1 // SPDX-License-Identifier: GPL-2.0 2 #include <linux/ceph/ceph_debug.h> 3 4 #include <linux/module.h> 5 #include <linux/fs.h> 6 #include <linux/slab.h> 7 #include <linux/string.h> 8 #include <linux/uaccess.h> 9 #include <linux/kernel.h> 10 #include <linux/writeback.h> 11 #include <linux/vmalloc.h> 12 #include <linux/xattr.h> 13 #include <linux/posix_acl.h> 14 #include <linux/random.h> 15 #include <linux/sort.h> 16 #include <linux/iversion.h> 17 #include <linux/fscrypt.h> 18 19 #include "super.h" 20 #include "mds_client.h" 21 #include "cache.h" 22 #include "crypto.h" 23 #include <linux/ceph/decode.h> 24 25 /* 26 * Ceph inode operations 27 * 28 * Implement basic inode helpers (get, alloc) and inode ops (getattr, 29 * setattr, etc.), xattr helpers, and helpers for assimilating 30 * metadata returned by the MDS into our cache. 31 * 32 * Also define helpers for doing asynchronous writeback, invalidation, 33 * and truncation for the benefit of those who can't afford to block 34 * (typically because they are in the message handler path). 35 */ 36 37 static const struct inode_operations ceph_symlink_iops; 38 static const struct inode_operations ceph_encrypted_symlink_iops; 39 40 static void ceph_inode_work(struct work_struct *work); 41 42 /* 43 * find or create an inode, given the ceph ino number 44 */ 45 static int ceph_set_ino_cb(struct inode *inode, void *data) 46 { 47 struct ceph_inode_info *ci = ceph_inode(inode); 48 struct ceph_mds_client *mdsc = ceph_sb_to_mdsc(inode->i_sb); 49 50 ci->i_vino = *(struct ceph_vino *)data; 51 inode->i_ino = ceph_vino_to_ino_t(ci->i_vino); 52 inode_set_iversion_raw(inode, 0); 53 percpu_counter_inc(&mdsc->metric.total_inodes); 54 55 return 0; 56 } 57 58 /* 59 * Check if the parent inode matches the vino from directory reply info 60 */ 61 static inline bool ceph_vino_matches_parent(struct inode *parent, 62 struct ceph_vino vino) 63 { 64 return ceph_ino(parent) == vino.ino && ceph_snap(parent) == vino.snap; 65 } 66 67 /* 68 * Validate that the directory inode referenced by @req->r_parent matches the 69 * inode number and snapshot id contained in the reply's directory record. If 70 * they do not match – which can theoretically happen if the parent dentry was 71 * moved between the time the request was issued and the reply arrived – fall 72 * back to looking up the correct inode in the inode cache. 73 * 74 * A reference is *always* returned. Callers that receive a different inode 75 * than the original @parent are responsible for dropping the extra reference 76 * once the reply has been processed. 77 */ 78 static struct inode *ceph_get_reply_dir(struct super_block *sb, 79 struct inode *parent, 80 struct ceph_mds_reply_info_parsed *rinfo) 81 { 82 struct ceph_vino vino; 83 84 if (unlikely(!rinfo->diri.in)) 85 return parent; /* nothing to compare against */ 86 87 /* If we didn't have a cached parent inode to begin with, just bail out. */ 88 if (!parent) 89 return NULL; 90 91 vino.ino = le64_to_cpu(rinfo->diri.in->ino); 92 vino.snap = le64_to_cpu(rinfo->diri.in->snapid); 93 94 if (likely(ceph_vino_matches_parent(parent, vino))) 95 return parent; /* matches – use the original reference */ 96 97 /* Mismatch – this should be rare. Emit a WARN and obtain the correct inode. */ 98 WARN_ONCE(1, "ceph: reply dir mismatch (parent valid %llx.%llx reply %llx.%llx)\n", 99 ceph_ino(parent), ceph_snap(parent), vino.ino, vino.snap); 100 101 return ceph_get_inode(sb, vino, NULL); 102 } 103 104 /** 105 * ceph_new_inode - allocate a new inode in advance of an expected create 106 * @dir: parent directory for new inode 107 * @dentry: dentry that may eventually point to new inode 108 * @mode: mode of new inode 109 * @as_ctx: pointer to inherited security context 110 * 111 * Allocate a new inode in advance of an operation to create a new inode. 112 * This allocates the inode and sets up the acl_sec_ctx with appropriate 113 * info for the new inode. 114 * 115 * Returns a pointer to the new inode or an ERR_PTR. 116 */ 117 struct inode *ceph_new_inode(struct inode *dir, struct dentry *dentry, 118 umode_t *mode, struct ceph_acl_sec_ctx *as_ctx) 119 { 120 int err; 121 struct inode *inode; 122 123 inode = new_inode(dir->i_sb); 124 if (!inode) 125 return ERR_PTR(-ENOMEM); 126 127 inode->i_blkbits = CEPH_FSCRYPT_BLOCK_SHIFT; 128 129 if (!S_ISLNK(*mode)) { 130 err = ceph_pre_init_acls(dir, mode, as_ctx); 131 if (err < 0) 132 goto out_err; 133 } 134 135 inode_state_assign_raw(inode, 0); 136 inode->i_mode = *mode; 137 138 err = ceph_security_init_secctx(dentry, *mode, as_ctx); 139 if (err < 0) 140 goto out_err; 141 142 /* 143 * We'll skip setting fscrypt context for snapshots, leaving that for 144 * the handle_reply(). 145 */ 146 if (ceph_snap(dir) != CEPH_SNAPDIR) { 147 err = ceph_fscrypt_prepare_context(dir, inode, as_ctx); 148 if (err) 149 goto out_err; 150 } 151 152 return inode; 153 out_err: 154 iput(inode); 155 return ERR_PTR(err); 156 } 157 158 void ceph_as_ctx_to_req(struct ceph_mds_request *req, 159 struct ceph_acl_sec_ctx *as_ctx) 160 { 161 if (as_ctx->pagelist) { 162 req->r_pagelist = as_ctx->pagelist; 163 as_ctx->pagelist = NULL; 164 } 165 ceph_fscrypt_as_ctx_to_req(req, as_ctx); 166 } 167 168 /** 169 * ceph_get_inode - find or create/hash a new inode 170 * @sb: superblock to search and allocate in 171 * @vino: vino to search for 172 * @newino: optional new inode to insert if one isn't found (may be NULL) 173 * 174 * Search for or insert a new inode into the hash for the given vino, and 175 * return a reference to it. If new is non-NULL, its reference is consumed. 176 */ 177 struct inode *ceph_get_inode(struct super_block *sb, struct ceph_vino vino, 178 struct inode *newino) 179 { 180 struct ceph_mds_client *mdsc = ceph_sb_to_mdsc(sb); 181 struct ceph_client *cl = mdsc->fsc->client; 182 struct inode *inode; 183 184 if (ceph_vino_is_reserved(vino)) 185 return ERR_PTR(-EREMOTEIO); 186 187 if (newino) { 188 inode = inode_insert5(newino, (unsigned long)vino.ino, 189 ceph_ino_compare, ceph_set_ino_cb, &vino); 190 if (inode != newino) 191 iput(newino); 192 } else { 193 inode = iget5_locked(sb, (unsigned long)vino.ino, 194 ceph_ino_compare, ceph_set_ino_cb, &vino); 195 } 196 197 if (!inode) { 198 doutc(cl, "no inode found for %llx.%llx\n", vino.ino, vino.snap); 199 return ERR_PTR(-ENOMEM); 200 } 201 202 doutc(cl, "on %llx=%llx.%llx got %p new %d\n", 203 ceph_present_inode(inode), ceph_vinop(inode), inode, 204 !!(inode_state_read_once(inode) & I_NEW)); 205 return inode; 206 } 207 208 /* 209 * get/construct snapdir inode for a given directory 210 */ 211 struct inode *ceph_get_snapdir(struct inode *parent) 212 { 213 struct ceph_client *cl = ceph_inode_to_client(parent); 214 struct ceph_vino vino = { 215 .ino = ceph_ino(parent), 216 .snap = CEPH_SNAPDIR, 217 }; 218 struct inode *inode = ceph_get_inode(parent->i_sb, vino, NULL); 219 struct ceph_inode_info *ci = ceph_inode(inode); 220 int ret = -ENOTDIR; 221 222 if (IS_ERR(inode)) 223 return inode; 224 225 if (!S_ISDIR(parent->i_mode)) { 226 pr_warn_once_client(cl, "bad snapdir parent type (mode=0%o)\n", 227 parent->i_mode); 228 goto err; 229 } 230 231 if (!(inode_state_read_once(inode) & I_NEW) && !S_ISDIR(inode->i_mode)) { 232 pr_warn_once_client(cl, "bad snapdir inode type (mode=0%o)\n", 233 inode->i_mode); 234 goto err; 235 } 236 237 inode->i_mode = parent->i_mode; 238 inode->i_uid = parent->i_uid; 239 inode->i_gid = parent->i_gid; 240 inode_set_mtime_to_ts(inode, inode_get_mtime(parent)); 241 inode_set_ctime_to_ts(inode, inode_get_ctime(parent)); 242 inode_set_atime_to_ts(inode, inode_get_atime(parent)); 243 ci->i_rbytes = 0; 244 ci->i_btime = ceph_inode(parent)->i_btime; 245 246 #ifdef CONFIG_FS_ENCRYPTION 247 /* if encrypted, just borrow fscrypt_auth from parent */ 248 if (IS_ENCRYPTED(parent)) { 249 struct ceph_inode_info *pci = ceph_inode(parent); 250 251 ci->fscrypt_auth = kmemdup(pci->fscrypt_auth, 252 pci->fscrypt_auth_len, 253 GFP_KERNEL); 254 if (ci->fscrypt_auth) { 255 inode->i_flags |= S_ENCRYPTED; 256 ci->fscrypt_auth_len = pci->fscrypt_auth_len; 257 } else { 258 doutc(cl, "Failed to alloc snapdir fscrypt_auth\n"); 259 ret = -ENOMEM; 260 goto err; 261 } 262 } 263 #endif 264 if (inode_state_read_once(inode) & I_NEW) { 265 inode->i_op = &ceph_snapdir_iops; 266 inode->i_fop = &ceph_snapdir_fops; 267 ci->i_snap_caps = CEPH_CAP_PIN; /* so we can open */ 268 unlock_new_inode(inode); 269 } 270 271 return inode; 272 err: 273 if ((inode_state_read_once(inode) & I_NEW)) 274 discard_new_inode(inode); 275 else 276 iput(inode); 277 return ERR_PTR(ret); 278 } 279 280 const struct inode_operations ceph_file_iops = { 281 .permission = ceph_permission, 282 .setattr = ceph_setattr, 283 .getattr = ceph_getattr, 284 .listxattr = ceph_listxattr, 285 .get_inode_acl = ceph_get_acl, 286 .set_acl = ceph_set_acl, 287 }; 288 289 290 /* 291 * We use a 'frag tree' to keep track of the MDS's directory fragments 292 * for a given inode (usually there is just a single fragment). We 293 * need to know when a child frag is delegated to a new MDS, or when 294 * it is flagged as replicated, so we can direct our requests 295 * accordingly. 296 */ 297 298 /* 299 * find/create a frag in the tree 300 */ 301 static struct ceph_inode_frag *__get_or_create_frag(struct ceph_inode_info *ci, 302 u32 f) 303 { 304 struct inode *inode = &ci->netfs.inode; 305 struct ceph_client *cl = ceph_inode_to_client(inode); 306 struct rb_node **p; 307 struct rb_node *parent = NULL; 308 struct ceph_inode_frag *frag; 309 int c; 310 311 p = &ci->i_fragtree.rb_node; 312 while (*p) { 313 parent = *p; 314 frag = rb_entry(parent, struct ceph_inode_frag, node); 315 c = ceph_frag_compare(f, frag->frag); 316 if (c < 0) 317 p = &(*p)->rb_left; 318 else if (c > 0) 319 p = &(*p)->rb_right; 320 else 321 return frag; 322 } 323 324 frag = kmalloc_obj(*frag, GFP_NOFS); 325 if (!frag) 326 return ERR_PTR(-ENOMEM); 327 328 frag->frag = f; 329 frag->split_by = 0; 330 frag->mds = -1; 331 frag->ndist = 0; 332 333 rb_link_node(&frag->node, parent, p); 334 rb_insert_color(&frag->node, &ci->i_fragtree); 335 336 doutc(cl, "added %p %llx.%llx frag %x\n", inode, ceph_vinop(inode), f); 337 return frag; 338 } 339 340 /* 341 * find a specific frag @f 342 */ 343 struct ceph_inode_frag *__ceph_find_frag(struct ceph_inode_info *ci, u32 f) 344 { 345 struct rb_node *n = ci->i_fragtree.rb_node; 346 347 while (n) { 348 struct ceph_inode_frag *frag = 349 rb_entry(n, struct ceph_inode_frag, node); 350 int c = ceph_frag_compare(f, frag->frag); 351 if (c < 0) 352 n = n->rb_left; 353 else if (c > 0) 354 n = n->rb_right; 355 else 356 return frag; 357 } 358 return NULL; 359 } 360 361 /* 362 * Choose frag containing the given value @v. If @pfrag is 363 * specified, copy the frag delegation info to the caller if 364 * it is present. 365 */ 366 static u32 __ceph_choose_frag(struct ceph_inode_info *ci, u32 v, 367 struct ceph_inode_frag *pfrag, int *found) 368 { 369 struct ceph_client *cl = ceph_inode_to_client(&ci->netfs.inode); 370 u32 t = ceph_frag_make(0, 0); 371 struct ceph_inode_frag *frag; 372 unsigned nway, i; 373 u32 n; 374 375 if (found) 376 *found = 0; 377 378 while (1) { 379 WARN_ON(!ceph_frag_contains_value(t, v)); 380 frag = __ceph_find_frag(ci, t); 381 if (!frag) 382 break; /* t is a leaf */ 383 if (frag->split_by == 0) { 384 if (pfrag) 385 memcpy(pfrag, frag, sizeof(*pfrag)); 386 if (found) 387 *found = 1; 388 break; 389 } 390 391 /* choose child */ 392 nway = 1 << frag->split_by; 393 doutc(cl, "frag(%x) %x splits by %d (%d ways)\n", v, t, 394 frag->split_by, nway); 395 for (i = 0; i < nway; i++) { 396 n = ceph_frag_make_child(t, frag->split_by, i); 397 if (ceph_frag_contains_value(n, v)) { 398 t = n; 399 break; 400 } 401 } 402 BUG_ON(i == nway); 403 } 404 doutc(cl, "frag(%x) = %x\n", v, t); 405 406 return t; 407 } 408 409 u32 ceph_choose_frag(struct ceph_inode_info *ci, u32 v, 410 struct ceph_inode_frag *pfrag, int *found) 411 { 412 u32 ret; 413 mutex_lock(&ci->i_fragtree_mutex); 414 ret = __ceph_choose_frag(ci, v, pfrag, found); 415 mutex_unlock(&ci->i_fragtree_mutex); 416 return ret; 417 } 418 419 /* 420 * Process dirfrag (delegation) info from the mds. Include leaf 421 * fragment in tree ONLY if ndist > 0. Otherwise, only 422 * branches/splits are included in i_fragtree) 423 */ 424 static int ceph_fill_dirfrag(struct inode *inode, 425 struct ceph_mds_reply_dirfrag *dirinfo) 426 { 427 struct ceph_inode_info *ci = ceph_inode(inode); 428 struct ceph_client *cl = ceph_inode_to_client(inode); 429 struct ceph_inode_frag *frag; 430 u32 id = le32_to_cpu(dirinfo->frag); 431 int mds = le32_to_cpu(dirinfo->auth); 432 int ndist = le32_to_cpu(dirinfo->ndist); 433 int diri_auth = -1; 434 int i; 435 int err = 0; 436 437 spin_lock(&ci->i_ceph_lock); 438 if (ci->i_auth_cap) 439 diri_auth = ci->i_auth_cap->mds; 440 spin_unlock(&ci->i_ceph_lock); 441 442 if (mds == -1) /* CDIR_AUTH_PARENT */ 443 mds = diri_auth; 444 445 mutex_lock(&ci->i_fragtree_mutex); 446 if (ndist == 0 && mds == diri_auth) { 447 /* no delegation info needed. */ 448 frag = __ceph_find_frag(ci, id); 449 if (!frag) 450 goto out; 451 if (frag->split_by == 0) { 452 /* tree leaf, remove */ 453 doutc(cl, "removed %p %llx.%llx frag %x (no ref)\n", 454 inode, ceph_vinop(inode), id); 455 rb_erase(&frag->node, &ci->i_fragtree); 456 kfree(frag); 457 } else { 458 /* tree branch, keep and clear */ 459 doutc(cl, "cleared %p %llx.%llx frag %x referral\n", 460 inode, ceph_vinop(inode), id); 461 frag->mds = -1; 462 frag->ndist = 0; 463 } 464 goto out; 465 } 466 467 468 /* find/add this frag to store mds delegation info */ 469 frag = __get_or_create_frag(ci, id); 470 if (IS_ERR(frag)) { 471 /* this is not the end of the world; we can continue 472 with bad/inaccurate delegation info */ 473 pr_err_client(cl, "ENOMEM on mds ref %p %llx.%llx fg %x\n", 474 inode, ceph_vinop(inode), 475 le32_to_cpu(dirinfo->frag)); 476 err = -ENOMEM; 477 goto out; 478 } 479 480 frag->mds = mds; 481 frag->ndist = min_t(u32, ndist, CEPH_MAX_DIRFRAG_REP); 482 for (i = 0; i < frag->ndist; i++) 483 frag->dist[i] = le32_to_cpu(dirinfo->dist[i]); 484 doutc(cl, "%p %llx.%llx frag %x ndist=%d\n", inode, 485 ceph_vinop(inode), frag->frag, frag->ndist); 486 487 out: 488 mutex_unlock(&ci->i_fragtree_mutex); 489 return err; 490 } 491 492 static int frag_tree_split_cmp(const void *l, const void *r) 493 { 494 struct ceph_frag_tree_split *ls = (struct ceph_frag_tree_split*)l; 495 struct ceph_frag_tree_split *rs = (struct ceph_frag_tree_split*)r; 496 return ceph_frag_compare(le32_to_cpu(ls->frag), 497 le32_to_cpu(rs->frag)); 498 } 499 500 static bool is_frag_child(u32 f, struct ceph_inode_frag *frag) 501 { 502 if (!frag) 503 return f == ceph_frag_make(0, 0); 504 if (ceph_frag_bits(f) != ceph_frag_bits(frag->frag) + frag->split_by) 505 return false; 506 return ceph_frag_contains_value(frag->frag, ceph_frag_value(f)); 507 } 508 509 static int ceph_fill_fragtree(struct inode *inode, 510 struct ceph_frag_tree_head *fragtree, 511 struct ceph_mds_reply_dirfrag *dirinfo) 512 { 513 struct ceph_client *cl = ceph_inode_to_client(inode); 514 struct ceph_inode_info *ci = ceph_inode(inode); 515 struct ceph_inode_frag *frag, *prev_frag = NULL; 516 struct rb_node *rb_node; 517 unsigned i, split_by, nsplits; 518 u32 id; 519 bool update = false; 520 521 mutex_lock(&ci->i_fragtree_mutex); 522 nsplits = le32_to_cpu(fragtree->nsplits); 523 if (nsplits != ci->i_fragtree_nsplits) { 524 update = true; 525 } else if (nsplits) { 526 i = get_random_u32_below(nsplits); 527 id = le32_to_cpu(fragtree->splits[i].frag); 528 if (!__ceph_find_frag(ci, id)) 529 update = true; 530 } else if (!RB_EMPTY_ROOT(&ci->i_fragtree)) { 531 rb_node = rb_first(&ci->i_fragtree); 532 frag = rb_entry(rb_node, struct ceph_inode_frag, node); 533 if (frag->frag != ceph_frag_make(0, 0) || rb_next(rb_node)) 534 update = true; 535 } 536 if (!update && dirinfo) { 537 id = le32_to_cpu(dirinfo->frag); 538 if (id != __ceph_choose_frag(ci, id, NULL, NULL)) 539 update = true; 540 } 541 if (!update) 542 goto out_unlock; 543 544 if (nsplits > 1) { 545 sort(fragtree->splits, nsplits, sizeof(fragtree->splits[0]), 546 frag_tree_split_cmp, NULL); 547 } 548 549 doutc(cl, "%p %llx.%llx\n", inode, ceph_vinop(inode)); 550 rb_node = rb_first(&ci->i_fragtree); 551 for (i = 0; i < nsplits; i++) { 552 id = le32_to_cpu(fragtree->splits[i].frag); 553 split_by = le32_to_cpu(fragtree->splits[i].by); 554 if (split_by == 0 || ceph_frag_bits(id) + split_by > 24) { 555 pr_err_client(cl, "%p %llx.%llx invalid split %d/%u, " 556 "frag %x split by %d\n", inode, 557 ceph_vinop(inode), i, nsplits, id, split_by); 558 continue; 559 } 560 frag = NULL; 561 while (rb_node) { 562 frag = rb_entry(rb_node, struct ceph_inode_frag, node); 563 if (ceph_frag_compare(frag->frag, id) >= 0) { 564 if (frag->frag != id) 565 frag = NULL; 566 else 567 rb_node = rb_next(rb_node); 568 break; 569 } 570 rb_node = rb_next(rb_node); 571 /* delete stale split/leaf node */ 572 if (frag->split_by > 0 || 573 !is_frag_child(frag->frag, prev_frag)) { 574 rb_erase(&frag->node, &ci->i_fragtree); 575 if (frag->split_by > 0) 576 ci->i_fragtree_nsplits--; 577 kfree(frag); 578 } 579 frag = NULL; 580 } 581 if (!frag) { 582 frag = __get_or_create_frag(ci, id); 583 if (IS_ERR(frag)) 584 continue; 585 } 586 if (frag->split_by == 0) 587 ci->i_fragtree_nsplits++; 588 frag->split_by = split_by; 589 doutc(cl, " frag %x split by %d\n", frag->frag, frag->split_by); 590 prev_frag = frag; 591 } 592 while (rb_node) { 593 frag = rb_entry(rb_node, struct ceph_inode_frag, node); 594 rb_node = rb_next(rb_node); 595 /* delete stale split/leaf node */ 596 if (frag->split_by > 0 || 597 !is_frag_child(frag->frag, prev_frag)) { 598 rb_erase(&frag->node, &ci->i_fragtree); 599 if (frag->split_by > 0) 600 ci->i_fragtree_nsplits--; 601 kfree(frag); 602 } 603 } 604 out_unlock: 605 mutex_unlock(&ci->i_fragtree_mutex); 606 return 0; 607 } 608 609 /* 610 * initialize a newly allocated inode. 611 */ 612 struct inode *ceph_alloc_inode(struct super_block *sb) 613 { 614 struct ceph_fs_client *fsc = ceph_sb_to_fs_client(sb); 615 struct ceph_inode_info *ci; 616 int i; 617 618 ci = alloc_inode_sb(sb, ceph_inode_cachep, GFP_NOFS); 619 if (!ci) 620 return NULL; 621 622 doutc(fsc->client, "%p\n", &ci->netfs.inode); 623 624 /* Set parameters for the netfs library */ 625 netfs_inode_init(&ci->netfs, &ceph_netfs_ops, false); 626 627 spin_lock_init(&ci->i_ceph_lock); 628 629 ci->i_version = 0; 630 ci->i_inline_version = 0; 631 ci->i_time_warp_seq = 0; 632 ci->i_ceph_flags = 0; 633 atomic64_set(&ci->i_ordered_count, 1); 634 atomic64_set(&ci->i_release_count, 1); 635 atomic64_set(&ci->i_complete_seq[0], 0); 636 atomic64_set(&ci->i_complete_seq[1], 0); 637 ci->i_symlink = NULL; 638 639 ci->i_max_bytes = 0; 640 ci->i_max_files = 0; 641 ci->i_subvolume_id = CEPH_SUBVOLUME_ID_NONE; 642 643 memset(&ci->i_dir_layout, 0, sizeof(ci->i_dir_layout)); 644 memset(&ci->i_cached_layout, 0, sizeof(ci->i_cached_layout)); 645 RCU_INIT_POINTER(ci->i_layout.pool_ns, NULL); 646 647 ci->i_fragtree = RB_ROOT; 648 mutex_init(&ci->i_fragtree_mutex); 649 650 ci->i_xattrs.blob = NULL; 651 ci->i_xattrs.prealloc_blob = NULL; 652 ci->i_xattrs.dirty = false; 653 ci->i_xattrs.index = RB_ROOT; 654 ci->i_xattrs.count = 0; 655 ci->i_xattrs.names_size = 0; 656 ci->i_xattrs.vals_size = 0; 657 ci->i_xattrs.version = 0; 658 ci->i_xattrs.index_version = 0; 659 660 ci->i_caps = RB_ROOT; 661 ci->i_auth_cap = NULL; 662 ci->i_dirty_caps = 0; 663 ci->i_flushing_caps = 0; 664 INIT_LIST_HEAD(&ci->i_dirty_item); 665 INIT_LIST_HEAD(&ci->i_flushing_item); 666 ci->i_prealloc_cap_flush = NULL; 667 INIT_LIST_HEAD(&ci->i_cap_flush_list); 668 init_waitqueue_head(&ci->i_cap_wq); 669 ci->i_hold_caps_max = 0; 670 INIT_LIST_HEAD(&ci->i_cap_delay_list); 671 INIT_LIST_HEAD(&ci->i_cap_snaps); 672 ci->i_head_snapc = NULL; 673 ci->i_snap_caps = 0; 674 ci->i_last_cap_flush_ack = 0; 675 676 ci->i_last_rd = ci->i_last_wr = jiffies - 3600 * HZ; 677 for (i = 0; i < CEPH_FILE_MODE_BITS; i++) 678 ci->i_nr_by_mode[i] = 0; 679 680 mutex_init(&ci->i_truncate_mutex); 681 ci->i_truncate_seq = 0; 682 ci->i_truncate_size = 0; 683 ci->i_truncate_pending = 0; 684 ci->i_truncate_pagecache_size = 0; 685 686 ci->i_max_size = 0; 687 ci->i_reported_size = 0; 688 ci->i_wanted_max_size = 0; 689 ci->i_requested_max_size = 0; 690 691 ci->i_pin_ref = 0; 692 ci->i_rd_ref = 0; 693 ci->i_rdcache_ref = 0; 694 ci->i_wr_ref = 0; 695 ci->i_wb_ref = 0; 696 ci->i_fx_ref = 0; 697 ci->i_wrbuffer_ref = 0; 698 ci->i_wrbuffer_ref_head = 0; 699 atomic_set(&ci->i_filelock_ref, 0); 700 atomic_set(&ci->i_shared_gen, 1); 701 ci->i_rdcache_gen = 0; 702 ci->i_rdcache_revoking = 0; 703 704 INIT_LIST_HEAD(&ci->i_unsafe_dirops); 705 INIT_LIST_HEAD(&ci->i_unsafe_iops); 706 spin_lock_init(&ci->i_unsafe_lock); 707 708 ci->i_snap_realm = NULL; 709 INIT_LIST_HEAD(&ci->i_snap_realm_item); 710 INIT_LIST_HEAD(&ci->i_snap_flush_item); 711 712 INIT_WORK(&ci->i_work, ceph_inode_work); 713 ci->i_work_mask = 0; 714 memset(&ci->i_btime, '\0', sizeof(ci->i_btime)); 715 #ifdef CONFIG_FS_ENCRYPTION 716 ci->i_crypt_info = NULL; 717 ci->fscrypt_auth = NULL; 718 ci->fscrypt_auth_len = 0; 719 #endif 720 return &ci->netfs.inode; 721 } 722 723 void ceph_free_inode(struct inode *inode) 724 { 725 struct ceph_inode_info *ci = ceph_inode(inode); 726 727 kfree(ci->i_symlink); 728 #ifdef CONFIG_FS_ENCRYPTION 729 kfree(ci->fscrypt_auth); 730 #endif 731 fscrypt_free_inode(inode); 732 kmem_cache_free(ceph_inode_cachep, ci); 733 } 734 735 void ceph_evict_inode(struct inode *inode) 736 { 737 struct ceph_inode_info *ci = ceph_inode(inode); 738 struct ceph_mds_client *mdsc = ceph_sb_to_mdsc(inode->i_sb); 739 struct ceph_client *cl = ceph_inode_to_client(inode); 740 struct ceph_inode_frag *frag; 741 struct rb_node *n; 742 743 doutc(cl, "%p ino %llx.%llx\n", inode, ceph_vinop(inode)); 744 745 percpu_counter_dec(&mdsc->metric.total_inodes); 746 747 ci->i_subvolume_id = CEPH_SUBVOLUME_ID_NONE; 748 749 netfs_wait_for_outstanding_io(inode); 750 truncate_inode_pages_final(&inode->i_data); 751 if (inode_state_read_once(inode) & I_PINNING_NETFS_WB) 752 ceph_fscache_unuse_cookie(inode, true); 753 clear_inode(inode); 754 755 ceph_fscache_unregister_inode_cookie(ci); 756 fscrypt_put_encryption_info(inode); 757 758 __ceph_remove_caps(ci); 759 760 if (__ceph_has_quota(ci, QUOTA_GET_ANY)) 761 ceph_adjust_quota_realms_count(inode, false); 762 763 /* 764 * we may still have a snap_realm reference if there are stray 765 * caps in i_snap_caps. 766 */ 767 if (ci->i_snap_realm) { 768 if (ceph_snap(inode) == CEPH_NOSNAP) { 769 doutc(cl, " dropping residual ref to snap realm %p\n", 770 ci->i_snap_realm); 771 ceph_change_snap_realm(inode, NULL); 772 } else { 773 ceph_put_snapid_map(mdsc, ci->i_snapid_map); 774 ci->i_snap_realm = NULL; 775 } 776 } 777 778 while ((n = rb_first(&ci->i_fragtree)) != NULL) { 779 frag = rb_entry(n, struct ceph_inode_frag, node); 780 rb_erase(n, &ci->i_fragtree); 781 kfree(frag); 782 } 783 ci->i_fragtree_nsplits = 0; 784 785 __ceph_destroy_xattrs(ci); 786 if (ci->i_xattrs.blob) 787 ceph_buffer_put(ci->i_xattrs.blob); 788 if (ci->i_xattrs.prealloc_blob) 789 ceph_buffer_put(ci->i_xattrs.prealloc_blob); 790 791 ceph_put_string(rcu_dereference_raw(ci->i_layout.pool_ns)); 792 ceph_put_string(rcu_dereference_raw(ci->i_cached_layout.pool_ns)); 793 } 794 795 static inline blkcnt_t calc_inode_blocks(u64 size) 796 { 797 return (size + (1<<9) - 1) >> 9; 798 } 799 800 /* 801 * Helpers to fill in size, ctime, mtime, and atime. We have to be 802 * careful because either the client or MDS may have more up to date 803 * info, depending on which capabilities are held, and whether 804 * time_warp_seq or truncate_seq have increased. (Ordinarily, mtime 805 * and size are monotonically increasing, except when utimes() or 806 * truncate() increments the corresponding _seq values.) 807 */ 808 int ceph_fill_file_size(struct inode *inode, int issued, 809 u32 truncate_seq, u64 truncate_size, u64 size) 810 { 811 struct ceph_client *cl = ceph_inode_to_client(inode); 812 struct ceph_inode_info *ci = ceph_inode(inode); 813 int queue_trunc = 0; 814 loff_t isize = i_size_read(inode); 815 816 if (ceph_seq_cmp(truncate_seq, ci->i_truncate_seq) > 0 || 817 (truncate_seq == ci->i_truncate_seq && size > isize)) { 818 doutc(cl, "size %lld -> %llu\n", isize, size); 819 if (size > 0 && S_ISDIR(inode->i_mode)) { 820 pr_err_client(cl, "non-zero size for directory\n"); 821 size = 0; 822 } 823 i_size_write(inode, size); 824 inode->i_blocks = calc_inode_blocks(size); 825 /* 826 * If we're expanding, then we should be able to just update 827 * the existing cookie. 828 */ 829 if (size > isize) 830 ceph_fscache_update(inode); 831 ci->i_reported_size = size; 832 if (truncate_seq != ci->i_truncate_seq) { 833 doutc(cl, "truncate_seq %u -> %u\n", 834 ci->i_truncate_seq, truncate_seq); 835 ci->i_truncate_seq = truncate_seq; 836 837 /* the MDS should have revoked these caps */ 838 WARN_ON_ONCE(issued & (CEPH_CAP_FILE_RD | 839 CEPH_CAP_FILE_LAZYIO)); 840 /* 841 * If we hold relevant caps, or in the case where we're 842 * not the only client referencing this file and we 843 * don't hold those caps, then we need to check whether 844 * the file is either opened or mmaped 845 */ 846 if ((issued & (CEPH_CAP_FILE_CACHE| 847 CEPH_CAP_FILE_BUFFER)) || 848 mapping_mapped(inode->i_mapping) || 849 __ceph_is_file_opened(ci)) { 850 ci->i_truncate_pending++; 851 queue_trunc = 1; 852 } 853 } 854 } 855 856 /* 857 * It's possible that the new sizes of the two consecutive 858 * size truncations will be in the same fscrypt last block, 859 * and we need to truncate the corresponding page caches 860 * anyway. 861 */ 862 if (ceph_seq_cmp(truncate_seq, ci->i_truncate_seq) >= 0) { 863 doutc(cl, "truncate_size %lld -> %llu, encrypted %d\n", 864 ci->i_truncate_size, truncate_size, 865 !!IS_ENCRYPTED(inode)); 866 867 ci->i_truncate_size = truncate_size; 868 869 if (IS_ENCRYPTED(inode)) { 870 doutc(cl, "truncate_pagecache_size %lld -> %llu\n", 871 ci->i_truncate_pagecache_size, size); 872 ci->i_truncate_pagecache_size = size; 873 } else { 874 ci->i_truncate_pagecache_size = truncate_size; 875 } 876 } 877 return queue_trunc; 878 } 879 880 /* 881 * Set the subvolume ID for an inode. 882 * 883 * The subvolume_id identifies which CephFS subvolume this inode belongs to. 884 * CEPH_SUBVOLUME_ID_NONE (0) means unknown/unset - the MDS only sends 885 * non-zero IDs for inodes within subvolumes. 886 * 887 * An inode's subvolume membership is immutable - once an inode is created 888 * in a subvolume, it stays there. Therefore, if we already have a valid 889 * (non-zero) subvolume_id and receive a different one, that indicates a bug. 890 */ 891 void ceph_inode_set_subvolume(struct inode *inode, u64 subvolume_id) 892 { 893 struct ceph_inode_info *ci; 894 u64 old; 895 896 if (!inode || subvolume_id == CEPH_SUBVOLUME_ID_NONE) 897 return; 898 899 ci = ceph_inode(inode); 900 old = READ_ONCE(ci->i_subvolume_id); 901 902 if (old == subvolume_id) 903 return; 904 905 if (old != CEPH_SUBVOLUME_ID_NONE) { 906 /* subvolume_id should not change once set */ 907 WARN_ON_ONCE(1); 908 return; 909 } 910 911 WRITE_ONCE(ci->i_subvolume_id, subvolume_id); 912 } 913 914 void ceph_fill_file_time(struct inode *inode, int issued, 915 u64 time_warp_seq, struct timespec64 *ctime, 916 struct timespec64 *mtime, struct timespec64 *atime) 917 { 918 struct ceph_client *cl = ceph_inode_to_client(inode); 919 struct ceph_inode_info *ci = ceph_inode(inode); 920 struct timespec64 iatime = inode_get_atime(inode); 921 struct timespec64 ictime = inode_get_ctime(inode); 922 struct timespec64 imtime = inode_get_mtime(inode); 923 int warn = 0; 924 925 if (issued & (CEPH_CAP_FILE_EXCL| 926 CEPH_CAP_FILE_WR| 927 CEPH_CAP_FILE_BUFFER| 928 CEPH_CAP_AUTH_EXCL| 929 CEPH_CAP_XATTR_EXCL)) { 930 if (ci->i_version == 0 || 931 timespec64_compare(ctime, &ictime) > 0) { 932 doutc(cl, "ctime %ptSp -> %ptSp inc w/ cap\n", &ictime, ctime); 933 inode_set_ctime_to_ts(inode, *ctime); 934 } 935 if (ci->i_version == 0 || 936 ceph_seq_cmp(time_warp_seq, ci->i_time_warp_seq) > 0) { 937 /* the MDS did a utimes() */ 938 doutc(cl, "mtime %ptSp -> %ptSp tw %d -> %d\n", &imtime, mtime, 939 ci->i_time_warp_seq, (int)time_warp_seq); 940 941 inode_set_mtime_to_ts(inode, *mtime); 942 inode_set_atime_to_ts(inode, *atime); 943 ci->i_time_warp_seq = time_warp_seq; 944 } else if (time_warp_seq == ci->i_time_warp_seq) { 945 /* nobody did utimes(); take the max */ 946 if (timespec64_compare(mtime, &imtime) > 0) { 947 doutc(cl, "mtime %ptSp -> %ptSp inc\n", &imtime, mtime); 948 inode_set_mtime_to_ts(inode, *mtime); 949 } 950 if (timespec64_compare(atime, &iatime) > 0) { 951 doutc(cl, "atime %ptSp -> %ptSp inc\n", &iatime, atime); 952 inode_set_atime_to_ts(inode, *atime); 953 } 954 } else if (issued & CEPH_CAP_FILE_EXCL) { 955 /* we did a utimes(); ignore mds values */ 956 } else { 957 warn = 1; 958 } 959 } else { 960 /* we have no write|excl caps; whatever the MDS says is true */ 961 if (ceph_seq_cmp(time_warp_seq, ci->i_time_warp_seq) >= 0) { 962 inode_set_ctime_to_ts(inode, *ctime); 963 inode_set_mtime_to_ts(inode, *mtime); 964 inode_set_atime_to_ts(inode, *atime); 965 ci->i_time_warp_seq = time_warp_seq; 966 } else { 967 warn = 1; 968 } 969 } 970 if (warn) /* time_warp_seq shouldn't go backwards */ 971 doutc(cl, "%p mds time_warp_seq %llu < %u\n", inode, 972 time_warp_seq, ci->i_time_warp_seq); 973 } 974 975 #if IS_ENABLED(CONFIG_FS_ENCRYPTION) 976 static int decode_encrypted_symlink(struct ceph_mds_client *mdsc, 977 const char *encsym, 978 int enclen, u8 **decsym) 979 { 980 struct ceph_client *cl = mdsc->fsc->client; 981 int declen; 982 u8 *sym; 983 984 sym = kmalloc(enclen + 1, GFP_NOFS); 985 if (!sym) 986 return -ENOMEM; 987 988 declen = base64_decode(encsym, enclen, sym, false, BASE64_IMAP); 989 if (declen < 0) { 990 pr_err_client(cl, 991 "can't decode symlink (%d). Content: %.*s\n", 992 declen, enclen, encsym); 993 kfree(sym); 994 return -EIO; 995 } 996 sym[declen + 1] = '\0'; 997 *decsym = sym; 998 return declen; 999 } 1000 #else 1001 static int decode_encrypted_symlink(struct ceph_mds_client *mdsc, 1002 const char *encsym, 1003 int symlen, u8 **decsym) 1004 { 1005 return -EOPNOTSUPP; 1006 } 1007 #endif 1008 1009 /* 1010 * Populate an inode based on info from mds. May be called on new or 1011 * existing inodes. 1012 */ 1013 int ceph_fill_inode(struct inode *inode, struct page *locked_page, 1014 struct ceph_mds_reply_info_in *iinfo, 1015 struct ceph_mds_reply_dirfrag *dirinfo, 1016 struct ceph_mds_session *session, int cap_fmode, 1017 struct ceph_cap_reservation *caps_reservation) 1018 { 1019 struct ceph_mds_client *mdsc = ceph_sb_to_mdsc(inode->i_sb); 1020 struct ceph_client *cl = mdsc->fsc->client; 1021 struct ceph_mds_reply_inode *info = iinfo->in; 1022 struct ceph_inode_info *ci = ceph_inode(inode); 1023 int issued, new_issued, info_caps; 1024 struct timespec64 mtime, atime, ctime; 1025 struct ceph_buffer *xattr_blob = NULL; 1026 struct ceph_buffer *old_blob = NULL; 1027 struct ceph_string *pool_ns = NULL; 1028 struct ceph_cap *new_cap = NULL; 1029 int err = 0; 1030 bool wake = false; 1031 bool queue_trunc = false; 1032 bool new_version = false; 1033 bool fill_inline = false; 1034 umode_t mode = le32_to_cpu(info->mode); 1035 dev_t rdev = le32_to_cpu(info->rdev); 1036 1037 lockdep_assert_held(&mdsc->snap_rwsem); 1038 1039 doutc(cl, "%p ino %llx.%llx v %llu had %llu\n", inode, ceph_vinop(inode), 1040 le64_to_cpu(info->version), ci->i_version); 1041 1042 /* Once I_NEW is cleared, we can't change type or dev numbers */ 1043 if (inode_state_read_once(inode) & I_NEW) { 1044 inode->i_mode = mode; 1045 } else { 1046 if (inode_wrong_type(inode, mode)) { 1047 pr_warn_once_client(cl, 1048 "inode type changed! (ino %llx.%llx is 0%o, mds says 0%o)\n", 1049 ceph_vinop(inode), inode->i_mode, mode); 1050 return -ESTALE; 1051 } 1052 1053 if ((S_ISCHR(mode) || S_ISBLK(mode)) && inode->i_rdev != rdev) { 1054 pr_warn_once_client(cl, 1055 "dev inode rdev changed! (ino %llx.%llx is %u:%u, mds says %u:%u)\n", 1056 ceph_vinop(inode), MAJOR(inode->i_rdev), 1057 MINOR(inode->i_rdev), MAJOR(rdev), 1058 MINOR(rdev)); 1059 return -ESTALE; 1060 } 1061 } 1062 1063 info_caps = le32_to_cpu(info->cap.caps); 1064 1065 /* prealloc new cap struct */ 1066 if (info_caps && ceph_snap(inode) == CEPH_NOSNAP) { 1067 new_cap = ceph_get_cap(mdsc, caps_reservation); 1068 if (!new_cap) 1069 return -ENOMEM; 1070 } 1071 1072 /* 1073 * prealloc xattr data, if it looks like we'll need it. only 1074 * if len > 4 (meaning there are actually xattrs; the first 4 1075 * bytes are the xattr count). 1076 */ 1077 if (iinfo->xattr_len > 4) { 1078 xattr_blob = ceph_buffer_new(iinfo->xattr_len, GFP_NOFS); 1079 if (!xattr_blob) 1080 pr_err_client(cl, "ENOMEM xattr blob %d bytes\n", 1081 iinfo->xattr_len); 1082 } 1083 1084 if (iinfo->pool_ns_len > 0) 1085 pool_ns = ceph_find_or_create_string(iinfo->pool_ns_data, 1086 iinfo->pool_ns_len); 1087 1088 if (ceph_snap(inode) != CEPH_NOSNAP && !ci->i_snapid_map) 1089 ci->i_snapid_map = ceph_get_snapid_map(mdsc, ceph_snap(inode)); 1090 1091 spin_lock(&ci->i_ceph_lock); 1092 1093 /* 1094 * provided version will be odd if inode value is projected, 1095 * even if stable. skip the update if we have newer stable 1096 * info (ours>=theirs, e.g. due to racing mds replies), unless 1097 * we are getting projected (unstable) info (in which case the 1098 * version is odd, and we want ours>theirs). 1099 * us them 1100 * 2 2 skip 1101 * 3 2 skip 1102 * 3 3 update 1103 */ 1104 if (ci->i_version == 0 || 1105 ((info->cap.flags & CEPH_CAP_FLAG_AUTH) && 1106 le64_to_cpu(info->version) > (ci->i_version & ~1))) 1107 new_version = true; 1108 1109 /* Update change_attribute */ 1110 inode_set_max_iversion_raw(inode, iinfo->change_attr); 1111 1112 __ceph_caps_issued(ci, &issued); 1113 issued |= __ceph_caps_dirty(ci); 1114 new_issued = ~issued & info_caps; 1115 1116 __ceph_update_quota(ci, iinfo->max_bytes, iinfo->max_files); 1117 ceph_inode_set_subvolume(inode, iinfo->subvolume_id); 1118 1119 #ifdef CONFIG_FS_ENCRYPTION 1120 if (iinfo->fscrypt_auth_len && 1121 ((inode_state_read_once(inode) & I_NEW) || (ci->fscrypt_auth_len == 0))) { 1122 kfree(ci->fscrypt_auth); 1123 ci->fscrypt_auth_len = iinfo->fscrypt_auth_len; 1124 ci->fscrypt_auth = iinfo->fscrypt_auth; 1125 iinfo->fscrypt_auth = NULL; 1126 iinfo->fscrypt_auth_len = 0; 1127 inode_set_flags(inode, S_ENCRYPTED, S_ENCRYPTED); 1128 } 1129 #endif 1130 1131 if ((new_version || (new_issued & CEPH_CAP_AUTH_SHARED)) && 1132 (issued & CEPH_CAP_AUTH_EXCL) == 0) { 1133 inode->i_mode = mode; 1134 inode->i_uid = make_kuid(&init_user_ns, le32_to_cpu(info->uid)); 1135 inode->i_gid = make_kgid(&init_user_ns, le32_to_cpu(info->gid)); 1136 doutc(cl, "%p %llx.%llx mode 0%o uid.gid %d.%d\n", inode, 1137 ceph_vinop(inode), inode->i_mode, 1138 from_kuid(&init_user_ns, inode->i_uid), 1139 from_kgid(&init_user_ns, inode->i_gid)); 1140 ceph_decode_timespec64(&ci->i_btime, &iinfo->btime); 1141 ceph_decode_timespec64(&ci->i_snap_btime, &iinfo->snap_btime); 1142 } 1143 1144 /* directories have fl_stripe_unit set to zero */ 1145 if (IS_ENCRYPTED(inode)) 1146 inode->i_blkbits = CEPH_FSCRYPT_BLOCK_SHIFT; 1147 else if (le32_to_cpu(info->layout.fl_stripe_unit)) 1148 inode->i_blkbits = 1149 fls(le32_to_cpu(info->layout.fl_stripe_unit)) - 1; 1150 else 1151 inode->i_blkbits = CEPH_BLOCK_SHIFT; 1152 1153 if ((new_version || (new_issued & CEPH_CAP_LINK_SHARED)) && 1154 (issued & CEPH_CAP_LINK_EXCL) == 0) 1155 set_nlink(inode, le32_to_cpu(info->nlink)); 1156 1157 if (new_version || (new_issued & CEPH_CAP_ANY_RD)) { 1158 /* be careful with mtime, atime, size */ 1159 ceph_decode_timespec64(&atime, &info->atime); 1160 ceph_decode_timespec64(&mtime, &info->mtime); 1161 ceph_decode_timespec64(&ctime, &info->ctime); 1162 ceph_fill_file_time(inode, issued, 1163 le32_to_cpu(info->time_warp_seq), 1164 &ctime, &mtime, &atime); 1165 } 1166 1167 if (new_version || (info_caps & CEPH_CAP_FILE_SHARED)) { 1168 ci->i_files = le64_to_cpu(info->files); 1169 ci->i_subdirs = le64_to_cpu(info->subdirs); 1170 } 1171 1172 if (new_version || 1173 (new_issued & (CEPH_CAP_ANY_FILE_RD | CEPH_CAP_ANY_FILE_WR))) { 1174 u64 size = le64_to_cpu(info->size); 1175 s64 old_pool = ci->i_layout.pool_id; 1176 struct ceph_string *old_ns; 1177 1178 ceph_file_layout_from_legacy(&ci->i_layout, &info->layout); 1179 old_ns = rcu_dereference_protected(ci->i_layout.pool_ns, 1180 lockdep_is_held(&ci->i_ceph_lock)); 1181 rcu_assign_pointer(ci->i_layout.pool_ns, pool_ns); 1182 1183 if (ci->i_layout.pool_id != old_pool || pool_ns != old_ns) 1184 clear_bit(CEPH_I_POOL_PERM_BIT, &ci->i_ceph_flags); 1185 1186 pool_ns = old_ns; 1187 1188 if (IS_ENCRYPTED(inode) && size && 1189 iinfo->fscrypt_file_len == sizeof(__le64)) { 1190 u64 fsize = __le64_to_cpu(*(__le64 *)iinfo->fscrypt_file); 1191 1192 if (size == round_up(fsize, CEPH_FSCRYPT_BLOCK_SIZE)) { 1193 size = fsize; 1194 } else { 1195 pr_warn_client(cl, 1196 "fscrypt size mismatch: size=%llu fscrypt_file=%llu, discarding fscrypt_file size.\n", 1197 info->size, size); 1198 } 1199 } 1200 1201 queue_trunc = ceph_fill_file_size(inode, issued, 1202 le32_to_cpu(info->truncate_seq), 1203 le64_to_cpu(info->truncate_size), 1204 size); 1205 /* only update max_size on auth cap */ 1206 if ((info->cap.flags & CEPH_CAP_FLAG_AUTH) && 1207 ci->i_max_size != le64_to_cpu(info->max_size)) { 1208 doutc(cl, "max_size %lld -> %llu\n", 1209 ci->i_max_size, le64_to_cpu(info->max_size)); 1210 ci->i_max_size = le64_to_cpu(info->max_size); 1211 } 1212 } 1213 1214 /* layout and rstat are not tracked by capability, update them if 1215 * the inode info is from auth mds */ 1216 if (new_version || (info->cap.flags & CEPH_CAP_FLAG_AUTH)) { 1217 if (S_ISDIR(inode->i_mode)) { 1218 ci->i_dir_layout = iinfo->dir_layout; 1219 ci->i_rbytes = le64_to_cpu(info->rbytes); 1220 ci->i_rfiles = le64_to_cpu(info->rfiles); 1221 ci->i_rsubdirs = le64_to_cpu(info->rsubdirs); 1222 ci->i_dir_pin = iinfo->dir_pin; 1223 ci->i_rsnaps = iinfo->rsnaps; 1224 ceph_decode_timespec64(&ci->i_rctime, &info->rctime); 1225 } 1226 } 1227 1228 /* xattrs */ 1229 /* note that if i_xattrs.len <= 4, i_xattrs.data will still be NULL. */ 1230 if ((ci->i_xattrs.version == 0 || !(issued & CEPH_CAP_XATTR_EXCL)) && 1231 le64_to_cpu(info->xattr_version) > ci->i_xattrs.version) { 1232 if (ci->i_xattrs.blob) 1233 old_blob = ci->i_xattrs.blob; 1234 ci->i_xattrs.blob = xattr_blob; 1235 if (xattr_blob) 1236 memcpy(ci->i_xattrs.blob->vec.iov_base, 1237 iinfo->xattr_data, iinfo->xattr_len); 1238 ci->i_xattrs.version = le64_to_cpu(info->xattr_version); 1239 ceph_forget_all_cached_acls(inode); 1240 ceph_security_invalidate_secctx(inode); 1241 xattr_blob = NULL; 1242 } 1243 1244 /* finally update i_version */ 1245 if (le64_to_cpu(info->version) > ci->i_version) 1246 ci->i_version = le64_to_cpu(info->version); 1247 1248 inode->i_mapping->a_ops = &ceph_aops; 1249 1250 switch (inode->i_mode & S_IFMT) { 1251 case S_IFIFO: 1252 case S_IFBLK: 1253 case S_IFCHR: 1254 case S_IFSOCK: 1255 inode->i_blkbits = PAGE_SHIFT; 1256 init_special_inode(inode, inode->i_mode, rdev); 1257 inode->i_op = &ceph_file_iops; 1258 break; 1259 case S_IFREG: 1260 inode->i_op = &ceph_file_iops; 1261 inode->i_fop = &ceph_file_fops; 1262 break; 1263 case S_IFLNK: 1264 if (!ci->i_symlink) { 1265 u32 symlen = iinfo->symlink_len; 1266 char *sym; 1267 1268 spin_unlock(&ci->i_ceph_lock); 1269 1270 if (IS_ENCRYPTED(inode)) { 1271 if (symlen != i_size_read(inode)) 1272 pr_err_client(cl, 1273 "%p %llx.%llx BAD symlink size %lld\n", 1274 inode, ceph_vinop(inode), 1275 i_size_read(inode)); 1276 1277 err = decode_encrypted_symlink(mdsc, iinfo->symlink, 1278 symlen, (u8 **)&sym); 1279 if (err < 0) { 1280 pr_err_client(cl, 1281 "decoding encrypted symlink failed: %d\n", 1282 err); 1283 goto out; 1284 } 1285 symlen = err; 1286 i_size_write(inode, symlen); 1287 inode->i_blocks = calc_inode_blocks(symlen); 1288 } else { 1289 if (symlen != i_size_read(inode)) { 1290 pr_err_client(cl, 1291 "%p %llx.%llx BAD symlink size %lld\n", 1292 inode, ceph_vinop(inode), 1293 i_size_read(inode)); 1294 i_size_write(inode, symlen); 1295 inode->i_blocks = calc_inode_blocks(symlen); 1296 } 1297 1298 err = -ENOMEM; 1299 sym = kstrndup(iinfo->symlink, symlen, GFP_NOFS); 1300 if (!sym) 1301 goto out; 1302 } 1303 1304 spin_lock(&ci->i_ceph_lock); 1305 if (!ci->i_symlink) 1306 ci->i_symlink = sym; 1307 else 1308 kfree(sym); /* lost a race */ 1309 } 1310 1311 if (IS_ENCRYPTED(inode)) { 1312 /* 1313 * Encrypted symlinks need to be decrypted before we can 1314 * cache their targets in i_link. Don't touch it here. 1315 */ 1316 inode->i_op = &ceph_encrypted_symlink_iops; 1317 } else { 1318 inode->i_link = ci->i_symlink; 1319 inode->i_op = &ceph_symlink_iops; 1320 } 1321 break; 1322 case S_IFDIR: 1323 inode->i_op = &ceph_dir_iops; 1324 inode->i_fop = &ceph_dir_fops; 1325 break; 1326 default: 1327 pr_err_client(cl, "%p %llx.%llx BAD mode 0%o\n", inode, 1328 ceph_vinop(inode), inode->i_mode); 1329 } 1330 1331 /* were we issued a capability? */ 1332 if (info_caps) { 1333 if (ceph_snap(inode) == CEPH_NOSNAP) { 1334 ceph_add_cap(inode, session, 1335 le64_to_cpu(info->cap.cap_id), 1336 info_caps, 1337 le32_to_cpu(info->cap.wanted), 1338 le32_to_cpu(info->cap.seq), 1339 le32_to_cpu(info->cap.mseq), 1340 le64_to_cpu(info->cap.realm), 1341 info->cap.flags, &new_cap); 1342 1343 /* set dir completion flag? */ 1344 if (S_ISDIR(inode->i_mode) && 1345 ci->i_files == 0 && ci->i_subdirs == 0 && 1346 (info_caps & CEPH_CAP_FILE_SHARED) && 1347 (issued & CEPH_CAP_FILE_EXCL) == 0 && 1348 !__ceph_dir_is_complete(ci)) { 1349 doutc(cl, " marking %p complete (empty)\n", 1350 inode); 1351 i_size_write(inode, 0); 1352 __ceph_dir_set_complete(ci, 1353 atomic64_read(&ci->i_release_count), 1354 atomic64_read(&ci->i_ordered_count)); 1355 } 1356 1357 wake = true; 1358 } else { 1359 doutc(cl, " %p got snap_caps %s\n", inode, 1360 ceph_cap_string(info_caps)); 1361 ci->i_snap_caps |= info_caps; 1362 } 1363 } 1364 1365 if (iinfo->inline_version > 0 && 1366 iinfo->inline_version >= ci->i_inline_version) { 1367 int cache_caps = CEPH_CAP_FILE_CACHE | CEPH_CAP_FILE_LAZYIO; 1368 ci->i_inline_version = iinfo->inline_version; 1369 if (ceph_has_inline_data(ci) && 1370 (locked_page || (info_caps & cache_caps))) 1371 fill_inline = true; 1372 } 1373 1374 if (cap_fmode >= 0) { 1375 if (!info_caps) 1376 pr_warn_client(cl, "mds issued no caps on %llx.%llx\n", 1377 ceph_vinop(inode)); 1378 __ceph_touch_fmode(ci, mdsc, cap_fmode); 1379 } 1380 1381 spin_unlock(&ci->i_ceph_lock); 1382 1383 ceph_fscache_register_inode_cookie(inode); 1384 1385 if (fill_inline) 1386 ceph_fill_inline_data(inode, locked_page, 1387 iinfo->inline_data, iinfo->inline_len); 1388 1389 if (wake) 1390 wake_up_all(&ci->i_cap_wq); 1391 1392 /* queue truncate if we saw i_size decrease */ 1393 if (queue_trunc) 1394 ceph_queue_vmtruncate(inode); 1395 1396 /* populate frag tree */ 1397 if (S_ISDIR(inode->i_mode)) 1398 ceph_fill_fragtree(inode, &info->fragtree, dirinfo); 1399 1400 /* update delegation info? */ 1401 if (dirinfo) 1402 ceph_fill_dirfrag(inode, dirinfo); 1403 1404 err = 0; 1405 out: 1406 if (new_cap) 1407 ceph_put_cap(mdsc, new_cap); 1408 ceph_buffer_put(old_blob); 1409 ceph_buffer_put(xattr_blob); 1410 ceph_put_string(pool_ns); 1411 return err; 1412 } 1413 1414 /* 1415 * caller should hold session s_mutex and dentry->d_lock. 1416 */ 1417 static void __update_dentry_lease(struct inode *dir, struct dentry *dentry, 1418 struct ceph_mds_reply_lease *lease, 1419 struct ceph_mds_session *session, 1420 unsigned long from_time, 1421 struct ceph_mds_session **old_lease_session) 1422 { 1423 struct ceph_client *cl = ceph_inode_to_client(dir); 1424 struct ceph_dentry_info *di = ceph_dentry(dentry); 1425 unsigned mask = le16_to_cpu(lease->mask); 1426 long unsigned duration = le32_to_cpu(lease->duration_ms); 1427 long unsigned ttl = from_time + (duration * HZ) / 1000; 1428 long unsigned half_ttl = from_time + (duration * HZ / 2) / 1000; 1429 1430 doutc(cl, "%p duration %lu ms ttl %lu\n", dentry, duration, ttl); 1431 1432 /* only track leases on regular dentries */ 1433 if (ceph_snap(dir) != CEPH_NOSNAP) 1434 return; 1435 1436 if (mask & CEPH_LEASE_PRIMARY_LINK) 1437 di->flags |= CEPH_DENTRY_PRIMARY_LINK; 1438 else 1439 di->flags &= ~CEPH_DENTRY_PRIMARY_LINK; 1440 1441 di->lease_shared_gen = atomic_read(&ceph_inode(dir)->i_shared_gen); 1442 if (!(mask & CEPH_LEASE_VALID)) { 1443 __ceph_dentry_dir_lease_touch(di); 1444 return; 1445 } 1446 1447 if (di->lease_gen == atomic_read(&session->s_cap_gen) && 1448 time_before(ttl, di->time)) 1449 return; /* we already have a newer lease. */ 1450 1451 if (di->lease_session && di->lease_session != session) { 1452 *old_lease_session = di->lease_session; 1453 di->lease_session = NULL; 1454 } 1455 1456 if (!di->lease_session) 1457 di->lease_session = ceph_get_mds_session(session); 1458 di->lease_gen = atomic_read(&session->s_cap_gen); 1459 di->lease_seq = le32_to_cpu(lease->seq); 1460 di->lease_renew_after = half_ttl; 1461 di->lease_renew_from = 0; 1462 di->time = ttl; 1463 1464 __ceph_dentry_lease_touch(di); 1465 } 1466 1467 static inline void update_dentry_lease(struct inode *dir, struct dentry *dentry, 1468 struct ceph_mds_reply_lease *lease, 1469 struct ceph_mds_session *session, 1470 unsigned long from_time) 1471 { 1472 struct ceph_mds_session *old_lease_session = NULL; 1473 spin_lock(&dentry->d_lock); 1474 __update_dentry_lease(dir, dentry, lease, session, from_time, 1475 &old_lease_session); 1476 spin_unlock(&dentry->d_lock); 1477 ceph_put_mds_session(old_lease_session); 1478 } 1479 1480 /* 1481 * update dentry lease without having parent inode locked 1482 */ 1483 static void update_dentry_lease_careful(struct dentry *dentry, 1484 struct ceph_mds_reply_lease *lease, 1485 struct ceph_mds_session *session, 1486 unsigned long from_time, 1487 char *dname, u32 dname_len, 1488 struct ceph_vino *pdvino, 1489 struct ceph_vino *ptvino) 1490 1491 { 1492 struct inode *dir; 1493 struct ceph_mds_session *old_lease_session = NULL; 1494 1495 spin_lock(&dentry->d_lock); 1496 /* make sure dentry's name matches target */ 1497 if (dentry->d_name.len != dname_len || 1498 memcmp(dentry->d_name.name, dname, dname_len)) 1499 goto out_unlock; 1500 1501 dir = d_inode(dentry->d_parent); 1502 /* make sure parent matches dvino */ 1503 if (!ceph_ino_compare(dir, pdvino)) 1504 goto out_unlock; 1505 1506 /* make sure dentry's inode matches target. NULL ptvino means that 1507 * we expect a negative dentry */ 1508 if (ptvino) { 1509 if (d_really_is_negative(dentry)) 1510 goto out_unlock; 1511 if (!ceph_ino_compare(d_inode(dentry), ptvino)) 1512 goto out_unlock; 1513 } else { 1514 if (d_really_is_positive(dentry)) 1515 goto out_unlock; 1516 } 1517 1518 __update_dentry_lease(dir, dentry, lease, session, 1519 from_time, &old_lease_session); 1520 out_unlock: 1521 spin_unlock(&dentry->d_lock); 1522 ceph_put_mds_session(old_lease_session); 1523 } 1524 1525 /* 1526 * splice a dentry to an inode. 1527 * caller must hold directory i_rwsem for this to be safe. 1528 */ 1529 static int splice_dentry(struct dentry **pdn, struct inode *in) 1530 { 1531 struct ceph_client *cl = ceph_inode_to_client(in); 1532 struct dentry *dn = *pdn; 1533 struct dentry *realdn; 1534 1535 BUG_ON(d_inode(dn)); 1536 1537 if (S_ISDIR(in->i_mode)) { 1538 /* If inode is directory, d_splice_alias() below will remove 1539 * 'realdn' from its origin parent. We need to ensure that 1540 * origin parent's readdir cache will not reference 'realdn' 1541 */ 1542 realdn = d_find_any_alias(in); 1543 if (realdn) { 1544 struct ceph_dentry_info *di = ceph_dentry(realdn); 1545 spin_lock(&realdn->d_lock); 1546 1547 realdn->d_op->d_prune(realdn); 1548 1549 di->time = jiffies; 1550 di->lease_shared_gen = 0; 1551 di->offset = 0; 1552 1553 spin_unlock(&realdn->d_lock); 1554 dput(realdn); 1555 } 1556 } 1557 1558 /* dn must be unhashed */ 1559 if (!d_unhashed(dn)) 1560 d_drop(dn); 1561 realdn = d_splice_alias(in, dn); 1562 if (IS_ERR(realdn)) { 1563 pr_err_client(cl, "error %ld %p inode %p ino %llx.%llx\n", 1564 PTR_ERR(realdn), dn, in, ceph_vinop(in)); 1565 return PTR_ERR(realdn); 1566 } 1567 1568 if (realdn) { 1569 doutc(cl, "dn %p (%d) spliced with %p (%d) inode %p ino %llx.%llx\n", 1570 dn, d_count(dn), realdn, d_count(realdn), 1571 d_inode(realdn), ceph_vinop(d_inode(realdn))); 1572 dput(dn); 1573 *pdn = realdn; 1574 } else { 1575 BUG_ON(!ceph_dentry(dn)); 1576 doutc(cl, "dn %p attached to %p ino %llx.%llx\n", dn, 1577 d_inode(dn), ceph_vinop(d_inode(dn))); 1578 } 1579 return 0; 1580 } 1581 1582 /* 1583 * Incorporate results into the local cache. This is either just 1584 * one inode, or a directory, dentry, and possibly linked-to inode (e.g., 1585 * after a lookup). 1586 * 1587 * A reply may contain 1588 * a directory inode along with a dentry. 1589 * and/or a target inode 1590 * 1591 * Called with snap_rwsem (read). 1592 */ 1593 int ceph_fill_trace(struct super_block *sb, struct ceph_mds_request *req) 1594 { 1595 struct ceph_mds_session *session = req->r_session; 1596 struct ceph_mds_reply_info_parsed *rinfo = &req->r_reply_info; 1597 struct inode *in = NULL; 1598 struct ceph_vino tvino, dvino; 1599 struct ceph_fs_client *fsc = ceph_sb_to_fs_client(sb); 1600 struct ceph_client *cl = fsc->client; 1601 struct inode *parent_dir = NULL; 1602 int err = 0; 1603 1604 doutc(cl, "%p is_dentry %d is_target %d\n", req, 1605 rinfo->head->is_dentry, rinfo->head->is_target); 1606 1607 if (!rinfo->head->is_target && !rinfo->head->is_dentry) { 1608 doutc(cl, "reply is empty!\n"); 1609 if (rinfo->head->result == 0 && req->r_parent) 1610 ceph_invalidate_dir_request(req); 1611 return 0; 1612 } 1613 1614 if (rinfo->head->is_dentry) { 1615 /* 1616 * r_parent may be stale, in cases when R_PARENT_LOCKED is not set, 1617 * so we need to get the correct inode 1618 */ 1619 parent_dir = ceph_get_reply_dir(sb, req->r_parent, rinfo); 1620 if (unlikely(IS_ERR(parent_dir))) { 1621 err = PTR_ERR(parent_dir); 1622 goto done; 1623 } 1624 if (parent_dir) { 1625 ceph_inode_set_subvolume(parent_dir, 1626 rinfo->diri.subvolume_id); 1627 err = ceph_fill_inode(parent_dir, NULL, &rinfo->diri, 1628 rinfo->dirfrag, session, -1, 1629 &req->r_caps_reservation); 1630 if (err < 0) 1631 goto done; 1632 } else { 1633 WARN_ON_ONCE(1); 1634 } 1635 1636 if (parent_dir && req->r_op == CEPH_MDS_OP_LOOKUPNAME && 1637 test_bit(CEPH_MDS_R_PARENT_LOCKED, &req->r_req_flags) && 1638 !test_bit(CEPH_MDS_R_ABORTED, &req->r_req_flags)) { 1639 bool is_nokey = false; 1640 struct qstr dname; 1641 struct dentry *dn, *parent; 1642 struct fscrypt_str oname = FSTR_INIT(NULL, 0); 1643 struct ceph_fname fname = { .dir = parent_dir, 1644 .name = rinfo->dname, 1645 .ctext = rinfo->altname, 1646 .name_len = rinfo->dname_len, 1647 .ctext_len = rinfo->altname_len }; 1648 1649 BUG_ON(!rinfo->head->is_target); 1650 BUG_ON(req->r_dentry); 1651 1652 parent = d_find_any_alias(parent_dir); 1653 BUG_ON(!parent); 1654 1655 err = ceph_fname_alloc_buffer(parent_dir, &oname); 1656 if (err < 0) { 1657 dput(parent); 1658 goto done; 1659 } 1660 1661 err = ceph_fname_to_usr(&fname, NULL, &oname, &is_nokey); 1662 if (err < 0) { 1663 dput(parent); 1664 ceph_fname_free_buffer(parent_dir, &oname); 1665 goto done; 1666 } 1667 dname.name = oname.name; 1668 dname.len = oname.len; 1669 dname.hash = full_name_hash(parent, dname.name, dname.len); 1670 tvino.ino = le64_to_cpu(rinfo->targeti.in->ino); 1671 tvino.snap = le64_to_cpu(rinfo->targeti.in->snapid); 1672 retry_lookup: 1673 dn = d_lookup(parent, &dname); 1674 doutc(cl, "d_lookup on parent=%p name=%.*s got %p\n", 1675 parent, dname.len, dname.name, dn); 1676 1677 if (!dn) { 1678 dn = d_alloc(parent, &dname); 1679 doutc(cl, "d_alloc %p '%.*s' = %p\n", parent, 1680 dname.len, dname.name, dn); 1681 if (!dn) { 1682 dput(parent); 1683 ceph_fname_free_buffer(parent_dir, &oname); 1684 err = -ENOMEM; 1685 goto done; 1686 } 1687 if (is_nokey) { 1688 spin_lock(&dn->d_lock); 1689 dn->d_flags |= DCACHE_NOKEY_NAME; 1690 spin_unlock(&dn->d_lock); 1691 } 1692 err = 0; 1693 } else if (d_really_is_positive(dn) && 1694 (ceph_ino(d_inode(dn)) != tvino.ino || 1695 ceph_snap(d_inode(dn)) != tvino.snap)) { 1696 doutc(cl, " dn %p points to wrong inode %p\n", 1697 dn, d_inode(dn)); 1698 ceph_dir_clear_ordered(parent_dir); 1699 d_delete(dn); 1700 dput(dn); 1701 goto retry_lookup; 1702 } 1703 ceph_fname_free_buffer(parent_dir, &oname); 1704 1705 req->r_dentry = dn; 1706 dput(parent); 1707 } 1708 } 1709 1710 if (rinfo->head->is_target) { 1711 /* Should be filled in by handle_reply */ 1712 BUG_ON(!req->r_target_inode); 1713 1714 in = req->r_target_inode; 1715 ceph_inode_set_subvolume(in, rinfo->targeti.subvolume_id); 1716 err = ceph_fill_inode(in, req->r_locked_page, &rinfo->targeti, 1717 NULL, session, 1718 (!test_bit(CEPH_MDS_R_ABORTED, &req->r_req_flags) && 1719 !test_bit(CEPH_MDS_R_ASYNC, &req->r_req_flags) && 1720 rinfo->head->result == 0) ? req->r_fmode : -1, 1721 &req->r_caps_reservation); 1722 if (err < 0) { 1723 pr_err_client(cl, "badness %p %llx.%llx\n", in, 1724 ceph_vinop(in)); 1725 req->r_target_inode = NULL; 1726 if (inode_state_read_once(in) & I_NEW) 1727 discard_new_inode(in); 1728 else 1729 iput(in); 1730 goto done; 1731 } 1732 if (inode_state_read_once(in) & I_NEW) 1733 unlock_new_inode(in); 1734 } 1735 1736 /* 1737 * ignore null lease/binding on snapdir ENOENT, or else we 1738 * will have trouble splicing in the virtual snapdir later 1739 */ 1740 if (rinfo->head->is_dentry && 1741 !test_bit(CEPH_MDS_R_ABORTED, &req->r_req_flags) && 1742 test_bit(CEPH_MDS_R_PARENT_LOCKED, &req->r_req_flags) && 1743 (rinfo->head->is_target || strncmp(req->r_dentry->d_name.name, 1744 fsc->mount_options->snapdir_name, 1745 req->r_dentry->d_name.len))) { 1746 /* 1747 * lookup link rename : null -> possibly existing inode 1748 * mknod symlink mkdir : null -> new inode 1749 * unlink : linked -> null 1750 */ 1751 struct inode *dir = req->r_parent; 1752 struct dentry *dn = req->r_dentry; 1753 bool have_dir_cap, have_lease; 1754 1755 BUG_ON(!dn); 1756 BUG_ON(!dir); 1757 BUG_ON(d_inode(dn->d_parent) != dir); 1758 1759 dvino.ino = le64_to_cpu(rinfo->diri.in->ino); 1760 dvino.snap = le64_to_cpu(rinfo->diri.in->snapid); 1761 1762 BUG_ON(ceph_ino(dir) != dvino.ino); 1763 BUG_ON(ceph_snap(dir) != dvino.snap); 1764 1765 /* do we have a lease on the whole dir? */ 1766 have_dir_cap = 1767 (le32_to_cpu(rinfo->diri.in->cap.caps) & 1768 CEPH_CAP_FILE_SHARED); 1769 1770 /* do we have a dn lease? */ 1771 have_lease = have_dir_cap || 1772 le32_to_cpu(rinfo->dlease->duration_ms); 1773 if (!have_lease) 1774 doutc(cl, "no dentry lease or dir cap\n"); 1775 1776 /* rename? */ 1777 if (req->r_old_dentry && req->r_op == CEPH_MDS_OP_RENAME) { 1778 struct inode *olddir = req->r_old_dentry_dir; 1779 BUG_ON(!olddir); 1780 1781 doutc(cl, " src %p '%pd' dst %p '%pd'\n", 1782 req->r_old_dentry, req->r_old_dentry, dn, dn); 1783 doutc(cl, "doing d_move %p -> %p\n", req->r_old_dentry, dn); 1784 1785 /* d_move screws up sibling dentries' offsets */ 1786 ceph_dir_clear_ordered(dir); 1787 ceph_dir_clear_ordered(olddir); 1788 1789 d_move(req->r_old_dentry, dn); 1790 doutc(cl, " src %p '%pd' dst %p '%pd'\n", 1791 req->r_old_dentry, req->r_old_dentry, dn, dn); 1792 1793 /* ensure target dentry is invalidated, despite 1794 rehashing bug in vfs_rename_dir */ 1795 ceph_invalidate_dentry_lease(dn); 1796 1797 doutc(cl, "dn %p gets new offset %lld\n", 1798 req->r_old_dentry, 1799 ceph_dentry(req->r_old_dentry)->offset); 1800 1801 /* swap r_dentry and r_old_dentry in case that 1802 * splice_dentry() gets called later. This is safe 1803 * because no other place will use them */ 1804 req->r_dentry = req->r_old_dentry; 1805 req->r_old_dentry = dn; 1806 dn = req->r_dentry; 1807 } 1808 1809 /* null dentry? */ 1810 if (!rinfo->head->is_target) { 1811 doutc(cl, "null dentry\n"); 1812 if (d_really_is_positive(dn)) { 1813 doutc(cl, "d_delete %p\n", dn); 1814 ceph_dir_clear_ordered(dir); 1815 d_delete(dn); 1816 } else if (have_lease) { 1817 if (d_unhashed(dn)) 1818 d_add(dn, NULL); 1819 } 1820 1821 if (!d_unhashed(dn) && have_lease) 1822 update_dentry_lease(dir, dn, 1823 rinfo->dlease, session, 1824 req->r_request_started); 1825 goto done; 1826 } 1827 1828 if (unlikely(!in)) { 1829 err = -EINVAL; 1830 goto done; 1831 } 1832 1833 /* attach proper inode */ 1834 if (d_really_is_negative(dn)) { 1835 ceph_dir_clear_ordered(dir); 1836 ihold(in); 1837 err = splice_dentry(&req->r_dentry, in); 1838 if (err < 0) 1839 goto done; 1840 dn = req->r_dentry; /* may have spliced */ 1841 } else if (d_really_is_positive(dn) && d_inode(dn) != in) { 1842 doutc(cl, " %p links to %p %llx.%llx, not %llx.%llx\n", 1843 dn, d_inode(dn), ceph_vinop(d_inode(dn)), 1844 ceph_vinop(in)); 1845 d_invalidate(dn); 1846 have_lease = false; 1847 } 1848 1849 if (have_lease) { 1850 update_dentry_lease(dir, dn, 1851 rinfo->dlease, session, 1852 req->r_request_started); 1853 } 1854 doutc(cl, " final dn %p\n", dn); 1855 } else if ((req->r_op == CEPH_MDS_OP_LOOKUPSNAP || 1856 req->r_op == CEPH_MDS_OP_MKSNAP) && 1857 test_bit(CEPH_MDS_R_PARENT_LOCKED, &req->r_req_flags) && 1858 !test_bit(CEPH_MDS_R_ABORTED, &req->r_req_flags)) { 1859 struct inode *dir = req->r_parent; 1860 1861 /* fill out a snapdir LOOKUPSNAP dentry */ 1862 BUG_ON(!dir); 1863 BUG_ON(ceph_snap(dir) != CEPH_SNAPDIR); 1864 BUG_ON(!req->r_dentry); 1865 doutc(cl, " linking snapped dir %p to dn %p\n", in, 1866 req->r_dentry); 1867 ceph_dir_clear_ordered(dir); 1868 1869 if (unlikely(!in)) { 1870 err = -EINVAL; 1871 goto done; 1872 } 1873 1874 ihold(in); 1875 err = splice_dentry(&req->r_dentry, in); 1876 if (err < 0) 1877 goto done; 1878 } else if (rinfo->head->is_dentry && req->r_dentry) { 1879 /* parent inode is not locked, be careful */ 1880 struct ceph_vino *ptvino = NULL; 1881 dvino.ino = le64_to_cpu(rinfo->diri.in->ino); 1882 dvino.snap = le64_to_cpu(rinfo->diri.in->snapid); 1883 if (rinfo->head->is_target) { 1884 tvino.ino = le64_to_cpu(rinfo->targeti.in->ino); 1885 tvino.snap = le64_to_cpu(rinfo->targeti.in->snapid); 1886 ptvino = &tvino; 1887 } 1888 update_dentry_lease_careful(req->r_dentry, rinfo->dlease, 1889 session, req->r_request_started, 1890 rinfo->dname, rinfo->dname_len, 1891 &dvino, ptvino); 1892 } 1893 done: 1894 /* Drop extra ref from ceph_get_reply_dir() if it returned a new inode */ 1895 if (unlikely(!IS_ERR_OR_NULL(parent_dir) && parent_dir != req->r_parent)) 1896 iput(parent_dir); 1897 doutc(cl, "done err=%d\n", err); 1898 return err; 1899 } 1900 1901 /* 1902 * Prepopulate our cache with readdir results, leases, etc. 1903 */ 1904 static int readdir_prepopulate_inodes_only(struct ceph_mds_request *req, 1905 struct ceph_mds_session *session) 1906 { 1907 struct ceph_mds_reply_info_parsed *rinfo = &req->r_reply_info; 1908 struct ceph_client *cl = session->s_mdsc->fsc->client; 1909 int i, err = 0; 1910 1911 for (i = 0; i < rinfo->dir_nr; i++) { 1912 struct ceph_mds_reply_dir_entry *rde = rinfo->dir_entries + i; 1913 struct ceph_vino vino; 1914 struct inode *in; 1915 int rc; 1916 1917 vino.ino = le64_to_cpu(rde->inode.in->ino); 1918 vino.snap = le64_to_cpu(rde->inode.in->snapid); 1919 1920 in = ceph_get_inode(req->r_dentry->d_sb, vino, NULL); 1921 if (IS_ERR(in)) { 1922 err = PTR_ERR(in); 1923 doutc(cl, "badness got %d\n", err); 1924 continue; 1925 } 1926 rc = ceph_fill_inode(in, NULL, &rde->inode, NULL, session, 1927 -1, &req->r_caps_reservation); 1928 if (rc < 0) { 1929 pr_err_client(cl, "inode badness on %p got %d\n", in, 1930 rc); 1931 err = rc; 1932 if (inode_state_read_once(in) & I_NEW) { 1933 ihold(in); 1934 discard_new_inode(in); 1935 } 1936 } else if (inode_state_read_once(in) & I_NEW) { 1937 unlock_new_inode(in); 1938 } 1939 1940 iput(in); 1941 } 1942 1943 return err; 1944 } 1945 1946 void ceph_readdir_cache_release(struct ceph_readdir_cache_control *ctl) 1947 { 1948 if (ctl->folio) { 1949 folio_release_kmap(ctl->folio, ctl->dentries); 1950 ctl->folio = NULL; 1951 } 1952 } 1953 1954 static int fill_readdir_cache(struct inode *dir, struct dentry *dn, 1955 struct ceph_readdir_cache_control *ctl, 1956 struct ceph_mds_request *req) 1957 { 1958 struct ceph_client *cl = ceph_inode_to_client(dir); 1959 struct ceph_inode_info *ci = ceph_inode(dir); 1960 unsigned nsize = PAGE_SIZE / sizeof(struct dentry*); 1961 unsigned idx = ctl->index % nsize; 1962 pgoff_t pgoff = ctl->index / nsize; 1963 1964 if (!ctl->folio || pgoff != ctl->folio->index) { 1965 ceph_readdir_cache_release(ctl); 1966 fgf_t fgf = FGP_LOCK; 1967 1968 if (idx == 0) 1969 fgf |= FGP_ACCESSED | FGP_CREAT; 1970 1971 ctl->folio = __filemap_get_folio(&dir->i_data, pgoff, 1972 fgf, mapping_gfp_mask(&dir->i_data)); 1973 if (IS_ERR(ctl->folio)) { 1974 int err = PTR_ERR(ctl->folio); 1975 1976 ctl->folio = NULL; 1977 ctl->index = -1; 1978 return idx == 0 ? err : 0; 1979 } 1980 /* reading/filling the cache are serialized by 1981 * i_rwsem, no need to use folio lock */ 1982 folio_unlock(ctl->folio); 1983 ctl->dentries = kmap_local_folio(ctl->folio, 0); 1984 if (idx == 0) 1985 memset(ctl->dentries, 0, PAGE_SIZE); 1986 } 1987 1988 if (req->r_dir_release_cnt == atomic64_read(&ci->i_release_count) && 1989 req->r_dir_ordered_cnt == atomic64_read(&ci->i_ordered_count)) { 1990 doutc(cl, "dn %p idx %d\n", dn, ctl->index); 1991 ctl->dentries[idx] = dn; 1992 ctl->index++; 1993 } else { 1994 doutc(cl, "disable readdir cache\n"); 1995 ctl->index = -1; 1996 } 1997 return 0; 1998 } 1999 2000 int ceph_readdir_prepopulate(struct ceph_mds_request *req, 2001 struct ceph_mds_session *session) 2002 { 2003 struct dentry *parent = req->r_dentry; 2004 struct inode *inode = d_inode(parent); 2005 struct ceph_inode_info *ci = ceph_inode(inode); 2006 struct ceph_mds_reply_info_parsed *rinfo = &req->r_reply_info; 2007 struct ceph_client *cl = session->s_mdsc->fsc->client; 2008 struct qstr dname; 2009 struct dentry *dn; 2010 struct inode *in; 2011 int err = 0, skipped = 0, ret, i; 2012 u32 frag = le32_to_cpu(req->r_args.readdir.frag); 2013 u32 last_hash = 0; 2014 u32 fpos_offset; 2015 struct ceph_readdir_cache_control cache_ctl = {}; 2016 2017 if (test_bit(CEPH_MDS_R_ABORTED, &req->r_req_flags)) 2018 return readdir_prepopulate_inodes_only(req, session); 2019 2020 if (rinfo->hash_order) { 2021 if (req->r_path2) { 2022 last_hash = ceph_str_hash(ci->i_dir_layout.dl_dir_hash, 2023 req->r_path2, 2024 strlen(req->r_path2)); 2025 last_hash = ceph_frag_value(last_hash); 2026 } else if (rinfo->offset_hash) { 2027 /* mds understands offset_hash */ 2028 WARN_ON_ONCE(req->r_readdir_offset != 2); 2029 last_hash = le32_to_cpu(req->r_args.readdir.offset_hash); 2030 } 2031 } 2032 2033 if (rinfo->dir_dir && 2034 le32_to_cpu(rinfo->dir_dir->frag) != frag) { 2035 doutc(cl, "got new frag %x -> %x\n", frag, 2036 le32_to_cpu(rinfo->dir_dir->frag)); 2037 frag = le32_to_cpu(rinfo->dir_dir->frag); 2038 if (!rinfo->hash_order) 2039 req->r_readdir_offset = 2; 2040 } 2041 2042 if (le32_to_cpu(rinfo->head->op) == CEPH_MDS_OP_LSSNAP) { 2043 doutc(cl, "%d items under SNAPDIR dn %p\n", 2044 rinfo->dir_nr, parent); 2045 } else { 2046 doutc(cl, "%d items under dn %p\n", rinfo->dir_nr, parent); 2047 if (rinfo->dir_dir) 2048 ceph_fill_dirfrag(d_inode(parent), rinfo->dir_dir); 2049 2050 if (ceph_frag_is_leftmost(frag) && 2051 req->r_readdir_offset == 2 && 2052 !(rinfo->hash_order && last_hash)) { 2053 /* note dir version at start of readdir so we can 2054 * tell if any dentries get dropped */ 2055 req->r_dir_release_cnt = 2056 atomic64_read(&ci->i_release_count); 2057 req->r_dir_ordered_cnt = 2058 atomic64_read(&ci->i_ordered_count); 2059 req->r_readdir_cache_idx = 0; 2060 } 2061 } 2062 2063 cache_ctl.index = req->r_readdir_cache_idx; 2064 fpos_offset = req->r_readdir_offset; 2065 2066 /* FIXME: release caps/leases if error occurs */ 2067 for (i = 0; i < rinfo->dir_nr; i++) { 2068 struct ceph_mds_reply_dir_entry *rde = rinfo->dir_entries + i; 2069 struct ceph_vino tvino; 2070 2071 dname.name = rde->name; 2072 dname.len = rde->name_len; 2073 dname.hash = full_name_hash(parent, dname.name, dname.len); 2074 2075 tvino.ino = le64_to_cpu(rde->inode.in->ino); 2076 tvino.snap = le64_to_cpu(rde->inode.in->snapid); 2077 2078 if (rinfo->hash_order) { 2079 u32 hash = ceph_frag_value(rde->raw_hash); 2080 if (hash != last_hash) 2081 fpos_offset = 2; 2082 last_hash = hash; 2083 rde->offset = ceph_make_fpos(hash, fpos_offset++, true); 2084 } else { 2085 rde->offset = ceph_make_fpos(frag, fpos_offset++, false); 2086 } 2087 2088 retry_lookup: 2089 dn = d_lookup(parent, &dname); 2090 doutc(cl, "d_lookup on parent=%p name=%.*s got %p\n", 2091 parent, dname.len, dname.name, dn); 2092 2093 if (!dn) { 2094 dn = d_alloc(parent, &dname); 2095 doutc(cl, "d_alloc %p '%.*s' = %p\n", parent, 2096 dname.len, dname.name, dn); 2097 if (!dn) { 2098 doutc(cl, "d_alloc badness\n"); 2099 err = -ENOMEM; 2100 goto out; 2101 } 2102 if (rde->is_nokey) { 2103 spin_lock(&dn->d_lock); 2104 dn->d_flags |= DCACHE_NOKEY_NAME; 2105 spin_unlock(&dn->d_lock); 2106 } 2107 } else if (d_really_is_positive(dn) && 2108 (ceph_ino(d_inode(dn)) != tvino.ino || 2109 ceph_snap(d_inode(dn)) != tvino.snap)) { 2110 struct ceph_dentry_info *di = ceph_dentry(dn); 2111 doutc(cl, " dn %p points to wrong inode %p\n", 2112 dn, d_inode(dn)); 2113 2114 spin_lock(&dn->d_lock); 2115 if (di->offset > 0 && 2116 di->lease_shared_gen == 2117 atomic_read(&ci->i_shared_gen)) { 2118 __ceph_dir_clear_ordered(ci); 2119 di->offset = 0; 2120 } 2121 spin_unlock(&dn->d_lock); 2122 2123 d_delete(dn); 2124 dput(dn); 2125 goto retry_lookup; 2126 } 2127 2128 /* inode */ 2129 if (d_really_is_positive(dn)) { 2130 in = d_inode(dn); 2131 } else { 2132 in = ceph_get_inode(parent->d_sb, tvino, NULL); 2133 if (IS_ERR(in)) { 2134 doutc(cl, "new_inode badness\n"); 2135 d_drop(dn); 2136 dput(dn); 2137 err = PTR_ERR(in); 2138 goto out; 2139 } 2140 } 2141 2142 ret = ceph_fill_inode(in, NULL, &rde->inode, NULL, session, 2143 -1, &req->r_caps_reservation); 2144 if (ret < 0) { 2145 pr_err_client(cl, "badness on %p %llx.%llx\n", in, 2146 ceph_vinop(in)); 2147 if (d_really_is_negative(dn)) { 2148 if (inode_state_read_once(in) & I_NEW) { 2149 ihold(in); 2150 discard_new_inode(in); 2151 } 2152 iput(in); 2153 } 2154 d_drop(dn); 2155 err = ret; 2156 goto next_item; 2157 } 2158 if (inode_state_read_once(in) & I_NEW) 2159 unlock_new_inode(in); 2160 2161 if (d_really_is_negative(dn)) { 2162 if (ceph_security_xattr_deadlock(in)) { 2163 doutc(cl, " skip splicing dn %p to inode %p" 2164 " (security xattr deadlock)\n", dn, in); 2165 iput(in); 2166 skipped++; 2167 goto next_item; 2168 } 2169 2170 err = splice_dentry(&dn, in); 2171 if (err < 0) 2172 goto next_item; 2173 } 2174 2175 ceph_dentry(dn)->offset = rde->offset; 2176 2177 update_dentry_lease(d_inode(parent), dn, 2178 rde->lease, req->r_session, 2179 req->r_request_started); 2180 2181 if (err == 0 && skipped == 0 && cache_ctl.index >= 0) { 2182 ret = fill_readdir_cache(d_inode(parent), dn, 2183 &cache_ctl, req); 2184 if (ret < 0) 2185 err = ret; 2186 } 2187 next_item: 2188 dput(dn); 2189 } 2190 out: 2191 if (err == 0 && skipped == 0) { 2192 set_bit(CEPH_MDS_R_DID_PREPOPULATE, &req->r_req_flags); 2193 req->r_readdir_cache_idx = cache_ctl.index; 2194 } 2195 ceph_readdir_cache_release(&cache_ctl); 2196 doutc(cl, "done\n"); 2197 return err; 2198 } 2199 2200 bool ceph_inode_set_size(struct inode *inode, loff_t size) 2201 { 2202 struct ceph_client *cl = ceph_inode_to_client(inode); 2203 struct ceph_inode_info *ci = ceph_inode(inode); 2204 bool ret; 2205 2206 spin_lock(&ci->i_ceph_lock); 2207 doutc(cl, "set_size %p %llu -> %llu\n", inode, i_size_read(inode), size); 2208 i_size_write(inode, size); 2209 ceph_fscache_update(inode); 2210 inode->i_blocks = calc_inode_blocks(size); 2211 2212 ret = __ceph_should_report_size(ci); 2213 2214 spin_unlock(&ci->i_ceph_lock); 2215 2216 return ret; 2217 } 2218 2219 void ceph_queue_inode_work(struct inode *inode, int work_bit) 2220 { 2221 struct ceph_fs_client *fsc = ceph_inode_to_fs_client(inode); 2222 struct ceph_client *cl = fsc->client; 2223 struct ceph_inode_info *ci = ceph_inode(inode); 2224 set_bit(work_bit, &ci->i_work_mask); 2225 2226 ihold(inode); 2227 if (queue_work(fsc->inode_wq, &ci->i_work)) { 2228 doutc(cl, "%p %llx.%llx mask=%lx\n", inode, 2229 ceph_vinop(inode), ci->i_work_mask); 2230 } else { 2231 doutc(cl, "%p %llx.%llx already queued, mask=%lx\n", 2232 inode, ceph_vinop(inode), ci->i_work_mask); 2233 iput(inode); 2234 } 2235 } 2236 2237 static void ceph_do_invalidate_pages(struct inode *inode) 2238 { 2239 struct ceph_client *cl = ceph_inode_to_client(inode); 2240 struct ceph_inode_info *ci = ceph_inode(inode); 2241 u32 orig_gen; 2242 int check = 0; 2243 2244 ceph_fscache_invalidate(inode, false); 2245 2246 mutex_lock(&ci->i_truncate_mutex); 2247 2248 if (ceph_inode_is_shutdown(inode)) { 2249 pr_warn_ratelimited_client(cl, 2250 "%p %llx.%llx is shut down\n", inode, 2251 ceph_vinop(inode)); 2252 mapping_set_error(inode->i_mapping, -EIO); 2253 truncate_pagecache(inode, 0); 2254 mutex_unlock(&ci->i_truncate_mutex); 2255 goto out; 2256 } 2257 2258 spin_lock(&ci->i_ceph_lock); 2259 doutc(cl, "%p %llx.%llx gen %d revoking %d\n", inode, 2260 ceph_vinop(inode), ci->i_rdcache_gen, ci->i_rdcache_revoking); 2261 if (ci->i_rdcache_revoking != ci->i_rdcache_gen) { 2262 if (__ceph_caps_revoking_other(ci, NULL, CEPH_CAP_FILE_CACHE)) 2263 check = 1; 2264 spin_unlock(&ci->i_ceph_lock); 2265 mutex_unlock(&ci->i_truncate_mutex); 2266 goto out; 2267 } 2268 orig_gen = ci->i_rdcache_gen; 2269 spin_unlock(&ci->i_ceph_lock); 2270 2271 if (invalidate_inode_pages2(inode->i_mapping) < 0) { 2272 pr_err_client(cl, "invalidate_inode_pages2 %llx.%llx failed\n", 2273 ceph_vinop(inode)); 2274 } 2275 2276 spin_lock(&ci->i_ceph_lock); 2277 if (orig_gen == ci->i_rdcache_gen && 2278 orig_gen == ci->i_rdcache_revoking) { 2279 doutc(cl, "%p %llx.%llx gen %d successful\n", inode, 2280 ceph_vinop(inode), ci->i_rdcache_gen); 2281 ci->i_rdcache_revoking--; 2282 check = 1; 2283 } else { 2284 doutc(cl, "%p %llx.%llx gen %d raced, now %d revoking %d\n", 2285 inode, ceph_vinop(inode), orig_gen, ci->i_rdcache_gen, 2286 ci->i_rdcache_revoking); 2287 if (__ceph_caps_revoking_other(ci, NULL, CEPH_CAP_FILE_CACHE)) 2288 check = 1; 2289 } 2290 spin_unlock(&ci->i_ceph_lock); 2291 mutex_unlock(&ci->i_truncate_mutex); 2292 out: 2293 if (check) 2294 ceph_check_caps(ci, 0); 2295 } 2296 2297 /* 2298 * Make sure any pending truncation is applied before doing anything 2299 * that may depend on it. 2300 */ 2301 void __ceph_do_pending_vmtruncate(struct inode *inode) 2302 { 2303 struct ceph_client *cl = ceph_inode_to_client(inode); 2304 struct ceph_inode_info *ci = ceph_inode(inode); 2305 u64 to; 2306 int wrbuffer_refs, finish = 0; 2307 2308 mutex_lock(&ci->i_truncate_mutex); 2309 retry: 2310 spin_lock(&ci->i_ceph_lock); 2311 if (ci->i_truncate_pending == 0) { 2312 doutc(cl, "%p %llx.%llx none pending\n", inode, 2313 ceph_vinop(inode)); 2314 spin_unlock(&ci->i_ceph_lock); 2315 mutex_unlock(&ci->i_truncate_mutex); 2316 return; 2317 } 2318 2319 /* 2320 * make sure any dirty snapped pages are flushed before we 2321 * possibly truncate them.. so write AND block! 2322 */ 2323 if (ci->i_wrbuffer_ref_head < ci->i_wrbuffer_ref) { 2324 spin_unlock(&ci->i_ceph_lock); 2325 doutc(cl, "%p %llx.%llx flushing snaps first\n", inode, 2326 ceph_vinop(inode)); 2327 filemap_write_and_wait_range(&inode->i_data, 0, 2328 inode->i_sb->s_maxbytes); 2329 goto retry; 2330 } 2331 2332 /* there should be no reader or writer */ 2333 WARN_ON_ONCE(ci->i_rd_ref || ci->i_wr_ref); 2334 2335 to = ci->i_truncate_pagecache_size; 2336 wrbuffer_refs = ci->i_wrbuffer_ref; 2337 doutc(cl, "%p %llx.%llx (%d) to %lld\n", inode, ceph_vinop(inode), 2338 ci->i_truncate_pending, to); 2339 spin_unlock(&ci->i_ceph_lock); 2340 2341 ceph_fscache_resize(inode, to); 2342 truncate_pagecache(inode, to); 2343 2344 spin_lock(&ci->i_ceph_lock); 2345 if (to == ci->i_truncate_pagecache_size) { 2346 ci->i_truncate_pending = 0; 2347 finish = 1; 2348 } 2349 spin_unlock(&ci->i_ceph_lock); 2350 if (!finish) 2351 goto retry; 2352 2353 mutex_unlock(&ci->i_truncate_mutex); 2354 2355 if (wrbuffer_refs == 0) 2356 ceph_check_caps(ci, 0); 2357 2358 wake_up_all(&ci->i_cap_wq); 2359 } 2360 2361 static void ceph_inode_work(struct work_struct *work) 2362 { 2363 struct ceph_inode_info *ci = container_of(work, struct ceph_inode_info, 2364 i_work); 2365 struct inode *inode = &ci->netfs.inode; 2366 struct ceph_client *cl = ceph_inode_to_client(inode); 2367 2368 if (test_and_clear_bit(CEPH_I_WORK_WRITEBACK, &ci->i_work_mask)) { 2369 doutc(cl, "writeback %p %llx.%llx\n", inode, ceph_vinop(inode)); 2370 filemap_fdatawrite(&inode->i_data); 2371 } 2372 if (test_and_clear_bit(CEPH_I_WORK_INVALIDATE_PAGES, &ci->i_work_mask)) 2373 ceph_do_invalidate_pages(inode); 2374 2375 if (test_and_clear_bit(CEPH_I_WORK_VMTRUNCATE, &ci->i_work_mask)) 2376 __ceph_do_pending_vmtruncate(inode); 2377 2378 if (test_and_clear_bit(CEPH_I_WORK_CHECK_CAPS, &ci->i_work_mask)) 2379 ceph_check_caps(ci, 0); 2380 2381 if (test_and_clear_bit(CEPH_I_WORK_FLUSH_SNAPS, &ci->i_work_mask)) 2382 ceph_flush_snaps(ci, NULL); 2383 2384 iput(inode); 2385 } 2386 2387 static const char *ceph_encrypted_get_link(struct dentry *dentry, 2388 struct inode *inode, 2389 struct delayed_call *done) 2390 { 2391 struct ceph_inode_info *ci = ceph_inode(inode); 2392 2393 if (!dentry) 2394 return ERR_PTR(-ECHILD); 2395 2396 return fscrypt_get_symlink(inode, ci->i_symlink, i_size_read(inode), 2397 done); 2398 } 2399 2400 static int ceph_encrypted_symlink_getattr(struct mnt_idmap *idmap, 2401 const struct path *path, 2402 struct kstat *stat, u32 request_mask, 2403 unsigned int query_flags) 2404 { 2405 int ret; 2406 2407 ret = ceph_getattr(idmap, path, stat, request_mask, query_flags); 2408 if (ret) 2409 return ret; 2410 return fscrypt_symlink_getattr(path, stat); 2411 } 2412 2413 /* 2414 * symlinks 2415 */ 2416 static const struct inode_operations ceph_symlink_iops = { 2417 .get_link = simple_get_link, 2418 .setattr = ceph_setattr, 2419 .getattr = ceph_getattr, 2420 .listxattr = ceph_listxattr, 2421 }; 2422 2423 static const struct inode_operations ceph_encrypted_symlink_iops = { 2424 .get_link = ceph_encrypted_get_link, 2425 .setattr = ceph_setattr, 2426 .getattr = ceph_encrypted_symlink_getattr, 2427 .listxattr = ceph_listxattr, 2428 }; 2429 2430 /* 2431 * Transfer the encrypted last block to the MDS and the MDS 2432 * will help update it when truncating a smaller size. 2433 * 2434 * We don't support a PAGE_SIZE that is smaller than the 2435 * CEPH_FSCRYPT_BLOCK_SIZE. 2436 */ 2437 static int fill_fscrypt_truncate(struct inode *inode, 2438 struct ceph_mds_request *req, 2439 struct iattr *attr) 2440 { 2441 struct ceph_client *cl = ceph_inode_to_client(inode); 2442 struct ceph_inode_info *ci = ceph_inode(inode); 2443 int boff = attr->ia_size % CEPH_FSCRYPT_BLOCK_SIZE; 2444 loff_t pos, orig_pos = round_down(attr->ia_size, 2445 CEPH_FSCRYPT_BLOCK_SIZE); 2446 u64 block = orig_pos >> CEPH_FSCRYPT_BLOCK_SHIFT; 2447 struct ceph_pagelist *pagelist = NULL; 2448 struct kvec iov = {0}; 2449 struct iov_iter iter; 2450 struct page *page = NULL; 2451 struct ceph_fscrypt_truncate_size_header header; 2452 int retry_op = 0; 2453 int len = CEPH_FSCRYPT_BLOCK_SIZE; 2454 loff_t i_size = i_size_read(inode); 2455 int got, ret, issued; 2456 u64 objver; 2457 2458 ret = __ceph_get_caps(inode, NULL, CEPH_CAP_FILE_RD, 0, -1, &got); 2459 if (ret < 0) 2460 return ret; 2461 2462 issued = __ceph_caps_issued(ci, NULL); 2463 2464 doutc(cl, "size %lld -> %lld got cap refs on %s, issued %s\n", 2465 i_size, attr->ia_size, ceph_cap_string(got), 2466 ceph_cap_string(issued)); 2467 2468 /* Try to writeback the dirty pagecaches */ 2469 if (issued & (CEPH_CAP_FILE_BUFFER)) { 2470 loff_t lend = orig_pos + CEPH_FSCRYPT_BLOCK_SIZE - 1; 2471 2472 ret = filemap_write_and_wait_range(inode->i_mapping, 2473 orig_pos, lend); 2474 if (ret < 0) 2475 goto out; 2476 } 2477 2478 page = __page_cache_alloc(GFP_KERNEL); 2479 if (page == NULL) { 2480 ret = -ENOMEM; 2481 goto out; 2482 } 2483 2484 pagelist = ceph_pagelist_alloc(GFP_KERNEL); 2485 if (!pagelist) { 2486 ret = -ENOMEM; 2487 goto out; 2488 } 2489 2490 iov.iov_base = kmap_local_page(page); 2491 iov.iov_len = len; 2492 iov_iter_kvec(&iter, READ, &iov, 1, len); 2493 2494 pos = orig_pos; 2495 ret = __ceph_sync_read(inode, &pos, &iter, &retry_op, &objver); 2496 if (ret < 0) 2497 goto out; 2498 2499 /* Insert the header first */ 2500 header.ver = 1; 2501 header.compat = 1; 2502 header.change_attr = cpu_to_le64(inode_peek_iversion_raw(inode)); 2503 2504 /* 2505 * Always set the block_size to CEPH_FSCRYPT_BLOCK_SIZE, 2506 * because in MDS it may need this to do the truncate. 2507 */ 2508 header.block_size = cpu_to_le32(CEPH_FSCRYPT_BLOCK_SIZE); 2509 2510 /* 2511 * If we hit a hole here, we should just skip filling 2512 * the fscrypt for the request, because once the fscrypt 2513 * is enabled, the file will be split into many blocks 2514 * with the size of CEPH_FSCRYPT_BLOCK_SIZE, if there 2515 * has a hole, the hole size should be multiple of block 2516 * size. 2517 * 2518 * If the Rados object doesn't exist, it will be set to 0. 2519 */ 2520 if (!objver) { 2521 doutc(cl, "hit hole, ppos %lld < size %lld\n", pos, i_size); 2522 2523 header.data_len = cpu_to_le32(8 + 8 + 4); 2524 header.file_offset = 0; 2525 ret = 0; 2526 } else { 2527 header.data_len = cpu_to_le32(8 + 8 + 4 + CEPH_FSCRYPT_BLOCK_SIZE); 2528 header.file_offset = cpu_to_le64(orig_pos); 2529 2530 doutc(cl, "encrypt block boff/bsize %d/%lu\n", boff, 2531 CEPH_FSCRYPT_BLOCK_SIZE); 2532 2533 /* truncate and zero out the extra contents for the last block */ 2534 memset(iov.iov_base + boff, 0, PAGE_SIZE - boff); 2535 2536 /* encrypt the last block */ 2537 ret = ceph_fscrypt_encrypt_block_inplace(inode, page, 2538 CEPH_FSCRYPT_BLOCK_SIZE, 2539 0, block); 2540 if (ret) 2541 goto out; 2542 } 2543 2544 /* Insert the header */ 2545 ret = ceph_pagelist_append(pagelist, &header, sizeof(header)); 2546 if (ret) 2547 goto out; 2548 2549 if (header.block_size) { 2550 /* Append the last block contents to pagelist */ 2551 ret = ceph_pagelist_append(pagelist, iov.iov_base, 2552 CEPH_FSCRYPT_BLOCK_SIZE); 2553 if (ret) 2554 goto out; 2555 } 2556 req->r_pagelist = pagelist; 2557 out: 2558 doutc(cl, "%p %llx.%llx size dropping cap refs on %s\n", inode, 2559 ceph_vinop(inode), ceph_cap_string(got)); 2560 ceph_put_cap_refs(ci, got); 2561 if (iov.iov_base) 2562 kunmap_local(iov.iov_base); 2563 if (page) 2564 __free_pages(page, 0); 2565 if (ret && pagelist) 2566 ceph_pagelist_release(pagelist); 2567 return ret; 2568 } 2569 2570 int __ceph_setattr(struct mnt_idmap *idmap, struct inode *inode, 2571 struct iattr *attr, struct ceph_iattr *cia) 2572 { 2573 struct ceph_inode_info *ci = ceph_inode(inode); 2574 unsigned int ia_valid = attr->ia_valid; 2575 struct ceph_mds_request *req; 2576 struct ceph_mds_client *mdsc = ceph_sb_to_fs_client(inode->i_sb)->mdsc; 2577 struct ceph_client *cl = ceph_inode_to_client(inode); 2578 struct ceph_cap_flush *prealloc_cf; 2579 loff_t isize = i_size_read(inode); 2580 int issued; 2581 int release = 0, dirtied = 0; 2582 int mask = 0; 2583 int err = 0; 2584 int inode_dirty_flags = 0; 2585 bool lock_snap_rwsem = false; 2586 bool fill_fscrypt; 2587 int truncate_retry = 20; /* The RMW will take around 50ms */ 2588 struct dentry *dentry; 2589 char *path; 2590 bool do_sync = false; 2591 2592 dentry = d_find_alias(inode); 2593 if (!dentry) { 2594 do_sync = true; 2595 } else { 2596 struct ceph_path_info path_info = {0}; 2597 path = ceph_mdsc_build_path(mdsc, dentry, &path_info, 0); 2598 if (IS_ERR(path)) { 2599 do_sync = true; 2600 err = 0; 2601 } else { 2602 err = ceph_mds_check_access(mdsc, path, MAY_WRITE); 2603 } 2604 ceph_mdsc_free_path_info(&path_info); 2605 dput(dentry); 2606 2607 /* For none EACCES cases will let the MDS do the mds auth check */ 2608 if (err == -EACCES) { 2609 return err; 2610 } else if (err < 0) { 2611 do_sync = true; 2612 err = 0; 2613 } 2614 } 2615 2616 retry: 2617 prealloc_cf = ceph_alloc_cap_flush(); 2618 if (!prealloc_cf) 2619 return -ENOMEM; 2620 2621 req = ceph_mdsc_create_request(mdsc, CEPH_MDS_OP_SETATTR, 2622 USE_AUTH_MDS); 2623 if (IS_ERR(req)) { 2624 ceph_free_cap_flush(prealloc_cf); 2625 return PTR_ERR(req); 2626 } 2627 2628 fill_fscrypt = false; 2629 spin_lock(&ci->i_ceph_lock); 2630 issued = __ceph_caps_issued(ci, NULL); 2631 2632 if (!ci->i_head_snapc && 2633 (issued & (CEPH_CAP_ANY_EXCL | CEPH_CAP_FILE_WR))) { 2634 lock_snap_rwsem = true; 2635 if (!down_read_trylock(&mdsc->snap_rwsem)) { 2636 spin_unlock(&ci->i_ceph_lock); 2637 down_read(&mdsc->snap_rwsem); 2638 spin_lock(&ci->i_ceph_lock); 2639 issued = __ceph_caps_issued(ci, NULL); 2640 } 2641 } 2642 2643 doutc(cl, "%p %llx.%llx issued %s\n", inode, ceph_vinop(inode), 2644 ceph_cap_string(issued)); 2645 #if IS_ENABLED(CONFIG_FS_ENCRYPTION) 2646 if (cia && cia->fscrypt_auth) { 2647 u32 len = ceph_fscrypt_auth_len(cia->fscrypt_auth); 2648 2649 if (len > sizeof(*cia->fscrypt_auth)) { 2650 err = -EINVAL; 2651 spin_unlock(&ci->i_ceph_lock); 2652 goto out; 2653 } 2654 2655 doutc(cl, "%p %llx.%llx fscrypt_auth len %u to %u)\n", inode, 2656 ceph_vinop(inode), ci->fscrypt_auth_len, len); 2657 2658 /* It should never be re-set once set */ 2659 WARN_ON_ONCE(ci->fscrypt_auth); 2660 2661 if (!do_sync && (issued & CEPH_CAP_AUTH_EXCL)) { 2662 dirtied |= CEPH_CAP_AUTH_EXCL; 2663 kfree(ci->fscrypt_auth); 2664 ci->fscrypt_auth = (u8 *)cia->fscrypt_auth; 2665 ci->fscrypt_auth_len = len; 2666 } else if ((issued & CEPH_CAP_AUTH_SHARED) == 0 || 2667 ci->fscrypt_auth_len != len || 2668 memcmp(ci->fscrypt_auth, cia->fscrypt_auth, len)) { 2669 req->r_fscrypt_auth = cia->fscrypt_auth; 2670 mask |= CEPH_SETATTR_FSCRYPT_AUTH; 2671 release |= CEPH_CAP_AUTH_SHARED; 2672 } 2673 cia->fscrypt_auth = NULL; 2674 } 2675 #else 2676 if (cia && cia->fscrypt_auth) { 2677 err = -EINVAL; 2678 spin_unlock(&ci->i_ceph_lock); 2679 goto out; 2680 } 2681 #endif /* CONFIG_FS_ENCRYPTION */ 2682 2683 if (ia_valid & ATTR_UID) { 2684 kuid_t fsuid = from_vfsuid(idmap, i_user_ns(inode), attr->ia_vfsuid); 2685 2686 doutc(cl, "%p %llx.%llx uid %d -> %d\n", inode, 2687 ceph_vinop(inode), 2688 from_kuid(&init_user_ns, inode->i_uid), 2689 from_kuid(&init_user_ns, attr->ia_uid)); 2690 if (!do_sync && (issued & CEPH_CAP_AUTH_EXCL)) { 2691 inode->i_uid = fsuid; 2692 dirtied |= CEPH_CAP_AUTH_EXCL; 2693 } else if ((issued & CEPH_CAP_AUTH_SHARED) == 0 || 2694 !uid_eq(fsuid, inode->i_uid)) { 2695 req->r_args.setattr.uid = cpu_to_le32( 2696 from_kuid(&init_user_ns, fsuid)); 2697 mask |= CEPH_SETATTR_UID; 2698 release |= CEPH_CAP_AUTH_SHARED; 2699 } 2700 } 2701 if (ia_valid & ATTR_GID) { 2702 kgid_t fsgid = from_vfsgid(idmap, i_user_ns(inode), attr->ia_vfsgid); 2703 2704 doutc(cl, "%p %llx.%llx gid %d -> %d\n", inode, 2705 ceph_vinop(inode), 2706 from_kgid(&init_user_ns, inode->i_gid), 2707 from_kgid(&init_user_ns, attr->ia_gid)); 2708 if (!do_sync && (issued & CEPH_CAP_AUTH_EXCL)) { 2709 inode->i_gid = fsgid; 2710 dirtied |= CEPH_CAP_AUTH_EXCL; 2711 } else if ((issued & CEPH_CAP_AUTH_SHARED) == 0 || 2712 !gid_eq(fsgid, inode->i_gid)) { 2713 req->r_args.setattr.gid = cpu_to_le32( 2714 from_kgid(&init_user_ns, fsgid)); 2715 mask |= CEPH_SETATTR_GID; 2716 release |= CEPH_CAP_AUTH_SHARED; 2717 } 2718 } 2719 if (ia_valid & ATTR_MODE) { 2720 doutc(cl, "%p %llx.%llx mode 0%o -> 0%o\n", inode, 2721 ceph_vinop(inode), inode->i_mode, attr->ia_mode); 2722 if (!do_sync && (issued & CEPH_CAP_AUTH_EXCL)) { 2723 inode->i_mode = attr->ia_mode; 2724 dirtied |= CEPH_CAP_AUTH_EXCL; 2725 } else if ((issued & CEPH_CAP_AUTH_SHARED) == 0 || 2726 attr->ia_mode != inode->i_mode) { 2727 inode->i_mode = attr->ia_mode; 2728 req->r_args.setattr.mode = cpu_to_le32(attr->ia_mode); 2729 mask |= CEPH_SETATTR_MODE; 2730 release |= CEPH_CAP_AUTH_SHARED; 2731 } 2732 } 2733 2734 if (ia_valid & ATTR_ATIME) { 2735 struct timespec64 atime = inode_get_atime(inode); 2736 2737 doutc(cl, "%p %llx.%llx atime %ptSp -> %ptSp\n", 2738 inode, ceph_vinop(inode), &atime, &attr->ia_atime); 2739 if (!do_sync && (issued & CEPH_CAP_FILE_EXCL)) { 2740 ci->i_time_warp_seq++; 2741 inode_set_atime_to_ts(inode, attr->ia_atime); 2742 dirtied |= CEPH_CAP_FILE_EXCL; 2743 } else if (!do_sync && (issued & CEPH_CAP_FILE_WR) && 2744 timespec64_compare(&atime, 2745 &attr->ia_atime) < 0) { 2746 inode_set_atime_to_ts(inode, attr->ia_atime); 2747 dirtied |= CEPH_CAP_FILE_WR; 2748 } else if ((issued & CEPH_CAP_FILE_SHARED) == 0 || 2749 !timespec64_equal(&atime, &attr->ia_atime)) { 2750 ceph_encode_timespec64(&req->r_args.setattr.atime, 2751 &attr->ia_atime); 2752 mask |= CEPH_SETATTR_ATIME; 2753 release |= CEPH_CAP_FILE_SHARED | 2754 CEPH_CAP_FILE_RD | CEPH_CAP_FILE_WR; 2755 } 2756 } 2757 if (ia_valid & ATTR_SIZE) { 2758 doutc(cl, "%p %llx.%llx size %lld -> %lld\n", inode, 2759 ceph_vinop(inode), isize, attr->ia_size); 2760 /* 2761 * Only when the new size is smaller and not aligned to 2762 * CEPH_FSCRYPT_BLOCK_SIZE will the RMW is needed. 2763 */ 2764 if (IS_ENCRYPTED(inode) && attr->ia_size < isize && 2765 (attr->ia_size % CEPH_FSCRYPT_BLOCK_SIZE)) { 2766 mask |= CEPH_SETATTR_SIZE; 2767 release |= CEPH_CAP_FILE_SHARED | CEPH_CAP_FILE_EXCL | 2768 CEPH_CAP_FILE_RD | CEPH_CAP_FILE_WR; 2769 set_bit(CEPH_MDS_R_FSCRYPT_FILE, &req->r_req_flags); 2770 mask |= CEPH_SETATTR_FSCRYPT_FILE; 2771 req->r_args.setattr.size = 2772 cpu_to_le64(round_up(attr->ia_size, 2773 CEPH_FSCRYPT_BLOCK_SIZE)); 2774 req->r_args.setattr.old_size = 2775 cpu_to_le64(round_up(isize, 2776 CEPH_FSCRYPT_BLOCK_SIZE)); 2777 req->r_fscrypt_file = attr->ia_size; 2778 fill_fscrypt = true; 2779 } else if (!do_sync && (issued & CEPH_CAP_FILE_EXCL) && attr->ia_size >= isize) { 2780 if (attr->ia_size > isize) { 2781 i_size_write(inode, attr->ia_size); 2782 inode->i_blocks = calc_inode_blocks(attr->ia_size); 2783 ci->i_reported_size = attr->ia_size; 2784 dirtied |= CEPH_CAP_FILE_EXCL; 2785 ia_valid |= ATTR_MTIME; 2786 } 2787 } else if ((issued & CEPH_CAP_FILE_SHARED) == 0 || 2788 attr->ia_size != isize) { 2789 mask |= CEPH_SETATTR_SIZE; 2790 release |= CEPH_CAP_FILE_SHARED | CEPH_CAP_FILE_EXCL | 2791 CEPH_CAP_FILE_RD | CEPH_CAP_FILE_WR; 2792 if (IS_ENCRYPTED(inode) && attr->ia_size) { 2793 set_bit(CEPH_MDS_R_FSCRYPT_FILE, &req->r_req_flags); 2794 mask |= CEPH_SETATTR_FSCRYPT_FILE; 2795 req->r_args.setattr.size = 2796 cpu_to_le64(round_up(attr->ia_size, 2797 CEPH_FSCRYPT_BLOCK_SIZE)); 2798 req->r_args.setattr.old_size = 2799 cpu_to_le64(round_up(isize, 2800 CEPH_FSCRYPT_BLOCK_SIZE)); 2801 req->r_fscrypt_file = attr->ia_size; 2802 } else { 2803 req->r_args.setattr.size = cpu_to_le64(attr->ia_size); 2804 req->r_args.setattr.old_size = cpu_to_le64(isize); 2805 req->r_fscrypt_file = 0; 2806 } 2807 } 2808 } 2809 if (ia_valid & ATTR_MTIME) { 2810 struct timespec64 mtime = inode_get_mtime(inode); 2811 2812 doutc(cl, "%p %llx.%llx mtime %ptSp -> %ptSp\n", 2813 inode, ceph_vinop(inode), &mtime, &attr->ia_mtime); 2814 if (!do_sync && (issued & CEPH_CAP_FILE_EXCL)) { 2815 ci->i_time_warp_seq++; 2816 inode_set_mtime_to_ts(inode, attr->ia_mtime); 2817 dirtied |= CEPH_CAP_FILE_EXCL; 2818 } else if (!do_sync && (issued & CEPH_CAP_FILE_WR) && 2819 timespec64_compare(&mtime, &attr->ia_mtime) < 0) { 2820 inode_set_mtime_to_ts(inode, attr->ia_mtime); 2821 dirtied |= CEPH_CAP_FILE_WR; 2822 } else if ((issued & CEPH_CAP_FILE_SHARED) == 0 || 2823 !timespec64_equal(&mtime, &attr->ia_mtime)) { 2824 ceph_encode_timespec64(&req->r_args.setattr.mtime, 2825 &attr->ia_mtime); 2826 mask |= CEPH_SETATTR_MTIME; 2827 release |= CEPH_CAP_FILE_SHARED | 2828 CEPH_CAP_FILE_RD | CEPH_CAP_FILE_WR; 2829 } 2830 } 2831 2832 /* these do nothing */ 2833 if (ia_valid & ATTR_CTIME) { 2834 struct timespec64 ictime = inode_get_ctime(inode); 2835 bool only = (ia_valid & (ATTR_SIZE|ATTR_MTIME|ATTR_ATIME| 2836 ATTR_MODE|ATTR_UID|ATTR_GID)) == 0; 2837 doutc(cl, "%p %llx.%llx ctime %ptSp -> %ptSp (%s)\n", 2838 inode, ceph_vinop(inode), &ictime, &attr->ia_ctime, 2839 only ? "ctime only" : "ignored"); 2840 if (only) { 2841 /* 2842 * if kernel wants to dirty ctime but nothing else, 2843 * we need to choose a cap to dirty under, or do 2844 * a almost-no-op setattr 2845 */ 2846 if (issued & CEPH_CAP_AUTH_EXCL) 2847 dirtied |= CEPH_CAP_AUTH_EXCL; 2848 else if (issued & CEPH_CAP_FILE_EXCL) 2849 dirtied |= CEPH_CAP_FILE_EXCL; 2850 else if (issued & CEPH_CAP_XATTR_EXCL) 2851 dirtied |= CEPH_CAP_XATTR_EXCL; 2852 else 2853 mask |= CEPH_SETATTR_CTIME; 2854 } 2855 } 2856 if (ia_valid & ATTR_FILE) 2857 doutc(cl, "%p %llx.%llx ATTR_FILE ... hrm!\n", inode, 2858 ceph_vinop(inode)); 2859 2860 if (dirtied) { 2861 inode_dirty_flags = __ceph_mark_dirty_caps(ci, dirtied, 2862 &prealloc_cf); 2863 inode_set_ctime_to_ts(inode, attr->ia_ctime); 2864 inode_inc_iversion_raw(inode); 2865 } 2866 2867 release &= issued; 2868 spin_unlock(&ci->i_ceph_lock); 2869 if (lock_snap_rwsem) { 2870 up_read(&mdsc->snap_rwsem); 2871 lock_snap_rwsem = false; 2872 } 2873 2874 if (inode_dirty_flags) 2875 __mark_inode_dirty(inode, inode_dirty_flags); 2876 2877 if (mask) { 2878 req->r_inode = inode; 2879 ihold(inode); 2880 req->r_inode_drop = release; 2881 req->r_args.setattr.mask = cpu_to_le32(mask); 2882 req->r_num_caps = 1; 2883 req->r_stamp = attr->ia_ctime; 2884 if (fill_fscrypt) { 2885 err = fill_fscrypt_truncate(inode, req, attr); 2886 if (err) 2887 goto out; 2888 } 2889 2890 /* 2891 * The truncate request will return -EAGAIN when the 2892 * last block has been updated just before the MDS 2893 * successfully gets the xlock for the FILE lock. To 2894 * avoid corrupting the file contents we need to retry 2895 * it. 2896 */ 2897 err = ceph_mdsc_do_request(mdsc, NULL, req); 2898 if (err == -EAGAIN && truncate_retry--) { 2899 doutc(cl, "%p %llx.%llx result=%d (%s locally, %d remote), retry it!\n", 2900 inode, ceph_vinop(inode), err, 2901 ceph_cap_string(dirtied), mask); 2902 ceph_mdsc_put_request(req); 2903 ceph_free_cap_flush(prealloc_cf); 2904 goto retry; 2905 } 2906 } 2907 out: 2908 doutc(cl, "%p %llx.%llx result=%d (%s locally, %d remote)\n", inode, 2909 ceph_vinop(inode), err, ceph_cap_string(dirtied), mask); 2910 2911 ceph_mdsc_put_request(req); 2912 ceph_free_cap_flush(prealloc_cf); 2913 2914 if (err >= 0 && (mask & CEPH_SETATTR_SIZE)) 2915 __ceph_do_pending_vmtruncate(inode); 2916 2917 return err; 2918 } 2919 2920 /* 2921 * setattr 2922 */ 2923 int ceph_setattr(struct mnt_idmap *idmap, struct dentry *dentry, 2924 struct iattr *attr) 2925 { 2926 struct inode *inode = d_inode(dentry); 2927 struct ceph_fs_client *fsc = ceph_inode_to_fs_client(inode); 2928 int err; 2929 2930 if (ceph_snap(inode) != CEPH_NOSNAP) 2931 return -EROFS; 2932 2933 if (ceph_inode_is_shutdown(inode)) 2934 return -ESTALE; 2935 2936 err = fscrypt_prepare_setattr(dentry, attr); 2937 if (err) 2938 return err; 2939 2940 err = setattr_prepare(idmap, dentry, attr); 2941 if (err != 0) 2942 return err; 2943 2944 if ((attr->ia_valid & ATTR_SIZE) && 2945 attr->ia_size > max(i_size_read(inode), fsc->max_file_size)) 2946 return -EFBIG; 2947 2948 if ((attr->ia_valid & ATTR_SIZE) && 2949 ceph_quota_is_max_bytes_exceeded(inode, attr->ia_size)) 2950 return -EDQUOT; 2951 2952 err = __ceph_setattr(idmap, inode, attr, NULL); 2953 2954 if (err >= 0 && (attr->ia_valid & ATTR_MODE)) 2955 err = posix_acl_chmod(idmap, dentry, attr->ia_mode); 2956 2957 return err; 2958 } 2959 2960 int ceph_try_to_choose_auth_mds(struct inode *inode, int mask) 2961 { 2962 int issued = ceph_caps_issued(ceph_inode(inode)); 2963 2964 /* 2965 * If any 'x' caps is issued we can just choose the auth MDS 2966 * instead of the random replica MDSes. Because only when the 2967 * Locker is in LOCK_EXEC state will the loner client could 2968 * get the 'x' caps. And if we send the getattr requests to 2969 * any replica MDS it must auth pin and tries to rdlock from 2970 * the auth MDS, and then the auth MDS need to do the Locker 2971 * state transition to LOCK_SYNC. And after that the lock state 2972 * will change back. 2973 * 2974 * This cost much when doing the Locker state transition and 2975 * usually will need to revoke caps from clients. 2976 * 2977 * And for the 'Xs' caps for getxattr we will also choose the 2978 * auth MDS, because the MDS side code is buggy due to setxattr 2979 * won't notify the replica MDSes when the values changed and 2980 * the replica MDS will return the old values. Though we will 2981 * fix it in MDS code, but this still makes sense for old ceph. 2982 */ 2983 if (((mask & CEPH_CAP_ANY_SHARED) && (issued & CEPH_CAP_ANY_EXCL)) 2984 || (mask & (CEPH_STAT_RSTAT | CEPH_STAT_CAP_XATTR))) 2985 return USE_AUTH_MDS; 2986 else 2987 return USE_ANY_MDS; 2988 } 2989 2990 /* 2991 * Verify that we have a lease on the given mask. If not, 2992 * do a getattr against an mds. 2993 */ 2994 int __ceph_do_getattr(struct inode *inode, struct page *locked_page, 2995 int mask, bool force) 2996 { 2997 struct ceph_fs_client *fsc = ceph_sb_to_fs_client(inode->i_sb); 2998 struct ceph_client *cl = fsc->client; 2999 struct ceph_mds_client *mdsc = fsc->mdsc; 3000 struct ceph_mds_request *req; 3001 int mode; 3002 int err; 3003 3004 if (ceph_snap(inode) == CEPH_SNAPDIR) { 3005 doutc(cl, "inode %p %llx.%llx SNAPDIR\n", inode, 3006 ceph_vinop(inode)); 3007 return 0; 3008 } 3009 3010 doutc(cl, "inode %p %llx.%llx mask %s mode 0%o\n", inode, 3011 ceph_vinop(inode), ceph_cap_string(mask), inode->i_mode); 3012 if (!force && ceph_caps_issued_mask_metric(ceph_inode(inode), mask, 1)) 3013 return 0; 3014 3015 mode = ceph_try_to_choose_auth_mds(inode, mask); 3016 req = ceph_mdsc_create_request(mdsc, CEPH_MDS_OP_GETATTR, mode); 3017 if (IS_ERR(req)) 3018 return PTR_ERR(req); 3019 req->r_inode = inode; 3020 ihold(inode); 3021 req->r_num_caps = 1; 3022 req->r_args.getattr.mask = cpu_to_le32(mask); 3023 req->r_locked_page = locked_page; 3024 err = ceph_mdsc_do_request(mdsc, NULL, req); 3025 if (locked_page && err == 0) { 3026 u64 inline_version = req->r_reply_info.targeti.inline_version; 3027 if (inline_version == 0) { 3028 /* the reply is supposed to contain inline data */ 3029 err = -EINVAL; 3030 } else if (inline_version == CEPH_INLINE_NONE || 3031 inline_version == 1) { 3032 err = -ENODATA; 3033 } else { 3034 err = req->r_reply_info.targeti.inline_len; 3035 } 3036 } 3037 ceph_mdsc_put_request(req); 3038 doutc(cl, "result=%d\n", err); 3039 return err; 3040 } 3041 3042 int ceph_do_getvxattr(struct inode *inode, const char *name, void *value, 3043 size_t size) 3044 { 3045 struct ceph_fs_client *fsc = ceph_sb_to_fs_client(inode->i_sb); 3046 struct ceph_client *cl = fsc->client; 3047 struct ceph_mds_client *mdsc = fsc->mdsc; 3048 struct ceph_mds_request *req; 3049 int mode = USE_AUTH_MDS; 3050 int err; 3051 char *xattr_value; 3052 size_t xattr_value_len; 3053 3054 req = ceph_mdsc_create_request(mdsc, CEPH_MDS_OP_GETVXATTR, mode); 3055 if (IS_ERR(req)) { 3056 err = -ENOMEM; 3057 goto out; 3058 } 3059 3060 req->r_feature_needed = CEPHFS_FEATURE_OP_GETVXATTR; 3061 req->r_path2 = kstrdup(name, GFP_NOFS); 3062 if (!req->r_path2) { 3063 err = -ENOMEM; 3064 goto put; 3065 } 3066 3067 ihold(inode); 3068 req->r_inode = inode; 3069 err = ceph_mdsc_do_request(mdsc, NULL, req); 3070 if (err < 0) 3071 goto put; 3072 3073 xattr_value = req->r_reply_info.xattr_info.xattr_value; 3074 xattr_value_len = req->r_reply_info.xattr_info.xattr_value_len; 3075 3076 doutc(cl, "xattr_value_len:%zu, size:%zu\n", xattr_value_len, size); 3077 3078 err = (int)xattr_value_len; 3079 if (size == 0) 3080 goto put; 3081 3082 if (xattr_value_len > size) { 3083 err = -ERANGE; 3084 goto put; 3085 } 3086 3087 memcpy(value, xattr_value, xattr_value_len); 3088 put: 3089 ceph_mdsc_put_request(req); 3090 out: 3091 doutc(cl, "result=%d\n", err); 3092 return err; 3093 } 3094 3095 3096 /* 3097 * Check inode permissions. We verify we have a valid value for 3098 * the AUTH cap, then call the generic handler. 3099 */ 3100 int ceph_permission(struct mnt_idmap *idmap, struct inode *inode, 3101 int mask) 3102 { 3103 int err; 3104 3105 if (mask & MAY_NOT_BLOCK) 3106 return -ECHILD; 3107 3108 err = ceph_do_getattr(inode, CEPH_CAP_AUTH_SHARED, false); 3109 3110 if (!err) 3111 err = generic_permission(idmap, inode, mask); 3112 return err; 3113 } 3114 3115 /* Craft a mask of needed caps given a set of requested statx attrs. */ 3116 static int statx_to_caps(u32 want, umode_t mode) 3117 { 3118 int mask = 0; 3119 3120 if (want & (STATX_MODE|STATX_UID|STATX_GID|STATX_CTIME|STATX_BTIME|STATX_CHANGE_COOKIE)) 3121 mask |= CEPH_CAP_AUTH_SHARED; 3122 3123 if (want & (STATX_NLINK|STATX_CTIME|STATX_CHANGE_COOKIE)) { 3124 /* 3125 * The link count for directories depends on inode->i_subdirs, 3126 * and that is only updated when Fs caps are held. 3127 */ 3128 if (S_ISDIR(mode)) 3129 mask |= CEPH_CAP_FILE_SHARED; 3130 else 3131 mask |= CEPH_CAP_LINK_SHARED; 3132 } 3133 3134 if (want & (STATX_ATIME|STATX_MTIME|STATX_CTIME|STATX_SIZE|STATX_BLOCKS|STATX_CHANGE_COOKIE)) 3135 mask |= CEPH_CAP_FILE_SHARED; 3136 3137 if (want & (STATX_CTIME|STATX_CHANGE_COOKIE)) 3138 mask |= CEPH_CAP_XATTR_SHARED; 3139 3140 return mask; 3141 } 3142 3143 /* 3144 * Get all the attributes. If we have sufficient caps for the requested attrs, 3145 * then we can avoid talking to the MDS at all. 3146 */ 3147 int ceph_getattr(struct mnt_idmap *idmap, const struct path *path, 3148 struct kstat *stat, u32 request_mask, unsigned int flags) 3149 { 3150 struct inode *inode = d_inode(path->dentry); 3151 struct super_block *sb = inode->i_sb; 3152 struct ceph_inode_info *ci = ceph_inode(inode); 3153 u32 valid_mask = STATX_BASIC_STATS; 3154 int err = 0; 3155 3156 if (ceph_inode_is_shutdown(inode)) 3157 return -ESTALE; 3158 3159 /* Skip the getattr altogether if we're asked not to sync */ 3160 if ((flags & AT_STATX_SYNC_TYPE) != AT_STATX_DONT_SYNC) { 3161 err = ceph_do_getattr(inode, 3162 statx_to_caps(request_mask, inode->i_mode), 3163 flags & AT_STATX_FORCE_SYNC); 3164 if (err) 3165 return err; 3166 } 3167 3168 generic_fillattr(idmap, request_mask, inode, stat); 3169 stat->ino = ceph_present_inode(inode); 3170 3171 /* 3172 * btime on newly-allocated inodes is 0, so if this is still set to 3173 * that, then assume that it's not valid. 3174 */ 3175 if (ci->i_btime.tv_sec || ci->i_btime.tv_nsec) { 3176 stat->btime = ci->i_btime; 3177 valid_mask |= STATX_BTIME; 3178 } 3179 3180 if (request_mask & STATX_CHANGE_COOKIE) { 3181 stat->change_cookie = inode_peek_iversion_raw(inode); 3182 valid_mask |= STATX_CHANGE_COOKIE; 3183 } 3184 3185 if (ceph_snap(inode) == CEPH_NOSNAP) 3186 stat->dev = sb->s_dev; 3187 else 3188 stat->dev = ci->i_snapid_map ? ci->i_snapid_map->dev : 0; 3189 3190 if (S_ISDIR(inode->i_mode)) { 3191 if (ceph_test_mount_opt(ceph_sb_to_fs_client(sb), RBYTES)) { 3192 stat->size = ci->i_rbytes; 3193 } else if (ceph_snap(inode) == CEPH_SNAPDIR) { 3194 struct ceph_inode_info *pci; 3195 struct ceph_snap_realm *realm; 3196 struct inode *parent; 3197 3198 parent = ceph_lookup_inode(sb, ceph_ino(inode)); 3199 if (IS_ERR(parent)) 3200 return PTR_ERR(parent); 3201 3202 pci = ceph_inode(parent); 3203 spin_lock(&pci->i_ceph_lock); 3204 realm = pci->i_snap_realm; 3205 if (realm) 3206 stat->size = realm->num_snaps; 3207 else 3208 stat->size = 0; 3209 spin_unlock(&pci->i_ceph_lock); 3210 iput(parent); 3211 } else { 3212 stat->size = ci->i_files + ci->i_subdirs; 3213 } 3214 stat->blocks = 0; 3215 stat->blksize = 65536; 3216 /* 3217 * Some applications rely on the number of st_nlink 3218 * value on directories to be either 0 (if unlinked) 3219 * or 2 + number of subdirectories. 3220 */ 3221 if (stat->nlink == 1) 3222 /* '.' + '..' + subdirs */ 3223 stat->nlink = 1 + 1 + ci->i_subdirs; 3224 } 3225 3226 stat->attributes |= STATX_ATTR_CHANGE_MONOTONIC; 3227 if (IS_ENCRYPTED(inode)) 3228 stat->attributes |= STATX_ATTR_ENCRYPTED; 3229 stat->attributes_mask |= (STATX_ATTR_CHANGE_MONOTONIC | 3230 STATX_ATTR_ENCRYPTED); 3231 3232 stat->result_mask = request_mask & valid_mask; 3233 return err; 3234 } 3235 3236 void ceph_inode_shutdown(struct inode *inode) 3237 { 3238 struct ceph_inode_info *ci = ceph_inode(inode); 3239 struct rb_node *p; 3240 int iputs = 0; 3241 bool invalidate = false; 3242 3243 spin_lock(&ci->i_ceph_lock); 3244 set_bit(CEPH_I_SHUTDOWN_BIT, &ci->i_ceph_flags); 3245 p = rb_first(&ci->i_caps); 3246 while (p) { 3247 struct ceph_cap *cap = rb_entry(p, struct ceph_cap, ci_node); 3248 3249 p = rb_next(p); 3250 iputs += ceph_purge_inode_cap(inode, cap, &invalidate); 3251 } 3252 spin_unlock(&ci->i_ceph_lock); 3253 3254 if (invalidate) 3255 ceph_queue_invalidate(inode); 3256 while (iputs--) 3257 iput(inode); 3258 } 3259