]> git.proxmox.com Git - mirror_ubuntu-eoan-kernel.git/blame - fs/xfs/quota/xfs_qm.c
projects / mirror_ubuntu-eoan-kernel.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
[XFS] Makes more sense to use the fsxattr interface instead of adding new
[mirror_ubuntu-eoan-kernel.git] / fs / xfs / quota / xfs_qm.c
CommitLineData
1da177e4
LT		 1/*
2 * Copyright (c) 2000-2004 Silicon Graphics, Inc. All Rights Reserved.
3 *
4 * This program is free software; you can redistribute it and/or modify it
5 * under the terms of version 2 of the GNU General Public License as
6 * published by the Free Software Foundation.
7 *
8 * This program is distributed in the hope that it would be useful, but
9 * WITHOUT ANY WARRANTY; without even the implied warranty of
10 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
11 *
12 * Further, this software is distributed without any warranty that it is
13 * free of the rightful claim of any third person regarding infringement
14 * or the like. Any license provided herein, whether implied or
15 * otherwise, applies only to this software file. Patent licenses, if
16 * any, provided herein do not apply to combinations of this program with
17 * other software, or any other product whatsoever.
18 *
19 * You should have received a copy of the GNU General Public License along
20 * with this program; if not, write the Free Software Foundation, Inc., 59
21 * Temple Place - Suite 330, Boston MA 02111-1307, USA.
22 *
23 * Contact information: Silicon Graphics, Inc., 1600 Amphitheatre Pkwy,
24 * Mountain View, CA 94043, or:
25 *
26 * http://www.sgi.com
27 *
28 * For further information regarding this notice, see:
29 *
30 * http://oss.sgi.com/projects/GenInfo/SGIGPLNoticeExplan/
31 */
32
33#include "xfs.h"
34#include "xfs_fs.h"
35#include "xfs_inum.h"
36#include "xfs_log.h"
37#include "xfs_clnt.h"
38#include "xfs_trans.h"
39#include "xfs_sb.h"
40#include "xfs_ag.h"
41#include "xfs_dir.h"
42#include "xfs_dir2.h"
43#include "xfs_alloc.h"
44#include "xfs_dmapi.h"
45#include "xfs_quota.h"
46#include "xfs_mount.h"
47#include "xfs_alloc_btree.h"
48#include "xfs_bmap_btree.h"
49#include "xfs_ialloc_btree.h"
50#include "xfs_btree.h"
51#include "xfs_ialloc.h"
52#include "xfs_attr_sf.h"
53#include "xfs_dir_sf.h"
54#include "xfs_dir2_sf.h"
55#include "xfs_dinode.h"
56#include "xfs_inode.h"
57#include "xfs_bmap.h"
58#include "xfs_bit.h"
59#include "xfs_rtalloc.h"
60#include "xfs_error.h"
61#include "xfs_itable.h"
62#include "xfs_rw.h"
63#include "xfs_acl.h"
64#include "xfs_cap.h"
65#include "xfs_mac.h"
66#include "xfs_attr.h"
67#include "xfs_buf_item.h"
68#include "xfs_trans_space.h"
69#include "xfs_utils.h"
70
71#include "xfs_qm.h"
72
73/*
74 * The global quota manager. There is only one of these for the entire
75 * system, _not_ one per file system. XQM keeps track of the overall
76 * quota functionality, including maintaining the freelist and hash
77 * tables of dquots.
78 */
79mutex_t xfs_Gqm_lock;
80struct xfs_qm *xfs_Gqm;
81
82kmem_zone_t *qm_dqzone;
83kmem_zone_t *qm_dqtrxzone;
ba0f32d4 84STATIC kmem_shaker_t xfs_qm_shaker;
1da177e4
LT		 85
86STATIC void xfs_qm_list_init(xfs_dqlist_t *, char *, int);
87STATIC void xfs_qm_list_destroy(xfs_dqlist_t *);
88
ba0f32d4
CH		 89STATIC void xfs_qm_freelist_init(xfs_frlist_t *);
90STATIC void xfs_qm_freelist_destroy(xfs_frlist_t *);
91STATIC int xfs_qm_mplist_nowait(xfs_mount_t *);
92STATIC int xfs_qm_dqhashlock_nowait(xfs_dquot_t *);
93
1da177e4 94STATIC int xfs_qm_init_quotainos(xfs_mount_t *);
ba0f32d4 95STATIC int xfs_qm_init_quotainfo(xfs_mount_t *);
1da177e4
LT		 96STATIC int xfs_qm_shake(int, unsigned int);
97
98#ifdef DEBUG
99extern mutex_t qcheck_lock;
100#endif
101
102#ifdef QUOTADEBUG
103#define XQM_LIST_PRINT(l, NXT, title) \
104{ \
105 xfs_dquot_t *dqp; int i = 0; \
106 cmn_err(CE_DEBUG, "%s (#%d)", title, (int) (l)->qh_nelems); \
107 for (dqp = (l)->qh_next; dqp != NULL; dqp = dqp->NXT) { \
108 cmn_err(CE_DEBUG, " %d. \"%d (%s)\" " \
109 "bcnt = %d, icnt = %d, refs = %d", \
110 ++i, (int) INT_GET(dqp->q_core.d_id, ARCH_CONVERT), \
111 DQFLAGTO_TYPESTR(dqp), \
112 (int) INT_GET(dqp->q_core.d_bcount, ARCH_CONVERT), \
113 (int) INT_GET(dqp->q_core.d_icount, ARCH_CONVERT), \
114 (int) dqp->q_nrefs); } \
115}
116#else
117#define XQM_LIST_PRINT(l, NXT, title) do { } while (0)
118#endif
119
120/*
121 * Initialize the XQM structure.
122 * Note that there is not one quota manager per file system.
123 */
124STATIC struct xfs_qm *
125xfs_Gqm_init(void)
126{
127 xfs_qm_t *xqm;
128 int hsize, i;
129
130 xqm = kmem_zalloc(sizeof(xfs_qm_t), KM_SLEEP);
131 ASSERT(xqm);
132
133 /*
134 * Initialize the dquot hash tables.
135 */
136 hsize = (DQUOT_HASH_HEURISTIC < XFS_QM_NCSIZE_THRESHOLD) ?
137 XFS_QM_HASHSIZE_LOW : XFS_QM_HASHSIZE_HIGH;
138 xqm->qm_dqhashmask = hsize - 1;
139
140 xqm->qm_usr_dqhtable = (xfs_dqhash_t *)kmem_zalloc(hsize *
141 sizeof(xfs_dqhash_t),
142 KM_SLEEP);
143 xqm->qm_grp_dqhtable = (xfs_dqhash_t *)kmem_zalloc(hsize *
144 sizeof(xfs_dqhash_t),
145 KM_SLEEP);
146 ASSERT(xqm->qm_usr_dqhtable != NULL);
147 ASSERT(xqm->qm_grp_dqhtable != NULL);
148
149 for (i = 0; i < hsize; i++) {
150 xfs_qm_list_init(&(xqm->qm_usr_dqhtable[i]), "uxdqh", i);
151 xfs_qm_list_init(&(xqm->qm_grp_dqhtable[i]), "gxdqh", i);
152 }
153
154 /*
155 * Freelist of all dquots of all file systems
156 */
157 xfs_qm_freelist_init(&(xqm->qm_dqfreelist));
158
159 /*
160 * dquot zone. we register our own low-memory callback.
161 */
162 if (!qm_dqzone) {
163 xqm->qm_dqzone = kmem_zone_init(sizeof(xfs_dquot_t),
164 "xfs_dquots");
165 qm_dqzone = xqm->qm_dqzone;
166 } else
167 xqm->qm_dqzone = qm_dqzone;
168
169 xfs_qm_shaker = kmem_shake_register(xfs_qm_shake);
170
171 /*
172 * The t_dqinfo portion of transactions.
173 */
174 if (!qm_dqtrxzone) {
175 xqm->qm_dqtrxzone = kmem_zone_init(sizeof(xfs_dquot_acct_t),
176 "xfs_dqtrx");
177 qm_dqtrxzone = xqm->qm_dqtrxzone;
178 } else
179 xqm->qm_dqtrxzone = qm_dqtrxzone;
180
181 atomic_set(&xqm->qm_totaldquots, 0);
182 xqm->qm_dqfree_ratio = XFS_QM_DQFREE_RATIO;
183 xqm->qm_nrefs = 0;
184#ifdef DEBUG
185 mutex_init(&qcheck_lock, MUTEX_DEFAULT, "qchk");
186#endif
187 return xqm;
188}
189
190/*
191 * Destroy the global quota manager when its reference count goes to zero.
192 */
ba0f32d4 193STATIC void
1da177e4
LT		 194xfs_qm_destroy(
195 struct xfs_qm *xqm)
196{
197 int hsize, i;
198
199 ASSERT(xqm != NULL);
200 ASSERT(xqm->qm_nrefs == 0);
201 kmem_shake_deregister(xfs_qm_shaker);
202 hsize = xqm->qm_dqhashmask + 1;
203 for (i = 0; i < hsize; i++) {
204 xfs_qm_list_destroy(&(xqm->qm_usr_dqhtable[i]));
205 xfs_qm_list_destroy(&(xqm->qm_grp_dqhtable[i]));
206 }
207 kmem_free(xqm->qm_usr_dqhtable, hsize * sizeof(xfs_dqhash_t));
208 kmem_free(xqm->qm_grp_dqhtable, hsize * sizeof(xfs_dqhash_t));
209 xqm->qm_usr_dqhtable = NULL;
210 xqm->qm_grp_dqhtable = NULL;
211 xqm->qm_dqhashmask = 0;
212 xfs_qm_freelist_destroy(&(xqm->qm_dqfreelist));
213#ifdef DEBUG
214 mutex_destroy(&qcheck_lock);
215#endif
216 kmem_free(xqm, sizeof(xfs_qm_t));
217}
218
219/*
220 * Called at mount time to let XQM know that another file system is
221 * starting quotas. This isn't crucial information as the individual mount
222 * structures are pretty independent, but it helps the XQM keep a
223 * global view of what's going on.
224 */
225/* ARGSUSED */
226STATIC int
227xfs_qm_hold_quotafs_ref(
228 struct xfs_mount *mp)
229{
230 /*
231 * Need to lock the xfs_Gqm structure for things like this. For example,
232 * the structure could disappear between the entry to this routine and
233 * a HOLD operation if not locked.
234 */
235 XFS_QM_LOCK(xfs_Gqm);
236
237 if (xfs_Gqm == NULL)
238 xfs_Gqm = xfs_Gqm_init();
239 /*
240 * We can keep a list of all filesystems with quotas mounted for
241 * debugging and statistical purposes, but ...
242 * Just take a reference and get out.
243 */
244 XFS_QM_HOLD(xfs_Gqm);
245 XFS_QM_UNLOCK(xfs_Gqm);
246
247 return 0;
248}
249
250
251/*
252 * Release the reference that a filesystem took at mount time,
253 * so that we know when we need to destroy the entire quota manager.
254 */
255/* ARGSUSED */
256STATIC void
257xfs_qm_rele_quotafs_ref(
258 struct xfs_mount *mp)
259{
260 xfs_dquot_t *dqp, *nextdqp;
261
262 ASSERT(xfs_Gqm);
263 ASSERT(xfs_Gqm->qm_nrefs > 0);
264
265 /*
266 * Go thru the freelist and destroy all inactive dquots.
267 */
268 xfs_qm_freelist_lock(xfs_Gqm);
269
270 for (dqp = xfs_Gqm->qm_dqfreelist.qh_next;
271 dqp != (xfs_dquot_t *)&(xfs_Gqm->qm_dqfreelist); ) {
272 xfs_dqlock(dqp);
273 nextdqp = dqp->dq_flnext;
274 if (dqp->dq_flags & XFS_DQ_INACTIVE) {
275 ASSERT(dqp->q_mount == NULL);
276 ASSERT(! XFS_DQ_IS_DIRTY(dqp));
277 ASSERT(dqp->HL_PREVP == NULL);
278 ASSERT(dqp->MPL_PREVP == NULL);
279 XQM_FREELIST_REMOVE(dqp);
280 xfs_dqunlock(dqp);
281 xfs_qm_dqdestroy(dqp);
282 } else {
283 xfs_dqunlock(dqp);
284 }
285 dqp = nextdqp;
286 }
287 xfs_qm_freelist_unlock(xfs_Gqm);
288
289 /*
290 * Destroy the entire XQM. If somebody mounts with quotaon, this'll
291 * be restarted.
292 */
293 XFS_QM_LOCK(xfs_Gqm);
294 XFS_QM_RELE(xfs_Gqm);
295 if (xfs_Gqm->qm_nrefs == 0) {
296 xfs_qm_destroy(xfs_Gqm);
297 xfs_Gqm = NULL;
298 }
299 XFS_QM_UNLOCK(xfs_Gqm);
300}
301
302/*
303 * This is called at mount time from xfs_mountfs to initialize the quotainfo
304 * structure and start the global quotamanager (xfs_Gqm) if it hasn't done
305 * so already. Note that the superblock has not been read in yet.
306 */
307void
308xfs_qm_mount_quotainit(
309 xfs_mount_t *mp,
310 uint flags)
311{
312 /*
c8ad20ff 313 * User, projects or group quotas has to be on.
1da177e4 314 */
c8ad20ff 315 ASSERT(flags & (XFSMNT_UQUOTA | XFSMNT_PQUOTA | XFSMNT_GQUOTA));
1da177e4
LT		 316
317 /*
318 * Initialize the flags in the mount structure. From this point
319 * onwards we look at m_qflags to figure out if quotas's ON/OFF, etc.
320 * Note that we enforce nothing if accounting is off.
321 * ie. XFSMNT_*QUOTA must be ON for XFSMNT_*QUOTAENF.
322 * It isn't necessary to take the quotaoff lock to do this; this is
323 * called from mount.
324 */
325 if (flags & XFSMNT_UQUOTA) {
326 mp->m_qflags |= (XFS_UQUOTA_ACCT | XFS_UQUOTA_ACTIVE);
327 if (flags & XFSMNT_UQUOTAENF)
328 mp->m_qflags |= XFS_UQUOTA_ENFD;
329 }
330 if (flags & XFSMNT_GQUOTA) {
331 mp->m_qflags |= (XFS_GQUOTA_ACCT | XFS_GQUOTA_ACTIVE);
332 if (flags & XFSMNT_GQUOTAENF)
c8ad20ff
NS		 333 mp->m_qflags |= XFS_OQUOTA_ENFD;
334 } else if (flags & XFSMNT_PQUOTA) {
335 mp->m_qflags |= (XFS_PQUOTA_ACCT | XFS_PQUOTA_ACTIVE);
336 if (flags & XFSMNT_PQUOTAENF)
337 mp->m_qflags |= XFS_OQUOTA_ENFD;
1da177e4
LT		 338 }
339}
340
341/*
342 * Just destroy the quotainfo structure.
343 */
344void
345xfs_qm_unmount_quotadestroy(
346 xfs_mount_t *mp)
347{
348 if (mp->m_quotainfo)
349 xfs_qm_destroy_quotainfo(mp);
350}
351
352
353/*
354 * This is called from xfs_mountfs to start quotas and initialize all
355 * necessary data structures like quotainfo. This is also responsible for
356 * running a quotacheck as necessary. We are guaranteed that the superblock
357 * is consistently read in at this point.
358 */
359int
360xfs_qm_mount_quotas(
361 xfs_mount_t *mp,
362 int mfsi_flags)
363{
364 unsigned long s;
365 int error = 0;
366 uint sbf;
367
368 /*
369 * If a file system had quotas running earlier, but decided to
c8ad20ff 370 * mount without -o uquota/pquota/gquota options, revoke the
1da177e4
LT		 371 * quotachecked license, and bail out.
372 */
373 if (! XFS_IS_QUOTA_ON(mp) &&
c8ad20ff 374 (mp->m_sb.sb_qflags & XFS_ALL_QUOTA_ACCT)) {
1da177e4
LT		 375 mp->m_qflags = 0;
376 goto write_changes;
377 }
378
379 /*
380 * If quotas on realtime volumes is not supported, we disable
381 * quotas immediately.
382 */
383 if (mp->m_sb.sb_rextents) {
384 cmn_err(CE_NOTE,
385 "Cannot turn on quotas for realtime filesystem %s",
386 mp->m_fsname);
387 mp->m_qflags = 0;
388 goto write_changes;
389 }
390
391#if defined(DEBUG) && defined(XFS_LOUD_RECOVERY)
392 cmn_err(CE_NOTE, "Attempting to turn on disk quotas.");
393#endif
394
395 ASSERT(XFS_IS_QUOTA_RUNNING(mp));
396 /*
397 * Allocate the quotainfo structure inside the mount struct, and
398 * create quotainode(s), and change/rev superblock if necessary.
399 */
400 if ((error = xfs_qm_init_quotainfo(mp))) {
401 /*
402 * We must turn off quotas.
403 */
404 ASSERT(mp->m_quotainfo == NULL);
405 mp->m_qflags = 0;
406 goto write_changes;
407 }
408 /*
409 * If any of the quotas are not consistent, do a quotacheck.
410 */
411 if (XFS_QM_NEED_QUOTACHECK(mp) &&
412 !(mfsi_flags & XFS_MFSI_NO_QUOTACHECK)) {
413#ifdef DEBUG
414 cmn_err(CE_NOTE, "Doing a quotacheck. Please wait.");
415#endif
416 if ((error = xfs_qm_quotacheck(mp))) {
417 /* Quotacheck has failed and quotas have
418 * been disabled.
419 */
420 return XFS_ERROR(error);
421 }
422#ifdef DEBUG
423 cmn_err(CE_NOTE, "Done quotacheck.");
424#endif
425 }
426 write_changes:
427 /*
428 * We actually don't have to acquire the SB_LOCK at all.
429 * This can only be called from mount, and that's single threaded. XXX
430 */
431 s = XFS_SB_LOCK(mp);
432 sbf = mp->m_sb.sb_qflags;
433 mp->m_sb.sb_qflags = mp->m_qflags & XFS_MOUNT_QUOTA_ALL;
434 XFS_SB_UNLOCK(mp, s);
435
436 if (sbf != (mp->m_qflags & XFS_MOUNT_QUOTA_ALL)) {
437 if (xfs_qm_write_sb_changes(mp, XFS_SB_QFLAGS)) {
438 /*
439 * We could only have been turning quotas off.
440 * We aren't in very good shape actually because
441 * the incore structures are convinced that quotas are
442 * off, but the on disk superblock doesn't know that !
443 */
444 ASSERT(!(XFS_IS_QUOTA_RUNNING(mp)));
445 xfs_fs_cmn_err(CE_ALERT, mp,
446 "XFS mount_quotas: Superblock update failed!");
447 }
448 }
449
450 if (error) {
451 xfs_fs_cmn_err(CE_WARN, mp,
452 "Failed to initialize disk quotas.");
453 }
454 return XFS_ERROR(error);
455}
456
457/*
458 * Called from the vfsops layer.
459 */
460int
461xfs_qm_unmount_quotas(
462 xfs_mount_t *mp)
463{
464 xfs_inode_t *uqp, *gqp;
465 int error = 0;
466
467 /*
468 * Release the dquots that root inode, et al might be holding,
469 * before we flush quotas and blow away the quotainfo structure.
470 */
471 ASSERT(mp->m_rootip);
472 xfs_qm_dqdetach(mp->m_rootip);
473 if (mp->m_rbmip)
474 xfs_qm_dqdetach(mp->m_rbmip);
475 if (mp->m_rsumip)
476 xfs_qm_dqdetach(mp->m_rsumip);
477
478 /*
479 * Flush out the quota inodes.
480 */
481 uqp = gqp = NULL;
482 if (mp->m_quotainfo) {
483 if ((uqp = mp->m_quotainfo->qi_uquotaip) != NULL) {
484 xfs_ilock(uqp, XFS_ILOCK_EXCL);
485 xfs_iflock(uqp);
486 error = xfs_iflush(uqp, XFS_IFLUSH_SYNC);
487 xfs_iunlock(uqp, XFS_ILOCK_EXCL);
488 if (unlikely(error == EFSCORRUPTED)) {
489 XFS_ERROR_REPORT("xfs_qm_unmount_quotas(1)",
490 XFS_ERRLEVEL_LOW, mp);
491 goto out;
492 }
493 }
494 if ((gqp = mp->m_quotainfo->qi_gquotaip) != NULL) {
495 xfs_ilock(gqp, XFS_ILOCK_EXCL);
496 xfs_iflock(gqp);
497 error = xfs_iflush(gqp, XFS_IFLUSH_SYNC);
498 xfs_iunlock(gqp, XFS_ILOCK_EXCL);
499 if (unlikely(error == EFSCORRUPTED)) {
500 XFS_ERROR_REPORT("xfs_qm_unmount_quotas(2)",
501 XFS_ERRLEVEL_LOW, mp);
502 goto out;
503 }
504 }
505 }
506 if (uqp) {
507 XFS_PURGE_INODE(uqp);
508 mp->m_quotainfo->qi_uquotaip = NULL;
509 }
510 if (gqp) {
511 XFS_PURGE_INODE(gqp);
512 mp->m_quotainfo->qi_gquotaip = NULL;
513 }
514out:
515 return XFS_ERROR(error);
516}
517
518/*
519 * Flush all dquots of the given file system to disk. The dquots are
520 * _not_ purged from memory here, just their data written to disk.
521 */
ba0f32d4 522STATIC int
1da177e4
LT		 523xfs_qm_dqflush_all(
524 xfs_mount_t *mp,
525 int flags)
526{
527 int recl;
528 xfs_dquot_t *dqp;
529 int niters;
530 int error;
531
532 if (mp->m_quotainfo == NULL)
533 return (0);
534 niters = 0;
535again:
536 xfs_qm_mplist_lock(mp);
537 FOREACH_DQUOT_IN_MP(dqp, mp) {
538 xfs_dqlock(dqp);
539 if (! XFS_DQ_IS_DIRTY(dqp)) {
540 xfs_dqunlock(dqp);
541 continue;
542 }
543 xfs_dqtrace_entry(dqp, "FLUSHALL: DQDIRTY");
544 /* XXX a sentinel would be better */
545 recl = XFS_QI_MPLRECLAIMS(mp);
546 if (! xfs_qm_dqflock_nowait(dqp)) {
547 /*
548 * If we can't grab the flush lock then check
549 * to see if the dquot has been flushed delayed
550 * write. If so, grab its buffer and send it
551 * out immediately. We'll be able to acquire
552 * the flush lock when the I/O completes.
553 */
554 xfs_qm_dqflock_pushbuf_wait(dqp);
555 }
556 /*
557 * Let go of the mplist lock. We don't want to hold it
558 * across a disk write.
559 */
560 xfs_qm_mplist_unlock(mp);
561 error = xfs_qm_dqflush(dqp, flags);
562 xfs_dqunlock(dqp);
563 if (error)
564 return (error);
565
566 xfs_qm_mplist_lock(mp);
567 if (recl != XFS_QI_MPLRECLAIMS(mp)) {
568 xfs_qm_mplist_unlock(mp);
569 /* XXX restart limit */
570 goto again;
571 }
572 }
573
574 xfs_qm_mplist_unlock(mp);
575 /* return ! busy */
576 return (0);
577}
578/*
579 * Release the group dquot pointers the user dquots may be
580 * carrying around as a hint. mplist is locked on entry and exit.
581 */
582STATIC void
583xfs_qm_detach_gdquots(
584 xfs_mount_t *mp)
585{
586 xfs_dquot_t *dqp, *gdqp;
587 int nrecl;
588
589 again:
590 ASSERT(XFS_QM_IS_MPLIST_LOCKED(mp));
591 dqp = XFS_QI_MPLNEXT(mp);
592 while (dqp) {
593 xfs_dqlock(dqp);
594 if ((gdqp = dqp->q_gdquot)) {
595 xfs_dqlock(gdqp);
596 dqp->q_gdquot = NULL;
597 }
598 xfs_dqunlock(dqp);
599
600 if (gdqp) {
601 /*
602 * Can't hold the mplist lock across a dqput.
603 * XXXmust convert to marker based iterations here.
604 */
605 nrecl = XFS_QI_MPLRECLAIMS(mp);
606 xfs_qm_mplist_unlock(mp);
607 xfs_qm_dqput(gdqp);
608
609 xfs_qm_mplist_lock(mp);
610 if (nrecl != XFS_QI_MPLRECLAIMS(mp))
611 goto again;
612 }
613 dqp = dqp->MPL_NEXT;
614 }
615}
616
617/*
618 * Go through all the incore dquots of this file system and take them
619 * off the mplist and hashlist, if the dquot type matches the dqtype
620 * parameter. This is used when turning off quota accounting for
621 * users and/or groups, as well as when the filesystem is unmounting.
622 */
623STATIC int
624xfs_qm_dqpurge_int(
625 xfs_mount_t *mp,
c8ad20ff 626 uint flags) /* QUOTAOFF/UMOUNTING/UQUOTA/PQUOTA/GQUOTA */
1da177e4
LT		 627{
628 xfs_dquot_t *dqp;
629 uint dqtype;
630 int nrecl;
631 xfs_dquot_t *nextdqp;
632 int nmisses;
633
634 if (mp->m_quotainfo == NULL)
635 return (0);
636
637 dqtype = (flags & XFS_QMOPT_UQUOTA) ? XFS_DQ_USER : 0;
c8ad20ff 638 dqtype |= (flags & XFS_QMOPT_PQUOTA) ? XFS_DQ_PROJ : 0;
1da177e4
LT		 639 dqtype |= (flags & XFS_QMOPT_GQUOTA) ? XFS_DQ_GROUP : 0;
640
641 xfs_qm_mplist_lock(mp);
642
643 /*
644 * In the first pass through all incore dquots of this filesystem,
645 * we release the group dquot pointers the user dquots may be
646 * carrying around as a hint. We need to do this irrespective of
647 * what's being turned off.
648 */
649 xfs_qm_detach_gdquots(mp);
650
651 again:
652 nmisses = 0;
653 ASSERT(XFS_QM_IS_MPLIST_LOCKED(mp));
654 /*
655 * Try to get rid of all of the unwanted dquots. The idea is to
656 * get them off mplist and hashlist, but leave them on freelist.
657 */
658 dqp = XFS_QI_MPLNEXT(mp);
659 while (dqp) {
660 /*
661 * It's OK to look at the type without taking dqlock here.
662 * We're holding the mplist lock here, and that's needed for
663 * a dqreclaim.
664 */
665 if ((dqp->dq_flags & dqtype) == 0) {
666 dqp = dqp->MPL_NEXT;
667 continue;
668 }
669
670 if (! xfs_qm_dqhashlock_nowait(dqp)) {
671 nrecl = XFS_QI_MPLRECLAIMS(mp);
672 xfs_qm_mplist_unlock(mp);
673 XFS_DQ_HASH_LOCK(dqp->q_hash);
674 xfs_qm_mplist_lock(mp);
675
676 /*
677 * XXXTheoretically, we can get into a very long
678 * ping pong game here.
679 * No one can be adding dquots to the mplist at
680 * this point, but somebody might be taking things off.
681 */
682 if (nrecl != XFS_QI_MPLRECLAIMS(mp)) {
683 XFS_DQ_HASH_UNLOCK(dqp->q_hash);
684 goto again;
685 }
686 }
687
688 /*
689 * Take the dquot off the mplist and hashlist. It may remain on
690 * freelist in INACTIVE state.
691 */
692 nextdqp = dqp->MPL_NEXT;
693 nmisses += xfs_qm_dqpurge(dqp, flags);
694 dqp = nextdqp;
695 }
696 xfs_qm_mplist_unlock(mp);
697 return nmisses;
698}
699
700int
701xfs_qm_dqpurge_all(
702 xfs_mount_t *mp,
703 uint flags)
704{
705 int ndquots;
706
707 /*
708 * Purge the dquot cache.
709 * None of the dquots should really be busy at this point.
710 */
711 if (mp->m_quotainfo) {
712 while ((ndquots = xfs_qm_dqpurge_int(mp, flags))) {
713 delay(ndquots * 10);
714 }
715 }
716 return 0;
717}
718
719STATIC int
720xfs_qm_dqattach_one(
721 xfs_inode_t *ip,
722 xfs_dqid_t id,
723 uint type,
724 uint doalloc,
725 uint dolock,
726 xfs_dquot_t *udqhint, /* hint */
727 xfs_dquot_t **IO_idqpp)
728{
729 xfs_dquot_t *dqp;
730 int error;
731
732 ASSERT(XFS_ISLOCKED_INODE_EXCL(ip));
733 error = 0;
734 /*
735 * See if we already have it in the inode itself. IO_idqpp is
736 * &i_udquot or &i_gdquot. This made the code look weird, but
737 * made the logic a lot simpler.
738 */
739 if ((dqp = *IO_idqpp)) {
740 if (dolock)
741 xfs_dqlock(dqp);
742 xfs_dqtrace_entry(dqp, "DQATTACH: found in ip");
743 goto done;
744 }
745
746 /*
747 * udqhint is the i_udquot field in inode, and is non-NULL only
c8ad20ff 748 * when the type arg is group/project. Its purpose is to save a
1da177e4
LT		 749 * lookup by dqid (xfs_qm_dqget) by caching a group dquot inside
750 * the user dquot.
751 */
c8ad20ff 752 ASSERT(!udqhint || type == XFS_DQ_GROUP || type == XFS_DQ_PROJ);
1da177e4
LT		 753 if (udqhint && !dolock)
754 xfs_dqlock(udqhint);
755
756 /*
757 * No need to take dqlock to look at the id.
758 * The ID can't change until it gets reclaimed, and it won't
759 * be reclaimed as long as we have a ref from inode and we hold
760 * the ilock.
761 */
762 if (udqhint &&
763 (dqp = udqhint->q_gdquot) &&
764 (INT_GET(dqp->q_core.d_id, ARCH_CONVERT) == id)) {
765 ASSERT(XFS_DQ_IS_LOCKED(udqhint));
766 xfs_dqlock(dqp);
767 XFS_DQHOLD(dqp);
768 ASSERT(*IO_idqpp == NULL);
769 *IO_idqpp = dqp;
770 if (!dolock) {
771 xfs_dqunlock(dqp);
772 xfs_dqunlock(udqhint);
773 }
774 goto done;
775 }
776 /*
777 * We can't hold a dquot lock when we call the dqget code.
778 * We'll deadlock in no time, because of (not conforming to)
779 * lock ordering - the inodelock comes before any dquot lock,
780 * and we may drop and reacquire the ilock in xfs_qm_dqget().
781 */
782 if (udqhint)
783 xfs_dqunlock(udqhint);
784 /*
785 * Find the dquot from somewhere. This bumps the
786 * reference count of dquot and returns it locked.
787 * This can return ENOENT if dquot didn't exist on
788 * disk and we didn't ask it to allocate;
789 * ESRCH if quotas got turned off suddenly.
790 */
791 if ((error = xfs_qm_dqget(ip->i_mount, ip, id, type,
792 doalloc|XFS_QMOPT_DOWARN, &dqp))) {
793 if (udqhint && dolock)
794 xfs_dqlock(udqhint);
795 goto done;
796 }
797
798 xfs_dqtrace_entry(dqp, "DQATTACH: found by dqget");
799 /*
800 * dqget may have dropped and re-acquired the ilock, but it guarantees
801 * that the dquot returned is the one that should go in the inode.
802 */
803 *IO_idqpp = dqp;
804 ASSERT(dqp);
805 ASSERT(XFS_DQ_IS_LOCKED(dqp));
806 if (! dolock) {
807 xfs_dqunlock(dqp);
808 goto done;
809 }
810 if (! udqhint)
811 goto done;
812
813 ASSERT(udqhint);
814 ASSERT(dolock);
815 ASSERT(XFS_DQ_IS_LOCKED(dqp));
816 if (! xfs_qm_dqlock_nowait(udqhint)) {
817 xfs_dqunlock(dqp);
818 xfs_dqlock(udqhint);
819 xfs_dqlock(dqp);
820 }
821 done:
822#ifdef QUOTADEBUG
823 if (udqhint) {
824 if (dolock)
825 ASSERT(XFS_DQ_IS_LOCKED(udqhint));
826 }
827 if (! error) {
828 if (dolock)
829 ASSERT(XFS_DQ_IS_LOCKED(dqp));
830 }
831#endif
832 return (error);
833}
834
835
836/*
837 * Given a udquot and gdquot, attach a ptr to the group dquot in the
838 * udquot as a hint for future lookups. The idea sounds simple, but the
839 * execution isn't, because the udquot might have a group dquot attached
840 * already and getting rid of that gets us into lock ordering contraints.
841 * The process is complicated more by the fact that the dquots may or may not
842 * be locked on entry.
843 */
844STATIC void
845xfs_qm_dqattach_grouphint(
846 xfs_dquot_t *udq,
847 xfs_dquot_t *gdq,
848 uint locked)
849{
850 xfs_dquot_t *tmp;
851
852#ifdef QUOTADEBUG
853 if (locked) {
854 ASSERT(XFS_DQ_IS_LOCKED(udq));
855 ASSERT(XFS_DQ_IS_LOCKED(gdq));
856 }
857#endif
858 if (! locked)
859 xfs_dqlock(udq);
860
861 if ((tmp = udq->q_gdquot)) {
862 if (tmp == gdq) {
863 if (! locked)
864 xfs_dqunlock(udq);
865 return;
866 }
867
868 udq->q_gdquot = NULL;
869 /*
870 * We can't keep any dqlocks when calling dqrele,
871 * because the freelist lock comes before dqlocks.
872 */
873 xfs_dqunlock(udq);
874 if (locked)
875 xfs_dqunlock(gdq);
876 /*
877 * we took a hard reference once upon a time in dqget,
878 * so give it back when the udquot no longer points at it
879 * dqput() does the unlocking of the dquot.
880 */
881 xfs_qm_dqrele(tmp);
882
883 xfs_dqlock(udq);
884 xfs_dqlock(gdq);
885
886 } else {
887 ASSERT(XFS_DQ_IS_LOCKED(udq));
888 if (! locked) {
889 xfs_dqlock(gdq);
890 }
891 }
892
893 ASSERT(XFS_DQ_IS_LOCKED(udq));
894 ASSERT(XFS_DQ_IS_LOCKED(gdq));
895 /*
896 * Somebody could have attached a gdquot here,
897 * when we dropped the uqlock. If so, just do nothing.
898 */
899 if (udq->q_gdquot == NULL) {
900 XFS_DQHOLD(gdq);
901 udq->q_gdquot = gdq;
902 }
903 if (! locked) {
904 xfs_dqunlock(gdq);
905 xfs_dqunlock(udq);
906 }
907}
908
909
910/*
c8ad20ff
NS		 911 * Given a locked inode, attach dquot(s) to it, taking U/G/P-QUOTAON
912 * into account.
1da177e4
LT		 913 * If XFS_QMOPT_DQALLOC, the dquot(s) will be allocated if needed.
914 * If XFS_QMOPT_DQLOCK, the dquot(s) will be returned locked. This option pretty
915 * much made this code a complete mess, but it has been pretty useful.
916 * If XFS_QMOPT_ILOCKED, then inode sent is already locked EXCL.
917 * Inode may get unlocked and relocked in here, and the caller must deal with
918 * the consequences.
919 */
920int
921xfs_qm_dqattach(
922 xfs_inode_t *ip,
923 uint flags)
924{
925 xfs_mount_t *mp = ip->i_mount;
926 uint nquotas = 0;
927 int error = 0;
928
929 if ((! XFS_IS_QUOTA_ON(mp)) ||
930 (! XFS_NOT_DQATTACHED(mp, ip)) ||
931 (ip->i_ino == mp->m_sb.sb_uquotino) ||
932 (ip->i_ino == mp->m_sb.sb_gquotino))
933 return (0);
934
935 ASSERT((flags & XFS_QMOPT_ILOCKED) == 0 ||
936 XFS_ISLOCKED_INODE_EXCL(ip));
937
938 if (! (flags & XFS_QMOPT_ILOCKED))
939 xfs_ilock(ip, XFS_ILOCK_EXCL);
940
941 if (XFS_IS_UQUOTA_ON(mp)) {
942 error = xfs_qm_dqattach_one(ip, ip->i_d.di_uid, XFS_DQ_USER,
943 flags & XFS_QMOPT_DQALLOC,
944 flags & XFS_QMOPT_DQLOCK,
945 NULL, &ip->i_udquot);
946 if (error)
947 goto done;
948 nquotas++;
949 }
950 ASSERT(XFS_ISLOCKED_INODE_EXCL(ip));
c8ad20ff
NS		 951 if (XFS_IS_OQUOTA_ON(mp)) {
952 error = XFS_IS_GQUOTA_ON(mp) ?
953 xfs_qm_dqattach_one(ip, ip->i_d.di_gid, XFS_DQ_GROUP,
954 flags & XFS_QMOPT_DQALLOC,
955 flags & XFS_QMOPT_DQLOCK,
956 ip->i_udquot, &ip->i_gdquot) :
957 xfs_qm_dqattach_one(ip, ip->i_d.di_projid, XFS_DQ_PROJ,
1da177e4
LT		 958 flags & XFS_QMOPT_DQALLOC,
959 flags & XFS_QMOPT_DQLOCK,
960 ip->i_udquot, &ip->i_gdquot);
961 /*
962 * Don't worry about the udquot that we may have
963 * attached above. It'll get detached, if not already.
964 */
965 if (error)
966 goto done;
967 nquotas++;
968 }
969
970 /*
971 * Attach this group quota to the user quota as a hint.
972 * This WON'T, in general, result in a thrash.
973 */
974 if (nquotas == 2) {
975 ASSERT(XFS_ISLOCKED_INODE_EXCL(ip));
976 ASSERT(ip->i_udquot);
977 ASSERT(ip->i_gdquot);
978
979 /*
980 * We may or may not have the i_udquot locked at this point,
981 * but this check is OK since we don't depend on the i_gdquot to
982 * be accurate 100% all the time. It is just a hint, and this
983 * will succeed in general.
984 */
985 if (ip->i_udquot->q_gdquot == ip->i_gdquot)
986 goto done;
987 /*
988 * Attach i_gdquot to the gdquot hint inside the i_udquot.
989 */
990 xfs_qm_dqattach_grouphint(ip->i_udquot, ip->i_gdquot,
991 flags & XFS_QMOPT_DQLOCK);
992 }
993
994 done:
995
996#ifdef QUOTADEBUG
997 if (! error) {
998 if (ip->i_udquot) {
999 if (flags & XFS_QMOPT_DQLOCK)
1000 ASSERT(XFS_DQ_IS_LOCKED(ip->i_udquot));
1001 }
1002 if (ip->i_gdquot) {
1003 if (flags & XFS_QMOPT_DQLOCK)
1004 ASSERT(XFS_DQ_IS_LOCKED(ip->i_gdquot));
1005 }
1006 if (XFS_IS_UQUOTA_ON(mp))
1007 ASSERT(ip->i_udquot);
c8ad20ff 1008 if (XFS_IS_OQUOTA_ON(mp))
1da177e4
LT		 1009 ASSERT(ip->i_gdquot);
1010 }
1011#endif
1012
1013 if (! (flags & XFS_QMOPT_ILOCKED))
1014 xfs_iunlock(ip, XFS_ILOCK_EXCL);
1015
1016#ifdef QUOTADEBUG
1017 else
1018 ASSERT(XFS_ISLOCKED_INODE_EXCL(ip));
1019#endif
1020 return (error);
1021}
1022
1023/*
1024 * Release dquots (and their references) if any.
1025 * The inode should be locked EXCL except when this's called by
1026 * xfs_ireclaim.
1027 */
1028void
1029xfs_qm_dqdetach(
1030 xfs_inode_t *ip)
1031{
1032 if (!(ip->i_udquot || ip->i_gdquot))
1033 return;
1034
1035 ASSERT(ip->i_ino != ip->i_mount->m_sb.sb_uquotino);
1036 ASSERT(ip->i_ino != ip->i_mount->m_sb.sb_gquotino);
1da177e4 1037 if (ip->i_udquot) {
c8ad20ff 1038 xfs_dqtrace_entry_ino(ip->i_udquot, "DQDETTACH", ip);
1da177e4
LT		 1039 xfs_qm_dqrele(ip->i_udquot);
1040 ip->i_udquot = NULL;
1041 }
1042 if (ip->i_gdquot) {
c8ad20ff 1043 xfs_dqtrace_entry_ino(ip->i_gdquot, "DQDETTACH", ip);
1da177e4
LT		 1044 xfs_qm_dqrele(ip->i_gdquot);
1045 ip->i_gdquot = NULL;
1046 }
1047}
1048
1049/*
1050 * This is called by VFS_SYNC and flags arg determines the caller,
1051 * and its motives, as done in xfs_sync.
1052 *
1053 * vfs_sync: SYNC_FSDATA|SYNC_ATTR|SYNC_BDFLUSH 0x31
1054 * syscall sync: SYNC_FSDATA|SYNC_ATTR|SYNC_DELWRI 0x25
1055 * umountroot : SYNC_WAIT | SYNC_CLOSE | SYNC_ATTR | SYNC_FSDATA
1056 */
1057
1058int
1059xfs_qm_sync(
1060 xfs_mount_t *mp,
1061 short flags)
1062{
1063 int recl, restarts;
1064 xfs_dquot_t *dqp;
1065 uint flush_flags;
1066 boolean_t nowait;
1067 int error;
1068
1069 restarts = 0;
1070 /*
1071 * We won't block unless we are asked to.
1072 */
1073 nowait = (boolean_t)(flags & SYNC_BDFLUSH || (flags & SYNC_WAIT) == 0);
1074
1075 again:
1076 xfs_qm_mplist_lock(mp);
1077 /*
1078 * dqpurge_all() also takes the mplist lock and iterate thru all dquots
1079 * in quotaoff. However, if the QUOTA_ACTIVE bits are not cleared
1080 * when we have the mplist lock, we know that dquots will be consistent
1081 * as long as we have it locked.
1082 */
1083 if (! XFS_IS_QUOTA_ON(mp)) {
1084 xfs_qm_mplist_unlock(mp);
1085 return (0);
1086 }
1087 FOREACH_DQUOT_IN_MP(dqp, mp) {
1088 /*
1089 * If this is vfs_sync calling, then skip the dquots that
1090 * don't 'seem' to be dirty. ie. don't acquire dqlock.
1091 * This is very similar to what xfs_sync does with inodes.
1092 */
1093 if (flags & SYNC_BDFLUSH) {
1094 if (! XFS_DQ_IS_DIRTY(dqp))
1095 continue;
1096 }
1097
1098 if (nowait) {
1099 /*
1100 * Try to acquire the dquot lock. We are NOT out of
1101 * lock order, but we just don't want to wait for this
1102 * lock, unless somebody wanted us to.
1103 */
1104 if (! xfs_qm_dqlock_nowait(dqp))
1105 continue;
1106 } else {
1107 xfs_dqlock(dqp);
1108 }
1109
1110 /*
1111 * Now, find out for sure if this dquot is dirty or not.
1112 */
1113 if (! XFS_DQ_IS_DIRTY(dqp)) {
1114 xfs_dqunlock(dqp);
1115 continue;
1116 }
1117
1118 /* XXX a sentinel would be better */
1119 recl = XFS_QI_MPLRECLAIMS(mp);
1120 if (! xfs_qm_dqflock_nowait(dqp)) {
1121 if (nowait) {
1122 xfs_dqunlock(dqp);
1123 continue;
1124 }
1125 /*
1126 * If we can't grab the flush lock then if the caller
1127 * really wanted us to give this our best shot,
1128 * see if we can give a push to the buffer before we wait
1129 * on the flush lock. At this point, we know that
1130 * eventhough the dquot is being flushed,
1131 * it has (new) dirty data.
1132 */
1133 xfs_qm_dqflock_pushbuf_wait(dqp);
1134 }
1135 /*
1136 * Let go of the mplist lock. We don't want to hold it
1137 * across a disk write
1138 */
1139 flush_flags = (nowait) ? XFS_QMOPT_DELWRI : XFS_QMOPT_SYNC;
1140 xfs_qm_mplist_unlock(mp);
1141 xfs_dqtrace_entry(dqp, "XQM_SYNC: DQFLUSH");
1142 error = xfs_qm_dqflush(dqp, flush_flags);
1143 xfs_dqunlock(dqp);
1144 if (error && XFS_FORCED_SHUTDOWN(mp))
1145 return(0); /* Need to prevent umount failure */
1146 else if (error)
1147 return (error);
1148
1149 xfs_qm_mplist_lock(mp);
1150 if (recl != XFS_QI_MPLRECLAIMS(mp)) {
1151 if (++restarts >= XFS_QM_SYNC_MAX_RESTARTS)
1152 break;
1153
1154 xfs_qm_mplist_unlock(mp);
1155 goto again;
1156 }
1157 }
1158
1159 xfs_qm_mplist_unlock(mp);
1160 return (0);
1161}
1162
1163
1164/*
1165 * This initializes all the quota information that's kept in the
1166 * mount structure
1167 */
ba0f32d4 1168STATIC int
1da177e4
LT		 1169xfs_qm_init_quotainfo(
1170 xfs_mount_t *mp)
1171{
1172 xfs_quotainfo_t *qinf;
1173 int error;
1174 xfs_dquot_t *dqp;
1175
1176 ASSERT(XFS_IS_QUOTA_RUNNING(mp));
1177
1178 /*
1179 * Tell XQM that we exist as soon as possible.
1180 */
1181 if ((error = xfs_qm_hold_quotafs_ref(mp))) {
1182 return (error);
1183 }
1184
1185 qinf = mp->m_quotainfo = kmem_zalloc(sizeof(xfs_quotainfo_t), KM_SLEEP);
1186
1187 /*
1188 * See if quotainodes are setup, and if not, allocate them,
1189 * and change the superblock accordingly.
1190 */
1191 if ((error = xfs_qm_init_quotainos(mp))) {
1192 kmem_free(qinf, sizeof(xfs_quotainfo_t));
1193 mp->m_quotainfo = NULL;
1194 return (error);
1195 }
1196
1197 spinlock_init(&qinf->qi_pinlock, "xfs_qinf_pin");
1198 xfs_qm_list_init(&qinf->qi_dqlist, "mpdqlist", 0);
1199 qinf->qi_dqreclaims = 0;
1200
1201 /* mutex used to serialize quotaoffs */
1202 mutex_init(&qinf->qi_quotaofflock, MUTEX_DEFAULT, "qoff");
1203
1204 /* Precalc some constants */
1205 qinf->qi_dqchunklen = XFS_FSB_TO_BB(mp, XFS_DQUOT_CLUSTER_SIZE_FSB);
1206 ASSERT(qinf->qi_dqchunklen);
1207 qinf->qi_dqperchunk = BBTOB(qinf->qi_dqchunklen);
1208 do_div(qinf->qi_dqperchunk, sizeof(xfs_dqblk_t));
1209
1210 mp->m_qflags |= (mp->m_sb.sb_qflags & XFS_ALL_QUOTA_CHKD);
1211
1212 /*
1213 * We try to get the limits from the superuser's limits fields.
1214 * This is quite hacky, but it is standard quota practice.
1215 * We look at the USR dquot with id == 0 first, but if user quotas
1216 * are not enabled we goto the GRP dquot with id == 0.
1217 * We don't really care to keep separate default limits for user
1218 * and group quotas, at least not at this point.
1219 */
1220 error = xfs_qm_dqget(mp, NULL, (xfs_dqid_t)0,
c8ad20ff
NS		 1221 XFS_IS_UQUOTA_RUNNING(mp) ? XFS_DQ_USER :
1222 (XFS_IS_GQUOTA_RUNNING(mp) ? XFS_DQ_GROUP :
1223 XFS_DQ_PROJ),
1da177e4
LT		 1224 XFS_QMOPT_DQSUSER|XFS_QMOPT_DOWARN,
1225 &dqp);
1226 if (! error) {
1227 xfs_disk_dquot_t *ddqp = &dqp->q_core;
1228
1229 /*
1230 * The warnings and timers set the grace period given to
1231 * a user or group before he or she can not perform any
1232 * more writing. If it is zero, a default is used.
1233 */
1234 qinf->qi_btimelimit =
1235 INT_GET(ddqp->d_btimer, ARCH_CONVERT) ?
1236 INT_GET(ddqp->d_btimer, ARCH_CONVERT) :
1237 XFS_QM_BTIMELIMIT;
1238 qinf->qi_itimelimit =
1239 INT_GET(ddqp->d_itimer, ARCH_CONVERT) ?
1240 INT_GET(ddqp->d_itimer, ARCH_CONVERT) :
1241 XFS_QM_ITIMELIMIT;
1242 qinf->qi_rtbtimelimit =
1243 INT_GET(ddqp->d_rtbtimer, ARCH_CONVERT) ?
1244 INT_GET(ddqp->d_rtbtimer, ARCH_CONVERT) :
1245 XFS_QM_RTBTIMELIMIT;
1246 qinf->qi_bwarnlimit =
1247 INT_GET(ddqp->d_bwarns, ARCH_CONVERT) ?
1248 INT_GET(ddqp->d_bwarns, ARCH_CONVERT) :
1249 XFS_QM_BWARNLIMIT;
1250 qinf->qi_iwarnlimit =
1251 INT_GET(ddqp->d_iwarns, ARCH_CONVERT) ?
1252 INT_GET(ddqp->d_iwarns, ARCH_CONVERT) :
1253 XFS_QM_IWARNLIMIT;
1254 qinf->qi_bhardlimit =
1255 INT_GET(ddqp->d_blk_hardlimit, ARCH_CONVERT);
1256 qinf->qi_bsoftlimit =
1257 INT_GET(ddqp->d_blk_softlimit, ARCH_CONVERT);
1258 qinf->qi_ihardlimit =
1259 INT_GET(ddqp->d_ino_hardlimit, ARCH_CONVERT);
1260 qinf->qi_isoftlimit =
1261 INT_GET(ddqp->d_ino_softlimit, ARCH_CONVERT);
1262 qinf->qi_rtbhardlimit =
1263 INT_GET(ddqp->d_rtb_hardlimit, ARCH_CONVERT);
1264 qinf->qi_rtbsoftlimit =
1265 INT_GET(ddqp->d_rtb_softlimit, ARCH_CONVERT);
1266
1267 /*
1268 * We sent the XFS_QMOPT_DQSUSER flag to dqget because
1269 * we don't want this dquot cached. We haven't done a
1270 * quotacheck yet, and quotacheck doesn't like incore dquots.
1271 */
1272 xfs_qm_dqdestroy(dqp);
1273 } else {
1274 qinf->qi_btimelimit = XFS_QM_BTIMELIMIT;
1275 qinf->qi_itimelimit = XFS_QM_ITIMELIMIT;
1276 qinf->qi_rtbtimelimit = XFS_QM_RTBTIMELIMIT;
1277 qinf->qi_bwarnlimit = XFS_QM_BWARNLIMIT;
1278 qinf->qi_iwarnlimit = XFS_QM_IWARNLIMIT;
1279 }
1280
1281 return (0);
1282}
1283
1284
1285/*
1286 * Gets called when unmounting a filesystem or when all quotas get
1287 * turned off.
1288 * This purges the quota inodes, destroys locks and frees itself.
1289 */
1290void
1291xfs_qm_destroy_quotainfo(
1292 xfs_mount_t *mp)
1293{
1294 xfs_quotainfo_t *qi;
1295
1296 qi = mp->m_quotainfo;
1297 ASSERT(qi != NULL);
1298 ASSERT(xfs_Gqm != NULL);
1299
1300 /*
1301 * Release the reference that XQM kept, so that we know
1302 * when the XQM structure should be freed. We cannot assume
1303 * that xfs_Gqm is non-null after this point.
1304 */
1305 xfs_qm_rele_quotafs_ref(mp);
1306
1307 spinlock_destroy(&qi->qi_pinlock);
1308 xfs_qm_list_destroy(&qi->qi_dqlist);
1309
1310 if (qi->qi_uquotaip) {
1311 XFS_PURGE_INODE(qi->qi_uquotaip);
1312 qi->qi_uquotaip = NULL; /* paranoia */
1313 }
1314 if (qi->qi_gquotaip) {
1315 XFS_PURGE_INODE(qi->qi_gquotaip);
1316 qi->qi_gquotaip = NULL;
1317 }
1318 mutex_destroy(&qi->qi_quotaofflock);
1319 kmem_free(qi, sizeof(xfs_quotainfo_t));
1320 mp->m_quotainfo = NULL;
1321}
1322
1323
1324
1325/* ------------------- PRIVATE STATIC FUNCTIONS ----------------------- */
1326
1327/* ARGSUSED */
1328STATIC void
1329xfs_qm_list_init(
1330 xfs_dqlist_t *list,
1331 char *str,
1332 int n)
1333{
1334 mutex_init(&list->qh_lock, MUTEX_DEFAULT, str);
1335 list->qh_next = NULL;
1336 list->qh_version = 0;
1337 list->qh_nelems = 0;
1338}
1339
1340STATIC void
1341xfs_qm_list_destroy(
1342 xfs_dqlist_t *list)
1343{
1344 mutex_destroy(&(list->qh_lock));
1345}
1346
1347
1348/*
1349 * Stripped down version of dqattach. This doesn't attach, or even look at the
1350 * dquots attached to the inode. The rationale is that there won't be any
1351 * attached at the time this is called from quotacheck.
1352 */
1353STATIC int
1354xfs_qm_dqget_noattach(
1355 xfs_inode_t *ip,
1356 xfs_dquot_t **O_udqpp,
1357 xfs_dquot_t **O_gdqpp)
1358{
1359 int error;
1360 xfs_mount_t *mp;
1361 xfs_dquot_t *udqp, *gdqp;
1362
1363 ASSERT(XFS_ISLOCKED_INODE_EXCL(ip));
1364 mp = ip->i_mount;
1365 udqp = NULL;
1366 gdqp = NULL;
1367
1368 if (XFS_IS_UQUOTA_ON(mp)) {
1369 ASSERT(ip->i_udquot == NULL);
1370 /*
1371 * We want the dquot allocated if it doesn't exist.
1372 */
1373 if ((error = xfs_qm_dqget(mp, ip, ip->i_d.di_uid, XFS_DQ_USER,
1374 XFS_QMOPT_DQALLOC | XFS_QMOPT_DOWARN,
1375 &udqp))) {
1376 /*
1377 * Shouldn't be able to turn off quotas here.
1378 */
1379 ASSERT(error != ESRCH);
1380 ASSERT(error != ENOENT);
1381 return (error);
1382 }
1383 ASSERT(udqp);
1384 }
1385
c8ad20ff 1386 if (XFS_IS_OQUOTA_ON(mp)) {
1da177e4
LT		 1387 ASSERT(ip->i_gdquot == NULL);
1388 if (udqp)
1389 xfs_dqunlock(udqp);
c8ad20ff
NS		 1390 error = XFS_IS_GQUOTA_ON(mp) ?
1391 xfs_qm_dqget(mp, ip,
1392 ip->i_d.di_gid, XFS_DQ_GROUP,
1393 XFS_QMOPT_DQALLOC|XFS_QMOPT_DOWARN,
1394 &gdqp) :
1395 xfs_qm_dqget(mp, ip,
1396 ip->i_d.di_projid, XFS_DQ_PROJ,
1397 XFS_QMOPT_DQALLOC|XFS_QMOPT_DOWARN,
1398 &gdqp);
1399 if (error) {
1da177e4
LT		 1400 if (udqp)
1401 xfs_qm_dqrele(udqp);
1402 ASSERT(error != ESRCH);
1403 ASSERT(error != ENOENT);
1404 return (error);
1405 }
1406 ASSERT(gdqp);
1407
1408 /* Reacquire the locks in the right order */
1409 if (udqp) {
1410 if (! xfs_qm_dqlock_nowait(udqp)) {
1411 xfs_dqunlock(gdqp);
1412 xfs_dqlock(udqp);
1413 xfs_dqlock(gdqp);
1414 }
1415 }
1416 }
1417
1418 *O_udqpp = udqp;
1419 *O_gdqpp = gdqp;
1420
1421#ifdef QUOTADEBUG
1422 if (udqp) ASSERT(XFS_DQ_IS_LOCKED(udqp));
1423 if (gdqp) ASSERT(XFS_DQ_IS_LOCKED(gdqp));
1424#endif
1425 return (0);
1426}
1427
1428/*
1429 * Create an inode and return with a reference already taken, but unlocked
1430 * This is how we create quota inodes
1431 */
1432STATIC int
1433xfs_qm_qino_alloc(
1434 xfs_mount_t *mp,
1435 xfs_inode_t **ip,
1436 __int64_t sbfields,
1437 uint flags)
1438{
1439 xfs_trans_t *tp;
1440 int error;
1441 unsigned long s;
1442 cred_t zerocr;
1443 int committed;
1444
1445 tp = xfs_trans_alloc(mp,XFS_TRANS_QM_QINOCREATE);
1446 if ((error = xfs_trans_reserve(tp,
1447 XFS_QM_QINOCREATE_SPACE_RES(mp),
1448 XFS_CREATE_LOG_RES(mp), 0,
1449 XFS_TRANS_PERM_LOG_RES,
1450 XFS_CREATE_LOG_COUNT))) {
1451 xfs_trans_cancel(tp, 0);
1452 return (error);
1453 }
1454 memset(&zerocr, 0, sizeof(zerocr));
1455
1456 if ((error = xfs_dir_ialloc(&tp, mp->m_rootip, S_IFREG, 1, 0,
1457 &zerocr, 0, 1, ip, &committed))) {
1458 xfs_trans_cancel(tp, XFS_TRANS_RELEASE_LOG_RES |
1459 XFS_TRANS_ABORT);
1460 return (error);
1461 }
1462
1463 /*
1464 * Keep an extra reference to this quota inode. This inode is
1465 * locked exclusively and joined to the transaction already.
1466 */
1467 ASSERT(XFS_ISLOCKED_INODE_EXCL(*ip));
1468 VN_HOLD(XFS_ITOV((*ip)));
1469
1470 /*
1471 * Make the changes in the superblock, and log those too.
1472 * sbfields arg may contain fields other than *QUOTINO;
1473 * VERSIONNUM for example.
1474 */
1475 s = XFS_SB_LOCK(mp);
1476 if (flags & XFS_QMOPT_SBVERSION) {
1477#if defined(DEBUG) && defined(XFS_LOUD_RECOVERY)
1478 unsigned oldv = mp->m_sb.sb_versionnum;
1479#endif
1480 ASSERT(!XFS_SB_VERSION_HASQUOTA(&mp->m_sb));
1481 ASSERT((sbfields & (XFS_SB_VERSIONNUM | XFS_SB_UQUOTINO |
1482 XFS_SB_GQUOTINO | XFS_SB_QFLAGS)) ==
1483 (XFS_SB_VERSIONNUM | XFS_SB_UQUOTINO |
1484 XFS_SB_GQUOTINO | XFS_SB_QFLAGS));
1485
1486 XFS_SB_VERSION_ADDQUOTA(&mp->m_sb);
1487 mp->m_sb.sb_uquotino = NULLFSINO;
1488 mp->m_sb.sb_gquotino = NULLFSINO;
1489
1490 /* qflags will get updated _after_ quotacheck */
1491 mp->m_sb.sb_qflags = 0;
1492#if defined(DEBUG) && defined(XFS_LOUD_RECOVERY)
1493 cmn_err(CE_NOTE,
1494 "Old superblock version %x, converting to %x.",
1495 oldv, mp->m_sb.sb_versionnum);
1496#endif
1497 }
1498 if (flags & XFS_QMOPT_UQUOTA)
1499 mp->m_sb.sb_uquotino = (*ip)->i_ino;
1500 else
1501 mp->m_sb.sb_gquotino = (*ip)->i_ino;
1502 XFS_SB_UNLOCK(mp, s);
1503 xfs_mod_sb(tp, sbfields);
1504
1505 if ((error = xfs_trans_commit(tp, XFS_TRANS_RELEASE_LOG_RES,
1506 NULL))) {
1507 xfs_fs_cmn_err(CE_ALERT, mp, "XFS qino_alloc failed!");
1508 return (error);
1509 }
1510 return (0);
1511}
1512
1513
1514STATIC int
1515xfs_qm_reset_dqcounts(
1516 xfs_mount_t *mp,
1517 xfs_buf_t *bp,
1518 xfs_dqid_t id,
1519 uint type)
1520{
1521 xfs_disk_dquot_t *ddq;
1522 int j;
1523
1524 xfs_buftrace("RESET DQUOTS", bp);
1525 /*
1526 * Reset all counters and timers. They'll be
1527 * started afresh by xfs_qm_quotacheck.
1528 */
1529#ifdef DEBUG
1530 j = XFS_FSB_TO_B(mp, XFS_DQUOT_CLUSTER_SIZE_FSB);
1531 do_div(j, sizeof(xfs_dqblk_t));
1532 ASSERT(XFS_QM_DQPERBLK(mp) == j);
1533#endif
1534 ddq = (xfs_disk_dquot_t *)XFS_BUF_PTR(bp);
1535 for (j = 0; j < XFS_QM_DQPERBLK(mp); j++) {
1536 /*
1537 * Do a sanity check, and if needed, repair the dqblk. Don't
1538 * output any warnings because it's perfectly possible to
1539 * find unitialized dquot blks. See comment in xfs_qm_dqcheck.
1540 */
1541 (void) xfs_qm_dqcheck(ddq, id+j, type, XFS_QMOPT_DQREPAIR,
1542 "xfs_quotacheck");
1543 INT_SET(ddq->d_bcount, ARCH_CONVERT, 0ULL);
1544 INT_SET(ddq->d_icount, ARCH_CONVERT, 0ULL);
1545 INT_SET(ddq->d_rtbcount, ARCH_CONVERT, 0ULL);
1546 INT_SET(ddq->d_btimer, ARCH_CONVERT, (time_t)0);
1547 INT_SET(ddq->d_itimer, ARCH_CONVERT, (time_t)0);
1548 INT_SET(ddq->d_bwarns, ARCH_CONVERT, 0UL);
1549 INT_SET(ddq->d_iwarns, ARCH_CONVERT, 0UL);
1550 ddq = (xfs_disk_dquot_t *) ((xfs_dqblk_t *)ddq + 1);
1551 }
1552
1553 return (0);
1554}
1555
1556STATIC int
1557xfs_qm_dqiter_bufs(
1558 xfs_mount_t *mp,
1559 xfs_dqid_t firstid,
1560 xfs_fsblock_t bno,
1561 xfs_filblks_t blkcnt,
1562 uint flags)
1563{
1564 xfs_buf_t *bp;
1565 int error;
1566 int notcommitted;
1567 int incr;
c8ad20ff 1568 int type;
1da177e4
LT		 1569
1570 ASSERT(blkcnt > 0);
1571 notcommitted = 0;
1572 incr = (blkcnt > XFS_QM_MAX_DQCLUSTER_LOGSZ) ?
1573 XFS_QM_MAX_DQCLUSTER_LOGSZ : blkcnt;
c8ad20ff
NS		 1574 type = flags & XFS_QMOPT_UQUOTA ? XFS_DQ_USER :
1575 (flags & XFS_QMOPT_PQUOTA ? XFS_DQ_PROJ : XFS_DQ_GROUP);
1da177e4
LT		 1576 error = 0;
1577
1578 /*
1579 * Blkcnt arg can be a very big number, and might even be
1580 * larger than the log itself. So, we have to break it up into
1581 * manageable-sized transactions.
1582 * Note that we don't start a permanent transaction here; we might
1583 * not be able to get a log reservation for the whole thing up front,
1584 * and we don't really care to either, because we just discard
1585 * everything if we were to crash in the middle of this loop.
1586 */
1587 while (blkcnt--) {
1588 error = xfs_trans_read_buf(mp, NULL, mp->m_ddev_targp,
1589 XFS_FSB_TO_DADDR(mp, bno),
1590 (int)XFS_QI_DQCHUNKLEN(mp), 0, &bp);
1591 if (error)
1592 break;
1593
c8ad20ff 1594 (void) xfs_qm_reset_dqcounts(mp, bp, firstid, type);
1da177e4
LT		 1595 xfs_bdwrite(mp, bp);
1596 /*
1597 * goto the next block.
1598 */
1599 bno++;
1600 firstid += XFS_QM_DQPERBLK(mp);
1601 }
1602 return (error);
1603}
1604
1605/*
c8ad20ff 1606 * Iterate over all allocated USR/GRP/PRJ dquots in the system, calling a
1da177e4
LT		 1607 * caller supplied function for every chunk of dquots that we find.
1608 */
1609STATIC int
1610xfs_qm_dqiterate(
1611 xfs_mount_t *mp,
1612 xfs_inode_t *qip,
1613 uint flags)
1614{
1615 xfs_bmbt_irec_t *map;
1616 int i, nmaps; /* number of map entries */
1617 int error; /* return value */
1618 xfs_fileoff_t lblkno;
1619 xfs_filblks_t maxlblkcnt;
1620 xfs_dqid_t firstid;
1621 xfs_fsblock_t rablkno;
1622 xfs_filblks_t rablkcnt;
1623
1624 error = 0;
1625 /*
1626 * This looks racey, but we can't keep an inode lock across a
1627 * trans_reserve. But, this gets called during quotacheck, and that
1628 * happens only at mount time which is single threaded.
1629 */
1630 if (qip->i_d.di_nblocks == 0)
1631 return (0);
1632
1633 map = kmem_alloc(XFS_DQITER_MAP_SIZE * sizeof(*map), KM_SLEEP);
1634
1635 lblkno = 0;
1636 maxlblkcnt = XFS_B_TO_FSB(mp, (xfs_ufsize_t)XFS_MAXIOFFSET(mp));
1637 do {
1638 nmaps = XFS_DQITER_MAP_SIZE;
1639 /*
1640 * We aren't changing the inode itself. Just changing
1641 * some of its data. No new blocks are added here, and
1642 * the inode is never added to the transaction.
1643 */
1644 xfs_ilock(qip, XFS_ILOCK_SHARED);
1645 error = xfs_bmapi(NULL, qip, lblkno,
1646 maxlblkcnt - lblkno,
1647 XFS_BMAPI_METADATA,
1648 NULL,
1649 0, map, &nmaps, NULL);
1650 xfs_iunlock(qip, XFS_ILOCK_SHARED);
1651 if (error)
1652 break;
1653
1654 ASSERT(nmaps <= XFS_DQITER_MAP_SIZE);
1655 for (i = 0; i < nmaps; i++) {
1656 ASSERT(map[i].br_startblock != DELAYSTARTBLOCK);
1657 ASSERT(map[i].br_blockcount);
1658
1659
1660 lblkno += map[i].br_blockcount;
1661
1662 if (map[i].br_startblock == HOLESTARTBLOCK)
1663 continue;
1664
1665 firstid = (xfs_dqid_t) map[i].br_startoff *
1666 XFS_QM_DQPERBLK(mp);
1667 /*
1668 * Do a read-ahead on the next extent.
1669 */
1670 if ((i+1 < nmaps) &&
1671 (map[i+1].br_startblock != HOLESTARTBLOCK)) {
1672 rablkcnt = map[i+1].br_blockcount;
1673 rablkno = map[i+1].br_startblock;
1674 while (rablkcnt--) {
1675 xfs_baread(mp->m_ddev_targp,
1676 XFS_FSB_TO_DADDR(mp, rablkno),
1677 (int)XFS_QI_DQCHUNKLEN(mp));
1678 rablkno++;
1679 }
1680 }
1681 /*
1682 * Iterate thru all the blks in the extent and
1683 * reset the counters of all the dquots inside them.
1684 */
1685 if ((error = xfs_qm_dqiter_bufs(mp,
1686 firstid,
1687 map[i].br_startblock,
1688 map[i].br_blockcount,
1689 flags))) {
1690 break;
1691 }
1692 }
1693
1694 if (error)
1695 break;
1696 } while (nmaps > 0);
1697
1698 kmem_free(map, XFS_DQITER_MAP_SIZE * sizeof(*map));
1699
1700 return (error);
1701}
1702
1703/*
1704 * Called by dqusage_adjust in doing a quotacheck.
1705 * Given the inode, and a dquot (either USR or GRP, doesn't matter),
1706 * this updates its incore copy as well as the buffer copy. This is
1707 * so that once the quotacheck is done, we can just log all the buffers,
1708 * as opposed to logging numerous updates to individual dquots.
1709 */
1710STATIC void
1711xfs_qm_quotacheck_dqadjust(
1712 xfs_dquot_t *dqp,
1713 xfs_qcnt_t nblks,
1714 xfs_qcnt_t rtblks)
1715{
1716 ASSERT(XFS_DQ_IS_LOCKED(dqp));
1717 xfs_dqtrace_entry(dqp, "QCHECK DQADJUST");
1718 /*
1719 * Adjust the inode count and the block count to reflect this inode's
1720 * resource usage.
1721 */
1722 INT_MOD(dqp->q_core.d_icount, ARCH_CONVERT, +1);
1723 dqp->q_res_icount++;
1724 if (nblks) {
1725 INT_MOD(dqp->q_core.d_bcount, ARCH_CONVERT, nblks);
1726 dqp->q_res_bcount += nblks;
1727 }
1728 if (rtblks) {
1729 INT_MOD(dqp->q_core.d_rtbcount, ARCH_CONVERT, rtblks);
1730 dqp->q_res_rtbcount += rtblks;
1731 }
1732
1733 /*
1734 * Set default limits, adjust timers (since we changed usages)
1735 */
1736 if (! XFS_IS_SUSER_DQUOT(dqp)) {
1737 xfs_qm_adjust_dqlimits(dqp->q_mount, &dqp->q_core);
1738 xfs_qm_adjust_dqtimers(dqp->q_mount, &dqp->q_core);
1739 }
1740
1741 dqp->dq_flags |= XFS_DQ_DIRTY;
1742}
1743
1744STATIC int
1745xfs_qm_get_rtblks(
1746 xfs_inode_t *ip,
1747 xfs_qcnt_t *O_rtblks)
1748{
1749 xfs_filblks_t rtblks; /* total rt blks */
1750 xfs_ifork_t *ifp; /* inode fork pointer */
1751 xfs_extnum_t nextents; /* number of extent entries */
1752 xfs_bmbt_rec_t *base; /* base of extent array */
1753 xfs_bmbt_rec_t *ep; /* pointer to an extent entry */
1754 int error;
1755
1756 ASSERT(XFS_IS_REALTIME_INODE(ip));
1757 ifp = XFS_IFORK_PTR(ip, XFS_DATA_FORK);
1758 if (!(ifp->if_flags & XFS_IFEXTENTS)) {
1759 if ((error = xfs_iread_extents(NULL, ip, XFS_DATA_FORK)))
1760 return (error);
1761 }
1762 rtblks = 0;
1763 nextents = ifp->if_bytes / sizeof(xfs_bmbt_rec_t);
1764 base = &ifp->if_u1.if_extents[0];
1765 for (ep = base; ep < &base[nextents]; ep++)
1766 rtblks += xfs_bmbt_get_blockcount(ep);
1767 *O_rtblks = (xfs_qcnt_t)rtblks;
1768 return (0);
1769}
1770
1771/*
1772 * callback routine supplied to bulkstat(). Given an inumber, find its
1773 * dquots and update them to account for resources taken by that inode.
1774 */
1775/* ARGSUSED */
1776STATIC int
1777xfs_qm_dqusage_adjust(
1778 xfs_mount_t *mp, /* mount point for filesystem */
1779 xfs_ino_t ino, /* inode number to get data for */
1780 void __user *buffer, /* not used */
1781 int ubsize, /* not used */
1782 void *private_data, /* not used */
1783 xfs_daddr_t bno, /* starting block of inode cluster */
1784 int *ubused, /* not used */
1785 void *dip, /* on-disk inode pointer (not used) */
1786 int *res) /* result code value */
1787{
1788 xfs_inode_t *ip;
1789 xfs_dquot_t *udqp, *gdqp;
1790 xfs_qcnt_t nblks, rtblks;
1791 int error;
1792
1793 ASSERT(XFS_IS_QUOTA_RUNNING(mp));
1794
1795 /*
1796 * rootino must have its resources accounted for, not so with the quota
1797 * inodes.
1798 */
1799 if (ino == mp->m_sb.sb_uquotino || ino == mp->m_sb.sb_gquotino) {
1800 *res = BULKSTAT_RV_NOTHING;
1801 return XFS_ERROR(EINVAL);
1802 }
1803
1804 /*
1805 * We don't _need_ to take the ilock EXCL. However, the xfs_qm_dqget
1806 * interface expects the inode to be exclusively locked because that's
1807 * the case in all other instances. It's OK that we do this because
1808 * quotacheck is done only at mount time.
1809 */
1810 if ((error = xfs_iget(mp, NULL, ino, 0, XFS_ILOCK_EXCL, &ip, bno))) {
1811 *res = BULKSTAT_RV_NOTHING;
1812 return (error);
1813 }
1814
1815 if (ip->i_d.di_mode == 0) {
1816 xfs_iput_new(ip, XFS_ILOCK_EXCL);
1817 *res = BULKSTAT_RV_NOTHING;
1818 return XFS_ERROR(ENOENT);
1819 }
1820
1821 /*
1822 * Obtain the locked dquots. In case of an error (eg. allocation
1823 * fails for ENOSPC), we return the negative of the error number
1824 * to bulkstat, so that it can get propagated to quotacheck() and
1825 * making us disable quotas for the file system.
1826 */
1827 if ((error = xfs_qm_dqget_noattach(ip, &udqp, &gdqp))) {
1828 xfs_iput(ip, XFS_ILOCK_EXCL);
1829 *res = BULKSTAT_RV_GIVEUP;
1830 return (error);
1831 }
1832
1833 rtblks = 0;
1834 if (! XFS_IS_REALTIME_INODE(ip)) {
1835 nblks = (xfs_qcnt_t)ip->i_d.di_nblocks;
1836 } else {
1837 /*
1838 * Walk thru the extent list and count the realtime blocks.
1839 */
1840 if ((error = xfs_qm_get_rtblks(ip, &rtblks))) {
1841 xfs_iput(ip, XFS_ILOCK_EXCL);
1842 if (udqp)
1843 xfs_qm_dqput(udqp);
1844 if (gdqp)
1845 xfs_qm_dqput(gdqp);
1846 *res = BULKSTAT_RV_GIVEUP;
1847 return (error);
1848 }
1849 nblks = (xfs_qcnt_t)ip->i_d.di_nblocks - rtblks;
1850 }
1851 ASSERT(ip->i_delayed_blks == 0);
1852
1853 /*
1854 * We can't release the inode while holding its dquot locks.
1855 * The inode can go into inactive and might try to acquire the dquotlocks.
1856 * So, just unlock here and do a vn_rele at the end.
1857 */
1858 xfs_iunlock(ip, XFS_ILOCK_EXCL);
1859
1860 /*
1861 * Add the (disk blocks and inode) resources occupied by this
1862 * inode to its dquots. We do this adjustment in the incore dquot,
1863 * and also copy the changes to its buffer.
1864 * We don't care about putting these changes in a transaction
1865 * envelope because if we crash in the middle of a 'quotacheck'
1866 * we have to start from the beginning anyway.
1867 * Once we're done, we'll log all the dquot bufs.
1868 *
1869 * The *QUOTA_ON checks below may look pretty racey, but quotachecks
1870 * and quotaoffs don't race. (Quotachecks happen at mount time only).
1871 */
1872 if (XFS_IS_UQUOTA_ON(mp)) {
1873 ASSERT(udqp);
1874 xfs_qm_quotacheck_dqadjust(udqp, nblks, rtblks);
1875 xfs_qm_dqput(udqp);
1876 }
c8ad20ff 1877 if (XFS_IS_OQUOTA_ON(mp)) {
1da177e4
LT		 1878 ASSERT(gdqp);
1879 xfs_qm_quotacheck_dqadjust(gdqp, nblks, rtblks);
1880 xfs_qm_dqput(gdqp);
1881 }
1882 /*
1883 * Now release the inode. This will send it to 'inactive', and
1884 * possibly even free blocks.
1885 */
1886 VN_RELE(XFS_ITOV(ip));
1887
1888 /*
1889 * Goto next inode.
1890 */
1891 *res = BULKSTAT_RV_DIDONE;
1892 return (0);
1893}
1894
1895/*
1896 * Walk thru all the filesystem inodes and construct a consistent view
1897 * of the disk quota world. If the quotacheck fails, disable quotas.
1898 */
1899int
1900xfs_qm_quotacheck(
1901 xfs_mount_t *mp)
1902{
1903 int done, count, error;
1904 xfs_ino_t lastino;
1905 size_t structsz;
1906 xfs_inode_t *uip, *gip;
1907 uint flags;
1908
1909 count = INT_MAX;
1910 structsz = 1;
1911 lastino = 0;
1912 flags = 0;
1913
1914 ASSERT(XFS_QI_UQIP(mp) || XFS_QI_GQIP(mp));
1915 ASSERT(XFS_IS_QUOTA_RUNNING(mp));
1916
1917 /*
1918 * There should be no cached dquots. The (simplistic) quotacheck
1919 * algorithm doesn't like that.
1920 */
1921 ASSERT(XFS_QI_MPLNDQUOTS(mp) == 0);
1922
1923 cmn_err(CE_NOTE, "XFS quotacheck %s: Please wait.", mp->m_fsname);
1924
1925 /*
c8ad20ff 1926 * First we go thru all the dquots on disk, USR and GRP/PRJ, and reset
1da177e4
LT		 1927 * their counters to zero. We need a clean slate.
1928 * We don't log our changes till later.
1929 */
1930 if ((uip = XFS_QI_UQIP(mp))) {
1931 if ((error = xfs_qm_dqiterate(mp, uip, XFS_QMOPT_UQUOTA)))
1932 goto error_return;
1933 flags |= XFS_UQUOTA_CHKD;
1934 }
1935
1936 if ((gip = XFS_QI_GQIP(mp))) {
c8ad20ff
NS		 1937 if ((error = xfs_qm_dqiterate(mp, gip, XFS_IS_GQUOTA_ON(mp) ?
1938 XFS_QMOPT_GQUOTA : XFS_QMOPT_PQUOTA)))
1da177e4 1939 goto error_return;
c8ad20ff 1940 flags |= XFS_OQUOTA_CHKD;
1da177e4
LT		 1941 }
1942
1943 do {
1944 /*
1945 * Iterate thru all the inodes in the file system,
1946 * adjusting the corresponding dquot counters in core.
1947 */
1948 if ((error = xfs_bulkstat(mp, &lastino, &count,
1949 xfs_qm_dqusage_adjust, NULL,
1950 structsz, NULL,
1951 BULKSTAT_FG_IGET|BULKSTAT_FG_VFSLOCKED,
1952 &done)))
1953 break;
1954
1955 } while (! done);
1956
1957 /*
1958 * We can get this error if we couldn't do a dquot allocation inside
1959 * xfs_qm_dqusage_adjust (via bulkstat). We don't care about the
1960 * dirty dquots that might be cached, we just want to get rid of them
1961 * and turn quotaoff. The dquots won't be attached to any of the inodes
1962 * at this point (because we intentionally didn't in dqget_noattach).
1963 */
1964 if (error) {
1965 xfs_qm_dqpurge_all(mp,
1966 XFS_QMOPT_UQUOTA|XFS_QMOPT_GQUOTA|
c8ad20ff 1967 XFS_QMOPT_PQUOTA|XFS_QMOPT_QUOTAOFF);
1da177e4
LT		 1968 goto error_return;
1969 }
1970 /*
1971 * We've made all the changes that we need to make incore.
1972 * Now flush_them down to disk buffers.
1973 */
1974 xfs_qm_dqflush_all(mp, XFS_QMOPT_DELWRI);
1975
1976 /*
1977 * We didn't log anything, because if we crashed, we'll have to
1978 * start the quotacheck from scratch anyway. However, we must make
1979 * sure that our dquot changes are secure before we put the
1980 * quotacheck'd stamp on the superblock. So, here we do a synchronous
1981 * flush.
1982 */
1983 XFS_bflush(mp->m_ddev_targp);
1984
1985 /*
1986 * If one type of quotas is off, then it will lose its
1987 * quotachecked status, since we won't be doing accounting for
1988 * that type anymore.
1989 */
c8ad20ff 1990 mp->m_qflags &= ~(XFS_OQUOTA_CHKD | XFS_UQUOTA_CHKD);
1da177e4
LT		 1991 mp->m_qflags |= flags;
1992
1993 XQM_LIST_PRINT(&(XFS_QI_MPL_LIST(mp)), MPL_NEXT, "++++ Mp list +++");
1994
1995 error_return:
1996 if (error) {
1997 cmn_err(CE_WARN, "XFS quotacheck %s: Unsuccessful (Error %d): "
1998 "Disabling quotas.",
1999 mp->m_fsname, error);
2000 /*
2001 * We must turn off quotas.
2002 */
2003 ASSERT(mp->m_quotainfo != NULL);
2004 ASSERT(xfs_Gqm != NULL);
2005 xfs_qm_destroy_quotainfo(mp);
2006 xfs_mount_reset_sbqflags(mp);
2007 } else {
2008 cmn_err(CE_NOTE, "XFS quotacheck %s: Done.", mp->m_fsname);
2009 }
2010 return (error);
2011}
2012
2013/*
2014 * This is called after the superblock has been read in and we're ready to
2015 * iget the quota inodes.
2016 */
2017STATIC int
2018xfs_qm_init_quotainos(
2019 xfs_mount_t *mp)
2020{
2021 xfs_inode_t *uip, *gip;
2022 int error;
2023 __int64_t sbflags;
2024 uint flags;
2025
2026 ASSERT(mp->m_quotainfo);
2027 uip = gip = NULL;
2028 sbflags = 0;
2029 flags = 0;
2030
2031 /*
2032 * Get the uquota and gquota inodes
2033 */
2034 if (XFS_SB_VERSION_HASQUOTA(&mp->m_sb)) {
2035 if (XFS_IS_UQUOTA_ON(mp) &&
2036 mp->m_sb.sb_uquotino != NULLFSINO) {
2037 ASSERT(mp->m_sb.sb_uquotino > 0);
2038 if ((error = xfs_iget(mp, NULL, mp->m_sb.sb_uquotino,
2039 0, 0, &uip, 0)))
2040 return XFS_ERROR(error);
2041 }
c8ad20ff 2042 if (XFS_IS_OQUOTA_ON(mp) &&
1da177e4
LT		 2043 mp->m_sb.sb_gquotino != NULLFSINO) {
2044 ASSERT(mp->m_sb.sb_gquotino > 0);
2045 if ((error = xfs_iget(mp, NULL, mp->m_sb.sb_gquotino,
2046 0, 0, &gip, 0))) {
2047 if (uip)
2048 VN_RELE(XFS_ITOV(uip));
2049 return XFS_ERROR(error);
2050 }
2051 }
2052 } else {
2053 flags |= XFS_QMOPT_SBVERSION;
2054 sbflags |= (XFS_SB_VERSIONNUM | XFS_SB_UQUOTINO |
2055 XFS_SB_GQUOTINO | XFS_SB_QFLAGS);
2056 }
2057
2058 /*
2059 * Create the two inodes, if they don't exist already. The changes
2060 * made above will get added to a transaction and logged in one of
2061 * the qino_alloc calls below. If the device is readonly,
2062 * temporarily switch to read-write to do this.
2063 */
2064 if (XFS_IS_UQUOTA_ON(mp) && uip == NULL) {
2065 if ((error = xfs_qm_qino_alloc(mp, &uip,
2066 sbflags | XFS_SB_UQUOTINO,
2067 flags | XFS_QMOPT_UQUOTA)))
2068 return XFS_ERROR(error);
2069
2070 flags &= ~XFS_QMOPT_SBVERSION;
2071 }
c8ad20ff
NS		 2072 if (XFS_IS_OQUOTA_ON(mp) && gip == NULL) {
2073 flags |= (XFS_IS_GQUOTA_ON(mp) ?
2074 XFS_QMOPT_GQUOTA : XFS_QMOPT_PQUOTA);
2075 error = xfs_qm_qino_alloc(mp, &gip,
2076 sbflags | XFS_SB_GQUOTINO, flags);
2077 if (error) {
1da177e4
LT		 2078 if (uip)
2079 VN_RELE(XFS_ITOV(uip));
2080
2081 return XFS_ERROR(error);
2082 }
2083 }
2084
2085 XFS_QI_UQIP(mp) = uip;
2086 XFS_QI_GQIP(mp) = gip;
2087
2088 return (0);
2089}
2090
2091
2092/*
2093 * Traverse the freelist of dquots and attempt to reclaim a maximum of
2094 * 'howmany' dquots. This operation races with dqlookup(), and attempts to
2095 * favor the lookup function ...
2096 * XXXsup merge this with qm_reclaim_one().
2097 */
2098STATIC int
2099xfs_qm_shake_freelist(
2100 int howmany)
2101{
2102 int nreclaimed;
2103 xfs_dqhash_t *hash;
2104 xfs_dquot_t *dqp, *nextdqp;
2105 int restarts;
2106 int nflushes;
2107
2108 if (howmany <= 0)
2109 return (0);
2110
2111 nreclaimed = 0;
2112 restarts = 0;
2113 nflushes = 0;
2114
2115#ifdef QUOTADEBUG
2116 cmn_err(CE_DEBUG, "Shake free 0x%x", howmany);
2117#endif
2118 /* lock order is : hashchainlock, freelistlock, mplistlock */
2119 tryagain:
2120 xfs_qm_freelist_lock(xfs_Gqm);
2121
2122 for (dqp = xfs_Gqm->qm_dqfreelist.qh_next;
2123 ((dqp != (xfs_dquot_t *) &xfs_Gqm->qm_dqfreelist) &&
2124 nreclaimed < howmany); ) {
2125 xfs_dqlock(dqp);
2126
2127 /*
2128 * We are racing with dqlookup here. Naturally we don't
2129 * want to reclaim a dquot that lookup wants.
2130 */
2131 if (dqp->dq_flags & XFS_DQ_WANT) {
2132 xfs_dqunlock(dqp);
2133 xfs_qm_freelist_unlock(xfs_Gqm);
2134 if (++restarts >= XFS_QM_RECLAIM_MAX_RESTARTS)
2135 return (nreclaimed);
2136 XQM_STATS_INC(xqmstats.xs_qm_dqwants);
2137 goto tryagain;
2138 }
2139
2140 /*
2141 * If the dquot is inactive, we are assured that it is
2142 * not on the mplist or the hashlist, and that makes our
2143 * life easier.
2144 */
2145 if (dqp->dq_flags & XFS_DQ_INACTIVE) {
2146 ASSERT(dqp->q_mount == NULL);
2147 ASSERT(! XFS_DQ_IS_DIRTY(dqp));
2148 ASSERT(dqp->HL_PREVP == NULL);
2149 ASSERT(dqp->MPL_PREVP == NULL);
2150 XQM_STATS_INC(xqmstats.xs_qm_dqinact_reclaims);
2151 nextdqp = dqp->dq_flnext;
2152 goto off_freelist;
2153 }
2154
2155 ASSERT(dqp->MPL_PREVP);
2156 /*
2157 * Try to grab the flush lock. If this dquot is in the process of
2158 * getting flushed to disk, we don't want to reclaim it.
2159 */
2160 if (! xfs_qm_dqflock_nowait(dqp)) {
2161 xfs_dqunlock(dqp);
2162 dqp = dqp->dq_flnext;
2163 continue;
2164 }
2165
2166 /*
2167 * We have the flush lock so we know that this is not in the
2168 * process of being flushed. So, if this is dirty, flush it
2169 * DELWRI so that we don't get a freelist infested with
2170 * dirty dquots.
2171 */
2172 if (XFS_DQ_IS_DIRTY(dqp)) {
2173 xfs_dqtrace_entry(dqp, "DQSHAKE: DQDIRTY");
2174 /*
2175 * We flush it delayed write, so don't bother
2176 * releasing the mplock.
2177 */
2178 (void) xfs_qm_dqflush(dqp, XFS_QMOPT_DELWRI);
2179 xfs_dqunlock(dqp); /* dqflush unlocks dqflock */
2180 dqp = dqp->dq_flnext;
2181 continue;
2182 }
2183 /*
2184 * We're trying to get the hashlock out of order. This races
2185 * with dqlookup; so, we giveup and goto the next dquot if
2186 * we couldn't get the hashlock. This way, we won't starve
2187 * a dqlookup process that holds the hashlock that is
2188 * waiting for the freelist lock.
2189 */
2190 if (! xfs_qm_dqhashlock_nowait(dqp)) {
2191 xfs_dqfunlock(dqp);
2192 xfs_dqunlock(dqp);
2193 dqp = dqp->dq_flnext;
2194 continue;
2195 }
2196 /*
2197 * This races with dquot allocation code as well as dqflush_all
2198 * and reclaim code. So, if we failed to grab the mplist lock,
2199 * giveup everything and start over.
2200 */
2201 hash = dqp->q_hash;
2202 ASSERT(hash);
2203 if (! xfs_qm_mplist_nowait(dqp->q_mount)) {
2204 /* XXX put a sentinel so that we can come back here */
2205 xfs_dqfunlock(dqp);
2206 xfs_dqunlock(dqp);
2207 XFS_DQ_HASH_UNLOCK(hash);
2208 xfs_qm_freelist_unlock(xfs_Gqm);
2209 if (++restarts >= XFS_QM_RECLAIM_MAX_RESTARTS)
2210 return (nreclaimed);
2211 goto tryagain;
2212 }
2213 xfs_dqtrace_entry(dqp, "DQSHAKE: UNLINKING");
2214#ifdef QUOTADEBUG
2215 cmn_err(CE_DEBUG, "Shake 0x%p, ID 0x%x\n",
2216 dqp, INT_GET(dqp->q_core.d_id, ARCH_CONVERT));
2217#endif
2218 ASSERT(dqp->q_nrefs == 0);
2219 nextdqp = dqp->dq_flnext;
2220 XQM_MPLIST_REMOVE(&(XFS_QI_MPL_LIST(dqp->q_mount)), dqp);
2221 XQM_HASHLIST_REMOVE(hash, dqp);
2222 xfs_dqfunlock(dqp);
2223 xfs_qm_mplist_unlock(dqp->q_mount);
2224 XFS_DQ_HASH_UNLOCK(hash);
2225
2226 off_freelist:
2227 XQM_FREELIST_REMOVE(dqp);
2228 xfs_dqunlock(dqp);
2229 nreclaimed++;
2230 XQM_STATS_INC(xqmstats.xs_qm_dqshake_reclaims);
2231 xfs_qm_dqdestroy(dqp);
2232 dqp = nextdqp;
2233 }
2234 xfs_qm_freelist_unlock(xfs_Gqm);
2235 return (nreclaimed);
2236}
2237
2238
2239/*
2240 * The kmem_shake interface is invoked when memory is running low.
2241 */
2242/* ARGSUSED */
2243STATIC int
2244xfs_qm_shake(int nr_to_scan, unsigned int gfp_mask)
2245{
2246 int ndqused, nfree, n;
2247
2248 if (!kmem_shake_allow(gfp_mask))
2249 return (0);
2250 if (!xfs_Gqm)
2251 return (0);
2252
2253 nfree = xfs_Gqm->qm_dqfreelist.qh_nelems; /* free dquots */
2254 /* incore dquots in all f/s's */
2255 ndqused = atomic_read(&xfs_Gqm->qm_totaldquots) - nfree;
2256
2257 ASSERT(ndqused >= 0);
2258
2259 if (nfree <= ndqused && nfree < ndquot)
2260 return (0);
2261
2262 ndqused *= xfs_Gqm->qm_dqfree_ratio; /* target # of free dquots */
2263 n = nfree - ndqused - ndquot; /* # over target */
2264
2265 return xfs_qm_shake_freelist(MAX(nfree, n));
2266}
2267
2268
2269/*
2270 * Just pop the least recently used dquot off the freelist and
2271 * recycle it. The returned dquot is locked.
2272 */
2273STATIC xfs_dquot_t *
2274xfs_qm_dqreclaim_one(void)
2275{
2276 xfs_dquot_t *dqpout;
2277 xfs_dquot_t *dqp;
2278 int restarts;
2279 int nflushes;
2280
2281 restarts = 0;
2282 dqpout = NULL;
2283 nflushes = 0;
2284
2285 /* lockorder: hashchainlock, freelistlock, mplistlock, dqlock, dqflock */
2286 startagain:
2287 xfs_qm_freelist_lock(xfs_Gqm);
2288
2289 FOREACH_DQUOT_IN_FREELIST(dqp, &(xfs_Gqm->qm_dqfreelist)) {
2290 xfs_dqlock(dqp);
2291
2292 /*
2293 * We are racing with dqlookup here. Naturally we don't
2294 * want to reclaim a dquot that lookup wants. We release the
2295 * freelist lock and start over, so that lookup will grab
2296 * both the dquot and the freelistlock.
2297 */
2298 if (dqp->dq_flags & XFS_DQ_WANT) {
2299 ASSERT(! (dqp->dq_flags & XFS_DQ_INACTIVE));
2300 xfs_dqtrace_entry(dqp, "DQRECLAIM: DQWANT");
2301 xfs_dqunlock(dqp);
2302 xfs_qm_freelist_unlock(xfs_Gqm);
2303 if (++restarts >= XFS_QM_RECLAIM_MAX_RESTARTS)
2304 return (NULL);
2305 XQM_STATS_INC(xqmstats.xs_qm_dqwants);
2306 goto startagain;
2307 }
2308
2309 /*
2310 * If the dquot is inactive, we are assured that it is
2311 * not on the mplist or the hashlist, and that makes our
2312 * life easier.
2313 */
2314 if (dqp->dq_flags & XFS_DQ_INACTIVE) {
2315 ASSERT(dqp->q_mount == NULL);
2316 ASSERT(! XFS_DQ_IS_DIRTY(dqp));
2317 ASSERT(dqp->HL_PREVP == NULL);
2318 ASSERT(dqp->MPL_PREVP == NULL);
2319 XQM_FREELIST_REMOVE(dqp);
2320 xfs_dqunlock(dqp);
2321 dqpout = dqp;
2322 XQM_STATS_INC(xqmstats.xs_qm_dqinact_reclaims);
2323 break;
2324 }
2325
2326 ASSERT(dqp->q_hash);
2327 ASSERT(dqp->MPL_PREVP);
2328
2329 /*
2330 * Try to grab the flush lock. If this dquot is in the process of
2331 * getting flushed to disk, we don't want to reclaim it.
2332 */
2333 if (! xfs_qm_dqflock_nowait(dqp)) {
2334 xfs_dqunlock(dqp);
2335 continue;
2336 }
2337
2338 /*
2339 * We have the flush lock so we know that this is not in the
2340 * process of being flushed. So, if this is dirty, flush it
2341 * DELWRI so that we don't get a freelist infested with
2342 * dirty dquots.
2343 */
2344 if (XFS_DQ_IS_DIRTY(dqp)) {
2345 xfs_dqtrace_entry(dqp, "DQRECLAIM: DQDIRTY");
2346 /*
2347 * We flush it delayed write, so don't bother
2348 * releasing the freelist lock.
2349 */
2350 (void) xfs_qm_dqflush(dqp, XFS_QMOPT_DELWRI);
2351 xfs_dqunlock(dqp); /* dqflush unlocks dqflock */
2352 continue;
2353 }
2354
2355 if (! xfs_qm_mplist_nowait(dqp->q_mount)) {
2356 xfs_dqfunlock(dqp);
2357 xfs_dqunlock(dqp);
2358 continue;
2359 }
2360
2361 if (! xfs_qm_dqhashlock_nowait(dqp))
2362 goto mplistunlock;
2363
2364 ASSERT(dqp->q_nrefs == 0);
2365 xfs_dqtrace_entry(dqp, "DQRECLAIM: UNLINKING");
2366 XQM_MPLIST_REMOVE(&(XFS_QI_MPL_LIST(dqp->q_mount)), dqp);
2367 XQM_HASHLIST_REMOVE(dqp->q_hash, dqp);
2368 XQM_FREELIST_REMOVE(dqp);
2369 dqpout = dqp;
2370 XFS_DQ_HASH_UNLOCK(dqp->q_hash);
2371 mplistunlock:
2372 xfs_qm_mplist_unlock(dqp->q_mount);
2373 xfs_dqfunlock(dqp);
2374 xfs_dqunlock(dqp);
2375 if (dqpout)
2376 break;
2377 }
2378
2379 xfs_qm_freelist_unlock(xfs_Gqm);
2380 return (dqpout);
2381}
2382
2383
2384/*------------------------------------------------------------------*/
2385
2386/*
2387 * Return a new incore dquot. Depending on the number of
2388 * dquots in the system, we either allocate a new one on the kernel heap,
2389 * or reclaim a free one.
2390 * Return value is B_TRUE if we allocated a new dquot, B_FALSE if we managed
2391 * to reclaim an existing one from the freelist.
2392 */
2393boolean_t
2394xfs_qm_dqalloc_incore(
2395 xfs_dquot_t **O_dqpp)
2396{
2397 xfs_dquot_t *dqp;
2398
2399 /*
2400 * Check against high water mark to see if we want to pop
2401 * a nincompoop dquot off the freelist.
2402 */
2403 if (atomic_read(&xfs_Gqm->qm_totaldquots) >= ndquot) {
2404 /*
2405 * Try to recycle a dquot from the freelist.
2406 */
2407 if ((dqp = xfs_qm_dqreclaim_one())) {
2408 XQM_STATS_INC(xqmstats.xs_qm_dqreclaims);
2409 /*
2410 * Just zero the core here. The rest will get
2411 * reinitialized by caller. XXX we shouldn't even
2412 * do this zero ...
2413 */
2414 memset(&dqp->q_core, 0, sizeof(dqp->q_core));
2415 *O_dqpp = dqp;
2416 return (B_FALSE);
2417 }
2418 XQM_STATS_INC(xqmstats.xs_qm_dqreclaim_misses);
2419 }
2420
2421 /*
2422 * Allocate a brand new dquot on the kernel heap and return it
2423 * to the caller to initialize.
2424 */
2425 ASSERT(xfs_Gqm->qm_dqzone != NULL);
2426 *O_dqpp = kmem_zone_zalloc(xfs_Gqm->qm_dqzone, KM_SLEEP);
2427 atomic_inc(&xfs_Gqm->qm_totaldquots);
2428
2429 return (B_TRUE);
2430}
2431
2432
2433/*
2434 * Start a transaction and write the incore superblock changes to
2435 * disk. flags parameter indicates which fields have changed.
2436 */
2437int
2438xfs_qm_write_sb_changes(
2439 xfs_mount_t *mp,
2440 __int64_t flags)
2441{
2442 xfs_trans_t *tp;
2443 int error;
2444
2445#ifdef QUOTADEBUG
2446 cmn_err(CE_NOTE, "Writing superblock quota changes :%s", mp->m_fsname);
2447#endif
2448 tp = xfs_trans_alloc(mp, XFS_TRANS_QM_SBCHANGE);
2449 if ((error = xfs_trans_reserve(tp, 0,
2450 mp->m_sb.sb_sectsize + 128, 0,
2451 0,
2452 XFS_DEFAULT_LOG_COUNT))) {
2453 xfs_trans_cancel(tp, 0);
2454 return (error);
2455 }
2456
2457 xfs_mod_sb(tp, flags);
2458 (void) xfs_trans_commit(tp, 0, NULL);
2459
2460 return (0);
2461}
2462
2463
2464/* --------------- utility functions for vnodeops ---------------- */
2465
2466
2467/*
2468 * Given an inode, a uid and gid (from cred_t) make sure that we have
2469 * allocated relevant dquot(s) on disk, and that we won't exceed inode
2470 * quotas by creating this file.
2471 * This also attaches dquot(s) to the given inode after locking it,
2472 * and returns the dquots corresponding to the uid and/or gid.
2473 *
2474 * in : inode (unlocked)
2475 * out : udquot, gdquot with references taken and unlocked
2476 */
2477int
2478xfs_qm_vop_dqalloc(
2479 xfs_mount_t *mp,
2480 xfs_inode_t *ip,
2481 uid_t uid,
2482 gid_t gid,
c8ad20ff 2483 prid_t prid,
1da177e4
LT		 2484 uint flags,
2485 xfs_dquot_t **O_udqpp,
2486 xfs_dquot_t **O_gdqpp)
2487{
2488 int error;
2489 xfs_dquot_t *uq, *gq;
2490 uint lockflags;
2491
2492 if (!XFS_IS_QUOTA_ON(mp))
2493 return 0;
2494
2495 lockflags = XFS_ILOCK_EXCL;
2496 xfs_ilock(ip, lockflags);
2497
2498 if ((flags & XFS_QMOPT_INHERIT) &&
2499 XFS_INHERIT_GID(ip, XFS_MTOVFS(mp)))
2500 gid = ip->i_d.di_gid;
2501
2502 /*
2503 * Attach the dquot(s) to this inode, doing a dquot allocation
2504 * if necessary. The dquot(s) will not be locked.
2505 */
2506 if (XFS_NOT_DQATTACHED(mp, ip)) {
2507 if ((error = xfs_qm_dqattach(ip, XFS_QMOPT_DQALLOC |
2508 XFS_QMOPT_ILOCKED))) {
2509 xfs_iunlock(ip, lockflags);
2510 return (error);
2511 }
2512 }
2513
2514 uq = gq = NULL;
c8ad20ff 2515 if ((flags & XFS_QMOPT_UQUOTA) && XFS_IS_UQUOTA_ON(mp)) {
1da177e4
LT		 2516 if (ip->i_d.di_uid != uid) {
2517 /*
2518 * What we need is the dquot that has this uid, and
2519 * if we send the inode to dqget, the uid of the inode
2520 * takes priority over what's sent in the uid argument.
2521 * We must unlock inode here before calling dqget if
2522 * we're not sending the inode, because otherwise
2523 * we'll deadlock by doing trans_reserve while
2524 * holding ilock.
2525 */
2526 xfs_iunlock(ip, lockflags);
2527 if ((error = xfs_qm_dqget(mp, NULL, (xfs_dqid_t) uid,
2528 XFS_DQ_USER,
2529 XFS_QMOPT_DQALLOC |
2530 XFS_QMOPT_DOWARN,
2531 &uq))) {
2532 ASSERT(error != ENOENT);
2533 return (error);
2534 }
2535 /*
2536 * Get the ilock in the right order.
2537 */
2538 xfs_dqunlock(uq);
2539 lockflags = XFS_ILOCK_SHARED;
2540 xfs_ilock(ip, lockflags);
2541 } else {
2542 /*
2543 * Take an extra reference, because we'll return
2544 * this to caller
2545 */
2546 ASSERT(ip->i_udquot);
2547 uq = ip->i_udquot;
2548 xfs_dqlock(uq);
2549 XFS_DQHOLD(uq);
2550 xfs_dqunlock(uq);
2551 }
2552 }
c8ad20ff 2553 if ((flags & XFS_QMOPT_GQUOTA) && XFS_IS_GQUOTA_ON(mp)) {
1da177e4
LT		 2554 if (ip->i_d.di_gid != gid) {
2555 xfs_iunlock(ip, lockflags);
2556 if ((error = xfs_qm_dqget(mp, NULL, (xfs_dqid_t)gid,
2557 XFS_DQ_GROUP,
2558 XFS_QMOPT_DQALLOC |
2559 XFS_QMOPT_DOWARN,
2560 &gq))) {
2561 if (uq)
2562 xfs_qm_dqrele(uq);
2563 ASSERT(error != ENOENT);
2564 return (error);
2565 }
2566 xfs_dqunlock(gq);
2567 lockflags = XFS_ILOCK_SHARED;
2568 xfs_ilock(ip, lockflags);
2569 } else {
2570 ASSERT(ip->i_gdquot);
2571 gq = ip->i_gdquot;
2572 xfs_dqlock(gq);
2573 XFS_DQHOLD(gq);
2574 xfs_dqunlock(gq);
2575 }
c8ad20ff
NS		 2576 } else if ((flags & XFS_QMOPT_PQUOTA) && XFS_IS_PQUOTA_ON(mp)) {
2577 if (ip->i_d.di_projid != prid) {
2578 xfs_iunlock(ip, lockflags);
2579 if ((error = xfs_qm_dqget(mp, NULL, (xfs_dqid_t)prid,
2580 XFS_DQ_PROJ,
2581 XFS_QMOPT_DQALLOC |
2582 XFS_QMOPT_DOWARN,
2583 &gq))) {
2584 if (uq)
2585 xfs_qm_dqrele(uq);
2586 ASSERT(error != ENOENT);
2587 return (error);
2588 }
2589 xfs_dqunlock(gq);
2590 lockflags = XFS_ILOCK_SHARED;
2591 xfs_ilock(ip, lockflags);
2592 } else {
2593 ASSERT(ip->i_gdquot);
2594 gq = ip->i_gdquot;
2595 xfs_dqlock(gq);
2596 XFS_DQHOLD(gq);
2597 xfs_dqunlock(gq);
2598 }
1da177e4
LT		 2599 }
2600 if (uq)
2601 xfs_dqtrace_entry_ino(uq, "DQALLOC", ip);
2602
2603 xfs_iunlock(ip, lockflags);
2604 if (O_udqpp)
2605 *O_udqpp = uq;
2606 else if (uq)
2607 xfs_qm_dqrele(uq);
2608 if (O_gdqpp)
2609 *O_gdqpp = gq;
2610 else if (gq)
2611 xfs_qm_dqrele(gq);
2612 return (0);
2613}
2614
2615/*
2616 * Actually transfer ownership, and do dquot modifications.
2617 * These were already reserved.
2618 */
2619xfs_dquot_t *
2620xfs_qm_vop_chown(
2621 xfs_trans_t *tp,
2622 xfs_inode_t *ip,
2623 xfs_dquot_t **IO_olddq,
2624 xfs_dquot_t *newdq)
2625{
2626 xfs_dquot_t *prevdq;
2627 ASSERT(XFS_ISLOCKED_INODE_EXCL(ip));
2628 ASSERT(XFS_IS_QUOTA_RUNNING(ip->i_mount));
2629
2630 /* old dquot */
2631 prevdq = *IO_olddq;
2632 ASSERT(prevdq);
2633 ASSERT(prevdq != newdq);
2634
2635 xfs_trans_mod_dquot(tp, prevdq,
2636 XFS_TRANS_DQ_BCOUNT,
2637 -(ip->i_d.di_nblocks));
2638 xfs_trans_mod_dquot(tp, prevdq,
2639 XFS_TRANS_DQ_ICOUNT,
2640 -1);
2641
2642 /* the sparkling new dquot */
2643 xfs_trans_mod_dquot(tp, newdq,
2644 XFS_TRANS_DQ_BCOUNT,
2645 ip->i_d.di_nblocks);
2646 xfs_trans_mod_dquot(tp, newdq,
2647 XFS_TRANS_DQ_ICOUNT,
2648 1);
2649
2650 /*
2651 * Take an extra reference, because the inode
2652 * is going to keep this dquot pointer even
2653 * after the trans_commit.
2654 */
2655 xfs_dqlock(newdq);
2656 XFS_DQHOLD(newdq);
2657 xfs_dqunlock(newdq);
2658 *IO_olddq = newdq;
2659
2660 return (prevdq);
2661}
2662
2663/*
c8ad20ff 2664 * Quota reservations for setattr(AT_UID|AT_GID|AT_PROJID).
1da177e4
LT		 2665 */
2666int
2667xfs_qm_vop_chown_reserve(
2668 xfs_trans_t *tp,
2669 xfs_inode_t *ip,
2670 xfs_dquot_t *udqp,
2671 xfs_dquot_t *gdqp,
2672 uint flags)
2673{
2674 int error;
2675 xfs_mount_t *mp;
2676 uint delblks;
2677 xfs_dquot_t *unresudq, *unresgdq, *delblksudq, *delblksgdq;
2678
2679 ASSERT(XFS_ISLOCKED_INODE(ip));
2680 mp = ip->i_mount;
2681 ASSERT(XFS_IS_QUOTA_RUNNING(mp));
2682
2683 delblks = ip->i_delayed_blks;
2684 delblksudq = delblksgdq = unresudq = unresgdq = NULL;
2685
2686 if (XFS_IS_UQUOTA_ON(mp) && udqp &&
2687 ip->i_d.di_uid != (uid_t)INT_GET(udqp->q_core.d_id, ARCH_CONVERT)) {
2688 delblksudq = udqp;
2689 /*
2690 * If there are delayed allocation blocks, then we have to
2691 * unreserve those from the old dquot, and add them to the
2692 * new dquot.
2693 */
2694 if (delblks) {
2695 ASSERT(ip->i_udquot);
2696 unresudq = ip->i_udquot;
2697 }
2698 }
c8ad20ff
NS		 2699 if (XFS_IS_OQUOTA_ON(ip->i_mount) && gdqp) {
2700 if ((XFS_IS_GQUOTA_ON(ip->i_mount) && ip->i_d.di_gid !=
2701 INT_GET(gdqp->q_core.d_id, ARCH_CONVERT)) ||
2702 (XFS_IS_PQUOTA_ON(ip->i_mount) && ip->i_d.di_projid !=
2703 INT_GET(gdqp->q_core.d_id, ARCH_CONVERT))) {
2704 delblksgdq = gdqp;
2705 if (delblks) {
2706 ASSERT(ip->i_gdquot);
2707 unresgdq = ip->i_gdquot;
2708 }
1da177e4
LT		 2709 }
2710 }
2711
2712 if ((error = xfs_trans_reserve_quota_bydquots(tp, ip->i_mount,
2713 delblksudq, delblksgdq, ip->i_d.di_nblocks, 1,
2714 flags | XFS_QMOPT_RES_REGBLKS)))
2715 return (error);
2716
2717 /*
2718 * Do the delayed blks reservations/unreservations now. Since, these
2719 * are done without the help of a transaction, if a reservation fails
2720 * its previous reservations won't be automatically undone by trans
2721 * code. So, we have to do it manually here.
2722 */
2723 if (delblks) {
2724 /*
2725 * Do the reservations first. Unreservation can't fail.
2726 */
2727 ASSERT(delblksudq || delblksgdq);
2728 ASSERT(unresudq || unresgdq);
2729 if ((error = xfs_trans_reserve_quota_bydquots(NULL, ip->i_mount,
2730 delblksudq, delblksgdq, (xfs_qcnt_t)delblks, 0,
2731 flags | XFS_QMOPT_RES_REGBLKS)))
2732 return (error);
2733 xfs_trans_reserve_quota_bydquots(NULL, ip->i_mount,
2734 unresudq, unresgdq, -((xfs_qcnt_t)delblks), 0,
2735 XFS_QMOPT_RES_REGBLKS);
2736 }
2737
2738 return (0);
2739}
2740
2741int
2742xfs_qm_vop_rename_dqattach(
2743 xfs_inode_t **i_tab)
2744{
2745 xfs_inode_t *ip;
2746 int i;
2747 int error;
2748
2749 ip = i_tab[0];
2750
2751 if (! XFS_IS_QUOTA_ON(ip->i_mount))
2752 return (0);
2753
2754 if (XFS_NOT_DQATTACHED(ip->i_mount, ip)) {
2755 error = xfs_qm_dqattach(ip, 0);
2756 if (error)
2757 return (error);
2758 }
2759 for (i = 1; (i < 4 && i_tab[i]); i++) {
2760 /*
2761 * Watch out for duplicate entries in the table.
2762 */
2763 if ((ip = i_tab[i]) != i_tab[i-1]) {
2764 if (XFS_NOT_DQATTACHED(ip->i_mount, ip)) {
2765 error = xfs_qm_dqattach(ip, 0);
2766 if (error)
2767 return (error);
2768 }
2769 }
2770 }
2771 return (0);
2772}
2773
2774void
2775xfs_qm_vop_dqattach_and_dqmod_newinode(
2776 xfs_trans_t *tp,
2777 xfs_inode_t *ip,
2778 xfs_dquot_t *udqp,
2779 xfs_dquot_t *gdqp)
2780{
2781 if (!XFS_IS_QUOTA_ON(tp->t_mountp))
2782 return;
2783
2784 ASSERT(XFS_ISLOCKED_INODE_EXCL(ip));
2785 ASSERT(XFS_IS_QUOTA_RUNNING(tp->t_mountp));
2786
2787 if (udqp) {
2788 xfs_dqlock(udqp);
2789 XFS_DQHOLD(udqp);
2790 xfs_dqunlock(udqp);
2791 ASSERT(ip->i_udquot == NULL);
2792 ip->i_udquot = udqp;
2793 ASSERT(ip->i_d.di_uid == INT_GET(udqp->q_core.d_id, ARCH_CONVERT));
2794 xfs_trans_mod_dquot(tp, udqp, XFS_TRANS_DQ_ICOUNT, 1);
2795 }
2796 if (gdqp) {
2797 xfs_dqlock(gdqp);
2798 XFS_DQHOLD(gdqp);
2799 xfs_dqunlock(gdqp);
2800 ASSERT(ip->i_gdquot == NULL);
2801 ip->i_gdquot = gdqp;
2802 ASSERT(ip->i_d.di_gid == INT_GET(gdqp->q_core.d_id, ARCH_CONVERT));
2803 xfs_trans_mod_dquot(tp, gdqp, XFS_TRANS_DQ_ICOUNT, 1);
2804 }
2805}
2806
2807/* ------------- list stuff -----------------*/
ba0f32d4 2808STATIC void
1da177e4
LT		 2809xfs_qm_freelist_init(xfs_frlist_t *ql)
2810{
2811 ql->qh_next = ql->qh_prev = (xfs_dquot_t *) ql;
2812 mutex_init(&ql->qh_lock, MUTEX_DEFAULT, "dqf");
2813 ql->qh_version = 0;
2814 ql->qh_nelems = 0;
2815}
2816
ba0f32d4 2817STATIC void
1da177e4
LT		 2818xfs_qm_freelist_destroy(xfs_frlist_t *ql)
2819{
2820 xfs_dquot_t *dqp, *nextdqp;
2821
2822 mutex_lock(&ql->qh_lock, PINOD);
2823 for (dqp = ql->qh_next;
2824 dqp != (xfs_dquot_t *)ql; ) {
2825 xfs_dqlock(dqp);
2826 nextdqp = dqp->dq_flnext;
2827#ifdef QUOTADEBUG
2828 cmn_err(CE_DEBUG, "FREELIST destroy 0x%p", dqp);
2829#endif
2830 XQM_FREELIST_REMOVE(dqp);
2831 xfs_dqunlock(dqp);
2832 xfs_qm_dqdestroy(dqp);
2833 dqp = nextdqp;
2834 }
2835 /*
2836 * Don't bother about unlocking.
2837 */
2838 mutex_destroy(&ql->qh_lock);
2839
2840 ASSERT(ql->qh_nelems == 0);
2841}
2842
ba0f32d4 2843STATIC void
1da177e4
LT		 2844xfs_qm_freelist_insert(xfs_frlist_t *ql, xfs_dquot_t *dq)
2845{
2846 dq->dq_flnext = ql->qh_next;
2847 dq->dq_flprev = (xfs_dquot_t *)ql;
2848 ql->qh_next = dq;
2849 dq->dq_flnext->dq_flprev = dq;
2850 xfs_Gqm->qm_dqfreelist.qh_nelems++;
2851 xfs_Gqm->qm_dqfreelist.qh_version++;
2852}
2853
2854void
2855xfs_qm_freelist_unlink(xfs_dquot_t *dq)
2856{
2857 xfs_dquot_t *next = dq->dq_flnext;
2858 xfs_dquot_t *prev = dq->dq_flprev;
2859
2860 next->dq_flprev = prev;
2861 prev->dq_flnext = next;
2862 dq->dq_flnext = dq->dq_flprev = dq;
2863 xfs_Gqm->qm_dqfreelist.qh_nelems--;
2864 xfs_Gqm->qm_dqfreelist.qh_version++;
2865}
2866
2867void
2868xfs_qm_freelist_append(xfs_frlist_t *ql, xfs_dquot_t *dq)
2869{
2870 xfs_qm_freelist_insert((xfs_frlist_t *)ql->qh_prev, dq);
2871}
2872
ba0f32d4 2873STATIC int
1da177e4
LT		 2874xfs_qm_dqhashlock_nowait(
2875 xfs_dquot_t *dqp)
2876{
2877 int locked;
2878
2879 locked = mutex_trylock(&((dqp)->q_hash->qh_lock));
2880 return (locked);
2881}
2882
2883int
2884xfs_qm_freelist_lock_nowait(
2885 xfs_qm_t *xqm)
2886{
2887 int locked;
2888
2889 locked = mutex_trylock(&(xqm->qm_dqfreelist.qh_lock));
2890 return (locked);
2891}
2892
ba0f32d4 2893STATIC int
1da177e4
LT		 2894xfs_qm_mplist_nowait(
2895 xfs_mount_t *mp)
2896{
2897 int locked;
2898
2899 ASSERT(mp->m_quotainfo);
2900 locked = mutex_trylock(&(XFS_QI_MPLLOCK(mp)));
2901 return (locked);
2902}
Ubuntu Eoan Linux kernel mirror