1*f48205beScasper /* 2*f48205beScasper * CDDL HEADER START 3*f48205beScasper * 4*f48205beScasper * The contents of this file are subject to the terms of the 5*f48205beScasper * Common Development and Distribution License (the "License"). 6*f48205beScasper * You may not use this file except in compliance with the License. 7*f48205beScasper * 8*f48205beScasper * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE 9*f48205beScasper * or http://www.opensolaris.org/os/licensing. 10*f48205beScasper * See the License for the specific language governing permissions 11*f48205beScasper * and limitations under the License. 12*f48205beScasper * 13*f48205beScasper * When distributing Covered Code, include this CDDL HEADER in each 14*f48205beScasper * file and include the License file at usr/src/OPENSOLARIS.LICENSE. 15*f48205beScasper * If applicable, add the following below this CDDL HEADER, with the 16*f48205beScasper * fields enclosed by brackets "[]" replaced with your own identifying 17*f48205beScasper * information: Portions Copyright [yyyy] [name of copyright owner] 18*f48205beScasper * 19*f48205beScasper * CDDL HEADER END 20*f48205beScasper */ 21*f48205beScasper 22*f48205beScasper /* 23*f48205beScasper * Copyright 2007 Sun Microsystems, Inc. All rights reserved. 24*f48205beScasper * Use is subject to license terms. 25*f48205beScasper */ 26*f48205beScasper 27*f48205beScasper #ifndef _SYS_SID_H 28*f48205beScasper #define _SYS_SID_H 29*f48205beScasper 30*f48205beScasper #pragma ident "%Z%%M% %I% %E% SMI" 31*f48205beScasper 32*f48205beScasper #include <sys/types.h> 33*f48205beScasper #include <sys/avl.h> 34*f48205beScasper 35*f48205beScasper /* 36*f48205beScasper * Kernel SID data structure and functions. 37*f48205beScasper */ 38*f48205beScasper #ifdef __cplusplus 39*f48205beScasper extern "C" { 40*f48205beScasper #endif 41*f48205beScasper 42*f48205beScasper /* sidsys subcodes */ 43*f48205beScasper #define SIDSYS_ALLOC_IDS 0 44*f48205beScasper /* Flags for ALLOC_IDS */ 45*f48205beScasper #define SID_EXTEND_RANGE 0 46*f48205beScasper #define SID_NEW_RANGE 1 47*f48205beScasper 48*f48205beScasper #define SIDSYS_IDMAP_REG 1 49*f48205beScasper #define SIDSYS_IDMAP_UNREG 2 50*f48205beScasper 51*f48205beScasper #define SIDSYS_SID2ID 0 52*f48205beScasper #define SIDSYS_ID2SID 1 53*f48205beScasper 54*f48205beScasper typedef struct domsid { 55*f48205beScasper uint_t ds_rid; 56*f48205beScasper char ds_dom[1]; 57*f48205beScasper } domsid_t; 58*f48205beScasper 59*f48205beScasper typedef struct sidmap_call { 60*f48205beScasper int sc_type; 61*f48205beScasper union sc_val_u { 62*f48205beScasper uid_t sc_id; 63*f48205beScasper domsid_t sc_sid; 64*f48205beScasper } sc_val; 65*f48205beScasper } sidmap_call_t; 66*f48205beScasper 67*f48205beScasper 68*f48205beScasper #ifdef _KERNEL 69*f48205beScasper /* Domains are stored in AVL trees so we can share them among SIDs */ 70*f48205beScasper typedef struct ksiddomain { 71*f48205beScasper uint_t kd_ref; 72*f48205beScasper uint_t kd_len; 73*f48205beScasper char *kd_name; /* Domain part of SID */ 74*f48205beScasper avl_node_t kd_link; 75*f48205beScasper } ksiddomain_t; 76*f48205beScasper 77*f48205beScasper typedef struct ksid { 78*f48205beScasper uid_t ks_id; /* Cache of (ephemeral) uid */ 79*f48205beScasper uint32_t ks_rid; /* Rid part of the name */ 80*f48205beScasper uint32_t ks_attr; /* Attribute */ 81*f48205beScasper ksiddomain_t *ks_domain; /* Domain descsriptor */ 82*f48205beScasper } ksid_t; 83*f48205beScasper 84*f48205beScasper typedef enum ksid_index { 85*f48205beScasper KSID_USER, 86*f48205beScasper KSID_GROUP, 87*f48205beScasper KSID_OWNER, 88*f48205beScasper KSID_COUNT /* Must be last */ 89*f48205beScasper } ksid_index_t; 90*f48205beScasper 91*f48205beScasper /* 92*f48205beScasper * As no memory may be allocated for credentials while holding p_crlock, 93*f48205beScasper * all sub data structures need to be ref counted. 94*f48205beScasper */ 95*f48205beScasper 96*f48205beScasper typedef struct ksidlist { 97*f48205beScasper uint_t ksl_ref; 98*f48205beScasper uint_t ksl_nsid; 99*f48205beScasper uint_t ksl_neid; /* Number of ids which are ephemeral */ 100*f48205beScasper ksid_t ksl_sids[1]; /* Allocate ksl_nsid times */ 101*f48205beScasper } ksidlist_t; 102*f48205beScasper 103*f48205beScasper #define KSIDLIST_MEM(n) (sizeof (ksidlist_t) + ((n) - 1) * sizeof (ksid_t)) 104*f48205beScasper 105*f48205beScasper typedef struct credsid { 106*f48205beScasper uint_t kr_ref; /* Reference count */ 107*f48205beScasper ksid_t kr_sidx[KSID_COUNT]; /* User, group, default owner */ 108*f48205beScasper ksidlist_t *kr_sidlist; /* List of SIDS */ 109*f48205beScasper } credsid_t; 110*f48205beScasper 111*f48205beScasper const char *ksid_getdomain(ksid_t *); 112*f48205beScasper uint_t ksid_getrid(ksid_t *); 113*f48205beScasper 114*f48205beScasper int ksid_lookup(uid_t, ksid_t *); 115*f48205beScasper void ksid_rele(ksid_t *); 116*f48205beScasper 117*f48205beScasper credsid_t *kcrsid_alloc(void); 118*f48205beScasper 119*f48205beScasper credsid_t *kcrsid_setsid(credsid_t *, ksid_t *, ksid_index_t); 120*f48205beScasper credsid_t *kcrsid_setsidlist(credsid_t *, ksidlist_t *); 121*f48205beScasper 122*f48205beScasper void kcrsid_rele(credsid_t *); 123*f48205beScasper void kcrsid_hold(credsid_t *); 124*f48205beScasper void kcrsidcopy_to(const credsid_t *okcr, credsid_t *nkcr); 125*f48205beScasper 126*f48205beScasper void ksiddomain_rele(ksiddomain_t *); 127*f48205beScasper void ksiddomain_hold(ksiddomain_t *); 128*f48205beScasper void ksidlist_rele(ksidlist_t *); 129*f48205beScasper void ksidlist_hold(ksidlist_t *); 130*f48205beScasper 131*f48205beScasper ksiddomain_t *ksid_lookupdomain(const char *); 132*f48205beScasper 133*f48205beScasper ksidlist_t *kcrsid_gidstosids(int, gid_t *); 134*f48205beScasper 135*f48205beScasper int idmap_call_byid(uid_t, ksid_t *); 136*f48205beScasper uid_t idmap_call_bysid(ksid_t *); 137*f48205beScasper 138*f48205beScasper #else 139*f48205beScasper 140*f48205beScasper int allocids(int, int, uid_t *, int, gid_t *); 141*f48205beScasper int idmap_reg(int); 142*f48205beScasper int idmap_unreg(int); 143*f48205beScasper 144*f48205beScasper #endif /* _KERNEL */ 145*f48205beScasper 146*f48205beScasper #ifdef __cplusplus 147*f48205beScasper } 148*f48205beScasper #endif 149*f48205beScasper 150*f48205beScasper #endif /* _SYS_SID_H */ 151