1 /* 2 * Copyright (c) 2004 The DragonFly Project. All rights reserved. 3 * 4 * This code is derived from software contributed to The DragonFly Project 5 * by Matthew Dillon <dillon@backplane.com> 6 * 7 * Redistribution and use in source and binary forms, with or without 8 * modification, are permitted provided that the following conditions 9 * are met: 10 * 11 * 1. Redistributions of source code must retain the above copyright 12 * notice, this list of conditions and the following disclaimer. 13 * 2. Redistributions in binary form must reproduce the above copyright 14 * notice, this list of conditions and the following disclaimer in 15 * the documentation and/or other materials provided with the 16 * distribution. 17 * 3. Neither the name of The DragonFly Project nor the names of its 18 * contributors may be used to endorse or promote products derived 19 * from this software without specific, prior written permission. 20 * 21 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS 22 * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT 23 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS 24 * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE 25 * COPYRIGHT HOLDERS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, 26 * INCIDENTAL, SPECIAL, EXEMPLARY OR CONSEQUENTIAL DAMAGES (INCLUDING, 27 * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; 28 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED 29 * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, 30 * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT 31 * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 32 * SUCH DAMAGE. 33 * 34 * Copyright (c) 1989, 1993 35 * The Regents of the University of California. All rights reserved. 36 * (c) UNIX System Laboratories, Inc. 37 * All or some portions of this file are derived from material licensed 38 * to the University of California by American Telephone and Telegraph 39 * Co. or Unix System Laboratories, Inc. and are reproduced herein with 40 * the permission of UNIX System Laboratories, Inc. 41 * 42 * Redistribution and use in source and binary forms, with or without 43 * modification, are permitted provided that the following conditions 44 * are met: 45 * 1. Redistributions of source code must retain the above copyright 46 * notice, this list of conditions and the following disclaimer. 47 * 2. Redistributions in binary form must reproduce the above copyright 48 * notice, this list of conditions and the following disclaimer in the 49 * documentation and/or other materials provided with the distribution. 50 * 3. All advertising materials mentioning features or use of this software 51 * must display the following acknowledgement: 52 * This product includes software developed by the University of 53 * California, Berkeley and its contributors. 54 * 4. Neither the name of the University nor the names of its contributors 55 * may be used to endorse or promote products derived from this software 56 * without specific prior written permission. 57 * 58 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 59 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 60 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 61 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 62 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 63 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 64 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 65 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 66 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 67 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 68 * SUCH DAMAGE. 69 * 70 * $DragonFly: src/sys/kern/vfs_mount.c,v 1.37 2008/09/17 21:44:18 dillon Exp $ 71 */ 72 73 /* 74 * External virtual filesystem routines 75 */ 76 #include "opt_ddb.h" 77 78 #include <sys/param.h> 79 #include <sys/systm.h> 80 #include <sys/kernel.h> 81 #include <sys/malloc.h> 82 #include <sys/mount.h> 83 #include <sys/proc.h> 84 #include <sys/vnode.h> 85 #include <sys/buf.h> 86 #include <sys/eventhandler.h> 87 #include <sys/kthread.h> 88 #include <sys/sysctl.h> 89 90 #include <machine/limits.h> 91 92 #include <sys/buf2.h> 93 #include <sys/thread2.h> 94 #include <sys/sysref2.h> 95 #include <sys/mplock2.h> 96 97 #include <vm/vm.h> 98 #include <vm/vm_object.h> 99 100 struct mountscan_info { 101 TAILQ_ENTRY(mountscan_info) msi_entry; 102 int msi_how; 103 struct mount *msi_node; 104 }; 105 106 struct vmntvnodescan_info { 107 TAILQ_ENTRY(vmntvnodescan_info) entry; 108 struct vnode *vp; 109 }; 110 111 struct vnlru_info { 112 int pass; 113 }; 114 115 static int vnlru_nowhere = 0; 116 SYSCTL_INT(_debug, OID_AUTO, vnlru_nowhere, CTLFLAG_RD, 117 &vnlru_nowhere, 0, 118 "Number of times the vnlru process ran without success"); 119 120 121 static struct lwkt_token mntid_token; 122 static struct mount dummymount; 123 124 /* note: mountlist exported to pstat */ 125 struct mntlist mountlist = TAILQ_HEAD_INITIALIZER(mountlist); 126 static TAILQ_HEAD(,mountscan_info) mountscan_list; 127 static struct lwkt_token mountlist_token; 128 static TAILQ_HEAD(,vmntvnodescan_info) mntvnodescan_list; 129 struct lwkt_token mntvnode_token; 130 131 static TAILQ_HEAD(,bio_ops) bio_ops_list = TAILQ_HEAD_INITIALIZER(bio_ops_list); 132 133 /* 134 * Called from vfsinit() 135 */ 136 void 137 vfs_mount_init(void) 138 { 139 lwkt_token_init(&mountlist_token, 1, "mntlist"); 140 lwkt_token_init(&mntvnode_token, 1, "mntvnode"); 141 lwkt_token_init(&mntid_token, 1, "mntid"); 142 TAILQ_INIT(&mountscan_list); 143 TAILQ_INIT(&mntvnodescan_list); 144 mount_init(&dummymount); 145 dummymount.mnt_flag |= MNT_RDONLY; 146 dummymount.mnt_kern_flag |= MNTK_ALL_MPSAFE; 147 } 148 149 /* 150 * Support function called with mntvnode_token held to remove a vnode 151 * from the mountlist. We must update any list scans which are in progress. 152 */ 153 static void 154 vremovevnodemnt(struct vnode *vp) 155 { 156 struct vmntvnodescan_info *info; 157 158 TAILQ_FOREACH(info, &mntvnodescan_list, entry) { 159 if (info->vp == vp) 160 info->vp = TAILQ_NEXT(vp, v_nmntvnodes); 161 } 162 TAILQ_REMOVE(&vp->v_mount->mnt_nvnodelist, vp, v_nmntvnodes); 163 } 164 165 /* 166 * Allocate a new vnode and associate it with a tag, mount point, and 167 * operations vector. 168 * 169 * A VX locked and refd vnode is returned. The caller should setup the 170 * remaining fields and vx_put() or, if he wishes to leave a vref, 171 * vx_unlock() the vnode. 172 */ 173 int 174 getnewvnode(enum vtagtype tag, struct mount *mp, 175 struct vnode **vpp, int lktimeout, int lkflags) 176 { 177 struct vnode *vp; 178 179 KKASSERT(mp != NULL); 180 181 vp = allocvnode(lktimeout, lkflags); 182 vp->v_tag = tag; 183 vp->v_data = NULL; 184 185 /* 186 * By default the vnode is assigned the mount point's normal 187 * operations vector. 188 */ 189 vp->v_ops = &mp->mnt_vn_use_ops; 190 191 /* 192 * Placing the vnode on the mount point's queue makes it visible. 193 * VNON prevents it from being messed with, however. 194 */ 195 insmntque(vp, mp); 196 197 /* 198 * A VX locked & refd vnode is returned. 199 */ 200 *vpp = vp; 201 return (0); 202 } 203 204 /* 205 * This function creates vnodes with special operations vectors. The 206 * mount point is optional. 207 * 208 * This routine is being phased out but is still used by vfs_conf to 209 * create vnodes for devices prior to the root mount (with mp == NULL). 210 */ 211 int 212 getspecialvnode(enum vtagtype tag, struct mount *mp, 213 struct vop_ops **ops, 214 struct vnode **vpp, int lktimeout, int lkflags) 215 { 216 struct vnode *vp; 217 218 vp = allocvnode(lktimeout, lkflags); 219 vp->v_tag = tag; 220 vp->v_data = NULL; 221 vp->v_ops = ops; 222 223 if (mp == NULL) 224 mp = &dummymount; 225 226 /* 227 * Placing the vnode on the mount point's queue makes it visible. 228 * VNON prevents it from being messed with, however. 229 */ 230 insmntque(vp, mp); 231 232 /* 233 * A VX locked & refd vnode is returned. 234 */ 235 *vpp = vp; 236 return (0); 237 } 238 239 /* 240 * Interlock against an unmount, return 0 on success, non-zero on failure. 241 * 242 * The passed flag may be 0 or LK_NOWAIT and is only used if an unmount 243 * is in-progress. 244 * 245 * If no unmount is in-progress LK_NOWAIT is ignored. No other flag bits 246 * are used. A shared locked will be obtained and the filesystem will not 247 * be unmountable until the lock is released. 248 */ 249 int 250 vfs_busy(struct mount *mp, int flags) 251 { 252 int lkflags; 253 254 if (mp->mnt_kern_flag & MNTK_UNMOUNT) { 255 if (flags & LK_NOWAIT) 256 return (ENOENT); 257 /* XXX not MP safe */ 258 mp->mnt_kern_flag |= MNTK_MWAIT; 259 /* 260 * Since all busy locks are shared except the exclusive 261 * lock granted when unmounting, the only place that a 262 * wakeup needs to be done is at the release of the 263 * exclusive lock at the end of dounmount. 264 */ 265 tsleep((caddr_t)mp, 0, "vfs_busy", 0); 266 return (ENOENT); 267 } 268 lkflags = LK_SHARED; 269 if (lockmgr(&mp->mnt_lock, lkflags)) 270 panic("vfs_busy: unexpected lock failure"); 271 return (0); 272 } 273 274 /* 275 * Free a busy filesystem. 276 */ 277 void 278 vfs_unbusy(struct mount *mp) 279 { 280 lockmgr(&mp->mnt_lock, LK_RELEASE); 281 } 282 283 /* 284 * Lookup a filesystem type, and if found allocate and initialize 285 * a mount structure for it. 286 * 287 * Devname is usually updated by mount(8) after booting. 288 */ 289 int 290 vfs_rootmountalloc(char *fstypename, char *devname, struct mount **mpp) 291 { 292 struct vfsconf *vfsp; 293 struct mount *mp; 294 295 if (fstypename == NULL) 296 return (ENODEV); 297 298 vfsp = vfsconf_find_by_name(fstypename); 299 if (vfsp == NULL) 300 return (ENODEV); 301 mp = kmalloc(sizeof(struct mount), M_MOUNT, M_WAITOK | M_ZERO); 302 mount_init(mp); 303 lockinit(&mp->mnt_lock, "vfslock", VLKTIMEOUT, 0); 304 305 vfs_busy(mp, LK_NOWAIT); 306 mp->mnt_vfc = vfsp; 307 mp->mnt_op = vfsp->vfc_vfsops; 308 vfsp->vfc_refcount++; 309 mp->mnt_stat.f_type = vfsp->vfc_typenum; 310 mp->mnt_flag |= MNT_RDONLY; 311 mp->mnt_flag |= vfsp->vfc_flags & MNT_VISFLAGMASK; 312 strncpy(mp->mnt_stat.f_fstypename, vfsp->vfc_name, MFSNAMELEN); 313 copystr(devname, mp->mnt_stat.f_mntfromname, MNAMELEN - 1, 0); 314 *mpp = mp; 315 return (0); 316 } 317 318 /* 319 * Basic mount structure initialization 320 */ 321 void 322 mount_init(struct mount *mp) 323 { 324 lockinit(&mp->mnt_lock, "vfslock", 0, 0); 325 lwkt_token_init(&mp->mnt_token, 1, "permnt"); 326 327 TAILQ_INIT(&mp->mnt_nvnodelist); 328 TAILQ_INIT(&mp->mnt_reservedvnlist); 329 TAILQ_INIT(&mp->mnt_jlist); 330 mp->mnt_nvnodelistsize = 0; 331 mp->mnt_flag = 0; 332 mp->mnt_iosize_max = DFLTPHYS; 333 } 334 335 /* 336 * Lookup a mount point by filesystem identifier. 337 */ 338 struct mount * 339 vfs_getvfs(fsid_t *fsid) 340 { 341 struct mount *mp; 342 343 lwkt_gettoken(&mountlist_token); 344 TAILQ_FOREACH(mp, &mountlist, mnt_list) { 345 if (mp->mnt_stat.f_fsid.val[0] == fsid->val[0] && 346 mp->mnt_stat.f_fsid.val[1] == fsid->val[1]) { 347 break; 348 } 349 } 350 lwkt_reltoken(&mountlist_token); 351 return (mp); 352 } 353 354 /* 355 * Get a new unique fsid. Try to make its val[0] unique, since this value 356 * will be used to create fake device numbers for stat(). Also try (but 357 * not so hard) make its val[0] unique mod 2^16, since some emulators only 358 * support 16-bit device numbers. We end up with unique val[0]'s for the 359 * first 2^16 calls and unique val[0]'s mod 2^16 for the first 2^8 calls. 360 * 361 * Keep in mind that several mounts may be running in parallel. Starting 362 * the search one past where the previous search terminated is both a 363 * micro-optimization and a defense against returning the same fsid to 364 * different mounts. 365 */ 366 void 367 vfs_getnewfsid(struct mount *mp) 368 { 369 static u_int16_t mntid_base; 370 fsid_t tfsid; 371 int mtype; 372 373 lwkt_gettoken(&mntid_token); 374 mtype = mp->mnt_vfc->vfc_typenum; 375 tfsid.val[1] = mtype; 376 mtype = (mtype & 0xFF) << 24; 377 for (;;) { 378 tfsid.val[0] = makeudev(255, 379 mtype | ((mntid_base & 0xFF00) << 8) | (mntid_base & 0xFF)); 380 mntid_base++; 381 if (vfs_getvfs(&tfsid) == NULL) 382 break; 383 } 384 mp->mnt_stat.f_fsid.val[0] = tfsid.val[0]; 385 mp->mnt_stat.f_fsid.val[1] = tfsid.val[1]; 386 lwkt_reltoken(&mntid_token); 387 } 388 389 /* 390 * Set the FSID for a new mount point to the template. Adjust 391 * the FSID to avoid collisions. 392 */ 393 int 394 vfs_setfsid(struct mount *mp, fsid_t *template) 395 { 396 int didmunge = 0; 397 398 bzero(&mp->mnt_stat.f_fsid, sizeof(mp->mnt_stat.f_fsid)); 399 for (;;) { 400 if (vfs_getvfs(template) == NULL) 401 break; 402 didmunge = 1; 403 ++template->val[1]; 404 } 405 mp->mnt_stat.f_fsid = *template; 406 return(didmunge); 407 } 408 409 /* 410 * This routine is called when we have too many vnodes. It attempts 411 * to free <count> vnodes and will potentially free vnodes that still 412 * have VM backing store (VM backing store is typically the cause 413 * of a vnode blowout so we want to do this). Therefore, this operation 414 * is not considered cheap. 415 * 416 * A number of conditions may prevent a vnode from being reclaimed. 417 * the buffer cache may have references on the vnode, a directory 418 * vnode may still have references due to the namei cache representing 419 * underlying files, or the vnode may be in active use. It is not 420 * desireable to reuse such vnodes. These conditions may cause the 421 * number of vnodes to reach some minimum value regardless of what 422 * you set kern.maxvnodes to. Do not set kern.maxvnodes too low. 423 */ 424 425 /* 426 * This is a quick non-blocking check to determine if the vnode is a good 427 * candidate for being (eventually) vgone()'d. Returns 0 if the vnode is 428 * not a good candidate, 1 if it is. 429 */ 430 static __inline int 431 vmightfree(struct vnode *vp, int page_count, int pass) 432 { 433 if (vp->v_flag & VRECLAIMED) 434 return (0); 435 #if 0 436 if ((vp->v_flag & VFREE) && TAILQ_EMPTY(&vp->v_namecache)) 437 return (0); 438 #endif 439 if (sysref_isactive(&vp->v_sysref)) 440 return (0); 441 if (vp->v_object && vp->v_object->resident_page_count >= page_count) 442 return (0); 443 444 /* 445 * XXX horrible hack. Up to four passes will be taken. Each pass 446 * makes a larger set of vnodes eligible. For now what this really 447 * means is that we try to recycle files opened only once before 448 * recycling files opened multiple times. 449 */ 450 switch(vp->v_flag & (VAGE0 | VAGE1)) { 451 case 0: 452 if (pass < 3) 453 return(0); 454 break; 455 case VAGE0: 456 if (pass < 2) 457 return(0); 458 break; 459 case VAGE1: 460 if (pass < 1) 461 return(0); 462 break; 463 case VAGE0 | VAGE1: 464 break; 465 } 466 return (1); 467 } 468 469 /* 470 * The vnode was found to be possibly vgone()able and the caller has locked it 471 * (thus the usecount should be 1 now). Determine if the vnode is actually 472 * vgone()able, doing some cleanups in the process. Returns 1 if the vnode 473 * can be vgone()'d, 0 otherwise. 474 * 475 * Note that v_auxrefs may be non-zero because (A) this vnode is not a leaf 476 * in the namecache topology and (B) this vnode has buffer cache bufs. 477 * We cannot remove vnodes with non-leaf namecache associations. We do a 478 * tentitive leaf check prior to attempting to flush out any buffers but the 479 * 'real' test when all is said in done is that v_auxrefs must become 0 for 480 * the vnode to be freeable. 481 * 482 * We could theoretically just unconditionally flush when v_auxrefs != 0, 483 * but flushing data associated with non-leaf nodes (which are always 484 * directories), just throws it away for no benefit. It is the buffer 485 * cache's responsibility to choose buffers to recycle from the cached 486 * data point of view. 487 */ 488 static int 489 visleaf(struct vnode *vp) 490 { 491 struct namecache *ncp; 492 493 spin_lock(&vp->v_spinlock); 494 TAILQ_FOREACH(ncp, &vp->v_namecache, nc_vnode) { 495 if (!TAILQ_EMPTY(&ncp->nc_list)) { 496 spin_unlock(&vp->v_spinlock); 497 return(0); 498 } 499 } 500 spin_unlock(&vp->v_spinlock); 501 return(1); 502 } 503 504 /* 505 * Try to clean up the vnode to the point where it can be vgone()'d, returning 506 * 0 if it cannot be vgone()'d (or already has been), 1 if it can. Unlike 507 * vmightfree() this routine may flush the vnode and block. Vnodes marked 508 * VFREE are still candidates for vgone()ing because they may hold namecache 509 * resources and could be blocking the namecache directory hierarchy (and 510 * related vnodes) from being freed. 511 */ 512 static int 513 vtrytomakegoneable(struct vnode *vp, int page_count) 514 { 515 if (vp->v_flag & VRECLAIMED) 516 return (0); 517 if (vp->v_sysref.refcnt > 1) 518 return (0); 519 if (vp->v_object && vp->v_object->resident_page_count >= page_count) 520 return (0); 521 if (vp->v_auxrefs && visleaf(vp)) { 522 vinvalbuf(vp, V_SAVE, 0, 0); 523 #if 0 /* DEBUG */ 524 kprintf((vp->v_auxrefs ? "vrecycle: vp %p failed: %s\n" : 525 "vrecycle: vp %p succeeded: %s\n"), vp, 526 (TAILQ_FIRST(&vp->v_namecache) ? 527 TAILQ_FIRST(&vp->v_namecache)->nc_name : "?")); 528 #endif 529 } 530 531 /* 532 * This sequence may seem a little strange, but we need to optimize 533 * the critical path a bit. We can't recycle vnodes with other 534 * references and because we are trying to recycle an otherwise 535 * perfectly fine vnode we have to invalidate the namecache in a 536 * way that avoids possible deadlocks (since the vnode lock is being 537 * held here). Finally, we have to check for other references one 538 * last time in case something snuck in during the inval. 539 */ 540 if (vp->v_sysref.refcnt > 1 || vp->v_auxrefs != 0) 541 return (0); 542 if (cache_inval_vp_nonblock(vp)) 543 return (0); 544 return (vp->v_sysref.refcnt <= 1 && vp->v_auxrefs == 0); 545 } 546 547 /* 548 * Reclaim up to 1/10 of the vnodes associated with a mount point. Try 549 * to avoid vnodes which have lots of resident pages (we are trying to free 550 * vnodes, not memory). 551 * 552 * This routine is a callback from the mountlist scan. The mount point 553 * in question will be busied. 554 * 555 * NOTE: The 1/10 reclamation also ensures that the inactive data set 556 * (the vnodes being recycled by the one-time use) does not degenerate 557 * into too-small a set. This is important because once a vnode is 558 * marked as not being one-time-use (VAGE0/VAGE1 both 0) that vnode 559 * will not be destroyed EXCEPT by this mechanism. VM pages can still 560 * be cleaned/freed by the pageout daemon. 561 */ 562 static int 563 vlrureclaim(struct mount *mp, void *data) 564 { 565 struct vnlru_info *info = data; 566 struct vnode *vp; 567 int done; 568 int trigger; 569 int usevnodes; 570 int count; 571 int trigger_mult = vnlru_nowhere; 572 573 /* 574 * Calculate the trigger point for the resident pages check. The 575 * minimum trigger value is approximately the number of pages in 576 * the system divded by the number of vnodes. However, due to 577 * various other system memory overheads unrelated to data caching 578 * it is a good idea to double the trigger (at least). 579 * 580 * trigger_mult starts at 0. If the recycler is having problems 581 * finding enough freeable vnodes it will increase trigger_mult. 582 * This should not happen in normal operation, even on machines with 583 * low amounts of memory, but extraordinary memory use by the system 584 * verses the amount of cached data can trigger it. 585 */ 586 usevnodes = desiredvnodes; 587 if (usevnodes <= 0) 588 usevnodes = 1; 589 trigger = vmstats.v_page_count * (trigger_mult + 2) / usevnodes; 590 591 done = 0; 592 lwkt_gettoken(&mntvnode_token); 593 count = mp->mnt_nvnodelistsize / 10 + 1; 594 595 while (count && mp->mnt_syncer) { 596 /* 597 * Next vnode. Use the special syncer vnode to placemark 598 * the LRU. This way the LRU code does not interfere with 599 * vmntvnodescan(). 600 */ 601 vp = TAILQ_NEXT(mp->mnt_syncer, v_nmntvnodes); 602 TAILQ_REMOVE(&mp->mnt_nvnodelist, mp->mnt_syncer, v_nmntvnodes); 603 if (vp) { 604 TAILQ_INSERT_AFTER(&mp->mnt_nvnodelist, vp, 605 mp->mnt_syncer, v_nmntvnodes); 606 } else { 607 TAILQ_INSERT_HEAD(&mp->mnt_nvnodelist, mp->mnt_syncer, 608 v_nmntvnodes); 609 vp = TAILQ_NEXT(mp->mnt_syncer, v_nmntvnodes); 610 if (vp == NULL) 611 break; 612 } 613 614 /* 615 * __VNODESCAN__ 616 * 617 * The VP will stick around while we hold mntvnode_token, 618 * at least until we block, so we can safely do an initial 619 * check, and then must check again after we lock the vnode. 620 */ 621 if (vp->v_type == VNON || /* syncer or indeterminant */ 622 !vmightfree(vp, trigger, info->pass) /* critical path opt */ 623 ) { 624 --count; 625 continue; 626 } 627 628 /* 629 * VX get the candidate vnode. If the VX get fails the 630 * vnode might still be on the mountlist. Our loop depends 631 * on us at least cycling the vnode to the end of the 632 * mountlist. 633 */ 634 if (vx_get_nonblock(vp) != 0) { 635 --count; 636 continue; 637 } 638 639 /* 640 * Since we blocked locking the vp, make sure it is still 641 * a candidate for reclamation. That is, it has not already 642 * been reclaimed and only has our VX reference associated 643 * with it. 644 */ 645 if (vp->v_type == VNON || /* syncer or indeterminant */ 646 (vp->v_flag & VRECLAIMED) || 647 vp->v_mount != mp || 648 !vtrytomakegoneable(vp, trigger) /* critical path opt */ 649 ) { 650 --count; 651 vx_put(vp); 652 continue; 653 } 654 655 /* 656 * All right, we are good, move the vp to the end of the 657 * mountlist and clean it out. The vget will have returned 658 * an error if the vnode was destroyed (VRECLAIMED set), so we 659 * do not have to check again. The vput() will move the 660 * vnode to the free list if the vgone() was successful. 661 */ 662 KKASSERT(vp->v_mount == mp); 663 vgone_vxlocked(vp); 664 vx_put(vp); 665 ++done; 666 --count; 667 } 668 lwkt_reltoken(&mntvnode_token); 669 return (done); 670 } 671 672 /* 673 * Attempt to recycle vnodes in a context that is always safe to block. 674 * Calling vlrurecycle() from the bowels of file system code has some 675 * interesting deadlock problems. 676 */ 677 static struct thread *vnlruthread; 678 static int vnlruproc_sig; 679 680 void 681 vnlru_proc_wait(void) 682 { 683 tsleep_interlock(&vnlruproc_sig, 0); 684 if (vnlruproc_sig == 0) { 685 vnlruproc_sig = 1; /* avoid unnecessary wakeups */ 686 wakeup(vnlruthread); 687 } 688 tsleep(&vnlruproc_sig, PINTERLOCKED, "vlruwk", hz); 689 } 690 691 static void 692 vnlru_proc(void) 693 { 694 struct thread *td = curthread; 695 struct vnlru_info info; 696 int done; 697 698 EVENTHANDLER_REGISTER(shutdown_pre_sync, shutdown_kproc, td, 699 SHUTDOWN_PRI_FIRST); 700 701 get_mplock(); 702 crit_enter(); 703 704 for (;;) { 705 kproc_suspend_loop(); 706 707 /* 708 * Try to free some vnodes if we have too many 709 */ 710 if (numvnodes > desiredvnodes && 711 freevnodes > desiredvnodes * 2 / 10) { 712 int count = numvnodes - desiredvnodes; 713 714 if (count > freevnodes / 100) 715 count = freevnodes / 100; 716 if (count < 5) 717 count = 5; 718 freesomevnodes(count); 719 } 720 721 /* 722 * Nothing to do if most of our vnodes are already on 723 * the free list. 724 */ 725 if (numvnodes - freevnodes <= desiredvnodes * 9 / 10) { 726 vnlruproc_sig = 0; 727 wakeup(&vnlruproc_sig); 728 tsleep(vnlruthread, 0, "vlruwt", hz); 729 continue; 730 } 731 cache_hysteresis(); 732 733 /* 734 * The pass iterates through the four combinations of 735 * VAGE0/VAGE1. We want to get rid of aged small files 736 * first. 737 */ 738 info.pass = 0; 739 done = 0; 740 while (done == 0 && info.pass < 4) { 741 done = mountlist_scan(vlrureclaim, &info, 742 MNTSCAN_FORWARD); 743 ++info.pass; 744 } 745 746 /* 747 * The vlrureclaim() call only processes 1/10 of the vnodes 748 * on each mount. If we couldn't find any repeat the loop 749 * at least enough times to cover all available vnodes before 750 * we start sleeping. Complain if the failure extends past 751 * 30 second, every 30 seconds. 752 */ 753 if (done == 0) { 754 ++vnlru_nowhere; 755 if (vnlru_nowhere % 10 == 0) 756 tsleep(vnlruthread, 0, "vlrup", hz * 3); 757 if (vnlru_nowhere % 100 == 0) 758 kprintf("vnlru_proc: vnode recycler stopped working!\n"); 759 if (vnlru_nowhere == 1000) 760 vnlru_nowhere = 900; 761 } else { 762 vnlru_nowhere = 0; 763 } 764 } 765 766 crit_exit(); 767 rel_mplock(); 768 } 769 770 /* 771 * MOUNTLIST FUNCTIONS 772 */ 773 774 /* 775 * mountlist_insert (MP SAFE) 776 * 777 * Add a new mount point to the mount list. 778 */ 779 void 780 mountlist_insert(struct mount *mp, int how) 781 { 782 lwkt_gettoken(&mountlist_token); 783 if (how == MNTINS_FIRST) 784 TAILQ_INSERT_HEAD(&mountlist, mp, mnt_list); 785 else 786 TAILQ_INSERT_TAIL(&mountlist, mp, mnt_list); 787 lwkt_reltoken(&mountlist_token); 788 } 789 790 /* 791 * mountlist_interlock (MP SAFE) 792 * 793 * Execute the specified interlock function with the mountlist token 794 * held. The function will be called in a serialized fashion verses 795 * other functions called through this mechanism. 796 */ 797 int 798 mountlist_interlock(int (*callback)(struct mount *), struct mount *mp) 799 { 800 int error; 801 802 lwkt_gettoken(&mountlist_token); 803 error = callback(mp); 804 lwkt_reltoken(&mountlist_token); 805 return (error); 806 } 807 808 /* 809 * mountlist_boot_getfirst (DURING BOOT ONLY) 810 * 811 * This function returns the first mount on the mountlist, which is 812 * expected to be the root mount. Since no interlocks are obtained 813 * this function is only safe to use during booting. 814 */ 815 816 struct mount * 817 mountlist_boot_getfirst(void) 818 { 819 return(TAILQ_FIRST(&mountlist)); 820 } 821 822 /* 823 * mountlist_remove (MP SAFE) 824 * 825 * Remove a node from the mountlist. If this node is the next scan node 826 * for any active mountlist scans, the active mountlist scan will be 827 * adjusted to skip the node, thus allowing removals during mountlist 828 * scans. 829 */ 830 void 831 mountlist_remove(struct mount *mp) 832 { 833 struct mountscan_info *msi; 834 835 lwkt_gettoken(&mountlist_token); 836 TAILQ_FOREACH(msi, &mountscan_list, msi_entry) { 837 if (msi->msi_node == mp) { 838 if (msi->msi_how & MNTSCAN_FORWARD) 839 msi->msi_node = TAILQ_NEXT(mp, mnt_list); 840 else 841 msi->msi_node = TAILQ_PREV(mp, mntlist, mnt_list); 842 } 843 } 844 TAILQ_REMOVE(&mountlist, mp, mnt_list); 845 lwkt_reltoken(&mountlist_token); 846 } 847 848 /* 849 * mountlist_scan (MP SAFE) 850 * 851 * Safely scan the mount points on the mount list. Unless otherwise 852 * specified each mount point will be busied prior to the callback and 853 * unbusied afterwords. The callback may safely remove any mount point 854 * without interfering with the scan. If the current callback 855 * mount is removed the scanner will not attempt to unbusy it. 856 * 857 * If a mount node cannot be busied it is silently skipped. 858 * 859 * The callback return value is aggregated and a total is returned. A return 860 * value of < 0 is not aggregated and will terminate the scan. 861 * 862 * MNTSCAN_FORWARD - the mountlist is scanned in the forward direction 863 * MNTSCAN_REVERSE - the mountlist is scanned in reverse 864 * MNTSCAN_NOBUSY - the scanner will make the callback without busying 865 * the mount node. 866 */ 867 int 868 mountlist_scan(int (*callback)(struct mount *, void *), void *data, int how) 869 { 870 struct mountscan_info info; 871 struct mount *mp; 872 thread_t td; 873 int count; 874 int res; 875 876 lwkt_gettoken(&mountlist_token); 877 878 info.msi_how = how; 879 info.msi_node = NULL; /* paranoia */ 880 TAILQ_INSERT_TAIL(&mountscan_list, &info, msi_entry); 881 882 res = 0; 883 td = curthread; 884 885 if (how & MNTSCAN_FORWARD) { 886 info.msi_node = TAILQ_FIRST(&mountlist); 887 while ((mp = info.msi_node) != NULL) { 888 if (how & MNTSCAN_NOBUSY) { 889 count = callback(mp, data); 890 } else if (vfs_busy(mp, LK_NOWAIT) == 0) { 891 count = callback(mp, data); 892 if (mp == info.msi_node) 893 vfs_unbusy(mp); 894 } else { 895 count = 0; 896 } 897 if (count < 0) 898 break; 899 res += count; 900 if (mp == info.msi_node) 901 info.msi_node = TAILQ_NEXT(mp, mnt_list); 902 } 903 } else if (how & MNTSCAN_REVERSE) { 904 info.msi_node = TAILQ_LAST(&mountlist, mntlist); 905 while ((mp = info.msi_node) != NULL) { 906 if (how & MNTSCAN_NOBUSY) { 907 count = callback(mp, data); 908 } else if (vfs_busy(mp, LK_NOWAIT) == 0) { 909 count = callback(mp, data); 910 if (mp == info.msi_node) 911 vfs_unbusy(mp); 912 } else { 913 count = 0; 914 } 915 if (count < 0) 916 break; 917 res += count; 918 if (mp == info.msi_node) 919 info.msi_node = TAILQ_PREV(mp, mntlist, mnt_list); 920 } 921 } 922 TAILQ_REMOVE(&mountscan_list, &info, msi_entry); 923 lwkt_reltoken(&mountlist_token); 924 return(res); 925 } 926 927 /* 928 * MOUNT RELATED VNODE FUNCTIONS 929 */ 930 931 static struct kproc_desc vnlru_kp = { 932 "vnlru", 933 vnlru_proc, 934 &vnlruthread 935 }; 936 SYSINIT(vnlru, SI_SUB_KTHREAD_UPDATE, SI_ORDER_FIRST, kproc_start, &vnlru_kp) 937 938 /* 939 * Move a vnode from one mount queue to another. 940 * 941 * MPSAFE 942 */ 943 void 944 insmntque(struct vnode *vp, struct mount *mp) 945 { 946 lwkt_gettoken(&mntvnode_token); 947 /* 948 * Delete from old mount point vnode list, if on one. 949 */ 950 if (vp->v_mount != NULL) { 951 KASSERT(vp->v_mount->mnt_nvnodelistsize > 0, 952 ("bad mount point vnode list size")); 953 vremovevnodemnt(vp); 954 vp->v_mount->mnt_nvnodelistsize--; 955 } 956 /* 957 * Insert into list of vnodes for the new mount point, if available. 958 * The 'end' of the LRU list is the vnode prior to mp->mnt_syncer. 959 */ 960 if ((vp->v_mount = mp) == NULL) { 961 lwkt_reltoken(&mntvnode_token); 962 return; 963 } 964 if (mp->mnt_syncer) { 965 TAILQ_INSERT_BEFORE(mp->mnt_syncer, vp, v_nmntvnodes); 966 } else { 967 TAILQ_INSERT_TAIL(&mp->mnt_nvnodelist, vp, v_nmntvnodes); 968 } 969 mp->mnt_nvnodelistsize++; 970 lwkt_reltoken(&mntvnode_token); 971 } 972 973 974 /* 975 * Scan the vnodes under a mount point and issue appropriate callbacks. 976 * 977 * The fastfunc() callback is called with just the mountlist token held 978 * (no vnode lock). It may not block and the vnode may be undergoing 979 * modifications while the caller is processing it. The vnode will 980 * not be entirely destroyed, however, due to the fact that the mountlist 981 * token is held. A return value < 0 skips to the next vnode without calling 982 * the slowfunc(), a return value > 0 terminates the loop. 983 * 984 * The slowfunc() callback is called after the vnode has been successfully 985 * locked based on passed flags. The vnode is skipped if it gets rearranged 986 * or destroyed while blocking on the lock. A non-zero return value from 987 * the slow function terminates the loop. The slow function is allowed to 988 * arbitrarily block. The scanning code guarentees consistency of operation 989 * even if the slow function deletes or moves the node, or blocks and some 990 * other thread deletes or moves the node. 991 * 992 * NOTE: We hold vmobj_token to prevent a VM object from being destroyed 993 * out from under the fastfunc()'s vnode test. It will not prevent 994 * v_object from getting NULL'd out but it will ensure that the 995 * pointer (if we race) will remain stable. 996 */ 997 int 998 vmntvnodescan( 999 struct mount *mp, 1000 int flags, 1001 int (*fastfunc)(struct mount *mp, struct vnode *vp, void *data), 1002 int (*slowfunc)(struct mount *mp, struct vnode *vp, void *data), 1003 void *data 1004 ) { 1005 struct vmntvnodescan_info info; 1006 struct vnode *vp; 1007 int r = 0; 1008 int maxcount = 1000000; 1009 int stopcount = 0; 1010 int count = 0; 1011 1012 lwkt_gettoken(&mntvnode_token); 1013 lwkt_gettoken(&vmobj_token); 1014 1015 /* 1016 * If asked to do one pass stop after iterating available vnodes. 1017 * Under heavy loads new vnodes can be added while we are scanning, 1018 * so this isn't perfect. Create a slop factor of 2x. 1019 */ 1020 if (flags & VMSC_ONEPASS) 1021 stopcount = mp->mnt_nvnodelistsize * 2; 1022 1023 info.vp = TAILQ_FIRST(&mp->mnt_nvnodelist); 1024 TAILQ_INSERT_TAIL(&mntvnodescan_list, &info, entry); 1025 while ((vp = info.vp) != NULL) { 1026 if (--maxcount == 0) 1027 panic("maxcount reached during vmntvnodescan"); 1028 1029 /* 1030 * Skip if visible but not ready, or special (e.g. 1031 * mp->mnt_syncer) 1032 */ 1033 if (vp->v_type == VNON) 1034 goto next; 1035 KKASSERT(vp->v_mount == mp); 1036 1037 /* 1038 * Quick test. A negative return continues the loop without 1039 * calling the slow test. 0 continues onto the slow test. 1040 * A positive number aborts the loop. 1041 */ 1042 if (fastfunc) { 1043 if ((r = fastfunc(mp, vp, data)) < 0) { 1044 r = 0; 1045 goto next; 1046 } 1047 if (r) 1048 break; 1049 } 1050 1051 /* 1052 * Get a vxlock on the vnode, retry if it has moved or isn't 1053 * in the mountlist where we expect it. 1054 */ 1055 if (slowfunc) { 1056 int error; 1057 1058 switch(flags & (VMSC_GETVP|VMSC_GETVX|VMSC_NOWAIT)) { 1059 case VMSC_GETVP: 1060 error = vget(vp, LK_EXCLUSIVE); 1061 break; 1062 case VMSC_GETVP|VMSC_NOWAIT: 1063 error = vget(vp, LK_EXCLUSIVE|LK_NOWAIT); 1064 break; 1065 case VMSC_GETVX: 1066 vx_get(vp); 1067 error = 0; 1068 break; 1069 default: 1070 error = 0; 1071 break; 1072 } 1073 if (error) 1074 goto next; 1075 /* 1076 * Do not call the slow function if the vnode is 1077 * invalid or if it was ripped out from under us 1078 * while we (potentially) blocked. 1079 */ 1080 if (info.vp == vp && vp->v_type != VNON) 1081 r = slowfunc(mp, vp, data); 1082 1083 /* 1084 * Cleanup 1085 */ 1086 switch(flags & (VMSC_GETVP|VMSC_GETVX|VMSC_NOWAIT)) { 1087 case VMSC_GETVP: 1088 case VMSC_GETVP|VMSC_NOWAIT: 1089 vput(vp); 1090 break; 1091 case VMSC_GETVX: 1092 vx_put(vp); 1093 break; 1094 default: 1095 break; 1096 } 1097 if (r != 0) 1098 break; 1099 } 1100 1101 next: 1102 /* 1103 * Yield after some processing. Depending on the number 1104 * of vnodes, we might wind up running for a long time. 1105 * Because threads are not preemptable, time critical 1106 * userland processes might starve. Give them a chance 1107 * now and then. 1108 */ 1109 if (++count == 10000) { 1110 /* We really want to yield a bit, so we simply sleep a tick */ 1111 tsleep(mp, 0, "vnodescn", 1); 1112 count = 0; 1113 } 1114 1115 /* 1116 * If doing one pass this decrements to zero. If it starts 1117 * at zero it is effectively unlimited for the purposes of 1118 * this loop. 1119 */ 1120 if (--stopcount == 0) 1121 break; 1122 1123 /* 1124 * Iterate. If the vnode was ripped out from under us 1125 * info.vp will already point to the next vnode, otherwise 1126 * we have to obtain the next valid vnode ourselves. 1127 */ 1128 if (info.vp == vp) 1129 info.vp = TAILQ_NEXT(vp, v_nmntvnodes); 1130 } 1131 TAILQ_REMOVE(&mntvnodescan_list, &info, entry); 1132 lwkt_reltoken(&vmobj_token); 1133 lwkt_reltoken(&mntvnode_token); 1134 return(r); 1135 } 1136 1137 /* 1138 * Remove any vnodes in the vnode table belonging to mount point mp. 1139 * 1140 * If FORCECLOSE is not specified, there should not be any active ones, 1141 * return error if any are found (nb: this is a user error, not a 1142 * system error). If FORCECLOSE is specified, detach any active vnodes 1143 * that are found. 1144 * 1145 * If WRITECLOSE is set, only flush out regular file vnodes open for 1146 * writing. 1147 * 1148 * SKIPSYSTEM causes any vnodes marked VSYSTEM to be skipped. 1149 * 1150 * `rootrefs' specifies the base reference count for the root vnode 1151 * of this filesystem. The root vnode is considered busy if its 1152 * v_sysref.refcnt exceeds this value. On a successful return, vflush() 1153 * will call vrele() on the root vnode exactly rootrefs times. 1154 * If the SKIPSYSTEM or WRITECLOSE flags are specified, rootrefs must 1155 * be zero. 1156 */ 1157 #ifdef DIAGNOSTIC 1158 static int busyprt = 0; /* print out busy vnodes */ 1159 SYSCTL_INT(_debug, OID_AUTO, busyprt, CTLFLAG_RW, &busyprt, 0, ""); 1160 #endif 1161 1162 static int vflush_scan(struct mount *mp, struct vnode *vp, void *data); 1163 1164 struct vflush_info { 1165 int flags; 1166 int busy; 1167 thread_t td; 1168 }; 1169 1170 int 1171 vflush(struct mount *mp, int rootrefs, int flags) 1172 { 1173 struct thread *td = curthread; /* XXX */ 1174 struct vnode *rootvp = NULL; 1175 int error; 1176 struct vflush_info vflush_info; 1177 1178 if (rootrefs > 0) { 1179 KASSERT((flags & (SKIPSYSTEM | WRITECLOSE)) == 0, 1180 ("vflush: bad args")); 1181 /* 1182 * Get the filesystem root vnode. We can vput() it 1183 * immediately, since with rootrefs > 0, it won't go away. 1184 */ 1185 if ((error = VFS_ROOT(mp, &rootvp)) != 0) { 1186 if ((flags & FORCECLOSE) == 0) 1187 return (error); 1188 rootrefs = 0; 1189 /* continue anyway */ 1190 } 1191 if (rootrefs) 1192 vput(rootvp); 1193 } 1194 1195 vflush_info.busy = 0; 1196 vflush_info.flags = flags; 1197 vflush_info.td = td; 1198 vmntvnodescan(mp, VMSC_GETVX, NULL, vflush_scan, &vflush_info); 1199 1200 if (rootrefs > 0 && (flags & FORCECLOSE) == 0) { 1201 /* 1202 * If just the root vnode is busy, and if its refcount 1203 * is equal to `rootrefs', then go ahead and kill it. 1204 */ 1205 KASSERT(vflush_info.busy > 0, ("vflush: not busy")); 1206 KASSERT(rootvp->v_sysref.refcnt >= rootrefs, ("vflush: rootrefs")); 1207 if (vflush_info.busy == 1 && rootvp->v_sysref.refcnt == rootrefs) { 1208 vx_lock(rootvp); 1209 vgone_vxlocked(rootvp); 1210 vx_unlock(rootvp); 1211 vflush_info.busy = 0; 1212 } 1213 } 1214 if (vflush_info.busy) 1215 return (EBUSY); 1216 for (; rootrefs > 0; rootrefs--) 1217 vrele(rootvp); 1218 return (0); 1219 } 1220 1221 /* 1222 * The scan callback is made with an VX locked vnode. 1223 */ 1224 static int 1225 vflush_scan(struct mount *mp, struct vnode *vp, void *data) 1226 { 1227 struct vflush_info *info = data; 1228 struct vattr vattr; 1229 1230 /* 1231 * Skip over a vnodes marked VSYSTEM. 1232 */ 1233 if ((info->flags & SKIPSYSTEM) && (vp->v_flag & VSYSTEM)) { 1234 return(0); 1235 } 1236 1237 /* 1238 * If WRITECLOSE is set, flush out unlinked but still open 1239 * files (even if open only for reading) and regular file 1240 * vnodes open for writing. 1241 */ 1242 if ((info->flags & WRITECLOSE) && 1243 (vp->v_type == VNON || 1244 (VOP_GETATTR(vp, &vattr) == 0 && 1245 vattr.va_nlink > 0)) && 1246 (vp->v_writecount == 0 || vp->v_type != VREG)) { 1247 return(0); 1248 } 1249 1250 /* 1251 * If we are the only holder (refcnt of 1) or the vnode is in 1252 * termination (refcnt < 0), we can vgone the vnode. 1253 */ 1254 if (vp->v_sysref.refcnt <= 1) { 1255 vgone_vxlocked(vp); 1256 return(0); 1257 } 1258 1259 /* 1260 * If FORCECLOSE is set, forcibly destroy the vnode and then move 1261 * it to a dummymount structure so vop_*() functions don't deref 1262 * a NULL pointer. 1263 */ 1264 if (info->flags & FORCECLOSE) { 1265 vhold(vp); 1266 vgone_vxlocked(vp); 1267 if (vp->v_mount == NULL) 1268 insmntque(vp, &dummymount); 1269 vdrop(vp); 1270 return(0); 1271 } 1272 #ifdef DIAGNOSTIC 1273 if (busyprt) 1274 vprint("vflush: busy vnode", vp); 1275 #endif 1276 ++info->busy; 1277 return(0); 1278 } 1279 1280 void 1281 add_bio_ops(struct bio_ops *ops) 1282 { 1283 TAILQ_INSERT_TAIL(&bio_ops_list, ops, entry); 1284 } 1285 1286 void 1287 rem_bio_ops(struct bio_ops *ops) 1288 { 1289 TAILQ_REMOVE(&bio_ops_list, ops, entry); 1290 } 1291 1292 /* 1293 * This calls the bio_ops io_sync function either for a mount point 1294 * or generally. 1295 * 1296 * WARNING: softdeps is weirdly coded and just isn't happy unless 1297 * io_sync is called with a NULL mount from the general syncing code. 1298 */ 1299 void 1300 bio_ops_sync(struct mount *mp) 1301 { 1302 struct bio_ops *ops; 1303 1304 if (mp) { 1305 if ((ops = mp->mnt_bioops) != NULL) 1306 ops->io_sync(mp); 1307 } else { 1308 TAILQ_FOREACH(ops, &bio_ops_list, entry) { 1309 ops->io_sync(NULL); 1310 } 1311 } 1312 } 1313 1314 /* 1315 * Lookup a mount point by nch 1316 */ 1317 struct mount * 1318 mount_get_by_nc(struct namecache *ncp) 1319 { 1320 struct mount *mp = NULL; 1321 1322 lwkt_gettoken(&mountlist_token); 1323 TAILQ_FOREACH(mp, &mountlist, mnt_list) { 1324 if (ncp == mp->mnt_ncmountpt.ncp) 1325 break; 1326 } 1327 lwkt_reltoken(&mountlist_token); 1328 return (mp); 1329 } 1330 1331