2 * Copyright (c) 2000-2005 Silicon Graphics, Inc.
5 * This program is free software; you can redistribute it and/or
6 * modify it under the terms of the GNU General Public License as
7 * published by the Free Software Foundation.
9 * This program is distributed in the hope that it would be useful,
10 * but WITHOUT ANY WARRANTY; without even the implied warranty of
11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 * GNU General Public License for more details.
14 * You should have received a copy of the GNU General Public License
15 * along with this program; if not, write the Free Software Foundation,
16 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
20 #include "xfs_shared.h"
21 #include "xfs_format.h"
22 #include "xfs_log_format.h"
23 #include "xfs_trans_resv.h"
24 #include "xfs_mount.h"
25 #include "xfs_inode.h"
26 #include "xfs_ioctl.h"
27 #include "xfs_alloc.h"
28 #include "xfs_rtalloc.h"
29 #include "xfs_itable.h"
30 #include "xfs_error.h"
33 #include "xfs_bmap_util.h"
34 #include "xfs_fsops.h"
35 #include "xfs_discard.h"
36 #include "xfs_quota.h"
37 #include "xfs_export.h"
38 #include "xfs_trace.h"
39 #include "xfs_icache.h"
40 #include "xfs_symlink.h"
41 #include "xfs_trans.h"
44 #include <linux/capability.h>
45 #include <linux/dcache.h>
46 #include <linux/mount.h>
47 #include <linux/namei.h>
48 #include <linux/pagemap.h>
49 #include <linux/slab.h>
50 #include <linux/exportfs.h>
53 * xfs_find_handle maps from userspace xfs_fsop_handlereq structure to
54 * a file or fs handle.
56 * XFS_IOC_PATH_TO_FSHANDLE
57 * returns fs handle for a mount point or path within that mount point
58 * XFS_IOC_FD_TO_HANDLE
59 * returns full handle for a FD opened in user space
60 * XFS_IOC_PATH_TO_HANDLE
61 * returns full handle for a path
66 xfs_fsop_handlereq_t *hreq)
76 if (cmd == XFS_IOC_FD_TO_HANDLE) {
80 inode = file_inode(f.file);
82 error = user_lpath((const char __user *)hreq->path, &path);
85 inode = d_inode(path.dentry);
90 * We can only generate handles for inodes residing on a XFS filesystem,
91 * and only for regular files, directories or symbolic links.
94 if (inode->i_sb->s_magic != XFS_SB_MAGIC)
98 if (!S_ISREG(inode->i_mode) &&
99 !S_ISDIR(inode->i_mode) &&
100 !S_ISLNK(inode->i_mode))
104 memcpy(&handle.ha_fsid, ip->i_mount->m_fixedfsid, sizeof(xfs_fsid_t));
106 if (cmd == XFS_IOC_PATH_TO_FSHANDLE) {
108 * This handle only contains an fsid, zero the rest.
110 memset(&handle.ha_fid, 0, sizeof(handle.ha_fid));
111 hsize = sizeof(xfs_fsid_t);
113 handle.ha_fid.fid_len = sizeof(xfs_fid_t) -
114 sizeof(handle.ha_fid.fid_len);
115 handle.ha_fid.fid_pad = 0;
116 handle.ha_fid.fid_gen = ip->i_d.di_gen;
117 handle.ha_fid.fid_ino = ip->i_ino;
119 hsize = XFS_HSIZE(handle);
123 if (copy_to_user(hreq->ohandle, &handle, hsize) ||
124 copy_to_user(hreq->ohandlen, &hsize, sizeof(__s32)))
130 if (cmd == XFS_IOC_FD_TO_HANDLE)
138 * No need to do permission checks on the various pathname components
139 * as the handle operations are privileged.
142 xfs_handle_acceptable(
144 struct dentry *dentry)
150 * Convert userspace handle data into a dentry.
153 xfs_handle_to_dentry(
154 struct file *parfilp,
155 void __user *uhandle,
159 struct xfs_fid64 fid;
162 * Only allow handle opens under a directory.
164 if (!S_ISDIR(file_inode(parfilp)->i_mode))
165 return ERR_PTR(-ENOTDIR);
167 if (hlen != sizeof(xfs_handle_t))
168 return ERR_PTR(-EINVAL);
169 if (copy_from_user(&handle, uhandle, hlen))
170 return ERR_PTR(-EFAULT);
171 if (handle.ha_fid.fid_len !=
172 sizeof(handle.ha_fid) - sizeof(handle.ha_fid.fid_len))
173 return ERR_PTR(-EINVAL);
175 memset(&fid, 0, sizeof(struct fid));
176 fid.ino = handle.ha_fid.fid_ino;
177 fid.gen = handle.ha_fid.fid_gen;
179 return exportfs_decode_fh(parfilp->f_path.mnt, (struct fid *)&fid, 3,
180 FILEID_INO32_GEN | XFS_FILEID_TYPE_64FLAG,
181 xfs_handle_acceptable, NULL);
184 STATIC struct dentry *
185 xfs_handlereq_to_dentry(
186 struct file *parfilp,
187 xfs_fsop_handlereq_t *hreq)
189 return xfs_handle_to_dentry(parfilp, hreq->ihandle, hreq->ihandlen);
194 struct file *parfilp,
195 xfs_fsop_handlereq_t *hreq)
197 const struct cred *cred = current_cred();
203 struct dentry *dentry;
207 if (!capable(CAP_SYS_ADMIN))
210 dentry = xfs_handlereq_to_dentry(parfilp, hreq);
212 return PTR_ERR(dentry);
213 inode = d_inode(dentry);
215 /* Restrict xfs_open_by_handle to directories & regular files. */
216 if (!(S_ISREG(inode->i_mode) || S_ISDIR(inode->i_mode))) {
221 #if BITS_PER_LONG != 32
222 hreq->oflags |= O_LARGEFILE;
225 permflag = hreq->oflags;
226 fmode = OPEN_FMODE(permflag);
227 if ((!(permflag & O_APPEND) || (permflag & O_TRUNC)) &&
228 (fmode & FMODE_WRITE) && IS_APPEND(inode)) {
233 if ((fmode & FMODE_WRITE) && IS_IMMUTABLE(inode)) {
238 /* Can't write directories. */
239 if (S_ISDIR(inode->i_mode) && (fmode & FMODE_WRITE)) {
244 fd = get_unused_fd_flags(0);
250 path.mnt = parfilp->f_path.mnt;
251 path.dentry = dentry;
252 filp = dentry_open(&path, hreq->oflags, cred);
256 return PTR_ERR(filp);
259 if (S_ISREG(inode->i_mode)) {
260 filp->f_flags |= O_NOATIME;
261 filp->f_mode |= FMODE_NOCMTIME;
264 fd_install(fd, filp);
273 xfs_readlink_by_handle(
274 struct file *parfilp,
275 xfs_fsop_handlereq_t *hreq)
277 struct dentry *dentry;
282 if (!capable(CAP_SYS_ADMIN))
285 dentry = xfs_handlereq_to_dentry(parfilp, hreq);
287 return PTR_ERR(dentry);
289 /* Restrict this handle operation to symlinks only. */
290 if (!d_is_symlink(dentry)) {
295 if (copy_from_user(&olen, hreq->ohandlen, sizeof(__u32))) {
300 link = kmalloc(MAXPATHLEN+1, GFP_KERNEL);
306 error = xfs_readlink(XFS_I(d_inode(dentry)), link);
309 error = readlink_copy(hreq->ohandle, olen, link);
326 xfs_mount_t *mp = ip->i_mount;
330 if (!capable(CAP_SYS_ADMIN))
333 if (XFS_FORCED_SHUTDOWN(mp))
336 tp = xfs_trans_alloc(mp, XFS_TRANS_SET_DMATTRS);
337 error = xfs_trans_reserve(tp, &M_RES(mp)->tr_ichange, 0, 0);
339 xfs_trans_cancel(tp);
342 xfs_ilock(ip, XFS_ILOCK_EXCL);
343 xfs_trans_ijoin(tp, ip, XFS_ILOCK_EXCL);
345 ip->i_d.di_dmevmask = evmask;
346 ip->i_d.di_dmstate = state;
348 xfs_trans_log_inode(tp, ip, XFS_ILOG_CORE);
349 error = xfs_trans_commit(tp);
355 xfs_fssetdm_by_handle(
356 struct file *parfilp,
360 struct fsdmidata fsd;
361 xfs_fsop_setdm_handlereq_t dmhreq;
362 struct dentry *dentry;
364 if (!capable(CAP_MKNOD))
366 if (copy_from_user(&dmhreq, arg, sizeof(xfs_fsop_setdm_handlereq_t)))
369 error = mnt_want_write_file(parfilp);
373 dentry = xfs_handlereq_to_dentry(parfilp, &dmhreq.hreq);
374 if (IS_ERR(dentry)) {
375 mnt_drop_write_file(parfilp);
376 return PTR_ERR(dentry);
379 if (IS_IMMUTABLE(d_inode(dentry)) || IS_APPEND(d_inode(dentry))) {
384 if (copy_from_user(&fsd, dmhreq.data, sizeof(fsd))) {
389 error = xfs_set_dmattrs(XFS_I(d_inode(dentry)), fsd.fsd_dmevmask,
393 mnt_drop_write_file(parfilp);
399 xfs_attrlist_by_handle(
400 struct file *parfilp,
404 attrlist_cursor_kern_t *cursor;
405 xfs_fsop_attrlist_handlereq_t al_hreq;
406 struct dentry *dentry;
409 if (!capable(CAP_SYS_ADMIN))
411 if (copy_from_user(&al_hreq, arg, sizeof(xfs_fsop_attrlist_handlereq_t)))
413 if (al_hreq.buflen < sizeof(struct attrlist) ||
414 al_hreq.buflen > XATTR_LIST_MAX)
418 * Reject flags, only allow namespaces.
420 if (al_hreq.flags & ~(ATTR_ROOT | ATTR_SECURE))
423 dentry = xfs_handlereq_to_dentry(parfilp, &al_hreq.hreq);
425 return PTR_ERR(dentry);
427 kbuf = kmem_zalloc_large(al_hreq.buflen, KM_SLEEP);
431 cursor = (attrlist_cursor_kern_t *)&al_hreq.pos;
432 error = xfs_attr_list(XFS_I(d_inode(dentry)), kbuf, al_hreq.buflen,
433 al_hreq.flags, cursor);
437 if (copy_to_user(al_hreq.buffer, kbuf, al_hreq.buflen))
448 xfs_attrmulti_attr_get(
451 unsigned char __user *ubuf,
458 if (*len > XATTR_SIZE_MAX)
460 kbuf = kmem_zalloc_large(*len, KM_SLEEP);
464 error = xfs_attr_get(XFS_I(inode), name, kbuf, (int *)len, flags);
468 if (copy_to_user(ubuf, kbuf, *len))
477 xfs_attrmulti_attr_set(
480 const unsigned char __user *ubuf,
487 if (IS_IMMUTABLE(inode) || IS_APPEND(inode))
489 if (len > XATTR_SIZE_MAX)
492 kbuf = memdup_user(ubuf, len);
494 return PTR_ERR(kbuf);
496 error = xfs_attr_set(XFS_I(inode), name, kbuf, len, flags);
502 xfs_attrmulti_attr_remove(
507 if (IS_IMMUTABLE(inode) || IS_APPEND(inode))
509 return xfs_attr_remove(XFS_I(inode), name, flags);
513 xfs_attrmulti_by_handle(
514 struct file *parfilp,
518 xfs_attr_multiop_t *ops;
519 xfs_fsop_attrmulti_handlereq_t am_hreq;
520 struct dentry *dentry;
521 unsigned int i, size;
522 unsigned char *attr_name;
524 if (!capable(CAP_SYS_ADMIN))
526 if (copy_from_user(&am_hreq, arg, sizeof(xfs_fsop_attrmulti_handlereq_t)))
530 if (am_hreq.opcount >= INT_MAX / sizeof(xfs_attr_multiop_t))
533 dentry = xfs_handlereq_to_dentry(parfilp, &am_hreq.hreq);
535 return PTR_ERR(dentry);
538 size = am_hreq.opcount * sizeof(xfs_attr_multiop_t);
539 if (!size || size > 16 * PAGE_SIZE)
542 ops = memdup_user(am_hreq.ops, size);
544 error = PTR_ERR(ops);
549 attr_name = kmalloc(MAXNAMELEN, GFP_KERNEL);
554 for (i = 0; i < am_hreq.opcount; i++) {
555 ops[i].am_error = strncpy_from_user((char *)attr_name,
556 ops[i].am_attrname, MAXNAMELEN);
557 if (ops[i].am_error == 0 || ops[i].am_error == MAXNAMELEN)
559 if (ops[i].am_error < 0)
562 switch (ops[i].am_opcode) {
564 ops[i].am_error = xfs_attrmulti_attr_get(
565 d_inode(dentry), attr_name,
566 ops[i].am_attrvalue, &ops[i].am_length,
570 ops[i].am_error = mnt_want_write_file(parfilp);
573 ops[i].am_error = xfs_attrmulti_attr_set(
574 d_inode(dentry), attr_name,
575 ops[i].am_attrvalue, ops[i].am_length,
577 mnt_drop_write_file(parfilp);
580 ops[i].am_error = mnt_want_write_file(parfilp);
583 ops[i].am_error = xfs_attrmulti_attr_remove(
584 d_inode(dentry), attr_name,
586 mnt_drop_write_file(parfilp);
589 ops[i].am_error = -EINVAL;
593 if (copy_to_user(am_hreq.ops, ops, size))
606 struct xfs_inode *ip,
614 enum xfs_prealloc_flags flags = 0;
615 uint iolock = XFS_IOLOCK_EXCL;
619 * Only allow the sys admin to reserve space unless
620 * unwritten extents are enabled.
622 if (!xfs_sb_version_hasextflgbit(&ip->i_mount->m_sb) &&
623 !capable(CAP_SYS_ADMIN))
626 if (inode->i_flags & (S_IMMUTABLE|S_APPEND))
629 if (!(filp->f_mode & FMODE_WRITE))
632 if (!S_ISREG(inode->i_mode))
635 if (filp->f_flags & O_DSYNC)
636 flags |= XFS_PREALLOC_SYNC;
637 if (ioflags & XFS_IO_INVIS)
638 flags |= XFS_PREALLOC_INVISIBLE;
640 error = mnt_want_write_file(filp);
644 xfs_ilock(ip, iolock);
645 error = xfs_break_layouts(inode, &iolock, false);
649 xfs_ilock(ip, XFS_MMAPLOCK_EXCL);
650 iolock |= XFS_MMAPLOCK_EXCL;
652 switch (bf->l_whence) {
656 bf->l_start += filp->f_pos;
659 bf->l_start += XFS_ISIZE(ip);
667 * length of <= 0 for resv/unresv/zero is invalid. length for
668 * alloc/free is ignored completely and we have no idea what userspace
669 * might have set it to, so set it to zero to allow range
673 case XFS_IOC_ZERO_RANGE:
675 case XFS_IOC_RESVSP64:
676 case XFS_IOC_UNRESVSP:
677 case XFS_IOC_UNRESVSP64:
678 if (bf->l_len <= 0) {
688 if (bf->l_start < 0 ||
689 bf->l_start > inode->i_sb->s_maxbytes ||
690 bf->l_start + bf->l_len < 0 ||
691 bf->l_start + bf->l_len >= inode->i_sb->s_maxbytes) {
697 case XFS_IOC_ZERO_RANGE:
698 flags |= XFS_PREALLOC_SET;
699 error = xfs_zero_file_space(ip, bf->l_start, bf->l_len);
702 case XFS_IOC_RESVSP64:
703 flags |= XFS_PREALLOC_SET;
704 error = xfs_alloc_file_space(ip, bf->l_start, bf->l_len,
707 case XFS_IOC_UNRESVSP:
708 case XFS_IOC_UNRESVSP64:
709 error = xfs_free_file_space(ip, bf->l_start, bf->l_len);
711 case XFS_IOC_ALLOCSP:
712 case XFS_IOC_ALLOCSP64:
714 case XFS_IOC_FREESP64:
715 flags |= XFS_PREALLOC_CLEAR;
716 if (bf->l_start > XFS_ISIZE(ip)) {
717 error = xfs_alloc_file_space(ip, XFS_ISIZE(ip),
718 bf->l_start - XFS_ISIZE(ip), 0);
723 iattr.ia_valid = ATTR_SIZE;
724 iattr.ia_size = bf->l_start;
726 error = xfs_setattr_size(ip, &iattr);
736 error = xfs_update_prealloc_flags(ip, flags);
739 xfs_iunlock(ip, iolock);
740 mnt_drop_write_file(filp);
750 xfs_fsop_bulkreq_t bulkreq;
751 int count; /* # of records returned */
752 xfs_ino_t inlast; /* last inode number */
756 /* done = 1 if there are more stats to get and if bulkstat */
757 /* should be called again (unused here, but used in dmapi) */
759 if (!capable(CAP_SYS_ADMIN))
762 if (XFS_FORCED_SHUTDOWN(mp))
765 if (copy_from_user(&bulkreq, arg, sizeof(xfs_fsop_bulkreq_t)))
768 if (copy_from_user(&inlast, bulkreq.lastip, sizeof(__s64)))
771 if ((count = bulkreq.icount) <= 0)
774 if (bulkreq.ubuffer == NULL)
777 if (cmd == XFS_IOC_FSINUMBERS)
778 error = xfs_inumbers(mp, &inlast, &count,
779 bulkreq.ubuffer, xfs_inumbers_fmt);
780 else if (cmd == XFS_IOC_FSBULKSTAT_SINGLE)
781 error = xfs_bulkstat_one(mp, inlast, bulkreq.ubuffer,
782 sizeof(xfs_bstat_t), NULL, &done);
783 else /* XFS_IOC_FSBULKSTAT */
784 error = xfs_bulkstat(mp, &inlast, &count, xfs_bulkstat_one,
785 sizeof(xfs_bstat_t), bulkreq.ubuffer,
791 if (bulkreq.ocount != NULL) {
792 if (copy_to_user(bulkreq.lastip, &inlast,
796 if (copy_to_user(bulkreq.ocount, &count, sizeof(count)))
804 xfs_ioc_fsgeometry_v1(
808 xfs_fsop_geom_t fsgeo;
811 error = xfs_fs_geometry(mp, &fsgeo, 3);
816 * Caller should have passed an argument of type
817 * xfs_fsop_geom_v1_t. This is a proper subset of the
818 * xfs_fsop_geom_t that xfs_fs_geometry() fills in.
820 if (copy_to_user(arg, &fsgeo, sizeof(xfs_fsop_geom_v1_t)))
830 xfs_fsop_geom_t fsgeo;
833 error = xfs_fs_geometry(mp, &fsgeo, 4);
837 if (copy_to_user(arg, &fsgeo, sizeof(fsgeo)))
843 * Linux extended inode flags interface.
847 xfs_merge_ioc_xflags(
851 unsigned int xflags = start;
853 if (flags & FS_IMMUTABLE_FL)
854 xflags |= XFS_XFLAG_IMMUTABLE;
856 xflags &= ~XFS_XFLAG_IMMUTABLE;
857 if (flags & FS_APPEND_FL)
858 xflags |= XFS_XFLAG_APPEND;
860 xflags &= ~XFS_XFLAG_APPEND;
861 if (flags & FS_SYNC_FL)
862 xflags |= XFS_XFLAG_SYNC;
864 xflags &= ~XFS_XFLAG_SYNC;
865 if (flags & FS_NOATIME_FL)
866 xflags |= XFS_XFLAG_NOATIME;
868 xflags &= ~XFS_XFLAG_NOATIME;
869 if (flags & FS_NODUMP_FL)
870 xflags |= XFS_XFLAG_NODUMP;
872 xflags &= ~XFS_XFLAG_NODUMP;
881 unsigned int flags = 0;
883 if (di_flags & XFS_DIFLAG_IMMUTABLE)
884 flags |= FS_IMMUTABLE_FL;
885 if (di_flags & XFS_DIFLAG_APPEND)
886 flags |= FS_APPEND_FL;
887 if (di_flags & XFS_DIFLAG_SYNC)
889 if (di_flags & XFS_DIFLAG_NOATIME)
890 flags |= FS_NOATIME_FL;
891 if (di_flags & XFS_DIFLAG_NODUMP)
892 flags |= FS_NODUMP_FL;
904 memset(&fa, 0, sizeof(struct fsxattr));
906 xfs_ilock(ip, XFS_ILOCK_SHARED);
907 fa.fsx_xflags = xfs_ip2xflags(ip);
908 fa.fsx_extsize = ip->i_d.di_extsize << ip->i_mount->m_sb.sb_blocklog;
909 fa.fsx_projid = xfs_get_projid(ip);
913 if (ip->i_afp->if_flags & XFS_IFEXTENTS)
914 fa.fsx_nextents = ip->i_afp->if_bytes /
915 sizeof(xfs_bmbt_rec_t);
917 fa.fsx_nextents = ip->i_d.di_anextents;
921 if (ip->i_df.if_flags & XFS_IFEXTENTS)
922 fa.fsx_nextents = ip->i_df.if_bytes /
923 sizeof(xfs_bmbt_rec_t);
925 fa.fsx_nextents = ip->i_d.di_nextents;
927 xfs_iunlock(ip, XFS_ILOCK_SHARED);
929 if (copy_to_user(arg, &fa, sizeof(fa)))
936 struct xfs_inode *ip,
939 unsigned int di_flags;
941 /* can't set PREALLOC this way, just preserve it */
942 di_flags = (ip->i_d.di_flags & XFS_DIFLAG_PREALLOC);
943 if (xflags & XFS_XFLAG_IMMUTABLE)
944 di_flags |= XFS_DIFLAG_IMMUTABLE;
945 if (xflags & XFS_XFLAG_APPEND)
946 di_flags |= XFS_DIFLAG_APPEND;
947 if (xflags & XFS_XFLAG_SYNC)
948 di_flags |= XFS_DIFLAG_SYNC;
949 if (xflags & XFS_XFLAG_NOATIME)
950 di_flags |= XFS_DIFLAG_NOATIME;
951 if (xflags & XFS_XFLAG_NODUMP)
952 di_flags |= XFS_DIFLAG_NODUMP;
953 if (xflags & XFS_XFLAG_NODEFRAG)
954 di_flags |= XFS_DIFLAG_NODEFRAG;
955 if (xflags & XFS_XFLAG_FILESTREAM)
956 di_flags |= XFS_DIFLAG_FILESTREAM;
957 if (S_ISDIR(ip->i_d.di_mode)) {
958 if (xflags & XFS_XFLAG_RTINHERIT)
959 di_flags |= XFS_DIFLAG_RTINHERIT;
960 if (xflags & XFS_XFLAG_NOSYMLINKS)
961 di_flags |= XFS_DIFLAG_NOSYMLINKS;
962 if (xflags & XFS_XFLAG_EXTSZINHERIT)
963 di_flags |= XFS_DIFLAG_EXTSZINHERIT;
964 if (xflags & XFS_XFLAG_PROJINHERIT)
965 di_flags |= XFS_DIFLAG_PROJINHERIT;
966 } else if (S_ISREG(ip->i_d.di_mode)) {
967 if (xflags & XFS_XFLAG_REALTIME)
968 di_flags |= XFS_DIFLAG_REALTIME;
969 if (xflags & XFS_XFLAG_EXTSIZE)
970 di_flags |= XFS_DIFLAG_EXTSIZE;
973 ip->i_d.di_flags = di_flags;
977 xfs_diflags_to_linux(
978 struct xfs_inode *ip)
980 struct inode *inode = VFS_I(ip);
981 unsigned int xflags = xfs_ip2xflags(ip);
983 if (xflags & XFS_XFLAG_IMMUTABLE)
984 inode->i_flags |= S_IMMUTABLE;
986 inode->i_flags &= ~S_IMMUTABLE;
987 if (xflags & XFS_XFLAG_APPEND)
988 inode->i_flags |= S_APPEND;
990 inode->i_flags &= ~S_APPEND;
991 if (xflags & XFS_XFLAG_SYNC)
992 inode->i_flags |= S_SYNC;
994 inode->i_flags &= ~S_SYNC;
995 if (xflags & XFS_XFLAG_NOATIME)
996 inode->i_flags |= S_NOATIME;
998 inode->i_flags &= ~S_NOATIME;
1002 xfs_ioctl_setattr_xflags(
1003 struct xfs_trans *tp,
1004 struct xfs_inode *ip,
1007 struct xfs_mount *mp = ip->i_mount;
1009 /* Can't change realtime flag if any extents are allocated. */
1010 if ((ip->i_d.di_nextents || ip->i_delayed_blks) &&
1011 XFS_IS_REALTIME_INODE(ip) != (fa->fsx_xflags & XFS_XFLAG_REALTIME))
1014 /* If realtime flag is set then must have realtime device */
1015 if (fa->fsx_xflags & XFS_XFLAG_REALTIME) {
1016 if (mp->m_sb.sb_rblocks == 0 || mp->m_sb.sb_rextsize == 0 ||
1017 (ip->i_d.di_extsize % mp->m_sb.sb_rextsize))
1022 * Can't modify an immutable/append-only file unless
1023 * we have appropriate permission.
1025 if (((ip->i_d.di_flags & (XFS_DIFLAG_IMMUTABLE | XFS_DIFLAG_APPEND)) ||
1026 (fa->fsx_xflags & (XFS_XFLAG_IMMUTABLE | XFS_XFLAG_APPEND))) &&
1027 !capable(CAP_LINUX_IMMUTABLE))
1030 xfs_set_diflags(ip, fa->fsx_xflags);
1031 xfs_diflags_to_linux(ip);
1032 xfs_trans_ichgtime(tp, ip, XFS_ICHGTIME_CHG);
1033 xfs_trans_log_inode(tp, ip, XFS_ILOG_CORE);
1034 XFS_STATS_INC(xs_ig_attrchg);
1039 * Set up the transaction structure for the setattr operation, checking that we
1040 * have permission to do so. On success, return a clean transaction and the
1041 * inode locked exclusively ready for further operation specific checks. On
1042 * failure, return an error without modifying or locking the inode.
1044 static struct xfs_trans *
1045 xfs_ioctl_setattr_get_trans(
1046 struct xfs_inode *ip)
1048 struct xfs_mount *mp = ip->i_mount;
1049 struct xfs_trans *tp;
1052 if (mp->m_flags & XFS_MOUNT_RDONLY)
1053 return ERR_PTR(-EROFS);
1054 if (XFS_FORCED_SHUTDOWN(mp))
1055 return ERR_PTR(-EIO);
1057 tp = xfs_trans_alloc(mp, XFS_TRANS_SETATTR_NOT_SIZE);
1058 error = xfs_trans_reserve(tp, &M_RES(mp)->tr_ichange, 0, 0);
1062 xfs_ilock(ip, XFS_ILOCK_EXCL);
1063 xfs_trans_ijoin(tp, ip, XFS_ILOCK_EXCL);
1066 * CAP_FOWNER overrides the following restrictions:
1068 * The user ID of the calling process must be equal to the file owner
1069 * ID, except in cases where the CAP_FSETID capability is applicable.
1071 if (!inode_owner_or_capable(VFS_I(ip))) {
1076 if (mp->m_flags & XFS_MOUNT_WSYNC)
1077 xfs_trans_set_sync(tp);
1082 xfs_trans_cancel(tp);
1083 return ERR_PTR(error);
1087 * extent size hint validation is somewhat cumbersome. Rules are:
1089 * 1. extent size hint is only valid for directories and regular files
1090 * 2. XFS_XFLAG_EXTSIZE is only valid for regular files
1091 * 3. XFS_XFLAG_EXTSZINHERIT is only valid for directories.
1092 * 4. can only be changed on regular files if no extents are allocated
1093 * 5. can be changed on directories at any time
1094 * 6. extsize hint of 0 turns off hints, clears inode flags.
1095 * 7. Extent size must be a multiple of the appropriate block size.
1096 * 8. for non-realtime files, the extent size hint must be limited
1097 * to half the AG size to avoid alignment extending the extent beyond the
1101 xfs_ioctl_setattr_check_extsize(
1102 struct xfs_inode *ip,
1105 struct xfs_mount *mp = ip->i_mount;
1107 if ((fa->fsx_xflags & XFS_XFLAG_EXTSIZE) && !S_ISREG(ip->i_d.di_mode))
1110 if ((fa->fsx_xflags & XFS_XFLAG_EXTSZINHERIT) &&
1111 !S_ISDIR(ip->i_d.di_mode))
1114 if (S_ISREG(ip->i_d.di_mode) && ip->i_d.di_nextents &&
1115 ((ip->i_d.di_extsize << mp->m_sb.sb_blocklog) != fa->fsx_extsize))
1118 if (fa->fsx_extsize != 0) {
1120 xfs_fsblock_t extsize_fsb;
1122 extsize_fsb = XFS_B_TO_FSB(mp, fa->fsx_extsize);
1123 if (extsize_fsb > MAXEXTLEN)
1126 if (XFS_IS_REALTIME_INODE(ip) ||
1127 (fa->fsx_xflags & XFS_XFLAG_REALTIME)) {
1128 size = mp->m_sb.sb_rextsize << mp->m_sb.sb_blocklog;
1130 size = mp->m_sb.sb_blocksize;
1131 if (extsize_fsb > mp->m_sb.sb_agblocks / 2)
1135 if (fa->fsx_extsize % size)
1138 fa->fsx_xflags &= ~(XFS_XFLAG_EXTSIZE | XFS_XFLAG_EXTSZINHERIT);
1144 xfs_ioctl_setattr_check_projid(
1145 struct xfs_inode *ip,
1148 /* Disallow 32bit project ids if projid32bit feature is not enabled. */
1149 if (fa->fsx_projid > (__uint16_t)-1 &&
1150 !xfs_sb_version_hasprojid32bit(&ip->i_mount->m_sb))
1154 * Project Quota ID state is only allowed to change from within the init
1155 * namespace. Enforce that restriction only if we are trying to change
1156 * the quota ID state. Everything else is allowed in user namespaces.
1158 if (current_user_ns() == &init_user_ns)
1161 if (xfs_get_projid(ip) != fa->fsx_projid)
1163 if ((fa->fsx_xflags & XFS_XFLAG_PROJINHERIT) !=
1164 (ip->i_d.di_flags & XFS_DIFLAG_PROJINHERIT))
1175 struct xfs_mount *mp = ip->i_mount;
1176 struct xfs_trans *tp;
1177 struct xfs_dquot *udqp = NULL;
1178 struct xfs_dquot *pdqp = NULL;
1179 struct xfs_dquot *olddquot = NULL;
1182 trace_xfs_ioctl_setattr(ip);
1184 code = xfs_ioctl_setattr_check_projid(ip, fa);
1189 * If disk quotas is on, we make sure that the dquots do exist on disk,
1190 * before we start any other transactions. Trying to do this later
1191 * is messy. We don't care to take a readlock to look at the ids
1192 * in inode here, because we can't hold it across the trans_reserve.
1193 * If the IDs do change before we take the ilock, we're covered
1194 * because the i_*dquot fields will get updated anyway.
1196 if (XFS_IS_QUOTA_ON(mp)) {
1197 code = xfs_qm_vop_dqalloc(ip, ip->i_d.di_uid,
1198 ip->i_d.di_gid, fa->fsx_projid,
1199 XFS_QMOPT_PQUOTA, &udqp, NULL, &pdqp);
1204 tp = xfs_ioctl_setattr_get_trans(ip);
1207 goto error_free_dquots;
1211 if (XFS_IS_QUOTA_RUNNING(mp) && XFS_IS_PQUOTA_ON(mp) &&
1212 xfs_get_projid(ip) != fa->fsx_projid) {
1213 code = xfs_qm_vop_chown_reserve(tp, ip, udqp, NULL, pdqp,
1214 capable(CAP_FOWNER) ? XFS_QMOPT_FORCE_RES : 0);
1215 if (code) /* out of quota */
1216 goto error_trans_cancel;
1219 code = xfs_ioctl_setattr_check_extsize(ip, fa);
1221 goto error_trans_cancel;
1223 code = xfs_ioctl_setattr_xflags(tp, ip, fa);
1225 goto error_trans_cancel;
1228 * Change file ownership. Must be the owner or privileged. CAP_FSETID
1229 * overrides the following restrictions:
1231 * The set-user-ID and set-group-ID bits of a file will be cleared upon
1232 * successful return from chown()
1235 if ((ip->i_d.di_mode & (S_ISUID|S_ISGID)) &&
1236 !capable_wrt_inode_uidgid(VFS_I(ip), CAP_FSETID))
1237 ip->i_d.di_mode &= ~(S_ISUID|S_ISGID);
1239 /* Change the ownerships and register project quota modifications */
1240 if (xfs_get_projid(ip) != fa->fsx_projid) {
1241 if (XFS_IS_QUOTA_RUNNING(mp) && XFS_IS_PQUOTA_ON(mp)) {
1242 olddquot = xfs_qm_vop_chown(tp, ip,
1243 &ip->i_pdquot, pdqp);
1245 ASSERT(ip->i_d.di_version > 1);
1246 xfs_set_projid(ip, fa->fsx_projid);
1250 * Only set the extent size hint if we've already determined that the
1251 * extent size hint should be set on the inode. If no extent size flags
1252 * are set on the inode then unconditionally clear the extent size hint.
1254 if (ip->i_d.di_flags & (XFS_DIFLAG_EXTSIZE | XFS_DIFLAG_EXTSZINHERIT))
1255 ip->i_d.di_extsize = fa->fsx_extsize >> mp->m_sb.sb_blocklog;
1257 ip->i_d.di_extsize = 0;
1259 code = xfs_trans_commit(tp);
1262 * Release any dquot(s) the inode had kept before chown.
1264 xfs_qm_dqrele(olddquot);
1265 xfs_qm_dqrele(udqp);
1266 xfs_qm_dqrele(pdqp);
1271 xfs_trans_cancel(tp);
1273 xfs_qm_dqrele(udqp);
1274 xfs_qm_dqrele(pdqp);
1287 if (copy_from_user(&fa, arg, sizeof(fa)))
1290 error = mnt_want_write_file(filp);
1293 error = xfs_ioctl_setattr(ip, &fa);
1294 mnt_drop_write_file(filp);
1305 flags = xfs_di2lxflags(ip->i_d.di_flags);
1306 if (copy_to_user(arg, &flags, sizeof(flags)))
1313 struct xfs_inode *ip,
1317 struct xfs_trans *tp;
1322 if (copy_from_user(&flags, arg, sizeof(flags)))
1325 if (flags & ~(FS_IMMUTABLE_FL | FS_APPEND_FL | \
1326 FS_NOATIME_FL | FS_NODUMP_FL | \
1330 fa.fsx_xflags = xfs_merge_ioc_xflags(flags, xfs_ip2xflags(ip));
1332 error = mnt_want_write_file(filp);
1336 tp = xfs_ioctl_setattr_get_trans(ip);
1338 error = PTR_ERR(tp);
1339 goto out_drop_write;
1342 error = xfs_ioctl_setattr_xflags(tp, ip, &fa);
1344 xfs_trans_cancel(tp);
1345 goto out_drop_write;
1348 error = xfs_trans_commit(tp);
1350 mnt_drop_write_file(filp);
1355 xfs_getbmap_format(void **ap, struct getbmapx *bmv, int *full)
1357 struct getbmap __user *base = (struct getbmap __user *)*ap;
1359 /* copy only getbmap portion (not getbmapx) */
1360 if (copy_to_user(base, bmv, sizeof(struct getbmap)))
1363 *ap += sizeof(struct getbmap);
1369 struct xfs_inode *ip,
1374 struct getbmapx bmx;
1377 if (copy_from_user(&bmx, arg, sizeof(struct getbmapx)))
1380 if (bmx.bmv_count < 2)
1383 bmx.bmv_iflags = (cmd == XFS_IOC_GETBMAPA ? BMV_IF_ATTRFORK : 0);
1384 if (ioflags & XFS_IO_INVIS)
1385 bmx.bmv_iflags |= BMV_IF_NO_DMAPI_READ;
1387 error = xfs_getbmap(ip, &bmx, xfs_getbmap_format,
1388 (__force struct getbmap *)arg+1);
1392 /* copy back header - only size of getbmap */
1393 if (copy_to_user(arg, &bmx, sizeof(struct getbmap)))
1399 xfs_getbmapx_format(void **ap, struct getbmapx *bmv, int *full)
1401 struct getbmapx __user *base = (struct getbmapx __user *)*ap;
1403 if (copy_to_user(base, bmv, sizeof(struct getbmapx)))
1406 *ap += sizeof(struct getbmapx);
1412 struct xfs_inode *ip,
1415 struct getbmapx bmx;
1418 if (copy_from_user(&bmx, arg, sizeof(bmx)))
1421 if (bmx.bmv_count < 2)
1424 if (bmx.bmv_iflags & (~BMV_IF_VALID))
1427 error = xfs_getbmap(ip, &bmx, xfs_getbmapx_format,
1428 (__force struct getbmapx *)arg+1);
1432 /* copy back header */
1433 if (copy_to_user(arg, &bmx, sizeof(struct getbmapx)))
1443 xfs_inode_t *ip, *tip;
1447 /* Pull information for the target fd */
1448 f = fdget((int)sxp->sx_fdtarget);
1454 if (!(f.file->f_mode & FMODE_WRITE) ||
1455 !(f.file->f_mode & FMODE_READ) ||
1456 (f.file->f_flags & O_APPEND)) {
1461 tmp = fdget((int)sxp->sx_fdtmp);
1467 if (!(tmp.file->f_mode & FMODE_WRITE) ||
1468 !(tmp.file->f_mode & FMODE_READ) ||
1469 (tmp.file->f_flags & O_APPEND)) {
1471 goto out_put_tmp_file;
1474 if (IS_SWAPFILE(file_inode(f.file)) ||
1475 IS_SWAPFILE(file_inode(tmp.file))) {
1477 goto out_put_tmp_file;
1480 ip = XFS_I(file_inode(f.file));
1481 tip = XFS_I(file_inode(tmp.file));
1483 if (ip->i_mount != tip->i_mount) {
1485 goto out_put_tmp_file;
1488 if (ip->i_ino == tip->i_ino) {
1490 goto out_put_tmp_file;
1493 if (XFS_FORCED_SHUTDOWN(ip->i_mount)) {
1495 goto out_put_tmp_file;
1498 error = xfs_swap_extents(ip, tip, sxp);
1509 * Note: some of the ioctl's return positive numbers as a
1510 * byte count indicating success, such as readlink_by_handle.
1511 * So we don't "sign flip" like most other routines. This means
1512 * true errors need to be returned as a negative value.
1520 struct inode *inode = file_inode(filp);
1521 struct xfs_inode *ip = XFS_I(inode);
1522 struct xfs_mount *mp = ip->i_mount;
1523 void __user *arg = (void __user *)p;
1527 if (filp->f_mode & FMODE_NOCMTIME)
1528 ioflags |= XFS_IO_INVIS;
1530 trace_xfs_file_ioctl(ip);
1534 return xfs_ioc_trim(mp, arg);
1535 case XFS_IOC_ALLOCSP:
1536 case XFS_IOC_FREESP:
1537 case XFS_IOC_RESVSP:
1538 case XFS_IOC_UNRESVSP:
1539 case XFS_IOC_ALLOCSP64:
1540 case XFS_IOC_FREESP64:
1541 case XFS_IOC_RESVSP64:
1542 case XFS_IOC_UNRESVSP64:
1543 case XFS_IOC_ZERO_RANGE: {
1546 if (copy_from_user(&bf, arg, sizeof(bf)))
1548 return xfs_ioc_space(ip, inode, filp, ioflags, cmd, &bf);
1550 case XFS_IOC_DIOINFO: {
1552 xfs_buftarg_t *target =
1553 XFS_IS_REALTIME_INODE(ip) ?
1554 mp->m_rtdev_targp : mp->m_ddev_targp;
1556 da.d_mem = da.d_miniosz = target->bt_logical_sectorsize;
1557 da.d_maxiosz = INT_MAX & ~(da.d_miniosz - 1);
1559 if (copy_to_user(arg, &da, sizeof(da)))
1564 case XFS_IOC_FSBULKSTAT_SINGLE:
1565 case XFS_IOC_FSBULKSTAT:
1566 case XFS_IOC_FSINUMBERS:
1567 return xfs_ioc_bulkstat(mp, cmd, arg);
1569 case XFS_IOC_FSGEOMETRY_V1:
1570 return xfs_ioc_fsgeometry_v1(mp, arg);
1572 case XFS_IOC_FSGEOMETRY:
1573 return xfs_ioc_fsgeometry(mp, arg);
1575 case XFS_IOC_GETVERSION:
1576 return put_user(inode->i_generation, (int __user *)arg);
1578 case XFS_IOC_FSGETXATTR:
1579 return xfs_ioc_fsgetxattr(ip, 0, arg);
1580 case XFS_IOC_FSGETXATTRA:
1581 return xfs_ioc_fsgetxattr(ip, 1, arg);
1582 case XFS_IOC_FSSETXATTR:
1583 return xfs_ioc_fssetxattr(ip, filp, arg);
1584 case XFS_IOC_GETXFLAGS:
1585 return xfs_ioc_getxflags(ip, arg);
1586 case XFS_IOC_SETXFLAGS:
1587 return xfs_ioc_setxflags(ip, filp, arg);
1589 case XFS_IOC_FSSETDM: {
1590 struct fsdmidata dmi;
1592 if (copy_from_user(&dmi, arg, sizeof(dmi)))
1595 error = mnt_want_write_file(filp);
1599 error = xfs_set_dmattrs(ip, dmi.fsd_dmevmask,
1601 mnt_drop_write_file(filp);
1605 case XFS_IOC_GETBMAP:
1606 case XFS_IOC_GETBMAPA:
1607 return xfs_ioc_getbmap(ip, ioflags, cmd, arg);
1609 case XFS_IOC_GETBMAPX:
1610 return xfs_ioc_getbmapx(ip, arg);
1612 case XFS_IOC_FD_TO_HANDLE:
1613 case XFS_IOC_PATH_TO_HANDLE:
1614 case XFS_IOC_PATH_TO_FSHANDLE: {
1615 xfs_fsop_handlereq_t hreq;
1617 if (copy_from_user(&hreq, arg, sizeof(hreq)))
1619 return xfs_find_handle(cmd, &hreq);
1621 case XFS_IOC_OPEN_BY_HANDLE: {
1622 xfs_fsop_handlereq_t hreq;
1624 if (copy_from_user(&hreq, arg, sizeof(xfs_fsop_handlereq_t)))
1626 return xfs_open_by_handle(filp, &hreq);
1628 case XFS_IOC_FSSETDM_BY_HANDLE:
1629 return xfs_fssetdm_by_handle(filp, arg);
1631 case XFS_IOC_READLINK_BY_HANDLE: {
1632 xfs_fsop_handlereq_t hreq;
1634 if (copy_from_user(&hreq, arg, sizeof(xfs_fsop_handlereq_t)))
1636 return xfs_readlink_by_handle(filp, &hreq);
1638 case XFS_IOC_ATTRLIST_BY_HANDLE:
1639 return xfs_attrlist_by_handle(filp, arg);
1641 case XFS_IOC_ATTRMULTI_BY_HANDLE:
1642 return xfs_attrmulti_by_handle(filp, arg);
1644 case XFS_IOC_SWAPEXT: {
1645 struct xfs_swapext sxp;
1647 if (copy_from_user(&sxp, arg, sizeof(xfs_swapext_t)))
1649 error = mnt_want_write_file(filp);
1652 error = xfs_ioc_swapext(&sxp);
1653 mnt_drop_write_file(filp);
1657 case XFS_IOC_FSCOUNTS: {
1658 xfs_fsop_counts_t out;
1660 error = xfs_fs_counts(mp, &out);
1664 if (copy_to_user(arg, &out, sizeof(out)))
1669 case XFS_IOC_SET_RESBLKS: {
1670 xfs_fsop_resblks_t inout;
1673 if (!capable(CAP_SYS_ADMIN))
1676 if (mp->m_flags & XFS_MOUNT_RDONLY)
1679 if (copy_from_user(&inout, arg, sizeof(inout)))
1682 error = mnt_want_write_file(filp);
1686 /* input parameter is passed in resblks field of structure */
1688 error = xfs_reserve_blocks(mp, &in, &inout);
1689 mnt_drop_write_file(filp);
1693 if (copy_to_user(arg, &inout, sizeof(inout)))
1698 case XFS_IOC_GET_RESBLKS: {
1699 xfs_fsop_resblks_t out;
1701 if (!capable(CAP_SYS_ADMIN))
1704 error = xfs_reserve_blocks(mp, NULL, &out);
1708 if (copy_to_user(arg, &out, sizeof(out)))
1714 case XFS_IOC_FSGROWFSDATA: {
1715 xfs_growfs_data_t in;
1717 if (copy_from_user(&in, arg, sizeof(in)))
1720 error = mnt_want_write_file(filp);
1723 error = xfs_growfs_data(mp, &in);
1724 mnt_drop_write_file(filp);
1728 case XFS_IOC_FSGROWFSLOG: {
1729 xfs_growfs_log_t in;
1731 if (copy_from_user(&in, arg, sizeof(in)))
1734 error = mnt_want_write_file(filp);
1737 error = xfs_growfs_log(mp, &in);
1738 mnt_drop_write_file(filp);
1742 case XFS_IOC_FSGROWFSRT: {
1745 if (copy_from_user(&in, arg, sizeof(in)))
1748 error = mnt_want_write_file(filp);
1751 error = xfs_growfs_rt(mp, &in);
1752 mnt_drop_write_file(filp);
1756 case XFS_IOC_GOINGDOWN: {
1759 if (!capable(CAP_SYS_ADMIN))
1762 if (get_user(in, (__uint32_t __user *)arg))
1765 return xfs_fs_goingdown(mp, in);
1768 case XFS_IOC_ERROR_INJECTION: {
1769 xfs_error_injection_t in;
1771 if (!capable(CAP_SYS_ADMIN))
1774 if (copy_from_user(&in, arg, sizeof(in)))
1777 return xfs_errortag_add(in.errtag, mp);
1780 case XFS_IOC_ERROR_CLEARALL:
1781 if (!capable(CAP_SYS_ADMIN))
1784 return xfs_errortag_clearall(mp, 1);
1786 case XFS_IOC_FREE_EOFBLOCKS: {
1787 struct xfs_fs_eofblocks eofb;
1788 struct xfs_eofblocks keofb;
1790 if (!capable(CAP_SYS_ADMIN))
1793 if (mp->m_flags & XFS_MOUNT_RDONLY)
1796 if (copy_from_user(&eofb, arg, sizeof(eofb)))
1799 error = xfs_fs_eofblocks_from_user(&eofb, &keofb);
1803 return xfs_icache_free_eofblocks(mp, &keofb);