1 /* $NetBSD: vfs_mount.c,v 1.6 2011/06/12 03:35:56 rmind Exp $ */ 2 3 /*- 4 * Copyright (c) 1997-2011 The NetBSD Foundation, Inc. 5 * All rights reserved. 6 * 7 * This code is derived from software contributed to The NetBSD Foundation 8 * by Jason R. Thorpe of the Numerical Aerospace Simulation Facility, 9 * NASA Ames Research Center, by Charles M. Hannum, and by Andrew Doran. 10 * 11 * Redistribution and use in source and binary forms, with or without 12 * modification, are permitted provided that the following conditions 13 * are met: 14 * 1. Redistributions of source code must retain the above copyright 15 * notice, this list of conditions and the following disclaimer. 16 * 2. Redistributions in binary form must reproduce the above copyright 17 * notice, this list of conditions and the following disclaimer in the 18 * documentation and/or other materials provided with the distribution. 19 * 20 * THIS SOFTWARE IS PROVIDED BY THE NETBSD FOUNDATION, INC. AND CONTRIBUTORS 21 * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED 22 * TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR 23 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE FOUNDATION OR CONTRIBUTORS 24 * BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR 25 * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF 26 * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS 27 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN 28 * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) 29 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE 30 * POSSIBILITY OF SUCH DAMAGE. 31 */ 32 33 /* 34 * Copyright (c) 1989, 1993 35 * The Regents of the University of California. All rights reserved. 36 * (c) UNIX System Laboratories, Inc. 37 * All or some portions of this file are derived from material licensed 38 * to the University of California by American Telephone and Telegraph 39 * Co. or Unix System Laboratories, Inc. and are reproduced herein with 40 * the permission of UNIX System Laboratories, Inc. 41 * 42 * Redistribution and use in source and binary forms, with or without 43 * modification, are permitted provided that the following conditions 44 * are met: 45 * 1. Redistributions of source code must retain the above copyright 46 * notice, this list of conditions and the following disclaimer. 47 * 2. Redistributions in binary form must reproduce the above copyright 48 * notice, this list of conditions and the following disclaimer in the 49 * documentation and/or other materials provided with the distribution. 50 * 3. Neither the name of the University nor the names of its contributors 51 * may be used to endorse or promote products derived from this software 52 * without specific prior written permission. 53 * 54 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 55 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 56 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 57 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 58 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 59 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 60 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 61 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 62 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 63 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 64 * SUCH DAMAGE. 65 * 66 * @(#)vfs_subr.c 8.13 (Berkeley) 4/18/94 67 */ 68 69 #include <sys/cdefs.h> 70 __KERNEL_RCSID(0, "$NetBSD: vfs_mount.c,v 1.6 2011/06/12 03:35:56 rmind Exp $"); 71 72 #include <sys/param.h> 73 #include <sys/kernel.h> 74 75 #include <sys/atomic.h> 76 #include <sys/buf.h> 77 #include <sys/conf.h> 78 #include <sys/fcntl.h> 79 #include <sys/filedesc.h> 80 #include <sys/device.h> 81 #include <sys/kauth.h> 82 #include <sys/kmem.h> 83 #include <sys/module.h> 84 #include <sys/mount.h> 85 #include <sys/namei.h> 86 #include <sys/syscallargs.h> 87 #include <sys/sysctl.h> 88 #include <sys/systm.h> 89 #include <sys/vfs_syscalls.h> 90 #include <sys/vnode.h> 91 92 #include <miscfs/genfs/genfs.h> 93 #include <miscfs/syncfs/syncfs.h> 94 #include <miscfs/specfs/specdev.h> 95 96 /* Root filesystem and device. */ 97 vnode_t * rootvnode; 98 struct device * root_device; 99 100 /* Mounted filesystem list. */ 101 struct mntlist mountlist; 102 kmutex_t mountlist_lock; 103 104 kmutex_t mntvnode_lock; 105 kmutex_t vfs_list_lock; 106 107 static specificdata_domain_t mount_specificdata_domain; 108 static kmutex_t mntid_lock; 109 110 static kmutex_t mountgen_lock; 111 static uint64_t mountgen; 112 113 void 114 vfs_mount_sysinit(void) 115 { 116 117 CIRCLEQ_INIT(&mountlist); 118 mutex_init(&mountlist_lock, MUTEX_DEFAULT, IPL_NONE); 119 mutex_init(&mntvnode_lock, MUTEX_DEFAULT, IPL_NONE); 120 mutex_init(&vfs_list_lock, MUTEX_DEFAULT, IPL_NONE); 121 122 mount_specificdata_domain = specificdata_domain_create(); 123 mutex_init(&mntid_lock, MUTEX_DEFAULT, IPL_NONE); 124 mutex_init(&mountgen_lock, MUTEX_DEFAULT, IPL_NONE); 125 mountgen = 0; 126 } 127 128 struct mount * 129 vfs_mountalloc(struct vfsops *vfsops, vnode_t *vp) 130 { 131 struct mount *mp; 132 int error; 133 134 mp = kmem_zalloc(sizeof(*mp), KM_SLEEP); 135 if (mp == NULL) 136 return NULL; 137 138 mp->mnt_op = vfsops; 139 mp->mnt_refcnt = 1; 140 TAILQ_INIT(&mp->mnt_vnodelist); 141 rw_init(&mp->mnt_unmounting); 142 mutex_init(&mp->mnt_renamelock, MUTEX_DEFAULT, IPL_NONE); 143 mutex_init(&mp->mnt_updating, MUTEX_DEFAULT, IPL_NONE); 144 error = vfs_busy(mp, NULL); 145 KASSERT(error == 0); 146 mp->mnt_vnodecovered = vp; 147 mount_initspecific(mp); 148 149 mutex_enter(&mountgen_lock); 150 mp->mnt_gen = mountgen++; 151 mutex_exit(&mountgen_lock); 152 153 return mp; 154 } 155 156 /* 157 * vfs_rootmountalloc: lookup a filesystem type, and if found allocate and 158 * initialize a mount structure for it. 159 * 160 * Devname is usually updated by mount(8) after booting. 161 */ 162 int 163 vfs_rootmountalloc(const char *fstypename, const char *devname, 164 struct mount **mpp) 165 { 166 struct vfsops *vfsp = NULL; 167 struct mount *mp; 168 169 mutex_enter(&vfs_list_lock); 170 LIST_FOREACH(vfsp, &vfs_list, vfs_list) 171 if (!strncmp(vfsp->vfs_name, fstypename, 172 sizeof(mp->mnt_stat.f_fstypename))) 173 break; 174 if (vfsp == NULL) { 175 mutex_exit(&vfs_list_lock); 176 return (ENODEV); 177 } 178 vfsp->vfs_refcount++; 179 mutex_exit(&vfs_list_lock); 180 181 if ((mp = vfs_mountalloc(vfsp, NULL)) == NULL) 182 return ENOMEM; 183 mp->mnt_flag = MNT_RDONLY; 184 (void)strlcpy(mp->mnt_stat.f_fstypename, vfsp->vfs_name, 185 sizeof(mp->mnt_stat.f_fstypename)); 186 mp->mnt_stat.f_mntonname[0] = '/'; 187 mp->mnt_stat.f_mntonname[1] = '\0'; 188 mp->mnt_stat.f_mntfromname[sizeof(mp->mnt_stat.f_mntfromname) - 1] = 189 '\0'; 190 (void)copystr(devname, mp->mnt_stat.f_mntfromname, 191 sizeof(mp->mnt_stat.f_mntfromname) - 1, 0); 192 *mpp = mp; 193 return 0; 194 } 195 196 /* 197 * vfs_getnewfsid: get a new unique fsid. 198 */ 199 void 200 vfs_getnewfsid(struct mount *mp) 201 { 202 static u_short xxxfs_mntid; 203 fsid_t tfsid; 204 int mtype; 205 206 mutex_enter(&mntid_lock); 207 mtype = makefstype(mp->mnt_op->vfs_name); 208 mp->mnt_stat.f_fsidx.__fsid_val[0] = makedev(mtype, 0); 209 mp->mnt_stat.f_fsidx.__fsid_val[1] = mtype; 210 mp->mnt_stat.f_fsid = mp->mnt_stat.f_fsidx.__fsid_val[0]; 211 if (xxxfs_mntid == 0) 212 ++xxxfs_mntid; 213 tfsid.__fsid_val[0] = makedev(mtype & 0xff, xxxfs_mntid); 214 tfsid.__fsid_val[1] = mtype; 215 if (!CIRCLEQ_EMPTY(&mountlist)) { 216 while (vfs_getvfs(&tfsid)) { 217 tfsid.__fsid_val[0]++; 218 xxxfs_mntid++; 219 } 220 } 221 mp->mnt_stat.f_fsidx.__fsid_val[0] = tfsid.__fsid_val[0]; 222 mp->mnt_stat.f_fsid = mp->mnt_stat.f_fsidx.__fsid_val[0]; 223 mutex_exit(&mntid_lock); 224 } 225 226 /* 227 * Lookup a mount point by filesystem identifier. 228 * 229 * XXX Needs to add a reference to the mount point. 230 */ 231 struct mount * 232 vfs_getvfs(fsid_t *fsid) 233 { 234 struct mount *mp; 235 236 mutex_enter(&mountlist_lock); 237 CIRCLEQ_FOREACH(mp, &mountlist, mnt_list) { 238 if (mp->mnt_stat.f_fsidx.__fsid_val[0] == fsid->__fsid_val[0] && 239 mp->mnt_stat.f_fsidx.__fsid_val[1] == fsid->__fsid_val[1]) { 240 mutex_exit(&mountlist_lock); 241 return (mp); 242 } 243 } 244 mutex_exit(&mountlist_lock); 245 return NULL; 246 } 247 248 /* 249 * Drop a reference to a mount structure, freeing if the last reference. 250 */ 251 void 252 vfs_destroy(struct mount *mp) 253 { 254 255 if (__predict_true((int)atomic_dec_uint_nv(&mp->mnt_refcnt) > 0)) { 256 return; 257 } 258 259 /* 260 * Nothing else has visibility of the mount: we can now 261 * free the data structures. 262 */ 263 KASSERT(mp->mnt_refcnt == 0); 264 specificdata_fini(mount_specificdata_domain, &mp->mnt_specdataref); 265 rw_destroy(&mp->mnt_unmounting); 266 mutex_destroy(&mp->mnt_updating); 267 mutex_destroy(&mp->mnt_renamelock); 268 if (mp->mnt_op != NULL) { 269 vfs_delref(mp->mnt_op); 270 } 271 kmem_free(mp, sizeof(*mp)); 272 } 273 274 /* 275 * Mark a mount point as busy, and gain a new reference to it. Used to 276 * prevent the file system from being unmounted during critical sections. 277 * 278 * => The caller must hold a pre-existing reference to the mount. 279 * => Will fail if the file system is being unmounted, or is unmounted. 280 */ 281 int 282 vfs_busy(struct mount *mp, struct mount **nextp) 283 { 284 285 KASSERT(mp->mnt_refcnt > 0); 286 287 if (__predict_false(!rw_tryenter(&mp->mnt_unmounting, RW_READER))) { 288 if (nextp != NULL) { 289 KASSERT(mutex_owned(&mountlist_lock)); 290 *nextp = CIRCLEQ_NEXT(mp, mnt_list); 291 } 292 return EBUSY; 293 } 294 if (__predict_false((mp->mnt_iflag & IMNT_GONE) != 0)) { 295 rw_exit(&mp->mnt_unmounting); 296 if (nextp != NULL) { 297 KASSERT(mutex_owned(&mountlist_lock)); 298 *nextp = CIRCLEQ_NEXT(mp, mnt_list); 299 } 300 return ENOENT; 301 } 302 if (nextp != NULL) { 303 mutex_exit(&mountlist_lock); 304 } 305 atomic_inc_uint(&mp->mnt_refcnt); 306 return 0; 307 } 308 309 /* 310 * Unbusy a busy filesystem. 311 * 312 * => If keepref is true, preserve reference added by vfs_busy(). 313 * => If nextp != NULL, acquire mountlist_lock. 314 */ 315 void 316 vfs_unbusy(struct mount *mp, bool keepref, struct mount **nextp) 317 { 318 319 KASSERT(mp->mnt_refcnt > 0); 320 321 if (nextp != NULL) { 322 mutex_enter(&mountlist_lock); 323 } 324 rw_exit(&mp->mnt_unmounting); 325 if (!keepref) { 326 vfs_destroy(mp); 327 } 328 if (nextp != NULL) { 329 KASSERT(mutex_owned(&mountlist_lock)); 330 *nextp = CIRCLEQ_NEXT(mp, mnt_list); 331 } 332 } 333 334 /* 335 * Insert a marker vnode into a mount's vnode list, after the 336 * specified vnode. mntvnode_lock must be held. 337 */ 338 void 339 vmark(vnode_t *mvp, vnode_t *vp) 340 { 341 struct mount *mp = mvp->v_mount; 342 343 KASSERT(mutex_owned(&mntvnode_lock)); 344 KASSERT((mvp->v_iflag & VI_MARKER) != 0); 345 KASSERT(vp->v_mount == mp); 346 347 TAILQ_INSERT_AFTER(&mp->mnt_vnodelist, vp, mvp, v_mntvnodes); 348 } 349 350 /* 351 * Remove a marker vnode from a mount's vnode list, and return 352 * a pointer to the next vnode in the list. mntvnode_lock must 353 * be held. 354 */ 355 vnode_t * 356 vunmark(vnode_t *mvp) 357 { 358 struct mount *mp = mvp->v_mount; 359 vnode_t *vp; 360 361 KASSERT(mutex_owned(&mntvnode_lock)); 362 KASSERT((mvp->v_iflag & VI_MARKER) != 0); 363 364 vp = TAILQ_NEXT(mvp, v_mntvnodes); 365 TAILQ_REMOVE(&mp->mnt_vnodelist, mvp, v_mntvnodes); 366 367 KASSERT(vp == NULL || vp->v_mount == mp); 368 369 return vp; 370 } 371 372 /* 373 * Move a vnode from one mount queue to another. 374 */ 375 void 376 vfs_insmntque(vnode_t *vp, struct mount *mp) 377 { 378 struct mount *omp; 379 380 KASSERT(mp == NULL || (mp->mnt_iflag & IMNT_UNMOUNT) == 0 || 381 vp->v_tag == VT_VFS); 382 383 mutex_enter(&mntvnode_lock); 384 /* 385 * Delete from old mount point vnode list, if on one. 386 */ 387 if ((omp = vp->v_mount) != NULL) 388 TAILQ_REMOVE(&vp->v_mount->mnt_vnodelist, vp, v_mntvnodes); 389 /* 390 * Insert into list of vnodes for the new mount point, if 391 * available. The caller must take a reference on the mount 392 * structure and donate to the vnode. 393 */ 394 if ((vp->v_mount = mp) != NULL) 395 TAILQ_INSERT_TAIL(&mp->mnt_vnodelist, vp, v_mntvnodes); 396 mutex_exit(&mntvnode_lock); 397 398 if (omp != NULL) { 399 /* Release reference to old mount. */ 400 vfs_destroy(omp); 401 } 402 } 403 404 /* 405 * Remove any vnodes in the vnode table belonging to mount point mp. 406 * 407 * If FORCECLOSE is not specified, there should not be any active ones, 408 * return error if any are found (nb: this is a user error, not a 409 * system error). If FORCECLOSE is specified, detach any active vnodes 410 * that are found. 411 * 412 * If WRITECLOSE is set, only flush out regular file vnodes open for 413 * writing. 414 * 415 * SKIPSYSTEM causes any vnodes marked VV_SYSTEM to be skipped. 416 */ 417 #ifdef DEBUG 418 int busyprt = 0; /* print out busy vnodes */ 419 struct ctldebug debug1 = { "busyprt", &busyprt }; 420 #endif 421 422 static vnode_t * 423 vflushnext(vnode_t *mvp, int *when) 424 { 425 426 if (hardclock_ticks > *when) { 427 mutex_exit(&mntvnode_lock); 428 yield(); 429 mutex_enter(&mntvnode_lock); 430 *when = hardclock_ticks + hz / 10; 431 } 432 return vunmark(mvp); 433 } 434 435 int 436 vflush(struct mount *mp, vnode_t *skipvp, int flags) 437 { 438 vnode_t *vp, *mvp; 439 int busy = 0, when = 0; 440 441 /* First, flush out any vnode references from vrele_list. */ 442 vrele_flush(); 443 444 /* Allocate a marker vnode. */ 445 mvp = vnalloc(mp); 446 if (mvp == NULL) { 447 return ENOMEM; 448 } 449 450 /* 451 * NOTE: not using the TAILQ_FOREACH here since in this loop vgone() 452 * and vclean() are called. 453 */ 454 mutex_enter(&mntvnode_lock); 455 for (vp = TAILQ_FIRST(&mp->mnt_vnodelist); vp != NULL; 456 vp = vflushnext(mvp, &when)) { 457 vmark(mvp, vp); 458 if (vp->v_mount != mp || vismarker(vp)) 459 continue; 460 /* 461 * Skip over a selected vnode. 462 */ 463 if (vp == skipvp) 464 continue; 465 mutex_enter(vp->v_interlock); 466 /* 467 * Ignore clean but still referenced vnodes. 468 */ 469 if ((vp->v_iflag & VI_CLEAN) != 0) { 470 mutex_exit(vp->v_interlock); 471 continue; 472 } 473 /* 474 * Skip over a vnodes marked VSYSTEM. 475 */ 476 if ((flags & SKIPSYSTEM) && (vp->v_vflag & VV_SYSTEM)) { 477 mutex_exit(vp->v_interlock); 478 continue; 479 } 480 /* 481 * If WRITECLOSE is set, only flush out regular file 482 * vnodes open for writing. 483 */ 484 if ((flags & WRITECLOSE) && 485 (vp->v_writecount == 0 || vp->v_type != VREG)) { 486 mutex_exit(vp->v_interlock); 487 continue; 488 } 489 /* 490 * With v_usecount == 0, all we need to do is clear 491 * out the vnode data structures and we are done. 492 */ 493 if (vp->v_usecount == 0) { 494 mutex_exit(&mntvnode_lock); 495 vremfree(vp); 496 vp->v_usecount = 1; 497 vclean(vp, DOCLOSE); 498 vrelel(vp, 0); 499 mutex_enter(&mntvnode_lock); 500 continue; 501 } 502 /* 503 * If FORCECLOSE is set, forcibly close the vnode. 504 * For block or character devices, revert to an 505 * anonymous device. For all other files, just 506 * kill them. 507 */ 508 if (flags & FORCECLOSE) { 509 mutex_exit(&mntvnode_lock); 510 atomic_inc_uint(&vp->v_usecount); 511 if (vp->v_type != VBLK && vp->v_type != VCHR) { 512 vclean(vp, DOCLOSE); 513 vrelel(vp, 0); 514 } else { 515 vclean(vp, 0); 516 vp->v_op = spec_vnodeop_p; /* XXXSMP */ 517 mutex_exit(vp->v_interlock); 518 /* 519 * The vnode isn't clean, but still resides 520 * on the mount list. Remove it. XXX This 521 * is a bit dodgy. 522 */ 523 vfs_insmntque(vp, NULL); 524 vrele(vp); 525 } 526 mutex_enter(&mntvnode_lock); 527 continue; 528 } 529 #ifdef DEBUG 530 if (busyprt) 531 vprint("vflush: busy vnode", vp); 532 #endif 533 mutex_exit(vp->v_interlock); 534 busy++; 535 } 536 mutex_exit(&mntvnode_lock); 537 vnfree(mvp); 538 if (busy) 539 return (EBUSY); 540 return (0); 541 } 542 543 /* 544 * Remove clean vnodes from a mountpoint's vnode list. 545 */ 546 void 547 vfs_scrubvnlist(struct mount *mp) 548 { 549 vnode_t *vp, *nvp; 550 551 retry: 552 mutex_enter(&mntvnode_lock); 553 for (vp = TAILQ_FIRST(&mp->mnt_vnodelist); vp; vp = nvp) { 554 nvp = TAILQ_NEXT(vp, v_mntvnodes); 555 mutex_enter(vp->v_interlock); 556 if ((vp->v_iflag & VI_CLEAN) != 0) { 557 TAILQ_REMOVE(&mp->mnt_vnodelist, vp, v_mntvnodes); 558 vp->v_mount = NULL; 559 mutex_exit(&mntvnode_lock); 560 mutex_exit(vp->v_interlock); 561 vfs_destroy(mp); 562 goto retry; 563 } 564 mutex_exit(vp->v_interlock); 565 } 566 mutex_exit(&mntvnode_lock); 567 } 568 569 /* 570 * Mount a file system. 571 */ 572 573 /* 574 * Scan all active processes to see if any of them have a current or root 575 * directory onto which the new filesystem has just been mounted. If so, 576 * replace them with the new mount point. 577 */ 578 static void 579 mount_checkdirs(vnode_t *olddp) 580 { 581 vnode_t *newdp, *rele1, *rele2; 582 struct cwdinfo *cwdi; 583 struct proc *p; 584 bool retry; 585 586 if (olddp->v_usecount == 1) { 587 return; 588 } 589 if (VFS_ROOT(olddp->v_mountedhere, &newdp)) 590 panic("mount: lost mount"); 591 592 do { 593 retry = false; 594 mutex_enter(proc_lock); 595 PROCLIST_FOREACH(p, &allproc) { 596 if ((cwdi = p->p_cwdi) == NULL) 597 continue; 598 /* 599 * Cannot change to the old directory any more, 600 * so even if we see a stale value it is not a 601 * problem. 602 */ 603 if (cwdi->cwdi_cdir != olddp && 604 cwdi->cwdi_rdir != olddp) 605 continue; 606 retry = true; 607 rele1 = NULL; 608 rele2 = NULL; 609 atomic_inc_uint(&cwdi->cwdi_refcnt); 610 mutex_exit(proc_lock); 611 rw_enter(&cwdi->cwdi_lock, RW_WRITER); 612 if (cwdi->cwdi_cdir == olddp) { 613 rele1 = cwdi->cwdi_cdir; 614 vref(newdp); 615 cwdi->cwdi_cdir = newdp; 616 } 617 if (cwdi->cwdi_rdir == olddp) { 618 rele2 = cwdi->cwdi_rdir; 619 vref(newdp); 620 cwdi->cwdi_rdir = newdp; 621 } 622 rw_exit(&cwdi->cwdi_lock); 623 cwdfree(cwdi); 624 if (rele1 != NULL) 625 vrele(rele1); 626 if (rele2 != NULL) 627 vrele(rele2); 628 mutex_enter(proc_lock); 629 break; 630 } 631 mutex_exit(proc_lock); 632 } while (retry); 633 634 if (rootvnode == olddp) { 635 vrele(rootvnode); 636 vref(newdp); 637 rootvnode = newdp; 638 } 639 vput(newdp); 640 } 641 642 int 643 mount_domount(struct lwp *l, vnode_t **vpp, struct vfsops *vfsops, 644 const char *path, int flags, void *data, size_t *data_len) 645 { 646 vnode_t *vp = *vpp; 647 struct mount *mp; 648 struct vattr va; 649 struct pathbuf *pb; 650 struct nameidata nd; 651 int error; 652 653 error = kauth_authorize_system(l->l_cred, KAUTH_SYSTEM_MOUNT, 654 KAUTH_REQ_SYSTEM_MOUNT_NEW, vp, KAUTH_ARG(flags), data); 655 if (error) { 656 vfs_delref(vfsops); 657 return error; 658 } 659 660 /* Cannot make a non-dir a mount-point (from here anyway). */ 661 if (vp->v_type != VDIR) { 662 vfs_delref(vfsops); 663 return ENOTDIR; 664 } 665 666 /* 667 * If the user is not root, ensure that they own the directory 668 * onto which we are attempting to mount. 669 */ 670 if ((error = VOP_GETATTR(vp, &va, l->l_cred)) != 0 || 671 (va.va_uid != kauth_cred_geteuid(l->l_cred) && 672 (error = kauth_authorize_generic(l->l_cred, 673 KAUTH_GENERIC_ISSUSER, NULL)) != 0)) { 674 vfs_delref(vfsops); 675 return error; 676 } 677 678 if (flags & MNT_EXPORTED) { 679 vfs_delref(vfsops); 680 return EINVAL; 681 } 682 683 if ((mp = vfs_mountalloc(vfsops, vp)) == NULL) { 684 vfs_delref(vfsops); 685 return ENOMEM; 686 } 687 688 mp->mnt_stat.f_owner = kauth_cred_geteuid(l->l_cred); 689 690 /* 691 * The underlying file system may refuse the mount for 692 * various reasons. Allow the user to force it to happen. 693 * 694 * Set the mount level flags. 695 */ 696 mp->mnt_flag = flags & 697 (MNT_FORCE | MNT_NOSUID | MNT_NOEXEC | MNT_NODEV | 698 MNT_SYNCHRONOUS | MNT_UNION | MNT_ASYNC | MNT_NOCOREDUMP | 699 MNT_NOATIME | MNT_NODEVMTIME | MNT_SYMPERM | MNT_SOFTDEP | 700 MNT_LOG | MNT_IGNORE | MNT_RDONLY); 701 702 mutex_enter(&mp->mnt_updating); 703 error = VFS_MOUNT(mp, path, data, data_len); 704 mp->mnt_flag &= ~MNT_OP_FLAGS; 705 706 if (error != 0) 707 goto err_unmounted; 708 709 /* 710 * Validate and prepare the mount point. 711 */ 712 error = pathbuf_copyin(path, &pb); 713 if (error != 0) { 714 goto err_mounted; 715 } 716 NDINIT(&nd, LOOKUP, FOLLOW | LOCKLEAF | TRYEMULROOT, pb); 717 error = namei(&nd); 718 pathbuf_destroy(pb); 719 if (error != 0) { 720 goto err_mounted; 721 } 722 if (nd.ni_vp != vp) { 723 vput(nd.ni_vp); 724 error = EINVAL; 725 goto err_mounted; 726 } 727 if (vp->v_mountedhere != NULL) { 728 vput(nd.ni_vp); 729 error = EBUSY; 730 goto err_mounted; 731 } 732 error = vinvalbuf(vp, V_SAVE, l->l_cred, l, 0, 0); 733 if (error != 0) { 734 vput(nd.ni_vp); 735 goto err_mounted; 736 } 737 738 /* 739 * Put the new filesystem on the mount list after root. 740 */ 741 cache_purge(vp); 742 mp->mnt_iflag &= ~IMNT_WANTRDWR; 743 744 mutex_enter(&mountlist_lock); 745 CIRCLEQ_INSERT_TAIL(&mountlist, mp, mnt_list); 746 mutex_exit(&mountlist_lock); 747 if ((mp->mnt_flag & (MNT_RDONLY | MNT_ASYNC)) == 0) 748 error = vfs_allocate_syncvnode(mp); 749 if (error == 0) 750 vp->v_mountedhere = mp; 751 vput(nd.ni_vp); 752 if (error != 0) 753 goto err_onmountlist; 754 755 mount_checkdirs(vp); 756 mutex_exit(&mp->mnt_updating); 757 758 /* Hold an additional reference to the mount across VFS_START(). */ 759 vfs_unbusy(mp, true, NULL); 760 (void) VFS_STATVFS(mp, &mp->mnt_stat); 761 error = VFS_START(mp, 0); 762 if (error) 763 vrele(vp); 764 /* Drop reference held for VFS_START(). */ 765 vfs_destroy(mp); 766 *vpp = NULL; 767 return error; 768 769 err_onmountlist: 770 mutex_enter(&mountlist_lock); 771 CIRCLEQ_REMOVE(&mountlist, mp, mnt_list); 772 mp->mnt_iflag |= IMNT_GONE; 773 mutex_exit(&mountlist_lock); 774 775 err_mounted: 776 if (VFS_UNMOUNT(mp, MNT_FORCE) != 0) 777 panic("Unmounting fresh file system failed"); 778 779 err_unmounted: 780 vp->v_mountedhere = NULL; 781 mutex_exit(&mp->mnt_updating); 782 vfs_unbusy(mp, false, NULL); 783 vfs_destroy(mp); 784 785 return error; 786 } 787 788 /* 789 * Do the actual file system unmount. File system is assumed to have 790 * been locked by the caller. 791 * 792 * => Caller hold reference to the mount, explicitly for dounmount(). 793 */ 794 int 795 dounmount(struct mount *mp, int flags, struct lwp *l) 796 { 797 vnode_t *coveredvp; 798 int error, async, used_syncer; 799 800 #if NVERIEXEC > 0 801 error = veriexec_unmountchk(mp); 802 if (error) 803 return (error); 804 #endif /* NVERIEXEC > 0 */ 805 806 /* 807 * XXX Freeze syncer. Must do this before locking the 808 * mount point. See dounmount() for details. 809 */ 810 mutex_enter(&syncer_mutex); 811 rw_enter(&mp->mnt_unmounting, RW_WRITER); 812 if ((mp->mnt_iflag & IMNT_GONE) != 0) { 813 rw_exit(&mp->mnt_unmounting); 814 mutex_exit(&syncer_mutex); 815 return ENOENT; 816 } 817 818 used_syncer = (mp->mnt_syncer != NULL); 819 820 /* 821 * XXX Syncer must be frozen when we get here. This should really 822 * be done on a per-mountpoint basis, but the syncer doesn't work 823 * like that. 824 * 825 * The caller of dounmount() must acquire syncer_mutex because 826 * the syncer itself acquires locks in syncer_mutex -> vfs_busy 827 * order, and we must preserve that order to avoid deadlock. 828 * 829 * So, if the file system did not use the syncer, now is 830 * the time to release the syncer_mutex. 831 */ 832 if (used_syncer == 0) { 833 mutex_exit(&syncer_mutex); 834 } 835 mp->mnt_iflag |= IMNT_UNMOUNT; 836 async = mp->mnt_flag & MNT_ASYNC; 837 mp->mnt_flag &= ~MNT_ASYNC; 838 cache_purgevfs(mp); /* remove cache entries for this file sys */ 839 if (mp->mnt_syncer != NULL) 840 vfs_deallocate_syncvnode(mp); 841 error = 0; 842 if ((mp->mnt_flag & MNT_RDONLY) == 0) { 843 error = VFS_SYNC(mp, MNT_WAIT, l->l_cred); 844 } 845 vfs_scrubvnlist(mp); 846 if (error == 0 || (flags & MNT_FORCE)) { 847 error = VFS_UNMOUNT(mp, flags); 848 } 849 if (error) { 850 if ((mp->mnt_flag & (MNT_RDONLY | MNT_ASYNC)) == 0) 851 (void) vfs_allocate_syncvnode(mp); 852 mp->mnt_iflag &= ~IMNT_UNMOUNT; 853 mp->mnt_flag |= async; 854 rw_exit(&mp->mnt_unmounting); 855 if (used_syncer) 856 mutex_exit(&syncer_mutex); 857 return (error); 858 } 859 vfs_scrubvnlist(mp); 860 mutex_enter(&mountlist_lock); 861 if ((coveredvp = mp->mnt_vnodecovered) != NULLVP) 862 coveredvp->v_mountedhere = NULL; 863 CIRCLEQ_REMOVE(&mountlist, mp, mnt_list); 864 mp->mnt_iflag |= IMNT_GONE; 865 mutex_exit(&mountlist_lock); 866 if (TAILQ_FIRST(&mp->mnt_vnodelist) != NULL) 867 panic("unmount: dangling vnode"); 868 if (used_syncer) 869 mutex_exit(&syncer_mutex); 870 vfs_hooks_unmount(mp); 871 rw_exit(&mp->mnt_unmounting); 872 vfs_destroy(mp); /* reference from mount() */ 873 if (coveredvp != NULLVP) { 874 vrele(coveredvp); 875 } 876 return (0); 877 } 878 879 /* 880 * Unmount all file systems. 881 * We traverse the list in reverse order under the assumption that doing so 882 * will avoid needing to worry about dependencies. 883 */ 884 bool 885 vfs_unmountall(struct lwp *l) 886 { 887 888 printf("unmounting file systems..."); 889 return vfs_unmountall1(l, true, true); 890 } 891 892 static void 893 vfs_unmount_print(struct mount *mp, const char *pfx) 894 { 895 896 aprint_verbose("%sunmounted %s on %s type %s\n", pfx, 897 mp->mnt_stat.f_mntfromname, mp->mnt_stat.f_mntonname, 898 mp->mnt_stat.f_fstypename); 899 } 900 901 bool 902 vfs_unmount_forceone(struct lwp *l) 903 { 904 struct mount *mp, *nmp; 905 int error; 906 907 nmp = NULL; 908 909 CIRCLEQ_FOREACH_REVERSE(mp, &mountlist, mnt_list) { 910 if (nmp == NULL || mp->mnt_gen > nmp->mnt_gen) { 911 nmp = mp; 912 } 913 } 914 if (nmp == NULL) { 915 return false; 916 } 917 918 #ifdef DEBUG 919 printf("\nforcefully unmounting %s (%s)...", 920 nmp->mnt_stat.f_mntonname, nmp->mnt_stat.f_mntfromname); 921 #endif 922 atomic_inc_uint(&nmp->mnt_refcnt); 923 if ((error = dounmount(nmp, MNT_FORCE, l)) == 0) { 924 vfs_unmount_print(nmp, "forcefully "); 925 return true; 926 } else { 927 vfs_destroy(nmp); 928 } 929 930 #ifdef DEBUG 931 printf("forceful unmount of %s failed with error %d\n", 932 nmp->mnt_stat.f_mntonname, error); 933 #endif 934 935 return false; 936 } 937 938 bool 939 vfs_unmountall1(struct lwp *l, bool force, bool verbose) 940 { 941 struct mount *mp, *nmp; 942 bool any_error = false, progress = false; 943 int error; 944 945 for (mp = CIRCLEQ_LAST(&mountlist); 946 mp != (void *)&mountlist; 947 mp = nmp) { 948 nmp = CIRCLEQ_PREV(mp, mnt_list); 949 #ifdef DEBUG 950 printf("\nunmounting %p %s (%s)...", 951 (void *)mp, mp->mnt_stat.f_mntonname, 952 mp->mnt_stat.f_mntfromname); 953 #endif 954 atomic_inc_uint(&mp->mnt_refcnt); 955 if ((error = dounmount(mp, force ? MNT_FORCE : 0, l)) == 0) { 956 vfs_unmount_print(mp, ""); 957 progress = true; 958 } else { 959 vfs_destroy(mp); 960 if (verbose) { 961 printf("unmount of %s failed with error %d\n", 962 mp->mnt_stat.f_mntonname, error); 963 } 964 any_error = true; 965 } 966 } 967 if (verbose) { 968 printf(" done\n"); 969 } 970 if (any_error && verbose) { 971 printf("WARNING: some file systems would not unmount\n"); 972 } 973 return progress; 974 } 975 976 void 977 vfs_sync_all(struct lwp *l) 978 { 979 printf("syncing disks... "); 980 981 /* remove user processes from run queue */ 982 suspendsched(); 983 (void)spl0(); 984 985 /* avoid coming back this way again if we panic. */ 986 doing_shutdown = 1; 987 988 do_sys_sync(l); 989 990 /* Wait for sync to finish. */ 991 if (buf_syncwait() != 0) { 992 #if defined(DDB) && defined(DEBUG_HALT_BUSY) 993 Debugger(); 994 #endif 995 printf("giving up\n"); 996 return; 997 } else 998 printf("done\n"); 999 } 1000 1001 /* 1002 * Sync and unmount file systems before shutting down. 1003 */ 1004 void 1005 vfs_shutdown(void) 1006 { 1007 lwp_t *l = curlwp; 1008 1009 vfs_sync_all(l); 1010 1011 /* 1012 * If we have paniced - do not make the situation potentially 1013 * worse by unmounting the file systems. 1014 */ 1015 if (panicstr != NULL) { 1016 return; 1017 } 1018 1019 /* Unmount file systems. */ 1020 vfs_unmountall(l); 1021 } 1022 1023 /* 1024 * Print a list of supported file system types (used by vfs_mountroot) 1025 */ 1026 static void 1027 vfs_print_fstypes(void) 1028 { 1029 struct vfsops *v; 1030 int cnt = 0; 1031 1032 mutex_enter(&vfs_list_lock); 1033 LIST_FOREACH(v, &vfs_list, vfs_list) 1034 ++cnt; 1035 mutex_exit(&vfs_list_lock); 1036 1037 if (cnt == 0) { 1038 printf("WARNING: No file system modules have been loaded.\n"); 1039 return; 1040 } 1041 1042 printf("Supported file systems:"); 1043 mutex_enter(&vfs_list_lock); 1044 LIST_FOREACH(v, &vfs_list, vfs_list) { 1045 printf(" %s", v->vfs_name); 1046 } 1047 mutex_exit(&vfs_list_lock); 1048 printf("\n"); 1049 } 1050 1051 /* 1052 * Mount the root file system. If the operator didn't specify a 1053 * file system to use, try all possible file systems until one 1054 * succeeds. 1055 */ 1056 int 1057 vfs_mountroot(void) 1058 { 1059 struct vfsops *v; 1060 int error = ENODEV; 1061 1062 if (root_device == NULL) 1063 panic("vfs_mountroot: root device unknown"); 1064 1065 switch (device_class(root_device)) { 1066 case DV_IFNET: 1067 if (rootdev != NODEV) 1068 panic("vfs_mountroot: rootdev set for DV_IFNET " 1069 "(0x%llx -> %llu,%llu)", 1070 (unsigned long long)rootdev, 1071 (unsigned long long)major(rootdev), 1072 (unsigned long long)minor(rootdev)); 1073 break; 1074 1075 case DV_DISK: 1076 if (rootdev == NODEV) 1077 panic("vfs_mountroot: rootdev not set for DV_DISK"); 1078 if (bdevvp(rootdev, &rootvp)) 1079 panic("vfs_mountroot: can't get vnode for rootdev"); 1080 error = VOP_OPEN(rootvp, FREAD, FSCRED); 1081 if (error) { 1082 printf("vfs_mountroot: can't open root device\n"); 1083 return (error); 1084 } 1085 break; 1086 1087 case DV_VIRTUAL: 1088 break; 1089 1090 default: 1091 printf("%s: inappropriate for root file system\n", 1092 device_xname(root_device)); 1093 return (ENODEV); 1094 } 1095 1096 /* 1097 * If user specified a root fs type, use it. Make sure the 1098 * specified type exists and has a mount_root() 1099 */ 1100 if (strcmp(rootfstype, ROOT_FSTYPE_ANY) != 0) { 1101 v = vfs_getopsbyname(rootfstype); 1102 error = EFTYPE; 1103 if (v != NULL) { 1104 if (v->vfs_mountroot != NULL) { 1105 error = (v->vfs_mountroot)(); 1106 } 1107 v->vfs_refcount--; 1108 } 1109 goto done; 1110 } 1111 1112 /* 1113 * Try each file system currently configured into the kernel. 1114 */ 1115 mutex_enter(&vfs_list_lock); 1116 LIST_FOREACH(v, &vfs_list, vfs_list) { 1117 if (v->vfs_mountroot == NULL) 1118 continue; 1119 #ifdef DEBUG 1120 aprint_normal("mountroot: trying %s...\n", v->vfs_name); 1121 #endif 1122 v->vfs_refcount++; 1123 mutex_exit(&vfs_list_lock); 1124 error = (*v->vfs_mountroot)(); 1125 mutex_enter(&vfs_list_lock); 1126 v->vfs_refcount--; 1127 if (!error) { 1128 aprint_normal("root file system type: %s\n", 1129 v->vfs_name); 1130 break; 1131 } 1132 } 1133 mutex_exit(&vfs_list_lock); 1134 1135 if (v == NULL) { 1136 vfs_print_fstypes(); 1137 printf("no file system for %s", device_xname(root_device)); 1138 if (device_class(root_device) == DV_DISK) 1139 printf(" (dev 0x%llx)", (unsigned long long)rootdev); 1140 printf("\n"); 1141 error = EFTYPE; 1142 } 1143 1144 done: 1145 if (error && device_class(root_device) == DV_DISK) { 1146 VOP_CLOSE(rootvp, FREAD, FSCRED); 1147 vrele(rootvp); 1148 } 1149 if (error == 0) { 1150 extern struct cwdinfo cwdi0; 1151 1152 CIRCLEQ_FIRST(&mountlist)->mnt_flag |= MNT_ROOTFS; 1153 CIRCLEQ_FIRST(&mountlist)->mnt_op->vfs_refcount++; 1154 1155 /* 1156 * Get the vnode for '/'. Set cwdi0.cwdi_cdir to 1157 * reference it. 1158 */ 1159 error = VFS_ROOT(CIRCLEQ_FIRST(&mountlist), &rootvnode); 1160 if (error) 1161 panic("cannot find root vnode, error=%d", error); 1162 cwdi0.cwdi_cdir = rootvnode; 1163 vref(cwdi0.cwdi_cdir); 1164 VOP_UNLOCK(rootvnode); 1165 cwdi0.cwdi_rdir = NULL; 1166 1167 /* 1168 * Now that root is mounted, we can fixup initproc's CWD 1169 * info. All other processes are kthreads, which merely 1170 * share proc0's CWD info. 1171 */ 1172 initproc->p_cwdi->cwdi_cdir = rootvnode; 1173 vref(initproc->p_cwdi->cwdi_cdir); 1174 initproc->p_cwdi->cwdi_rdir = NULL; 1175 /* 1176 * Enable loading of modules from the filesystem 1177 */ 1178 module_load_vfs_init(); 1179 1180 } 1181 return (error); 1182 } 1183 1184 /* 1185 * mount_specific_key_create -- 1186 * Create a key for subsystem mount-specific data. 1187 */ 1188 int 1189 mount_specific_key_create(specificdata_key_t *keyp, specificdata_dtor_t dtor) 1190 { 1191 1192 return specificdata_key_create(mount_specificdata_domain, keyp, dtor); 1193 } 1194 1195 /* 1196 * mount_specific_key_delete -- 1197 * Delete a key for subsystem mount-specific data. 1198 */ 1199 void 1200 mount_specific_key_delete(specificdata_key_t key) 1201 { 1202 1203 specificdata_key_delete(mount_specificdata_domain, key); 1204 } 1205 1206 /* 1207 * mount_initspecific -- 1208 * Initialize a mount's specificdata container. 1209 */ 1210 void 1211 mount_initspecific(struct mount *mp) 1212 { 1213 int error; 1214 1215 error = specificdata_init(mount_specificdata_domain, 1216 &mp->mnt_specdataref); 1217 KASSERT(error == 0); 1218 } 1219 1220 /* 1221 * mount_finispecific -- 1222 * Finalize a mount's specificdata container. 1223 */ 1224 void 1225 mount_finispecific(struct mount *mp) 1226 { 1227 1228 specificdata_fini(mount_specificdata_domain, &mp->mnt_specdataref); 1229 } 1230 1231 /* 1232 * mount_getspecific -- 1233 * Return mount-specific data corresponding to the specified key. 1234 */ 1235 void * 1236 mount_getspecific(struct mount *mp, specificdata_key_t key) 1237 { 1238 1239 return specificdata_getspecific(mount_specificdata_domain, 1240 &mp->mnt_specdataref, key); 1241 } 1242 1243 /* 1244 * mount_setspecific -- 1245 * Set mount-specific data corresponding to the specified key. 1246 */ 1247 void 1248 mount_setspecific(struct mount *mp, specificdata_key_t key, void *data) 1249 { 1250 1251 specificdata_setspecific(mount_specificdata_domain, 1252 &mp->mnt_specdataref, key, data); 1253 } 1254 1255 /* 1256 * Check to see if a filesystem is mounted on a block device. 1257 */ 1258 int 1259 vfs_mountedon(vnode_t *vp) 1260 { 1261 vnode_t *vq; 1262 int error = 0; 1263 1264 if (vp->v_type != VBLK) 1265 return ENOTBLK; 1266 if (vp->v_specmountpoint != NULL) 1267 return (EBUSY); 1268 mutex_enter(&device_lock); 1269 for (vq = specfs_hash[SPECHASH(vp->v_rdev)]; vq != NULL; 1270 vq = vq->v_specnext) { 1271 if (vq->v_rdev != vp->v_rdev || vq->v_type != vp->v_type) 1272 continue; 1273 if (vq->v_specmountpoint != NULL) { 1274 error = EBUSY; 1275 break; 1276 } 1277 } 1278 mutex_exit(&device_lock); 1279 return (error); 1280 } 1281 1282 /* 1283 * Check if a device pointed to by vp is mounted. 1284 * 1285 * Returns: 1286 * EINVAL if it's not a disk 1287 * EBUSY if it's a disk and mounted 1288 * 0 if it's a disk and not mounted 1289 */ 1290 int 1291 rawdev_mounted(vnode_t *vp, vnode_t **bvpp) 1292 { 1293 vnode_t *bvp; 1294 dev_t dev; 1295 int d_type; 1296 1297 bvp = NULL; 1298 dev = vp->v_rdev; 1299 d_type = D_OTHER; 1300 1301 if (iskmemvp(vp)) 1302 return EINVAL; 1303 1304 switch (vp->v_type) { 1305 case VCHR: { 1306 const struct cdevsw *cdev; 1307 1308 cdev = cdevsw_lookup(dev); 1309 if (cdev != NULL) { 1310 dev_t blkdev; 1311 1312 blkdev = devsw_chr2blk(dev); 1313 if (blkdev != NODEV) { 1314 if (vfinddev(blkdev, VBLK, &bvp) != 0) { 1315 d_type = (cdev->d_flag & D_TYPEMASK); 1316 /* XXX: what if bvp disappears? */ 1317 vrele(bvp); 1318 } 1319 } 1320 } 1321 1322 break; 1323 } 1324 1325 case VBLK: { 1326 const struct bdevsw *bdev; 1327 1328 bdev = bdevsw_lookup(dev); 1329 if (bdev != NULL) 1330 d_type = (bdev->d_flag & D_TYPEMASK); 1331 1332 bvp = vp; 1333 1334 break; 1335 } 1336 1337 default: 1338 break; 1339 } 1340 1341 if (d_type != D_DISK) 1342 return EINVAL; 1343 1344 if (bvpp != NULL) 1345 *bvpp = bvp; 1346 1347 /* 1348 * XXX: This is bogus. We should be failing the request 1349 * XXX: not only if this specific slice is mounted, but 1350 * XXX: if it's on a disk with any other mounted slice. 1351 */ 1352 if (vfs_mountedon(bvp)) 1353 return EBUSY; 1354 1355 return 0; 1356 } 1357 1358 /* 1359 * Make a 'unique' number from a mount type name. 1360 */ 1361 long 1362 makefstype(const char *type) 1363 { 1364 long rv; 1365 1366 for (rv = 0; *type; type++) { 1367 rv <<= 2; 1368 rv ^= *type; 1369 } 1370 return rv; 1371 } 1372