UID/GID remapping support

h56983577 · bergwolf · commit 7cb2f01d7f68 · 2023-10-25T17:46:14.000+08:00
Once ID mapping is configured, the VFS layer remaps the external IDs in context to internal IDs and remaps the internal IDs in entries back to external IDs.

Signed-off-by: HanZiyao &lt;h56983577@126.com&gt;
diff --git a/src/api/filesystem/sync_io.rs b/src/api/filesystem/sync_io.rs
@@ -896,6 +896,11 @@ pub trait FileSystem {
     fn notify_reply(&self) -> io::Result<()> {
         Err(io::Error::from_raw_os_error(libc::ENOSYS))
     }
+
+    /// Remap the external IDs in context to internal IDs.
+    fn id_remap(&self, ctx: &mut Context) -> io::Result<()> {
+        Ok(())
+    }
 }
 
 impl<FS: FileSystem> FileSystem for Arc<FS> {
@@ -1341,4 +1346,9 @@ impl<FS: FileSystem> FileSystem for Arc<FS> {
     fn notify_reply(&self) -> io::Result<()> {
         self.deref().notify_reply()
     }
+
+    #[inline]
+    fn id_remap(&self, ctx: &mut Context) -> io::Result<()> {
+        self.deref().id_remap(ctx)
+    }
 }
diff --git a/src/api/server/sync_io.rs b/src/api/server/sync_io.rs
@@ -72,6 +72,9 @@ impl<F: FileSystem + Sync> Server<F> {
     ) -> Result<usize> {
         let in_header: InHeader = r.read_obj().map_err(Error::DecodeMessage)?;
         let mut ctx = SrvContext::<F, S>::new(in_header, r, w);
+        self.fs
+            .id_remap(&mut ctx.context)
+            .map_err(|e| Error::FailedToRemapID((ctx.context.uid, ctx.context.gid)))?;
         if ctx.in_header.len > (MAX_BUFFER_SIZE + BUFFER_HEADER_SIZE) {
             if in_header.opcode == Opcode::Forget as u32
                 || in_header.opcode == Opcode::BatchForget as u32
diff --git a/src/api/vfs/mod.rs b/src/api/vfs/mod.rs
@@ -242,6 +242,10 @@ pub struct VfsOptions {
     pub in_opts: FsOptions,
     /// File system options returned to client
     pub out_opts: FsOptions,
+    /// Declaration of ID mapping, in the format (internal ID, external ID, range).
+    /// For example, (0, 1, 65536) represents mapping the external UID/GID range of `1~65536`
+    /// to the range of `0~65535` within the filesystem.
+    pub id_mapping: (u32, u32, u32),
 }
 
 impl VfsOptions {
@@ -277,6 +281,7 @@ impl Default for VfsOptions {
                 | FsOptions::ZERO_MESSAGE_OPENDIR
                 | FsOptions::HANDLE_KILLPRIV_V2
                 | FsOptions::PERFILE_DAX,
+            id_mapping: (0, 0, 0),
         }
     }
 }
@@ -293,6 +298,7 @@ pub struct Vfs {
     initialized: AtomicBool,
     lock: Mutex<()>,
     remove_pseudo_root: bool,
+    id_mapping: Option<(u32, u32, u32)>,
 }
 
 impl Default for Vfs {
@@ -313,6 +319,10 @@ impl Vfs {
             lock: Mutex::new(()),
             initialized: AtomicBool::new(false),
             remove_pseudo_root: false,
+            id_mapping: match opts.id_mapping.2 {
+                0 => None,
+                _ => Some(opts.id_mapping),
+            },
         }
     }
 
@@ -501,10 +511,54 @@ impl Vfs {
         self.convert_inode(fs_idx, inode).map(|ino| {
             entry.inode = ino;
             entry.attr.st_ino = ino;
+            // If id_mapping is enabled, map the internal ID to the external ID.
+            if let Some((internal_id, external_id, range)) = self.id_mapping {
+                if entry.attr.st_uid >= internal_id && entry.attr.st_uid < internal_id + range {
+                    entry.attr.st_uid += external_id - internal_id;
+                }
+                if entry.attr.st_gid >= internal_id && entry.attr.st_gid < internal_id + range {
+                    entry.attr.st_gid += external_id - internal_id;
+                }
+            }
             *entry
         })
     }
 
+    /// If id_mapping is enabled, remap the uid/gid in attributes.
+    ///
+    /// If `map_internal_to_external` is true, the IDs inside VFS will be mapped
+    /// to external IDs.
+    /// If `map_internal_to_external` is false, the external IDs will be mapped
+    /// to VFS internal IDs.
+    fn remap_attr_id(&self, map_internal_to_external: bool, attr: &mut stat64) {
+        if let Some((internal_id, external_id, range)) = self.id_mapping {
+            if map_internal_to_external
+                && attr.st_uid >= internal_id
+                && attr.st_uid < internal_id + range
+            {
+                attr.st_uid += external_id - internal_id;
+            }
+            if map_internal_to_external
+                && attr.st_gid >= internal_id
+                && attr.st_gid < internal_id + range
+            {
+                attr.st_gid += external_id - internal_id;
+            }
+            if !map_internal_to_external
+                && attr.st_uid >= external_id
+                && attr.st_uid < external_id + range
+            {
+                attr.st_uid += internal_id - external_id;
+            }
+            if !map_internal_to_external
+                && attr.st_gid >= external_id
+                && attr.st_gid < external_id + range
+            {
+                attr.st_gid += internal_id - external_id;
+            }
+        }
+    }
+
     fn allocate_fs_idx(&self) -> Result<VfsIndex> {
         let superblocks = self.superblocks.load().deref().deref().clone();
         let start = self.next_super.load(Ordering::SeqCst);
diff --git a/src/api/vfs/sync_io.rs b/src/api/vfs/sync_io.rs
@@ -1,6 +1,8 @@
 // Copyright 2020 Ant Financial. All rights reserved.
 // SPDX-License-Identifier: Apache-2.0
 
+use std::sync::Arc;
+
 use super::*;
 use crate::abi::fuse_abi::{stat64, statvfs64};
 #[cfg(any(feature = "vhost-user-fs", feature = "virtiofs"))]
@@ -116,6 +118,7 @@ impl FileSystem for Vfs {
                 fs.getattr(ctx, idata.ino(), handle)
                     .map(|(mut attr, duration)| {
                         attr.st_ino = idata.into();
+                        self.remap_attr_id(true, &mut attr);
                         (attr, duration)
                     })
             }
@@ -133,9 +136,12 @@ impl FileSystem for Vfs {
         match self.get_real_rootfs(inode)? {
             (Left(fs), idata) => fs.setattr(ctx, idata.ino(), attr, handle, valid),
             (Right(fs), idata) => {
+                let mut attr = attr;
+                self.remap_attr_id(false, &mut attr);
                 fs.setattr(ctx, idata.ino(), attr, handle, valid)
                     .map(|(mut attr, duration)| {
                         attr.st_ino = idata.into();
+                        self.remap_attr_id(true, &mut attr);
                         (attr, duration)
                     })
             }
@@ -610,6 +616,7 @@ impl FileSystem for Vfs {
                     dir_entry.ino = self.convert_inode(idata.fs_idx(), entry.inode)?;
                     entry.inode = dir_entry.ino;
                     entry.attr.st_ino = entry.inode;
+                    self.remap_attr_id(true, &mut entry.attr);
                     add_entry(dir_entry, entry)
                 },
             ),
@@ -637,6 +644,21 @@ impl FileSystem for Vfs {
         }
     }
 
+    #[inline]
+    fn id_remap(&self, ctx: &mut Context) -> Result<()> {
+        // If id_mapping is enabled, map the external ID to the internal ID.
+        if let Some((internal_id, external_id, range)) = self.id_mapping {
+            if ctx.uid >= external_id && ctx.uid < external_id + range {
+                ctx.uid += internal_id - external_id;
+            }
+            if ctx.gid >= external_id && ctx.gid < external_id + range {
+                ctx.gid += internal_id - external_id;
+            }
+        }
+
+        Ok(())
+    }
+
     #[cfg(any(feature = "vhost-user-fs", feature = "virtiofs"))]
     fn setupmapping(
         &self,
diff --git a/src/lib.rs b/src/lib.rs
@@ -80,6 +80,8 @@ pub enum Error {
     FailedToWrite(io::Error),
     /// Failed to split a writer.
     FailedToSplitWriter(transport::Error),
+    /// Failed to remap uid/gid.
+    FailedToRemapID((u32, u32)),
 }
 
 impl error::Error for Error {}
@@ -101,6 +103,10 @@ impl fmt::Display for Error {
             InvalidMessage(err) => write!(f, "cannot process fuse message: {err}"),
             FailedToWrite(err) => write!(f, "cannot write to buffer: {err}"),
             FailedToSplitWriter(err) => write!(f, "cannot split a writer: {err}"),
+            FailedToRemapID((uid, gid)) => write!(
+                f,
+                "failed to remap the context of user (uid={uid}, gid={gid})."
+            ),
         }
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -896,6 +896,11 @@ pub trait FileSystem {`
`896`	`896`	`fn notify_reply(&self) -> io::Result<()> {`
`897`	`897`	`Err(io::Error::from_raw_os_error(libc::ENOSYS))`
`898`	`898`	`}`
	`899`	`+`
	`900`	`+ /// Remap the external IDs in context to internal IDs.`
	`901`	`+ fn id_remap(&self, ctx: &mut Context) -> io::Result<()> {`
	`902`	`+ Ok(())`
	`903`	`+ }`
`899`	`904`	`}`
`900`	`905`
`901`	`906`	`impl<FS: FileSystem> FileSystem for Arc<FS> {`
`@@ -1341,4 +1346,9 @@ impl<FS: FileSystem> FileSystem for Arc<FS> {`
`1341`	`1346`	`fn notify_reply(&self) -> io::Result<()> {`
`1342`	`1347`	`self.deref().notify_reply()`
`1343`	`1348`	`}`
	`1349`	`+`
	`1350`	`+ #[inline]`
	`1351`	`+ fn id_remap(&self, ctx: &mut Context) -> io::Result<()> {`
	`1352`	`+ self.deref().id_remap(ctx)`
	`1353`	`+ }`
`1344`	`1354`	`}`
Original file line number	Diff line number	Diff line change
`@@ -80,6 +80,8 @@ pub enum Error {`
`80`	`80`	`FailedToWrite(io::Error),`
`81`	`81`	`/// Failed to split a writer.`
`82`	`82`	`FailedToSplitWriter(transport::Error),`
	`83`	`+ /// Failed to remap uid/gid.`
	`84`	`+ FailedToRemapID((u32, u32)),`
`83`	`85`	`}`
`84`	`86`
`85`	`87`	`impl error::Error for Error {}`
`@@ -101,6 +103,10 @@ impl fmt::Display for Error {`
`101`	`103`	`InvalidMessage(err) => write!(f, "cannot process fuse message: {err}"),`
`102`	`104`	`FailedToWrite(err) => write!(f, "cannot write to buffer: {err}"),`
`103`	`105`	`FailedToSplitWriter(err) => write!(f, "cannot split a writer: {err}"),`
	`106`	`+ FailedToRemapID((uid, gid)) => write!(`
	`107`	`+ f,`
	`108`	`+ "failed to remap the context of user (uid={uid}, gid={gid})."`
	`109`	`+ ),`
`104`	`110`	`}`
`105`	`111`	`}`
`106`	`112`	`}`