f3a8d2f93c
unmount jail-friendly file systems from within a jail. Precisely it grants PRIV_VFS_MOUNT, PRIV_VFS_UNMOUNT and PRIV_VFS_MOUNT_NONUSER privileges for a jailed super-user. It is turned off by default. A jail-friendly file system is a file system which driver registers itself with VFCF_JAIL flag via VFS_SET(9) API. The lsvfs(1) command can be used to see which file systems are jail-friendly ones. There currently no jail-friendly file systems, ZFS will be the first one. In the future we may consider marking file systems like nullfs as jail-friendly. Reviewed by: rwatson
115 lines
2.4 KiB
C
115 lines
2.4 KiB
C
/*
|
|
* lsvfs - list loaded VFSes
|
|
* Garrett A. Wollman, September 1994
|
|
* This file is in the public domain.
|
|
*
|
|
*/
|
|
|
|
#include <sys/cdefs.h>
|
|
__FBSDID("$FreeBSD$");
|
|
|
|
#include <sys/param.h>
|
|
#include <sys/mount.h>
|
|
#include <sys/sysctl.h>
|
|
|
|
#include <err.h>
|
|
#include <stdio.h>
|
|
#include <stdlib.h>
|
|
#include <string.h>
|
|
|
|
#define FMT "%-32.32s %5d %s\n"
|
|
#define HDRFMT "%-32.32s %5.5s %s\n"
|
|
#define DASHES "-------------------------------- ----- ---------------\n"
|
|
|
|
static const char *fmt_flags(int);
|
|
|
|
int
|
|
main(int argc, char **argv)
|
|
{
|
|
int cnt, rv = 0, i;
|
|
struct xvfsconf vfc, *xvfsp;
|
|
size_t buflen;
|
|
argc--, argv++;
|
|
|
|
printf(HDRFMT, "Filesystem", "Refs", "Flags");
|
|
fputs(DASHES, stdout);
|
|
|
|
if(argc) {
|
|
for(; argc; argc--, argv++) {
|
|
if (getvfsbyname(*argv, &vfc) == 0) {
|
|
printf(FMT, vfc.vfc_name, vfc.vfc_refcount, fmt_flags(vfc.vfc_flags));
|
|
} else {
|
|
warnx("VFS %s unknown or not loaded", *argv);
|
|
rv++;
|
|
}
|
|
}
|
|
} else {
|
|
if (sysctlbyname("vfs.conflist", NULL, &buflen, NULL, 0) < 0)
|
|
err(1, "sysctl(vfs.conflist)");
|
|
xvfsp = malloc(buflen);
|
|
if (xvfsp == NULL)
|
|
errx(1, "malloc failed");
|
|
if (sysctlbyname("vfs.conflist", xvfsp, &buflen, NULL, 0) < 0)
|
|
err(1, "sysctl(vfs.conflist)");
|
|
cnt = buflen / sizeof(struct xvfsconf);
|
|
|
|
for (i = 0; i < cnt; i++) {
|
|
printf(FMT, xvfsp[i].vfc_name, xvfsp[i].vfc_refcount,
|
|
fmt_flags(xvfsp[i].vfc_flags));
|
|
}
|
|
free(xvfsp);
|
|
}
|
|
|
|
return rv;
|
|
}
|
|
|
|
static const char *
|
|
fmt_flags(int flags)
|
|
{
|
|
/*
|
|
* NB: if you add new flags, don't forget to add them here vvvvvv too.
|
|
*/
|
|
static char buf[sizeof
|
|
"static, network, read-only, synthetic, loopback, unicode"];
|
|
int comma = 0;
|
|
|
|
buf[0] = '\0';
|
|
|
|
if(flags & VFCF_STATIC) {
|
|
if(comma++) strcat(buf, ", ");
|
|
strcat(buf, "static");
|
|
}
|
|
|
|
if(flags & VFCF_NETWORK) {
|
|
if(comma++) strcat(buf, ", ");
|
|
strcat(buf, "network");
|
|
}
|
|
|
|
if(flags & VFCF_READONLY) {
|
|
if(comma++) strcat(buf, ", ");
|
|
strcat(buf, "read-only");
|
|
}
|
|
|
|
if(flags & VFCF_SYNTHETIC) {
|
|
if(comma++) strcat(buf, ", ");
|
|
strcat(buf, "synthetic");
|
|
}
|
|
|
|
if(flags & VFCF_LOOPBACK) {
|
|
if(comma++) strcat(buf, ", ");
|
|
strcat(buf, "loopback");
|
|
}
|
|
|
|
if(flags & VFCF_UNICODE) {
|
|
if(comma++) strcat(buf, ", ");
|
|
strcat(buf, "unicode");
|
|
}
|
|
|
|
if(flags & VFCF_JAIL) {
|
|
if(comma++) strcat(buf, ", ");
|
|
strcat(buf, "jail");
|
|
}
|
|
|
|
return buf;
|
|
}
|