1 /* 2 * Copyright (c) 2000-2005 Silicon Graphics, Inc. 3 * All Rights Reserved. 4 * 5 * This program is free software; you can redistribute it and/or 6 * modify it under the terms of the GNU General Public License as 7 * published by the Free Software Foundation. 8 * 9 * This program is distributed in the hope that it would be useful, 10 * but WITHOUT ANY WARRANTY; without even the implied warranty of 11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the 12 * GNU General Public License for more details. 13 * 14 * You should have received a copy of the GNU General Public License 15 * along with this program; if not, write the Free Software Foundation, 16 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA 17 */ 18 #include "xfs.h" 19 #include "xfs_fs.h" 20 #include "xfs_shared.h" 21 #include "xfs_format.h" 22 #include "xfs_log_format.h" 23 #include "xfs_trans_resv.h" 24 #include "xfs_mount.h" 25 #include "xfs_da_format.h" 26 #include "xfs_inode.h" 27 #include "xfs_bmap.h" 28 #include "xfs_bmap_util.h" 29 #include "xfs_acl.h" 30 #include "xfs_quota.h" 31 #include "xfs_error.h" 32 #include "xfs_attr.h" 33 #include "xfs_trans.h" 34 #include "xfs_trace.h" 35 #include "xfs_icache.h" 36 #include "xfs_symlink.h" 37 #include "xfs_da_btree.h" 38 #include "xfs_dir2.h" 39 #include "xfs_trans_space.h" 40 #include "xfs_pnfs.h" 41 42 #include <linux/capability.h> 43 #include <linux/xattr.h> 44 #include <linux/posix_acl.h> 45 #include <linux/security.h> 46 #include <linux/fiemap.h> 47 #include <linux/slab.h> 48 49 /* 50 * Directories have different lock order w.r.t. mmap_sem compared to regular 51 * files. This is due to readdir potentially triggering page faults on a user 52 * buffer inside filldir(), and this happens with the ilock on the directory 53 * held. For regular files, the lock order is the other way around - the 54 * mmap_sem is taken during the page fault, and then we lock the ilock to do 55 * block mapping. Hence we need a different class for the directory ilock so 56 * that lockdep can tell them apart. 57 */ 58 static struct lock_class_key xfs_nondir_ilock_class; 59 static struct lock_class_key xfs_dir_ilock_class; 60 61 static int 62 xfs_initxattrs( 63 struct inode *inode, 64 const struct xattr *xattr_array, 65 void *fs_info) 66 { 67 const struct xattr *xattr; 68 struct xfs_inode *ip = XFS_I(inode); 69 int error = 0; 70 71 for (xattr = xattr_array; xattr->name != NULL; xattr++) { 72 error = xfs_attr_set(ip, xattr->name, xattr->value, 73 xattr->value_len, ATTR_SECURE); 74 if (error < 0) 75 break; 76 } 77 return error; 78 } 79 80 /* 81 * Hook in SELinux. This is not quite correct yet, what we really need 82 * here (as we do for default ACLs) is a mechanism by which creation of 83 * these attrs can be journalled at inode creation time (along with the 84 * inode, of course, such that log replay can't cause these to be lost). 85 */ 86 87 STATIC int 88 xfs_init_security( 89 struct inode *inode, 90 struct inode *dir, 91 const struct qstr *qstr) 92 { 93 return security_inode_init_security(inode, dir, qstr, 94 &xfs_initxattrs, NULL); 95 } 96 97 static void 98 xfs_dentry_to_name( 99 struct xfs_name *namep, 100 struct dentry *dentry, 101 int mode) 102 { 103 namep->name = dentry->d_name.name; 104 namep->len = dentry->d_name.len; 105 namep->type = xfs_mode_to_ftype[(mode & S_IFMT) >> S_SHIFT]; 106 } 107 108 STATIC void 109 xfs_cleanup_inode( 110 struct inode *dir, 111 struct inode *inode, 112 struct dentry *dentry) 113 { 114 struct xfs_name teardown; 115 116 /* Oh, the horror. 117 * If we can't add the ACL or we fail in 118 * xfs_init_security we must back out. 119 * ENOSPC can hit here, among other things. 120 */ 121 xfs_dentry_to_name(&teardown, dentry, 0); 122 123 xfs_remove(XFS_I(dir), &teardown, XFS_I(inode)); 124 } 125 126 STATIC int 127 xfs_generic_create( 128 struct inode *dir, 129 struct dentry *dentry, 130 umode_t mode, 131 dev_t rdev, 132 bool tmpfile) /* unnamed file */ 133 { 134 struct inode *inode; 135 struct xfs_inode *ip = NULL; 136 struct posix_acl *default_acl, *acl; 137 struct xfs_name name; 138 int error; 139 140 /* 141 * Irix uses Missed'em'V split, but doesn't want to see 142 * the upper 5 bits of (14bit) major. 143 */ 144 if (S_ISCHR(mode) || S_ISBLK(mode)) { 145 if (unlikely(!sysv_valid_dev(rdev) || MAJOR(rdev) & ~0x1ff)) 146 return -EINVAL; 147 rdev = sysv_encode_dev(rdev); 148 } else { 149 rdev = 0; 150 } 151 152 error = posix_acl_create(dir, &mode, &default_acl, &acl); 153 if (error) 154 return error; 155 156 if (!tmpfile) { 157 xfs_dentry_to_name(&name, dentry, mode); 158 error = xfs_create(XFS_I(dir), &name, mode, rdev, &ip); 159 } else { 160 error = xfs_create_tmpfile(XFS_I(dir), dentry, mode, &ip); 161 } 162 if (unlikely(error)) 163 goto out_free_acl; 164 165 inode = VFS_I(ip); 166 167 error = xfs_init_security(inode, dir, &dentry->d_name); 168 if (unlikely(error)) 169 goto out_cleanup_inode; 170 171 #ifdef CONFIG_XFS_POSIX_ACL 172 if (default_acl) { 173 error = xfs_set_acl(inode, default_acl, ACL_TYPE_DEFAULT); 174 if (error) 175 goto out_cleanup_inode; 176 } 177 if (acl) { 178 error = xfs_set_acl(inode, acl, ACL_TYPE_ACCESS); 179 if (error) 180 goto out_cleanup_inode; 181 } 182 #endif 183 184 xfs_setup_iops(ip); 185 186 if (tmpfile) 187 d_tmpfile(dentry, inode); 188 else 189 d_instantiate(dentry, inode); 190 191 xfs_finish_inode_setup(ip); 192 193 out_free_acl: 194 if (default_acl) 195 posix_acl_release(default_acl); 196 if (acl) 197 posix_acl_release(acl); 198 return error; 199 200 out_cleanup_inode: 201 xfs_finish_inode_setup(ip); 202 if (!tmpfile) 203 xfs_cleanup_inode(dir, inode, dentry); 204 iput(inode); 205 goto out_free_acl; 206 } 207 208 STATIC int 209 xfs_vn_mknod( 210 struct inode *dir, 211 struct dentry *dentry, 212 umode_t mode, 213 dev_t rdev) 214 { 215 return xfs_generic_create(dir, dentry, mode, rdev, false); 216 } 217 218 STATIC int 219 xfs_vn_create( 220 struct inode *dir, 221 struct dentry *dentry, 222 umode_t mode, 223 bool flags) 224 { 225 return xfs_vn_mknod(dir, dentry, mode, 0); 226 } 227 228 STATIC int 229 xfs_vn_mkdir( 230 struct inode *dir, 231 struct dentry *dentry, 232 umode_t mode) 233 { 234 return xfs_vn_mknod(dir, dentry, mode|S_IFDIR, 0); 235 } 236 237 STATIC struct dentry * 238 xfs_vn_lookup( 239 struct inode *dir, 240 struct dentry *dentry, 241 unsigned int flags) 242 { 243 struct xfs_inode *cip; 244 struct xfs_name name; 245 int error; 246 247 if (dentry->d_name.len >= MAXNAMELEN) 248 return ERR_PTR(-ENAMETOOLONG); 249 250 xfs_dentry_to_name(&name, dentry, 0); 251 error = xfs_lookup(XFS_I(dir), &name, &cip, NULL); 252 if (unlikely(error)) { 253 if (unlikely(error != -ENOENT)) 254 return ERR_PTR(error); 255 d_add(dentry, NULL); 256 return NULL; 257 } 258 259 return d_splice_alias(VFS_I(cip), dentry); 260 } 261 262 STATIC struct dentry * 263 xfs_vn_ci_lookup( 264 struct inode *dir, 265 struct dentry *dentry, 266 unsigned int flags) 267 { 268 struct xfs_inode *ip; 269 struct xfs_name xname; 270 struct xfs_name ci_name; 271 struct qstr dname; 272 int error; 273 274 if (dentry->d_name.len >= MAXNAMELEN) 275 return ERR_PTR(-ENAMETOOLONG); 276 277 xfs_dentry_to_name(&xname, dentry, 0); 278 error = xfs_lookup(XFS_I(dir), &xname, &ip, &ci_name); 279 if (unlikely(error)) { 280 if (unlikely(error != -ENOENT)) 281 return ERR_PTR(error); 282 /* 283 * call d_add(dentry, NULL) here when d_drop_negative_children 284 * is called in xfs_vn_mknod (ie. allow negative dentries 285 * with CI filesystems). 286 */ 287 return NULL; 288 } 289 290 /* if exact match, just splice and exit */ 291 if (!ci_name.name) 292 return d_splice_alias(VFS_I(ip), dentry); 293 294 /* else case-insensitive match... */ 295 dname.name = ci_name.name; 296 dname.len = ci_name.len; 297 dentry = d_add_ci(dentry, VFS_I(ip), &dname); 298 kmem_free(ci_name.name); 299 return dentry; 300 } 301 302 STATIC int 303 xfs_vn_link( 304 struct dentry *old_dentry, 305 struct inode *dir, 306 struct dentry *dentry) 307 { 308 struct inode *inode = d_inode(old_dentry); 309 struct xfs_name name; 310 int error; 311 312 xfs_dentry_to_name(&name, dentry, inode->i_mode); 313 314 error = xfs_link(XFS_I(dir), XFS_I(inode), &name); 315 if (unlikely(error)) 316 return error; 317 318 ihold(inode); 319 d_instantiate(dentry, inode); 320 return 0; 321 } 322 323 STATIC int 324 xfs_vn_unlink( 325 struct inode *dir, 326 struct dentry *dentry) 327 { 328 struct xfs_name name; 329 int error; 330 331 xfs_dentry_to_name(&name, dentry, 0); 332 333 error = xfs_remove(XFS_I(dir), &name, XFS_I(d_inode(dentry))); 334 if (error) 335 return error; 336 337 /* 338 * With unlink, the VFS makes the dentry "negative": no inode, 339 * but still hashed. This is incompatible with case-insensitive 340 * mode, so invalidate (unhash) the dentry in CI-mode. 341 */ 342 if (xfs_sb_version_hasasciici(&XFS_M(dir->i_sb)->m_sb)) 343 d_invalidate(dentry); 344 return 0; 345 } 346 347 STATIC int 348 xfs_vn_symlink( 349 struct inode *dir, 350 struct dentry *dentry, 351 const char *symname) 352 { 353 struct inode *inode; 354 struct xfs_inode *cip = NULL; 355 struct xfs_name name; 356 int error; 357 umode_t mode; 358 359 mode = S_IFLNK | 360 (irix_symlink_mode ? 0777 & ~current_umask() : S_IRWXUGO); 361 xfs_dentry_to_name(&name, dentry, mode); 362 363 error = xfs_symlink(XFS_I(dir), &name, symname, mode, &cip); 364 if (unlikely(error)) 365 goto out; 366 367 inode = VFS_I(cip); 368 369 error = xfs_init_security(inode, dir, &dentry->d_name); 370 if (unlikely(error)) 371 goto out_cleanup_inode; 372 373 xfs_setup_iops(cip); 374 375 d_instantiate(dentry, inode); 376 xfs_finish_inode_setup(cip); 377 return 0; 378 379 out_cleanup_inode: 380 xfs_finish_inode_setup(cip); 381 xfs_cleanup_inode(dir, inode, dentry); 382 iput(inode); 383 out: 384 return error; 385 } 386 387 STATIC int 388 xfs_vn_rename( 389 struct inode *odir, 390 struct dentry *odentry, 391 struct inode *ndir, 392 struct dentry *ndentry, 393 unsigned int flags) 394 { 395 struct inode *new_inode = d_inode(ndentry); 396 int omode = 0; 397 struct xfs_name oname; 398 struct xfs_name nname; 399 400 if (flags & ~(RENAME_NOREPLACE | RENAME_EXCHANGE | RENAME_WHITEOUT)) 401 return -EINVAL; 402 403 /* if we are exchanging files, we need to set i_mode of both files */ 404 if (flags & RENAME_EXCHANGE) 405 omode = d_inode(ndentry)->i_mode; 406 407 xfs_dentry_to_name(&oname, odentry, omode); 408 xfs_dentry_to_name(&nname, ndentry, d_inode(odentry)->i_mode); 409 410 return xfs_rename(XFS_I(odir), &oname, XFS_I(d_inode(odentry)), 411 XFS_I(ndir), &nname, 412 new_inode ? XFS_I(new_inode) : NULL, flags); 413 } 414 415 /* 416 * careful here - this function can get called recursively, so 417 * we need to be very careful about how much stack we use. 418 * uio is kmalloced for this reason... 419 */ 420 STATIC const char * 421 xfs_vn_get_link( 422 struct dentry *dentry, 423 struct inode *inode, 424 struct delayed_call *done) 425 { 426 char *link; 427 int error = -ENOMEM; 428 429 if (!dentry) 430 return ERR_PTR(-ECHILD); 431 432 link = kmalloc(MAXPATHLEN+1, GFP_KERNEL); 433 if (!link) 434 goto out_err; 435 436 error = xfs_readlink(XFS_I(d_inode(dentry)), link); 437 if (unlikely(error)) 438 goto out_kfree; 439 440 set_delayed_call(done, kfree_link, link); 441 return link; 442 443 out_kfree: 444 kfree(link); 445 out_err: 446 return ERR_PTR(error); 447 } 448 449 STATIC const char * 450 xfs_vn_get_link_inline( 451 struct dentry *dentry, 452 struct inode *inode, 453 struct delayed_call *done) 454 { 455 ASSERT(XFS_I(inode)->i_df.if_flags & XFS_IFINLINE); 456 return XFS_I(inode)->i_df.if_u1.if_data; 457 } 458 459 STATIC int 460 xfs_vn_getattr( 461 struct vfsmount *mnt, 462 struct dentry *dentry, 463 struct kstat *stat) 464 { 465 struct inode *inode = d_inode(dentry); 466 struct xfs_inode *ip = XFS_I(inode); 467 struct xfs_mount *mp = ip->i_mount; 468 469 trace_xfs_getattr(ip); 470 471 if (XFS_FORCED_SHUTDOWN(mp)) 472 return -EIO; 473 474 stat->size = XFS_ISIZE(ip); 475 stat->dev = inode->i_sb->s_dev; 476 stat->mode = inode->i_mode; 477 stat->nlink = inode->i_nlink; 478 stat->uid = inode->i_uid; 479 stat->gid = inode->i_gid; 480 stat->ino = ip->i_ino; 481 stat->atime = inode->i_atime; 482 stat->mtime = inode->i_mtime; 483 stat->ctime = inode->i_ctime; 484 stat->blocks = 485 XFS_FSB_TO_BB(mp, ip->i_d.di_nblocks + ip->i_delayed_blks); 486 487 488 switch (inode->i_mode & S_IFMT) { 489 case S_IFBLK: 490 case S_IFCHR: 491 stat->blksize = BLKDEV_IOSIZE; 492 stat->rdev = MKDEV(sysv_major(ip->i_df.if_u2.if_rdev) & 0x1ff, 493 sysv_minor(ip->i_df.if_u2.if_rdev)); 494 break; 495 default: 496 if (XFS_IS_REALTIME_INODE(ip)) { 497 /* 498 * If the file blocks are being allocated from a 499 * realtime volume, then return the inode's realtime 500 * extent size or the realtime volume's extent size. 501 */ 502 stat->blksize = 503 xfs_get_extsz_hint(ip) << mp->m_sb.sb_blocklog; 504 } else 505 stat->blksize = xfs_preferred_iosize(mp); 506 stat->rdev = 0; 507 break; 508 } 509 510 return 0; 511 } 512 513 static void 514 xfs_setattr_mode( 515 struct xfs_inode *ip, 516 struct iattr *iattr) 517 { 518 struct inode *inode = VFS_I(ip); 519 umode_t mode = iattr->ia_mode; 520 521 ASSERT(xfs_isilocked(ip, XFS_ILOCK_EXCL)); 522 523 inode->i_mode &= S_IFMT; 524 inode->i_mode |= mode & ~S_IFMT; 525 } 526 527 void 528 xfs_setattr_time( 529 struct xfs_inode *ip, 530 struct iattr *iattr) 531 { 532 struct inode *inode = VFS_I(ip); 533 534 ASSERT(xfs_isilocked(ip, XFS_ILOCK_EXCL)); 535 536 if (iattr->ia_valid & ATTR_ATIME) 537 inode->i_atime = iattr->ia_atime; 538 if (iattr->ia_valid & ATTR_CTIME) 539 inode->i_ctime = iattr->ia_ctime; 540 if (iattr->ia_valid & ATTR_MTIME) 541 inode->i_mtime = iattr->ia_mtime; 542 } 543 544 int 545 xfs_setattr_nonsize( 546 struct xfs_inode *ip, 547 struct iattr *iattr, 548 int flags) 549 { 550 xfs_mount_t *mp = ip->i_mount; 551 struct inode *inode = VFS_I(ip); 552 int mask = iattr->ia_valid; 553 xfs_trans_t *tp; 554 int error; 555 kuid_t uid = GLOBAL_ROOT_UID, iuid = GLOBAL_ROOT_UID; 556 kgid_t gid = GLOBAL_ROOT_GID, igid = GLOBAL_ROOT_GID; 557 struct xfs_dquot *udqp = NULL, *gdqp = NULL; 558 struct xfs_dquot *olddquot1 = NULL, *olddquot2 = NULL; 559 560 trace_xfs_setattr(ip); 561 562 /* If acls are being inherited, we already have this checked */ 563 if (!(flags & XFS_ATTR_NOACL)) { 564 if (mp->m_flags & XFS_MOUNT_RDONLY) 565 return -EROFS; 566 567 if (XFS_FORCED_SHUTDOWN(mp)) 568 return -EIO; 569 570 error = inode_change_ok(inode, iattr); 571 if (error) 572 return error; 573 } 574 575 ASSERT((mask & ATTR_SIZE) == 0); 576 577 /* 578 * If disk quotas is on, we make sure that the dquots do exist on disk, 579 * before we start any other transactions. Trying to do this later 580 * is messy. We don't care to take a readlock to look at the ids 581 * in inode here, because we can't hold it across the trans_reserve. 582 * If the IDs do change before we take the ilock, we're covered 583 * because the i_*dquot fields will get updated anyway. 584 */ 585 if (XFS_IS_QUOTA_ON(mp) && (mask & (ATTR_UID|ATTR_GID))) { 586 uint qflags = 0; 587 588 if ((mask & ATTR_UID) && XFS_IS_UQUOTA_ON(mp)) { 589 uid = iattr->ia_uid; 590 qflags |= XFS_QMOPT_UQUOTA; 591 } else { 592 uid = inode->i_uid; 593 } 594 if ((mask & ATTR_GID) && XFS_IS_GQUOTA_ON(mp)) { 595 gid = iattr->ia_gid; 596 qflags |= XFS_QMOPT_GQUOTA; 597 } else { 598 gid = inode->i_gid; 599 } 600 601 /* 602 * We take a reference when we initialize udqp and gdqp, 603 * so it is important that we never blindly double trip on 604 * the same variable. See xfs_create() for an example. 605 */ 606 ASSERT(udqp == NULL); 607 ASSERT(gdqp == NULL); 608 error = xfs_qm_vop_dqalloc(ip, xfs_kuid_to_uid(uid), 609 xfs_kgid_to_gid(gid), 610 xfs_get_projid(ip), 611 qflags, &udqp, &gdqp, NULL); 612 if (error) 613 return error; 614 } 615 616 error = xfs_trans_alloc(mp, &M_RES(mp)->tr_ichange, 0, 0, 0, &tp); 617 if (error) 618 goto out_dqrele; 619 620 xfs_ilock(ip, XFS_ILOCK_EXCL); 621 xfs_trans_ijoin(tp, ip, 0); 622 623 /* 624 * Change file ownership. Must be the owner or privileged. 625 */ 626 if (mask & (ATTR_UID|ATTR_GID)) { 627 /* 628 * These IDs could have changed since we last looked at them. 629 * But, we're assured that if the ownership did change 630 * while we didn't have the inode locked, inode's dquot(s) 631 * would have changed also. 632 */ 633 iuid = inode->i_uid; 634 igid = inode->i_gid; 635 gid = (mask & ATTR_GID) ? iattr->ia_gid : igid; 636 uid = (mask & ATTR_UID) ? iattr->ia_uid : iuid; 637 638 /* 639 * Do a quota reservation only if uid/gid is actually 640 * going to change. 641 */ 642 if (XFS_IS_QUOTA_RUNNING(mp) && 643 ((XFS_IS_UQUOTA_ON(mp) && !uid_eq(iuid, uid)) || 644 (XFS_IS_GQUOTA_ON(mp) && !gid_eq(igid, gid)))) { 645 ASSERT(tp); 646 error = xfs_qm_vop_chown_reserve(tp, ip, udqp, gdqp, 647 NULL, capable(CAP_FOWNER) ? 648 XFS_QMOPT_FORCE_RES : 0); 649 if (error) /* out of quota */ 650 goto out_cancel; 651 } 652 } 653 654 /* 655 * Change file ownership. Must be the owner or privileged. 656 */ 657 if (mask & (ATTR_UID|ATTR_GID)) { 658 /* 659 * CAP_FSETID overrides the following restrictions: 660 * 661 * The set-user-ID and set-group-ID bits of a file will be 662 * cleared upon successful return from chown() 663 */ 664 if ((inode->i_mode & (S_ISUID|S_ISGID)) && 665 !capable(CAP_FSETID)) 666 inode->i_mode &= ~(S_ISUID|S_ISGID); 667 668 /* 669 * Change the ownerships and register quota modifications 670 * in the transaction. 671 */ 672 if (!uid_eq(iuid, uid)) { 673 if (XFS_IS_QUOTA_RUNNING(mp) && XFS_IS_UQUOTA_ON(mp)) { 674 ASSERT(mask & ATTR_UID); 675 ASSERT(udqp); 676 olddquot1 = xfs_qm_vop_chown(tp, ip, 677 &ip->i_udquot, udqp); 678 } 679 ip->i_d.di_uid = xfs_kuid_to_uid(uid); 680 inode->i_uid = uid; 681 } 682 if (!gid_eq(igid, gid)) { 683 if (XFS_IS_QUOTA_RUNNING(mp) && XFS_IS_GQUOTA_ON(mp)) { 684 ASSERT(xfs_sb_version_has_pquotino(&mp->m_sb) || 685 !XFS_IS_PQUOTA_ON(mp)); 686 ASSERT(mask & ATTR_GID); 687 ASSERT(gdqp); 688 olddquot2 = xfs_qm_vop_chown(tp, ip, 689 &ip->i_gdquot, gdqp); 690 } 691 ip->i_d.di_gid = xfs_kgid_to_gid(gid); 692 inode->i_gid = gid; 693 } 694 } 695 696 if (mask & ATTR_MODE) 697 xfs_setattr_mode(ip, iattr); 698 if (mask & (ATTR_ATIME|ATTR_CTIME|ATTR_MTIME)) 699 xfs_setattr_time(ip, iattr); 700 701 xfs_trans_log_inode(tp, ip, XFS_ILOG_CORE); 702 703 XFS_STATS_INC(mp, xs_ig_attrchg); 704 705 if (mp->m_flags & XFS_MOUNT_WSYNC) 706 xfs_trans_set_sync(tp); 707 error = xfs_trans_commit(tp); 708 709 xfs_iunlock(ip, XFS_ILOCK_EXCL); 710 711 /* 712 * Release any dquot(s) the inode had kept before chown. 713 */ 714 xfs_qm_dqrele(olddquot1); 715 xfs_qm_dqrele(olddquot2); 716 xfs_qm_dqrele(udqp); 717 xfs_qm_dqrele(gdqp); 718 719 if (error) 720 return error; 721 722 /* 723 * XXX(hch): Updating the ACL entries is not atomic vs the i_mode 724 * update. We could avoid this with linked transactions 725 * and passing down the transaction pointer all the way 726 * to attr_set. No previous user of the generic 727 * Posix ACL code seems to care about this issue either. 728 */ 729 if ((mask & ATTR_MODE) && !(flags & XFS_ATTR_NOACL)) { 730 error = posix_acl_chmod(inode, inode->i_mode); 731 if (error) 732 return error; 733 } 734 735 return 0; 736 737 out_cancel: 738 xfs_trans_cancel(tp); 739 out_dqrele: 740 xfs_qm_dqrele(udqp); 741 xfs_qm_dqrele(gdqp); 742 return error; 743 } 744 745 /* 746 * Truncate file. Must have write permission and not be a directory. 747 */ 748 int 749 xfs_setattr_size( 750 struct xfs_inode *ip, 751 struct iattr *iattr) 752 { 753 struct xfs_mount *mp = ip->i_mount; 754 struct inode *inode = VFS_I(ip); 755 xfs_off_t oldsize, newsize; 756 struct xfs_trans *tp; 757 int error; 758 uint lock_flags = 0; 759 bool did_zeroing = false; 760 761 trace_xfs_setattr(ip); 762 763 if (mp->m_flags & XFS_MOUNT_RDONLY) 764 return -EROFS; 765 766 if (XFS_FORCED_SHUTDOWN(mp)) 767 return -EIO; 768 769 error = inode_change_ok(inode, iattr); 770 if (error) 771 return error; 772 773 ASSERT(xfs_isilocked(ip, XFS_IOLOCK_EXCL)); 774 ASSERT(xfs_isilocked(ip, XFS_MMAPLOCK_EXCL)); 775 ASSERT(S_ISREG(inode->i_mode)); 776 ASSERT((iattr->ia_valid & (ATTR_UID|ATTR_GID|ATTR_ATIME|ATTR_ATIME_SET| 777 ATTR_MTIME_SET|ATTR_KILL_PRIV|ATTR_TIMES_SET)) == 0); 778 779 oldsize = inode->i_size; 780 newsize = iattr->ia_size; 781 782 /* 783 * Short circuit the truncate case for zero length files. 784 */ 785 if (newsize == 0 && oldsize == 0 && ip->i_d.di_nextents == 0) { 786 if (!(iattr->ia_valid & (ATTR_CTIME|ATTR_MTIME))) 787 return 0; 788 789 /* 790 * Use the regular setattr path to update the timestamps. 791 */ 792 iattr->ia_valid &= ~ATTR_SIZE; 793 return xfs_setattr_nonsize(ip, iattr, 0); 794 } 795 796 /* 797 * Make sure that the dquots are attached to the inode. 798 */ 799 error = xfs_qm_dqattach(ip, 0); 800 if (error) 801 return error; 802 803 /* 804 * File data changes must be complete before we start the transaction to 805 * modify the inode. This needs to be done before joining the inode to 806 * the transaction because the inode cannot be unlocked once it is a 807 * part of the transaction. 808 * 809 * Start with zeroing any data block beyond EOF that we may expose on 810 * file extension. 811 */ 812 if (newsize > oldsize) { 813 error = xfs_zero_eof(ip, newsize, oldsize, &did_zeroing); 814 if (error) 815 return error; 816 } 817 818 /* 819 * We are going to log the inode size change in this transaction so 820 * any previous writes that are beyond the on disk EOF and the new 821 * EOF that have not been written out need to be written here. If we 822 * do not write the data out, we expose ourselves to the null files 823 * problem. Note that this includes any block zeroing we did above; 824 * otherwise those blocks may not be zeroed after a crash. 825 */ 826 if (newsize > ip->i_d.di_size && 827 (oldsize != ip->i_d.di_size || did_zeroing)) { 828 error = filemap_write_and_wait_range(VFS_I(ip)->i_mapping, 829 ip->i_d.di_size, newsize); 830 if (error) 831 return error; 832 } 833 834 /* Now wait for all direct I/O to complete. */ 835 inode_dio_wait(inode); 836 837 /* 838 * We've already locked out new page faults, so now we can safely remove 839 * pages from the page cache knowing they won't get refaulted until we 840 * drop the XFS_MMAP_EXCL lock after the extent manipulations are 841 * complete. The truncate_setsize() call also cleans partial EOF page 842 * PTEs on extending truncates and hence ensures sub-page block size 843 * filesystems are correctly handled, too. 844 * 845 * We have to do all the page cache truncate work outside the 846 * transaction context as the "lock" order is page lock->log space 847 * reservation as defined by extent allocation in the writeback path. 848 * Hence a truncate can fail with ENOMEM from xfs_trans_alloc(), but 849 * having already truncated the in-memory version of the file (i.e. made 850 * user visible changes). There's not much we can do about this, except 851 * to hope that the caller sees ENOMEM and retries the truncate 852 * operation. 853 */ 854 if (IS_DAX(inode)) 855 error = dax_truncate_page(inode, newsize, xfs_get_blocks_direct); 856 else 857 error = block_truncate_page(inode->i_mapping, newsize, 858 xfs_get_blocks); 859 if (error) 860 return error; 861 truncate_setsize(inode, newsize); 862 863 error = xfs_trans_alloc(mp, &M_RES(mp)->tr_itruncate, 0, 0, 0, &tp); 864 if (error) 865 return error; 866 867 lock_flags |= XFS_ILOCK_EXCL; 868 xfs_ilock(ip, XFS_ILOCK_EXCL); 869 xfs_trans_ijoin(tp, ip, 0); 870 871 /* 872 * Only change the c/mtime if we are changing the size or we are 873 * explicitly asked to change it. This handles the semantic difference 874 * between truncate() and ftruncate() as implemented in the VFS. 875 * 876 * The regular truncate() case without ATTR_CTIME and ATTR_MTIME is a 877 * special case where we need to update the times despite not having 878 * these flags set. For all other operations the VFS set these flags 879 * explicitly if it wants a timestamp update. 880 */ 881 if (newsize != oldsize && 882 !(iattr->ia_valid & (ATTR_CTIME | ATTR_MTIME))) { 883 iattr->ia_ctime = iattr->ia_mtime = 884 current_fs_time(inode->i_sb); 885 iattr->ia_valid |= ATTR_CTIME | ATTR_MTIME; 886 } 887 888 /* 889 * The first thing we do is set the size to new_size permanently on 890 * disk. This way we don't have to worry about anyone ever being able 891 * to look at the data being freed even in the face of a crash. 892 * What we're getting around here is the case where we free a block, it 893 * is allocated to another file, it is written to, and then we crash. 894 * If the new data gets written to the file but the log buffers 895 * containing the free and reallocation don't, then we'd end up with 896 * garbage in the blocks being freed. As long as we make the new size 897 * permanent before actually freeing any blocks it doesn't matter if 898 * they get written to. 899 */ 900 ip->i_d.di_size = newsize; 901 xfs_trans_log_inode(tp, ip, XFS_ILOG_CORE); 902 903 if (newsize <= oldsize) { 904 error = xfs_itruncate_extents(&tp, ip, XFS_DATA_FORK, newsize); 905 if (error) 906 goto out_trans_cancel; 907 908 /* 909 * Truncated "down", so we're removing references to old data 910 * here - if we delay flushing for a long time, we expose 911 * ourselves unduly to the notorious NULL files problem. So, 912 * we mark this inode and flush it when the file is closed, 913 * and do not wait the usual (long) time for writeout. 914 */ 915 xfs_iflags_set(ip, XFS_ITRUNCATED); 916 917 /* A truncate down always removes post-EOF blocks. */ 918 xfs_inode_clear_eofblocks_tag(ip); 919 } 920 921 if (iattr->ia_valid & ATTR_MODE) 922 xfs_setattr_mode(ip, iattr); 923 if (iattr->ia_valid & (ATTR_ATIME|ATTR_CTIME|ATTR_MTIME)) 924 xfs_setattr_time(ip, iattr); 925 926 xfs_trans_log_inode(tp, ip, XFS_ILOG_CORE); 927 928 XFS_STATS_INC(mp, xs_ig_attrchg); 929 930 if (mp->m_flags & XFS_MOUNT_WSYNC) 931 xfs_trans_set_sync(tp); 932 933 error = xfs_trans_commit(tp); 934 out_unlock: 935 if (lock_flags) 936 xfs_iunlock(ip, lock_flags); 937 return error; 938 939 out_trans_cancel: 940 xfs_trans_cancel(tp); 941 goto out_unlock; 942 } 943 944 STATIC int 945 xfs_vn_setattr( 946 struct dentry *dentry, 947 struct iattr *iattr) 948 { 949 struct xfs_inode *ip = XFS_I(d_inode(dentry)); 950 int error; 951 952 if (iattr->ia_valid & ATTR_SIZE) { 953 uint iolock = XFS_IOLOCK_EXCL; 954 955 xfs_ilock(ip, iolock); 956 error = xfs_break_layouts(d_inode(dentry), &iolock, true); 957 if (!error) { 958 xfs_ilock(ip, XFS_MMAPLOCK_EXCL); 959 iolock |= XFS_MMAPLOCK_EXCL; 960 961 error = xfs_setattr_size(ip, iattr); 962 } 963 xfs_iunlock(ip, iolock); 964 } else { 965 error = xfs_setattr_nonsize(ip, iattr, 0); 966 } 967 968 return error; 969 } 970 971 STATIC int 972 xfs_vn_update_time( 973 struct inode *inode, 974 struct timespec *now, 975 int flags) 976 { 977 struct xfs_inode *ip = XFS_I(inode); 978 struct xfs_mount *mp = ip->i_mount; 979 struct xfs_trans *tp; 980 int error; 981 982 trace_xfs_update_time(ip); 983 984 error = xfs_trans_alloc(mp, &M_RES(mp)->tr_fsyncts, 0, 0, 0, &tp); 985 if (error) 986 return error; 987 988 xfs_ilock(ip, XFS_ILOCK_EXCL); 989 if (flags & S_CTIME) 990 inode->i_ctime = *now; 991 if (flags & S_MTIME) 992 inode->i_mtime = *now; 993 if (flags & S_ATIME) 994 inode->i_atime = *now; 995 996 xfs_trans_ijoin(tp, ip, XFS_ILOCK_EXCL); 997 xfs_trans_log_inode(tp, ip, XFS_ILOG_TIMESTAMP); 998 return xfs_trans_commit(tp); 999 } 1000 1001 #define XFS_FIEMAP_FLAGS (FIEMAP_FLAG_SYNC|FIEMAP_FLAG_XATTR) 1002 1003 /* 1004 * Call fiemap helper to fill in user data. 1005 * Returns positive errors to xfs_getbmap. 1006 */ 1007 STATIC int 1008 xfs_fiemap_format( 1009 void **arg, 1010 struct getbmapx *bmv, 1011 int *full) 1012 { 1013 int error; 1014 struct fiemap_extent_info *fieinfo = *arg; 1015 u32 fiemap_flags = 0; 1016 u64 logical, physical, length; 1017 1018 /* Do nothing for a hole */ 1019 if (bmv->bmv_block == -1LL) 1020 return 0; 1021 1022 logical = BBTOB(bmv->bmv_offset); 1023 physical = BBTOB(bmv->bmv_block); 1024 length = BBTOB(bmv->bmv_length); 1025 1026 if (bmv->bmv_oflags & BMV_OF_PREALLOC) 1027 fiemap_flags |= FIEMAP_EXTENT_UNWRITTEN; 1028 else if (bmv->bmv_oflags & BMV_OF_DELALLOC) { 1029 fiemap_flags |= (FIEMAP_EXTENT_DELALLOC | 1030 FIEMAP_EXTENT_UNKNOWN); 1031 physical = 0; /* no block yet */ 1032 } 1033 if (bmv->bmv_oflags & BMV_OF_LAST) 1034 fiemap_flags |= FIEMAP_EXTENT_LAST; 1035 1036 error = fiemap_fill_next_extent(fieinfo, logical, physical, 1037 length, fiemap_flags); 1038 if (error > 0) { 1039 error = 0; 1040 *full = 1; /* user array now full */ 1041 } 1042 1043 return error; 1044 } 1045 1046 STATIC int 1047 xfs_vn_fiemap( 1048 struct inode *inode, 1049 struct fiemap_extent_info *fieinfo, 1050 u64 start, 1051 u64 length) 1052 { 1053 xfs_inode_t *ip = XFS_I(inode); 1054 struct getbmapx bm; 1055 int error; 1056 1057 error = fiemap_check_flags(fieinfo, XFS_FIEMAP_FLAGS); 1058 if (error) 1059 return error; 1060 1061 /* Set up bmap header for xfs internal routine */ 1062 bm.bmv_offset = BTOBBT(start); 1063 /* Special case for whole file */ 1064 if (length == FIEMAP_MAX_OFFSET) 1065 bm.bmv_length = -1LL; 1066 else 1067 bm.bmv_length = BTOBB(start + length) - bm.bmv_offset; 1068 1069 /* We add one because in getbmap world count includes the header */ 1070 bm.bmv_count = !fieinfo->fi_extents_max ? MAXEXTNUM : 1071 fieinfo->fi_extents_max + 1; 1072 bm.bmv_count = min_t(__s32, bm.bmv_count, 1073 (PAGE_SIZE * 16 / sizeof(struct getbmapx))); 1074 bm.bmv_iflags = BMV_IF_PREALLOC | BMV_IF_NO_HOLES; 1075 if (fieinfo->fi_flags & FIEMAP_FLAG_XATTR) 1076 bm.bmv_iflags |= BMV_IF_ATTRFORK; 1077 if (!(fieinfo->fi_flags & FIEMAP_FLAG_SYNC)) 1078 bm.bmv_iflags |= BMV_IF_DELALLOC; 1079 1080 error = xfs_getbmap(ip, &bm, xfs_fiemap_format, fieinfo); 1081 if (error) 1082 return error; 1083 1084 return 0; 1085 } 1086 1087 STATIC int 1088 xfs_vn_tmpfile( 1089 struct inode *dir, 1090 struct dentry *dentry, 1091 umode_t mode) 1092 { 1093 return xfs_generic_create(dir, dentry, mode, 0, true); 1094 } 1095 1096 static const struct inode_operations xfs_inode_operations = { 1097 .get_acl = xfs_get_acl, 1098 .set_acl = xfs_set_acl, 1099 .getattr = xfs_vn_getattr, 1100 .setattr = xfs_vn_setattr, 1101 .setxattr = generic_setxattr, 1102 .getxattr = generic_getxattr, 1103 .removexattr = generic_removexattr, 1104 .listxattr = xfs_vn_listxattr, 1105 .fiemap = xfs_vn_fiemap, 1106 .update_time = xfs_vn_update_time, 1107 }; 1108 1109 static const struct inode_operations xfs_dir_inode_operations = { 1110 .create = xfs_vn_create, 1111 .lookup = xfs_vn_lookup, 1112 .link = xfs_vn_link, 1113 .unlink = xfs_vn_unlink, 1114 .symlink = xfs_vn_symlink, 1115 .mkdir = xfs_vn_mkdir, 1116 /* 1117 * Yes, XFS uses the same method for rmdir and unlink. 1118 * 1119 * There are some subtile differences deeper in the code, 1120 * but we use S_ISDIR to check for those. 1121 */ 1122 .rmdir = xfs_vn_unlink, 1123 .mknod = xfs_vn_mknod, 1124 .rename2 = xfs_vn_rename, 1125 .get_acl = xfs_get_acl, 1126 .set_acl = xfs_set_acl, 1127 .getattr = xfs_vn_getattr, 1128 .setattr = xfs_vn_setattr, 1129 .setxattr = generic_setxattr, 1130 .getxattr = generic_getxattr, 1131 .removexattr = generic_removexattr, 1132 .listxattr = xfs_vn_listxattr, 1133 .update_time = xfs_vn_update_time, 1134 .tmpfile = xfs_vn_tmpfile, 1135 }; 1136 1137 static const struct inode_operations xfs_dir_ci_inode_operations = { 1138 .create = xfs_vn_create, 1139 .lookup = xfs_vn_ci_lookup, 1140 .link = xfs_vn_link, 1141 .unlink = xfs_vn_unlink, 1142 .symlink = xfs_vn_symlink, 1143 .mkdir = xfs_vn_mkdir, 1144 /* 1145 * Yes, XFS uses the same method for rmdir and unlink. 1146 * 1147 * There are some subtile differences deeper in the code, 1148 * but we use S_ISDIR to check for those. 1149 */ 1150 .rmdir = xfs_vn_unlink, 1151 .mknod = xfs_vn_mknod, 1152 .rename2 = xfs_vn_rename, 1153 .get_acl = xfs_get_acl, 1154 .set_acl = xfs_set_acl, 1155 .getattr = xfs_vn_getattr, 1156 .setattr = xfs_vn_setattr, 1157 .setxattr = generic_setxattr, 1158 .getxattr = generic_getxattr, 1159 .removexattr = generic_removexattr, 1160 .listxattr = xfs_vn_listxattr, 1161 .update_time = xfs_vn_update_time, 1162 .tmpfile = xfs_vn_tmpfile, 1163 }; 1164 1165 static const struct inode_operations xfs_symlink_inode_operations = { 1166 .readlink = generic_readlink, 1167 .get_link = xfs_vn_get_link, 1168 .getattr = xfs_vn_getattr, 1169 .setattr = xfs_vn_setattr, 1170 .setxattr = generic_setxattr, 1171 .getxattr = generic_getxattr, 1172 .removexattr = generic_removexattr, 1173 .listxattr = xfs_vn_listxattr, 1174 .update_time = xfs_vn_update_time, 1175 }; 1176 1177 static const struct inode_operations xfs_inline_symlink_inode_operations = { 1178 .readlink = generic_readlink, 1179 .get_link = xfs_vn_get_link_inline, 1180 .getattr = xfs_vn_getattr, 1181 .setattr = xfs_vn_setattr, 1182 .setxattr = generic_setxattr, 1183 .getxattr = generic_getxattr, 1184 .removexattr = generic_removexattr, 1185 .listxattr = xfs_vn_listxattr, 1186 .update_time = xfs_vn_update_time, 1187 }; 1188 1189 STATIC void 1190 xfs_diflags_to_iflags( 1191 struct inode *inode, 1192 struct xfs_inode *ip) 1193 { 1194 uint16_t flags = ip->i_d.di_flags; 1195 1196 inode->i_flags &= ~(S_IMMUTABLE | S_APPEND | S_SYNC | 1197 S_NOATIME | S_DAX); 1198 1199 if (flags & XFS_DIFLAG_IMMUTABLE) 1200 inode->i_flags |= S_IMMUTABLE; 1201 if (flags & XFS_DIFLAG_APPEND) 1202 inode->i_flags |= S_APPEND; 1203 if (flags & XFS_DIFLAG_SYNC) 1204 inode->i_flags |= S_SYNC; 1205 if (flags & XFS_DIFLAG_NOATIME) 1206 inode->i_flags |= S_NOATIME; 1207 if (S_ISREG(inode->i_mode) && 1208 ip->i_mount->m_sb.sb_blocksize == PAGE_SIZE && 1209 (ip->i_mount->m_flags & XFS_MOUNT_DAX || 1210 ip->i_d.di_flags2 & XFS_DIFLAG2_DAX)) 1211 inode->i_flags |= S_DAX; 1212 } 1213 1214 /* 1215 * Initialize the Linux inode. 1216 * 1217 * When reading existing inodes from disk this is called directly from xfs_iget, 1218 * when creating a new inode it is called from xfs_ialloc after setting up the 1219 * inode. These callers have different criteria for clearing XFS_INEW, so leave 1220 * it up to the caller to deal with unlocking the inode appropriately. 1221 */ 1222 void 1223 xfs_setup_inode( 1224 struct xfs_inode *ip) 1225 { 1226 struct inode *inode = &ip->i_vnode; 1227 gfp_t gfp_mask; 1228 1229 inode->i_ino = ip->i_ino; 1230 inode->i_state = I_NEW; 1231 1232 inode_sb_list_add(inode); 1233 /* make the inode look hashed for the writeback code */ 1234 hlist_add_fake(&inode->i_hash); 1235 1236 inode->i_uid = xfs_uid_to_kuid(ip->i_d.di_uid); 1237 inode->i_gid = xfs_gid_to_kgid(ip->i_d.di_gid); 1238 1239 switch (inode->i_mode & S_IFMT) { 1240 case S_IFBLK: 1241 case S_IFCHR: 1242 inode->i_rdev = 1243 MKDEV(sysv_major(ip->i_df.if_u2.if_rdev) & 0x1ff, 1244 sysv_minor(ip->i_df.if_u2.if_rdev)); 1245 break; 1246 default: 1247 inode->i_rdev = 0; 1248 break; 1249 } 1250 1251 i_size_write(inode, ip->i_d.di_size); 1252 xfs_diflags_to_iflags(inode, ip); 1253 1254 if (S_ISDIR(inode->i_mode)) { 1255 lockdep_set_class(&ip->i_lock.mr_lock, &xfs_dir_ilock_class); 1256 ip->d_ops = ip->i_mount->m_dir_inode_ops; 1257 } else { 1258 ip->d_ops = ip->i_mount->m_nondir_inode_ops; 1259 lockdep_set_class(&ip->i_lock.mr_lock, &xfs_nondir_ilock_class); 1260 } 1261 1262 /* 1263 * Ensure all page cache allocations are done from GFP_NOFS context to 1264 * prevent direct reclaim recursion back into the filesystem and blowing 1265 * stacks or deadlocking. 1266 */ 1267 gfp_mask = mapping_gfp_mask(inode->i_mapping); 1268 mapping_set_gfp_mask(inode->i_mapping, (gfp_mask & ~(__GFP_FS))); 1269 1270 /* 1271 * If there is no attribute fork no ACL can exist on this inode, 1272 * and it can't have any file capabilities attached to it either. 1273 */ 1274 if (!XFS_IFORK_Q(ip)) { 1275 inode_has_no_xattr(inode); 1276 cache_no_acl(inode); 1277 } 1278 } 1279 1280 void 1281 xfs_setup_iops( 1282 struct xfs_inode *ip) 1283 { 1284 struct inode *inode = &ip->i_vnode; 1285 1286 switch (inode->i_mode & S_IFMT) { 1287 case S_IFREG: 1288 inode->i_op = &xfs_inode_operations; 1289 inode->i_fop = &xfs_file_operations; 1290 inode->i_mapping->a_ops = &xfs_address_space_operations; 1291 break; 1292 case S_IFDIR: 1293 if (xfs_sb_version_hasasciici(&XFS_M(inode->i_sb)->m_sb)) 1294 inode->i_op = &xfs_dir_ci_inode_operations; 1295 else 1296 inode->i_op = &xfs_dir_inode_operations; 1297 inode->i_fop = &xfs_dir_file_operations; 1298 break; 1299 case S_IFLNK: 1300 if (ip->i_df.if_flags & XFS_IFINLINE) 1301 inode->i_op = &xfs_inline_symlink_inode_operations; 1302 else 1303 inode->i_op = &xfs_symlink_inode_operations; 1304 break; 1305 default: 1306 inode->i_op = &xfs_inode_operations; 1307 init_special_inode(inode, inode->i_mode, inode->i_rdev); 1308 break; 1309 } 1310 } 1311