fractal-fuse 0.4.0

Async FUSE library using io_uring (FUSE_OVER_IO_URING) and compio runtime for high-performance userspace filesystems on Linux 6.14+
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224

use std::ffi::OsString;
use std::io::{self, IoSliceMut};
use std::os::fd::{AsRawFd, FromRawFd, OwnedFd, RawFd};
use std::path::Path;
use std::process::Command;

use nix::sys::socket::{self, AddressFamily, ControlMessageOwned, MsgFlags, SockFlag, SockType};
use tracing::debug;

fn find_fusermount3() -> io::Result<std::path::PathBuf> {
    which::which("fusermount3")
        .map_err(|err| io::Error::other(format!("find fusermount3 binary failed {err:?}")))
}

/// Mount a FUSE filesystem using fusermount3 (unprivileged mount).
/// Returns the /dev/fuse file descriptor.
pub fn fusermount(mount_options: &MountOptions, mount_path: &Path) -> io::Result<OwnedFd> {
    let (sock0, sock1) = socket::socketpair(
        AddressFamily::Unix,
        SockType::SeqPacket,
        None,
        SockFlag::empty(),
    )
    .map_err(io::Error::from)?;

    let binary_path = find_fusermount3()?;

    let options = build_mount_options(mount_options);
    debug!("mount options {:?}", options);

    let mount_path_os = mount_path.as_os_str().to_os_string();
    let fd0 = sock0.as_raw_fd();

    let status = Command::new(binary_path)
        .env("_FUSE_COMMFD", fd0.to_string())
        .args([OsString::from("-o"), options, mount_path_os])
        .status()?;

    if !status.success() {
        return Err(io::Error::other("fusermount3 failed"));
    }

    let fd1 = sock1.as_raw_fd();
    let fuse_fd = receive_fuse_fd(fd1)?;

    Ok(unsafe { OwnedFd::from_raw_fd(fuse_fd) })
}

/// Unmount a FUSE filesystem.
pub fn fusermount_unmount(mount_path: &Path) -> io::Result<()> {
    let binary_path = find_fusermount3()?;

    let status = Command::new(binary_path)
        .arg("-u")
        .arg(mount_path.as_os_str())
        .status()?;

    if !status.success() {
        return Err(io::Error::other("fusermount3 -u failed"));
    }

    Ok(())
}

fn receive_fuse_fd(sock_fd: RawFd) -> io::Result<RawFd> {
    let mut buf = vec![];
    let mut cmsg_buf = nix::cmsg_space!([RawFd; 1]);
    let mut bufs = [IoSliceMut::new(&mut buf)];

    let msg = socket::recvmsg::<()>(sock_fd, &mut bufs, Some(&mut cmsg_buf), MsgFlags::empty())
        .map_err(io::Error::from)?;

    if let Some(ControlMessageOwned::ScmRights(fds)) = msg.cmsgs().map_err(io::Error::from)?.next()
    {
        if fds.is_empty() {
            return Err(io::Error::other("no fuse fd received"));
        }
        Ok(fds[0])
    } else {
        Err(io::Error::other("failed to receive fuse fd"))
    }
}

fn build_mount_options(opts: &MountOptions) -> OsString {
    let mut parts = vec![
        format!(
            "user_id={}",
            opts.uid.unwrap_or_else(|| unsafe { libc::getuid() })
        ),
        format!(
            "group_id={}",
            opts.gid.unwrap_or_else(|| unsafe { libc::getgid() })
        ),
        format!("rootmode={}", opts.rootmode.unwrap_or(40000)),
        format!("fsname={}", opts.fs_name.as_deref().unwrap_or("fuse")),
    ];

    if opts.allow_root {
        parts.push("allow_root".to_string());
    }
    if opts.allow_other {
        parts.push("allow_other".to_string());
    }
    if opts.read_only {
        parts.push("ro".to_string());
    }
    if opts.default_permissions {
        parts.push("default_permissions".to_string());
    }

    let mut options = OsString::from(parts.join(","));

    if let Some(custom) = &opts.custom_options {
        options.push(",");
        options.push(custom);
    }

    options
}

/// Mount options for a FUSE filesystem.
#[derive(Debug, Clone, Default)]
pub struct MountOptions {
    pub allow_other: bool,
    pub allow_root: bool,
    pub default_permissions: bool,
    pub read_only: bool,
    pub fs_name: Option<String>,
    pub uid: Option<u32>,
    pub gid: Option<u32>,
    pub rootmode: Option<u32>,
    pub custom_options: Option<OsString>,
    pub dont_mask: bool,
    pub no_open_support: bool,
    pub no_open_dir_support: bool,
    pub handle_killpriv: bool,
    pub write_back: bool,
    pub force_readdir_plus: bool,
    pub passthrough: bool,
    /// Advertise FUSE_POSIX_LOCKS so the kernel routes fcntl(F_SETLK)
    /// requests to the userspace `getlk`/`setlk` handlers. Leave off
    /// unless the [`Filesystem`](crate::Filesystem) impl actually
    /// implements them; otherwise the kernel's local-only lock fallback
    /// is preferable to userspace ENOSYS.
    pub posix_locks: bool,
    /// Same gate for `FUSE_FLOCK_LOCKS` -> the `flock` handler.
    pub flock_locks: bool,
}

impl MountOptions {
    pub fn new() -> Self {
        Self::default()
    }

    pub fn fs_name(mut self, name: impl Into<String>) -> Self {
        self.fs_name = Some(name.into());
        self
    }

    pub fn allow_other(mut self, allow: bool) -> Self {
        self.allow_other = allow;
        self
    }

    pub fn allow_root(mut self, allow: bool) -> Self {
        self.allow_root = allow;
        self
    }

    pub fn read_only(mut self, ro: bool) -> Self {
        self.read_only = ro;
        self
    }

    pub fn default_permissions(mut self, dp: bool) -> Self {
        self.default_permissions = dp;
        self
    }

    pub fn dont_mask(mut self, dm: bool) -> Self {
        self.dont_mask = dm;
        self
    }

    pub fn no_open_support(mut self, nos: bool) -> Self {
        self.no_open_support = nos;
        self
    }

    pub fn no_open_dir_support(mut self, nos: bool) -> Self {
        self.no_open_dir_support = nos;
        self
    }

    pub fn write_back(mut self, wb: bool) -> Self {
        self.write_back = wb;
        self
    }

    pub fn force_readdir_plus(mut self, rdp: bool) -> Self {
        self.force_readdir_plus = rdp;
        self
    }

    pub fn passthrough(mut self, pt: bool) -> Self {
        self.passthrough = pt;
        self
    }

    pub fn posix_locks(mut self, pl: bool) -> Self {
        self.posix_locks = pl;
        self
    }

    pub fn flock_locks(mut self, fl: bool) -> Self {
        self.flock_locks = fl;
        self
    }

    pub fn custom_options(mut self, opts: impl Into<OsString>) -> Self {
        self.custom_options = Some(opts.into());
        self
    }
}