libzfs/common/libzfs_dataset.c

168404Spjd/*
168404Spjd * CDDL HEADER START
168404Spjd *
168404Spjd * The contents of this file are subject to the terms of the
168404Spjd * Common Development and Distribution License (the "License").
168404Spjd * You may not use this file except in compliance with the License.
168404Spjd *
168404Spjd * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
168404Spjd * or http://www.opensolaris.org/os/licensing.
168404Spjd * See the License for the specific language governing permissions
168404Spjd * and limitations under the License.
168404Spjd *
168404Spjd * When distributing Covered Code, include this CDDL HEADER in each
168404Spjd * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
168404Spjd * If applicable, add the following below this CDDL HEADER, with the
168404Spjd * fields enclosed by brackets "[]" replaced with your own identifying
168404Spjd * information: Portions Copyright [yyyy] [name of copyright owner]
168404Spjd *
168404Spjd * CDDL HEADER END
168404Spjd */
168404Spjd
168404Spjd/*
205198Sdelphij * Copyright 2009 Sun Microsystems, Inc.  All rights reserved.
168404Spjd * Use is subject to license terms.
168404Spjd */
168404Spjd
168404Spjd#include <assert.h>
168404Spjd#include <ctype.h>
168404Spjd#include <errno.h>
168404Spjd#include <libintl.h>
168404Spjd#include <math.h>
168404Spjd#include <stdio.h>
168404Spjd#include <stdlib.h>
168404Spjd#include <strings.h>
168404Spjd#include <unistd.h>
185029Spjd#include <stddef.h>
168404Spjd#include <zone.h>
168404Spjd#include <fcntl.h>
168404Spjd#include <sys/mntent.h>
168404Spjd#include <sys/mnttab.h>
168404Spjd#include <sys/mount.h>
185029Spjd#include <sys/avl.h>
185029Spjd#include <priv.h>
185029Spjd#include <pwd.h>
185029Spjd#include <grp.h>
185029Spjd#include <stddef.h>
168404Spjd
168404Spjd#include <sys/spa.h>
168404Spjd#include <sys/zap.h>
168404Spjd#include <libzfs.h>
168404Spjd
168404Spjd#include "zfs_namecheck.h"
168404Spjd#include "zfs_prop.h"
168404Spjd#include "libzfs_impl.h"
185029Spjd#include "zfs_deleg.h"
168404Spjd
168676Spjdstatic int zvol_create_link_common(libzfs_handle_t *, const char *, int);
168676Spjd
168404Spjd/*
168404Spjd * Given a single type (not a mask of types), return the type in a human
168404Spjd * readable form.
168404Spjd */
168404Spjdconst char *
168404Spjdzfs_type_to_name(zfs_type_t type)
168404Spjd{
168404Spjd	switch (type) {
168404Spjd	case ZFS_TYPE_FILESYSTEM:
168404Spjd		return (dgettext(TEXT_DOMAIN, "filesystem"));
168404Spjd	case ZFS_TYPE_SNAPSHOT:
168404Spjd		return (dgettext(TEXT_DOMAIN, "snapshot"));
168404Spjd	case ZFS_TYPE_VOLUME:
168404Spjd		return (dgettext(TEXT_DOMAIN, "volume"));
168404Spjd	}
168404Spjd
168404Spjd	return (NULL);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Given a path and mask of ZFS types, return a string describing this dataset.
168404Spjd * This is used when we fail to open a dataset and we cannot get an exact type.
168404Spjd * We guess what the type would have been based on the path and the mask of
168404Spjd * acceptable types.
168404Spjd */
168404Spjdstatic const char *
168404Spjdpath_to_str(const char *path, int types)
168404Spjd{
168404Spjd	/*
168404Spjd	 * When given a single type, always report the exact type.
168404Spjd	 */
168404Spjd	if (types == ZFS_TYPE_SNAPSHOT)
168404Spjd		return (dgettext(TEXT_DOMAIN, "snapshot"));
168404Spjd	if (types == ZFS_TYPE_FILESYSTEM)
168404Spjd		return (dgettext(TEXT_DOMAIN, "filesystem"));
168404Spjd	if (types == ZFS_TYPE_VOLUME)
168404Spjd		return (dgettext(TEXT_DOMAIN, "volume"));
168404Spjd
168404Spjd	/*
168404Spjd	 * The user is requesting more than one type of dataset.  If this is the
168404Spjd	 * case, consult the path itself.  If we're looking for a snapshot, and
168404Spjd	 * a '@' is found, then report it as "snapshot".  Otherwise, remove the
168404Spjd	 * snapshot attribute and try again.
168404Spjd	 */
168404Spjd	if (types & ZFS_TYPE_SNAPSHOT) {
168404Spjd		if (strchr(path, '@') != NULL)
168404Spjd			return (dgettext(TEXT_DOMAIN, "snapshot"));
168404Spjd		return (path_to_str(path, types & ~ZFS_TYPE_SNAPSHOT));
168404Spjd	}
168404Spjd
168404Spjd
168404Spjd	/*
168404Spjd	 * The user has requested either filesystems or volumes.
168404Spjd	 * We have no way of knowing a priori what type this would be, so always
168404Spjd	 * report it as "filesystem" or "volume", our two primitive types.
168404Spjd	 */
168404Spjd	if (types & ZFS_TYPE_FILESYSTEM)
168404Spjd		return (dgettext(TEXT_DOMAIN, "filesystem"));
168404Spjd
168404Spjd	assert(types & ZFS_TYPE_VOLUME);
168404Spjd	return (dgettext(TEXT_DOMAIN, "volume"));
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Validate a ZFS path.  This is used even before trying to open the dataset, to
168404Spjd * provide a more meaningful error message.  We place a more useful message in
168404Spjd * 'buf' detailing exactly why the name was not valid.
168404Spjd */
168404Spjdstatic int
185029Spjdzfs_validate_name(libzfs_handle_t *hdl, const char *path, int type,
185029Spjd    boolean_t modifying)
168404Spjd{
168404Spjd	namecheck_err_t why;
168404Spjd	char what;
168404Spjd
168404Spjd	if (dataset_namecheck(path, &why, &what) != 0) {
168404Spjd		if (hdl != NULL) {
168404Spjd			switch (why) {
168404Spjd			case NAME_ERR_TOOLONG:
168404Spjd				zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd				    "name is too long"));
168404Spjd				break;
168404Spjd
168404Spjd			case NAME_ERR_LEADING_SLASH:
168404Spjd				zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd				    "leading slash in name"));
168404Spjd				break;
168404Spjd
168404Spjd			case NAME_ERR_EMPTY_COMPONENT:
168404Spjd				zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd				    "empty component in name"));
168404Spjd				break;
168404Spjd
168404Spjd			case NAME_ERR_TRAILING_SLASH:
168404Spjd				zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd				    "trailing slash in name"));
168404Spjd				break;
168404Spjd
168404Spjd			case NAME_ERR_INVALCHAR:
168404Spjd				zfs_error_aux(hdl,
168404Spjd				    dgettext(TEXT_DOMAIN, "invalid character "
168404Spjd				    "'%c' in name"), what);
168404Spjd				break;
168404Spjd
168404Spjd			case NAME_ERR_MULTIPLE_AT:
168404Spjd				zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd				    "multiple '@' delimiters in name"));
168404Spjd				break;
168404Spjd
168404Spjd			case NAME_ERR_NOLETTER:
168404Spjd				zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd				    "pool doesn't begin with a letter"));
168404Spjd				break;
168404Spjd
168404Spjd			case NAME_ERR_RESERVED:
168404Spjd				zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd				    "name is reserved"));
168404Spjd				break;
168404Spjd
168404Spjd			case NAME_ERR_DISKLIKE:
168404Spjd				zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd				    "reserved disk name"));
168404Spjd				break;
168404Spjd			}
168404Spjd		}
168404Spjd
168404Spjd		return (0);
168404Spjd	}
168404Spjd
168404Spjd	if (!(type & ZFS_TYPE_SNAPSHOT) && strchr(path, '@') != NULL) {
168404Spjd		if (hdl != NULL)
168404Spjd			zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd			    "snapshot delimiter '@' in filesystem name"));
168404Spjd		return (0);
168404Spjd	}
168404Spjd
168404Spjd	if (type == ZFS_TYPE_SNAPSHOT && strchr(path, '@') == NULL) {
168404Spjd		if (hdl != NULL)
168404Spjd			zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd			    "missing '@' delimiter in snapshot name"));
168404Spjd		return (0);
168404Spjd	}
168404Spjd
185029Spjd	if (modifying && strchr(path, '%') != NULL) {
185029Spjd		if (hdl != NULL)
185029Spjd			zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
185029Spjd			    "invalid character %c in name"), '%');
185029Spjd		return (0);
185029Spjd	}
185029Spjd
168404Spjd	return (-1);
168404Spjd}
168404Spjd
168404Spjdint
168404Spjdzfs_name_valid(const char *name, zfs_type_t type)
168404Spjd{
185029Spjd	if (type == ZFS_TYPE_POOL)
185029Spjd		return (zpool_name_valid(NULL, B_FALSE, name));
185029Spjd	return (zfs_validate_name(NULL, name, type, B_FALSE));
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * This function takes the raw DSL properties, and filters out the user-defined
168404Spjd * properties into a separate nvlist.
168404Spjd */
185029Spjdstatic nvlist_t *
185029Spjdprocess_user_props(zfs_handle_t *zhp, nvlist_t *props)
168404Spjd{
168404Spjd	libzfs_handle_t *hdl = zhp->zfs_hdl;
168404Spjd	nvpair_t *elem;
168404Spjd	nvlist_t *propval;
185029Spjd	nvlist_t *nvl;
168404Spjd
185029Spjd	if (nvlist_alloc(&nvl, NV_UNIQUE_NAME, 0) != 0) {
185029Spjd		(void) no_memory(hdl);
185029Spjd		return (NULL);
185029Spjd	}
168404Spjd
168404Spjd	elem = NULL;
185029Spjd	while ((elem = nvlist_next_nvpair(props, elem)) != NULL) {
168404Spjd		if (!zfs_prop_user(nvpair_name(elem)))
168404Spjd			continue;
168404Spjd
168404Spjd		verify(nvpair_value_nvlist(elem, &propval) == 0);
185029Spjd		if (nvlist_add_nvlist(nvl, nvpair_name(elem), propval) != 0) {
185029Spjd			nvlist_free(nvl);
185029Spjd			(void) no_memory(hdl);
185029Spjd			return (NULL);
185029Spjd		}
168404Spjd	}
168404Spjd
185029Spjd	return (nvl);
168404Spjd}
168404Spjd
185029Spjdstatic zpool_handle_t *
185029Spjdzpool_add_handle(zfs_handle_t *zhp, const char *pool_name)
185029Spjd{
185029Spjd	libzfs_handle_t *hdl = zhp->zfs_hdl;
185029Spjd	zpool_handle_t *zph;
185029Spjd
185029Spjd	if ((zph = zpool_open_canfail(hdl, pool_name)) != NULL) {
185029Spjd		if (hdl->libzfs_pool_handles != NULL)
185029Spjd			zph->zpool_next = hdl->libzfs_pool_handles;
185029Spjd		hdl->libzfs_pool_handles = zph;
185029Spjd	}
185029Spjd	return (zph);
185029Spjd}
185029Spjd
185029Spjdstatic zpool_handle_t *
185029Spjdzpool_find_handle(zfs_handle_t *zhp, const char *pool_name, int len)
185029Spjd{
185029Spjd	libzfs_handle_t *hdl = zhp->zfs_hdl;
185029Spjd	zpool_handle_t *zph = hdl->libzfs_pool_handles;
185029Spjd
185029Spjd	while ((zph != NULL) &&
185029Spjd	    (strncmp(pool_name, zpool_get_name(zph), len) != 0))
185029Spjd		zph = zph->zpool_next;
185029Spjd	return (zph);
185029Spjd}
185029Spjd
168404Spjd/*
185029Spjd * Returns a handle to the pool that contains the provided dataset.
185029Spjd * If a handle to that pool already exists then that handle is returned.
185029Spjd * Otherwise, a new handle is created and added to the list of handles.
185029Spjd */
185029Spjdstatic zpool_handle_t *
185029Spjdzpool_handle(zfs_handle_t *zhp)
185029Spjd{
185029Spjd	char *pool_name;
185029Spjd	int len;
185029Spjd	zpool_handle_t *zph;
185029Spjd
185029Spjd	len = strcspn(zhp->zfs_name, "/@") + 1;
185029Spjd	pool_name = zfs_alloc(zhp->zfs_hdl, len);
185029Spjd	(void) strlcpy(pool_name, zhp->zfs_name, len);
185029Spjd
185029Spjd	zph = zpool_find_handle(zhp, pool_name, len);
185029Spjd	if (zph == NULL)
185029Spjd		zph = zpool_add_handle(zhp, pool_name);
185029Spjd
185029Spjd	free(pool_name);
185029Spjd	return (zph);
185029Spjd}
185029Spjd
185029Spjdvoid
185029Spjdzpool_free_handles(libzfs_handle_t *hdl)
185029Spjd{
185029Spjd	zpool_handle_t *next, *zph = hdl->libzfs_pool_handles;
185029Spjd
185029Spjd	while (zph != NULL) {
185029Spjd		next = zph->zpool_next;
185029Spjd		zpool_close(zph);
185029Spjd		zph = next;
185029Spjd	}
185029Spjd	hdl->libzfs_pool_handles = NULL;
185029Spjd}
185029Spjd
185029Spjd/*
168404Spjd * Utility function to gather stats (objset and zpl) for the given object.
168404Spjd */
168404Spjdstatic int
168404Spjdget_stats(zfs_handle_t *zhp)
168404Spjd{
168404Spjd	zfs_cmd_t zc = { 0 };
168404Spjd	libzfs_handle_t *hdl = zhp->zfs_hdl;
185029Spjd	nvlist_t *allprops, *userprops;
168404Spjd
168404Spjd	(void) strlcpy(zc.zc_name, zhp->zfs_name, sizeof (zc.zc_name));
168404Spjd
168404Spjd	if (zcmd_alloc_dst_nvlist(hdl, &zc, 0) != 0)
168404Spjd		return (-1);
168404Spjd
168404Spjd	while (ioctl(zhp->zfs_hdl->libzfs_fd, ZFS_IOC_OBJSET_STATS, &zc) != 0) {
168404Spjd		if (errno == ENOMEM) {
168404Spjd			if (zcmd_expand_dst_nvlist(hdl, &zc) != 0) {
168404Spjd				zcmd_free_nvlists(&zc);
168404Spjd				return (-1);
168404Spjd			}
168404Spjd		} else {
168404Spjd			zcmd_free_nvlists(&zc);
168404Spjd			return (-1);
168404Spjd		}
168404Spjd	}
168404Spjd
168404Spjd	zhp->zfs_dmustats = zc.zc_objset_stats; /* structure assignment */
168404Spjd
185029Spjd	if (zcmd_read_dst_nvlist(hdl, &zc, &allprops) != 0) {
168404Spjd		zcmd_free_nvlists(&zc);
168404Spjd		return (-1);
168404Spjd	}
168404Spjd
168404Spjd	zcmd_free_nvlists(&zc);
168404Spjd
185029Spjd	if ((userprops = process_user_props(zhp, allprops)) == NULL) {
185029Spjd		nvlist_free(allprops);
168404Spjd		return (-1);
185029Spjd	}
168404Spjd
185029Spjd	nvlist_free(zhp->zfs_props);
185029Spjd	nvlist_free(zhp->zfs_user_props);
185029Spjd
185029Spjd	zhp->zfs_props = allprops;
185029Spjd	zhp->zfs_user_props = userprops;
185029Spjd
168404Spjd	return (0);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Refresh the properties currently stored in the handle.
168404Spjd */
168404Spjdvoid
168404Spjdzfs_refresh_properties(zfs_handle_t *zhp)
168404Spjd{
168404Spjd	(void) get_stats(zhp);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Makes a handle from the given dataset name.  Used by zfs_open() and
168404Spjd * zfs_iter_* to create child handles on the fly.
168404Spjd */
168404Spjdzfs_handle_t *
168404Spjdmake_dataset_handle(libzfs_handle_t *hdl, const char *path)
168404Spjd{
168404Spjd	zfs_handle_t *zhp = calloc(sizeof (zfs_handle_t), 1);
185029Spjd	char *logstr;
168404Spjd
168404Spjd	if (zhp == NULL)
168404Spjd		return (NULL);
168404Spjd
168404Spjd	zhp->zfs_hdl = hdl;
168404Spjd
185029Spjd	/*
185029Spjd	 * Preserve history log string.
185029Spjd	 * any changes performed here will be
185029Spjd	 * logged as an internal event.
185029Spjd	 */
185029Spjd	logstr = zhp->zfs_hdl->libzfs_log_str;
185029Spjd	zhp->zfs_hdl->libzfs_log_str = NULL;
168404Spjdtop:
168404Spjd	(void) strlcpy(zhp->zfs_name, path, sizeof (zhp->zfs_name));
168404Spjd
168404Spjd	if (get_stats(zhp) != 0) {
185029Spjd		zhp->zfs_hdl->libzfs_log_str = logstr;
168404Spjd		free(zhp);
168404Spjd		return (NULL);
168404Spjd	}
168404Spjd
168404Spjd	if (zhp->zfs_dmustats.dds_inconsistent) {
168404Spjd		zfs_cmd_t zc = { 0 };
168404Spjd
168404Spjd		/*
168404Spjd		 * If it is dds_inconsistent, then we've caught it in
168404Spjd		 * the middle of a 'zfs receive' or 'zfs destroy', and
168404Spjd		 * it is inconsistent from the ZPL's point of view, so
168404Spjd		 * can't be mounted.  However, it could also be that we
168404Spjd		 * have crashed in the middle of one of those
168404Spjd		 * operations, in which case we need to get rid of the
168404Spjd		 * inconsistent state.  We do that by either rolling
168404Spjd		 * back to the previous snapshot (which will fail if
168404Spjd		 * there is none), or destroying the filesystem.  Note
168404Spjd		 * that if we are still in the middle of an active
168404Spjd		 * 'receive' or 'destroy', then the rollback and destroy
168404Spjd		 * will fail with EBUSY and we will drive on as usual.
168404Spjd		 */
168404Spjd
168404Spjd		(void) strlcpy(zc.zc_name, zhp->zfs_name, sizeof (zc.zc_name));
168404Spjd
168404Spjd		if (zhp->zfs_dmustats.dds_type == DMU_OST_ZVOL) {
168404Spjd			(void) zvol_remove_link(hdl, zhp->zfs_name);
168404Spjd			zc.zc_objset_type = DMU_OST_ZVOL;
168404Spjd		} else {
168404Spjd			zc.zc_objset_type = DMU_OST_ZFS;
168404Spjd		}
168404Spjd
168404Spjd		/*
185029Spjd		 * If we can successfully destroy it, pretend that it
168404Spjd		 * never existed.
168404Spjd		 */
168404Spjd		if (ioctl(hdl->libzfs_fd, ZFS_IOC_DESTROY, &zc) == 0) {
185029Spjd			zhp->zfs_hdl->libzfs_log_str = logstr;
168404Spjd			free(zhp);
168404Spjd			errno = ENOENT;
168404Spjd			return (NULL);
168404Spjd		}
185029Spjd		/* If we can successfully roll it back, reget the stats */
185029Spjd		if (ioctl(hdl->libzfs_fd, ZFS_IOC_ROLLBACK, &zc) == 0)
185029Spjd			goto top;
168404Spjd	}
168404Spjd
168404Spjd	/*
168404Spjd	 * We've managed to open the dataset and gather statistics.  Determine
168404Spjd	 * the high-level type.
168404Spjd	 */
168404Spjd	if (zhp->zfs_dmustats.dds_type == DMU_OST_ZVOL)
168404Spjd		zhp->zfs_head_type = ZFS_TYPE_VOLUME;
168404Spjd	else if (zhp->zfs_dmustats.dds_type == DMU_OST_ZFS)
168404Spjd		zhp->zfs_head_type = ZFS_TYPE_FILESYSTEM;
168404Spjd	else
168404Spjd		abort();
168404Spjd
168404Spjd	if (zhp->zfs_dmustats.dds_is_snapshot)
168404Spjd		zhp->zfs_type = ZFS_TYPE_SNAPSHOT;
168404Spjd	else if (zhp->zfs_dmustats.dds_type == DMU_OST_ZVOL)
168404Spjd		zhp->zfs_type = ZFS_TYPE_VOLUME;
168404Spjd	else if (zhp->zfs_dmustats.dds_type == DMU_OST_ZFS)
168404Spjd		zhp->zfs_type = ZFS_TYPE_FILESYSTEM;
168404Spjd	else
168404Spjd		abort();	/* we should never see any other types */
168404Spjd
185029Spjd	zhp->zfs_hdl->libzfs_log_str = logstr;
185029Spjd	zhp->zpool_hdl = zpool_handle(zhp);
168404Spjd	return (zhp);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Opens the given snapshot, filesystem, or volume.   The 'types'
168404Spjd * argument is a mask of acceptable types.  The function will print an
168404Spjd * appropriate error message and return NULL if it can't be opened.
168404Spjd */
168404Spjdzfs_handle_t *
168404Spjdzfs_open(libzfs_handle_t *hdl, const char *path, int types)
168404Spjd{
168404Spjd	zfs_handle_t *zhp;
168404Spjd	char errbuf[1024];
168404Spjd
168404Spjd	(void) snprintf(errbuf, sizeof (errbuf),
168404Spjd	    dgettext(TEXT_DOMAIN, "cannot open '%s'"), path);
168404Spjd
168404Spjd	/*
168404Spjd	 * Validate the name before we even try to open it.
168404Spjd	 */
185029Spjd	if (!zfs_validate_name(hdl, path, ZFS_TYPE_DATASET, B_FALSE)) {
168404Spjd		zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd		    "invalid dataset name"));
168404Spjd		(void) zfs_error(hdl, EZFS_INVALIDNAME, errbuf);
168404Spjd		return (NULL);
168404Spjd	}
168404Spjd
168404Spjd	/*
168404Spjd	 * Try to get stats for the dataset, which will tell us if it exists.
168404Spjd	 */
168404Spjd	errno = 0;
168404Spjd	if ((zhp = make_dataset_handle(hdl, path)) == NULL) {
168404Spjd		(void) zfs_standard_error(hdl, errno, errbuf);
168404Spjd		return (NULL);
168404Spjd	}
168404Spjd
168404Spjd	if (!(types & zhp->zfs_type)) {
168404Spjd		(void) zfs_error(hdl, EZFS_BADTYPE, errbuf);
168404Spjd		zfs_close(zhp);
168404Spjd		return (NULL);
168404Spjd	}
168404Spjd
168404Spjd	return (zhp);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Release a ZFS handle.  Nothing to do but free the associated memory.
168404Spjd */
168404Spjdvoid
168404Spjdzfs_close(zfs_handle_t *zhp)
168404Spjd{
168404Spjd	if (zhp->zfs_mntopts)
168404Spjd		free(zhp->zfs_mntopts);
168404Spjd	nvlist_free(zhp->zfs_props);
168404Spjd	nvlist_free(zhp->zfs_user_props);
168404Spjd	free(zhp);
168404Spjd}
168404Spjd
185029Spjdint
185029Spjdzfs_spa_version(zfs_handle_t *zhp, int *spa_version)
168404Spjd{
185029Spjd	zpool_handle_t *zpool_handle = zhp->zpool_hdl;
168404Spjd
185029Spjd	if (zpool_handle == NULL)
168404Spjd		return (-1);
168404Spjd
185029Spjd	*spa_version = zpool_get_prop_int(zpool_handle,
185029Spjd	    ZPOOL_PROP_VERSION, NULL);
168404Spjd	return (0);
168404Spjd}
168404Spjd
168404Spjd/*
185029Spjd * The choice of reservation property depends on the SPA version.
168404Spjd */
168404Spjdstatic int
185029Spjdzfs_which_resv_prop(zfs_handle_t *zhp, zfs_prop_t *resv_prop)
168404Spjd{
185029Spjd	int spa_version;
168404Spjd
185029Spjd	if (zfs_spa_version(zhp, &spa_version) < 0)
168404Spjd		return (-1);
168404Spjd
185029Spjd	if (spa_version >= SPA_VERSION_REFRESERVATION)
185029Spjd		*resv_prop = ZFS_PROP_REFRESERVATION;
185029Spjd	else
185029Spjd		*resv_prop = ZFS_PROP_RESERVATION;
168404Spjd
168404Spjd	return (0);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Given an nvlist of properties to set, validates that they are correct, and
168404Spjd * parses any numeric properties (index, boolean, etc) if they are specified as
168404Spjd * strings.
168404Spjd */
168404Spjdnvlist_t *
185029Spjdzfs_valid_proplist(libzfs_handle_t *hdl, zfs_type_t type, nvlist_t *nvl,
185029Spjd    uint64_t zoned, zfs_handle_t *zhp, const char *errbuf)
168404Spjd{
168404Spjd	nvpair_t *elem;
168404Spjd	uint64_t intval;
168404Spjd	char *strval;
185029Spjd	zfs_prop_t prop;
168404Spjd	nvlist_t *ret;
185029Spjd	int chosen_normal = -1;
185029Spjd	int chosen_utf = -1;
168404Spjd
168404Spjd	if (nvlist_alloc(&ret, NV_UNIQUE_NAME, 0) != 0) {
168404Spjd		(void) no_memory(hdl);
168404Spjd		return (NULL);
168404Spjd	}
168404Spjd
168404Spjd	elem = NULL;
168404Spjd	while ((elem = nvlist_next_nvpair(nvl, elem)) != NULL) {
185029Spjd		const char *propname = nvpair_name(elem);
168404Spjd
168404Spjd		/*
168404Spjd		 * Make sure this property is valid and applies to this type.
168404Spjd		 */
185029Spjd		if ((prop = zfs_name_to_prop(propname)) == ZPROP_INVAL) {
185029Spjd			if (!zfs_prop_user(propname)) {
168404Spjd				zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
185029Spjd				    "invalid property '%s'"), propname);
168404Spjd				(void) zfs_error(hdl, EZFS_BADPROP, errbuf);
168404Spjd				goto error;
185029Spjd			}
168404Spjd
185029Spjd			/*
185029Spjd			 * If this is a user property, make sure it's a
185029Spjd			 * string, and that it's less than ZAP_MAXNAMELEN.
185029Spjd			 */
185029Spjd			if (nvpair_type(elem) != DATA_TYPE_STRING) {
185029Spjd				zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
185029Spjd				    "'%s' must be a string"), propname);
185029Spjd				(void) zfs_error(hdl, EZFS_BADPROP, errbuf);
185029Spjd				goto error;
168404Spjd			}
168404Spjd
185029Spjd			if (strlen(nvpair_name(elem)) >= ZAP_MAXNAMELEN) {
185029Spjd				zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
185029Spjd				    "property name '%s' is too long"),
185029Spjd				    propname);
185029Spjd				(void) zfs_error(hdl, EZFS_BADPROP, errbuf);
185029Spjd				goto error;
185029Spjd			}
185029Spjd
168404Spjd			(void) nvpair_value_string(elem, &strval);
168404Spjd			if (nvlist_add_string(ret, propname, strval) != 0) {
168404Spjd				(void) no_memory(hdl);
168404Spjd				goto error;
168404Spjd			}
168404Spjd			continue;
168404Spjd		}
168404Spjd
185029Spjd		if (type == ZFS_TYPE_SNAPSHOT) {
185029Spjd			zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
185029Spjd			    "this property can not be modified for snapshots"));
185029Spjd			(void) zfs_error(hdl, EZFS_PROPTYPE, errbuf);
185029Spjd			goto error;
185029Spjd		}
168404Spjd
168404Spjd		if (!zfs_prop_valid_for_type(prop, type)) {
168404Spjd			zfs_error_aux(hdl,
168404Spjd			    dgettext(TEXT_DOMAIN, "'%s' does not "
168404Spjd			    "apply to datasets of this type"), propname);
168404Spjd			(void) zfs_error(hdl, EZFS_PROPTYPE, errbuf);
168404Spjd			goto error;
168404Spjd		}
168404Spjd
168404Spjd		if (zfs_prop_readonly(prop) &&
185029Spjd		    (!zfs_prop_setonce(prop) || zhp != NULL)) {
168404Spjd			zfs_error_aux(hdl,
168404Spjd			    dgettext(TEXT_DOMAIN, "'%s' is readonly"),
168404Spjd			    propname);
168404Spjd			(void) zfs_error(hdl, EZFS_PROPREADONLY, errbuf);
168404Spjd			goto error;
168404Spjd		}
168404Spjd
185029Spjd		if (zprop_parse_value(hdl, elem, prop, type, ret,
185029Spjd		    &strval, &intval, errbuf) != 0)
185029Spjd			goto error;
185029Spjd
168404Spjd		/*
185029Spjd		 * Perform some additional checks for specific properties.
168404Spjd		 */
185029Spjd		switch (prop) {
185029Spjd		case ZFS_PROP_VERSION:
185029Spjd		{
185029Spjd			int version;
168404Spjd
185029Spjd			if (zhp == NULL)
185029Spjd				break;
185029Spjd			version = zfs_prop_get_int(zhp, ZFS_PROP_VERSION);
185029Spjd			if (intval < version) {
168404Spjd				zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
185029Spjd				    "Can not downgrade; already at version %u"),
185029Spjd				    version);
168404Spjd				(void) zfs_error(hdl, EZFS_BADPROP, errbuf);
168404Spjd				goto error;
168404Spjd			}
168404Spjd			break;
168404Spjd		}
168404Spjd
168404Spjd		case ZFS_PROP_RECORDSIZE:
168404Spjd		case ZFS_PROP_VOLBLOCKSIZE:
168404Spjd			/* must be power of two within SPA_{MIN,MAX}BLOCKSIZE */
168404Spjd			if (intval < SPA_MINBLOCKSIZE ||
168404Spjd			    intval > SPA_MAXBLOCKSIZE || !ISP2(intval)) {
168404Spjd				zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd				    "'%s' must be power of 2 from %u "
168404Spjd				    "to %uk"), propname,
168404Spjd				    (uint_t)SPA_MINBLOCKSIZE,
168404Spjd				    (uint_t)SPA_MAXBLOCKSIZE >> 10);
168404Spjd				(void) zfs_error(hdl, EZFS_BADPROP, errbuf);
168404Spjd				goto error;
168404Spjd			}
168404Spjd			break;
168404Spjd
168404Spjd		case ZFS_PROP_SHAREISCSI:
168404Spjd			if (strcmp(strval, "off") != 0 &&
168404Spjd			    strcmp(strval, "on") != 0 &&
168404Spjd			    strcmp(strval, "type=disk") != 0) {
168404Spjd				zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd				    "'%s' must be 'on', 'off', or 'type=disk'"),
168404Spjd				    propname);
168404Spjd				(void) zfs_error(hdl, EZFS_BADPROP, errbuf);
168404Spjd				goto error;
168404Spjd			}
168404Spjd
168404Spjd			break;
168404Spjd
168404Spjd		case ZFS_PROP_MOUNTPOINT:
185029Spjd		{
185029Spjd			namecheck_err_t why;
185029Spjd
168404Spjd			if (strcmp(strval, ZFS_MOUNTPOINT_NONE) == 0 ||
168404Spjd			    strcmp(strval, ZFS_MOUNTPOINT_LEGACY) == 0)
168404Spjd				break;
168404Spjd
185029Spjd			if (mountpoint_namecheck(strval, &why)) {
185029Spjd				switch (why) {
185029Spjd				case NAME_ERR_LEADING_SLASH:
185029Spjd					zfs_error_aux(hdl,
185029Spjd					    dgettext(TEXT_DOMAIN,
185029Spjd					    "'%s' must be an absolute path, "
185029Spjd					    "'none', or 'legacy'"), propname);
185029Spjd					break;
185029Spjd				case NAME_ERR_TOOLONG:
185029Spjd					zfs_error_aux(hdl,
185029Spjd					    dgettext(TEXT_DOMAIN,
185029Spjd					    "component of '%s' is too long"),
185029Spjd					    propname);
185029Spjd					break;
185029Spjd				}
168404Spjd				(void) zfs_error(hdl, EZFS_BADPROP, errbuf);
168404Spjd				goto error;
168404Spjd			}
185029Spjd		}
185029Spjd
168404Spjd			/*FALLTHRU*/
168404Spjd
185029Spjd		case ZFS_PROP_SHARESMB:
168404Spjd		case ZFS_PROP_SHARENFS:
168404Spjd			/*
185029Spjd			 * For the mountpoint and sharenfs or sharesmb
185029Spjd			 * properties, check if it can be set in a
185029Spjd			 * global/non-global zone based on
168404Spjd			 * the zoned property value:
168404Spjd			 *
168404Spjd			 *		global zone	    non-global zone
168404Spjd			 * --------------------------------------------------
168404Spjd			 * zoned=on	mountpoint (no)	    mountpoint (yes)
168404Spjd			 *		sharenfs (no)	    sharenfs (no)
185029Spjd			 *		sharesmb (no)	    sharesmb (no)
168404Spjd			 *
168404Spjd			 * zoned=off	mountpoint (yes)	N/A
168404Spjd			 *		sharenfs (yes)
185029Spjd			 *		sharesmb (yes)
168404Spjd			 */
168404Spjd			if (zoned) {
168404Spjd				if (getzoneid() == GLOBAL_ZONEID) {
168404Spjd					zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd					    "'%s' cannot be set on "
168404Spjd					    "dataset in a non-global zone"),
168404Spjd					    propname);
168404Spjd					(void) zfs_error(hdl, EZFS_ZONED,
168404Spjd					    errbuf);
168404Spjd					goto error;
185029Spjd				} else if (prop == ZFS_PROP_SHARENFS ||
185029Spjd				    prop == ZFS_PROP_SHARESMB) {
168404Spjd					zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd					    "'%s' cannot be set in "
168404Spjd					    "a non-global zone"), propname);
168404Spjd					(void) zfs_error(hdl, EZFS_ZONED,
168404Spjd					    errbuf);
168404Spjd					goto error;
168404Spjd				}
168404Spjd			} else if (getzoneid() != GLOBAL_ZONEID) {
168404Spjd				/*
168404Spjd				 * If zoned property is 'off', this must be in
168404Spjd				 * a globle zone. If not, something is wrong.
168404Spjd				 */
168404Spjd				zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd				    "'%s' cannot be set while dataset "
168404Spjd				    "'zoned' property is set"), propname);
168404Spjd				(void) zfs_error(hdl, EZFS_ZONED, errbuf);
168404Spjd				goto error;
168404Spjd			}
168404Spjd
168404Spjd			/*
185029Spjd			 * At this point, it is legitimate to set the
185029Spjd			 * property. Now we want to make sure that the
185029Spjd			 * property value is valid if it is sharenfs.
168404Spjd			 */
185029Spjd			if ((prop == ZFS_PROP_SHARENFS ||
185029Spjd			    prop == ZFS_PROP_SHARESMB) &&
185029Spjd			    strcmp(strval, "on") != 0 &&
185029Spjd			    strcmp(strval, "off") != 0) {
185029Spjd				zfs_share_proto_t proto;
168404Spjd
185029Spjd				if (prop == ZFS_PROP_SHARESMB)
185029Spjd					proto = PROTO_SMB;
185029Spjd				else
185029Spjd					proto = PROTO_NFS;
185029Spjd
185029Spjd				/*
185029Spjd				 * Must be an valid sharing protocol
185029Spjd				 * option string so init the libshare
185029Spjd				 * in order to enable the parser and
185029Spjd				 * then parse the options. We use the
185029Spjd				 * control API since we don't care about
185029Spjd				 * the current configuration and don't
185029Spjd				 * want the overhead of loading it
185029Spjd				 * until we actually do something.
185029Spjd				 */
185029Spjd
185029Spjd				if (zfs_init_libshare(hdl,
185029Spjd				    SA_INIT_CONTROL_API) != SA_OK) {
185029Spjd					/*
185029Spjd					 * An error occurred so we can't do
185029Spjd					 * anything
185029Spjd					 */
185029Spjd					zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
185029Spjd					    "'%s' cannot be set: problem "
185029Spjd					    "in share initialization"),
185029Spjd					    propname);
185029Spjd					(void) zfs_error(hdl, EZFS_BADPROP,
185029Spjd					    errbuf);
185029Spjd					goto error;
185029Spjd				}
185029Spjd
185029Spjd				if (zfs_parse_options(strval, proto) != SA_OK) {
185029Spjd					/*
185029Spjd					 * There was an error in parsing so
185029Spjd					 * deal with it by issuing an error
185029Spjd					 * message and leaving after
185029Spjd					 * uninitializing the the libshare
185029Spjd					 * interface.
185029Spjd					 */
185029Spjd					zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
185029Spjd					    "'%s' cannot be set to invalid "
185029Spjd					    "options"), propname);
185029Spjd					(void) zfs_error(hdl, EZFS_BADPROP,
185029Spjd					    errbuf);
185029Spjd					zfs_uninit_libshare(hdl);
185029Spjd					goto error;
185029Spjd				}
185029Spjd				zfs_uninit_libshare(hdl);
168404Spjd			}
185029Spjd
168404Spjd			break;
185029Spjd		case ZFS_PROP_UTF8ONLY:
185029Spjd			chosen_utf = (int)intval;
185029Spjd			break;
185029Spjd		case ZFS_PROP_NORMALIZE:
185029Spjd			chosen_normal = (int)intval;
185029Spjd			break;
168404Spjd		}
168404Spjd
168404Spjd		/*
168404Spjd		 * For changes to existing volumes, we have some additional
168404Spjd		 * checks to enforce.
168404Spjd		 */
168404Spjd		if (type == ZFS_TYPE_VOLUME && zhp != NULL) {
168404Spjd			uint64_t volsize = zfs_prop_get_int(zhp,
168404Spjd			    ZFS_PROP_VOLSIZE);
168404Spjd			uint64_t blocksize = zfs_prop_get_int(zhp,
168404Spjd			    ZFS_PROP_VOLBLOCKSIZE);
168404Spjd			char buf[64];
168404Spjd
168404Spjd			switch (prop) {
168404Spjd			case ZFS_PROP_RESERVATION:
185029Spjd			case ZFS_PROP_REFRESERVATION:
168404Spjd				if (intval > volsize) {
168404Spjd					zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd					    "'%s' is greater than current "
168404Spjd					    "volume size"), propname);
168404Spjd					(void) zfs_error(hdl, EZFS_BADPROP,
168404Spjd					    errbuf);
168404Spjd					goto error;
168404Spjd				}
168404Spjd				break;
168404Spjd
168404Spjd			case ZFS_PROP_VOLSIZE:
168404Spjd				if (intval % blocksize != 0) {
168404Spjd					zfs_nicenum(blocksize, buf,
168404Spjd					    sizeof (buf));
168404Spjd					zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd					    "'%s' must be a multiple of "
168404Spjd					    "volume block size (%s)"),
168404Spjd					    propname, buf);
168404Spjd					(void) zfs_error(hdl, EZFS_BADPROP,
168404Spjd					    errbuf);
168404Spjd					goto error;
168404Spjd				}
168404Spjd
168404Spjd				if (intval == 0) {
168404Spjd					zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd					    "'%s' cannot be zero"),
168404Spjd					    propname);
168404Spjd					(void) zfs_error(hdl, EZFS_BADPROP,
168404Spjd					    errbuf);
168404Spjd					goto error;
168404Spjd				}
168404Spjd				break;
168404Spjd			}
168404Spjd		}
168404Spjd	}
168404Spjd
168404Spjd	/*
185029Spjd	 * If normalization was chosen, but no UTF8 choice was made,
185029Spjd	 * enforce rejection of non-UTF8 names.
185029Spjd	 *
185029Spjd	 * If normalization was chosen, but rejecting non-UTF8 names
185029Spjd	 * was explicitly not chosen, it is an error.
185029Spjd	 */
185029Spjd	if (chosen_normal > 0 && chosen_utf < 0) {
185029Spjd		if (nvlist_add_uint64(ret,
185029Spjd		    zfs_prop_to_name(ZFS_PROP_UTF8ONLY), 1) != 0) {
185029Spjd			(void) no_memory(hdl);
185029Spjd			goto error;
185029Spjd		}
185029Spjd	} else if (chosen_normal > 0 && chosen_utf == 0) {
185029Spjd		zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
185029Spjd		    "'%s' must be set 'on' if normalization chosen"),
185029Spjd		    zfs_prop_to_name(ZFS_PROP_UTF8ONLY));
185029Spjd		(void) zfs_error(hdl, EZFS_BADPROP, errbuf);
185029Spjd		goto error;
185029Spjd	}
185029Spjd
185029Spjd	/*
168404Spjd	 * If this is an existing volume, and someone is setting the volsize,
168404Spjd	 * make sure that it matches the reservation, or add it if necessary.
168404Spjd	 */
168404Spjd	if (zhp != NULL && type == ZFS_TYPE_VOLUME &&
168404Spjd	    nvlist_lookup_uint64(ret, zfs_prop_to_name(ZFS_PROP_VOLSIZE),
168404Spjd	    &intval) == 0) {
168404Spjd		uint64_t old_volsize = zfs_prop_get_int(zhp,
168404Spjd		    ZFS_PROP_VOLSIZE);
185029Spjd		uint64_t old_reservation;
168404Spjd		uint64_t new_reservation;
185029Spjd		zfs_prop_t resv_prop;
168404Spjd
185029Spjd		if (zfs_which_resv_prop(zhp, &resv_prop) < 0)
185029Spjd			goto error;
185029Spjd		old_reservation = zfs_prop_get_int(zhp, resv_prop);
185029Spjd
168404Spjd		if (old_volsize == old_reservation &&
185029Spjd		    nvlist_lookup_uint64(ret, zfs_prop_to_name(resv_prop),
168404Spjd		    &new_reservation) != 0) {
168404Spjd			if (nvlist_add_uint64(ret,
185029Spjd			    zfs_prop_to_name(resv_prop), intval) != 0) {
168404Spjd				(void) no_memory(hdl);
168404Spjd				goto error;
168404Spjd			}
168404Spjd		}
168404Spjd	}
168404Spjd	return (ret);
168404Spjd
168404Spjderror:
168404Spjd	nvlist_free(ret);
168404Spjd	return (NULL);
168404Spjd}
168404Spjd
185029Spjdstatic int
185029Spjdzfs_get_perm_who(const char *who, zfs_deleg_who_type_t *who_type,
185029Spjd    uint64_t *ret_who)
185029Spjd{
185029Spjd	struct passwd *pwd;
185029Spjd	struct group *grp;
185029Spjd	uid_t id;
185029Spjd
185029Spjd	if (*who_type == ZFS_DELEG_EVERYONE || *who_type == ZFS_DELEG_CREATE ||
185029Spjd	    *who_type == ZFS_DELEG_NAMED_SET) {
185029Spjd		*ret_who = -1;
185029Spjd		return (0);
185029Spjd	}
185029Spjd	if (who == NULL && !(*who_type == ZFS_DELEG_EVERYONE))
185029Spjd		return (EZFS_BADWHO);
185029Spjd
185029Spjd	if (*who_type == ZFS_DELEG_WHO_UNKNOWN &&
185029Spjd	    strcmp(who, "everyone") == 0) {
185029Spjd		*ret_who = -1;
185029Spjd		*who_type = ZFS_DELEG_EVERYONE;
185029Spjd		return (0);
185029Spjd	}
185029Spjd
185029Spjd	pwd = getpwnam(who);
185029Spjd	grp = getgrnam(who);
185029Spjd
185029Spjd	if ((*who_type == ZFS_DELEG_USER) && pwd) {
185029Spjd		*ret_who = pwd->pw_uid;
185029Spjd	} else if ((*who_type == ZFS_DELEG_GROUP) && grp) {
185029Spjd		*ret_who = grp->gr_gid;
185029Spjd	} else if (pwd) {
185029Spjd		*ret_who = pwd->pw_uid;
185029Spjd		*who_type = ZFS_DELEG_USER;
185029Spjd	} else if (grp) {
185029Spjd		*ret_who = grp->gr_gid;
185029Spjd		*who_type = ZFS_DELEG_GROUP;
185029Spjd	} else {
185029Spjd		char *end;
185029Spjd
185029Spjd		id = strtol(who, &end, 10);
185029Spjd		if (errno != 0 || *end != '\0') {
185029Spjd			return (EZFS_BADWHO);
185029Spjd		} else {
185029Spjd			*ret_who = id;
185029Spjd			if (*who_type == ZFS_DELEG_WHO_UNKNOWN)
185029Spjd				*who_type = ZFS_DELEG_USER;
185029Spjd		}
185029Spjd	}
185029Spjd
185029Spjd	return (0);
185029Spjd}
185029Spjd
185029Spjdstatic void
185029Spjdzfs_perms_add_to_nvlist(nvlist_t *who_nvp, char *name, nvlist_t *perms_nvp)
185029Spjd{
185029Spjd	if (perms_nvp != NULL) {
185029Spjd		verify(nvlist_add_nvlist(who_nvp,
185029Spjd		    name, perms_nvp) == 0);
185029Spjd	} else {
185029Spjd		verify(nvlist_add_boolean(who_nvp, name) == 0);
185029Spjd	}
185029Spjd}
185029Spjd
185029Spjdstatic void
185029Spjdhelper(zfs_deleg_who_type_t who_type, uint64_t whoid, char *whostr,
185029Spjd    zfs_deleg_inherit_t inherit, nvlist_t *who_nvp, nvlist_t *perms_nvp,
185029Spjd    nvlist_t *sets_nvp)
185029Spjd{
185029Spjd	boolean_t do_perms, do_sets;
185029Spjd	char name[ZFS_MAX_DELEG_NAME];
185029Spjd
185029Spjd	do_perms = (nvlist_next_nvpair(perms_nvp, NULL) != NULL);
185029Spjd	do_sets = (nvlist_next_nvpair(sets_nvp, NULL) != NULL);
185029Spjd
185029Spjd	if (!do_perms && !do_sets)
185029Spjd		do_perms = do_sets = B_TRUE;
185029Spjd
185029Spjd	if (do_perms) {
185029Spjd		zfs_deleg_whokey(name, who_type, inherit,
185029Spjd		    (who_type == ZFS_DELEG_NAMED_SET) ?
185029Spjd		    whostr : (void *)&whoid);
185029Spjd		zfs_perms_add_to_nvlist(who_nvp, name, perms_nvp);
185029Spjd	}
185029Spjd	if (do_sets) {
185029Spjd		zfs_deleg_whokey(name, toupper(who_type), inherit,
185029Spjd		    (who_type == ZFS_DELEG_NAMED_SET) ?
185029Spjd		    whostr : (void *)&whoid);
185029Spjd		zfs_perms_add_to_nvlist(who_nvp, name, sets_nvp);
185029Spjd	}
185029Spjd}
185029Spjd
185029Spjdstatic void
185029Spjdzfs_perms_add_who_nvlist(nvlist_t *who_nvp, uint64_t whoid, void *whostr,
185029Spjd    nvlist_t *perms_nvp, nvlist_t *sets_nvp,
185029Spjd    zfs_deleg_who_type_t who_type, zfs_deleg_inherit_t inherit)
185029Spjd{
185029Spjd	if (who_type == ZFS_DELEG_NAMED_SET || who_type == ZFS_DELEG_CREATE) {
185029Spjd		helper(who_type, whoid, whostr, 0,
185029Spjd		    who_nvp, perms_nvp, sets_nvp);
185029Spjd	} else {
185029Spjd		if (inherit & ZFS_DELEG_PERM_LOCAL) {
185029Spjd			helper(who_type, whoid, whostr, ZFS_DELEG_LOCAL,
185029Spjd			    who_nvp, perms_nvp, sets_nvp);
185029Spjd		}
185029Spjd		if (inherit & ZFS_DELEG_PERM_DESCENDENT) {
185029Spjd			helper(who_type, whoid, whostr, ZFS_DELEG_DESCENDENT,
185029Spjd			    who_nvp, perms_nvp, sets_nvp);
185029Spjd		}
185029Spjd	}
185029Spjd}
185029Spjd
168404Spjd/*
185029Spjd * Construct nvlist to pass down to kernel for setting/removing permissions.
185029Spjd *
185029Spjd * The nvlist is constructed as a series of nvpairs with an optional embedded
185029Spjd * nvlist of permissions to remove or set.  The topmost nvpairs are the actual
185029Spjd * base attribute named stored in the dsl.
185029Spjd * Arguments:
185029Spjd *
185029Spjd * whostr:   is a comma separated list of users, groups, or a single set name.
185029Spjd *           whostr may be null for everyone or create perms.
185029Spjd * who_type: is the type of entry in whostr.  Typically this will be
185029Spjd *           ZFS_DELEG_WHO_UNKNOWN.
185029Spjd * perms:    common separated list of permissions.  May be null if user
185029Spjd *           is requested to remove permissions by who.
185029Spjd * inherit:  Specifies the inheritance of the permissions.  Will be either
185029Spjd *           ZFS_DELEG_PERM_LOCAL and/or  ZFS_DELEG_PERM_DESCENDENT.
185029Spjd * nvp       The constructed nvlist to pass to zfs_perm_set().
185029Spjd *           The output nvp will look something like this.
185029Spjd *              ul$1234 -> {create ; destroy }
185029Spjd *              Ul$1234 -> { @myset }
185029Spjd *              s-$@myset - { snapshot; checksum; compression }
185029Spjd */
185029Spjdint
185029Spjdzfs_build_perms(zfs_handle_t *zhp, char *whostr, char *perms,
185029Spjd    zfs_deleg_who_type_t who_type, zfs_deleg_inherit_t inherit, nvlist_t **nvp)
185029Spjd{
185029Spjd	nvlist_t *who_nvp;
185029Spjd	nvlist_t *perms_nvp = NULL;
185029Spjd	nvlist_t *sets_nvp = NULL;
185029Spjd	char errbuf[1024];
185029Spjd	char *who_tok, *perm;
185029Spjd	int error;
185029Spjd
185029Spjd	*nvp = NULL;
185029Spjd
185029Spjd	if (perms) {
185029Spjd		if ((error = nvlist_alloc(&perms_nvp,
185029Spjd		    NV_UNIQUE_NAME, 0)) != 0) {
185029Spjd			return (1);
185029Spjd		}
185029Spjd		if ((error = nvlist_alloc(&sets_nvp,
185029Spjd		    NV_UNIQUE_NAME, 0)) != 0) {
185029Spjd			nvlist_free(perms_nvp);
185029Spjd			return (1);
185029Spjd		}
185029Spjd	}
185029Spjd
185029Spjd	if ((error = nvlist_alloc(&who_nvp, NV_UNIQUE_NAME, 0)) != 0) {
185029Spjd		if (perms_nvp)
185029Spjd			nvlist_free(perms_nvp);
185029Spjd		if (sets_nvp)
185029Spjd			nvlist_free(sets_nvp);
185029Spjd		return (1);
185029Spjd	}
185029Spjd
185029Spjd	if (who_type == ZFS_DELEG_NAMED_SET) {
185029Spjd		namecheck_err_t why;
185029Spjd		char what;
185029Spjd
185029Spjd		if ((error = permset_namecheck(whostr, &why, &what)) != 0) {
185029Spjd			nvlist_free(who_nvp);
185029Spjd			if (perms_nvp)
185029Spjd				nvlist_free(perms_nvp);
185029Spjd			if (sets_nvp)
185029Spjd				nvlist_free(sets_nvp);
185029Spjd
185029Spjd			switch (why) {
185029Spjd			case NAME_ERR_NO_AT:
185029Spjd				zfs_error_aux(zhp->zfs_hdl,
185029Spjd				    dgettext(TEXT_DOMAIN,
185029Spjd				    "set definition must begin with an '@' "
185029Spjd				    "character"));
185029Spjd			}
185029Spjd			return (zfs_error(zhp->zfs_hdl,
185029Spjd			    EZFS_BADPERMSET, whostr));
185029Spjd		}
185029Spjd	}
185029Spjd
185029Spjd	/*
185029Spjd	 * Build up nvlist(s) of permissions.  Two nvlists are maintained.
185029Spjd	 * The first nvlist perms_nvp will have normal permissions and the
185029Spjd	 * other sets_nvp will have only permssion set names in it.
185029Spjd	 */
185029Spjd	for (perm = strtok(perms, ","); perm; perm = strtok(NULL, ",")) {
185029Spjd		const char *perm_canonical = zfs_deleg_canonicalize_perm(perm);
185029Spjd
185029Spjd		if (perm_canonical) {
185029Spjd			verify(nvlist_add_boolean(perms_nvp,
185029Spjd			    perm_canonical) == 0);
185029Spjd		} else if (perm[0] == '@') {
185029Spjd			verify(nvlist_add_boolean(sets_nvp, perm) == 0);
185029Spjd		} else {
185029Spjd			nvlist_free(who_nvp);
185029Spjd			nvlist_free(perms_nvp);
185029Spjd			nvlist_free(sets_nvp);
185029Spjd			return (zfs_error(zhp->zfs_hdl, EZFS_BADPERM, perm));
185029Spjd		}
185029Spjd	}
185029Spjd
185029Spjd	if (whostr && who_type != ZFS_DELEG_CREATE) {
185029Spjd		who_tok = strtok(whostr, ",");
185029Spjd		if (who_tok == NULL) {
185029Spjd			nvlist_free(who_nvp);
185029Spjd			if (perms_nvp)
185029Spjd				nvlist_free(perms_nvp);
185029Spjd			if (sets_nvp)
185029Spjd				nvlist_free(sets_nvp);
185029Spjd			(void) snprintf(errbuf, sizeof (errbuf),
185029Spjd			    dgettext(TEXT_DOMAIN, "Who string is NULL"),
185029Spjd			    whostr);
185029Spjd			return (zfs_error(zhp->zfs_hdl, EZFS_BADWHO, errbuf));
185029Spjd		}
185029Spjd	}
185029Spjd
185029Spjd	/*
185029Spjd	 * Now create the nvlist(s)
185029Spjd	 */
185029Spjd	do {
185029Spjd		uint64_t who_id;
185029Spjd
185029Spjd		error = zfs_get_perm_who(who_tok, &who_type,
185029Spjd		    &who_id);
185029Spjd		if (error) {
185029Spjd			nvlist_free(who_nvp);
185029Spjd			if (perms_nvp)
185029Spjd				nvlist_free(perms_nvp);
185029Spjd			if (sets_nvp)
185029Spjd				nvlist_free(sets_nvp);
185029Spjd			(void) snprintf(errbuf, sizeof (errbuf),
185029Spjd			    dgettext(TEXT_DOMAIN,
185029Spjd			    "Unable to determine uid/gid for "
185029Spjd			    "%s "), who_tok);
185029Spjd			return (zfs_error(zhp->zfs_hdl, EZFS_BADWHO, errbuf));
185029Spjd		}
185029Spjd
185029Spjd		/*
185029Spjd		 * add entries for both local and descendent when required
185029Spjd		 */
185029Spjd		zfs_perms_add_who_nvlist(who_nvp, who_id, who_tok,
185029Spjd		    perms_nvp, sets_nvp, who_type, inherit);
185029Spjd
185029Spjd	} while (who_tok = strtok(NULL, ","));
185029Spjd	*nvp = who_nvp;
185029Spjd	return (0);
185029Spjd}
185029Spjd
185029Spjdstatic int
185029Spjdzfs_perm_set_common(zfs_handle_t *zhp, nvlist_t *nvp, boolean_t unset)
185029Spjd{
185029Spjd	zfs_cmd_t zc = { 0 };
185029Spjd	int error;
185029Spjd	char errbuf[1024];
185029Spjd
185029Spjd	(void) snprintf(errbuf, sizeof (errbuf),
185029Spjd	    dgettext(TEXT_DOMAIN, "Cannot update 'allows' for '%s'"),
185029Spjd	    zhp->zfs_name);
185029Spjd
185029Spjd	if (zcmd_write_src_nvlist(zhp->zfs_hdl, &zc, nvp))
185029Spjd		return (-1);
185029Spjd
185029Spjd	(void) strlcpy(zc.zc_name, zhp->zfs_name, sizeof (zc.zc_name));
185029Spjd	zc.zc_perm_action = unset;
185029Spjd
185029Spjd	error = zfs_ioctl(zhp->zfs_hdl, ZFS_IOC_SET_FSACL, &zc);
185029Spjd	if (error && errno == ENOTSUP) {
185029Spjd		(void) snprintf(errbuf, sizeof (errbuf),
185029Spjd		    gettext("Pool must be upgraded to use 'allow/unallow'"));
185029Spjd		zcmd_free_nvlists(&zc);
185029Spjd		return (zfs_error(zhp->zfs_hdl, EZFS_BADVERSION, errbuf));
185029Spjd	} else if (error) {
185029Spjd		return (zfs_standard_error(zhp->zfs_hdl, errno, errbuf));
185029Spjd	}
185029Spjd	zcmd_free_nvlists(&zc);
185029Spjd
185029Spjd	return (error);
185029Spjd}
185029Spjd
185029Spjdint
185029Spjdzfs_perm_set(zfs_handle_t *zhp, nvlist_t *nvp)
185029Spjd{
185029Spjd	return (zfs_perm_set_common(zhp, nvp, B_FALSE));
185029Spjd}
185029Spjd
185029Spjdint
185029Spjdzfs_perm_remove(zfs_handle_t *zhp, nvlist_t *perms)
185029Spjd{
185029Spjd	return (zfs_perm_set_common(zhp, perms, B_TRUE));
185029Spjd}
185029Spjd
185029Spjdstatic int
185029Spjdperm_compare(const void *arg1, const void *arg2)
185029Spjd{
185029Spjd	const zfs_perm_node_t *node1 = arg1;
185029Spjd	const zfs_perm_node_t *node2 = arg2;
185029Spjd	int ret;
185029Spjd
185029Spjd	ret = strcmp(node1->z_pname, node2->z_pname);
185029Spjd
185029Spjd	if (ret > 0)
185029Spjd		return (1);
185029Spjd	if (ret < 0)
185029Spjd		return (-1);
185029Spjd	else
185029Spjd		return (0);
185029Spjd}
185029Spjd
185029Spjdstatic void
185029Spjdzfs_destroy_perm_tree(avl_tree_t *tree)
185029Spjd{
185029Spjd	zfs_perm_node_t *permnode;
185029Spjd	void *cookie = NULL;
185029Spjd
185029Spjd	while ((permnode = avl_destroy_nodes(tree,  &cookie)) != NULL)
185029Spjd		free(permnode);
185029Spjd	avl_destroy(tree);
185029Spjd}
185029Spjd
185029Spjdstatic void
185029Spjdzfs_destroy_tree(avl_tree_t *tree)
185029Spjd{
185029Spjd	zfs_allow_node_t *allownode;
185029Spjd	void *cookie = NULL;
185029Spjd
185029Spjd	while ((allownode = avl_destroy_nodes(tree, &cookie)) != NULL) {
185029Spjd		zfs_destroy_perm_tree(&allownode->z_localdescend);
185029Spjd		zfs_destroy_perm_tree(&allownode->z_local);
185029Spjd		zfs_destroy_perm_tree(&allownode->z_descend);
185029Spjd		free(allownode);
185029Spjd	}
185029Spjd	avl_destroy(tree);
185029Spjd}
185029Spjd
185029Spjdvoid
185029Spjdzfs_free_allows(zfs_allow_t *allow)
185029Spjd{
185029Spjd	zfs_allow_t *allownext;
185029Spjd	zfs_allow_t *freeallow;
185029Spjd
185029Spjd	allownext = allow;
185029Spjd	while (allownext) {
185029Spjd		zfs_destroy_tree(&allownext->z_sets);
185029Spjd		zfs_destroy_tree(&allownext->z_crperms);
185029Spjd		zfs_destroy_tree(&allownext->z_user);
185029Spjd		zfs_destroy_tree(&allownext->z_group);
185029Spjd		zfs_destroy_tree(&allownext->z_everyone);
185029Spjd		freeallow = allownext;
185029Spjd		allownext = allownext->z_next;
185029Spjd		free(freeallow);
185029Spjd	}
185029Spjd}
185029Spjd
185029Spjdstatic zfs_allow_t *
185029Spjdzfs_alloc_perm_tree(zfs_handle_t *zhp, zfs_allow_t *prev, char *setpoint)
185029Spjd{
185029Spjd	zfs_allow_t *ptree;
185029Spjd
185029Spjd	if ((ptree = zfs_alloc(zhp->zfs_hdl,
185029Spjd	    sizeof (zfs_allow_t))) == NULL) {
185029Spjd		return (NULL);
185029Spjd	}
185029Spjd
185029Spjd	(void) strlcpy(ptree->z_setpoint, setpoint, sizeof (ptree->z_setpoint));
185029Spjd	avl_create(&ptree->z_sets,
185029Spjd	    perm_compare, sizeof (zfs_allow_node_t),
185029Spjd	    offsetof(zfs_allow_node_t, z_node));
185029Spjd	avl_create(&ptree->z_crperms,
185029Spjd	    perm_compare, sizeof (zfs_allow_node_t),
185029Spjd	    offsetof(zfs_allow_node_t, z_node));
185029Spjd	avl_create(&ptree->z_user,
185029Spjd	    perm_compare, sizeof (zfs_allow_node_t),
185029Spjd	    offsetof(zfs_allow_node_t, z_node));
185029Spjd	avl_create(&ptree->z_group,
185029Spjd	    perm_compare, sizeof (zfs_allow_node_t),
185029Spjd	    offsetof(zfs_allow_node_t, z_node));
185029Spjd	avl_create(&ptree->z_everyone,
185029Spjd	    perm_compare, sizeof (zfs_allow_node_t),
185029Spjd	    offsetof(zfs_allow_node_t, z_node));
185029Spjd
185029Spjd	if (prev)
185029Spjd		prev->z_next = ptree;
185029Spjd	ptree->z_next = NULL;
185029Spjd	return (ptree);
185029Spjd}
185029Spjd
185029Spjd/*
185029Spjd * Add permissions to the appropriate AVL permission tree.
185029Spjd * The appropriate tree may not be the requested tree.
185029Spjd * For example if ld indicates a local permission, but
185029Spjd * same permission also exists as a descendent permission
185029Spjd * then the permission will be removed from the descendent
185029Spjd * tree and add the the local+descendent tree.
185029Spjd */
185029Spjdstatic int
185029Spjdzfs_coalesce_perm(zfs_handle_t *zhp, zfs_allow_node_t *allownode,
185029Spjd    char *perm, char ld)
185029Spjd{
185029Spjd	zfs_perm_node_t pnode, *permnode, *permnode2;
185029Spjd	zfs_perm_node_t *newnode;
185029Spjd	avl_index_t where, where2;
185029Spjd	avl_tree_t *tree, *altree;
185029Spjd
185029Spjd	(void) strlcpy(pnode.z_pname, perm, sizeof (pnode.z_pname));
185029Spjd
185029Spjd	if (ld == ZFS_DELEG_NA) {
185029Spjd		tree =  &allownode->z_localdescend;
185029Spjd		altree = &allownode->z_descend;
185029Spjd	} else if (ld == ZFS_DELEG_LOCAL) {
185029Spjd		tree = &allownode->z_local;
185029Spjd		altree = &allownode->z_descend;
185029Spjd	} else {
185029Spjd		tree = &allownode->z_descend;
185029Spjd		altree = &allownode->z_local;
185029Spjd	}
185029Spjd	permnode = avl_find(tree, &pnode, &where);
185029Spjd	permnode2 = avl_find(altree, &pnode, &where2);
185029Spjd
185029Spjd	if (permnode2) {
185029Spjd		avl_remove(altree, permnode2);
185029Spjd		free(permnode2);
185029Spjd		if (permnode == NULL) {
185029Spjd			tree =  &allownode->z_localdescend;
185029Spjd		}
185029Spjd	}
185029Spjd
185029Spjd	/*
185029Spjd	 * Now insert new permission in either requested location
185029Spjd	 * local/descendent or into ld when perm will exist in both.
185029Spjd	 */
185029Spjd	if (permnode == NULL) {
185029Spjd		if ((newnode = zfs_alloc(zhp->zfs_hdl,
185029Spjd		    sizeof (zfs_perm_node_t))) == NULL) {
185029Spjd			return (-1);
185029Spjd		}
185029Spjd		*newnode = pnode;
185029Spjd		avl_add(tree, newnode);
185029Spjd	}
185029Spjd	return (0);
185029Spjd}
185029Spjd
185029Spjd/*
185029Spjd * Uggh, this is going to be a bit complicated.
185029Spjd * we have an nvlist coming out of the kernel that
185029Spjd * will indicate where the permission is set and then
185029Spjd * it will contain allow of the various "who's", and what
185029Spjd * their permissions are.  To further complicate this
185029Spjd * we will then have to coalesce the local,descendent
185029Spjd * and local+descendent permissions where appropriate.
185029Spjd * The kernel only knows about a permission as being local
185029Spjd * or descendent, but not both.
185029Spjd *
185029Spjd * In order to make this easier for zfs_main to deal with
185029Spjd * a series of AVL trees will be used to maintain
185029Spjd * all of this, primarily for sorting purposes as well
185029Spjd * as the ability to quickly locate a specific entry.
185029Spjd *
185029Spjd * What we end up with are tree's for sets, create perms,
185029Spjd * user, groups and everyone.  With each of those trees
185029Spjd * we have subtrees for local, descendent and local+descendent
185029Spjd * permissions.
185029Spjd */
185029Spjdint
185029Spjdzfs_perm_get(zfs_handle_t *zhp, zfs_allow_t **zfs_perms)
185029Spjd{
185029Spjd	zfs_cmd_t zc = { 0 };
185029Spjd	int error;
185029Spjd	nvlist_t *nvlist;
185029Spjd	nvlist_t *permnv, *sourcenv;
185029Spjd	nvpair_t *who_pair, *source_pair;
185029Spjd	nvpair_t *perm_pair;
185029Spjd	char errbuf[1024];
185029Spjd	zfs_allow_t *zallowp, *newallowp;
185029Spjd	char  ld;
185029Spjd	char *nvpname;
185029Spjd	uid_t	uid;
185029Spjd	gid_t	gid;
185029Spjd	avl_tree_t *tree;
185029Spjd	avl_index_t where;
185029Spjd
185029Spjd	(void) strlcpy(zc.zc_name, zhp->zfs_name, sizeof (zc.zc_name));
185029Spjd
185029Spjd	if (zcmd_alloc_dst_nvlist(zhp->zfs_hdl, &zc, 0) != 0)
185029Spjd		return (-1);
185029Spjd
185029Spjd	while (ioctl(zhp->zfs_hdl->libzfs_fd, ZFS_IOC_GET_FSACL, &zc) != 0) {
185029Spjd		if (errno == ENOMEM) {
185029Spjd			if (zcmd_expand_dst_nvlist(zhp->zfs_hdl, &zc) != 0) {
185029Spjd				zcmd_free_nvlists(&zc);
185029Spjd				return (-1);
185029Spjd			}
185029Spjd		} else if (errno == ENOTSUP) {
185029Spjd			zcmd_free_nvlists(&zc);
185029Spjd			(void) snprintf(errbuf, sizeof (errbuf),
185029Spjd			    gettext("Pool must be upgraded to use 'allow'"));
185029Spjd			return (zfs_error(zhp->zfs_hdl,
185029Spjd			    EZFS_BADVERSION, errbuf));
185029Spjd		} else {
185029Spjd			zcmd_free_nvlists(&zc);
185029Spjd			return (-1);
185029Spjd		}
185029Spjd	}
185029Spjd
185029Spjd	if (zcmd_read_dst_nvlist(zhp->zfs_hdl, &zc, &nvlist) != 0) {
185029Spjd		zcmd_free_nvlists(&zc);
185029Spjd		return (-1);
185029Spjd	}
185029Spjd
185029Spjd	zcmd_free_nvlists(&zc);
185029Spjd
185029Spjd	source_pair = nvlist_next_nvpair(nvlist, NULL);
185029Spjd
185029Spjd	if (source_pair == NULL) {
185029Spjd		*zfs_perms = NULL;
185029Spjd		return (0);
185029Spjd	}
185029Spjd
185029Spjd	*zfs_perms = zfs_alloc_perm_tree(zhp, NULL, nvpair_name(source_pair));
185029Spjd	if (*zfs_perms == NULL) {
185029Spjd		return (0);
185029Spjd	}
185029Spjd
185029Spjd	zallowp = *zfs_perms;
185029Spjd
185029Spjd	for (;;) {
185029Spjd		struct passwd *pwd;
185029Spjd		struct group *grp;
185029Spjd		zfs_allow_node_t *allownode;
185029Spjd		zfs_allow_node_t  findallownode;
185029Spjd		zfs_allow_node_t *newallownode;
185029Spjd
185029Spjd		(void) strlcpy(zallowp->z_setpoint,
185029Spjd		    nvpair_name(source_pair),
185029Spjd		    sizeof (zallowp->z_setpoint));
185029Spjd
185029Spjd		if ((error = nvpair_value_nvlist(source_pair, &sourcenv)) != 0)
185029Spjd			goto abort;
185029Spjd
185029Spjd		/*
185029Spjd		 * Make sure nvlist is composed correctly
185029Spjd		 */
185029Spjd		if (zfs_deleg_verify_nvlist(sourcenv)) {
185029Spjd			goto abort;
185029Spjd		}
185029Spjd
185029Spjd		who_pair = nvlist_next_nvpair(sourcenv, NULL);
185029Spjd		if (who_pair == NULL) {
185029Spjd			goto abort;
185029Spjd		}
185029Spjd
185029Spjd		do {
185029Spjd			error = nvpair_value_nvlist(who_pair, &permnv);
185029Spjd			if (error) {
185029Spjd				goto abort;
185029Spjd			}
185029Spjd
185029Spjd			/*
185029Spjd			 * First build up the key to use
185029Spjd			 * for looking up in the various
185029Spjd			 * who trees.
185029Spjd			 */
185029Spjd			ld = nvpair_name(who_pair)[1];
185029Spjd			nvpname = nvpair_name(who_pair);
185029Spjd			switch (nvpair_name(who_pair)[0]) {
185029Spjd			case ZFS_DELEG_USER:
185029Spjd			case ZFS_DELEG_USER_SETS:
185029Spjd				tree = &zallowp->z_user;
185029Spjd				uid = atol(&nvpname[3]);
185029Spjd				pwd = getpwuid(uid);
185029Spjd				(void) snprintf(findallownode.z_key,
185029Spjd				    sizeof (findallownode.z_key), "user %s",
185029Spjd				    (pwd) ? pwd->pw_name :
185029Spjd				    &nvpair_name(who_pair)[3]);
185029Spjd				break;
185029Spjd			case ZFS_DELEG_GROUP:
185029Spjd			case ZFS_DELEG_GROUP_SETS:
185029Spjd				tree = &zallowp->z_group;
185029Spjd				gid = atol(&nvpname[3]);
185029Spjd				grp = getgrgid(gid);
185029Spjd				(void) snprintf(findallownode.z_key,
185029Spjd				    sizeof (findallownode.z_key), "group %s",
185029Spjd				    (grp) ? grp->gr_name :
185029Spjd				    &nvpair_name(who_pair)[3]);
185029Spjd				break;
185029Spjd			case ZFS_DELEG_CREATE:
185029Spjd			case ZFS_DELEG_CREATE_SETS:
185029Spjd				tree = &zallowp->z_crperms;
185029Spjd				(void) strlcpy(findallownode.z_key, "",
185029Spjd				    sizeof (findallownode.z_key));
185029Spjd				break;
185029Spjd			case ZFS_DELEG_EVERYONE:
185029Spjd			case ZFS_DELEG_EVERYONE_SETS:
185029Spjd				(void) snprintf(findallownode.z_key,
185029Spjd				    sizeof (findallownode.z_key), "everyone");
185029Spjd				tree = &zallowp->z_everyone;
185029Spjd				break;
185029Spjd			case ZFS_DELEG_NAMED_SET:
185029Spjd			case ZFS_DELEG_NAMED_SET_SETS:
185029Spjd				(void) snprintf(findallownode.z_key,
185029Spjd				    sizeof (findallownode.z_key), "%s",
185029Spjd				    &nvpair_name(who_pair)[3]);
185029Spjd				tree = &zallowp->z_sets;
185029Spjd				break;
185029Spjd			}
185029Spjd
185029Spjd			/*
185029Spjd			 * Place who in tree
185029Spjd			 */
185029Spjd			allownode = avl_find(tree, &findallownode, &where);
185029Spjd			if (allownode == NULL) {
185029Spjd				if ((newallownode = zfs_alloc(zhp->zfs_hdl,
185029Spjd				    sizeof (zfs_allow_node_t))) == NULL) {
185029Spjd					goto abort;
185029Spjd				}
185029Spjd				avl_create(&newallownode->z_localdescend,
185029Spjd				    perm_compare,
185029Spjd				    sizeof (zfs_perm_node_t),
185029Spjd				    offsetof(zfs_perm_node_t, z_node));
185029Spjd				avl_create(&newallownode->z_local,
185029Spjd				    perm_compare,
185029Spjd				    sizeof (zfs_perm_node_t),
185029Spjd				    offsetof(zfs_perm_node_t, z_node));
185029Spjd				avl_create(&newallownode->z_descend,
185029Spjd				    perm_compare,
185029Spjd				    sizeof (zfs_perm_node_t),
185029Spjd				    offsetof(zfs_perm_node_t, z_node));
185029Spjd				(void) strlcpy(newallownode->z_key,
185029Spjd				    findallownode.z_key,
185029Spjd				    sizeof (findallownode.z_key));
185029Spjd				avl_insert(tree, newallownode, where);
185029Spjd				allownode = newallownode;
185029Spjd			}
185029Spjd
185029Spjd			/*
185029Spjd			 * Now iterate over the permissions and
185029Spjd			 * place them in the appropriate local,
185029Spjd			 * descendent or local+descendent tree.
185029Spjd			 *
185029Spjd			 * The permissions are added to the tree
185029Spjd			 * via zfs_coalesce_perm().
185029Spjd			 */
185029Spjd			perm_pair = nvlist_next_nvpair(permnv, NULL);
185029Spjd			if (perm_pair == NULL)
185029Spjd				goto abort;
185029Spjd			do {
185029Spjd				if (zfs_coalesce_perm(zhp, allownode,
185029Spjd				    nvpair_name(perm_pair), ld) != 0)
185029Spjd					goto abort;
185029Spjd			} while (perm_pair = nvlist_next_nvpair(permnv,
185029Spjd			    perm_pair));
185029Spjd		} while (who_pair = nvlist_next_nvpair(sourcenv, who_pair));
185029Spjd
185029Spjd		source_pair = nvlist_next_nvpair(nvlist, source_pair);
185029Spjd		if (source_pair == NULL)
185029Spjd			break;
185029Spjd
185029Spjd		/*
185029Spjd		 * allocate another node from the link list of
185029Spjd		 * zfs_allow_t structures
185029Spjd		 */
185029Spjd		newallowp = zfs_alloc_perm_tree(zhp, zallowp,
185029Spjd		    nvpair_name(source_pair));
185029Spjd		if (newallowp == NULL) {
185029Spjd			goto abort;
185029Spjd		}
185029Spjd		zallowp = newallowp;
185029Spjd	}
185029Spjd	nvlist_free(nvlist);
185029Spjd	return (0);
185029Spjdabort:
185029Spjd	zfs_free_allows(*zfs_perms);
185029Spjd	nvlist_free(nvlist);
185029Spjd	return (-1);
185029Spjd}
185029Spjd
185029Spjdstatic char *
185029Spjdzfs_deleg_perm_note(zfs_deleg_note_t note)
185029Spjd{
185029Spjd	/*
185029Spjd	 * Don't put newlines on end of lines
185029Spjd	 */
185029Spjd	switch (note) {
185029Spjd	case ZFS_DELEG_NOTE_CREATE:
185029Spjd		return (dgettext(TEXT_DOMAIN,
185029Spjd		    "Must also have the 'mount' ability"));
185029Spjd	case ZFS_DELEG_NOTE_DESTROY:
185029Spjd		return (dgettext(TEXT_DOMAIN,
185029Spjd		    "Must also have the 'mount' ability"));
185029Spjd	case ZFS_DELEG_NOTE_SNAPSHOT:
185029Spjd		return (dgettext(TEXT_DOMAIN,
185029Spjd		    "Must also have the 'mount' ability"));
185029Spjd	case ZFS_DELEG_NOTE_ROLLBACK:
185029Spjd		return (dgettext(TEXT_DOMAIN,
185029Spjd		    "Must also have the 'mount' ability"));
185029Spjd	case ZFS_DELEG_NOTE_CLONE:
185029Spjd		return (dgettext(TEXT_DOMAIN, "Must also have the 'create' "
185029Spjd		    "ability and 'mount'\n"
185029Spjd		    "\t\t\t\tability in the origin file system"));
185029Spjd	case ZFS_DELEG_NOTE_PROMOTE:
185029Spjd		return (dgettext(TEXT_DOMAIN, "Must also have the 'mount'\n"
185029Spjd		    "\t\t\t\tand 'promote' ability in the origin file system"));
185029Spjd	case ZFS_DELEG_NOTE_RENAME:
185029Spjd		return (dgettext(TEXT_DOMAIN, "Must also have the 'mount' "
185029Spjd		    "and 'create' \n\t\t\t\tability in the new parent"));
185029Spjd	case ZFS_DELEG_NOTE_RECEIVE:
185029Spjd		return (dgettext(TEXT_DOMAIN, "Must also have the 'mount'"
185029Spjd		    " and 'create' ability"));
185029Spjd	case ZFS_DELEG_NOTE_USERPROP:
185029Spjd		return (dgettext(TEXT_DOMAIN,
185029Spjd		    "Allows changing any user property"));
185029Spjd	case ZFS_DELEG_NOTE_ALLOW:
185029Spjd		return (dgettext(TEXT_DOMAIN,
185029Spjd		    "Must also have the permission that is being\n"
185029Spjd		    "\t\t\t\tallowed"));
185029Spjd	case ZFS_DELEG_NOTE_MOUNT:
185029Spjd		return (dgettext(TEXT_DOMAIN,
185029Spjd		    "Allows mount/umount of ZFS datasets"));
185029Spjd	case ZFS_DELEG_NOTE_SHARE:
185029Spjd		return (dgettext(TEXT_DOMAIN,
185029Spjd		    "Allows sharing file systems over NFS or SMB\n"
185029Spjd		    "\t\t\t\tprotocols"));
185029Spjd	case ZFS_DELEG_NOTE_NONE:
185029Spjd	default:
185029Spjd		return (dgettext(TEXT_DOMAIN, ""));
185029Spjd	}
185029Spjd}
185029Spjd
185029Spjdtypedef enum {
185029Spjd	ZFS_DELEG_SUBCOMMAND,
185029Spjd	ZFS_DELEG_PROP,
185029Spjd	ZFS_DELEG_OTHER
185029Spjd} zfs_deleg_perm_type_t;
185029Spjd
185029Spjd/*
185029Spjd * is the permission a subcommand or other?
185029Spjd */
185029Spjdzfs_deleg_perm_type_t
185029Spjdzfs_deleg_perm_type(const char *perm)
185029Spjd{
185029Spjd	if (strcmp(perm, "userprop") == 0)
185029Spjd		return (ZFS_DELEG_OTHER);
185029Spjd	else
185029Spjd		return (ZFS_DELEG_SUBCOMMAND);
185029Spjd}
185029Spjd
185029Spjdstatic char *
185029Spjdzfs_deleg_perm_type_str(zfs_deleg_perm_type_t type)
185029Spjd{
185029Spjd	switch (type) {
185029Spjd	case ZFS_DELEG_SUBCOMMAND:
185029Spjd		return (dgettext(TEXT_DOMAIN, "subcommand"));
185029Spjd	case ZFS_DELEG_PROP:
185029Spjd		return (dgettext(TEXT_DOMAIN, "property"));
185029Spjd	case ZFS_DELEG_OTHER:
185029Spjd		return (dgettext(TEXT_DOMAIN, "other"));
185029Spjd	}
185029Spjd	return ("");
185029Spjd}
185029Spjd
185029Spjd/*ARGSUSED*/
185029Spjdstatic int
185029Spjdzfs_deleg_prop_cb(int prop, void *cb)
185029Spjd{
185029Spjd	if (zfs_prop_delegatable(prop))
185029Spjd		(void) fprintf(stderr, "%-15s %-15s\n", zfs_prop_to_name(prop),
185029Spjd		    zfs_deleg_perm_type_str(ZFS_DELEG_PROP));
185029Spjd
185029Spjd	return (ZPROP_CONT);
185029Spjd}
185029Spjd
185029Spjdvoid
185029Spjdzfs_deleg_permissions(void)
185029Spjd{
185029Spjd	int i;
185029Spjd
185029Spjd	(void) fprintf(stderr, "\n%-15s %-15s\t%s\n\n", "NAME",
185029Spjd	    "TYPE", "NOTES");
185029Spjd
185029Spjd	/*
185029Spjd	 * First print out the subcommands
185029Spjd	 */
185029Spjd	for (i = 0; zfs_deleg_perm_tab[i].z_perm != NULL; i++) {
185029Spjd		(void) fprintf(stderr, "%-15s %-15s\t%s\n",
185029Spjd		    zfs_deleg_perm_tab[i].z_perm,
185029Spjd		    zfs_deleg_perm_type_str(
185029Spjd		    zfs_deleg_perm_type(zfs_deleg_perm_tab[i].z_perm)),
185029Spjd		    zfs_deleg_perm_note(zfs_deleg_perm_tab[i].z_note));
185029Spjd	}
185029Spjd
185029Spjd	(void) zprop_iter(zfs_deleg_prop_cb, NULL, B_FALSE, B_TRUE,
185029Spjd	    ZFS_TYPE_DATASET|ZFS_TYPE_VOLUME);
185029Spjd}
185029Spjd
185029Spjd/*
168404Spjd * Given a property name and value, set the property for the given dataset.
168404Spjd */
168404Spjdint
168404Spjdzfs_prop_set(zfs_handle_t *zhp, const char *propname, const char *propval)
168404Spjd{
168404Spjd	zfs_cmd_t zc = { 0 };
168404Spjd	int ret = -1;
168404Spjd	prop_changelist_t *cl = NULL;
168404Spjd	char errbuf[1024];
168404Spjd	libzfs_handle_t *hdl = zhp->zfs_hdl;
168404Spjd	nvlist_t *nvl = NULL, *realprops;
168404Spjd	zfs_prop_t prop;
185029Spjd	boolean_t do_prefix;
185029Spjd	uint64_t idx;
168404Spjd
168404Spjd	(void) snprintf(errbuf, sizeof (errbuf),
168404Spjd	    dgettext(TEXT_DOMAIN, "cannot set property for '%s'"),
168404Spjd	    zhp->zfs_name);
168404Spjd
168404Spjd	if (nvlist_alloc(&nvl, NV_UNIQUE_NAME, 0) != 0 ||
168404Spjd	    nvlist_add_string(nvl, propname, propval) != 0) {
168404Spjd		(void) no_memory(hdl);
168404Spjd		goto error;
168404Spjd	}
168404Spjd
185029Spjd	if ((realprops = zfs_valid_proplist(hdl, zhp->zfs_type, nvl,
168404Spjd	    zfs_prop_get_int(zhp, ZFS_PROP_ZONED), zhp, errbuf)) == NULL)
168404Spjd		goto error;
185029Spjd
168404Spjd	nvlist_free(nvl);
168404Spjd	nvl = realprops;
168404Spjd
168404Spjd	prop = zfs_name_to_prop(propname);
168404Spjd
168404Spjd	/* We don't support those properties on FreeBSD. */
168404Spjd	switch (prop) {
197867Strasz	case ZFS_PROP_DEVICES:
197867Strasz	case ZFS_PROP_ZONED:
168404Spjd	case ZFS_PROP_SHAREISCSI:
168404Spjd	case ZFS_PROP_ISCSIOPTIONS:
197867Strasz	case ZFS_PROP_XATTR:
197867Strasz	case ZFS_PROP_VSCAN:
197867Strasz	case ZFS_PROP_NBMAND:
197867Strasz	case ZFS_PROP_SHARESMB:
168404Spjd		(void) snprintf(errbuf, sizeof (errbuf),
168404Spjd		    "property '%s' not supported on FreeBSD", propname);
168404Spjd		ret = zfs_error(hdl, EZFS_PERM, errbuf);
168404Spjd		goto error;
168404Spjd	}
168404Spjd
185029Spjd	if ((cl = changelist_gather(zhp, prop, 0, 0)) == NULL)
168404Spjd		goto error;
168404Spjd
168404Spjd	if (prop == ZFS_PROP_MOUNTPOINT && changelist_haszonedchild(cl)) {
168404Spjd		zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd		    "child dataset with inherited mountpoint is used "
168404Spjd		    "in a non-global zone"));
168404Spjd		ret = zfs_error(hdl, EZFS_ZONED, errbuf);
168404Spjd		goto error;
168404Spjd	}
168404Spjd
185029Spjd	/*
185029Spjd	 * If the dataset's canmount property is being set to noauto,
185029Spjd	 * then we want to prevent unmounting & remounting it.
185029Spjd	 */
185029Spjd	do_prefix = !((prop == ZFS_PROP_CANMOUNT) &&
185029Spjd	    (zprop_string_to_index(prop, propval, &idx,
185029Spjd	    ZFS_TYPE_DATASET) == 0) && (idx == ZFS_CANMOUNT_NOAUTO));
185029Spjd
185029Spjd	if (do_prefix && (ret = changelist_prefix(cl)) != 0)
168404Spjd		goto error;
168404Spjd
168404Spjd	/*
168404Spjd	 * Execute the corresponding ioctl() to set this property.
168404Spjd	 */
168404Spjd	(void) strlcpy(zc.zc_name, zhp->zfs_name, sizeof (zc.zc_name));
168404Spjd
185029Spjd	if (zcmd_write_src_nvlist(hdl, &zc, nvl) != 0)
168404Spjd		goto error;
168404Spjd
185029Spjd	ret = zfs_ioctl(hdl, ZFS_IOC_SET_PROP, &zc);
168404Spjd	if (ret != 0) {
168404Spjd		switch (errno) {
168404Spjd
168404Spjd		case ENOSPC:
168404Spjd			/*
168404Spjd			 * For quotas and reservations, ENOSPC indicates
168404Spjd			 * something different; setting a quota or reservation
168404Spjd			 * doesn't use any disk space.
168404Spjd			 */
168404Spjd			switch (prop) {
168404Spjd			case ZFS_PROP_QUOTA:
185029Spjd			case ZFS_PROP_REFQUOTA:
168404Spjd				zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd				    "size is less than current used or "
168404Spjd				    "reserved space"));
168404Spjd				(void) zfs_error(hdl, EZFS_PROPSPACE, errbuf);
168404Spjd				break;
168404Spjd
168404Spjd			case ZFS_PROP_RESERVATION:
185029Spjd			case ZFS_PROP_REFRESERVATION:
168404Spjd				zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd				    "size is greater than available space"));
168404Spjd				(void) zfs_error(hdl, EZFS_PROPSPACE, errbuf);
168404Spjd				break;
168404Spjd
168404Spjd			default:
168404Spjd				(void) zfs_standard_error(hdl, errno, errbuf);
168404Spjd				break;
168404Spjd			}
168404Spjd			break;
168404Spjd
168404Spjd		case EBUSY:
168404Spjd			if (prop == ZFS_PROP_VOLBLOCKSIZE)
168404Spjd				(void) zfs_error(hdl, EZFS_VOLHASDATA, errbuf);
168404Spjd			else
168404Spjd				(void) zfs_standard_error(hdl, EBUSY, errbuf);
168404Spjd			break;
168404Spjd
168404Spjd		case EROFS:
168404Spjd			(void) zfs_error(hdl, EZFS_DSREADONLY, errbuf);
168404Spjd			break;
168404Spjd
168404Spjd		case ENOTSUP:
168404Spjd			zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
185029Spjd			    "pool and or dataset must be upgraded to set this "
185029Spjd			    "property or value"));
168404Spjd			(void) zfs_error(hdl, EZFS_BADVERSION, errbuf);
168404Spjd			break;
168404Spjd
185029Spjd		case ERANGE:
185029Spjd			if (prop == ZFS_PROP_COMPRESSION) {
185029Spjd				(void) zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
185029Spjd				    "property setting is not allowed on "
185029Spjd				    "bootable datasets"));
185029Spjd				(void) zfs_error(hdl, EZFS_NOTSUP, errbuf);
185029Spjd			} else {
185029Spjd				(void) zfs_standard_error(hdl, errno, errbuf);
185029Spjd			}
185029Spjd			break;
185029Spjd
168404Spjd		case EOVERFLOW:
168404Spjd			/*
168404Spjd			 * This platform can't address a volume this big.
168404Spjd			 */
168404Spjd#ifdef _ILP32
168404Spjd			if (prop == ZFS_PROP_VOLSIZE) {
168404Spjd				(void) zfs_error(hdl, EZFS_VOLTOOBIG, errbuf);
168404Spjd				break;
168404Spjd			}
168404Spjd#endif
168404Spjd			/* FALLTHROUGH */
168404Spjd		default:
168404Spjd			(void) zfs_standard_error(hdl, errno, errbuf);
168404Spjd		}
168404Spjd	} else {
185029Spjd		if (do_prefix)
185029Spjd			ret = changelist_postfix(cl);
185029Spjd
168404Spjd		/*
168404Spjd		 * Refresh the statistics so the new property value
168404Spjd		 * is reflected.
168404Spjd		 */
185029Spjd		if (ret == 0)
168404Spjd			(void) get_stats(zhp);
168404Spjd	}
168404Spjd
168404Spjderror:
168404Spjd	nvlist_free(nvl);
168404Spjd	zcmd_free_nvlists(&zc);
168404Spjd	if (cl)
168404Spjd		changelist_free(cl);
168404Spjd	return (ret);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Given a property, inherit the value from the parent dataset.
168404Spjd */
168404Spjdint
168404Spjdzfs_prop_inherit(zfs_handle_t *zhp, const char *propname)
168404Spjd{
168404Spjd	zfs_cmd_t zc = { 0 };
168404Spjd	int ret;
168404Spjd	prop_changelist_t *cl;
168404Spjd	libzfs_handle_t *hdl = zhp->zfs_hdl;
168404Spjd	char errbuf[1024];
168404Spjd	zfs_prop_t prop;
168404Spjd
168404Spjd	(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
168404Spjd	    "cannot inherit %s for '%s'"), propname, zhp->zfs_name);
168404Spjd
185029Spjd	if ((prop = zfs_name_to_prop(propname)) == ZPROP_INVAL) {
168404Spjd		/*
168404Spjd		 * For user properties, the amount of work we have to do is very
168404Spjd		 * small, so just do it here.
168404Spjd		 */
168404Spjd		if (!zfs_prop_user(propname)) {
168404Spjd			zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd			    "invalid property"));
168404Spjd			return (zfs_error(hdl, EZFS_BADPROP, errbuf));
168404Spjd		}
168404Spjd
168404Spjd		(void) strlcpy(zc.zc_name, zhp->zfs_name, sizeof (zc.zc_name));
168404Spjd		(void) strlcpy(zc.zc_value, propname, sizeof (zc.zc_value));
168404Spjd
185029Spjd		if (zfs_ioctl(zhp->zfs_hdl, ZFS_IOC_INHERIT_PROP, &zc) != 0)
168404Spjd			return (zfs_standard_error(hdl, errno, errbuf));
168404Spjd
168404Spjd		return (0);
168404Spjd	}
168404Spjd
168404Spjd	/*
168404Spjd	 * Verify that this property is inheritable.
168404Spjd	 */
168404Spjd	if (zfs_prop_readonly(prop))
168404Spjd		return (zfs_error(hdl, EZFS_PROPREADONLY, errbuf));
168404Spjd
168404Spjd	if (!zfs_prop_inheritable(prop))
168404Spjd		return (zfs_error(hdl, EZFS_PROPNONINHERIT, errbuf));
168404Spjd
168404Spjd	/*
168404Spjd	 * Check to see if the value applies to this type
168404Spjd	 */
168404Spjd	if (!zfs_prop_valid_for_type(prop, zhp->zfs_type))
168404Spjd		return (zfs_error(hdl, EZFS_PROPTYPE, errbuf));
168404Spjd
168404Spjd	/*
168404Spjd	 * Normalize the name, to get rid of shorthand abbrevations.
168404Spjd	 */
168404Spjd	propname = zfs_prop_to_name(prop);
168404Spjd	(void) strlcpy(zc.zc_name, zhp->zfs_name, sizeof (zc.zc_name));
168404Spjd	(void) strlcpy(zc.zc_value, propname, sizeof (zc.zc_value));
168404Spjd
168404Spjd	if (prop == ZFS_PROP_MOUNTPOINT && getzoneid() == GLOBAL_ZONEID &&
168404Spjd	    zfs_prop_get_int(zhp, ZFS_PROP_ZONED)) {
168404Spjd		zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd		    "dataset is used in a non-global zone"));
168404Spjd		return (zfs_error(hdl, EZFS_ZONED, errbuf));
168404Spjd	}
168404Spjd
168404Spjd	/*
168404Spjd	 * Determine datasets which will be affected by this change, if any.
168404Spjd	 */
185029Spjd	if ((cl = changelist_gather(zhp, prop, 0, 0)) == NULL)
168404Spjd		return (-1);
168404Spjd
168404Spjd	if (prop == ZFS_PROP_MOUNTPOINT && changelist_haszonedchild(cl)) {
168404Spjd		zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd		    "child dataset with inherited mountpoint is used "
168404Spjd		    "in a non-global zone"));
168404Spjd		ret = zfs_error(hdl, EZFS_ZONED, errbuf);
168404Spjd		goto error;
168404Spjd	}
168404Spjd
168404Spjd	if ((ret = changelist_prefix(cl)) != 0)
168404Spjd		goto error;
168404Spjd
185029Spjd	if ((ret = zfs_ioctl(zhp->zfs_hdl, ZFS_IOC_INHERIT_PROP, &zc)) != 0) {
168404Spjd		return (zfs_standard_error(hdl, errno, errbuf));
168404Spjd	} else {
168404Spjd
168404Spjd		if ((ret = changelist_postfix(cl)) != 0)
168404Spjd			goto error;
168404Spjd
168404Spjd		/*
168404Spjd		 * Refresh the statistics so the new property is reflected.
168404Spjd		 */
168404Spjd		(void) get_stats(zhp);
168404Spjd	}
168404Spjd
168404Spjderror:
168404Spjd	changelist_free(cl);
168404Spjd	return (ret);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * True DSL properties are stored in an nvlist.  The following two functions
168404Spjd * extract them appropriately.
168404Spjd */
168404Spjdstatic uint64_t
168404Spjdgetprop_uint64(zfs_handle_t *zhp, zfs_prop_t prop, char **source)
168404Spjd{
168404Spjd	nvlist_t *nv;
168404Spjd	uint64_t value;
168404Spjd
168404Spjd	*source = NULL;
168404Spjd	if (nvlist_lookup_nvlist(zhp->zfs_props,
168404Spjd	    zfs_prop_to_name(prop), &nv) == 0) {
185029Spjd		verify(nvlist_lookup_uint64(nv, ZPROP_VALUE, &value) == 0);
185029Spjd		(void) nvlist_lookup_string(nv, ZPROP_SOURCE, source);
168404Spjd	} else {
205198Sdelphij		verify(!zhp->zfs_props_table ||
205198Sdelphij		    zhp->zfs_props_table[prop] == B_TRUE);
168404Spjd		value = zfs_prop_default_numeric(prop);
168404Spjd		*source = "";
168404Spjd	}
168404Spjd
168404Spjd	return (value);
168404Spjd}
168404Spjd
168404Spjdstatic char *
168404Spjdgetprop_string(zfs_handle_t *zhp, zfs_prop_t prop, char **source)
168404Spjd{
168404Spjd	nvlist_t *nv;
168404Spjd	char *value;
168404Spjd
168404Spjd	*source = NULL;
168404Spjd	if (nvlist_lookup_nvlist(zhp->zfs_props,
168404Spjd	    zfs_prop_to_name(prop), &nv) == 0) {
185029Spjd		verify(nvlist_lookup_string(nv, ZPROP_VALUE, &value) == 0);
185029Spjd		(void) nvlist_lookup_string(nv, ZPROP_SOURCE, source);
168404Spjd	} else {
205198Sdelphij		verify(!zhp->zfs_props_table ||
205198Sdelphij		    zhp->zfs_props_table[prop] == B_TRUE);
168404Spjd		if ((value = (char *)zfs_prop_default_string(prop)) == NULL)
168404Spjd			value = "";
168404Spjd		*source = "";
168404Spjd	}
168404Spjd
168404Spjd	return (value);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Internal function for getting a numeric property.  Both zfs_prop_get() and
168404Spjd * zfs_prop_get_int() are built using this interface.
168404Spjd *
168404Spjd * Certain properties can be overridden using 'mount -o'.  In this case, scan
168404Spjd * the contents of the /etc/mnttab entry, searching for the appropriate options.
168404Spjd * If they differ from the on-disk values, report the current values and mark
168404Spjd * the source "temporary".
168404Spjd */
168404Spjdstatic int
185029Spjdget_numeric_property(zfs_handle_t *zhp, zfs_prop_t prop, zprop_source_t *src,
168404Spjd    char **source, uint64_t *val)
168404Spjd{
185029Spjd	zfs_cmd_t zc = { 0 };
185029Spjd	nvlist_t *zplprops = NULL;
168404Spjd	struct mnttab mnt;
168404Spjd	char *mntopt_on = NULL;
168404Spjd	char *mntopt_off = NULL;
168404Spjd
168404Spjd	*source = NULL;
168404Spjd
168404Spjd	switch (prop) {
168404Spjd	case ZFS_PROP_ATIME:
168404Spjd		mntopt_on = MNTOPT_ATIME;
168404Spjd		mntopt_off = MNTOPT_NOATIME;
168404Spjd		break;
168404Spjd
168404Spjd	case ZFS_PROP_DEVICES:
168404Spjd		mntopt_on = MNTOPT_DEVICES;
168404Spjd		mntopt_off = MNTOPT_NODEVICES;
168404Spjd		break;
168404Spjd
168404Spjd	case ZFS_PROP_EXEC:
168404Spjd		mntopt_on = MNTOPT_EXEC;
168404Spjd		mntopt_off = MNTOPT_NOEXEC;
168404Spjd		break;
168404Spjd
168404Spjd	case ZFS_PROP_READONLY:
168404Spjd		mntopt_on = MNTOPT_RO;
168404Spjd		mntopt_off = MNTOPT_RW;
168404Spjd		break;
168404Spjd
168404Spjd	case ZFS_PROP_SETUID:
168404Spjd		mntopt_on = MNTOPT_SETUID;
168404Spjd		mntopt_off = MNTOPT_NOSETUID;
168404Spjd		break;
168404Spjd
168404Spjd	case ZFS_PROP_XATTR:
168404Spjd		mntopt_on = MNTOPT_XATTR;
168404Spjd		mntopt_off = MNTOPT_NOXATTR;
168404Spjd		break;
185029Spjd
185029Spjd	case ZFS_PROP_NBMAND:
185029Spjd		mntopt_on = MNTOPT_NBMAND;
185029Spjd		mntopt_off = MNTOPT_NONBMAND;
185029Spjd		break;
168404Spjd	}
168404Spjd
168404Spjd	/*
168404Spjd	 * Because looking up the mount options is potentially expensive
168404Spjd	 * (iterating over all of /etc/mnttab), we defer its calculation until
168404Spjd	 * we're looking up a property which requires its presence.
168404Spjd	 */
168404Spjd	if (!zhp->zfs_mntcheck &&
168404Spjd	    (mntopt_on != NULL || prop == ZFS_PROP_MOUNTED)) {
168404Spjd		struct mnttab entry, search = { 0 };
168404Spjd		FILE *mnttab = zhp->zfs_hdl->libzfs_mnttab;
168404Spjd
168404Spjd		search.mnt_special = (char *)zhp->zfs_name;
168404Spjd		search.mnt_fstype = MNTTYPE_ZFS;
168404Spjd		rewind(mnttab);
168404Spjd
168404Spjd		if (getmntany(mnttab, &entry, &search) == 0) {
168404Spjd			zhp->zfs_mntopts = zfs_strdup(zhp->zfs_hdl,
168404Spjd			    entry.mnt_mntopts);
168404Spjd			if (zhp->zfs_mntopts == NULL)
168404Spjd				return (-1);
168404Spjd		}
168404Spjd
168404Spjd		zhp->zfs_mntcheck = B_TRUE;
168404Spjd	}
168404Spjd
168404Spjd	if (zhp->zfs_mntopts == NULL)
168404Spjd		mnt.mnt_mntopts = "";
168404Spjd	else
168404Spjd		mnt.mnt_mntopts = zhp->zfs_mntopts;
168404Spjd
168404Spjd	switch (prop) {
168404Spjd	case ZFS_PROP_ATIME:
168404Spjd	case ZFS_PROP_DEVICES:
168404Spjd	case ZFS_PROP_EXEC:
168404Spjd	case ZFS_PROP_READONLY:
168404Spjd	case ZFS_PROP_SETUID:
168404Spjd	case ZFS_PROP_XATTR:
185029Spjd	case ZFS_PROP_NBMAND:
168404Spjd		*val = getprop_uint64(zhp, prop, source);
168404Spjd
168404Spjd		if (hasmntopt(&mnt, mntopt_on) && !*val) {
168404Spjd			*val = B_TRUE;
168404Spjd			if (src)
185029Spjd				*src = ZPROP_SRC_TEMPORARY;
168404Spjd		} else if (hasmntopt(&mnt, mntopt_off) && *val) {
168404Spjd			*val = B_FALSE;
168404Spjd			if (src)
185029Spjd				*src = ZPROP_SRC_TEMPORARY;
168404Spjd		}
168404Spjd		break;
168404Spjd
168404Spjd	case ZFS_PROP_CANMOUNT:
168404Spjd		*val = getprop_uint64(zhp, prop, source);
185029Spjd		if (*val != ZFS_CANMOUNT_ON)
168404Spjd			*source = zhp->zfs_name;
168404Spjd		else
168404Spjd			*source = "";	/* default */
168404Spjd		break;
168404Spjd
168404Spjd	case ZFS_PROP_QUOTA:
185029Spjd	case ZFS_PROP_REFQUOTA:
168404Spjd	case ZFS_PROP_RESERVATION:
185029Spjd	case ZFS_PROP_REFRESERVATION:
168404Spjd		*val = getprop_uint64(zhp, prop, source);
168404Spjd		if (*val == 0)
168404Spjd			*source = "";	/* default */
168404Spjd		else
168404Spjd			*source = zhp->zfs_name;
168404Spjd		break;
168404Spjd
168404Spjd	case ZFS_PROP_MOUNTED:
168404Spjd		*val = (zhp->zfs_mntopts != NULL);
168404Spjd		break;
168404Spjd
168404Spjd	case ZFS_PROP_NUMCLONES:
168404Spjd		*val = zhp->zfs_dmustats.dds_num_clones;
168404Spjd		break;
168404Spjd
185029Spjd	case ZFS_PROP_VERSION:
185029Spjd	case ZFS_PROP_NORMALIZE:
185029Spjd	case ZFS_PROP_UTF8ONLY:
185029Spjd	case ZFS_PROP_CASE:
185029Spjd		if (!zfs_prop_valid_for_type(prop, zhp->zfs_head_type) ||
185029Spjd		    zcmd_alloc_dst_nvlist(zhp->zfs_hdl, &zc, 0) != 0)
185029Spjd			return (-1);
185029Spjd		(void) strlcpy(zc.zc_name, zhp->zfs_name, sizeof (zc.zc_name));
185029Spjd		if (zfs_ioctl(zhp->zfs_hdl, ZFS_IOC_OBJSET_ZPLPROPS, &zc)) {
185029Spjd			zcmd_free_nvlists(&zc);
185029Spjd			zfs_error_aux(zhp->zfs_hdl, dgettext(TEXT_DOMAIN,
185029Spjd			    "unable to get %s property"),
185029Spjd			    zfs_prop_to_name(prop));
185029Spjd			return (zfs_error(zhp->zfs_hdl, EZFS_BADVERSION,
185029Spjd			    dgettext(TEXT_DOMAIN, "internal error")));
185029Spjd		}
185029Spjd		if (zcmd_read_dst_nvlist(zhp->zfs_hdl, &zc, &zplprops) != 0 ||
185029Spjd		    nvlist_lookup_uint64(zplprops, zfs_prop_to_name(prop),
185029Spjd		    val) != 0) {
185029Spjd			zcmd_free_nvlists(&zc);
185029Spjd			zfs_error_aux(zhp->zfs_hdl, dgettext(TEXT_DOMAIN,
185029Spjd			    "unable to get %s property"),
185029Spjd			    zfs_prop_to_name(prop));
185029Spjd			return (zfs_error(zhp->zfs_hdl, EZFS_NOMEM,
185029Spjd			    dgettext(TEXT_DOMAIN, "internal error")));
185029Spjd		}
185029Spjd		if (zplprops)
185029Spjd			nvlist_free(zplprops);
185029Spjd		zcmd_free_nvlists(&zc);
185029Spjd		break;
185029Spjd
168404Spjd	default:
185029Spjd		switch (zfs_prop_get_type(prop)) {
185029Spjd		case PROP_TYPE_NUMBER:
185029Spjd		case PROP_TYPE_INDEX:
185029Spjd			*val = getprop_uint64(zhp, prop, source);
185029Spjd			/*
185029Spjd			 * If we tried to use a defalut value for a
185029Spjd			 * readonly property, it means that it was not
185029Spjd			 * present; return an error.
185029Spjd			 */
185029Spjd			if (zfs_prop_readonly(prop) &&
185029Spjd			    *source && (*source)[0] == '\0') {
185029Spjd				return (-1);
185029Spjd			}
185029Spjd			break;
185029Spjd
185029Spjd		case PROP_TYPE_STRING:
185029Spjd		default:
185029Spjd			zfs_error_aux(zhp->zfs_hdl, dgettext(TEXT_DOMAIN,
185029Spjd			    "cannot get non-numeric property"));
185029Spjd			return (zfs_error(zhp->zfs_hdl, EZFS_BADPROP,
185029Spjd			    dgettext(TEXT_DOMAIN, "internal error")));
185029Spjd		}
168404Spjd	}
168404Spjd
168404Spjd	return (0);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Calculate the source type, given the raw source string.
168404Spjd */
168404Spjdstatic void
185029Spjdget_source(zfs_handle_t *zhp, zprop_source_t *srctype, char *source,
168404Spjd    char *statbuf, size_t statlen)
168404Spjd{
185029Spjd	if (statbuf == NULL || *srctype == ZPROP_SRC_TEMPORARY)
168404Spjd		return;
168404Spjd
168404Spjd	if (source == NULL) {
185029Spjd		*srctype = ZPROP_SRC_NONE;
168404Spjd	} else if (source[0] == '\0') {
185029Spjd		*srctype = ZPROP_SRC_DEFAULT;
168404Spjd	} else {
168404Spjd		if (strcmp(source, zhp->zfs_name) == 0) {
185029Spjd			*srctype = ZPROP_SRC_LOCAL;
168404Spjd		} else {
168404Spjd			(void) strlcpy(statbuf, source, statlen);
185029Spjd			*srctype = ZPROP_SRC_INHERITED;
168404Spjd		}
168404Spjd	}
168404Spjd
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Retrieve a property from the given object.  If 'literal' is specified, then
168404Spjd * numbers are left as exact values.  Otherwise, numbers are converted to a
168404Spjd * human-readable form.
168404Spjd *
168404Spjd * Returns 0 on success, or -1 on error.
168404Spjd */
168404Spjdint
168404Spjdzfs_prop_get(zfs_handle_t *zhp, zfs_prop_t prop, char *propbuf, size_t proplen,
185029Spjd    zprop_source_t *src, char *statbuf, size_t statlen, boolean_t literal)
168404Spjd{
168404Spjd	char *source = NULL;
168404Spjd	uint64_t val;
168404Spjd	char *str;
168404Spjd	const char *strval;
168404Spjd
168404Spjd	/*
168404Spjd	 * Check to see if this property applies to our object
168404Spjd	 */
168404Spjd	if (!zfs_prop_valid_for_type(prop, zhp->zfs_type))
168404Spjd		return (-1);
168404Spjd
168404Spjd	if (src)
185029Spjd		*src = ZPROP_SRC_NONE;
168404Spjd
168404Spjd	switch (prop) {
168404Spjd	case ZFS_PROP_CREATION:
168404Spjd		/*
168404Spjd		 * 'creation' is a time_t stored in the statistics.  We convert
168404Spjd		 * this into a string unless 'literal' is specified.
168404Spjd		 */
168404Spjd		{
168404Spjd			val = getprop_uint64(zhp, prop, &source);
168404Spjd			time_t time = (time_t)val;
168404Spjd			struct tm t;
168404Spjd
168404Spjd			if (literal ||
168404Spjd			    localtime_r(&time, &t) == NULL ||
168404Spjd			    strftime(propbuf, proplen, "%a %b %e %k:%M %Y",
168404Spjd			    &t) == 0)
168404Spjd				(void) snprintf(propbuf, proplen, "%llu", val);
168404Spjd		}
168404Spjd		break;
168404Spjd
168404Spjd	case ZFS_PROP_MOUNTPOINT:
168404Spjd		/*
168404Spjd		 * Getting the precise mountpoint can be tricky.
168404Spjd		 *
168404Spjd		 *  - for 'none' or 'legacy', return those values.
168404Spjd		 *  - for inherited mountpoints, we want to take everything
168404Spjd		 *    after our ancestor and append it to the inherited value.
168404Spjd		 *
168404Spjd		 * If the pool has an alternate root, we want to prepend that
168404Spjd		 * root to any values we return.
168404Spjd		 */
185029Spjd
168404Spjd		str = getprop_string(zhp, prop, &source);
168404Spjd
185029Spjd		if (str[0] == '/') {
185029Spjd			char buf[MAXPATHLEN];
185029Spjd			char *root = buf;
168404Spjd			const char *relpath = zhp->zfs_name + strlen(source);
168404Spjd
168404Spjd			if (relpath[0] == '/')
168404Spjd				relpath++;
185029Spjd
185029Spjd			if ((zpool_get_prop(zhp->zpool_hdl,
185029Spjd			    ZPOOL_PROP_ALTROOT, buf, MAXPATHLEN, NULL)) ||
185029Spjd			    (strcmp(root, "-") == 0))
185029Spjd				root[0] = '\0';
185029Spjd			/*
185029Spjd			 * Special case an alternate root of '/'. This will
185029Spjd			 * avoid having multiple leading slashes in the
185029Spjd			 * mountpoint path.
185029Spjd			 */
185029Spjd			if (strcmp(root, "/") == 0)
185029Spjd				root++;
185029Spjd
185029Spjd			/*
185029Spjd			 * If the mountpoint is '/' then skip over this
185029Spjd			 * if we are obtaining either an alternate root or
185029Spjd			 * an inherited mountpoint.
185029Spjd			 */
185029Spjd			if (str[1] == '\0' && (root[0] != '\0' ||
185029Spjd			    relpath[0] != '\0'))
168404Spjd				str++;
168404Spjd
168404Spjd			if (relpath[0] == '\0')
168404Spjd				(void) snprintf(propbuf, proplen, "%s%s",
168404Spjd				    root, str);
168404Spjd			else
168404Spjd				(void) snprintf(propbuf, proplen, "%s%s%s%s",
168404Spjd				    root, str, relpath[0] == '@' ? "" : "/",
168404Spjd				    relpath);
168404Spjd		} else {
168404Spjd			/* 'legacy' or 'none' */
168404Spjd			(void) strlcpy(propbuf, str, proplen);
168404Spjd		}
168404Spjd
168404Spjd		break;
168404Spjd
168404Spjd	case ZFS_PROP_ORIGIN:
168404Spjd		(void) strlcpy(propbuf, getprop_string(zhp, prop, &source),
168404Spjd		    proplen);
168404Spjd		/*
168404Spjd		 * If there is no parent at all, return failure to indicate that
168404Spjd		 * it doesn't apply to this dataset.
168404Spjd		 */
168404Spjd		if (propbuf[0] == '\0')
168404Spjd			return (-1);
168404Spjd		break;
168404Spjd
168404Spjd	case ZFS_PROP_QUOTA:
185029Spjd	case ZFS_PROP_REFQUOTA:
168404Spjd	case ZFS_PROP_RESERVATION:
185029Spjd	case ZFS_PROP_REFRESERVATION:
185029Spjd
168404Spjd		if (get_numeric_property(zhp, prop, src, &source, &val) != 0)
168404Spjd			return (-1);
168404Spjd
168404Spjd		/*
168404Spjd		 * If quota or reservation is 0, we translate this into 'none'
168404Spjd		 * (unless literal is set), and indicate that it's the default
168404Spjd		 * value.  Otherwise, we print the number nicely and indicate
168404Spjd		 * that its set locally.
168404Spjd		 */
168404Spjd		if (val == 0) {
168404Spjd			if (literal)
168404Spjd				(void) strlcpy(propbuf, "0", proplen);
168404Spjd			else
168404Spjd				(void) strlcpy(propbuf, "none", proplen);
168404Spjd		} else {
168404Spjd			if (literal)
168404Spjd				(void) snprintf(propbuf, proplen, "%llu",
168404Spjd				    (u_longlong_t)val);
168404Spjd			else
168404Spjd				zfs_nicenum(val, propbuf, proplen);
168404Spjd		}
168404Spjd		break;
168404Spjd
168404Spjd	case ZFS_PROP_COMPRESSRATIO:
168404Spjd		if (get_numeric_property(zhp, prop, src, &source, &val) != 0)
168404Spjd			return (-1);
168404Spjd		(void) snprintf(propbuf, proplen, "%lld.%02lldx", (longlong_t)
168404Spjd		    val / 100, (longlong_t)val % 100);
168404Spjd		break;
168404Spjd
168404Spjd	case ZFS_PROP_TYPE:
168404Spjd		switch (zhp->zfs_type) {
168404Spjd		case ZFS_TYPE_FILESYSTEM:
168404Spjd			str = "filesystem";
168404Spjd			break;
168404Spjd		case ZFS_TYPE_VOLUME:
168404Spjd			str = "volume";
168404Spjd			break;
168404Spjd		case ZFS_TYPE_SNAPSHOT:
168404Spjd			str = "snapshot";
168404Spjd			break;
168404Spjd		default:
168404Spjd			abort();
168404Spjd		}
168404Spjd		(void) snprintf(propbuf, proplen, "%s", str);
168404Spjd		break;
168404Spjd
168404Spjd	case ZFS_PROP_MOUNTED:
168404Spjd		/*
168404Spjd		 * The 'mounted' property is a pseudo-property that described
168404Spjd		 * whether the filesystem is currently mounted.  Even though
168404Spjd		 * it's a boolean value, the typical values of "on" and "off"
168404Spjd		 * don't make sense, so we translate to "yes" and "no".
168404Spjd		 */
168404Spjd		if (get_numeric_property(zhp, ZFS_PROP_MOUNTED,
168404Spjd		    src, &source, &val) != 0)
168404Spjd			return (-1);
168404Spjd		if (val)
168404Spjd			(void) strlcpy(propbuf, "yes", proplen);
168404Spjd		else
168404Spjd			(void) strlcpy(propbuf, "no", proplen);
168404Spjd		break;
168404Spjd
168404Spjd	case ZFS_PROP_NAME:
168404Spjd		/*
168404Spjd		 * The 'name' property is a pseudo-property derived from the
168404Spjd		 * dataset name.  It is presented as a real property to simplify
168404Spjd		 * consumers.
168404Spjd		 */
168404Spjd		(void) strlcpy(propbuf, zhp->zfs_name, proplen);
168404Spjd		break;
168404Spjd
168404Spjd	default:
185029Spjd		switch (zfs_prop_get_type(prop)) {
185029Spjd		case PROP_TYPE_NUMBER:
185029Spjd			if (get_numeric_property(zhp, prop, src,
185029Spjd			    &source, &val) != 0)
185029Spjd				return (-1);
185029Spjd			if (literal)
185029Spjd				(void) snprintf(propbuf, proplen, "%llu",
185029Spjd				    (u_longlong_t)val);
185029Spjd			else
185029Spjd				zfs_nicenum(val, propbuf, proplen);
185029Spjd			break;
185029Spjd
185029Spjd		case PROP_TYPE_STRING:
185029Spjd			(void) strlcpy(propbuf,
185029Spjd			    getprop_string(zhp, prop, &source), proplen);
185029Spjd			break;
185029Spjd
185029Spjd		case PROP_TYPE_INDEX:
185029Spjd			if (get_numeric_property(zhp, prop, src,
185029Spjd			    &source, &val) != 0)
185029Spjd				return (-1);
185029Spjd			if (zfs_prop_index_to_string(prop, val, &strval) != 0)
185029Spjd				return (-1);
185029Spjd			(void) strlcpy(propbuf, strval, proplen);
185029Spjd			break;
185029Spjd
185029Spjd		default:
185029Spjd			abort();
185029Spjd		}
168404Spjd	}
168404Spjd
168404Spjd	get_source(zhp, src, source, statbuf, statlen);
168404Spjd
168404Spjd	return (0);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Utility function to get the given numeric property.  Does no validation that
168404Spjd * the given property is the appropriate type; should only be used with
168404Spjd * hard-coded property types.
168404Spjd */
168404Spjduint64_t
168404Spjdzfs_prop_get_int(zfs_handle_t *zhp, zfs_prop_t prop)
168404Spjd{
168404Spjd	char *source;
168404Spjd	uint64_t val;
168404Spjd
185029Spjd	(void) get_numeric_property(zhp, prop, NULL, &source, &val);
168404Spjd
168404Spjd	return (val);
168404Spjd}
168404Spjd
185029Spjdint
185029Spjdzfs_prop_set_int(zfs_handle_t *zhp, zfs_prop_t prop, uint64_t val)
185029Spjd{
185029Spjd	char buf[64];
185029Spjd
185029Spjd	zfs_nicenum(val, buf, sizeof (buf));
185029Spjd	return (zfs_prop_set(zhp, zfs_prop_to_name(prop), buf));
185029Spjd}
185029Spjd
168404Spjd/*
168404Spjd * Similar to zfs_prop_get(), but returns the value as an integer.
168404Spjd */
168404Spjdint
168404Spjdzfs_prop_get_numeric(zfs_handle_t *zhp, zfs_prop_t prop, uint64_t *value,
185029Spjd    zprop_source_t *src, char *statbuf, size_t statlen)
168404Spjd{
168404Spjd	char *source;
168404Spjd
168404Spjd	/*
168404Spjd	 * Check to see if this property applies to our object
168404Spjd	 */
185029Spjd	if (!zfs_prop_valid_for_type(prop, zhp->zfs_type)) {
168404Spjd		return (zfs_error_fmt(zhp->zfs_hdl, EZFS_PROPTYPE,
168404Spjd		    dgettext(TEXT_DOMAIN, "cannot get property '%s'"),
168404Spjd		    zfs_prop_to_name(prop)));
185029Spjd	}
168404Spjd
168404Spjd	if (src)
185029Spjd		*src = ZPROP_SRC_NONE;
168404Spjd
168404Spjd	if (get_numeric_property(zhp, prop, src, &source, value) != 0)
168404Spjd		return (-1);
168404Spjd
168404Spjd	get_source(zhp, src, source, statbuf, statlen);
168404Spjd
168404Spjd	return (0);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Returns the name of the given zfs handle.
168404Spjd */
168404Spjdconst char *
168404Spjdzfs_get_name(const zfs_handle_t *zhp)
168404Spjd{
168404Spjd	return (zhp->zfs_name);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Returns the type of the given zfs handle.
168404Spjd */
168404Spjdzfs_type_t
168404Spjdzfs_get_type(const zfs_handle_t *zhp)
168404Spjd{
168404Spjd	return (zhp->zfs_type);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Iterate over all child filesystems
168404Spjd */
168404Spjdint
168404Spjdzfs_iter_filesystems(zfs_handle_t *zhp, zfs_iter_f func, void *data)
168404Spjd{
168404Spjd	zfs_cmd_t zc = { 0 };
168404Spjd	zfs_handle_t *nzhp;
168404Spjd	int ret;
168404Spjd
185029Spjd	if (zhp->zfs_type != ZFS_TYPE_FILESYSTEM)
185029Spjd		return (0);
185029Spjd
168404Spjd	for ((void) strlcpy(zc.zc_name, zhp->zfs_name, sizeof (zc.zc_name));
168404Spjd	    ioctl(zhp->zfs_hdl->libzfs_fd, ZFS_IOC_DATASET_LIST_NEXT, &zc) == 0;
168404Spjd	    (void) strlcpy(zc.zc_name, zhp->zfs_name, sizeof (zc.zc_name))) {
168404Spjd		/*
168404Spjd		 * Ignore private dataset names.
168404Spjd		 */
168404Spjd		if (dataset_name_hidden(zc.zc_name))
168404Spjd			continue;
168404Spjd
168404Spjd		/*
168404Spjd		 * Silently ignore errors, as the only plausible explanation is
168404Spjd		 * that the pool has since been removed.
168404Spjd		 */
168404Spjd		if ((nzhp = make_dataset_handle(zhp->zfs_hdl,
168404Spjd		    zc.zc_name)) == NULL)
168404Spjd			continue;
168404Spjd
168404Spjd		if ((ret = func(nzhp, data)) != 0)
168404Spjd			return (ret);
168404Spjd	}
168404Spjd
168404Spjd	/*
168404Spjd	 * An errno value of ESRCH indicates normal completion.  If ENOENT is
168404Spjd	 * returned, then the underlying dataset has been removed since we
168404Spjd	 * obtained the handle.
168404Spjd	 */
168404Spjd	if (errno != ESRCH && errno != ENOENT)
168404Spjd		return (zfs_standard_error(zhp->zfs_hdl, errno,
168404Spjd		    dgettext(TEXT_DOMAIN, "cannot iterate filesystems")));
168404Spjd
168404Spjd	return (0);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Iterate over all snapshots
168404Spjd */
168404Spjdint
168404Spjdzfs_iter_snapshots(zfs_handle_t *zhp, zfs_iter_f func, void *data)
168404Spjd{
168404Spjd	zfs_cmd_t zc = { 0 };
168404Spjd	zfs_handle_t *nzhp;
168404Spjd	int ret;
168404Spjd
185029Spjd	if (zhp->zfs_type == ZFS_TYPE_SNAPSHOT)
185029Spjd		return (0);
185029Spjd
168404Spjd	for ((void) strlcpy(zc.zc_name, zhp->zfs_name, sizeof (zc.zc_name));
168404Spjd	    ioctl(zhp->zfs_hdl->libzfs_fd, ZFS_IOC_SNAPSHOT_LIST_NEXT,
168404Spjd	    &zc) == 0;
168404Spjd	    (void) strlcpy(zc.zc_name, zhp->zfs_name, sizeof (zc.zc_name))) {
168404Spjd
168404Spjd		if ((nzhp = make_dataset_handle(zhp->zfs_hdl,
168404Spjd		    zc.zc_name)) == NULL)
168404Spjd			continue;
168404Spjd
168404Spjd		if ((ret = func(nzhp, data)) != 0)
168404Spjd			return (ret);
168404Spjd	}
168404Spjd
168404Spjd	/*
168404Spjd	 * An errno value of ESRCH indicates normal completion.  If ENOENT is
168404Spjd	 * returned, then the underlying dataset has been removed since we
168404Spjd	 * obtained the handle.  Silently ignore this case, and return success.
168404Spjd	 */
168404Spjd	if (errno != ESRCH && errno != ENOENT)
168404Spjd		return (zfs_standard_error(zhp->zfs_hdl, errno,
168404Spjd		    dgettext(TEXT_DOMAIN, "cannot iterate filesystems")));
168404Spjd
168404Spjd	return (0);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Iterate over all children, snapshots and filesystems
168404Spjd */
168404Spjdint
168404Spjdzfs_iter_children(zfs_handle_t *zhp, zfs_iter_f func, void *data)
168404Spjd{
168404Spjd	int ret;
168404Spjd
168404Spjd	if ((ret = zfs_iter_filesystems(zhp, func, data)) != 0)
168404Spjd		return (ret);
168404Spjd
168404Spjd	return (zfs_iter_snapshots(zhp, func, data));
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Given a complete name, return just the portion that refers to the parent.
168404Spjd * Can return NULL if this is a pool.
168404Spjd */
168404Spjdstatic int
168404Spjdparent_name(const char *path, char *buf, size_t buflen)
168404Spjd{
168404Spjd	char *loc;
168404Spjd
168404Spjd	if ((loc = strrchr(path, '/')) == NULL)
168404Spjd		return (-1);
168404Spjd
168404Spjd	(void) strncpy(buf, path, MIN(buflen, loc - path));
168404Spjd	buf[loc - path] = '\0';
168404Spjd
168404Spjd	return (0);
168404Spjd}
168404Spjd
168404Spjd/*
185029Spjd * If accept_ancestor is false, then check to make sure that the given path has
185029Spjd * a parent, and that it exists.  If accept_ancestor is true, then find the
185029Spjd * closest existing ancestor for the given path.  In prefixlen return the
185029Spjd * length of already existing prefix of the given path.  We also fetch the
185029Spjd * 'zoned' property, which is used to validate property settings when creating
185029Spjd * new datasets.
168404Spjd */
168404Spjdstatic int
185029Spjdcheck_parents(libzfs_handle_t *hdl, const char *path, uint64_t *zoned,
185029Spjd    boolean_t accept_ancestor, int *prefixlen)
168404Spjd{
168404Spjd	zfs_cmd_t zc = { 0 };
168404Spjd	char parent[ZFS_MAXNAMELEN];
168404Spjd	char *slash;
168404Spjd	zfs_handle_t *zhp;
168404Spjd	char errbuf[1024];
168404Spjd
168404Spjd	(void) snprintf(errbuf, sizeof (errbuf), "cannot create '%s'",
168404Spjd	    path);
168404Spjd
168404Spjd	/* get parent, and check to see if this is just a pool */
168404Spjd	if (parent_name(path, parent, sizeof (parent)) != 0) {
168404Spjd		zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd		    "missing dataset name"));
168404Spjd		return (zfs_error(hdl, EZFS_INVALIDNAME, errbuf));
168404Spjd	}
168404Spjd
168404Spjd	/* check to see if the pool exists */
168404Spjd	if ((slash = strchr(parent, '/')) == NULL)
168404Spjd		slash = parent + strlen(parent);
168404Spjd	(void) strncpy(zc.zc_name, parent, slash - parent);
168404Spjd	zc.zc_name[slash - parent] = '\0';
168404Spjd	if (ioctl(hdl->libzfs_fd, ZFS_IOC_OBJSET_STATS, &zc) != 0 &&
168404Spjd	    errno == ENOENT) {
168404Spjd		zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd		    "no such pool '%s'"), zc.zc_name);
168404Spjd		return (zfs_error(hdl, EZFS_NOENT, errbuf));
168404Spjd	}
168404Spjd
168404Spjd	/* check to see if the parent dataset exists */
185029Spjd	while ((zhp = make_dataset_handle(hdl, parent)) == NULL) {
185029Spjd		if (errno == ENOENT && accept_ancestor) {
185029Spjd			/*
185029Spjd			 * Go deeper to find an ancestor, give up on top level.
185029Spjd			 */
185029Spjd			if (parent_name(parent, parent, sizeof (parent)) != 0) {
185029Spjd				zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
185029Spjd				    "no such pool '%s'"), zc.zc_name);
185029Spjd				return (zfs_error(hdl, EZFS_NOENT, errbuf));
185029Spjd			}
185029Spjd		} else if (errno == ENOENT) {
168404Spjd			zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd			    "parent does not exist"));
168404Spjd			return (zfs_error(hdl, EZFS_NOENT, errbuf));
185029Spjd		} else
168404Spjd			return (zfs_standard_error(hdl, errno, errbuf));
168404Spjd	}
168404Spjd
168404Spjd	*zoned = zfs_prop_get_int(zhp, ZFS_PROP_ZONED);
168404Spjd	/* we are in a non-global zone, but parent is in the global zone */
168404Spjd	if (getzoneid() != GLOBAL_ZONEID && !(*zoned)) {
168404Spjd		(void) zfs_standard_error(hdl, EPERM, errbuf);
168404Spjd		zfs_close(zhp);
168404Spjd		return (-1);
168404Spjd	}
168404Spjd
168404Spjd	/* make sure parent is a filesystem */
168404Spjd	if (zfs_get_type(zhp) != ZFS_TYPE_FILESYSTEM) {
168404Spjd		zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd		    "parent is not a filesystem"));
168404Spjd		(void) zfs_error(hdl, EZFS_BADTYPE, errbuf);
168404Spjd		zfs_close(zhp);
168404Spjd		return (-1);
168404Spjd	}
168404Spjd
168404Spjd	zfs_close(zhp);
185029Spjd	if (prefixlen != NULL)
185029Spjd		*prefixlen = strlen(parent);
168404Spjd	return (0);
168404Spjd}
168404Spjd
168404Spjd/*
185029Spjd * Finds whether the dataset of the given type(s) exists.
185029Spjd */
185029Spjdboolean_t
185029Spjdzfs_dataset_exists(libzfs_handle_t *hdl, const char *path, zfs_type_t types)
185029Spjd{
185029Spjd	zfs_handle_t *zhp;
185029Spjd
185029Spjd	if (!zfs_validate_name(hdl, path, types, B_FALSE))
185029Spjd		return (B_FALSE);
185029Spjd
185029Spjd	/*
185029Spjd	 * Try to get stats for the dataset, which will tell us if it exists.
185029Spjd	 */
185029Spjd	if ((zhp = make_dataset_handle(hdl, path)) != NULL) {
185029Spjd		int ds_type = zhp->zfs_type;
185029Spjd
185029Spjd		zfs_close(zhp);
185029Spjd		if (types & ds_type)
185029Spjd			return (B_TRUE);
185029Spjd	}
185029Spjd	return (B_FALSE);
185029Spjd}
185029Spjd
185029Spjd/*
185029Spjd * Given a path to 'target', create all the ancestors between
185029Spjd * the prefixlen portion of the path, and the target itself.
185029Spjd * Fail if the initial prefixlen-ancestor does not already exist.
185029Spjd */
185029Spjdint
185029Spjdcreate_parents(libzfs_handle_t *hdl, char *target, int prefixlen)
185029Spjd{
185029Spjd	zfs_handle_t *h;
185029Spjd	char *cp;
185029Spjd	const char *opname;
185029Spjd
185029Spjd	/* make sure prefix exists */
185029Spjd	cp = target + prefixlen;
185029Spjd	if (*cp != '/') {
185029Spjd		assert(strchr(cp, '/') == NULL);
185029Spjd		h = zfs_open(hdl, target, ZFS_TYPE_FILESYSTEM);
185029Spjd	} else {
185029Spjd		*cp = '\0';
185029Spjd		h = zfs_open(hdl, target, ZFS_TYPE_FILESYSTEM);
185029Spjd		*cp = '/';
185029Spjd	}
185029Spjd	if (h == NULL)
185029Spjd		return (-1);
185029Spjd	zfs_close(h);
185029Spjd
185029Spjd	/*
185029Spjd	 * Attempt to create, mount, and share any ancestor filesystems,
185029Spjd	 * up to the prefixlen-long one.
185029Spjd	 */
185029Spjd	for (cp = target + prefixlen + 1;
185029Spjd	    cp = strchr(cp, '/'); *cp = '/', cp++) {
185029Spjd		char *logstr;
185029Spjd
185029Spjd		*cp = '\0';
185029Spjd
185029Spjd		h = make_dataset_handle(hdl, target);
185029Spjd		if (h) {
185029Spjd			/* it already exists, nothing to do here */
185029Spjd			zfs_close(h);
185029Spjd			continue;
185029Spjd		}
185029Spjd
185029Spjd		logstr = hdl->libzfs_log_str;
185029Spjd		hdl->libzfs_log_str = NULL;
185029Spjd		if (zfs_create(hdl, target, ZFS_TYPE_FILESYSTEM,
185029Spjd		    NULL) != 0) {
185029Spjd			hdl->libzfs_log_str = logstr;
185029Spjd			opname = dgettext(TEXT_DOMAIN, "create");
185029Spjd			goto ancestorerr;
185029Spjd		}
185029Spjd
185029Spjd		hdl->libzfs_log_str = logstr;
185029Spjd		h = zfs_open(hdl, target, ZFS_TYPE_FILESYSTEM);
185029Spjd		if (h == NULL) {
185029Spjd			opname = dgettext(TEXT_DOMAIN, "open");
185029Spjd			goto ancestorerr;
185029Spjd		}
185029Spjd
185029Spjd		if (zfs_mount(h, NULL, 0) != 0) {
185029Spjd			opname = dgettext(TEXT_DOMAIN, "mount");
185029Spjd			goto ancestorerr;
185029Spjd		}
185029Spjd
185029Spjd		if (zfs_share(h) != 0) {
185029Spjd			opname = dgettext(TEXT_DOMAIN, "share");
185029Spjd			goto ancestorerr;
185029Spjd		}
185029Spjd
185029Spjd		zfs_close(h);
185029Spjd	}
185029Spjd
185029Spjd	return (0);
185029Spjd
185029Spjdancestorerr:
185029Spjd	zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
185029Spjd	    "failed to %s ancestor '%s'"), opname, target);
185029Spjd	return (-1);
185029Spjd}
185029Spjd
185029Spjd/*
185029Spjd * Creates non-existing ancestors of the given path.
185029Spjd */
185029Spjdint
185029Spjdzfs_create_ancestors(libzfs_handle_t *hdl, const char *path)
185029Spjd{
185029Spjd	int prefix;
185029Spjd	uint64_t zoned;
185029Spjd	char *path_copy;
185029Spjd	int rc;
185029Spjd
185029Spjd	if (check_parents(hdl, path, &zoned, B_TRUE, &prefix) != 0)
185029Spjd		return (-1);
185029Spjd
185029Spjd	if ((path_copy = strdup(path)) != NULL) {
185029Spjd		rc = create_parents(hdl, path_copy, prefix);
185029Spjd		free(path_copy);
185029Spjd	}
185029Spjd	if (path_copy == NULL || rc != 0)
185029Spjd		return (-1);
185029Spjd
185029Spjd	return (0);
185029Spjd}
185029Spjd
185029Spjd/*
168404Spjd * Create a new filesystem or volume.
168404Spjd */
168404Spjdint
168404Spjdzfs_create(libzfs_handle_t *hdl, const char *path, zfs_type_t type,
168404Spjd    nvlist_t *props)
168404Spjd{
168404Spjd	zfs_cmd_t zc = { 0 };
168404Spjd	int ret;
168404Spjd	uint64_t size = 0;
168404Spjd	uint64_t blocksize = zfs_prop_default_numeric(ZFS_PROP_VOLBLOCKSIZE);
168404Spjd	char errbuf[1024];
168404Spjd	uint64_t zoned;
168404Spjd
168404Spjd	(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
168404Spjd	    "cannot create '%s'"), path);
168404Spjd
168404Spjd	/* validate the path, taking care to note the extended error message */
185029Spjd	if (!zfs_validate_name(hdl, path, type, B_TRUE))
168404Spjd		return (zfs_error(hdl, EZFS_INVALIDNAME, errbuf));
168404Spjd
168404Spjd	/* validate parents exist */
185029Spjd	if (check_parents(hdl, path, &zoned, B_FALSE, NULL) != 0)
168404Spjd		return (-1);
168404Spjd
168404Spjd	/*
168404Spjd	 * The failure modes when creating a dataset of a different type over
168404Spjd	 * one that already exists is a little strange.  In particular, if you
168404Spjd	 * try to create a dataset on top of an existing dataset, the ioctl()
168404Spjd	 * will return ENOENT, not EEXIST.  To prevent this from happening, we
168404Spjd	 * first try to see if the dataset exists.
168404Spjd	 */
168404Spjd	(void) strlcpy(zc.zc_name, path, sizeof (zc.zc_name));
185029Spjd	if (zfs_dataset_exists(hdl, zc.zc_name, ZFS_TYPE_DATASET)) {
168404Spjd		zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd		    "dataset already exists"));
168404Spjd		return (zfs_error(hdl, EZFS_EXISTS, errbuf));
168404Spjd	}
168404Spjd
168404Spjd	if (type == ZFS_TYPE_VOLUME)
168404Spjd		zc.zc_objset_type = DMU_OST_ZVOL;
168404Spjd	else
168404Spjd		zc.zc_objset_type = DMU_OST_ZFS;
168404Spjd
185029Spjd	if (props && (props = zfs_valid_proplist(hdl, type, props,
168404Spjd	    zoned, NULL, errbuf)) == 0)
168404Spjd		return (-1);
168404Spjd
168404Spjd	if (type == ZFS_TYPE_VOLUME) {
168404Spjd		/*
168404Spjd		 * If we are creating a volume, the size and block size must
168404Spjd		 * satisfy a few restraints.  First, the blocksize must be a
168404Spjd		 * valid block size between SPA_{MIN,MAX}BLOCKSIZE.  Second, the
168404Spjd		 * volsize must be a multiple of the block size, and cannot be
168404Spjd		 * zero.
168404Spjd		 */
168404Spjd		if (props == NULL || nvlist_lookup_uint64(props,
168404Spjd		    zfs_prop_to_name(ZFS_PROP_VOLSIZE), &size) != 0) {
168404Spjd			nvlist_free(props);
168404Spjd			zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd			    "missing volume size"));
168404Spjd			return (zfs_error(hdl, EZFS_BADPROP, errbuf));
168404Spjd		}
168404Spjd
168404Spjd		if ((ret = nvlist_lookup_uint64(props,
168404Spjd		    zfs_prop_to_name(ZFS_PROP_VOLBLOCKSIZE),
168404Spjd		    &blocksize)) != 0) {
168404Spjd			if (ret == ENOENT) {
168404Spjd				blocksize = zfs_prop_default_numeric(
168404Spjd				    ZFS_PROP_VOLBLOCKSIZE);
168404Spjd			} else {
168404Spjd				nvlist_free(props);
168404Spjd				zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd				    "missing volume block size"));
168404Spjd				return (zfs_error(hdl, EZFS_BADPROP, errbuf));
168404Spjd			}
168404Spjd		}
168404Spjd
168404Spjd		if (size == 0) {
168404Spjd			nvlist_free(props);
168404Spjd			zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd			    "volume size cannot be zero"));
168404Spjd			return (zfs_error(hdl, EZFS_BADPROP, errbuf));
168404Spjd		}
168404Spjd
168404Spjd		if (size % blocksize != 0) {
168404Spjd			nvlist_free(props);
168404Spjd			zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd			    "volume size must be a multiple of volume block "
168404Spjd			    "size"));
168404Spjd			return (zfs_error(hdl, EZFS_BADPROP, errbuf));
168404Spjd		}
168404Spjd	}
168404Spjd
185029Spjd	if (props && zcmd_write_src_nvlist(hdl, &zc, props) != 0)
168404Spjd		return (-1);
168404Spjd	nvlist_free(props);
168404Spjd
168404Spjd	/* create the dataset */
185029Spjd	ret = zfs_ioctl(hdl, ZFS_IOC_CREATE, &zc);
168404Spjd
168404Spjd	if (ret == 0 && type == ZFS_TYPE_VOLUME) {
168404Spjd		ret = zvol_create_link(hdl, path);
168404Spjd		if (ret) {
168404Spjd			(void) zfs_standard_error(hdl, errno,
168404Spjd			    dgettext(TEXT_DOMAIN,
168404Spjd			    "Volume successfully created, but device links "
168404Spjd			    "were not created"));
168404Spjd			zcmd_free_nvlists(&zc);
168404Spjd			return (-1);
168404Spjd		}
168404Spjd	}
168404Spjd
168404Spjd	zcmd_free_nvlists(&zc);
168404Spjd
168404Spjd	/* check for failure */
168404Spjd	if (ret != 0) {
168404Spjd		char parent[ZFS_MAXNAMELEN];
168404Spjd		(void) parent_name(path, parent, sizeof (parent));
168404Spjd
168404Spjd		switch (errno) {
168404Spjd		case ENOENT:
168404Spjd			zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd			    "no such parent '%s'"), parent);
168404Spjd			return (zfs_error(hdl, EZFS_NOENT, errbuf));
168404Spjd
168404Spjd		case EINVAL:
168404Spjd			zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd			    "parent '%s' is not a filesystem"), parent);
168404Spjd			return (zfs_error(hdl, EZFS_BADTYPE, errbuf));
168404Spjd
168404Spjd		case EDOM:
168404Spjd			zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd			    "volume block size must be power of 2 from "
168404Spjd			    "%u to %uk"),
168404Spjd			    (uint_t)SPA_MINBLOCKSIZE,
168404Spjd			    (uint_t)SPA_MAXBLOCKSIZE >> 10);
168404Spjd
168404Spjd			return (zfs_error(hdl, EZFS_BADPROP, errbuf));
168404Spjd
185029Spjd		case ENOTSUP:
185029Spjd			zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
185029Spjd			    "pool must be upgraded to set this "
185029Spjd			    "property or value"));
185029Spjd			return (zfs_error(hdl, EZFS_BADVERSION, errbuf));
168404Spjd#ifdef _ILP32
168404Spjd		case EOVERFLOW:
168404Spjd			/*
168404Spjd			 * This platform can't address a volume this big.
168404Spjd			 */
168404Spjd			if (type == ZFS_TYPE_VOLUME)
168404Spjd				return (zfs_error(hdl, EZFS_VOLTOOBIG,
168404Spjd				    errbuf));
168404Spjd#endif
168404Spjd			/* FALLTHROUGH */
168404Spjd		default:
168404Spjd			return (zfs_standard_error(hdl, errno, errbuf));
168404Spjd		}
168404Spjd	}
168404Spjd
168404Spjd	return (0);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Destroys the given dataset.  The caller must make sure that the filesystem
168404Spjd * isn't mounted, and that there are no active dependents.
168404Spjd */
168404Spjdint
168404Spjdzfs_destroy(zfs_handle_t *zhp)
168404Spjd{
168404Spjd	zfs_cmd_t zc = { 0 };
168404Spjd
168404Spjd	(void) strlcpy(zc.zc_name, zhp->zfs_name, sizeof (zc.zc_name));
168404Spjd
168404Spjd	if (ZFS_IS_VOLUME(zhp)) {
168404Spjd		/*
185029Spjd		 * If user doesn't have permissions to unshare volume, then
185029Spjd		 * abort the request.  This would only happen for a
185029Spjd		 * non-privileged user.
168404Spjd		 */
185029Spjd		if (zfs_unshare_iscsi(zhp) != 0) {
185029Spjd			return (-1);
185029Spjd		}
168404Spjd
168404Spjd		if (zvol_remove_link(zhp->zfs_hdl, zhp->zfs_name) != 0)
168404Spjd			return (-1);
168404Spjd
168404Spjd		zc.zc_objset_type = DMU_OST_ZVOL;
168404Spjd	} else {
168404Spjd		zc.zc_objset_type = DMU_OST_ZFS;
168404Spjd	}
168404Spjd
185029Spjd	if (zfs_ioctl(zhp->zfs_hdl, ZFS_IOC_DESTROY, &zc) != 0) {
168404Spjd		return (zfs_standard_error_fmt(zhp->zfs_hdl, errno,
168404Spjd		    dgettext(TEXT_DOMAIN, "cannot destroy '%s'"),
168404Spjd		    zhp->zfs_name));
168404Spjd	}
168404Spjd
168404Spjd	remove_mountpoint(zhp);
168404Spjd
168404Spjd	return (0);
168404Spjd}
168404Spjd
168404Spjdstruct destroydata {
168404Spjd	char *snapname;
168404Spjd	boolean_t gotone;
168404Spjd	boolean_t closezhp;
168404Spjd};
168404Spjd
168404Spjdstatic int
168404Spjdzfs_remove_link_cb(zfs_handle_t *zhp, void *arg)
168404Spjd{
168404Spjd	struct destroydata *dd = arg;
168404Spjd	zfs_handle_t *szhp;
168404Spjd	char name[ZFS_MAXNAMELEN];
168404Spjd	boolean_t closezhp = dd->closezhp;
168404Spjd	int rv;
168404Spjd
168404Spjd	(void) strlcpy(name, zhp->zfs_name, sizeof (name));
168404Spjd	(void) strlcat(name, "@", sizeof (name));
168404Spjd	(void) strlcat(name, dd->snapname, sizeof (name));
168404Spjd
168404Spjd	szhp = make_dataset_handle(zhp->zfs_hdl, name);
168404Spjd	if (szhp) {
168404Spjd		dd->gotone = B_TRUE;
168404Spjd		zfs_close(szhp);
168404Spjd	}
168404Spjd
168404Spjd	if (zhp->zfs_type == ZFS_TYPE_VOLUME) {
168404Spjd		(void) zvol_remove_link(zhp->zfs_hdl, name);
168404Spjd		/*
168404Spjd		 * NB: this is simply a best-effort.  We don't want to
168404Spjd		 * return an error, because then we wouldn't visit all
168404Spjd		 * the volumes.
168404Spjd		 */
168404Spjd	}
168404Spjd
168404Spjd	dd->closezhp = B_TRUE;
168404Spjd	rv = zfs_iter_filesystems(zhp, zfs_remove_link_cb, arg);
168404Spjd	if (closezhp)
168404Spjd		zfs_close(zhp);
168404Spjd	return (rv);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Destroys all snapshots with the given name in zhp & descendants.
168404Spjd */
168404Spjdint
168404Spjdzfs_destroy_snaps(zfs_handle_t *zhp, char *snapname)
168404Spjd{
168404Spjd	zfs_cmd_t zc = { 0 };
168404Spjd	int ret;
168404Spjd	struct destroydata dd = { 0 };
168404Spjd
168404Spjd	dd.snapname = snapname;
168404Spjd	(void) zfs_remove_link_cb(zhp, &dd);
168404Spjd
168404Spjd	if (!dd.gotone) {
168404Spjd		return (zfs_standard_error_fmt(zhp->zfs_hdl, ENOENT,
168404Spjd		    dgettext(TEXT_DOMAIN, "cannot destroy '%s@%s'"),
168404Spjd		    zhp->zfs_name, snapname));
168404Spjd	}
168404Spjd
168404Spjd	(void) strlcpy(zc.zc_name, zhp->zfs_name, sizeof (zc.zc_name));
168404Spjd	(void) strlcpy(zc.zc_value, snapname, sizeof (zc.zc_value));
168404Spjd
185029Spjd	ret = zfs_ioctl(zhp->zfs_hdl, ZFS_IOC_DESTROY_SNAPS, &zc);
168404Spjd	if (ret != 0) {
168404Spjd		char errbuf[1024];
168404Spjd
168404Spjd		(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
168404Spjd		    "cannot destroy '%s@%s'"), zc.zc_name, snapname);
168404Spjd
168404Spjd		switch (errno) {
168404Spjd		case EEXIST:
168404Spjd			zfs_error_aux(zhp->zfs_hdl, dgettext(TEXT_DOMAIN,
168404Spjd			    "snapshot is cloned"));
168404Spjd			return (zfs_error(zhp->zfs_hdl, EZFS_EXISTS, errbuf));
168404Spjd
168404Spjd		default:
168404Spjd			return (zfs_standard_error(zhp->zfs_hdl, errno,
168404Spjd			    errbuf));
168404Spjd		}
168404Spjd	}
168404Spjd
168404Spjd	return (0);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Clones the given dataset.  The target must be of the same type as the source.
168404Spjd */
168404Spjdint
168404Spjdzfs_clone(zfs_handle_t *zhp, const char *target, nvlist_t *props)
168404Spjd{
168404Spjd	zfs_cmd_t zc = { 0 };
168404Spjd	char parent[ZFS_MAXNAMELEN];
168404Spjd	int ret;
168404Spjd	char errbuf[1024];
168404Spjd	libzfs_handle_t *hdl = zhp->zfs_hdl;
168404Spjd	zfs_type_t type;
168404Spjd	uint64_t zoned;
168404Spjd
168404Spjd	assert(zhp->zfs_type == ZFS_TYPE_SNAPSHOT);
168404Spjd
168404Spjd	(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
168404Spjd	    "cannot create '%s'"), target);
168404Spjd
168404Spjd	/* validate the target name */
185029Spjd	if (!zfs_validate_name(hdl, target, ZFS_TYPE_FILESYSTEM, B_TRUE))
168404Spjd		return (zfs_error(hdl, EZFS_INVALIDNAME, errbuf));
168404Spjd
168404Spjd	/* validate parents exist */
185029Spjd	if (check_parents(hdl, target, &zoned, B_FALSE, NULL) != 0)
168404Spjd		return (-1);
168404Spjd
168404Spjd	(void) parent_name(target, parent, sizeof (parent));
168404Spjd
168404Spjd	/* do the clone */
168404Spjd	if (ZFS_IS_VOLUME(zhp)) {
168404Spjd		zc.zc_objset_type = DMU_OST_ZVOL;
168404Spjd		type = ZFS_TYPE_VOLUME;
168404Spjd	} else {
168404Spjd		zc.zc_objset_type = DMU_OST_ZFS;
168404Spjd		type = ZFS_TYPE_FILESYSTEM;
168404Spjd	}
168404Spjd
168404Spjd	if (props) {
185029Spjd		if ((props = zfs_valid_proplist(hdl, type, props, zoned,
185029Spjd		    zhp, errbuf)) == NULL)
168404Spjd			return (-1);
168404Spjd
185029Spjd		if (zcmd_write_src_nvlist(hdl, &zc, props) != 0) {
168404Spjd			nvlist_free(props);
168404Spjd			return (-1);
168404Spjd		}
168404Spjd
168404Spjd		nvlist_free(props);
168404Spjd	}
168404Spjd
168404Spjd	(void) strlcpy(zc.zc_name, target, sizeof (zc.zc_name));
168404Spjd	(void) strlcpy(zc.zc_value, zhp->zfs_name, sizeof (zc.zc_value));
185029Spjd	ret = zfs_ioctl(zhp->zfs_hdl, ZFS_IOC_CREATE, &zc);
168404Spjd
168404Spjd	zcmd_free_nvlists(&zc);
168404Spjd
168404Spjd	if (ret != 0) {
168404Spjd		switch (errno) {
168404Spjd
168404Spjd		case ENOENT:
168404Spjd			/*
168404Spjd			 * The parent doesn't exist.  We should have caught this
168404Spjd			 * above, but there may a race condition that has since
168404Spjd			 * destroyed the parent.
168404Spjd			 *
168404Spjd			 * At this point, we don't know whether it's the source
168404Spjd			 * that doesn't exist anymore, or whether the target
168404Spjd			 * dataset doesn't exist.
168404Spjd			 */
168404Spjd			zfs_error_aux(zhp->zfs_hdl, dgettext(TEXT_DOMAIN,
168404Spjd			    "no such parent '%s'"), parent);
168404Spjd			return (zfs_error(zhp->zfs_hdl, EZFS_NOENT, errbuf));
168404Spjd
168404Spjd		case EXDEV:
168404Spjd			zfs_error_aux(zhp->zfs_hdl, dgettext(TEXT_DOMAIN,
168404Spjd			    "source and target pools differ"));
168404Spjd			return (zfs_error(zhp->zfs_hdl, EZFS_CROSSTARGET,
168404Spjd			    errbuf));
168404Spjd
168404Spjd		default:
168404Spjd			return (zfs_standard_error(zhp->zfs_hdl, errno,
168404Spjd			    errbuf));
168404Spjd		}
168404Spjd	} else if (ZFS_IS_VOLUME(zhp)) {
168404Spjd		ret = zvol_create_link(zhp->zfs_hdl, target);
168404Spjd	}
168404Spjd
168404Spjd	return (ret);
168404Spjd}
168404Spjd
168404Spjdtypedef struct promote_data {
168404Spjd	char cb_mountpoint[MAXPATHLEN];
168404Spjd	const char *cb_target;
168404Spjd	const char *cb_errbuf;
168404Spjd	uint64_t cb_pivot_txg;
168404Spjd} promote_data_t;
168404Spjd
168404Spjdstatic int
168404Spjdpromote_snap_cb(zfs_handle_t *zhp, void *data)
168404Spjd{
168404Spjd	promote_data_t *pd = data;
168404Spjd	zfs_handle_t *szhp;
168404Spjd	char snapname[MAXPATHLEN];
168404Spjd	int rv = 0;
168404Spjd
168404Spjd	/* We don't care about snapshots after the pivot point */
168404Spjd	if (zfs_prop_get_int(zhp, ZFS_PROP_CREATETXG) > pd->cb_pivot_txg) {
168404Spjd		zfs_close(zhp);
168404Spjd		return (0);
168404Spjd	}
168404Spjd
168404Spjd	/* Remove the device link if it's a zvol. */
168404Spjd	if (ZFS_IS_VOLUME(zhp))
168404Spjd		(void) zvol_remove_link(zhp->zfs_hdl, zhp->zfs_name);
168404Spjd
168404Spjd	/* Check for conflicting names */
168404Spjd	(void) strlcpy(snapname, pd->cb_target, sizeof (snapname));
168404Spjd	(void) strlcat(snapname, strchr(zhp->zfs_name, '@'), sizeof (snapname));
168404Spjd	szhp = make_dataset_handle(zhp->zfs_hdl, snapname);
168404Spjd	if (szhp != NULL) {
168404Spjd		zfs_close(szhp);
168404Spjd		zfs_error_aux(zhp->zfs_hdl, dgettext(TEXT_DOMAIN,
168404Spjd		    "snapshot name '%s' from origin \n"
168404Spjd		    "conflicts with '%s' from target"),
168404Spjd		    zhp->zfs_name, snapname);
168404Spjd		rv = zfs_error(zhp->zfs_hdl, EZFS_EXISTS, pd->cb_errbuf);
168404Spjd	}
168404Spjd	zfs_close(zhp);
168404Spjd	return (rv);
168404Spjd}
168404Spjd
168404Spjdstatic int
168404Spjdpromote_snap_done_cb(zfs_handle_t *zhp, void *data)
168404Spjd{
168404Spjd	promote_data_t *pd = data;
168404Spjd
168404Spjd	/* We don't care about snapshots after the pivot point */
168404Spjd	if (zfs_prop_get_int(zhp, ZFS_PROP_CREATETXG) <= pd->cb_pivot_txg) {
168404Spjd		/* Create the device link if it's a zvol. */
168404Spjd		if (ZFS_IS_VOLUME(zhp))
168404Spjd			(void) zvol_create_link(zhp->zfs_hdl, zhp->zfs_name);
168404Spjd	}
168404Spjd
168404Spjd	zfs_close(zhp);
168404Spjd	return (0);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Promotes the given clone fs to be the clone parent.
168404Spjd */
168404Spjdint
168404Spjdzfs_promote(zfs_handle_t *zhp)
168404Spjd{
168404Spjd	libzfs_handle_t *hdl = zhp->zfs_hdl;
168404Spjd	zfs_cmd_t zc = { 0 };
168404Spjd	char parent[MAXPATHLEN];
168404Spjd	char *cp;
168404Spjd	int ret;
168404Spjd	zfs_handle_t *pzhp;
168404Spjd	promote_data_t pd;
168404Spjd	char errbuf[1024];
168404Spjd
168404Spjd	(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
168404Spjd	    "cannot promote '%s'"), zhp->zfs_name);
168404Spjd
168404Spjd	if (zhp->zfs_type == ZFS_TYPE_SNAPSHOT) {
168404Spjd		zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd		    "snapshots can not be promoted"));
168404Spjd		return (zfs_error(hdl, EZFS_BADTYPE, errbuf));
168404Spjd	}
168404Spjd
185029Spjd	(void) strlcpy(parent, zhp->zfs_dmustats.dds_origin, sizeof (parent));
168404Spjd	if (parent[0] == '\0') {
168404Spjd		zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd		    "not a cloned filesystem"));
168404Spjd		return (zfs_error(hdl, EZFS_BADTYPE, errbuf));
168404Spjd	}
168404Spjd	cp = strchr(parent, '@');
168404Spjd	*cp = '\0';
168404Spjd
168404Spjd	/* Walk the snapshots we will be moving */
185029Spjd	pzhp = zfs_open(hdl, zhp->zfs_dmustats.dds_origin, ZFS_TYPE_SNAPSHOT);
168404Spjd	if (pzhp == NULL)
168404Spjd		return (-1);
168404Spjd	pd.cb_pivot_txg = zfs_prop_get_int(pzhp, ZFS_PROP_CREATETXG);
168404Spjd	zfs_close(pzhp);
168404Spjd	pd.cb_target = zhp->zfs_name;
168404Spjd	pd.cb_errbuf = errbuf;
185029Spjd	pzhp = zfs_open(hdl, parent, ZFS_TYPE_DATASET);
168404Spjd	if (pzhp == NULL)
168404Spjd		return (-1);
168404Spjd	(void) zfs_prop_get(pzhp, ZFS_PROP_MOUNTPOINT, pd.cb_mountpoint,
168404Spjd	    sizeof (pd.cb_mountpoint), NULL, NULL, 0, FALSE);
168404Spjd	ret = zfs_iter_snapshots(pzhp, promote_snap_cb, &pd);
168404Spjd	if (ret != 0) {
168404Spjd		zfs_close(pzhp);
168404Spjd		return (-1);
168404Spjd	}
168404Spjd
168404Spjd	/* issue the ioctl */
185029Spjd	(void) strlcpy(zc.zc_value, zhp->zfs_dmustats.dds_origin,
168404Spjd	    sizeof (zc.zc_value));
168404Spjd	(void) strlcpy(zc.zc_name, zhp->zfs_name, sizeof (zc.zc_name));
185029Spjd	ret = zfs_ioctl(hdl, ZFS_IOC_PROMOTE, &zc);
168404Spjd
168404Spjd	if (ret != 0) {
168404Spjd		int save_errno = errno;
168404Spjd
168404Spjd		(void) zfs_iter_snapshots(pzhp, promote_snap_done_cb, &pd);
168404Spjd		zfs_close(pzhp);
168404Spjd
168404Spjd		switch (save_errno) {
168404Spjd		case EEXIST:
168404Spjd			/*
168404Spjd			 * There is a conflicting snapshot name.  We
168404Spjd			 * should have caught this above, but they could
168404Spjd			 * have renamed something in the mean time.
168404Spjd			 */
168404Spjd			zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd			    "conflicting snapshot name from parent '%s'"),
168404Spjd			    parent);
168404Spjd			return (zfs_error(hdl, EZFS_EXISTS, errbuf));
168404Spjd
168404Spjd		default:
168404Spjd			return (zfs_standard_error(hdl, save_errno, errbuf));
168404Spjd		}
168404Spjd	} else {
168404Spjd		(void) zfs_iter_snapshots(zhp, promote_snap_done_cb, &pd);
168404Spjd	}
168404Spjd
168404Spjd	zfs_close(pzhp);
168404Spjd	return (ret);
168404Spjd}
168404Spjd
168676Spjdstruct createdata {
168676Spjd	const char *cd_snapname;
168676Spjd	int cd_ifexists;
168676Spjd};
168676Spjd
168404Spjdstatic int
168404Spjdzfs_create_link_cb(zfs_handle_t *zhp, void *arg)
168404Spjd{
168676Spjd	struct createdata *cd = arg;
168404Spjd	int ret;
168404Spjd
168404Spjd	if (zhp->zfs_type == ZFS_TYPE_VOLUME) {
168404Spjd		char name[MAXPATHLEN];
168404Spjd
168404Spjd		(void) strlcpy(name, zhp->zfs_name, sizeof (name));
168404Spjd		(void) strlcat(name, "@", sizeof (name));
168676Spjd		(void) strlcat(name, cd->cd_snapname, sizeof (name));
168676Spjd		(void) zvol_create_link_common(zhp->zfs_hdl, name,
168676Spjd		    cd->cd_ifexists);
168404Spjd		/*
168404Spjd		 * NB: this is simply a best-effort.  We don't want to
168404Spjd		 * return an error, because then we wouldn't visit all
168404Spjd		 * the volumes.
168404Spjd		 */
168404Spjd	}
168404Spjd
168676Spjd	ret = zfs_iter_filesystems(zhp, zfs_create_link_cb, cd);
168404Spjd
168404Spjd	zfs_close(zhp);
168404Spjd
168404Spjd	return (ret);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Takes a snapshot of the given dataset.
168404Spjd */
168404Spjdint
185029Spjdzfs_snapshot(libzfs_handle_t *hdl, const char *path, boolean_t recursive,
185029Spjd    nvlist_t *props)
168404Spjd{
168404Spjd	const char *delim;
185029Spjd	char parent[ZFS_MAXNAMELEN];
168404Spjd	zfs_handle_t *zhp;
168404Spjd	zfs_cmd_t zc = { 0 };
168404Spjd	int ret;
168404Spjd	char errbuf[1024];
168404Spjd
168404Spjd	(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
168404Spjd	    "cannot snapshot '%s'"), path);
168404Spjd
168404Spjd	/* validate the target name */
185029Spjd	if (!zfs_validate_name(hdl, path, ZFS_TYPE_SNAPSHOT, B_TRUE))
168404Spjd		return (zfs_error(hdl, EZFS_INVALIDNAME, errbuf));
168404Spjd
185029Spjd	if (props) {
185029Spjd		if ((props = zfs_valid_proplist(hdl, ZFS_TYPE_SNAPSHOT,
185029Spjd		    props, B_FALSE, NULL, errbuf)) == NULL)
185029Spjd			return (-1);
185029Spjd
185029Spjd		if (zcmd_write_src_nvlist(hdl, &zc, props) != 0) {
185029Spjd			nvlist_free(props);
185029Spjd			return (-1);
185029Spjd		}
185029Spjd
185029Spjd		nvlist_free(props);
185029Spjd	}
185029Spjd
168404Spjd	/* make sure the parent exists and is of the appropriate type */
168404Spjd	delim = strchr(path, '@');
168404Spjd	(void) strncpy(parent, path, delim - path);
168404Spjd	parent[delim - path] = '\0';
168404Spjd
168404Spjd	if ((zhp = zfs_open(hdl, parent, ZFS_TYPE_FILESYSTEM |
168404Spjd	    ZFS_TYPE_VOLUME)) == NULL) {
185029Spjd		zcmd_free_nvlists(&zc);
168404Spjd		return (-1);
168404Spjd	}
168404Spjd
168404Spjd	(void) strlcpy(zc.zc_name, zhp->zfs_name, sizeof (zc.zc_name));
168404Spjd	(void) strlcpy(zc.zc_value, delim+1, sizeof (zc.zc_value));
185029Spjd	if (ZFS_IS_VOLUME(zhp))
185029Spjd		zc.zc_objset_type = DMU_OST_ZVOL;
185029Spjd	else
185029Spjd		zc.zc_objset_type = DMU_OST_ZFS;
168404Spjd	zc.zc_cookie = recursive;
185029Spjd	ret = zfs_ioctl(zhp->zfs_hdl, ZFS_IOC_SNAPSHOT, &zc);
168404Spjd
185029Spjd	zcmd_free_nvlists(&zc);
185029Spjd
168404Spjd	/*
168404Spjd	 * if it was recursive, the one that actually failed will be in
168404Spjd	 * zc.zc_name.
168404Spjd	 */
185029Spjd	if (ret != 0)
185029Spjd		(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
185029Spjd		    "cannot create snapshot '%s@%s'"), zc.zc_name, zc.zc_value);
185029Spjd
168404Spjd	if (ret == 0 && recursive) {
168676Spjd		struct createdata cd;
168676Spjd
168676Spjd		cd.cd_snapname = delim + 1;
168676Spjd		cd.cd_ifexists = B_FALSE;
168676Spjd		(void) zfs_iter_filesystems(zhp, zfs_create_link_cb, &cd);
168404Spjd	}
168404Spjd	if (ret == 0 && zhp->zfs_type == ZFS_TYPE_VOLUME) {
168404Spjd		ret = zvol_create_link(zhp->zfs_hdl, path);
168404Spjd		if (ret != 0) {
185029Spjd			(void) zfs_standard_error(hdl, errno,
185029Spjd			    dgettext(TEXT_DOMAIN,
185029Spjd			    "Volume successfully snapshotted, but device links "
185029Spjd			    "were not created"));
185029Spjd			zfs_close(zhp);
185029Spjd			return (-1);
168404Spjd		}
168404Spjd	}
168404Spjd
168404Spjd	if (ret != 0)
168404Spjd		(void) zfs_standard_error(hdl, errno, errbuf);
168404Spjd
168404Spjd	zfs_close(zhp);
168404Spjd
168404Spjd	return (ret);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Destroy any more recent snapshots.  We invoke this callback on any dependents
168404Spjd * of the snapshot first.  If the 'cb_dependent' member is non-zero, then this
168404Spjd * is a dependent and we should just destroy it without checking the transaction
168404Spjd * group.
168404Spjd */
168404Spjdtypedef struct rollback_data {
168404Spjd	const char	*cb_target;		/* the snapshot */
168404Spjd	uint64_t	cb_create;		/* creation time reference */
185029Spjd	boolean_t	cb_error;
168404Spjd	boolean_t	cb_dependent;
185029Spjd	boolean_t	cb_force;
168404Spjd} rollback_data_t;
168404Spjd
168404Spjdstatic int
168404Spjdrollback_destroy(zfs_handle_t *zhp, void *data)
168404Spjd{
168404Spjd	rollback_data_t *cbp = data;
168404Spjd
168404Spjd	if (!cbp->cb_dependent) {
168404Spjd		if (strcmp(zhp->zfs_name, cbp->cb_target) != 0 &&
168404Spjd		    zfs_get_type(zhp) == ZFS_TYPE_SNAPSHOT &&
168404Spjd		    zfs_prop_get_int(zhp, ZFS_PROP_CREATETXG) >
168404Spjd		    cbp->cb_create) {
185029Spjd			char *logstr;
168404Spjd
168404Spjd			cbp->cb_dependent = B_TRUE;
185029Spjd			cbp->cb_error |= zfs_iter_dependents(zhp, B_FALSE,
185029Spjd			    rollback_destroy, cbp);
168404Spjd			cbp->cb_dependent = B_FALSE;
168404Spjd
185029Spjd			logstr = zhp->zfs_hdl->libzfs_log_str;
185029Spjd			zhp->zfs_hdl->libzfs_log_str = NULL;
185029Spjd			cbp->cb_error |= zfs_destroy(zhp);
185029Spjd			zhp->zfs_hdl->libzfs_log_str = logstr;
168404Spjd		}
168404Spjd	} else {
185029Spjd		/* We must destroy this clone; first unmount it */
185029Spjd		prop_changelist_t *clp;
185029Spjd
185029Spjd		clp = changelist_gather(zhp, ZFS_PROP_NAME, 0,
185029Spjd		    cbp->cb_force ? MS_FORCE: 0);
185029Spjd		if (clp == NULL || changelist_prefix(clp) != 0) {
185029Spjd			cbp->cb_error = B_TRUE;
185029Spjd			zfs_close(zhp);
185029Spjd			return (0);
185029Spjd		}
168404Spjd		if (zfs_destroy(zhp) != 0)
185029Spjd			cbp->cb_error = B_TRUE;
168404Spjd		else
185029Spjd			changelist_remove(clp, zhp->zfs_name);
185029Spjd		(void) changelist_postfix(clp);
185029Spjd		changelist_free(clp);
168404Spjd	}
168404Spjd
168404Spjd	zfs_close(zhp);
168404Spjd	return (0);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Given a dataset, rollback to a specific snapshot, discarding any
168404Spjd * data changes since then and making it the active dataset.
168404Spjd *
168404Spjd * Any snapshots more recent than the target are destroyed, along with
168404Spjd * their dependents.
168404Spjd */
168404Spjdint
185029Spjdzfs_rollback(zfs_handle_t *zhp, zfs_handle_t *snap, boolean_t force)
168404Spjd{
168404Spjd	rollback_data_t cb = { 0 };
185029Spjd	int err;
185029Spjd	zfs_cmd_t zc = { 0 };
185029Spjd	boolean_t restore_resv = 0;
185029Spjd	uint64_t old_volsize, new_volsize;
185029Spjd	zfs_prop_t resv_prop;
168404Spjd
185029Spjd	assert(zhp->zfs_type == ZFS_TYPE_FILESYSTEM ||
185029Spjd	    zhp->zfs_type == ZFS_TYPE_VOLUME);
168404Spjd
168404Spjd	/*
168404Spjd	 * Destroy all recent snapshots and its dependends.
168404Spjd	 */
185029Spjd	cb.cb_force = force;
168404Spjd	cb.cb_target = snap->zfs_name;
168404Spjd	cb.cb_create = zfs_prop_get_int(snap, ZFS_PROP_CREATETXG);
168404Spjd	(void) zfs_iter_children(zhp, rollback_destroy, &cb);
168404Spjd
185029Spjd	if (cb.cb_error)
185029Spjd		return (-1);
168404Spjd
168404Spjd	/*
168404Spjd	 * Now that we have verified that the snapshot is the latest,
168404Spjd	 * rollback to the given snapshot.
168404Spjd	 */
168404Spjd
185029Spjd	if (zhp->zfs_type == ZFS_TYPE_VOLUME) {
185029Spjd		if (zvol_remove_link(zhp->zfs_hdl, zhp->zfs_name) != 0)
185029Spjd			return (-1);
185029Spjd		if (zfs_which_resv_prop(zhp, &resv_prop) < 0)
185029Spjd			return (-1);
185029Spjd		old_volsize = zfs_prop_get_int(zhp, ZFS_PROP_VOLSIZE);
185029Spjd		restore_resv =
185029Spjd		    (old_volsize == zfs_prop_get_int(zhp, resv_prop));
168404Spjd	}
168404Spjd
185029Spjd	(void) strlcpy(zc.zc_name, zhp->zfs_name, sizeof (zc.zc_name));
185029Spjd
185029Spjd	if (ZFS_IS_VOLUME(zhp))
185029Spjd		zc.zc_objset_type = DMU_OST_ZVOL;
185029Spjd	else
185029Spjd		zc.zc_objset_type = DMU_OST_ZFS;
185029Spjd
168404Spjd	/*
185029Spjd	 * We rely on zfs_iter_children() to verify that there are no
185029Spjd	 * newer snapshots for the given dataset.  Therefore, we can
185029Spjd	 * simply pass the name on to the ioctl() call.  There is still
185029Spjd	 * an unlikely race condition where the user has taken a
185029Spjd	 * snapshot since we verified that this was the most recent.
185029Spjd	 *
168404Spjd	 */
185029Spjd	if ((err = zfs_ioctl(zhp->zfs_hdl, ZFS_IOC_ROLLBACK, &zc)) != 0) {
185029Spjd		(void) zfs_standard_error_fmt(zhp->zfs_hdl, errno,
185029Spjd		    dgettext(TEXT_DOMAIN, "cannot rollback '%s'"),
185029Spjd		    zhp->zfs_name);
185029Spjd		return (err);
185029Spjd	}
168404Spjd
185029Spjd	/*
185029Spjd	 * For volumes, if the pre-rollback volsize matched the pre-
185029Spjd	 * rollback reservation and the volsize has changed then set
185029Spjd	 * the reservation property to the post-rollback volsize.
185029Spjd	 * Make a new handle since the rollback closed the dataset.
185029Spjd	 */
185029Spjd	if ((zhp->zfs_type == ZFS_TYPE_VOLUME) &&
185029Spjd	    (zhp = make_dataset_handle(zhp->zfs_hdl, zhp->zfs_name))) {
185029Spjd		if (err = zvol_create_link(zhp->zfs_hdl, zhp->zfs_name)) {
185029Spjd			zfs_close(zhp);
185029Spjd			return (err);
185029Spjd		}
185029Spjd		if (restore_resv) {
185029Spjd			new_volsize = zfs_prop_get_int(zhp, ZFS_PROP_VOLSIZE);
185029Spjd			if (old_volsize != new_volsize)
185029Spjd				err = zfs_prop_set_int(zhp, resv_prop,
185029Spjd				    new_volsize);
185029Spjd		}
185029Spjd		zfs_close(zhp);
185029Spjd	}
185029Spjd	return (err);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Iterate over all dependents for a given dataset.  This includes both
168404Spjd * hierarchical dependents (children) and data dependents (snapshots and
168404Spjd * clones).  The bulk of the processing occurs in get_dependents() in
168404Spjd * libzfs_graph.c.
168404Spjd */
168404Spjdint
168404Spjdzfs_iter_dependents(zfs_handle_t *zhp, boolean_t allowrecursion,
168404Spjd    zfs_iter_f func, void *data)
168404Spjd{
168404Spjd	char **dependents;
168404Spjd	size_t count;
168404Spjd	int i;
168404Spjd	zfs_handle_t *child;
168404Spjd	int ret = 0;
168404Spjd
168404Spjd	if (get_dependents(zhp->zfs_hdl, allowrecursion, zhp->zfs_name,
168404Spjd	    &dependents, &count) != 0)
168404Spjd		return (-1);
168404Spjd
168404Spjd	for (i = 0; i < count; i++) {
168404Spjd		if ((child = make_dataset_handle(zhp->zfs_hdl,
168404Spjd		    dependents[i])) == NULL)
168404Spjd			continue;
168404Spjd
168404Spjd		if ((ret = func(child, data)) != 0)
168404Spjd			break;
168404Spjd	}
168404Spjd
168404Spjd	for (i = 0; i < count; i++)
168404Spjd		free(dependents[i]);
168404Spjd	free(dependents);
168404Spjd
168404Spjd	return (ret);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Renames the given dataset.
168404Spjd */
168404Spjdint
185029Spjdzfs_rename(zfs_handle_t *zhp, const char *target, boolean_t recursive)
168404Spjd{
168404Spjd	int ret;
168404Spjd	zfs_cmd_t zc = { 0 };
168404Spjd	char *delim;
168676Spjd	prop_changelist_t *cl = NULL;
168676Spjd	zfs_handle_t *zhrp = NULL;
168676Spjd	char *parentname = NULL;
168404Spjd	char parent[ZFS_MAXNAMELEN];
168404Spjd	libzfs_handle_t *hdl = zhp->zfs_hdl;
168404Spjd	char errbuf[1024];
168404Spjd
168404Spjd	/* if we have the same exact name, just return success */
168404Spjd	if (strcmp(zhp->zfs_name, target) == 0)
168404Spjd		return (0);
168404Spjd
168404Spjd	(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
168404Spjd	    "cannot rename to '%s'"), target);
168404Spjd
168404Spjd	/*
168404Spjd	 * Make sure the target name is valid
168404Spjd	 */
168404Spjd	if (zhp->zfs_type == ZFS_TYPE_SNAPSHOT) {
168404Spjd		if ((strchr(target, '@') == NULL) ||
168404Spjd		    *target == '@') {
168404Spjd			/*
168404Spjd			 * Snapshot target name is abbreviated,
168404Spjd			 * reconstruct full dataset name
168404Spjd			 */
168404Spjd			(void) strlcpy(parent, zhp->zfs_name,
168404Spjd			    sizeof (parent));
168404Spjd			delim = strchr(parent, '@');
168404Spjd			if (strchr(target, '@') == NULL)
168404Spjd				*(++delim) = '\0';
168404Spjd			else
168404Spjd				*delim = '\0';
168404Spjd			(void) strlcat(parent, target, sizeof (parent));
168404Spjd			target = parent;
168404Spjd		} else {
168404Spjd			/*
168404Spjd			 * Make sure we're renaming within the same dataset.
168404Spjd			 */
168404Spjd			delim = strchr(target, '@');
168404Spjd			if (strncmp(zhp->zfs_name, target, delim - target)
168404Spjd			    != 0 || zhp->zfs_name[delim - target] != '@') {
168404Spjd				zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd				    "snapshots must be part of same "
168404Spjd				    "dataset"));
168404Spjd				return (zfs_error(hdl, EZFS_CROSSTARGET,
168404Spjd				    errbuf));
168404Spjd			}
168404Spjd		}
185029Spjd		if (!zfs_validate_name(hdl, target, zhp->zfs_type, B_TRUE))
168404Spjd			return (zfs_error(hdl, EZFS_INVALIDNAME, errbuf));
168404Spjd	} else {
168676Spjd		if (recursive) {
168676Spjd			zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168676Spjd			    "recursive rename must be a snapshot"));
168676Spjd			return (zfs_error(hdl, EZFS_BADTYPE, errbuf));
168676Spjd		}
168676Spjd
185029Spjd		if (!zfs_validate_name(hdl, target, zhp->zfs_type, B_TRUE))
168404Spjd			return (zfs_error(hdl, EZFS_INVALIDNAME, errbuf));
168404Spjd		uint64_t unused;
168404Spjd
168404Spjd		/* validate parents */
185029Spjd		if (check_parents(hdl, target, &unused, B_FALSE, NULL) != 0)
168404Spjd			return (-1);
168404Spjd
168404Spjd		(void) parent_name(target, parent, sizeof (parent));
168404Spjd
168404Spjd		/* make sure we're in the same pool */
168404Spjd		verify((delim = strchr(target, '/')) != NULL);
168404Spjd		if (strncmp(zhp->zfs_name, target, delim - target) != 0 ||
168404Spjd		    zhp->zfs_name[delim - target] != '/') {
168404Spjd			zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd			    "datasets must be within same pool"));
168404Spjd			return (zfs_error(hdl, EZFS_CROSSTARGET, errbuf));
168404Spjd		}
168404Spjd
168404Spjd		/* new name cannot be a child of the current dataset name */
168404Spjd		if (strncmp(parent, zhp->zfs_name,
168404Spjd		    strlen(zhp->zfs_name)) == 0) {
168404Spjd			zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd			    "New dataset name cannot be a descendent of "
168404Spjd			    "current dataset name"));
168404Spjd			return (zfs_error(hdl, EZFS_INVALIDNAME, errbuf));
168404Spjd		}
168404Spjd	}
168404Spjd
168404Spjd	(void) snprintf(errbuf, sizeof (errbuf),
168404Spjd	    dgettext(TEXT_DOMAIN, "cannot rename '%s'"), zhp->zfs_name);
168404Spjd
168404Spjd	if (getzoneid() == GLOBAL_ZONEID &&
168404Spjd	    zfs_prop_get_int(zhp, ZFS_PROP_ZONED)) {
168404Spjd		zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd		    "dataset is used in a non-global zone"));
168404Spjd		return (zfs_error(hdl, EZFS_ZONED, errbuf));
168404Spjd	}
168404Spjd
168676Spjd	if (recursive) {
168676Spjd		struct destroydata dd;
168404Spjd
185029Spjd		parentname = zfs_strdup(zhp->zfs_hdl, zhp->zfs_name);
185029Spjd		if (parentname == NULL) {
185029Spjd			ret = -1;
185029Spjd			goto error;
185029Spjd		}
168676Spjd		delim = strchr(parentname, '@');
168676Spjd		*delim = '\0';
185029Spjd		zhrp = zfs_open(zhp->zfs_hdl, parentname, ZFS_TYPE_DATASET);
168676Spjd		if (zhrp == NULL) {
185029Spjd			ret = -1;
185029Spjd			goto error;
168676Spjd		}
168676Spjd
168676Spjd		dd.snapname = delim + 1;
168676Spjd		dd.gotone = B_FALSE;
185029Spjd		dd.closezhp = B_TRUE;
168676Spjd
168676Spjd		/* We remove any zvol links prior to renaming them */
168676Spjd		ret = zfs_iter_filesystems(zhrp, zfs_remove_link_cb, &dd);
168676Spjd		if (ret) {
168676Spjd			goto error;
168676Spjd		}
168676Spjd	} else {
185029Spjd		if ((cl = changelist_gather(zhp, ZFS_PROP_NAME, 0, 0)) == NULL)
168676Spjd			return (-1);
168676Spjd
168676Spjd		if (changelist_haszonedchild(cl)) {
168676Spjd			zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168676Spjd			    "child dataset with inherited mountpoint is used "
168676Spjd			    "in a non-global zone"));
168676Spjd			(void) zfs_error(hdl, EZFS_ZONED, errbuf);
168676Spjd			goto error;
168676Spjd		}
168676Spjd
168676Spjd		if ((ret = changelist_prefix(cl)) != 0)
168676Spjd			goto error;
168404Spjd	}
168404Spjd
168404Spjd	if (ZFS_IS_VOLUME(zhp))
168404Spjd		zc.zc_objset_type = DMU_OST_ZVOL;
168404Spjd	else
168404Spjd		zc.zc_objset_type = DMU_OST_ZFS;
168404Spjd
168404Spjd	(void) strlcpy(zc.zc_name, zhp->zfs_name, sizeof (zc.zc_name));
168404Spjd	(void) strlcpy(zc.zc_value, target, sizeof (zc.zc_value));
168404Spjd
168676Spjd	zc.zc_cookie = recursive;
168676Spjd
185029Spjd	if ((ret = zfs_ioctl(zhp->zfs_hdl, ZFS_IOC_RENAME, &zc)) != 0) {
168676Spjd		/*
168676Spjd		 * if it was recursive, the one that actually failed will
168676Spjd		 * be in zc.zc_name
168676Spjd		 */
168676Spjd		(void) snprintf(errbuf, sizeof (errbuf), dgettext(TEXT_DOMAIN,
185029Spjd		    "cannot rename '%s'"), zc.zc_name);
168404Spjd
168676Spjd		if (recursive && errno == EEXIST) {
168676Spjd			zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168676Spjd			    "a child dataset already has a snapshot "
168676Spjd			    "with the new name"));
185029Spjd			(void) zfs_error(hdl, EZFS_EXISTS, errbuf);
168676Spjd		} else {
168676Spjd			(void) zfs_standard_error(zhp->zfs_hdl, errno, errbuf);
168676Spjd		}
168676Spjd
168404Spjd		/*
168404Spjd		 * On failure, we still want to remount any filesystems that
168404Spjd		 * were previously mounted, so we don't alter the system state.
168404Spjd		 */
168676Spjd		if (recursive) {
168676Spjd			struct createdata cd;
168676Spjd
168676Spjd			/* only create links for datasets that had existed */
168676Spjd			cd.cd_snapname = delim + 1;
168676Spjd			cd.cd_ifexists = B_TRUE;
168676Spjd			(void) zfs_iter_filesystems(zhrp, zfs_create_link_cb,
168676Spjd			    &cd);
168676Spjd		} else {
168676Spjd			(void) changelist_postfix(cl);
168676Spjd		}
168404Spjd	} else {
168676Spjd		if (recursive) {
168676Spjd			struct createdata cd;
168404Spjd
168676Spjd			/* only create links for datasets that had existed */
168676Spjd			cd.cd_snapname = strchr(target, '@') + 1;
168676Spjd			cd.cd_ifexists = B_TRUE;
168676Spjd			ret = zfs_iter_filesystems(zhrp, zfs_create_link_cb,
168676Spjd			    &cd);
168676Spjd		} else {
168676Spjd			changelist_rename(cl, zfs_get_name(zhp), target);
168676Spjd			ret = changelist_postfix(cl);
168676Spjd		}
168404Spjd	}
168404Spjd
168404Spjderror:
168676Spjd	if (parentname) {
168676Spjd		free(parentname);
168676Spjd	}
168676Spjd	if (zhrp) {
168676Spjd		zfs_close(zhrp);
168676Spjd	}
168676Spjd	if (cl) {
168676Spjd		changelist_free(cl);
168676Spjd	}
168404Spjd	return (ret);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Given a zvol dataset, issue the ioctl to create the appropriate minor node,
168404Spjd * poke devfsadm to create the /dev link, and then wait for the link to appear.
168404Spjd */
168404Spjdint
168404Spjdzvol_create_link(libzfs_handle_t *hdl, const char *dataset)
168404Spjd{
168676Spjd	return (zvol_create_link_common(hdl, dataset, B_FALSE));
168676Spjd}
168676Spjd
168676Spjdstatic int
168676Spjdzvol_create_link_common(libzfs_handle_t *hdl, const char *dataset, int ifexists)
168676Spjd{
168404Spjd	zfs_cmd_t zc = { 0 };
168404Spjd#if 0
168404Spjd	di_devlink_handle_t dhdl;
185029Spjd	priv_set_t *priv_effective;
185029Spjd	int privileged;
168404Spjd#endif
168404Spjd
168404Spjd	(void) strlcpy(zc.zc_name, dataset, sizeof (zc.zc_name));
168404Spjd
168404Spjd	/*
168404Spjd	 * Issue the appropriate ioctl.
168404Spjd	 */
168404Spjd	if (ioctl(hdl->libzfs_fd, ZFS_IOC_CREATE_MINOR, &zc) != 0) {
168404Spjd		switch (errno) {
168404Spjd		case EEXIST:
168404Spjd			/*
168404Spjd			 * Silently ignore the case where the link already
168404Spjd			 * exists.  This allows 'zfs volinit' to be run multiple
168404Spjd			 * times without errors.
168404Spjd			 */
168404Spjd			return (0);
168404Spjd
168676Spjd		case ENOENT:
168676Spjd			/*
168676Spjd			 * Dataset does not exist in the kernel.  If we
168676Spjd			 * don't care (see zfs_rename), then ignore the
168676Spjd			 * error quietly.
168676Spjd			 */
168676Spjd			if (ifexists) {
168676Spjd				return (0);
168676Spjd			}
168676Spjd
168676Spjd			/* FALLTHROUGH */
168676Spjd
168404Spjd		default:
168404Spjd			return (zfs_standard_error_fmt(hdl, errno,
168404Spjd			    dgettext(TEXT_DOMAIN, "cannot create device links "
168404Spjd			    "for '%s'"), dataset));
168404Spjd		}
168404Spjd	}
168404Spjd
168404Spjd#if 0
168404Spjd	/*
185029Spjd	 * If privileged call devfsadm and wait for the links to
185029Spjd	 * magically appear.
185029Spjd	 * Otherwise, print out an informational message.
168404Spjd	 */
185029Spjd
185029Spjd	priv_effective = priv_allocset();
185029Spjd	(void) getppriv(PRIV_EFFECTIVE, priv_effective);
185029Spjd	privileged = (priv_isfullset(priv_effective) == B_TRUE);
185029Spjd	priv_freeset(priv_effective);
185029Spjd
185029Spjd	if (privileged) {
185029Spjd		if ((dhdl = di_devlink_init(ZFS_DRIVER,
185029Spjd		    DI_MAKE_LINK)) == NULL) {
185029Spjd			zfs_error_aux(hdl, strerror(errno));
185029Spjd			(void) zfs_error_fmt(hdl, errno,
185029Spjd			    dgettext(TEXT_DOMAIN, "cannot create device links "
185029Spjd			    "for '%s'"), dataset);
185029Spjd			(void) ioctl(hdl->libzfs_fd, ZFS_IOC_REMOVE_MINOR, &zc);
185029Spjd			return (-1);
185029Spjd		} else {
185029Spjd			(void) di_devlink_fini(&dhdl);
185029Spjd		}
168404Spjd	} else {
185029Spjd		char pathname[MAXPATHLEN];
185029Spjd		struct stat64 statbuf;
185029Spjd		int i;
185029Spjd
185029Spjd#define	MAX_WAIT	10
185029Spjd
185029Spjd		/*
185029Spjd		 * This is the poor mans way of waiting for the link
185029Spjd		 * to show up.  If after 10 seconds we still don't
185029Spjd		 * have it, then print out a message.
185029Spjd		 */
185029Spjd		(void) snprintf(pathname, sizeof (pathname), "/dev/zvol/dsk/%s",
185029Spjd		    dataset);
185029Spjd
185029Spjd		for (i = 0; i != MAX_WAIT; i++) {
185029Spjd			if (stat64(pathname, &statbuf) == 0)
185029Spjd				break;
185029Spjd			(void) sleep(1);
185029Spjd		}
185029Spjd		if (i == MAX_WAIT)
185029Spjd			(void) printf(gettext("%s may not be immediately "
185029Spjd			    "available\n"), pathname);
168404Spjd	}
168404Spjd#endif
168404Spjd
168404Spjd	return (0);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Remove a minor node for the given zvol and the associated /dev links.
168404Spjd */
168404Spjdint
168404Spjdzvol_remove_link(libzfs_handle_t *hdl, const char *dataset)
168404Spjd{
168404Spjd	zfs_cmd_t zc = { 0 };
168404Spjd
168404Spjd	(void) strlcpy(zc.zc_name, dataset, sizeof (zc.zc_name));
168404Spjd
168404Spjd	if (ioctl(hdl->libzfs_fd, ZFS_IOC_REMOVE_MINOR, &zc) != 0) {
168404Spjd		switch (errno) {
168404Spjd		case ENXIO:
168404Spjd			/*
168404Spjd			 * Silently ignore the case where the link no longer
168404Spjd			 * exists, so that 'zfs volfini' can be run multiple
168404Spjd			 * times without errors.
168404Spjd			 */
168404Spjd			return (0);
168404Spjd
168404Spjd		default:
168404Spjd			return (zfs_standard_error_fmt(hdl, errno,
168404Spjd			    dgettext(TEXT_DOMAIN, "cannot remove device "
168404Spjd			    "links for '%s'"), dataset));
168404Spjd		}
168404Spjd	}
168404Spjd
168404Spjd	return (0);
168404Spjd}
168404Spjd
168404Spjdnvlist_t *
168404Spjdzfs_get_user_props(zfs_handle_t *zhp)
168404Spjd{
168404Spjd	return (zhp->zfs_user_props);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * This function is used by 'zfs list' to determine the exact set of columns to
168404Spjd * display, and their maximum widths.  This does two main things:
168404Spjd *
168404Spjd *      - If this is a list of all properties, then expand the list to include
168404Spjd *        all native properties, and set a flag so that for each dataset we look
168404Spjd *        for new unique user properties and add them to the list.
168404Spjd *
168404Spjd *      - For non fixed-width properties, keep track of the maximum width seen
168404Spjd *        so that we can size the column appropriately.
168404Spjd */
168404Spjdint
185029Spjdzfs_expand_proplist(zfs_handle_t *zhp, zprop_list_t **plp)
168404Spjd{
168404Spjd	libzfs_handle_t *hdl = zhp->zfs_hdl;
185029Spjd	zprop_list_t *entry;
185029Spjd	zprop_list_t **last, **start;
168404Spjd	nvlist_t *userprops, *propval;
168404Spjd	nvpair_t *elem;
168404Spjd	char *strval;
168404Spjd	char buf[ZFS_MAXPROPLEN];
168404Spjd
185029Spjd	if (zprop_expand_list(hdl, plp, ZFS_TYPE_DATASET) != 0)
168404Spjd		return (-1);
168404Spjd
168404Spjd	userprops = zfs_get_user_props(zhp);
168404Spjd
168404Spjd	entry = *plp;
168404Spjd	if (entry->pl_all && nvlist_next_nvpair(userprops, NULL) != NULL) {
168404Spjd		/*
168404Spjd		 * Go through and add any user properties as necessary.  We
168404Spjd		 * start by incrementing our list pointer to the first
168404Spjd		 * non-native property.
168404Spjd		 */
168404Spjd		start = plp;
168404Spjd		while (*start != NULL) {
185029Spjd			if ((*start)->pl_prop == ZPROP_INVAL)
168404Spjd				break;
168404Spjd			start = &(*start)->pl_next;
168404Spjd		}
168404Spjd
168404Spjd		elem = NULL;
168404Spjd		while ((elem = nvlist_next_nvpair(userprops, elem)) != NULL) {
168404Spjd			/*
168404Spjd			 * See if we've already found this property in our list.
168404Spjd			 */
168404Spjd			for (last = start; *last != NULL;
168404Spjd			    last = &(*last)->pl_next) {
168404Spjd				if (strcmp((*last)->pl_user_prop,
168404Spjd				    nvpair_name(elem)) == 0)
168404Spjd					break;
168404Spjd			}
168404Spjd
168404Spjd			if (*last == NULL) {
168404Spjd				if ((entry = zfs_alloc(hdl,
185029Spjd				    sizeof (zprop_list_t))) == NULL ||
168404Spjd				    ((entry->pl_user_prop = zfs_strdup(hdl,
168404Spjd				    nvpair_name(elem)))) == NULL) {
168404Spjd					free(entry);
168404Spjd					return (-1);
168404Spjd				}
168404Spjd
185029Spjd				entry->pl_prop = ZPROP_INVAL;
168404Spjd				entry->pl_width = strlen(nvpair_name(elem));
168404Spjd				entry->pl_all = B_TRUE;
168404Spjd				*last = entry;
168404Spjd			}
168404Spjd		}
168404Spjd	}
168404Spjd
168404Spjd	/*
168404Spjd	 * Now go through and check the width of any non-fixed columns
168404Spjd	 */
168404Spjd	for (entry = *plp; entry != NULL; entry = entry->pl_next) {
168404Spjd		if (entry->pl_fixed)
168404Spjd			continue;
168404Spjd
185029Spjd		if (entry->pl_prop != ZPROP_INVAL) {
168404Spjd			if (zfs_prop_get(zhp, entry->pl_prop,
168404Spjd			    buf, sizeof (buf), NULL, NULL, 0, B_FALSE) == 0) {
168404Spjd				if (strlen(buf) > entry->pl_width)
168404Spjd					entry->pl_width = strlen(buf);
168404Spjd			}
168404Spjd		} else if (nvlist_lookup_nvlist(userprops,
168404Spjd		    entry->pl_user_prop, &propval)  == 0) {
168404Spjd			verify(nvlist_lookup_string(propval,
185029Spjd			    ZPROP_VALUE, &strval) == 0);
168404Spjd			if (strlen(strval) > entry->pl_width)
168404Spjd				entry->pl_width = strlen(strval);
168404Spjd		}
168404Spjd	}
168404Spjd
168404Spjd	return (0);
168404Spjd}
168404Spjd
185029Spjd#ifdef TODO
185029Spjdint
185029Spjdzfs_iscsi_perm_check(libzfs_handle_t *hdl, char *dataset, ucred_t *cred)
185029Spjd{
185029Spjd	zfs_cmd_t zc = { 0 };
185029Spjd	nvlist_t *nvp;
185029Spjd	gid_t gid;
185029Spjd	uid_t uid;
185029Spjd	const gid_t *groups;
185029Spjd	int group_cnt;
185029Spjd	int error;
185029Spjd
185029Spjd	if (nvlist_alloc(&nvp, NV_UNIQUE_NAME, 0) != 0)
185029Spjd		return (no_memory(hdl));
185029Spjd
185029Spjd	uid = ucred_geteuid(cred);
185029Spjd	gid = ucred_getegid(cred);
185029Spjd	group_cnt = ucred_getgroups(cred, &groups);
185029Spjd
185029Spjd	if (uid == (uid_t)-1 || gid == (uid_t)-1 || group_cnt == (uid_t)-1)
185029Spjd		return (1);
185029Spjd
185029Spjd	if (nvlist_add_uint32(nvp, ZFS_DELEG_PERM_UID, uid) != 0) {
185029Spjd		nvlist_free(nvp);
185029Spjd		return (1);
185029Spjd	}
185029Spjd
185029Spjd	if (nvlist_add_uint32(nvp, ZFS_DELEG_PERM_GID, gid) != 0) {
185029Spjd		nvlist_free(nvp);
185029Spjd		return (1);
185029Spjd	}
185029Spjd
185029Spjd	if (nvlist_add_uint32_array(nvp,
185029Spjd	    ZFS_DELEG_PERM_GROUPS, (uint32_t *)groups, group_cnt) != 0) {
185029Spjd		nvlist_free(nvp);
185029Spjd		return (1);
185029Spjd	}
185029Spjd	(void) strlcpy(zc.zc_name, dataset, sizeof (zc.zc_name));
185029Spjd
185029Spjd	if (zcmd_write_src_nvlist(hdl, &zc, nvp))
185029Spjd		return (-1);
185029Spjd
185029Spjd	error = ioctl(hdl->libzfs_fd, ZFS_IOC_ISCSI_PERM_CHECK, &zc);
185029Spjd	nvlist_free(nvp);
185029Spjd	return (error);
185029Spjd}
185029Spjd#endif
185029Spjd
185029Spjdint
185029Spjdzfs_deleg_share_nfs(libzfs_handle_t *hdl, char *dataset, char *path,
185029Spjd    void *export, void *sharetab, int sharemax, zfs_share_op_t operation)
185029Spjd{
185029Spjd	zfs_cmd_t zc = { 0 };
185029Spjd	int error;
185029Spjd
185029Spjd	(void) strlcpy(zc.zc_name, dataset, sizeof (zc.zc_name));
185029Spjd	(void) strlcpy(zc.zc_value, path, sizeof (zc.zc_value));
185029Spjd	zc.zc_share.z_sharedata = (uint64_t)(uintptr_t)sharetab;
185029Spjd	zc.zc_share.z_exportdata = (uint64_t)(uintptr_t)export;
185029Spjd	zc.zc_share.z_sharetype = operation;
185029Spjd	zc.zc_share.z_sharemax = sharemax;
185029Spjd
185029Spjd	error = ioctl(hdl->libzfs_fd, ZFS_IOC_SHARE, &zc);
185029Spjd	return (error);
185029Spjd}
185029Spjd
205198Sdelphijvoid
205198Sdelphijzfs_prune_proplist(zfs_handle_t *zhp, uint8_t *props)
205198Sdelphij{
205198Sdelphij	nvpair_t *curr;
205198Sdelphij
205198Sdelphij	/*
205198Sdelphij	 * Keep a reference to the props-table against which we prune the
205198Sdelphij	 * properties.
205198Sdelphij	 */
205198Sdelphij	zhp->zfs_props_table = props;
205198Sdelphij
205198Sdelphij	curr = nvlist_next_nvpair(zhp->zfs_props, NULL);
205198Sdelphij
205198Sdelphij	while (curr) {
205198Sdelphij		zfs_prop_t zfs_prop = zfs_name_to_prop(nvpair_name(curr));
205198Sdelphij		nvpair_t *next = nvlist_next_nvpair(zhp->zfs_props, curr);
205198Sdelphij
206199Sdelphij		/*
206199Sdelphij		 * We leave user:props in the nvlist, so there will be
206199Sdelphij		 * some ZPROP_INVAL.  To be extra safe, don't prune
206199Sdelphij		 * those.
206199Sdelphij		 */
206199Sdelphij		if (zfs_prop != ZPROP_INVAL && props[zfs_prop] == B_FALSE)
205198Sdelphij			(void) nvlist_remove(zhp->zfs_props,
205198Sdelphij			    nvpair_name(curr), nvpair_type(curr));
205198Sdelphij		curr = next;
205198Sdelphij	}
205198Sdelphij}
205198Sdelphij
168404Spjd/*
168404Spjd * Attach/detach the given filesystem to/from the given jail.
168404Spjd */
168404Spjdint
168404Spjdzfs_jail(zfs_handle_t *zhp, int jailid, int attach)
168404Spjd{
168404Spjd	libzfs_handle_t *hdl = zhp->zfs_hdl;
168404Spjd	zfs_cmd_t zc = { 0 };
168404Spjd	char errbuf[1024];
168404Spjd	int cmd, ret;
168404Spjd
168404Spjd	if (attach) {
168404Spjd		(void) snprintf(errbuf, sizeof (errbuf),
168404Spjd		    dgettext(TEXT_DOMAIN, "cannot jail '%s'"), zhp->zfs_name);
168404Spjd	} else {
168404Spjd		(void) snprintf(errbuf, sizeof (errbuf),
168404Spjd		    dgettext(TEXT_DOMAIN, "cannot jail '%s'"), zhp->zfs_name);
168404Spjd	}
168404Spjd
168404Spjd	switch (zhp->zfs_type) {
168404Spjd	case ZFS_TYPE_VOLUME:
168404Spjd		zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd		    "volumes can not be jailed"));
168404Spjd		return (zfs_error(hdl, EZFS_BADTYPE, errbuf));
168404Spjd	case ZFS_TYPE_SNAPSHOT:
168404Spjd		zfs_error_aux(hdl, dgettext(TEXT_DOMAIN,
168404Spjd		    "snapshots can not be jailed"));
168404Spjd		return (zfs_error(hdl, EZFS_BADTYPE, errbuf));
168404Spjd	}
168404Spjd	assert(zhp->zfs_type == ZFS_TYPE_FILESYSTEM);
168404Spjd
168404Spjd	(void) strlcpy(zc.zc_name, zhp->zfs_name, sizeof (zc.zc_name));
168404Spjd	zc.zc_objset_type = DMU_OST_ZFS;
168404Spjd	zc.zc_jailid = jailid;
168404Spjd
168404Spjd	cmd = attach ? ZFS_IOC_JAIL : ZFS_IOC_UNJAIL;
168404Spjd	if ((ret = ioctl(hdl->libzfs_fd, cmd, &zc)) != 0)
168404Spjd		zfs_standard_error(hdl, errno, errbuf);
168404Spjd
168404Spjd	return (ret);
168404Spjd}