaSamw if (strlen(drive) > 0) 1879da6c28aaSamw (void) printf(gettext("\tdrive-letter=\"%s:\""), 1880da6c28aaSamw drive); 1881da6c28aaSamw sa_free_attr_string(drive); 1882da6c28aaSamw } 1883da6c28aaSamw if (properties) 1884da6c28aaSamw show_properties(share, proto, "\t"); 1885da6c28aaSamw exclude = sa_get_share_attr(share, "exclude"); 1886da6c28aaSamw if (exclude != NULL) { 1887da6c28aaSamw (void) printf(gettext("\tnot-shared-with=[%s]"), 1888da6c28aaSamw exclude); 1889da6c28aaSamw sa_free_attr_string(exclude); 1890da6c28aaSamw } 1891da6c28aaSamw description = sa_get_share_description(share); 1892da6c28aaSamw if (description != NULL) { 1893da6c28aaSamw if (strlen(description) > 0) { 1894da6c28aaSamw desc = conv_from_utf8(description); 1895da6c28aaSamw if (desc != description) { 1896da6c28aaSamw sa_free_share_description(description); 1897da6c28aaSamw description = desc; 1898da6c28aaSamw } 1899da6c28aaSamw (void) printf("\t\"%s\"", description); 1900da6c28aaSamw } 1901da6c28aaSamw sa_free_share_description(description); 1902da6c28aaSamw } 1903da6c28aaSamw 1904da6c28aaSamw /* 1905da6c28aaSamw * If there are resource names with options, show them 1906da6c28aaSamw * here, with one line per resource. Resource specific 1907da6c28aaSamw * options are at the end of the line followed by 1908da6c28aaSamw * description, if any. 1909da6c28aaSamw */ 1910da6c28aaSamw if (rsrcwithopt || multiple) { 1911da6c28aaSamw for (resource = sa_get_share_resource(share, NULL); 1912da6c28aaSamw resource != NULL; 1913da6c28aaSamw resource = sa_get_next_resource(resource)) { 1914da6c28aaSamw int has_space; 1915da6c28aaSamw char *rsrc; 1916da6c28aaSamw 1917da6c28aaSamw (void) printf("\n\t\t "); 1918da6c28aaSamw rsrcname = sa_get_resource_attr(resource, 1919da6c28aaSamw "name"); 1920da6c28aaSamw if (rsrcname == NULL) 1921da6c28aaSamw continue; 1922da6c28aaSamw 1923da6c28aaSamw rsrc = conv_from_utf8(rsrcname); 1924da6c28aaSamw has_space = strpbrk(rsrc, " ") != NULL; 1925da6c28aaSamw 1926da6c28aaSamw if (has_space) 1927da6c28aaSamw (void) printf("\"%s\"=%s", rsrc, 1928da6c28aaSamw sharepath); 1929da6c28aaSamw else 1930da6c28aaSamw (void) printf("%s=%s", rsrc, 1931da6c28aaSamw sharepath); 1932da6c28aaSamw if (rsrc != rsrcname) 1933da6c28aaSamw sa_free_attr_string(rsrc); 1934da6c28aaSamw sa_free_attr_string(rsrcname); 1935da6c28aaSamw if (properties || rsrcwithopt) 1936da6c28aaSamw show_properties(resource, proto, "\t"); 1937da6c28aaSamw 1938da6c28aaSamw /* Get description string if any */ 1939da6c28aaSamw print_rsrc_desc(resource); 1940da6c28aaSamw } 1941da6c28aaSamw } 1942da6c28aaSamw } else { 1943da6c28aaSamw (void) printf("\t %s", sharepath); 1944da6c28aaSamw if (properties) 1945da6c28aaSamw show_properties(share, proto, "\t"); 1946da6c28aaSamw } 1947da6c28aaSamw (void) printf("\n"); 1948da6c28aaSamw } 1949da6c28aaSamw 1950da6c28aaSamw /* 19516185db85Sdougm * show_group(group, verbose, properties, proto, subgroup) 19526185db85Sdougm * 19536185db85Sdougm * helper function to show the contents of a group. 19546185db85Sdougm */ 19556185db85Sdougm 19566185db85Sdougm static void 19576185db85Sdougm show_group(sa_group_t group, int verbose, int properties, char *proto, 19586185db85Sdougm char *subgroup) 19596185db85Sdougm { 19606185db85Sdougm sa_share_t share; 19616185db85Sdougm char *groupname; 19626185db85Sdougm char *zfs = NULL; 19636185db85Sdougm int iszfs = 0; 1964da6c28aaSamw char *sharepath; 19656185db85Sdougm 19666185db85Sdougm groupname = sa_get_group_attr(group, "name"); 19676185db85Sdougm if (groupname != NULL) { 19686185db85Sdougm if (proto != NULL && !has_protocol(group, proto)) { 19696185db85Sdougm sa_free_attr_string(groupname); 19706185db85Sdougm return; 19716185db85Sdougm } 19726185db85Sdougm /* 19736185db85Sdougm * check to see if the group is managed by ZFS. If 19746185db85Sdougm * there is an attribute, then it is. A non-NULL zfs 19756185db85Sdougm * variable will trigger the different way to display 19766185db85Sdougm * and will remove the transient property indicator 19776185db85Sdougm * from the output. 19786185db85Sdougm */ 19796185db85Sdougm zfs = sa_get_group_attr(group, "zfs"); 19806185db85Sdougm if (zfs != NULL) { 19816185db85Sdougm iszfs = 1; 19826185db85Sdougm sa_free_attr_string(zfs); 19836185db85Sdougm } 19846185db85Sdougm share = sa_get_share(group, NULL); 19856185db85Sdougm if (subgroup == NULL) 19866185db85Sdougm (void) printf("%s", groupname); 19876185db85Sdougm else 19886185db85Sdougm (void) printf(" %s/%s", subgroup, groupname); 198925a68471Sdougm if (properties) 19906185db85Sdougm show_properties(group, proto, ""); 19916185db85Sdougm (void) printf("\n"); 19926185db85Sdougm if (strcmp(groupname, "zfs") == 0) { 19936185db85Sdougm sa_group_t zgroup; 19946185db85Sdougm 199525a68471Sdougm for (zgroup = sa_get_sub_group(group); 199625a68471Sdougm zgroup != NULL; 19976185db85Sdougm zgroup = sa_get_next_group(zgroup)) { 199825a68471Sdougm show_group(zgroup, verbose, properties, proto, 199925a68471Sdougm "zfs"); 20006185db85Sdougm } 20016185db85Sdougm sa_free_attr_string(groupname); 20026185db85Sdougm return; 20036185db85Sdougm } 20046185db85Sdougm /* 200525a68471Sdougm * Have a group, so list the contents. Resource and 20066185db85Sdougm * description are only listed if verbose is set. 20076185db85Sdougm */ 200825a68471Sdougm for (share = sa_get_share(group, NULL); 200925a68471Sdougm share != NULL; 20106185db85Sdougm share = sa_get_next_share(share)) { 20116185db85Sdougm sharepath = sa_get_share_attr(share, "path"); 20126185db85Sdougm if (sharepath != NULL) { 2013da6c28aaSamw show_share(share, verbose, properties, proto, 2014da6c28aaSamw iszfs, sharepath); 20156185db85Sdougm sa_free_attr_string(sharepath); 20166185db85Sdougm } 20176185db85Sdougm } 20186185db85Sdougm } 20196185db85Sdougm if (groupname != NULL) { 20206185db85Sdougm sa_free_attr_string(groupname); 20216185db85Sdougm } 20226185db85Sdougm } 20236185db85Sdougm 20246185db85Sdougm /* 20256185db85Sdougm * show_group_xml_init() 20266185db85Sdougm * 20276185db85Sdougm * Create an XML document that will be used to display config info via 20286185db85Sdougm * XML format. 20296185db85Sdougm */ 20306185db85Sdougm 20316185db85Sdougm xmlDocPtr 20326185db85Sdougm show_group_xml_init() 20336185db85Sdougm { 20346185db85Sdougm xmlDocPtr doc; 20356185db85Sdougm xmlNodePtr root; 20366185db85Sdougm 20376185db85Sdougm doc = xmlNewDoc((xmlChar *)"1.0"); 20386185db85Sdougm if (doc != NULL) { 20396185db85Sdougm root = xmlNewNode(NULL, (xmlChar *)"sharecfg"); 20406185db85Sdougm if (root != NULL) 20416185db85Sdougm xmlDocSetRootElement(doc, root); 20426185db85Sdougm } 20436185db85Sdougm return (doc); 20446185db85Sdougm } 20456185db85Sdougm 20466185db85Sdougm /* 20476185db85Sdougm * show_group_xml(doc, group) 20486185db85Sdougm * 20496185db85Sdougm * Copy the group info into the XML doc. 20506185db85Sdougm */ 20516185db85Sdougm 20526185db85Sdougm static void 20536185db85Sdougm show_group_xml(xmlDocPtr doc, sa_group_t group) 20546185db85Sdougm { 20556185db85Sdougm xmlNodePtr node; 20566185db85Sdougm xmlNodePtr root; 20576185db85Sdougm 20586185db85Sdougm root = xmlDocGetRootElement(doc); 20596185db85Sdougm node = xmlCopyNode((xmlNodePtr)group, 1); 20606185db85Sdougm if (node != NULL && root != NULL) { 20616185db85Sdougm xmlAddChild(root, node); 20626185db85Sdougm /* 20636185db85Sdougm * In the future, we may have interally used tags that 20646185db85Sdougm * should not appear in the XML output. Remove 20656185db85Sdougm * anything we don't want to show here. 20666185db85Sdougm */ 20676185db85Sdougm } 20686185db85Sdougm } 20696185db85Sdougm 20706185db85Sdougm /* 20716185db85Sdougm * sa_show(flags, argc, argv) 20726185db85Sdougm * 20736185db85Sdougm * Implements the show subcommand. 20746185db85Sdougm */ 20756185db85Sdougm 20766185db85Sdougm int 2077549ec3ffSdougm sa_show(sa_handle_t handle, int flags, int argc, char *argv[]) 20786185db85Sdougm { 20796185db85Sdougm sa_group_t group; 20806185db85Sdougm int verbose = 0; 20816185db85Sdougm int properties = 0; 20826185db85Sdougm int c; 20836185db85Sdougm int ret = SA_OK; 20846185db85Sdougm char *protocol = NULL; 20856185db85Sdougm int xml = 0; 20866185db85Sdougm xmlDocPtr doc; 2087da6c28aaSamw #ifdef lint 2088da6c28aaSamw flags = flags; 2089da6c28aaSamw #endif 20906185db85Sdougm 20916185db85Sdougm while ((c = getopt(argc, argv, "?hvP:px")) != EOF) { 20926185db85Sdougm switch (c) { 20936185db85Sdougm case 'v': 20946185db85Sdougm verbose++; 20956185db85Sdougm break; 20966185db85Sdougm case 'p': 20976185db85Sdougm properties++; 20986185db85Sdougm break; 20996185db85Sdougm case 'P': 2100da6c28aaSamw if (protocol != NULL) { 2101da6c28aaSamw (void) printf(gettext( 2102da6c28aaSamw "Specifying multiple protocols " 2103da6c28aaSamw "not supported: %s\n"), 2104da6c28aaSamw protocol); 2105da6c28aaSamw return (SA_SYNTAX_ERR); 2106da6c28aaSamw } 21076185db85Sdougm protocol = optarg; 21086185db85Sdougm if (!sa_valid_protocol(protocol)) { 210925a68471Sdougm (void) printf(gettext( 211025a68471Sdougm "Invalid protocol specified: %s\n"), 21116185db85Sdougm protocol); 21126185db85Sdougm return (SA_INVALID_PROTOCOL); 21136185db85Sdougm } 21146185db85Sdougm break; 21156185db85Sdougm case 'x': 21166185db85Sdougm xml++; 21176185db85Sdougm break; 21186185db85Sdougm default: 21196185db85Sdougm case 'h': 21206185db85Sdougm case '?': 212125a68471Sdougm (void) printf(gettext("usage: %s\n"), 212225a68471Sdougm sa_get_usage(USAGE_SHOW)); 21236185db85Sdougm return (0); 21246185db85Sdougm } 21256185db85Sdougm } 21266185db85Sdougm 21276185db85Sdougm if (xml) { 21286185db85Sdougm doc = show_group_xml_init(); 21296185db85Sdougm if (doc == NULL) 21306185db85Sdougm ret = SA_NO_MEMORY; 21316185db85Sdougm } 21326185db85Sdougm 21336185db85Sdougm if (optind == argc) { 213425a68471Sdougm /* No group specified so go through them all */ 213525a68471Sdougm for (group = sa_get_group(handle, NULL); 213625a68471Sdougm group != NULL; 21376185db85Sdougm group = sa_get_next_group(group)) { 21386185db85Sdougm /* 213925a68471Sdougm * Have a group so check if one we want and then list 21406185db85Sdougm * contents with appropriate options. 21416185db85Sdougm */ 21426185db85Sdougm if (xml) 21436185db85Sdougm show_group_xml(doc, group); 21446185db85Sdougm else 214525a68471Sdougm show_group(group, verbose, properties, protocol, 214625a68471Sdougm NULL); 21476185db85Sdougm } 21486185db85Sdougm } else { 214925a68471Sdougm /* Have a specified list of groups */ 21506185db85Sdougm for (; optind < argc; optind++) { 2151549ec3ffSdougm group = sa_get_group(handle, argv[optind]); 21526185db85Sdougm if (group != NULL) { 21536185db85Sdougm if (xml) 21546185db85Sdougm show_group_xml(doc, group); 21556185db85Sdougm else 215625a68471Sdougm show_group(group, verbose, properties, 215725a68471Sdougm protocol, NULL); 21586185db85Sdougm } else { 215925a68471Sdougm (void) printf(gettext("%s: not found\n"), 216025a68471Sdougm argv[optind]); 21616185db85Sdougm ret = SA_NO_SUCH_GROUP; 21626185db85Sdougm } 21636185db85Sdougm } 21646185db85Sdougm } 21656185db85Sdougm if (xml && ret == SA_OK) { 21666185db85Sdougm xmlDocFormatDump(stdout, doc, 1); 21676185db85Sdougm xmlFreeDoc(doc); 21686185db85Sdougm } 21696185db85Sdougm return (ret); 21706185db85Sdougm 21716185db85Sdougm } 21726185db85Sdougm 21736185db85Sdougm /* 21746185db85Sdougm * enable_share(group, share, update_legacy) 21756185db85Sdougm * 21766185db85Sdougm * helper function to enable a share if the group is enabled. 21776185db85Sdougm */ 21786185db85Sdougm 21796185db85Sdougm static int 2180549ec3ffSdougm enable_share(sa_handle_t handle, sa_group_t group, sa_share_t share, 2181549ec3ffSdougm int update_legacy) 21826185db85Sdougm { 21836185db85Sdougm char *value; 21846185db85Sdougm int enabled; 21856185db85Sdougm sa_optionset_t optionset; 2186da6c28aaSamw int err; 21876185db85Sdougm int ret = SA_OK; 21886185db85Sdougm char *zfs = NULL; 21896185db85Sdougm int iszfs = 0; 2190da6c28aaSamw int isshare; 21916185db85Sdougm 21926185db85Sdougm /* 21936185db85Sdougm * need to enable this share if the group is enabled but not 21946185db85Sdougm * otherwise. The enable is also done on each protocol 21956185db85Sdougm * represented in the group. 21966185db85Sdougm */ 21976185db85Sdougm value = sa_get_group_attr(group, "state"); 21986185db85Sdougm enabled = value != NULL && strcmp(value, "enabled") == 0; 21996185db85Sdougm if (value != NULL) 22006185db85Sdougm sa_free_attr_string(value); 22016185db85Sdougm /* remove legacy config if necessary */ 22026185db85Sdougm if (update_legacy) 2203da6c28aaSamw ret = sa_delete_legacy(share, NULL); 22046185db85Sdougm zfs = sa_get_group_attr(group, "zfs"); 22056185db85Sdougm if (zfs != NULL) { 22066185db85Sdougm iszfs++; 22076185db85Sdougm sa_free_attr_string(zfs); 22086185db85Sdougm } 22096185db85Sdougm 22106185db85Sdougm /* 22116185db85Sdougm * Step through each optionset at the group level and 22126185db85Sdougm * enable the share based on the protocol type. This 22136185db85Sdougm * works because protocols must be set on the group 22146185db85Sdougm * for the protocol to be enabled. 22156185db85Sdougm */ 2216da6c28aaSamw isshare = sa_is_share(share); 22176185db85Sdougm for (optionset = sa_get_optionset(group, NULL); 22186185db85Sdougm optionset != NULL && ret == SA_OK; 22196185db85Sdougm optionset = sa_get_next_optionset(optionset)) { 22206185db85Sdougm value = sa_get_optionset_attr(optionset, "type"); 22216185db85Sdougm if (value != NULL) { 2222da6c28aaSamw if (enabled) { 2223da6c28aaSamw if (isshare) { 2224da6c28aaSamw err = sa_enable_share(share, value); 2225da6c28aaSamw } else { 2226da6c28aaSamw err = sa_enable_resource(share, value); 2227da6c28aaSamw if (err == SA_NOT_SUPPORTED) { 2228da6c28aaSamw sa_share_t parent; 2229da6c28aaSamw parent = sa_get_resource_parent( 2230da6c28aaSamw share); 2231da6c28aaSamw if (parent != NULL) 2232da6c28aaSamw err = sa_enable_share( 2233da6c28aaSamw parent, value); 2234da6c28aaSamw } 2235da6c28aaSamw } 2236da6c28aaSamw if (err != SA_OK) { 2237da6c28aaSamw ret = err; 2238da6c28aaSamw (void) printf(gettext( 2239da6c28aaSamw "Failed to enable share for " 2240da6c28aaSamw "\"%s\": %s\n"), 2241da6c28aaSamw value, sa_errorstr(ret)); 2242da6c28aaSamw } 2243da6c28aaSamw } 2244da6c28aaSamw /* 2245da6c28aaSamw * If we want to update the legacy, use a copy of 2246da6c28aaSamw * share so we can avoid breaking the loop we are in 2247da6c28aaSamw * since we might also need to go up the tree to the 2248da6c28aaSamw * parent. 2249da6c28aaSamw */ 2250da6c28aaSamw if (update_legacy && !iszfs) { 2251da6c28aaSamw sa_share_t update = share; 2252da6c28aaSamw if (!sa_is_share(share)) { 2253da6c28aaSamw update = sa_get_resource_parent(share); 2254da6c28aaSamw } 2255da6c28aaSamw (void) sa_update_legacy(update, value); 2256da6c28aaSamw } 22576185db85Sdougm sa_free_attr_string(value); 22586185db85Sdougm } 22596185db85Sdougm } 22606185db85Sdougm if (ret == SA_OK) 2261549ec3ffSdougm (void) sa_update_config(handle); 22626185db85Sdougm return (ret); 22636185db85Sdougm } 22646185db85Sdougm 22656185db85Sdougm /* 2266da6c28aaSamw * sa_require_resource(group) 2267da6c28aaSamw * 2268da6c28aaSamw * if any of the defined protocols on the group require resource 2269da6c28aaSamw * names, then all shares must have them. 2270da6c28aaSamw */ 2271da6c28aaSamw 2272da6c28aaSamw static int 2273da6c28aaSamw sa_require_resource(sa_group_t group) 2274da6c28aaSamw { 2275da6c28aaSamw sa_optionset_t optionset; 2276da6c28aaSamw 2277da6c28aaSamw for (optionset = sa_get_optionset(group, NULL); 2278da6c28aaSamw optionset != NULL; 2279da6c28aaSamw optionset = sa_get_next_optionset(optionset)) { 2280da6c28aaSamw char *proto; 2281da6c28aaSamw 2282da6c28aaSamw proto = sa_get_optionset_attr(optionset, "type"); 2283da6c28aaSamw if (proto != NULL) { 2284da6c28aaSamw uint64_t features; 2285da6c28aaSamw 2286da6c28aaSamw features = sa_proto_get_featureset(proto); 2287da6c28aaSamw if (features & SA_FEATURE_RESOURCE) { 2288da6c28aaSamw sa_free_attr_string(proto); 2289da6c28aaSamw return (B_TRUE); 2290da6c28aaSamw } 2291da6c28aaSamw sa_free_attr_string(proto); 2292da6c28aaSamw } 2293da6c28aaSamw } 2294da6c28aaSamw return (B_FALSE); 2295da6c28aaSamw } 2296da6c28aaSamw 2297da6c28aaSamw /* 22986185db85Sdougm * sa_addshare(flags, argc, argv) 22996185db85Sdougm * 23006185db85Sdougm * implements add-share subcommand. 23016185db85Sdougm */ 23026185db85Sdougm 2303da6c28aaSamw static int 2304549ec3ffSdougm sa_addshare(sa_handle_t handle, int flags, int argc, char *argv[]) 23056185db85Sdougm { 23066185db85Sdougm int verbose = 0; 23076185db85Sdougm int dryrun = 0; 23086185db85Sdougm int c; 23096185db85Sdougm int ret = SA_OK; 23106185db85Sdougm sa_group_t group; 23116185db85Sdougm sa_share_t share; 2312da6c28aaSamw sa_resource_t resource = NULL; 23136185db85Sdougm char *sharepath = NULL; 23146185db85Sdougm char *description = NULL; 2315da6c28aaSamw char *rsrcname = NULL; 2316da6c28aaSamw char *rsrc = NULL; 23176185db85Sdougm int persist = SA_SHARE_PERMANENT; /* default to persist */ 23186185db85Sdougm int auth; 23196185db85Sdougm char dir[MAXPATHLEN]; 23206185db85Sdougm 23216185db85Sdougm while ((c = getopt(argc, argv, "?hvns:d:r:t")) != EOF) { 23226185db85Sdougm switch (c) { 23236185db85Sdougm case 'n': 23246185db85Sdougm dryrun++; 23256185db85Sdougm break; 23266185db85Sdougm case 'v': 23276185db85Sdougm verbose++; 23286185db85Sdougm break; 23296185db85Sdougm case 'd': 23306185db85Sdougm description = optarg; 23316185db85Sdougm break; 23326185db85Sdougm case 'r': 2333da6c28aaSamw if (rsrcname != NULL) { 2334da6c28aaSamw (void) printf(gettext("Adding multiple " 2335da6c28aaSamw "resource names not" 2336da6c28aaSamw " supported\n")); 2337da6c28aaSamw return (SA_SYNTAX_ERR); 2338da6c28aaSamw } 2339da6c28aaSamw rsrcname = optarg; 23406185db85Sdougm break; 23416185db85Sdougm case 's': 23426185db85Sdougm /* 234325a68471Sdougm * Save share path into group. Currently limit 23446185db85Sdougm * to one share per command. 23456185db85Sdougm */ 23466185db85Sdougm if (sharepath != NULL) { 234725a68471Sdougm (void) printf(gettext( 234825a68471Sdougm "Adding multiple shares not supported\n")); 2349da6c28aaSamw return (SA_SYNTAX_ERR); 23506185db85Sdougm } 23516185db85Sdougm sharepath = optarg; 23526185db85Sdougm break; 23536185db85Sdougm case 't': 23546185db85Sdougm persist = SA_SHARE_TRANSIENT; 23556185db85Sdougm break; 23566185db85Sdougm default: 23576185db85Sdougm case 'h': 23586185db85Sdougm case '?': 23596185db85Sdougm (void) printf(gettext("usage: %s\n"), 23606185db85Sdougm sa_get_usage(USAGE_ADD_SHARE)); 23616185db85Sdougm return (0); 23626185db85Sdougm } 23636185db85Sdougm } 23646185db85Sdougm 23656185db85Sdougm if (optind >= argc) { 23666185db85Sdougm (void) printf(gettext("usage: %s\n"), 23676185db85Sdougm sa_get_usage(USAGE_ADD_SHARE)); 23686185db85Sdougm if (dryrun || sharepath != NULL || description != NULL || 2369da6c28aaSamw rsrcname != NULL || verbose || persist) { 23706185db85Sdougm (void) printf(gettext("\tgroup must be specified\n")); 23716185db85Sdougm ret = SA_NO_SUCH_GROUP; 23726185db85Sdougm } else { 23736185db85Sdougm ret = SA_OK; 23746185db85Sdougm } 23756185db85Sdougm } else { 23766185db85Sdougm if (sharepath == NULL) { 23776185db85Sdougm (void) printf(gettext("usage: %s\n"), 23786185db85Sdougm sa_get_usage(USAGE_ADD_SHARE)); 237925a68471Sdougm (void) printf(gettext( 238025a68471Sdougm "\t-s sharepath must be specified\n")); 2381da6c28aaSamw ret = SA_BAD_PATH; 23826185db85Sdougm } 2383da6c28aaSamw if (ret == SA_OK) { 23846185db85Sdougm if (realpath(sharepath, dir) == NULL) { 2385da6c28aaSamw ret = SA_BAD_PATH; 2386da6c28aaSamw (void) printf(gettext("Path " 2387da6c28aaSamw "is not valid: %s\n"), 2388da6c28aaSamw sharepath); 23896185db85Sdougm } else { 23906185db85Sdougm sharepath = dir; 23916185db85Sdougm } 2392da6c28aaSamw } 2393da6c28aaSamw if (ret == SA_OK && rsrcname != NULL) { 2394da6c28aaSamw /* check for valid syntax */ 2395da6c28aaSamw if (validresource(rsrcname)) { 2396da6c28aaSamw rsrc = conv_to_utf8(rsrcname); 2397da6c28aaSamw resource = sa_find_resource(handle, rsrc); 2398da6c28aaSamw if (resource != NULL) { 2399da6c28aaSamw /* 2400da6c28aaSamw * Resource names must be 2401da6c28aaSamw * unique in the system 2402da6c28aaSamw */ 2403da6c28aaSamw ret = SA_DUPLICATE_NAME; 24046185db85Sdougm (void) printf(gettext("usage: %s\n"), 24056185db85Sdougm sa_get_usage(USAGE_ADD_SHARE)); 240625a68471Sdougm (void) printf(gettext( 2407da6c28aaSamw "\tresource names must be unique " 2408da6c28aaSamw "in the system\n")); 24096185db85Sdougm } 2410da6c28aaSamw } else { 2411da6c28aaSamw (void) printf(gettext("usage: %s\n"), 2412da6c28aaSamw sa_get_usage(USAGE_ADD_SHARE)); 2413da6c28aaSamw (void) printf(gettext( 2414da6c28aaSamw "\tresource names use restricted " 2415da6c28aaSamw "character set\n")); 2416da6c28aaSamw ret = SA_INVALID_NAME; 241725a68471Sdougm } 2418da6c28aaSamw } 2419da6c28aaSamw 2420da6c28aaSamw if (ret != SA_OK) { 2421da6c28aaSamw if (rsrc != NULL && rsrcname != rsrc) 2422da6c28aaSamw sa_free_attr_string(rsrc); 2423da6c28aaSamw return (ret); 2424da6c28aaSamw } 2425da6c28aaSamw 2426549ec3ffSdougm share = sa_find_share(handle, sharepath); 24276185db85Sdougm if (share != NULL) { 2428da6c28aaSamw if (rsrcname == NULL) { 24296185db85Sdougm /* 2430da6c28aaSamw * Can only have a duplicate share if a new 2431da6c28aaSamw * resource name is being added. 24326185db85Sdougm */ 2433da6c28aaSamw ret = SA_DUPLICATE_NAME; 2434da6c28aaSamw (void) printf(gettext("Share path already " 2435da6c28aaSamw "shared: %s\n"), sharepath); 2436da6c28aaSamw } 2437da6c28aaSamw } 2438da6c28aaSamw if (ret != SA_OK) 2439da6c28aaSamw return (ret); 2440da6c28aaSamw 2441da6c28aaSamw group = sa_get_group(handle, argv[optind]); 2442da6c28aaSamw if (group != NULL) { 2443da6c28aaSamw if (sa_require_resource(group) == B_TRUE && 2444da6c28aaSamw rsrcname == NULL) { 2445da6c28aaSamw (void) printf(gettext( 2446da6c28aaSamw "Resource name is required " 2447da6c28aaSamw "by at least one enabled protocol " 2448da6c28aaSamw "in group\n")); 2449da6c28aaSamw return (SA_RESOURCE_REQUIRED); 2450da6c28aaSamw } 2451da6c28aaSamw if (share == NULL && ret == SA_OK) { 24526185db85Sdougm if (dryrun) 2453f345c0beSdougm ret = sa_check_path(group, sharepath, 2454f345c0beSdougm SA_CHECK_NORMAL); 24556185db85Sdougm else 24566185db85Sdougm share = sa_add_share(group, sharepath, 24576185db85Sdougm persist, &ret); 2458da6c28aaSamw } 2459da6c28aaSamw /* 2460da6c28aaSamw * Make sure this isn't an attempt to put a resourced 2461da6c28aaSamw * share into a different group than it already is in. 2462da6c28aaSamw */ 2463da6c28aaSamw if (share != NULL) { 2464da6c28aaSamw sa_group_t parent; 2465da6c28aaSamw parent = sa_get_parent_group(share); 2466da6c28aaSamw if (parent != group) { 2467da6c28aaSamw ret = SA_DUPLICATE_NAME; 2468da6c28aaSamw (void) printf(gettext( 2469da6c28aaSamw "Share path already " 2470da6c28aaSamw "shared: %s\n"), sharepath); 2471da6c28aaSamw } 2472da6c28aaSamw } 24736185db85Sdougm if (!dryrun && share == NULL) { 247425a68471Sdougm (void) printf(gettext( 247525a68471Sdougm "Could not add share: %s\n"), 24766185db85Sdougm sa_errorstr(ret)); 24776185db85Sdougm } else { 2478da6c28aaSamw auth = check_authorizations(argv[optind], 2479da6c28aaSamw flags); 24806185db85Sdougm if (!dryrun && ret == SA_OK) { 2481da6c28aaSamw if (rsrcname != NULL) { 2482da6c28aaSamw resource = sa_add_resource( 2483da6c28aaSamw share, 2484da6c28aaSamw rsrc, 2485da6c28aaSamw SA_SHARE_PERMANENT, 2486da6c28aaSamw &ret); 24876185db85Sdougm } 248825a68471Sdougm if (ret == SA_OK && 248925a68471Sdougm description != NULL) { 2490da6c28aaSamw if (description != NULL) { 2491da6c28aaSamw ret = 2492da6c28aaSamw set_share_desc( 2493da6c28aaSamw share, 2494da6c28aaSamw description); 2495da6c28aaSamw } 24966185db85Sdougm } 24976185db85Sdougm if (ret == SA_OK) { 2498da6c28aaSamw /* now enable the share(s) */ 2499da6c28aaSamw if (resource != NULL) { 2500da6c28aaSamw ret = enable_share( 2501da6c28aaSamw handle, 2502da6c28aaSamw group, 2503da6c28aaSamw resource, 2504da6c28aaSamw 1); 2505da6c28aaSamw } else { 2506da6c28aaSamw ret = enable_share( 2507da6c28aaSamw handle, 2508da6c28aaSamw group, 2509da6c28aaSamw share, 2510da6c28aaSamw 1); 2511da6c28aaSamw } 2512549ec3ffSdougm ret = sa_update_config(handle); 25136185db85Sdougm } 25146185db85Sdougm switch (ret) { 25156185db85Sdougm case SA_DUPLICATE_NAME: 251625a68471Sdougm (void) printf(gettext( 251725a68471Sdougm "Resource name in" 2518da6c28aaSamw "use: %s\n"), 2519da6c28aaSamw rsrcname); 25206185db85Sdougm break; 25216185db85Sdougm default: 2522da6c28aaSamw (void) printf(gettext( 2523da6c28aaSamw "Could not set " 25246185db85Sdougm "attribute: %s\n"), 25256185db85Sdougm sa_errorstr(ret)); 25266185db85Sdougm break; 25276185db85Sdougm case SA_OK: 25286185db85Sdougm break; 25296185db85Sdougm } 2530da6c28aaSamw } else if (dryrun && ret == SA_OK && 2531da6c28aaSamw !auth && verbose) { 253225a68471Sdougm (void) printf(gettext( 253325a68471Sdougm "Command would fail: %s\n"), 25346185db85Sdougm sa_errorstr(SA_NO_PERMISSION)); 25356185db85Sdougm ret = SA_NO_PERMISSION; 25366185db85Sdougm } 25376185db85Sdougm } 2538da6c28aaSamw } else { 2539da6c28aaSamw switch (ret) { 2540da6c28aaSamw default: 2541da6c28aaSamw (void) printf(gettext( 2542da6c28aaSamw "Group \"%s\" not found\n"), argv[optind]); 2543da6c28aaSamw ret = SA_NO_SUCH_GROUP; 2544da6c28aaSamw break; 2545da6c28aaSamw case SA_BAD_PATH: 2546da6c28aaSamw case SA_DUPLICATE_NAME: 2547da6c28aaSamw break; 2548da6c28aaSamw } 25496185db85Sdougm } 25506185db85Sdougm } 25516185db85Sdougm return (ret); 25526185db85Sdougm } 25536185db85Sdougm 25546185db85Sdougm /* 25556185db85Sdougm * sa_moveshare(flags, argc, argv) 25566185db85Sdougm * 25576185db85Sdougm * implements move-share subcommand. 25586185db85Sdougm */ 25596185db85Sdougm 25606185db85Sdougm int 2561549ec3ffSdougm sa_moveshare(sa_handle_t handle, int flags, int argc, char *argv[]) 25626185db85Sdougm { 25636185db85Sdougm int verbose = 0; 25646185db85Sdougm int dryrun = 0; 25656185db85Sdougm int c; 25666185db85Sdougm int ret = SA_OK; 25676185db85Sdougm sa_group_t group; 25686185db85Sdougm sa_share_t share; 2569da6c28aaSamw char *rsrcname = NULL; 25706185db85Sdougm char *sharepath = NULL; 25716185db85Sdougm int authsrc = 0, authdst = 0; 25726185db85Sdougm 2573da6c28aaSamw while ((c = getopt(argc, argv, "?hvnr:s:")) != EOF) { 25746185db85Sdougm switch (c) { 25756185db85Sdougm case 'n': 25766185db85Sdougm dryrun++; 25776185db85Sdougm break; 25786185db85Sdougm case 'v': 25796185db85Sdougm verbose++; 25806185db85Sdougm break; 2581da6c28aaSamw case 'r': 2582da6c28aaSamw if (rsrcname != NULL) { 2583da6c28aaSamw (void) printf(gettext( 2584da6c28aaSamw "Moving multiple resource names not" 2585da6c28aaSamw " supported\n")); 2586da6c28aaSamw return (SA_SYNTAX_ERR); 2587da6c28aaSamw } 2588da6c28aaSamw rsrcname = optarg; 2589da6c28aaSamw break; 25906185db85Sdougm case 's': 25916185db85Sdougm /* 259225a68471Sdougm * Remove share path from group. Currently limit 25936185db85Sdougm * to one share per command. 25946185db85Sdougm */ 25956185db85Sdougm if (sharepath != NULL) { 259625a68471Sdougm (void) printf(gettext("Moving multiple shares" 259725a68471Sdougm " not supported\n")); 2598da6c28aaSamw return (SA_SYNTAX_ERR); 25996185db85Sdougm } 26006185db85Sdougm sharepath = optarg; 26016185db85Sdougm break; 26026185db85Sdougm default: 26036185db85Sdougm case 'h': 26046185db85Sdougm case '?': 26056185db85Sdougm (void) printf(gettext("usage: %s\n"), 26066185db85Sdougm sa_get_usage(USAGE_MOVE_SHARE)); 26076185db85Sdougm return (0); 26086185db85Sdougm } 26096185db85Sdougm } 26106185db85Sdougm 26116185db85Sdougm if (optind >= argc || sharepath == NULL) { 26126185db85Sdougm (void) printf(gettext("usage: %s\n"), 26136185db85Sdougm sa_get_usage(USAGE_MOVE_SHARE)); 26146185db85Sdougm if (dryrun || verbose || sharepath != NULL) { 2615da6c28aaSamw (void) printf(gettext("\tgroup must be specified\n")); 26166185db85Sdougm ret = SA_NO_SUCH_GROUP; 26176185db85Sdougm } else { 26186185db85Sdougm if (sharepath == NULL) { 26196185db85Sdougm ret = SA_SYNTAX_ERR; 262025a68471Sdougm (void) printf(gettext( 262125a68471Sdougm "\tsharepath must be specified\n")); 262225a68471Sdougm } else { 26236185db85Sdougm ret = SA_OK; 26246185db85Sdougm } 262525a68471Sdougm } 26266185db85Sdougm } else { 262725a68471Sdougm sa_group_t parent; 262825a68471Sdougm char *zfsold; 262925a68471Sdougm char *zfsnew; 263025a68471Sdougm 26316185db85Sdougm if (sharepath == NULL) { 263225a68471Sdougm (void) printf(gettext( 263325a68471Sdougm "sharepath must be specified with the -s " 263425a68471Sdougm "option\n")); 263525a68471Sdougm return (SA_BAD_PATH); 263625a68471Sdougm } 2637549ec3ffSdougm group = sa_get_group(handle, argv[optind]); 263825a68471Sdougm if (group == NULL) { 263925a68471Sdougm (void) printf(gettext("Group \"%s\" not found\n"), 264025a68471Sdougm argv[optind]); 264125a68471Sdougm return (SA_NO_SUCH_GROUP); 264225a68471Sdougm } 2643549ec3ffSdougm share = sa_find_share(handle, sharepath); 26446185db85Sdougm authdst = check_authorizations(argv[optind], flags); 26456185db85Sdougm if (share == NULL) { 26466185db85Sdougm (void) printf(gettext("Share not found: %s\n"), 26476185db85Sdougm sharepath); 264825a68471Sdougm return (SA_NO_SUCH_PATH); 264925a68471Sdougm } 26506185db85Sdougm 26516185db85Sdougm parent = sa_get_parent_group(share); 26526185db85Sdougm if (parent != NULL) { 26536185db85Sdougm char *pname; 26546185db85Sdougm pname = sa_get_group_attr(parent, "name"); 26556185db85Sdougm if (pname != NULL) { 26566185db85Sdougm authsrc = check_authorizations(pname, flags); 26576185db85Sdougm sa_free_attr_string(pname); 26586185db85Sdougm } 26596185db85Sdougm zfsold = sa_get_group_attr(parent, "zfs"); 26606185db85Sdougm zfsnew = sa_get_group_attr(group, "zfs"); 26616185db85Sdougm if ((zfsold != NULL && zfsnew == NULL) || 26626185db85Sdougm (zfsold == NULL && zfsnew != NULL)) { 26636185db85Sdougm ret = SA_NOT_ALLOWED; 26646185db85Sdougm } 26656185db85Sdougm if (zfsold != NULL) 26666185db85Sdougm sa_free_attr_string(zfsold); 26676185db85Sdougm if (zfsnew != NULL) 26686185db85Sdougm sa_free_attr_string(zfsnew); 26696185db85Sdougm } 267025a68471Sdougm 26716185db85Sdougm if (ret == SA_OK && parent != group && !dryrun) { 26726185db85Sdougm char *oldstate; 26736185db85Sdougm /* 267425a68471Sdougm * Note that the share may need to be 2675da6c28aaSamw * "unshared" if the new group is disabled and 2676da6c28aaSamw * the old was enabled or it may need to be 2677da6c28aaSamw * share to update if the new group is 2678da6c28aaSamw * enabled. We disable before the move and 2679da6c28aaSamw * will have to enable after the move in order 2680da6c28aaSamw * to cleanup entries for protocols that 2681da6c28aaSamw * aren't in the new group. 26826185db85Sdougm */ 26836185db85Sdougm oldstate = sa_get_group_attr(parent, "state"); 268425a68471Sdougm 26856185db85Sdougm /* enable_share determines what to do */ 2686da6c28aaSamw if (strcmp(oldstate, "enabled") == 0) 26876185db85Sdougm (void) sa_disable_share(share, NULL); 2688da6c28aaSamw 26896185db85Sdougm if (oldstate != NULL) 26906185db85Sdougm sa_free_attr_string(oldstate); 26916185db85Sdougm } 269225a68471Sdougm 2693da6c28aaSamw if (!dryrun && ret == SA_OK) 2694da6c28aaSamw ret = sa_move_share(group, share); 2695da6c28aaSamw 2696da6c28aaSamw /* 2697da6c28aaSamw * Reenable and update any config information. 2698da6c28aaSamw */ 2699da6c28aaSamw if (ret == SA_OK && parent != group && !dryrun) { 2700da6c28aaSamw ret = sa_update_config(handle); 2701da6c28aaSamw 2702da6c28aaSamw (void) enable_share(handle, group, share, 1); 2703da6c28aaSamw } 2704da6c28aaSamw 270525a68471Sdougm if (ret != SA_OK) 27066185db85Sdougm (void) printf(gettext("Could not move share: %s\n"), 27076185db85Sdougm sa_errorstr(ret)); 270825a68471Sdougm 27096185db85Sdougm if (dryrun && ret == SA_OK && !(authsrc & authdst) && 27106185db85Sdougm verbose) { 27116185db85Sdougm (void) printf(gettext("Command would fail: %s\n"), 27126185db85Sdougm sa_errorstr(SA_NO_PERMISSION)); 27136185db85Sdougm } 27146185db85Sdougm } 27156185db85Sdougm return (ret); 27166185db85Sdougm } 27176185db85Sdougm 27186185db85Sdougm /* 27196185db85Sdougm * sa_removeshare(flags, argc, argv) 27206185db85Sdougm * 27216185db85Sdougm * implements remove-share subcommand. 27226185db85Sdougm */ 27236185db85Sdougm 27246185db85Sdougm int 2725549ec3ffSdougm sa_removeshare(sa_handle_t handle, int flags, int argc, char *argv[]) 27266185db85Sdougm { 27276185db85Sdougm int verbose = 0; 27286185db85Sdougm int dryrun = 0; 27296185db85Sdougm int force = 0; 27306185db85Sdougm int c; 27316185db85Sdougm int ret = SA_OK; 27326185db85Sdougm sa_group_t group; 2733da6c28aaSamw sa_resource_t resource = NULL; 2734da6c28aaSamw sa_share_t share = NULL; 2735da6c28aaSamw char *rsrcname = NULL; 27366185db85Sdougm char *sharepath = NULL; 27376185db85Sdougm char dir[MAXPATHLEN]; 27386185db85Sdougm int auth; 27396185db85Sdougm 2740da6c28aaSamw while ((c = getopt(argc, argv, "?hfnr:s:v")) != EOF) { 27416185db85Sdougm switch (c) { 27426185db85Sdougm case 'n': 27436185db85Sdougm dryrun++; 27446185db85Sdougm break; 27456185db85Sdougm case 'v': 27466185db85Sdougm verbose++; 27476185db85Sdougm break; 27486185db85Sdougm case 'f': 27496185db85Sdougm force++; 27506185db85Sdougm break; 27516185db85Sdougm case 's': 27526185db85Sdougm /* 275325a68471Sdougm * Remove share path from group. Currently limit 27546185db85Sdougm * to one share per command. 27556185db85Sdougm */ 27566185db85Sdougm if (sharepath != NULL) { 275725a68471Sdougm (void) printf(gettext( 275825a68471Sdougm "Removing multiple shares not " 27596185db85Sdougm "supported\n")); 27606185db85Sdougm return (SA_SYNTAX_ERR); 27616185db85Sdougm } 27626185db85Sdougm sharepath = optarg; 27636185db85Sdougm break; 2764da6c28aaSamw case 'r': 2765da6c28aaSamw /* 2766da6c28aaSamw * Remove share from group if last resource or remove 2767da6c28aaSamw * resource from share if multiple resources. 2768da6c28aaSamw */ 2769da6c28aaSamw if (rsrcname != NULL) { 2770da6c28aaSamw (void) printf(gettext( 2771da6c28aaSamw "Removing multiple resource names not " 2772da6c28aaSamw "supported\n")); 2773da6c28aaSamw return (SA_SYNTAX_ERR); 2774da6c28aaSamw } 2775da6c28aaSamw rsrcname = optarg; 2776da6c28aaSamw break; 27776185db85Sdougm default: 27786185db85Sdougm case 'h': 27796185db85Sdougm case '?': 27806185db85Sdougm (void) printf(gettext("usage: %s\n"), 27816185db85Sdougm sa_get_usage(USAGE_REMOVE_SHARE)); 27826185db85Sdougm return (0); 27836185db85Sdougm } 27846185db85Sdougm } 27856185db85Sdougm 2786da6c28aaSamw if (optind >= argc || (rsrcname == NULL && sharepath == NULL)) { 2787da6c28aaSamw if (sharepath == NULL && rsrcname == NULL) { 27886185db85Sdougm (void) printf(gettext("usage: %s\n"), 27896185db85Sdougm sa_get_usage(USAGE_REMOVE_SHARE)); 2790da6c28aaSamw (void) printf(gettext("\t-s sharepath or -r resource" 2791da6c28aaSamw " must be specified\n")); 27926185db85Sdougm ret = SA_BAD_PATH; 27936185db85Sdougm } else { 27946185db85Sdougm ret = SA_OK; 27956185db85Sdougm } 27966185db85Sdougm } 279725a68471Sdougm if (ret != SA_OK) { 279825a68471Sdougm return (ret); 279925a68471Sdougm } 280025a68471Sdougm 28016185db85Sdougm if (optind < argc) { 28026185db85Sdougm if ((optind + 1) < argc) { 28036185db85Sdougm (void) printf(gettext("Extraneous group(s) at end of " 28046185db85Sdougm "command\n")); 28056185db85Sdougm ret = SA_SYNTAX_ERR; 28066185db85Sdougm } else { 2807549ec3ffSdougm group = sa_get_group(handle, argv[optind]); 28086185db85Sdougm if (group == NULL) { 280925a68471Sdougm (void) printf(gettext( 281025a68471Sdougm "Group \"%s\" not found\n"), argv[optind]); 28116185db85Sdougm ret = SA_NO_SUCH_GROUP; 28126185db85Sdougm } 28136185db85Sdougm } 28146185db85Sdougm } else { 28156185db85Sdougm group = NULL; 28166185db85Sdougm } 2817a99982a7Sdougm 2818da6c28aaSamw if (rsrcname != NULL) { 2819da6c28aaSamw resource = sa_find_resource(handle, rsrcname); 2820da6c28aaSamw if (resource == NULL) { 2821da6c28aaSamw ret = SA_NO_SUCH_RESOURCE; 2822da6c28aaSamw (void) printf(gettext( 2823da6c28aaSamw "Resource name not found for share: %s\n"), 2824da6c28aaSamw rsrcname); 2825da6c28aaSamw } 2826da6c28aaSamw } 2827da6c28aaSamw 2828a99982a7Sdougm /* 2829a99982a7Sdougm * Lookup the path in the internal configuration. Care 2830a99982a7Sdougm * must be taken to handle the case where the 2831a99982a7Sdougm * underlying path has been removed since we need to 2832a99982a7Sdougm * be able to deal with that as well. 2833a99982a7Sdougm */ 28346185db85Sdougm if (ret == SA_OK) { 2835da6c28aaSamw if (sharepath != NULL) { 28366185db85Sdougm if (group != NULL) 28376185db85Sdougm share = sa_get_share(group, sharepath); 28386185db85Sdougm else 2839549ec3ffSdougm share = sa_find_share(handle, sharepath); 2840da6c28aaSamw } 2841da6c28aaSamw 2842da6c28aaSamw if (resource != NULL) { 2843da6c28aaSamw sa_share_t rsrcshare; 2844da6c28aaSamw rsrcshare = sa_get_resource_parent(resource); 2845da6c28aaSamw if (share == NULL) 2846da6c28aaSamw share = rsrcshare; 2847da6c28aaSamw else if (share != rsrcshare) { 2848da6c28aaSamw ret = SA_NO_SUCH_RESOURCE; 2849da6c28aaSamw (void) printf(gettext( 2850da6c28aaSamw "Bad resource name for share: %s\n"), 2851da6c28aaSamw rsrcname); 2852da6c28aaSamw share = NULL; 2853da6c28aaSamw } 2854da6c28aaSamw } 2855da6c28aaSamw 2856a99982a7Sdougm /* 2857a99982a7Sdougm * If we didn't find the share with the provided path, 2858a99982a7Sdougm * it may be a symlink so attempt to resolve it using 2859a99982a7Sdougm * realpath and try again. Realpath will resolve any 2860a99982a7Sdougm * symlinks and place them in "dir". Note that 2861a99982a7Sdougm * sharepath is only used for the lookup the first 2862a99982a7Sdougm * time and later for error messages. dir will be used 2863a99982a7Sdougm * on the second attempt. Once a share is found, all 2864a99982a7Sdougm * operations are based off of the share variable. 2865a99982a7Sdougm */ 2866a99982a7Sdougm if (share == NULL) { 2867a99982a7Sdougm if (realpath(sharepath, dir) == NULL) { 2868a99982a7Sdougm ret = SA_BAD_PATH; 286925a68471Sdougm (void) printf(gettext( 287025a68471Sdougm "Path is not valid: %s\n"), sharepath); 2871a99982a7Sdougm } else { 2872a99982a7Sdougm if (group != NULL) 2873a99982a7Sdougm share = sa_get_share(group, dir); 2874a99982a7Sdougm else 2875549ec3ffSdougm share = sa_find_share(handle, dir); 2876a99982a7Sdougm } 2877a99982a7Sdougm } 2878a99982a7Sdougm } 2879a99982a7Sdougm 2880a99982a7Sdougm /* 2881a99982a7Sdougm * If there hasn't been an error, there was likely a 2882a99982a7Sdougm * path found. If not, give the appropriate error 2883a99982a7Sdougm * message and set the return error. If it was found, 2884a99982a7Sdougm * then disable the share and then remove it from the 2885a99982a7Sdougm * configuration. 2886a99982a7Sdougm */ 288725a68471Sdougm if (ret != SA_OK) { 288825a68471Sdougm return (ret); 288925a68471Sdougm } 28906185db85Sdougm if (share == NULL) { 28916185db85Sdougm if (group != NULL) 28926185db85Sdougm (void) printf(gettext("Share not found in group %s:" 289325a68471Sdougm " %s\n"), argv[optind], sharepath); 28946185db85Sdougm else 28956185db85Sdougm (void) printf(gettext("Share not found: %s\n"), 28966185db85Sdougm sharepath); 28976185db85Sdougm ret = SA_NO_SUCH_PATH; 28986185db85Sdougm } else { 28996185db85Sdougm if (group == NULL) 29006185db85Sdougm group = sa_get_parent_group(share); 29016185db85Sdougm if (!dryrun) { 29026185db85Sdougm if (ret == SA_OK) { 2903da6c28aaSamw if (resource != NULL) 2904da6c28aaSamw ret = sa_disable_resource(resource, 2905da6c28aaSamw NULL); 2906da6c28aaSamw else 29076185db85Sdougm ret = sa_disable_share(share, NULL); 29086185db85Sdougm /* 290925a68471Sdougm * We don't care if it fails since it 2910a99982a7Sdougm * could be disabled already. Some 2911a99982a7Sdougm * unexpected errors could occur that 2912a99982a7Sdougm * prevent removal, so also check for 2913a99982a7Sdougm * force being set. 29146185db85Sdougm */ 2915da6c28aaSamw if ((ret == SA_OK || ret == SA_NO_SUCH_PATH || 2916a99982a7Sdougm ret == SA_NOT_SUPPORTED || 2917da6c28aaSamw ret == SA_SYSTEM_ERR || force) && 2918da6c28aaSamw resource == NULL) 29196185db85Sdougm ret = sa_remove_share(share); 2920da6c28aaSamw 2921da6c28aaSamw if ((ret == SA_OK || ret == SA_NO_SUCH_PATH || 2922da6c28aaSamw ret == SA_NOT_SUPPORTED || 2923da6c28aaSamw ret == SA_SYSTEM_ERR || force) && 2924da6c28aaSamw resource != NULL) { 2925da6c28aaSamw ret = sa_remove_resource(resource); 2926da6c28aaSamw if (ret == SA_OK) { 2927da6c28aaSamw /* 2928da6c28aaSamw * If this was the 2929da6c28aaSamw * last one, remove 2930da6c28aaSamw * the share as well. 2931da6c28aaSamw */ 2932da6c28aaSamw resource = 2933da6c28aaSamw sa_get_share_resource( 2934da6c28aaSamw share, NULL); 2935da6c28aaSamw if (resource == NULL) 2936da6c28aaSamw ret = sa_remove_share( 2937da6c28aaSamw share); 2938da6c28aaSamw } 29396185db85Sdougm } 29406185db85Sdougm if (ret == SA_OK) 2941549ec3ffSdougm ret = sa_update_config(handle); 29426185db85Sdougm } 294325a68471Sdougm if (ret != SA_OK) 2944da6c28aaSamw (void) printf(gettext("Could not remove share:" 2945da6c28aaSamw " %s\n"), sa_errorstr(ret)); 29466185db85Sdougm } else if (ret == SA_OK) { 29476185db85Sdougm char *pname; 29486185db85Sdougm pname = sa_get_group_attr(group, "name"); 29496185db85Sdougm if (pname != NULL) { 29506185db85Sdougm auth = check_authorizations(pname, flags); 29516185db85Sdougm sa_free_attr_string(pname); 29526185db85Sdougm } 29536185db85Sdougm if (!auth && verbose) { 295425a68471Sdougm (void) printf(gettext( 295525a68471Sdougm "Command would fail: %s\n"), 29566185db85Sdougm sa_errorstr(SA_NO_PERMISSION)); 29576185db85Sdougm } 29586185db85Sdougm } 29596185db85Sdougm } 29606185db85Sdougm return (ret); 29616185db85Sdougm } 29626185db85Sdougm 29636185db85Sdougm /* 29646185db85Sdougm * sa_set_share(flags, argc, argv) 29656185db85Sdougm * 29666185db85Sdougm * implements set-share subcommand. 29676185db85Sdougm */ 29686185db85Sdougm 29696185db85Sdougm int 2970549ec3ffSdougm sa_set_share(sa_handle_t handle, int flags, int argc, char *argv[]) 29716185db85Sdougm { 29726185db85Sdougm int dryrun = 0; 29736185db85Sdougm int c; 29746185db85Sdougm int ret = SA_OK; 29756185db85Sdougm sa_group_t group, sharegroup; 2976*dc20a302Sas200622 sa_share_t share = NULL; 2977da6c28aaSamw sa_resource_t resource = NULL; 29786185db85Sdougm char *sharepath = NULL; 29796185db85Sdougm char *description = NULL; 2980da6c28aaSamw char *desc; 2981da6c28aaSamw char *rsrcname = NULL; 2982da6c28aaSamw char *rsrc = NULL; 2983da6c28aaSamw char *newname = NULL; 2984da6c28aaSamw char *newrsrc; 2985da6c28aaSamw char *groupname = NULL; 29866185db85Sdougm int auth; 29876185db85Sdougm int verbose = 0; 29886185db85Sdougm 29896185db85Sdougm while ((c = getopt(argc, argv, "?hnd:r:s:")) != EOF) { 29906185db85Sdougm switch (c) { 29916185db85Sdougm case 'n': 29926185db85Sdougm dryrun++; 29936185db85Sdougm break; 29946185db85Sdougm case 'd': 29956185db85Sdougm description = optarg; 29966185db85Sdougm break; 29976185db85Sdougm case 'v': 29986185db85Sdougm verbose++; 29996185db85Sdougm break; 3000da6c28aaSamw case 'r': 3001da6c28aaSamw /* 3002da6c28aaSamw * Update share by resource name 3003da6c28aaSamw */ 3004da6c28aaSamw if (rsrcname != NULL) { 3005da6c28aaSamw (void) printf(gettext( 3006da6c28aaSamw "Updating multiple resource names not " 3007da6c28aaSamw "supported\n")); 3008da6c28aaSamw return (SA_SYNTAX_ERR); 3009da6c28aaSamw } 3010da6c28aaSamw rsrcname = optarg; 3011da6c28aaSamw break; 30126185db85Sdougm case 's': 30136185db85Sdougm /* 301425a68471Sdougm * Save share path into group. Currently limit 30156185db85Sdougm * to one share per command. 30166185db85Sdougm */ 30176185db85Sdougm if (sharepath != NULL) { 301825a68471Sdougm (void) printf(gettext( 301925a68471Sdougm "Updating multiple shares not " 30206185db85Sdougm "supported\n")); 3021da6c28aaSamw return (SA_SYNTAX_ERR); 30226185db85Sdougm } 30236185db85Sdougm sharepath = optarg; 30246185db85Sdougm break; 30256185db85Sdougm default: 30266185db85Sdougm case 'h': 30276185db85Sdougm case '?': 30286185db85Sdougm (void) printf(gettext("usage: %s\n"), 30296185db85Sdougm sa_get_usage(USAGE_SET_SHARE)); 30306185db85Sdougm return (SA_OK); 30316185db85Sdougm } 30326185db85Sdougm } 303325a68471Sdougm 3034da6c28aaSamw if (optind >= argc && sharepath == NULL && rsrcname == NULL) { 30356185db85Sdougm if (sharepath == NULL) { 30366185db85Sdougm (void) printf(gettext("usage: %s\n"), 30376185db85Sdougm sa_get_usage(USAGE_SET_SHARE)); 30386185db85Sdougm (void) printf(gettext("\tgroup must be specified\n")); 30396185db85Sdougm ret = SA_BAD_PATH; 30406185db85Sdougm } else { 30416185db85Sdougm ret = SA_OK; 30426185db85Sdougm } 30436185db85Sdougm } 30446185db85Sdougm if ((optind + 1) < argc) { 30456185db85Sdougm (void) printf(gettext("usage: %s\n"), 30466185db85Sdougm sa_get_usage(USAGE_SET_SHARE)); 30476185db85Sdougm (void) printf(gettext("\tExtraneous group(s) at end\n")); 30486185db85Sdougm ret = SA_SYNTAX_ERR; 30496185db85Sdougm } 305025a68471Sdougm 3051da6c28aaSamw /* 3052da6c28aaSamw * Must have at least one of sharepath and rsrcrname. 3053da6c28aaSamw * It is a syntax error to be missing both. 3054da6c28aaSamw */ 3055da6c28aaSamw if (sharepath == NULL && rsrcname == NULL) { 3056da6c28aaSamw (void) printf(gettext("usage: %s\n"), 3057da6c28aaSamw sa_get_usage(USAGE_SET_SHARE)); 3058da6c28aaSamw ret = SA_SYNTAX_ERR; 3059da6c28aaSamw } 3060da6c28aaSamw 306125a68471Sdougm if (ret != SA_OK) 306225a68471Sdougm return (ret); 306325a68471Sdougm 30646185db85Sdougm if (optind < argc) { 30656185db85Sdougm groupname = argv[optind]; 3066549ec3ffSdougm group = sa_get_group(handle, groupname); 30676185db85Sdougm } else { 30686185db85Sdougm group = NULL; 30696185db85Sdougm groupname = NULL; 30706185db85Sdougm } 3071da6c28aaSamw if (rsrcname != NULL) { 3072da6c28aaSamw /* 3073da6c28aaSamw * If rsrcname exists, split rename syntax and then 3074da6c28aaSamw * convert to utf 8 if no errors. 3075da6c28aaSamw */ 3076da6c28aaSamw newname = strchr(rsrcname, '='); 3077da6c28aaSamw if (newname != NULL) { 3078da6c28aaSamw *newname++ = '\0'; 307925a68471Sdougm } 3080da6c28aaSamw if (!validresource(rsrcname)) { 3081da6c28aaSamw ret = SA_INVALID_NAME; 3082da6c28aaSamw (void) printf(gettext("Invalid resource name: " 3083da6c28aaSamw "\"%s\"\n"), rsrcname); 3084da6c28aaSamw } else { 3085da6c28aaSamw rsrc = conv_to_utf8(rsrcname); 3086da6c28aaSamw } 3087da6c28aaSamw if (newname != NULL) { 3088da6c28aaSamw if (!validresource(newname)) { 3089da6c28aaSamw ret = SA_INVALID_NAME; 3090da6c28aaSamw (void) printf(gettext("Invalid resource name: " 3091da6c28aaSamw "%s\n"), newname); 3092da6c28aaSamw } else { 3093da6c28aaSamw newrsrc = conv_to_utf8(newname); 3094da6c28aaSamw } 3095da6c28aaSamw } 3096da6c28aaSamw } 3097da6c28aaSamw 3098da6c28aaSamw if (ret != SA_OK) { 3099da6c28aaSamw if (rsrcname != NULL && rsrcname != rsrc) 3100da6c28aaSamw sa_free_attr_string(rsrc); 3101da6c28aaSamw if (newname != NULL && newname != newrsrc) 3102da6c28aaSamw sa_free_attr_string(newrsrc); 3103da6c28aaSamw return (ret); 3104da6c28aaSamw } 3105da6c28aaSamw 3106da6c28aaSamw if (sharepath != NULL) { 3107da6c28aaSamw share = sa_find_share(handle, sharepath); 3108da6c28aaSamw } else if (rsrcname != NULL) { 3109da6c28aaSamw resource = sa_find_resource(handle, rsrc); 3110*dc20a302Sas200622 if (resource != NULL) 3111da6c28aaSamw share = sa_get_resource_parent(resource); 3112*dc20a302Sas200622 else 3113*dc20a302Sas200622 ret = SA_NO_SUCH_RESOURCE; 3114da6c28aaSamw } 3115da6c28aaSamw if (share != NULL) { 31166185db85Sdougm sharegroup = sa_get_parent_group(share); 31176185db85Sdougm if (group != NULL && group != sharegroup) { 31186185db85Sdougm (void) printf(gettext("Group \"%s\" does not contain " 3119da6c28aaSamw "share %s\n"), 3120da6c28aaSamw argv[optind], sharepath); 31216185db85Sdougm ret = SA_BAD_PATH; 31226185db85Sdougm } else { 31236185db85Sdougm int delgroupname = 0; 31246185db85Sdougm if (groupname == NULL) { 3125da6c28aaSamw groupname = sa_get_group_attr(sharegroup, 3126da6c28aaSamw "name"); 31276185db85Sdougm delgroupname = 1; 31286185db85Sdougm } 31296185db85Sdougm if (groupname != NULL) { 31306185db85Sdougm auth = check_authorizations(groupname, flags); 31316185db85Sdougm if (delgroupname) { 31326185db85Sdougm sa_free_attr_string(groupname); 31336185db85Sdougm groupname = NULL; 31346185db85Sdougm } 31356185db85Sdougm } else { 31366185db85Sdougm ret = SA_NO_MEMORY; 31376185db85Sdougm } 3138da6c28aaSamw if (rsrcname != NULL) { 3139da6c28aaSamw resource = sa_find_resource(handle, rsrc); 31406185db85Sdougm if (!dryrun) { 3141da6c28aaSamw if (newname != NULL && 3142da6c28aaSamw resource != NULL) 3143da6c28aaSamw ret = sa_rename_resource( 3144da6c28aaSamw resource, newrsrc); 3145da6c28aaSamw else if (newname != NULL) 3146da6c28aaSamw ret = SA_NO_SUCH_RESOURCE; 3147da6c28aaSamw if (newname != NULL && 3148da6c28aaSamw newname != newrsrc) 3149da6c28aaSamw sa_free_attr_string(newrsrc); 31506185db85Sdougm } 3151da6c28aaSamw if (rsrc != rsrcname) 3152da6c28aaSamw sa_free_attr_string(rsrc); 31536185db85Sdougm } 315425a68471Sdougm 3155da6c28aaSamw /* 3156da6c28aaSamw * If the user has set a description, it will be 3157da6c28aaSamw * on the resource if -r was used otherwise it 3158da6c28aaSamw * must be on the share. 3159da6c28aaSamw */ 3160da6c28aaSamw if (ret == SA_OK && description != NULL) { 3161da6c28aaSamw desc = conv_to_utf8(description); 3162da6c28aaSamw if (resource != NULL) 3163da6c28aaSamw ret = sa_set_resource_description( 3164da6c28aaSamw resource, desc); 3165da6c28aaSamw else 3166da6c28aaSamw ret = sa_set_share_description(share, 3167da6c28aaSamw desc); 3168da6c28aaSamw if (desc != description) 3169da6c28aaSamw sa_free_share_description(desc); 3170da6c28aaSamw } 3171da6c28aaSamw } 3172da6c28aaSamw if (!dryrun && ret == SA_OK) { 3173da6c28aaSamw if (resource != NULL) 3174da6c28aaSamw (void) sa_enable_resource(resource, NULL); 3175da6c28aaSamw ret = sa_update_config(handle); 3176da6c28aaSamw } 31776185db85Sdougm switch (ret) { 31786185db85Sdougm case SA_DUPLICATE_NAME: 3179da6c28aaSamw (void) printf(gettext("Resource name in use: %s\n"), 3180da6c28aaSamw rsrcname); 31816185db85Sdougm break; 31826185db85Sdougm default: 3183da6c28aaSamw (void) printf(gettext("Could not set: %s\n"), 31846185db85Sdougm sa_errorstr(ret)); 31856185db85Sdougm break; 31866185db85Sdougm case SA_OK: 3187da6c28aaSamw if (dryrun && !auth && verbose) { 3188da6c28aaSamw (void) printf(gettext( 3189da6c28aaSamw "Command would fail: %s\n"), 31906185db85Sdougm sa_errorstr(SA_NO_PERMISSION)); 3191da6c28aaSamw } 31926185db85Sdougm break; 31936185db85Sdougm } 3194da6c28aaSamw } else { 3195*dc20a302Sas200622 switch (ret) { 3196*dc20a302Sas200622 case SA_NO_SUCH_RESOURCE: 3197*dc20a302Sas200622 (void) printf(gettext("Resource \"%s\" not found\n"), 3198*dc20a302Sas200622 rsrcname); 3199*dc20a302Sas200622 break; 3200*dc20a302Sas200622 default: 3201*dc20a302Sas200622 if (sharepath != NULL) { 3202*dc20a302Sas200622 (void) printf( 3203*dc20a302Sas200622 gettext("Share path \"%s\" not found\n"), 3204da6c28aaSamw sharepath); 3205da6c28aaSamw ret = SA_NO_SUCH_PATH; 3206*dc20a302Sas200622 } else { 3207*dc20a302Sas200622 (void) printf(gettext("Set failed: %s\n"), 3208*dc20a302Sas200622 sa_errorstr(ret)); 3209*dc20a302Sas200622 } 3210*dc20a302Sas200622 } 3211da6c28aaSamw } 321225a68471Sdougm 32136185db85Sdougm return (ret); 32146185db85Sdougm } 32156185db85Sdougm 32166185db85Sdougm /* 32176185db85Sdougm * add_security(group, sectype, optlist, proto, *err) 32186185db85Sdougm * 32196185db85Sdougm * Helper function to add a security option (named optionset) to the 32206185db85Sdougm * group. 32216185db85Sdougm */ 32226185db85Sdougm 32236185db85Sdougm static int 32246185db85Sdougm add_security(sa_group_t group, char *sectype, 32256185db85Sdougm struct options *optlist, char *proto, int *err) 32266185db85Sdougm { 32276185db85Sdougm sa_security_t security; 32286185db85Sdougm int ret = SA_OK; 32296185db85Sdougm int result = 0; 32306185db85Sdougm 32316185db85Sdougm sectype = sa_proto_space_alias(proto, sectype); 32326185db85Sdougm security = sa_get_security(group, sectype, proto); 323325a68471Sdougm if (security == NULL) 32346185db85Sdougm security = sa_create_security(group, sectype, proto); 323525a68471Sdougm 32366185db85Sdougm if (sectype != NULL) 32376185db85Sdougm sa_free_attr_string(sectype); 323825a68471Sdougm 323925a68471Sdougm if (security == NULL) 324025a68471Sdougm return (ret); 324125a68471Sdougm 32426185db85Sdougm while (optlist != NULL) { 32436185db85Sdougm sa_property_t prop; 32446185db85Sdougm prop = sa_get_property(security, optlist->optname); 32456185db85Sdougm if (prop == NULL) { 32466185db85Sdougm /* 324725a68471Sdougm * Add the property, but only if it is 32486185db85Sdougm * a non-NULL or non-zero length value 32496185db85Sdougm */ 32506185db85Sdougm if (optlist->optvalue != NULL) { 32516185db85Sdougm prop = sa_create_property(optlist->optname, 32526185db85Sdougm optlist->optvalue); 32536185db85Sdougm if (prop != NULL) { 3254da6c28aaSamw ret = sa_valid_property(security, 3255da6c28aaSamw proto, prop); 32566185db85Sdougm if (ret != SA_OK) { 32576185db85Sdougm (void) sa_remove_property(prop); 325825a68471Sdougm (void) printf(gettext( 325925a68471Sdougm "Could not add " 32606185db85Sdougm "property %s: %s\n"), 32616185db85Sdougm optlist->optname, 32626185db85Sdougm sa_errorstr(ret)); 32636185db85Sdougm } 32646185db85Sdougm if (ret == SA_OK) { 326525a68471Sdougm ret = sa_add_property(security, 326625a68471Sdougm prop); 32676185db85Sdougm if (ret != SA_OK) { 326825a68471Sdougm (void) printf(gettext( 326925a68471Sdougm "Could not add " 327025a68471Sdougm "property (%s=%s):" 327125a68471Sdougm " %s\n"), 32726185db85Sdougm optlist->optname, 32736185db85Sdougm optlist->optvalue, 32746185db85Sdougm sa_errorstr(ret)); 32756185db85Sdougm } else { 32766185db85Sdougm result = 1; 32776185db85Sdougm } 32786185db85Sdougm } 32796185db85Sdougm } 32806185db85Sdougm } 32816185db85Sdougm } else { 32826185db85Sdougm ret = sa_update_property(prop, optlist->optvalue); 32836185db85Sdougm result = 1; /* should check if really changed */ 32846185db85Sdougm } 32856185db85Sdougm optlist = optlist->next; 32866185db85Sdougm } 32876185db85Sdougm /* 328825a68471Sdougm * When done, properties may have all been removed but 32896185db85Sdougm * we need to keep the security type itself until 32906185db85Sdougm * explicitly removed. 32916185db85Sdougm */ 32926185db85Sdougm if (result) 32936185db85Sdougm ret = sa_commit_properties(security, 0); 32946185db85Sdougm *err = ret; 32956185db85Sdougm return (result); 32966185db85Sdougm } 32976185db85Sdougm 32986185db85Sdougm /* 3299f8825440Sdougm * zfscheck(group, share) 3300f8825440Sdougm * 3301f8825440Sdougm * For the special case where a share was provided, make sure it is a 3302f8825440Sdougm * compatible path for a ZFS property change. The only path 3303f8825440Sdougm * acceptable is the path that defines the zfs sub-group (dataset with 3304f8825440Sdougm * the sharenfs property set) and not one of the paths that inherited 3305f8825440Sdougm * the NFS properties. Returns SA_OK if it is usable and 3306f8825440Sdougm * SA_NOT_ALLOWED if it isn't. 3307f8825440Sdougm * 3308f8825440Sdougm * If group is not a ZFS group/subgroup, we assume OK since the check 3309f8825440Sdougm * on return will catch errors for those cases. What we are looking 3310f8825440Sdougm * for here is that the group is ZFS and the share is not the defining 3311f8825440Sdougm * share. All else is SA_OK. 3312f8825440Sdougm */ 3313f8825440Sdougm 3314f8825440Sdougm static int 3315f8825440Sdougm zfscheck(sa_group_t group, sa_share_t share) 3316f8825440Sdougm { 3317f8825440Sdougm int ret = SA_OK; 3318f8825440Sdougm char *attr; 3319f8825440Sdougm 3320f8825440Sdougm if (sa_group_is_zfs(group)) { 3321f8825440Sdougm /* 3322f8825440Sdougm * The group is a ZFS group. Does the share represent 3323f8825440Sdougm * the dataset that defined the group? It is only OK 3324f8825440Sdougm * if the attribute "subgroup" exists on the share and 3325f8825440Sdougm * has a value of "true". 3326f8825440Sdougm */ 3327f8825440Sdougm 3328f8825440Sdougm ret = SA_NOT_ALLOWED; 3329f8825440Sdougm attr = sa_get_share_attr(share, "subgroup"); 3330f8825440Sdougm if (attr != NULL) { 3331f8825440Sdougm if (strcmp(attr, "true") == 0) 3332f8825440Sdougm ret = SA_OK; 3333f8825440Sdougm sa_free_attr_string(attr); 3334f8825440Sdougm } 3335f8825440Sdougm } 3336f8825440Sdougm return (ret); 3337f8825440Sdougm } 3338f8825440Sdougm 3339f8825440Sdougm /* 3340da6c28aaSamw * basic_set(groupname, optlist, protocol, sharepath, rsrcname, dryrun) 33416185db85Sdougm * 33426185db85Sdougm * This function implements "set" when a name space (-S) is not 33436185db85Sdougm * specified. It is a basic set. Options and other CLI parsing has 33446185db85Sdougm * already been done. 3345da6c28aaSamw * 3346da6c28aaSamw * "rsrcname" is a "resource name". If it is non-NULL, it must match 3347da6c28aaSamw * the sharepath if present or group if present, otherwise it is used 3348da6c28aaSamw * to set options. 3349da6c28aaSamw * 3350da6c28aaSamw * Resource names may take options if the protocol supports it. If the 3351da6c28aaSamw * protocol doesn't support resource level options, rsrcname is just 3352da6c28aaSamw * an alias for the share. 33536185db85Sdougm */ 33546185db85Sdougm 33556185db85Sdougm static int 3356549ec3ffSdougm basic_set(sa_handle_t handle, char *groupname, struct options *optlist, 3357da6c28aaSamw char *protocol, char *sharepath, char *rsrcname, int dryrun) 33586185db85Sdougm { 33596185db85Sdougm sa_group_t group; 33606185db85Sdougm int ret = SA_OK; 33616185db85Sdougm int change = 0; 33626185db85Sdougm struct list *worklist = NULL; 33636185db85Sdougm 3364549ec3ffSdougm group = sa_get_group(handle, groupname); 33656185db85Sdougm if (group != NULL) { 33666185db85Sdougm sa_share_t share = NULL; 3367da6c28aaSamw sa_resource_t resource = NULL; 3368da6c28aaSamw 3369da6c28aaSamw /* 3370da6c28aaSamw * If there is a sharepath, make sure it belongs to 3371da6c28aaSamw * the group. 3372da6c28aaSamw */ 33736185db85Sdougm if (sharepath != NULL) { 33746185db85Sdougm share = sa_get_share(group, sharepath); 33756185db85Sdougm if (share == NULL) { 337625a68471Sdougm (void) printf(gettext( 337725a68471Sdougm "Share does not exist in group %s\n"), 33786185db85Sdougm groupname, sharepath); 33796185db85Sdougm ret = SA_NO_SUCH_PATH; 3380f8825440Sdougm } else { 3381f8825440Sdougm /* if ZFS and OK, then only group */ 3382f8825440Sdougm ret = zfscheck(group, share); 3383f8825440Sdougm if (ret == SA_OK && 3384f8825440Sdougm sa_group_is_zfs(group)) 3385f8825440Sdougm share = NULL; 3386f8825440Sdougm if (ret == SA_NOT_ALLOWED) 3387f8825440Sdougm (void) printf(gettext( 3388f8825440Sdougm "Properties on ZFS group shares " 3389f8825440Sdougm "not supported: %s\n"), sharepath); 33906185db85Sdougm } 33916185db85Sdougm } 3392da6c28aaSamw 3393da6c28aaSamw /* 3394da6c28aaSamw * If a resource name exists, make sure it belongs to 3395da6c28aaSamw * the share if present else it belongs to the 3396da6c28aaSamw * group. Also check the protocol to see if it 3397da6c28aaSamw * supports resource level properties or not. If not, 3398da6c28aaSamw * use share only. 3399da6c28aaSamw */ 3400da6c28aaSamw if (rsrcname != NULL) { 3401da6c28aaSamw if (share != NULL) { 3402da6c28aaSamw resource = sa_get_share_resource(share, 3403da6c28aaSamw rsrcname); 3404da6c28aaSamw if (resource == NULL) 3405da6c28aaSamw ret = SA_NO_SUCH_RESOURCE; 3406da6c28aaSamw } else { 3407da6c28aaSamw resource = sa_get_resource(group, rsrcname); 3408da6c28aaSamw if (resource != NULL) 3409da6c28aaSamw share = sa_get_resource_parent( 3410da6c28aaSamw resource); 3411da6c28aaSamw else 3412da6c28aaSamw ret = SA_NO_SUCH_RESOURCE; 3413da6c28aaSamw } 3414da6c28aaSamw if (ret == SA_OK && resource != NULL) { 3415da6c28aaSamw uint64_t features; 3416da6c28aaSamw /* 3417da6c28aaSamw * Check to see if the resource can take 3418da6c28aaSamw * properties. If so, stick the resource into 3419da6c28aaSamw * "share" so it will all just work. 3420da6c28aaSamw */ 3421da6c28aaSamw features = sa_proto_get_featureset(protocol); 3422da6c28aaSamw if (features & SA_FEATURE_RESOURCE) 3423da6c28aaSamw share = (sa_share_t)resource; 3424da6c28aaSamw } 3425da6c28aaSamw } 3426da6c28aaSamw 34276185db85Sdougm if (ret == SA_OK) { 34286185db85Sdougm /* group must exist */ 34296185db85Sdougm ret = valid_options(optlist, protocol, 34306185db85Sdougm share == NULL ? group : share, NULL); 34316185db85Sdougm if (ret == SA_OK && !dryrun) { 34326185db85Sdougm if (share != NULL) 343325a68471Sdougm change |= add_optionset(share, optlist, 343425a68471Sdougm protocol, &ret); 34356185db85Sdougm else 343625a68471Sdougm change |= add_optionset(group, optlist, 343725a68471Sdougm protocol, &ret); 343825a68471Sdougm if (ret == SA_OK && change) 343925a68471Sdougm worklist = add_list(worklist, group, 3440da6c28aaSamw share, protocol); 34416185db85Sdougm } 34426185db85Sdougm } 34436185db85Sdougm free_opt(optlist); 34446185db85Sdougm } else { 34456185db85Sdougm (void) printf(gettext("Group \"%s\" not found\n"), groupname); 34466185db85Sdougm ret = SA_NO_SUCH_GROUP; 34476185db85Sdougm } 34486185db85Sdougm /* 34496185db85Sdougm * we have a group and potentially legal additions 34506185db85Sdougm */ 34516185db85Sdougm 345225a68471Sdougm /* 345325a68471Sdougm * Commit to configuration if not a dryrunp and properties 345425a68471Sdougm * have changed. 345525a68471Sdougm */ 345625a68471Sdougm if (!dryrun && ret == SA_OK && change && worklist != NULL) 34576185db85Sdougm /* properties changed, so update all shares */ 3458da6c28aaSamw (void) enable_all_groups(handle, worklist, 0, 0, protocol, 3459da6c28aaSamw B_TRUE); 346025a68471Sdougm 34616185db85Sdougm if (worklist != NULL) 34626185db85Sdougm free_list(worklist); 34636185db85Sdougm return (ret); 34646185db85Sdougm } 34656185db85Sdougm 34666185db85Sdougm /* 34676185db85Sdougm * space_set(groupname, optlist, protocol, sharepath, dryrun) 34686185db85Sdougm * 34696185db85Sdougm * This function implements "set" when a name space (-S) is 34706185db85Sdougm * specified. It is a namespace set. Options and other CLI parsing has 34716185db85Sdougm * already been done. 34726185db85Sdougm */ 34736185db85Sdougm 34746185db85Sdougm static int 3475549ec3ffSdougm space_set(sa_handle_t handle, char *groupname, struct options *optlist, 3476549ec3ffSdougm char *protocol, char *sharepath, int dryrun, char *sectype) 34776185db85Sdougm { 34786185db85Sdougm sa_group_t group; 34796185db85Sdougm int ret = SA_OK; 34806185db85Sdougm int change = 0; 34816185db85Sdougm struct list *worklist = NULL; 34826185db85Sdougm 34836185db85Sdougm /* 34846185db85Sdougm * make sure protcol and sectype are valid 34856185db85Sdougm */ 34866185db85Sdougm 34876185db85Sdougm if (sa_proto_valid_space(protocol, sectype) == 0) { 34886185db85Sdougm (void) printf(gettext("Option space \"%s\" not valid " 348925a68471Sdougm "for protocol.\n"), sectype); 34906185db85Sdougm return (SA_INVALID_SECURITY); 34916185db85Sdougm } 34926185db85Sdougm 3493549ec3ffSdougm group = sa_get_group(handle, groupname); 34946185db85Sdougm if (group != NULL) { 34956185db85Sdougm sa_share_t share = NULL; 34966185db85Sdougm if (sharepath != NULL) { 34976185db85Sdougm share = sa_get_share(group, sharepath); 34986185db85Sdougm if (share == NULL) { 349925a68471Sdougm (void) printf(gettext( 350025a68471Sdougm "Share does not exist in group %s\n"), 35016185db85Sdougm groupname, sharepath); 35026185db85Sdougm ret = SA_NO_SUCH_PATH; 3503f8825440Sdougm } else { 3504f8825440Sdougm /* if ZFS and OK, then only group */ 3505f8825440Sdougm ret = zfscheck(group, share); 3506f8825440Sdougm if (ret == SA_OK && 3507f8825440Sdougm sa_group_is_zfs(group)) 3508f8825440Sdougm share = NULL; 3509f8825440Sdougm if (ret == SA_NOT_ALLOWED) 3510f8825440Sdougm (void) printf(gettext( 3511f8825440Sdougm "Properties on ZFS group shares " 3512f8825440Sdougm "not supported: %s\n"), sharepath); 35136185db85Sdougm } 35146185db85Sdougm } 35156185db85Sdougm if (ret == SA_OK) { 35166185db85Sdougm /* group must exist */ 35176185db85Sdougm ret = valid_options(optlist, protocol, 35186185db85Sdougm share == NULL ? group : share, sectype); 35196185db85Sdougm if (ret == SA_OK && !dryrun) { 35206185db85Sdougm if (share != NULL) 352125a68471Sdougm change = add_security(share, sectype, 352225a68471Sdougm optlist, protocol, &ret); 35236185db85Sdougm else 352425a68471Sdougm change = add_security(group, sectype, 352525a68471Sdougm optlist, protocol, &ret); 35266185db85Sdougm if (ret != SA_OK) 352725a68471Sdougm (void) printf(gettext( 352825a68471Sdougm "Could not set property: %s\n"), 35296185db85Sdougm sa_errorstr(ret)); 35306185db85Sdougm } 35316185db85Sdougm if (ret == SA_OK && change) 3532da6c28aaSamw worklist = add_list(worklist, group, share, 3533da6c28aaSamw protocol); 35346185db85Sdougm } 35356185db85Sdougm free_opt(optlist); 35366185db85Sdougm } else { 35376185db85Sdougm (void) printf(gettext("Group \"%s\" not found\n"), groupname); 35386185db85Sdougm ret = SA_NO_SUCH_GROUP; 35396185db85Sdougm } 3540da6c28aaSamw 35416185db85Sdougm /* 3542da6c28aaSamw * We have a group and potentially legal additions. 35436185db85Sdougm */ 35446185db85Sdougm 354525a68471Sdougm /* Commit to configuration if not a dryrun */ 35466185db85Sdougm if (!dryrun && ret == 0) { 35476185db85Sdougm if (change && worklist != NULL) { 35486185db85Sdougm /* properties changed, so update all shares */ 354925a68471Sdougm (void) enable_all_groups(handle, worklist, 0, 0, 3550da6c28aaSamw protocol, B_TRUE); 35516185db85Sdougm } 3552549ec3ffSdougm ret = sa_update_config(handle); 35536185db85Sdougm } 35546185db85Sdougm if (worklist != NULL) 35556185db85Sdougm free_list(worklist); 35566185db85Sdougm return (ret); 35576185db85Sdougm } 35586185db85Sdougm 35596185db85Sdougm /* 35606185db85Sdougm * sa_set(flags, argc, argv) 35616185db85Sdougm * 35626185db85Sdougm * Implements the set subcommand. It keys off of -S to determine which 35636185db85Sdougm * set of operations to actually do. 35646185db85Sdougm */ 35656185db85Sdougm 35666185db85Sdougm int 3567549ec3ffSdougm sa_set(sa_handle_t handle, int flags, int argc, char *argv[]) 35686185db85Sdougm { 35696185db85Sdougm char *groupname; 35706185db85Sdougm int verbose = 0; 35716185db85Sdougm int dryrun = 0; 35726185db85Sdougm int c; 35736185db85Sdougm char *protocol = NULL; 35746185db85Sdougm int ret = SA_OK; 35756185db85Sdougm struct options *optlist = NULL; 3576da6c28aaSamw char *rsrcname = NULL; 35776185db85Sdougm char *sharepath = NULL; 35786185db85Sdougm char *optset = NULL; 35796185db85Sdougm int auth; 35806185db85Sdougm 3581da6c28aaSamw while ((c = getopt(argc, argv, "?hvnP:p:r:s:S:")) != EOF) { 35826185db85Sdougm switch (c) { 35836185db85Sdougm case 'v': 35846185db85Sdougm verbose++; 35856185db85Sdougm break; 35866185db85Sdougm case 'n': 35876185db85Sdougm dryrun++; 35886185db85Sdougm break; 35896185db85Sdougm case 'P': 3590da6c28aaSamw if (protocol != NULL) { 3591da6c28aaSamw (void) printf(gettext( 3592da6c28aaSamw "Specifying multiple protocols " 3593da6c28aaSamw "not supported: %s\n"), protocol); 3594da6c28aaSamw return (SA_SYNTAX_ERR); 3595da6c28aaSamw } 35966185db85Sdougm protocol = optarg; 35976185db85Sdougm if (!sa_valid_protocol(protocol)) { 359825a68471Sdougm (void) printf(gettext( 359925a68471Sdougm "Invalid protocol specified: %s\n"), 36006185db85Sdougm protocol); 36016185db85Sdougm return (SA_INVALID_PROTOCOL); 36026185db85Sdougm } 36036185db85Sdougm break; 36046185db85Sdougm case 'p': 36056185db85Sdougm ret = add_opt(&optlist, optarg, 0); 36066185db85Sdougm switch (ret) { 36076185db85Sdougm case OPT_ADD_SYNTAX: 360825a68471Sdougm (void) printf(gettext("Property syntax error:" 360925a68471Sdougm " %s\n"), optarg); 36106185db85Sdougm return (SA_SYNTAX_ERR); 36116185db85Sdougm case OPT_ADD_MEMORY: 361225a68471Sdougm (void) printf(gettext("No memory to set " 361325a68471Sdougm "property: %s\n"), optarg); 36146185db85Sdougm return (SA_NO_MEMORY); 36156185db85Sdougm default: 36166185db85Sdougm break; 36176185db85Sdougm } 36186185db85Sdougm break; 3619da6c28aaSamw case 'r': 3620da6c28aaSamw if (rsrcname != NULL) { 3621da6c28aaSamw (void) printf(gettext( 3622da6c28aaSamw "Setting multiple resource names not" 3623da6c28aaSamw " supported\n")); 3624da6c28aaSamw return (SA_SYNTAX_ERR); 3625da6c28aaSamw } 3626da6c28aaSamw rsrcname = optarg; 3627da6c28aaSamw break; 36286185db85Sdougm case 's': 3629da6c28aaSamw if (sharepath != NULL) { 3630da6c28aaSamw (void) printf(gettext( 3631da6c28aaSamw "Setting multiple shares not supported\n")); 3632da6c28aaSamw return (SA_SYNTAX_ERR); 3633da6c28aaSamw } 36346185db85Sdougm sharepath = optarg; 36356185db85Sdougm break; 36366185db85Sdougm case 'S': 3637da6c28aaSamw if (optset != NULL) { 3638da6c28aaSamw (void) printf(gettext( 3639da6c28aaSamw "Specifying multiple property " 3640da6c28aaSamw "spaces not supported: %s\n"), optset); 3641da6c28aaSamw return (SA_SYNTAX_ERR); 3642da6c28aaSamw } 36436185db85Sdougm optset = optarg; 36446185db85Sdougm break; 36456185db85Sdougm default: 36466185db85Sdougm case 'h': 36476185db85Sdougm case '?': 36486185db85Sdougm (void) printf(gettext("usage: %s\n"), 36496185db85Sdougm sa_get_usage(USAGE_SET)); 36506185db85Sdougm return (SA_OK); 36516185db85Sdougm } 36526185db85Sdougm } 36536185db85Sdougm 36546185db85Sdougm if (optlist != NULL) 36556185db85Sdougm ret = chk_opt(optlist, optset != NULL, protocol); 36566185db85Sdougm 36576185db85Sdougm if (optind >= argc || (optlist == NULL && optset == NULL) || 365825a68471Sdougm protocol == NULL || ret != OPT_ADD_OK) { 36596185db85Sdougm char *sep = "\t"; 366025a68471Sdougm 36616185db85Sdougm (void) printf(gettext("usage: %s\n"), sa_get_usage(USAGE_SET)); 36626185db85Sdougm if (optind >= argc) { 366325a68471Sdougm (void) printf(gettext("%sgroup must be specified"), 366425a68471Sdougm sep); 36656185db85Sdougm sep = ", "; 36666185db85Sdougm } 36676185db85Sdougm if (optlist == NULL) { 36686185db85Sdougm (void) printf(gettext("%sat least one property must be" 36696185db85Sdougm " specified"), sep); 36706185db85Sdougm sep = ", "; 36716185db85Sdougm } 36726185db85Sdougm if (protocol == NULL) { 367325a68471Sdougm (void) printf(gettext("%sprotocol must be specified"), 367425a68471Sdougm sep); 36756185db85Sdougm sep = ", "; 36766185db85Sdougm } 36776185db85Sdougm (void) printf("\n"); 36786185db85Sdougm ret = SA_SYNTAX_ERR; 36796185db85Sdougm } else { 36806185db85Sdougm /* 3681f8825440Sdougm * Group already exists so we can proceed after a few 3682f8825440Sdougm * additional checks related to ZFS handling. 36836185db85Sdougm */ 36846185db85Sdougm 36856185db85Sdougm groupname = argv[optind]; 3686f8825440Sdougm if (strcmp(groupname, "zfs") == 0) { 3687f8825440Sdougm (void) printf(gettext("Changing properties for group " 3688f8825440Sdougm "\"zfs\" not allowed\n")); 3689f8825440Sdougm return (SA_NOT_ALLOWED); 3690f8825440Sdougm } 3691f8825440Sdougm 36926185db85Sdougm auth = check_authorizations(groupname, flags); 36936185db85Sdougm if (optset == NULL) 3694549ec3ffSdougm ret = basic_set(handle, groupname, optlist, protocol, 3695da6c28aaSamw sharepath, rsrcname, dryrun); 36966185db85Sdougm else 3697549ec3ffSdougm ret = space_set(handle, groupname, optlist, protocol, 36986185db85Sdougm sharepath, dryrun, optset); 36996185db85Sdougm if (dryrun && ret == SA_OK && !auth && verbose) { 37006185db85Sdougm (void) printf(gettext("Command would fail: %s\n"), 37016185db85Sdougm sa_errorstr(SA_NO_PERMISSION)); 37026185db85Sdougm } 37036185db85Sdougm } 37046185db85Sdougm return (ret); 37056185db85Sdougm } 37066185db85Sdougm 37076185db85Sdougm /* 37086185db85Sdougm * remove_options(group, optlist, proto, *err) 37096185db85Sdougm * 371025a68471Sdougm * Helper function to actually remove options from a group after all 37116185db85Sdougm * preprocessing is done. 37126185db85Sdougm */ 37136185db85Sdougm 37146185db85Sdougm static int 37156185db85Sdougm remove_options(sa_group_t group, struct options *optlist, 37166185db85Sdougm char *proto, int *err) 37176185db85Sdougm { 37186185db85Sdougm struct options *cur; 37196185db85Sdougm sa_optionset_t optionset; 37206185db85Sdougm sa_property_t prop; 37216185db85Sdougm int change = 0; 37226185db85Sdougm int ret = SA_OK; 37236185db85Sdougm 37246185db85Sdougm optionset = sa_get_optionset(group, proto); 37256185db85Sdougm if (optionset != NULL) { 37266185db85Sdougm for (cur = optlist; cur != NULL; cur = cur->next) { 37276185db85Sdougm prop = sa_get_property(optionset, cur->optname); 37286185db85Sdougm if (prop != NULL) { 37296185db85Sdougm ret = sa_remove_property(prop); 37306185db85Sdougm if (ret != SA_OK) 37316185db85Sdougm break; 37326185db85Sdougm change = 1; 37336185db85Sdougm } 37346185db85Sdougm } 37356185db85Sdougm } 37366185db85Sdougm if (ret == SA_OK && change) 37376185db85Sdougm ret = sa_commit_properties(optionset, 0); 37386185db85Sdougm 37396185db85Sdougm if (err != NULL) 37406185db85Sdougm *err = ret; 37416185db85Sdougm return (change); 37426185db85Sdougm } 37436185db85Sdougm 37446185db85Sdougm /* 37456185db85Sdougm * valid_unset(group, optlist, proto) 37466185db85Sdougm * 37476185db85Sdougm * Sanity check the optlist to make sure they can be removed. Issue an 37486185db85Sdougm * error if a property doesn't exist. 37496185db85Sdougm */ 37506185db85Sdougm 37516185db85Sdougm static int 37526185db85Sdougm valid_unset(sa_group_t group, struct options *optlist, char *proto) 37536185db85Sdougm { 37546185db85Sdougm struct options *cur; 37556185db85Sdougm sa_optionset_t optionset; 37566185db85Sdougm sa_property_t prop; 37576185db85Sdougm int ret = SA_OK; 37586185db85Sdougm 37596185db85Sdougm optionset = sa_get_optionset(group, proto); 37606185db85Sdougm if (optionset != NULL) { 37616185db85Sdougm for (cur = optlist; cur != NULL; cur = cur->next) { 37626185db85Sdougm prop = sa_get_property(optionset, cur->optname); 37636185db85Sdougm if (prop == NULL) { 376425a68471Sdougm (void) printf(gettext( 376525a68471Sdougm "Could not unset property %s: not set\n"), 37666185db85Sdougm cur->optname); 37676185db85Sdougm ret = SA_NO_SUCH_PROP; 37686185db85Sdougm } 37696185db85Sdougm } 37706185db85Sdougm } 37716185db85Sdougm return (ret); 37726185db85Sdougm } 37736185db85Sdougm 37746185db85Sdougm /* 37756185db85Sdougm * valid_unset_security(group, optlist, proto) 37766185db85Sdougm * 37776185db85Sdougm * Sanity check the optlist to make sure they can be removed. Issue an 37786185db85Sdougm * error if a property doesn't exist. 37796185db85Sdougm */ 37806185db85Sdougm 37816185db85Sdougm static int 37826185db85Sdougm valid_unset_security(sa_group_t group, struct options *optlist, char *proto, 37836185db85Sdougm char *sectype) 37846185db85Sdougm { 37856185db85Sdougm struct options *cur; 37866185db85Sdougm sa_security_t security; 37876185db85Sdougm sa_property_t prop; 37886185db85Sdougm int ret = SA_OK; 37896185db85Sdougm char *sec; 37906185db85Sdougm 37916185db85Sdougm sec = sa_proto_space_alias(proto, sectype); 37926185db85Sdougm security = sa_get_security(group, sec, proto); 37936185db85Sdougm if (security != NULL) { 37946185db85Sdougm for (cur = optlist; cur != NULL; cur = cur->next) { 37956185db85Sdougm prop = sa_get_property(security, cur->optname); 37966185db85Sdougm if (prop == NULL) { 379725a68471Sdougm (void) printf(gettext( 379825a68471Sdougm "Could not unset property %s: not set\n"), 37996185db85Sdougm cur->optname); 38006185db85Sdougm ret = SA_NO_SUCH_PROP; 38016185db85Sdougm } 38026185db85Sdougm } 38036185db85Sdougm } else { 380425a68471Sdougm (void) printf(gettext( 380525a68471Sdougm "Could not unset %s: space not defined\n"), sectype); 38066185db85Sdougm ret = SA_NO_SUCH_SECURITY; 38076185db85Sdougm } 38086185db85Sdougm if (sec != NULL) 38096185db85Sdougm sa_free_attr_string(sec); 38106185db85Sdougm return (ret); 38116185db85Sdougm } 38126185db85Sdougm 38136185db85Sdougm /* 38146185db85Sdougm * remove_security(group, optlist, proto) 38156185db85Sdougm * 38166185db85Sdougm * Remove the properties since they were checked as valid. 38176185db85Sdougm */ 38186185db85Sdougm 38196185db85Sdougm static int 38206185db85Sdougm remove_security(sa_group_t group, char *sectype, 38216185db85Sdougm struct options *optlist, char *proto, int *err) 38226185db85Sdougm { 38236185db85Sdougm sa_security_t security; 38246185db85Sdougm int ret = SA_OK; 38256185db85Sdougm int change = 0; 38266185db85Sdougm 38276185db85Sdougm sectype = sa_proto_space_alias(proto, sectype); 38286185db85Sdougm security = sa_get_security(group, sectype, proto); 38296185db85Sdougm if (sectype != NULL) 38306185db85Sdougm sa_free_attr_string(sectype); 38316185db85Sdougm 38326185db85Sdougm if (security != NULL) { 38336185db85Sdougm while (optlist != NULL) { 38346185db85Sdougm sa_property_t prop; 38356185db85Sdougm prop = sa_get_property(security, optlist->optname); 38366185db85Sdougm if (prop != NULL) { 38376185db85Sdougm ret = sa_remove_property(prop); 38386185db85Sdougm if (ret != SA_OK) 38396185db85Sdougm break; 38406185db85Sdougm change = 1; 38416185db85Sdougm } 38426185db85Sdougm optlist = optlist->next; 38436185db85Sdougm } 38446185db85Sdougm /* 38456185db85Sdougm * when done, properties may have all been removed but 38466185db85Sdougm * we need to keep the security type itself until 38476185db85Sdougm * explicitly removed. 38486185db85Sdougm */ 38496185db85Sdougm if (ret == SA_OK && change) 38506185db85Sdougm ret = sa_commit_properties(security, 0); 38516185db85Sdougm } else { 38526185db85Sdougm ret = SA_NO_SUCH_PROP; 38536185db85Sdougm } 38546185db85Sdougm if (err != NULL) 38556185db85Sdougm *err = ret; 38566185db85Sdougm return (change); 38576185db85Sdougm } 38586185db85Sdougm 38596185db85Sdougm /* 3860da6c28aaSamw * basic_unset(groupname, optlist, protocol, sharepath, rsrcname, dryrun) 38616185db85Sdougm * 386225a68471Sdougm * Unset non-named optionset properties. 38636185db85Sdougm */ 38646185db85Sdougm 38656185db85Sdougm static int 3866549ec3ffSdougm basic_unset(sa_handle_t handle, char *groupname, struct options *optlist, 3867da6c28aaSamw char *protocol, char *sharepath, char *rsrcname, int dryrun) 38686185db85Sdougm { 38696185db85Sdougm sa_group_t group; 38706185db85Sdougm int ret = SA_OK; 38716185db85Sdougm int change = 0; 38726185db85Sdougm struct list *worklist = NULL; 387325a68471Sdougm sa_share_t share = NULL; 3874da6c28aaSamw sa_resource_t resource = NULL; 38756185db85Sdougm 3876549ec3ffSdougm group = sa_get_group(handle, groupname); 387725a68471Sdougm if (group == NULL) 387825a68471Sdougm return (ret); 387925a68471Sdougm 3880da6c28aaSamw /* 3881da6c28aaSamw * If there is a sharepath, make sure it belongs to 3882da6c28aaSamw * the group. 3883da6c28aaSamw */ 38846185db85Sdougm if (sharepath != NULL) { 38856185db85Sdougm share = sa_get_share(group, sharepath); 38866185db85Sdougm if (share == NULL) { 388725a68471Sdougm (void) printf(gettext( 388825a68471Sdougm "Share does not exist in group %s\n"), 38896185db85Sdougm groupname, sharepath); 38906185db85Sdougm ret = SA_NO_SUCH_PATH; 38916185db85Sdougm } 38926185db85Sdougm } 3893da6c28aaSamw /* 3894da6c28aaSamw * If a resource name exists, make sure it belongs to 3895da6c28aaSamw * the share if present else it belongs to the 3896da6c28aaSamw * group. Also check the protocol to see if it 3897da6c28aaSamw * supports resource level properties or not. If not, 3898da6c28aaSamw * use share only. 3899da6c28aaSamw */ 3900da6c28aaSamw if (rsrcname != NULL) { 3901da6c28aaSamw if (share != NULL) { 3902da6c28aaSamw resource = sa_get_share_resource(share, rsrcname); 3903da6c28aaSamw if (resource == NULL) 3904da6c28aaSamw ret = SA_NO_SUCH_RESOURCE; 3905da6c28aaSamw } else { 3906da6c28aaSamw resource = sa_get_resource(group, rsrcname); 3907da6c28aaSamw if (resource != NULL) { 3908da6c28aaSamw share = sa_get_resource_parent(resource); 3909da6c28aaSamw } else { 3910da6c28aaSamw ret = SA_NO_SUCH_RESOURCE; 3911da6c28aaSamw } 3912da6c28aaSamw } 3913da6c28aaSamw if (ret == SA_OK && resource != NULL) { 3914da6c28aaSamw uint64_t features; 3915da6c28aaSamw /* 3916da6c28aaSamw * Check to see if the resource can take 3917da6c28aaSamw * properties. If so, stick the resource into 3918da6c28aaSamw * "share" so it will all just work. 3919da6c28aaSamw */ 3920da6c28aaSamw features = sa_proto_get_featureset(protocol); 3921da6c28aaSamw if (features & SA_FEATURE_RESOURCE) 3922da6c28aaSamw share = (sa_share_t)resource; 3923da6c28aaSamw } 3924da6c28aaSamw } 3925da6c28aaSamw 39266185db85Sdougm if (ret == SA_OK) { 39276185db85Sdougm /* group must exist */ 39286185db85Sdougm ret = valid_unset(share != NULL ? share : group, 39296185db85Sdougm optlist, protocol); 39306185db85Sdougm if (ret == SA_OK && !dryrun) { 39316185db85Sdougm if (share != NULL) { 39326185db85Sdougm sa_optionset_t optionset; 39336185db85Sdougm sa_property_t prop; 393425a68471Sdougm change |= remove_options(share, optlist, 393525a68471Sdougm protocol, &ret); 393625a68471Sdougm /* 393725a68471Sdougm * If a share optionset is 393825a68471Sdougm * empty, remove it. 393925a68471Sdougm */ 39406185db85Sdougm optionset = sa_get_optionset((sa_share_t)share, 39416185db85Sdougm protocol); 39426185db85Sdougm if (optionset != NULL) { 39436185db85Sdougm prop = sa_get_property(optionset, NULL); 39446185db85Sdougm if (prop == NULL) 394525a68471Sdougm (void) sa_destroy_optionset( 394625a68471Sdougm optionset); 39476185db85Sdougm } 39486185db85Sdougm } else { 394925a68471Sdougm change |= remove_options(group, 395025a68471Sdougm optlist, protocol, &ret); 39516185db85Sdougm } 39526185db85Sdougm if (ret == SA_OK && change) 3953da6c28aaSamw worklist = add_list(worklist, group, share, 3954da6c28aaSamw protocol); 39556185db85Sdougm if (ret != SA_OK) 395625a68471Sdougm (void) printf(gettext( 395725a68471Sdougm "Could not remove properties: " 395825a68471Sdougm "%s\n"), sa_errorstr(ret)); 39596185db85Sdougm } 39606185db85Sdougm } else { 3961da6c28aaSamw (void) printf(gettext("Group \"%s\" not found\n"), groupname); 39626185db85Sdougm ret = SA_NO_SUCH_GROUP; 39636185db85Sdougm } 39646185db85Sdougm free_opt(optlist); 39656185db85Sdougm 39666185db85Sdougm /* 396725a68471Sdougm * We have a group and potentially legal additions 396825a68471Sdougm * 396925a68471Sdougm * Commit to configuration if not a dryrun 39706185db85Sdougm */ 39716185db85Sdougm if (!dryrun && ret == SA_OK) { 39726185db85Sdougm if (change && worklist != NULL) { 39736185db85Sdougm /* properties changed, so update all shares */ 397425a68471Sdougm (void) enable_all_groups(handle, worklist, 0, 0, 3975da6c28aaSamw protocol, B_TRUE); 39766185db85Sdougm } 39776185db85Sdougm } 39786185db85Sdougm if (worklist != NULL) 39796185db85Sdougm free_list(worklist); 39806185db85Sdougm return (ret); 39816185db85Sdougm } 39826185db85Sdougm 39836185db85Sdougm /* 39846185db85Sdougm * space_unset(groupname, optlist, protocol, sharepath, dryrun) 39856185db85Sdougm * 398625a68471Sdougm * Unset named optionset properties. 39876185db85Sdougm */ 39886185db85Sdougm static int 3989549ec3ffSdougm space_unset(sa_handle_t handle, char *groupname, struct options *optlist, 3990549ec3ffSdougm char *protocol, char *sharepath, int dryrun, char *sectype) 39916185db85Sdougm { 39926185db85Sdougm sa_group_t group; 39936185db85Sdougm int ret = SA_OK; 39946185db85Sdougm int change = 0; 39956185db85Sdougm struct list *worklist = NULL; 399625a68471Sdougm sa_share_t share = NULL; 39976185db85Sdougm 3998549ec3ffSdougm group = sa_get_group(handle, groupname); 399925a68471Sdougm if (group == NULL) { 400025a68471Sdougm (void) printf(gettext("Group \"%s\" not found\n"), groupname); 400125a68471Sdougm return (SA_NO_SUCH_GROUP); 400225a68471Sdougm } 40036185db85Sdougm if (sharepath != NULL) { 40046185db85Sdougm share = sa_get_share(group, sharepath); 40056185db85Sdougm if (share == NULL) { 400625a68471Sdougm (void) printf(gettext( 400725a68471Sdougm "Share does not exist in group %s\n"), 40086185db85Sdougm groupname, sharepath); 400925a68471Sdougm return (SA_NO_SUCH_PATH); 40106185db85Sdougm } 40116185db85Sdougm } 4012da6c28aaSamw ret = valid_unset_security(share != NULL ? share : group, 4013da6c28aaSamw optlist, protocol, sectype); 401425a68471Sdougm 40156185db85Sdougm if (ret == SA_OK && !dryrun) { 40166185db85Sdougm if (optlist != NULL) { 40176185db85Sdougm if (share != NULL) { 40186185db85Sdougm sa_security_t optionset; 40196185db85Sdougm sa_property_t prop; 402025a68471Sdougm change = remove_security(share, 402125a68471Sdougm sectype, optlist, protocol, &ret); 402225a68471Sdougm 402325a68471Sdougm /* If a share security is empty, remove it */ 40246185db85Sdougm optionset = sa_get_security((sa_group_t)share, 402525a68471Sdougm sectype, protocol); 40266185db85Sdougm if (optionset != NULL) { 402725a68471Sdougm prop = sa_get_property(optionset, 402825a68471Sdougm NULL); 40296185db85Sdougm if (prop == NULL) 403025a68471Sdougm ret = sa_destroy_security( 403125a68471Sdougm optionset); 40326185db85Sdougm } 40336185db85Sdougm } else { 40346185db85Sdougm change = remove_security(group, sectype, 403525a68471Sdougm optlist, protocol, &ret); 40366185db85Sdougm } 40376185db85Sdougm } else { 40386185db85Sdougm sa_security_t security; 40396185db85Sdougm char *sec; 40406185db85Sdougm sec = sa_proto_space_alias(protocol, sectype); 40416185db85Sdougm security = sa_get_security(group, sec, protocol); 40426185db85Sdougm if (sec != NULL) 40436185db85Sdougm sa_free_attr_string(sec); 40446185db85Sdougm if (security != NULL) { 40456185db85Sdougm ret = sa_destroy_security(security); 40466185db85Sdougm if (ret == SA_OK) 40476185db85Sdougm change = 1; 40486185db85Sdougm } else { 40496185db85Sdougm ret = SA_NO_SUCH_PROP; 40506185db85Sdougm } 40516185db85Sdougm } 40526185db85Sdougm if (ret != SA_OK) 40536185db85Sdougm (void) printf(gettext("Could not unset property: %s\n"), 40546185db85Sdougm sa_errorstr(ret)); 40556185db85Sdougm } 40566185db85Sdougm 40576185db85Sdougm if (ret == SA_OK && change) 4058da6c28aaSamw worklist = add_list(worklist, group, 0, protocol); 405925a68471Sdougm 40606185db85Sdougm free_opt(optlist); 40616185db85Sdougm /* 406225a68471Sdougm * We have a group and potentially legal additions 40636185db85Sdougm */ 40646185db85Sdougm 406525a68471Sdougm /* Commit to configuration if not a dryrun */ 40666185db85Sdougm if (!dryrun && ret == 0) { 40676185db85Sdougm /* properties changed, so update all shares */ 406825a68471Sdougm if (change && worklist != NULL) 406925a68471Sdougm (void) enable_all_groups(handle, worklist, 0, 0, 4070da6c28aaSamw protocol, B_TRUE); 4071549ec3ffSdougm ret = sa_update_config(handle); 40726185db85Sdougm } 40736185db85Sdougm if (worklist != NULL) 40746185db85Sdougm free_list(worklist); 40756185db85Sdougm return (ret); 40766185db85Sdougm } 40776185db85Sdougm 40786185db85Sdougm /* 40796185db85Sdougm * sa_unset(flags, argc, argv) 40806185db85Sdougm * 408125a68471Sdougm * Implements the unset subcommand. Parsing done here and then basic 40826185db85Sdougm * or space versions of the real code are called. 40836185db85Sdougm */ 40846185db85Sdougm 40856185db85Sdougm int 4086549ec3ffSdougm sa_unset(sa_handle_t handle, int flags, int argc, char *argv[]) 40876185db85Sdougm { 40886185db85Sdougm char *groupname; 40896185db85Sdougm int verbose = 0; 40906185db85Sdougm int dryrun = 0; 40916185db85Sdougm int c; 40926185db85Sdougm char *protocol = NULL; 40936185db85Sdougm int ret = SA_OK; 40946185db85Sdougm struct options *optlist = NULL; 4095da6c28aaSamw char *rsrcname = NULL; 40966185db85Sdougm char *sharepath = NULL; 40976185db85Sdougm char *optset = NULL; 40986185db85Sdougm int auth; 40996185db85Sdougm 4100da6c28aaSamw while ((c = getopt(argc, argv, "?hvnP:p:r:s:S:")) != EOF) { 41016185db85Sdougm switch (c) { 41026185db85Sdougm case 'v': 41036185db85Sdougm verbose++; 41046185db85Sdougm break; 41056185db85Sdougm case 'n': 41066185db85Sdougm dryrun++; 41076185db85Sdougm break; 41086185db85Sdougm case 'P': 4109da6c28aaSamw if (protocol != NULL) { 4110da6c28aaSamw (void) printf(gettext( 4111da6c28aaSamw "Specifying multiple protocols " 4112da6c28aaSamw "not supported: %s\n"), protocol); 4113da6c28aaSamw return (SA_SYNTAX_ERR); 4114da6c28aaSamw } 41156185db85Sdougm protocol = optarg; 41166185db85Sdougm if (!sa_valid_protocol(protocol)) { 411725a68471Sdougm (void) printf(gettext( 411825a68471Sdougm "Invalid protocol specified: %s\n"), 41196185db85Sdougm protocol); 41206185db85Sdougm return (SA_INVALID_PROTOCOL); 41216185db85Sdougm } 41226185db85Sdougm break; 41236185db85Sdougm case 'p': 41246185db85Sdougm ret = add_opt(&optlist, optarg, 1); 41256185db85Sdougm switch (ret) { 41266185db85Sdougm case OPT_ADD_SYNTAX: 412725a68471Sdougm (void) printf(gettext("Property syntax error " 412825a68471Sdougm "for property %s\n"), optarg); 41296185db85Sdougm return (SA_SYNTAX_ERR); 413025a68471Sdougm 41316185db85Sdougm case OPT_ADD_PROPERTY: 413225a68471Sdougm (void) printf(gettext("Properties need to be " 413325a68471Sdougm "set with set command: %s\n"), optarg); 41346185db85Sdougm return (SA_SYNTAX_ERR); 413525a68471Sdougm 41366185db85Sdougm default: 41376185db85Sdougm break; 41386185db85Sdougm } 41396185db85Sdougm break; 4140da6c28aaSamw case 'r': 4141da6c28aaSamw /* 4142da6c28aaSamw * Unset properties on resource if applicable or on 4143da6c28aaSamw * share if resource for this protocol doesn't use 4144da6c28aaSamw * resources. 4145da6c28aaSamw */ 4146da6c28aaSamw if (rsrcname != NULL) { 4147da6c28aaSamw (void) printf(gettext( 4148da6c28aaSamw "Unsetting multiple resource " 4149da6c28aaSamw "names not supported\n")); 4150da6c28aaSamw return (SA_SYNTAX_ERR); 4151da6c28aaSamw } 4152da6c28aaSamw rsrcname = optarg; 4153da6c28aaSamw break; 41546185db85Sdougm case 's': 4155da6c28aaSamw if (sharepath != NULL) { 4156da6c28aaSamw (void) printf(gettext( 4157da6c28aaSamw "Adding multiple shares not supported\n")); 4158da6c28aaSamw return (SA_SYNTAX_ERR); 4159da6c28aaSamw } 41606185db85Sdougm sharepath = optarg; 41616185db85Sdougm break; 41626185db85Sdougm case 'S': 4163da6c28aaSamw if (optset != NULL) { 4164da6c28aaSamw (void) printf(gettext( 4165da6c28aaSamw "Specifying multiple property " 4166da6c28aaSamw "spaces not supported: %s\n"), optset); 4167da6c28aaSamw return (SA_SYNTAX_ERR); 4168da6c28aaSamw } 41696185db85Sdougm optset = optarg; 41706185db85Sdougm break; 41716185db85Sdougm default: 41726185db85Sdougm case 'h': 41736185db85Sdougm case '?': 41746185db85Sdougm (void) printf(gettext("usage: %s\n"), 41756185db85Sdougm sa_get_usage(USAGE_UNSET)); 41766185db85Sdougm return (SA_OK); 41776185db85Sdougm } 41786185db85Sdougm } 41796185db85Sdougm 41806185db85Sdougm if (optlist != NULL) 41816185db85Sdougm ret = chk_opt(optlist, optset != NULL, protocol); 41826185db85Sdougm 41836185db85Sdougm if (optind >= argc || (optlist == NULL && optset == NULL) || 41846185db85Sdougm protocol == NULL) { 41856185db85Sdougm char *sep = "\t"; 418625a68471Sdougm (void) printf(gettext("usage: %s\n"), 418725a68471Sdougm sa_get_usage(USAGE_UNSET)); 41886185db85Sdougm if (optind >= argc) { 418925a68471Sdougm (void) printf(gettext("%sgroup must be specified"), 41906185db85Sdougm sep); 41916185db85Sdougm sep = ", "; 41926185db85Sdougm } 419325a68471Sdougm if (optlist == NULL) { 419425a68471Sdougm (void) printf(gettext("%sat least one property must " 419525a68471Sdougm "be specified"), sep); 419625a68471Sdougm sep = ", "; 419725a68471Sdougm } 41986185db85Sdougm if (protocol == NULL) { 419925a68471Sdougm (void) printf(gettext("%sprotocol must be specified"), 420025a68471Sdougm sep); 42016185db85Sdougm sep = ", "; 42026185db85Sdougm } 42036185db85Sdougm (void) printf("\n"); 42046185db85Sdougm ret = SA_SYNTAX_ERR; 42056185db85Sdougm } else { 42066185db85Sdougm 42076185db85Sdougm /* 420825a68471Sdougm * If a group already exists, we can only add a new 42096185db85Sdougm * protocol to it and not create a new one or add the 42106185db85Sdougm * same protocol again. 42116185db85Sdougm */ 42126185db85Sdougm 42136185db85Sdougm groupname = argv[optind]; 42146185db85Sdougm auth = check_authorizations(groupname, flags); 42156185db85Sdougm if (optset == NULL) 4216549ec3ffSdougm ret = basic_unset(handle, groupname, optlist, protocol, 4217da6c28aaSamw sharepath, rsrcname, dryrun); 42186185db85Sdougm else 4219549ec3ffSdougm ret = space_unset(handle, groupname, optlist, protocol, 42206185db85Sdougm sharepath, dryrun, optset); 42216185db85Sdougm 422225a68471Sdougm if (dryrun && ret == SA_OK && !auth && verbose) 42236185db85Sdougm (void) printf(gettext("Command would fail: %s\n"), 42246185db85Sdougm sa_errorstr(SA_NO_PERMISSION)); 42256185db85Sdougm } 42266185db85Sdougm return (ret); 42276185db85Sdougm } 42286185db85Sdougm 42296185db85Sdougm /* 42306185db85Sdougm * sa_enable_group(flags, argc, argv) 42316185db85Sdougm * 42326185db85Sdougm * Implements the enable subcommand 42336185db85Sdougm */ 42346185db85Sdougm 42356185db85Sdougm int 4236549ec3ffSdougm sa_enable_group(sa_handle_t handle, int flags, int argc, char *argv[]) 42376185db85Sdougm { 42386185db85Sdougm int verbose = 0; 42396185db85Sdougm int dryrun = 0; 42406185db85Sdougm int all = 0; 42416185db85Sdougm int c; 42426185db85Sdougm int ret = SA_OK; 42436185db85Sdougm char *protocol = NULL; 42446185db85Sdougm char *state; 42456185db85Sdougm struct list *worklist = NULL; 42466185db85Sdougm int auth = 1; 424725a68471Sdougm sa_group_t group; 42486185db85Sdougm 42496185db85Sdougm while ((c = getopt(argc, argv, "?havnP:")) != EOF) { 42506185db85Sdougm switch (c) { 42516185db85Sdougm case 'a': 42526185db85Sdougm all = 1; 42536185db85Sdougm break; 42546185db85Sdougm case 'n': 42556185db85Sdougm dryrun++; 42566185db85Sdougm break; 42576185db85Sdougm case 'P': 4258da6c28aaSamw if (protocol != NULL) { 4259da6c28aaSamw (void) printf(gettext( 4260da6c28aaSamw "Specifying multiple protocols " 4261da6c28aaSamw "not supported: %s\n"), protocol); 4262da6c28aaSamw return (SA_SYNTAX_ERR); 4263da6c28aaSamw } 42646185db85Sdougm protocol = optarg; 42656185db85Sdougm if (!sa_valid_protocol(protocol)) { 426625a68471Sdougm (void) printf(gettext( 426725a68471Sdougm "Invalid protocol specified: %s\n"), 42686185db85Sdougm protocol); 42696185db85Sdougm return (SA_INVALID_PROTOCOL); 42706185db85Sdougm } 42716185db85Sdougm break; 42726185db85Sdougm case 'v': 42736185db85Sdougm verbose++; 42746185db85Sdougm break; 42756185db85Sdougm default: 42766185db85Sdougm case 'h': 42776185db85Sdougm case '?': 42786185db85Sdougm (void) printf(gettext("usage: %s\n"), 42796185db85Sdougm sa_get_usage(USAGE_ENABLE)); 42806185db85Sdougm return (0); 42816185db85Sdougm } 42826185db85Sdougm } 42836185db85Sdougm 42846185db85Sdougm if (optind == argc && !all) { 428525a68471Sdougm (void) printf(gettext("usage: %s\n"), 428625a68471Sdougm sa_get_usage(USAGE_ENABLE)); 42876185db85Sdougm (void) printf(gettext("\tmust specify group\n")); 428825a68471Sdougm return (SA_NO_SUCH_PATH); 428925a68471Sdougm } 42906185db85Sdougm if (!all) { 42916185db85Sdougm while (optind < argc) { 4292549ec3ffSdougm group = sa_get_group(handle, argv[optind]); 42936185db85Sdougm if (group != NULL) { 429425a68471Sdougm auth &= check_authorizations(argv[optind], 429525a68471Sdougm flags); 42966185db85Sdougm state = sa_get_group_attr(group, "state"); 42976185db85Sdougm if (state != NULL && 42986185db85Sdougm strcmp(state, "enabled") == 0) { 42996185db85Sdougm /* already enabled */ 43006185db85Sdougm if (verbose) 430125a68471Sdougm (void) printf(gettext( 430225a68471Sdougm "Group \"%s\" is already " 43036185db85Sdougm "enabled\n"), 43046185db85Sdougm argv[optind]); 43056185db85Sdougm ret = SA_BUSY; /* already enabled */ 43066185db85Sdougm } else { 430725a68471Sdougm worklist = add_list(worklist, group, 4308da6c28aaSamw 0, protocol); 43096185db85Sdougm if (verbose) 431025a68471Sdougm (void) printf(gettext( 431125a68471Sdougm "Enabling group \"%s\"\n"), 43126185db85Sdougm argv[optind]); 43136185db85Sdougm } 43146185db85Sdougm if (state != NULL) 43156185db85Sdougm sa_free_attr_string(state); 43166185db85Sdougm } else { 43176185db85Sdougm ret = SA_NO_SUCH_GROUP; 43186185db85Sdougm } 43196185db85Sdougm optind++; 43206185db85Sdougm } 43216185db85Sdougm } else { 432225a68471Sdougm for (group = sa_get_group(handle, NULL); 432325a68471Sdougm group != NULL; 43246185db85Sdougm group = sa_get_next_group(group)) { 4325da6c28aaSamw worklist = add_list(worklist, group, 0, protocol); 43266185db85Sdougm } 43276185db85Sdougm } 432825a68471Sdougm if (!dryrun && ret == SA_OK) 4329da6c28aaSamw ret = enable_all_groups(handle, worklist, 1, 0, NULL, B_FALSE); 433025a68471Sdougm 43316185db85Sdougm if (ret != SA_OK && ret != SA_BUSY) 43326185db85Sdougm (void) printf(gettext("Could not enable group: %s\n"), 43336185db85Sdougm sa_errorstr(ret)); 43346185db85Sdougm if (ret == SA_BUSY) 43356185db85Sdougm ret = SA_OK; 433625a68471Sdougm 43376185db85Sdougm if (worklist != NULL) 43386185db85Sdougm free_list(worklist); 43396185db85Sdougm if (dryrun && ret == SA_OK && !auth && verbose) { 43406185db85Sdougm (void) printf(gettext("Command would fail: %s\n"), 43416185db85Sdougm sa_errorstr(SA_NO_PERMISSION)); 43426185db85Sdougm } 43436185db85Sdougm return (ret); 43446185db85Sdougm } 43456185db85Sdougm 43466185db85Sdougm /* 4347da6c28aaSamw * disable_group(group, proto) 43486185db85Sdougm * 4349da6c28aaSamw * Disable all the shares in the specified group.. This is a helper 4350da6c28aaSamw * for disable_all_groups in order to simplify regular and subgroup 4351da6c28aaSamw * (zfs) disabling. Group has already been checked for non-NULL. 43526185db85Sdougm */ 43536185db85Sdougm 43546185db85Sdougm static int 4355da6c28aaSamw disable_group(sa_group_t group, char *proto) 43566185db85Sdougm { 43576185db85Sdougm sa_share_t share; 43586185db85Sdougm int ret = SA_OK; 43596185db85Sdougm 4360da6c28aaSamw /* 4361da6c28aaSamw * If the protocol isn't enabled, skip it and treat as 4362da6c28aaSamw * successful. 4363da6c28aaSamw */ 4364da6c28aaSamw if (!has_protocol(group, proto)) 4365da6c28aaSamw return (ret); 4366da6c28aaSamw 43676185db85Sdougm for (share = sa_get_share(group, NULL); 43686185db85Sdougm share != NULL && ret == SA_OK; 43696185db85Sdougm share = sa_get_next_share(share)) { 4370da6c28aaSamw ret = sa_disable_share(share, proto); 43716185db85Sdougm if (ret == SA_NO_SUCH_PATH) { 43726185db85Sdougm /* 43736185db85Sdougm * this is OK since the path is gone. we can't 43746185db85Sdougm * re-share it anyway so no error. 43756185db85Sdougm */ 43766185db85Sdougm ret = SA_OK; 43776185db85Sdougm } 43786185db85Sdougm } 43796185db85Sdougm return (ret); 43806185db85Sdougm } 43816185db85Sdougm 43826185db85Sdougm /* 43836185db85Sdougm * disable_all_groups(work, setstate) 43846185db85Sdougm * 43856185db85Sdougm * helper function that disables the shares in the list of groups 43866185db85Sdougm * provided. It optionally marks the group as disabled. Used by both 43876185db85Sdougm * enable and start subcommands. 43886185db85Sdougm */ 43896185db85Sdougm 43906185db85Sdougm static int 4391549ec3ffSdougm disable_all_groups(sa_handle_t handle, struct list *work, int setstate) 43926185db85Sdougm { 43936185db85Sdougm int ret = SA_OK; 43946185db85Sdougm sa_group_t subgroup, group; 43956185db85Sdougm 43966185db85Sdougm while (work != NULL && ret == SA_OK) { 43976185db85Sdougm group = (sa_group_t)work->item; 43986185db85Sdougm if (setstate) 43996185db85Sdougm ret = sa_set_group_attr(group, "state", "disabled"); 44006185db85Sdougm if (ret == SA_OK) { 44016185db85Sdougm char *name; 44026185db85Sdougm name = sa_get_group_attr(group, "name"); 44036185db85Sdougm if (name != NULL && strcmp(name, "zfs") == 0) { 44046185db85Sdougm /* need to get the sub-groups for stopping */ 440525a68471Sdougm for (subgroup = sa_get_sub_group(group); 440625a68471Sdougm subgroup != NULL; 44076185db85Sdougm subgroup = sa_get_next_group(subgroup)) { 4408da6c28aaSamw ret = disable_group(subgroup, 4409da6c28aaSamw work->proto); 44106185db85Sdougm } 44116185db85Sdougm } else { 4412da6c28aaSamw ret = disable_group(group, work->proto); 44136185db85Sdougm } 44146185db85Sdougm /* 441525a68471Sdougm * We don't want to "disable" since it won't come 44166185db85Sdougm * up after a reboot. The SMF framework should do 44176185db85Sdougm * the right thing. On enable we do want to do 44186185db85Sdougm * something. 44196185db85Sdougm */ 44206185db85Sdougm } 44216185db85Sdougm work = work->next; 44226185db85Sdougm } 44236185db85Sdougm if (ret == SA_OK) 4424549ec3ffSdougm ret = sa_update_config(handle); 44256185db85Sdougm return (ret); 44266185db85Sdougm } 44276185db85Sdougm 44286185db85Sdougm /* 44296185db85Sdougm * sa_disable_group(flags, argc, argv) 44306185db85Sdougm * 44316185db85Sdougm * Implements the disable subcommand 44326185db85Sdougm */ 44336185db85Sdougm 44346185db85Sdougm int 4435549ec3ffSdougm sa_disable_group(sa_handle_t handle, int flags, int argc, char *argv[]) 44366185db85Sdougm { 44376185db85Sdougm int verbose = 0; 44386185db85Sdougm int dryrun = 0; 44396185db85Sdougm int all = 0; 44406185db85Sdougm int c; 44416185db85Sdougm int ret = SA_OK; 4442da6c28aaSamw char *protocol = NULL; 44436185db85Sdougm char *state; 44446185db85Sdougm struct list *worklist = NULL; 444525a68471Sdougm sa_group_t group; 44466185db85Sdougm int auth = 1; 44476185db85Sdougm 44486185db85Sdougm while ((c = getopt(argc, argv, "?havn")) != EOF) { 44496185db85Sdougm switch (c) { 44506185db85Sdougm case 'a': 44516185db85Sdougm all = 1; 44526185db85Sdougm break; 44536185db85Sdougm case 'n': 44546185db85Sdougm dryrun++; 44556185db85Sdougm break; 44566185db85Sdougm case 'P': 4457da6c28aaSamw if (protocol != NULL) { 4458da6c28aaSamw (void) printf(gettext( 4459da6c28aaSamw "Specifying multiple protocols " 4460da6c28aaSamw "not supported: %s\n"), protocol); 4461da6c28aaSamw return (SA_SYNTAX_ERR); 4462da6c28aaSamw } 44636185db85Sdougm protocol = optarg; 44646185db85Sdougm if (!sa_valid_protocol(protocol)) { 446525a68471Sdougm (void) printf(gettext( 446625a68471Sdougm "Invalid protocol specified: %s\n"), 44676185db85Sdougm protocol); 44686185db85Sdougm return (SA_INVALID_PROTOCOL); 44696185db85Sdougm } 44706185db85Sdougm break; 44716185db85Sdougm case 'v': 44726185db85Sdougm verbose++; 44736185db85Sdougm break; 44746185db85Sdougm default: 44756185db85Sdougm case 'h': 44766185db85Sdougm case '?': 44776185db85Sdougm (void) printf(gettext("usage: %s\n"), 44786185db85Sdougm sa_get_usage(USAGE_DISABLE)); 44796185db85Sdougm return (0); 44806185db85Sdougm } 44816185db85Sdougm } 44826185db85Sdougm 44836185db85Sdougm if (optind == argc && !all) { 44846185db85Sdougm (void) printf(gettext("usage: %s\n"), 44856185db85Sdougm sa_get_usage(USAGE_DISABLE)); 44866185db85Sdougm (void) printf(gettext("\tmust specify group\n")); 448725a68471Sdougm return (SA_NO_SUCH_PATH); 448825a68471Sdougm } 44896185db85Sdougm if (!all) { 44906185db85Sdougm while (optind < argc) { 4491549ec3ffSdougm group = sa_get_group(handle, argv[optind]); 44926185db85Sdougm if (group != NULL) { 449325a68471Sdougm auth &= check_authorizations(argv[optind], 449425a68471Sdougm flags); 44956185db85Sdougm state = sa_get_group_attr(group, "state"); 44966185db85Sdougm if (state == NULL || 44976185db85Sdougm strcmp(state, "disabled") == 0) { 44986185db85Sdougm /* already disabled */ 44996185db85Sdougm if (verbose) 450025a68471Sdougm (void) printf(gettext( 450125a68471Sdougm "Group \"%s\" is " 45026185db85Sdougm "already disabled\n"), 45036185db85Sdougm argv[optind]); 4504da6c28aaSamw ret = SA_BUSY; /* already disabled */ 45056185db85Sdougm } else { 4506da6c28aaSamw worklist = add_list(worklist, group, 0, 4507da6c28aaSamw protocol); 45086185db85Sdougm if (verbose) 450925a68471Sdougm (void) printf(gettext( 451025a68471Sdougm "Disabling group " 451125a68471Sdougm "\"%s\"\n"), argv[optind]); 45126185db85Sdougm } 45136185db85Sdougm if (state != NULL) 45146185db85Sdougm sa_free_attr_string(state); 45156185db85Sdougm } else { 45166185db85Sdougm ret = SA_NO_SUCH_GROUP; 45176185db85Sdougm } 45186185db85Sdougm optind++; 45196185db85Sdougm } 45206185db85Sdougm } else { 452125a68471Sdougm for (group = sa_get_group(handle, NULL); 452225a68471Sdougm group != NULL; 452325a68471Sdougm group = sa_get_next_group(group)) 4524da6c28aaSamw worklist = add_list(worklist, group, 0, protocol); 45256185db85Sdougm } 452625a68471Sdougm 452725a68471Sdougm if (ret == SA_OK && !dryrun) 4528549ec3ffSdougm ret = disable_all_groups(handle, worklist, 1); 45296185db85Sdougm if (ret != SA_OK && ret != SA_BUSY) 45306185db85Sdougm (void) printf(gettext("Could not disable group: %s\n"), 45316185db85Sdougm sa_errorstr(ret)); 45326185db85Sdougm if (ret == SA_BUSY) 45336185db85Sdougm ret = SA_OK; 45346185db85Sdougm if (worklist != NULL) 45356185db85Sdougm free_list(worklist); 453625a68471Sdougm if (dryrun && ret == SA_OK && !auth && verbose) 45376185db85Sdougm (void) printf(gettext("Command would fail: %s\n"), 45386185db85Sdougm sa_errorstr(SA_NO_PERMISSION)); 45396185db85Sdougm return (ret); 45406185db85Sdougm } 45416185db85Sdougm 45426185db85Sdougm /* 45436185db85Sdougm * sa_start_group(flags, argc, argv) 45446185db85Sdougm * 45456185db85Sdougm * Implements the start command. 45466185db85Sdougm * This is similar to enable except it doesn't change the state 45476185db85Sdougm * of the group(s) and only enables shares if the group is already 45486185db85Sdougm * enabled. 45496185db85Sdougm */ 4550da6c28aaSamw 45516185db85Sdougm int 4552549ec3ffSdougm sa_start_group(sa_handle_t handle, int flags, int argc, char *argv[]) 45536185db85Sdougm { 45546185db85Sdougm int verbose = 0; 45556185db85Sdougm int all = 0; 45566185db85Sdougm int c; 45576185db85Sdougm int ret = SMF_EXIT_OK; 45586185db85Sdougm char *protocol = NULL; 45596185db85Sdougm char *state; 45606185db85Sdougm struct list *worklist = NULL; 456125a68471Sdougm sa_group_t group; 4562da6c28aaSamw #ifdef lint 4563da6c28aaSamw flags = flags; 4564da6c28aaSamw #endif 45656185db85Sdougm 45666185db85Sdougm while ((c = getopt(argc, argv, "?havP:")) != EOF) { 45676185db85Sdougm switch (c) { 45686185db85Sdougm case 'a': 45696185db85Sdougm all = 1; 45706185db85Sdougm break; 45716185db85Sdougm case 'P': 4572da6c28aaSamw if (protocol != NULL) { 4573da6c28aaSamw (void) printf(gettext( 4574da6c28aaSamw "Specifying multiple protocols " 4575da6c28aaSamw "not supported: %s\n"), protocol); 4576da6c28aaSamw return (SA_SYNTAX_ERR); 4577da6c28aaSamw } 45786185db85Sdougm protocol = optarg; 45796185db85Sdougm if (!sa_valid_protocol(protocol)) { 458025a68471Sdougm (void) printf(gettext( 458125a68471Sdougm "Invalid protocol specified: %s\n"), 45826185db85Sdougm protocol); 45836185db85Sdougm return (SA_INVALID_PROTOCOL); 45846185db85Sdougm } 45856185db85Sdougm break; 45866185db85Sdougm case 'v': 45876185db85Sdougm verbose++; 45886185db85Sdougm break; 45896185db85Sdougm default: 45906185db85Sdougm case 'h': 45916185db85Sdougm case '?': 45926185db85Sdougm (void) printf(gettext("usage: %s\n"), 45936185db85Sdougm sa_get_usage(USAGE_START)); 45946185db85Sdougm return (SA_OK); 45956185db85Sdougm } 45966185db85Sdougm } 45976185db85Sdougm 45986185db85Sdougm if (optind == argc && !all) { 45996185db85Sdougm (void) printf(gettext("usage: %s\n"), 46006185db85Sdougm sa_get_usage(USAGE_START)); 460125a68471Sdougm return (SMF_EXIT_ERR_FATAL); 460225a68471Sdougm } 46036185db85Sdougm 46046185db85Sdougm if (!all) { 46056185db85Sdougm while (optind < argc) { 4606549ec3ffSdougm group = sa_get_group(handle, argv[optind]); 46076185db85Sdougm if (group != NULL) { 46086185db85Sdougm state = sa_get_group_attr(group, "state"); 46096185db85Sdougm if (state == NULL || 46106185db85Sdougm strcmp(state, "enabled") == 0) { 4611da6c28aaSamw worklist = add_list(worklist, group, 0, 4612da6c28aaSamw protocol); 46136185db85Sdougm if (verbose) 461425a68471Sdougm (void) printf(gettext( 461525a68471Sdougm "Starting group \"%s\"\n"), 46166185db85Sdougm argv[optind]); 46176185db85Sdougm } else { 46186185db85Sdougm /* 461925a68471Sdougm * Determine if there are any 4620da6c28aaSamw * protocols. If there aren't any, 46216185db85Sdougm * then there isn't anything to do in 46226185db85Sdougm * any case so no error. 46236185db85Sdougm */ 462425a68471Sdougm if (sa_get_optionset(group, 462525a68471Sdougm protocol) != NULL) { 46266185db85Sdougm ret = SMF_EXIT_OK; 46276185db85Sdougm } 46286185db85Sdougm } 46296185db85Sdougm if (state != NULL) 46306185db85Sdougm sa_free_attr_string(state); 46316185db85Sdougm } 46326185db85Sdougm optind++; 46336185db85Sdougm } 46346185db85Sdougm } else { 4635da6c28aaSamw for (group = sa_get_group(handle, NULL); 4636da6c28aaSamw group != NULL; 46376185db85Sdougm group = sa_get_next_group(group)) { 46386185db85Sdougm state = sa_get_group_attr(group, "state"); 46396185db85Sdougm if (state == NULL || strcmp(state, "enabled") == 0) 4640da6c28aaSamw worklist = add_list(worklist, group, 0, 4641da6c28aaSamw protocol); 46426185db85Sdougm if (state != NULL) 46436185db85Sdougm sa_free_attr_string(state); 46446185db85Sdougm } 46456185db85Sdougm } 464625a68471Sdougm 4647da6c28aaSamw (void) enable_all_groups(handle, worklist, 0, 1, protocol, B_FALSE); 464825a68471Sdougm 46496185db85Sdougm if (worklist != NULL) 46506185db85Sdougm free_list(worklist); 46516185db85Sdougm return (ret); 46526185db85Sdougm } 46536185db85Sdougm 46546185db85Sdougm /* 46556185db85Sdougm * sa_stop_group(flags, argc, argv) 46566185db85Sdougm * 46576185db85Sdougm * Implements the stop command. 46586185db85Sdougm * This is similar to disable except it doesn't change the state 46596185db85Sdougm * of the group(s) and only disables shares if the group is already 46606185db85Sdougm * enabled. 46616185db85Sdougm */ 46626185db85Sdougm int 4663549ec3ffSdougm sa_stop_group(sa_handle_t handle, int flags, int argc, char *argv[]) 46646185db85Sdougm { 46656185db85Sdougm int verbose = 0; 46666185db85Sdougm int all = 0; 46676185db85Sdougm int c; 46686185db85Sdougm int ret = SMF_EXIT_OK; 46696185db85Sdougm char *protocol = NULL; 46706185db85Sdougm char *state; 46716185db85Sdougm struct list *worklist = NULL; 467225a68471Sdougm sa_group_t group; 4673da6c28aaSamw #ifdef lint 4674da6c28aaSamw flags = flags; 4675da6c28aaSamw #endif 46766185db85Sdougm 46776185db85Sdougm while ((c = getopt(argc, argv, "?havP:")) != EOF) { 46786185db85Sdougm switch (c) { 46796185db85Sdougm case 'a': 46806185db85Sdougm all = 1; 46816185db85Sdougm break; 46826185db85Sdougm case 'P': 4683da6c28aaSamw if (protocol != NULL) { 4684da6c28aaSamw (void) printf(gettext( 4685da6c28aaSamw "Specifying multiple protocols " 4686da6c28aaSamw "not supported: %s\n"), protocol); 4687da6c28aaSamw return (SA_SYNTAX_ERR); 4688da6c28aaSamw } 46896185db85Sdougm protocol = optarg; 46906185db85Sdougm if (!sa_valid_protocol(protocol)) { 469125a68471Sdougm (void) printf(gettext( 469225a68471Sdougm "Invalid protocol specified: %s\n"), 46936185db85Sdougm protocol); 46946185db85Sdougm return (SA_INVALID_PROTOCOL); 46956185db85Sdougm } 46966185db85Sdougm break; 46976185db85Sdougm case 'v': 46986185db85Sdougm verbose++; 46996185db85Sdougm break; 47006185db85Sdougm default: 47016185db85Sdougm case 'h': 47026185db85Sdougm case '?': 47036185db85Sdougm (void) printf(gettext("usage: %s\n"), 47046185db85Sdougm sa_get_usage(USAGE_STOP)); 47056185db85Sdougm return (0); 47066185db85Sdougm } 47076185db85Sdougm } 47086185db85Sdougm 47096185db85Sdougm if (optind == argc && !all) { 471025a68471Sdougm (void) printf(gettext("usage: %s\n"), 471125a68471Sdougm sa_get_usage(USAGE_STOP)); 471225a68471Sdougm return (SMF_EXIT_ERR_FATAL); 471325a68471Sdougm } else if (!all) { 47146185db85Sdougm while (optind < argc) { 4715549ec3ffSdougm group = sa_get_group(handle, argv[optind]); 47166185db85Sdougm if (group != NULL) { 47176185db85Sdougm state = sa_get_group_attr(group, "state"); 47186185db85Sdougm if (state == NULL || 47196185db85Sdougm strcmp(state, "enabled") == 0) { 4720da6c28aaSamw worklist = add_list(worklist, group, 0, 4721da6c28aaSamw protocol); 47226185db85Sdougm if (verbose) 472325a68471Sdougm (void) printf(gettext( 472425a68471Sdougm "Stopping group \"%s\"\n"), 47256185db85Sdougm argv[optind]); 47266185db85Sdougm } else { 47276185db85Sdougm ret = SMF_EXIT_OK; 47286185db85Sdougm } 47296185db85Sdougm if (state != NULL) 47306185db85Sdougm sa_free_attr_string(state); 47316185db85Sdougm } 47326185db85Sdougm optind++; 47336185db85Sdougm } 47346185db85Sdougm } else { 4735da6c28aaSamw for (group = sa_get_group(handle, NULL); 4736da6c28aaSamw group != NULL; 47376185db85Sdougm group = sa_get_next_group(group)) { 47386185db85Sdougm state = sa_get_group_attr(group, "state"); 47396185db85Sdougm if (state == NULL || strcmp(state, "enabled") == 0) 4740da6c28aaSamw worklist = add_list(worklist, group, 0, 4741da6c28aaSamw protocol); 47426185db85Sdougm if (state != NULL) 47436185db85Sdougm sa_free_attr_string(state); 47446185db85Sdougm } 47456185db85Sdougm } 4746549ec3ffSdougm (void) disable_all_groups(handle, worklist, 0); 4747549ec3ffSdougm ret = sa_update_config(handle); 474825a68471Sdougm 47496185db85Sdougm if (worklist != NULL) 47506185db85Sdougm free_list(worklist); 47516185db85Sdougm return (ret); 47526185db85Sdougm } 47536185db85Sdougm 47546185db85Sdougm /* 47556185db85Sdougm * remove_all_options(share, proto) 47566185db85Sdougm * 47576185db85Sdougm * Removes all options on a share. 47586185db85Sdougm */ 47596185db85Sdougm 47606185db85Sdougm static void 47616185db85Sdougm remove_all_options(sa_share_t share, char *proto) 47626185db85Sdougm { 47636185db85Sdougm sa_optionset_t optionset; 47646185db85Sdougm sa_security_t security; 47656185db85Sdougm sa_security_t prevsec = NULL; 47666185db85Sdougm 47676185db85Sdougm optionset = sa_get_optionset(share, proto); 47686185db85Sdougm if (optionset != NULL) 47696185db85Sdougm (void) sa_destroy_optionset(optionset); 47706185db85Sdougm for (security = sa_get_security(share, NULL, NULL); 47716185db85Sdougm security != NULL; 47726185db85Sdougm security = sa_get_next_security(security)) { 47736185db85Sdougm char *type; 47746185db85Sdougm /* 477525a68471Sdougm * We walk through the list. prevsec keeps the 47766185db85Sdougm * previous security so we can delete it without 47776185db85Sdougm * destroying the list. 47786185db85Sdougm */ 47796185db85Sdougm if (prevsec != NULL) { 47806185db85Sdougm /* remove the previously seen security */ 47816185db85Sdougm (void) sa_destroy_security(prevsec); 47826185db85Sdougm /* set to NULL so we don't try multiple times */ 47836185db85Sdougm prevsec = NULL; 47846185db85Sdougm } 47856185db85Sdougm type = sa_get_security_attr(security, "type"); 47866185db85Sdougm if (type != NULL) { 47876185db85Sdougm /* 47886185db85Sdougm * if the security matches the specified protocol, we 47896185db85Sdougm * want to remove it. prevsec holds it until either 47906185db85Sdougm * the next pass or we fall out of the loop. 47916185db85Sdougm */ 47926185db85Sdougm if (strcmp(type, proto) == 0) 47936185db85Sdougm prevsec = security; 47946185db85Sdougm sa_free_attr_string(type); 47956185db85Sdougm } 47966185db85Sdougm } 47976185db85Sdougm /* in case there is one left */ 47986185db85Sdougm if (prevsec != NULL) 47996185db85Sdougm (void) sa_destroy_security(prevsec); 48006185db85Sdougm } 48016185db85Sdougm 48026185db85Sdougm 48036185db85Sdougm /* 48046185db85Sdougm * for legacy support, we need to handle the old syntax. This is what 48056185db85Sdougm * we get if sharemgr is called with the name "share" rather than 48066185db85Sdougm * sharemgr. 48076185db85Sdougm */ 48086185db85Sdougm 48096185db85Sdougm static int 48106185db85Sdougm format_legacy_path(char *buff, int buffsize, char *proto, char *cmd) 48116185db85Sdougm { 48126185db85Sdougm int err; 48136185db85Sdougm 48146185db85Sdougm err = snprintf(buff, buffsize, "/usr/lib/fs/%s/%s", proto, cmd); 48156185db85Sdougm if (err > buffsize) 48166185db85Sdougm return (-1); 48176185db85Sdougm return (0); 48186185db85Sdougm } 48196185db85Sdougm 48206185db85Sdougm 48216185db85Sdougm /* 48226185db85Sdougm * check_legacy_cmd(proto, cmd) 48236185db85Sdougm * 48246185db85Sdougm * Check to see if the cmd exists in /usr/lib/fs/<proto>/<cmd> and is 48256185db85Sdougm * executable. 48266185db85Sdougm */ 48276185db85Sdougm 48286185db85Sdougm static int 48296185db85Sdougm check_legacy_cmd(char *path) 48306185db85Sdougm { 48316185db85Sdougm struct stat st; 48326185db85Sdougm int ret = 0; 48336185db85Sdougm 48346185db85Sdougm if (stat(path, &st) == 0) { 483525a68471Sdougm if (S_ISREG(st.st_mode) && 483625a68471Sdougm st.st_mode & (S_IXUSR|S_IXGRP|S_IXOTH)) 48376185db85Sdougm ret = 1; 48386185db85Sdougm } 48396185db85Sdougm return (ret); 48406185db85Sdougm } 48416185db85Sdougm 48426185db85Sdougm /* 48436185db85Sdougm * run_legacy_command(proto, cmd, argv) 48446185db85Sdougm * 484525a68471Sdougm * We know the command exists, so attempt to execute it with all the 48466185db85Sdougm * arguments. This implements full legacy share support for those 48476185db85Sdougm * protocols that don't have plugin providers. 48486185db85Sdougm */ 48496185db85Sdougm 48506185db85Sdougm static int 48516185db85Sdougm run_legacy_command(char *path, char *argv[]) 48526185db85Sdougm { 48536185db85Sdougm int ret; 48546185db85Sdougm 48556185db85Sdougm ret = execv(path, argv); 48566185db85Sdougm if (ret < 0) { 48576185db85Sdougm switch (errno) { 48586185db85Sdougm case EACCES: 48596185db85Sdougm ret = SA_NO_PERMISSION; 48606185db85Sdougm break; 48616185db85Sdougm default: 48626185db85Sdougm ret = SA_SYSTEM_ERR; 48636185db85Sdougm break; 48646185db85Sdougm } 48656185db85Sdougm } 48666185db85Sdougm return (ret); 48676185db85Sdougm } 48686185db85Sdougm 48696185db85Sdougm /* 4870f345c0beSdougm * out_share(out, group, proto) 48716185db85Sdougm * 48726185db85Sdougm * Display the share information in the format that the "share" 48736185db85Sdougm * command has traditionally used. 48746185db85Sdougm */ 48756185db85Sdougm 48766185db85Sdougm static void 4877f345c0beSdougm out_share(FILE *out, sa_group_t group, char *proto) 48786185db85Sdougm { 48796185db85Sdougm sa_share_t share; 48806185db85Sdougm char resfmt[128]; 4881da6c28aaSamw char *defprop; 4882da6c28aaSamw 4883da6c28aaSamw /* 4884da6c28aaSamw * The original share command defaulted to displaying NFS 4885da6c28aaSamw * shares or allowed a protocol to be specified. We want to 4886da6c28aaSamw * skip those shares that are not the specified protocol. 4887da6c28aaSamw */ 4888da6c28aaSamw if (proto != NULL && sa_get_optionset(group, proto) == NULL) 4889da6c28aaSamw return; 4890da6c28aaSamw 4891da6c28aaSamw if (proto == NULL) 4892da6c28aaSamw proto = "nfs"; 4893da6c28aaSamw 4894da6c28aaSamw /* 4895da6c28aaSamw * get the default property string. NFS uses "rw" but 4896da6c28aaSamw * everything else will use "". 4897da6c28aaSamw */ 4898da6c28aaSamw if (proto != NULL && strcmp(proto, "nfs") != 0) 4899da6c28aaSamw defprop = "\"\""; 4900da6c28aaSamw else 4901da6c28aaSamw defprop = "rw"; 49026185db85Sdougm 490325a68471Sdougm for (share = sa_get_share(group, NULL); 490425a68471Sdougm share != NULL; 49056185db85Sdougm share = sa_get_next_share(share)) { 49066185db85Sdougm char *path; 49076185db85Sdougm char *type; 49086185db85Sdougm char *resource; 49096185db85Sdougm char *description; 49106185db85Sdougm char *groupname; 49116185db85Sdougm char *sharedstate; 49126185db85Sdougm int shared = 1; 49136185db85Sdougm char *soptions; 4914da6c28aaSamw char shareopts[MAXNAMLEN]; 49156185db85Sdougm 49166185db85Sdougm sharedstate = sa_get_share_attr(share, "shared"); 49176185db85Sdougm path = sa_get_share_attr(share, "path"); 49186185db85Sdougm type = sa_get_share_attr(share, "type"); 4919da6c28aaSamw resource = get_resource(share); 49206185db85Sdougm groupname = sa_get_group_attr(group, "name"); 49216185db85Sdougm 49226185db85Sdougm if (groupname != NULL && strcmp(groupname, "default") == 0) { 49236185db85Sdougm sa_free_attr_string(groupname); 49246185db85Sdougm groupname = NULL; 49256185db85Sdougm } 49266185db85Sdougm description = sa_get_share_description(share); 4927f345c0beSdougm 4928da6c28aaSamw /* 4929da6c28aaSamw * Want the sharetab version if it exists, defaulting 4930da6c28aaSamw * to NFS if no protocol specified. 4931da6c28aaSamw */ 4932da6c28aaSamw (void) snprintf(shareopts, MAXNAMLEN, "shareopts-%s", proto); 4933da6c28aaSamw soptions = sa_get_share_attr(share, shareopts); 49346185db85Sdougm 49356185db85Sdougm if (sharedstate == NULL) 49366185db85Sdougm shared = 0; 49376185db85Sdougm 4938f345c0beSdougm if (soptions == NULL) 49396185db85Sdougm soptions = sa_proto_legacy_format(proto, share, 1); 49406185db85Sdougm 49416185db85Sdougm if (shared) { 4942f345c0beSdougm /* only active shares go here */ 49436185db85Sdougm (void) snprintf(resfmt, sizeof (resfmt), "%s%s%s", 49446185db85Sdougm resource != NULL ? resource : "-", 49456185db85Sdougm groupname != NULL ? "@" : "", 49466185db85Sdougm groupname != NULL ? groupname : ""); 49476185db85Sdougm (void) fprintf(out, "%-14.14s %s %s \"%s\" \n", 494825a68471Sdougm resfmt, path, 49496185db85Sdougm (soptions != NULL && strlen(soptions) > 0) ? 4950da6c28aaSamw soptions : defprop, 49516185db85Sdougm (description != NULL) ? description : ""); 49526185db85Sdougm } 49536185db85Sdougm 49546185db85Sdougm if (path != NULL) 49556185db85Sdougm sa_free_attr_string(path); 49566185db85Sdougm if (type != NULL) 49576185db85Sdougm sa_free_attr_string(type); 49586185db85Sdougm if (resource != NULL) 49596185db85Sdougm sa_free_attr_string(resource); 49606185db85Sdougm if (groupname != NULL) 49616185db85Sdougm sa_free_attr_string(groupname); 49626185db85Sdougm if (description != NULL) 49636185db85Sdougm sa_free_share_description(description); 49646185db85Sdougm if (sharedstate != NULL) 49656185db85Sdougm sa_free_attr_string(sharedstate); 4966f345c0beSdougm if (soptions != NULL) 49676185db85Sdougm sa_format_free(soptions); 49686185db85Sdougm } 49696185db85Sdougm } 49706185db85Sdougm 49716185db85Sdougm /* 49726185db85Sdougm * output_legacy_file(out, proto) 49736185db85Sdougm * 49746185db85Sdougm * Walk all of the groups for the specified protocol and call 49756185db85Sdougm * out_share() to format and write in the format displayed by the 49766185db85Sdougm * "share" command with no arguments. 49776185db85Sdougm */ 49786185db85Sdougm 49796185db85Sdougm static void 4980549ec3ffSdougm output_legacy_file(FILE *out, char *proto, sa_handle_t handle) 49816185db85Sdougm { 49826185db85Sdougm sa_group_t group; 49836185db85Sdougm 4984da6c28aaSamw for (group = sa_get_group(handle, NULL); 4985da6c28aaSamw group != NULL; 49866185db85Sdougm group = sa_get_next_group(group)) { 49876185db85Sdougm char *zfs; 49886185db85Sdougm 49896185db85Sdougm /* 4990da6c28aaSamw * Go through all the groups and ZFS 4991da6c28aaSamw * sub-groups. out_share() will format the shares in 4992da6c28aaSamw * the group appropriately. 49936185db85Sdougm */ 49946185db85Sdougm 49956185db85Sdougm zfs = sa_get_group_attr(group, "zfs"); 49966185db85Sdougm if (zfs != NULL) { 49976185db85Sdougm sa_group_t zgroup; 49986185db85Sdougm sa_free_attr_string(zfs); 499925a68471Sdougm for (zgroup = sa_get_sub_group(group); 500025a68471Sdougm zgroup != NULL; 50016185db85Sdougm zgroup = sa_get_next_group(zgroup)) { 50026185db85Sdougm 50036185db85Sdougm /* got a group, so display it */ 5004f345c0beSdougm out_share(out, zgroup, proto); 50056185db85Sdougm } 50066185db85Sdougm } else { 5007f345c0beSdougm out_share(out, group, proto); 50086185db85Sdougm } 50096185db85Sdougm } 50106185db85Sdougm } 50116185db85Sdougm 50126185db85Sdougm int 5013549ec3ffSdougm sa_legacy_share(sa_handle_t handle, int flags, int argc, char *argv[]) 50146185db85Sdougm { 50156185db85Sdougm char *protocol = "nfs"; 50166185db85Sdougm char *options = NULL; 50176185db85Sdougm char *description = NULL; 50186185db85Sdougm char *groupname = NULL; 50196185db85Sdougm char *sharepath = NULL; 50206185db85Sdougm char *resource = NULL; 50216185db85Sdougm char *groupstatus = NULL; 50226185db85Sdougm int persist = SA_SHARE_TRANSIENT; 50236185db85Sdougm int argsused = 0; 50246185db85Sdougm int c; 50256185db85Sdougm int ret = SA_OK; 50266185db85Sdougm int zfs = 0; 50276185db85Sdougm int true_legacy = 0; 50286185db85Sdougm int curtype = SA_SHARE_TRANSIENT; 50296185db85Sdougm char cmd[MAXPATHLEN]; 503025a68471Sdougm sa_group_t group = NULL; 5031da6c28aaSamw sa_resource_t rsrc = NULL; 503225a68471Sdougm sa_share_t share; 503325a68471Sdougm char dir[MAXPATHLEN]; 5034da6c28aaSamw uint64_t features; 5035da6c28aaSamw #ifdef lint 5036da6c28aaSamw flags = flags; 5037da6c28aaSamw #endif 50386185db85Sdougm 50396185db85Sdougm while ((c = getopt(argc, argv, "?hF:d:o:p")) != EOF) { 50406185db85Sdougm switch (c) { 50416185db85Sdougm case 'd': 50426185db85Sdougm description = optarg; 50436185db85Sdougm argsused++; 50446185db85Sdougm break; 50456185db85Sdougm case 'F': 50466185db85Sdougm protocol = optarg; 50476185db85Sdougm if (!sa_valid_protocol(protocol)) { 50486185db85Sdougm if (format_legacy_path(cmd, MAXPATHLEN, 504925a68471Sdougm protocol, "share") == 0 && 505025a68471Sdougm check_legacy_cmd(cmd)) { 50516185db85Sdougm true_legacy++; 50526185db85Sdougm } else { 505325a68471Sdougm (void) fprintf(stderr, gettext( 505425a68471Sdougm "Invalid protocol specified: " 505525a68471Sdougm "%s\n"), protocol); 50566185db85Sdougm return (SA_INVALID_PROTOCOL); 50576185db85Sdougm } 50586185db85Sdougm } 50596185db85Sdougm break; 50606185db85Sdougm case 'o': 50616185db85Sdougm options = optarg; 50626185db85Sdougm argsused++; 50636185db85Sdougm break; 50646185db85Sdougm case 'p': 50656185db85Sdougm persist = SA_SHARE_PERMANENT; 50666185db85Sdougm argsused++; 50676185db85Sdougm break; 50686185db85Sdougm case 'h': 50696185db85Sdougm case '?': 50706185db85Sdougm default: 50716185db85Sdougm (void) fprintf(stderr, gettext("usage: %s\n"), 50726185db85Sdougm sa_get_usage(USAGE_SHARE)); 50736185db85Sdougm return (SA_OK); 50746185db85Sdougm } 50756185db85Sdougm } 50766185db85Sdougm 507725a68471Sdougm /* Have the info so construct what is needed */ 50786185db85Sdougm if (!argsused && optind == argc) { 50796185db85Sdougm /* display current info in share format */ 5080da6c28aaSamw (void) output_legacy_file(stdout, protocol, handle); 508125a68471Sdougm return (ret); 508225a68471Sdougm } 50836185db85Sdougm 508425a68471Sdougm /* We are modifying the configuration */ 50856185db85Sdougm if (optind == argc) { 50866185db85Sdougm (void) fprintf(stderr, gettext("usage: %s\n"), 50876185db85Sdougm sa_get_usage(USAGE_SHARE)); 50886185db85Sdougm return (SA_LEGACY_ERR); 50896185db85Sdougm } 50906185db85Sdougm if (true_legacy) { 509125a68471Sdougm /* If still using legacy share/unshare, exec it */ 50926185db85Sdougm ret = run_legacy_command(cmd, argv); 50936185db85Sdougm return (ret); 50946185db85Sdougm } 50956185db85Sdougm 50966185db85Sdougm sharepath = argv[optind++]; 50976185db85Sdougm if (optind < argc) { 50986185db85Sdougm resource = argv[optind]; 50996185db85Sdougm groupname = strchr(resource, '@'); 51006185db85Sdougm if (groupname != NULL) 51016185db85Sdougm *groupname++ = '\0'; 51026185db85Sdougm } 51036185db85Sdougm if (realpath(sharepath, dir) == NULL) 51046185db85Sdougm ret = SA_BAD_PATH; 51056185db85Sdougm else 51066185db85Sdougm sharepath = dir; 510725a68471Sdougm if (ret == SA_OK) 5108549ec3ffSdougm share = sa_find_share(handle, sharepath); 510925a68471Sdougm else 51106185db85Sdougm share = NULL; 511125a68471Sdougm 5112da6c28aaSamw features = sa_proto_get_featureset(protocol); 5113da6c28aaSamw 51146185db85Sdougm if (groupname != NULL) { 51156185db85Sdougm ret = SA_NOT_ALLOWED; 51166185db85Sdougm } else if (ret == SA_OK) { 5117da6c28aaSamw char *legacygroup; 51186185db85Sdougm /* 511925a68471Sdougm * The legacy group is always present and zfs groups 51206185db85Sdougm * come and go. zfs shares may be in sub-groups and 51216185db85Sdougm * the zfs share will already be in that group so it 5122da6c28aaSamw * isn't an error. If the protocol is "smb", the group 5123da6c28aaSamw * "smb" is used when "default" would otherwise be 5124da6c28aaSamw * used. "default" is NFS only and "smb" is SMB only. 51256185db85Sdougm */ 5126da6c28aaSamw if (strcmp(protocol, "smb") == 0) 5127da6c28aaSamw legacygroup = "smb"; 5128da6c28aaSamw else 5129da6c28aaSamw legacygroup = "default"; 5130da6c28aaSamw 51316185db85Sdougm /* 513225a68471Sdougm * If the share exists (not NULL), then make sure it 513325a68471Sdougm * is one we want to handle by getting the parent 513425a68471Sdougm * group. 51356185db85Sdougm */ 5136da6c28aaSamw if (share != NULL) { 51376185db85Sdougm group = sa_get_parent_group(share); 5138da6c28aaSamw } else { 5139549ec3ffSdougm group = sa_get_group(handle, legacygroup); 5140da6c28aaSamw if (group == NULL && strcmp(legacygroup, "smb") == 0) { 5141da6c28aaSamw /* 5142da6c28aaSamw * This group may not exist, so create 5143da6c28aaSamw * as necessary. It only contains the 5144da6c28aaSamw * "smb" protocol. 5145da6c28aaSamw */ 5146da6c28aaSamw group = sa_create_group(handle, legacygroup, 5147da6c28aaSamw &ret); 5148da6c28aaSamw if (group != NULL) 5149da6c28aaSamw (void) sa_create_optionset(group, 5150da6c28aaSamw protocol); 5151da6c28aaSamw } 5152da6c28aaSamw } 515325a68471Sdougm 5154da6c28aaSamw if (group == NULL) { 5155da6c28aaSamw ret = SA_SYSTEM_ERR; 5156da6c28aaSamw goto err; 5157da6c28aaSamw } 5158da6c28aaSamw 51596185db85Sdougm groupstatus = group_status(group); 51606185db85Sdougm if (share == NULL) { 51616185db85Sdougm share = sa_add_share(group, sharepath, 51626185db85Sdougm persist, &ret); 516325a68471Sdougm if (share == NULL && 516425a68471Sdougm ret == SA_DUPLICATE_NAME) { 516525a68471Sdougm /* 516625a68471Sdougm * Could be a ZFS path being started 516725a68471Sdougm */ 516825a68471Sdougm if (sa_zfs_is_shared(handle, 516925a68471Sdougm sharepath)) { 517025a68471Sdougm ret = SA_OK; 517125a68471Sdougm group = sa_get_group(handle, 517225a68471Sdougm "zfs"); 517325a68471Sdougm if (group == NULL) { 517425a68471Sdougm /* 517525a68471Sdougm * This shouldn't 517625a68471Sdougm * happen. 517725a68471Sdougm */ 517825a68471Sdougm ret = SA_CONFIG_ERR; 517925a68471Sdougm } else { 518025a68471Sdougm share = sa_add_share( 518125a68471Sdougm group, sharepath, 518225a68471Sdougm persist, &ret); 51836185db85Sdougm } 51846185db85Sdougm } 51856185db85Sdougm } 51866185db85Sdougm } else { 518793a6f655Sdougm char *type; 51886185db85Sdougm /* 518925a68471Sdougm * May want to change persist state, but the 519093a6f655Sdougm * important thing is to change options. We 519193a6f655Sdougm * need to change them regardless of the 519293a6f655Sdougm * source. 51936185db85Sdougm */ 5194da6c28aaSamw 5195549ec3ffSdougm if (sa_zfs_is_shared(handle, sharepath)) { 519693a6f655Sdougm zfs = 1; 519793a6f655Sdougm } 51986185db85Sdougm remove_all_options(share, protocol); 51996185db85Sdougm type = sa_get_share_attr(share, "type"); 52006185db85Sdougm if (type != NULL && 52016185db85Sdougm strcmp(type, "transient") != 0) { 52026185db85Sdougm curtype = SA_SHARE_PERMANENT; 52036185db85Sdougm } 52046185db85Sdougm if (type != NULL) 52056185db85Sdougm sa_free_attr_string(type); 52066185db85Sdougm if (curtype != persist) { 52076185db85Sdougm (void) sa_set_share_attr(share, "type", 52086185db85Sdougm persist == SA_SHARE_PERMANENT ? 52096185db85Sdougm "persist" : "transient"); 52106185db85Sdougm } 52116185db85Sdougm } 5212da6c28aaSamw 5213da6c28aaSamw /* 5214da6c28aaSamw * If there is a resource name, we may 5215da6c28aaSamw * actually care about it if this is share for 5216da6c28aaSamw * a protocol that uses resource level sharing 5217da6c28aaSamw * (SMB). We need to find the resource and, if 5218da6c28aaSamw * it exists, make sure it belongs to the 5219da6c28aaSamw * current share. If it doesn't exist, attempt 5220da6c28aaSamw * to create it. 5221da6c28aaSamw */ 5222da6c28aaSamw 5223da6c28aaSamw if (ret == SA_OK && resource != NULL) { 5224da6c28aaSamw rsrc = sa_find_resource(handle, resource); 5225da6c28aaSamw if (rsrc != NULL) { 5226da6c28aaSamw if (share != sa_get_resource_parent(rsrc)) 5227da6c28aaSamw ret = SA_DUPLICATE_NAME; 5228da6c28aaSamw } else { 5229da6c28aaSamw rsrc = sa_add_resource(share, resource, 5230da6c28aaSamw persist, &ret); 5231da6c28aaSamw } 5232da6c28aaSamw if (features & SA_FEATURE_RESOURCE) 5233da6c28aaSamw share = rsrc; 5234da6c28aaSamw } 5235da6c28aaSamw 523625a68471Sdougm /* Have a group to hold this share path */ 52376185db85Sdougm if (ret == SA_OK && options != NULL && 52386185db85Sdougm strlen(options) > 0) { 52396185db85Sdougm ret = sa_parse_legacy_options(share, 52406185db85Sdougm options, 52416185db85Sdougm protocol); 52426185db85Sdougm } 524393a6f655Sdougm if (!zfs) { 524493a6f655Sdougm /* 5245da6c28aaSamw * ZFS shares never have a description 5246da6c28aaSamw * and we can't store the values so 5247da6c28aaSamw * don't try. 524893a6f655Sdougm */ 52496185db85Sdougm if (ret == SA_OK && description != NULL) 525025a68471Sdougm ret = sa_set_share_description(share, 525125a68471Sdougm description); 52526185db85Sdougm } 5253da6c28aaSamw if (ret == SA_OK && 5254da6c28aaSamw strcmp(groupstatus, "enabled") == 0) { 5255da6c28aaSamw if (rsrc != share) 52566185db85Sdougm ret = sa_enable_share(share, protocol); 5257da6c28aaSamw else 5258da6c28aaSamw ret = sa_enable_resource(rsrc, 5259da6c28aaSamw protocol); 526025a68471Sdougm if (ret == SA_OK && 526125a68471Sdougm persist == SA_SHARE_PERMANENT) { 526225a68471Sdougm (void) sa_update_legacy(share, 526325a68471Sdougm protocol); 52646185db85Sdougm } 52656185db85Sdougm if (ret == SA_OK) 5266549ec3ffSdougm ret = sa_update_config(handle); 52676185db85Sdougm } 52686185db85Sdougm } 5269da6c28aaSamw err: 52706185db85Sdougm if (ret != SA_OK) { 52716185db85Sdougm (void) fprintf(stderr, gettext("Could not share: %s: %s\n"), 52726185db85Sdougm sharepath, sa_errorstr(ret)); 52736185db85Sdougm ret = SA_LEGACY_ERR; 52746185db85Sdougm } 52756185db85Sdougm return (ret); 52766185db85Sdougm } 52776185db85Sdougm 52786185db85Sdougm /* 52796185db85Sdougm * sa_legacy_unshare(flags, argc, argv) 52806185db85Sdougm * 52816185db85Sdougm * Implements the original unshare command. 52826185db85Sdougm */ 52836185db85Sdougm int 5284549ec3ffSdougm sa_legacy_unshare(sa_handle_t handle, int flags, int argc, char *argv[]) 52856185db85Sdougm { 52866185db85Sdougm char *protocol = "nfs"; /* for now */ 52876185db85Sdougm char *options = NULL; 52886185db85Sdougm char *sharepath = NULL; 52896185db85Sdougm int persist = SA_SHARE_TRANSIENT; 52906185db85Sdougm int argsused = 0; 52916185db85Sdougm int c; 52926185db85Sdougm int ret = SA_OK; 52936185db85Sdougm int true_legacy = 0; 5294da6c28aaSamw uint64_t features = 0; 5295da6c28aaSamw sa_resource_t resource = NULL; 52966185db85Sdougm char cmd[MAXPATHLEN]; 5297da6c28aaSamw #ifdef lint 5298da6c28aaSamw flags = flags; 5299da6c28aaSamw options = options; 5300da6c28aaSamw #endif 53016185db85Sdougm 53026185db85Sdougm while ((c = getopt(argc, argv, "?hF:o:p")) != EOF) { 53036185db85Sdougm switch (c) { 53046185db85Sdougm case 'h': 53056185db85Sdougm case '?': 53066185db85Sdougm break; 53076185db85Sdougm case 'F': 53086185db85Sdougm protocol = optarg; 53096185db85Sdougm if (!sa_valid_protocol(protocol)) { 53106185db85Sdougm if (format_legacy_path(cmd, MAXPATHLEN, 53116185db85Sdougm protocol, "unshare") == 0 && 53126185db85Sdougm check_legacy_cmd(cmd)) { 53136185db85Sdougm true_legacy++; 53146185db85Sdougm } else { 531525a68471Sdougm (void) printf(gettext( 531625a68471Sdougm "Invalid file system name\n")); 53176185db85Sdougm return (SA_INVALID_PROTOCOL); 53186185db85Sdougm } 53196185db85Sdougm } 53206185db85Sdougm break; 53216185db85Sdougm case 'o': 53226185db85Sdougm options = optarg; 53236185db85Sdougm argsused++; 53246185db85Sdougm break; 53256185db85Sdougm case 'p': 53266185db85Sdougm persist = SA_SHARE_PERMANENT; 53276185db85Sdougm argsused++; 53286185db85Sdougm break; 53296185db85Sdougm default: 53306185db85Sdougm (void) printf(gettext("usage: %s\n"), 53316185db85Sdougm sa_get_usage(USAGE_UNSHARE)); 53326185db85Sdougm return (SA_OK); 53336185db85Sdougm } 53346185db85Sdougm } 53356185db85Sdougm 533625a68471Sdougm /* Have the info so construct what is needed */ 533725a68471Sdougm if (optind == argc || (optind + 1) < argc || options != NULL) { 53386185db85Sdougm ret = SA_SYNTAX_ERR; 53396185db85Sdougm } else { 53406185db85Sdougm sa_share_t share; 53416185db85Sdougm char dir[MAXPATHLEN]; 53426185db85Sdougm if (true_legacy) { 53436185db85Sdougm /* if still using legacy share/unshare, exec it */ 53446185db85Sdougm ret = run_legacy_command(cmd, argv); 53456185db85Sdougm return (ret); 53466185db85Sdougm } 5347a99982a7Sdougm /* 5348a99982a7Sdougm * Find the path in the internal configuration. If it 5349a99982a7Sdougm * isn't found, attempt to resolve the path via 5350a99982a7Sdougm * realpath() and try again. 5351a99982a7Sdougm */ 53526185db85Sdougm sharepath = argv[optind++]; 5353549ec3ffSdougm share = sa_find_share(handle, sharepath); 5354a99982a7Sdougm if (share == NULL) { 53556185db85Sdougm if (realpath(sharepath, dir) == NULL) { 53566185db85Sdougm ret = SA_NO_SUCH_PATH; 53576185db85Sdougm } else { 5358549ec3ffSdougm share = sa_find_share(handle, dir); 5359a99982a7Sdougm } 5360a99982a7Sdougm } 5361da6c28aaSamw if (share == NULL) { 5362da6c28aaSamw /* Could be a resource name so check that next */ 5363da6c28aaSamw features = sa_proto_get_featureset(protocol); 5364da6c28aaSamw resource = sa_find_resource(handle, sharepath); 5365da6c28aaSamw if (resource != NULL) { 5366da6c28aaSamw share = sa_get_resource_parent(resource); 5367da6c28aaSamw if (features & SA_FEATURE_RESOURCE) 5368da6c28aaSamw (void) sa_disable_resource(resource, 5369da6c28aaSamw protocol); 5370da6c28aaSamw if (persist == SA_SHARE_PERMANENT) { 5371da6c28aaSamw ret = sa_remove_resource(resource); 5372da6c28aaSamw if (ret == SA_OK) 5373da6c28aaSamw ret = sa_update_config(handle); 5374da6c28aaSamw } 5375da6c28aaSamw /* 5376da6c28aaSamw * If we still have a resource on the 5377da6c28aaSamw * share, we don't disable the share 5378da6c28aaSamw * itself. IF there aren't anymore, we 5379da6c28aaSamw * need to remove the share. The 5380da6c28aaSamw * removal will be done in the next 5381da6c28aaSamw * section if appropriate. 5382da6c28aaSamw */ 5383da6c28aaSamw resource = sa_get_share_resource(share, NULL); 5384da6c28aaSamw if (resource != NULL) 5385da6c28aaSamw share = NULL; 5386da6c28aaSamw } else if (ret == SA_OK) { 5387da6c28aaSamw /* Didn't find path and no resource */ 5388da6c28aaSamw ret = SA_BAD_PATH; 5389da6c28aaSamw } 5390da6c28aaSamw } 5391da6c28aaSamw if (share != NULL && resource == NULL) { 53926185db85Sdougm ret = sa_disable_share(share, protocol); 5393a99982a7Sdougm /* 5394a99982a7Sdougm * Errors are ok and removal should still occur. The 5395a99982a7Sdougm * legacy unshare is more forgiving of errors than the 5396a99982a7Sdougm * remove-share subcommand which may need the force 5397a99982a7Sdougm * flag set for some error conditions. That is, the 5398a99982a7Sdougm * "unshare" command will always unshare if it can 5399a99982a7Sdougm * while "remove-share" might require the force option. 5400a99982a7Sdougm */ 5401a99982a7Sdougm if (persist == SA_SHARE_PERMANENT) { 54026185db85Sdougm ret = sa_remove_share(share); 5403a99982a7Sdougm if (ret == SA_OK) 5404549ec3ffSdougm ret = sa_update_config(handle); 54056185db85Sdougm } 5406da6c28aaSamw } else if (ret == SA_OK && share == NULL && resource == NULL) { 5407da6c28aaSamw /* 5408da6c28aaSamw * If both share and resource are NULL, then 5409da6c28aaSamw * share not found. If one or the other was 5410da6c28aaSamw * found or there was an earlier error, we 5411da6c28aaSamw * assume it was handled earlier. 5412da6c28aaSamw */ 54136185db85Sdougm ret = SA_NOT_SHARED; 54146185db85Sdougm } 54156185db85Sdougm } 54166185db85Sdougm switch (ret) { 54176185db85Sdougm default: 54186185db85Sdougm (void) printf("%s: %s\n", sharepath, sa_errorstr(ret)); 54196185db85Sdougm ret = SA_LEGACY_ERR; 54206185db85Sdougm break; 54216185db85Sdougm case SA_SYNTAX_ERR: 54226185db85Sdougm (void) printf(gettext("usage: %s\n"), 54236185db85Sdougm sa_get_usage(USAGE_UNSHARE)); 54246185db85Sdougm break; 54256185db85Sdougm case SA_OK: 54266185db85Sdougm break; 54276185db85Sdougm } 54286185db85Sdougm return (ret); 54296185db85Sdougm } 54306185db85Sdougm 54316185db85Sdougm /* 543225a68471Sdougm * Common commands that implement the sub-commands used by all 5433da6c28aaSamw * protocols. The entries are found via the lookup command 54346185db85Sdougm */ 54356185db85Sdougm 54366185db85Sdougm static sa_command_t commands[] = { 54376185db85Sdougm {"add-share", 0, sa_addshare, USAGE_ADD_SHARE, SVC_SET}, 54386185db85Sdougm {"create", 0, sa_create, USAGE_CREATE, SVC_SET|SVC_ACTION}, 54396185db85Sdougm {"delete", 0, sa_delete, USAGE_DELETE, SVC_SET|SVC_ACTION}, 54406185db85Sdougm {"disable", 0, sa_disable_group, USAGE_DISABLE, SVC_SET|SVC_ACTION}, 54416185db85Sdougm {"enable", 0, sa_enable_group, USAGE_ENABLE, SVC_SET|SVC_ACTION}, 54426185db85Sdougm {"list", 0, sa_list, USAGE_LIST}, 54436185db85Sdougm {"move-share", 0, sa_moveshare, USAGE_MOVE_SHARE, SVC_SET}, 54446185db85Sdougm {"remove-share", 0, sa_removeshare, USAGE_REMOVE_SHARE, SVC_SET}, 54456185db85Sdougm {"set", 0, sa_set, USAGE_SET, SVC_SET}, 54466185db85Sdougm {"set-share", 0, sa_set_share, USAGE_SET_SHARE, SVC_SET}, 54476185db85Sdougm {"show", 0, sa_show, USAGE_SHOW}, 54486185db85Sdougm {"share", 0, sa_legacy_share, USAGE_SHARE, SVC_SET|SVC_ACTION}, 54496185db85Sdougm {"start", CMD_NODISPLAY, sa_start_group, USAGE_START, 54506185db85Sdougm SVC_SET|SVC_ACTION}, 54516185db85Sdougm {"stop", CMD_NODISPLAY, sa_stop_group, USAGE_STOP, SVC_SET|SVC_ACTION}, 54526185db85Sdougm {"unset", 0, sa_unset, USAGE_UNSET, SVC_SET}, 54536185db85Sdougm {"unshare", 0, sa_legacy_unshare, USAGE_UNSHARE, SVC_SET|SVC_ACTION}, 54546185db85Sdougm {NULL, 0, NULL, NULL} 54556185db85Sdougm }; 54566185db85Sdougm 54576185db85Sdougm static char * 54586185db85Sdougm sa_get_usage(sa_usage_t index) 54596185db85Sdougm { 54606185db85Sdougm char *ret = NULL; 54616185db85Sdougm switch (index) { 54626185db85Sdougm case USAGE_ADD_SHARE: 54636185db85Sdougm ret = gettext("add-share [-nth] [-r resource-name] " 54646185db85Sdougm "[-d \"description text\"] -s sharepath group"); 54656185db85Sdougm break; 54666185db85Sdougm case USAGE_CREATE: 546725a68471Sdougm ret = gettext( 546825a68471Sdougm "create [-nvh] [-P proto [-p property=value]] group"); 54696185db85Sdougm break; 54706185db85Sdougm case USAGE_DELETE: 54716185db85Sdougm ret = gettext("delete [-nvh] [-P proto] [-f] group"); 54726185db85Sdougm break; 54736185db85Sdougm case USAGE_DISABLE: 54746185db85Sdougm ret = gettext("disable [-nvh] {-a | group ...}"); 54756185db85Sdougm break; 54766185db85Sdougm case USAGE_ENABLE: 54776185db85Sdougm ret = gettext("enable [-nvh] {-a | group ...}"); 54786185db85Sdougm break; 54796185db85Sdougm case USAGE_LIST: 54806185db85Sdougm ret = gettext("list [-vh] [-P proto]"); 54816185db85Sdougm break; 54826185db85Sdougm case USAGE_MOVE_SHARE: 548325a68471Sdougm ret = gettext( 548425a68471Sdougm "move-share [-nvh] -s sharepath destination-group"); 54856185db85Sdougm break; 54866185db85Sdougm case USAGE_REMOVE_SHARE: 5487da6c28aaSamw ret = gettext( 5488da6c28aaSamw "remove-share [-fnvh] {-s sharepath | -r resource} " 5489da6c28aaSamw "group"); 54906185db85Sdougm break; 54916185db85Sdougm case USAGE_SET: 54926185db85Sdougm ret = gettext("set [-nvh] -P proto [-S optspace] " 5493da6c28aaSamw "[-p property=value]* [-s sharepath] [-r resource]] " 5494da6c28aaSamw "group"); 54956185db85Sdougm break; 54966185db85Sdougm case USAGE_SET_SECURITY: 54976185db85Sdougm ret = gettext("set-security [-nvh] -P proto -S security-type " 54986185db85Sdougm "[-p property=value]* group"); 54996185db85Sdougm break; 55006185db85Sdougm case USAGE_SET_SHARE: 55016185db85Sdougm ret = gettext("set-share [-nh] [-r resource] " 55026185db85Sdougm "[-d \"description text\"] -s sharepath group"); 55036185db85Sdougm break; 55046185db85Sdougm case USAGE_SHOW: 55056185db85Sdougm ret = gettext("show [-pvxh] [-P proto] [group ...]"); 55066185db85Sdougm break; 55076185db85Sdougm case USAGE_SHARE: 55086185db85Sdougm ret = gettext("share [-F fstype] [-p] [-o optionlist]" 55096185db85Sdougm "[-d description] [pathname [resourcename]]"); 55106185db85Sdougm break; 55116185db85Sdougm case USAGE_START: 55126185db85Sdougm ret = gettext("start [-vh] [-P proto] {-a | group ...}"); 55136185db85Sdougm break; 55146185db85Sdougm case USAGE_STOP: 55156185db85Sdougm ret = gettext("stop [-vh] [-P proto] {-a | group ...}"); 55166185db85Sdougm break; 55176185db85Sdougm case USAGE_UNSET: 55186185db85Sdougm ret = gettext("unset [-nvh] -P proto [-S optspace] " 55196185db85Sdougm "[-p property]* group"); 55206185db85Sdougm break; 55216185db85Sdougm case USAGE_UNSET_SECURITY: 5522da6c28aaSamw ret = gettext("unset-security [-nvh] -P proto " 5523da6c28aaSamw "-S security-type [-p property]* group"); 55246185db85Sdougm break; 55256185db85Sdougm case USAGE_UNSHARE: 552625a68471Sdougm ret = gettext( 5527da6c28aaSamw "unshare [-F fstype] [-p] [-o optionlist] sharepath"); 55286185db85Sdougm break; 55296185db85Sdougm } 55306185db85Sdougm return (ret); 55316185db85Sdougm } 55326185db85Sdougm 55336185db85Sdougm /* 55346185db85Sdougm * sa_lookup(cmd, proto) 55356185db85Sdougm * 55366185db85Sdougm * Lookup the sub-command. proto isn't currently used, but it may 55376185db85Sdougm * eventually provide a way to provide protocol specific sub-commands. 55386185db85Sdougm */ 55396185db85Sdougm sa_command_t * 55406185db85Sdougm sa_lookup(char *cmd, char *proto) 55416185db85Sdougm { 55426185db85Sdougm int i; 55436185db85Sdougm size_t len; 5544da6c28aaSamw #ifdef lint 5545da6c28aaSamw proto = proto; 5546da6c28aaSamw #endif 55476185db85Sdougm 55486185db85Sdougm len = strlen(cmd); 55496185db85Sdougm for (i = 0; commands[i].cmdname != NULL; i++) { 55506185db85Sdougm if (strncmp(cmd, commands[i].cmdname, len) == 0) 55516185db85Sdougm return (&commands[i]); 55526185db85Sdougm } 55536185db85Sdougm return (NULL); 55546185db85Sdougm } 55556185db85Sdougm 55566185db85Sdougm void 55576185db85Sdougm sub_command_help(char *proto) 55586185db85Sdougm { 55596185db85Sdougm int i; 5560da6c28aaSamw #ifdef lint 5561da6c28aaSamw proto = proto; 5562da6c28aaSamw #endif 55636185db85Sdougm 55646185db85Sdougm (void) printf(gettext("\tsub-commands:\n")); 55656185db85Sdougm for (i = 0; commands[i].cmdname != NULL; i++) { 55666185db85Sdougm if (!(commands[i].flags & (CMD_ALIAS|CMD_NODISPLAY))) 55676185db85Sdougm (void) printf("\t%s\n", 55686185db85Sdougm sa_get_usage((sa_usage_t)commands[i].cmdidx)); 55696185db85Sdougm } 55706185db85Sdougm } 5571