ufs/ffs/ufs_lookup.c

23401Smckusick/*
63376Sbostic * Copyright (c) 1989, 1993
63376Sbostic *	The Regents of the University of California.  All rights reserved.
65774Sbostic * (c) UNIX System Laboratories, Inc.
65774Sbostic * All or some portions of this file are derived from material licensed
65774Sbostic * to the University of California by American Telephone and Telegraph
65774Sbostic * Co. or Unix System Laboratories, Inc. and are reproduced herein with
65774Sbostic * the permission of UNIX System Laboratories, Inc.
23401Smckusick *
44538Sbostic * %sccs.include.redist.c%
37739Smckusick *
*67266Smckusick *	@(#)ufs_lookup.c	8.7 (Berkeley) 05/29/94
23401Smckusick */
30Sbill
51511Sbostic#include <sys/param.h>
51511Sbostic#include <sys/namei.h>
51511Sbostic#include <sys/buf.h>
51511Sbostic#include <sys/file.h>
51511Sbostic#include <sys/mount.h>
51511Sbostic#include <sys/vnode.h>
30Sbill
51511Sbostic#include <ufs/ufs/quota.h>
51511Sbostic#include <ufs/ufs/inode.h>
51511Sbostic#include <ufs/ufs/dir.h>
51511Sbostic#include <ufs/ufs/ufsmount.h>
51511Sbostic#include <ufs/ufs/ufs_extern.h>
47571Skarels
37739Smckusickstruct	nchstats nchstats;
48068Smckusick#ifdef DIAGNOSTIC
37582Smarcint	dirchk = 1;
48068Smckusick#else
48068Smckusickint	dirchk = 0;
48068Smckusick#endif
15798Smckusick
54607Smckusick#define FSFMT(vp)	((vp)->v_mount->mnt_maxsymlinklen <= 0)
54607Smckusick
30Sbill/*
37739Smckusick * Convert a component of a pathname into a pointer to a locked inode.
7534Sroot * This is a very central and rather complicated routine.
27268Smckusick * If the file system is not maintained in a strict tree hierarchy,
27268Smckusick * this can result in a deadlock situation (see comments in code below).
30Sbill *
53061Smckusick * The cnp->cn_nameiop argument is LOOKUP, CREATE, RENAME, or DELETE depending
53061Smckusick * on whether the name is to be looked up, created, renamed, or deleted.
37739Smckusick * When CREATE, RENAME, or DELETE is specified, information usable in
37739Smckusick * creating, renaming, or deleting a directory entry may be calculated.
37739Smckusick * If flag has LOCKPARENT or'ed into it and the target of the pathname
37739Smckusick * exists, lookup returns both the target and its parent directory locked.
37739Smckusick * When creating or renaming and LOCKPARENT is specified, the target may
37739Smckusick * not be ".".  When deleting and LOCKPARENT is specified, the target may
56803Smckusick * be "."., but the caller must check to ensure it does an vrele and vput
56803Smckusick * instead of two vputs.
9166Ssam *
37739Smckusick * Overall outline of ufs_lookup:
9166Ssam *
7534Sroot *	check accessibility of directory
15798Smckusick *	look for name in cache, if found, then if at end of path
37739Smckusick *	  and deleting or creating, drop it, else return name
7534Sroot *	search for name in directory, to found or notfound
7534Sroot * notfound:
37739Smckusick *	if creating, return locked directory, leaving info on available slots
7534Sroot *	else return error
7534Sroot * found:
7534Sroot *	if at end of path and deleting, return information to allow delete
37739Smckusick *	if at end of path and rewriting (RENAME and LOCKPARENT), lock target
9166Ssam *	  inode and return info to allow rewrite
27268Smckusick *	if not at end, add name to cache; if at end and neither creating
27268Smckusick *	  nor deleting, add name to cache
30Sbill */
51511Sbosticint
54649Smckusickufs_lookup(ap)
54453Smckusick	struct vop_lookup_args /* {
54529Smckusick		struct vnode *a_dvp;
54529Smckusick		struct vnode **a_vpp;
54529Smckusick		struct componentname *a_cnp;
54453Smckusick	} */ *ap;
30Sbill{
54529Smckusick	register struct vnode *vdp;	/* vnode for directory being searched */
54529Smckusick	register struct inode *dp;	/* inode for directory being searched */
51511Sbostic	struct buf *bp;			/* a buffer of directory entries */
7534Sroot	register struct direct *ep;	/* the current directory entry */
7534Sroot	int entryoffsetinblock;		/* offset of ep in bp's buffer */
7534Sroot	enum {NONE, COMPACT, FOUND} slotstatus;
53061Smckusick	doff_t slotoffset;		/* offset of area with free space */
7534Sroot	int slotsize;			/* size of area at slotoffset */
7534Sroot	int slotfreespace;		/* amount of space free in slot */
7534Sroot	int slotneeded;			/* size of the entry we're seeking */
15660Smckusick	int numdirpasses;		/* strategy for directory search */
53061Smckusick	doff_t endsearch;		/* offset to end directory search */
53061Smckusick	doff_t prevoff;			/* prev entry dp->i_offset */
56803Smckusick	struct vnode *pdp;		/* saved dp during symlink work */
54649Smckusick	struct vnode *tdp;		/* returned by VFS_VGET */
53061Smckusick	doff_t enduseful;		/* pointer past last used dir slot */
51511Sbostic	u_long bmask;			/* block offset mask */
37739Smckusick	int lockparent;			/* 1 => lockparent flag is set */
37739Smckusick	int wantparent;			/* 1 => wantparent or lockparent flag */
54607Smckusick	int namlen, error;
54529Smckusick	struct vnode **vpp = ap->a_vpp;
54529Smckusick	struct componentname *cnp = ap->a_cnp;
54529Smckusick	struct ucred *cred = cnp->cn_cred;
54529Smckusick	int flags = cnp->cn_flags;
54529Smckusick	int nameiop = cnp->cn_nameiop;
30Sbill
51511Sbostic	bp = NULL;
51511Sbostic	slotoffset = -1;
54529Smckusick	*vpp = NULL;
54529Smckusick	vdp = ap->a_dvp;
54529Smckusick	dp = VTOI(vdp);
54529Smckusick	lockparent = flags & LOCKPARENT;
54529Smckusick	wantparent = flags & (LOCKPARENT|WANTPARENT);
7534Sroot
5972Swnj	/*
7534Sroot	 * Check accessiblity of directory.
30Sbill	 */
52337Smckusick	if ((dp->i_mode & IFMT) != IFDIR)
37739Smckusick		return (ENOTDIR);
54529Smckusick	if (error = VOP_ACCESS(vdp, VEXEC, cred, cnp->cn_proc))
37739Smckusick		return (error);
7534Sroot
7534Sroot	/*
15798Smckusick	 * We now have a segment name to search for, and a directory to search.
15798Smckusick	 *
15798Smckusick	 * Before tediously performing a linear scan of the directory,
15798Smckusick	 * check the name cache to see if the directory/name pair
37739Smckusick	 * we are looking for is known already.
15798Smckusick	 */
54529Smckusick	if (error = cache_lookup(vdp, vpp, cnp)) {
38770Smckusick		int vpid;	/* capability number of vnode */
38770Smckusick
38770Smckusick		if (error == ENOENT)
38770Smckusick			return (error);
37739Smckusick		/*
37739Smckusick		 * Get the next vnode in the path.
38770Smckusick		 * See comment below starting `Step through' for
37739Smckusick		 * an explaination of the locking protocol.
37739Smckusick		 */
56803Smckusick		pdp = vdp;
54529Smckusick		dp = VTOI(*vpp);
54529Smckusick		vdp = *vpp;
54529Smckusick		vpid = vdp->v_id;
56803Smckusick		if (pdp == vdp) {   /* lookup on "." */
54529Smckusick			VREF(vdp);
39434Smckusick			error = 0;
54529Smckusick		} else if (flags & ISDOTDOT) {
56803Smckusick			VOP_UNLOCK(pdp);
65232Smckusick			error = vget(vdp, 1);
54529Smckusick			if (!error && lockparent && (flags & ISLASTCN))
56803Smckusick				error = VOP_LOCK(pdp);
15798Smckusick		} else {
65232Smckusick			error = vget(vdp, 1);
54529Smckusick			if (!lockparent || error || !(flags & ISLASTCN))
56803Smckusick				VOP_UNLOCK(pdp);
15798Smckusick		}
38770Smckusick		/*
38770Smckusick		 * Check that the capability number did not change
38770Smckusick		 * while we were waiting for the lock.
38770Smckusick		 */
39434Smckusick		if (!error) {
54529Smckusick			if (vpid == vdp->v_id)
39434Smckusick				return (0);
56803Smckusick			vput(vdp);
56803Smckusick			if (lockparent && pdp != vdp && (flags & ISLASTCN))
56803Smckusick				VOP_UNLOCK(pdp);
39434Smckusick		}
56803Smckusick		if (error = VOP_LOCK(pdp))
56803Smckusick			return (error);
56803Smckusick		vdp = pdp;
56803Smckusick		dp = VTOI(pdp);
54529Smckusick		*vpp = NULL;
15798Smckusick	}
15798Smckusick
15798Smckusick	/*
7534Sroot	 * Suppress search for slots unless creating
7534Sroot	 * file and at end of pathname, in which case
7534Sroot	 * we watch for a place to put the new file in
7534Sroot	 * case it doesn't already exist.
6571Smckusic	 */
7534Sroot	slotstatus = FOUND;
52950Smckusick	slotfreespace = slotsize = slotneeded = 0;
54529Smckusick	if ((nameiop == CREATE || nameiop == RENAME) &&
54529Smckusick	    (flags & ISLASTCN)) {
7534Sroot		slotstatus = NONE;
53061Smckusick		slotneeded = (sizeof(struct direct) - MAXNAMLEN +
54529Smckusick			cnp->cn_namelen + 3) &~ 3;
7534Sroot	}
37739Smckusick
15660Smckusick	/*
37739Smckusick	 * If there is cached information on a previous search of
37739Smckusick	 * this directory, pick up where we last left off.
15798Smckusick	 * We cache only lookups as these are the most common
15660Smckusick	 * and have the greatest payoff. Caching CREATE has little
15660Smckusick	 * benefit as it usually must search the entire directory
15660Smckusick	 * to determine that the entry does not exist. Caching the
37739Smckusick	 * location of the last DELETE or RENAME has not reduced
37739Smckusick	 * profiling time and hence has been removed in the interest
37739Smckusick	 * of simplicity.
15660Smckusick	 */
54529Smckusick	bmask = VFSTOUFS(vdp->v_mount)->um_mountp->mnt_stat.f_iosize - 1;
54529Smckusick	if (nameiop != LOOKUP || dp->i_diroff == 0 ||
52337Smckusick	    dp->i_diroff > dp->i_size) {
53061Smckusick		entryoffsetinblock = 0;
53061Smckusick		dp->i_offset = 0;
15660Smckusick		numdirpasses = 1;
15660Smckusick	} else {
52337Smckusick		dp->i_offset = dp->i_diroff;
52337Smckusick		if ((entryoffsetinblock = dp->i_offset & bmask) &&
54529Smckusick		    (error = VOP_BLKATOFF(vdp, (off_t)dp->i_offset, NULL, &bp)))
51511Sbostic			return (error);
15660Smckusick		numdirpasses = 2;
15798Smckusick		nchstats.ncs_2passes++;
15660Smckusick	}
52950Smckusick	prevoff = dp->i_offset;
15660Smckusick	endsearch = roundup(dp->i_size, DIRBLKSIZ);
18027Smckusick	enduseful = 0;
7534Sroot
15660Smckusicksearchloop:
52337Smckusick	while (dp->i_offset < endsearch) {
5972Swnj		/*
59345Smckusick		 * If necessary, get the next directory block.
5972Swnj		 */
52337Smckusick		if ((dp->i_offset & bmask) == 0) {
5972Swnj			if (bp != NULL)
5972Swnj				brelse(bp);
53061Smckusick			if (error =
54529Smckusick			    VOP_BLKATOFF(vdp, (off_t)dp->i_offset, NULL, &bp))
37739Smckusick				return (error);
7534Sroot			entryoffsetinblock = 0;
5972Swnj		}
5972Swnj		/*
7534Sroot		 * If still looking for a slot, and at a DIRBLKSIZE
16657Smckusick		 * boundary, have to start looking for free space again.
6571Smckusic		 */
7534Sroot		if (slotstatus == NONE &&
37739Smckusick		    (entryoffsetinblock & (DIRBLKSIZ - 1)) == 0) {
7534Sroot			slotoffset = -1;
7534Sroot			slotfreespace = 0;
7534Sroot		}
7534Sroot		/*
16657Smckusick		 * Get pointer to next entry.
16657Smckusick		 * Full validation checks are slow, so we only check
16657Smckusick		 * enough to insure forward progress through the
16657Smckusick		 * directory. Complete checks can be run by patching
16657Smckusick		 * "dirchk" to be true.
7534Sroot		 */
64516Sbostic		ep = (struct direct *)((char *)bp->b_data + entryoffsetinblock);
26273Skarels		if (ep->d_reclen == 0 ||
54607Smckusick		    dirchk && ufs_dirbadentry(vdp, ep, entryoffsetinblock)) {
37739Smckusick			int i;
37739Smckusick
52337Smckusick			ufs_dirbad(dp, dp->i_offset, "mangled entry");
16657Smckusick			i = DIRBLKSIZ - (entryoffsetinblock & (DIRBLKSIZ - 1));
52337Smckusick			dp->i_offset += i;
7534Sroot			entryoffsetinblock += i;
6571Smckusic			continue;
6571Smckusic		}
7534Sroot
6571Smckusic		/*
7534Sroot		 * If an appropriate sized slot has not yet been found,
6571Smckusic		 * check to see if one is available. Also accumulate space
6571Smckusic		 * in the current block so that we can determine if
6571Smckusic		 * compaction is viable.
6571Smckusic		 */
7534Sroot		if (slotstatus != FOUND) {
7534Sroot			int size = ep->d_reclen;
7534Sroot
6571Smckusic			if (ep->d_ino != 0)
54607Smckusick				size -= DIRSIZ(FSFMT(vdp), ep);
6571Smckusic			if (size > 0) {
7534Sroot				if (size >= slotneeded) {
7534Sroot					slotstatus = FOUND;
52337Smckusick					slotoffset = dp->i_offset;
7534Sroot					slotsize = ep->d_reclen;
7534Sroot				} else if (slotstatus == NONE) {
7534Sroot					slotfreespace += size;
7534Sroot					if (slotoffset == -1)
52337Smckusick						slotoffset = dp->i_offset;
7534Sroot					if (slotfreespace >= slotneeded) {
7534Sroot						slotstatus = COMPACT;
52337Smckusick						slotsize = dp->i_offset +
16688Smckusick						      ep->d_reclen - slotoffset;
7534Sroot					}
6571Smckusic				}
6571Smckusic			}
6571Smckusic		}
7534Sroot
6571Smckusic		/*
7534Sroot		 * Check for a name match.
5972Swnj		 */
7534Sroot		if (ep->d_ino) {
54607Smckusick#			if (BYTE_ORDER == LITTLE_ENDIAN)
54607Smckusick				if (vdp->v_mount->mnt_maxsymlinklen > 0)
54607Smckusick					namlen = ep->d_namlen;
54607Smckusick				else
54607Smckusick					namlen = ep->d_type;
54607Smckusick#			else
54607Smckusick				namlen = ep->d_namlen;
54607Smckusick#			endif
54607Smckusick			if (namlen == cnp->cn_namelen &&
54529Smckusick			    !bcmp(cnp->cn_nameptr, ep->d_name,
54607Smckusick				(unsigned)namlen)) {
37739Smckusick				/*
37739Smckusick				 * Save directory entry's inode number and
49738Smckusick				 * reclen in ndp->ni_ufs area, and release
37739Smckusick				 * directory buffer.
37739Smckusick				 */
52337Smckusick				dp->i_ino = ep->d_ino;
52337Smckusick				dp->i_reclen = ep->d_reclen;
37739Smckusick				brelse(bp);
7534Sroot				goto found;
37739Smckusick			}
7534Sroot		}
52337Smckusick		prevoff = dp->i_offset;
52337Smckusick		dp->i_offset += ep->d_reclen;
7534Sroot		entryoffsetinblock += ep->d_reclen;
18027Smckusick		if (ep->d_ino)
52337Smckusick			enduseful = dp->i_offset;
7534Sroot	}
15798Smckusick/* notfound: */
15660Smckusick	/*
15798Smckusick	 * If we started in the middle of the directory and failed
15660Smckusick	 * to find our target, we must check the beginning as well.
15660Smckusick	 */
15660Smckusick	if (numdirpasses == 2) {
15660Smckusick		numdirpasses--;
52337Smckusick		dp->i_offset = 0;
37739Smckusick		endsearch = dp->i_diroff;
15660Smckusick		goto searchloop;
15660Smckusick	}
37739Smckusick	if (bp != NULL)
37739Smckusick		brelse(bp);
7534Sroot	/*
7534Sroot	 * If creating, and at end of pathname and current
9166Ssam	 * directory has not been removed, then can consider
9166Ssam	 * allowing file to be created.
7534Sroot	 */
54529Smckusick	if ((nameiop == CREATE || nameiop == RENAME) &&
54529Smckusick	    (flags & ISLASTCN) && dp->i_nlink != 0) {
5972Swnj		/*
7534Sroot		 * Access for write is interpreted as allowing
7534Sroot		 * creation of files in the directory.
5972Swnj		 */
54529Smckusick		if (error = VOP_ACCESS(vdp, VWRITE, cred, cnp->cn_proc))
37739Smckusick			return (error);
5972Swnj		/*
7534Sroot		 * Return an indication of where the new directory
7534Sroot		 * entry should be put.  If we didn't find a slot,
52337Smckusick		 * then set dp->i_count to 0 indicating
49738Smckusick		 * that the new slot belongs at the end of the
49738Smckusick		 * directory. If we found a slot, then the new entry
52337Smckusick		 * can be put in the range from dp->i_offset to
52337Smckusick		 * dp->i_offset + dp->i_count.
5972Swnj		 */
15660Smckusick		if (slotstatus == NONE) {
52337Smckusick			dp->i_offset = roundup(dp->i_size, DIRBLKSIZ);
52337Smckusick			dp->i_count = 0;
52337Smckusick			enduseful = dp->i_offset;
15660Smckusick		} else {
52337Smckusick			dp->i_offset = slotoffset;
52337Smckusick			dp->i_count = slotsize;
18027Smckusick			if (enduseful < slotoffset + slotsize)
18027Smckusick				enduseful = slotoffset + slotsize;
5972Swnj		}
52337Smckusick		dp->i_endoff = roundup(enduseful, DIRBLKSIZ);
64599Sbostic		dp->i_flag |= IN_CHANGE | IN_UPDATE;
5972Swnj		/*
7534Sroot		 * We return with the directory locked, so that
7534Sroot		 * the parameters we set up above will still be
7534Sroot		 * valid if we actually decide to do a direnter().
37739Smckusick		 * We return ni_vp == NULL to indicate that the entry
37739Smckusick		 * does not currently exist; we leave a pointer to
37739Smckusick		 * the (locked) directory inode in ndp->ni_dvp.
49738Smckusick		 * The pathname buffer is saved so that the name
49738Smckusick		 * can be obtained later.
37739Smckusick		 *
37739Smckusick		 * NB - if the directory is unlocked, then this
37739Smckusick		 * information cannot be used.
5972Swnj		 */
54529Smckusick		cnp->cn_flags |= SAVENAME;
37739Smckusick		if (!lockparent)
56803Smckusick			VOP_UNLOCK(vdp);
52799Smckusick		return (EJUSTRETURN);
7534Sroot	}
38770Smckusick	/*
38770Smckusick	 * Insert name into cache (as non-existent) if appropriate.
38770Smckusick	 */
55182Smckusick	if ((cnp->cn_flags & MAKEENTRY) && nameiop != CREATE)
54529Smckusick		cache_enter(vdp, *vpp, cnp);
37739Smckusick	return (ENOENT);
37739Smckusick
7534Srootfound:
15798Smckusick	if (numdirpasses == 2)
15798Smckusick		nchstats.ncs_pass2++;
7534Sroot	/*
7534Sroot	 * Check that directory length properly reflects presence
7534Sroot	 * of this entry.
7534Sroot	 */
54607Smckusick	if (entryoffsetinblock + DIRSIZ(FSFMT(vdp), ep) > dp->i_size) {
52337Smckusick		ufs_dirbad(dp, dp->i_offset, "i_size too small");
54607Smckusick		dp->i_size = entryoffsetinblock + DIRSIZ(FSFMT(vdp), ep);
64599Sbostic		dp->i_flag |= IN_CHANGE | IN_UPDATE;
7534Sroot	}
7534Sroot
7534Sroot	/*
15660Smckusick	 * Found component in pathname.
15798Smckusick	 * If the final component of path name, save information
15660Smckusick	 * in the cache as to where the entry was found.
7534Sroot	 */
54529Smckusick	if ((flags & ISLASTCN) && nameiop == LOOKUP)
52337Smckusick		dp->i_diroff = dp->i_offset &~ (DIRBLKSIZ - 1);
7534Sroot
7534Sroot	/*
7534Sroot	 * If deleting, and at end of pathname, return
7534Sroot	 * parameters which can be used to remove file.
37739Smckusick	 * If the wantparent flag isn't set, we return only
37739Smckusick	 * the directory (in ndp->ni_dvp), otherwise we go
9166Ssam	 * on and lock the inode, being careful with ".".
7534Sroot	 */
54529Smckusick	if (nameiop == DELETE && (flags & ISLASTCN)) {
7534Sroot		/*
7534Sroot		 * Write access to directory required to delete files.
7534Sroot		 */
54529Smckusick		if (error = VOP_ACCESS(vdp, VWRITE, cred, cnp->cn_proc))
37739Smckusick			return (error);
7534Sroot		/*
52337Smckusick		 * Return pointer to current entry in dp->i_offset,
7534Sroot		 * and distance past previous entry (if there
52337Smckusick		 * is a previous entry in this block) in dp->i_count.
38770Smckusick		 * Save directory inode pointer in ndp->ni_dvp for dirremove().
7534Sroot		 */
52337Smckusick		if ((dp->i_offset & (DIRBLKSIZ - 1)) == 0)
52337Smckusick			dp->i_count = 0;
7534Sroot		else
52337Smckusick			dp->i_count = dp->i_offset - prevoff;
52337Smckusick		if (dp->i_number == dp->i_ino) {
52337Smckusick			VREF(vdp);
54529Smckusick			*vpp = vdp;
41308Smckusick			return (0);
9166Ssam		}
54649Smckusick		if (error = VFS_VGET(vdp->v_mount, dp->i_ino, &tdp))
41308Smckusick			return (error);
41308Smckusick		/*
41308Smckusick		 * If directory is "sticky", then user must own
41308Smckusick		 * the directory, or the file in it, else she
41308Smckusick		 * may not delete it (unless she's root). This
41308Smckusick		 * implements append-only directories.
41308Smckusick		 */
41308Smckusick		if ((dp->i_mode & ISVTX) &&
54529Smckusick		    cred->cr_uid != 0 &&
54529Smckusick		    cred->cr_uid != dp->i_uid &&
54529Smckusick		    VTOI(tdp)->i_uid != cred->cr_uid) {
51549Smckusick			vput(tdp);
41308Smckusick			return (EPERM);
41308Smckusick		}
54529Smckusick		*vpp = tdp;
41308Smckusick		if (!lockparent)
56803Smckusick			VOP_UNLOCK(vdp);
37739Smckusick		return (0);
7534Sroot	}
7534Sroot
7534Sroot	/*
37739Smckusick	 * If rewriting (RENAME), return the inode and the
9166Ssam	 * information required to rewrite the present directory
9166Ssam	 * Must get inode of directory entry to verify it's a
37739Smckusick	 * regular file, or empty directory.
9166Ssam	 */
54529Smckusick	if (nameiop == RENAME && wantparent &&
54529Smckusick	    (flags & ISLASTCN)) {
54529Smckusick		if (error = VOP_ACCESS(vdp, VWRITE, cred, cnp->cn_proc))
37739Smckusick			return (error);
9166Ssam		/*
37739Smckusick		 * Careful about locking second inode.
37739Smckusick		 * This can only occur if the target is ".".
9166Ssam		 */
52337Smckusick		if (dp->i_number == dp->i_ino)
37739Smckusick			return (EISDIR);
54649Smckusick		if (error = VFS_VGET(vdp->v_mount, dp->i_ino, &tdp))
37739Smckusick			return (error);
54529Smckusick		*vpp = tdp;
54529Smckusick		cnp->cn_flags |= SAVENAME;
37739Smckusick		if (!lockparent)
56803Smckusick			VOP_UNLOCK(vdp);
37739Smckusick		return (0);
9166Ssam	}
9166Ssam
9166Ssam	/*
56803Smckusick	 * Step through the translation in the name.  We do not `vput' the
37739Smckusick	 * directory because we may need it again if a symbolic link
12011Smckusick	 * is relative to the current directory.  Instead we save it
12011Smckusick	 * unlocked as "pdp".  We must get the target inode before unlocking
12011Smckusick	 * the directory to insure that the inode will not be removed
12011Smckusick	 * before we get it.  We prevent deadlock by always fetching
12011Smckusick	 * inodes from the root, moving down the directory tree. Thus
12011Smckusick	 * when following backward pointers ".." we must unlock the
12011Smckusick	 * parent directory before getting the requested directory.
12011Smckusick	 * There is a potential race condition here if both the current
66595Sbostic	 * and parent directories are removed before the VFS_VGET for the
12011Smckusick	 * inode associated with ".." returns.  We hope that this occurs
12011Smckusick	 * infrequently since we cannot avoid this race condition without
12492Ssam	 * implementing a sophisticated deadlock detection algorithm.
12011Smckusick	 * Note also that this simple deadlock detection scheme will not
12011Smckusick	 * work if the file system has any hard links other than ".."
12011Smckusick	 * that point backwards in the directory structure.
7534Sroot	 */
56803Smckusick	pdp = vdp;
54529Smckusick	if (flags & ISDOTDOT) {
56803Smckusick		VOP_UNLOCK(pdp);	/* race to get the inode */
54649Smckusick		if (error = VFS_VGET(vdp->v_mount, dp->i_ino, &tdp)) {
56803Smckusick			VOP_LOCK(pdp);
37739Smckusick			return (error);
37739Smckusick		}
56803Smckusick		if (lockparent && (flags & ISLASTCN) &&
56803Smckusick		    (error = VOP_LOCK(pdp))) {
56803Smckusick			vput(tdp);
56803Smckusick			return (error);
56803Smckusick		}
54529Smckusick		*vpp = tdp;
52337Smckusick	} else if (dp->i_number == dp->i_ino) {
54529Smckusick		VREF(vdp);	/* we want ourself, ie "." */
54529Smckusick		*vpp = vdp;
12011Smckusick	} else {
54649Smckusick		if (error = VFS_VGET(vdp->v_mount, dp->i_ino, &tdp))
37739Smckusick			return (error);
54529Smckusick		if (!lockparent || !(flags & ISLASTCN))
56803Smckusick			VOP_UNLOCK(pdp);
54529Smckusick		*vpp = tdp;
12011Smckusick	}
15798Smckusick
15798Smckusick	/*
26273Skarels	 * Insert name into cache if appropriate.
15798Smckusick	 */
55182Smckusick	if (cnp->cn_flags & MAKEENTRY)
54529Smckusick		cache_enter(vdp, *vpp, cnp);
37739Smckusick	return (0);
30Sbill}
30Sbill
51511Sbosticvoid
51511Sbosticufs_dirbad(ip, offset, how)
7534Sroot	struct inode *ip;
53061Smckusick	doff_t offset;
7534Sroot	char *how;
7534Sroot{
51511Sbostic	struct mount *mp;
7534Sroot
51511Sbostic	mp = ITOV(ip)->v_mount;
51511Sbostic	(void)printf("%s: bad dir ino %d at offset %d: %s\n",
51511Sbostic	    mp->mnt_stat.f_mntonname, ip->i_number, offset, how);
51511Sbostic	if ((mp->mnt_stat.f_flags & MNT_RDONLY) == 0)
48058Smckusick		panic("bad dir");
7534Sroot}
7534Sroot
16657Smckusick/*
16657Smckusick * Do consistency checking on a directory entry:
16657Smckusick *	record length must be multiple of 4
16657Smckusick *	entry must fit in rest of its DIRBLKSIZ block
16657Smckusick *	record must be large enough to contain entry
16657Smckusick *	name is not longer than MAXNAMLEN
16657Smckusick *	name must be as long as advertised, and null terminated
16657Smckusick */
51511Sbosticint
54607Smckusickufs_dirbadentry(dp, ep, entryoffsetinblock)
54607Smckusick	struct vnode *dp;
7534Sroot	register struct direct *ep;
16657Smckusick	int entryoffsetinblock;
7534Sroot{
7534Sroot	register int i;
54607Smckusick	int namlen;
7534Sroot
54607Smckusick#	if (BYTE_ORDER == LITTLE_ENDIAN)
54607Smckusick		if (dp->v_mount->mnt_maxsymlinklen > 0)
54607Smckusick			namlen = ep->d_namlen;
54607Smckusick		else
54607Smckusick			namlen = ep->d_type;
54607Smckusick#	else
54607Smckusick		namlen = ep->d_namlen;
54607Smckusick#	endif
26273Skarels	if ((ep->d_reclen & 0x3) != 0 ||
16657Smckusick	    ep->d_reclen > DIRBLKSIZ - (entryoffsetinblock & (DIRBLKSIZ - 1)) ||
54607Smckusick	    ep->d_reclen < DIRSIZ(FSFMT(dp), ep) || namlen > MAXNAMLEN) {
51511Sbostic		/*return (1); */
51511Sbostic		printf("First bad\n");
51511Sbostic		goto bad;
51511Sbostic	}
*67266Smckusick	if (ep->d_ino == 0)
*67266Smckusick		return (0);
54607Smckusick	for (i = 0; i < namlen; i++)
51511Sbostic		if (ep->d_name[i] == '\0') {
51511Sbostic			/*return (1); */
51511Sbostic			printf("Second bad\n");
51511Sbostic			goto bad;
51511Sbostic	}
51511Sbostic	if (ep->d_name[i])
51511Sbostic		goto bad;
7534Sroot	return (ep->d_name[i]);
51511Sbosticbad:
51511Sbostic	return(1);
7534Sroot}
7534Sroot
30Sbill/*
7534Sroot * Write a directory entry after a call to namei, using the parameters
49738Smckusick * that it left in nameidata.  The argument ip is the inode which the new
52337Smckusick * directory entry will refer to.  Dvp is a pointer to the directory to
52337Smckusick * be written, which was left locked by namei. Remaining parameters
52337Smckusick * (dp->i_offset, dp->i_count) indicate how the space for the new
52337Smckusick * entry is to be obtained.
7534Sroot */
51511Sbosticint
52292Sheidemanufs_direnter(ip, dvp, cnp)
7534Sroot	struct inode *ip;
52232Sheideman	struct vnode *dvp;
52232Sheideman	register struct componentname *cnp;
5972Swnj{
7534Sroot	register struct direct *ep, *nep;
51511Sbostic	register struct inode *dp;
7534Sroot	struct buf *bp;
51511Sbostic	struct direct newdir;
51511Sbostic	struct iovec aiov;
51511Sbostic	struct uio auio;
8631Sroot	u_int dsize;
51511Sbostic	int error, loc, newentrysize, spacefree;
7534Sroot	char *dirbuf;
5972Swnj
49738Smckusick#ifdef DIAGNOSTIC
52232Sheideman	if ((cnp->cn_flags & SAVENAME) == 0)
49738Smckusick		panic("direnter: missing name");
49738Smckusick#endif
51549Smckusick	dp = VTOI(dvp);
49738Smckusick	newdir.d_ino = ip->i_number;
52232Sheideman	newdir.d_namlen = cnp->cn_namelen;
52232Sheideman	bcopy(cnp->cn_nameptr, newdir.d_name, (unsigned)cnp->cn_namelen + 1);
54607Smckusick	if (dvp->v_mount->mnt_maxsymlinklen > 0)
54607Smckusick		newdir.d_type = IFTODT(ip->i_mode);
54607Smckusick	else {
54607Smckusick		newdir.d_type = 0;
54607Smckusick#		if (BYTE_ORDER == LITTLE_ENDIAN)
54607Smckusick			{ u_char tmp = newdir.d_namlen;
54607Smckusick			newdir.d_namlen = newdir.d_type;
54607Smckusick			newdir.d_type = tmp; }
54607Smckusick#		endif
54607Smckusick	}
54607Smckusick	newentrysize = DIRSIZ(FSFMT(dvp), &newdir);
52337Smckusick	if (dp->i_count == 0) {
7534Sroot		/*
52337Smckusick		 * If dp->i_count is 0, then namei could find no
52337Smckusick		 * space in the directory. Here, dp->i_offset will
49738Smckusick		 * be on a directory block boundary and we will write the
49738Smckusick		 * new entry into a fresh block.
7534Sroot		 */
52337Smckusick		if (dp->i_offset & (DIRBLKSIZ - 1))
64599Sbostic			panic("ufs_direnter: newblk");
52337Smckusick		auio.uio_offset = dp->i_offset;
49738Smckusick		newdir.d_reclen = DIRBLKSIZ;
49738Smckusick		auio.uio_resid = newentrysize;
49738Smckusick		aiov.iov_len = newentrysize;
49738Smckusick		aiov.iov_base = (caddr_t)&newdir;
49738Smckusick		auio.uio_iov = &aiov;
49738Smckusick		auio.uio_iovcnt = 1;
49738Smckusick		auio.uio_rw = UIO_WRITE;
49738Smckusick		auio.uio_segflg = UIO_SYSSPACE;
49738Smckusick		auio.uio_procp = (struct proc *)0;
52232Sheideman		error = VOP_WRITE(dvp, &auio, IO_SYNC, cnp->cn_cred);
51549Smckusick		if (DIRBLKSIZ >
51944Smckusick		    VFSTOUFS(dvp->v_mount)->um_mountp->mnt_stat.f_bsize)
51511Sbostic			/* XXX should grow with balloc() */
51511Sbostic			panic("ufs_direnter: frag size");
51511Sbostic		else if (!error) {
18104Smckusick			dp->i_size = roundup(dp->i_size, DIRBLKSIZ);
64599Sbostic			dp->i_flag |= IN_CHANGE;
43288Smckusick		}
10849Ssam		return (error);
7534Sroot	}
7534Sroot
7534Sroot	/*
52337Smckusick	 * If dp->i_count is non-zero, then namei found space
52337Smckusick	 * for the new entry in the range dp->i_offset to
52337Smckusick	 * dp->i_offset + dp->i_count in the directory.
49738Smckusick	 * To use this space, we may have to compact the entries located
49738Smckusick	 * there, by copying them together towards the beginning of the
49738Smckusick	 * block, leaving the free space in one usable chunk at the end.
7534Sroot	 */
7534Sroot
7534Sroot	/*
7534Sroot	 * Increase size of directory if entry eats into new space.
7534Sroot	 * This should never push the size past a new multiple of
7534Sroot	 * DIRBLKSIZE.
18104Smckusick	 *
18104Smckusick	 * N.B. - THIS IS AN ARTIFACT OF 4.2 AND SHOULD NEVER HAPPEN.
7534Sroot	 */
52337Smckusick	if (dp->i_offset + dp->i_count > dp->i_size)
52337Smckusick		dp->i_size = dp->i_offset + dp->i_count;
7534Sroot	/*
37739Smckusick	 * Get the block containing the space for the new directory entry.
7534Sroot	 */
53061Smckusick	if (error = VOP_BLKATOFF(dvp, (off_t)dp->i_offset, &dirbuf, &bp))
37739Smckusick		return (error);
7534Sroot	/*
49738Smckusick	 * Find space for the new entry. In the simple case, the entry at
49738Smckusick	 * offset base will have the space. If it does not, then namei
52337Smckusick	 * arranged that compacting the region dp->i_offset to
52337Smckusick	 * dp->i_offset + dp->i_count would yield the
49738Smckusick	 * space.
7534Sroot	 */
7534Sroot	ep = (struct direct *)dirbuf;
54607Smckusick	dsize = DIRSIZ(FSFMT(dvp), ep);
11639Ssam	spacefree = ep->d_reclen - dsize;
52337Smckusick	for (loc = ep->d_reclen; loc < dp->i_count; ) {
7534Sroot		nep = (struct direct *)(dirbuf + loc);
7534Sroot		if (ep->d_ino) {
7534Sroot			/* trim the existing slot */
7534Sroot			ep->d_reclen = dsize;
7534Sroot			ep = (struct direct *)((char *)ep + dsize);
7534Sroot		} else {
7534Sroot			/* overwrite; nothing there; header is ours */
37739Smckusick			spacefree += dsize;
7534Sroot		}
54607Smckusick		dsize = DIRSIZ(FSFMT(dvp), nep);
11639Ssam		spacefree += nep->d_reclen - dsize;
7534Sroot		loc += nep->d_reclen;
7825Sroot		bcopy((caddr_t)nep, (caddr_t)ep, dsize);
7534Sroot	}
7534Sroot	/*
7534Sroot	 * Update the pointer fields in the previous entry (if any),
7534Sroot	 * copy in the new entry, and write out the block.
7534Sroot	 */
7534Sroot	if (ep->d_ino == 0) {
11639Ssam		if (spacefree + dsize < newentrysize)
64599Sbostic			panic("ufs_direnter: compact1");
49738Smckusick		newdir.d_reclen = spacefree + dsize;
7534Sroot	} else {
11639Ssam		if (spacefree < newentrysize)
64599Sbostic			panic("ufs_direnter: compact2");
49738Smckusick		newdir.d_reclen = spacefree;
7534Sroot		ep->d_reclen = dsize;
7534Sroot		ep = (struct direct *)((char *)ep + dsize);
7534Sroot	}
49738Smckusick	bcopy((caddr_t)&newdir, (caddr_t)ep, (u_int)newentrysize);
51549Smckusick	error = VOP_BWRITE(bp);
64599Sbostic	dp->i_flag |= IN_CHANGE | IN_UPDATE;
52337Smckusick	if (!error && dp->i_endoff && dp->i_endoff < dp->i_size)
54453Smckusick		error = VOP_TRUNCATE(dvp, (off_t)dp->i_endoff, IO_SYNC,
54453Smckusick		    cnp->cn_cred, cnp->cn_proc);
10849Ssam	return (error);
5972Swnj}
6571Smckusic
9166Ssam/*
38252Smckusick * Remove a directory entry after a call to namei, using
38252Smckusick * the parameters which it left in nameidata. The entry
52337Smckusick * dp->i_offset contains the offset into the directory of the
52337Smckusick * entry to be eliminated.  The dp->i_count field contains the
9166Ssam * size of the previous record in the directory.  If this
9166Ssam * is 0, the first entry is being deleted, so we need only
9166Ssam * zero the inode number to mark the entry as free.  If the
49738Smckusick * entry is not the first in the directory, we must reclaim
9166Ssam * the space of the now empty record by adding the record size
9166Ssam * to the size of the previous entry.
9166Ssam */
51511Sbosticint
52292Sheidemanufs_dirremove(dvp, cnp)
52232Sheideman	struct vnode *dvp;
52232Sheideman	struct componentname *cnp;
6571Smckusic{
51511Sbostic	register struct inode *dp;
7534Sroot	struct direct *ep;
37739Smckusick	struct buf *bp;
37739Smckusick	int error;
6571Smckusic
52232Sheideman	dp = VTOI(dvp);
52337Smckusick	if (dp->i_count == 0) {
7534Sroot		/*
7534Sroot		 * First entry in block: set d_ino to zero.
7534Sroot		 */
53061Smckusick		if (error =
53061Smckusick		    VOP_BLKATOFF(dvp, (off_t)dp->i_offset, (char **)&ep, &bp))
37739Smckusick			return (error);
49738Smckusick		ep->d_ino = 0;
51549Smckusick		error = VOP_BWRITE(bp);
64599Sbostic		dp->i_flag |= IN_CHANGE | IN_UPDATE;
49738Smckusick		return (error);
7534Sroot	}
49738Smckusick	/*
49738Smckusick	 * Collapse new free space into previous entry.
49738Smckusick	 */
53061Smckusick	if (error = VOP_BLKATOFF(dvp, (off_t)(dp->i_offset - dp->i_count),
53061Smckusick	    (char **)&ep, &bp))
49738Smckusick		return (error);
52337Smckusick	ep->d_reclen += dp->i_reclen;
51549Smckusick	error = VOP_BWRITE(bp);
64599Sbostic	dp->i_flag |= IN_CHANGE | IN_UPDATE;
37739Smckusick	return (error);
6571Smckusic}
7534Sroot
7605Ssam/*
9166Ssam * Rewrite an existing directory entry to point at the inode
9166Ssam * supplied.  The parameters describing the directory entry are
9166Ssam * set up by a call to namei.
9166Ssam */
51511Sbosticint
52232Sheidemanufs_dirrewrite(dp, ip, cnp)
9166Ssam	struct inode *dp, *ip;
52232Sheideman	struct componentname *cnp;
9166Ssam{
51511Sbostic	struct buf *bp;
49738Smckusick	struct direct *ep;
54607Smckusick	struct vnode *vdp = ITOV(dp);
49738Smckusick	int error;
9166Ssam
54607Smckusick	if (error = VOP_BLKATOFF(vdp, (off_t)dp->i_offset, (char **)&ep, &bp))
49738Smckusick		return (error);
49738Smckusick	ep->d_ino = ip->i_number;
54607Smckusick	if (vdp->v_mount->mnt_maxsymlinklen > 0)
54607Smckusick		ep->d_type = IFTODT(ip->i_mode);
51549Smckusick	error = VOP_BWRITE(bp);
64599Sbostic	dp->i_flag |= IN_CHANGE | IN_UPDATE;
49738Smckusick	return (error);
9166Ssam}
9166Ssam
9166Ssam/*
9166Ssam * Check if a directory is empty or not.
9166Ssam * Inode supplied must be locked.
12817Ssam *
12817Ssam * Using a struct dirtemplate here is not precisely
12817Ssam * what we want, but better than using a struct direct.
12817Ssam *
12817Ssam * NB: does not handle corrupted directories.
9166Ssam */
51511Sbosticint
51511Sbosticufs_dirempty(ip, parentino, cred)
9863Ssam	register struct inode *ip;
16777Smckusick	ino_t parentino;
37739Smckusick	struct ucred *cred;
9166Ssam{
9166Ssam	register off_t off;
12817Ssam	struct dirtemplate dbuf;
12817Ssam	register struct direct *dp = (struct direct *)&dbuf;
54607Smckusick	int error, count, namlen;
12817Ssam#define	MINDIRSIZ (sizeof (struct dirtemplate) / 2)
9166Ssam
9166Ssam	for (off = 0; off < ip->i_size; off += dp->d_reclen) {
48035Smckusick		error = vn_rdwr(UIO_READ, ITOV(ip), (caddr_t)dp, MINDIRSIZ, off,
48035Smckusick		   UIO_SYSSPACE, IO_NODELOCKED, cred, &count, (struct proc *)0);
12817Ssam		/*
12817Ssam		 * Since we read MINDIRSIZ, residual must
12817Ssam		 * be 0 unless we're at end of file.
12817Ssam		 */
12817Ssam		if (error || count != 0)
9166Ssam			return (0);
24534Smckusick		/* avoid infinite loops */
26273Skarels		if (dp->d_reclen == 0)
24534Smckusick			return (0);
12817Ssam		/* skip empty entries */
9166Ssam		if (dp->d_ino == 0)
9166Ssam			continue;
12817Ssam		/* accept only "." and ".." */
54607Smckusick#		if (BYTE_ORDER == LITTLE_ENDIAN)
54607Smckusick			if (ITOV(ip)->v_mount->mnt_maxsymlinklen > 0)
54607Smckusick				namlen = dp->d_namlen;
54607Smckusick			else
54607Smckusick				namlen = dp->d_type;
54607Smckusick#		else
54607Smckusick			namlen = dp->d_namlen;
54607Smckusick#		endif
54607Smckusick		if (namlen > 2)
12817Ssam			return (0);
9166Ssam		if (dp->d_name[0] != '.')
9166Ssam			return (0);
12817Ssam		/*
54607Smckusick		 * At this point namlen must be 1 or 2.
12817Ssam		 * 1 implies ".", 2 implies ".." if second
12817Ssam		 * char is also "."
12817Ssam		 */
54607Smckusick		if (namlen == 1)
9166Ssam			continue;
16777Smckusick		if (dp->d_name[1] == '.' && dp->d_ino == parentino)
16777Smckusick			continue;
9166Ssam		return (0);
9166Ssam	}
9166Ssam	return (1);
9166Ssam}
12815Smckusick
12815Smckusick/*
12815Smckusick * Check if source directory is in the path of the target directory.
12815Smckusick * Target is supplied locked, source is unlocked.
56803Smckusick * The target is always vput before returning.
12815Smckusick */
51511Sbosticint
51511Sbosticufs_checkpath(source, target, cred)
12815Smckusick	struct inode *source, *target;
37739Smckusick	struct ucred *cred;
12815Smckusick{
51549Smckusick	struct vnode *vp;
54607Smckusick	int error, rootino, namlen;
56803Smckusick	struct dirtemplate dirbuf;
12815Smckusick
56803Smckusick	vp = ITOV(target);
56803Smckusick	if (target->i_number == source->i_number) {
12815Smckusick		error = EEXIST;
12815Smckusick		goto out;
12815Smckusick	}
51511Sbostic	rootino = ROOTINO;
51511Sbostic	error = 0;
56803Smckusick	if (target->i_number == rootino)
12815Smckusick		goto out;
12815Smckusick
12815Smckusick	for (;;) {
56803Smckusick		if (vp->v_type != VDIR) {
12815Smckusick			error = ENOTDIR;
12815Smckusick			break;
12815Smckusick		}
51549Smckusick		error = vn_rdwr(UIO_READ, vp, (caddr_t)&dirbuf,
37739Smckusick			sizeof (struct dirtemplate), (off_t)0, UIO_SYSSPACE,
48035Smckusick			IO_NODELOCKED, cred, (int *)0, (struct proc *)0);
12815Smckusick		if (error != 0)
12815Smckusick			break;
54607Smckusick#		if (BYTE_ORDER == LITTLE_ENDIAN)
54607Smckusick			if (vp->v_mount->mnt_maxsymlinklen > 0)
54607Smckusick				namlen = dirbuf.dotdot_namlen;
54607Smckusick			else
54607Smckusick				namlen = dirbuf.dotdot_type;
54607Smckusick#		else
54607Smckusick			namlen = dirbuf.dotdot_namlen;
54607Smckusick#		endif
54607Smckusick		if (namlen != 2 ||
16658Smckusick		    dirbuf.dotdot_name[0] != '.' ||
16658Smckusick		    dirbuf.dotdot_name[1] != '.') {
12815Smckusick			error = ENOTDIR;
12815Smckusick			break;
12815Smckusick		}
12815Smckusick		if (dirbuf.dotdot_ino == source->i_number) {
12815Smckusick			error = EINVAL;
12815Smckusick			break;
12815Smckusick		}
51511Sbostic		if (dirbuf.dotdot_ino == rootino)
12815Smckusick			break;
56803Smckusick		vput(vp);
56803Smckusick		if (error = VFS_VGET(vp->v_mount, dirbuf.dotdot_ino, &vp)) {
56803Smckusick			vp = NULL;
12815Smckusick			break;
56803Smckusick		}
12815Smckusick	}
12815Smckusick
12815Smckusickout:
12815Smckusick	if (error == ENOTDIR)
12815Smckusick		printf("checkpath: .. not a directory\n");
56803Smckusick	if (vp != NULL)
56803Smckusick		vput(vp);
12815Smckusick	return (error);
12815Smckusick}