1 /* $Id: vserver.h,v 1.66 2005/07/15 16:27:02 ensc Exp $
3 * Copyright (C) 2003 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de>
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License as published by
7 * the Free Software Foundation; either version 2, or (at your option)
10 * This program is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 * GNU General Public License for more details.
15 * You should have received a copy of the GNU General Public License
16 * along with this program; if not, write to the Free Software
17 * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
21 * \brief The public interface of the the libvserver library.
24 #ifndef H_VSERVER_SYSCALL_H
25 #define H_VSERVER_SYSCALL_H
30 #include <sys/types.h>
34 # define VC_ATTR_UNUSED __attribute__((__unused__))
35 # define VC_ATTR_NORETURN __attribute__((__noreturn__))
36 # define VC_ATTR_CONST __attribute__((__const__))
37 # define VC_ATTR_DEPRECATED __attribute__((__deprecated__))
38 # if __GNUC__*0x10000 + __GNUC_MINOR__*0x100 + __GNUC_PATCHLEVEL__ >= 0x30300
39 # define VC_ATTR_NONNULL(ARGS) __attribute__((__nonnull__ ARGS))
40 # define VC_ATTR_ALWAYSINLINE __attribute__((__always_inline__))
42 # define VC_ATTR_NONNULL(ARGS)
43 # define VC_ATTR_ALWAYSINLINE
45 # if __GNUC__*0x10000 + __GNUC_MINOR__*0x100 + __GNUC_PATCHLEVEL__ >= 0x30303
46 # define VC_ATTR_PURE __attribute__((__pure__))
51 # define VC_ATTR_NONNULL(ARGS)
52 # define VC_ATTR_UNUSED
53 # define VC_ATTR_NORETURN
54 # define VC_ATTR_ALWAYSINLINE
55 # define VC_ATTR_DEPRECATED
57 # define VC_ATTR_CONST
61 /** the value which is returned in error-case (no ctx found) */
62 #define VC_NOCTX ((xid_t)(-1))
63 #define VC_NOXID ((xid_t)(-1))
64 /** the value which means a random (the next free) ctx */
65 #define VC_DYNAMIC_XID ((xid_t)(-1))
66 /** the value which means the current ctx */
67 #define VC_SAMECTX ((xid_t)(-2))
69 #define VC_NONID ((nid_t)(-1))
70 #define VC_DYNAMIC_NID ((nid_t)(-1))
72 #define VC_LIM_INFINITY (~0ULL)
73 #define VC_LIM_KEEP (~1ULL)
75 #define VC_CDLIM_UNSET (0U)
76 #define VC_CDLIM_INFINITY (~0U)
77 #define VC_CDLIM_KEEP (~1U)
79 #ifndef S_CTX_INFO_LOCK
80 # define S_CTX_INFO_LOCK 1
83 #ifndef S_CTX_INFO_SCHED
84 # define S_CTX_INFO_SCHED 2
87 #ifndef S_CTX_INFO_NPROC
88 # define S_CTX_INFO_NPROC 4
91 #ifndef S_CTX_INFO_PRIVATE
92 # define S_CTX_INFO_PRIVATE 8
95 #ifndef S_CTX_INFO_INIT
96 # define S_CTX_INFO_INIT 16
99 #ifndef S_CTX_INFO_HIDEINFO
100 # define S_CTX_INFO_HIDEINFO 32
103 #ifndef S_CTX_INFO_ULIMIT
104 # define S_CTX_INFO_ULIMIT 64
107 #ifndef S_CTX_INFO_NAMESPACE
108 # define S_CTX_INFO_NAMESPACE 128
111 #define VC_CAP_CHOWN 0
112 #define VC_CAP_DAC_OVERRIDE 1
113 #define VC_CAP_DAC_READ_SEARCH 2
114 #define VC_CAP_FOWNER 3
115 #define VC_CAP_FSETID 4
116 #define VC_CAP_KILL 5
117 #define VC_CAP_SETGID 6
118 #define VC_CAP_SETUID 7
119 #define VC_CAP_SETPCAP 8
120 #define VC_CAP_LINUX_IMMUTABLE 9
121 #define VC_CAP_NET_BIND_SERVICE 10
122 #define VC_CAP_NET_BROADCAST 11
123 #define VC_CAP_NET_ADMIN 12
124 #define VC_CAP_NET_RAW 13
125 #define VC_CAP_IPC_LOCK 14
126 #define VC_CAP_IPC_OWNER 15
127 #define VC_CAP_SYS_MODULE 16
128 #define VC_CAP_SYS_RAWIO 17
129 #define VC_CAP_SYS_CHROOT 18
130 #define VC_CAP_SYS_PTRACE 19
131 #define VC_CAP_SYS_PACCT 20
132 #define VC_CAP_SYS_ADMIN 21
133 #define VC_CAP_SYS_BOOT 22
134 #define VC_CAP_SYS_NICE 23
135 #define VC_CAP_SYS_RESOURCE 24
136 #define VC_CAP_SYS_TIME 25
137 #define VC_CAP_SYS_TTY_CONFIG 26
138 #define VC_CAP_MKNOD 27
139 #define VC_CAP_LEASE 28
140 #define VC_CAP_AUDIT_WRITE 29
141 #define VC_CAP_AUDIT_CONTROL 30
143 #define VC_IMMUTABLE_FILE_FL 0x0000010lu
144 #define VC_IMMUTABLE_LINK_FL 0x0808000lu
145 #define VC_IMMUTABLE_ALL (VC_IMMUTABLE_LINK_FL|VC_IMMUTABLE_FILE_FL)
147 #define VC_IATTR_XID 0x01000000u
149 #define VC_IATTR_ADMIN 0x00000001u
150 #define VC_IATTR_WATCH 0x00000002u
151 #define VC_IATTR_HIDE 0x00000004u
152 #define VC_IATTR_FLAGS 0x00000007u
154 #define VC_IATTR_BARRIER 0x00010000u
155 #define VC_IATTR_IUNLINK 0x00020000u
156 #define VC_IATTR_IMMUTABLE 0x00040000u
160 #define VC_VXF_INFO_LOCK 0x00000001ull
161 #define VC_VXF_INFO_NPROC 0x00000004ull
162 #define VC_VXF_INFO_PRIVATE 0x00000008ull
163 #define VC_VXF_INFO_INIT 0x00000010ull
165 #define VC_VXF_INFO_HIDEINFO 0x00000020ull
166 #define VC_VXF_INFO_ULIMIT 0x00000040ull
167 #define VC_VXF_INFO_NAMESPACE 0x00000080ull
169 #define VC_VXF_SCHED_HARD 0x00000100ull
170 #define VC_VXF_SCHED_PRIO 0x00000200ull
171 #define VC_VXF_SCHED_PAUSE 0x00000400ull
172 #define VC_VXF_SCHED_SHARE 0x00000800ull
174 #define VC_VXF_VIRT_MEM 0x00010000ull
175 #define VC_VXF_VIRT_UPTIME 0x00020000ull
176 #define VC_VXF_VIRT_CPU 0x00040000ull
177 #define VC_VXF_VIRT_LOAD 0x00080000ull
179 #define VC_VXF_HIDE_MOUNT 0x01000000ull
180 #define VC_VXF_HIDE_NETIF 0x02000000ull
182 #define VC_VXF_STATE_SETUP (1ULL<<32)
183 #define VC_VXF_STATE_INIT (1ULL<<33)
185 #define VC_VXF_FORK_RSS (1ULL<<48)
186 #define VC_VXF_PROLIFIC (1ULL<<49)
188 #define VC_VXF_IGNEG_NICE (1ULL<<52)
192 #define VC_VXC_SET_UTSNAME 0x00000001ull
193 #define VC_VXC_SET_RLIMIT 0x00000002ull
195 #define VC_VXC_RAW_ICMP 0x00000100ull
196 #define VC_VXC_SYSLOG 0x00001000ull
198 #define VC_VXC_SECURE_MOUNT 0x00010000ull
199 #define VC_VXC_SECURE_REMOUNT 0x00020000ull
200 #define VC_VXC_BINARY_MOUNT 0x00040000ull
202 #define VC_VXC_QUOTA_CTL 0x00100000ull
205 #define VC_VXSM_FILL_RATE 0x0001
206 #define VC_VXSM_INTERVAL 0x0002
207 #define VC_VXSM_TOKENS 0x0010
208 #define VC_VXSM_TOKENS_MIN 0x0020
209 #define VC_VXSM_TOKENS_MAX 0x0040
210 #define VC_VXSM_PRIO_BIAS 0x0100
213 #define VC_BAD_PERSONALITY ((uint_least32_t)(-1))
216 /** \defgroup syscalls Syscall wrappers
217 * Functions which are calling the vserver syscall directly. */
219 /** \defgroup helper Helper functions
220 * Functions which are doing general helper tasks like parameter parsing. */
222 /** \typedef an_unsigned_integer_type xid_t
223 * The identifier of a context. */
226 typedef an_unsigned_integer_type xid_t;
227 typedef an_unsigned_integer_type nid_t;
234 struct vc_ip_mask_pair {
239 /** \brief The generic vserver syscall
242 * This function executes the generic vserver syscall. It uses the
243 * correct syscallnumber (which may differ between the different
246 * \param cmd the command to be executed
247 * \param xid the xid on which the cmd shall be applied
248 * \param data additional arguments; depends on \c cmd
249 * \returns depends on \c cmd; usually, -1 stands for an error
251 int vc_syscall(uint32_t cmd, xid_t xid, void *data);
253 /** \brief Returns the version of the current kernel API.
255 * \returns The versionnumber of the kernel API
257 int vc_get_version();
259 /** \brief Moves current process into a context
262 * Puts current process into context \a ctx, removes the capabilities
263 * given in \a remove_cap and sets \a flags.
265 * \param ctx The new context; special values for are
266 * - VC_SAMECTX which means the current context (just for changing caps and flags)
267 * - VC_DYNAMIC_XID which means the next free context; this value can be used by
268 * ordinary users also
269 * \param remove_cap The linux capabilities which will be \b removed.
270 * \param flags Special flags which will be set.
272 * \returns The new context-id, or VC_NOCTX on errors; \c errno
273 * will be set appropriately
275 * See http://vserver.13thfloor.at/Stuff/Logic.txt for details */
276 xid_t vc_new_s_context(xid_t ctx, unsigned int remove_cap, unsigned int flags);
278 /** \brief Sets the ipv4root information.
280 * \pre \a nb < NB_IPV4ROOT && \a ips != 0 */
281 int vc_set_ipv4root(uint32_t bcast, size_t nb,
282 struct vc_ip_mask_pair const *ips) VC_ATTR_NONNULL((3));
284 /** \brief Returns the value of NB_IPV4ROOT.
287 * This function returns the value of NB_IPV4ROOT which was used when the
288 * library was built, but \b not the value which is used by the currently
290 size_t vc_get_nb_ipv4root() VC_ATTR_CONST VC_ATTR_PURE;
292 /** \brief Creates a context without starting it.
295 * This functions initializes a new context. When already in a freshly
296 * created context, this old context will be discarded.
298 * \param xid The new context; special values are:
299 * - VC_DYNAMIC_XID which means to create a dynamic context
301 * \returns the xid of the created context, or VC_NOCTX on errors. \c errno
302 * will be set appropriately. */
303 xid_t vc_ctx_create(xid_t xid);
305 /** \brief Moves the current process into the specified context.
308 * \param xid The new context
309 * \returns 0 on success, -1 on errors */
310 int vc_ctx_migrate(xid_t xid);
312 /* rlimit related functions */
314 /** \brief The type which is used for a single limit value.
317 * - VC_LIM_INFINITY ... which is the infinite value
318 * - VC_LIM_KEEP ... which is used to mark values which shall not be
319 * modified by the vc_set_rlimit() operation.
321 * Else, the interpretation of the value depends on the corresponding
322 * resource; it might be bytes, pages, seconds or litres of beer. */
323 typedef uint_least64_t vc_limit_t;
325 /** \brief The limits of a resources.
327 * This is a triple consisting of a minimum, soft and hardlimit. */
329 vc_limit_t min; ///< the guaranted minimum of a resources
330 vc_limit_t soft; ///< the softlimit of a resource
331 vc_limit_t hard; ///< the absolute hardlimit of a resource
334 /** \brief Masks describing the supported limits. */
335 struct vc_rlimit_mask {
336 uint_least32_t min; ///< masks the resources supporting a minimum limit
337 uint_least32_t soft; ///< masks the resources supporting a soft limit
338 uint_least32_t hard; ///< masks the resources supporting a hard limit
341 /** \brief Returns the limits of \a resource.
344 * \param xid The id of the context
345 * \param resource The resource which will be queried
346 * \param lim The result which will be filled with the limits
348 * \returns 0 on success, and -1 on errors. */
349 int vc_get_rlimit(xid_t xid, int resource,
350 struct vc_rlimit /*@out@*/ *lim) VC_ATTR_NONNULL((3));
351 /** \brief Sets the limits of \a resource.
354 * \param xid The id of the context
355 * \param resource The resource which will be queried
356 * \param lim The new limits
358 * \returns 0 on success, and -1 on errors. */
359 int vc_set_rlimit(xid_t xid, int resource,
360 struct vc_rlimit const /*@in@*/ *lim) VC_ATTR_NONNULL((3));
361 int vc_get_rlimit_mask(xid_t xid,
362 struct vc_rlimit_mask *lim) VC_ATTR_NONNULL((2));
363 /** \brief Parses a string describing a limit
366 * This function parses \a str and interprets special words like \p "inf"
367 * or suffixes. Valid suffixes are
373 * \param str The string which shall be parsed
374 * \param res Will be filled with the interpreted value; in errorcase,
375 * this value is undefined.
377 * \returns \a true, iff the string \a str could be parsed. \a res will
378 * be filled with the interpreted value in this case.
380 * \pre \a str!=0 && \a res!=0
382 bool vc_parseLimit(char const /*@in@*/ *str, vc_limit_t /*@out@*/ *res) VC_ATTR_NONNULL((1,2));
385 /** \brief Sends a signal to a context/pid
388 * Special values for \a pid are:
389 * - -1 which means every process in ctx except the init-process
390 * - 0 which means every process in ctx inclusive the init-process */
391 int vc_ctx_kill(xid_t ctx, pid_t pid, int sig);
398 nid_t vc_get_task_nid(pid_t pid);
399 int vc_get_nx_info(nid_t nid, struct vc_nx_info *) VC_ATTR_NONNULL((2));
401 typedef enum { vcNET_IPV4, vcNET_IPV6, vcNET_IPV4R, vcNET_IPV6R } vc_net_nx_type;
410 nid_t vc_net_create(nid_t nid);
411 int vc_net_migrate(nid_t nid);
413 int vc_net_add(nid_t nid, struct vc_net_nx const *info);
414 int vc_net_remove(nid_t nid, struct vc_net_nx const *info);
416 struct vc_net_flags {
417 uint_least64_t flagword;
421 int vc_get_nflags(nid_t, struct vc_net_flags *);
422 int vc_set_nflags(nid_t, struct vc_net_flags const *);
426 uint_least64_t ncaps;
427 uint_least64_t cmask;
430 int vc_get_ncaps(nid_t, struct vc_net_caps *);
431 int vc_set_ncaps(nid_t, struct vc_net_caps const *);
436 int vc_set_iattr(char const *filename, xid_t xid,
437 uint_least32_t flags, uint_least32_t mask) VC_ATTR_NONNULL((1));
439 /** \brief Returns information about attributes and assigned context of a file.
442 * This function returns the VC_IATTR_XXX flags and about the assigned
443 * context of a file. To request an information, the appropriate bit in
444 * \c mask must be set and the corresponding parameter (\a xid or \a
445 * flags) must not be NULL.
447 * E.g. to receive the assigned context, the \c VC_IATTR_XID bit must be
448 * set in \a mask, and \a xid must point to valid memory.
450 * Possible flags are \c VC_IATTR_ADMIN, \c VC_IATTR_WATCH , \c VC_IATTR_HIDE,
451 * \c VC_IATTR_BARRIER, \c VC_IATTR_IUNLINK and \c VC_IATTR_IMMUTABLE.
453 * \param filename The name of the file whose attributes shall be determined.
455 * \param xid When non-zero and the VC_IATTR_XID bit is set in \a mask,
456 * the assigned context of \a filename will be stored there.
457 * \param flags When non-zero, a bitmask of current attributes will be
458 * stored there. These attributes must be requested explicitly
459 * by setting the appropriate bit in \a mask
460 * \param mask Points to a bitmask which tells which attributes shall be
461 * determined. On return, it will masquerade the attributes
462 * which were determined.
464 * \pre mask!=0 && !((*mask&VC_IATTR_XID) && xid==0) && !((*mask&~VC_IATTR_XID) && flags==0) */
465 int vc_get_iattr(char const *filename, xid_t * /*@null@*/ xid,
466 uint_least32_t * /*@null@*/ flags,
467 uint_least32_t * /*@null@*/ mask) VC_ATTR_NONNULL((1));
474 /** \brief Returns the context of the given process.
477 * \param pid the process-id whose xid shall be determined;
478 * pid==0 means the current process.
479 * \returns the xid of process \c pid or -1 on errors
481 xid_t vc_get_task_xid(pid_t pid);
482 int vc_get_vx_info(xid_t xid, struct vc_vx_info *info) VC_ATTR_NONNULL((2));
485 typedef enum { vcVHI_CONTEXT, vcVHI_SYSNAME, vcVHI_NODENAME,
486 vcVHI_RELEASE, vcVHI_VERSION, vcVHI_MACHINE,
487 vcVHI_DOMAINNAME } vc_uts_type;
489 int vc_set_vhi_name(xid_t xid, vc_uts_type type,
490 char const *val, size_t len) VC_ATTR_NONNULL((3));
491 int vc_get_vhi_name(xid_t xid, vc_uts_type type,
492 char *val, size_t len) VC_ATTR_NONNULL((3));
494 /** Returns true iff \a xid is a dynamic xid */
495 bool vc_is_dynamic_xid(xid_t xid);
497 int vc_enter_namespace(xid_t xid);
498 int vc_set_namespace();
499 int vc_cleanup_namespace();
502 /** \brief Flags of process-contexts
504 struct vc_ctx_flags {
505 /** \brief Mask of set context flags */
506 uint_least64_t flagword;
507 /** \brief Mask of set and unset context flags when used by set
508 * operations, or modifiable flags when used by get
513 /** \brief Capabilities of process-contexts */
515 /** \brief Mask of set common system capabilities */
516 uint_least64_t bcaps;
517 /** \brief Mask of set and unset common system capabilities when used by
518 * set operations, or the modifiable capabilities when used by
520 uint_least64_t bmask;
521 /** \brief Mask of set process context capabilities */
522 uint_least64_t ccaps;
523 /** \brief Mask of set and unset process context capabilities when used
524 * by set operations, or the modifiable capabilities when used
525 * by get operations */
526 uint_least64_t cmask;
529 /** \brief Information about parsing errors
532 struct vc_err_listparser {
533 char const *ptr; ///< Pointer to the first character of an erroneous string
534 size_t len; ///< Length of the erroneous string
537 int vc_get_cflags(xid_t xid, struct vc_ctx_flags *) VC_ATTR_NONNULL((2));
538 int vc_set_cflags(xid_t xid, struct vc_ctx_flags const *) VC_ATTR_NONNULL((2));
540 int vc_get_ccaps(xid_t xid, struct vc_ctx_caps *);
541 int vc_set_ccaps(xid_t xid, struct vc_ctx_caps const *);
543 /** \brief Converts a single string into bcapability
546 * \param str The string to be parsed;
547 * both "CAP_xxx" and "xxx" will be accepted
548 * \param len The length of the string, or \c 0 for automatic detection
550 * \returns 0 on error; a bitmask on success
553 uint_least64_t vc_text2bcap(char const *str, size_t len);
555 /** \brief Converts the lowest bit of a bcapability or the entire value
556 * (when possible) to a textual representation
559 * \param val The string to be converted; on success, the detected bit(s)
560 * will be unset, in errorcase only the lowest set bit
562 * \returns A textual representation of \a val resp. of its lowest set bit;
563 * or \c NULL in errorcase.
565 * \post \a *val<sub>old</sub> \c != 0 \c <-->
566 * \a *val<sub>old</sub> > \a *val<sub>new</sub>
567 * \post \a *val<sub>old</sub> \c == 0 \c ---> \a result == 0
569 char const * vc_lobcap2text(uint_least64_t *val) VC_ATTR_NONNULL((1));
571 /** \brief Converts a string into a bcapability-bitmask
574 * Syntax of \a str: \verbinclude list2xxx.syntax
576 * When the \c `~' prefix is used, the bits will be unset and a `~' after
577 * another `~' will cancel both ones. The \c `^' prefix specifies a
578 * bitnumber instead of a bitmask.
580 * "literal name" is everything which will be accepted by the
581 * vc_text2bcap() function. The special values for \c NAME will be
582 * recognized case insensitively
584 * \param str The string to be parsed
585 * \param len The length of the string, or \c 0 for automatic detection
586 * \param err Pointer to a structure for error-information, or \c NULL.
587 * \param cap Pointer to a vc_ctx_caps structure holding the results;
588 * only the \a bcaps and \a bmask fields will be changed and
589 * already set values will not be honored. When an error
590 * occured, \a cap will have the value of all processed valid
593 * \returns 0 on success, -1 on error. In error case, \a err will hold
594 * position and length of the first not understood BCAP part
595 * \pre \a str != 0 && \a cap != 0;
596 * \a cap->bcaps and \a cap->bmask must be initialized
598 int vc_list2bcap(char const *str, size_t len,
599 struct vc_err_listparser *err,
600 struct vc_ctx_caps *cap) VC_ATTR_NONNULL((1,4));
602 uint_least64_t vc_text2ccap(char const *, size_t len);
603 char const * vc_loccap2text(uint_least64_t *);
604 int vc_list2ccap(char const *, size_t len,
605 struct vc_err_listparser *err,
606 struct vc_ctx_caps *);
608 int vc_list2cflag(char const *, size_t len,
609 struct vc_err_listparser *err,
610 struct vc_ctx_flags *flags);
611 uint_least64_t vc_text2cflag(char const *, size_t len);
612 char const * vc_locflag2text(uint_least64_t *);
614 uint_least32_t vc_list2cflag_compat(char const *, size_t len,
615 struct vc_err_listparser *err);
616 uint_least32_t vc_text2cflag_compat(char const *, size_t len);
617 char const * vc_hicflag2text_compat(uint_least32_t);
619 int vc_text2cap(char const *);
620 char const * vc_cap2text(unsigned int);
623 int vc_list2nflag(char const *, size_t len,
624 struct vc_err_listparser *err,
625 struct vc_net_flags *flags);
626 uint_least64_t vc_text2nflag(char const *, size_t len);
627 char const * vc_lonflag2text(uint_least64_t *);
629 uint_least64_t vc_text2ncap(char const *, size_t len);
630 char const * vc_loncap2text(uint_least64_t *);
631 int vc_list2ncap(char const *, size_t len,
632 struct vc_err_listparser *err,
633 struct vc_net_caps *);
635 uint_least64_t vc_get_insecurebcaps() VC_ATTR_CONST;
636 inline static uint_least64_t vc_get_insecureccaps() {
637 return ~(VC_VXC_SET_UTSNAME|VC_VXC_RAW_ICMP);
640 inline static int vc_setfilecontext(char const *filename, xid_t xid) {
641 return vc_set_iattr(filename, xid, 0, VC_IATTR_XID);
645 uint_least32_t vc_text2personalityflag(char const *str,
646 size_t len) VC_ATTR_NONNULL((1));
648 char const * vc_lopersonality2text(uint_least32_t *) VC_ATTR_NONNULL((1));
650 int vc_list2personalityflag(char const /*@in@*/ *,
652 uint_least32_t /*@out@*/ *personality,
653 struct vc_err_listparser /*@out@*/ *err) VC_ATTR_NONNULL((1,3));
655 uint_least32_t vc_str2personalitytype(char const /*@in@*/*,
656 size_t len) VC_ATTR_NONNULL((1));
658 /** \brief Returns the context of \c filename
661 * This function calls vc_get_iattr() with appropriate arguments to
662 * determine the context of \c filename. In error-case or when no context
663 * is assigned, \c VC_NOCTX will be returned. To differ between both cases,
664 * \c errno must be examined.
666 * \b WARNING: this function can modify \c errno although no error happened.
668 * \param filename The file to check
669 * \returns The assigned context, or VC_NOCTX when an error occured or no
670 * such assignment exists. \c errno will be 0 in the latter case */
671 xid_t vc_getfilecontext(char const *filename) VC_ATTR_NONNULL((1));
674 struct vc_set_sched {
675 uint_least32_t set_mask;
676 int_least32_t fill_rate;
677 int_least32_t interval;
678 int_least32_t tokens;
679 int_least32_t tokens_min;
680 int_least32_t tokens_max;
681 int_least32_t priority_bias;
684 int vc_set_sched(xid_t xid, struct vc_set_sched const *);
687 struct vc_ctx_dlimit {
688 uint_least32_t space_used;
689 uint_least32_t space_total;
690 uint_least32_t inodes_used;
691 uint_least32_t inodes_total;
692 uint_least32_t reserved;
696 /** Add a disk limit to a file system. */
697 int vc_add_dlimit(char const *filename, xid_t xid,
698 uint_least32_t flags) VC_ATTR_NONNULL((1));
699 /** Remove a disk limit from a file system. */
700 int vc_rem_dlimit(char const *filename, xid_t xid,
701 uint_least32_t flags) VC_ATTR_NONNULL((1));
703 /** Set a disk limit. */
704 int vc_set_dlimit(char const *filename, xid_t xid,
705 uint_least32_t flags,
706 struct vc_ctx_dlimit const *limits) VC_ATTR_NONNULL((1,4));
707 /** Get a disk limit. */
708 int vc_get_dlimit(char const *filename, xid_t xid,
709 uint_least32_t flags,
710 struct vc_ctx_dlimit *limits) VC_ATTR_NONNULL((1));
712 /** \brief Waits for the end of a context
715 int vc_wait_exit(xid_t xid);
717 typedef enum { vcFEATURE_VKILL, vcFEATURE_IATTR, vcFEATURE_RLIMIT,
718 vcFEATURE_COMPAT, vcFEATURE_MIGRATE, vcFEATURE_NAMESPACE,
719 vcFEATURE_SCHED, vcFEATURE_VINFO, vcFEATURE_VHI,
720 vcFEATURE_VSHELPER0, vcFEATURE_VSHELPER, vcFEATURE_VWAIT }
723 bool vc_isSupported(vcFeatureSet) VC_ATTR_CONST;
724 bool vc_isSupportedString(char const *);
727 typedef enum { vcTYPE_INVALID, vcTYPE_MAIN, vcTYPE_WATCH,
728 vcTYPE_STATIC, vcTYPE_DYNAMIC }
731 vcXidType vc_getXIDType(xid_t xid) VC_ATTR_CONST;
733 /* The management part */
735 #define VC_LIMIT_VSERVER_NAME_LEN 1024
737 typedef enum { vcCFG_NONE, vcCFG_AUTO,
740 vcCFG_RECENT_FULL } vcCfgStyle;
743 /** Maps an xid given at '--xid' options to an xid_t */
744 xid_t vc_xidopt2xid(char const *, bool honor_static, char const **err_info);
746 vcCfgStyle vc_getVserverCfgStyle(char const *id);
748 /** Resolves the name of the vserver. The result will be allocated and must
749 be freed by the caller. */
750 char * vc_getVserverName(char const *id, vcCfgStyle style);
752 /** Returns the path of the vserver configuration directory. When the given
753 * vserver does not exist, or when it does not have such a directory, NULL
754 * will be returned. Else, the result will be allocated and must be freed
756 char * vc_getVserverCfgDir(char const *id, vcCfgStyle style);
758 /** Returns the path of the configuration directory for the given
759 * application. The result will be allocated and must be freed by the
761 char * vc_getVserverAppDir(char const *id, vcCfgStyle style, char const *app);
763 /** Returns the path to the vserver root-directory. The result will be
764 * allocated and must be freed by the caller. */
765 char * vc_getVserverVdir(char const *id, vcCfgStyle style, bool physical);
767 /** Returns the ctx of the given vserver. When vserver is not running and
768 * 'honor_static' is false, VC_NOCTX will be returned. Else, when
769 * 'honor_static' is true and a static assignment exists, those value will
770 * be returned. Else, the result will be VC_NOCTX.
772 * When 'is_running' is not null, the status of the vserver will be
773 * assigned to this variable. */
774 xid_t vc_getVserverCtx(char const *id, vcCfgStyle style,
775 bool honor_static, bool /*@null@*/ *is_running);
777 /** Resolves the cfg-path of the vserver owning the given ctx. 'revdir' will
778 be used as the directory holding the mapping-links; when NULL, the
779 default value will be assumed. The result will be allocated and must be
780 freed by the caller. */
781 char * vc_getVserverByCtx(xid_t ctx, /*@null@*/vcCfgStyle *style,
782 /*@null@*/char const *revdir);
784 #define vcSKEL_INTERFACES 1u
785 #define vcSKEL_PKGMGMT 2u
786 #define vcSKEL_FILESYSTEM 4u
788 /** Create a basic configuration skeleton for a vserver plus toplevel
789 * directories for pkgmanagemt and filesystem (when requested). */
790 int vc_createSkeleton(char const *id, vcCfgStyle style, int flags);
798 #undef VC_ATTR_ALWAYSINLINE
799 #undef VC_ATTR_NORETURN
800 #undef VC_ATTR_UNUSED
801 #undef VC_ATTR_NONNULL