1 // SPDX-License-Identifier: GPL-2.0 2 /* 3 * Copyright (C) 2011 STRATO. All rights reserved. 4 */ 5 6 #include <linux/sched.h> 7 #include <linux/pagemap.h> 8 #include <linux/writeback.h> 9 #include <linux/blkdev.h> 10 #include <linux/rbtree.h> 11 #include <linux/slab.h> 12 #include <linux/workqueue.h> 13 #include <linux/btrfs.h> 14 #include <linux/sched/mm.h> 15 16 #include "ctree.h" 17 #include "transaction.h" 18 #include "disk-io.h" 19 #include "locking.h" 20 #include "ulist.h" 21 #include "backref.h" 22 #include "extent_io.h" 23 #include "qgroup.h" 24 #include "block-group.h" 25 #include "sysfs.h" 26 #include "tree-mod-log.h" 27 #include "fs.h" 28 #include "accessors.h" 29 #include "extent-tree.h" 30 #include "root-tree.h" 31 #include "tree-checker.h" 32 33 enum btrfs_qgroup_mode btrfs_qgroup_mode(struct btrfs_fs_info *fs_info) 34 { 35 if (!test_bit(BTRFS_FS_QUOTA_ENABLED, &fs_info->flags)) 36 return BTRFS_QGROUP_MODE_DISABLED; 37 if (fs_info->qgroup_flags & BTRFS_QGROUP_STATUS_FLAG_SIMPLE_MODE) 38 return BTRFS_QGROUP_MODE_SIMPLE; 39 return BTRFS_QGROUP_MODE_FULL; 40 } 41 42 bool btrfs_qgroup_enabled(struct btrfs_fs_info *fs_info) 43 { 44 return btrfs_qgroup_mode(fs_info) != BTRFS_QGROUP_MODE_DISABLED; 45 } 46 47 bool btrfs_qgroup_full_accounting(struct btrfs_fs_info *fs_info) 48 { 49 return btrfs_qgroup_mode(fs_info) == BTRFS_QGROUP_MODE_FULL; 50 } 51 52 /* 53 * Helpers to access qgroup reservation 54 * 55 * Callers should ensure the lock context and type are valid 56 */ 57 58 static u64 qgroup_rsv_total(const struct btrfs_qgroup *qgroup) 59 { 60 u64 ret = 0; 61 int i; 62 63 for (i = 0; i < BTRFS_QGROUP_RSV_LAST; i++) 64 ret += qgroup->rsv.values[i]; 65 66 return ret; 67 } 68 69 #ifdef CONFIG_BTRFS_DEBUG 70 static const char *qgroup_rsv_type_str(enum btrfs_qgroup_rsv_type type) 71 { 72 if (type == BTRFS_QGROUP_RSV_DATA) 73 return "data"; 74 if (type == BTRFS_QGROUP_RSV_META_PERTRANS) 75 return "meta_pertrans"; 76 if (type == BTRFS_QGROUP_RSV_META_PREALLOC) 77 return "meta_prealloc"; 78 return NULL; 79 } 80 #endif 81 82 static void qgroup_rsv_add(struct btrfs_fs_info *fs_info, 83 struct btrfs_qgroup *qgroup, u64 num_bytes, 84 enum btrfs_qgroup_rsv_type type) 85 { 86 trace_qgroup_update_reserve(fs_info, qgroup, num_bytes, type); 87 qgroup->rsv.values[type] += num_bytes; 88 } 89 90 static void qgroup_rsv_release(struct btrfs_fs_info *fs_info, 91 struct btrfs_qgroup *qgroup, u64 num_bytes, 92 enum btrfs_qgroup_rsv_type type) 93 { 94 trace_qgroup_update_reserve(fs_info, qgroup, -(s64)num_bytes, type); 95 if (qgroup->rsv.values[type] >= num_bytes) { 96 qgroup->rsv.values[type] -= num_bytes; 97 return; 98 } 99 #ifdef CONFIG_BTRFS_DEBUG 100 WARN_RATELIMIT(1, 101 "qgroup %llu %s reserved space underflow, have %llu to free %llu", 102 qgroup->qgroupid, qgroup_rsv_type_str(type), 103 qgroup->rsv.values[type], num_bytes); 104 #endif 105 qgroup->rsv.values[type] = 0; 106 } 107 108 static void qgroup_rsv_add_by_qgroup(struct btrfs_fs_info *fs_info, 109 struct btrfs_qgroup *dest, 110 struct btrfs_qgroup *src) 111 { 112 int i; 113 114 for (i = 0; i < BTRFS_QGROUP_RSV_LAST; i++) 115 qgroup_rsv_add(fs_info, dest, src->rsv.values[i], i); 116 } 117 118 static void qgroup_rsv_release_by_qgroup(struct btrfs_fs_info *fs_info, 119 struct btrfs_qgroup *dest, 120 struct btrfs_qgroup *src) 121 { 122 int i; 123 124 for (i = 0; i < BTRFS_QGROUP_RSV_LAST; i++) 125 qgroup_rsv_release(fs_info, dest, src->rsv.values[i], i); 126 } 127 128 static void btrfs_qgroup_update_old_refcnt(struct btrfs_qgroup *qg, u64 seq, 129 int mod) 130 { 131 if (qg->old_refcnt < seq) 132 qg->old_refcnt = seq; 133 qg->old_refcnt += mod; 134 } 135 136 static void btrfs_qgroup_update_new_refcnt(struct btrfs_qgroup *qg, u64 seq, 137 int mod) 138 { 139 if (qg->new_refcnt < seq) 140 qg->new_refcnt = seq; 141 qg->new_refcnt += mod; 142 } 143 144 static inline u64 btrfs_qgroup_get_old_refcnt(struct btrfs_qgroup *qg, u64 seq) 145 { 146 if (qg->old_refcnt < seq) 147 return 0; 148 return qg->old_refcnt - seq; 149 } 150 151 static inline u64 btrfs_qgroup_get_new_refcnt(struct btrfs_qgroup *qg, u64 seq) 152 { 153 if (qg->new_refcnt < seq) 154 return 0; 155 return qg->new_refcnt - seq; 156 } 157 158 /* 159 * glue structure to represent the relations between qgroups. 160 */ 161 struct btrfs_qgroup_list { 162 struct list_head next_group; 163 struct list_head next_member; 164 struct btrfs_qgroup *group; 165 struct btrfs_qgroup *member; 166 }; 167 168 static int 169 qgroup_rescan_init(struct btrfs_fs_info *fs_info, u64 progress_objectid, 170 int init_flags); 171 static void qgroup_rescan_zero_tracking(struct btrfs_fs_info *fs_info); 172 173 /* must be called with qgroup_ioctl_lock held */ 174 static struct btrfs_qgroup *find_qgroup_rb(struct btrfs_fs_info *fs_info, 175 u64 qgroupid) 176 { 177 struct rb_node *n = fs_info->qgroup_tree.rb_node; 178 struct btrfs_qgroup *qgroup; 179 180 while (n) { 181 qgroup = rb_entry(n, struct btrfs_qgroup, node); 182 if (qgroup->qgroupid < qgroupid) 183 n = n->rb_left; 184 else if (qgroup->qgroupid > qgroupid) 185 n = n->rb_right; 186 else 187 return qgroup; 188 } 189 return NULL; 190 } 191 192 /* 193 * Add qgroup to the filesystem's qgroup tree. 194 * 195 * Must be called with qgroup_lock held and @prealloc preallocated. 196 * 197 * The control on the lifespan of @prealloc would be transferred to this 198 * function, thus caller should no longer touch @prealloc. 199 */ 200 static struct btrfs_qgroup *add_qgroup_rb(struct btrfs_fs_info *fs_info, 201 struct btrfs_qgroup *prealloc, 202 u64 qgroupid) 203 { 204 struct rb_node **p = &fs_info->qgroup_tree.rb_node; 205 struct rb_node *parent = NULL; 206 struct btrfs_qgroup *qgroup; 207 208 /* Caller must have pre-allocated @prealloc. */ 209 ASSERT(prealloc); 210 211 while (*p) { 212 parent = *p; 213 qgroup = rb_entry(parent, struct btrfs_qgroup, node); 214 215 if (qgroup->qgroupid < qgroupid) { 216 p = &(*p)->rb_left; 217 } else if (qgroup->qgroupid > qgroupid) { 218 p = &(*p)->rb_right; 219 } else { 220 kfree(prealloc); 221 return qgroup; 222 } 223 } 224 225 qgroup = prealloc; 226 qgroup->qgroupid = qgroupid; 227 INIT_LIST_HEAD(&qgroup->groups); 228 INIT_LIST_HEAD(&qgroup->members); 229 INIT_LIST_HEAD(&qgroup->dirty); 230 INIT_LIST_HEAD(&qgroup->iterator); 231 INIT_LIST_HEAD(&qgroup->nested_iterator); 232 233 rb_link_node(&qgroup->node, parent, p); 234 rb_insert_color(&qgroup->node, &fs_info->qgroup_tree); 235 236 return qgroup; 237 } 238 239 static void __del_qgroup_rb(struct btrfs_fs_info *fs_info, 240 struct btrfs_qgroup *qgroup) 241 { 242 struct btrfs_qgroup_list *list; 243 244 list_del(&qgroup->dirty); 245 while (!list_empty(&qgroup->groups)) { 246 list = list_first_entry(&qgroup->groups, 247 struct btrfs_qgroup_list, next_group); 248 list_del(&list->next_group); 249 list_del(&list->next_member); 250 kfree(list); 251 } 252 253 while (!list_empty(&qgroup->members)) { 254 list = list_first_entry(&qgroup->members, 255 struct btrfs_qgroup_list, next_member); 256 list_del(&list->next_group); 257 list_del(&list->next_member); 258 kfree(list); 259 } 260 } 261 262 /* must be called with qgroup_lock held */ 263 static int del_qgroup_rb(struct btrfs_fs_info *fs_info, u64 qgroupid) 264 { 265 struct btrfs_qgroup *qgroup = find_qgroup_rb(fs_info, qgroupid); 266 267 if (!qgroup) 268 return -ENOENT; 269 270 rb_erase(&qgroup->node, &fs_info->qgroup_tree); 271 __del_qgroup_rb(fs_info, qgroup); 272 return 0; 273 } 274 275 /* 276 * Add relation specified by two qgroups. 277 * 278 * Must be called with qgroup_lock held, the ownership of @prealloc is 279 * transferred to this function and caller should not touch it anymore. 280 * 281 * Return: 0 on success 282 * -ENOENT if one of the qgroups is NULL 283 * <0 other errors 284 */ 285 static int __add_relation_rb(struct btrfs_qgroup_list *prealloc, 286 struct btrfs_qgroup *member, 287 struct btrfs_qgroup *parent) 288 { 289 if (!member || !parent) { 290 kfree(prealloc); 291 return -ENOENT; 292 } 293 294 prealloc->group = parent; 295 prealloc->member = member; 296 list_add_tail(&prealloc->next_group, &member->groups); 297 list_add_tail(&prealloc->next_member, &parent->members); 298 299 return 0; 300 } 301 302 /* 303 * Add relation specified by two qgroup ids. 304 * 305 * Must be called with qgroup_lock held. 306 * 307 * Return: 0 on success 308 * -ENOENT if one of the ids does not exist 309 * <0 other errors 310 */ 311 static int add_relation_rb(struct btrfs_fs_info *fs_info, 312 struct btrfs_qgroup_list *prealloc, 313 u64 memberid, u64 parentid) 314 { 315 struct btrfs_qgroup *member; 316 struct btrfs_qgroup *parent; 317 318 member = find_qgroup_rb(fs_info, memberid); 319 parent = find_qgroup_rb(fs_info, parentid); 320 321 return __add_relation_rb(prealloc, member, parent); 322 } 323 324 /* Must be called with qgroup_lock held */ 325 static int del_relation_rb(struct btrfs_fs_info *fs_info, 326 u64 memberid, u64 parentid) 327 { 328 struct btrfs_qgroup *member; 329 struct btrfs_qgroup *parent; 330 struct btrfs_qgroup_list *list; 331 332 member = find_qgroup_rb(fs_info, memberid); 333 parent = find_qgroup_rb(fs_info, parentid); 334 if (!member || !parent) 335 return -ENOENT; 336 337 list_for_each_entry(list, &member->groups, next_group) { 338 if (list->group == parent) { 339 list_del(&list->next_group); 340 list_del(&list->next_member); 341 kfree(list); 342 return 0; 343 } 344 } 345 return -ENOENT; 346 } 347 348 #ifdef CONFIG_BTRFS_FS_RUN_SANITY_TESTS 349 int btrfs_verify_qgroup_counts(struct btrfs_fs_info *fs_info, u64 qgroupid, 350 u64 rfer, u64 excl) 351 { 352 struct btrfs_qgroup *qgroup; 353 354 qgroup = find_qgroup_rb(fs_info, qgroupid); 355 if (!qgroup) 356 return -EINVAL; 357 if (qgroup->rfer != rfer || qgroup->excl != excl) 358 return -EINVAL; 359 return 0; 360 } 361 #endif 362 363 static void qgroup_mark_inconsistent(struct btrfs_fs_info *fs_info) 364 { 365 if (btrfs_qgroup_mode(fs_info) == BTRFS_QGROUP_MODE_SIMPLE) 366 return; 367 fs_info->qgroup_flags |= (BTRFS_QGROUP_STATUS_FLAG_INCONSISTENT | 368 BTRFS_QGROUP_RUNTIME_FLAG_CANCEL_RESCAN | 369 BTRFS_QGROUP_RUNTIME_FLAG_NO_ACCOUNTING); 370 } 371 372 static void qgroup_read_enable_gen(struct btrfs_fs_info *fs_info, 373 struct extent_buffer *leaf, int slot, 374 struct btrfs_qgroup_status_item *ptr) 375 { 376 ASSERT(btrfs_fs_incompat(fs_info, SIMPLE_QUOTA)); 377 ASSERT(btrfs_item_size(leaf, slot) >= sizeof(*ptr)); 378 fs_info->qgroup_enable_gen = btrfs_qgroup_status_enable_gen(leaf, ptr); 379 } 380 381 /* 382 * The full config is read in one go, only called from open_ctree() 383 * It doesn't use any locking, as at this point we're still single-threaded 384 */ 385 int btrfs_read_qgroup_config(struct btrfs_fs_info *fs_info) 386 { 387 struct btrfs_key key; 388 struct btrfs_key found_key; 389 struct btrfs_root *quota_root = fs_info->quota_root; 390 struct btrfs_path *path = NULL; 391 struct extent_buffer *l; 392 int slot; 393 int ret = 0; 394 u64 flags = 0; 395 u64 rescan_progress = 0; 396 397 if (!fs_info->quota_root) 398 return 0; 399 400 fs_info->qgroup_ulist = ulist_alloc(GFP_KERNEL); 401 if (!fs_info->qgroup_ulist) { 402 ret = -ENOMEM; 403 goto out; 404 } 405 406 path = btrfs_alloc_path(); 407 if (!path) { 408 ret = -ENOMEM; 409 goto out; 410 } 411 412 ret = btrfs_sysfs_add_qgroups(fs_info); 413 if (ret < 0) 414 goto out; 415 /* default this to quota off, in case no status key is found */ 416 fs_info->qgroup_flags = 0; 417 418 /* 419 * pass 1: read status, all qgroup infos and limits 420 */ 421 key.objectid = 0; 422 key.type = 0; 423 key.offset = 0; 424 ret = btrfs_search_slot_for_read(quota_root, &key, path, 1, 1); 425 if (ret) 426 goto out; 427 428 while (1) { 429 struct btrfs_qgroup *qgroup; 430 431 slot = path->slots[0]; 432 l = path->nodes[0]; 433 btrfs_item_key_to_cpu(l, &found_key, slot); 434 435 if (found_key.type == BTRFS_QGROUP_STATUS_KEY) { 436 struct btrfs_qgroup_status_item *ptr; 437 438 ptr = btrfs_item_ptr(l, slot, 439 struct btrfs_qgroup_status_item); 440 441 if (btrfs_qgroup_status_version(l, ptr) != 442 BTRFS_QGROUP_STATUS_VERSION) { 443 btrfs_err(fs_info, 444 "old qgroup version, quota disabled"); 445 goto out; 446 } 447 fs_info->qgroup_flags = btrfs_qgroup_status_flags(l, ptr); 448 if (fs_info->qgroup_flags & BTRFS_QGROUP_STATUS_FLAG_SIMPLE_MODE) { 449 qgroup_read_enable_gen(fs_info, l, slot, ptr); 450 } else if (btrfs_qgroup_status_generation(l, ptr) != fs_info->generation) { 451 qgroup_mark_inconsistent(fs_info); 452 btrfs_err(fs_info, 453 "qgroup generation mismatch, marked as inconsistent"); 454 } 455 rescan_progress = btrfs_qgroup_status_rescan(l, ptr); 456 goto next1; 457 } 458 459 if (found_key.type != BTRFS_QGROUP_INFO_KEY && 460 found_key.type != BTRFS_QGROUP_LIMIT_KEY) 461 goto next1; 462 463 qgroup = find_qgroup_rb(fs_info, found_key.offset); 464 if ((qgroup && found_key.type == BTRFS_QGROUP_INFO_KEY) || 465 (!qgroup && found_key.type == BTRFS_QGROUP_LIMIT_KEY)) { 466 btrfs_err(fs_info, "inconsistent qgroup config"); 467 qgroup_mark_inconsistent(fs_info); 468 } 469 if (!qgroup) { 470 struct btrfs_qgroup *prealloc; 471 472 prealloc = kzalloc(sizeof(*prealloc), GFP_KERNEL); 473 if (!prealloc) { 474 ret = -ENOMEM; 475 goto out; 476 } 477 qgroup = add_qgroup_rb(fs_info, prealloc, found_key.offset); 478 } 479 ret = btrfs_sysfs_add_one_qgroup(fs_info, qgroup); 480 if (ret < 0) 481 goto out; 482 483 switch (found_key.type) { 484 case BTRFS_QGROUP_INFO_KEY: { 485 struct btrfs_qgroup_info_item *ptr; 486 487 ptr = btrfs_item_ptr(l, slot, 488 struct btrfs_qgroup_info_item); 489 qgroup->rfer = btrfs_qgroup_info_rfer(l, ptr); 490 qgroup->rfer_cmpr = btrfs_qgroup_info_rfer_cmpr(l, ptr); 491 qgroup->excl = btrfs_qgroup_info_excl(l, ptr); 492 qgroup->excl_cmpr = btrfs_qgroup_info_excl_cmpr(l, ptr); 493 /* generation currently unused */ 494 break; 495 } 496 case BTRFS_QGROUP_LIMIT_KEY: { 497 struct btrfs_qgroup_limit_item *ptr; 498 499 ptr = btrfs_item_ptr(l, slot, 500 struct btrfs_qgroup_limit_item); 501 qgroup->lim_flags = btrfs_qgroup_limit_flags(l, ptr); 502 qgroup->max_rfer = btrfs_qgroup_limit_max_rfer(l, ptr); 503 qgroup->max_excl = btrfs_qgroup_limit_max_excl(l, ptr); 504 qgroup->rsv_rfer = btrfs_qgroup_limit_rsv_rfer(l, ptr); 505 qgroup->rsv_excl = btrfs_qgroup_limit_rsv_excl(l, ptr); 506 break; 507 } 508 } 509 next1: 510 ret = btrfs_next_item(quota_root, path); 511 if (ret < 0) 512 goto out; 513 if (ret) 514 break; 515 } 516 btrfs_release_path(path); 517 518 /* 519 * pass 2: read all qgroup relations 520 */ 521 key.objectid = 0; 522 key.type = BTRFS_QGROUP_RELATION_KEY; 523 key.offset = 0; 524 ret = btrfs_search_slot_for_read(quota_root, &key, path, 1, 0); 525 if (ret) 526 goto out; 527 while (1) { 528 struct btrfs_qgroup_list *list = NULL; 529 530 slot = path->slots[0]; 531 l = path->nodes[0]; 532 btrfs_item_key_to_cpu(l, &found_key, slot); 533 534 if (found_key.type != BTRFS_QGROUP_RELATION_KEY) 535 goto next2; 536 537 if (found_key.objectid > found_key.offset) { 538 /* parent <- member, not needed to build config */ 539 /* FIXME should we omit the key completely? */ 540 goto next2; 541 } 542 543 list = kzalloc(sizeof(*list), GFP_KERNEL); 544 if (!list) { 545 ret = -ENOMEM; 546 goto out; 547 } 548 ret = add_relation_rb(fs_info, list, found_key.objectid, 549 found_key.offset); 550 list = NULL; 551 if (ret == -ENOENT) { 552 btrfs_warn(fs_info, 553 "orphan qgroup relation 0x%llx->0x%llx", 554 found_key.objectid, found_key.offset); 555 ret = 0; /* ignore the error */ 556 } 557 if (ret) 558 goto out; 559 next2: 560 ret = btrfs_next_item(quota_root, path); 561 if (ret < 0) 562 goto out; 563 if (ret) 564 break; 565 } 566 out: 567 btrfs_free_path(path); 568 fs_info->qgroup_flags |= flags; 569 if (ret >= 0) { 570 if (fs_info->qgroup_flags & BTRFS_QGROUP_STATUS_FLAG_ON) 571 set_bit(BTRFS_FS_QUOTA_ENABLED, &fs_info->flags); 572 if (fs_info->qgroup_flags & BTRFS_QGROUP_STATUS_FLAG_RESCAN) 573 ret = qgroup_rescan_init(fs_info, rescan_progress, 0); 574 } else { 575 ulist_free(fs_info->qgroup_ulist); 576 fs_info->qgroup_ulist = NULL; 577 fs_info->qgroup_flags &= ~BTRFS_QGROUP_STATUS_FLAG_RESCAN; 578 btrfs_sysfs_del_qgroups(fs_info); 579 } 580 581 return ret < 0 ? ret : 0; 582 } 583 584 /* 585 * Called in close_ctree() when quota is still enabled. This verifies we don't 586 * leak some reserved space. 587 * 588 * Return false if no reserved space is left. 589 * Return true if some reserved space is leaked. 590 */ 591 bool btrfs_check_quota_leak(struct btrfs_fs_info *fs_info) 592 { 593 struct rb_node *node; 594 bool ret = false; 595 596 if (btrfs_qgroup_mode(fs_info) == BTRFS_QGROUP_MODE_DISABLED) 597 return ret; 598 /* 599 * Since we're unmounting, there is no race and no need to grab qgroup 600 * lock. And here we don't go post-order to provide a more user 601 * friendly sorted result. 602 */ 603 for (node = rb_first(&fs_info->qgroup_tree); node; node = rb_next(node)) { 604 struct btrfs_qgroup *qgroup; 605 int i; 606 607 qgroup = rb_entry(node, struct btrfs_qgroup, node); 608 for (i = 0; i < BTRFS_QGROUP_RSV_LAST; i++) { 609 if (qgroup->rsv.values[i]) { 610 ret = true; 611 btrfs_warn(fs_info, 612 "qgroup %hu/%llu has unreleased space, type %d rsv %llu", 613 btrfs_qgroup_level(qgroup->qgroupid), 614 btrfs_qgroup_subvolid(qgroup->qgroupid), 615 i, qgroup->rsv.values[i]); 616 } 617 } 618 } 619 return ret; 620 } 621 622 /* 623 * This is called from close_ctree() or open_ctree() or btrfs_quota_disable(), 624 * first two are in single-threaded paths.And for the third one, we have set 625 * quota_root to be null with qgroup_lock held before, so it is safe to clean 626 * up the in-memory structures without qgroup_lock held. 627 */ 628 void btrfs_free_qgroup_config(struct btrfs_fs_info *fs_info) 629 { 630 struct rb_node *n; 631 struct btrfs_qgroup *qgroup; 632 633 while ((n = rb_first(&fs_info->qgroup_tree))) { 634 qgroup = rb_entry(n, struct btrfs_qgroup, node); 635 rb_erase(n, &fs_info->qgroup_tree); 636 __del_qgroup_rb(fs_info, qgroup); 637 btrfs_sysfs_del_one_qgroup(fs_info, qgroup); 638 kfree(qgroup); 639 } 640 /* 641 * We call btrfs_free_qgroup_config() when unmounting 642 * filesystem and disabling quota, so we set qgroup_ulist 643 * to be null here to avoid double free. 644 */ 645 ulist_free(fs_info->qgroup_ulist); 646 fs_info->qgroup_ulist = NULL; 647 btrfs_sysfs_del_qgroups(fs_info); 648 } 649 650 static int add_qgroup_relation_item(struct btrfs_trans_handle *trans, u64 src, 651 u64 dst) 652 { 653 int ret; 654 struct btrfs_root *quota_root = trans->fs_info->quota_root; 655 struct btrfs_path *path; 656 struct btrfs_key key; 657 658 path = btrfs_alloc_path(); 659 if (!path) 660 return -ENOMEM; 661 662 key.objectid = src; 663 key.type = BTRFS_QGROUP_RELATION_KEY; 664 key.offset = dst; 665 666 ret = btrfs_insert_empty_item(trans, quota_root, path, &key, 0); 667 668 btrfs_mark_buffer_dirty(trans, path->nodes[0]); 669 670 btrfs_free_path(path); 671 return ret; 672 } 673 674 static int del_qgroup_relation_item(struct btrfs_trans_handle *trans, u64 src, 675 u64 dst) 676 { 677 int ret; 678 struct btrfs_root *quota_root = trans->fs_info->quota_root; 679 struct btrfs_path *path; 680 struct btrfs_key key; 681 682 path = btrfs_alloc_path(); 683 if (!path) 684 return -ENOMEM; 685 686 key.objectid = src; 687 key.type = BTRFS_QGROUP_RELATION_KEY; 688 key.offset = dst; 689 690 ret = btrfs_search_slot(trans, quota_root, &key, path, -1, 1); 691 if (ret < 0) 692 goto out; 693 694 if (ret > 0) { 695 ret = -ENOENT; 696 goto out; 697 } 698 699 ret = btrfs_del_item(trans, quota_root, path); 700 out: 701 btrfs_free_path(path); 702 return ret; 703 } 704 705 static int add_qgroup_item(struct btrfs_trans_handle *trans, 706 struct btrfs_root *quota_root, u64 qgroupid) 707 { 708 int ret; 709 struct btrfs_path *path; 710 struct btrfs_qgroup_info_item *qgroup_info; 711 struct btrfs_qgroup_limit_item *qgroup_limit; 712 struct extent_buffer *leaf; 713 struct btrfs_key key; 714 715 if (btrfs_is_testing(quota_root->fs_info)) 716 return 0; 717 718 path = btrfs_alloc_path(); 719 if (!path) 720 return -ENOMEM; 721 722 key.objectid = 0; 723 key.type = BTRFS_QGROUP_INFO_KEY; 724 key.offset = qgroupid; 725 726 /* 727 * Avoid a transaction abort by catching -EEXIST here. In that 728 * case, we proceed by re-initializing the existing structure 729 * on disk. 730 */ 731 732 ret = btrfs_insert_empty_item(trans, quota_root, path, &key, 733 sizeof(*qgroup_info)); 734 if (ret && ret != -EEXIST) 735 goto out; 736 737 leaf = path->nodes[0]; 738 qgroup_info = btrfs_item_ptr(leaf, path->slots[0], 739 struct btrfs_qgroup_info_item); 740 btrfs_set_qgroup_info_generation(leaf, qgroup_info, trans->transid); 741 btrfs_set_qgroup_info_rfer(leaf, qgroup_info, 0); 742 btrfs_set_qgroup_info_rfer_cmpr(leaf, qgroup_info, 0); 743 btrfs_set_qgroup_info_excl(leaf, qgroup_info, 0); 744 btrfs_set_qgroup_info_excl_cmpr(leaf, qgroup_info, 0); 745 746 btrfs_mark_buffer_dirty(trans, leaf); 747 748 btrfs_release_path(path); 749 750 key.type = BTRFS_QGROUP_LIMIT_KEY; 751 ret = btrfs_insert_empty_item(trans, quota_root, path, &key, 752 sizeof(*qgroup_limit)); 753 if (ret && ret != -EEXIST) 754 goto out; 755 756 leaf = path->nodes[0]; 757 qgroup_limit = btrfs_item_ptr(leaf, path->slots[0], 758 struct btrfs_qgroup_limit_item); 759 btrfs_set_qgroup_limit_flags(leaf, qgroup_limit, 0); 760 btrfs_set_qgroup_limit_max_rfer(leaf, qgroup_limit, 0); 761 btrfs_set_qgroup_limit_max_excl(leaf, qgroup_limit, 0); 762 btrfs_set_qgroup_limit_rsv_rfer(leaf, qgroup_limit, 0); 763 btrfs_set_qgroup_limit_rsv_excl(leaf, qgroup_limit, 0); 764 765 btrfs_mark_buffer_dirty(trans, leaf); 766 767 ret = 0; 768 out: 769 btrfs_free_path(path); 770 return ret; 771 } 772 773 static int del_qgroup_item(struct btrfs_trans_handle *trans, u64 qgroupid) 774 { 775 int ret; 776 struct btrfs_root *quota_root = trans->fs_info->quota_root; 777 struct btrfs_path *path; 778 struct btrfs_key key; 779 780 path = btrfs_alloc_path(); 781 if (!path) 782 return -ENOMEM; 783 784 key.objectid = 0; 785 key.type = BTRFS_QGROUP_INFO_KEY; 786 key.offset = qgroupid; 787 ret = btrfs_search_slot(trans, quota_root, &key, path, -1, 1); 788 if (ret < 0) 789 goto out; 790 791 if (ret > 0) { 792 ret = -ENOENT; 793 goto out; 794 } 795 796 ret = btrfs_del_item(trans, quota_root, path); 797 if (ret) 798 goto out; 799 800 btrfs_release_path(path); 801 802 key.type = BTRFS_QGROUP_LIMIT_KEY; 803 ret = btrfs_search_slot(trans, quota_root, &key, path, -1, 1); 804 if (ret < 0) 805 goto out; 806 807 if (ret > 0) { 808 ret = -ENOENT; 809 goto out; 810 } 811 812 ret = btrfs_del_item(trans, quota_root, path); 813 814 out: 815 btrfs_free_path(path); 816 return ret; 817 } 818 819 static int update_qgroup_limit_item(struct btrfs_trans_handle *trans, 820 struct btrfs_qgroup *qgroup) 821 { 822 struct btrfs_root *quota_root = trans->fs_info->quota_root; 823 struct btrfs_path *path; 824 struct btrfs_key key; 825 struct extent_buffer *l; 826 struct btrfs_qgroup_limit_item *qgroup_limit; 827 int ret; 828 int slot; 829 830 key.objectid = 0; 831 key.type = BTRFS_QGROUP_LIMIT_KEY; 832 key.offset = qgroup->qgroupid; 833 834 path = btrfs_alloc_path(); 835 if (!path) 836 return -ENOMEM; 837 838 ret = btrfs_search_slot(trans, quota_root, &key, path, 0, 1); 839 if (ret > 0) 840 ret = -ENOENT; 841 842 if (ret) 843 goto out; 844 845 l = path->nodes[0]; 846 slot = path->slots[0]; 847 qgroup_limit = btrfs_item_ptr(l, slot, struct btrfs_qgroup_limit_item); 848 btrfs_set_qgroup_limit_flags(l, qgroup_limit, qgroup->lim_flags); 849 btrfs_set_qgroup_limit_max_rfer(l, qgroup_limit, qgroup->max_rfer); 850 btrfs_set_qgroup_limit_max_excl(l, qgroup_limit, qgroup->max_excl); 851 btrfs_set_qgroup_limit_rsv_rfer(l, qgroup_limit, qgroup->rsv_rfer); 852 btrfs_set_qgroup_limit_rsv_excl(l, qgroup_limit, qgroup->rsv_excl); 853 854 btrfs_mark_buffer_dirty(trans, l); 855 856 out: 857 btrfs_free_path(path); 858 return ret; 859 } 860 861 static int update_qgroup_info_item(struct btrfs_trans_handle *trans, 862 struct btrfs_qgroup *qgroup) 863 { 864 struct btrfs_fs_info *fs_info = trans->fs_info; 865 struct btrfs_root *quota_root = fs_info->quota_root; 866 struct btrfs_path *path; 867 struct btrfs_key key; 868 struct extent_buffer *l; 869 struct btrfs_qgroup_info_item *qgroup_info; 870 int ret; 871 int slot; 872 873 if (btrfs_is_testing(fs_info)) 874 return 0; 875 876 key.objectid = 0; 877 key.type = BTRFS_QGROUP_INFO_KEY; 878 key.offset = qgroup->qgroupid; 879 880 path = btrfs_alloc_path(); 881 if (!path) 882 return -ENOMEM; 883 884 ret = btrfs_search_slot(trans, quota_root, &key, path, 0, 1); 885 if (ret > 0) 886 ret = -ENOENT; 887 888 if (ret) 889 goto out; 890 891 l = path->nodes[0]; 892 slot = path->slots[0]; 893 qgroup_info = btrfs_item_ptr(l, slot, struct btrfs_qgroup_info_item); 894 btrfs_set_qgroup_info_generation(l, qgroup_info, trans->transid); 895 btrfs_set_qgroup_info_rfer(l, qgroup_info, qgroup->rfer); 896 btrfs_set_qgroup_info_rfer_cmpr(l, qgroup_info, qgroup->rfer_cmpr); 897 btrfs_set_qgroup_info_excl(l, qgroup_info, qgroup->excl); 898 btrfs_set_qgroup_info_excl_cmpr(l, qgroup_info, qgroup->excl_cmpr); 899 900 btrfs_mark_buffer_dirty(trans, l); 901 902 out: 903 btrfs_free_path(path); 904 return ret; 905 } 906 907 static int update_qgroup_status_item(struct btrfs_trans_handle *trans) 908 { 909 struct btrfs_fs_info *fs_info = trans->fs_info; 910 struct btrfs_root *quota_root = fs_info->quota_root; 911 struct btrfs_path *path; 912 struct btrfs_key key; 913 struct extent_buffer *l; 914 struct btrfs_qgroup_status_item *ptr; 915 int ret; 916 int slot; 917 918 key.objectid = 0; 919 key.type = BTRFS_QGROUP_STATUS_KEY; 920 key.offset = 0; 921 922 path = btrfs_alloc_path(); 923 if (!path) 924 return -ENOMEM; 925 926 ret = btrfs_search_slot(trans, quota_root, &key, path, 0, 1); 927 if (ret > 0) 928 ret = -ENOENT; 929 930 if (ret) 931 goto out; 932 933 l = path->nodes[0]; 934 slot = path->slots[0]; 935 ptr = btrfs_item_ptr(l, slot, struct btrfs_qgroup_status_item); 936 btrfs_set_qgroup_status_flags(l, ptr, fs_info->qgroup_flags & 937 BTRFS_QGROUP_STATUS_FLAGS_MASK); 938 btrfs_set_qgroup_status_generation(l, ptr, trans->transid); 939 btrfs_set_qgroup_status_rescan(l, ptr, 940 fs_info->qgroup_rescan_progress.objectid); 941 942 btrfs_mark_buffer_dirty(trans, l); 943 944 out: 945 btrfs_free_path(path); 946 return ret; 947 } 948 949 /* 950 * called with qgroup_lock held 951 */ 952 static int btrfs_clean_quota_tree(struct btrfs_trans_handle *trans, 953 struct btrfs_root *root) 954 { 955 struct btrfs_path *path; 956 struct btrfs_key key; 957 struct extent_buffer *leaf = NULL; 958 int ret; 959 int nr = 0; 960 961 path = btrfs_alloc_path(); 962 if (!path) 963 return -ENOMEM; 964 965 key.objectid = 0; 966 key.offset = 0; 967 key.type = 0; 968 969 while (1) { 970 ret = btrfs_search_slot(trans, root, &key, path, -1, 1); 971 if (ret < 0) 972 goto out; 973 leaf = path->nodes[0]; 974 nr = btrfs_header_nritems(leaf); 975 if (!nr) 976 break; 977 /* 978 * delete the leaf one by one 979 * since the whole tree is going 980 * to be deleted. 981 */ 982 path->slots[0] = 0; 983 ret = btrfs_del_items(trans, root, path, 0, nr); 984 if (ret) 985 goto out; 986 987 btrfs_release_path(path); 988 } 989 ret = 0; 990 out: 991 btrfs_free_path(path); 992 return ret; 993 } 994 995 int btrfs_quota_enable(struct btrfs_fs_info *fs_info, 996 struct btrfs_ioctl_quota_ctl_args *quota_ctl_args) 997 { 998 struct btrfs_root *quota_root; 999 struct btrfs_root *tree_root = fs_info->tree_root; 1000 struct btrfs_path *path = NULL; 1001 struct btrfs_qgroup_status_item *ptr; 1002 struct extent_buffer *leaf; 1003 struct btrfs_key key; 1004 struct btrfs_key found_key; 1005 struct btrfs_qgroup *qgroup = NULL; 1006 struct btrfs_qgroup *prealloc = NULL; 1007 struct btrfs_trans_handle *trans = NULL; 1008 struct ulist *ulist = NULL; 1009 const bool simple = (quota_ctl_args->cmd == BTRFS_QUOTA_CTL_ENABLE_SIMPLE_QUOTA); 1010 int ret = 0; 1011 int slot; 1012 1013 /* 1014 * We need to have subvol_sem write locked, to prevent races between 1015 * concurrent tasks trying to enable quotas, because we will unlock 1016 * and relock qgroup_ioctl_lock before setting fs_info->quota_root 1017 * and before setting BTRFS_FS_QUOTA_ENABLED. 1018 */ 1019 lockdep_assert_held_write(&fs_info->subvol_sem); 1020 1021 if (btrfs_fs_incompat(fs_info, EXTENT_TREE_V2)) { 1022 btrfs_err(fs_info, 1023 "qgroups are currently unsupported in extent tree v2"); 1024 return -EINVAL; 1025 } 1026 1027 mutex_lock(&fs_info->qgroup_ioctl_lock); 1028 if (fs_info->quota_root) 1029 goto out; 1030 1031 ulist = ulist_alloc(GFP_KERNEL); 1032 if (!ulist) { 1033 ret = -ENOMEM; 1034 goto out; 1035 } 1036 1037 ret = btrfs_sysfs_add_qgroups(fs_info); 1038 if (ret < 0) 1039 goto out; 1040 1041 /* 1042 * Unlock qgroup_ioctl_lock before starting the transaction. This is to 1043 * avoid lock acquisition inversion problems (reported by lockdep) between 1044 * qgroup_ioctl_lock and the vfs freeze semaphores, acquired when we 1045 * start a transaction. 1046 * After we started the transaction lock qgroup_ioctl_lock again and 1047 * check if someone else created the quota root in the meanwhile. If so, 1048 * just return success and release the transaction handle. 1049 * 1050 * Also we don't need to worry about someone else calling 1051 * btrfs_sysfs_add_qgroups() after we unlock and getting an error because 1052 * that function returns 0 (success) when the sysfs entries already exist. 1053 */ 1054 mutex_unlock(&fs_info->qgroup_ioctl_lock); 1055 1056 /* 1057 * 1 for quota root item 1058 * 1 for BTRFS_QGROUP_STATUS item 1059 * 1060 * Yet we also need 2*n items for a QGROUP_INFO/QGROUP_LIMIT items 1061 * per subvolume. However those are not currently reserved since it 1062 * would be a lot of overkill. 1063 */ 1064 trans = btrfs_start_transaction(tree_root, 2); 1065 1066 mutex_lock(&fs_info->qgroup_ioctl_lock); 1067 if (IS_ERR(trans)) { 1068 ret = PTR_ERR(trans); 1069 trans = NULL; 1070 goto out; 1071 } 1072 1073 if (fs_info->quota_root) 1074 goto out; 1075 1076 fs_info->qgroup_ulist = ulist; 1077 ulist = NULL; 1078 1079 /* 1080 * initially create the quota tree 1081 */ 1082 quota_root = btrfs_create_tree(trans, BTRFS_QUOTA_TREE_OBJECTID); 1083 if (IS_ERR(quota_root)) { 1084 ret = PTR_ERR(quota_root); 1085 btrfs_abort_transaction(trans, ret); 1086 goto out; 1087 } 1088 1089 path = btrfs_alloc_path(); 1090 if (!path) { 1091 ret = -ENOMEM; 1092 btrfs_abort_transaction(trans, ret); 1093 goto out_free_root; 1094 } 1095 1096 key.objectid = 0; 1097 key.type = BTRFS_QGROUP_STATUS_KEY; 1098 key.offset = 0; 1099 1100 ret = btrfs_insert_empty_item(trans, quota_root, path, &key, 1101 sizeof(*ptr)); 1102 if (ret) { 1103 btrfs_abort_transaction(trans, ret); 1104 goto out_free_path; 1105 } 1106 1107 leaf = path->nodes[0]; 1108 ptr = btrfs_item_ptr(leaf, path->slots[0], 1109 struct btrfs_qgroup_status_item); 1110 btrfs_set_qgroup_status_generation(leaf, ptr, trans->transid); 1111 btrfs_set_qgroup_status_version(leaf, ptr, BTRFS_QGROUP_STATUS_VERSION); 1112 fs_info->qgroup_flags = BTRFS_QGROUP_STATUS_FLAG_ON; 1113 if (simple) { 1114 fs_info->qgroup_flags |= BTRFS_QGROUP_STATUS_FLAG_SIMPLE_MODE; 1115 btrfs_set_qgroup_status_enable_gen(leaf, ptr, trans->transid); 1116 } else { 1117 fs_info->qgroup_flags |= BTRFS_QGROUP_STATUS_FLAG_INCONSISTENT; 1118 } 1119 btrfs_set_qgroup_status_flags(leaf, ptr, fs_info->qgroup_flags & 1120 BTRFS_QGROUP_STATUS_FLAGS_MASK); 1121 btrfs_set_qgroup_status_rescan(leaf, ptr, 0); 1122 1123 btrfs_mark_buffer_dirty(trans, leaf); 1124 1125 key.objectid = 0; 1126 key.type = BTRFS_ROOT_REF_KEY; 1127 key.offset = 0; 1128 1129 btrfs_release_path(path); 1130 ret = btrfs_search_slot_for_read(tree_root, &key, path, 1, 0); 1131 if (ret > 0) 1132 goto out_add_root; 1133 if (ret < 0) { 1134 btrfs_abort_transaction(trans, ret); 1135 goto out_free_path; 1136 } 1137 1138 while (1) { 1139 slot = path->slots[0]; 1140 leaf = path->nodes[0]; 1141 btrfs_item_key_to_cpu(leaf, &found_key, slot); 1142 1143 if (found_key.type == BTRFS_ROOT_REF_KEY) { 1144 1145 /* Release locks on tree_root before we access quota_root */ 1146 btrfs_release_path(path); 1147 1148 /* We should not have a stray @prealloc pointer. */ 1149 ASSERT(prealloc == NULL); 1150 prealloc = kzalloc(sizeof(*prealloc), GFP_NOFS); 1151 if (!prealloc) { 1152 ret = -ENOMEM; 1153 btrfs_abort_transaction(trans, ret); 1154 goto out_free_path; 1155 } 1156 1157 ret = add_qgroup_item(trans, quota_root, 1158 found_key.offset); 1159 if (ret) { 1160 btrfs_abort_transaction(trans, ret); 1161 goto out_free_path; 1162 } 1163 1164 qgroup = add_qgroup_rb(fs_info, prealloc, found_key.offset); 1165 prealloc = NULL; 1166 if (IS_ERR(qgroup)) { 1167 ret = PTR_ERR(qgroup); 1168 btrfs_abort_transaction(trans, ret); 1169 goto out_free_path; 1170 } 1171 ret = btrfs_sysfs_add_one_qgroup(fs_info, qgroup); 1172 if (ret < 0) { 1173 btrfs_abort_transaction(trans, ret); 1174 goto out_free_path; 1175 } 1176 ret = btrfs_search_slot_for_read(tree_root, &found_key, 1177 path, 1, 0); 1178 if (ret < 0) { 1179 btrfs_abort_transaction(trans, ret); 1180 goto out_free_path; 1181 } 1182 if (ret > 0) { 1183 /* 1184 * Shouldn't happen, but in case it does we 1185 * don't need to do the btrfs_next_item, just 1186 * continue. 1187 */ 1188 continue; 1189 } 1190 } 1191 ret = btrfs_next_item(tree_root, path); 1192 if (ret < 0) { 1193 btrfs_abort_transaction(trans, ret); 1194 goto out_free_path; 1195 } 1196 if (ret) 1197 break; 1198 } 1199 1200 out_add_root: 1201 btrfs_release_path(path); 1202 ret = add_qgroup_item(trans, quota_root, BTRFS_FS_TREE_OBJECTID); 1203 if (ret) { 1204 btrfs_abort_transaction(trans, ret); 1205 goto out_free_path; 1206 } 1207 1208 ASSERT(prealloc == NULL); 1209 prealloc = kzalloc(sizeof(*prealloc), GFP_NOFS); 1210 if (!prealloc) { 1211 ret = -ENOMEM; 1212 goto out_free_path; 1213 } 1214 qgroup = add_qgroup_rb(fs_info, prealloc, BTRFS_FS_TREE_OBJECTID); 1215 prealloc = NULL; 1216 ret = btrfs_sysfs_add_one_qgroup(fs_info, qgroup); 1217 if (ret < 0) { 1218 btrfs_abort_transaction(trans, ret); 1219 goto out_free_path; 1220 } 1221 1222 fs_info->qgroup_enable_gen = trans->transid; 1223 1224 mutex_unlock(&fs_info->qgroup_ioctl_lock); 1225 /* 1226 * Commit the transaction while not holding qgroup_ioctl_lock, to avoid 1227 * a deadlock with tasks concurrently doing other qgroup operations, such 1228 * adding/removing qgroups or adding/deleting qgroup relations for example, 1229 * because all qgroup operations first start or join a transaction and then 1230 * lock the qgroup_ioctl_lock mutex. 1231 * We are safe from a concurrent task trying to enable quotas, by calling 1232 * this function, since we are serialized by fs_info->subvol_sem. 1233 */ 1234 ret = btrfs_commit_transaction(trans); 1235 trans = NULL; 1236 mutex_lock(&fs_info->qgroup_ioctl_lock); 1237 if (ret) 1238 goto out_free_path; 1239 1240 /* 1241 * Set quota enabled flag after committing the transaction, to avoid 1242 * deadlocks on fs_info->qgroup_ioctl_lock with concurrent snapshot 1243 * creation. 1244 */ 1245 spin_lock(&fs_info->qgroup_lock); 1246 fs_info->quota_root = quota_root; 1247 set_bit(BTRFS_FS_QUOTA_ENABLED, &fs_info->flags); 1248 if (simple) 1249 btrfs_set_fs_incompat(fs_info, SIMPLE_QUOTA); 1250 spin_unlock(&fs_info->qgroup_lock); 1251 1252 /* Skip rescan for simple qgroups. */ 1253 if (btrfs_qgroup_mode(fs_info) == BTRFS_QGROUP_MODE_SIMPLE) 1254 goto out_free_path; 1255 1256 ret = qgroup_rescan_init(fs_info, 0, 1); 1257 if (!ret) { 1258 qgroup_rescan_zero_tracking(fs_info); 1259 fs_info->qgroup_rescan_running = true; 1260 btrfs_queue_work(fs_info->qgroup_rescan_workers, 1261 &fs_info->qgroup_rescan_work); 1262 } else { 1263 /* 1264 * We have set both BTRFS_FS_QUOTA_ENABLED and 1265 * BTRFS_QGROUP_STATUS_FLAG_ON, so we can only fail with 1266 * -EINPROGRESS. That can happen because someone started the 1267 * rescan worker by calling quota rescan ioctl before we 1268 * attempted to initialize the rescan worker. Failure due to 1269 * quotas disabled in the meanwhile is not possible, because 1270 * we are holding a write lock on fs_info->subvol_sem, which 1271 * is also acquired when disabling quotas. 1272 * Ignore such error, and any other error would need to undo 1273 * everything we did in the transaction we just committed. 1274 */ 1275 ASSERT(ret == -EINPROGRESS); 1276 ret = 0; 1277 } 1278 1279 out_free_path: 1280 btrfs_free_path(path); 1281 out_free_root: 1282 if (ret) 1283 btrfs_put_root(quota_root); 1284 out: 1285 if (ret) { 1286 ulist_free(fs_info->qgroup_ulist); 1287 fs_info->qgroup_ulist = NULL; 1288 btrfs_sysfs_del_qgroups(fs_info); 1289 } 1290 mutex_unlock(&fs_info->qgroup_ioctl_lock); 1291 if (ret && trans) 1292 btrfs_end_transaction(trans); 1293 else if (trans) 1294 ret = btrfs_end_transaction(trans); 1295 ulist_free(ulist); 1296 kfree(prealloc); 1297 return ret; 1298 } 1299 1300 /* 1301 * It is possible to have outstanding ordered extents which reserved bytes 1302 * before we disabled. We need to fully flush delalloc, ordered extents, and a 1303 * commit to ensure that we don't leak such reservations, only to have them 1304 * come back if we re-enable. 1305 * 1306 * - enable simple quotas 1307 * - reserve space 1308 * - release it, store rsv_bytes in OE 1309 * - disable quotas 1310 * - enable simple quotas (qgroup rsv are all 0) 1311 * - OE finishes 1312 * - run delayed refs 1313 * - free rsv_bytes, resulting in miscounting or even underflow 1314 */ 1315 static int flush_reservations(struct btrfs_fs_info *fs_info) 1316 { 1317 struct btrfs_trans_handle *trans; 1318 int ret; 1319 1320 ret = btrfs_start_delalloc_roots(fs_info, LONG_MAX, false); 1321 if (ret) 1322 return ret; 1323 btrfs_wait_ordered_roots(fs_info, U64_MAX, 0, (u64)-1); 1324 trans = btrfs_join_transaction(fs_info->tree_root); 1325 if (IS_ERR(trans)) 1326 return PTR_ERR(trans); 1327 ret = btrfs_commit_transaction(trans); 1328 1329 return ret; 1330 } 1331 1332 int btrfs_quota_disable(struct btrfs_fs_info *fs_info) 1333 { 1334 struct btrfs_root *quota_root; 1335 struct btrfs_trans_handle *trans = NULL; 1336 int ret = 0; 1337 1338 /* 1339 * We need to have subvol_sem write locked to prevent races with 1340 * snapshot creation. 1341 */ 1342 lockdep_assert_held_write(&fs_info->subvol_sem); 1343 1344 /* 1345 * Relocation will mess with backrefs, so make sure we have the 1346 * cleaner_mutex held to protect us from relocate. 1347 */ 1348 lockdep_assert_held(&fs_info->cleaner_mutex); 1349 1350 mutex_lock(&fs_info->qgroup_ioctl_lock); 1351 if (!fs_info->quota_root) 1352 goto out; 1353 1354 /* 1355 * Unlock the qgroup_ioctl_lock mutex before waiting for the rescan worker to 1356 * complete. Otherwise we can deadlock because btrfs_remove_qgroup() needs 1357 * to lock that mutex while holding a transaction handle and the rescan 1358 * worker needs to commit a transaction. 1359 */ 1360 mutex_unlock(&fs_info->qgroup_ioctl_lock); 1361 1362 /* 1363 * Request qgroup rescan worker to complete and wait for it. This wait 1364 * must be done before transaction start for quota disable since it may 1365 * deadlock with transaction by the qgroup rescan worker. 1366 */ 1367 clear_bit(BTRFS_FS_QUOTA_ENABLED, &fs_info->flags); 1368 btrfs_qgroup_wait_for_completion(fs_info, false); 1369 1370 /* 1371 * We have nothing held here and no trans handle, just return the error 1372 * if there is one. 1373 */ 1374 ret = flush_reservations(fs_info); 1375 if (ret) 1376 return ret; 1377 1378 /* 1379 * 1 For the root item 1380 * 1381 * We should also reserve enough items for the quota tree deletion in 1382 * btrfs_clean_quota_tree but this is not done. 1383 * 1384 * Also, we must always start a transaction without holding the mutex 1385 * qgroup_ioctl_lock, see btrfs_quota_enable(). 1386 */ 1387 trans = btrfs_start_transaction(fs_info->tree_root, 1); 1388 1389 mutex_lock(&fs_info->qgroup_ioctl_lock); 1390 if (IS_ERR(trans)) { 1391 ret = PTR_ERR(trans); 1392 trans = NULL; 1393 set_bit(BTRFS_FS_QUOTA_ENABLED, &fs_info->flags); 1394 goto out; 1395 } 1396 1397 if (!fs_info->quota_root) 1398 goto out; 1399 1400 spin_lock(&fs_info->qgroup_lock); 1401 quota_root = fs_info->quota_root; 1402 fs_info->quota_root = NULL; 1403 fs_info->qgroup_flags &= ~BTRFS_QGROUP_STATUS_FLAG_ON; 1404 fs_info->qgroup_flags &= ~BTRFS_QGROUP_STATUS_FLAG_SIMPLE_MODE; 1405 fs_info->qgroup_drop_subtree_thres = BTRFS_MAX_LEVEL; 1406 spin_unlock(&fs_info->qgroup_lock); 1407 1408 btrfs_free_qgroup_config(fs_info); 1409 1410 ret = btrfs_clean_quota_tree(trans, quota_root); 1411 if (ret) { 1412 btrfs_abort_transaction(trans, ret); 1413 goto out; 1414 } 1415 1416 ret = btrfs_del_root(trans, "a_root->root_key); 1417 if (ret) { 1418 btrfs_abort_transaction(trans, ret); 1419 goto out; 1420 } 1421 1422 spin_lock(&fs_info->trans_lock); 1423 list_del("a_root->dirty_list); 1424 spin_unlock(&fs_info->trans_lock); 1425 1426 btrfs_tree_lock(quota_root->node); 1427 btrfs_clear_buffer_dirty(trans, quota_root->node); 1428 btrfs_tree_unlock(quota_root->node); 1429 btrfs_free_tree_block(trans, btrfs_root_id(quota_root), 1430 quota_root->node, 0, 1); 1431 1432 btrfs_put_root(quota_root); 1433 1434 out: 1435 mutex_unlock(&fs_info->qgroup_ioctl_lock); 1436 if (ret && trans) 1437 btrfs_end_transaction(trans); 1438 else if (trans) 1439 ret = btrfs_commit_transaction(trans); 1440 return ret; 1441 } 1442 1443 static void qgroup_dirty(struct btrfs_fs_info *fs_info, 1444 struct btrfs_qgroup *qgroup) 1445 { 1446 if (list_empty(&qgroup->dirty)) 1447 list_add(&qgroup->dirty, &fs_info->dirty_qgroups); 1448 } 1449 1450 static void qgroup_iterator_add(struct list_head *head, struct btrfs_qgroup *qgroup) 1451 { 1452 if (!list_empty(&qgroup->iterator)) 1453 return; 1454 1455 list_add_tail(&qgroup->iterator, head); 1456 } 1457 1458 static void qgroup_iterator_clean(struct list_head *head) 1459 { 1460 while (!list_empty(head)) { 1461 struct btrfs_qgroup *qgroup; 1462 1463 qgroup = list_first_entry(head, struct btrfs_qgroup, iterator); 1464 list_del_init(&qgroup->iterator); 1465 } 1466 } 1467 1468 /* 1469 * The easy accounting, we're updating qgroup relationship whose child qgroup 1470 * only has exclusive extents. 1471 * 1472 * In this case, all exclusive extents will also be exclusive for parent, so 1473 * excl/rfer just get added/removed. 1474 * 1475 * So is qgroup reservation space, which should also be added/removed to 1476 * parent. 1477 * Or when child tries to release reservation space, parent will underflow its 1478 * reservation (for relationship adding case). 1479 * 1480 * Caller should hold fs_info->qgroup_lock. 1481 */ 1482 static int __qgroup_excl_accounting(struct btrfs_fs_info *fs_info, u64 ref_root, 1483 struct btrfs_qgroup *src, int sign) 1484 { 1485 struct btrfs_qgroup *qgroup; 1486 struct btrfs_qgroup *cur; 1487 LIST_HEAD(qgroup_list); 1488 u64 num_bytes = src->excl; 1489 int ret = 0; 1490 1491 qgroup = find_qgroup_rb(fs_info, ref_root); 1492 if (!qgroup) 1493 goto out; 1494 1495 qgroup_iterator_add(&qgroup_list, qgroup); 1496 list_for_each_entry(cur, &qgroup_list, iterator) { 1497 struct btrfs_qgroup_list *glist; 1498 1499 qgroup->rfer += sign * num_bytes; 1500 qgroup->rfer_cmpr += sign * num_bytes; 1501 1502 WARN_ON(sign < 0 && qgroup->excl < num_bytes); 1503 qgroup->excl += sign * num_bytes; 1504 qgroup->excl_cmpr += sign * num_bytes; 1505 1506 if (sign > 0) 1507 qgroup_rsv_add_by_qgroup(fs_info, qgroup, src); 1508 else 1509 qgroup_rsv_release_by_qgroup(fs_info, qgroup, src); 1510 qgroup_dirty(fs_info, qgroup); 1511 1512 /* Append parent qgroups to @qgroup_list. */ 1513 list_for_each_entry(glist, &qgroup->groups, next_group) 1514 qgroup_iterator_add(&qgroup_list, glist->group); 1515 } 1516 ret = 0; 1517 out: 1518 qgroup_iterator_clean(&qgroup_list); 1519 return ret; 1520 } 1521 1522 1523 /* 1524 * Quick path for updating qgroup with only excl refs. 1525 * 1526 * In that case, just update all parent will be enough. 1527 * Or we needs to do a full rescan. 1528 * Caller should also hold fs_info->qgroup_lock. 1529 * 1530 * Return 0 for quick update, return >0 for need to full rescan 1531 * and mark INCONSISTENT flag. 1532 * Return < 0 for other error. 1533 */ 1534 static int quick_update_accounting(struct btrfs_fs_info *fs_info, 1535 u64 src, u64 dst, int sign) 1536 { 1537 struct btrfs_qgroup *qgroup; 1538 int ret = 1; 1539 1540 qgroup = find_qgroup_rb(fs_info, src); 1541 if (!qgroup) 1542 goto out; 1543 if (qgroup->excl == qgroup->rfer) { 1544 ret = __qgroup_excl_accounting(fs_info, dst, qgroup, sign); 1545 if (ret < 0) 1546 goto out; 1547 ret = 0; 1548 } 1549 out: 1550 if (ret) 1551 fs_info->qgroup_flags |= BTRFS_QGROUP_STATUS_FLAG_INCONSISTENT; 1552 return ret; 1553 } 1554 1555 int btrfs_add_qgroup_relation(struct btrfs_trans_handle *trans, u64 src, u64 dst) 1556 { 1557 struct btrfs_fs_info *fs_info = trans->fs_info; 1558 struct btrfs_qgroup *parent; 1559 struct btrfs_qgroup *member; 1560 struct btrfs_qgroup_list *list; 1561 struct btrfs_qgroup_list *prealloc = NULL; 1562 int ret = 0; 1563 1564 /* Check the level of src and dst first */ 1565 if (btrfs_qgroup_level(src) >= btrfs_qgroup_level(dst)) 1566 return -EINVAL; 1567 1568 mutex_lock(&fs_info->qgroup_ioctl_lock); 1569 if (!fs_info->quota_root) { 1570 ret = -ENOTCONN; 1571 goto out; 1572 } 1573 member = find_qgroup_rb(fs_info, src); 1574 parent = find_qgroup_rb(fs_info, dst); 1575 if (!member || !parent) { 1576 ret = -EINVAL; 1577 goto out; 1578 } 1579 1580 /* check if such qgroup relation exist firstly */ 1581 list_for_each_entry(list, &member->groups, next_group) { 1582 if (list->group == parent) { 1583 ret = -EEXIST; 1584 goto out; 1585 } 1586 } 1587 1588 prealloc = kzalloc(sizeof(*list), GFP_NOFS); 1589 if (!prealloc) { 1590 ret = -ENOMEM; 1591 goto out; 1592 } 1593 ret = add_qgroup_relation_item(trans, src, dst); 1594 if (ret) 1595 goto out; 1596 1597 ret = add_qgroup_relation_item(trans, dst, src); 1598 if (ret) { 1599 del_qgroup_relation_item(trans, src, dst); 1600 goto out; 1601 } 1602 1603 spin_lock(&fs_info->qgroup_lock); 1604 ret = __add_relation_rb(prealloc, member, parent); 1605 prealloc = NULL; 1606 if (ret < 0) { 1607 spin_unlock(&fs_info->qgroup_lock); 1608 goto out; 1609 } 1610 ret = quick_update_accounting(fs_info, src, dst, 1); 1611 spin_unlock(&fs_info->qgroup_lock); 1612 out: 1613 kfree(prealloc); 1614 mutex_unlock(&fs_info->qgroup_ioctl_lock); 1615 return ret; 1616 } 1617 1618 static int __del_qgroup_relation(struct btrfs_trans_handle *trans, u64 src, 1619 u64 dst) 1620 { 1621 struct btrfs_fs_info *fs_info = trans->fs_info; 1622 struct btrfs_qgroup *parent; 1623 struct btrfs_qgroup *member; 1624 struct btrfs_qgroup_list *list; 1625 bool found = false; 1626 int ret = 0; 1627 int ret2; 1628 1629 if (!fs_info->quota_root) { 1630 ret = -ENOTCONN; 1631 goto out; 1632 } 1633 1634 member = find_qgroup_rb(fs_info, src); 1635 parent = find_qgroup_rb(fs_info, dst); 1636 /* 1637 * The parent/member pair doesn't exist, then try to delete the dead 1638 * relation items only. 1639 */ 1640 if (!member || !parent) 1641 goto delete_item; 1642 1643 /* check if such qgroup relation exist firstly */ 1644 list_for_each_entry(list, &member->groups, next_group) { 1645 if (list->group == parent) { 1646 found = true; 1647 break; 1648 } 1649 } 1650 1651 delete_item: 1652 ret = del_qgroup_relation_item(trans, src, dst); 1653 if (ret < 0 && ret != -ENOENT) 1654 goto out; 1655 ret2 = del_qgroup_relation_item(trans, dst, src); 1656 if (ret2 < 0 && ret2 != -ENOENT) 1657 goto out; 1658 1659 /* At least one deletion succeeded, return 0 */ 1660 if (!ret || !ret2) 1661 ret = 0; 1662 1663 if (found) { 1664 spin_lock(&fs_info->qgroup_lock); 1665 del_relation_rb(fs_info, src, dst); 1666 ret = quick_update_accounting(fs_info, src, dst, -1); 1667 spin_unlock(&fs_info->qgroup_lock); 1668 } 1669 out: 1670 return ret; 1671 } 1672 1673 int btrfs_del_qgroup_relation(struct btrfs_trans_handle *trans, u64 src, 1674 u64 dst) 1675 { 1676 struct btrfs_fs_info *fs_info = trans->fs_info; 1677 int ret = 0; 1678 1679 mutex_lock(&fs_info->qgroup_ioctl_lock); 1680 ret = __del_qgroup_relation(trans, src, dst); 1681 mutex_unlock(&fs_info->qgroup_ioctl_lock); 1682 1683 return ret; 1684 } 1685 1686 int btrfs_create_qgroup(struct btrfs_trans_handle *trans, u64 qgroupid) 1687 { 1688 struct btrfs_fs_info *fs_info = trans->fs_info; 1689 struct btrfs_root *quota_root; 1690 struct btrfs_qgroup *qgroup; 1691 struct btrfs_qgroup *prealloc = NULL; 1692 int ret = 0; 1693 1694 if (btrfs_qgroup_mode(fs_info) == BTRFS_QGROUP_MODE_DISABLED) 1695 return 0; 1696 1697 mutex_lock(&fs_info->qgroup_ioctl_lock); 1698 if (!fs_info->quota_root) { 1699 ret = -ENOTCONN; 1700 goto out; 1701 } 1702 quota_root = fs_info->quota_root; 1703 qgroup = find_qgroup_rb(fs_info, qgroupid); 1704 if (qgroup) { 1705 ret = -EEXIST; 1706 goto out; 1707 } 1708 1709 prealloc = kzalloc(sizeof(*prealloc), GFP_NOFS); 1710 if (!prealloc) { 1711 ret = -ENOMEM; 1712 goto out; 1713 } 1714 1715 ret = add_qgroup_item(trans, quota_root, qgroupid); 1716 if (ret) 1717 goto out; 1718 1719 spin_lock(&fs_info->qgroup_lock); 1720 qgroup = add_qgroup_rb(fs_info, prealloc, qgroupid); 1721 spin_unlock(&fs_info->qgroup_lock); 1722 prealloc = NULL; 1723 1724 ret = btrfs_sysfs_add_one_qgroup(fs_info, qgroup); 1725 out: 1726 mutex_unlock(&fs_info->qgroup_ioctl_lock); 1727 kfree(prealloc); 1728 return ret; 1729 } 1730 1731 static bool qgroup_has_usage(struct btrfs_qgroup *qgroup) 1732 { 1733 return (qgroup->rfer > 0 || qgroup->rfer_cmpr > 0 || 1734 qgroup->excl > 0 || qgroup->excl_cmpr > 0 || 1735 qgroup->rsv.values[BTRFS_QGROUP_RSV_DATA] > 0 || 1736 qgroup->rsv.values[BTRFS_QGROUP_RSV_META_PREALLOC] > 0 || 1737 qgroup->rsv.values[BTRFS_QGROUP_RSV_META_PERTRANS] > 0); 1738 } 1739 1740 int btrfs_remove_qgroup(struct btrfs_trans_handle *trans, u64 qgroupid) 1741 { 1742 struct btrfs_fs_info *fs_info = trans->fs_info; 1743 struct btrfs_qgroup *qgroup; 1744 struct btrfs_qgroup_list *list; 1745 int ret = 0; 1746 1747 mutex_lock(&fs_info->qgroup_ioctl_lock); 1748 if (!fs_info->quota_root) { 1749 ret = -ENOTCONN; 1750 goto out; 1751 } 1752 1753 qgroup = find_qgroup_rb(fs_info, qgroupid); 1754 if (!qgroup) { 1755 ret = -ENOENT; 1756 goto out; 1757 } 1758 1759 if (is_fstree(qgroupid) && qgroup_has_usage(qgroup)) { 1760 ret = -EBUSY; 1761 goto out; 1762 } 1763 1764 /* Check if there are no children of this qgroup */ 1765 if (!list_empty(&qgroup->members)) { 1766 ret = -EBUSY; 1767 goto out; 1768 } 1769 1770 ret = del_qgroup_item(trans, qgroupid); 1771 if (ret && ret != -ENOENT) 1772 goto out; 1773 1774 while (!list_empty(&qgroup->groups)) { 1775 list = list_first_entry(&qgroup->groups, 1776 struct btrfs_qgroup_list, next_group); 1777 ret = __del_qgroup_relation(trans, qgroupid, 1778 list->group->qgroupid); 1779 if (ret) 1780 goto out; 1781 } 1782 1783 spin_lock(&fs_info->qgroup_lock); 1784 del_qgroup_rb(fs_info, qgroupid); 1785 spin_unlock(&fs_info->qgroup_lock); 1786 1787 /* 1788 * Remove the qgroup from sysfs now without holding the qgroup_lock 1789 * spinlock, since the sysfs_remove_group() function needs to take 1790 * the mutex kernfs_mutex through kernfs_remove_by_name_ns(). 1791 */ 1792 btrfs_sysfs_del_one_qgroup(fs_info, qgroup); 1793 kfree(qgroup); 1794 out: 1795 mutex_unlock(&fs_info->qgroup_ioctl_lock); 1796 return ret; 1797 } 1798 1799 int btrfs_limit_qgroup(struct btrfs_trans_handle *trans, u64 qgroupid, 1800 struct btrfs_qgroup_limit *limit) 1801 { 1802 struct btrfs_fs_info *fs_info = trans->fs_info; 1803 struct btrfs_qgroup *qgroup; 1804 int ret = 0; 1805 /* Sometimes we would want to clear the limit on this qgroup. 1806 * To meet this requirement, we treat the -1 as a special value 1807 * which tell kernel to clear the limit on this qgroup. 1808 */ 1809 const u64 CLEAR_VALUE = -1; 1810 1811 mutex_lock(&fs_info->qgroup_ioctl_lock); 1812 if (!fs_info->quota_root) { 1813 ret = -ENOTCONN; 1814 goto out; 1815 } 1816 1817 qgroup = find_qgroup_rb(fs_info, qgroupid); 1818 if (!qgroup) { 1819 ret = -ENOENT; 1820 goto out; 1821 } 1822 1823 spin_lock(&fs_info->qgroup_lock); 1824 if (limit->flags & BTRFS_QGROUP_LIMIT_MAX_RFER) { 1825 if (limit->max_rfer == CLEAR_VALUE) { 1826 qgroup->lim_flags &= ~BTRFS_QGROUP_LIMIT_MAX_RFER; 1827 limit->flags &= ~BTRFS_QGROUP_LIMIT_MAX_RFER; 1828 qgroup->max_rfer = 0; 1829 } else { 1830 qgroup->max_rfer = limit->max_rfer; 1831 } 1832 } 1833 if (limit->flags & BTRFS_QGROUP_LIMIT_MAX_EXCL) { 1834 if (limit->max_excl == CLEAR_VALUE) { 1835 qgroup->lim_flags &= ~BTRFS_QGROUP_LIMIT_MAX_EXCL; 1836 limit->flags &= ~BTRFS_QGROUP_LIMIT_MAX_EXCL; 1837 qgroup->max_excl = 0; 1838 } else { 1839 qgroup->max_excl = limit->max_excl; 1840 } 1841 } 1842 if (limit->flags & BTRFS_QGROUP_LIMIT_RSV_RFER) { 1843 if (limit->rsv_rfer == CLEAR_VALUE) { 1844 qgroup->lim_flags &= ~BTRFS_QGROUP_LIMIT_RSV_RFER; 1845 limit->flags &= ~BTRFS_QGROUP_LIMIT_RSV_RFER; 1846 qgroup->rsv_rfer = 0; 1847 } else { 1848 qgroup->rsv_rfer = limit->rsv_rfer; 1849 } 1850 } 1851 if (limit->flags & BTRFS_QGROUP_LIMIT_RSV_EXCL) { 1852 if (limit->rsv_excl == CLEAR_VALUE) { 1853 qgroup->lim_flags &= ~BTRFS_QGROUP_LIMIT_RSV_EXCL; 1854 limit->flags &= ~BTRFS_QGROUP_LIMIT_RSV_EXCL; 1855 qgroup->rsv_excl = 0; 1856 } else { 1857 qgroup->rsv_excl = limit->rsv_excl; 1858 } 1859 } 1860 qgroup->lim_flags |= limit->flags; 1861 1862 spin_unlock(&fs_info->qgroup_lock); 1863 1864 ret = update_qgroup_limit_item(trans, qgroup); 1865 if (ret) { 1866 qgroup_mark_inconsistent(fs_info); 1867 btrfs_info(fs_info, "unable to update quota limit for %llu", 1868 qgroupid); 1869 } 1870 1871 out: 1872 mutex_unlock(&fs_info->qgroup_ioctl_lock); 1873 return ret; 1874 } 1875 1876 /* 1877 * Inform qgroup to trace one dirty extent, its info is recorded in @record. 1878 * So qgroup can account it at transaction committing time. 1879 * 1880 * No lock version, caller must acquire delayed ref lock and allocated memory, 1881 * then call btrfs_qgroup_trace_extent_post() after exiting lock context. 1882 * 1883 * Return 0 for success insert 1884 * Return >0 for existing record, caller can free @record safely. 1885 * Error is not possible 1886 */ 1887 int btrfs_qgroup_trace_extent_nolock(struct btrfs_fs_info *fs_info, 1888 struct btrfs_delayed_ref_root *delayed_refs, 1889 struct btrfs_qgroup_extent_record *record) 1890 { 1891 struct rb_node **p = &delayed_refs->dirty_extent_root.rb_node; 1892 struct rb_node *parent_node = NULL; 1893 struct btrfs_qgroup_extent_record *entry; 1894 u64 bytenr = record->bytenr; 1895 1896 if (!btrfs_qgroup_full_accounting(fs_info)) 1897 return 1; 1898 1899 lockdep_assert_held(&delayed_refs->lock); 1900 trace_btrfs_qgroup_trace_extent(fs_info, record); 1901 1902 while (*p) { 1903 parent_node = *p; 1904 entry = rb_entry(parent_node, struct btrfs_qgroup_extent_record, 1905 node); 1906 if (bytenr < entry->bytenr) { 1907 p = &(*p)->rb_left; 1908 } else if (bytenr > entry->bytenr) { 1909 p = &(*p)->rb_right; 1910 } else { 1911 if (record->data_rsv && !entry->data_rsv) { 1912 entry->data_rsv = record->data_rsv; 1913 entry->data_rsv_refroot = 1914 record->data_rsv_refroot; 1915 } 1916 return 1; 1917 } 1918 } 1919 1920 rb_link_node(&record->node, parent_node, p); 1921 rb_insert_color(&record->node, &delayed_refs->dirty_extent_root); 1922 return 0; 1923 } 1924 1925 /* 1926 * Post handler after qgroup_trace_extent_nolock(). 1927 * 1928 * NOTE: Current qgroup does the expensive backref walk at transaction 1929 * committing time with TRANS_STATE_COMMIT_DOING, this blocks incoming 1930 * new transaction. 1931 * This is designed to allow btrfs_find_all_roots() to get correct new_roots 1932 * result. 1933 * 1934 * However for old_roots there is no need to do backref walk at that time, 1935 * since we search commit roots to walk backref and result will always be 1936 * correct. 1937 * 1938 * Due to the nature of no lock version, we can't do backref there. 1939 * So we must call btrfs_qgroup_trace_extent_post() after exiting 1940 * spinlock context. 1941 * 1942 * TODO: If we can fix and prove btrfs_find_all_roots() can get correct result 1943 * using current root, then we can move all expensive backref walk out of 1944 * transaction committing, but not now as qgroup accounting will be wrong again. 1945 */ 1946 int btrfs_qgroup_trace_extent_post(struct btrfs_trans_handle *trans, 1947 struct btrfs_qgroup_extent_record *qrecord) 1948 { 1949 struct btrfs_backref_walk_ctx ctx = { 0 }; 1950 int ret; 1951 1952 if (!btrfs_qgroup_full_accounting(trans->fs_info)) 1953 return 0; 1954 /* 1955 * We are always called in a context where we are already holding a 1956 * transaction handle. Often we are called when adding a data delayed 1957 * reference from btrfs_truncate_inode_items() (truncating or unlinking), 1958 * in which case we will be holding a write lock on extent buffer from a 1959 * subvolume tree. In this case we can't allow btrfs_find_all_roots() to 1960 * acquire fs_info->commit_root_sem, because that is a higher level lock 1961 * that must be acquired before locking any extent buffers. 1962 * 1963 * So we want btrfs_find_all_roots() to not acquire the commit_root_sem 1964 * but we can't pass it a non-NULL transaction handle, because otherwise 1965 * it would not use commit roots and would lock extent buffers, causing 1966 * a deadlock if it ends up trying to read lock the same extent buffer 1967 * that was previously write locked at btrfs_truncate_inode_items(). 1968 * 1969 * So pass a NULL transaction handle to btrfs_find_all_roots() and 1970 * explicitly tell it to not acquire the commit_root_sem - if we are 1971 * holding a transaction handle we don't need its protection. 1972 */ 1973 ASSERT(trans != NULL); 1974 1975 if (trans->fs_info->qgroup_flags & BTRFS_QGROUP_RUNTIME_FLAG_NO_ACCOUNTING) 1976 return 0; 1977 1978 ctx.bytenr = qrecord->bytenr; 1979 ctx.fs_info = trans->fs_info; 1980 1981 ret = btrfs_find_all_roots(&ctx, true); 1982 if (ret < 0) { 1983 qgroup_mark_inconsistent(trans->fs_info); 1984 btrfs_warn(trans->fs_info, 1985 "error accounting new delayed refs extent (err code: %d), quota inconsistent", 1986 ret); 1987 return 0; 1988 } 1989 1990 /* 1991 * Here we don't need to get the lock of 1992 * trans->transaction->delayed_refs, since inserted qrecord won't 1993 * be deleted, only qrecord->node may be modified (new qrecord insert) 1994 * 1995 * So modifying qrecord->old_roots is safe here 1996 */ 1997 qrecord->old_roots = ctx.roots; 1998 return 0; 1999 } 2000 2001 /* 2002 * Inform qgroup to trace one dirty extent, specified by @bytenr and 2003 * @num_bytes. 2004 * So qgroup can account it at commit trans time. 2005 * 2006 * Better encapsulated version, with memory allocation and backref walk for 2007 * commit roots. 2008 * So this can sleep. 2009 * 2010 * Return 0 if the operation is done. 2011 * Return <0 for error, like memory allocation failure or invalid parameter 2012 * (NULL trans) 2013 */ 2014 int btrfs_qgroup_trace_extent(struct btrfs_trans_handle *trans, u64 bytenr, 2015 u64 num_bytes) 2016 { 2017 struct btrfs_fs_info *fs_info = trans->fs_info; 2018 struct btrfs_qgroup_extent_record *record; 2019 struct btrfs_delayed_ref_root *delayed_refs; 2020 int ret; 2021 2022 if (!btrfs_qgroup_full_accounting(fs_info) || bytenr == 0 || num_bytes == 0) 2023 return 0; 2024 record = kzalloc(sizeof(*record), GFP_NOFS); 2025 if (!record) 2026 return -ENOMEM; 2027 2028 delayed_refs = &trans->transaction->delayed_refs; 2029 record->bytenr = bytenr; 2030 record->num_bytes = num_bytes; 2031 record->old_roots = NULL; 2032 2033 spin_lock(&delayed_refs->lock); 2034 ret = btrfs_qgroup_trace_extent_nolock(fs_info, delayed_refs, record); 2035 spin_unlock(&delayed_refs->lock); 2036 if (ret > 0) { 2037 kfree(record); 2038 return 0; 2039 } 2040 return btrfs_qgroup_trace_extent_post(trans, record); 2041 } 2042 2043 /* 2044 * Inform qgroup to trace all leaf items of data 2045 * 2046 * Return 0 for success 2047 * Return <0 for error(ENOMEM) 2048 */ 2049 int btrfs_qgroup_trace_leaf_items(struct btrfs_trans_handle *trans, 2050 struct extent_buffer *eb) 2051 { 2052 struct btrfs_fs_info *fs_info = trans->fs_info; 2053 int nr = btrfs_header_nritems(eb); 2054 int i, extent_type, ret; 2055 struct btrfs_key key; 2056 struct btrfs_file_extent_item *fi; 2057 u64 bytenr, num_bytes; 2058 2059 /* We can be called directly from walk_up_proc() */ 2060 if (!btrfs_qgroup_full_accounting(fs_info)) 2061 return 0; 2062 2063 for (i = 0; i < nr; i++) { 2064 btrfs_item_key_to_cpu(eb, &key, i); 2065 2066 if (key.type != BTRFS_EXTENT_DATA_KEY) 2067 continue; 2068 2069 fi = btrfs_item_ptr(eb, i, struct btrfs_file_extent_item); 2070 /* filter out non qgroup-accountable extents */ 2071 extent_type = btrfs_file_extent_type(eb, fi); 2072 2073 if (extent_type == BTRFS_FILE_EXTENT_INLINE) 2074 continue; 2075 2076 bytenr = btrfs_file_extent_disk_bytenr(eb, fi); 2077 if (!bytenr) 2078 continue; 2079 2080 num_bytes = btrfs_file_extent_disk_num_bytes(eb, fi); 2081 2082 ret = btrfs_qgroup_trace_extent(trans, bytenr, num_bytes); 2083 if (ret) 2084 return ret; 2085 } 2086 cond_resched(); 2087 return 0; 2088 } 2089 2090 /* 2091 * Walk up the tree from the bottom, freeing leaves and any interior 2092 * nodes which have had all slots visited. If a node (leaf or 2093 * interior) is freed, the node above it will have it's slot 2094 * incremented. The root node will never be freed. 2095 * 2096 * At the end of this function, we should have a path which has all 2097 * slots incremented to the next position for a search. If we need to 2098 * read a new node it will be NULL and the node above it will have the 2099 * correct slot selected for a later read. 2100 * 2101 * If we increment the root nodes slot counter past the number of 2102 * elements, 1 is returned to signal completion of the search. 2103 */ 2104 static int adjust_slots_upwards(struct btrfs_path *path, int root_level) 2105 { 2106 int level = 0; 2107 int nr, slot; 2108 struct extent_buffer *eb; 2109 2110 if (root_level == 0) 2111 return 1; 2112 2113 while (level <= root_level) { 2114 eb = path->nodes[level]; 2115 nr = btrfs_header_nritems(eb); 2116 path->slots[level]++; 2117 slot = path->slots[level]; 2118 if (slot >= nr || level == 0) { 2119 /* 2120 * Don't free the root - we will detect this 2121 * condition after our loop and return a 2122 * positive value for caller to stop walking the tree. 2123 */ 2124 if (level != root_level) { 2125 btrfs_tree_unlock_rw(eb, path->locks[level]); 2126 path->locks[level] = 0; 2127 2128 free_extent_buffer(eb); 2129 path->nodes[level] = NULL; 2130 path->slots[level] = 0; 2131 } 2132 } else { 2133 /* 2134 * We have a valid slot to walk back down 2135 * from. Stop here so caller can process these 2136 * new nodes. 2137 */ 2138 break; 2139 } 2140 2141 level++; 2142 } 2143 2144 eb = path->nodes[root_level]; 2145 if (path->slots[root_level] >= btrfs_header_nritems(eb)) 2146 return 1; 2147 2148 return 0; 2149 } 2150 2151 /* 2152 * Helper function to trace a subtree tree block swap. 2153 * 2154 * The swap will happen in highest tree block, but there may be a lot of 2155 * tree blocks involved. 2156 * 2157 * For example: 2158 * OO = Old tree blocks 2159 * NN = New tree blocks allocated during balance 2160 * 2161 * File tree (257) Reloc tree for 257 2162 * L2 OO NN 2163 * / \ / \ 2164 * L1 OO OO (a) OO NN (a) 2165 * / \ / \ / \ / \ 2166 * L0 OO OO OO OO OO OO NN NN 2167 * (b) (c) (b) (c) 2168 * 2169 * When calling qgroup_trace_extent_swap(), we will pass: 2170 * @src_eb = OO(a) 2171 * @dst_path = [ nodes[1] = NN(a), nodes[0] = NN(c) ] 2172 * @dst_level = 0 2173 * @root_level = 1 2174 * 2175 * In that case, qgroup_trace_extent_swap() will search from OO(a) to 2176 * reach OO(c), then mark both OO(c) and NN(c) as qgroup dirty. 2177 * 2178 * The main work of qgroup_trace_extent_swap() can be split into 3 parts: 2179 * 2180 * 1) Tree search from @src_eb 2181 * It should acts as a simplified btrfs_search_slot(). 2182 * The key for search can be extracted from @dst_path->nodes[dst_level] 2183 * (first key). 2184 * 2185 * 2) Mark the final tree blocks in @src_path and @dst_path qgroup dirty 2186 * NOTE: In above case, OO(a) and NN(a) won't be marked qgroup dirty. 2187 * They should be marked during previous (@dst_level = 1) iteration. 2188 * 2189 * 3) Mark file extents in leaves dirty 2190 * We don't have good way to pick out new file extents only. 2191 * So we still follow the old method by scanning all file extents in 2192 * the leave. 2193 * 2194 * This function can free us from keeping two paths, thus later we only need 2195 * to care about how to iterate all new tree blocks in reloc tree. 2196 */ 2197 static int qgroup_trace_extent_swap(struct btrfs_trans_handle* trans, 2198 struct extent_buffer *src_eb, 2199 struct btrfs_path *dst_path, 2200 int dst_level, int root_level, 2201 bool trace_leaf) 2202 { 2203 struct btrfs_key key; 2204 struct btrfs_path *src_path; 2205 struct btrfs_fs_info *fs_info = trans->fs_info; 2206 u32 nodesize = fs_info->nodesize; 2207 int cur_level = root_level; 2208 int ret; 2209 2210 BUG_ON(dst_level > root_level); 2211 /* Level mismatch */ 2212 if (btrfs_header_level(src_eb) != root_level) 2213 return -EINVAL; 2214 2215 src_path = btrfs_alloc_path(); 2216 if (!src_path) { 2217 ret = -ENOMEM; 2218 goto out; 2219 } 2220 2221 if (dst_level) 2222 btrfs_node_key_to_cpu(dst_path->nodes[dst_level], &key, 0); 2223 else 2224 btrfs_item_key_to_cpu(dst_path->nodes[dst_level], &key, 0); 2225 2226 /* For src_path */ 2227 atomic_inc(&src_eb->refs); 2228 src_path->nodes[root_level] = src_eb; 2229 src_path->slots[root_level] = dst_path->slots[root_level]; 2230 src_path->locks[root_level] = 0; 2231 2232 /* A simplified version of btrfs_search_slot() */ 2233 while (cur_level >= dst_level) { 2234 struct btrfs_key src_key; 2235 struct btrfs_key dst_key; 2236 2237 if (src_path->nodes[cur_level] == NULL) { 2238 struct extent_buffer *eb; 2239 int parent_slot; 2240 2241 eb = src_path->nodes[cur_level + 1]; 2242 parent_slot = src_path->slots[cur_level + 1]; 2243 2244 eb = btrfs_read_node_slot(eb, parent_slot); 2245 if (IS_ERR(eb)) { 2246 ret = PTR_ERR(eb); 2247 goto out; 2248 } 2249 2250 src_path->nodes[cur_level] = eb; 2251 2252 btrfs_tree_read_lock(eb); 2253 src_path->locks[cur_level] = BTRFS_READ_LOCK; 2254 } 2255 2256 src_path->slots[cur_level] = dst_path->slots[cur_level]; 2257 if (cur_level) { 2258 btrfs_node_key_to_cpu(dst_path->nodes[cur_level], 2259 &dst_key, dst_path->slots[cur_level]); 2260 btrfs_node_key_to_cpu(src_path->nodes[cur_level], 2261 &src_key, src_path->slots[cur_level]); 2262 } else { 2263 btrfs_item_key_to_cpu(dst_path->nodes[cur_level], 2264 &dst_key, dst_path->slots[cur_level]); 2265 btrfs_item_key_to_cpu(src_path->nodes[cur_level], 2266 &src_key, src_path->slots[cur_level]); 2267 } 2268 /* Content mismatch, something went wrong */ 2269 if (btrfs_comp_cpu_keys(&dst_key, &src_key)) { 2270 ret = -ENOENT; 2271 goto out; 2272 } 2273 cur_level--; 2274 } 2275 2276 /* 2277 * Now both @dst_path and @src_path have been populated, record the tree 2278 * blocks for qgroup accounting. 2279 */ 2280 ret = btrfs_qgroup_trace_extent(trans, src_path->nodes[dst_level]->start, 2281 nodesize); 2282 if (ret < 0) 2283 goto out; 2284 ret = btrfs_qgroup_trace_extent(trans, dst_path->nodes[dst_level]->start, 2285 nodesize); 2286 if (ret < 0) 2287 goto out; 2288 2289 /* Record leaf file extents */ 2290 if (dst_level == 0 && trace_leaf) { 2291 ret = btrfs_qgroup_trace_leaf_items(trans, src_path->nodes[0]); 2292 if (ret < 0) 2293 goto out; 2294 ret = btrfs_qgroup_trace_leaf_items(trans, dst_path->nodes[0]); 2295 } 2296 out: 2297 btrfs_free_path(src_path); 2298 return ret; 2299 } 2300 2301 /* 2302 * Helper function to do recursive generation-aware depth-first search, to 2303 * locate all new tree blocks in a subtree of reloc tree. 2304 * 2305 * E.g. (OO = Old tree blocks, NN = New tree blocks, whose gen == last_snapshot) 2306 * reloc tree 2307 * L2 NN (a) 2308 * / \ 2309 * L1 OO NN (b) 2310 * / \ / \ 2311 * L0 OO OO OO NN 2312 * (c) (d) 2313 * If we pass: 2314 * @dst_path = [ nodes[1] = NN(b), nodes[0] = NULL ], 2315 * @cur_level = 1 2316 * @root_level = 1 2317 * 2318 * We will iterate through tree blocks NN(b), NN(d) and info qgroup to trace 2319 * above tree blocks along with their counter parts in file tree. 2320 * While during search, old tree blocks OO(c) will be skipped as tree block swap 2321 * won't affect OO(c). 2322 */ 2323 static int qgroup_trace_new_subtree_blocks(struct btrfs_trans_handle* trans, 2324 struct extent_buffer *src_eb, 2325 struct btrfs_path *dst_path, 2326 int cur_level, int root_level, 2327 u64 last_snapshot, bool trace_leaf) 2328 { 2329 struct btrfs_fs_info *fs_info = trans->fs_info; 2330 struct extent_buffer *eb; 2331 bool need_cleanup = false; 2332 int ret = 0; 2333 int i; 2334 2335 /* Level sanity check */ 2336 if (cur_level < 0 || cur_level >= BTRFS_MAX_LEVEL - 1 || 2337 root_level < 0 || root_level >= BTRFS_MAX_LEVEL - 1 || 2338 root_level < cur_level) { 2339 btrfs_err_rl(fs_info, 2340 "%s: bad levels, cur_level=%d root_level=%d", 2341 __func__, cur_level, root_level); 2342 return -EUCLEAN; 2343 } 2344 2345 /* Read the tree block if needed */ 2346 if (dst_path->nodes[cur_level] == NULL) { 2347 int parent_slot; 2348 u64 child_gen; 2349 2350 /* 2351 * dst_path->nodes[root_level] must be initialized before 2352 * calling this function. 2353 */ 2354 if (cur_level == root_level) { 2355 btrfs_err_rl(fs_info, 2356 "%s: dst_path->nodes[%d] not initialized, root_level=%d cur_level=%d", 2357 __func__, root_level, root_level, cur_level); 2358 return -EUCLEAN; 2359 } 2360 2361 /* 2362 * We need to get child blockptr/gen from parent before we can 2363 * read it. 2364 */ 2365 eb = dst_path->nodes[cur_level + 1]; 2366 parent_slot = dst_path->slots[cur_level + 1]; 2367 child_gen = btrfs_node_ptr_generation(eb, parent_slot); 2368 2369 /* This node is old, no need to trace */ 2370 if (child_gen < last_snapshot) 2371 goto out; 2372 2373 eb = btrfs_read_node_slot(eb, parent_slot); 2374 if (IS_ERR(eb)) { 2375 ret = PTR_ERR(eb); 2376 goto out; 2377 } 2378 2379 dst_path->nodes[cur_level] = eb; 2380 dst_path->slots[cur_level] = 0; 2381 2382 btrfs_tree_read_lock(eb); 2383 dst_path->locks[cur_level] = BTRFS_READ_LOCK; 2384 need_cleanup = true; 2385 } 2386 2387 /* Now record this tree block and its counter part for qgroups */ 2388 ret = qgroup_trace_extent_swap(trans, src_eb, dst_path, cur_level, 2389 root_level, trace_leaf); 2390 if (ret < 0) 2391 goto cleanup; 2392 2393 eb = dst_path->nodes[cur_level]; 2394 2395 if (cur_level > 0) { 2396 /* Iterate all child tree blocks */ 2397 for (i = 0; i < btrfs_header_nritems(eb); i++) { 2398 /* Skip old tree blocks as they won't be swapped */ 2399 if (btrfs_node_ptr_generation(eb, i) < last_snapshot) 2400 continue; 2401 dst_path->slots[cur_level] = i; 2402 2403 /* Recursive call (at most 7 times) */ 2404 ret = qgroup_trace_new_subtree_blocks(trans, src_eb, 2405 dst_path, cur_level - 1, root_level, 2406 last_snapshot, trace_leaf); 2407 if (ret < 0) 2408 goto cleanup; 2409 } 2410 } 2411 2412 cleanup: 2413 if (need_cleanup) { 2414 /* Clean up */ 2415 btrfs_tree_unlock_rw(dst_path->nodes[cur_level], 2416 dst_path->locks[cur_level]); 2417 free_extent_buffer(dst_path->nodes[cur_level]); 2418 dst_path->nodes[cur_level] = NULL; 2419 dst_path->slots[cur_level] = 0; 2420 dst_path->locks[cur_level] = 0; 2421 } 2422 out: 2423 return ret; 2424 } 2425 2426 static int qgroup_trace_subtree_swap(struct btrfs_trans_handle *trans, 2427 struct extent_buffer *src_eb, 2428 struct extent_buffer *dst_eb, 2429 u64 last_snapshot, bool trace_leaf) 2430 { 2431 struct btrfs_fs_info *fs_info = trans->fs_info; 2432 struct btrfs_path *dst_path = NULL; 2433 int level; 2434 int ret; 2435 2436 if (!btrfs_qgroup_full_accounting(fs_info)) 2437 return 0; 2438 2439 /* Wrong parameter order */ 2440 if (btrfs_header_generation(src_eb) > btrfs_header_generation(dst_eb)) { 2441 btrfs_err_rl(fs_info, 2442 "%s: bad parameter order, src_gen=%llu dst_gen=%llu", __func__, 2443 btrfs_header_generation(src_eb), 2444 btrfs_header_generation(dst_eb)); 2445 return -EUCLEAN; 2446 } 2447 2448 if (!extent_buffer_uptodate(src_eb) || !extent_buffer_uptodate(dst_eb)) { 2449 ret = -EIO; 2450 goto out; 2451 } 2452 2453 level = btrfs_header_level(dst_eb); 2454 dst_path = btrfs_alloc_path(); 2455 if (!dst_path) { 2456 ret = -ENOMEM; 2457 goto out; 2458 } 2459 /* For dst_path */ 2460 atomic_inc(&dst_eb->refs); 2461 dst_path->nodes[level] = dst_eb; 2462 dst_path->slots[level] = 0; 2463 dst_path->locks[level] = 0; 2464 2465 /* Do the generation aware breadth-first search */ 2466 ret = qgroup_trace_new_subtree_blocks(trans, src_eb, dst_path, level, 2467 level, last_snapshot, trace_leaf); 2468 if (ret < 0) 2469 goto out; 2470 ret = 0; 2471 2472 out: 2473 btrfs_free_path(dst_path); 2474 if (ret < 0) 2475 qgroup_mark_inconsistent(fs_info); 2476 return ret; 2477 } 2478 2479 /* 2480 * Inform qgroup to trace a whole subtree, including all its child tree 2481 * blocks and data. 2482 * The root tree block is specified by @root_eb. 2483 * 2484 * Normally used by relocation(tree block swap) and subvolume deletion. 2485 * 2486 * Return 0 for success 2487 * Return <0 for error(ENOMEM or tree search error) 2488 */ 2489 int btrfs_qgroup_trace_subtree(struct btrfs_trans_handle *trans, 2490 struct extent_buffer *root_eb, 2491 u64 root_gen, int root_level) 2492 { 2493 struct btrfs_fs_info *fs_info = trans->fs_info; 2494 int ret = 0; 2495 int level; 2496 u8 drop_subptree_thres; 2497 struct extent_buffer *eb = root_eb; 2498 struct btrfs_path *path = NULL; 2499 2500 ASSERT(0 <= root_level && root_level < BTRFS_MAX_LEVEL); 2501 ASSERT(root_eb != NULL); 2502 2503 if (!btrfs_qgroup_full_accounting(fs_info)) 2504 return 0; 2505 2506 spin_lock(&fs_info->qgroup_lock); 2507 drop_subptree_thres = fs_info->qgroup_drop_subtree_thres; 2508 spin_unlock(&fs_info->qgroup_lock); 2509 2510 /* 2511 * This function only gets called for snapshot drop, if we hit a high 2512 * node here, it means we are going to change ownership for quite a lot 2513 * of extents, which will greatly slow down btrfs_commit_transaction(). 2514 * 2515 * So here if we find a high tree here, we just skip the accounting and 2516 * mark qgroup inconsistent. 2517 */ 2518 if (root_level >= drop_subptree_thres) { 2519 qgroup_mark_inconsistent(fs_info); 2520 return 0; 2521 } 2522 2523 if (!extent_buffer_uptodate(root_eb)) { 2524 struct btrfs_tree_parent_check check = { 2525 .has_first_key = false, 2526 .transid = root_gen, 2527 .level = root_level 2528 }; 2529 2530 ret = btrfs_read_extent_buffer(root_eb, &check); 2531 if (ret) 2532 goto out; 2533 } 2534 2535 if (root_level == 0) { 2536 ret = btrfs_qgroup_trace_leaf_items(trans, root_eb); 2537 goto out; 2538 } 2539 2540 path = btrfs_alloc_path(); 2541 if (!path) 2542 return -ENOMEM; 2543 2544 /* 2545 * Walk down the tree. Missing extent blocks are filled in as 2546 * we go. Metadata is accounted every time we read a new 2547 * extent block. 2548 * 2549 * When we reach a leaf, we account for file extent items in it, 2550 * walk back up the tree (adjusting slot pointers as we go) 2551 * and restart the search process. 2552 */ 2553 atomic_inc(&root_eb->refs); /* For path */ 2554 path->nodes[root_level] = root_eb; 2555 path->slots[root_level] = 0; 2556 path->locks[root_level] = 0; /* so release_path doesn't try to unlock */ 2557 walk_down: 2558 level = root_level; 2559 while (level >= 0) { 2560 if (path->nodes[level] == NULL) { 2561 int parent_slot; 2562 u64 child_bytenr; 2563 2564 /* 2565 * We need to get child blockptr from parent before we 2566 * can read it. 2567 */ 2568 eb = path->nodes[level + 1]; 2569 parent_slot = path->slots[level + 1]; 2570 child_bytenr = btrfs_node_blockptr(eb, parent_slot); 2571 2572 eb = btrfs_read_node_slot(eb, parent_slot); 2573 if (IS_ERR(eb)) { 2574 ret = PTR_ERR(eb); 2575 goto out; 2576 } 2577 2578 path->nodes[level] = eb; 2579 path->slots[level] = 0; 2580 2581 btrfs_tree_read_lock(eb); 2582 path->locks[level] = BTRFS_READ_LOCK; 2583 2584 ret = btrfs_qgroup_trace_extent(trans, child_bytenr, 2585 fs_info->nodesize); 2586 if (ret) 2587 goto out; 2588 } 2589 2590 if (level == 0) { 2591 ret = btrfs_qgroup_trace_leaf_items(trans, 2592 path->nodes[level]); 2593 if (ret) 2594 goto out; 2595 2596 /* Nonzero return here means we completed our search */ 2597 ret = adjust_slots_upwards(path, root_level); 2598 if (ret) 2599 break; 2600 2601 /* Restart search with new slots */ 2602 goto walk_down; 2603 } 2604 2605 level--; 2606 } 2607 2608 ret = 0; 2609 out: 2610 btrfs_free_path(path); 2611 2612 return ret; 2613 } 2614 2615 static void qgroup_iterator_nested_add(struct list_head *head, struct btrfs_qgroup *qgroup) 2616 { 2617 if (!list_empty(&qgroup->nested_iterator)) 2618 return; 2619 2620 list_add_tail(&qgroup->nested_iterator, head); 2621 } 2622 2623 static void qgroup_iterator_nested_clean(struct list_head *head) 2624 { 2625 while (!list_empty(head)) { 2626 struct btrfs_qgroup *qgroup; 2627 2628 qgroup = list_first_entry(head, struct btrfs_qgroup, nested_iterator); 2629 list_del_init(&qgroup->nested_iterator); 2630 } 2631 } 2632 2633 #define UPDATE_NEW 0 2634 #define UPDATE_OLD 1 2635 /* 2636 * Walk all of the roots that points to the bytenr and adjust their refcnts. 2637 */ 2638 static void qgroup_update_refcnt(struct btrfs_fs_info *fs_info, 2639 struct ulist *roots, struct list_head *qgroups, 2640 u64 seq, int update_old) 2641 { 2642 struct ulist_node *unode; 2643 struct ulist_iterator uiter; 2644 struct btrfs_qgroup *qg; 2645 2646 if (!roots) 2647 return; 2648 ULIST_ITER_INIT(&uiter); 2649 while ((unode = ulist_next(roots, &uiter))) { 2650 LIST_HEAD(tmp); 2651 2652 qg = find_qgroup_rb(fs_info, unode->val); 2653 if (!qg) 2654 continue; 2655 2656 qgroup_iterator_nested_add(qgroups, qg); 2657 qgroup_iterator_add(&tmp, qg); 2658 list_for_each_entry(qg, &tmp, iterator) { 2659 struct btrfs_qgroup_list *glist; 2660 2661 if (update_old) 2662 btrfs_qgroup_update_old_refcnt(qg, seq, 1); 2663 else 2664 btrfs_qgroup_update_new_refcnt(qg, seq, 1); 2665 2666 list_for_each_entry(glist, &qg->groups, next_group) { 2667 qgroup_iterator_nested_add(qgroups, glist->group); 2668 qgroup_iterator_add(&tmp, glist->group); 2669 } 2670 } 2671 qgroup_iterator_clean(&tmp); 2672 } 2673 } 2674 2675 /* 2676 * Update qgroup rfer/excl counters. 2677 * Rfer update is easy, codes can explain themselves. 2678 * 2679 * Excl update is tricky, the update is split into 2 parts. 2680 * Part 1: Possible exclusive <-> sharing detect: 2681 * | A | !A | 2682 * ------------------------------------- 2683 * B | * | - | 2684 * ------------------------------------- 2685 * !B | + | ** | 2686 * ------------------------------------- 2687 * 2688 * Conditions: 2689 * A: cur_old_roots < nr_old_roots (not exclusive before) 2690 * !A: cur_old_roots == nr_old_roots (possible exclusive before) 2691 * B: cur_new_roots < nr_new_roots (not exclusive now) 2692 * !B: cur_new_roots == nr_new_roots (possible exclusive now) 2693 * 2694 * Results: 2695 * +: Possible sharing -> exclusive -: Possible exclusive -> sharing 2696 * *: Definitely not changed. **: Possible unchanged. 2697 * 2698 * For !A and !B condition, the exception is cur_old/new_roots == 0 case. 2699 * 2700 * To make the logic clear, we first use condition A and B to split 2701 * combination into 4 results. 2702 * 2703 * Then, for result "+" and "-", check old/new_roots == 0 case, as in them 2704 * only on variant maybe 0. 2705 * 2706 * Lastly, check result **, since there are 2 variants maybe 0, split them 2707 * again(2x2). 2708 * But this time we don't need to consider other things, the codes and logic 2709 * is easy to understand now. 2710 */ 2711 static void qgroup_update_counters(struct btrfs_fs_info *fs_info, 2712 struct list_head *qgroups, u64 nr_old_roots, 2713 u64 nr_new_roots, u64 num_bytes, u64 seq) 2714 { 2715 struct btrfs_qgroup *qg; 2716 2717 list_for_each_entry(qg, qgroups, nested_iterator) { 2718 u64 cur_new_count, cur_old_count; 2719 bool dirty = false; 2720 2721 cur_old_count = btrfs_qgroup_get_old_refcnt(qg, seq); 2722 cur_new_count = btrfs_qgroup_get_new_refcnt(qg, seq); 2723 2724 trace_qgroup_update_counters(fs_info, qg, cur_old_count, 2725 cur_new_count); 2726 2727 /* Rfer update part */ 2728 if (cur_old_count == 0 && cur_new_count > 0) { 2729 qg->rfer += num_bytes; 2730 qg->rfer_cmpr += num_bytes; 2731 dirty = true; 2732 } 2733 if (cur_old_count > 0 && cur_new_count == 0) { 2734 qg->rfer -= num_bytes; 2735 qg->rfer_cmpr -= num_bytes; 2736 dirty = true; 2737 } 2738 2739 /* Excl update part */ 2740 /* Exclusive/none -> shared case */ 2741 if (cur_old_count == nr_old_roots && 2742 cur_new_count < nr_new_roots) { 2743 /* Exclusive -> shared */ 2744 if (cur_old_count != 0) { 2745 qg->excl -= num_bytes; 2746 qg->excl_cmpr -= num_bytes; 2747 dirty = true; 2748 } 2749 } 2750 2751 /* Shared -> exclusive/none case */ 2752 if (cur_old_count < nr_old_roots && 2753 cur_new_count == nr_new_roots) { 2754 /* Shared->exclusive */ 2755 if (cur_new_count != 0) { 2756 qg->excl += num_bytes; 2757 qg->excl_cmpr += num_bytes; 2758 dirty = true; 2759 } 2760 } 2761 2762 /* Exclusive/none -> exclusive/none case */ 2763 if (cur_old_count == nr_old_roots && 2764 cur_new_count == nr_new_roots) { 2765 if (cur_old_count == 0) { 2766 /* None -> exclusive/none */ 2767 2768 if (cur_new_count != 0) { 2769 /* None -> exclusive */ 2770 qg->excl += num_bytes; 2771 qg->excl_cmpr += num_bytes; 2772 dirty = true; 2773 } 2774 /* None -> none, nothing changed */ 2775 } else { 2776 /* Exclusive -> exclusive/none */ 2777 2778 if (cur_new_count == 0) { 2779 /* Exclusive -> none */ 2780 qg->excl -= num_bytes; 2781 qg->excl_cmpr -= num_bytes; 2782 dirty = true; 2783 } 2784 /* Exclusive -> exclusive, nothing changed */ 2785 } 2786 } 2787 2788 if (dirty) 2789 qgroup_dirty(fs_info, qg); 2790 } 2791 } 2792 2793 /* 2794 * Check if the @roots potentially is a list of fs tree roots 2795 * 2796 * Return 0 for definitely not a fs/subvol tree roots ulist 2797 * Return 1 for possible fs/subvol tree roots in the list (considering an empty 2798 * one as well) 2799 */ 2800 static int maybe_fs_roots(struct ulist *roots) 2801 { 2802 struct ulist_node *unode; 2803 struct ulist_iterator uiter; 2804 2805 /* Empty one, still possible for fs roots */ 2806 if (!roots || roots->nnodes == 0) 2807 return 1; 2808 2809 ULIST_ITER_INIT(&uiter); 2810 unode = ulist_next(roots, &uiter); 2811 if (!unode) 2812 return 1; 2813 2814 /* 2815 * If it contains fs tree roots, then it must belong to fs/subvol 2816 * trees. 2817 * If it contains a non-fs tree, it won't be shared with fs/subvol trees. 2818 */ 2819 return is_fstree(unode->val); 2820 } 2821 2822 int btrfs_qgroup_account_extent(struct btrfs_trans_handle *trans, u64 bytenr, 2823 u64 num_bytes, struct ulist *old_roots, 2824 struct ulist *new_roots) 2825 { 2826 struct btrfs_fs_info *fs_info = trans->fs_info; 2827 LIST_HEAD(qgroups); 2828 u64 seq; 2829 u64 nr_new_roots = 0; 2830 u64 nr_old_roots = 0; 2831 int ret = 0; 2832 2833 /* 2834 * If quotas get disabled meanwhile, the resources need to be freed and 2835 * we can't just exit here. 2836 */ 2837 if (!btrfs_qgroup_full_accounting(fs_info) || 2838 fs_info->qgroup_flags & BTRFS_QGROUP_RUNTIME_FLAG_NO_ACCOUNTING) 2839 goto out_free; 2840 2841 if (new_roots) { 2842 if (!maybe_fs_roots(new_roots)) 2843 goto out_free; 2844 nr_new_roots = new_roots->nnodes; 2845 } 2846 if (old_roots) { 2847 if (!maybe_fs_roots(old_roots)) 2848 goto out_free; 2849 nr_old_roots = old_roots->nnodes; 2850 } 2851 2852 /* Quick exit, either not fs tree roots, or won't affect any qgroup */ 2853 if (nr_old_roots == 0 && nr_new_roots == 0) 2854 goto out_free; 2855 2856 trace_btrfs_qgroup_account_extent(fs_info, trans->transid, bytenr, 2857 num_bytes, nr_old_roots, nr_new_roots); 2858 2859 mutex_lock(&fs_info->qgroup_rescan_lock); 2860 if (fs_info->qgroup_flags & BTRFS_QGROUP_STATUS_FLAG_RESCAN) { 2861 if (fs_info->qgroup_rescan_progress.objectid <= bytenr) { 2862 mutex_unlock(&fs_info->qgroup_rescan_lock); 2863 ret = 0; 2864 goto out_free; 2865 } 2866 } 2867 mutex_unlock(&fs_info->qgroup_rescan_lock); 2868 2869 spin_lock(&fs_info->qgroup_lock); 2870 seq = fs_info->qgroup_seq; 2871 2872 /* Update old refcnts using old_roots */ 2873 qgroup_update_refcnt(fs_info, old_roots, &qgroups, seq, UPDATE_OLD); 2874 2875 /* Update new refcnts using new_roots */ 2876 qgroup_update_refcnt(fs_info, new_roots, &qgroups, seq, UPDATE_NEW); 2877 2878 qgroup_update_counters(fs_info, &qgroups, nr_old_roots, nr_new_roots, 2879 num_bytes, seq); 2880 2881 /* 2882 * We're done using the iterator, release all its qgroups while holding 2883 * fs_info->qgroup_lock so that we don't race with btrfs_remove_qgroup() 2884 * and trigger use-after-free accesses to qgroups. 2885 */ 2886 qgroup_iterator_nested_clean(&qgroups); 2887 2888 /* 2889 * Bump qgroup_seq to avoid seq overlap 2890 */ 2891 fs_info->qgroup_seq += max(nr_old_roots, nr_new_roots) + 1; 2892 spin_unlock(&fs_info->qgroup_lock); 2893 out_free: 2894 ulist_free(old_roots); 2895 ulist_free(new_roots); 2896 return ret; 2897 } 2898 2899 int btrfs_qgroup_account_extents(struct btrfs_trans_handle *trans) 2900 { 2901 struct btrfs_fs_info *fs_info = trans->fs_info; 2902 struct btrfs_qgroup_extent_record *record; 2903 struct btrfs_delayed_ref_root *delayed_refs; 2904 struct ulist *new_roots = NULL; 2905 struct rb_node *node; 2906 u64 num_dirty_extents = 0; 2907 u64 qgroup_to_skip; 2908 int ret = 0; 2909 2910 if (btrfs_qgroup_mode(fs_info) == BTRFS_QGROUP_MODE_SIMPLE) 2911 return 0; 2912 2913 delayed_refs = &trans->transaction->delayed_refs; 2914 qgroup_to_skip = delayed_refs->qgroup_to_skip; 2915 while ((node = rb_first(&delayed_refs->dirty_extent_root))) { 2916 record = rb_entry(node, struct btrfs_qgroup_extent_record, 2917 node); 2918 2919 num_dirty_extents++; 2920 trace_btrfs_qgroup_account_extents(fs_info, record); 2921 2922 if (!ret && !(fs_info->qgroup_flags & 2923 BTRFS_QGROUP_RUNTIME_FLAG_NO_ACCOUNTING)) { 2924 struct btrfs_backref_walk_ctx ctx = { 0 }; 2925 2926 ctx.bytenr = record->bytenr; 2927 ctx.fs_info = fs_info; 2928 2929 /* 2930 * Old roots should be searched when inserting qgroup 2931 * extent record. 2932 * 2933 * But for INCONSISTENT (NO_ACCOUNTING) -> rescan case, 2934 * we may have some record inserted during 2935 * NO_ACCOUNTING (thus no old_roots populated), but 2936 * later we start rescan, which clears NO_ACCOUNTING, 2937 * leaving some inserted records without old_roots 2938 * populated. 2939 * 2940 * Those cases are rare and should not cause too much 2941 * time spent during commit_transaction(). 2942 */ 2943 if (!record->old_roots) { 2944 /* Search commit root to find old_roots */ 2945 ret = btrfs_find_all_roots(&ctx, false); 2946 if (ret < 0) 2947 goto cleanup; 2948 record->old_roots = ctx.roots; 2949 ctx.roots = NULL; 2950 } 2951 2952 /* 2953 * Use BTRFS_SEQ_LAST as time_seq to do special search, 2954 * which doesn't lock tree or delayed_refs and search 2955 * current root. It's safe inside commit_transaction(). 2956 */ 2957 ctx.trans = trans; 2958 ctx.time_seq = BTRFS_SEQ_LAST; 2959 ret = btrfs_find_all_roots(&ctx, false); 2960 if (ret < 0) 2961 goto cleanup; 2962 new_roots = ctx.roots; 2963 if (qgroup_to_skip) { 2964 ulist_del(new_roots, qgroup_to_skip, 0); 2965 ulist_del(record->old_roots, qgroup_to_skip, 2966 0); 2967 } 2968 ret = btrfs_qgroup_account_extent(trans, record->bytenr, 2969 record->num_bytes, 2970 record->old_roots, 2971 new_roots); 2972 record->old_roots = NULL; 2973 new_roots = NULL; 2974 } 2975 /* Free the reserved data space */ 2976 btrfs_qgroup_free_refroot(fs_info, 2977 record->data_rsv_refroot, 2978 record->data_rsv, 2979 BTRFS_QGROUP_RSV_DATA); 2980 cleanup: 2981 ulist_free(record->old_roots); 2982 ulist_free(new_roots); 2983 new_roots = NULL; 2984 rb_erase(node, &delayed_refs->dirty_extent_root); 2985 kfree(record); 2986 2987 } 2988 trace_qgroup_num_dirty_extents(fs_info, trans->transid, 2989 num_dirty_extents); 2990 return ret; 2991 } 2992 2993 /* 2994 * Writes all changed qgroups to disk. 2995 * Called by the transaction commit path and the qgroup assign ioctl. 2996 */ 2997 int btrfs_run_qgroups(struct btrfs_trans_handle *trans) 2998 { 2999 struct btrfs_fs_info *fs_info = trans->fs_info; 3000 int ret = 0; 3001 3002 /* 3003 * In case we are called from the qgroup assign ioctl, assert that we 3004 * are holding the qgroup_ioctl_lock, otherwise we can race with a quota 3005 * disable operation (ioctl) and access a freed quota root. 3006 */ 3007 if (trans->transaction->state != TRANS_STATE_COMMIT_DOING) 3008 lockdep_assert_held(&fs_info->qgroup_ioctl_lock); 3009 3010 if (!fs_info->quota_root) 3011 return ret; 3012 3013 spin_lock(&fs_info->qgroup_lock); 3014 while (!list_empty(&fs_info->dirty_qgroups)) { 3015 struct btrfs_qgroup *qgroup; 3016 qgroup = list_first_entry(&fs_info->dirty_qgroups, 3017 struct btrfs_qgroup, dirty); 3018 list_del_init(&qgroup->dirty); 3019 spin_unlock(&fs_info->qgroup_lock); 3020 ret = update_qgroup_info_item(trans, qgroup); 3021 if (ret) 3022 qgroup_mark_inconsistent(fs_info); 3023 ret = update_qgroup_limit_item(trans, qgroup); 3024 if (ret) 3025 qgroup_mark_inconsistent(fs_info); 3026 spin_lock(&fs_info->qgroup_lock); 3027 } 3028 if (btrfs_qgroup_enabled(fs_info)) 3029 fs_info->qgroup_flags |= BTRFS_QGROUP_STATUS_FLAG_ON; 3030 else 3031 fs_info->qgroup_flags &= ~BTRFS_QGROUP_STATUS_FLAG_ON; 3032 spin_unlock(&fs_info->qgroup_lock); 3033 3034 ret = update_qgroup_status_item(trans); 3035 if (ret) 3036 qgroup_mark_inconsistent(fs_info); 3037 3038 return ret; 3039 } 3040 3041 int btrfs_qgroup_check_inherit(struct btrfs_fs_info *fs_info, 3042 struct btrfs_qgroup_inherit *inherit, 3043 size_t size) 3044 { 3045 if (!btrfs_qgroup_enabled(fs_info)) 3046 return 0; 3047 if (inherit->flags & ~BTRFS_QGROUP_INHERIT_FLAGS_SUPP) 3048 return -EOPNOTSUPP; 3049 if (size < sizeof(*inherit) || size > PAGE_SIZE) 3050 return -EINVAL; 3051 3052 /* 3053 * In the past we allowed btrfs_qgroup_inherit to specify to copy 3054 * rfer/excl numbers directly from other qgroups. This behavior has 3055 * been disabled in userspace for a very long time, but here we should 3056 * also disable it in kernel, as this behavior is known to mark qgroup 3057 * inconsistent, and a rescan would wipe out the changes anyway. 3058 * 3059 * Reject any btrfs_qgroup_inherit with num_ref_copies or num_excl_copies. 3060 */ 3061 if (inherit->num_ref_copies > 0 || inherit->num_excl_copies > 0) 3062 return -EINVAL; 3063 3064 if (size != struct_size(inherit, qgroups, inherit->num_qgroups)) 3065 return -EINVAL; 3066 3067 /* 3068 * Now check all the remaining qgroups, they should all: 3069 * 3070 * - Exist 3071 * - Be higher level qgroups. 3072 */ 3073 for (int i = 0; i < inherit->num_qgroups; i++) { 3074 struct btrfs_qgroup *qgroup; 3075 u64 qgroupid = inherit->qgroups[i]; 3076 3077 if (btrfs_qgroup_level(qgroupid) == 0) 3078 return -EINVAL; 3079 3080 spin_lock(&fs_info->qgroup_lock); 3081 qgroup = find_qgroup_rb(fs_info, qgroupid); 3082 if (!qgroup) { 3083 spin_unlock(&fs_info->qgroup_lock); 3084 return -ENOENT; 3085 } 3086 spin_unlock(&fs_info->qgroup_lock); 3087 } 3088 return 0; 3089 } 3090 3091 static int qgroup_auto_inherit(struct btrfs_fs_info *fs_info, 3092 u64 inode_rootid, 3093 struct btrfs_qgroup_inherit **inherit) 3094 { 3095 int i = 0; 3096 u64 num_qgroups = 0; 3097 struct btrfs_qgroup *inode_qg; 3098 struct btrfs_qgroup_list *qg_list; 3099 struct btrfs_qgroup_inherit *res; 3100 size_t struct_sz; 3101 u64 *qgids; 3102 3103 if (*inherit) 3104 return -EEXIST; 3105 3106 inode_qg = find_qgroup_rb(fs_info, inode_rootid); 3107 if (!inode_qg) 3108 return -ENOENT; 3109 3110 num_qgroups = list_count_nodes(&inode_qg->groups); 3111 3112 if (!num_qgroups) 3113 return 0; 3114 3115 struct_sz = struct_size(res, qgroups, num_qgroups); 3116 if (struct_sz == SIZE_MAX) 3117 return -ERANGE; 3118 3119 res = kzalloc(struct_sz, GFP_NOFS); 3120 if (!res) 3121 return -ENOMEM; 3122 res->num_qgroups = num_qgroups; 3123 qgids = res->qgroups; 3124 3125 list_for_each_entry(qg_list, &inode_qg->groups, next_group) 3126 qgids[i++] = qg_list->group->qgroupid; 3127 3128 *inherit = res; 3129 return 0; 3130 } 3131 3132 /* 3133 * Check if we can skip rescan when inheriting qgroups. If @src has a single 3134 * @parent, and that @parent is owning all its bytes exclusively, we can skip 3135 * the full rescan, by just adding nodesize to the @parent's excl/rfer. 3136 * 3137 * Return <0 for fatal errors (like srcid/parentid has no qgroup). 3138 * Return 0 if a quick inherit is done. 3139 * Return >0 if a quick inherit is not possible, and a full rescan is needed. 3140 */ 3141 static int qgroup_snapshot_quick_inherit(struct btrfs_fs_info *fs_info, 3142 u64 srcid, u64 parentid) 3143 { 3144 struct btrfs_qgroup *src; 3145 struct btrfs_qgroup *parent; 3146 struct btrfs_qgroup_list *list; 3147 int nr_parents = 0; 3148 3149 src = find_qgroup_rb(fs_info, srcid); 3150 if (!src) 3151 return -ENOENT; 3152 parent = find_qgroup_rb(fs_info, parentid); 3153 if (!parent) 3154 return -ENOENT; 3155 3156 /* 3157 * Source has no parent qgroup, but our new qgroup would have one. 3158 * Qgroup numbers would become inconsistent. 3159 */ 3160 if (list_empty(&src->groups)) 3161 return 1; 3162 3163 list_for_each_entry(list, &src->groups, next_group) { 3164 /* The parent is not the same, quick update is not possible. */ 3165 if (list->group->qgroupid != parentid) 3166 return 1; 3167 nr_parents++; 3168 /* 3169 * More than one parent qgroup, we can't be sure about accounting 3170 * consistency. 3171 */ 3172 if (nr_parents > 1) 3173 return 1; 3174 } 3175 3176 /* 3177 * The parent is not exclusively owning all its bytes. We're not sure 3178 * if the source has any bytes not fully owned by the parent. 3179 */ 3180 if (parent->excl != parent->rfer) 3181 return 1; 3182 3183 parent->excl += fs_info->nodesize; 3184 parent->rfer += fs_info->nodesize; 3185 return 0; 3186 } 3187 3188 /* 3189 * Copy the accounting information between qgroups. This is necessary 3190 * when a snapshot or a subvolume is created. Throwing an error will 3191 * cause a transaction abort so we take extra care here to only error 3192 * when a readonly fs is a reasonable outcome. 3193 */ 3194 int btrfs_qgroup_inherit(struct btrfs_trans_handle *trans, u64 srcid, 3195 u64 objectid, u64 inode_rootid, 3196 struct btrfs_qgroup_inherit *inherit) 3197 { 3198 int ret = 0; 3199 int i; 3200 u64 *i_qgroups; 3201 bool committing = false; 3202 struct btrfs_fs_info *fs_info = trans->fs_info; 3203 struct btrfs_root *quota_root; 3204 struct btrfs_qgroup *srcgroup; 3205 struct btrfs_qgroup *dstgroup; 3206 struct btrfs_qgroup *prealloc; 3207 struct btrfs_qgroup_list **qlist_prealloc = NULL; 3208 bool free_inherit = false; 3209 bool need_rescan = false; 3210 u32 level_size = 0; 3211 u64 nums; 3212 3213 prealloc = kzalloc(sizeof(*prealloc), GFP_NOFS); 3214 if (!prealloc) 3215 return -ENOMEM; 3216 3217 /* 3218 * There are only two callers of this function. 3219 * 3220 * One in create_subvol() in the ioctl context, which needs to hold 3221 * the qgroup_ioctl_lock. 3222 * 3223 * The other one in create_pending_snapshot() where no other qgroup 3224 * code can modify the fs as they all need to either start a new trans 3225 * or hold a trans handler, thus we don't need to hold 3226 * qgroup_ioctl_lock. 3227 * This would avoid long and complex lock chain and make lockdep happy. 3228 */ 3229 spin_lock(&fs_info->trans_lock); 3230 if (trans->transaction->state == TRANS_STATE_COMMIT_DOING) 3231 committing = true; 3232 spin_unlock(&fs_info->trans_lock); 3233 3234 if (!committing) 3235 mutex_lock(&fs_info->qgroup_ioctl_lock); 3236 if (!btrfs_qgroup_enabled(fs_info)) 3237 goto out; 3238 3239 quota_root = fs_info->quota_root; 3240 if (!quota_root) { 3241 ret = -EINVAL; 3242 goto out; 3243 } 3244 3245 if (btrfs_qgroup_mode(fs_info) == BTRFS_QGROUP_MODE_SIMPLE && !inherit) { 3246 ret = qgroup_auto_inherit(fs_info, inode_rootid, &inherit); 3247 if (ret) 3248 goto out; 3249 free_inherit = true; 3250 } 3251 3252 if (inherit) { 3253 i_qgroups = (u64 *)(inherit + 1); 3254 nums = inherit->num_qgroups + 2 * inherit->num_ref_copies + 3255 2 * inherit->num_excl_copies; 3256 for (i = 0; i < nums; ++i) { 3257 srcgroup = find_qgroup_rb(fs_info, *i_qgroups); 3258 3259 /* 3260 * Zero out invalid groups so we can ignore 3261 * them later. 3262 */ 3263 if (!srcgroup || 3264 ((srcgroup->qgroupid >> 48) <= (objectid >> 48))) 3265 *i_qgroups = 0ULL; 3266 3267 ++i_qgroups; 3268 } 3269 } 3270 3271 /* 3272 * create a tracking group for the subvol itself 3273 */ 3274 ret = add_qgroup_item(trans, quota_root, objectid); 3275 if (ret) 3276 goto out; 3277 3278 /* 3279 * add qgroup to all inherited groups 3280 */ 3281 if (inherit) { 3282 i_qgroups = (u64 *)(inherit + 1); 3283 for (i = 0; i < inherit->num_qgroups; ++i, ++i_qgroups) { 3284 if (*i_qgroups == 0) 3285 continue; 3286 ret = add_qgroup_relation_item(trans, objectid, 3287 *i_qgroups); 3288 if (ret && ret != -EEXIST) 3289 goto out; 3290 ret = add_qgroup_relation_item(trans, *i_qgroups, 3291 objectid); 3292 if (ret && ret != -EEXIST) 3293 goto out; 3294 } 3295 ret = 0; 3296 3297 qlist_prealloc = kcalloc(inherit->num_qgroups, 3298 sizeof(struct btrfs_qgroup_list *), 3299 GFP_NOFS); 3300 if (!qlist_prealloc) { 3301 ret = -ENOMEM; 3302 goto out; 3303 } 3304 for (int i = 0; i < inherit->num_qgroups; i++) { 3305 qlist_prealloc[i] = kzalloc(sizeof(struct btrfs_qgroup_list), 3306 GFP_NOFS); 3307 if (!qlist_prealloc[i]) { 3308 ret = -ENOMEM; 3309 goto out; 3310 } 3311 } 3312 } 3313 3314 spin_lock(&fs_info->qgroup_lock); 3315 3316 dstgroup = add_qgroup_rb(fs_info, prealloc, objectid); 3317 prealloc = NULL; 3318 3319 if (inherit && inherit->flags & BTRFS_QGROUP_INHERIT_SET_LIMITS) { 3320 dstgroup->lim_flags = inherit->lim.flags; 3321 dstgroup->max_rfer = inherit->lim.max_rfer; 3322 dstgroup->max_excl = inherit->lim.max_excl; 3323 dstgroup->rsv_rfer = inherit->lim.rsv_rfer; 3324 dstgroup->rsv_excl = inherit->lim.rsv_excl; 3325 3326 qgroup_dirty(fs_info, dstgroup); 3327 } 3328 3329 if (srcid && btrfs_qgroup_mode(fs_info) == BTRFS_QGROUP_MODE_FULL) { 3330 srcgroup = find_qgroup_rb(fs_info, srcid); 3331 if (!srcgroup) 3332 goto unlock; 3333 3334 /* 3335 * We call inherit after we clone the root in order to make sure 3336 * our counts don't go crazy, so at this point the only 3337 * difference between the two roots should be the root node. 3338 */ 3339 level_size = fs_info->nodesize; 3340 dstgroup->rfer = srcgroup->rfer; 3341 dstgroup->rfer_cmpr = srcgroup->rfer_cmpr; 3342 dstgroup->excl = level_size; 3343 dstgroup->excl_cmpr = level_size; 3344 srcgroup->excl = level_size; 3345 srcgroup->excl_cmpr = level_size; 3346 3347 /* inherit the limit info */ 3348 dstgroup->lim_flags = srcgroup->lim_flags; 3349 dstgroup->max_rfer = srcgroup->max_rfer; 3350 dstgroup->max_excl = srcgroup->max_excl; 3351 dstgroup->rsv_rfer = srcgroup->rsv_rfer; 3352 dstgroup->rsv_excl = srcgroup->rsv_excl; 3353 3354 qgroup_dirty(fs_info, dstgroup); 3355 qgroup_dirty(fs_info, srcgroup); 3356 3357 /* 3358 * If the source qgroup has parent but the new one doesn't, 3359 * we need a full rescan. 3360 */ 3361 if (!inherit && !list_empty(&srcgroup->groups)) 3362 need_rescan = true; 3363 } 3364 3365 if (!inherit) 3366 goto unlock; 3367 3368 i_qgroups = (u64 *)(inherit + 1); 3369 for (i = 0; i < inherit->num_qgroups; ++i) { 3370 if (*i_qgroups) { 3371 ret = add_relation_rb(fs_info, qlist_prealloc[i], objectid, 3372 *i_qgroups); 3373 qlist_prealloc[i] = NULL; 3374 if (ret) 3375 goto unlock; 3376 } 3377 if (srcid) { 3378 /* Check if we can do a quick inherit. */ 3379 ret = qgroup_snapshot_quick_inherit(fs_info, srcid, *i_qgroups); 3380 if (ret < 0) 3381 goto unlock; 3382 if (ret > 0) 3383 need_rescan = true; 3384 ret = 0; 3385 } 3386 ++i_qgroups; 3387 } 3388 3389 for (i = 0; i < inherit->num_ref_copies; ++i, i_qgroups += 2) { 3390 struct btrfs_qgroup *src; 3391 struct btrfs_qgroup *dst; 3392 3393 if (!i_qgroups[0] || !i_qgroups[1]) 3394 continue; 3395 3396 src = find_qgroup_rb(fs_info, i_qgroups[0]); 3397 dst = find_qgroup_rb(fs_info, i_qgroups[1]); 3398 3399 if (!src || !dst) { 3400 ret = -EINVAL; 3401 goto unlock; 3402 } 3403 3404 dst->rfer = src->rfer - level_size; 3405 dst->rfer_cmpr = src->rfer_cmpr - level_size; 3406 3407 /* Manually tweaking numbers certainly needs a rescan */ 3408 need_rescan = true; 3409 } 3410 for (i = 0; i < inherit->num_excl_copies; ++i, i_qgroups += 2) { 3411 struct btrfs_qgroup *src; 3412 struct btrfs_qgroup *dst; 3413 3414 if (!i_qgroups[0] || !i_qgroups[1]) 3415 continue; 3416 3417 src = find_qgroup_rb(fs_info, i_qgroups[0]); 3418 dst = find_qgroup_rb(fs_info, i_qgroups[1]); 3419 3420 if (!src || !dst) { 3421 ret = -EINVAL; 3422 goto unlock; 3423 } 3424 3425 dst->excl = src->excl + level_size; 3426 dst->excl_cmpr = src->excl_cmpr + level_size; 3427 need_rescan = true; 3428 } 3429 3430 unlock: 3431 spin_unlock(&fs_info->qgroup_lock); 3432 if (!ret) 3433 ret = btrfs_sysfs_add_one_qgroup(fs_info, dstgroup); 3434 out: 3435 if (!committing) 3436 mutex_unlock(&fs_info->qgroup_ioctl_lock); 3437 if (need_rescan) 3438 qgroup_mark_inconsistent(fs_info); 3439 if (qlist_prealloc) { 3440 for (int i = 0; i < inherit->num_qgroups; i++) 3441 kfree(qlist_prealloc[i]); 3442 kfree(qlist_prealloc); 3443 } 3444 if (free_inherit) 3445 kfree(inherit); 3446 kfree(prealloc); 3447 return ret; 3448 } 3449 3450 static bool qgroup_check_limits(const struct btrfs_qgroup *qg, u64 num_bytes) 3451 { 3452 if ((qg->lim_flags & BTRFS_QGROUP_LIMIT_MAX_RFER) && 3453 qgroup_rsv_total(qg) + (s64)qg->rfer + num_bytes > qg->max_rfer) 3454 return false; 3455 3456 if ((qg->lim_flags & BTRFS_QGROUP_LIMIT_MAX_EXCL) && 3457 qgroup_rsv_total(qg) + (s64)qg->excl + num_bytes > qg->max_excl) 3458 return false; 3459 3460 return true; 3461 } 3462 3463 static int qgroup_reserve(struct btrfs_root *root, u64 num_bytes, bool enforce, 3464 enum btrfs_qgroup_rsv_type type) 3465 { 3466 struct btrfs_qgroup *qgroup; 3467 struct btrfs_fs_info *fs_info = root->fs_info; 3468 u64 ref_root = btrfs_root_id(root); 3469 int ret = 0; 3470 LIST_HEAD(qgroup_list); 3471 3472 if (!is_fstree(ref_root)) 3473 return 0; 3474 3475 if (num_bytes == 0) 3476 return 0; 3477 3478 if (test_bit(BTRFS_FS_QUOTA_OVERRIDE, &fs_info->flags) && 3479 capable(CAP_SYS_RESOURCE)) 3480 enforce = false; 3481 3482 spin_lock(&fs_info->qgroup_lock); 3483 if (!fs_info->quota_root) 3484 goto out; 3485 3486 qgroup = find_qgroup_rb(fs_info, ref_root); 3487 if (!qgroup) 3488 goto out; 3489 3490 qgroup_iterator_add(&qgroup_list, qgroup); 3491 list_for_each_entry(qgroup, &qgroup_list, iterator) { 3492 struct btrfs_qgroup_list *glist; 3493 3494 if (enforce && !qgroup_check_limits(qgroup, num_bytes)) { 3495 ret = -EDQUOT; 3496 goto out; 3497 } 3498 3499 list_for_each_entry(glist, &qgroup->groups, next_group) 3500 qgroup_iterator_add(&qgroup_list, glist->group); 3501 } 3502 3503 ret = 0; 3504 /* 3505 * no limits exceeded, now record the reservation into all qgroups 3506 */ 3507 list_for_each_entry(qgroup, &qgroup_list, iterator) 3508 qgroup_rsv_add(fs_info, qgroup, num_bytes, type); 3509 3510 out: 3511 qgroup_iterator_clean(&qgroup_list); 3512 spin_unlock(&fs_info->qgroup_lock); 3513 return ret; 3514 } 3515 3516 /* 3517 * Free @num_bytes of reserved space with @type for qgroup. (Normally level 0 3518 * qgroup). 3519 * 3520 * Will handle all higher level qgroup too. 3521 * 3522 * NOTE: If @num_bytes is (u64)-1, this means to free all bytes of this qgroup. 3523 * This special case is only used for META_PERTRANS type. 3524 */ 3525 void btrfs_qgroup_free_refroot(struct btrfs_fs_info *fs_info, 3526 u64 ref_root, u64 num_bytes, 3527 enum btrfs_qgroup_rsv_type type) 3528 { 3529 struct btrfs_qgroup *qgroup; 3530 LIST_HEAD(qgroup_list); 3531 3532 if (!is_fstree(ref_root)) 3533 return; 3534 3535 if (num_bytes == 0) 3536 return; 3537 3538 if (num_bytes == (u64)-1 && type != BTRFS_QGROUP_RSV_META_PERTRANS) { 3539 WARN(1, "%s: Invalid type to free", __func__); 3540 return; 3541 } 3542 spin_lock(&fs_info->qgroup_lock); 3543 3544 if (!fs_info->quota_root) 3545 goto out; 3546 3547 qgroup = find_qgroup_rb(fs_info, ref_root); 3548 if (!qgroup) 3549 goto out; 3550 3551 if (num_bytes == (u64)-1) 3552 /* 3553 * We're freeing all pertrans rsv, get reserved value from 3554 * level 0 qgroup as real num_bytes to free. 3555 */ 3556 num_bytes = qgroup->rsv.values[type]; 3557 3558 qgroup_iterator_add(&qgroup_list, qgroup); 3559 list_for_each_entry(qgroup, &qgroup_list, iterator) { 3560 struct btrfs_qgroup_list *glist; 3561 3562 qgroup_rsv_release(fs_info, qgroup, num_bytes, type); 3563 list_for_each_entry(glist, &qgroup->groups, next_group) { 3564 qgroup_iterator_add(&qgroup_list, glist->group); 3565 } 3566 } 3567 out: 3568 qgroup_iterator_clean(&qgroup_list); 3569 spin_unlock(&fs_info->qgroup_lock); 3570 } 3571 3572 /* 3573 * Check if the leaf is the last leaf. Which means all node pointers 3574 * are at their last position. 3575 */ 3576 static bool is_last_leaf(struct btrfs_path *path) 3577 { 3578 int i; 3579 3580 for (i = 1; i < BTRFS_MAX_LEVEL && path->nodes[i]; i++) { 3581 if (path->slots[i] != btrfs_header_nritems(path->nodes[i]) - 1) 3582 return false; 3583 } 3584 return true; 3585 } 3586 3587 /* 3588 * returns < 0 on error, 0 when more leafs are to be scanned. 3589 * returns 1 when done. 3590 */ 3591 static int qgroup_rescan_leaf(struct btrfs_trans_handle *trans, 3592 struct btrfs_path *path) 3593 { 3594 struct btrfs_fs_info *fs_info = trans->fs_info; 3595 struct btrfs_root *extent_root; 3596 struct btrfs_key found; 3597 struct extent_buffer *scratch_leaf = NULL; 3598 u64 num_bytes; 3599 bool done; 3600 int slot; 3601 int ret; 3602 3603 if (!btrfs_qgroup_full_accounting(fs_info)) 3604 return 1; 3605 3606 mutex_lock(&fs_info->qgroup_rescan_lock); 3607 extent_root = btrfs_extent_root(fs_info, 3608 fs_info->qgroup_rescan_progress.objectid); 3609 ret = btrfs_search_slot_for_read(extent_root, 3610 &fs_info->qgroup_rescan_progress, 3611 path, 1, 0); 3612 3613 btrfs_debug(fs_info, 3614 "current progress key (%llu %u %llu), search_slot ret %d", 3615 fs_info->qgroup_rescan_progress.objectid, 3616 fs_info->qgroup_rescan_progress.type, 3617 fs_info->qgroup_rescan_progress.offset, ret); 3618 3619 if (ret) { 3620 /* 3621 * The rescan is about to end, we will not be scanning any 3622 * further blocks. We cannot unset the RESCAN flag here, because 3623 * we want to commit the transaction if everything went well. 3624 * To make the live accounting work in this phase, we set our 3625 * scan progress pointer such that every real extent objectid 3626 * will be smaller. 3627 */ 3628 fs_info->qgroup_rescan_progress.objectid = (u64)-1; 3629 btrfs_release_path(path); 3630 mutex_unlock(&fs_info->qgroup_rescan_lock); 3631 return ret; 3632 } 3633 done = is_last_leaf(path); 3634 3635 btrfs_item_key_to_cpu(path->nodes[0], &found, 3636 btrfs_header_nritems(path->nodes[0]) - 1); 3637 fs_info->qgroup_rescan_progress.objectid = found.objectid + 1; 3638 3639 scratch_leaf = btrfs_clone_extent_buffer(path->nodes[0]); 3640 if (!scratch_leaf) { 3641 ret = -ENOMEM; 3642 mutex_unlock(&fs_info->qgroup_rescan_lock); 3643 goto out; 3644 } 3645 slot = path->slots[0]; 3646 btrfs_release_path(path); 3647 mutex_unlock(&fs_info->qgroup_rescan_lock); 3648 3649 for (; slot < btrfs_header_nritems(scratch_leaf); ++slot) { 3650 struct btrfs_backref_walk_ctx ctx = { 0 }; 3651 3652 btrfs_item_key_to_cpu(scratch_leaf, &found, slot); 3653 if (found.type != BTRFS_EXTENT_ITEM_KEY && 3654 found.type != BTRFS_METADATA_ITEM_KEY) 3655 continue; 3656 if (found.type == BTRFS_METADATA_ITEM_KEY) 3657 num_bytes = fs_info->nodesize; 3658 else 3659 num_bytes = found.offset; 3660 3661 ctx.bytenr = found.objectid; 3662 ctx.fs_info = fs_info; 3663 3664 ret = btrfs_find_all_roots(&ctx, false); 3665 if (ret < 0) 3666 goto out; 3667 /* For rescan, just pass old_roots as NULL */ 3668 ret = btrfs_qgroup_account_extent(trans, found.objectid, 3669 num_bytes, NULL, ctx.roots); 3670 if (ret < 0) 3671 goto out; 3672 } 3673 out: 3674 if (scratch_leaf) 3675 free_extent_buffer(scratch_leaf); 3676 3677 if (done && !ret) { 3678 ret = 1; 3679 fs_info->qgroup_rescan_progress.objectid = (u64)-1; 3680 } 3681 return ret; 3682 } 3683 3684 static bool rescan_should_stop(struct btrfs_fs_info *fs_info) 3685 { 3686 if (btrfs_fs_closing(fs_info)) 3687 return true; 3688 if (test_bit(BTRFS_FS_STATE_REMOUNTING, &fs_info->fs_state)) 3689 return true; 3690 if (!btrfs_qgroup_enabled(fs_info)) 3691 return true; 3692 if (fs_info->qgroup_flags & BTRFS_QGROUP_RUNTIME_FLAG_CANCEL_RESCAN) 3693 return true; 3694 return false; 3695 } 3696 3697 static void btrfs_qgroup_rescan_worker(struct btrfs_work *work) 3698 { 3699 struct btrfs_fs_info *fs_info = container_of(work, struct btrfs_fs_info, 3700 qgroup_rescan_work); 3701 struct btrfs_path *path; 3702 struct btrfs_trans_handle *trans = NULL; 3703 int ret = 0; 3704 bool stopped = false; 3705 bool did_leaf_rescans = false; 3706 3707 if (btrfs_qgroup_mode(fs_info) == BTRFS_QGROUP_MODE_SIMPLE) 3708 return; 3709 3710 path = btrfs_alloc_path(); 3711 if (!path) { 3712 ret = -ENOMEM; 3713 goto out; 3714 } 3715 /* 3716 * Rescan should only search for commit root, and any later difference 3717 * should be recorded by qgroup 3718 */ 3719 path->search_commit_root = 1; 3720 path->skip_locking = 1; 3721 3722 while (!ret && !(stopped = rescan_should_stop(fs_info))) { 3723 trans = btrfs_start_transaction(fs_info->fs_root, 0); 3724 if (IS_ERR(trans)) { 3725 ret = PTR_ERR(trans); 3726 break; 3727 } 3728 3729 ret = qgroup_rescan_leaf(trans, path); 3730 did_leaf_rescans = true; 3731 3732 if (ret > 0) 3733 btrfs_commit_transaction(trans); 3734 else 3735 btrfs_end_transaction(trans); 3736 } 3737 3738 out: 3739 btrfs_free_path(path); 3740 3741 mutex_lock(&fs_info->qgroup_rescan_lock); 3742 if (ret > 0 && 3743 fs_info->qgroup_flags & BTRFS_QGROUP_STATUS_FLAG_INCONSISTENT) { 3744 fs_info->qgroup_flags &= ~BTRFS_QGROUP_STATUS_FLAG_INCONSISTENT; 3745 } else if (ret < 0 || stopped) { 3746 fs_info->qgroup_flags |= BTRFS_QGROUP_STATUS_FLAG_INCONSISTENT; 3747 } 3748 mutex_unlock(&fs_info->qgroup_rescan_lock); 3749 3750 /* 3751 * Only update status, since the previous part has already updated the 3752 * qgroup info, and only if we did any actual work. This also prevents 3753 * race with a concurrent quota disable, which has already set 3754 * fs_info->quota_root to NULL and cleared BTRFS_FS_QUOTA_ENABLED at 3755 * btrfs_quota_disable(). 3756 */ 3757 if (did_leaf_rescans) { 3758 trans = btrfs_start_transaction(fs_info->quota_root, 1); 3759 if (IS_ERR(trans)) { 3760 ret = PTR_ERR(trans); 3761 trans = NULL; 3762 btrfs_err(fs_info, 3763 "fail to start transaction for status update: %d", 3764 ret); 3765 } 3766 } else { 3767 trans = NULL; 3768 } 3769 3770 mutex_lock(&fs_info->qgroup_rescan_lock); 3771 if (!stopped || 3772 fs_info->qgroup_flags & BTRFS_QGROUP_RUNTIME_FLAG_CANCEL_RESCAN) 3773 fs_info->qgroup_flags &= ~BTRFS_QGROUP_STATUS_FLAG_RESCAN; 3774 if (trans) { 3775 int ret2 = update_qgroup_status_item(trans); 3776 3777 if (ret2 < 0) { 3778 ret = ret2; 3779 btrfs_err(fs_info, "fail to update qgroup status: %d", ret); 3780 } 3781 } 3782 fs_info->qgroup_rescan_running = false; 3783 fs_info->qgroup_flags &= ~BTRFS_QGROUP_RUNTIME_FLAG_CANCEL_RESCAN; 3784 complete_all(&fs_info->qgroup_rescan_completion); 3785 mutex_unlock(&fs_info->qgroup_rescan_lock); 3786 3787 if (!trans) 3788 return; 3789 3790 btrfs_end_transaction(trans); 3791 3792 if (stopped) { 3793 btrfs_info(fs_info, "qgroup scan paused"); 3794 } else if (fs_info->qgroup_flags & BTRFS_QGROUP_RUNTIME_FLAG_CANCEL_RESCAN) { 3795 btrfs_info(fs_info, "qgroup scan cancelled"); 3796 } else if (ret >= 0) { 3797 btrfs_info(fs_info, "qgroup scan completed%s", 3798 ret > 0 ? " (inconsistency flag cleared)" : ""); 3799 } else { 3800 btrfs_err(fs_info, "qgroup scan failed with %d", ret); 3801 } 3802 } 3803 3804 /* 3805 * Checks that (a) no rescan is running and (b) quota is enabled. Allocates all 3806 * memory required for the rescan context. 3807 */ 3808 static int 3809 qgroup_rescan_init(struct btrfs_fs_info *fs_info, u64 progress_objectid, 3810 int init_flags) 3811 { 3812 int ret = 0; 3813 3814 if (btrfs_qgroup_mode(fs_info) == BTRFS_QGROUP_MODE_SIMPLE) { 3815 btrfs_warn(fs_info, "qgroup rescan init failed, running in simple mode"); 3816 return -EINVAL; 3817 } 3818 3819 if (!init_flags) { 3820 /* we're resuming qgroup rescan at mount time */ 3821 if (!(fs_info->qgroup_flags & 3822 BTRFS_QGROUP_STATUS_FLAG_RESCAN)) { 3823 btrfs_warn(fs_info, 3824 "qgroup rescan init failed, qgroup rescan is not queued"); 3825 ret = -EINVAL; 3826 } else if (!(fs_info->qgroup_flags & 3827 BTRFS_QGROUP_STATUS_FLAG_ON)) { 3828 btrfs_warn(fs_info, 3829 "qgroup rescan init failed, qgroup is not enabled"); 3830 ret = -EINVAL; 3831 } 3832 3833 if (ret) 3834 return ret; 3835 } 3836 3837 mutex_lock(&fs_info->qgroup_rescan_lock); 3838 3839 if (init_flags) { 3840 if (fs_info->qgroup_flags & BTRFS_QGROUP_STATUS_FLAG_RESCAN) { 3841 btrfs_warn(fs_info, 3842 "qgroup rescan is already in progress"); 3843 ret = -EINPROGRESS; 3844 } else if (!(fs_info->qgroup_flags & 3845 BTRFS_QGROUP_STATUS_FLAG_ON)) { 3846 btrfs_warn(fs_info, 3847 "qgroup rescan init failed, qgroup is not enabled"); 3848 ret = -EINVAL; 3849 } else if (btrfs_qgroup_mode(fs_info) == BTRFS_QGROUP_MODE_DISABLED) { 3850 /* Quota disable is in progress */ 3851 ret = -EBUSY; 3852 } 3853 3854 if (ret) { 3855 mutex_unlock(&fs_info->qgroup_rescan_lock); 3856 return ret; 3857 } 3858 fs_info->qgroup_flags |= BTRFS_QGROUP_STATUS_FLAG_RESCAN; 3859 } 3860 3861 memset(&fs_info->qgroup_rescan_progress, 0, 3862 sizeof(fs_info->qgroup_rescan_progress)); 3863 fs_info->qgroup_flags &= ~(BTRFS_QGROUP_RUNTIME_FLAG_CANCEL_RESCAN | 3864 BTRFS_QGROUP_RUNTIME_FLAG_NO_ACCOUNTING); 3865 fs_info->qgroup_rescan_progress.objectid = progress_objectid; 3866 init_completion(&fs_info->qgroup_rescan_completion); 3867 mutex_unlock(&fs_info->qgroup_rescan_lock); 3868 3869 btrfs_init_work(&fs_info->qgroup_rescan_work, 3870 btrfs_qgroup_rescan_worker, NULL); 3871 return 0; 3872 } 3873 3874 static void 3875 qgroup_rescan_zero_tracking(struct btrfs_fs_info *fs_info) 3876 { 3877 struct rb_node *n; 3878 struct btrfs_qgroup *qgroup; 3879 3880 spin_lock(&fs_info->qgroup_lock); 3881 /* clear all current qgroup tracking information */ 3882 for (n = rb_first(&fs_info->qgroup_tree); n; n = rb_next(n)) { 3883 qgroup = rb_entry(n, struct btrfs_qgroup, node); 3884 qgroup->rfer = 0; 3885 qgroup->rfer_cmpr = 0; 3886 qgroup->excl = 0; 3887 qgroup->excl_cmpr = 0; 3888 qgroup_dirty(fs_info, qgroup); 3889 } 3890 spin_unlock(&fs_info->qgroup_lock); 3891 } 3892 3893 int 3894 btrfs_qgroup_rescan(struct btrfs_fs_info *fs_info) 3895 { 3896 int ret = 0; 3897 struct btrfs_trans_handle *trans; 3898 3899 ret = qgroup_rescan_init(fs_info, 0, 1); 3900 if (ret) 3901 return ret; 3902 3903 /* 3904 * We have set the rescan_progress to 0, which means no more 3905 * delayed refs will be accounted by btrfs_qgroup_account_ref. 3906 * However, btrfs_qgroup_account_ref may be right after its call 3907 * to btrfs_find_all_roots, in which case it would still do the 3908 * accounting. 3909 * To solve this, we're committing the transaction, which will 3910 * ensure we run all delayed refs and only after that, we are 3911 * going to clear all tracking information for a clean start. 3912 */ 3913 3914 trans = btrfs_attach_transaction_barrier(fs_info->fs_root); 3915 if (IS_ERR(trans) && trans != ERR_PTR(-ENOENT)) { 3916 fs_info->qgroup_flags &= ~BTRFS_QGROUP_STATUS_FLAG_RESCAN; 3917 return PTR_ERR(trans); 3918 } else if (trans != ERR_PTR(-ENOENT)) { 3919 ret = btrfs_commit_transaction(trans); 3920 if (ret) { 3921 fs_info->qgroup_flags &= ~BTRFS_QGROUP_STATUS_FLAG_RESCAN; 3922 return ret; 3923 } 3924 } 3925 3926 qgroup_rescan_zero_tracking(fs_info); 3927 3928 mutex_lock(&fs_info->qgroup_rescan_lock); 3929 fs_info->qgroup_rescan_running = true; 3930 btrfs_queue_work(fs_info->qgroup_rescan_workers, 3931 &fs_info->qgroup_rescan_work); 3932 mutex_unlock(&fs_info->qgroup_rescan_lock); 3933 3934 return 0; 3935 } 3936 3937 int btrfs_qgroup_wait_for_completion(struct btrfs_fs_info *fs_info, 3938 bool interruptible) 3939 { 3940 int running; 3941 int ret = 0; 3942 3943 mutex_lock(&fs_info->qgroup_rescan_lock); 3944 running = fs_info->qgroup_rescan_running; 3945 mutex_unlock(&fs_info->qgroup_rescan_lock); 3946 3947 if (!running) 3948 return 0; 3949 3950 if (interruptible) 3951 ret = wait_for_completion_interruptible( 3952 &fs_info->qgroup_rescan_completion); 3953 else 3954 wait_for_completion(&fs_info->qgroup_rescan_completion); 3955 3956 return ret; 3957 } 3958 3959 /* 3960 * this is only called from open_ctree where we're still single threaded, thus 3961 * locking is omitted here. 3962 */ 3963 void 3964 btrfs_qgroup_rescan_resume(struct btrfs_fs_info *fs_info) 3965 { 3966 if (fs_info->qgroup_flags & BTRFS_QGROUP_STATUS_FLAG_RESCAN) { 3967 mutex_lock(&fs_info->qgroup_rescan_lock); 3968 fs_info->qgroup_rescan_running = true; 3969 btrfs_queue_work(fs_info->qgroup_rescan_workers, 3970 &fs_info->qgroup_rescan_work); 3971 mutex_unlock(&fs_info->qgroup_rescan_lock); 3972 } 3973 } 3974 3975 #define rbtree_iterate_from_safe(node, next, start) \ 3976 for (node = start; node && ({ next = rb_next(node); 1;}); node = next) 3977 3978 static int qgroup_unreserve_range(struct btrfs_inode *inode, 3979 struct extent_changeset *reserved, u64 start, 3980 u64 len) 3981 { 3982 struct rb_node *node; 3983 struct rb_node *next; 3984 struct ulist_node *entry; 3985 int ret = 0; 3986 3987 node = reserved->range_changed.root.rb_node; 3988 if (!node) 3989 return 0; 3990 while (node) { 3991 entry = rb_entry(node, struct ulist_node, rb_node); 3992 if (entry->val < start) 3993 node = node->rb_right; 3994 else 3995 node = node->rb_left; 3996 } 3997 3998 if (entry->val > start && rb_prev(&entry->rb_node)) 3999 entry = rb_entry(rb_prev(&entry->rb_node), struct ulist_node, 4000 rb_node); 4001 4002 rbtree_iterate_from_safe(node, next, &entry->rb_node) { 4003 u64 entry_start; 4004 u64 entry_end; 4005 u64 entry_len; 4006 int clear_ret; 4007 4008 entry = rb_entry(node, struct ulist_node, rb_node); 4009 entry_start = entry->val; 4010 entry_end = entry->aux; 4011 entry_len = entry_end - entry_start + 1; 4012 4013 if (entry_start >= start + len) 4014 break; 4015 if (entry_start + entry_len <= start) 4016 continue; 4017 /* 4018 * Now the entry is in [start, start + len), revert the 4019 * EXTENT_QGROUP_RESERVED bit. 4020 */ 4021 clear_ret = clear_extent_bits(&inode->io_tree, entry_start, 4022 entry_end, EXTENT_QGROUP_RESERVED); 4023 if (!ret && clear_ret < 0) 4024 ret = clear_ret; 4025 4026 ulist_del(&reserved->range_changed, entry->val, entry->aux); 4027 if (likely(reserved->bytes_changed >= entry_len)) { 4028 reserved->bytes_changed -= entry_len; 4029 } else { 4030 WARN_ON(1); 4031 reserved->bytes_changed = 0; 4032 } 4033 } 4034 4035 return ret; 4036 } 4037 4038 /* 4039 * Try to free some space for qgroup. 4040 * 4041 * For qgroup, there are only 3 ways to free qgroup space: 4042 * - Flush nodatacow write 4043 * Any nodatacow write will free its reserved data space at run_delalloc_range(). 4044 * In theory, we should only flush nodatacow inodes, but it's not yet 4045 * possible, so we need to flush the whole root. 4046 * 4047 * - Wait for ordered extents 4048 * When ordered extents are finished, their reserved metadata is finally 4049 * converted to per_trans status, which can be freed by later commit 4050 * transaction. 4051 * 4052 * - Commit transaction 4053 * This would free the meta_per_trans space. 4054 * In theory this shouldn't provide much space, but any more qgroup space 4055 * is needed. 4056 */ 4057 static int try_flush_qgroup(struct btrfs_root *root) 4058 { 4059 struct btrfs_trans_handle *trans; 4060 int ret; 4061 4062 /* Can't hold an open transaction or we run the risk of deadlocking. */ 4063 ASSERT(current->journal_info == NULL); 4064 if (WARN_ON(current->journal_info)) 4065 return 0; 4066 4067 /* 4068 * We don't want to run flush again and again, so if there is a running 4069 * one, we won't try to start a new flush, but exit directly. 4070 */ 4071 if (test_and_set_bit(BTRFS_ROOT_QGROUP_FLUSHING, &root->state)) { 4072 wait_event(root->qgroup_flush_wait, 4073 !test_bit(BTRFS_ROOT_QGROUP_FLUSHING, &root->state)); 4074 return 0; 4075 } 4076 4077 ret = btrfs_start_delalloc_snapshot(root, true); 4078 if (ret < 0) 4079 goto out; 4080 btrfs_wait_ordered_extents(root, U64_MAX, 0, (u64)-1); 4081 4082 trans = btrfs_attach_transaction_barrier(root); 4083 if (IS_ERR(trans)) { 4084 ret = PTR_ERR(trans); 4085 if (ret == -ENOENT) 4086 ret = 0; 4087 goto out; 4088 } 4089 4090 ret = btrfs_commit_transaction(trans); 4091 out: 4092 clear_bit(BTRFS_ROOT_QGROUP_FLUSHING, &root->state); 4093 wake_up(&root->qgroup_flush_wait); 4094 return ret; 4095 } 4096 4097 static int qgroup_reserve_data(struct btrfs_inode *inode, 4098 struct extent_changeset **reserved_ret, u64 start, 4099 u64 len) 4100 { 4101 struct btrfs_root *root = inode->root; 4102 struct extent_changeset *reserved; 4103 bool new_reserved = false; 4104 u64 orig_reserved; 4105 u64 to_reserve; 4106 int ret; 4107 4108 if (btrfs_qgroup_mode(root->fs_info) == BTRFS_QGROUP_MODE_DISABLED || 4109 !is_fstree(btrfs_root_id(root)) || len == 0) 4110 return 0; 4111 4112 /* @reserved parameter is mandatory for qgroup */ 4113 if (WARN_ON(!reserved_ret)) 4114 return -EINVAL; 4115 if (!*reserved_ret) { 4116 new_reserved = true; 4117 *reserved_ret = extent_changeset_alloc(); 4118 if (!*reserved_ret) 4119 return -ENOMEM; 4120 } 4121 reserved = *reserved_ret; 4122 /* Record already reserved space */ 4123 orig_reserved = reserved->bytes_changed; 4124 ret = set_record_extent_bits(&inode->io_tree, start, 4125 start + len -1, EXTENT_QGROUP_RESERVED, reserved); 4126 4127 /* Newly reserved space */ 4128 to_reserve = reserved->bytes_changed - orig_reserved; 4129 trace_btrfs_qgroup_reserve_data(&inode->vfs_inode, start, len, 4130 to_reserve, QGROUP_RESERVE); 4131 if (ret < 0) 4132 goto out; 4133 ret = qgroup_reserve(root, to_reserve, true, BTRFS_QGROUP_RSV_DATA); 4134 if (ret < 0) 4135 goto cleanup; 4136 4137 return ret; 4138 4139 cleanup: 4140 qgroup_unreserve_range(inode, reserved, start, len); 4141 out: 4142 if (new_reserved) { 4143 extent_changeset_free(reserved); 4144 *reserved_ret = NULL; 4145 } 4146 return ret; 4147 } 4148 4149 /* 4150 * Reserve qgroup space for range [start, start + len). 4151 * 4152 * This function will either reserve space from related qgroups or do nothing 4153 * if the range is already reserved. 4154 * 4155 * Return 0 for successful reservation 4156 * Return <0 for error (including -EQUOT) 4157 * 4158 * NOTE: This function may sleep for memory allocation, dirty page flushing and 4159 * commit transaction. So caller should not hold any dirty page locked. 4160 */ 4161 int btrfs_qgroup_reserve_data(struct btrfs_inode *inode, 4162 struct extent_changeset **reserved_ret, u64 start, 4163 u64 len) 4164 { 4165 int ret; 4166 4167 ret = qgroup_reserve_data(inode, reserved_ret, start, len); 4168 if (ret <= 0 && ret != -EDQUOT) 4169 return ret; 4170 4171 ret = try_flush_qgroup(inode->root); 4172 if (ret < 0) 4173 return ret; 4174 return qgroup_reserve_data(inode, reserved_ret, start, len); 4175 } 4176 4177 /* Free ranges specified by @reserved, normally in error path */ 4178 static int qgroup_free_reserved_data(struct btrfs_inode *inode, 4179 struct extent_changeset *reserved, 4180 u64 start, u64 len, u64 *freed_ret) 4181 { 4182 struct btrfs_root *root = inode->root; 4183 struct ulist_node *unode; 4184 struct ulist_iterator uiter; 4185 struct extent_changeset changeset; 4186 u64 freed = 0; 4187 int ret; 4188 4189 extent_changeset_init(&changeset); 4190 len = round_up(start + len, root->fs_info->sectorsize); 4191 start = round_down(start, root->fs_info->sectorsize); 4192 4193 ULIST_ITER_INIT(&uiter); 4194 while ((unode = ulist_next(&reserved->range_changed, &uiter))) { 4195 u64 range_start = unode->val; 4196 /* unode->aux is the inclusive end */ 4197 u64 range_len = unode->aux - range_start + 1; 4198 u64 free_start; 4199 u64 free_len; 4200 4201 extent_changeset_release(&changeset); 4202 4203 /* Only free range in range [start, start + len) */ 4204 if (range_start >= start + len || 4205 range_start + range_len <= start) 4206 continue; 4207 free_start = max(range_start, start); 4208 free_len = min(start + len, range_start + range_len) - 4209 free_start; 4210 /* 4211 * TODO: To also modify reserved->ranges_reserved to reflect 4212 * the modification. 4213 * 4214 * However as long as we free qgroup reserved according to 4215 * EXTENT_QGROUP_RESERVED, we won't double free. 4216 * So not need to rush. 4217 */ 4218 ret = clear_record_extent_bits(&inode->io_tree, free_start, 4219 free_start + free_len - 1, 4220 EXTENT_QGROUP_RESERVED, &changeset); 4221 if (ret < 0) 4222 goto out; 4223 freed += changeset.bytes_changed; 4224 } 4225 btrfs_qgroup_free_refroot(root->fs_info, btrfs_root_id(root), freed, 4226 BTRFS_QGROUP_RSV_DATA); 4227 if (freed_ret) 4228 *freed_ret = freed; 4229 ret = 0; 4230 out: 4231 extent_changeset_release(&changeset); 4232 return ret; 4233 } 4234 4235 static int __btrfs_qgroup_release_data(struct btrfs_inode *inode, 4236 struct extent_changeset *reserved, u64 start, u64 len, 4237 u64 *released, int free) 4238 { 4239 struct extent_changeset changeset; 4240 int trace_op = QGROUP_RELEASE; 4241 int ret; 4242 4243 if (btrfs_qgroup_mode(inode->root->fs_info) == BTRFS_QGROUP_MODE_DISABLED) { 4244 extent_changeset_init(&changeset); 4245 return clear_record_extent_bits(&inode->io_tree, start, 4246 start + len - 1, 4247 EXTENT_QGROUP_RESERVED, &changeset); 4248 } 4249 4250 /* In release case, we shouldn't have @reserved */ 4251 WARN_ON(!free && reserved); 4252 if (free && reserved) 4253 return qgroup_free_reserved_data(inode, reserved, start, len, released); 4254 extent_changeset_init(&changeset); 4255 ret = clear_record_extent_bits(&inode->io_tree, start, start + len -1, 4256 EXTENT_QGROUP_RESERVED, &changeset); 4257 if (ret < 0) 4258 goto out; 4259 4260 if (free) 4261 trace_op = QGROUP_FREE; 4262 trace_btrfs_qgroup_release_data(&inode->vfs_inode, start, len, 4263 changeset.bytes_changed, trace_op); 4264 if (free) 4265 btrfs_qgroup_free_refroot(inode->root->fs_info, 4266 btrfs_root_id(inode->root), 4267 changeset.bytes_changed, BTRFS_QGROUP_RSV_DATA); 4268 if (released) 4269 *released = changeset.bytes_changed; 4270 out: 4271 extent_changeset_release(&changeset); 4272 return ret; 4273 } 4274 4275 /* 4276 * Free a reserved space range from io_tree and related qgroups 4277 * 4278 * Should be called when a range of pages get invalidated before reaching disk. 4279 * Or for error cleanup case. 4280 * if @reserved is given, only reserved range in [@start, @start + @len) will 4281 * be freed. 4282 * 4283 * For data written to disk, use btrfs_qgroup_release_data(). 4284 * 4285 * NOTE: This function may sleep for memory allocation. 4286 */ 4287 int btrfs_qgroup_free_data(struct btrfs_inode *inode, 4288 struct extent_changeset *reserved, 4289 u64 start, u64 len, u64 *freed) 4290 { 4291 return __btrfs_qgroup_release_data(inode, reserved, start, len, freed, 1); 4292 } 4293 4294 /* 4295 * Release a reserved space range from io_tree only. 4296 * 4297 * Should be called when a range of pages get written to disk and corresponding 4298 * FILE_EXTENT is inserted into corresponding root. 4299 * 4300 * Since new qgroup accounting framework will only update qgroup numbers at 4301 * commit_transaction() time, its reserved space shouldn't be freed from 4302 * related qgroups. 4303 * 4304 * But we should release the range from io_tree, to allow further write to be 4305 * COWed. 4306 * 4307 * NOTE: This function may sleep for memory allocation. 4308 */ 4309 int btrfs_qgroup_release_data(struct btrfs_inode *inode, u64 start, u64 len, u64 *released) 4310 { 4311 return __btrfs_qgroup_release_data(inode, NULL, start, len, released, 0); 4312 } 4313 4314 static void add_root_meta_rsv(struct btrfs_root *root, int num_bytes, 4315 enum btrfs_qgroup_rsv_type type) 4316 { 4317 if (type != BTRFS_QGROUP_RSV_META_PREALLOC && 4318 type != BTRFS_QGROUP_RSV_META_PERTRANS) 4319 return; 4320 if (num_bytes == 0) 4321 return; 4322 4323 spin_lock(&root->qgroup_meta_rsv_lock); 4324 if (type == BTRFS_QGROUP_RSV_META_PREALLOC) 4325 root->qgroup_meta_rsv_prealloc += num_bytes; 4326 else 4327 root->qgroup_meta_rsv_pertrans += num_bytes; 4328 spin_unlock(&root->qgroup_meta_rsv_lock); 4329 } 4330 4331 static int sub_root_meta_rsv(struct btrfs_root *root, int num_bytes, 4332 enum btrfs_qgroup_rsv_type type) 4333 { 4334 if (type != BTRFS_QGROUP_RSV_META_PREALLOC && 4335 type != BTRFS_QGROUP_RSV_META_PERTRANS) 4336 return 0; 4337 if (num_bytes == 0) 4338 return 0; 4339 4340 spin_lock(&root->qgroup_meta_rsv_lock); 4341 if (type == BTRFS_QGROUP_RSV_META_PREALLOC) { 4342 num_bytes = min_t(u64, root->qgroup_meta_rsv_prealloc, 4343 num_bytes); 4344 root->qgroup_meta_rsv_prealloc -= num_bytes; 4345 } else { 4346 num_bytes = min_t(u64, root->qgroup_meta_rsv_pertrans, 4347 num_bytes); 4348 root->qgroup_meta_rsv_pertrans -= num_bytes; 4349 } 4350 spin_unlock(&root->qgroup_meta_rsv_lock); 4351 return num_bytes; 4352 } 4353 4354 int btrfs_qgroup_reserve_meta(struct btrfs_root *root, int num_bytes, 4355 enum btrfs_qgroup_rsv_type type, bool enforce) 4356 { 4357 struct btrfs_fs_info *fs_info = root->fs_info; 4358 int ret; 4359 4360 if (btrfs_qgroup_mode(fs_info) == BTRFS_QGROUP_MODE_DISABLED || 4361 !is_fstree(btrfs_root_id(root)) || num_bytes == 0) 4362 return 0; 4363 4364 BUG_ON(num_bytes != round_down(num_bytes, fs_info->nodesize)); 4365 trace_qgroup_meta_reserve(root, (s64)num_bytes, type); 4366 ret = qgroup_reserve(root, num_bytes, enforce, type); 4367 if (ret < 0) 4368 return ret; 4369 /* 4370 * Record what we have reserved into root. 4371 * 4372 * To avoid quota disabled->enabled underflow. 4373 * In that case, we may try to free space we haven't reserved 4374 * (since quota was disabled), so record what we reserved into root. 4375 * And ensure later release won't underflow this number. 4376 */ 4377 add_root_meta_rsv(root, num_bytes, type); 4378 return ret; 4379 } 4380 4381 int __btrfs_qgroup_reserve_meta(struct btrfs_root *root, int num_bytes, 4382 enum btrfs_qgroup_rsv_type type, bool enforce, 4383 bool noflush) 4384 { 4385 int ret; 4386 4387 ret = btrfs_qgroup_reserve_meta(root, num_bytes, type, enforce); 4388 if ((ret <= 0 && ret != -EDQUOT) || noflush) 4389 return ret; 4390 4391 ret = try_flush_qgroup(root); 4392 if (ret < 0) 4393 return ret; 4394 return btrfs_qgroup_reserve_meta(root, num_bytes, type, enforce); 4395 } 4396 4397 /* 4398 * Per-transaction meta reservation should be all freed at transaction commit 4399 * time 4400 */ 4401 void btrfs_qgroup_free_meta_all_pertrans(struct btrfs_root *root) 4402 { 4403 struct btrfs_fs_info *fs_info = root->fs_info; 4404 4405 if (btrfs_qgroup_mode(fs_info) == BTRFS_QGROUP_MODE_DISABLED || 4406 !is_fstree(btrfs_root_id(root))) 4407 return; 4408 4409 /* TODO: Update trace point to handle such free */ 4410 trace_qgroup_meta_free_all_pertrans(root); 4411 /* Special value -1 means to free all reserved space */ 4412 btrfs_qgroup_free_refroot(fs_info, btrfs_root_id(root), (u64)-1, 4413 BTRFS_QGROUP_RSV_META_PERTRANS); 4414 } 4415 4416 void __btrfs_qgroup_free_meta(struct btrfs_root *root, int num_bytes, 4417 enum btrfs_qgroup_rsv_type type) 4418 { 4419 struct btrfs_fs_info *fs_info = root->fs_info; 4420 4421 if (btrfs_qgroup_mode(fs_info) == BTRFS_QGROUP_MODE_DISABLED || 4422 !is_fstree(btrfs_root_id(root))) 4423 return; 4424 4425 /* 4426 * reservation for META_PREALLOC can happen before quota is enabled, 4427 * which can lead to underflow. 4428 * Here ensure we will only free what we really have reserved. 4429 */ 4430 num_bytes = sub_root_meta_rsv(root, num_bytes, type); 4431 BUG_ON(num_bytes != round_down(num_bytes, fs_info->nodesize)); 4432 trace_qgroup_meta_reserve(root, -(s64)num_bytes, type); 4433 btrfs_qgroup_free_refroot(fs_info, btrfs_root_id(root), num_bytes, type); 4434 } 4435 4436 static void qgroup_convert_meta(struct btrfs_fs_info *fs_info, u64 ref_root, 4437 int num_bytes) 4438 { 4439 struct btrfs_qgroup *qgroup; 4440 LIST_HEAD(qgroup_list); 4441 4442 if (num_bytes == 0) 4443 return; 4444 if (!fs_info->quota_root) 4445 return; 4446 4447 spin_lock(&fs_info->qgroup_lock); 4448 qgroup = find_qgroup_rb(fs_info, ref_root); 4449 if (!qgroup) 4450 goto out; 4451 4452 qgroup_iterator_add(&qgroup_list, qgroup); 4453 list_for_each_entry(qgroup, &qgroup_list, iterator) { 4454 struct btrfs_qgroup_list *glist; 4455 4456 qgroup_rsv_release(fs_info, qgroup, num_bytes, 4457 BTRFS_QGROUP_RSV_META_PREALLOC); 4458 if (!sb_rdonly(fs_info->sb)) 4459 qgroup_rsv_add(fs_info, qgroup, num_bytes, 4460 BTRFS_QGROUP_RSV_META_PERTRANS); 4461 4462 list_for_each_entry(glist, &qgroup->groups, next_group) 4463 qgroup_iterator_add(&qgroup_list, glist->group); 4464 } 4465 out: 4466 qgroup_iterator_clean(&qgroup_list); 4467 spin_unlock(&fs_info->qgroup_lock); 4468 } 4469 4470 /* 4471 * Convert @num_bytes of META_PREALLOCATED reservation to META_PERTRANS. 4472 * 4473 * This is called when preallocated meta reservation needs to be used. 4474 * Normally after btrfs_join_transaction() call. 4475 */ 4476 void btrfs_qgroup_convert_reserved_meta(struct btrfs_root *root, int num_bytes) 4477 { 4478 struct btrfs_fs_info *fs_info = root->fs_info; 4479 4480 if (btrfs_qgroup_mode(fs_info) == BTRFS_QGROUP_MODE_DISABLED || 4481 !is_fstree(btrfs_root_id(root))) 4482 return; 4483 /* Same as btrfs_qgroup_free_meta_prealloc() */ 4484 num_bytes = sub_root_meta_rsv(root, num_bytes, 4485 BTRFS_QGROUP_RSV_META_PREALLOC); 4486 trace_qgroup_meta_convert(root, num_bytes); 4487 qgroup_convert_meta(fs_info, btrfs_root_id(root), num_bytes); 4488 if (!sb_rdonly(fs_info->sb)) 4489 add_root_meta_rsv(root, num_bytes, BTRFS_QGROUP_RSV_META_PERTRANS); 4490 } 4491 4492 /* 4493 * Check qgroup reserved space leaking, normally at destroy inode 4494 * time 4495 */ 4496 void btrfs_qgroup_check_reserved_leak(struct btrfs_inode *inode) 4497 { 4498 struct extent_changeset changeset; 4499 struct ulist_node *unode; 4500 struct ulist_iterator iter; 4501 int ret; 4502 4503 extent_changeset_init(&changeset); 4504 ret = clear_record_extent_bits(&inode->io_tree, 0, (u64)-1, 4505 EXTENT_QGROUP_RESERVED, &changeset); 4506 4507 WARN_ON(ret < 0); 4508 if (WARN_ON(changeset.bytes_changed)) { 4509 ULIST_ITER_INIT(&iter); 4510 while ((unode = ulist_next(&changeset.range_changed, &iter))) { 4511 btrfs_warn(inode->root->fs_info, 4512 "leaking qgroup reserved space, ino: %llu, start: %llu, end: %llu", 4513 btrfs_ino(inode), unode->val, unode->aux); 4514 } 4515 btrfs_qgroup_free_refroot(inode->root->fs_info, 4516 btrfs_root_id(inode->root), 4517 changeset.bytes_changed, BTRFS_QGROUP_RSV_DATA); 4518 4519 } 4520 extent_changeset_release(&changeset); 4521 } 4522 4523 void btrfs_qgroup_init_swapped_blocks( 4524 struct btrfs_qgroup_swapped_blocks *swapped_blocks) 4525 { 4526 int i; 4527 4528 spin_lock_init(&swapped_blocks->lock); 4529 for (i = 0; i < BTRFS_MAX_LEVEL; i++) 4530 swapped_blocks->blocks[i] = RB_ROOT; 4531 swapped_blocks->swapped = false; 4532 } 4533 4534 /* 4535 * Delete all swapped blocks record of @root. 4536 * Every record here means we skipped a full subtree scan for qgroup. 4537 * 4538 * Gets called when committing one transaction. 4539 */ 4540 void btrfs_qgroup_clean_swapped_blocks(struct btrfs_root *root) 4541 { 4542 struct btrfs_qgroup_swapped_blocks *swapped_blocks; 4543 int i; 4544 4545 swapped_blocks = &root->swapped_blocks; 4546 4547 spin_lock(&swapped_blocks->lock); 4548 if (!swapped_blocks->swapped) 4549 goto out; 4550 for (i = 0; i < BTRFS_MAX_LEVEL; i++) { 4551 struct rb_root *cur_root = &swapped_blocks->blocks[i]; 4552 struct btrfs_qgroup_swapped_block *entry; 4553 struct btrfs_qgroup_swapped_block *next; 4554 4555 rbtree_postorder_for_each_entry_safe(entry, next, cur_root, 4556 node) 4557 kfree(entry); 4558 swapped_blocks->blocks[i] = RB_ROOT; 4559 } 4560 swapped_blocks->swapped = false; 4561 out: 4562 spin_unlock(&swapped_blocks->lock); 4563 } 4564 4565 /* 4566 * Add subtree roots record into @subvol_root. 4567 * 4568 * @subvol_root: tree root of the subvolume tree get swapped 4569 * @bg: block group under balance 4570 * @subvol_parent/slot: pointer to the subtree root in subvolume tree 4571 * @reloc_parent/slot: pointer to the subtree root in reloc tree 4572 * BOTH POINTERS ARE BEFORE TREE SWAP 4573 * @last_snapshot: last snapshot generation of the subvolume tree 4574 */ 4575 int btrfs_qgroup_add_swapped_blocks(struct btrfs_trans_handle *trans, 4576 struct btrfs_root *subvol_root, 4577 struct btrfs_block_group *bg, 4578 struct extent_buffer *subvol_parent, int subvol_slot, 4579 struct extent_buffer *reloc_parent, int reloc_slot, 4580 u64 last_snapshot) 4581 { 4582 struct btrfs_fs_info *fs_info = subvol_root->fs_info; 4583 struct btrfs_qgroup_swapped_blocks *blocks = &subvol_root->swapped_blocks; 4584 struct btrfs_qgroup_swapped_block *block; 4585 struct rb_node **cur; 4586 struct rb_node *parent = NULL; 4587 int level = btrfs_header_level(subvol_parent) - 1; 4588 int ret = 0; 4589 4590 if (!btrfs_qgroup_full_accounting(fs_info)) 4591 return 0; 4592 4593 if (btrfs_node_ptr_generation(subvol_parent, subvol_slot) > 4594 btrfs_node_ptr_generation(reloc_parent, reloc_slot)) { 4595 btrfs_err_rl(fs_info, 4596 "%s: bad parameter order, subvol_gen=%llu reloc_gen=%llu", 4597 __func__, 4598 btrfs_node_ptr_generation(subvol_parent, subvol_slot), 4599 btrfs_node_ptr_generation(reloc_parent, reloc_slot)); 4600 return -EUCLEAN; 4601 } 4602 4603 block = kmalloc(sizeof(*block), GFP_NOFS); 4604 if (!block) { 4605 ret = -ENOMEM; 4606 goto out; 4607 } 4608 4609 /* 4610 * @reloc_parent/slot is still before swap, while @block is going to 4611 * record the bytenr after swap, so we do the swap here. 4612 */ 4613 block->subvol_bytenr = btrfs_node_blockptr(reloc_parent, reloc_slot); 4614 block->subvol_generation = btrfs_node_ptr_generation(reloc_parent, 4615 reloc_slot); 4616 block->reloc_bytenr = btrfs_node_blockptr(subvol_parent, subvol_slot); 4617 block->reloc_generation = btrfs_node_ptr_generation(subvol_parent, 4618 subvol_slot); 4619 block->last_snapshot = last_snapshot; 4620 block->level = level; 4621 4622 /* 4623 * If we have bg == NULL, we're called from btrfs_recover_relocation(), 4624 * no one else can modify tree blocks thus we qgroup will not change 4625 * no matter the value of trace_leaf. 4626 */ 4627 if (bg && bg->flags & BTRFS_BLOCK_GROUP_DATA) 4628 block->trace_leaf = true; 4629 else 4630 block->trace_leaf = false; 4631 btrfs_node_key_to_cpu(reloc_parent, &block->first_key, reloc_slot); 4632 4633 /* Insert @block into @blocks */ 4634 spin_lock(&blocks->lock); 4635 cur = &blocks->blocks[level].rb_node; 4636 while (*cur) { 4637 struct btrfs_qgroup_swapped_block *entry; 4638 4639 parent = *cur; 4640 entry = rb_entry(parent, struct btrfs_qgroup_swapped_block, 4641 node); 4642 4643 if (entry->subvol_bytenr < block->subvol_bytenr) { 4644 cur = &(*cur)->rb_left; 4645 } else if (entry->subvol_bytenr > block->subvol_bytenr) { 4646 cur = &(*cur)->rb_right; 4647 } else { 4648 if (entry->subvol_generation != 4649 block->subvol_generation || 4650 entry->reloc_bytenr != block->reloc_bytenr || 4651 entry->reloc_generation != 4652 block->reloc_generation) { 4653 /* 4654 * Duplicated but mismatch entry found. 4655 * Shouldn't happen. 4656 * 4657 * Marking qgroup inconsistent should be enough 4658 * for end users. 4659 */ 4660 WARN_ON(IS_ENABLED(CONFIG_BTRFS_DEBUG)); 4661 ret = -EEXIST; 4662 } 4663 kfree(block); 4664 goto out_unlock; 4665 } 4666 } 4667 rb_link_node(&block->node, parent, cur); 4668 rb_insert_color(&block->node, &blocks->blocks[level]); 4669 blocks->swapped = true; 4670 out_unlock: 4671 spin_unlock(&blocks->lock); 4672 out: 4673 if (ret < 0) 4674 qgroup_mark_inconsistent(fs_info); 4675 return ret; 4676 } 4677 4678 /* 4679 * Check if the tree block is a subtree root, and if so do the needed 4680 * delayed subtree trace for qgroup. 4681 * 4682 * This is called during btrfs_cow_block(). 4683 */ 4684 int btrfs_qgroup_trace_subtree_after_cow(struct btrfs_trans_handle *trans, 4685 struct btrfs_root *root, 4686 struct extent_buffer *subvol_eb) 4687 { 4688 struct btrfs_fs_info *fs_info = root->fs_info; 4689 struct btrfs_tree_parent_check check = { 0 }; 4690 struct btrfs_qgroup_swapped_blocks *blocks = &root->swapped_blocks; 4691 struct btrfs_qgroup_swapped_block *block; 4692 struct extent_buffer *reloc_eb = NULL; 4693 struct rb_node *node; 4694 bool found = false; 4695 bool swapped = false; 4696 int level = btrfs_header_level(subvol_eb); 4697 int ret = 0; 4698 int i; 4699 4700 if (!btrfs_qgroup_full_accounting(fs_info)) 4701 return 0; 4702 if (!is_fstree(btrfs_root_id(root)) || !root->reloc_root) 4703 return 0; 4704 4705 spin_lock(&blocks->lock); 4706 if (!blocks->swapped) { 4707 spin_unlock(&blocks->lock); 4708 return 0; 4709 } 4710 node = blocks->blocks[level].rb_node; 4711 4712 while (node) { 4713 block = rb_entry(node, struct btrfs_qgroup_swapped_block, node); 4714 if (block->subvol_bytenr < subvol_eb->start) { 4715 node = node->rb_left; 4716 } else if (block->subvol_bytenr > subvol_eb->start) { 4717 node = node->rb_right; 4718 } else { 4719 found = true; 4720 break; 4721 } 4722 } 4723 if (!found) { 4724 spin_unlock(&blocks->lock); 4725 goto out; 4726 } 4727 /* Found one, remove it from @blocks first and update blocks->swapped */ 4728 rb_erase(&block->node, &blocks->blocks[level]); 4729 for (i = 0; i < BTRFS_MAX_LEVEL; i++) { 4730 if (RB_EMPTY_ROOT(&blocks->blocks[i])) { 4731 swapped = true; 4732 break; 4733 } 4734 } 4735 blocks->swapped = swapped; 4736 spin_unlock(&blocks->lock); 4737 4738 check.level = block->level; 4739 check.transid = block->reloc_generation; 4740 check.has_first_key = true; 4741 memcpy(&check.first_key, &block->first_key, sizeof(check.first_key)); 4742 4743 /* Read out reloc subtree root */ 4744 reloc_eb = read_tree_block(fs_info, block->reloc_bytenr, &check); 4745 if (IS_ERR(reloc_eb)) { 4746 ret = PTR_ERR(reloc_eb); 4747 reloc_eb = NULL; 4748 goto free_out; 4749 } 4750 if (!extent_buffer_uptodate(reloc_eb)) { 4751 ret = -EIO; 4752 goto free_out; 4753 } 4754 4755 ret = qgroup_trace_subtree_swap(trans, reloc_eb, subvol_eb, 4756 block->last_snapshot, block->trace_leaf); 4757 free_out: 4758 kfree(block); 4759 free_extent_buffer(reloc_eb); 4760 out: 4761 if (ret < 0) { 4762 btrfs_err_rl(fs_info, 4763 "failed to account subtree at bytenr %llu: %d", 4764 subvol_eb->start, ret); 4765 qgroup_mark_inconsistent(fs_info); 4766 } 4767 return ret; 4768 } 4769 4770 void btrfs_qgroup_destroy_extent_records(struct btrfs_transaction *trans) 4771 { 4772 struct btrfs_qgroup_extent_record *entry; 4773 struct btrfs_qgroup_extent_record *next; 4774 struct rb_root *root; 4775 4776 root = &trans->delayed_refs.dirty_extent_root; 4777 rbtree_postorder_for_each_entry_safe(entry, next, root, node) { 4778 ulist_free(entry->old_roots); 4779 kfree(entry); 4780 } 4781 *root = RB_ROOT; 4782 } 4783 4784 void btrfs_free_squota_rsv(struct btrfs_fs_info *fs_info, u64 root, u64 rsv_bytes) 4785 { 4786 if (btrfs_qgroup_mode(fs_info) != BTRFS_QGROUP_MODE_SIMPLE) 4787 return; 4788 4789 if (!is_fstree(root)) 4790 return; 4791 4792 btrfs_qgroup_free_refroot(fs_info, root, rsv_bytes, BTRFS_QGROUP_RSV_DATA); 4793 } 4794 4795 int btrfs_record_squota_delta(struct btrfs_fs_info *fs_info, 4796 struct btrfs_squota_delta *delta) 4797 { 4798 int ret; 4799 struct btrfs_qgroup *qgroup; 4800 struct btrfs_qgroup *qg; 4801 LIST_HEAD(qgroup_list); 4802 u64 root = delta->root; 4803 u64 num_bytes = delta->num_bytes; 4804 const int sign = (delta->is_inc ? 1 : -1); 4805 4806 if (btrfs_qgroup_mode(fs_info) != BTRFS_QGROUP_MODE_SIMPLE) 4807 return 0; 4808 4809 if (!is_fstree(root)) 4810 return 0; 4811 4812 /* If the extent predates enabling quotas, don't count it. */ 4813 if (delta->generation < fs_info->qgroup_enable_gen) 4814 return 0; 4815 4816 spin_lock(&fs_info->qgroup_lock); 4817 qgroup = find_qgroup_rb(fs_info, root); 4818 if (!qgroup) { 4819 ret = -ENOENT; 4820 goto out; 4821 } 4822 4823 ret = 0; 4824 qgroup_iterator_add(&qgroup_list, qgroup); 4825 list_for_each_entry(qg, &qgroup_list, iterator) { 4826 struct btrfs_qgroup_list *glist; 4827 4828 qg->excl += num_bytes * sign; 4829 qg->rfer += num_bytes * sign; 4830 qgroup_dirty(fs_info, qg); 4831 4832 list_for_each_entry(glist, &qg->groups, next_group) 4833 qgroup_iterator_add(&qgroup_list, glist->group); 4834 } 4835 qgroup_iterator_clean(&qgroup_list); 4836 4837 out: 4838 spin_unlock(&fs_info->qgroup_lock); 4839 return ret; 4840 } 4841