fs/zfs/zfs_vfsops.c

168404Spjd/*
168404Spjd * CDDL HEADER START
168404Spjd *
168404Spjd * The contents of this file are subject to the terms of the
168404Spjd * Common Development and Distribution License (the "License").
168404Spjd * You may not use this file except in compliance with the License.
168404Spjd *
168404Spjd * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
168404Spjd * or http://www.opensolaris.org/os/licensing.
168404Spjd * See the License for the specific language governing permissions
168404Spjd * and limitations under the License.
168404Spjd *
168404Spjd * When distributing Covered Code, include this CDDL HEADER in each
168404Spjd * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
168404Spjd * If applicable, add the following below this CDDL HEADER, with the
168404Spjd * fields enclosed by brackets "[]" replaced with your own identifying
168404Spjd * information: Portions Copyright [yyyy] [name of copyright owner]
168404Spjd *
168404Spjd * CDDL HEADER END
168404Spjd */
168404Spjd/*
219089Spjd * Copyright (c) 2005, 2010, Oracle and/or its affiliates. All rights reserved.
168404Spjd */
168404Spjd
219089Spjd/* Portions Copyright 2010 Robert Milkowski */
219089Spjd
168404Spjd#include <sys/types.h>
168404Spjd#include <sys/param.h>
168404Spjd#include <sys/systm.h>
168404Spjd#include <sys/kernel.h>
168404Spjd#include <sys/sysmacros.h>
168404Spjd#include <sys/kmem.h>
168404Spjd#include <sys/acl.h>
168404Spjd#include <sys/vnode.h>
168404Spjd#include <sys/vfs.h>
168404Spjd#include <sys/mntent.h>
168404Spjd#include <sys/mount.h>
168404Spjd#include <sys/cmn_err.h>
168404Spjd#include <sys/zfs_znode.h>
168404Spjd#include <sys/zfs_dir.h>
168404Spjd#include <sys/zil.h>
168404Spjd#include <sys/fs/zfs.h>
168404Spjd#include <sys/dmu.h>
168404Spjd#include <sys/dsl_prop.h>
168404Spjd#include <sys/dsl_dataset.h>
185029Spjd#include <sys/dsl_deleg.h>
168404Spjd#include <sys/spa.h>
168404Spjd#include <sys/zap.h>
219089Spjd#include <sys/sa.h>
168404Spjd#include <sys/varargs.h>
168962Spjd#include <sys/policy.h>
168404Spjd#include <sys/atomic.h>
168404Spjd#include <sys/zfs_ioctl.h>
168404Spjd#include <sys/zfs_ctldir.h>
185029Spjd#include <sys/zfs_fuid.h>
168962Spjd#include <sys/sunddi.h>
168404Spjd#include <sys/dnlc.h>
185029Spjd#include <sys/dmu_objset.h>
185029Spjd#include <sys/spa_boot.h>
219089Spjd#include <sys/sa.h>
219089Spjd#include "zfs_comutil.h"
168404Spjd
168404Spjdstruct mtx zfs_debug_mtx;
168404SpjdMTX_SYSINIT(zfs_debug_mtx, &zfs_debug_mtx, "zfs_debug", MTX_DEF);
185029Spjd
168404SpjdSYSCTL_NODE(_vfs, OID_AUTO, zfs, CTLFLAG_RW, 0, "ZFS file system");
185029Spjd
219089Spjdint zfs_super_owner;
185029SpjdSYSCTL_INT(_vfs_zfs, OID_AUTO, super_owner, CTLFLAG_RW, &zfs_super_owner, 0,
185029Spjd    "File system owner can perform privileged operation on his file systems");
185029Spjd
219089Spjdint zfs_debug_level;
168713SpjdTUNABLE_INT("vfs.zfs.debug", &zfs_debug_level);
168404SpjdSYSCTL_INT(_vfs_zfs, OID_AUTO, debug, CTLFLAG_RW, &zfs_debug_level, 0,
168404Spjd    "Debug level");
168404Spjd
185029SpjdSYSCTL_NODE(_vfs_zfs, OID_AUTO, version, CTLFLAG_RD, 0, "ZFS versions");
185029Spjdstatic int zfs_version_acl = ZFS_ACL_VERSION;
185029SpjdSYSCTL_INT(_vfs_zfs_version, OID_AUTO, acl, CTLFLAG_RD, &zfs_version_acl, 0,
185029Spjd    "ZFS_ACL_VERSION");
185029Spjdstatic int zfs_version_spa = SPA_VERSION;
185029SpjdSYSCTL_INT(_vfs_zfs_version, OID_AUTO, spa, CTLFLAG_RD, &zfs_version_spa, 0,
185029Spjd    "SPA_VERSION");
185029Spjdstatic int zfs_version_zpl = ZPL_VERSION;
185029SpjdSYSCTL_INT(_vfs_zfs_version, OID_AUTO, zpl, CTLFLAG_RD, &zfs_version_zpl, 0,
185029Spjd    "ZPL_VERSION");
185029Spjd
191990Sattiliostatic int zfs_mount(vfs_t *vfsp);
191990Sattiliostatic int zfs_umount(vfs_t *vfsp, int fflag);
191990Sattiliostatic int zfs_root(vfs_t *vfsp, int flags, vnode_t **vpp);
191990Sattiliostatic int zfs_statfs(vfs_t *vfsp, struct statfs *statp);
168404Spjdstatic int zfs_vget(vfs_t *vfsp, ino_t ino, int flags, vnode_t **vpp);
191990Sattiliostatic int zfs_sync(vfs_t *vfsp, int waitfor);
196982Spjdstatic int zfs_checkexp(vfs_t *vfsp, struct sockaddr *nam, int *extflagsp,
196982Spjd    struct ucred **credanonp, int *numsecflavors, int **secflavors);
222167Srmacklemstatic int zfs_fhtovp(vfs_t *vfsp, fid_t *fidp, int flags, vnode_t **vpp);
168404Spjdstatic void zfs_objset_close(zfsvfs_t *zfsvfs);
168404Spjdstatic void zfs_freevfs(vfs_t *vfsp);
168404Spjd
168404Spjdstatic struct vfsops zfs_vfsops = {
168404Spjd	.vfs_mount =		zfs_mount,
168404Spjd	.vfs_unmount =		zfs_umount,
168404Spjd	.vfs_root =		zfs_root,
168404Spjd	.vfs_statfs =		zfs_statfs,
168404Spjd	.vfs_vget =		zfs_vget,
168404Spjd	.vfs_sync =		zfs_sync,
196982Spjd	.vfs_checkexp =		zfs_checkexp,
168404Spjd	.vfs_fhtovp =		zfs_fhtovp,
168404Spjd};
168404Spjd
185029SpjdVFS_SET(zfs_vfsops, zfs, VFCF_JAIL | VFCF_DELEGADMIN);
168404Spjd
168404Spjd/*
168404Spjd * We need to keep a count of active fs's.
168404Spjd * This is necessary to prevent our module
168404Spjd * from being unloaded after a umount -f
168404Spjd */
168404Spjdstatic uint32_t	zfs_active_fs_count = 0;
168404Spjd
168404Spjd/*ARGSUSED*/
168404Spjdstatic int
191990Sattiliozfs_sync(vfs_t *vfsp, int waitfor)
168404Spjd{
168404Spjd
168404Spjd	/*
168404Spjd	 * Data integrity is job one.  We don't want a compromised kernel
168404Spjd	 * writing to the storage pool, so we never sync during panic.
168404Spjd	 */
168404Spjd	if (panicstr)
168404Spjd		return (0);
168404Spjd
168404Spjd	if (vfsp != NULL) {
168404Spjd		/*
168404Spjd		 * Sync a specific filesystem.
168404Spjd		 */
168404Spjd		zfsvfs_t *zfsvfs = vfsp->vfs_data;
209962Smm		dsl_pool_t *dp;
168404Spjd		int error;
168404Spjd
191990Sattilio		error = vfs_stdsync(vfsp, waitfor);
168404Spjd		if (error != 0)
168404Spjd			return (error);
168404Spjd
168404Spjd		ZFS_ENTER(zfsvfs);
209962Smm		dp = dmu_objset_pool(zfsvfs->z_os);
209962Smm
209962Smm		/*
209962Smm		 * If the system is shutting down, then skip any
209962Smm		 * filesystems which may exist on a suspended pool.
209962Smm		 */
209962Smm		if (sys_shutdown && spa_suspended(dp->dp_spa)) {
209962Smm			ZFS_EXIT(zfsvfs);
209962Smm			return (0);
209962Smm		}
209962Smm
168404Spjd		if (zfsvfs->z_log != NULL)
219089Spjd			zil_commit(zfsvfs->z_log, 0);
219089Spjd
168404Spjd		ZFS_EXIT(zfsvfs);
168404Spjd	} else {
168404Spjd		/*
168404Spjd		 * Sync all ZFS filesystems.  This is what happens when you
168404Spjd		 * run sync(1M).  Unlike other filesystems, ZFS honors the
168404Spjd		 * request by waiting for all pools to commit all dirty data.
168404Spjd		 */
168404Spjd		spa_sync_allpools();
168404Spjd	}
168404Spjd
168404Spjd	return (0);
168404Spjd}
168404Spjd
219089Spjd#ifndef __FreeBSD__
219089Spjdstatic int
219089Spjdzfs_create_unique_device(dev_t *dev)
219089Spjd{
219089Spjd	major_t new_major;
219089Spjd
219089Spjd	do {
219089Spjd		ASSERT3U(zfs_minor, <=, MAXMIN32);
219089Spjd		minor_t start = zfs_minor;
219089Spjd		do {
219089Spjd			mutex_enter(&zfs_dev_mtx);
219089Spjd			if (zfs_minor >= MAXMIN32) {
219089Spjd				/*
219089Spjd				 * If we're still using the real major
219089Spjd				 * keep out of /dev/zfs and /dev/zvol minor
219089Spjd				 * number space.  If we're using a getudev()'ed
219089Spjd				 * major number, we can use all of its minors.
219089Spjd				 */
219089Spjd				if (zfs_major == ddi_name_to_major(ZFS_DRIVER))
219089Spjd					zfs_minor = ZFS_MIN_MINOR;
219089Spjd				else
219089Spjd					zfs_minor = 0;
219089Spjd			} else {
219089Spjd				zfs_minor++;
219089Spjd			}
219089Spjd			*dev = makedevice(zfs_major, zfs_minor);
219089Spjd			mutex_exit(&zfs_dev_mtx);
219089Spjd		} while (vfs_devismounted(*dev) && zfs_minor != start);
219089Spjd		if (zfs_minor == start) {
219089Spjd			/*
219089Spjd			 * We are using all ~262,000 minor numbers for the
219089Spjd			 * current major number.  Create a new major number.
219089Spjd			 */
219089Spjd			if ((new_major = getudev()) == (major_t)-1) {
219089Spjd				cmn_err(CE_WARN,
219089Spjd				    "zfs_mount: Can't get unique major "
219089Spjd				    "device number.");
219089Spjd				return (-1);
219089Spjd			}
219089Spjd			mutex_enter(&zfs_dev_mtx);
219089Spjd			zfs_major = new_major;
219089Spjd			zfs_minor = 0;
219089Spjd
219089Spjd			mutex_exit(&zfs_dev_mtx);
219089Spjd		} else {
219089Spjd			break;
219089Spjd		}
219089Spjd		/* CONSTANTCONDITION */
219089Spjd	} while (1);
219089Spjd
219089Spjd	return (0);
219089Spjd}
219089Spjd#endif	/* !__FreeBSD__ */
219089Spjd
168404Spjdstatic void
168404Spjdatime_changed_cb(void *arg, uint64_t newval)
168404Spjd{
168404Spjd	zfsvfs_t *zfsvfs = arg;
168404Spjd
168404Spjd	if (newval == TRUE) {
168404Spjd		zfsvfs->z_atime = TRUE;
168404Spjd		zfsvfs->z_vfs->vfs_flag &= ~MNT_NOATIME;
168404Spjd		vfs_clearmntopt(zfsvfs->z_vfs, MNTOPT_NOATIME);
168404Spjd		vfs_setmntopt(zfsvfs->z_vfs, MNTOPT_ATIME, NULL, 0);
168404Spjd	} else {
168404Spjd		zfsvfs->z_atime = FALSE;
168404Spjd		zfsvfs->z_vfs->vfs_flag |= MNT_NOATIME;
168404Spjd		vfs_clearmntopt(zfsvfs->z_vfs, MNTOPT_ATIME);
168404Spjd		vfs_setmntopt(zfsvfs->z_vfs, MNTOPT_NOATIME, NULL, 0);
168404Spjd	}
168404Spjd}
168404Spjd
168404Spjdstatic void
168404Spjdxattr_changed_cb(void *arg, uint64_t newval)
168404Spjd{
168404Spjd	zfsvfs_t *zfsvfs = arg;
168404Spjd
168404Spjd	if (newval == TRUE) {
168404Spjd		/* XXX locking on vfs_flag? */
168404Spjd#ifdef TODO
168404Spjd		zfsvfs->z_vfs->vfs_flag |= VFS_XATTR;
168404Spjd#endif
168404Spjd		vfs_clearmntopt(zfsvfs->z_vfs, MNTOPT_NOXATTR);
168404Spjd		vfs_setmntopt(zfsvfs->z_vfs, MNTOPT_XATTR, NULL, 0);
168404Spjd	} else {
168404Spjd		/* XXX locking on vfs_flag? */
168404Spjd#ifdef TODO
168404Spjd		zfsvfs->z_vfs->vfs_flag &= ~VFS_XATTR;
168404Spjd#endif
168404Spjd		vfs_clearmntopt(zfsvfs->z_vfs, MNTOPT_XATTR);
168404Spjd		vfs_setmntopt(zfsvfs->z_vfs, MNTOPT_NOXATTR, NULL, 0);
168404Spjd	}
168404Spjd}
168404Spjd
168404Spjdstatic void
168404Spjdblksz_changed_cb(void *arg, uint64_t newval)
168404Spjd{
168404Spjd	zfsvfs_t *zfsvfs = arg;
168404Spjd
168404Spjd	if (newval < SPA_MINBLOCKSIZE ||
168404Spjd	    newval > SPA_MAXBLOCKSIZE || !ISP2(newval))
168404Spjd		newval = SPA_MAXBLOCKSIZE;
168404Spjd
168404Spjd	zfsvfs->z_max_blksz = newval;
204101Spjd	zfsvfs->z_vfs->mnt_stat.f_iosize = newval;
168404Spjd}
168404Spjd
168404Spjdstatic void
168404Spjdreadonly_changed_cb(void *arg, uint64_t newval)
168404Spjd{
168404Spjd	zfsvfs_t *zfsvfs = arg;
168404Spjd
168404Spjd	if (newval) {
168404Spjd		/* XXX locking on vfs_flag? */
168404Spjd		zfsvfs->z_vfs->vfs_flag |= VFS_RDONLY;
168404Spjd		vfs_clearmntopt(zfsvfs->z_vfs, MNTOPT_RW);
168404Spjd		vfs_setmntopt(zfsvfs->z_vfs, MNTOPT_RO, NULL, 0);
168404Spjd	} else {
168404Spjd		/* XXX locking on vfs_flag? */
168404Spjd		zfsvfs->z_vfs->vfs_flag &= ~VFS_RDONLY;
168404Spjd		vfs_clearmntopt(zfsvfs->z_vfs, MNTOPT_RO);
168404Spjd		vfs_setmntopt(zfsvfs->z_vfs, MNTOPT_RW, NULL, 0);
168404Spjd	}
168404Spjd}
168404Spjd
168404Spjdstatic void
168404Spjdsetuid_changed_cb(void *arg, uint64_t newval)
168404Spjd{
168404Spjd	zfsvfs_t *zfsvfs = arg;
168404Spjd
168404Spjd	if (newval == FALSE) {
168404Spjd		zfsvfs->z_vfs->vfs_flag |= VFS_NOSETUID;
168404Spjd		vfs_clearmntopt(zfsvfs->z_vfs, MNTOPT_SETUID);
168404Spjd		vfs_setmntopt(zfsvfs->z_vfs, MNTOPT_NOSETUID, NULL, 0);
168404Spjd	} else {
168404Spjd		zfsvfs->z_vfs->vfs_flag &= ~VFS_NOSETUID;
168404Spjd		vfs_clearmntopt(zfsvfs->z_vfs, MNTOPT_NOSETUID);
168404Spjd		vfs_setmntopt(zfsvfs->z_vfs, MNTOPT_SETUID, NULL, 0);
168404Spjd	}
168404Spjd}
168404Spjd
168404Spjdstatic void
168404Spjdexec_changed_cb(void *arg, uint64_t newval)
168404Spjd{
168404Spjd	zfsvfs_t *zfsvfs = arg;
168404Spjd
168404Spjd	if (newval == FALSE) {
168404Spjd		zfsvfs->z_vfs->vfs_flag |= VFS_NOEXEC;
168404Spjd		vfs_clearmntopt(zfsvfs->z_vfs, MNTOPT_EXEC);
168404Spjd		vfs_setmntopt(zfsvfs->z_vfs, MNTOPT_NOEXEC, NULL, 0);
168404Spjd	} else {
168404Spjd		zfsvfs->z_vfs->vfs_flag &= ~VFS_NOEXEC;
168404Spjd		vfs_clearmntopt(zfsvfs->z_vfs, MNTOPT_NOEXEC);
168404Spjd		vfs_setmntopt(zfsvfs->z_vfs, MNTOPT_EXEC, NULL, 0);
168404Spjd	}
168404Spjd}
168404Spjd
185029Spjd/*
185029Spjd * The nbmand mount option can be changed at mount time.
185029Spjd * We can't allow it to be toggled on live file systems or incorrect
185029Spjd * behavior may be seen from cifs clients
185029Spjd *
185029Spjd * This property isn't registered via dsl_prop_register(), but this callback
185029Spjd * will be called when a file system is first mounted
185029Spjd */
168404Spjdstatic void
185029Spjdnbmand_changed_cb(void *arg, uint64_t newval)
185029Spjd{
185029Spjd	zfsvfs_t *zfsvfs = arg;
185029Spjd	if (newval == FALSE) {
185029Spjd		vfs_clearmntopt(zfsvfs->z_vfs, MNTOPT_NBMAND);
185029Spjd		vfs_setmntopt(zfsvfs->z_vfs, MNTOPT_NONBMAND, NULL, 0);
185029Spjd	} else {
185029Spjd		vfs_clearmntopt(zfsvfs->z_vfs, MNTOPT_NONBMAND);
185029Spjd		vfs_setmntopt(zfsvfs->z_vfs, MNTOPT_NBMAND, NULL, 0);
185029Spjd	}
185029Spjd}
185029Spjd
185029Spjdstatic void
168404Spjdsnapdir_changed_cb(void *arg, uint64_t newval)
168404Spjd{
168404Spjd	zfsvfs_t *zfsvfs = arg;
168404Spjd
168404Spjd	zfsvfs->z_show_ctldir = newval;
168404Spjd}
168404Spjd
168404Spjdstatic void
185029Spjdvscan_changed_cb(void *arg, uint64_t newval)
185029Spjd{
185029Spjd	zfsvfs_t *zfsvfs = arg;
185029Spjd
185029Spjd	zfsvfs->z_vscan = newval;
185029Spjd}
185029Spjd
185029Spjdstatic void
168404Spjdacl_inherit_changed_cb(void *arg, uint64_t newval)
168404Spjd{
168404Spjd	zfsvfs_t *zfsvfs = arg;
168404Spjd
168404Spjd	zfsvfs->z_acl_inherit = newval;
168404Spjd}
168404Spjd
168404Spjdstatic int
168404Spjdzfs_register_callbacks(vfs_t *vfsp)
168404Spjd{
168404Spjd	struct dsl_dataset *ds = NULL;
168404Spjd	objset_t *os = NULL;
168404Spjd	zfsvfs_t *zfsvfs = NULL;
185029Spjd	uint64_t nbmand;
219089Spjd	int readonly, do_readonly = B_FALSE;
219089Spjd	int setuid, do_setuid = B_FALSE;
219089Spjd	int exec, do_exec = B_FALSE;
219089Spjd	int xattr, do_xattr = B_FALSE;
219089Spjd	int atime, do_atime = B_FALSE;
168404Spjd	int error = 0;
168404Spjd
168404Spjd	ASSERT(vfsp);
168404Spjd	zfsvfs = vfsp->vfs_data;
168404Spjd	ASSERT(zfsvfs);
168404Spjd	os = zfsvfs->z_os;
168404Spjd
168404Spjd	/*
196965Spjd	 * This function can be called for a snapshot when we update snapshot's
196965Spjd	 * mount point, which isn't really supported.
196965Spjd	 */
196965Spjd	if (dmu_objset_is_snapshot(os))
196965Spjd		return (EOPNOTSUPP);
196965Spjd
196965Spjd	/*
168404Spjd	 * The act of registering our callbacks will destroy any mount
168404Spjd	 * options we may have.  In order to enable temporary overrides
168404Spjd	 * of mount options, we stash away the current values and
168404Spjd	 * restore them after we register the callbacks.
168404Spjd	 */
219089Spjd	if (vfs_optionisset(vfsp, MNTOPT_RO, NULL) ||
219089Spjd	    !spa_writeable(dmu_objset_spa(os))) {
168404Spjd		readonly = B_TRUE;
168404Spjd		do_readonly = B_TRUE;
168404Spjd	} else if (vfs_optionisset(vfsp, MNTOPT_RW, NULL)) {
168404Spjd		readonly = B_FALSE;
168404Spjd		do_readonly = B_TRUE;
168404Spjd	}
168404Spjd	if (vfs_optionisset(vfsp, MNTOPT_NOSUID, NULL)) {
168404Spjd		setuid = B_FALSE;
168404Spjd		do_setuid = B_TRUE;
168404Spjd	} else {
168404Spjd		if (vfs_optionisset(vfsp, MNTOPT_NOSETUID, NULL)) {
168404Spjd			setuid = B_FALSE;
168404Spjd			do_setuid = B_TRUE;
168404Spjd		} else if (vfs_optionisset(vfsp, MNTOPT_SETUID, NULL)) {
168404Spjd			setuid = B_TRUE;
168404Spjd			do_setuid = B_TRUE;
168404Spjd		}
168404Spjd	}
168404Spjd	if (vfs_optionisset(vfsp, MNTOPT_NOEXEC, NULL)) {
168404Spjd		exec = B_FALSE;
168404Spjd		do_exec = B_TRUE;
168404Spjd	} else if (vfs_optionisset(vfsp, MNTOPT_EXEC, NULL)) {
168404Spjd		exec = B_TRUE;
168404Spjd		do_exec = B_TRUE;
168404Spjd	}
168404Spjd	if (vfs_optionisset(vfsp, MNTOPT_NOXATTR, NULL)) {
168404Spjd		xattr = B_FALSE;
168404Spjd		do_xattr = B_TRUE;
168404Spjd	} else if (vfs_optionisset(vfsp, MNTOPT_XATTR, NULL)) {
168404Spjd		xattr = B_TRUE;
168404Spjd		do_xattr = B_TRUE;
168404Spjd	}
185029Spjd	if (vfs_optionisset(vfsp, MNTOPT_NOATIME, NULL)) {
185029Spjd		atime = B_FALSE;
185029Spjd		do_atime = B_TRUE;
185029Spjd	} else if (vfs_optionisset(vfsp, MNTOPT_ATIME, NULL)) {
185029Spjd		atime = B_TRUE;
185029Spjd		do_atime = B_TRUE;
185029Spjd	}
168404Spjd
168404Spjd	/*
185029Spjd	 * nbmand is a special property.  It can only be changed at
185029Spjd	 * mount time.
185029Spjd	 *
185029Spjd	 * This is weird, but it is documented to only be changeable
185029Spjd	 * at mount time.
185029Spjd	 */
185029Spjd	if (vfs_optionisset(vfsp, MNTOPT_NONBMAND, NULL)) {
185029Spjd		nbmand = B_FALSE;
185029Spjd	} else if (vfs_optionisset(vfsp, MNTOPT_NBMAND, NULL)) {
185029Spjd		nbmand = B_TRUE;
185029Spjd	} else {
185029Spjd		char osname[MAXNAMELEN];
185029Spjd
185029Spjd		dmu_objset_name(os, osname);
185029Spjd		if (error = dsl_prop_get_integer(osname, "nbmand", &nbmand,
185029Spjd		    NULL)) {
185029Spjd			return (error);
185029Spjd		}
185029Spjd	}
185029Spjd
185029Spjd	/*
168404Spjd	 * Register property callbacks.
168404Spjd	 *
168404Spjd	 * It would probably be fine to just check for i/o error from
168404Spjd	 * the first prop_register(), but I guess I like to go
168404Spjd	 * overboard...
168404Spjd	 */
168404Spjd	ds = dmu_objset_ds(os);
168404Spjd	error = dsl_prop_register(ds, "atime", atime_changed_cb, zfsvfs);
168404Spjd	error = error ? error : dsl_prop_register(ds,
168404Spjd	    "xattr", xattr_changed_cb, zfsvfs);
168404Spjd	error = error ? error : dsl_prop_register(ds,
168404Spjd	    "recordsize", blksz_changed_cb, zfsvfs);
168404Spjd	error = error ? error : dsl_prop_register(ds,
168404Spjd	    "readonly", readonly_changed_cb, zfsvfs);
168404Spjd	error = error ? error : dsl_prop_register(ds,
168404Spjd	    "setuid", setuid_changed_cb, zfsvfs);
168404Spjd	error = error ? error : dsl_prop_register(ds,
168404Spjd	    "exec", exec_changed_cb, zfsvfs);
168404Spjd	error = error ? error : dsl_prop_register(ds,
168404Spjd	    "snapdir", snapdir_changed_cb, zfsvfs);
168404Spjd	error = error ? error : dsl_prop_register(ds,
168404Spjd	    "aclinherit", acl_inherit_changed_cb, zfsvfs);
185029Spjd	error = error ? error : dsl_prop_register(ds,
185029Spjd	    "vscan", vscan_changed_cb, zfsvfs);
168404Spjd	if (error)
168404Spjd		goto unregister;
168404Spjd
168404Spjd	/*
168404Spjd	 * Invoke our callbacks to restore temporary mount options.
168404Spjd	 */
168404Spjd	if (do_readonly)
168404Spjd		readonly_changed_cb(zfsvfs, readonly);
168404Spjd	if (do_setuid)
168404Spjd		setuid_changed_cb(zfsvfs, setuid);
168404Spjd	if (do_exec)
168404Spjd		exec_changed_cb(zfsvfs, exec);
168404Spjd	if (do_xattr)
168404Spjd		xattr_changed_cb(zfsvfs, xattr);
185029Spjd	if (do_atime)
185029Spjd		atime_changed_cb(zfsvfs, atime);
168404Spjd
185029Spjd	nbmand_changed_cb(zfsvfs, nbmand);
185029Spjd
168404Spjd	return (0);
168404Spjd
168404Spjdunregister:
168404Spjd	/*
168404Spjd	 * We may attempt to unregister some callbacks that are not
168404Spjd	 * registered, but this is OK; it will simply return ENOMSG,
168404Spjd	 * which we will ignore.
168404Spjd	 */
168404Spjd	(void) dsl_prop_unregister(ds, "atime", atime_changed_cb, zfsvfs);
168404Spjd	(void) dsl_prop_unregister(ds, "xattr", xattr_changed_cb, zfsvfs);
168404Spjd	(void) dsl_prop_unregister(ds, "recordsize", blksz_changed_cb, zfsvfs);
168404Spjd	(void) dsl_prop_unregister(ds, "readonly", readonly_changed_cb, zfsvfs);
168404Spjd	(void) dsl_prop_unregister(ds, "setuid", setuid_changed_cb, zfsvfs);
168404Spjd	(void) dsl_prop_unregister(ds, "exec", exec_changed_cb, zfsvfs);
168404Spjd	(void) dsl_prop_unregister(ds, "snapdir", snapdir_changed_cb, zfsvfs);
168404Spjd	(void) dsl_prop_unregister(ds, "aclinherit", acl_inherit_changed_cb,
168404Spjd	    zfsvfs);
185029Spjd	(void) dsl_prop_unregister(ds, "vscan", vscan_changed_cb, zfsvfs);
168404Spjd	return (error);
168404Spjd
168404Spjd}
168404Spjd
219089Spjdstatic int
219089Spjdzfs_space_delta_cb(dmu_object_type_t bonustype, void *data,
219089Spjd    uint64_t *userp, uint64_t *groupp)
209962Smm{
219089Spjd	znode_phys_t *znp = data;
219089Spjd	int error = 0;
209962Smm
219089Spjd	/*
219089Spjd	 * Is it a valid type of object to track?
219089Spjd	 */
219089Spjd	if (bonustype != DMU_OT_ZNODE && bonustype != DMU_OT_SA)
219089Spjd		return (ENOENT);
209962Smm
219089Spjd	/*
219089Spjd	 * If we have a NULL data pointer
219089Spjd	 * then assume the id's aren't changing and
219089Spjd	 * return EEXIST to the dmu to let it know to
219089Spjd	 * use the same ids
219089Spjd	 */
219089Spjd	if (data == NULL)
219089Spjd		return (EEXIST);
209962Smm
219089Spjd	if (bonustype == DMU_OT_ZNODE) {
219089Spjd		*userp = znp->zp_uid;
219089Spjd		*groupp = znp->zp_gid;
219089Spjd	} else {
219089Spjd		int hdrsize;
209962Smm
219089Spjd		ASSERT(bonustype == DMU_OT_SA);
219089Spjd		hdrsize = sa_hdrsize(data);
209962Smm
219089Spjd		if (hdrsize != 0) {
219089Spjd			*userp = *((uint64_t *)((uintptr_t)data + hdrsize +
219089Spjd			    SA_UID_OFFSET));
219089Spjd			*groupp = *((uint64_t *)((uintptr_t)data + hdrsize +
219089Spjd			    SA_GID_OFFSET));
219089Spjd		} else {
219089Spjd			/*
219089Spjd			 * This should only happen for newly created
219089Spjd			 * files that haven't had the znode data filled
219089Spjd			 * in yet.
219089Spjd			 */
219089Spjd			*userp = 0;
219089Spjd			*groupp = 0;
219089Spjd		}
209962Smm	}
219089Spjd	return (error);
209962Smm}
209962Smm
209962Smmstatic void
209962Smmfuidstr_to_sid(zfsvfs_t *zfsvfs, const char *fuidstr,
209962Smm    char *domainbuf, int buflen, uid_t *ridp)
209962Smm{
209962Smm	uint64_t fuid;
209962Smm	const char *domain;
209962Smm
209962Smm	fuid = strtonum(fuidstr, NULL);
209962Smm
209962Smm	domain = zfs_fuid_find_by_idx(zfsvfs, FUID_INDEX(fuid));
209962Smm	if (domain)
209962Smm		(void) strlcpy(domainbuf, domain, buflen);
209962Smm	else
209962Smm		domainbuf[0] = '\0';
209962Smm	*ridp = FUID_RID(fuid);
209962Smm}
209962Smm
209962Smmstatic uint64_t
209962Smmzfs_userquota_prop_to_obj(zfsvfs_t *zfsvfs, zfs_userquota_prop_t type)
209962Smm{
209962Smm	switch (type) {
209962Smm	case ZFS_PROP_USERUSED:
209962Smm		return (DMU_USERUSED_OBJECT);
209962Smm	case ZFS_PROP_GROUPUSED:
209962Smm		return (DMU_GROUPUSED_OBJECT);
209962Smm	case ZFS_PROP_USERQUOTA:
209962Smm		return (zfsvfs->z_userquota_obj);
209962Smm	case ZFS_PROP_GROUPQUOTA:
209962Smm		return (zfsvfs->z_groupquota_obj);
209962Smm	}
209962Smm	return (0);
209962Smm}
209962Smm
209962Smmint
209962Smmzfs_userspace_many(zfsvfs_t *zfsvfs, zfs_userquota_prop_t type,
209962Smm    uint64_t *cookiep, void *vbuf, uint64_t *bufsizep)
209962Smm{
209962Smm	int error;
209962Smm	zap_cursor_t zc;
209962Smm	zap_attribute_t za;
209962Smm	zfs_useracct_t *buf = vbuf;
209962Smm	uint64_t obj;
209962Smm
209962Smm	if (!dmu_objset_userspace_present(zfsvfs->z_os))
209962Smm		return (ENOTSUP);
209962Smm
209962Smm	obj = zfs_userquota_prop_to_obj(zfsvfs, type);
209962Smm	if (obj == 0) {
209962Smm		*bufsizep = 0;
209962Smm		return (0);
209962Smm	}
209962Smm
209962Smm	for (zap_cursor_init_serialized(&zc, zfsvfs->z_os, obj, *cookiep);
209962Smm	    (error = zap_cursor_retrieve(&zc, &za)) == 0;
209962Smm	    zap_cursor_advance(&zc)) {
209962Smm		if ((uintptr_t)buf - (uintptr_t)vbuf + sizeof (zfs_useracct_t) >
209962Smm		    *bufsizep)
209962Smm			break;
209962Smm
209962Smm		fuidstr_to_sid(zfsvfs, za.za_name,
209962Smm		    buf->zu_domain, sizeof (buf->zu_domain), &buf->zu_rid);
209962Smm
209962Smm		buf->zu_space = za.za_first_integer;
209962Smm		buf++;
209962Smm	}
209962Smm	if (error == ENOENT)
209962Smm		error = 0;
209962Smm
209962Smm	ASSERT3U((uintptr_t)buf - (uintptr_t)vbuf, <=, *bufsizep);
209962Smm	*bufsizep = (uintptr_t)buf - (uintptr_t)vbuf;
209962Smm	*cookiep = zap_cursor_serialize(&zc);
209962Smm	zap_cursor_fini(&zc);
209962Smm	return (error);
209962Smm}
209962Smm
209962Smm/*
209962Smm * buf must be big enough (eg, 32 bytes)
209962Smm */
168404Spjdstatic int
209962Smmid_to_fuidstr(zfsvfs_t *zfsvfs, const char *domain, uid_t rid,
209962Smm    char *buf, boolean_t addok)
209962Smm{
209962Smm	uint64_t fuid;
209962Smm	int domainid = 0;
209962Smm
209962Smm	if (domain && domain[0]) {
209962Smm		domainid = zfs_fuid_find_by_domain(zfsvfs, domain, NULL, addok);
209962Smm		if (domainid == -1)
209962Smm			return (ENOENT);
209962Smm	}
209962Smm	fuid = FUID_ENCODE(domainid, rid);
209962Smm	(void) sprintf(buf, "%llx", (longlong_t)fuid);
209962Smm	return (0);
209962Smm}
209962Smm
209962Smmint
209962Smmzfs_userspace_one(zfsvfs_t *zfsvfs, zfs_userquota_prop_t type,
209962Smm    const char *domain, uint64_t rid, uint64_t *valp)
209962Smm{
209962Smm	char buf[32];
209962Smm	int err;
209962Smm	uint64_t obj;
209962Smm
209962Smm	*valp = 0;
209962Smm
209962Smm	if (!dmu_objset_userspace_present(zfsvfs->z_os))
209962Smm		return (ENOTSUP);
209962Smm
209962Smm	obj = zfs_userquota_prop_to_obj(zfsvfs, type);
209962Smm	if (obj == 0)
209962Smm		return (0);
209962Smm
209962Smm	err = id_to_fuidstr(zfsvfs, domain, rid, buf, B_FALSE);
209962Smm	if (err)
209962Smm		return (err);
209962Smm
209962Smm	err = zap_lookup(zfsvfs->z_os, obj, buf, 8, 1, valp);
209962Smm	if (err == ENOENT)
209962Smm		err = 0;
209962Smm	return (err);
209962Smm}
209962Smm
209962Smmint
209962Smmzfs_set_userquota(zfsvfs_t *zfsvfs, zfs_userquota_prop_t type,
209962Smm    const char *domain, uint64_t rid, uint64_t quota)
209962Smm{
209962Smm	char buf[32];
209962Smm	int err;
209962Smm	dmu_tx_t *tx;
209962Smm	uint64_t *objp;
209962Smm	boolean_t fuid_dirtied;
209962Smm
209962Smm	if (type != ZFS_PROP_USERQUOTA && type != ZFS_PROP_GROUPQUOTA)
209962Smm		return (EINVAL);
209962Smm
209962Smm	if (zfsvfs->z_version < ZPL_VERSION_USERSPACE)
209962Smm		return (ENOTSUP);
209962Smm
209962Smm	objp = (type == ZFS_PROP_USERQUOTA) ? &zfsvfs->z_userquota_obj :
209962Smm	    &zfsvfs->z_groupquota_obj;
209962Smm
209962Smm	err = id_to_fuidstr(zfsvfs, domain, rid, buf, B_TRUE);
209962Smm	if (err)
209962Smm		return (err);
209962Smm	fuid_dirtied = zfsvfs->z_fuid_dirty;
209962Smm
209962Smm	tx = dmu_tx_create(zfsvfs->z_os);
209962Smm	dmu_tx_hold_zap(tx, *objp ? *objp : DMU_NEW_OBJECT, B_TRUE, NULL);
209962Smm	if (*objp == 0) {
209962Smm		dmu_tx_hold_zap(tx, MASTER_NODE_OBJ, B_TRUE,
209962Smm		    zfs_userquota_prop_prefixes[type]);
209962Smm	}
209962Smm	if (fuid_dirtied)
209962Smm		zfs_fuid_txhold(zfsvfs, tx);
209962Smm	err = dmu_tx_assign(tx, TXG_WAIT);
209962Smm	if (err) {
209962Smm		dmu_tx_abort(tx);
209962Smm		return (err);
209962Smm	}
209962Smm
209962Smm	mutex_enter(&zfsvfs->z_lock);
209962Smm	if (*objp == 0) {
209962Smm		*objp = zap_create(zfsvfs->z_os, DMU_OT_USERGROUP_QUOTA,
209962Smm		    DMU_OT_NONE, 0, tx);
209962Smm		VERIFY(0 == zap_add(zfsvfs->z_os, MASTER_NODE_OBJ,
209962Smm		    zfs_userquota_prop_prefixes[type], 8, 1, objp, tx));
209962Smm	}
209962Smm	mutex_exit(&zfsvfs->z_lock);
209962Smm
209962Smm	if (quota == 0) {
209962Smm		err = zap_remove(zfsvfs->z_os, *objp, buf, tx);
209962Smm		if (err == ENOENT)
209962Smm			err = 0;
209962Smm	} else {
209962Smm		err = zap_update(zfsvfs->z_os, *objp, buf, 8, 1, &quota, tx);
209962Smm	}
209962Smm	ASSERT(err == 0);
209962Smm	if (fuid_dirtied)
209962Smm		zfs_fuid_sync(zfsvfs, tx);
209962Smm	dmu_tx_commit(tx);
209962Smm	return (err);
209962Smm}
209962Smm
209962Smmboolean_t
219089Spjdzfs_fuid_overquota(zfsvfs_t *zfsvfs, boolean_t isgroup, uint64_t fuid)
209962Smm{
209962Smm	char buf[32];
209962Smm	uint64_t used, quota, usedobj, quotaobj;
209962Smm	int err;
209962Smm
209962Smm	usedobj = isgroup ? DMU_GROUPUSED_OBJECT : DMU_USERUSED_OBJECT;
209962Smm	quotaobj = isgroup ? zfsvfs->z_groupquota_obj : zfsvfs->z_userquota_obj;
209962Smm
209962Smm	if (quotaobj == 0 || zfsvfs->z_replay)
209962Smm		return (B_FALSE);
209962Smm
209962Smm	(void) sprintf(buf, "%llx", (longlong_t)fuid);
209962Smm	err = zap_lookup(zfsvfs->z_os, quotaobj, buf, 8, 1, &quota);
209962Smm	if (err != 0)
209962Smm		return (B_FALSE);
209962Smm
209962Smm	err = zap_lookup(zfsvfs->z_os, usedobj, buf, 8, 1, &used);
209962Smm	if (err != 0)
209962Smm		return (B_FALSE);
209962Smm	return (used >= quota);
209962Smm}
209962Smm
219089Spjdboolean_t
219089Spjdzfs_owner_overquota(zfsvfs_t *zfsvfs, znode_t *zp, boolean_t isgroup)
219089Spjd{
219089Spjd	uint64_t fuid;
219089Spjd	uint64_t quotaobj;
219089Spjd
219089Spjd	quotaobj = isgroup ? zfsvfs->z_groupquota_obj : zfsvfs->z_userquota_obj;
219089Spjd
219089Spjd	fuid = isgroup ? zp->z_gid : zp->z_uid;
219089Spjd
219089Spjd	if (quotaobj == 0 || zfsvfs->z_replay)
219089Spjd		return (B_FALSE);
219089Spjd
219089Spjd	return (zfs_fuid_overquota(zfsvfs, isgroup, fuid));
219089Spjd}
219089Spjd
209962Smmint
219089Spjdzfsvfs_create(const char *osname, zfsvfs_t **zfvp)
209962Smm{
209962Smm	objset_t *os;
209962Smm	zfsvfs_t *zfsvfs;
209962Smm	uint64_t zval;
209962Smm	int i, error;
219089Spjd	uint64_t sa_obj;
209962Smm
219089Spjd	zfsvfs = kmem_zalloc(sizeof (zfsvfs_t), KM_SLEEP);
219089Spjd
219089Spjd	/*
219089Spjd	 * We claim to always be readonly so we can open snapshots;
219089Spjd	 * other ZPL code will prevent us from writing to snapshots.
219089Spjd	 */
219089Spjd	error = dmu_objset_own(osname, DMU_OST_ZFS, B_TRUE, zfsvfs, &os);
219089Spjd	if (error) {
219089Spjd		kmem_free(zfsvfs, sizeof (zfsvfs_t));
209962Smm		return (error);
209962Smm	}
209962Smm
209962Smm	/*
209962Smm	 * Initialize the zfs-specific filesystem structure.
209962Smm	 * Should probably make this a kmem cache, shuffle fields,
209962Smm	 * and just bzero up to z_hold_mtx[].
209962Smm	 */
209962Smm	zfsvfs->z_vfs = NULL;
209962Smm	zfsvfs->z_parent = zfsvfs;
209962Smm	zfsvfs->z_max_blksz = SPA_MAXBLOCKSIZE;
209962Smm	zfsvfs->z_show_ctldir = ZFS_SNAPDIR_VISIBLE;
209962Smm	zfsvfs->z_os = os;
209962Smm
209962Smm	error = zfs_get_zplprop(os, ZFS_PROP_VERSION, &zfsvfs->z_version);
209962Smm	if (error) {
209962Smm		goto out;
219089Spjd	} else if (zfsvfs->z_version >
219089Spjd	    zfs_zpl_version_map(spa_version(dmu_objset_spa(os)))) {
219089Spjd		(void) printf("Can't mount a version %lld file system "
219089Spjd		    "on a version %lld pool\n. Pool must be upgraded to mount "
219089Spjd		    "this file system.", (u_longlong_t)zfsvfs->z_version,
219089Spjd		    (u_longlong_t)spa_version(dmu_objset_spa(os)));
209962Smm		error = ENOTSUP;
209962Smm		goto out;
209962Smm	}
209962Smm	if ((error = zfs_get_zplprop(os, ZFS_PROP_NORMALIZE, &zval)) != 0)
209962Smm		goto out;
209962Smm	zfsvfs->z_norm = (int)zval;
209962Smm
209962Smm	if ((error = zfs_get_zplprop(os, ZFS_PROP_UTF8ONLY, &zval)) != 0)
209962Smm		goto out;
209962Smm	zfsvfs->z_utf8 = (zval != 0);
209962Smm
209962Smm	if ((error = zfs_get_zplprop(os, ZFS_PROP_CASE, &zval)) != 0)
209962Smm		goto out;
209962Smm	zfsvfs->z_case = (uint_t)zval;
209962Smm
209962Smm	/*
209962Smm	 * Fold case on file systems that are always or sometimes case
209962Smm	 * insensitive.
209962Smm	 */
209962Smm	if (zfsvfs->z_case == ZFS_CASE_INSENSITIVE ||
209962Smm	    zfsvfs->z_case == ZFS_CASE_MIXED)
209962Smm		zfsvfs->z_norm |= U8_TEXTPREP_TOUPPER;
209962Smm
209962Smm	zfsvfs->z_use_fuids = USE_FUIDS(zfsvfs->z_version, zfsvfs->z_os);
219089Spjd	zfsvfs->z_use_sa = USE_SA(zfsvfs->z_version, zfsvfs->z_os);
209962Smm
219089Spjd	if (zfsvfs->z_use_sa) {
219089Spjd		/* should either have both of these objects or none */
219089Spjd		error = zap_lookup(os, MASTER_NODE_OBJ, ZFS_SA_ATTRS, 8, 1,
219089Spjd		    &sa_obj);
219089Spjd		if (error)
219089Spjd			return (error);
219089Spjd	} else {
219089Spjd		/*
219089Spjd		 * Pre SA versions file systems should never touch
219089Spjd		 * either the attribute registration or layout objects.
219089Spjd		 */
219089Spjd		sa_obj = 0;
219089Spjd	}
219089Spjd
219089Spjd	error = sa_setup(os, sa_obj, zfs_attr_table, ZPL_END,
219089Spjd	    &zfsvfs->z_attr_table);
219089Spjd	if (error)
219089Spjd		goto out;
219089Spjd
219089Spjd	if (zfsvfs->z_version >= ZPL_VERSION_SA)
219089Spjd		sa_register_update_callback(os, zfs_sa_upgrade);
219089Spjd
209962Smm	error = zap_lookup(os, MASTER_NODE_OBJ, ZFS_ROOT_OBJ, 8, 1,
209962Smm	    &zfsvfs->z_root);
209962Smm	if (error)
209962Smm		goto out;
209962Smm	ASSERT(zfsvfs->z_root != 0);
209962Smm
209962Smm	error = zap_lookup(os, MASTER_NODE_OBJ, ZFS_UNLINKED_SET, 8, 1,
209962Smm	    &zfsvfs->z_unlinkedobj);
209962Smm	if (error)
209962Smm		goto out;
209962Smm
209962Smm	error = zap_lookup(os, MASTER_NODE_OBJ,
209962Smm	    zfs_userquota_prop_prefixes[ZFS_PROP_USERQUOTA],
209962Smm	    8, 1, &zfsvfs->z_userquota_obj);
209962Smm	if (error && error != ENOENT)
209962Smm		goto out;
209962Smm
209962Smm	error = zap_lookup(os, MASTER_NODE_OBJ,
209962Smm	    zfs_userquota_prop_prefixes[ZFS_PROP_GROUPQUOTA],
209962Smm	    8, 1, &zfsvfs->z_groupquota_obj);
209962Smm	if (error && error != ENOENT)
209962Smm		goto out;
209962Smm
209962Smm	error = zap_lookup(os, MASTER_NODE_OBJ, ZFS_FUID_TABLES, 8, 1,
209962Smm	    &zfsvfs->z_fuid_obj);
209962Smm	if (error && error != ENOENT)
209962Smm		goto out;
209962Smm
209962Smm	error = zap_lookup(os, MASTER_NODE_OBJ, ZFS_SHARES_DIR, 8, 1,
209962Smm	    &zfsvfs->z_shares_dir);
209962Smm	if (error && error != ENOENT)
209962Smm		goto out;
209962Smm
209962Smm	mutex_init(&zfsvfs->z_znodes_lock, NULL, MUTEX_DEFAULT, NULL);
209962Smm	mutex_init(&zfsvfs->z_lock, NULL, MUTEX_DEFAULT, NULL);
209962Smm	list_create(&zfsvfs->z_all_znodes, sizeof (znode_t),
209962Smm	    offsetof(znode_t, z_link_node));
209962Smm	rrw_init(&zfsvfs->z_teardown_lock);
209962Smm	rw_init(&zfsvfs->z_teardown_inactive_lock, NULL, RW_DEFAULT, NULL);
209962Smm	rw_init(&zfsvfs->z_fuid_lock, NULL, RW_DEFAULT, NULL);
209962Smm	for (i = 0; i != ZFS_OBJ_MTX_SZ; i++)
209962Smm		mutex_init(&zfsvfs->z_hold_mtx[i], NULL, MUTEX_DEFAULT, NULL);
209962Smm
219089Spjd	*zfvp = zfsvfs;
209962Smm	return (0);
209962Smm
209962Smmout:
219089Spjd	dmu_objset_disown(os, zfsvfs);
219089Spjd	*zfvp = NULL;
209962Smm	kmem_free(zfsvfs, sizeof (zfsvfs_t));
209962Smm	return (error);
209962Smm}
209962Smm
209962Smmstatic int
185029Spjdzfsvfs_setup(zfsvfs_t *zfsvfs, boolean_t mounting)
168404Spjd{
185029Spjd	int error;
185029Spjd
185029Spjd	error = zfs_register_callbacks(zfsvfs->z_vfs);
185029Spjd	if (error)
185029Spjd		return (error);
185029Spjd
185029Spjd	/*
185029Spjd	 * Set the objset user_ptr to track its zfsvfs.
185029Spjd	 */
219089Spjd	mutex_enter(&zfsvfs->z_os->os_user_ptr_lock);
185029Spjd	dmu_objset_set_user(zfsvfs->z_os, zfsvfs);
219089Spjd	mutex_exit(&zfsvfs->z_os->os_user_ptr_lock);
185029Spjd
208689Smm	zfsvfs->z_log = zil_open(zfsvfs->z_os, zfs_get_data);
208689Smm
185029Spjd	/*
185029Spjd	 * If we are not mounting (ie: online recv), then we don't
185029Spjd	 * have to worry about replaying the log as we blocked all
185029Spjd	 * operations out since we closed the ZIL.
185029Spjd	 */
185029Spjd	if (mounting) {
185029Spjd		boolean_t readonly;
185029Spjd
185029Spjd		/*
185029Spjd		 * During replay we remove the read only flag to
185029Spjd		 * allow replays to succeed.
185029Spjd		 */
185029Spjd		readonly = zfsvfs->z_vfs->vfs_flag & VFS_RDONLY;
208689Smm		if (readonly != 0)
208689Smm			zfsvfs->z_vfs->vfs_flag &= ~VFS_RDONLY;
208689Smm		else
208689Smm			zfs_unlinked_drain(zfsvfs);
185029Spjd
219089Spjd		/*
219089Spjd		 * Parse and replay the intent log.
219089Spjd		 *
219089Spjd		 * Because of ziltest, this must be done after
219089Spjd		 * zfs_unlinked_drain().  (Further note: ziltest
219089Spjd		 * doesn't use readonly mounts, where
219089Spjd		 * zfs_unlinked_drain() isn't called.)  This is because
219089Spjd		 * ziltest causes spa_sync() to think it's committed,
219089Spjd		 * but actually it is not, so the intent log contains
219089Spjd		 * many txg's worth of changes.
219089Spjd		 *
219089Spjd		 * In particular, if object N is in the unlinked set in
219089Spjd		 * the last txg to actually sync, then it could be
219089Spjd		 * actually freed in a later txg and then reallocated
219089Spjd		 * in a yet later txg.  This would write a "create
219089Spjd		 * object N" record to the intent log.  Normally, this
219089Spjd		 * would be fine because the spa_sync() would have
219089Spjd		 * written out the fact that object N is free, before
219089Spjd		 * we could write the "create object N" intent log
219089Spjd		 * record.
219089Spjd		 *
219089Spjd		 * But when we are in ziltest mode, we advance the "open
219089Spjd		 * txg" without actually spa_sync()-ing the changes to
219089Spjd		 * disk.  So we would see that object N is still
219089Spjd		 * allocated and in the unlinked set, and there is an
219089Spjd		 * intent log record saying to allocate it.
219089Spjd		 */
219089Spjd		if (spa_writeable(dmu_objset_spa(zfsvfs->z_os))) {
219089Spjd			if (zil_replay_disable) {
219089Spjd				zil_destroy(zfsvfs->z_log, B_FALSE);
219089Spjd			} else {
219089Spjd				zfsvfs->z_replay = B_TRUE;
219089Spjd				zil_replay(zfsvfs->z_os, zfsvfs,
219089Spjd				    zfs_replay_vector);
219089Spjd				zfsvfs->z_replay = B_FALSE;
219089Spjd			}
208689Smm		}
185029Spjd		zfsvfs->z_vfs->vfs_flag |= readonly; /* restore readonly bit */
185029Spjd	}
185029Spjd
185029Spjd	return (0);
185029Spjd}
185029Spjd
210470Smmextern krwlock_t zfsvfs_lock; /* in zfs_znode.c */
210470Smm
209962Smmvoid
209962Smmzfsvfs_free(zfsvfs_t *zfsvfs)
185029Spjd{
209962Smm	int i;
209962Smm
210470Smm	/*
210470Smm	 * This is a barrier to prevent the filesystem from going away in
210470Smm	 * zfs_znode_move() until we can safely ensure that the filesystem is
210470Smm	 * not unmounted. We consider the filesystem valid before the barrier
210470Smm	 * and invalid after the barrier.
210470Smm	 */
210470Smm	rw_enter(&zfsvfs_lock, RW_READER);
210470Smm	rw_exit(&zfsvfs_lock);
210470Smm
209962Smm	zfs_fuid_destroy(zfsvfs);
209962Smm
185029Spjd	mutex_destroy(&zfsvfs->z_znodes_lock);
209962Smm	mutex_destroy(&zfsvfs->z_lock);
185029Spjd	list_destroy(&zfsvfs->z_all_znodes);
185029Spjd	rrw_destroy(&zfsvfs->z_teardown_lock);
185029Spjd	rw_destroy(&zfsvfs->z_teardown_inactive_lock);
185029Spjd	rw_destroy(&zfsvfs->z_fuid_lock);
209962Smm	for (i = 0; i != ZFS_OBJ_MTX_SZ; i++)
209962Smm		mutex_destroy(&zfsvfs->z_hold_mtx[i]);
185029Spjd	kmem_free(zfsvfs, sizeof (zfsvfs_t));
185029Spjd}
185029Spjd
209962Smmstatic void
209962Smmzfs_set_fuid_feature(zfsvfs_t *zfsvfs)
209962Smm{
209962Smm	zfsvfs->z_use_fuids = USE_FUIDS(zfsvfs->z_version, zfsvfs->z_os);
219089Spjd	if (zfsvfs->z_vfs) {
219089Spjd		if (zfsvfs->z_use_fuids) {
219089Spjd			vfs_set_feature(zfsvfs->z_vfs, VFSFT_XVATTR);
219089Spjd			vfs_set_feature(zfsvfs->z_vfs, VFSFT_SYSATTR_VIEWS);
219089Spjd			vfs_set_feature(zfsvfs->z_vfs, VFSFT_ACEMASKONACCESS);
219089Spjd			vfs_set_feature(zfsvfs->z_vfs, VFSFT_ACLONCREATE);
219089Spjd			vfs_set_feature(zfsvfs->z_vfs, VFSFT_ACCESS_FILTER);
219089Spjd			vfs_set_feature(zfsvfs->z_vfs, VFSFT_REPARSE);
219089Spjd		} else {
219089Spjd			vfs_clear_feature(zfsvfs->z_vfs, VFSFT_XVATTR);
219089Spjd			vfs_clear_feature(zfsvfs->z_vfs, VFSFT_SYSATTR_VIEWS);
219089Spjd			vfs_clear_feature(zfsvfs->z_vfs, VFSFT_ACEMASKONACCESS);
219089Spjd			vfs_clear_feature(zfsvfs->z_vfs, VFSFT_ACLONCREATE);
219089Spjd			vfs_clear_feature(zfsvfs->z_vfs, VFSFT_ACCESS_FILTER);
219089Spjd			vfs_clear_feature(zfsvfs->z_vfs, VFSFT_REPARSE);
219089Spjd		}
209962Smm	}
219089Spjd	zfsvfs->z_use_sa = USE_SA(zfsvfs->z_version, zfsvfs->z_os);
209962Smm}
209962Smm
185029Spjdstatic int
185029Spjdzfs_domount(vfs_t *vfsp, char *osname)
185029Spjd{
209962Smm	uint64_t recordsize, fsid_guid;
168404Spjd	int error = 0;
168404Spjd	zfsvfs_t *zfsvfs;
209962Smm	vnode_t *vp;
168404Spjd
168404Spjd	ASSERT(vfsp);
168404Spjd	ASSERT(osname);
168404Spjd
219089Spjd	error = zfsvfs_create(osname, &zfsvfs);
209962Smm	if (error)
209962Smm		return (error);
168404Spjd	zfsvfs->z_vfs = vfsp;
168404Spjd
168404Spjd	if (error = dsl_prop_get_integer(osname, "recordsize", &recordsize,
168404Spjd	    NULL))
168404Spjd		goto out;
204101Spjd	zfsvfs->z_vfs->vfs_bsize = SPA_MINBLOCKSIZE;
204101Spjd	zfsvfs->z_vfs->mnt_stat.f_iosize = recordsize;
168404Spjd
168404Spjd	vfsp->vfs_data = zfsvfs;
218386Strasz	vfsp->mnt_flag |= MNT_LOCAL;
168404Spjd	vfsp->mnt_kern_flag |= MNTK_MPSAFE;
168404Spjd	vfsp->mnt_kern_flag |= MNTK_LOOKUP_SHARED;
193440Sps	vfsp->mnt_kern_flag |= MNTK_SHARED_WRITES;
168404Spjd
209962Smm	/*
209962Smm	 * The fsid is 64 bits, composed of an 8-bit fs type, which
209962Smm	 * separates our fsid from any other filesystem types, and a
209962Smm	 * 56-bit objset unique ID.  The objset unique ID is unique to
209962Smm	 * all objsets open on this system, provided by unique_create().
209962Smm	 * The 8-bit fs type must be put in the low bits of fsid[1]
209962Smm	 * because that's where other Solaris filesystems put it.
209962Smm	 */
209962Smm	fsid_guid = dmu_objset_fsid_guid(zfsvfs->z_os);
209962Smm	ASSERT((fsid_guid & ~((1ULL<<56)-1)) == 0);
209962Smm	vfsp->vfs_fsid.val[0] = fsid_guid;
209962Smm	vfsp->vfs_fsid.val[1] = ((fsid_guid>>32) << 8) |
209962Smm	    vfsp->mnt_vfc->vfc_typenum & 0xFF;
168404Spjd
185029Spjd	/*
185029Spjd	 * Set features for file system.
185029Spjd	 */
209962Smm	zfs_set_fuid_feature(zfsvfs);
185029Spjd	if (zfsvfs->z_case == ZFS_CASE_INSENSITIVE) {
185029Spjd		vfs_set_feature(vfsp, VFSFT_DIRENTFLAGS);
185029Spjd		vfs_set_feature(vfsp, VFSFT_CASEINSENSITIVE);
185029Spjd		vfs_set_feature(vfsp, VFSFT_NOCASESENSITIVE);
185029Spjd	} else if (zfsvfs->z_case == ZFS_CASE_MIXED) {
185029Spjd		vfs_set_feature(vfsp, VFSFT_DIRENTFLAGS);
185029Spjd		vfs_set_feature(vfsp, VFSFT_CASEINSENSITIVE);
185029Spjd	}
219089Spjd	vfs_set_feature(vfsp, VFSFT_ZEROCOPY_SUPPORTED);
185029Spjd
168404Spjd	if (dmu_objset_is_snapshot(zfsvfs->z_os)) {
185029Spjd		uint64_t pval;
168404Spjd
168404Spjd		atime_changed_cb(zfsvfs, B_FALSE);
168404Spjd		readonly_changed_cb(zfsvfs, B_TRUE);
185029Spjd		if (error = dsl_prop_get_integer(osname, "xattr", &pval, NULL))
168404Spjd			goto out;
185029Spjd		xattr_changed_cb(zfsvfs, pval);
168404Spjd		zfsvfs->z_issnap = B_TRUE;
219089Spjd		zfsvfs->z_os->os_sync = ZFS_SYNC_DISABLED;
209962Smm
219089Spjd		mutex_enter(&zfsvfs->z_os->os_user_ptr_lock);
209962Smm		dmu_objset_set_user(zfsvfs->z_os, zfsvfs);
219089Spjd		mutex_exit(&zfsvfs->z_os->os_user_ptr_lock);
168404Spjd	} else {
185029Spjd		error = zfsvfs_setup(zfsvfs, B_TRUE);
168404Spjd	}
168404Spjd
168404Spjd	vfs_mountedfrom(vfsp, osname);
209962Smm	/* Grab extra reference. */
209962Smm	VERIFY(VFS_ROOT(vfsp, LK_EXCLUSIVE, &vp) == 0);
209962Smm	VOP_UNLOCK(vp, 0);
168404Spjd
168404Spjd	if (!zfsvfs->z_issnap)
168404Spjd		zfsctl_create(zfsvfs);
168404Spjdout:
168404Spjd	if (error) {
219089Spjd		dmu_objset_disown(zfsvfs->z_os, zfsvfs);
209962Smm		zfsvfs_free(zfsvfs);
168404Spjd	} else {
168404Spjd		atomic_add_32(&zfs_active_fs_count, 1);
168404Spjd	}
168404Spjd
168404Spjd	return (error);
168404Spjd}
168404Spjd
168404Spjdvoid
168404Spjdzfs_unregister_callbacks(zfsvfs_t *zfsvfs)
168404Spjd{
168404Spjd	objset_t *os = zfsvfs->z_os;
168404Spjd	struct dsl_dataset *ds;
168404Spjd
168404Spjd	/*
168404Spjd	 * Unregister properties.
168404Spjd	 */
168404Spjd	if (!dmu_objset_is_snapshot(os)) {
168404Spjd		ds = dmu_objset_ds(os);
168404Spjd		VERIFY(dsl_prop_unregister(ds, "atime", atime_changed_cb,
168404Spjd		    zfsvfs) == 0);
168404Spjd
168404Spjd		VERIFY(dsl_prop_unregister(ds, "xattr", xattr_changed_cb,
168404Spjd		    zfsvfs) == 0);
168404Spjd
168404Spjd		VERIFY(dsl_prop_unregister(ds, "recordsize", blksz_changed_cb,
168404Spjd		    zfsvfs) == 0);
168404Spjd
168404Spjd		VERIFY(dsl_prop_unregister(ds, "readonly", readonly_changed_cb,
168404Spjd		    zfsvfs) == 0);
168404Spjd
168404Spjd		VERIFY(dsl_prop_unregister(ds, "setuid", setuid_changed_cb,
168404Spjd		    zfsvfs) == 0);
168404Spjd
168404Spjd		VERIFY(dsl_prop_unregister(ds, "exec", exec_changed_cb,
168404Spjd		    zfsvfs) == 0);
168404Spjd
168404Spjd		VERIFY(dsl_prop_unregister(ds, "snapdir", snapdir_changed_cb,
168404Spjd		    zfsvfs) == 0);
168404Spjd
168404Spjd		VERIFY(dsl_prop_unregister(ds, "aclinherit",
168404Spjd		    acl_inherit_changed_cb, zfsvfs) == 0);
185029Spjd
185029Spjd		VERIFY(dsl_prop_unregister(ds, "vscan",
185029Spjd		    vscan_changed_cb, zfsvfs) == 0);
168404Spjd	}
168404Spjd}
168404Spjd
219089Spjd#ifdef SECLABEL
219089Spjd/*
219089Spjd * Convert a decimal digit string to a uint64_t integer.
219089Spjd */
219089Spjdstatic int
219089Spjdstr_to_uint64(char *str, uint64_t *objnum)
219089Spjd{
219089Spjd	uint64_t num = 0;
219089Spjd
219089Spjd	while (*str) {
219089Spjd		if (*str < '0' || *str > '9')
219089Spjd			return (EINVAL);
219089Spjd
219089Spjd		num = num*10 + *str++ - '0';
219089Spjd	}
219089Spjd
219089Spjd	*objnum = num;
219089Spjd	return (0);
219089Spjd}
219089Spjd
219089Spjd/*
219089Spjd * The boot path passed from the boot loader is in the form of
219089Spjd * "rootpool-name/root-filesystem-object-number'. Convert this
219089Spjd * string to a dataset name: "rootpool-name/root-filesystem-name".
219089Spjd */
219089Spjdstatic int
219089Spjdzfs_parse_bootfs(char *bpath, char *outpath)
219089Spjd{
219089Spjd	char *slashp;
219089Spjd	uint64_t objnum;
219089Spjd	int error;
219089Spjd
219089Spjd	if (*bpath == 0 || *bpath == '/')
219089Spjd		return (EINVAL);
219089Spjd
219089Spjd	(void) strcpy(outpath, bpath);
219089Spjd
219089Spjd	slashp = strchr(bpath, '/');
219089Spjd
219089Spjd	/* if no '/', just return the pool name */
219089Spjd	if (slashp == NULL) {
219089Spjd		return (0);
219089Spjd	}
219089Spjd
219089Spjd	/* if not a number, just return the root dataset name */
219089Spjd	if (str_to_uint64(slashp+1, &objnum)) {
219089Spjd		return (0);
219089Spjd	}
219089Spjd
219089Spjd	*slashp = '\0';
219089Spjd	error = dsl_dsobj_to_dsname(bpath, objnum, outpath);
219089Spjd	*slashp = '/';
219089Spjd
219089Spjd	return (error);
219089Spjd}
219089Spjd
219089Spjd/*
219089Spjd * zfs_check_global_label:
219089Spjd *	Check that the hex label string is appropriate for the dataset
219089Spjd *	being mounted into the global_zone proper.
219089Spjd *
219089Spjd *	Return an error if the hex label string is not default or
219089Spjd *	admin_low/admin_high.  For admin_low labels, the corresponding
219089Spjd *	dataset must be readonly.
219089Spjd */
219089Spjdint
219089Spjdzfs_check_global_label(const char *dsname, const char *hexsl)
219089Spjd{
219089Spjd	if (strcasecmp(hexsl, ZFS_MLSLABEL_DEFAULT) == 0)
219089Spjd		return (0);
219089Spjd	if (strcasecmp(hexsl, ADMIN_HIGH) == 0)
219089Spjd		return (0);
219089Spjd	if (strcasecmp(hexsl, ADMIN_LOW) == 0) {
219089Spjd		/* must be readonly */
219089Spjd		uint64_t rdonly;
219089Spjd
219089Spjd		if (dsl_prop_get_integer(dsname,
219089Spjd		    zfs_prop_to_name(ZFS_PROP_READONLY), &rdonly, NULL))
219089Spjd			return (EACCES);
219089Spjd		return (rdonly ? 0 : EACCES);
219089Spjd	}
219089Spjd	return (EACCES);
219089Spjd}
219089Spjd
219089Spjd/*
219089Spjd * zfs_mount_label_policy:
219089Spjd *	Determine whether the mount is allowed according to MAC check.
219089Spjd *	by comparing (where appropriate) label of the dataset against
219089Spjd *	the label of the zone being mounted into.  If the dataset has
219089Spjd *	no label, create one.
219089Spjd *
219089Spjd *	Returns:
219089Spjd *		 0 :	access allowed
219089Spjd *		>0 :	error code, such as EACCES
219089Spjd */
219089Spjdstatic int
219089Spjdzfs_mount_label_policy(vfs_t *vfsp, char *osname)
219089Spjd{
219089Spjd	int		error, retv;
219089Spjd	zone_t		*mntzone = NULL;
219089Spjd	ts_label_t	*mnt_tsl;
219089Spjd	bslabel_t	*mnt_sl;
219089Spjd	bslabel_t	ds_sl;
219089Spjd	char		ds_hexsl[MAXNAMELEN];
219089Spjd
219089Spjd	retv = EACCES;				/* assume the worst */
219089Spjd
219089Spjd	/*
219089Spjd	 * Start by getting the dataset label if it exists.
219089Spjd	 */
219089Spjd	error = dsl_prop_get(osname, zfs_prop_to_name(ZFS_PROP_MLSLABEL),
219089Spjd	    1, sizeof (ds_hexsl), &ds_hexsl, NULL);
219089Spjd	if (error)
219089Spjd		return (EACCES);
219089Spjd
219089Spjd	/*
219089Spjd	 * If labeling is NOT enabled, then disallow the mount of datasets
219089Spjd	 * which have a non-default label already.  No other label checks
219089Spjd	 * are needed.
219089Spjd	 */
219089Spjd	if (!is_system_labeled()) {
219089Spjd		if (strcasecmp(ds_hexsl, ZFS_MLSLABEL_DEFAULT) == 0)
219089Spjd			return (0);
219089Spjd		return (EACCES);
219089Spjd	}
219089Spjd
219089Spjd	/*
219089Spjd	 * Get the label of the mountpoint.  If mounting into the global
219089Spjd	 * zone (i.e. mountpoint is not within an active zone and the
219089Spjd	 * zoned property is off), the label must be default or
219089Spjd	 * admin_low/admin_high only; no other checks are needed.
219089Spjd	 */
219089Spjd	mntzone = zone_find_by_any_path(refstr_value(vfsp->vfs_mntpt), B_FALSE);
219089Spjd	if (mntzone->zone_id == GLOBAL_ZONEID) {
219089Spjd		uint64_t zoned;
219089Spjd
219089Spjd		zone_rele(mntzone);
219089Spjd
219089Spjd		if (dsl_prop_get_integer(osname,
219089Spjd		    zfs_prop_to_name(ZFS_PROP_ZONED), &zoned, NULL))
219089Spjd			return (EACCES);
219089Spjd		if (!zoned)
219089Spjd			return (zfs_check_global_label(osname, ds_hexsl));
219089Spjd		else
219089Spjd			/*
219089Spjd			 * This is the case of a zone dataset being mounted
219089Spjd			 * initially, before the zone has been fully created;
219089Spjd			 * allow this mount into global zone.
219089Spjd			 */
219089Spjd			return (0);
219089Spjd	}
219089Spjd
219089Spjd	mnt_tsl = mntzone->zone_slabel;
219089Spjd	ASSERT(mnt_tsl != NULL);
219089Spjd	label_hold(mnt_tsl);
219089Spjd	mnt_sl = label2bslabel(mnt_tsl);
219089Spjd
219089Spjd	if (strcasecmp(ds_hexsl, ZFS_MLSLABEL_DEFAULT) == 0) {
219089Spjd		/*
219089Spjd		 * The dataset doesn't have a real label, so fabricate one.
219089Spjd		 */
219089Spjd		char *str = NULL;
219089Spjd
219089Spjd		if (l_to_str_internal(mnt_sl, &str) == 0 &&
219089Spjd		    dsl_prop_set(osname, zfs_prop_to_name(ZFS_PROP_MLSLABEL),
219089Spjd		    ZPROP_SRC_LOCAL, 1, strlen(str) + 1, str) == 0)
219089Spjd			retv = 0;
219089Spjd		if (str != NULL)
219089Spjd			kmem_free(str, strlen(str) + 1);
219089Spjd	} else if (hexstr_to_label(ds_hexsl, &ds_sl) == 0) {
219089Spjd		/*
219089Spjd		 * Now compare labels to complete the MAC check.  If the
219089Spjd		 * labels are equal then allow access.  If the mountpoint
219089Spjd		 * label dominates the dataset label, allow readonly access.
219089Spjd		 * Otherwise, access is denied.
219089Spjd		 */
219089Spjd		if (blequal(mnt_sl, &ds_sl))
219089Spjd			retv = 0;
219089Spjd		else if (bldominates(mnt_sl, &ds_sl)) {
219089Spjd			vfs_setmntopt(vfsp, MNTOPT_RO, NULL, 0);
219089Spjd			retv = 0;
219089Spjd		}
219089Spjd	}
219089Spjd
219089Spjd	label_rele(mnt_tsl);
219089Spjd	zone_rele(mntzone);
219089Spjd	return (retv);
219089Spjd}
219089Spjd#endif	/* SECLABEL */
219089Spjd
219089Spjd#ifdef OPENSOLARIS_MOUNTROOT
219089Spjdstatic int
219089Spjdzfs_mountroot(vfs_t *vfsp, enum whymountroot why)
219089Spjd{
219089Spjd	int error = 0;
219089Spjd	static int zfsrootdone = 0;
219089Spjd	zfsvfs_t *zfsvfs = NULL;
219089Spjd	znode_t *zp = NULL;
219089Spjd	vnode_t *vp = NULL;
219089Spjd	char *zfs_bootfs;
219089Spjd	char *zfs_devid;
219089Spjd
219089Spjd	ASSERT(vfsp);
219089Spjd
219089Spjd	/*
219089Spjd	 * The filesystem that we mount as root is defined in the
219089Spjd	 * boot property "zfs-bootfs" with a format of
219089Spjd	 * "poolname/root-dataset-objnum".
219089Spjd	 */
219089Spjd	if (why == ROOT_INIT) {
219089Spjd		if (zfsrootdone++)
219089Spjd			return (EBUSY);
219089Spjd		/*
219089Spjd		 * the process of doing a spa_load will require the
219089Spjd		 * clock to be set before we could (for example) do
219089Spjd		 * something better by looking at the timestamp on
219089Spjd		 * an uberblock, so just set it to -1.
219089Spjd		 */
219089Spjd		clkset(-1);
219089Spjd
219089Spjd		if ((zfs_bootfs = spa_get_bootprop("zfs-bootfs")) == NULL) {
219089Spjd			cmn_err(CE_NOTE, "spa_get_bootfs: can not get "
219089Spjd			    "bootfs name");
219089Spjd			return (EINVAL);
219089Spjd		}
219089Spjd		zfs_devid = spa_get_bootprop("diskdevid");
219089Spjd		error = spa_import_rootpool(rootfs.bo_name, zfs_devid);
219089Spjd		if (zfs_devid)
219089Spjd			spa_free_bootprop(zfs_devid);
219089Spjd		if (error) {
219089Spjd			spa_free_bootprop(zfs_bootfs);
219089Spjd			cmn_err(CE_NOTE, "spa_import_rootpool: error %d",
219089Spjd			    error);
219089Spjd			return (error);
219089Spjd		}
219089Spjd		if (error = zfs_parse_bootfs(zfs_bootfs, rootfs.bo_name)) {
219089Spjd			spa_free_bootprop(zfs_bootfs);
219089Spjd			cmn_err(CE_NOTE, "zfs_parse_bootfs: error %d",
219089Spjd			    error);
219089Spjd			return (error);
219089Spjd		}
219089Spjd
219089Spjd		spa_free_bootprop(zfs_bootfs);
219089Spjd
219089Spjd		if (error = vfs_lock(vfsp))
219089Spjd			return (error);
219089Spjd
219089Spjd		if (error = zfs_domount(vfsp, rootfs.bo_name)) {
219089Spjd			cmn_err(CE_NOTE, "zfs_domount: error %d", error);
219089Spjd			goto out;
219089Spjd		}
219089Spjd
219089Spjd		zfsvfs = (zfsvfs_t *)vfsp->vfs_data;
219089Spjd		ASSERT(zfsvfs);
219089Spjd		if (error = zfs_zget(zfsvfs, zfsvfs->z_root, &zp)) {
219089Spjd			cmn_err(CE_NOTE, "zfs_zget: error %d", error);
219089Spjd			goto out;
219089Spjd		}
219089Spjd
219089Spjd		vp = ZTOV(zp);
219089Spjd		mutex_enter(&vp->v_lock);
219089Spjd		vp->v_flag |= VROOT;
219089Spjd		mutex_exit(&vp->v_lock);
219089Spjd		rootvp = vp;
219089Spjd
219089Spjd		/*
219089Spjd		 * Leave rootvp held.  The root file system is never unmounted.
219089Spjd		 */
219089Spjd
219089Spjd		vfs_add((struct vnode *)0, vfsp,
219089Spjd		    (vfsp->vfs_flag & VFS_RDONLY) ? MS_RDONLY : 0);
219089Spjdout:
219089Spjd		vfs_unlock(vfsp);
219089Spjd		return (error);
219089Spjd	} else if (why == ROOT_REMOUNT) {
219089Spjd		readonly_changed_cb(vfsp->vfs_data, B_FALSE);
219089Spjd		vfsp->vfs_flag |= VFS_REMOUNT;
219089Spjd
219089Spjd		/* refresh mount options */
219089Spjd		zfs_unregister_callbacks(vfsp->vfs_data);
219089Spjd		return (zfs_register_callbacks(vfsp));
219089Spjd
219089Spjd	} else if (why == ROOT_UNMOUNT) {
219089Spjd		zfs_unregister_callbacks((zfsvfs_t *)vfsp->vfs_data);
219089Spjd		(void) zfs_sync(vfsp, 0, 0);
219089Spjd		return (0);
219089Spjd	}
219089Spjd
219089Spjd	/*
219089Spjd	 * if "why" is equal to anything else other than ROOT_INIT,
219089Spjd	 * ROOT_REMOUNT, or ROOT_UNMOUNT, we do not support it.
219089Spjd	 */
219089Spjd	return (ENOTSUP);
219089Spjd}
219089Spjd#endif	/* OPENSOLARIS_MOUNTROOT */
219089Spjd
168404Spjd/*ARGSUSED*/
168404Spjdstatic int
191990Sattiliozfs_mount(vfs_t *vfsp)
168404Spjd{
191990Sattilio	kthread_t	*td = curthread;
185029Spjd	vnode_t		*mvp = vfsp->mnt_vnodecovered;
185029Spjd	cred_t		*cr = td->td_ucred;
185029Spjd	char		*osname;
185029Spjd	int		error = 0;
185029Spjd	int		canwrite;
168404Spjd
185029Spjd	if (vfs_getopt(vfsp->mnt_optnew, "from", (void **)&osname, NULL))
185029Spjd		return (EINVAL);
185029Spjd
168404Spjd	/*
185029Spjd	 * If full-owner-access is enabled and delegated administration is
185029Spjd	 * turned on, we must set nosuid.
185029Spjd	 */
185029Spjd	if (zfs_super_owner &&
185029Spjd	    dsl_deleg_access(osname, ZFS_DELEG_PERM_MOUNT, cr) != ECANCELED) {
185029Spjd		secpolicy_fs_mount_clearopts(cr, vfsp);
185029Spjd	}
185029Spjd
185029Spjd	/*
185029Spjd	 * Check for mount privilege?
185029Spjd	 *
185029Spjd	 * If we don't have privilege then see if
185029Spjd	 * we have local permission to allow it
185029Spjd	 */
185029Spjd	error = secpolicy_fs_mount(cr, mvp, vfsp);
185029Spjd	if (error) {
212694Smm		if (dsl_deleg_access(osname, ZFS_DELEG_PERM_MOUNT, cr) != 0)
196944Spjd			goto out;
196944Spjd
196944Spjd		if (!(vfsp->vfs_flag & MS_REMOUNT)) {
185029Spjd			vattr_t		vattr;
185029Spjd
185029Spjd			/*
185029Spjd			 * Make sure user is the owner of the mount point
185029Spjd			 * or has sufficient privileges.
185029Spjd			 */
185029Spjd
185029Spjd			vattr.va_mask = AT_UID;
185029Spjd
196662Spjd			vn_lock(mvp, LK_SHARED | LK_RETRY);
212694Smm			if (VOP_GETATTR(mvp, &vattr, cr)) {
196662Spjd				VOP_UNLOCK(mvp, 0);
185029Spjd				goto out;
185029Spjd			}
185029Spjd
185029Spjd			if (secpolicy_vnode_owner(mvp, cr, vattr.va_uid) != 0 &&
185029Spjd			    VOP_ACCESS(mvp, VWRITE, cr, td) != 0) {
196662Spjd				VOP_UNLOCK(mvp, 0);
185029Spjd				goto out;
185029Spjd			}
196662Spjd			VOP_UNLOCK(mvp, 0);
196944Spjd		}
185029Spjd
196944Spjd		secpolicy_fs_mount_clearopts(cr, vfsp);
185029Spjd	}
185029Spjd
185029Spjd	/*
185029Spjd	 * Refuse to mount a filesystem if we are in a local zone and the
185029Spjd	 * dataset is not visible.
185029Spjd	 */
185029Spjd	if (!INGLOBALZONE(curthread) &&
185029Spjd	    (!zone_dataset_visible(osname, &canwrite) || !canwrite)) {
185029Spjd		error = EPERM;
185029Spjd		goto out;
185029Spjd	}
185029Spjd
219089Spjd#ifdef SECLABEL
219089Spjd	error = zfs_mount_label_policy(vfsp, osname);
219089Spjd	if (error)
219089Spjd		goto out;
219089Spjd#endif
219089Spjd
218386Strasz	vfsp->vfs_flag |= MNT_NFS4ACLS;
218386Strasz
185029Spjd	/*
168404Spjd	 * When doing a remount, we simply refresh our temporary properties
168404Spjd	 * according to those options set in the current VFS options.
168404Spjd	 */
185029Spjd	if (vfsp->vfs_flag & MS_REMOUNT) {
185029Spjd		/* refresh mount options */
185029Spjd		zfs_unregister_callbacks(vfsp->vfs_data);
185029Spjd		error = zfs_register_callbacks(vfsp);
185029Spjd		goto out;
185029Spjd	}
168404Spjd
168510Spjd	DROP_GIANT();
185029Spjd	error = zfs_domount(vfsp, osname);
168510Spjd	PICKUP_GIANT();
209962Smm
215260Smm#ifdef sun
209962Smm	/*
209962Smm	 * Add an extra VFS_HOLD on our parent vfs so that it can't
209962Smm	 * disappear due to a forced unmount.
209962Smm	 */
209962Smm	if (error == 0 && ((zfsvfs_t *)vfsp->vfs_data)->z_issnap)
209962Smm		VFS_HOLD(mvp->v_vfsp);
215260Smm#endif	/* sun */
209962Smm
185029Spjdout:
168510Spjd	return (error);
168404Spjd}
168404Spjd
168404Spjdstatic int
191990Sattiliozfs_statfs(vfs_t *vfsp, struct statfs *statp)
169170Spjd{
168404Spjd	zfsvfs_t *zfsvfs = vfsp->vfs_data;
168404Spjd	uint64_t refdbytes, availbytes, usedobjs, availobjs;
168404Spjd
168404Spjd	statp->f_version = STATFS_VERSION;
168404Spjd
168404Spjd	ZFS_ENTER(zfsvfs);
168404Spjd
168404Spjd	dmu_objset_space(zfsvfs->z_os,
168404Spjd	    &refdbytes, &availbytes, &usedobjs, &availobjs);
168404Spjd
168404Spjd	/*
168404Spjd	 * The underlying storage pool actually uses multiple block sizes.
168404Spjd	 * We report the fragsize as the smallest block size we support,
168404Spjd	 * and we report our blocksize as the filesystem's maximum blocksize.
168404Spjd	 */
204101Spjd	statp->f_bsize = SPA_MINBLOCKSIZE;
204101Spjd	statp->f_iosize = zfsvfs->z_vfs->mnt_stat.f_iosize;
168404Spjd
168404Spjd	/*
168404Spjd	 * The following report "total" blocks of various kinds in the
168404Spjd	 * file system, but reported in terms of f_frsize - the
168404Spjd	 * "fragment" size.
168404Spjd	 */
168404Spjd
204101Spjd	statp->f_blocks = (refdbytes + availbytes) >> SPA_MINBLOCKSHIFT;
168404Spjd	statp->f_bfree = availbytes / statp->f_bsize;
168404Spjd	statp->f_bavail = statp->f_bfree; /* no root reservation */
168404Spjd
168404Spjd	/*
168404Spjd	 * statvfs() should really be called statufs(), because it assumes
168404Spjd	 * static metadata.  ZFS doesn't preallocate files, so the best
168404Spjd	 * we can do is report the max that could possibly fit in f_files,
168404Spjd	 * and that minus the number actually used in f_ffree.
168404Spjd	 * For f_ffree, report the smaller of the number of object available
168404Spjd	 * and the number of blocks (each object will take at least a block).
168404Spjd	 */
168404Spjd	statp->f_ffree = MIN(availobjs, statp->f_bfree);
168404Spjd	statp->f_files = statp->f_ffree + usedobjs;
168404Spjd
168404Spjd	/*
168404Spjd	 * We're a zfs filesystem.
168404Spjd	 */
168404Spjd	(void) strlcpy(statp->f_fstypename, "zfs", sizeof(statp->f_fstypename));
168404Spjd
168404Spjd	strlcpy(statp->f_mntfromname, vfsp->mnt_stat.f_mntfromname,
168404Spjd	    sizeof(statp->f_mntfromname));
168404Spjd	strlcpy(statp->f_mntonname, vfsp->mnt_stat.f_mntonname,
168404Spjd	    sizeof(statp->f_mntonname));
168404Spjd
168404Spjd	statp->f_namemax = ZFS_MAXNAMELEN;
168404Spjd
168404Spjd	ZFS_EXIT(zfsvfs);
168404Spjd	return (0);
168404Spjd}
168404Spjd
219089Spjdint
219089Spjdzfs_vnode_lock(vnode_t *vp, int flags)
219089Spjd{
219089Spjd	int error;
219089Spjd
219089Spjd	ASSERT(vp != NULL);
219089Spjd
219089Spjd	/*
219089Spjd	 * Check if the file system wasn't forcibly unmounted in the meantime.
219089Spjd	 */
219089Spjd	error = vn_lock(vp, flags);
219089Spjd	if (error == 0 && (vp->v_iflag & VI_DOOMED) != 0) {
219089Spjd		VOP_UNLOCK(vp, 0);
219089Spjd		error = ENOENT;
219089Spjd	}
219089Spjd
219089Spjd	return (error);
219089Spjd}
219089Spjd
168404Spjdstatic int
191990Sattiliozfs_root(vfs_t *vfsp, int flags, vnode_t **vpp)
168404Spjd{
168404Spjd	zfsvfs_t *zfsvfs = vfsp->vfs_data;
168404Spjd	znode_t *rootzp;
168404Spjd	int error;
168404Spjd
197459Spjd	ZFS_ENTER_NOERROR(zfsvfs);
168404Spjd
168404Spjd	error = zfs_zget(zfsvfs, zfsvfs->z_root, &rootzp);
219089Spjd	if (error == 0)
219089Spjd		*vpp = ZTOV(rootzp);
206667Spjd
206667Spjd	ZFS_EXIT(zfsvfs);
206667Spjd
168404Spjd	if (error == 0) {
219089Spjd		error = zfs_vnode_lock(*vpp, flags);
219089Spjd		if (error == 0)
219089Spjd			(*vpp)->v_vflag |= VV_ROOT;
168404Spjd	}
219089Spjd	if (error != 0)
219089Spjd		*vpp = NULL;
168404Spjd
168404Spjd	return (error);
168404Spjd}
168404Spjd
185029Spjd/*
185029Spjd * Teardown the zfsvfs::z_os.
185029Spjd *
185029Spjd * Note, if 'unmounting' if FALSE, we return with the 'z_teardown_lock'
185029Spjd * and 'z_teardown_inactive_lock' held.
185029Spjd */
185029Spjdstatic int
185029Spjdzfsvfs_teardown(zfsvfs_t *zfsvfs, boolean_t unmounting)
185029Spjd{
185029Spjd	znode_t	*zp;
185029Spjd
185029Spjd	rrw_enter(&zfsvfs->z_teardown_lock, RW_WRITER, FTAG);
185029Spjd
185029Spjd	if (!unmounting) {
185029Spjd		/*
185029Spjd		 * We purge the parent filesystem's vfsp as the parent
185029Spjd		 * filesystem and all of its snapshots have their vnode's
185029Spjd		 * v_vfsp set to the parent's filesystem's vfsp.  Note,
185029Spjd		 * 'z_parent' is self referential for non-snapshots.
185029Spjd		 */
185029Spjd		(void) dnlc_purge_vfsp(zfsvfs->z_parent->z_vfs, 0);
197351Spjd#ifdef FREEBSD_NAMECACHE
197351Spjd		cache_purgevfs(zfsvfs->z_parent->z_vfs);
197351Spjd#endif
185029Spjd	}
185029Spjd
185029Spjd	/*
185029Spjd	 * Close the zil. NB: Can't close the zil while zfs_inactive
185029Spjd	 * threads are blocked as zil_close can call zfs_inactive.
185029Spjd	 */
185029Spjd	if (zfsvfs->z_log) {
185029Spjd		zil_close(zfsvfs->z_log);
185029Spjd		zfsvfs->z_log = NULL;
185029Spjd	}
185029Spjd
185029Spjd	rw_enter(&zfsvfs->z_teardown_inactive_lock, RW_WRITER);
185029Spjd
185029Spjd	/*
185029Spjd	 * If we are not unmounting (ie: online recv) and someone already
185029Spjd	 * unmounted this file system while we were doing the switcheroo,
185029Spjd	 * or a reopen of z_os failed then just bail out now.
185029Spjd	 */
185029Spjd	if (!unmounting && (zfsvfs->z_unmounted || zfsvfs->z_os == NULL)) {
185029Spjd		rw_exit(&zfsvfs->z_teardown_inactive_lock);
185029Spjd		rrw_exit(&zfsvfs->z_teardown_lock, FTAG);
185029Spjd		return (EIO);
185029Spjd	}
185029Spjd
185029Spjd	/*
185029Spjd	 * At this point there are no vops active, and any new vops will
185029Spjd	 * fail with EIO since we have z_teardown_lock for writer (only
185029Spjd	 * relavent for forced unmount).
185029Spjd	 *
185029Spjd	 * Release all holds on dbufs.
185029Spjd	 */
185029Spjd	mutex_enter(&zfsvfs->z_znodes_lock);
185029Spjd	for (zp = list_head(&zfsvfs->z_all_znodes); zp != NULL;
185029Spjd	    zp = list_next(&zfsvfs->z_all_znodes, zp))
219089Spjd		if (zp->z_sa_hdl) {
196297Spjd			ASSERT(ZTOV(zp)->v_count >= 0);
185029Spjd			zfs_znode_dmu_fini(zp);
185029Spjd		}
185029Spjd	mutex_exit(&zfsvfs->z_znodes_lock);
185029Spjd
185029Spjd	/*
185029Spjd	 * If we are unmounting, set the unmounted flag and let new vops
185029Spjd	 * unblock.  zfs_inactive will have the unmounted behavior, and all
185029Spjd	 * other vops will fail with EIO.
185029Spjd	 */
185029Spjd	if (unmounting) {
185029Spjd		zfsvfs->z_unmounted = B_TRUE;
185029Spjd		rrw_exit(&zfsvfs->z_teardown_lock, FTAG);
185029Spjd		rw_exit(&zfsvfs->z_teardown_inactive_lock);
197133Spjd
197133Spjd#ifdef __FreeBSD__
197133Spjd		/*
197133Spjd		 * Some znodes might not be fully reclaimed, wait for them.
197133Spjd		 */
197133Spjd		mutex_enter(&zfsvfs->z_znodes_lock);
197133Spjd		while (list_head(&zfsvfs->z_all_znodes) != NULL) {
197133Spjd			msleep(zfsvfs, &zfsvfs->z_znodes_lock, 0,
197133Spjd			    "zteardown", 0);
197133Spjd		}
197133Spjd		mutex_exit(&zfsvfs->z_znodes_lock);
197133Spjd#endif
185029Spjd	}
185029Spjd
185029Spjd	/*
185029Spjd	 * z_os will be NULL if there was an error in attempting to reopen
185029Spjd	 * zfsvfs, so just return as the properties had already been
185029Spjd	 * unregistered and cached data had been evicted before.
185029Spjd	 */
185029Spjd	if (zfsvfs->z_os == NULL)
185029Spjd		return (0);
185029Spjd
185029Spjd	/*
185029Spjd	 * Unregister properties.
185029Spjd	 */
185029Spjd	zfs_unregister_callbacks(zfsvfs);
185029Spjd
185029Spjd	/*
185029Spjd	 * Evict cached data
185029Spjd	 */
219089Spjd	if (dmu_objset_is_dirty_anywhere(zfsvfs->z_os))
219089Spjd		if (!(zfsvfs->z_vfs->vfs_flag & VFS_RDONLY))
219089Spjd			txg_wait_synced(dmu_objset_pool(zfsvfs->z_os), 0);
219089Spjd	(void) dmu_objset_evict_dbufs(zfsvfs->z_os);
185029Spjd
185029Spjd	return (0);
185029Spjd}
185029Spjd
168404Spjd/*ARGSUSED*/
168404Spjdstatic int
191990Sattiliozfs_umount(vfs_t *vfsp, int fflag)
168404Spjd{
209962Smm	kthread_t *td = curthread;
168404Spjd	zfsvfs_t *zfsvfs = vfsp->vfs_data;
185029Spjd	objset_t *os;
209962Smm	cred_t *cr = td->td_ucred;
168404Spjd	int ret;
168404Spjd
185029Spjd	ret = secpolicy_fs_unmount(cr, vfsp);
185029Spjd	if (ret) {
212694Smm		if (dsl_deleg_access((char *)refstr_value(vfsp->vfs_resource),
212694Smm		    ZFS_DELEG_PERM_MOUNT, cr))
185029Spjd			return (ret);
185029Spjd	}
219089Spjd
185029Spjd	/*
185029Spjd	 * We purge the parent filesystem's vfsp as the parent filesystem
185029Spjd	 * and all of its snapshots have their vnode's v_vfsp set to the
185029Spjd	 * parent's filesystem's vfsp.  Note, 'z_parent' is self
185029Spjd	 * referential for non-snapshots.
185029Spjd	 */
185029Spjd	(void) dnlc_purge_vfsp(zfsvfs->z_parent->z_vfs, 0);
168404Spjd
168404Spjd	/*
168404Spjd	 * Unmount any snapshots mounted under .zfs before unmounting the
168404Spjd	 * dataset itself.
168404Spjd	 */
169170Spjd	if (zfsvfs->z_ctldir != NULL) {
168404Spjd		if ((ret = zfsctl_umount_snapshots(vfsp, fflag, cr)) != 0)
168404Spjd			return (ret);
209962Smm		ret = vflush(vfsp, 0, 0, td);
168404Spjd		ASSERT(ret == EBUSY);
168404Spjd		if (!(fflag & MS_FORCE)) {
168404Spjd			if (zfsvfs->z_ctldir->v_count > 1)
168404Spjd				return (EBUSY);
168404Spjd			ASSERT(zfsvfs->z_ctldir->v_count == 1);
168404Spjd		}
168404Spjd		zfsctl_destroy(zfsvfs);
168404Spjd		ASSERT(zfsvfs->z_ctldir == NULL);
168404Spjd	}
168404Spjd
197459Spjd	if (fflag & MS_FORCE) {
197459Spjd		/*
197459Spjd		 * Mark file system as unmounted before calling
197459Spjd		 * vflush(FORCECLOSE). This way we ensure no future vnops
197459Spjd		 * will be called and risk operating on DOOMED vnodes.
197459Spjd		 */
197459Spjd		rrw_enter(&zfsvfs->z_teardown_lock, RW_WRITER, FTAG);
197459Spjd		zfsvfs->z_unmounted = B_TRUE;
197459Spjd		rrw_exit(&zfsvfs->z_teardown_lock, FTAG);
197459Spjd	}
197459Spjd
168404Spjd	/*
168404Spjd	 * Flush all the files.
168404Spjd	 */
209962Smm	ret = vflush(vfsp, 1, (fflag & MS_FORCE) ? FORCECLOSE : 0, td);
168404Spjd	if (ret != 0) {
168404Spjd		if (!zfsvfs->z_issnap) {
168404Spjd			zfsctl_create(zfsvfs);
168404Spjd			ASSERT(zfsvfs->z_ctldir != NULL);
168404Spjd		}
168404Spjd		return (ret);
168404Spjd	}
168404Spjd
185029Spjd	if (!(fflag & MS_FORCE)) {
185029Spjd		/*
185029Spjd		 * Check the number of active vnodes in the file system.
185029Spjd		 * Our count is maintained in the vfs structure, but the
185029Spjd		 * number is off by 1 to indicate a hold on the vfs
185029Spjd		 * structure itself.
185029Spjd		 *
185029Spjd		 * The '.zfs' directory maintains a reference of its
185029Spjd		 * own, and any active references underneath are
185029Spjd		 * reflected in the vnode count.
185029Spjd		 */
185029Spjd		if (zfsvfs->z_ctldir == NULL) {
185029Spjd			if (vfsp->vfs_count > 1)
185029Spjd				return (EBUSY);
185029Spjd		} else {
185029Spjd			if (vfsp->vfs_count > 2 ||
185029Spjd			    zfsvfs->z_ctldir->v_count > 1)
185029Spjd				return (EBUSY);
185029Spjd		}
185029Spjd	} else {
168404Spjd		MNT_ILOCK(vfsp);
168404Spjd		vfsp->mnt_kern_flag |= MNTK_UNMOUNTF;
168404Spjd		MNT_IUNLOCK(vfsp);
185029Spjd	}
168404Spjd
185029Spjd	VERIFY(zfsvfs_teardown(zfsvfs, B_TRUE) == 0);
185029Spjd	os = zfsvfs->z_os;
185029Spjd
185029Spjd	/*
185029Spjd	 * z_os will be NULL if there was an error in
185029Spjd	 * attempting to reopen zfsvfs.
185029Spjd	 */
185029Spjd	if (os != NULL) {
168404Spjd		/*
185029Spjd		 * Unset the objset user_ptr.
168404Spjd		 */
219089Spjd		mutex_enter(&os->os_user_ptr_lock);
185029Spjd		dmu_objset_set_user(os, NULL);
219089Spjd		mutex_exit(&os->os_user_ptr_lock);
185029Spjd
185029Spjd		/*
185029Spjd		 * Finally release the objset
185029Spjd		 */
219089Spjd		dmu_objset_disown(os, zfsvfs);
168404Spjd	}
168404Spjd
185029Spjd	/*
185029Spjd	 * We can now safely destroy the '.zfs' directory node.
185029Spjd	 */
185029Spjd	if (zfsvfs->z_ctldir != NULL)
185029Spjd		zfsctl_destroy(zfsvfs);
185029Spjd	if (zfsvfs->z_issnap) {
185029Spjd		vnode_t *svp = vfsp->mnt_vnodecovered;
185029Spjd
197515Spjd		if (svp->v_count >= 2)
192211Skmacy			VN_RELE(svp);
185029Spjd	}
168404Spjd	zfs_freevfs(vfsp);
168404Spjd
168404Spjd	return (0);
168404Spjd}
168404Spjd
168404Spjdstatic int
168404Spjdzfs_vget(vfs_t *vfsp, ino_t ino, int flags, vnode_t **vpp)
168404Spjd{
168404Spjd	zfsvfs_t	*zfsvfs = vfsp->vfs_data;
168404Spjd	znode_t		*zp;
168404Spjd	int 		err;
168404Spjd
197167Spjd	/*
215397Savg	 * zfs_zget() can't operate on virtual entries like .zfs/ or
211855Spjd	 * .zfs/snapshot/ directories, that's why we return EOPNOTSUPP.
211855Spjd	 * This will make NFS to switch to LOOKUP instead of using VGET.
197167Spjd	 */
197167Spjd	if (ino == ZFSCTL_INO_ROOT || ino == ZFSCTL_INO_SNAPDIR)
197167Spjd		return (EOPNOTSUPP);
197167Spjd
168404Spjd	ZFS_ENTER(zfsvfs);
168404Spjd	err = zfs_zget(zfsvfs, ino, &zp);
168404Spjd	if (err == 0 && zp->z_unlinked) {
168404Spjd		VN_RELE(ZTOV(zp));
168404Spjd		err = EINVAL;
168404Spjd	}
219089Spjd	if (err == 0)
219089Spjd		*vpp = ZTOV(zp);
206667Spjd	ZFS_EXIT(zfsvfs);
219089Spjd	if (err == 0)
219089Spjd		err = zfs_vnode_lock(*vpp, flags);
168404Spjd	if (err != 0)
168404Spjd		*vpp = NULL;
171063Sdfr	return (err);
168404Spjd}
168404Spjd
168404Spjdstatic int
196982Spjdzfs_checkexp(vfs_t *vfsp, struct sockaddr *nam, int *extflagsp,
196982Spjd    struct ucred **credanonp, int *numsecflavors, int **secflavors)
196982Spjd{
196982Spjd	zfsvfs_t *zfsvfs = vfsp->vfs_data;
196982Spjd
196982Spjd	/*
196982Spjd	 * If this is regular file system vfsp is the same as
196982Spjd	 * zfsvfs->z_parent->z_vfs, but if it is snapshot,
196982Spjd	 * zfsvfs->z_parent->z_vfs represents parent file system
196982Spjd	 * which we have to use here, because only this file system
196982Spjd	 * has mnt_export configured.
196982Spjd	 */
196982Spjd	return (vfs_stdcheckexp(zfsvfs->z_parent->z_vfs, nam, extflagsp,
196982Spjd	    credanonp, numsecflavors, secflavors));
196982Spjd}
196982Spjd
197151SpjdCTASSERT(SHORT_FID_LEN <= sizeof(struct fid));
197151SpjdCTASSERT(LONG_FID_LEN <= sizeof(struct fid));
196982Spjd
196982Spjdstatic int
222167Srmacklemzfs_fhtovp(vfs_t *vfsp, fid_t *fidp, int flags, vnode_t **vpp)
168404Spjd{
168404Spjd	zfsvfs_t	*zfsvfs = vfsp->vfs_data;
168404Spjd	znode_t		*zp;
168404Spjd	uint64_t	object = 0;
168404Spjd	uint64_t	fid_gen = 0;
168404Spjd	uint64_t	gen_mask;
168404Spjd	uint64_t	zp_gen;
219089Spjd	int 		i, err;
168404Spjd
168404Spjd	*vpp = NULL;
168404Spjd
168404Spjd	ZFS_ENTER(zfsvfs);
168404Spjd
196979Spjd	/*
197177Spjd	 * On FreeBSD we can get snapshot's mount point or its parent file
197177Spjd	 * system mount point depending if snapshot is already mounted or not.
196979Spjd	 */
197177Spjd	if (zfsvfs->z_parent == zfsvfs && fidp->fid_len == LONG_FID_LEN) {
168404Spjd		zfid_long_t	*zlfid = (zfid_long_t *)fidp;
168404Spjd		uint64_t	objsetid = 0;
168404Spjd		uint64_t	setgen = 0;
168404Spjd
168404Spjd		for (i = 0; i < sizeof (zlfid->zf_setid); i++)
168404Spjd			objsetid |= ((uint64_t)zlfid->zf_setid[i]) << (8 * i);
168404Spjd
168404Spjd		for (i = 0; i < sizeof (zlfid->zf_setgen); i++)
168404Spjd			setgen |= ((uint64_t)zlfid->zf_setgen[i]) << (8 * i);
168404Spjd
168404Spjd		ZFS_EXIT(zfsvfs);
168404Spjd
168404Spjd		err = zfsctl_lookup_objset(vfsp, objsetid, &zfsvfs);
168404Spjd		if (err)
168404Spjd			return (EINVAL);
168404Spjd		ZFS_ENTER(zfsvfs);
168404Spjd	}
168404Spjd
168404Spjd	if (fidp->fid_len == SHORT_FID_LEN || fidp->fid_len == LONG_FID_LEN) {
168404Spjd		zfid_short_t	*zfid = (zfid_short_t *)fidp;
168404Spjd
168404Spjd		for (i = 0; i < sizeof (zfid->zf_object); i++)
168404Spjd			object |= ((uint64_t)zfid->zf_object[i]) << (8 * i);
168404Spjd
168404Spjd		for (i = 0; i < sizeof (zfid->zf_gen); i++)
168404Spjd			fid_gen |= ((uint64_t)zfid->zf_gen[i]) << (8 * i);
168404Spjd	} else {
168404Spjd		ZFS_EXIT(zfsvfs);
168404Spjd		return (EINVAL);
168404Spjd	}
168404Spjd
168404Spjd	/* A zero fid_gen means we are in the .zfs control directories */
168404Spjd	if (fid_gen == 0 &&
168404Spjd	    (object == ZFSCTL_INO_ROOT || object == ZFSCTL_INO_SNAPDIR)) {
168404Spjd		*vpp = zfsvfs->z_ctldir;
168404Spjd		ASSERT(*vpp != NULL);
168404Spjd		if (object == ZFSCTL_INO_SNAPDIR) {
168404Spjd			VERIFY(zfsctl_root_lookup(*vpp, "snapshot", vpp, NULL,
185029Spjd			    0, NULL, NULL, NULL, NULL, NULL) == 0);
168404Spjd		} else {
168404Spjd			VN_HOLD(*vpp);
168404Spjd		}
206667Spjd		ZFS_EXIT(zfsvfs);
222199Srmacklem		err = zfs_vnode_lock(*vpp, flags | LK_RETRY);
219089Spjd		if (err != 0)
219089Spjd			*vpp = NULL;
219089Spjd		return (err);
168404Spjd	}
168404Spjd
168404Spjd	gen_mask = -1ULL >> (64 - 8 * i);
168404Spjd
168404Spjd	dprintf("getting %llu [%u mask %llx]\n", object, fid_gen, gen_mask);
168404Spjd	if (err = zfs_zget(zfsvfs, object, &zp)) {
168404Spjd		ZFS_EXIT(zfsvfs);
168404Spjd		return (err);
168404Spjd	}
219089Spjd	(void) sa_lookup(zp->z_sa_hdl, SA_ZPL_GEN(zfsvfs), &zp_gen,
219089Spjd	    sizeof (uint64_t));
219089Spjd	zp_gen = zp_gen & gen_mask;
168404Spjd	if (zp_gen == 0)
168404Spjd		zp_gen = 1;
168404Spjd	if (zp->z_unlinked || zp_gen != fid_gen) {
168404Spjd		dprintf("znode gen (%u) != fid gen (%u)\n", zp_gen, fid_gen);
168404Spjd		VN_RELE(ZTOV(zp));
168404Spjd		ZFS_EXIT(zfsvfs);
168404Spjd		return (EINVAL);
168404Spjd	}
168404Spjd
219089Spjd	*vpp = ZTOV(zp);
206667Spjd	ZFS_EXIT(zfsvfs);
222199Srmacklem	err = zfs_vnode_lock(*vpp, flags | LK_RETRY);
219089Spjd	if (err == 0)
219089Spjd		vnode_create_vobject(*vpp, zp->z_size, curthread);
219089Spjd	else
219089Spjd		*vpp = NULL;
219089Spjd	return (err);
168404Spjd}
168404Spjd
185029Spjd/*
185029Spjd * Block out VOPs and close zfsvfs_t::z_os
185029Spjd *
185029Spjd * Note, if successful, then we return with the 'z_teardown_lock' and
185029Spjd * 'z_teardown_inactive_lock' write held.
185029Spjd */
185029Spjdint
219089Spjdzfs_suspend_fs(zfsvfs_t *zfsvfs)
168404Spjd{
185029Spjd	int error;
168404Spjd
185029Spjd	if ((error = zfsvfs_teardown(zfsvfs, B_FALSE)) != 0)
185029Spjd		return (error);
219089Spjd	dmu_objset_disown(zfsvfs->z_os, zfsvfs);
168404Spjd
185029Spjd	return (0);
185029Spjd}
168404Spjd
185029Spjd/*
185029Spjd * Reopen zfsvfs_t::z_os and release VOPs.
185029Spjd */
185029Spjdint
219089Spjdzfs_resume_fs(zfsvfs_t *zfsvfs, const char *osname)
185029Spjd{
185029Spjd	int err;
168404Spjd
185029Spjd	ASSERT(RRW_WRITE_HELD(&zfsvfs->z_teardown_lock));
185029Spjd	ASSERT(RW_WRITE_HELD(&zfsvfs->z_teardown_inactive_lock));
185029Spjd
219089Spjd	err = dmu_objset_own(osname, DMU_OST_ZFS, B_FALSE, zfsvfs,
219089Spjd	    &zfsvfs->z_os);
185029Spjd	if (err) {
185029Spjd		zfsvfs->z_os = NULL;
185029Spjd	} else {
185029Spjd		znode_t *zp;
219089Spjd		uint64_t sa_obj = 0;
185029Spjd
219089Spjd		/*
219089Spjd		 * Make sure version hasn't changed
219089Spjd		 */
219089Spjd
219089Spjd		err = zfs_get_zplprop(zfsvfs->z_os, ZFS_PROP_VERSION,
219089Spjd		    &zfsvfs->z_version);
219089Spjd
219089Spjd		if (err)
219089Spjd			goto bail;
219089Spjd
219089Spjd		err = zap_lookup(zfsvfs->z_os, MASTER_NODE_OBJ,
219089Spjd		    ZFS_SA_ATTRS, 8, 1, &sa_obj);
219089Spjd
219089Spjd		if (err && zfsvfs->z_version >= ZPL_VERSION_SA)
219089Spjd			goto bail;
219089Spjd
219089Spjd		if ((err = sa_setup(zfsvfs->z_os, sa_obj,
219089Spjd		    zfs_attr_table,  ZPL_END, &zfsvfs->z_attr_table)) != 0)
219089Spjd			goto bail;
219089Spjd
219089Spjd		if (zfsvfs->z_version >= ZPL_VERSION_SA)
219089Spjd			sa_register_update_callback(zfsvfs->z_os,
219089Spjd			    zfs_sa_upgrade);
219089Spjd
185029Spjd		VERIFY(zfsvfs_setup(zfsvfs, B_FALSE) == 0);
185029Spjd
219089Spjd		zfs_set_fuid_feature(zfsvfs);
219089Spjd
185029Spjd		/*
185029Spjd		 * Attempt to re-establish all the active znodes with
185029Spjd		 * their dbufs.  If a zfs_rezget() fails, then we'll let
185029Spjd		 * any potential callers discover that via ZFS_ENTER_VERIFY_VP
185029Spjd		 * when they try to use their znode.
185029Spjd		 */
185029Spjd		mutex_enter(&zfsvfs->z_znodes_lock);
185029Spjd		for (zp = list_head(&zfsvfs->z_all_znodes); zp;
185029Spjd		    zp = list_next(&zfsvfs->z_all_znodes, zp)) {
185029Spjd			(void) zfs_rezget(zp);
185029Spjd		}
185029Spjd		mutex_exit(&zfsvfs->z_znodes_lock);
168404Spjd	}
168404Spjd
219089Spjdbail:
185029Spjd	/* release the VOPs */
185029Spjd	rw_exit(&zfsvfs->z_teardown_inactive_lock);
185029Spjd	rrw_exit(&zfsvfs->z_teardown_lock, FTAG);
185029Spjd
185029Spjd	if (err) {
185029Spjd		/*
219089Spjd		 * Since we couldn't reopen zfsvfs::z_os, or
219089Spjd		 * setup the sa framework force unmount this file system.
185029Spjd		 */
185029Spjd		if (vn_vfswlock(zfsvfs->z_vfs->vfs_vnodecovered) == 0)
185029Spjd			(void) dounmount(zfsvfs->z_vfs, MS_FORCE, curthread);
168404Spjd	}
185029Spjd	return (err);
168404Spjd}
168404Spjd
168404Spjdstatic void
168404Spjdzfs_freevfs(vfs_t *vfsp)
168404Spjd{
168404Spjd	zfsvfs_t *zfsvfs = vfsp->vfs_data;
168404Spjd
215260Smm#ifdef sun
209962Smm	/*
209962Smm	 * If this is a snapshot, we have an extra VFS_HOLD on our parent
219089Spjd	 * from zfs_mount().  Release it here.  If we came through
219089Spjd	 * zfs_mountroot() instead, we didn't grab an extra hold, so
219089Spjd	 * skip the VFS_RELE for rootvfs.
209962Smm	 */
219089Spjd	if (zfsvfs->z_issnap && (vfsp != rootvfs))
209962Smm		VFS_RELE(zfsvfs->z_parent->z_vfs);
215260Smm#endif	/* sun */
168404Spjd
209962Smm	zfsvfs_free(zfsvfs);
185029Spjd
168404Spjd	atomic_add_32(&zfs_active_fs_count, -1);
168404Spjd}
168404Spjd
172135Spjd#ifdef __i386__
172135Spjdstatic int desiredvnodes_backup;
172135Spjd#endif
172135Spjd
172135Spjdstatic void
172135Spjdzfs_vnodes_adjust(void)
172135Spjd{
172135Spjd#ifdef __i386__
185029Spjd	int newdesiredvnodes;
172135Spjd
172135Spjd	desiredvnodes_backup = desiredvnodes;
172135Spjd
172135Spjd	/*
172135Spjd	 * We calculate newdesiredvnodes the same way it is done in
172135Spjd	 * vntblinit(). If it is equal to desiredvnodes, it means that
172135Spjd	 * it wasn't tuned by the administrator and we can tune it down.
172135Spjd	 */
185029Spjd	newdesiredvnodes = min(maxproc + cnt.v_page_count / 4, 2 *
185029Spjd	    vm_kmem_size / (5 * (sizeof(struct vm_object) +
185029Spjd	    sizeof(struct vnode))));
185029Spjd	if (newdesiredvnodes == desiredvnodes)
185029Spjd		desiredvnodes = (3 * newdesiredvnodes) / 4;
172135Spjd#endif
172135Spjd}
172135Spjd
172135Spjdstatic void
172135Spjdzfs_vnodes_adjust_back(void)
172135Spjd{
172135Spjd
172135Spjd#ifdef __i386__
172135Spjd	desiredvnodes = desiredvnodes_backup;
172135Spjd#endif
172135Spjd}
172135Spjd
168404Spjdvoid
168404Spjdzfs_init(void)
168404Spjd{
168404Spjd
202129Sdelphij	printf("ZFS filesystem version " ZPL_VERSION_STRING "\n");
168404Spjd
168404Spjd	/*
219089Spjd	 * Initialize .zfs directory structures
168404Spjd	 */
219089Spjd	zfsctl_init();
168404Spjd
168404Spjd	/*
219089Spjd	 * Initialize znode cache, vnode ops, etc...
168404Spjd	 */
219089Spjd	zfs_znode_init();
172135Spjd
172135Spjd	/*
219089Spjd	 * Reduce number of vnodes. Originally number of vnodes is calculated
172135Spjd	 * with UFS inode in mind. We reduce it here, because it's too big for
172135Spjd	 * ZFS/i386.
172135Spjd	 */
172135Spjd	zfs_vnodes_adjust();
209962Smm
209962Smm	dmu_objset_register_type(DMU_OST_ZFS, zfs_space_delta_cb);
168404Spjd}
168404Spjd
168404Spjdvoid
168404Spjdzfs_fini(void)
168404Spjd{
168404Spjd	zfsctl_fini();
168404Spjd	zfs_znode_fini();
172135Spjd	zfs_vnodes_adjust_back();
168404Spjd}
168404Spjd
168404Spjdint
168404Spjdzfs_busy(void)
168404Spjd{
168404Spjd	return (zfs_active_fs_count != 0);
168404Spjd}
185029Spjd
185029Spjdint
209962Smmzfs_set_version(zfsvfs_t *zfsvfs, uint64_t newvers)
185029Spjd{
185029Spjd	int error;
209962Smm	objset_t *os = zfsvfs->z_os;
185029Spjd	dmu_tx_t *tx;
185029Spjd
185029Spjd	if (newvers < ZPL_VERSION_INITIAL || newvers > ZPL_VERSION)
185029Spjd		return (EINVAL);
185029Spjd
209962Smm	if (newvers < zfsvfs->z_version)
209962Smm		return (EINVAL);
185029Spjd
219089Spjd	if (zfs_spa_version_map(newvers) >
219089Spjd	    spa_version(dmu_objset_spa(zfsvfs->z_os)))
219089Spjd		return (ENOTSUP);
219089Spjd
185029Spjd	tx = dmu_tx_create(os);
209962Smm	dmu_tx_hold_zap(tx, MASTER_NODE_OBJ, B_FALSE, ZPL_VERSION_STR);
219089Spjd	if (newvers >= ZPL_VERSION_SA && !zfsvfs->z_use_sa) {
219089Spjd		dmu_tx_hold_zap(tx, MASTER_NODE_OBJ, B_TRUE,
219089Spjd		    ZFS_SA_ATTRS);
219089Spjd		dmu_tx_hold_zap(tx, DMU_NEW_OBJECT, FALSE, NULL);
219089Spjd	}
185029Spjd	error = dmu_tx_assign(tx, TXG_WAIT);
185029Spjd	if (error) {
185029Spjd		dmu_tx_abort(tx);
209962Smm		return (error);
185029Spjd	}
219089Spjd
209962Smm	error = zap_update(os, MASTER_NODE_OBJ, ZPL_VERSION_STR,
209962Smm	    8, 1, &newvers, tx);
185029Spjd
209962Smm	if (error) {
209962Smm		dmu_tx_commit(tx);
209962Smm		return (error);
209962Smm	}
209962Smm
219089Spjd	if (newvers >= ZPL_VERSION_SA && !zfsvfs->z_use_sa) {
219089Spjd		uint64_t sa_obj;
219089Spjd
219089Spjd		ASSERT3U(spa_version(dmu_objset_spa(zfsvfs->z_os)), >=,
219089Spjd		    SPA_VERSION_SA);
219089Spjd		sa_obj = zap_create(os, DMU_OT_SA_MASTER_NODE,
219089Spjd		    DMU_OT_NONE, 0, tx);
219089Spjd
219089Spjd		error = zap_add(os, MASTER_NODE_OBJ,
219089Spjd		    ZFS_SA_ATTRS, 8, 1, &sa_obj, tx);
219089Spjd		ASSERT3U(error, ==, 0);
219089Spjd
219089Spjd		VERIFY(0 == sa_set_sa_object(os, sa_obj));
219089Spjd		sa_register_update_callback(os, zfs_sa_upgrade);
219089Spjd	}
219089Spjd
219089Spjd	spa_history_log_internal(LOG_DS_UPGRADE,
219089Spjd	    dmu_objset_spa(os), tx, "oldver=%llu newver=%llu dataset = %llu",
209962Smm	    zfsvfs->z_version, newvers, dmu_objset_id(os));
209962Smm
185029Spjd	dmu_tx_commit(tx);
185029Spjd
209962Smm	zfsvfs->z_version = newvers;
209962Smm
219089Spjd	zfs_set_fuid_feature(zfsvfs);
209962Smm
209962Smm	return (0);
185029Spjd}
219089Spjd
185029Spjd/*
185029Spjd * Read a property stored within the master node.
185029Spjd */
185029Spjdint
185029Spjdzfs_get_zplprop(objset_t *os, zfs_prop_t prop, uint64_t *value)
185029Spjd{
185029Spjd	const char *pname;
185029Spjd	int error = ENOENT;
185029Spjd
185029Spjd	/*
185029Spjd	 * Look up the file system's value for the property.  For the
185029Spjd	 * version property, we look up a slightly different string.
185029Spjd	 */
185029Spjd	if (prop == ZFS_PROP_VERSION)
185029Spjd		pname = ZPL_VERSION_STR;
185029Spjd	else
185029Spjd		pname = zfs_prop_to_name(prop);
185029Spjd
185029Spjd	if (os != NULL)
185029Spjd		error = zap_lookup(os, MASTER_NODE_OBJ, pname, 8, 1, value);
185029Spjd
185029Spjd	if (error == ENOENT) {
185029Spjd		/* No value set, use the default value */
185029Spjd		switch (prop) {
185029Spjd		case ZFS_PROP_VERSION:
185029Spjd			*value = ZPL_VERSION;
185029Spjd			break;
185029Spjd		case ZFS_PROP_NORMALIZE:
185029Spjd		case ZFS_PROP_UTF8ONLY:
185029Spjd			*value = 0;
185029Spjd			break;
185029Spjd		case ZFS_PROP_CASE:
185029Spjd			*value = ZFS_CASE_SENSITIVE;
185029Spjd			break;
185029Spjd		default:
185029Spjd			return (error);
185029Spjd		}
185029Spjd		error = 0;
185029Spjd	}
185029Spjd	return (error);
185029Spjd}