2 * Copyright (c) 2000-2006 Silicon Graphics, Inc.
5 * This program is free software; you can redistribute it and/or
6 * modify it under the terms of the GNU General Public License as
7 * published by the Free Software Foundation.
9 * This program is distributed in the hope that it would be useful,
10 * but WITHOUT ANY WARRANTY; without even the implied warranty of
11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 * GNU General Public License for more details.
14 * You should have received a copy of the GNU General Public License
15 * along with this program; if not, write the Free Software Foundation,
16 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
18 #include <linux/log2.h>
19 #include <linux/iversion.h>
23 #include "xfs_shared.h"
24 #include "xfs_format.h"
25 #include "xfs_log_format.h"
26 #include "xfs_trans_resv.h"
28 #include "xfs_mount.h"
29 #include "xfs_defer.h"
30 #include "xfs_inode.h"
31 #include "xfs_da_format.h"
32 #include "xfs_da_btree.h"
34 #include "xfs_attr_sf.h"
36 #include "xfs_trans_space.h"
37 #include "xfs_trans.h"
38 #include "xfs_buf_item.h"
39 #include "xfs_inode_item.h"
40 #include "xfs_ialloc.h"
42 #include "xfs_bmap_util.h"
43 #include "xfs_errortag.h"
44 #include "xfs_error.h"
45 #include "xfs_quota.h"
46 #include "xfs_filestream.h"
47 #include "xfs_cksum.h"
48 #include "xfs_trace.h"
49 #include "xfs_icache.h"
50 #include "xfs_symlink.h"
51 #include "xfs_trans_priv.h"
53 #include "xfs_bmap_btree.h"
54 #include "xfs_reflink.h"
55 #include "xfs_dir2_priv.h"
57 kmem_zone_t *xfs_inode_zone;
60 * Used in xfs_itruncate_extents(). This is the maximum number of extents
61 * freed from a file in a single transaction.
63 #define XFS_ITRUNC_MAX_EXTENTS 2
65 STATIC int xfs_iflush_int(struct xfs_inode *, struct xfs_buf *);
66 STATIC int xfs_iunlink(struct xfs_trans *, struct xfs_inode *);
67 STATIC int xfs_iunlink_remove(struct xfs_trans *, struct xfs_inode *);
70 * helper function to extract extent size hint from inode
76 if ((ip->i_d.di_flags & XFS_DIFLAG_EXTSIZE) && ip->i_d.di_extsize)
77 return ip->i_d.di_extsize;
78 if (XFS_IS_REALTIME_INODE(ip))
79 return ip->i_mount->m_sb.sb_rextsize;
84 * Helper function to extract CoW extent size hint from inode.
85 * Between the extent size hint and the CoW extent size hint, we
86 * return the greater of the two. If the value is zero (automatic),
87 * use the default size.
90 xfs_get_cowextsz_hint(
96 if (ip->i_d.di_flags2 & XFS_DIFLAG2_COWEXTSIZE)
97 a = ip->i_d.di_cowextsize;
98 b = xfs_get_extsz_hint(ip);
102 return XFS_DEFAULT_COWEXTSZ_HINT;
107 * These two are wrapper routines around the xfs_ilock() routine used to
108 * centralize some grungy code. They are used in places that wish to lock the
109 * inode solely for reading the extents. The reason these places can't just
110 * call xfs_ilock(ip, XFS_ILOCK_SHARED) is that the inode lock also guards to
111 * bringing in of the extents from disk for a file in b-tree format. If the
112 * inode is in b-tree format, then we need to lock the inode exclusively until
113 * the extents are read in. Locking it exclusively all the time would limit
114 * our parallelism unnecessarily, though. What we do instead is check to see
115 * if the extents have been read in yet, and only lock the inode exclusively
118 * The functions return a value which should be given to the corresponding
119 * xfs_iunlock() call.
122 xfs_ilock_data_map_shared(
123 struct xfs_inode *ip)
125 uint lock_mode = XFS_ILOCK_SHARED;
127 if (ip->i_d.di_format == XFS_DINODE_FMT_BTREE &&
128 (ip->i_df.if_flags & XFS_IFEXTENTS) == 0)
129 lock_mode = XFS_ILOCK_EXCL;
130 xfs_ilock(ip, lock_mode);
135 xfs_ilock_attr_map_shared(
136 struct xfs_inode *ip)
138 uint lock_mode = XFS_ILOCK_SHARED;
140 if (ip->i_d.di_aformat == XFS_DINODE_FMT_BTREE &&
141 (ip->i_afp->if_flags & XFS_IFEXTENTS) == 0)
142 lock_mode = XFS_ILOCK_EXCL;
143 xfs_ilock(ip, lock_mode);
148 * In addition to i_rwsem in the VFS inode, the xfs inode contains 2
149 * multi-reader locks: i_mmap_lock and the i_lock. This routine allows
150 * various combinations of the locks to be obtained.
152 * The 3 locks should always be ordered so that the IO lock is obtained first,
153 * the mmap lock second and the ilock last in order to prevent deadlock.
155 * Basic locking order:
157 * i_rwsem -> i_mmap_lock -> page_lock -> i_ilock
159 * mmap_sem locking order:
161 * i_rwsem -> page lock -> mmap_sem
162 * mmap_sem -> i_mmap_lock -> page_lock
164 * The difference in mmap_sem locking order mean that we cannot hold the
165 * i_mmap_lock over syscall based read(2)/write(2) based IO. These IO paths can
166 * fault in pages during copy in/out (for buffered IO) or require the mmap_sem
167 * in get_user_pages() to map the user pages into the kernel address space for
168 * direct IO. Similarly the i_rwsem cannot be taken inside a page fault because
169 * page faults already hold the mmap_sem.
171 * Hence to serialise fully against both syscall and mmap based IO, we need to
172 * take both the i_rwsem and the i_mmap_lock. These locks should *only* be both
173 * taken in places where we need to invalidate the page cache in a race
174 * free manner (e.g. truncate, hole punch and other extent manipulation
182 trace_xfs_ilock(ip, lock_flags, _RET_IP_);
185 * You can't set both SHARED and EXCL for the same lock,
186 * and only XFS_IOLOCK_SHARED, XFS_IOLOCK_EXCL, XFS_ILOCK_SHARED,
187 * and XFS_ILOCK_EXCL are valid values to set in lock_flags.
189 ASSERT((lock_flags & (XFS_IOLOCK_SHARED | XFS_IOLOCK_EXCL)) !=
190 (XFS_IOLOCK_SHARED | XFS_IOLOCK_EXCL));
191 ASSERT((lock_flags & (XFS_MMAPLOCK_SHARED | XFS_MMAPLOCK_EXCL)) !=
192 (XFS_MMAPLOCK_SHARED | XFS_MMAPLOCK_EXCL));
193 ASSERT((lock_flags & (XFS_ILOCK_SHARED | XFS_ILOCK_EXCL)) !=
194 (XFS_ILOCK_SHARED | XFS_ILOCK_EXCL));
195 ASSERT((lock_flags & ~(XFS_LOCK_MASK | XFS_LOCK_SUBCLASS_MASK)) == 0);
197 if (lock_flags & XFS_IOLOCK_EXCL) {
198 down_write_nested(&VFS_I(ip)->i_rwsem,
199 XFS_IOLOCK_DEP(lock_flags));
200 } else if (lock_flags & XFS_IOLOCK_SHARED) {
201 down_read_nested(&VFS_I(ip)->i_rwsem,
202 XFS_IOLOCK_DEP(lock_flags));
205 if (lock_flags & XFS_MMAPLOCK_EXCL)
206 mrupdate_nested(&ip->i_mmaplock, XFS_MMAPLOCK_DEP(lock_flags));
207 else if (lock_flags & XFS_MMAPLOCK_SHARED)
208 mraccess_nested(&ip->i_mmaplock, XFS_MMAPLOCK_DEP(lock_flags));
210 if (lock_flags & XFS_ILOCK_EXCL)
211 mrupdate_nested(&ip->i_lock, XFS_ILOCK_DEP(lock_flags));
212 else if (lock_flags & XFS_ILOCK_SHARED)
213 mraccess_nested(&ip->i_lock, XFS_ILOCK_DEP(lock_flags));
217 * This is just like xfs_ilock(), except that the caller
218 * is guaranteed not to sleep. It returns 1 if it gets
219 * the requested locks and 0 otherwise. If the IO lock is
220 * obtained but the inode lock cannot be, then the IO lock
221 * is dropped before returning.
223 * ip -- the inode being locked
224 * lock_flags -- this parameter indicates the inode's locks to be
225 * to be locked. See the comment for xfs_ilock() for a list
233 trace_xfs_ilock_nowait(ip, lock_flags, _RET_IP_);
236 * You can't set both SHARED and EXCL for the same lock,
237 * and only XFS_IOLOCK_SHARED, XFS_IOLOCK_EXCL, XFS_ILOCK_SHARED,
238 * and XFS_ILOCK_EXCL are valid values to set in lock_flags.
240 ASSERT((lock_flags & (XFS_IOLOCK_SHARED | XFS_IOLOCK_EXCL)) !=
241 (XFS_IOLOCK_SHARED | XFS_IOLOCK_EXCL));
242 ASSERT((lock_flags & (XFS_MMAPLOCK_SHARED | XFS_MMAPLOCK_EXCL)) !=
243 (XFS_MMAPLOCK_SHARED | XFS_MMAPLOCK_EXCL));
244 ASSERT((lock_flags & (XFS_ILOCK_SHARED | XFS_ILOCK_EXCL)) !=
245 (XFS_ILOCK_SHARED | XFS_ILOCK_EXCL));
246 ASSERT((lock_flags & ~(XFS_LOCK_MASK | XFS_LOCK_SUBCLASS_MASK)) == 0);
248 if (lock_flags & XFS_IOLOCK_EXCL) {
249 if (!down_write_trylock(&VFS_I(ip)->i_rwsem))
251 } else if (lock_flags & XFS_IOLOCK_SHARED) {
252 if (!down_read_trylock(&VFS_I(ip)->i_rwsem))
256 if (lock_flags & XFS_MMAPLOCK_EXCL) {
257 if (!mrtryupdate(&ip->i_mmaplock))
258 goto out_undo_iolock;
259 } else if (lock_flags & XFS_MMAPLOCK_SHARED) {
260 if (!mrtryaccess(&ip->i_mmaplock))
261 goto out_undo_iolock;
264 if (lock_flags & XFS_ILOCK_EXCL) {
265 if (!mrtryupdate(&ip->i_lock))
266 goto out_undo_mmaplock;
267 } else if (lock_flags & XFS_ILOCK_SHARED) {
268 if (!mrtryaccess(&ip->i_lock))
269 goto out_undo_mmaplock;
274 if (lock_flags & XFS_MMAPLOCK_EXCL)
275 mrunlock_excl(&ip->i_mmaplock);
276 else if (lock_flags & XFS_MMAPLOCK_SHARED)
277 mrunlock_shared(&ip->i_mmaplock);
279 if (lock_flags & XFS_IOLOCK_EXCL)
280 up_write(&VFS_I(ip)->i_rwsem);
281 else if (lock_flags & XFS_IOLOCK_SHARED)
282 up_read(&VFS_I(ip)->i_rwsem);
288 * xfs_iunlock() is used to drop the inode locks acquired with
289 * xfs_ilock() and xfs_ilock_nowait(). The caller must pass
290 * in the flags given to xfs_ilock() or xfs_ilock_nowait() so
291 * that we know which locks to drop.
293 * ip -- the inode being unlocked
294 * lock_flags -- this parameter indicates the inode's locks to be
295 * to be unlocked. See the comment for xfs_ilock() for a list
296 * of valid values for this parameter.
305 * You can't set both SHARED and EXCL for the same lock,
306 * and only XFS_IOLOCK_SHARED, XFS_IOLOCK_EXCL, XFS_ILOCK_SHARED,
307 * and XFS_ILOCK_EXCL are valid values to set in lock_flags.
309 ASSERT((lock_flags & (XFS_IOLOCK_SHARED | XFS_IOLOCK_EXCL)) !=
310 (XFS_IOLOCK_SHARED | XFS_IOLOCK_EXCL));
311 ASSERT((lock_flags & (XFS_MMAPLOCK_SHARED | XFS_MMAPLOCK_EXCL)) !=
312 (XFS_MMAPLOCK_SHARED | XFS_MMAPLOCK_EXCL));
313 ASSERT((lock_flags & (XFS_ILOCK_SHARED | XFS_ILOCK_EXCL)) !=
314 (XFS_ILOCK_SHARED | XFS_ILOCK_EXCL));
315 ASSERT((lock_flags & ~(XFS_LOCK_MASK | XFS_LOCK_SUBCLASS_MASK)) == 0);
316 ASSERT(lock_flags != 0);
318 if (lock_flags & XFS_IOLOCK_EXCL)
319 up_write(&VFS_I(ip)->i_rwsem);
320 else if (lock_flags & XFS_IOLOCK_SHARED)
321 up_read(&VFS_I(ip)->i_rwsem);
323 if (lock_flags & XFS_MMAPLOCK_EXCL)
324 mrunlock_excl(&ip->i_mmaplock);
325 else if (lock_flags & XFS_MMAPLOCK_SHARED)
326 mrunlock_shared(&ip->i_mmaplock);
328 if (lock_flags & XFS_ILOCK_EXCL)
329 mrunlock_excl(&ip->i_lock);
330 else if (lock_flags & XFS_ILOCK_SHARED)
331 mrunlock_shared(&ip->i_lock);
333 trace_xfs_iunlock(ip, lock_flags, _RET_IP_);
337 * give up write locks. the i/o lock cannot be held nested
338 * if it is being demoted.
345 ASSERT(lock_flags & (XFS_IOLOCK_EXCL|XFS_MMAPLOCK_EXCL|XFS_ILOCK_EXCL));
347 ~(XFS_IOLOCK_EXCL|XFS_MMAPLOCK_EXCL|XFS_ILOCK_EXCL)) == 0);
349 if (lock_flags & XFS_ILOCK_EXCL)
350 mrdemote(&ip->i_lock);
351 if (lock_flags & XFS_MMAPLOCK_EXCL)
352 mrdemote(&ip->i_mmaplock);
353 if (lock_flags & XFS_IOLOCK_EXCL)
354 downgrade_write(&VFS_I(ip)->i_rwsem);
356 trace_xfs_ilock_demote(ip, lock_flags, _RET_IP_);
359 #if defined(DEBUG) || defined(XFS_WARN)
365 if (lock_flags & (XFS_ILOCK_EXCL|XFS_ILOCK_SHARED)) {
366 if (!(lock_flags & XFS_ILOCK_SHARED))
367 return !!ip->i_lock.mr_writer;
368 return rwsem_is_locked(&ip->i_lock.mr_lock);
371 if (lock_flags & (XFS_MMAPLOCK_EXCL|XFS_MMAPLOCK_SHARED)) {
372 if (!(lock_flags & XFS_MMAPLOCK_SHARED))
373 return !!ip->i_mmaplock.mr_writer;
374 return rwsem_is_locked(&ip->i_mmaplock.mr_lock);
377 if (lock_flags & (XFS_IOLOCK_EXCL|XFS_IOLOCK_SHARED)) {
378 if (!(lock_flags & XFS_IOLOCK_SHARED))
379 return !debug_locks ||
380 lockdep_is_held_type(&VFS_I(ip)->i_rwsem, 0);
381 return rwsem_is_locked(&VFS_I(ip)->i_rwsem);
390 * xfs_lockdep_subclass_ok() is only used in an ASSERT, so is only called when
391 * DEBUG or XFS_WARN is set. And MAX_LOCKDEP_SUBCLASSES is then only defined
392 * when CONFIG_LOCKDEP is set. Hence the complex define below to avoid build
393 * errors and warnings.
395 #if (defined(DEBUG) || defined(XFS_WARN)) && defined(CONFIG_LOCKDEP)
397 xfs_lockdep_subclass_ok(
400 return subclass < MAX_LOCKDEP_SUBCLASSES;
403 #define xfs_lockdep_subclass_ok(subclass) (true)
407 * Bump the subclass so xfs_lock_inodes() acquires each lock with a different
408 * value. This can be called for any type of inode lock combination, including
409 * parent locking. Care must be taken to ensure we don't overrun the subclass
410 * storage fields in the class mask we build.
413 xfs_lock_inumorder(int lock_mode, int subclass)
417 ASSERT(!(lock_mode & (XFS_ILOCK_PARENT | XFS_ILOCK_RTBITMAP |
419 ASSERT(xfs_lockdep_subclass_ok(subclass));
421 if (lock_mode & (XFS_IOLOCK_SHARED|XFS_IOLOCK_EXCL)) {
422 ASSERT(subclass <= XFS_IOLOCK_MAX_SUBCLASS);
423 class += subclass << XFS_IOLOCK_SHIFT;
426 if (lock_mode & (XFS_MMAPLOCK_SHARED|XFS_MMAPLOCK_EXCL)) {
427 ASSERT(subclass <= XFS_MMAPLOCK_MAX_SUBCLASS);
428 class += subclass << XFS_MMAPLOCK_SHIFT;
431 if (lock_mode & (XFS_ILOCK_SHARED|XFS_ILOCK_EXCL)) {
432 ASSERT(subclass <= XFS_ILOCK_MAX_SUBCLASS);
433 class += subclass << XFS_ILOCK_SHIFT;
436 return (lock_mode & ~XFS_LOCK_SUBCLASS_MASK) | class;
440 * The following routine will lock n inodes in exclusive mode. We assume the
441 * caller calls us with the inodes in i_ino order.
443 * We need to detect deadlock where an inode that we lock is in the AIL and we
444 * start waiting for another inode that is locked by a thread in a long running
445 * transaction (such as truncate). This can result in deadlock since the long
446 * running trans might need to wait for the inode we just locked in order to
447 * push the tail and free space in the log.
449 * xfs_lock_inodes() can only be used to lock one type of lock at a time -
450 * the iolock, the mmaplock or the ilock, but not more than one at a time. If we
451 * lock more than one at a time, lockdep will report false positives saying we
452 * have violated locking orders.
460 int attempts = 0, i, j, try_lock;
464 * Currently supports between 2 and 5 inodes with exclusive locking. We
465 * support an arbitrary depth of locking here, but absolute limits on
466 * inodes depend on the the type of locking and the limits placed by
467 * lockdep annotations in xfs_lock_inumorder. These are all checked by
470 ASSERT(ips && inodes >= 2 && inodes <= 5);
471 ASSERT(lock_mode & (XFS_IOLOCK_EXCL | XFS_MMAPLOCK_EXCL |
473 ASSERT(!(lock_mode & (XFS_IOLOCK_SHARED | XFS_MMAPLOCK_SHARED |
475 ASSERT(!(lock_mode & XFS_MMAPLOCK_EXCL) ||
476 inodes <= XFS_MMAPLOCK_MAX_SUBCLASS + 1);
477 ASSERT(!(lock_mode & XFS_ILOCK_EXCL) ||
478 inodes <= XFS_ILOCK_MAX_SUBCLASS + 1);
480 if (lock_mode & XFS_IOLOCK_EXCL) {
481 ASSERT(!(lock_mode & (XFS_MMAPLOCK_EXCL | XFS_ILOCK_EXCL)));
482 } else if (lock_mode & XFS_MMAPLOCK_EXCL)
483 ASSERT(!(lock_mode & XFS_ILOCK_EXCL));
488 for (; i < inodes; i++) {
491 if (i && (ips[i] == ips[i - 1])) /* Already locked */
495 * If try_lock is not set yet, make sure all locked inodes are
496 * not in the AIL. If any are, set try_lock to be used later.
499 for (j = (i - 1); j >= 0 && !try_lock; j--) {
500 lp = (xfs_log_item_t *)ips[j]->i_itemp;
501 if (lp && (lp->li_flags & XFS_LI_IN_AIL))
507 * If any of the previous locks we have locked is in the AIL,
508 * we must TRY to get the second and subsequent locks. If
509 * we can't get any, we must release all we have
513 xfs_ilock(ips[i], xfs_lock_inumorder(lock_mode, i));
517 /* try_lock means we have an inode locked that is in the AIL. */
519 if (xfs_ilock_nowait(ips[i], xfs_lock_inumorder(lock_mode, i)))
523 * Unlock all previous guys and try again. xfs_iunlock will try
524 * to push the tail if the inode is in the AIL.
527 for (j = i - 1; j >= 0; j--) {
529 * Check to see if we've already unlocked this one. Not
530 * the first one going back, and the inode ptr is the
533 if (j != (i - 1) && ips[j] == ips[j + 1])
536 xfs_iunlock(ips[j], lock_mode);
539 if ((attempts % 5) == 0) {
540 delay(1); /* Don't just spin the CPU */
549 * xfs_lock_two_inodes() can only be used to lock one type of lock at a time -
550 * the mmaplock or the ilock, but not more than one type at a time. If we lock
551 * more than one at a time, lockdep will report false positives saying we have
552 * violated locking orders. The iolock must be double-locked separately since
553 * we use i_rwsem for that. We now support taking one lock EXCL and the other
558 struct xfs_inode *ip0,
560 struct xfs_inode *ip1,
563 struct xfs_inode *temp;
568 ASSERT(hweight32(ip0_mode) == 1);
569 ASSERT(hweight32(ip1_mode) == 1);
570 ASSERT(!(ip0_mode & (XFS_IOLOCK_SHARED|XFS_IOLOCK_EXCL)));
571 ASSERT(!(ip1_mode & (XFS_IOLOCK_SHARED|XFS_IOLOCK_EXCL)));
572 ASSERT(!(ip0_mode & (XFS_MMAPLOCK_SHARED|XFS_MMAPLOCK_EXCL)) ||
573 !(ip0_mode & (XFS_ILOCK_SHARED|XFS_ILOCK_EXCL)));
574 ASSERT(!(ip1_mode & (XFS_MMAPLOCK_SHARED|XFS_MMAPLOCK_EXCL)) ||
575 !(ip1_mode & (XFS_ILOCK_SHARED|XFS_ILOCK_EXCL)));
576 ASSERT(!(ip1_mode & (XFS_MMAPLOCK_SHARED|XFS_MMAPLOCK_EXCL)) ||
577 !(ip0_mode & (XFS_ILOCK_SHARED|XFS_ILOCK_EXCL)));
578 ASSERT(!(ip0_mode & (XFS_MMAPLOCK_SHARED|XFS_MMAPLOCK_EXCL)) ||
579 !(ip1_mode & (XFS_ILOCK_SHARED|XFS_ILOCK_EXCL)));
581 ASSERT(ip0->i_ino != ip1->i_ino);
583 if (ip0->i_ino > ip1->i_ino) {
587 mode_temp = ip0_mode;
589 ip1_mode = mode_temp;
593 xfs_ilock(ip0, xfs_lock_inumorder(ip0_mode, 0));
596 * If the first lock we have locked is in the AIL, we must TRY to get
597 * the second lock. If we can't get it, we must release the first one
600 lp = (xfs_log_item_t *)ip0->i_itemp;
601 if (lp && (lp->li_flags & XFS_LI_IN_AIL)) {
602 if (!xfs_ilock_nowait(ip1, xfs_lock_inumorder(ip1_mode, 1))) {
603 xfs_iunlock(ip0, ip0_mode);
604 if ((++attempts % 5) == 0)
605 delay(1); /* Don't just spin the CPU */
609 xfs_ilock(ip1, xfs_lock_inumorder(ip1_mode, 1));
615 struct xfs_inode *ip)
617 wait_queue_head_t *wq = bit_waitqueue(&ip->i_flags, __XFS_IFLOCK_BIT);
618 DEFINE_WAIT_BIT(wait, &ip->i_flags, __XFS_IFLOCK_BIT);
621 prepare_to_wait_exclusive(wq, &wait.wq_entry, TASK_UNINTERRUPTIBLE);
622 if (xfs_isiflocked(ip))
624 } while (!xfs_iflock_nowait(ip));
626 finish_wait(wq, &wait.wq_entry);
637 if (di_flags & XFS_DIFLAG_ANY) {
638 if (di_flags & XFS_DIFLAG_REALTIME)
639 flags |= FS_XFLAG_REALTIME;
640 if (di_flags & XFS_DIFLAG_PREALLOC)
641 flags |= FS_XFLAG_PREALLOC;
642 if (di_flags & XFS_DIFLAG_IMMUTABLE)
643 flags |= FS_XFLAG_IMMUTABLE;
644 if (di_flags & XFS_DIFLAG_APPEND)
645 flags |= FS_XFLAG_APPEND;
646 if (di_flags & XFS_DIFLAG_SYNC)
647 flags |= FS_XFLAG_SYNC;
648 if (di_flags & XFS_DIFLAG_NOATIME)
649 flags |= FS_XFLAG_NOATIME;
650 if (di_flags & XFS_DIFLAG_NODUMP)
651 flags |= FS_XFLAG_NODUMP;
652 if (di_flags & XFS_DIFLAG_RTINHERIT)
653 flags |= FS_XFLAG_RTINHERIT;
654 if (di_flags & XFS_DIFLAG_PROJINHERIT)
655 flags |= FS_XFLAG_PROJINHERIT;
656 if (di_flags & XFS_DIFLAG_NOSYMLINKS)
657 flags |= FS_XFLAG_NOSYMLINKS;
658 if (di_flags & XFS_DIFLAG_EXTSIZE)
659 flags |= FS_XFLAG_EXTSIZE;
660 if (di_flags & XFS_DIFLAG_EXTSZINHERIT)
661 flags |= FS_XFLAG_EXTSZINHERIT;
662 if (di_flags & XFS_DIFLAG_NODEFRAG)
663 flags |= FS_XFLAG_NODEFRAG;
664 if (di_flags & XFS_DIFLAG_FILESTREAM)
665 flags |= FS_XFLAG_FILESTREAM;
668 if (di_flags2 & XFS_DIFLAG2_ANY) {
669 if (di_flags2 & XFS_DIFLAG2_DAX)
670 flags |= FS_XFLAG_DAX;
671 if (di_flags2 & XFS_DIFLAG2_COWEXTSIZE)
672 flags |= FS_XFLAG_COWEXTSIZE;
676 flags |= FS_XFLAG_HASATTR;
683 struct xfs_inode *ip)
685 struct xfs_icdinode *dic = &ip->i_d;
687 return _xfs_dic2xflags(dic->di_flags, dic->di_flags2, XFS_IFORK_Q(ip));
691 * Lookups up an inode from "name". If ci_name is not NULL, then a CI match
692 * is allowed, otherwise it has to be an exact match. If a CI match is found,
693 * ci_name->name will point to a the actual name (caller must free) or
694 * will be set to NULL if an exact match is found.
699 struct xfs_name *name,
701 struct xfs_name *ci_name)
706 trace_xfs_lookup(dp, name);
708 if (XFS_FORCED_SHUTDOWN(dp->i_mount))
711 error = xfs_dir_lookup(NULL, dp, name, &inum, ci_name);
715 error = xfs_iget(dp->i_mount, NULL, inum, 0, 0, ipp);
723 kmem_free(ci_name->name);
730 * Allocate an inode on disk and return a copy of its in-core version.
731 * The in-core inode is locked exclusively. Set mode, nlink, and rdev
732 * appropriately within the inode. The uid and gid for the inode are
733 * set according to the contents of the given cred structure.
735 * Use xfs_dialloc() to allocate the on-disk inode. If xfs_dialloc()
736 * has a free inode available, call xfs_iget() to obtain the in-core
737 * version of the allocated inode. Finally, fill in the inode and
738 * log its initial contents. In this case, ialloc_context would be
741 * If xfs_dialloc() does not have an available inode, it will replenish
742 * its supply by doing an allocation. Since we can only do one
743 * allocation within a transaction without deadlocks, we must commit
744 * the current transaction before returning the inode itself.
745 * In this case, therefore, we will set ialloc_context and return.
746 * The caller should then commit the current transaction, start a new
747 * transaction, and call xfs_ialloc() again to actually get the inode.
749 * To ensure that some other process does not grab the inode that
750 * was allocated during the first call to xfs_ialloc(), this routine
751 * also returns the [locked] bp pointing to the head of the freelist
752 * as ialloc_context. The caller should hold this buffer across
753 * the commit and pass it back into this routine on the second call.
755 * If we are allocating quota inodes, we do not have a parent inode
756 * to attach to or associate with (i.e. pip == NULL) because they
757 * are not linked into the directory structure - they are attached
758 * directly to the superblock - and so have no parent.
768 xfs_buf_t **ialloc_context,
771 struct xfs_mount *mp = tp->t_mountp;
780 * Call the space management code to pick
781 * the on-disk inode to be allocated.
783 error = xfs_dialloc(tp, pip ? pip->i_ino : 0, mode,
784 ialloc_context, &ino);
787 if (*ialloc_context || ino == NULLFSINO) {
791 ASSERT(*ialloc_context == NULL);
794 * Get the in-core inode with the lock held exclusively.
795 * This is because we're setting fields here we need
796 * to prevent others from looking at until we're done.
798 error = xfs_iget(mp, tp, ino, XFS_IGET_CREATE,
799 XFS_ILOCK_EXCL, &ip);
806 * We always convert v1 inodes to v2 now - we only support filesystems
807 * with >= v2 inode capability, so there is no reason for ever leaving
808 * an inode in v1 format.
810 if (ip->i_d.di_version == 1)
811 ip->i_d.di_version = 2;
813 inode->i_mode = mode;
814 set_nlink(inode, nlink);
815 ip->i_d.di_uid = xfs_kuid_to_uid(current_fsuid());
816 ip->i_d.di_gid = xfs_kgid_to_gid(current_fsgid());
817 inode->i_rdev = rdev;
818 xfs_set_projid(ip, prid);
820 if (pip && XFS_INHERIT_GID(pip)) {
821 ip->i_d.di_gid = pip->i_d.di_gid;
822 if ((VFS_I(pip)->i_mode & S_ISGID) && S_ISDIR(mode))
823 inode->i_mode |= S_ISGID;
827 * If the group ID of the new file does not match the effective group
828 * ID or one of the supplementary group IDs, the S_ISGID bit is cleared
829 * (and only if the irix_sgid_inherit compatibility variable is set).
831 if ((irix_sgid_inherit) &&
832 (inode->i_mode & S_ISGID) &&
833 (!in_group_p(xfs_gid_to_kgid(ip->i_d.di_gid))))
834 inode->i_mode &= ~S_ISGID;
837 ip->i_d.di_nextents = 0;
838 ASSERT(ip->i_d.di_nblocks == 0);
840 tv = current_time(inode);
845 ip->i_d.di_extsize = 0;
846 ip->i_d.di_dmevmask = 0;
847 ip->i_d.di_dmstate = 0;
848 ip->i_d.di_flags = 0;
850 if (ip->i_d.di_version == 3) {
851 inode_set_iversion(inode, 1);
852 ip->i_d.di_flags2 = 0;
853 ip->i_d.di_cowextsize = 0;
854 ip->i_d.di_crtime.t_sec = (int32_t)tv.tv_sec;
855 ip->i_d.di_crtime.t_nsec = (int32_t)tv.tv_nsec;
859 flags = XFS_ILOG_CORE;
860 switch (mode & S_IFMT) {
865 ip->i_d.di_format = XFS_DINODE_FMT_DEV;
866 ip->i_df.if_flags = 0;
867 flags |= XFS_ILOG_DEV;
871 if (pip && (pip->i_d.di_flags & XFS_DIFLAG_ANY)) {
875 if (pip->i_d.di_flags & XFS_DIFLAG_RTINHERIT)
876 di_flags |= XFS_DIFLAG_RTINHERIT;
877 if (pip->i_d.di_flags & XFS_DIFLAG_EXTSZINHERIT) {
878 di_flags |= XFS_DIFLAG_EXTSZINHERIT;
879 ip->i_d.di_extsize = pip->i_d.di_extsize;
881 if (pip->i_d.di_flags & XFS_DIFLAG_PROJINHERIT)
882 di_flags |= XFS_DIFLAG_PROJINHERIT;
883 } else if (S_ISREG(mode)) {
884 if (pip->i_d.di_flags & XFS_DIFLAG_RTINHERIT)
885 di_flags |= XFS_DIFLAG_REALTIME;
886 if (pip->i_d.di_flags & XFS_DIFLAG_EXTSZINHERIT) {
887 di_flags |= XFS_DIFLAG_EXTSIZE;
888 ip->i_d.di_extsize = pip->i_d.di_extsize;
891 if ((pip->i_d.di_flags & XFS_DIFLAG_NOATIME) &&
893 di_flags |= XFS_DIFLAG_NOATIME;
894 if ((pip->i_d.di_flags & XFS_DIFLAG_NODUMP) &&
896 di_flags |= XFS_DIFLAG_NODUMP;
897 if ((pip->i_d.di_flags & XFS_DIFLAG_SYNC) &&
899 di_flags |= XFS_DIFLAG_SYNC;
900 if ((pip->i_d.di_flags & XFS_DIFLAG_NOSYMLINKS) &&
901 xfs_inherit_nosymlinks)
902 di_flags |= XFS_DIFLAG_NOSYMLINKS;
903 if ((pip->i_d.di_flags & XFS_DIFLAG_NODEFRAG) &&
904 xfs_inherit_nodefrag)
905 di_flags |= XFS_DIFLAG_NODEFRAG;
906 if (pip->i_d.di_flags & XFS_DIFLAG_FILESTREAM)
907 di_flags |= XFS_DIFLAG_FILESTREAM;
909 ip->i_d.di_flags |= di_flags;
912 (pip->i_d.di_flags2 & XFS_DIFLAG2_ANY) &&
913 pip->i_d.di_version == 3 &&
914 ip->i_d.di_version == 3) {
915 uint64_t di_flags2 = 0;
917 if (pip->i_d.di_flags2 & XFS_DIFLAG2_COWEXTSIZE) {
918 di_flags2 |= XFS_DIFLAG2_COWEXTSIZE;
919 ip->i_d.di_cowextsize = pip->i_d.di_cowextsize;
921 if (pip->i_d.di_flags2 & XFS_DIFLAG2_DAX)
922 di_flags2 |= XFS_DIFLAG2_DAX;
924 ip->i_d.di_flags2 |= di_flags2;
928 ip->i_d.di_format = XFS_DINODE_FMT_EXTENTS;
929 ip->i_df.if_flags = XFS_IFEXTENTS;
930 ip->i_df.if_bytes = ip->i_df.if_real_bytes = 0;
931 ip->i_df.if_u1.if_root = NULL;
937 * Attribute fork settings for new inode.
939 ip->i_d.di_aformat = XFS_DINODE_FMT_EXTENTS;
940 ip->i_d.di_anextents = 0;
943 * Log the new values stuffed into the inode.
945 xfs_trans_ijoin(tp, ip, XFS_ILOCK_EXCL);
946 xfs_trans_log_inode(tp, ip, flags);
948 /* now that we have an i_mode we can setup the inode structure */
956 * Allocates a new inode from disk and return a pointer to the
957 * incore copy. This routine will internally commit the current
958 * transaction and allocate a new one if the Space Manager needed
959 * to do an allocation to replenish the inode free-list.
961 * This routine is designed to be called from xfs_create and
967 xfs_trans_t **tpp, /* input: current transaction;
968 output: may be a new transaction. */
969 xfs_inode_t *dp, /* directory within whose allocate
974 prid_t prid, /* project id */
975 xfs_inode_t **ipp, /* pointer to inode; it will be
982 xfs_buf_t *ialloc_context = NULL;
988 ASSERT(tp->t_flags & XFS_TRANS_PERM_LOG_RES);
991 * xfs_ialloc will return a pointer to an incore inode if
992 * the Space Manager has an available inode on the free
993 * list. Otherwise, it will do an allocation and replenish
994 * the freelist. Since we can only do one allocation per
995 * transaction without deadlocks, we will need to commit the
996 * current transaction and start a new one. We will then
997 * need to call xfs_ialloc again to get the inode.
999 * If xfs_ialloc did an allocation to replenish the freelist,
1000 * it returns the bp containing the head of the freelist as
1001 * ialloc_context. We will hold a lock on it across the
1002 * transaction commit so that no other process can steal
1003 * the inode(s) that we've just allocated.
1005 code = xfs_ialloc(tp, dp, mode, nlink, rdev, prid, &ialloc_context,
1009 * Return an error if we were unable to allocate a new inode.
1010 * This should only happen if we run out of space on disk or
1011 * encounter a disk error.
1017 if (!ialloc_context && !ip) {
1023 * If the AGI buffer is non-NULL, then we were unable to get an
1024 * inode in one operation. We need to commit the current
1025 * transaction and call xfs_ialloc() again. It is guaranteed
1026 * to succeed the second time.
1028 if (ialloc_context) {
1030 * Normally, xfs_trans_commit releases all the locks.
1031 * We call bhold to hang on to the ialloc_context across
1032 * the commit. Holding this buffer prevents any other
1033 * processes from doing any allocations in this
1036 xfs_trans_bhold(tp, ialloc_context);
1039 * We want the quota changes to be associated with the next
1040 * transaction, NOT this one. So, detach the dqinfo from this
1041 * and attach it to the next transaction.
1046 dqinfo = (void *)tp->t_dqinfo;
1047 tp->t_dqinfo = NULL;
1048 tflags = tp->t_flags & XFS_TRANS_DQ_DIRTY;
1049 tp->t_flags &= ~(XFS_TRANS_DQ_DIRTY);
1052 code = xfs_trans_roll(&tp);
1053 if (committed != NULL)
1057 * Re-attach the quota info that we detached from prev trx.
1060 tp->t_dqinfo = dqinfo;
1061 tp->t_flags |= tflags;
1065 xfs_buf_relse(ialloc_context);
1070 xfs_trans_bjoin(tp, ialloc_context);
1073 * Call ialloc again. Since we've locked out all
1074 * other allocations in this allocation group,
1075 * this call should always succeed.
1077 code = xfs_ialloc(tp, dp, mode, nlink, rdev, prid,
1078 &ialloc_context, &ip);
1081 * If we get an error at this point, return to the caller
1082 * so that the current transaction can be aborted.
1089 ASSERT(!ialloc_context && ip);
1092 if (committed != NULL)
1103 * Decrement the link count on an inode & log the change. If this causes the
1104 * link count to go to zero, move the inode to AGI unlinked list so that it can
1105 * be freed when the last active reference goes away via xfs_inactive().
1107 static int /* error */
1112 xfs_trans_ichgtime(tp, ip, XFS_ICHGTIME_CHG);
1114 drop_nlink(VFS_I(ip));
1115 xfs_trans_log_inode(tp, ip, XFS_ILOG_CORE);
1117 if (VFS_I(ip)->i_nlink)
1120 return xfs_iunlink(tp, ip);
1124 * Increment the link count on an inode & log the change.
1131 xfs_trans_ichgtime(tp, ip, XFS_ICHGTIME_CHG);
1133 ASSERT(ip->i_d.di_version > 1);
1134 inc_nlink(VFS_I(ip));
1135 xfs_trans_log_inode(tp, ip, XFS_ILOG_CORE);
1142 struct xfs_name *name,
1147 int is_dir = S_ISDIR(mode);
1148 struct xfs_mount *mp = dp->i_mount;
1149 struct xfs_inode *ip = NULL;
1150 struct xfs_trans *tp = NULL;
1152 struct xfs_defer_ops dfops;
1153 xfs_fsblock_t first_block;
1154 bool unlock_dp_on_error = false;
1156 struct xfs_dquot *udqp = NULL;
1157 struct xfs_dquot *gdqp = NULL;
1158 struct xfs_dquot *pdqp = NULL;
1159 struct xfs_trans_res *tres;
1162 trace_xfs_create(dp, name);
1164 if (XFS_FORCED_SHUTDOWN(mp))
1167 prid = xfs_get_initial_prid(dp);
1170 * Make sure that we have allocated dquot(s) on disk.
1172 error = xfs_qm_vop_dqalloc(dp, xfs_kuid_to_uid(current_fsuid()),
1173 xfs_kgid_to_gid(current_fsgid()), prid,
1174 XFS_QMOPT_QUOTALL | XFS_QMOPT_INHERIT,
1175 &udqp, &gdqp, &pdqp);
1180 resblks = XFS_MKDIR_SPACE_RES(mp, name->len);
1181 tres = &M_RES(mp)->tr_mkdir;
1183 resblks = XFS_CREATE_SPACE_RES(mp, name->len);
1184 tres = &M_RES(mp)->tr_create;
1188 * Initially assume that the file does not exist and
1189 * reserve the resources for that case. If that is not
1190 * the case we'll drop the one we have and get a more
1191 * appropriate transaction later.
1193 error = xfs_trans_alloc(mp, tres, resblks, 0, 0, &tp);
1194 if (error == -ENOSPC) {
1195 /* flush outstanding delalloc blocks and retry */
1196 xfs_flush_inodes(mp);
1197 error = xfs_trans_alloc(mp, tres, resblks, 0, 0, &tp);
1200 goto out_release_inode;
1202 xfs_ilock(dp, XFS_ILOCK_EXCL | XFS_ILOCK_PARENT);
1203 unlock_dp_on_error = true;
1205 xfs_defer_init(&dfops, &first_block);
1208 * Reserve disk quota and the inode.
1210 error = xfs_trans_reserve_quota(tp, mp, udqp, gdqp,
1211 pdqp, resblks, 1, 0);
1213 goto out_trans_cancel;
1216 * A newly created regular or special file just has one directory
1217 * entry pointing to them, but a directory also the "." entry
1218 * pointing to itself.
1220 error = xfs_dir_ialloc(&tp, dp, mode, is_dir ? 2 : 1, rdev, prid, &ip,
1223 goto out_trans_cancel;
1226 * Now we join the directory inode to the transaction. We do not do it
1227 * earlier because xfs_dir_ialloc might commit the previous transaction
1228 * (and release all the locks). An error from here on will result in
1229 * the transaction cancel unlocking dp so don't do it explicitly in the
1232 xfs_trans_ijoin(tp, dp, XFS_ILOCK_EXCL);
1233 unlock_dp_on_error = false;
1235 error = xfs_dir_createname(tp, dp, name, ip->i_ino,
1236 &first_block, &dfops, resblks ?
1237 resblks - XFS_IALLOC_SPACE_RES(mp) : 0);
1239 ASSERT(error != -ENOSPC);
1240 goto out_trans_cancel;
1242 xfs_trans_ichgtime(tp, dp, XFS_ICHGTIME_MOD | XFS_ICHGTIME_CHG);
1243 xfs_trans_log_inode(tp, dp, XFS_ILOG_CORE);
1246 error = xfs_dir_init(tp, ip, dp);
1248 goto out_bmap_cancel;
1250 error = xfs_bumplink(tp, dp);
1252 goto out_bmap_cancel;
1256 * If this is a synchronous mount, make sure that the
1257 * create transaction goes to disk before returning to
1260 if (mp->m_flags & (XFS_MOUNT_WSYNC|XFS_MOUNT_DIRSYNC))
1261 xfs_trans_set_sync(tp);
1264 * Attach the dquot(s) to the inodes and modify them incore.
1265 * These ids of the inode couldn't have changed since the new
1266 * inode has been locked ever since it was created.
1268 xfs_qm_vop_create_dqattach(tp, ip, udqp, gdqp, pdqp);
1270 error = xfs_defer_finish(&tp, &dfops);
1272 goto out_bmap_cancel;
1274 error = xfs_trans_commit(tp);
1276 goto out_release_inode;
1278 xfs_qm_dqrele(udqp);
1279 xfs_qm_dqrele(gdqp);
1280 xfs_qm_dqrele(pdqp);
1286 xfs_defer_cancel(&dfops);
1288 xfs_trans_cancel(tp);
1291 * Wait until after the current transaction is aborted to finish the
1292 * setup of the inode and release the inode. This prevents recursive
1293 * transactions and deadlocks from xfs_inactive.
1296 xfs_finish_inode_setup(ip);
1300 xfs_qm_dqrele(udqp);
1301 xfs_qm_dqrele(gdqp);
1302 xfs_qm_dqrele(pdqp);
1304 if (unlock_dp_on_error)
1305 xfs_iunlock(dp, XFS_ILOCK_EXCL);
1311 struct xfs_inode *dp,
1312 struct dentry *dentry,
1314 struct xfs_inode **ipp)
1316 struct xfs_mount *mp = dp->i_mount;
1317 struct xfs_inode *ip = NULL;
1318 struct xfs_trans *tp = NULL;
1321 struct xfs_dquot *udqp = NULL;
1322 struct xfs_dquot *gdqp = NULL;
1323 struct xfs_dquot *pdqp = NULL;
1324 struct xfs_trans_res *tres;
1327 if (XFS_FORCED_SHUTDOWN(mp))
1330 prid = xfs_get_initial_prid(dp);
1333 * Make sure that we have allocated dquot(s) on disk.
1335 error = xfs_qm_vop_dqalloc(dp, xfs_kuid_to_uid(current_fsuid()),
1336 xfs_kgid_to_gid(current_fsgid()), prid,
1337 XFS_QMOPT_QUOTALL | XFS_QMOPT_INHERIT,
1338 &udqp, &gdqp, &pdqp);
1342 resblks = XFS_IALLOC_SPACE_RES(mp);
1343 tres = &M_RES(mp)->tr_create_tmpfile;
1345 error = xfs_trans_alloc(mp, tres, resblks, 0, 0, &tp);
1347 goto out_release_inode;
1349 error = xfs_trans_reserve_quota(tp, mp, udqp, gdqp,
1350 pdqp, resblks, 1, 0);
1352 goto out_trans_cancel;
1354 error = xfs_dir_ialloc(&tp, dp, mode, 1, 0, prid, &ip, NULL);
1356 goto out_trans_cancel;
1358 if (mp->m_flags & XFS_MOUNT_WSYNC)
1359 xfs_trans_set_sync(tp);
1362 * Attach the dquot(s) to the inodes and modify them incore.
1363 * These ids of the inode couldn't have changed since the new
1364 * inode has been locked ever since it was created.
1366 xfs_qm_vop_create_dqattach(tp, ip, udqp, gdqp, pdqp);
1368 error = xfs_iunlink(tp, ip);
1370 goto out_trans_cancel;
1372 error = xfs_trans_commit(tp);
1374 goto out_release_inode;
1376 xfs_qm_dqrele(udqp);
1377 xfs_qm_dqrele(gdqp);
1378 xfs_qm_dqrele(pdqp);
1384 xfs_trans_cancel(tp);
1387 * Wait until after the current transaction is aborted to finish the
1388 * setup of the inode and release the inode. This prevents recursive
1389 * transactions and deadlocks from xfs_inactive.
1392 xfs_finish_inode_setup(ip);
1396 xfs_qm_dqrele(udqp);
1397 xfs_qm_dqrele(gdqp);
1398 xfs_qm_dqrele(pdqp);
1407 struct xfs_name *target_name)
1409 xfs_mount_t *mp = tdp->i_mount;
1412 struct xfs_defer_ops dfops;
1413 xfs_fsblock_t first_block;
1416 trace_xfs_link(tdp, target_name);
1418 ASSERT(!S_ISDIR(VFS_I(sip)->i_mode));
1420 if (XFS_FORCED_SHUTDOWN(mp))
1423 error = xfs_qm_dqattach(sip, 0);
1427 error = xfs_qm_dqattach(tdp, 0);
1431 resblks = XFS_LINK_SPACE_RES(mp, target_name->len);
1432 error = xfs_trans_alloc(mp, &M_RES(mp)->tr_link, resblks, 0, 0, &tp);
1433 if (error == -ENOSPC) {
1435 error = xfs_trans_alloc(mp, &M_RES(mp)->tr_link, 0, 0, 0, &tp);
1440 xfs_lock_two_inodes(sip, XFS_ILOCK_EXCL, tdp, XFS_ILOCK_EXCL);
1442 xfs_trans_ijoin(tp, sip, XFS_ILOCK_EXCL);
1443 xfs_trans_ijoin(tp, tdp, XFS_ILOCK_EXCL);
1446 * If we are using project inheritance, we only allow hard link
1447 * creation in our tree when the project IDs are the same; else
1448 * the tree quota mechanism could be circumvented.
1450 if (unlikely((tdp->i_d.di_flags & XFS_DIFLAG_PROJINHERIT) &&
1451 (xfs_get_projid(tdp) != xfs_get_projid(sip)))) {
1457 error = xfs_dir_canenter(tp, tdp, target_name);
1462 xfs_defer_init(&dfops, &first_block);
1465 * Handle initial link state of O_TMPFILE inode
1467 if (VFS_I(sip)->i_nlink == 0) {
1468 error = xfs_iunlink_remove(tp, sip);
1473 error = xfs_dir_createname(tp, tdp, target_name, sip->i_ino,
1474 &first_block, &dfops, resblks);
1477 xfs_trans_ichgtime(tp, tdp, XFS_ICHGTIME_MOD | XFS_ICHGTIME_CHG);
1478 xfs_trans_log_inode(tp, tdp, XFS_ILOG_CORE);
1480 error = xfs_bumplink(tp, sip);
1485 * If this is a synchronous mount, make sure that the
1486 * link transaction goes to disk before returning to
1489 if (mp->m_flags & (XFS_MOUNT_WSYNC|XFS_MOUNT_DIRSYNC))
1490 xfs_trans_set_sync(tp);
1492 error = xfs_defer_finish(&tp, &dfops);
1494 xfs_defer_cancel(&dfops);
1498 return xfs_trans_commit(tp);
1501 xfs_trans_cancel(tp);
1506 /* Clear the reflink flag and the cowblocks tag if possible. */
1508 xfs_itruncate_clear_reflink_flags(
1509 struct xfs_inode *ip)
1511 struct xfs_ifork *dfork;
1512 struct xfs_ifork *cfork;
1514 if (!xfs_is_reflink_inode(ip))
1516 dfork = XFS_IFORK_PTR(ip, XFS_DATA_FORK);
1517 cfork = XFS_IFORK_PTR(ip, XFS_COW_FORK);
1518 if (dfork->if_bytes == 0 && cfork->if_bytes == 0)
1519 ip->i_d.di_flags2 &= ~XFS_DIFLAG2_REFLINK;
1520 if (cfork->if_bytes == 0)
1521 xfs_inode_clear_cowblocks_tag(ip);
1525 * Free up the underlying blocks past new_size. The new size must be smaller
1526 * than the current size. This routine can be used both for the attribute and
1527 * data fork, and does not modify the inode size, which is left to the caller.
1529 * The transaction passed to this routine must have made a permanent log
1530 * reservation of at least XFS_ITRUNCATE_LOG_RES. This routine may commit the
1531 * given transaction and start new ones, so make sure everything involved in
1532 * the transaction is tidy before calling here. Some transaction will be
1533 * returned to the caller to be committed. The incoming transaction must
1534 * already include the inode, and both inode locks must be held exclusively.
1535 * The inode must also be "held" within the transaction. On return the inode
1536 * will be "held" within the returned transaction. This routine does NOT
1537 * require any disk space to be reserved for it within the transaction.
1539 * If we get an error, we must return with the inode locked and linked into the
1540 * current transaction. This keeps things simple for the higher level code,
1541 * because it always knows that the inode is locked and held in the transaction
1542 * that returns to it whether errors occur or not. We don't mark the inode
1543 * dirty on error so that transactions can be easily aborted if possible.
1546 xfs_itruncate_extents(
1547 struct xfs_trans **tpp,
1548 struct xfs_inode *ip,
1550 xfs_fsize_t new_size)
1552 struct xfs_mount *mp = ip->i_mount;
1553 struct xfs_trans *tp = *tpp;
1554 struct xfs_defer_ops dfops;
1555 xfs_fsblock_t first_block;
1556 xfs_fileoff_t first_unmap_block;
1557 xfs_fileoff_t last_block;
1558 xfs_filblks_t unmap_len;
1562 ASSERT(xfs_isilocked(ip, XFS_ILOCK_EXCL));
1563 ASSERT(!atomic_read(&VFS_I(ip)->i_count) ||
1564 xfs_isilocked(ip, XFS_IOLOCK_EXCL));
1565 ASSERT(new_size <= XFS_ISIZE(ip));
1566 ASSERT(tp->t_flags & XFS_TRANS_PERM_LOG_RES);
1567 ASSERT(ip->i_itemp != NULL);
1568 ASSERT(ip->i_itemp->ili_lock_flags == 0);
1569 ASSERT(!XFS_NOT_DQATTACHED(mp, ip));
1571 trace_xfs_itruncate_extents_start(ip, new_size);
1574 * Since it is possible for space to become allocated beyond
1575 * the end of the file (in a crash where the space is allocated
1576 * but the inode size is not yet updated), simply remove any
1577 * blocks which show up between the new EOF and the maximum
1578 * possible file size. If the first block to be removed is
1579 * beyond the maximum file size (ie it is the same as last_block),
1580 * then there is nothing to do.
1582 first_unmap_block = XFS_B_TO_FSB(mp, (xfs_ufsize_t)new_size);
1583 last_block = XFS_B_TO_FSB(mp, mp->m_super->s_maxbytes);
1584 if (first_unmap_block == last_block)
1587 ASSERT(first_unmap_block < last_block);
1588 unmap_len = last_block - first_unmap_block + 1;
1590 xfs_defer_init(&dfops, &first_block);
1591 error = xfs_bunmapi(tp, ip,
1592 first_unmap_block, unmap_len,
1593 xfs_bmapi_aflag(whichfork),
1594 XFS_ITRUNC_MAX_EXTENTS,
1595 &first_block, &dfops,
1598 goto out_bmap_cancel;
1601 * Duplicate the transaction that has the permanent
1602 * reservation and commit the old transaction.
1604 xfs_defer_ijoin(&dfops, ip);
1605 error = xfs_defer_finish(&tp, &dfops);
1607 goto out_bmap_cancel;
1609 error = xfs_trans_roll_inode(&tp, ip);
1614 /* Remove all pending CoW reservations. */
1615 error = xfs_reflink_cancel_cow_blocks(ip, &tp, first_unmap_block,
1620 xfs_itruncate_clear_reflink_flags(ip);
1623 * Always re-log the inode so that our permanent transaction can keep
1624 * on rolling it forward in the log.
1626 xfs_trans_log_inode(tp, ip, XFS_ILOG_CORE);
1628 trace_xfs_itruncate_extents_end(ip, new_size);
1635 * If the bunmapi call encounters an error, return to the caller where
1636 * the transaction can be properly aborted. We just need to make sure
1637 * we're not holding any resources that we were not when we came in.
1639 xfs_defer_cancel(&dfops);
1647 xfs_mount_t *mp = ip->i_mount;
1650 if (!S_ISREG(VFS_I(ip)->i_mode) || (VFS_I(ip)->i_mode == 0))
1653 /* If this is a read-only mount, don't do this (would generate I/O) */
1654 if (mp->m_flags & XFS_MOUNT_RDONLY)
1657 if (!XFS_FORCED_SHUTDOWN(mp)) {
1661 * If we previously truncated this file and removed old data
1662 * in the process, we want to initiate "early" writeout on
1663 * the last close. This is an attempt to combat the notorious
1664 * NULL files problem which is particularly noticeable from a
1665 * truncate down, buffered (re-)write (delalloc), followed by
1666 * a crash. What we are effectively doing here is
1667 * significantly reducing the time window where we'd otherwise
1668 * be exposed to that problem.
1670 truncated = xfs_iflags_test_and_clear(ip, XFS_ITRUNCATED);
1672 xfs_iflags_clear(ip, XFS_IDIRTY_RELEASE);
1673 if (ip->i_delayed_blks > 0) {
1674 error = filemap_flush(VFS_I(ip)->i_mapping);
1681 if (VFS_I(ip)->i_nlink == 0)
1684 if (xfs_can_free_eofblocks(ip, false)) {
1687 * Check if the inode is being opened, written and closed
1688 * frequently and we have delayed allocation blocks outstanding
1689 * (e.g. streaming writes from the NFS server), truncating the
1690 * blocks past EOF will cause fragmentation to occur.
1692 * In this case don't do the truncation, but we have to be
1693 * careful how we detect this case. Blocks beyond EOF show up as
1694 * i_delayed_blks even when the inode is clean, so we need to
1695 * truncate them away first before checking for a dirty release.
1696 * Hence on the first dirty close we will still remove the
1697 * speculative allocation, but after that we will leave it in
1700 if (xfs_iflags_test(ip, XFS_IDIRTY_RELEASE))
1703 * If we can't get the iolock just skip truncating the blocks
1704 * past EOF because we could deadlock with the mmap_sem
1705 * otherwise. We'll get another chance to drop them once the
1706 * last reference to the inode is dropped, so we'll never leak
1707 * blocks permanently.
1709 if (xfs_ilock_nowait(ip, XFS_IOLOCK_EXCL)) {
1710 error = xfs_free_eofblocks(ip);
1711 xfs_iunlock(ip, XFS_IOLOCK_EXCL);
1716 /* delalloc blocks after truncation means it really is dirty */
1717 if (ip->i_delayed_blks)
1718 xfs_iflags_set(ip, XFS_IDIRTY_RELEASE);
1724 * xfs_inactive_truncate
1726 * Called to perform a truncate when an inode becomes unlinked.
1729 xfs_inactive_truncate(
1730 struct xfs_inode *ip)
1732 struct xfs_mount *mp = ip->i_mount;
1733 struct xfs_trans *tp;
1736 error = xfs_trans_alloc(mp, &M_RES(mp)->tr_itruncate, 0, 0, 0, &tp);
1738 ASSERT(XFS_FORCED_SHUTDOWN(mp));
1742 xfs_ilock(ip, XFS_ILOCK_EXCL);
1743 xfs_trans_ijoin(tp, ip, 0);
1746 * Log the inode size first to prevent stale data exposure in the event
1747 * of a system crash before the truncate completes. See the related
1748 * comment in xfs_vn_setattr_size() for details.
1750 ip->i_d.di_size = 0;
1751 xfs_trans_log_inode(tp, ip, XFS_ILOG_CORE);
1753 error = xfs_itruncate_extents(&tp, ip, XFS_DATA_FORK, 0);
1755 goto error_trans_cancel;
1757 ASSERT(ip->i_d.di_nextents == 0);
1759 error = xfs_trans_commit(tp);
1763 xfs_iunlock(ip, XFS_ILOCK_EXCL);
1767 xfs_trans_cancel(tp);
1769 xfs_iunlock(ip, XFS_ILOCK_EXCL);
1774 * xfs_inactive_ifree()
1776 * Perform the inode free when an inode is unlinked.
1780 struct xfs_inode *ip)
1782 struct xfs_defer_ops dfops;
1783 xfs_fsblock_t first_block;
1784 struct xfs_mount *mp = ip->i_mount;
1785 struct xfs_trans *tp;
1789 * We try to use a per-AG reservation for any block needed by the finobt
1790 * tree, but as the finobt feature predates the per-AG reservation
1791 * support a degraded file system might not have enough space for the
1792 * reservation at mount time. In that case try to dip into the reserved
1795 * Send a warning if the reservation does happen to fail, as the inode
1796 * now remains allocated and sits on the unlinked list until the fs is
1799 if (unlikely(mp->m_inotbt_nores)) {
1800 error = xfs_trans_alloc(mp, &M_RES(mp)->tr_ifree,
1801 XFS_IFREE_SPACE_RES(mp), 0, XFS_TRANS_RESERVE,
1804 error = xfs_trans_alloc(mp, &M_RES(mp)->tr_ifree, 0, 0, 0, &tp);
1807 if (error == -ENOSPC) {
1808 xfs_warn_ratelimited(mp,
1809 "Failed to remove inode(s) from unlinked list. "
1810 "Please free space, unmount and run xfs_repair.");
1812 ASSERT(XFS_FORCED_SHUTDOWN(mp));
1817 xfs_ilock(ip, XFS_ILOCK_EXCL);
1818 xfs_trans_ijoin(tp, ip, 0);
1820 xfs_defer_init(&dfops, &first_block);
1821 error = xfs_ifree(tp, ip, &dfops);
1824 * If we fail to free the inode, shut down. The cancel
1825 * might do that, we need to make sure. Otherwise the
1826 * inode might be lost for a long time or forever.
1828 if (!XFS_FORCED_SHUTDOWN(mp)) {
1829 xfs_notice(mp, "%s: xfs_ifree returned error %d",
1831 xfs_force_shutdown(mp, SHUTDOWN_META_IO_ERROR);
1833 xfs_trans_cancel(tp);
1834 xfs_iunlock(ip, XFS_ILOCK_EXCL);
1839 * Credit the quota account(s). The inode is gone.
1841 xfs_trans_mod_dquot_byino(tp, ip, XFS_TRANS_DQ_ICOUNT, -1);
1844 * Just ignore errors at this point. There is nothing we can do except
1845 * to try to keep going. Make sure it's not a silent error.
1847 error = xfs_defer_finish(&tp, &dfops);
1849 xfs_notice(mp, "%s: xfs_defer_finish returned error %d",
1851 xfs_defer_cancel(&dfops);
1853 error = xfs_trans_commit(tp);
1855 xfs_notice(mp, "%s: xfs_trans_commit returned error %d",
1858 xfs_iunlock(ip, XFS_ILOCK_EXCL);
1865 * This is called when the vnode reference count for the vnode
1866 * goes to zero. If the file has been unlinked, then it must
1867 * now be truncated. Also, we clear all of the read-ahead state
1868 * kept for the inode here since the file is now closed.
1874 struct xfs_mount *mp;
1875 struct xfs_ifork *cow_ifp = XFS_IFORK_PTR(ip, XFS_COW_FORK);
1880 * If the inode is already free, then there can be nothing
1883 if (VFS_I(ip)->i_mode == 0) {
1884 ASSERT(ip->i_df.if_real_bytes == 0);
1885 ASSERT(ip->i_df.if_broot_bytes == 0);
1890 ASSERT(!xfs_iflags_test(ip, XFS_IRECOVERY));
1892 /* If this is a read-only mount, don't do this (would generate I/O) */
1893 if (mp->m_flags & XFS_MOUNT_RDONLY)
1896 /* Try to clean out the cow blocks if there are any. */
1897 if (xfs_is_reflink_inode(ip) && cow_ifp->if_bytes > 0)
1898 xfs_reflink_cancel_cow_range(ip, 0, NULLFILEOFF, true);
1900 if (VFS_I(ip)->i_nlink != 0) {
1902 * force is true because we are evicting an inode from the
1903 * cache. Post-eof blocks must be freed, lest we end up with
1904 * broken free space accounting.
1906 * Note: don't bother with iolock here since lockdep complains
1907 * about acquiring it in reclaim context. We have the only
1908 * reference to the inode at this point anyways.
1910 if (xfs_can_free_eofblocks(ip, true))
1911 xfs_free_eofblocks(ip);
1916 if (S_ISREG(VFS_I(ip)->i_mode) &&
1917 (ip->i_d.di_size != 0 || XFS_ISIZE(ip) != 0 ||
1918 ip->i_d.di_nextents > 0 || ip->i_delayed_blks > 0))
1921 error = xfs_qm_dqattach(ip, 0);
1925 if (S_ISLNK(VFS_I(ip)->i_mode))
1926 error = xfs_inactive_symlink(ip);
1928 error = xfs_inactive_truncate(ip);
1933 * If there are attributes associated with the file then blow them away
1934 * now. The code calls a routine that recursively deconstructs the
1935 * attribute fork. If also blows away the in-core attribute fork.
1937 if (XFS_IFORK_Q(ip)) {
1938 error = xfs_attr_inactive(ip);
1944 ASSERT(ip->i_d.di_anextents == 0);
1945 ASSERT(ip->i_d.di_forkoff == 0);
1950 error = xfs_inactive_ifree(ip);
1955 * Release the dquots held by inode, if any.
1957 xfs_qm_dqdetach(ip);
1961 * This is called when the inode's link count goes to 0 or we are creating a
1962 * tmpfile via O_TMPFILE. In the case of a tmpfile, @ignore_linkcount will be
1963 * set to true as the link count is dropped to zero by the VFS after we've
1964 * created the file successfully, so we have to add it to the unlinked list
1965 * while the link count is non-zero.
1967 * We place the on-disk inode on a list in the AGI. It will be pulled from this
1968 * list when the inode is freed.
1972 struct xfs_trans *tp,
1973 struct xfs_inode *ip)
1975 xfs_mount_t *mp = tp->t_mountp;
1985 ASSERT(VFS_I(ip)->i_mode != 0);
1988 * Get the agi buffer first. It ensures lock ordering
1991 error = xfs_read_agi(mp, tp, XFS_INO_TO_AGNO(mp, ip->i_ino), &agibp);
1994 agi = XFS_BUF_TO_AGI(agibp);
1997 * Get the index into the agi hash table for the
1998 * list this inode will go on.
2000 agino = XFS_INO_TO_AGINO(mp, ip->i_ino);
2002 bucket_index = agino % XFS_AGI_UNLINKED_BUCKETS;
2003 ASSERT(agi->agi_unlinked[bucket_index]);
2004 ASSERT(be32_to_cpu(agi->agi_unlinked[bucket_index]) != agino);
2006 if (agi->agi_unlinked[bucket_index] != cpu_to_be32(NULLAGINO)) {
2008 * There is already another inode in the bucket we need
2009 * to add ourselves to. Add us at the front of the list.
2010 * Here we put the head pointer into our next pointer,
2011 * and then we fall through to point the head at us.
2013 error = xfs_imap_to_bp(mp, tp, &ip->i_imap, &dip, &ibp,
2018 ASSERT(dip->di_next_unlinked == cpu_to_be32(NULLAGINO));
2019 dip->di_next_unlinked = agi->agi_unlinked[bucket_index];
2020 offset = ip->i_imap.im_boffset +
2021 offsetof(xfs_dinode_t, di_next_unlinked);
2023 /* need to recalc the inode CRC if appropriate */
2024 xfs_dinode_calc_crc(mp, dip);
2026 xfs_trans_inode_buf(tp, ibp);
2027 xfs_trans_log_buf(tp, ibp, offset,
2028 (offset + sizeof(xfs_agino_t) - 1));
2029 xfs_inobp_check(mp, ibp);
2033 * Point the bucket head pointer at the inode being inserted.
2036 agi->agi_unlinked[bucket_index] = cpu_to_be32(agino);
2037 offset = offsetof(xfs_agi_t, agi_unlinked) +
2038 (sizeof(xfs_agino_t) * bucket_index);
2039 xfs_trans_log_buf(tp, agibp, offset,
2040 (offset + sizeof(xfs_agino_t) - 1));
2045 * Pull the on-disk inode from the AGI unlinked list.
2058 xfs_agnumber_t agno;
2060 xfs_agino_t next_agino;
2061 xfs_buf_t *last_ibp;
2062 xfs_dinode_t *last_dip = NULL;
2064 int offset, last_offset = 0;
2068 agno = XFS_INO_TO_AGNO(mp, ip->i_ino);
2071 * Get the agi buffer first. It ensures lock ordering
2074 error = xfs_read_agi(mp, tp, agno, &agibp);
2078 agi = XFS_BUF_TO_AGI(agibp);
2081 * Get the index into the agi hash table for the
2082 * list this inode will go on.
2084 agino = XFS_INO_TO_AGINO(mp, ip->i_ino);
2086 bucket_index = agino % XFS_AGI_UNLINKED_BUCKETS;
2087 ASSERT(agi->agi_unlinked[bucket_index] != cpu_to_be32(NULLAGINO));
2088 ASSERT(agi->agi_unlinked[bucket_index]);
2090 if (be32_to_cpu(agi->agi_unlinked[bucket_index]) == agino) {
2092 * We're at the head of the list. Get the inode's on-disk
2093 * buffer to see if there is anyone after us on the list.
2094 * Only modify our next pointer if it is not already NULLAGINO.
2095 * This saves us the overhead of dealing with the buffer when
2096 * there is no need to change it.
2098 error = xfs_imap_to_bp(mp, tp, &ip->i_imap, &dip, &ibp,
2101 xfs_warn(mp, "%s: xfs_imap_to_bp returned error %d.",
2105 next_agino = be32_to_cpu(dip->di_next_unlinked);
2106 ASSERT(next_agino != 0);
2107 if (next_agino != NULLAGINO) {
2108 dip->di_next_unlinked = cpu_to_be32(NULLAGINO);
2109 offset = ip->i_imap.im_boffset +
2110 offsetof(xfs_dinode_t, di_next_unlinked);
2112 /* need to recalc the inode CRC if appropriate */
2113 xfs_dinode_calc_crc(mp, dip);
2115 xfs_trans_inode_buf(tp, ibp);
2116 xfs_trans_log_buf(tp, ibp, offset,
2117 (offset + sizeof(xfs_agino_t) - 1));
2118 xfs_inobp_check(mp, ibp);
2120 xfs_trans_brelse(tp, ibp);
2123 * Point the bucket head pointer at the next inode.
2125 ASSERT(next_agino != 0);
2126 ASSERT(next_agino != agino);
2127 agi->agi_unlinked[bucket_index] = cpu_to_be32(next_agino);
2128 offset = offsetof(xfs_agi_t, agi_unlinked) +
2129 (sizeof(xfs_agino_t) * bucket_index);
2130 xfs_trans_log_buf(tp, agibp, offset,
2131 (offset + sizeof(xfs_agino_t) - 1));
2134 * We need to search the list for the inode being freed.
2136 next_agino = be32_to_cpu(agi->agi_unlinked[bucket_index]);
2138 while (next_agino != agino) {
2139 struct xfs_imap imap;
2142 xfs_trans_brelse(tp, last_ibp);
2145 next_ino = XFS_AGINO_TO_INO(mp, agno, next_agino);
2147 error = xfs_imap(mp, tp, next_ino, &imap, 0);
2150 "%s: xfs_imap returned error %d.",
2155 error = xfs_imap_to_bp(mp, tp, &imap, &last_dip,
2159 "%s: xfs_imap_to_bp returned error %d.",
2164 last_offset = imap.im_boffset;
2165 next_agino = be32_to_cpu(last_dip->di_next_unlinked);
2166 ASSERT(next_agino != NULLAGINO);
2167 ASSERT(next_agino != 0);
2171 * Now last_ibp points to the buffer previous to us on the
2172 * unlinked list. Pull us from the list.
2174 error = xfs_imap_to_bp(mp, tp, &ip->i_imap, &dip, &ibp,
2177 xfs_warn(mp, "%s: xfs_imap_to_bp(2) returned error %d.",
2181 next_agino = be32_to_cpu(dip->di_next_unlinked);
2182 ASSERT(next_agino != 0);
2183 ASSERT(next_agino != agino);
2184 if (next_agino != NULLAGINO) {
2185 dip->di_next_unlinked = cpu_to_be32(NULLAGINO);
2186 offset = ip->i_imap.im_boffset +
2187 offsetof(xfs_dinode_t, di_next_unlinked);
2189 /* need to recalc the inode CRC if appropriate */
2190 xfs_dinode_calc_crc(mp, dip);
2192 xfs_trans_inode_buf(tp, ibp);
2193 xfs_trans_log_buf(tp, ibp, offset,
2194 (offset + sizeof(xfs_agino_t) - 1));
2195 xfs_inobp_check(mp, ibp);
2197 xfs_trans_brelse(tp, ibp);
2200 * Point the previous inode on the list to the next inode.
2202 last_dip->di_next_unlinked = cpu_to_be32(next_agino);
2203 ASSERT(next_agino != 0);
2204 offset = last_offset + offsetof(xfs_dinode_t, di_next_unlinked);
2206 /* need to recalc the inode CRC if appropriate */
2207 xfs_dinode_calc_crc(mp, last_dip);
2209 xfs_trans_inode_buf(tp, last_ibp);
2210 xfs_trans_log_buf(tp, last_ibp, offset,
2211 (offset + sizeof(xfs_agino_t) - 1));
2212 xfs_inobp_check(mp, last_ibp);
2218 * A big issue when freeing the inode cluster is that we _cannot_ skip any
2219 * inodes that are in memory - they all must be marked stale and attached to
2220 * the cluster buffer.
2224 xfs_inode_t *free_ip,
2226 struct xfs_icluster *xic)
2228 xfs_mount_t *mp = free_ip->i_mount;
2229 int blks_per_cluster;
2230 int inodes_per_cluster;
2237 xfs_inode_log_item_t *iip;
2238 struct xfs_log_item *lip;
2239 struct xfs_perag *pag;
2242 inum = xic->first_ino;
2243 pag = xfs_perag_get(mp, XFS_INO_TO_AGNO(mp, inum));
2244 blks_per_cluster = xfs_icluster_size_fsb(mp);
2245 inodes_per_cluster = blks_per_cluster << mp->m_sb.sb_inopblog;
2246 nbufs = mp->m_ialloc_blks / blks_per_cluster;
2248 for (j = 0; j < nbufs; j++, inum += inodes_per_cluster) {
2250 * The allocation bitmap tells us which inodes of the chunk were
2251 * physically allocated. Skip the cluster if an inode falls into
2254 ioffset = inum - xic->first_ino;
2255 if ((xic->alloc & XFS_INOBT_MASK(ioffset)) == 0) {
2256 ASSERT(do_mod(ioffset, inodes_per_cluster) == 0);
2260 blkno = XFS_AGB_TO_DADDR(mp, XFS_INO_TO_AGNO(mp, inum),
2261 XFS_INO_TO_AGBNO(mp, inum));
2264 * We obtain and lock the backing buffer first in the process
2265 * here, as we have to ensure that any dirty inode that we
2266 * can't get the flush lock on is attached to the buffer.
2267 * If we scan the in-memory inodes first, then buffer IO can
2268 * complete before we get a lock on it, and hence we may fail
2269 * to mark all the active inodes on the buffer stale.
2271 bp = xfs_trans_get_buf(tp, mp->m_ddev_targp, blkno,
2272 mp->m_bsize * blks_per_cluster,
2279 * This buffer may not have been correctly initialised as we
2280 * didn't read it from disk. That's not important because we are
2281 * only using to mark the buffer as stale in the log, and to
2282 * attach stale cached inodes on it. That means it will never be
2283 * dispatched for IO. If it is, we want to know about it, and we
2284 * want it to fail. We can acheive this by adding a write
2285 * verifier to the buffer.
2287 bp->b_ops = &xfs_inode_buf_ops;
2290 * Walk the inodes already attached to the buffer and mark them
2291 * stale. These will all have the flush locks held, so an
2292 * in-memory inode walk can't lock them. By marking them all
2293 * stale first, we will not attempt to lock them in the loop
2294 * below as the XFS_ISTALE flag will be set.
2296 list_for_each_entry(lip, &bp->b_li_list, li_bio_list) {
2297 if (lip->li_type == XFS_LI_INODE) {
2298 iip = (xfs_inode_log_item_t *)lip;
2299 ASSERT(iip->ili_logged == 1);
2300 lip->li_cb = xfs_istale_done;
2301 xfs_trans_ail_copy_lsn(mp->m_ail,
2302 &iip->ili_flush_lsn,
2303 &iip->ili_item.li_lsn);
2304 xfs_iflags_set(iip->ili_inode, XFS_ISTALE);
2310 * For each inode in memory attempt to add it to the inode
2311 * buffer and set it up for being staled on buffer IO
2312 * completion. This is safe as we've locked out tail pushing
2313 * and flushing by locking the buffer.
2315 * We have already marked every inode that was part of a
2316 * transaction stale above, which means there is no point in
2317 * even trying to lock them.
2319 for (i = 0; i < inodes_per_cluster; i++) {
2322 ip = radix_tree_lookup(&pag->pag_ici_root,
2323 XFS_INO_TO_AGINO(mp, (inum + i)));
2325 /* Inode not in memory, nothing to do */
2332 * because this is an RCU protected lookup, we could
2333 * find a recently freed or even reallocated inode
2334 * during the lookup. We need to check under the
2335 * i_flags_lock for a valid inode here. Skip it if it
2336 * is not valid, the wrong inode or stale.
2338 spin_lock(&ip->i_flags_lock);
2339 if (ip->i_ino != inum + i ||
2340 __xfs_iflags_test(ip, XFS_ISTALE)) {
2341 spin_unlock(&ip->i_flags_lock);
2345 spin_unlock(&ip->i_flags_lock);
2348 * Don't try to lock/unlock the current inode, but we
2349 * _cannot_ skip the other inodes that we did not find
2350 * in the list attached to the buffer and are not
2351 * already marked stale. If we can't lock it, back off
2354 if (ip != free_ip) {
2355 if (!xfs_ilock_nowait(ip, XFS_ILOCK_EXCL)) {
2362 * Check the inode number again in case we're
2363 * racing with freeing in xfs_reclaim_inode().
2364 * See the comments in that function for more
2365 * information as to why the initial check is
2368 if (ip->i_ino != inum + i) {
2369 xfs_iunlock(ip, XFS_ILOCK_EXCL);
2377 xfs_iflags_set(ip, XFS_ISTALE);
2380 * we don't need to attach clean inodes or those only
2381 * with unlogged changes (which we throw away, anyway).
2384 if (!iip || xfs_inode_clean(ip)) {
2385 ASSERT(ip != free_ip);
2387 xfs_iunlock(ip, XFS_ILOCK_EXCL);
2391 iip->ili_last_fields = iip->ili_fields;
2392 iip->ili_fields = 0;
2393 iip->ili_fsync_fields = 0;
2394 iip->ili_logged = 1;
2395 xfs_trans_ail_copy_lsn(mp->m_ail, &iip->ili_flush_lsn,
2396 &iip->ili_item.li_lsn);
2398 xfs_buf_attach_iodone(bp, xfs_istale_done,
2402 xfs_iunlock(ip, XFS_ILOCK_EXCL);
2405 xfs_trans_stale_inode_buf(tp, bp);
2406 xfs_trans_binval(tp, bp);
2414 * Free any local-format buffers sitting around before we reset to
2418 xfs_ifree_local_data(
2419 struct xfs_inode *ip,
2422 struct xfs_ifork *ifp;
2424 if (XFS_IFORK_FORMAT(ip, whichfork) != XFS_DINODE_FMT_LOCAL)
2427 ifp = XFS_IFORK_PTR(ip, whichfork);
2428 xfs_idata_realloc(ip, -ifp->if_bytes, whichfork);
2432 * This is called to return an inode to the inode free list.
2433 * The inode should already be truncated to 0 length and have
2434 * no pages associated with it. This routine also assumes that
2435 * the inode is already a part of the transaction.
2437 * The on-disk copy of the inode will have been added to the list
2438 * of unlinked inodes in the AGI. We need to remove the inode from
2439 * that list atomically with respect to freeing it here.
2445 struct xfs_defer_ops *dfops)
2448 struct xfs_icluster xic = { 0 };
2450 ASSERT(xfs_isilocked(ip, XFS_ILOCK_EXCL));
2451 ASSERT(VFS_I(ip)->i_nlink == 0);
2452 ASSERT(ip->i_d.di_nextents == 0);
2453 ASSERT(ip->i_d.di_anextents == 0);
2454 ASSERT(ip->i_d.di_size == 0 || !S_ISREG(VFS_I(ip)->i_mode));
2455 ASSERT(ip->i_d.di_nblocks == 0);
2458 * Pull the on-disk inode from the AGI unlinked list.
2460 error = xfs_iunlink_remove(tp, ip);
2464 error = xfs_difree(tp, ip->i_ino, dfops, &xic);
2468 xfs_ifree_local_data(ip, XFS_DATA_FORK);
2469 xfs_ifree_local_data(ip, XFS_ATTR_FORK);
2471 VFS_I(ip)->i_mode = 0; /* mark incore inode as free */
2472 ip->i_d.di_flags = 0;
2473 ip->i_d.di_flags2 = 0;
2474 ip->i_d.di_dmevmask = 0;
2475 ip->i_d.di_forkoff = 0; /* mark the attr fork not in use */
2476 ip->i_d.di_format = XFS_DINODE_FMT_EXTENTS;
2477 ip->i_d.di_aformat = XFS_DINODE_FMT_EXTENTS;
2479 /* Don't attempt to replay owner changes for a deleted inode */
2480 ip->i_itemp->ili_fields &= ~(XFS_ILOG_AOWNER|XFS_ILOG_DOWNER);
2483 * Bump the generation count so no one will be confused
2484 * by reincarnations of this inode.
2486 VFS_I(ip)->i_generation++;
2487 xfs_trans_log_inode(tp, ip, XFS_ILOG_CORE);
2490 error = xfs_ifree_cluster(ip, tp, &xic);
2496 * This is called to unpin an inode. The caller must have the inode locked
2497 * in at least shared mode so that the buffer cannot be subsequently pinned
2498 * once someone is waiting for it to be unpinned.
2502 struct xfs_inode *ip)
2504 ASSERT(xfs_isilocked(ip, XFS_ILOCK_EXCL|XFS_ILOCK_SHARED));
2506 trace_xfs_inode_unpin_nowait(ip, _RET_IP_);
2508 /* Give the log a push to start the unpinning I/O */
2509 xfs_log_force_lsn(ip->i_mount, ip->i_itemp->ili_last_lsn, 0, NULL);
2515 struct xfs_inode *ip)
2517 wait_queue_head_t *wq = bit_waitqueue(&ip->i_flags, __XFS_IPINNED_BIT);
2518 DEFINE_WAIT_BIT(wait, &ip->i_flags, __XFS_IPINNED_BIT);
2523 prepare_to_wait(wq, &wait.wq_entry, TASK_UNINTERRUPTIBLE);
2524 if (xfs_ipincount(ip))
2526 } while (xfs_ipincount(ip));
2527 finish_wait(wq, &wait.wq_entry);
2532 struct xfs_inode *ip)
2534 if (xfs_ipincount(ip))
2535 __xfs_iunpin_wait(ip);
2539 * Removing an inode from the namespace involves removing the directory entry
2540 * and dropping the link count on the inode. Removing the directory entry can
2541 * result in locking an AGF (directory blocks were freed) and removing a link
2542 * count can result in placing the inode on an unlinked list which results in
2545 * The big problem here is that we have an ordering constraint on AGF and AGI
2546 * locking - inode allocation locks the AGI, then can allocate a new extent for
2547 * new inodes, locking the AGF after the AGI. Similarly, freeing the inode
2548 * removes the inode from the unlinked list, requiring that we lock the AGI
2549 * first, and then freeing the inode can result in an inode chunk being freed
2550 * and hence freeing disk space requiring that we lock an AGF.
2552 * Hence the ordering that is imposed by other parts of the code is AGI before
2553 * AGF. This means we cannot remove the directory entry before we drop the inode
2554 * reference count and put it on the unlinked list as this results in a lock
2555 * order of AGF then AGI, and this can deadlock against inode allocation and
2556 * freeing. Therefore we must drop the link counts before we remove the
2559 * This is still safe from a transactional point of view - it is not until we
2560 * get to xfs_defer_finish() that we have the possibility of multiple
2561 * transactions in this operation. Hence as long as we remove the directory
2562 * entry and drop the link count in the first transaction of the remove
2563 * operation, there are no transactional constraints on the ordering here.
2568 struct xfs_name *name,
2571 xfs_mount_t *mp = dp->i_mount;
2572 xfs_trans_t *tp = NULL;
2573 int is_dir = S_ISDIR(VFS_I(ip)->i_mode);
2575 struct xfs_defer_ops dfops;
2576 xfs_fsblock_t first_block;
2579 trace_xfs_remove(dp, name);
2581 if (XFS_FORCED_SHUTDOWN(mp))
2584 error = xfs_qm_dqattach(dp, 0);
2588 error = xfs_qm_dqattach(ip, 0);
2593 * We try to get the real space reservation first,
2594 * allowing for directory btree deletion(s) implying
2595 * possible bmap insert(s). If we can't get the space
2596 * reservation then we use 0 instead, and avoid the bmap
2597 * btree insert(s) in the directory code by, if the bmap
2598 * insert tries to happen, instead trimming the LAST
2599 * block from the directory.
2601 resblks = XFS_REMOVE_SPACE_RES(mp);
2602 error = xfs_trans_alloc(mp, &M_RES(mp)->tr_remove, resblks, 0, 0, &tp);
2603 if (error == -ENOSPC) {
2605 error = xfs_trans_alloc(mp, &M_RES(mp)->tr_remove, 0, 0, 0,
2609 ASSERT(error != -ENOSPC);
2613 xfs_lock_two_inodes(dp, XFS_ILOCK_EXCL, ip, XFS_ILOCK_EXCL);
2615 xfs_trans_ijoin(tp, dp, XFS_ILOCK_EXCL);
2616 xfs_trans_ijoin(tp, ip, XFS_ILOCK_EXCL);
2619 * If we're removing a directory perform some additional validation.
2622 ASSERT(VFS_I(ip)->i_nlink >= 2);
2623 if (VFS_I(ip)->i_nlink != 2) {
2625 goto out_trans_cancel;
2627 if (!xfs_dir_isempty(ip)) {
2629 goto out_trans_cancel;
2632 /* Drop the link from ip's "..". */
2633 error = xfs_droplink(tp, dp);
2635 goto out_trans_cancel;
2637 /* Drop the "." link from ip to self. */
2638 error = xfs_droplink(tp, ip);
2640 goto out_trans_cancel;
2643 * When removing a non-directory we need to log the parent
2644 * inode here. For a directory this is done implicitly
2645 * by the xfs_droplink call for the ".." entry.
2647 xfs_trans_log_inode(tp, dp, XFS_ILOG_CORE);
2649 xfs_trans_ichgtime(tp, dp, XFS_ICHGTIME_MOD | XFS_ICHGTIME_CHG);
2651 /* Drop the link from dp to ip. */
2652 error = xfs_droplink(tp, ip);
2654 goto out_trans_cancel;
2656 xfs_defer_init(&dfops, &first_block);
2657 error = xfs_dir_removename(tp, dp, name, ip->i_ino,
2658 &first_block, &dfops, resblks);
2660 ASSERT(error != -ENOENT);
2661 goto out_bmap_cancel;
2665 * If this is a synchronous mount, make sure that the
2666 * remove transaction goes to disk before returning to
2669 if (mp->m_flags & (XFS_MOUNT_WSYNC|XFS_MOUNT_DIRSYNC))
2670 xfs_trans_set_sync(tp);
2672 error = xfs_defer_finish(&tp, &dfops);
2674 goto out_bmap_cancel;
2676 error = xfs_trans_commit(tp);
2680 if (is_dir && xfs_inode_is_filestream(ip))
2681 xfs_filestream_deassociate(ip);
2686 xfs_defer_cancel(&dfops);
2688 xfs_trans_cancel(tp);
2694 * Enter all inodes for a rename transaction into a sorted array.
2696 #define __XFS_SORT_INODES 5
2698 xfs_sort_for_rename(
2699 struct xfs_inode *dp1, /* in: old (source) directory inode */
2700 struct xfs_inode *dp2, /* in: new (target) directory inode */
2701 struct xfs_inode *ip1, /* in: inode of old entry */
2702 struct xfs_inode *ip2, /* in: inode of new entry */
2703 struct xfs_inode *wip, /* in: whiteout inode */
2704 struct xfs_inode **i_tab,/* out: sorted array of inodes */
2705 int *num_inodes) /* in/out: inodes in array */
2709 ASSERT(*num_inodes == __XFS_SORT_INODES);
2710 memset(i_tab, 0, *num_inodes * sizeof(struct xfs_inode *));
2713 * i_tab contains a list of pointers to inodes. We initialize
2714 * the table here & we'll sort it. We will then use it to
2715 * order the acquisition of the inode locks.
2717 * Note that the table may contain duplicates. e.g., dp1 == dp2.
2730 * Sort the elements via bubble sort. (Remember, there are at
2731 * most 5 elements to sort, so this is adequate.)
2733 for (i = 0; i < *num_inodes; i++) {
2734 for (j = 1; j < *num_inodes; j++) {
2735 if (i_tab[j]->i_ino < i_tab[j-1]->i_ino) {
2736 struct xfs_inode *temp = i_tab[j];
2737 i_tab[j] = i_tab[j-1];
2746 struct xfs_trans *tp,
2747 struct xfs_defer_ops *dfops)
2752 * If this is a synchronous mount, make sure that the rename transaction
2753 * goes to disk before returning to the user.
2755 if (tp->t_mountp->m_flags & (XFS_MOUNT_WSYNC|XFS_MOUNT_DIRSYNC))
2756 xfs_trans_set_sync(tp);
2758 error = xfs_defer_finish(&tp, dfops);
2760 xfs_defer_cancel(dfops);
2761 xfs_trans_cancel(tp);
2765 return xfs_trans_commit(tp);
2769 * xfs_cross_rename()
2771 * responsible for handling RENAME_EXCHANGE flag in renameat2() sytemcall
2775 struct xfs_trans *tp,
2776 struct xfs_inode *dp1,
2777 struct xfs_name *name1,
2778 struct xfs_inode *ip1,
2779 struct xfs_inode *dp2,
2780 struct xfs_name *name2,
2781 struct xfs_inode *ip2,
2782 struct xfs_defer_ops *dfops,
2783 xfs_fsblock_t *first_block,
2791 /* Swap inode number for dirent in first parent */
2792 error = xfs_dir_replace(tp, dp1, name1,
2794 first_block, dfops, spaceres);
2796 goto out_trans_abort;
2798 /* Swap inode number for dirent in second parent */
2799 error = xfs_dir_replace(tp, dp2, name2,
2801 first_block, dfops, spaceres);
2803 goto out_trans_abort;
2806 * If we're renaming one or more directories across different parents,
2807 * update the respective ".." entries (and link counts) to match the new
2811 dp2_flags = XFS_ICHGTIME_MOD | XFS_ICHGTIME_CHG;
2813 if (S_ISDIR(VFS_I(ip2)->i_mode)) {
2814 error = xfs_dir_replace(tp, ip2, &xfs_name_dotdot,
2815 dp1->i_ino, first_block,
2818 goto out_trans_abort;
2820 /* transfer ip2 ".." reference to dp1 */
2821 if (!S_ISDIR(VFS_I(ip1)->i_mode)) {
2822 error = xfs_droplink(tp, dp2);
2824 goto out_trans_abort;
2825 error = xfs_bumplink(tp, dp1);
2827 goto out_trans_abort;
2831 * Although ip1 isn't changed here, userspace needs
2832 * to be warned about the change, so that applications
2833 * relying on it (like backup ones), will properly
2836 ip1_flags |= XFS_ICHGTIME_CHG;
2837 ip2_flags |= XFS_ICHGTIME_MOD | XFS_ICHGTIME_CHG;
2840 if (S_ISDIR(VFS_I(ip1)->i_mode)) {
2841 error = xfs_dir_replace(tp, ip1, &xfs_name_dotdot,
2842 dp2->i_ino, first_block,
2845 goto out_trans_abort;
2847 /* transfer ip1 ".." reference to dp2 */
2848 if (!S_ISDIR(VFS_I(ip2)->i_mode)) {
2849 error = xfs_droplink(tp, dp1);
2851 goto out_trans_abort;
2852 error = xfs_bumplink(tp, dp2);
2854 goto out_trans_abort;
2858 * Although ip2 isn't changed here, userspace needs
2859 * to be warned about the change, so that applications
2860 * relying on it (like backup ones), will properly
2863 ip1_flags |= XFS_ICHGTIME_MOD | XFS_ICHGTIME_CHG;
2864 ip2_flags |= XFS_ICHGTIME_CHG;
2869 xfs_trans_ichgtime(tp, ip1, ip1_flags);
2870 xfs_trans_log_inode(tp, ip1, XFS_ILOG_CORE);
2873 xfs_trans_ichgtime(tp, ip2, ip2_flags);
2874 xfs_trans_log_inode(tp, ip2, XFS_ILOG_CORE);
2877 xfs_trans_ichgtime(tp, dp2, dp2_flags);
2878 xfs_trans_log_inode(tp, dp2, XFS_ILOG_CORE);
2880 xfs_trans_ichgtime(tp, dp1, XFS_ICHGTIME_MOD | XFS_ICHGTIME_CHG);
2881 xfs_trans_log_inode(tp, dp1, XFS_ILOG_CORE);
2882 return xfs_finish_rename(tp, dfops);
2885 xfs_defer_cancel(dfops);
2886 xfs_trans_cancel(tp);
2891 * xfs_rename_alloc_whiteout()
2893 * Return a referenced, unlinked, unlocked inode that that can be used as a
2894 * whiteout in a rename transaction. We use a tmpfile inode here so that if we
2895 * crash between allocating the inode and linking it into the rename transaction
2896 * recovery will free the inode and we won't leak it.
2899 xfs_rename_alloc_whiteout(
2900 struct xfs_inode *dp,
2901 struct xfs_inode **wip)
2903 struct xfs_inode *tmpfile;
2906 error = xfs_create_tmpfile(dp, NULL, S_IFCHR | WHITEOUT_MODE, &tmpfile);
2911 * Prepare the tmpfile inode as if it were created through the VFS.
2912 * Otherwise, the link increment paths will complain about nlink 0->1.
2913 * Drop the link count as done by d_tmpfile(), complete the inode setup
2914 * and flag it as linkable.
2916 drop_nlink(VFS_I(tmpfile));
2917 xfs_setup_iops(tmpfile);
2918 xfs_finish_inode_setup(tmpfile);
2919 VFS_I(tmpfile)->i_state |= I_LINKABLE;
2930 struct xfs_inode *src_dp,
2931 struct xfs_name *src_name,
2932 struct xfs_inode *src_ip,
2933 struct xfs_inode *target_dp,
2934 struct xfs_name *target_name,
2935 struct xfs_inode *target_ip,
2938 struct xfs_mount *mp = src_dp->i_mount;
2939 struct xfs_trans *tp;
2940 struct xfs_defer_ops dfops;
2941 xfs_fsblock_t first_block;
2942 struct xfs_inode *wip = NULL; /* whiteout inode */
2943 struct xfs_inode *inodes[__XFS_SORT_INODES];
2944 int num_inodes = __XFS_SORT_INODES;
2945 bool new_parent = (src_dp != target_dp);
2946 bool src_is_directory = S_ISDIR(VFS_I(src_ip)->i_mode);
2950 trace_xfs_rename(src_dp, target_dp, src_name, target_name);
2952 if ((flags & RENAME_EXCHANGE) && !target_ip)
2956 * If we are doing a whiteout operation, allocate the whiteout inode
2957 * we will be placing at the target and ensure the type is set
2960 if (flags & RENAME_WHITEOUT) {
2961 ASSERT(!(flags & (RENAME_NOREPLACE | RENAME_EXCHANGE)));
2962 error = xfs_rename_alloc_whiteout(target_dp, &wip);
2966 /* setup target dirent info as whiteout */
2967 src_name->type = XFS_DIR3_FT_CHRDEV;
2970 xfs_sort_for_rename(src_dp, target_dp, src_ip, target_ip, wip,
2971 inodes, &num_inodes);
2973 spaceres = XFS_RENAME_SPACE_RES(mp, target_name->len);
2974 error = xfs_trans_alloc(mp, &M_RES(mp)->tr_rename, spaceres, 0, 0, &tp);
2975 if (error == -ENOSPC) {
2977 error = xfs_trans_alloc(mp, &M_RES(mp)->tr_rename, 0, 0, 0,
2981 goto out_release_wip;
2984 * Attach the dquots to the inodes
2986 error = xfs_qm_vop_rename_dqattach(inodes);
2988 goto out_trans_cancel;
2991 * Lock all the participating inodes. Depending upon whether
2992 * the target_name exists in the target directory, and
2993 * whether the target directory is the same as the source
2994 * directory, we can lock from 2 to 4 inodes.
2996 xfs_lock_inodes(inodes, num_inodes, XFS_ILOCK_EXCL);
2999 * Join all the inodes to the transaction. From this point on,
3000 * we can rely on either trans_commit or trans_cancel to unlock
3003 xfs_trans_ijoin(tp, src_dp, XFS_ILOCK_EXCL);
3005 xfs_trans_ijoin(tp, target_dp, XFS_ILOCK_EXCL);
3006 xfs_trans_ijoin(tp, src_ip, XFS_ILOCK_EXCL);
3008 xfs_trans_ijoin(tp, target_ip, XFS_ILOCK_EXCL);
3010 xfs_trans_ijoin(tp, wip, XFS_ILOCK_EXCL);
3013 * If we are using project inheritance, we only allow renames
3014 * into our tree when the project IDs are the same; else the
3015 * tree quota mechanism would be circumvented.
3017 if (unlikely((target_dp->i_d.di_flags & XFS_DIFLAG_PROJINHERIT) &&
3018 (xfs_get_projid(target_dp) != xfs_get_projid(src_ip)))) {
3020 goto out_trans_cancel;
3023 xfs_defer_init(&dfops, &first_block);
3025 /* RENAME_EXCHANGE is unique from here on. */
3026 if (flags & RENAME_EXCHANGE)
3027 return xfs_cross_rename(tp, src_dp, src_name, src_ip,
3028 target_dp, target_name, target_ip,
3029 &dfops, &first_block, spaceres);
3032 * Set up the target.
3034 if (target_ip == NULL) {
3036 * If there's no space reservation, check the entry will
3037 * fit before actually inserting it.
3040 error = xfs_dir_canenter(tp, target_dp, target_name);
3042 goto out_trans_cancel;
3045 * If target does not exist and the rename crosses
3046 * directories, adjust the target directory link count
3047 * to account for the ".." reference from the new entry.
3049 error = xfs_dir_createname(tp, target_dp, target_name,
3050 src_ip->i_ino, &first_block,
3053 goto out_bmap_cancel;
3055 xfs_trans_ichgtime(tp, target_dp,
3056 XFS_ICHGTIME_MOD | XFS_ICHGTIME_CHG);
3058 if (new_parent && src_is_directory) {
3059 error = xfs_bumplink(tp, target_dp);
3061 goto out_bmap_cancel;
3063 } else { /* target_ip != NULL */
3065 * If target exists and it's a directory, check that both
3066 * target and source are directories and that target can be
3067 * destroyed, or that neither is a directory.
3069 if (S_ISDIR(VFS_I(target_ip)->i_mode)) {
3071 * Make sure target dir is empty.
3073 if (!(xfs_dir_isempty(target_ip)) ||
3074 (VFS_I(target_ip)->i_nlink > 2)) {
3076 goto out_trans_cancel;
3081 * Link the source inode under the target name.
3082 * If the source inode is a directory and we are moving
3083 * it across directories, its ".." entry will be
3084 * inconsistent until we replace that down below.
3086 * In case there is already an entry with the same
3087 * name at the destination directory, remove it first.
3089 error = xfs_dir_replace(tp, target_dp, target_name,
3091 &first_block, &dfops, spaceres);
3093 goto out_bmap_cancel;
3095 xfs_trans_ichgtime(tp, target_dp,
3096 XFS_ICHGTIME_MOD | XFS_ICHGTIME_CHG);
3099 * Decrement the link count on the target since the target
3100 * dir no longer points to it.
3102 error = xfs_droplink(tp, target_ip);
3104 goto out_bmap_cancel;
3106 if (src_is_directory) {
3108 * Drop the link from the old "." entry.
3110 error = xfs_droplink(tp, target_ip);
3112 goto out_bmap_cancel;
3114 } /* target_ip != NULL */
3117 * Remove the source.
3119 if (new_parent && src_is_directory) {
3121 * Rewrite the ".." entry to point to the new
3124 error = xfs_dir_replace(tp, src_ip, &xfs_name_dotdot,
3126 &first_block, &dfops, spaceres);
3127 ASSERT(error != -EEXIST);
3129 goto out_bmap_cancel;
3133 * We always want to hit the ctime on the source inode.
3135 * This isn't strictly required by the standards since the source
3136 * inode isn't really being changed, but old unix file systems did
3137 * it and some incremental backup programs won't work without it.
3139 xfs_trans_ichgtime(tp, src_ip, XFS_ICHGTIME_CHG);
3140 xfs_trans_log_inode(tp, src_ip, XFS_ILOG_CORE);
3143 * Adjust the link count on src_dp. This is necessary when
3144 * renaming a directory, either within one parent when
3145 * the target existed, or across two parent directories.
3147 if (src_is_directory && (new_parent || target_ip != NULL)) {
3150 * Decrement link count on src_directory since the
3151 * entry that's moved no longer points to it.
3153 error = xfs_droplink(tp, src_dp);
3155 goto out_bmap_cancel;
3159 * For whiteouts, we only need to update the source dirent with the
3160 * inode number of the whiteout inode rather than removing it
3164 error = xfs_dir_replace(tp, src_dp, src_name, wip->i_ino,
3165 &first_block, &dfops, spaceres);
3167 error = xfs_dir_removename(tp, src_dp, src_name, src_ip->i_ino,
3168 &first_block, &dfops, spaceres);
3170 goto out_bmap_cancel;
3173 * For whiteouts, we need to bump the link count on the whiteout inode.
3174 * This means that failures all the way up to this point leave the inode
3175 * on the unlinked list and so cleanup is a simple matter of dropping
3176 * the remaining reference to it. If we fail here after bumping the link
3177 * count, we're shutting down the filesystem so we'll never see the
3178 * intermediate state on disk.
3181 ASSERT(VFS_I(wip)->i_nlink == 0);
3182 error = xfs_bumplink(tp, wip);
3184 goto out_bmap_cancel;
3185 error = xfs_iunlink_remove(tp, wip);
3187 goto out_bmap_cancel;
3188 xfs_trans_log_inode(tp, wip, XFS_ILOG_CORE);
3191 * Now we have a real link, clear the "I'm a tmpfile" state
3192 * flag from the inode so it doesn't accidentally get misused in
3195 VFS_I(wip)->i_state &= ~I_LINKABLE;
3198 xfs_trans_ichgtime(tp, src_dp, XFS_ICHGTIME_MOD | XFS_ICHGTIME_CHG);
3199 xfs_trans_log_inode(tp, src_dp, XFS_ILOG_CORE);
3201 xfs_trans_log_inode(tp, target_dp, XFS_ILOG_CORE);
3203 error = xfs_finish_rename(tp, &dfops);
3209 xfs_defer_cancel(&dfops);
3211 xfs_trans_cancel(tp);
3220 struct xfs_inode *ip,
3223 struct xfs_mount *mp = ip->i_mount;
3224 struct xfs_perag *pag;
3225 unsigned long first_index, mask;
3226 unsigned long inodes_per_cluster;
3228 struct xfs_inode **cilist;
3229 struct xfs_inode *cip;
3235 pag = xfs_perag_get(mp, XFS_INO_TO_AGNO(mp, ip->i_ino));
3237 inodes_per_cluster = mp->m_inode_cluster_size >> mp->m_sb.sb_inodelog;
3238 cilist_size = inodes_per_cluster * sizeof(xfs_inode_t *);
3239 cilist = kmem_alloc(cilist_size, KM_MAYFAIL|KM_NOFS);
3243 mask = ~(((mp->m_inode_cluster_size >> mp->m_sb.sb_inodelog)) - 1);
3244 first_index = XFS_INO_TO_AGINO(mp, ip->i_ino) & mask;
3246 /* really need a gang lookup range call here */
3247 nr_found = radix_tree_gang_lookup(&pag->pag_ici_root, (void**)cilist,
3248 first_index, inodes_per_cluster);
3252 for (i = 0; i < nr_found; i++) {
3258 * because this is an RCU protected lookup, we could find a
3259 * recently freed or even reallocated inode during the lookup.
3260 * We need to check under the i_flags_lock for a valid inode
3261 * here. Skip it if it is not valid or the wrong inode.
3263 spin_lock(&cip->i_flags_lock);
3265 __xfs_iflags_test(cip, XFS_ISTALE)) {
3266 spin_unlock(&cip->i_flags_lock);
3271 * Once we fall off the end of the cluster, no point checking
3272 * any more inodes in the list because they will also all be
3273 * outside the cluster.
3275 if ((XFS_INO_TO_AGINO(mp, cip->i_ino) & mask) != first_index) {
3276 spin_unlock(&cip->i_flags_lock);
3279 spin_unlock(&cip->i_flags_lock);
3282 * Do an un-protected check to see if the inode is dirty and
3283 * is a candidate for flushing. These checks will be repeated
3284 * later after the appropriate locks are acquired.
3286 if (xfs_inode_clean(cip) && xfs_ipincount(cip) == 0)
3290 * Try to get locks. If any are unavailable or it is pinned,
3291 * then this inode cannot be flushed and is skipped.
3294 if (!xfs_ilock_nowait(cip, XFS_ILOCK_SHARED))
3296 if (!xfs_iflock_nowait(cip)) {
3297 xfs_iunlock(cip, XFS_ILOCK_SHARED);
3300 if (xfs_ipincount(cip)) {
3302 xfs_iunlock(cip, XFS_ILOCK_SHARED);
3308 * Check the inode number again, just to be certain we are not
3309 * racing with freeing in xfs_reclaim_inode(). See the comments
3310 * in that function for more information as to why the initial
3311 * check is not sufficient.
3315 xfs_iunlock(cip, XFS_ILOCK_SHARED);
3320 * arriving here means that this inode can be flushed. First
3321 * re-check that it's dirty before flushing.
3323 if (!xfs_inode_clean(cip)) {
3325 error = xfs_iflush_int(cip, bp);
3327 xfs_iunlock(cip, XFS_ILOCK_SHARED);
3328 goto cluster_corrupt_out;
3334 xfs_iunlock(cip, XFS_ILOCK_SHARED);
3338 XFS_STATS_INC(mp, xs_icluster_flushcnt);
3339 XFS_STATS_ADD(mp, xs_icluster_flushinode, clcount);
3350 cluster_corrupt_out:
3352 * Corruption detected in the clustering loop. Invalidate the
3353 * inode buffer and shut down the filesystem.
3357 * Clean up the buffer. If it was delwri, just release it --
3358 * brelse can handle it with no problems. If not, shut down the
3359 * filesystem before releasing the buffer.
3361 bufwasdelwri = (bp->b_flags & _XBF_DELWRI_Q);
3365 xfs_force_shutdown(mp, SHUTDOWN_CORRUPT_INCORE);
3367 if (!bufwasdelwri) {
3369 * Just like incore_relse: if we have b_iodone functions,
3370 * mark the buffer as an error and call them. Otherwise
3371 * mark it as stale and brelse.
3374 bp->b_flags &= ~XBF_DONE;
3376 xfs_buf_ioerror(bp, -EIO);
3385 * Unlocks the flush lock
3387 xfs_iflush_abort(cip, false);
3390 return -EFSCORRUPTED;
3394 * Flush dirty inode metadata into the backing buffer.
3396 * The caller must have the inode lock and the inode flush lock held. The
3397 * inode lock will still be held upon return to the caller, and the inode
3398 * flush lock will be released after the inode has reached the disk.
3400 * The caller must write out the buffer returned in *bpp and release it.
3404 struct xfs_inode *ip,
3405 struct xfs_buf **bpp)
3407 struct xfs_mount *mp = ip->i_mount;
3408 struct xfs_buf *bp = NULL;
3409 struct xfs_dinode *dip;
3412 XFS_STATS_INC(mp, xs_iflush_count);
3414 ASSERT(xfs_isilocked(ip, XFS_ILOCK_EXCL|XFS_ILOCK_SHARED));
3415 ASSERT(xfs_isiflocked(ip));
3416 ASSERT(ip->i_d.di_format != XFS_DINODE_FMT_BTREE ||
3417 ip->i_d.di_nextents > XFS_IFORK_MAXEXT(ip, XFS_DATA_FORK));
3421 xfs_iunpin_wait(ip);
3424 * For stale inodes we cannot rely on the backing buffer remaining
3425 * stale in cache for the remaining life of the stale inode and so
3426 * xfs_imap_to_bp() below may give us a buffer that no longer contains
3427 * inodes below. We have to check this after ensuring the inode is
3428 * unpinned so that it is safe to reclaim the stale inode after the
3431 if (xfs_iflags_test(ip, XFS_ISTALE)) {
3437 * This may have been unpinned because the filesystem is shutting
3438 * down forcibly. If that's the case we must not write this inode
3439 * to disk, because the log record didn't make it to disk.
3441 * We also have to remove the log item from the AIL in this case,
3442 * as we wait for an empty AIL as part of the unmount process.
3444 if (XFS_FORCED_SHUTDOWN(mp)) {
3450 * Get the buffer containing the on-disk inode. We are doing a try-lock
3451 * operation here, so we may get an EAGAIN error. In that case, we
3452 * simply want to return with the inode still dirty.
3454 * If we get any other error, we effectively have a corruption situation
3455 * and we cannot flush the inode, so we treat it the same as failing
3458 error = xfs_imap_to_bp(mp, NULL, &ip->i_imap, &dip, &bp, XBF_TRYLOCK,
3460 if (error == -EAGAIN) {
3468 * First flush out the inode that xfs_iflush was called with.
3470 error = xfs_iflush_int(ip, bp);
3475 * If the buffer is pinned then push on the log now so we won't
3476 * get stuck waiting in the write for too long.
3478 if (xfs_buf_ispinned(bp))
3479 xfs_log_force(mp, 0);
3483 * see if other inodes can be gathered into this write
3485 error = xfs_iflush_cluster(ip, bp);
3487 goto cluster_corrupt_out;
3495 xfs_force_shutdown(mp, SHUTDOWN_CORRUPT_INCORE);
3496 cluster_corrupt_out:
3497 error = -EFSCORRUPTED;
3500 * Unlocks the flush lock
3502 xfs_iflush_abort(ip, false);
3507 * If there are inline format data / attr forks attached to this inode,
3508 * make sure they're not corrupt.
3511 xfs_inode_verify_forks(
3512 struct xfs_inode *ip)
3514 struct xfs_ifork *ifp;
3517 fa = xfs_ifork_verify_data(ip, &xfs_default_ifork_ops);
3519 ifp = XFS_IFORK_PTR(ip, XFS_DATA_FORK);
3520 xfs_inode_verifier_error(ip, -EFSCORRUPTED, "data fork",
3521 ifp->if_u1.if_data, ifp->if_bytes, fa);
3525 fa = xfs_ifork_verify_attr(ip, &xfs_default_ifork_ops);
3527 ifp = XFS_IFORK_PTR(ip, XFS_ATTR_FORK);
3528 xfs_inode_verifier_error(ip, -EFSCORRUPTED, "attr fork",
3529 ifp ? ifp->if_u1.if_data : NULL,
3530 ifp ? ifp->if_bytes : 0, fa);
3538 struct xfs_inode *ip,
3541 struct xfs_inode_log_item *iip = ip->i_itemp;
3542 struct xfs_dinode *dip;
3543 struct xfs_mount *mp = ip->i_mount;
3545 ASSERT(xfs_isilocked(ip, XFS_ILOCK_EXCL|XFS_ILOCK_SHARED));
3546 ASSERT(xfs_isiflocked(ip));
3547 ASSERT(ip->i_d.di_format != XFS_DINODE_FMT_BTREE ||
3548 ip->i_d.di_nextents > XFS_IFORK_MAXEXT(ip, XFS_DATA_FORK));
3549 ASSERT(iip != NULL && iip->ili_fields != 0);
3550 ASSERT(ip->i_d.di_version > 1);
3552 /* set *dip = inode's place in the buffer */
3553 dip = xfs_buf_offset(bp, ip->i_imap.im_boffset);
3555 if (XFS_TEST_ERROR(dip->di_magic != cpu_to_be16(XFS_DINODE_MAGIC),
3556 mp, XFS_ERRTAG_IFLUSH_1)) {
3557 xfs_alert_tag(mp, XFS_PTAG_IFLUSH,
3558 "%s: Bad inode %Lu magic number 0x%x, ptr "PTR_FMT,
3559 __func__, ip->i_ino, be16_to_cpu(dip->di_magic), dip);
3562 if (S_ISREG(VFS_I(ip)->i_mode)) {
3564 (ip->i_d.di_format != XFS_DINODE_FMT_EXTENTS) &&
3565 (ip->i_d.di_format != XFS_DINODE_FMT_BTREE),
3566 mp, XFS_ERRTAG_IFLUSH_3)) {
3567 xfs_alert_tag(mp, XFS_PTAG_IFLUSH,
3568 "%s: Bad regular inode %Lu, ptr "PTR_FMT,
3569 __func__, ip->i_ino, ip);
3572 } else if (S_ISDIR(VFS_I(ip)->i_mode)) {
3574 (ip->i_d.di_format != XFS_DINODE_FMT_EXTENTS) &&
3575 (ip->i_d.di_format != XFS_DINODE_FMT_BTREE) &&
3576 (ip->i_d.di_format != XFS_DINODE_FMT_LOCAL),
3577 mp, XFS_ERRTAG_IFLUSH_4)) {
3578 xfs_alert_tag(mp, XFS_PTAG_IFLUSH,
3579 "%s: Bad directory inode %Lu, ptr "PTR_FMT,
3580 __func__, ip->i_ino, ip);
3584 if (XFS_TEST_ERROR(ip->i_d.di_nextents + ip->i_d.di_anextents >
3585 ip->i_d.di_nblocks, mp, XFS_ERRTAG_IFLUSH_5)) {
3586 xfs_alert_tag(mp, XFS_PTAG_IFLUSH,
3587 "%s: detected corrupt incore inode %Lu, "
3588 "total extents = %d, nblocks = %Ld, ptr "PTR_FMT,
3589 __func__, ip->i_ino,
3590 ip->i_d.di_nextents + ip->i_d.di_anextents,
3591 ip->i_d.di_nblocks, ip);
3594 if (XFS_TEST_ERROR(ip->i_d.di_forkoff > mp->m_sb.sb_inodesize,
3595 mp, XFS_ERRTAG_IFLUSH_6)) {
3596 xfs_alert_tag(mp, XFS_PTAG_IFLUSH,
3597 "%s: bad inode %Lu, forkoff 0x%x, ptr "PTR_FMT,
3598 __func__, ip->i_ino, ip->i_d.di_forkoff, ip);
3603 * Inode item log recovery for v2 inodes are dependent on the
3604 * di_flushiter count for correct sequencing. We bump the flush
3605 * iteration count so we can detect flushes which postdate a log record
3606 * during recovery. This is redundant as we now log every change and
3607 * hence this can't happen but we need to still do it to ensure
3608 * backwards compatibility with old kernels that predate logging all
3611 if (ip->i_d.di_version < 3)
3612 ip->i_d.di_flushiter++;
3614 /* Check the inline fork data before we write out. */
3615 if (!xfs_inode_verify_forks(ip))
3619 * Copy the dirty parts of the inode into the on-disk inode. We always
3620 * copy out the core of the inode, because if the inode is dirty at all
3623 xfs_inode_to_disk(ip, dip, iip->ili_item.li_lsn);
3625 /* Wrap, we never let the log put out DI_MAX_FLUSH */
3626 if (ip->i_d.di_flushiter == DI_MAX_FLUSH)
3627 ip->i_d.di_flushiter = 0;
3629 xfs_iflush_fork(ip, dip, iip, XFS_DATA_FORK);
3630 if (XFS_IFORK_Q(ip))
3631 xfs_iflush_fork(ip, dip, iip, XFS_ATTR_FORK);
3632 xfs_inobp_check(mp, bp);
3635 * We've recorded everything logged in the inode, so we'd like to clear
3636 * the ili_fields bits so we don't log and flush things unnecessarily.
3637 * However, we can't stop logging all this information until the data
3638 * we've copied into the disk buffer is written to disk. If we did we
3639 * might overwrite the copy of the inode in the log with all the data
3640 * after re-logging only part of it, and in the face of a crash we
3641 * wouldn't have all the data we need to recover.
3643 * What we do is move the bits to the ili_last_fields field. When
3644 * logging the inode, these bits are moved back to the ili_fields field.
3645 * In the xfs_iflush_done() routine we clear ili_last_fields, since we
3646 * know that the information those bits represent is permanently on
3647 * disk. As long as the flush completes before the inode is logged
3648 * again, then both ili_fields and ili_last_fields will be cleared.
3650 * We can play with the ili_fields bits here, because the inode lock
3651 * must be held exclusively in order to set bits there and the flush
3652 * lock protects the ili_last_fields bits. Set ili_logged so the flush
3653 * done routine can tell whether or not to look in the AIL. Also, store
3654 * the current LSN of the inode so that we can tell whether the item has
3655 * moved in the AIL from xfs_iflush_done(). In order to read the lsn we
3656 * need the AIL lock, because it is a 64 bit value that cannot be read
3659 iip->ili_last_fields = iip->ili_fields;
3660 iip->ili_fields = 0;
3661 iip->ili_fsync_fields = 0;
3662 iip->ili_logged = 1;
3664 xfs_trans_ail_copy_lsn(mp->m_ail, &iip->ili_flush_lsn,
3665 &iip->ili_item.li_lsn);
3668 * Attach the function xfs_iflush_done to the inode's
3669 * buffer. This will remove the inode from the AIL
3670 * and unlock the inode's flush lock when the inode is
3671 * completely written to disk.
3673 xfs_buf_attach_iodone(bp, xfs_iflush_done, &iip->ili_item);
3675 /* generate the checksum. */
3676 xfs_dinode_calc_crc(mp, dip);
3678 ASSERT(!list_empty(&bp->b_li_list));
3679 ASSERT(bp->b_iodone != NULL);
3683 return -EFSCORRUPTED;
projects / linux-2.6-block.git / blob