1 /* 2 * Copyright (c) 2000-2005 Silicon Graphics, Inc. 3 * All Rights Reserved. 4 * 5 * This program is free software; you can redistribute it and/or 6 * modify it under the terms of the GNU General Public License as 7 * published by the Free Software Foundation. 8 * 9 * This program is distributed in the hope that it would be useful, 10 * but WITHOUT ANY WARRANTY; without even the implied warranty of 11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the 12 * GNU General Public License for more details. 13 * 14 * You should have received a copy of the GNU General Public License 15 * along with this program; if not, write the Free Software Foundation, 16 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA 17 */ 18 19 #include <linux/capability.h> 20 21 #include "xfs.h" 22 #include "xfs_fs.h" 23 #include "xfs_shared.h" 24 #include "xfs_format.h" 25 #include "xfs_log_format.h" 26 #include "xfs_trans_resv.h" 27 #include "xfs_bit.h" 28 #include "xfs_sb.h" 29 #include "xfs_ag.h" 30 #include "xfs_mount.h" 31 #include "xfs_inode.h" 32 #include "xfs_trans.h" 33 #include "xfs_error.h" 34 #include "xfs_quota.h" 35 #include "xfs_qm.h" 36 #include "xfs_trace.h" 37 #include "xfs_icache.h" 38 39 STATIC int xfs_qm_log_quotaoff(xfs_mount_t *, xfs_qoff_logitem_t **, uint); 40 STATIC int xfs_qm_log_quotaoff_end(xfs_mount_t *, xfs_qoff_logitem_t *, 41 uint); 42 STATIC uint xfs_qm_export_flags(uint); 43 STATIC uint xfs_qm_export_qtype_flags(uint); 44 45 /* 46 * Turn off quota accounting and/or enforcement for all udquots and/or 47 * gdquots. Called only at unmount time. 48 * 49 * This assumes that there are no dquots of this file system cached 50 * incore, and modifies the ondisk dquot directly. Therefore, for example, 51 * it is an error to call this twice, without purging the cache. 52 */ 53 int 54 xfs_qm_scall_quotaoff( 55 xfs_mount_t *mp, 56 uint flags) 57 { 58 struct xfs_quotainfo *q = mp->m_quotainfo; 59 uint dqtype; 60 int error; 61 uint inactivate_flags; 62 xfs_qoff_logitem_t *qoffstart; 63 64 /* 65 * No file system can have quotas enabled on disk but not in core. 66 * Note that quota utilities (like quotaoff) _expect_ 67 * errno == -EEXIST here. 68 */ 69 if ((mp->m_qflags & flags) == 0) 70 return -EEXIST; 71 error = 0; 72 73 flags &= (XFS_ALL_QUOTA_ACCT | XFS_ALL_QUOTA_ENFD); 74 75 /* 76 * We don't want to deal with two quotaoffs messing up each other, 77 * so we're going to serialize it. quotaoff isn't exactly a performance 78 * critical thing. 79 * If quotaoff, then we must be dealing with the root filesystem. 80 */ 81 ASSERT(q); 82 mutex_lock(&q->qi_quotaofflock); 83 84 /* 85 * If we're just turning off quota enforcement, change mp and go. 86 */ 87 if ((flags & XFS_ALL_QUOTA_ACCT) == 0) { 88 mp->m_qflags &= ~(flags); 89 90 spin_lock(&mp->m_sb_lock); 91 mp->m_sb.sb_qflags = mp->m_qflags; 92 spin_unlock(&mp->m_sb_lock); 93 mutex_unlock(&q->qi_quotaofflock); 94 95 /* XXX what to do if error ? Revert back to old vals incore ? */ 96 error = xfs_qm_write_sb_changes(mp, XFS_SB_QFLAGS); 97 return error; 98 } 99 100 dqtype = 0; 101 inactivate_flags = 0; 102 /* 103 * If accounting is off, we must turn enforcement off, clear the 104 * quota 'CHKD' certificate to make it known that we have to 105 * do a quotacheck the next time this quota is turned on. 106 */ 107 if (flags & XFS_UQUOTA_ACCT) { 108 dqtype |= XFS_QMOPT_UQUOTA; 109 flags |= (XFS_UQUOTA_CHKD | XFS_UQUOTA_ENFD); 110 inactivate_flags |= XFS_UQUOTA_ACTIVE; 111 } 112 if (flags & XFS_GQUOTA_ACCT) { 113 dqtype |= XFS_QMOPT_GQUOTA; 114 flags |= (XFS_GQUOTA_CHKD | XFS_GQUOTA_ENFD); 115 inactivate_flags |= XFS_GQUOTA_ACTIVE; 116 } 117 if (flags & XFS_PQUOTA_ACCT) { 118 dqtype |= XFS_QMOPT_PQUOTA; 119 flags |= (XFS_PQUOTA_CHKD | XFS_PQUOTA_ENFD); 120 inactivate_flags |= XFS_PQUOTA_ACTIVE; 121 } 122 123 /* 124 * Nothing to do? Don't complain. This happens when we're just 125 * turning off quota enforcement. 126 */ 127 if ((mp->m_qflags & flags) == 0) 128 goto out_unlock; 129 130 /* 131 * Write the LI_QUOTAOFF log record, and do SB changes atomically, 132 * and synchronously. If we fail to write, we should abort the 133 * operation as it cannot be recovered safely if we crash. 134 */ 135 error = xfs_qm_log_quotaoff(mp, &qoffstart, flags); 136 if (error) 137 goto out_unlock; 138 139 /* 140 * Next we clear the XFS_MOUNT_*DQ_ACTIVE bit(s) in the mount struct 141 * to take care of the race between dqget and quotaoff. We don't take 142 * any special locks to reset these bits. All processes need to check 143 * these bits *after* taking inode lock(s) to see if the particular 144 * quota type is in the process of being turned off. If *ACTIVE, it is 145 * guaranteed that all dquot structures and all quotainode ptrs will all 146 * stay valid as long as that inode is kept locked. 147 * 148 * There is no turning back after this. 149 */ 150 mp->m_qflags &= ~inactivate_flags; 151 152 /* 153 * Give back all the dquot reference(s) held by inodes. 154 * Here we go thru every single incore inode in this file system, and 155 * do a dqrele on the i_udquot/i_gdquot that it may have. 156 * Essentially, as long as somebody has an inode locked, this guarantees 157 * that quotas will not be turned off. This is handy because in a 158 * transaction once we lock the inode(s) and check for quotaon, we can 159 * depend on the quota inodes (and other things) being valid as long as 160 * we keep the lock(s). 161 */ 162 xfs_qm_dqrele_all_inodes(mp, flags); 163 164 /* 165 * Next we make the changes in the quota flag in the mount struct. 166 * This isn't protected by a particular lock directly, because we 167 * don't want to take a mrlock every time we depend on quotas being on. 168 */ 169 mp->m_qflags &= ~flags; 170 171 /* 172 * Go through all the dquots of this file system and purge them, 173 * according to what was turned off. 174 */ 175 xfs_qm_dqpurge_all(mp, dqtype); 176 177 /* 178 * Transactions that had started before ACTIVE state bit was cleared 179 * could have logged many dquots, so they'd have higher LSNs than 180 * the first QUOTAOFF log record does. If we happen to crash when 181 * the tail of the log has gone past the QUOTAOFF record, but 182 * before the last dquot modification, those dquots __will__ 183 * recover, and that's not good. 184 * 185 * So, we have QUOTAOFF start and end logitems; the start 186 * logitem won't get overwritten until the end logitem appears... 187 */ 188 error = xfs_qm_log_quotaoff_end(mp, qoffstart, flags); 189 if (error) { 190 /* We're screwed now. Shutdown is the only option. */ 191 xfs_force_shutdown(mp, SHUTDOWN_CORRUPT_INCORE); 192 goto out_unlock; 193 } 194 195 /* 196 * If all quotas are completely turned off, close shop. 197 */ 198 if (mp->m_qflags == 0) { 199 mutex_unlock(&q->qi_quotaofflock); 200 xfs_qm_destroy_quotainfo(mp); 201 return 0; 202 } 203 204 /* 205 * Release our quotainode references if we don't need them anymore. 206 */ 207 if ((dqtype & XFS_QMOPT_UQUOTA) && q->qi_uquotaip) { 208 IRELE(q->qi_uquotaip); 209 q->qi_uquotaip = NULL; 210 } 211 if ((dqtype & XFS_QMOPT_GQUOTA) && q->qi_gquotaip) { 212 IRELE(q->qi_gquotaip); 213 q->qi_gquotaip = NULL; 214 } 215 if ((dqtype & XFS_QMOPT_PQUOTA) && q->qi_pquotaip) { 216 IRELE(q->qi_pquotaip); 217 q->qi_pquotaip = NULL; 218 } 219 220 out_unlock: 221 mutex_unlock(&q->qi_quotaofflock); 222 return error; 223 } 224 225 STATIC int 226 xfs_qm_scall_trunc_qfile( 227 struct xfs_mount *mp, 228 xfs_ino_t ino) 229 { 230 struct xfs_inode *ip; 231 struct xfs_trans *tp; 232 int error; 233 234 if (ino == NULLFSINO) 235 return 0; 236 237 error = xfs_iget(mp, NULL, ino, 0, 0, &ip); 238 if (error) 239 return error; 240 241 xfs_ilock(ip, XFS_IOLOCK_EXCL); 242 243 tp = xfs_trans_alloc(mp, XFS_TRANS_TRUNCATE_FILE); 244 error = xfs_trans_reserve(tp, &M_RES(mp)->tr_itruncate, 0, 0); 245 if (error) { 246 xfs_trans_cancel(tp, 0); 247 xfs_iunlock(ip, XFS_IOLOCK_EXCL); 248 goto out_put; 249 } 250 251 xfs_ilock(ip, XFS_ILOCK_EXCL); 252 xfs_trans_ijoin(tp, ip, 0); 253 254 ip->i_d.di_size = 0; 255 xfs_trans_log_inode(tp, ip, XFS_ILOG_CORE); 256 257 error = xfs_itruncate_extents(&tp, ip, XFS_DATA_FORK, 0); 258 if (error) { 259 xfs_trans_cancel(tp, XFS_TRANS_RELEASE_LOG_RES | 260 XFS_TRANS_ABORT); 261 goto out_unlock; 262 } 263 264 ASSERT(ip->i_d.di_nextents == 0); 265 266 xfs_trans_ichgtime(tp, ip, XFS_ICHGTIME_MOD | XFS_ICHGTIME_CHG); 267 error = xfs_trans_commit(tp, XFS_TRANS_RELEASE_LOG_RES); 268 269 out_unlock: 270 xfs_iunlock(ip, XFS_ILOCK_EXCL | XFS_IOLOCK_EXCL); 271 out_put: 272 IRELE(ip); 273 return error; 274 } 275 276 int 277 xfs_qm_scall_trunc_qfiles( 278 xfs_mount_t *mp, 279 uint flags) 280 { 281 int error = -EINVAL; 282 283 if (!xfs_sb_version_hasquota(&mp->m_sb) || flags == 0 || 284 (flags & ~XFS_DQ_ALLTYPES)) { 285 xfs_debug(mp, "%s: flags=%x m_qflags=%x", 286 __func__, flags, mp->m_qflags); 287 return -EINVAL; 288 } 289 290 if (flags & XFS_DQ_USER) { 291 error = xfs_qm_scall_trunc_qfile(mp, mp->m_sb.sb_uquotino); 292 if (error) 293 return error; 294 } 295 if (flags & XFS_DQ_GROUP) { 296 error = xfs_qm_scall_trunc_qfile(mp, mp->m_sb.sb_gquotino); 297 if (error) 298 return error; 299 } 300 if (flags & XFS_DQ_PROJ) 301 error = xfs_qm_scall_trunc_qfile(mp, mp->m_sb.sb_pquotino); 302 303 return error; 304 } 305 306 /* 307 * Switch on (a given) quota enforcement for a filesystem. This takes 308 * effect immediately. 309 * (Switching on quota accounting must be done at mount time.) 310 */ 311 int 312 xfs_qm_scall_quotaon( 313 xfs_mount_t *mp, 314 uint flags) 315 { 316 int error; 317 uint qf; 318 __int64_t sbflags; 319 320 flags &= (XFS_ALL_QUOTA_ACCT | XFS_ALL_QUOTA_ENFD); 321 /* 322 * Switching on quota accounting must be done at mount time. 323 */ 324 flags &= ~(XFS_ALL_QUOTA_ACCT); 325 326 sbflags = 0; 327 328 if (flags == 0) { 329 xfs_debug(mp, "%s: zero flags, m_qflags=%x", 330 __func__, mp->m_qflags); 331 return -EINVAL; 332 } 333 334 /* No fs can turn on quotas with a delayed effect */ 335 ASSERT((flags & XFS_ALL_QUOTA_ACCT) == 0); 336 337 /* 338 * Can't enforce without accounting. We check the superblock 339 * qflags here instead of m_qflags because rootfs can have 340 * quota acct on ondisk without m_qflags' knowing. 341 */ 342 if (((flags & XFS_UQUOTA_ACCT) == 0 && 343 (mp->m_sb.sb_qflags & XFS_UQUOTA_ACCT) == 0 && 344 (flags & XFS_UQUOTA_ENFD)) || 345 ((flags & XFS_GQUOTA_ACCT) == 0 && 346 (mp->m_sb.sb_qflags & XFS_GQUOTA_ACCT) == 0 && 347 (flags & XFS_GQUOTA_ENFD)) || 348 ((flags & XFS_PQUOTA_ACCT) == 0 && 349 (mp->m_sb.sb_qflags & XFS_PQUOTA_ACCT) == 0 && 350 (flags & XFS_PQUOTA_ENFD))) { 351 xfs_debug(mp, 352 "%s: Can't enforce without acct, flags=%x sbflags=%x", 353 __func__, flags, mp->m_sb.sb_qflags); 354 return -EINVAL; 355 } 356 /* 357 * If everything's up to-date incore, then don't waste time. 358 */ 359 if ((mp->m_qflags & flags) == flags) 360 return -EEXIST; 361 362 /* 363 * Change sb_qflags on disk but not incore mp->qflags 364 * if this is the root filesystem. 365 */ 366 spin_lock(&mp->m_sb_lock); 367 qf = mp->m_sb.sb_qflags; 368 mp->m_sb.sb_qflags = qf | flags; 369 spin_unlock(&mp->m_sb_lock); 370 371 /* 372 * There's nothing to change if it's the same. 373 */ 374 if ((qf & flags) == flags && sbflags == 0) 375 return -EEXIST; 376 sbflags |= XFS_SB_QFLAGS; 377 378 if ((error = xfs_qm_write_sb_changes(mp, sbflags))) 379 return error; 380 /* 381 * If we aren't trying to switch on quota enforcement, we are done. 382 */ 383 if (((mp->m_sb.sb_qflags & XFS_UQUOTA_ACCT) != 384 (mp->m_qflags & XFS_UQUOTA_ACCT)) || 385 ((mp->m_sb.sb_qflags & XFS_PQUOTA_ACCT) != 386 (mp->m_qflags & XFS_PQUOTA_ACCT)) || 387 ((mp->m_sb.sb_qflags & XFS_GQUOTA_ACCT) != 388 (mp->m_qflags & XFS_GQUOTA_ACCT)) || 389 (flags & XFS_ALL_QUOTA_ENFD) == 0) 390 return 0; 391 392 if (! XFS_IS_QUOTA_RUNNING(mp)) 393 return -ESRCH; 394 395 /* 396 * Switch on quota enforcement in core. 397 */ 398 mutex_lock(&mp->m_quotainfo->qi_quotaofflock); 399 mp->m_qflags |= (flags & XFS_ALL_QUOTA_ENFD); 400 mutex_unlock(&mp->m_quotainfo->qi_quotaofflock); 401 402 return 0; 403 } 404 405 406 /* 407 * Return quota status information, such as uquota-off, enforcements, etc. 408 * for Q_XGETQSTAT command. 409 */ 410 int 411 xfs_qm_scall_getqstat( 412 struct xfs_mount *mp, 413 struct fs_quota_stat *out) 414 { 415 struct xfs_quotainfo *q = mp->m_quotainfo; 416 struct xfs_inode *uip = NULL; 417 struct xfs_inode *gip = NULL; 418 struct xfs_inode *pip = NULL; 419 bool tempuqip = false; 420 bool tempgqip = false; 421 bool temppqip = false; 422 423 memset(out, 0, sizeof(fs_quota_stat_t)); 424 425 out->qs_version = FS_QSTAT_VERSION; 426 if (!xfs_sb_version_hasquota(&mp->m_sb)) { 427 out->qs_uquota.qfs_ino = NULLFSINO; 428 out->qs_gquota.qfs_ino = NULLFSINO; 429 return 0; 430 } 431 432 out->qs_flags = (__uint16_t) xfs_qm_export_flags(mp->m_qflags & 433 (XFS_ALL_QUOTA_ACCT| 434 XFS_ALL_QUOTA_ENFD)); 435 if (q) { 436 uip = q->qi_uquotaip; 437 gip = q->qi_gquotaip; 438 pip = q->qi_pquotaip; 439 } 440 if (!uip && mp->m_sb.sb_uquotino != NULLFSINO) { 441 if (xfs_iget(mp, NULL, mp->m_sb.sb_uquotino, 442 0, 0, &uip) == 0) 443 tempuqip = true; 444 } 445 if (!gip && mp->m_sb.sb_gquotino != NULLFSINO) { 446 if (xfs_iget(mp, NULL, mp->m_sb.sb_gquotino, 447 0, 0, &gip) == 0) 448 tempgqip = true; 449 } 450 /* 451 * Q_XGETQSTAT doesn't have room for both group and project quotas. 452 * So, allow the project quota values to be copied out only if 453 * there is no group quota information available. 454 */ 455 if (!gip) { 456 if (!pip && mp->m_sb.sb_pquotino != NULLFSINO) { 457 if (xfs_iget(mp, NULL, mp->m_sb.sb_pquotino, 458 0, 0, &pip) == 0) 459 temppqip = true; 460 } 461 } else 462 pip = NULL; 463 if (uip) { 464 out->qs_uquota.qfs_ino = mp->m_sb.sb_uquotino; 465 out->qs_uquota.qfs_nblks = uip->i_d.di_nblocks; 466 out->qs_uquota.qfs_nextents = uip->i_d.di_nextents; 467 if (tempuqip) 468 IRELE(uip); 469 } 470 471 if (gip) { 472 out->qs_gquota.qfs_ino = mp->m_sb.sb_gquotino; 473 out->qs_gquota.qfs_nblks = gip->i_d.di_nblocks; 474 out->qs_gquota.qfs_nextents = gip->i_d.di_nextents; 475 if (tempgqip) 476 IRELE(gip); 477 } 478 if (pip) { 479 out->qs_gquota.qfs_ino = mp->m_sb.sb_gquotino; 480 out->qs_gquota.qfs_nblks = pip->i_d.di_nblocks; 481 out->qs_gquota.qfs_nextents = pip->i_d.di_nextents; 482 if (temppqip) 483 IRELE(pip); 484 } 485 if (q) { 486 out->qs_incoredqs = q->qi_dquots; 487 out->qs_btimelimit = q->qi_btimelimit; 488 out->qs_itimelimit = q->qi_itimelimit; 489 out->qs_rtbtimelimit = q->qi_rtbtimelimit; 490 out->qs_bwarnlimit = q->qi_bwarnlimit; 491 out->qs_iwarnlimit = q->qi_iwarnlimit; 492 } 493 return 0; 494 } 495 496 /* 497 * Return quota status information, such as uquota-off, enforcements, etc. 498 * for Q_XGETQSTATV command, to support separate project quota field. 499 */ 500 int 501 xfs_qm_scall_getqstatv( 502 struct xfs_mount *mp, 503 struct fs_quota_statv *out) 504 { 505 struct xfs_quotainfo *q = mp->m_quotainfo; 506 struct xfs_inode *uip = NULL; 507 struct xfs_inode *gip = NULL; 508 struct xfs_inode *pip = NULL; 509 bool tempuqip = false; 510 bool tempgqip = false; 511 bool temppqip = false; 512 513 if (!xfs_sb_version_hasquota(&mp->m_sb)) { 514 out->qs_uquota.qfs_ino = NULLFSINO; 515 out->qs_gquota.qfs_ino = NULLFSINO; 516 out->qs_pquota.qfs_ino = NULLFSINO; 517 return 0; 518 } 519 520 out->qs_flags = (__uint16_t) xfs_qm_export_flags(mp->m_qflags & 521 (XFS_ALL_QUOTA_ACCT| 522 XFS_ALL_QUOTA_ENFD)); 523 out->qs_uquota.qfs_ino = mp->m_sb.sb_uquotino; 524 out->qs_gquota.qfs_ino = mp->m_sb.sb_gquotino; 525 out->qs_pquota.qfs_ino = mp->m_sb.sb_pquotino; 526 527 if (q) { 528 uip = q->qi_uquotaip; 529 gip = q->qi_gquotaip; 530 pip = q->qi_pquotaip; 531 } 532 if (!uip && mp->m_sb.sb_uquotino != NULLFSINO) { 533 if (xfs_iget(mp, NULL, mp->m_sb.sb_uquotino, 534 0, 0, &uip) == 0) 535 tempuqip = true; 536 } 537 if (!gip && mp->m_sb.sb_gquotino != NULLFSINO) { 538 if (xfs_iget(mp, NULL, mp->m_sb.sb_gquotino, 539 0, 0, &gip) == 0) 540 tempgqip = true; 541 } 542 if (!pip && mp->m_sb.sb_pquotino != NULLFSINO) { 543 if (xfs_iget(mp, NULL, mp->m_sb.sb_pquotino, 544 0, 0, &pip) == 0) 545 temppqip = true; 546 } 547 if (uip) { 548 out->qs_uquota.qfs_nblks = uip->i_d.di_nblocks; 549 out->qs_uquota.qfs_nextents = uip->i_d.di_nextents; 550 if (tempuqip) 551 IRELE(uip); 552 } 553 554 if (gip) { 555 out->qs_gquota.qfs_nblks = gip->i_d.di_nblocks; 556 out->qs_gquota.qfs_nextents = gip->i_d.di_nextents; 557 if (tempgqip) 558 IRELE(gip); 559 } 560 if (pip) { 561 out->qs_pquota.qfs_nblks = pip->i_d.di_nblocks; 562 out->qs_pquota.qfs_nextents = pip->i_d.di_nextents; 563 if (temppqip) 564 IRELE(pip); 565 } 566 if (q) { 567 out->qs_incoredqs = q->qi_dquots; 568 out->qs_btimelimit = q->qi_btimelimit; 569 out->qs_itimelimit = q->qi_itimelimit; 570 out->qs_rtbtimelimit = q->qi_rtbtimelimit; 571 out->qs_bwarnlimit = q->qi_bwarnlimit; 572 out->qs_iwarnlimit = q->qi_iwarnlimit; 573 } 574 return 0; 575 } 576 577 #define XFS_DQ_MASK \ 578 (FS_DQ_LIMIT_MASK | FS_DQ_TIMER_MASK | FS_DQ_WARNS_MASK) 579 580 /* 581 * Adjust quota limits, and start/stop timers accordingly. 582 */ 583 int 584 xfs_qm_scall_setqlim( 585 struct xfs_mount *mp, 586 xfs_dqid_t id, 587 uint type, 588 fs_disk_quota_t *newlim) 589 { 590 struct xfs_quotainfo *q = mp->m_quotainfo; 591 struct xfs_disk_dquot *ddq; 592 struct xfs_dquot *dqp; 593 struct xfs_trans *tp; 594 int error; 595 xfs_qcnt_t hard, soft; 596 597 if (newlim->d_fieldmask & ~XFS_DQ_MASK) 598 return -EINVAL; 599 if ((newlim->d_fieldmask & XFS_DQ_MASK) == 0) 600 return 0; 601 602 /* 603 * We don't want to race with a quotaoff so take the quotaoff lock. 604 * We don't hold an inode lock, so there's nothing else to stop 605 * a quotaoff from happening. 606 */ 607 mutex_lock(&q->qi_quotaofflock); 608 609 /* 610 * Get the dquot (locked) before we start, as we need to do a 611 * transaction to allocate it if it doesn't exist. Once we have the 612 * dquot, unlock it so we can start the next transaction safely. We hold 613 * a reference to the dquot, so it's safe to do this unlock/lock without 614 * it being reclaimed in the mean time. 615 */ 616 error = xfs_qm_dqget(mp, NULL, id, type, XFS_QMOPT_DQALLOC, &dqp); 617 if (error) { 618 ASSERT(error != -ENOENT); 619 goto out_unlock; 620 } 621 xfs_dqunlock(dqp); 622 623 tp = xfs_trans_alloc(mp, XFS_TRANS_QM_SETQLIM); 624 error = xfs_trans_reserve(tp, &M_RES(mp)->tr_qm_setqlim, 0, 0); 625 if (error) { 626 xfs_trans_cancel(tp, 0); 627 goto out_rele; 628 } 629 630 xfs_dqlock(dqp); 631 xfs_trans_dqjoin(tp, dqp); 632 ddq = &dqp->q_core; 633 634 /* 635 * Make sure that hardlimits are >= soft limits before changing. 636 */ 637 hard = (newlim->d_fieldmask & FS_DQ_BHARD) ? 638 (xfs_qcnt_t) XFS_BB_TO_FSB(mp, newlim->d_blk_hardlimit) : 639 be64_to_cpu(ddq->d_blk_hardlimit); 640 soft = (newlim->d_fieldmask & FS_DQ_BSOFT) ? 641 (xfs_qcnt_t) XFS_BB_TO_FSB(mp, newlim->d_blk_softlimit) : 642 be64_to_cpu(ddq->d_blk_softlimit); 643 if (hard == 0 || hard >= soft) { 644 ddq->d_blk_hardlimit = cpu_to_be64(hard); 645 ddq->d_blk_softlimit = cpu_to_be64(soft); 646 xfs_dquot_set_prealloc_limits(dqp); 647 if (id == 0) { 648 q->qi_bhardlimit = hard; 649 q->qi_bsoftlimit = soft; 650 } 651 } else { 652 xfs_debug(mp, "blkhard %Ld < blksoft %Ld", hard, soft); 653 } 654 hard = (newlim->d_fieldmask & FS_DQ_RTBHARD) ? 655 (xfs_qcnt_t) XFS_BB_TO_FSB(mp, newlim->d_rtb_hardlimit) : 656 be64_to_cpu(ddq->d_rtb_hardlimit); 657 soft = (newlim->d_fieldmask & FS_DQ_RTBSOFT) ? 658 (xfs_qcnt_t) XFS_BB_TO_FSB(mp, newlim->d_rtb_softlimit) : 659 be64_to_cpu(ddq->d_rtb_softlimit); 660 if (hard == 0 || hard >= soft) { 661 ddq->d_rtb_hardlimit = cpu_to_be64(hard); 662 ddq->d_rtb_softlimit = cpu_to_be64(soft); 663 if (id == 0) { 664 q->qi_rtbhardlimit = hard; 665 q->qi_rtbsoftlimit = soft; 666 } 667 } else { 668 xfs_debug(mp, "rtbhard %Ld < rtbsoft %Ld", hard, soft); 669 } 670 671 hard = (newlim->d_fieldmask & FS_DQ_IHARD) ? 672 (xfs_qcnt_t) newlim->d_ino_hardlimit : 673 be64_to_cpu(ddq->d_ino_hardlimit); 674 soft = (newlim->d_fieldmask & FS_DQ_ISOFT) ? 675 (xfs_qcnt_t) newlim->d_ino_softlimit : 676 be64_to_cpu(ddq->d_ino_softlimit); 677 if (hard == 0 || hard >= soft) { 678 ddq->d_ino_hardlimit = cpu_to_be64(hard); 679 ddq->d_ino_softlimit = cpu_to_be64(soft); 680 if (id == 0) { 681 q->qi_ihardlimit = hard; 682 q->qi_isoftlimit = soft; 683 } 684 } else { 685 xfs_debug(mp, "ihard %Ld < isoft %Ld", hard, soft); 686 } 687 688 /* 689 * Update warnings counter(s) if requested 690 */ 691 if (newlim->d_fieldmask & FS_DQ_BWARNS) 692 ddq->d_bwarns = cpu_to_be16(newlim->d_bwarns); 693 if (newlim->d_fieldmask & FS_DQ_IWARNS) 694 ddq->d_iwarns = cpu_to_be16(newlim->d_iwarns); 695 if (newlim->d_fieldmask & FS_DQ_RTBWARNS) 696 ddq->d_rtbwarns = cpu_to_be16(newlim->d_rtbwarns); 697 698 if (id == 0) { 699 /* 700 * Timelimits for the super user set the relative time 701 * the other users can be over quota for this file system. 702 * If it is zero a default is used. Ditto for the default 703 * soft and hard limit values (already done, above), and 704 * for warnings. 705 */ 706 if (newlim->d_fieldmask & FS_DQ_BTIMER) { 707 q->qi_btimelimit = newlim->d_btimer; 708 ddq->d_btimer = cpu_to_be32(newlim->d_btimer); 709 } 710 if (newlim->d_fieldmask & FS_DQ_ITIMER) { 711 q->qi_itimelimit = newlim->d_itimer; 712 ddq->d_itimer = cpu_to_be32(newlim->d_itimer); 713 } 714 if (newlim->d_fieldmask & FS_DQ_RTBTIMER) { 715 q->qi_rtbtimelimit = newlim->d_rtbtimer; 716 ddq->d_rtbtimer = cpu_to_be32(newlim->d_rtbtimer); 717 } 718 if (newlim->d_fieldmask & FS_DQ_BWARNS) 719 q->qi_bwarnlimit = newlim->d_bwarns; 720 if (newlim->d_fieldmask & FS_DQ_IWARNS) 721 q->qi_iwarnlimit = newlim->d_iwarns; 722 if (newlim->d_fieldmask & FS_DQ_RTBWARNS) 723 q->qi_rtbwarnlimit = newlim->d_rtbwarns; 724 } else { 725 /* 726 * If the user is now over quota, start the timelimit. 727 * The user will not be 'warned'. 728 * Note that we keep the timers ticking, whether enforcement 729 * is on or off. We don't really want to bother with iterating 730 * over all ondisk dquots and turning the timers on/off. 731 */ 732 xfs_qm_adjust_dqtimers(mp, ddq); 733 } 734 dqp->dq_flags |= XFS_DQ_DIRTY; 735 xfs_trans_log_dquot(tp, dqp); 736 737 error = xfs_trans_commit(tp, 0); 738 739 out_rele: 740 xfs_qm_dqrele(dqp); 741 out_unlock: 742 mutex_unlock(&q->qi_quotaofflock); 743 return error; 744 } 745 746 STATIC int 747 xfs_qm_log_quotaoff_end( 748 xfs_mount_t *mp, 749 xfs_qoff_logitem_t *startqoff, 750 uint flags) 751 { 752 xfs_trans_t *tp; 753 int error; 754 xfs_qoff_logitem_t *qoffi; 755 756 tp = xfs_trans_alloc(mp, XFS_TRANS_QM_QUOTAOFF_END); 757 758 error = xfs_trans_reserve(tp, &M_RES(mp)->tr_qm_equotaoff, 0, 0); 759 if (error) { 760 xfs_trans_cancel(tp, 0); 761 return error; 762 } 763 764 qoffi = xfs_trans_get_qoff_item(tp, startqoff, 765 flags & XFS_ALL_QUOTA_ACCT); 766 xfs_trans_log_quotaoff_item(tp, qoffi); 767 768 /* 769 * We have to make sure that the transaction is secure on disk before we 770 * return and actually stop quota accounting. So, make it synchronous. 771 * We don't care about quotoff's performance. 772 */ 773 xfs_trans_set_sync(tp); 774 error = xfs_trans_commit(tp, 0); 775 return error; 776 } 777 778 779 STATIC int 780 xfs_qm_log_quotaoff( 781 xfs_mount_t *mp, 782 xfs_qoff_logitem_t **qoffstartp, 783 uint flags) 784 { 785 xfs_trans_t *tp; 786 int error; 787 xfs_qoff_logitem_t *qoffi=NULL; 788 uint oldsbqflag=0; 789 790 tp = xfs_trans_alloc(mp, XFS_TRANS_QM_QUOTAOFF); 791 error = xfs_trans_reserve(tp, &M_RES(mp)->tr_qm_quotaoff, 0, 0); 792 if (error) 793 goto error0; 794 795 qoffi = xfs_trans_get_qoff_item(tp, NULL, flags & XFS_ALL_QUOTA_ACCT); 796 xfs_trans_log_quotaoff_item(tp, qoffi); 797 798 spin_lock(&mp->m_sb_lock); 799 oldsbqflag = mp->m_sb.sb_qflags; 800 mp->m_sb.sb_qflags = (mp->m_qflags & ~(flags)) & XFS_MOUNT_QUOTA_ALL; 801 spin_unlock(&mp->m_sb_lock); 802 803 xfs_mod_sb(tp, XFS_SB_QFLAGS); 804 805 /* 806 * We have to make sure that the transaction is secure on disk before we 807 * return and actually stop quota accounting. So, make it synchronous. 808 * We don't care about quotoff's performance. 809 */ 810 xfs_trans_set_sync(tp); 811 error = xfs_trans_commit(tp, 0); 812 813 error0: 814 if (error) { 815 xfs_trans_cancel(tp, 0); 816 /* 817 * No one else is modifying sb_qflags, so this is OK. 818 * We still hold the quotaofflock. 819 */ 820 spin_lock(&mp->m_sb_lock); 821 mp->m_sb.sb_qflags = oldsbqflag; 822 spin_unlock(&mp->m_sb_lock); 823 } 824 *qoffstartp = qoffi; 825 return error; 826 } 827 828 829 int 830 xfs_qm_scall_getquota( 831 struct xfs_mount *mp, 832 xfs_dqid_t id, 833 uint type, 834 struct fs_disk_quota *dst) 835 { 836 struct xfs_dquot *dqp; 837 int error; 838 839 /* 840 * Try to get the dquot. We don't want it allocated on disk, so 841 * we aren't passing the XFS_QMOPT_DOALLOC flag. If it doesn't 842 * exist, we'll get ENOENT back. 843 */ 844 error = xfs_qm_dqget(mp, NULL, id, type, 0, &dqp); 845 if (error) 846 return error; 847 848 /* 849 * If everything's NULL, this dquot doesn't quite exist as far as 850 * our utility programs are concerned. 851 */ 852 if (XFS_IS_DQUOT_UNINITIALIZED(dqp)) { 853 error = -ENOENT; 854 goto out_put; 855 } 856 857 memset(dst, 0, sizeof(*dst)); 858 dst->d_version = FS_DQUOT_VERSION; 859 dst->d_flags = xfs_qm_export_qtype_flags(dqp->q_core.d_flags); 860 dst->d_id = be32_to_cpu(dqp->q_core.d_id); 861 dst->d_blk_hardlimit = 862 XFS_FSB_TO_BB(mp, be64_to_cpu(dqp->q_core.d_blk_hardlimit)); 863 dst->d_blk_softlimit = 864 XFS_FSB_TO_BB(mp, be64_to_cpu(dqp->q_core.d_blk_softlimit)); 865 dst->d_ino_hardlimit = be64_to_cpu(dqp->q_core.d_ino_hardlimit); 866 dst->d_ino_softlimit = be64_to_cpu(dqp->q_core.d_ino_softlimit); 867 dst->d_bcount = XFS_FSB_TO_BB(mp, dqp->q_res_bcount); 868 dst->d_icount = dqp->q_res_icount; 869 dst->d_btimer = be32_to_cpu(dqp->q_core.d_btimer); 870 dst->d_itimer = be32_to_cpu(dqp->q_core.d_itimer); 871 dst->d_iwarns = be16_to_cpu(dqp->q_core.d_iwarns); 872 dst->d_bwarns = be16_to_cpu(dqp->q_core.d_bwarns); 873 dst->d_rtb_hardlimit = 874 XFS_FSB_TO_BB(mp, be64_to_cpu(dqp->q_core.d_rtb_hardlimit)); 875 dst->d_rtb_softlimit = 876 XFS_FSB_TO_BB(mp, be64_to_cpu(dqp->q_core.d_rtb_softlimit)); 877 dst->d_rtbcount = XFS_FSB_TO_BB(mp, dqp->q_res_rtbcount); 878 dst->d_rtbtimer = be32_to_cpu(dqp->q_core.d_rtbtimer); 879 dst->d_rtbwarns = be16_to_cpu(dqp->q_core.d_rtbwarns); 880 881 /* 882 * Internally, we don't reset all the timers when quota enforcement 883 * gets turned off. No need to confuse the user level code, 884 * so return zeroes in that case. 885 */ 886 if ((!XFS_IS_UQUOTA_ENFORCED(mp) && 887 dqp->q_core.d_flags == XFS_DQ_USER) || 888 (!XFS_IS_GQUOTA_ENFORCED(mp) && 889 dqp->q_core.d_flags == XFS_DQ_GROUP) || 890 (!XFS_IS_PQUOTA_ENFORCED(mp) && 891 dqp->q_core.d_flags == XFS_DQ_PROJ)) { 892 dst->d_btimer = 0; 893 dst->d_itimer = 0; 894 dst->d_rtbtimer = 0; 895 } 896 897 #ifdef DEBUG 898 if (((XFS_IS_UQUOTA_ENFORCED(mp) && dst->d_flags == FS_USER_QUOTA) || 899 (XFS_IS_GQUOTA_ENFORCED(mp) && dst->d_flags == FS_GROUP_QUOTA) || 900 (XFS_IS_PQUOTA_ENFORCED(mp) && dst->d_flags == FS_PROJ_QUOTA)) && 901 dst->d_id != 0) { 902 if ((dst->d_bcount > dst->d_blk_softlimit) && 903 (dst->d_blk_softlimit > 0)) { 904 ASSERT(dst->d_btimer != 0); 905 } 906 if ((dst->d_icount > dst->d_ino_softlimit) && 907 (dst->d_ino_softlimit > 0)) { 908 ASSERT(dst->d_itimer != 0); 909 } 910 } 911 #endif 912 out_put: 913 xfs_qm_dqput(dqp); 914 return error; 915 } 916 917 STATIC uint 918 xfs_qm_export_qtype_flags( 919 uint flags) 920 { 921 /* 922 * Can't be more than one, or none. 923 */ 924 ASSERT((flags & (FS_PROJ_QUOTA | FS_USER_QUOTA)) != 925 (FS_PROJ_QUOTA | FS_USER_QUOTA)); 926 ASSERT((flags & (FS_PROJ_QUOTA | FS_GROUP_QUOTA)) != 927 (FS_PROJ_QUOTA | FS_GROUP_QUOTA)); 928 ASSERT((flags & (FS_USER_QUOTA | FS_GROUP_QUOTA)) != 929 (FS_USER_QUOTA | FS_GROUP_QUOTA)); 930 ASSERT((flags & (FS_PROJ_QUOTA|FS_USER_QUOTA|FS_GROUP_QUOTA)) != 0); 931 932 return (flags & XFS_DQ_USER) ? 933 FS_USER_QUOTA : (flags & XFS_DQ_PROJ) ? 934 FS_PROJ_QUOTA : FS_GROUP_QUOTA; 935 } 936 937 STATIC uint 938 xfs_qm_export_flags( 939 uint flags) 940 { 941 uint uflags; 942 943 uflags = 0; 944 if (flags & XFS_UQUOTA_ACCT) 945 uflags |= FS_QUOTA_UDQ_ACCT; 946 if (flags & XFS_GQUOTA_ACCT) 947 uflags |= FS_QUOTA_GDQ_ACCT; 948 if (flags & XFS_PQUOTA_ACCT) 949 uflags |= FS_QUOTA_PDQ_ACCT; 950 if (flags & XFS_UQUOTA_ENFD) 951 uflags |= FS_QUOTA_UDQ_ENFD; 952 if (flags & XFS_GQUOTA_ENFD) 953 uflags |= FS_QUOTA_GDQ_ENFD; 954 if (flags & XFS_PQUOTA_ENFD) 955 uflags |= FS_QUOTA_PDQ_ENFD; 956 return uflags; 957 } 958 959 960 STATIC int 961 xfs_dqrele_inode( 962 struct xfs_inode *ip, 963 int flags, 964 void *args) 965 { 966 /* skip quota inodes */ 967 if (ip == ip->i_mount->m_quotainfo->qi_uquotaip || 968 ip == ip->i_mount->m_quotainfo->qi_gquotaip || 969 ip == ip->i_mount->m_quotainfo->qi_pquotaip) { 970 ASSERT(ip->i_udquot == NULL); 971 ASSERT(ip->i_gdquot == NULL); 972 ASSERT(ip->i_pdquot == NULL); 973 return 0; 974 } 975 976 xfs_ilock(ip, XFS_ILOCK_EXCL); 977 if ((flags & XFS_UQUOTA_ACCT) && ip->i_udquot) { 978 xfs_qm_dqrele(ip->i_udquot); 979 ip->i_udquot = NULL; 980 } 981 if ((flags & XFS_GQUOTA_ACCT) && ip->i_gdquot) { 982 xfs_qm_dqrele(ip->i_gdquot); 983 ip->i_gdquot = NULL; 984 } 985 if ((flags & XFS_PQUOTA_ACCT) && ip->i_pdquot) { 986 xfs_qm_dqrele(ip->i_pdquot); 987 ip->i_pdquot = NULL; 988 } 989 xfs_iunlock(ip, XFS_ILOCK_EXCL); 990 return 0; 991 } 992 993 994 /* 995 * Go thru all the inodes in the file system, releasing their dquots. 996 * 997 * Note that the mount structure gets modified to indicate that quotas are off 998 * AFTER this, in the case of quotaoff. 999 */ 1000 void 1001 xfs_qm_dqrele_all_inodes( 1002 struct xfs_mount *mp, 1003 uint flags) 1004 { 1005 ASSERT(mp->m_quotainfo); 1006 xfs_inode_ag_iterator(mp, xfs_dqrele_inode, flags, NULL); 1007 } 1008