common/sys/kidmap.h

c5c4113dSnw/*
c5c4113dSnw * CDDL HEADER START
c5c4113dSnw *
c5c4113dSnw * The contents of this file are subject to the terms of the
c5c4113dSnw * Common Development and Distribution License (the "License").
c5c4113dSnw * You may not use this file except in compliance with the License.
c5c4113dSnw *
c5c4113dSnw * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
c5c4113dSnw * or http://www.opensolaris.org/os/licensing.
c5c4113dSnw * See the License for the specific language governing permissions
c5c4113dSnw * and limitations under the License.
c5c4113dSnw *
c5c4113dSnw * When distributing Covered Code, include this CDDL HEADER in each
c5c4113dSnw * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
c5c4113dSnw * If applicable, add the following below this CDDL HEADER, with the
c5c4113dSnw * fields enclosed by brackets "[]" replaced with your own identifying
c5c4113dSnw * information: Portions Copyright [yyyy] [name of copyright owner]
c5c4113dSnw *
c5c4113dSnw * CDDL HEADER END
c5c4113dSnw */
c5c4113dSnw
c5c4113dSnw/*
*bda89588Sjp * Copyright 2008 Sun Microsystems, Inc.  All rights reserved.
c5c4113dSnw * Use is subject to license terms.
c5c4113dSnw */
c5c4113dSnw
c5c4113dSnw/*
c5c4113dSnw * Windows to Solaris Identity Mapping kernel API
c5c4113dSnw * This header defines an API to map Windows SIDs to
c5c4113dSnw * Solaris UID and GIDs and versa visa.
c5c4113dSnw */
c5c4113dSnw
c5c4113dSnw#ifndef	_SYS_KIDMAP_H
c5c4113dSnw#define	_SYS_KIDMAP_H
c5c4113dSnw
c5c4113dSnw#include <sys/idmap.h>
c5c4113dSnw#include <sys/door.h>
*bda89588Sjp#include <sys/zone.h>
c5c4113dSnw
c5c4113dSnw#ifdef	__cplusplus
c5c4113dSnwextern "C" {
c5c4113dSnw#endif
c5c4113dSnw
c5c4113dSnw/* Opaque get handle */
c5c4113dSnwtypedef struct idmap_get_handle idmap_get_handle_t;
c5c4113dSnw
c5c4113dSnw/* Return status */
c5c4113dSnwtypedef	int32_t idmap_stat;
c5c4113dSnw
c5c4113dSnw/*
c5c4113dSnw * In all the routines a Windows SID is handled as a
c5c4113dSnw * string SID prefix plus a RID. For example
c5c4113dSnw *
c5c4113dSnw * S-1-5-5-12-34-568 will be passed as SID prefix
c5c4113dSnw * S-1-5-5-12-34 and RID 568
c5c4113dSnw *
c5c4113dSnw * Certain routines returns pointers to a SID prefix string.
c5c4113dSnw * These strings are stored internally and should not be modified
c5c4113dSnw * or freed.
c5c4113dSnw */
c5c4113dSnw
c5c4113dSnw
c5c4113dSnw/*
c5c4113dSnw * The following routines are simple get ID mapping routines.
c5c4113dSnw */
c5c4113dSnw
c5c4113dSnw
c5c4113dSnwidmap_stat
*bda89588Sjpkidmap_getuidbysid(zone_t *zone, const char *sid_prefix, uint32_t rid,
*bda89588Sjp		uid_t *uid);
c5c4113dSnw
c5c4113dSnwidmap_stat
*bda89588Sjpkidmap_getgidbysid(zone_t *zone, const char *sid_prefix, uint32_t rid,
*bda89588Sjp		gid_t *gid);
c5c4113dSnw
c5c4113dSnwidmap_stat
*bda89588Sjpkidmap_getpidbysid(zone_t *zone, const char *sid_prefix, uint32_t rid,
*bda89588Sjp		uid_t *pid, int *is_user);
c5c4113dSnw
c5c4113dSnwidmap_stat
*bda89588Sjpkidmap_getsidbyuid(zone_t *zone, uid_t uid, const char **sid_prefix,
*bda89588Sjp		uint32_t *rid);
c5c4113dSnw
c5c4113dSnwidmap_stat
*bda89588Sjpkidmap_getsidbygid(zone_t *zone, gid_t gid, const char **sid_prefix,
*bda89588Sjp		uint32_t *rid);
c5c4113dSnw
c5c4113dSnw
c5c4113dSnw
c5c4113dSnw/*
c5c4113dSnw * The following routines provide a batch interface for mapping IDs.
c5c4113dSnw */
c5c4113dSnw
c5c4113dSnw/*
c5c4113dSnw * Create a batch "get mapping" handle for batch mappings.
c5c4113dSnw */
c5c4113dSnwidmap_get_handle_t *
*bda89588Sjpkidmap_get_create(zone_t *zone);
c5c4113dSnw
c5c4113dSnw/*
c5c4113dSnw * These routines queue the request to the "get mapping" handle
c5c4113dSnw */
c5c4113dSnw
c5c4113dSnwidmap_stat
c5c4113dSnwkidmap_batch_getuidbysid(idmap_get_handle_t *get_handle,
c5c4113dSnw		const char *sid_prefix, uint32_t rid,
c5c4113dSnw		uid_t *uid, idmap_stat *stat);
c5c4113dSnw
c5c4113dSnwidmap_stat
c5c4113dSnwkidmap_batch_getgidbysid(idmap_get_handle_t *get_handle,
c5c4113dSnw		const char *sid_prefix, uint32_t rid,
c5c4113dSnw		gid_t *gid, idmap_stat *stat);
c5c4113dSnw
c5c4113dSnwidmap_stat
c5c4113dSnwkidmap_batch_getpidbysid(idmap_get_handle_t *get_handle,
c5c4113dSnw		const char *sid_prefix, uint32_t rid,
c5c4113dSnw		uid_t *pid, int *is_user, idmap_stat *stat);
c5c4113dSnw
c5c4113dSnwidmap_stat
c5c4113dSnwkidmap_batch_getsidbyuid(idmap_get_handle_t *get_handle, uid_t uid,
c5c4113dSnw		const char **sid_prefix, uint32_t *rid, idmap_stat *stat);
c5c4113dSnw
c5c4113dSnwidmap_stat
c5c4113dSnwkidmap_batch_getsidbygid(idmap_get_handle_t *get_handle, gid_t gid,
c5c4113dSnw		const char **sid_prefix, uint32_t *rid, idmap_stat *stat);
c5c4113dSnw
c5c4113dSnw/*
c5c4113dSnw * Process the queued "get mapping" requests. The results (i.e.
c5c4113dSnw * status and identity) will be available in the data areas
c5c4113dSnw * provided by individual requests.
c5c4113dSnw */
c5c4113dSnwidmap_stat
c5c4113dSnwkidmap_get_mappings(idmap_get_handle_t *get_handle);
c5c4113dSnw
c5c4113dSnw/*
c5c4113dSnw * Destroy the "get mapping" handle
c5c4113dSnw */
c5c4113dSnwvoid
c5c4113dSnwkidmap_get_destroy(idmap_get_handle_t *get_handle);
c5c4113dSnw
c5c4113dSnw/*
c5c4113dSnw * Functions that do the hard part of door registration/unregistration
c5c4113dSnw * for the idmap_reg()/idmap_unreg() syscalls
c5c4113dSnw */
*bda89588Sjpint idmap_reg_dh(zone_t *zone, door_handle_t dh);
*bda89588Sjpint idmap_unreg_dh(zone_t *zone, door_handle_t dh);
c5c4113dSnw
c5c4113dSnw/*
*bda89588Sjp * Function needed by allocids() to ensure only the daemon that owns
c5c4113dSnw * the door gets ephemeral IDS
c5c4113dSnw */
*bda89588Sjpdoor_handle_t idmap_get_door(zone_t *zone);
*bda89588Sjp
*bda89588Sjp/*
*bda89588Sjp * Function used by system call allocids() to purge the
*bda89588Sjp * ID mapping cache
*bda89588Sjp */
*bda89588Sjpvoid idmap_purge_cache(zone_t *zone);
c5c4113dSnw
c5c4113dSnw
c5c4113dSnw#ifdef	__cplusplus
c5c4113dSnw}
c5c4113dSnw#endif
c5c4113dSnw
c5c4113dSnw#endif	/* _SYS_KIDMAP_H */