fs/zfs/dsl_pool.c

168404Spjd/*
168404Spjd * CDDL HEADER START
168404Spjd *
168404Spjd * The contents of this file are subject to the terms of the
168404Spjd * Common Development and Distribution License (the "License").
168404Spjd * You may not use this file except in compliance with the License.
168404Spjd *
168404Spjd * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
168404Spjd * or http://www.opensolaris.org/os/licensing.
168404Spjd * See the License for the specific language governing permissions
168404Spjd * and limitations under the License.
168404Spjd *
168404Spjd * When distributing Covered Code, include this CDDL HEADER in each
168404Spjd * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
168404Spjd * If applicable, add the following below this CDDL HEADER, with the
168404Spjd * fields enclosed by brackets "[]" replaced with your own identifying
168404Spjd * information: Portions Copyright [yyyy] [name of copyright owner]
168404Spjd *
168404Spjd * CDDL HEADER END
168404Spjd */
168404Spjd/*
219089Spjd * Copyright (c) 2005, 2010, Oracle and/or its affiliates. All rights reserved.
269416Sdelphij * Copyright (c) 2011, 2014 by Delphix. All rights reserved.
251646Sdelphij * Copyright (c) 2013 Steven Hartland. All rights reserved.
168404Spjd */
168404Spjd
168404Spjd#include <sys/dsl_pool.h>
168404Spjd#include <sys/dsl_dataset.h>
219089Spjd#include <sys/dsl_prop.h>
168404Spjd#include <sys/dsl_dir.h>
168404Spjd#include <sys/dsl_synctask.h>
219089Spjd#include <sys/dsl_scan.h>
219089Spjd#include <sys/dnode.h>
168404Spjd#include <sys/dmu_tx.h>
168404Spjd#include <sys/dmu_objset.h>
168404Spjd#include <sys/arc.h>
168404Spjd#include <sys/zap.h>
168404Spjd#include <sys/zio.h>
168404Spjd#include <sys/zfs_context.h>
168404Spjd#include <sys/fs/zfs.h>
185029Spjd#include <sys/zfs_znode.h>
185029Spjd#include <sys/spa_impl.h>
219089Spjd#include <sys/dsl_deadlist.h>
236884Smm#include <sys/bptree.h>
236884Smm#include <sys/zfeature.h>
239620Smm#include <sys/zil_impl.h>
248571Smm#include <sys/dsl_userhold.h>
168404Spjd
271435Ssmh#ifdef __FreeBSD__
271435Ssmh#include <sys/sysctl.h>
271435Ssmh#include <sys/types.h>
271435Ssmh#endif
271435Ssmh
260763Savg/*
260763Savg * ZFS Write Throttle
260763Savg * ------------------
260763Savg *
260763Savg * ZFS must limit the rate of incoming writes to the rate at which it is able
260763Savg * to sync data modifications to the backend storage. Throttling by too much
260763Savg * creates an artificial limit; throttling by too little can only be sustained
260763Savg * for short periods and would lead to highly lumpy performance. On a per-pool
260763Savg * basis, ZFS tracks the amount of modified (dirty) data. As operations change
260763Savg * data, the amount of dirty data increases; as ZFS syncs out data, the amount
260763Savg * of dirty data decreases. When the amount of dirty data exceeds a
260763Savg * predetermined threshold further modifications are blocked until the amount
260763Savg * of dirty data decreases (as data is synced out).
260763Savg *
260763Savg * The limit on dirty data is tunable, and should be adjusted according to
260763Savg * both the IO capacity and available memory of the system. The larger the
260763Savg * window, the more ZFS is able to aggregate and amortize metadata (and data)
260763Savg * changes. However, memory is a limited resource, and allowing for more dirty
260763Savg * data comes at the cost of keeping other useful data in memory (for example
260763Savg * ZFS data cached by the ARC).
260763Savg *
260763Savg * Implementation
260763Savg *
260763Savg * As buffers are modified dsl_pool_willuse_space() increments both the per-
260763Savg * txg (dp_dirty_pertxg[]) and poolwide (dp_dirty_total) accounting of
260763Savg * dirty space used; dsl_pool_dirty_space() decrements those values as data
260763Savg * is synced out from dsl_pool_sync(). While only the poolwide value is
260763Savg * relevant, the per-txg value is useful for debugging. The tunable
260763Savg * zfs_dirty_data_max determines the dirty space limit. Once that value is
260763Savg * exceeded, new writes are halted until space frees up.
260763Savg *
260763Savg * The zfs_dirty_data_sync tunable dictates the threshold at which we
260763Savg * ensure that there is a txg syncing (see the comment in txg.c for a full
260763Savg * description of transaction group stages).
260763Savg *
260763Savg * The IO scheduler uses both the dirty space limit and current amount of
260763Savg * dirty data as inputs. Those values affect the number of concurrent IOs ZFS
260763Savg * issues. See the comment in vdev_queue.c for details of the IO scheduler.
260763Savg *
260763Savg * The delay is also calculated based on the amount of dirty data.  See the
260763Savg * comment above dmu_tx_delay() for details.
260763Savg */
185029Spjd
260763Savg/*
260763Savg * zfs_dirty_data_max will be set to zfs_dirty_data_max_percent% of all memory,
260763Savg * capped at zfs_dirty_data_max_max.  It can also be overridden in /etc/system.
260763Savg */
260763Savguint64_t zfs_dirty_data_max;
260763Savguint64_t zfs_dirty_data_max_max = 4ULL * 1024 * 1024 * 1024;
260763Savgint zfs_dirty_data_max_percent = 10;
185029Spjd
260763Savg/*
260763Savg * If there is at least this much dirty data, push out a txg.
260763Savg */
260763Savguint64_t zfs_dirty_data_sync = 64 * 1024 * 1024;
185029Spjd
260763Savg/*
260763Savg * Once there is this amount of dirty data, the dmu_tx_delay() will kick in
260763Savg * and delay each transaction.
260763Savg * This value should be >= zfs_vdev_async_write_active_max_dirty_percent.
260763Savg */
260763Savgint zfs_delay_min_dirty_percent = 60;
185029Spjd
260763Savg/*
260763Savg * This controls how quickly the delay approaches infinity.
272456Sdelphij * Larger values cause it to delay more for a given amount of dirty data.
272456Sdelphij * Therefore larger values will cause there to be less dirty data for a
260763Savg * given throughput.
260763Savg *
260763Savg * For the smoothest delay, this value should be about 1 billion divided
260763Savg * by the maximum number of operations per second.  This will smoothly
260763Savg * handle between 10x and 1/10th this number.
260763Savg *
260763Savg * Note: zfs_delay_scale * zfs_dirty_data_max must be < 2^64, due to the
260763Savg * multiply in dmu_tx_delay().
260763Savg */
260763Savguint64_t zfs_delay_scale = 1000 * 1000 * 1000 / 2000;
260763Savg
260763Savg
271435Ssmh#ifdef __FreeBSD__
260763Savg
271435Ssmhextern int zfs_vdev_async_write_active_max_dirty_percent;
271435Ssmh
219089SpjdSYSCTL_DECL(_vfs_zfs);
219089Spjd
271435SsmhTUNABLE_QUAD("vfs.zfs.dirty_data_max", &zfs_dirty_data_max);
271435SsmhSYSCTL_UQUAD(_vfs_zfs, OID_AUTO, dirty_data_max, CTLFLAG_RWTUN,
271435Ssmh    &zfs_dirty_data_max, 0,
271435Ssmh    "The maximum amount of dirty data in bytes after which new writes are "
271435Ssmh    "halted until space becomes available");
271435Ssmh
271435SsmhTUNABLE_QUAD("vfs.zfs.dirty_data_max_max", &zfs_dirty_data_max_max);
271435SsmhSYSCTL_UQUAD(_vfs_zfs, OID_AUTO, dirty_data_max_max, CTLFLAG_RDTUN,
271435Ssmh    &zfs_dirty_data_max_max, 0,
271435Ssmh    "The absolute cap on dirty_data_max when auto calculating");
271435Ssmh
271435SsmhTUNABLE_INT("vfs.zfs.dirty_data_max_percent", &zfs_dirty_data_max_percent);
271435SsmhSYSCTL_INT(_vfs_zfs, OID_AUTO, dirty_data_max_percent, CTLFLAG_RDTUN,
271435Ssmh    &zfs_dirty_data_max_percent, 0,
271435Ssmh    "The percent of physical memory used to auto calculate dirty_data_max");
271435Ssmh
271435SsmhTUNABLE_QUAD("vfs.zfs.dirty_data_sync", &zfs_dirty_data_sync);
271435SsmhSYSCTL_UQUAD(_vfs_zfs, OID_AUTO, dirty_data_sync, CTLFLAG_RWTUN,
271435Ssmh    &zfs_dirty_data_sync, 0,
271435Ssmh    "Force a txg if the number of dirty buffer bytes exceed this value");
271435Ssmh
271435Ssmhstatic int sysctl_zfs_delay_min_dirty_percent(SYSCTL_HANDLER_ARGS);
271435Ssmh/* No zfs_delay_min_dirty_percent tunable due to limit requirements */
271435SsmhSYSCTL_PROC(_vfs_zfs, OID_AUTO, delay_min_dirty_percent,
271435Ssmh    CTLTYPE_INT | CTLFLAG_MPSAFE | CTLFLAG_RW, 0, sizeof(int),
271435Ssmh    sysctl_zfs_delay_min_dirty_percent, "I",
271435Ssmh    "The limit of outstanding dirty data before transations are delayed");
271435Ssmh
271435Ssmhstatic int sysctl_zfs_delay_scale(SYSCTL_HANDLER_ARGS);
271435Ssmh/* No zfs_delay_scale tunable due to limit requirements */
271435SsmhSYSCTL_PROC(_vfs_zfs, OID_AUTO, delay_scale,
271435Ssmh    CTLTYPE_U64 | CTLFLAG_MPSAFE | CTLFLAG_RW, 0, sizeof(uint64_t),
271435Ssmh    sysctl_zfs_delay_scale, "QU",
271435Ssmh    "Controls how quickly the delay approaches infinity");
271435Ssmh
271435Ssmhstatic int
271435Ssmhsysctl_zfs_delay_min_dirty_percent(SYSCTL_HANDLER_ARGS)
271435Ssmh{
271435Ssmh	int val, err;
271435Ssmh
271435Ssmh	val = zfs_delay_min_dirty_percent;
271435Ssmh	err = sysctl_handle_int(oidp, &val, 0, req);
271435Ssmh	if (err != 0 || req->newptr == NULL)
271435Ssmh		return (err);
271435Ssmh
271435Ssmh	if (val < zfs_vdev_async_write_active_max_dirty_percent)
271435Ssmh		return (EINVAL);
271435Ssmh
271435Ssmh	zfs_delay_min_dirty_percent = val;
271435Ssmh
271435Ssmh	return (0);
271435Ssmh}
271435Ssmh
271435Ssmhstatic int
271435Ssmhsysctl_zfs_delay_scale(SYSCTL_HANDLER_ARGS)
271435Ssmh{
271435Ssmh	uint64_t val;
271435Ssmh	int err;
271435Ssmh
271435Ssmh	val = zfs_delay_scale;
271435Ssmh	err = sysctl_handle_64(oidp, &val, 0, req);
271435Ssmh	if (err != 0 || req->newptr == NULL)
271435Ssmh		return (err);
271435Ssmh
271435Ssmh	if (val > UINT64_MAX / zfs_dirty_data_max)
271435Ssmh		return (EINVAL);
271435Ssmh
271435Ssmh	zfs_delay_scale = val;
271435Ssmh
271435Ssmh	return (0);
271435Ssmh}
260763Savg#endif
219089Spjd
255437Sdelphijhrtime_t zfs_throttle_delay = MSEC2NSEC(10);
255437Sdelphijhrtime_t zfs_throttle_resolution = MSEC2NSEC(10);
255437Sdelphij
219089Spjdint
185029Spjddsl_pool_open_special_dir(dsl_pool_t *dp, const char *name, dsl_dir_t **ddp)
168404Spjd{
168404Spjd	uint64_t obj;
168404Spjd	int err;
168404Spjd
168404Spjd	err = zap_lookup(dp->dp_meta_objset,
168404Spjd	    dp->dp_root_dir->dd_phys->dd_child_dir_zapobj,
185029Spjd	    name, sizeof (obj), 1, &obj);
168404Spjd	if (err)
168404Spjd		return (err);
168404Spjd
248571Smm	return (dsl_dir_hold_obj(dp, obj, name, dp, ddp));
168404Spjd}
168404Spjd
168404Spjdstatic dsl_pool_t *
168404Spjddsl_pool_open_impl(spa_t *spa, uint64_t txg)
168404Spjd{
168404Spjd	dsl_pool_t *dp;
168404Spjd	blkptr_t *bp = spa_get_rootblkptr(spa);
168404Spjd
168404Spjd	dp = kmem_zalloc(sizeof (dsl_pool_t), KM_SLEEP);
168404Spjd	dp->dp_spa = spa;
168404Spjd	dp->dp_meta_rootbp = *bp;
248571Smm	rrw_init(&dp->dp_config_rwlock, B_TRUE);
168404Spjd	txg_init(dp, txg);
168404Spjd
168404Spjd	txg_list_create(&dp->dp_dirty_datasets,
168404Spjd	    offsetof(dsl_dataset_t, ds_dirty_link));
239620Smm	txg_list_create(&dp->dp_dirty_zilogs,
239620Smm	    offsetof(zilog_t, zl_dirty_link));
168404Spjd	txg_list_create(&dp->dp_dirty_dirs,
168404Spjd	    offsetof(dsl_dir_t, dd_dirty_link));
168404Spjd	txg_list_create(&dp->dp_sync_tasks,
248571Smm	    offsetof(dsl_sync_task_t, dst_node));
168404Spjd
185029Spjd	mutex_init(&dp->dp_lock, NULL, MUTEX_DEFAULT, NULL);
260763Savg	cv_init(&dp->dp_spaceavail_cv, NULL, CV_DEFAULT, NULL);
185029Spjd
196307Spjd	dp->dp_vnrele_taskq = taskq_create("zfs_vn_rele_taskq", 1, minclsyspri,
196307Spjd	    1, 4, 0);
196307Spjd
168404Spjd	return (dp);
168404Spjd}
168404Spjd
168404Spjdint
236884Smmdsl_pool_init(spa_t *spa, uint64_t txg, dsl_pool_t **dpp)
168404Spjd{
168404Spjd	int err;
168404Spjd	dsl_pool_t *dp = dsl_pool_open_impl(spa, txg);
236884Smm
236884Smm	err = dmu_objset_open_impl(spa, NULL, &dp->dp_meta_rootbp,
236884Smm	    &dp->dp_meta_objset);
236884Smm	if (err != 0)
236884Smm		dsl_pool_close(dp);
236884Smm	else
236884Smm		*dpp = dp;
236884Smm
236884Smm	return (err);
236884Smm}
236884Smm
236884Smmint
236884Smmdsl_pool_open(dsl_pool_t *dp)
236884Smm{
236884Smm	int err;
185029Spjd	dsl_dir_t *dd;
185029Spjd	dsl_dataset_t *ds;
219089Spjd	uint64_t obj;
168404Spjd
248571Smm	rrw_enter(&dp->dp_config_rwlock, RW_WRITER, FTAG);
168404Spjd	err = zap_lookup(dp->dp_meta_objset, DMU_POOL_DIRECTORY_OBJECT,
168404Spjd	    DMU_POOL_ROOT_DATASET, sizeof (uint64_t), 1,
168404Spjd	    &dp->dp_root_dir_obj);
168404Spjd	if (err)
168404Spjd		goto out;
168404Spjd
248571Smm	err = dsl_dir_hold_obj(dp, dp->dp_root_dir_obj,
168404Spjd	    NULL, dp, &dp->dp_root_dir);
168404Spjd	if (err)
168404Spjd		goto out;
168404Spjd
185029Spjd	err = dsl_pool_open_special_dir(dp, MOS_DIR_NAME, &dp->dp_mos_dir);
168404Spjd	if (err)
168404Spjd		goto out;
168404Spjd
236884Smm	if (spa_version(dp->dp_spa) >= SPA_VERSION_ORIGIN) {
185029Spjd		err = dsl_pool_open_special_dir(dp, ORIGIN_DIR_NAME, &dd);
185029Spjd		if (err)
185029Spjd			goto out;
185029Spjd		err = dsl_dataset_hold_obj(dp, dd->dd_phys->dd_head_dataset_obj,
185029Spjd		    FTAG, &ds);
209962Smm		if (err == 0) {
209962Smm			err = dsl_dataset_hold_obj(dp,
219089Spjd			    ds->ds_phys->ds_prev_snap_obj, dp,
219089Spjd			    &dp->dp_origin_snap);
209962Smm			dsl_dataset_rele(ds, FTAG);
209962Smm		}
248571Smm		dsl_dir_rele(dd, dp);
185029Spjd		if (err)
185029Spjd			goto out;
185029Spjd	}
185029Spjd
236884Smm	if (spa_version(dp->dp_spa) >= SPA_VERSION_DEADLISTS) {
219089Spjd		err = dsl_pool_open_special_dir(dp, FREE_DIR_NAME,
219089Spjd		    &dp->dp_free_dir);
185029Spjd		if (err)
185029Spjd			goto out;
219089Spjd
185029Spjd		err = zap_lookup(dp->dp_meta_objset, DMU_POOL_DIRECTORY_OBJECT,
219089Spjd		    DMU_POOL_FREE_BPOBJ, sizeof (uint64_t), 1, &obj);
185029Spjd		if (err)
185029Spjd			goto out;
248571Smm		VERIFY0(bpobj_open(&dp->dp_free_bpobj,
219089Spjd		    dp->dp_meta_objset, obj));
185029Spjd	}
185029Spjd
268650Sdelphij	/*
268650Sdelphij	 * Note: errors ignored, because the leak dir will not exist if we
268650Sdelphij	 * have not encountered a leak yet.
268650Sdelphij	 */
268650Sdelphij	(void) dsl_pool_open_special_dir(dp, LEAK_DIR_NAME,
268650Sdelphij	    &dp->dp_leak_dir);
268650Sdelphij
263390Sdelphij	if (spa_feature_is_active(dp->dp_spa, SPA_FEATURE_ASYNC_DESTROY)) {
236884Smm		err = zap_lookup(dp->dp_meta_objset, DMU_POOL_DIRECTORY_OBJECT,
236884Smm		    DMU_POOL_BPTREE_OBJ, sizeof (uint64_t), 1,
236884Smm		    &dp->dp_bptree_obj);
236884Smm		if (err != 0)
236884Smm			goto out;
236884Smm	}
236884Smm
263390Sdelphij	if (spa_feature_is_active(dp->dp_spa, SPA_FEATURE_EMPTY_BPOBJ)) {
239774Smm		err = zap_lookup(dp->dp_meta_objset, DMU_POOL_DIRECTORY_OBJECT,
239774Smm		    DMU_POOL_EMPTY_BPOBJ, sizeof (uint64_t), 1,
239774Smm		    &dp->dp_empty_bpobj);
239774Smm		if (err != 0)
239774Smm			goto out;
239774Smm	}
239774Smm
219089Spjd	err = zap_lookup(dp->dp_meta_objset, DMU_POOL_DIRECTORY_OBJECT,
219089Spjd	    DMU_POOL_TMP_USERREFS, sizeof (uint64_t), 1,
219089Spjd	    &dp->dp_tmp_userrefs_obj);
219089Spjd	if (err == ENOENT)
219089Spjd		err = 0;
219089Spjd	if (err)
219089Spjd		goto out;
219089Spjd
236884Smm	err = dsl_scan_init(dp, dp->dp_tx.tx_open_txg);
219089Spjd
168404Spjdout:
248571Smm	rrw_exit(&dp->dp_config_rwlock, FTAG);
168404Spjd	return (err);
168404Spjd}
168404Spjd
168404Spjdvoid
168404Spjddsl_pool_close(dsl_pool_t *dp)
168404Spjd{
185029Spjd	/*
260763Savg	 * Drop our references from dsl_pool_open().
260763Savg	 *
185029Spjd	 * Since we held the origin_snap from "syncing" context (which
185029Spjd	 * includes pool-opening context), it actually only got a "ref"
185029Spjd	 * and not a hold, so just drop that here.
185029Spjd	 */
185029Spjd	if (dp->dp_origin_snap)
248571Smm		dsl_dataset_rele(dp->dp_origin_snap, dp);
168404Spjd	if (dp->dp_mos_dir)
248571Smm		dsl_dir_rele(dp->dp_mos_dir, dp);
219089Spjd	if (dp->dp_free_dir)
248571Smm		dsl_dir_rele(dp->dp_free_dir, dp);
268650Sdelphij	if (dp->dp_leak_dir)
268650Sdelphij		dsl_dir_rele(dp->dp_leak_dir, dp);
168404Spjd	if (dp->dp_root_dir)
248571Smm		dsl_dir_rele(dp->dp_root_dir, dp);
168404Spjd
219089Spjd	bpobj_close(&dp->dp_free_bpobj);
219089Spjd
168404Spjd	/* undo the dmu_objset_open_impl(mos) from dsl_pool_open() */
168404Spjd	if (dp->dp_meta_objset)
219089Spjd		dmu_objset_evict(dp->dp_meta_objset);
168404Spjd
168404Spjd	txg_list_destroy(&dp->dp_dirty_datasets);
239620Smm	txg_list_destroy(&dp->dp_dirty_zilogs);
219089Spjd	txg_list_destroy(&dp->dp_sync_tasks);
168404Spjd	txg_list_destroy(&dp->dp_dirty_dirs);
168404Spjd
185029Spjd	arc_flush(dp->dp_spa);
168404Spjd	txg_fini(dp);
219089Spjd	dsl_scan_fini(dp);
248571Smm	rrw_destroy(&dp->dp_config_rwlock);
185029Spjd	mutex_destroy(&dp->dp_lock);
196307Spjd	taskq_destroy(dp->dp_vnrele_taskq);
208047Smm	if (dp->dp_blkstats)
208047Smm		kmem_free(dp->dp_blkstats, sizeof (zfs_all_blkstats_t));
168404Spjd	kmem_free(dp, sizeof (dsl_pool_t));
168404Spjd}
168404Spjd
168404Spjddsl_pool_t *
185029Spjddsl_pool_create(spa_t *spa, nvlist_t *zplprops, uint64_t txg)
168404Spjd{
168404Spjd	int err;
168404Spjd	dsl_pool_t *dp = dsl_pool_open_impl(spa, txg);
168404Spjd	dmu_tx_t *tx = dmu_tx_create_assigned(dp, txg);
219089Spjd	objset_t *os;
185029Spjd	dsl_dataset_t *ds;
219089Spjd	uint64_t obj;
185029Spjd
248571Smm	rrw_enter(&dp->dp_config_rwlock, RW_WRITER, FTAG);
248571Smm
185029Spjd	/* create and open the MOS (meta-objset) */
219089Spjd	dp->dp_meta_objset = dmu_objset_create_impl(spa,
219089Spjd	    NULL, &dp->dp_meta_rootbp, DMU_OST_META, tx);
168404Spjd
168404Spjd	/* create the pool directory */
168404Spjd	err = zap_create_claim(dp->dp_meta_objset, DMU_POOL_DIRECTORY_OBJECT,
168404Spjd	    DMU_OT_OBJECT_DIRECTORY, DMU_OT_NONE, 0, tx);
240415Smm	ASSERT0(err);
168404Spjd
219089Spjd	/* Initialize scan structures */
248571Smm	VERIFY0(dsl_scan_init(dp, txg));
219089Spjd
168404Spjd	/* create and open the root dir */
185029Spjd	dp->dp_root_dir_obj = dsl_dir_create_sync(dp, NULL, NULL, tx);
248571Smm	VERIFY0(dsl_dir_hold_obj(dp, dp->dp_root_dir_obj,
168404Spjd	    NULL, dp, &dp->dp_root_dir));
168404Spjd
168404Spjd	/* create and open the meta-objset dir */
185029Spjd	(void) dsl_dir_create_sync(dp, dp->dp_root_dir, MOS_DIR_NAME, tx);
248571Smm	VERIFY0(dsl_pool_open_special_dir(dp,
185029Spjd	    MOS_DIR_NAME, &dp->dp_mos_dir));
168404Spjd
219089Spjd	if (spa_version(spa) >= SPA_VERSION_DEADLISTS) {
219089Spjd		/* create and open the free dir */
219089Spjd		(void) dsl_dir_create_sync(dp, dp->dp_root_dir,
219089Spjd		    FREE_DIR_NAME, tx);
248571Smm		VERIFY0(dsl_pool_open_special_dir(dp,
219089Spjd		    FREE_DIR_NAME, &dp->dp_free_dir));
219089Spjd
219089Spjd		/* create and open the free_bplist */
219089Spjd		obj = bpobj_alloc(dp->dp_meta_objset, SPA_MAXBLOCKSIZE, tx);
219089Spjd		VERIFY(zap_add(dp->dp_meta_objset, DMU_POOL_DIRECTORY_OBJECT,
219089Spjd		    DMU_POOL_FREE_BPOBJ, sizeof (uint64_t), 1, &obj, tx) == 0);
248571Smm		VERIFY0(bpobj_open(&dp->dp_free_bpobj,
219089Spjd		    dp->dp_meta_objset, obj));
219089Spjd	}
219089Spjd
185029Spjd	if (spa_version(spa) >= SPA_VERSION_DSL_SCRUB)
185029Spjd		dsl_pool_create_origin(dp, tx);
185029Spjd
185029Spjd	/* create the root dataset */
219089Spjd	obj = dsl_dataset_create_sync_dd(dp->dp_root_dir, NULL, 0, tx);
185029Spjd
185029Spjd	/* create the root objset */
248571Smm	VERIFY0(dsl_dataset_hold_obj(dp, obj, FTAG, &ds));
219089Spjd	os = dmu_objset_create_impl(dp->dp_spa, ds,
185029Spjd	    dsl_dataset_get_blkptr(ds), DMU_OST_ZFS, tx);
185029Spjd#ifdef _KERNEL
219089Spjd	zfs_create_fs(os, kcred, zplprops, tx);
185029Spjd#endif
185029Spjd	dsl_dataset_rele(ds, FTAG);
185029Spjd
168404Spjd	dmu_tx_commit(tx);
168404Spjd
248571Smm	rrw_exit(&dp->dp_config_rwlock, FTAG);
248571Smm
168404Spjd	return (dp);
168404Spjd}
168404Spjd
239620Smm/*
239620Smm * Account for the meta-objset space in its placeholder dsl_dir.
239620Smm */
239620Smmvoid
239620Smmdsl_pool_mos_diduse_space(dsl_pool_t *dp,
239620Smm    int64_t used, int64_t comp, int64_t uncomp)
239620Smm{
239620Smm	ASSERT3U(comp, ==, uncomp); /* it's all metadata */
239620Smm	mutex_enter(&dp->dp_lock);
239620Smm	dp->dp_mos_used_delta += used;
239620Smm	dp->dp_mos_compressed_delta += comp;
239620Smm	dp->dp_mos_uncompressed_delta += uncomp;
239620Smm	mutex_exit(&dp->dp_lock);
239620Smm}
239620Smm
219089Spjdstatic int
219089Spjddeadlist_enqueue_cb(void *arg, const blkptr_t *bp, dmu_tx_t *tx)
219089Spjd{
219089Spjd	dsl_deadlist_t *dl = arg;
219089Spjd	dsl_deadlist_insert(dl, bp, tx);
219089Spjd	return (0);
219089Spjd}
219089Spjd
260763Savgstatic void
260763Savgdsl_pool_sync_mos(dsl_pool_t *dp, dmu_tx_t *tx)
260763Savg{
260763Savg	zio_t *zio = zio_root(dp->dp_spa, NULL, NULL, ZIO_FLAG_MUSTSUCCEED);
260763Savg	dmu_objset_sync(dp->dp_meta_objset, zio, tx);
260763Savg	VERIFY0(zio_wait(zio));
260763Savg	dprintf_bp(&dp->dp_meta_rootbp, "meta objset rootbp is %s", "");
260763Savg	spa_set_rootblkptr(dp->dp_spa, &dp->dp_meta_rootbp);
260763Savg}
260763Savg
260763Savgstatic void
260763Savgdsl_pool_dirty_delta(dsl_pool_t *dp, int64_t delta)
260763Savg{
260763Savg	ASSERT(MUTEX_HELD(&dp->dp_lock));
260763Savg
260763Savg	if (delta < 0)
260763Savg		ASSERT3U(-delta, <=, dp->dp_dirty_total);
260763Savg
260763Savg	dp->dp_dirty_total += delta;
260763Savg
260763Savg	/*
260763Savg	 * Note: we signal even when increasing dp_dirty_total.
260763Savg	 * This ensures forward progress -- each thread wakes the next waiter.
260763Savg	 */
260763Savg	if (dp->dp_dirty_total <= zfs_dirty_data_max)
260763Savg		cv_signal(&dp->dp_spaceavail_cv);
260763Savg}
260763Savg
168404Spjdvoid
168404Spjddsl_pool_sync(dsl_pool_t *dp, uint64_t txg)
168404Spjd{
168404Spjd	zio_t *zio;
168404Spjd	dmu_tx_t *tx;
168404Spjd	dsl_dir_t *dd;
168404Spjd	dsl_dataset_t *ds;
219089Spjd	objset_t *mos = dp->dp_meta_objset;
239620Smm	list_t synced_datasets;
168404Spjd
239620Smm	list_create(&synced_datasets, sizeof (dsl_dataset_t),
239620Smm	    offsetof(dsl_dataset_t, ds_synced_link));
239620Smm
260763Savg	tx = dmu_tx_create_assigned(dp, txg);
260763Savg
219089Spjd	/*
260763Savg	 * Write out all dirty blocks of dirty datasets.
219089Spjd	 */
168404Spjd	zio = zio_root(dp->dp_spa, NULL, NULL, ZIO_FLAG_MUSTSUCCEED);
260763Savg	while ((ds = txg_list_remove(&dp->dp_dirty_datasets, txg)) != NULL) {
209962Smm		/*
209962Smm		 * We must not sync any non-MOS datasets twice, because
209962Smm		 * we may have taken a snapshot of them.  However, we
209962Smm		 * may sync newly-created datasets on pass 2.
209962Smm		 */
209962Smm		ASSERT(!list_link_active(&ds->ds_synced_link));
239620Smm		list_insert_tail(&synced_datasets, ds);
168404Spjd		dsl_dataset_sync(ds, zio, tx);
168404Spjd	}
260763Savg	VERIFY0(zio_wait(zio));
185029Spjd
260763Savg	/*
260763Savg	 * We have written all of the accounted dirty data, so our
260763Savg	 * dp_space_towrite should now be zero.  However, some seldom-used
260763Savg	 * code paths do not adhere to this (e.g. dbuf_undirty(), also
260763Savg	 * rounding error in dbuf_write_physdone).
260763Savg	 * Shore up the accounting of any dirtied space now.
260763Savg	 */
260763Savg	dsl_pool_undirty_space(dp, dp->dp_dirty_pertxg[txg & TXG_MASK], txg);
168404Spjd
239620Smm	/*
239620Smm	 * After the data blocks have been written (ensured by the zio_wait()
239620Smm	 * above), update the user/group space accounting.
239620Smm	 */
260763Savg	for (ds = list_head(&synced_datasets); ds != NULL;
260763Savg	    ds = list_next(&synced_datasets, ds)) {
219089Spjd		dmu_objset_do_userquota_updates(ds->ds_objset, tx);
260763Savg	}
209962Smm
209962Smm	/*
209962Smm	 * Sync the datasets again to push out the changes due to
219089Spjd	 * userspace updates.  This must be done before we process the
239620Smm	 * sync tasks, so that any snapshots will have the correct
239620Smm	 * user accounting information (and we won't get confused
239620Smm	 * about which blocks are part of the snapshot).
209962Smm	 */
209962Smm	zio = zio_root(dp->dp_spa, NULL, NULL, ZIO_FLAG_MUSTSUCCEED);
260763Savg	while ((ds = txg_list_remove(&dp->dp_dirty_datasets, txg)) != NULL) {
209962Smm		ASSERT(list_link_active(&ds->ds_synced_link));
209962Smm		dmu_buf_rele(ds->ds_dbuf, ds);
209962Smm		dsl_dataset_sync(ds, zio, tx);
209962Smm	}
260763Savg	VERIFY0(zio_wait(zio));
209962Smm
219089Spjd	/*
239620Smm	 * Now that the datasets have been completely synced, we can
239620Smm	 * clean up our in-memory structures accumulated while syncing:
239620Smm	 *
239620Smm	 *  - move dead blocks from the pending deadlist to the on-disk deadlist
239620Smm	 *  - release hold from dsl_dataset_dirty()
219089Spjd	 */
260763Savg	while ((ds = list_remove_head(&synced_datasets)) != NULL) {
239620Smm		objset_t *os = ds->ds_objset;
219089Spjd		bplist_iterate(&ds->ds_pending_deadlist,
219089Spjd		    deadlist_enqueue_cb, &ds->ds_deadlist, tx);
239620Smm		ASSERT(!dmu_objset_is_dirty(os, txg));
239620Smm		dmu_buf_rele(ds->ds_dbuf, ds);
219089Spjd	}
260763Savg	while ((dd = txg_list_remove(&dp->dp_dirty_dirs, txg)) != NULL) {
168404Spjd		dsl_dir_sync(dd, tx);
260763Savg	}
168404Spjd
239620Smm	/*
239620Smm	 * The MOS's space is accounted for in the pool/$MOS
239620Smm	 * (dp_mos_dir).  We can't modify the mos while we're syncing
239620Smm	 * it, so we remember the deltas and apply them here.
239620Smm	 */
239620Smm	if (dp->dp_mos_used_delta != 0 || dp->dp_mos_compressed_delta != 0 ||
239620Smm	    dp->dp_mos_uncompressed_delta != 0) {
239620Smm		dsl_dir_diduse_space(dp->dp_mos_dir, DD_USED_HEAD,
239620Smm		    dp->dp_mos_used_delta,
239620Smm		    dp->dp_mos_compressed_delta,
239620Smm		    dp->dp_mos_uncompressed_delta, tx);
239620Smm		dp->dp_mos_used_delta = 0;
239620Smm		dp->dp_mos_compressed_delta = 0;
239620Smm		dp->dp_mos_uncompressed_delta = 0;
239620Smm	}
239620Smm
219089Spjd	if (list_head(&mos->os_dirty_dnodes[txg & TXG_MASK]) != NULL ||
219089Spjd	    list_head(&mos->os_free_dnodes[txg & TXG_MASK]) != NULL) {
260763Savg		dsl_pool_sync_mos(dp, tx);
168404Spjd	}
168404Spjd
239620Smm	/*
239620Smm	 * If we modify a dataset in the same txg that we want to destroy it,
239620Smm	 * its dsl_dir's dd_dbuf will be dirty, and thus have a hold on it.
239620Smm	 * dsl_dir_destroy_check() will fail if there are unexpected holds.
239620Smm	 * Therefore, we want to sync the MOS (thus syncing the dd_dbuf
239620Smm	 * and clearing the hold on it) before we process the sync_tasks.
239620Smm	 * The MOS data dirtied by the sync_tasks will be synced on the next
239620Smm	 * pass.
239620Smm	 */
239620Smm	if (!txg_list_empty(&dp->dp_sync_tasks, txg)) {
248571Smm		dsl_sync_task_t *dst;
239620Smm		/*
239620Smm		 * No more sync tasks should have been added while we
239620Smm		 * were syncing.
239620Smm		 */
260763Savg		ASSERT3U(spa_sync_pass(dp->dp_spa), ==, 1);
260763Savg		while ((dst = txg_list_remove(&dp->dp_sync_tasks, txg)) != NULL)
248571Smm			dsl_sync_task_sync(dst, tx);
239620Smm	}
239620Smm
168404Spjd	dmu_tx_commit(tx);
185029Spjd
260763Savg	DTRACE_PROBE2(dsl_pool_sync__done, dsl_pool_t *dp, dp, uint64_t, txg);
168404Spjd}
168404Spjd
168404Spjdvoid
219089Spjddsl_pool_sync_done(dsl_pool_t *dp, uint64_t txg)
168404Spjd{
239620Smm	zilog_t *zilog;
168404Spjd
239620Smm	while (zilog = txg_list_remove(&dp->dp_dirty_zilogs, txg)) {
260763Savg		dsl_dataset_t *ds = dmu_objset_ds(zilog->zl_os);
239620Smm		zil_clean(zilog, txg);
239620Smm		ASSERT(!dmu_objset_is_dirty(zilog->zl_os, txg));
239620Smm		dmu_buf_rele(ds->ds_dbuf, zilog);
168404Spjd	}
219089Spjd	ASSERT(!dmu_objset_is_dirty(dp->dp_meta_objset, txg));
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * TRUE if the current thread is the tx_sync_thread or if we
168404Spjd * are being called from SPA context during pool initialization.
168404Spjd */
168404Spjdint
168404Spjddsl_pool_sync_context(dsl_pool_t *dp)
168404Spjd{
168404Spjd	return (curthread == dp->dp_tx.tx_sync_thread ||
236884Smm	    spa_is_initializing(dp->dp_spa));
168404Spjd}
168404Spjd
168404Spjduint64_t
168404Spjddsl_pool_adjustedsize(dsl_pool_t *dp, boolean_t netfree)
168404Spjd{
168404Spjd	uint64_t space, resv;
168404Spjd
168404Spjd	/*
168404Spjd	 * If we're trying to assess whether it's OK to do a free,
168404Spjd	 * cut the reservation in half to allow forward progress
168404Spjd	 * (e.g. make it possible to rm(1) files from a full pool).
168404Spjd	 */
168404Spjd	space = spa_get_dspace(dp->dp_spa);
269006Sdelphij	resv = spa_get_slop_space(dp->dp_spa);
168404Spjd	if (netfree)
168404Spjd		resv >>= 1;
168404Spjd
168404Spjd	return (space - resv);
168404Spjd}
185029Spjd
260763Savgboolean_t
260763Savgdsl_pool_need_dirty_delay(dsl_pool_t *dp)
185029Spjd{
260763Savg	uint64_t delay_min_bytes =
260763Savg	    zfs_dirty_data_max * zfs_delay_min_dirty_percent / 100;
260763Savg	boolean_t rv;
185029Spjd
260763Savg	mutex_enter(&dp->dp_lock);
260763Savg	if (dp->dp_dirty_total > zfs_dirty_data_sync)
260763Savg		txg_kick(dp);
260763Savg	rv = (dp->dp_dirty_total > delay_min_bytes);
260763Savg	mutex_exit(&dp->dp_lock);
260763Savg	return (rv);
185029Spjd}
185029Spjd
185029Spjdvoid
260763Savgdsl_pool_dirty_space(dsl_pool_t *dp, int64_t space, dmu_tx_t *tx)
185029Spjd{
260763Savg	if (space > 0) {
260763Savg		mutex_enter(&dp->dp_lock);
260763Savg		dp->dp_dirty_pertxg[tx->tx_txg & TXG_MASK] += space;
260763Savg		dsl_pool_dirty_delta(dp, space);
260763Savg		mutex_exit(&dp->dp_lock);
260763Savg	}
185029Spjd}
185029Spjd
185029Spjdvoid
260763Savgdsl_pool_undirty_space(dsl_pool_t *dp, int64_t space, uint64_t txg)
185029Spjd{
260763Savg	ASSERT3S(space, >=, 0);
260763Savg	if (space == 0)
185029Spjd		return;
260763Savg	mutex_enter(&dp->dp_lock);
260763Savg	if (dp->dp_dirty_pertxg[txg & TXG_MASK] < space) {
260763Savg		/* XXX writing something we didn't dirty? */
260763Savg		space = dp->dp_dirty_pertxg[txg & TXG_MASK];
185029Spjd	}
260763Savg	ASSERT3U(dp->dp_dirty_pertxg[txg & TXG_MASK], >=, space);
260763Savg	dp->dp_dirty_pertxg[txg & TXG_MASK] -= space;
260763Savg	ASSERT3U(dp->dp_dirty_total, >=, space);
260763Savg	dsl_pool_dirty_delta(dp, -space);
260763Savg	mutex_exit(&dp->dp_lock);
185029Spjd}
185029Spjd
185029Spjd/* ARGSUSED */
185029Spjdstatic int
248571Smmupgrade_clones_cb(dsl_pool_t *dp, dsl_dataset_t *hds, void *arg)
185029Spjd{
185029Spjd	dmu_tx_t *tx = arg;
185029Spjd	dsl_dataset_t *ds, *prev = NULL;
185029Spjd	int err;
185029Spjd
248571Smm	err = dsl_dataset_hold_obj(dp, hds->ds_object, FTAG, &ds);
185029Spjd	if (err)
185029Spjd		return (err);
185029Spjd
185029Spjd	while (ds->ds_phys->ds_prev_snap_obj != 0) {
185029Spjd		err = dsl_dataset_hold_obj(dp, ds->ds_phys->ds_prev_snap_obj,
185029Spjd		    FTAG, &prev);
185029Spjd		if (err) {
185029Spjd			dsl_dataset_rele(ds, FTAG);
185029Spjd			return (err);
185029Spjd		}
185029Spjd
185029Spjd		if (prev->ds_phys->ds_next_snap_obj != ds->ds_object)
185029Spjd			break;
185029Spjd		dsl_dataset_rele(ds, FTAG);
185029Spjd		ds = prev;
185029Spjd		prev = NULL;
185029Spjd	}
185029Spjd
185029Spjd	if (prev == NULL) {
185029Spjd		prev = dp->dp_origin_snap;
185029Spjd
185029Spjd		/*
185029Spjd		 * The $ORIGIN can't have any data, or the accounting
185029Spjd		 * will be wrong.
185029Spjd		 */
248571Smm		ASSERT0(prev->ds_phys->ds_bp.blk_birth);
185029Spjd
185029Spjd		/* The origin doesn't get attached to itself */
185029Spjd		if (ds->ds_object == prev->ds_object) {
185029Spjd			dsl_dataset_rele(ds, FTAG);
185029Spjd			return (0);
185029Spjd		}
185029Spjd
185029Spjd		dmu_buf_will_dirty(ds->ds_dbuf, tx);
185029Spjd		ds->ds_phys->ds_prev_snap_obj = prev->ds_object;
185029Spjd		ds->ds_phys->ds_prev_snap_txg = prev->ds_phys->ds_creation_txg;
185029Spjd
185029Spjd		dmu_buf_will_dirty(ds->ds_dir->dd_dbuf, tx);
185029Spjd		ds->ds_dir->dd_phys->dd_origin_obj = prev->ds_object;
185029Spjd
185029Spjd		dmu_buf_will_dirty(prev->ds_dbuf, tx);
185029Spjd		prev->ds_phys->ds_num_children++;
185029Spjd
185029Spjd		if (ds->ds_phys->ds_next_snap_obj == 0) {
185029Spjd			ASSERT(ds->ds_prev == NULL);
248571Smm			VERIFY0(dsl_dataset_hold_obj(dp,
185029Spjd			    ds->ds_phys->ds_prev_snap_obj, ds, &ds->ds_prev));
185029Spjd		}
185029Spjd	}
185029Spjd
248571Smm	ASSERT3U(ds->ds_dir->dd_phys->dd_origin_obj, ==, prev->ds_object);
248571Smm	ASSERT3U(ds->ds_phys->ds_prev_snap_obj, ==, prev->ds_object);
185029Spjd
185029Spjd	if (prev->ds_phys->ds_next_clones_obj == 0) {
209962Smm		dmu_buf_will_dirty(prev->ds_dbuf, tx);
185029Spjd		prev->ds_phys->ds_next_clones_obj =
185029Spjd		    zap_create(dp->dp_meta_objset,
185029Spjd		    DMU_OT_NEXT_CLONES, DMU_OT_NONE, 0, tx);
185029Spjd	}
248571Smm	VERIFY0(zap_add_int(dp->dp_meta_objset,
185029Spjd	    prev->ds_phys->ds_next_clones_obj, ds->ds_object, tx));
185029Spjd
185029Spjd	dsl_dataset_rele(ds, FTAG);
185029Spjd	if (prev != dp->dp_origin_snap)
185029Spjd		dsl_dataset_rele(prev, FTAG);
185029Spjd	return (0);
185029Spjd}
185029Spjd
185029Spjdvoid
185029Spjddsl_pool_upgrade_clones(dsl_pool_t *dp, dmu_tx_t *tx)
185029Spjd{
185029Spjd	ASSERT(dmu_tx_is_syncing(tx));
185029Spjd	ASSERT(dp->dp_origin_snap != NULL);
185029Spjd
248571Smm	VERIFY0(dmu_objset_find_dp(dp, dp->dp_root_dir_obj, upgrade_clones_cb,
209962Smm	    tx, DS_FIND_CHILDREN));
185029Spjd}
185029Spjd
219089Spjd/* ARGSUSED */
219089Spjdstatic int
248571Smmupgrade_dir_clones_cb(dsl_pool_t *dp, dsl_dataset_t *ds, void *arg)
219089Spjd{
219089Spjd	dmu_tx_t *tx = arg;
219089Spjd	objset_t *mos = dp->dp_meta_objset;
219089Spjd
248571Smm	if (ds->ds_dir->dd_phys->dd_origin_obj != 0) {
219089Spjd		dsl_dataset_t *origin;
219089Spjd
248571Smm		VERIFY0(dsl_dataset_hold_obj(dp,
219089Spjd		    ds->ds_dir->dd_phys->dd_origin_obj, FTAG, &origin));
219089Spjd
219089Spjd		if (origin->ds_dir->dd_phys->dd_clones == 0) {
219089Spjd			dmu_buf_will_dirty(origin->ds_dir->dd_dbuf, tx);
219089Spjd			origin->ds_dir->dd_phys->dd_clones = zap_create(mos,
219089Spjd			    DMU_OT_DSL_CLONES, DMU_OT_NONE, 0, tx);
219089Spjd		}
219089Spjd
248571Smm		VERIFY0(zap_add_int(dp->dp_meta_objset,
248571Smm		    origin->ds_dir->dd_phys->dd_clones, ds->ds_object, tx));
219089Spjd
219089Spjd		dsl_dataset_rele(origin, FTAG);
219089Spjd	}
219089Spjd	return (0);
219089Spjd}
219089Spjd
185029Spjdvoid
219089Spjddsl_pool_upgrade_dir_clones(dsl_pool_t *dp, dmu_tx_t *tx)
219089Spjd{
219089Spjd	ASSERT(dmu_tx_is_syncing(tx));
219089Spjd	uint64_t obj;
219089Spjd
219089Spjd	(void) dsl_dir_create_sync(dp, dp->dp_root_dir, FREE_DIR_NAME, tx);
248571Smm	VERIFY0(dsl_pool_open_special_dir(dp,
219089Spjd	    FREE_DIR_NAME, &dp->dp_free_dir));
219089Spjd
219089Spjd	/*
219089Spjd	 * We can't use bpobj_alloc(), because spa_version() still
219089Spjd	 * returns the old version, and we need a new-version bpobj with
219089Spjd	 * subobj support.  So call dmu_object_alloc() directly.
219089Spjd	 */
219089Spjd	obj = dmu_object_alloc(dp->dp_meta_objset, DMU_OT_BPOBJ,
219089Spjd	    SPA_MAXBLOCKSIZE, DMU_OT_BPOBJ_HDR, sizeof (bpobj_phys_t), tx);
248571Smm	VERIFY0(zap_add(dp->dp_meta_objset, DMU_POOL_DIRECTORY_OBJECT,
219089Spjd	    DMU_POOL_FREE_BPOBJ, sizeof (uint64_t), 1, &obj, tx));
248571Smm	VERIFY0(bpobj_open(&dp->dp_free_bpobj, dp->dp_meta_objset, obj));
219089Spjd
248571Smm	VERIFY0(dmu_objset_find_dp(dp, dp->dp_root_dir_obj,
219089Spjd	    upgrade_dir_clones_cb, tx, DS_FIND_CHILDREN));
219089Spjd}
219089Spjd
219089Spjdvoid
185029Spjddsl_pool_create_origin(dsl_pool_t *dp, dmu_tx_t *tx)
185029Spjd{
185029Spjd	uint64_t dsobj;
185029Spjd	dsl_dataset_t *ds;
185029Spjd
185029Spjd	ASSERT(dmu_tx_is_syncing(tx));
185029Spjd	ASSERT(dp->dp_origin_snap == NULL);
248571Smm	ASSERT(rrw_held(&dp->dp_config_rwlock, RW_WRITER));
185029Spjd
185029Spjd	/* create the origin dir, ds, & snap-ds */
185029Spjd	dsobj = dsl_dataset_create_sync(dp->dp_root_dir, ORIGIN_DIR_NAME,
185029Spjd	    NULL, 0, kcred, tx);
248571Smm	VERIFY0(dsl_dataset_hold_obj(dp, dsobj, FTAG, &ds));
248571Smm	dsl_dataset_snapshot_sync_impl(ds, ORIGIN_DIR_NAME, tx);
248571Smm	VERIFY0(dsl_dataset_hold_obj(dp, ds->ds_phys->ds_prev_snap_obj,
185029Spjd	    dp, &dp->dp_origin_snap));
185029Spjd	dsl_dataset_rele(ds, FTAG);
185029Spjd}
196307Spjd
196307Spjdtaskq_t *
196307Spjddsl_pool_vnrele_taskq(dsl_pool_t *dp)
196307Spjd{
196307Spjd	return (dp->dp_vnrele_taskq);
196307Spjd}
219089Spjd
219089Spjd/*
219089Spjd * Walk through the pool-wide zap object of temporary snapshot user holds
219089Spjd * and release them.
219089Spjd */
219089Spjdvoid
219089Spjddsl_pool_clean_tmp_userrefs(dsl_pool_t *dp)
219089Spjd{
219089Spjd	zap_attribute_t za;
219089Spjd	zap_cursor_t zc;
219089Spjd	objset_t *mos = dp->dp_meta_objset;
219089Spjd	uint64_t zapobj = dp->dp_tmp_userrefs_obj;
251646Sdelphij	nvlist_t *holds;
219089Spjd
219089Spjd	if (zapobj == 0)
219089Spjd		return;
219089Spjd	ASSERT(spa_version(dp->dp_spa) >= SPA_VERSION_USERREFS);
219089Spjd
251646Sdelphij	holds = fnvlist_alloc();
251646Sdelphij
219089Spjd	for (zap_cursor_init(&zc, mos, zapobj);
219089Spjd	    zap_cursor_retrieve(&zc, &za) == 0;
219089Spjd	    zap_cursor_advance(&zc)) {
219089Spjd		char *htag;
251646Sdelphij		nvlist_t *tags;
219089Spjd
219089Spjd		htag = strchr(za.za_name, '-');
219089Spjd		*htag = '\0';
219089Spjd		++htag;
251646Sdelphij		if (nvlist_lookup_nvlist(holds, za.za_name, &tags) != 0) {
251646Sdelphij			tags = fnvlist_alloc();
251646Sdelphij			fnvlist_add_boolean(tags, htag);
251646Sdelphij			fnvlist_add_nvlist(holds, za.za_name, tags);
251646Sdelphij			fnvlist_free(tags);
251646Sdelphij		} else {
251646Sdelphij			fnvlist_add_boolean(tags, htag);
251646Sdelphij		}
219089Spjd	}
251646Sdelphij	dsl_dataset_user_release_tmp(dp, holds);
251646Sdelphij	fnvlist_free(holds);
219089Spjd	zap_cursor_fini(&zc);
219089Spjd}
219089Spjd
219089Spjd/*
219089Spjd * Create the pool-wide zap object for storing temporary snapshot holds.
219089Spjd */
219089Spjdvoid
219089Spjddsl_pool_user_hold_create_obj(dsl_pool_t *dp, dmu_tx_t *tx)
219089Spjd{
219089Spjd	objset_t *mos = dp->dp_meta_objset;
219089Spjd
219089Spjd	ASSERT(dp->dp_tmp_userrefs_obj == 0);
219089Spjd	ASSERT(dmu_tx_is_syncing(tx));
219089Spjd
236884Smm	dp->dp_tmp_userrefs_obj = zap_create_link(mos, DMU_OT_USERREFS,
236884Smm	    DMU_POOL_DIRECTORY_OBJECT, DMU_POOL_TMP_USERREFS, tx);
219089Spjd}
219089Spjd
219089Spjdstatic int
219089Spjddsl_pool_user_hold_rele_impl(dsl_pool_t *dp, uint64_t dsobj,
248571Smm    const char *tag, uint64_t now, dmu_tx_t *tx, boolean_t holding)
219089Spjd{
219089Spjd	objset_t *mos = dp->dp_meta_objset;
219089Spjd	uint64_t zapobj = dp->dp_tmp_userrefs_obj;
219089Spjd	char *name;
219089Spjd	int error;
219089Spjd
219089Spjd	ASSERT(spa_version(dp->dp_spa) >= SPA_VERSION_USERREFS);
219089Spjd	ASSERT(dmu_tx_is_syncing(tx));
219089Spjd
219089Spjd	/*
219089Spjd	 * If the pool was created prior to SPA_VERSION_USERREFS, the
219089Spjd	 * zap object for temporary holds might not exist yet.
219089Spjd	 */
219089Spjd	if (zapobj == 0) {
219089Spjd		if (holding) {
219089Spjd			dsl_pool_user_hold_create_obj(dp, tx);
219089Spjd			zapobj = dp->dp_tmp_userrefs_obj;
219089Spjd		} else {
249195Smm			return (SET_ERROR(ENOENT));
219089Spjd		}
219089Spjd	}
219089Spjd
219089Spjd	name = kmem_asprintf("%llx-%s", (u_longlong_t)dsobj, tag);
219089Spjd	if (holding)
248571Smm		error = zap_add(mos, zapobj, name, 8, 1, &now, tx);
219089Spjd	else
219089Spjd		error = zap_remove(mos, zapobj, name, tx);
219089Spjd	strfree(name);
219089Spjd
219089Spjd	return (error);
219089Spjd}
219089Spjd
219089Spjd/*
219089Spjd * Add a temporary hold for the given dataset object and tag.
219089Spjd */
219089Spjdint
219089Spjddsl_pool_user_hold(dsl_pool_t *dp, uint64_t dsobj, const char *tag,
248571Smm    uint64_t now, dmu_tx_t *tx)
219089Spjd{
219089Spjd	return (dsl_pool_user_hold_rele_impl(dp, dsobj, tag, now, tx, B_TRUE));
219089Spjd}
219089Spjd
219089Spjd/*
219089Spjd * Release a temporary hold for the given dataset object and tag.
219089Spjd */
219089Spjdint
219089Spjddsl_pool_user_release(dsl_pool_t *dp, uint64_t dsobj, const char *tag,
219089Spjd    dmu_tx_t *tx)
219089Spjd{
248571Smm	return (dsl_pool_user_hold_rele_impl(dp, dsobj, tag, 0,
219089Spjd	    tx, B_FALSE));
219089Spjd}
248571Smm
248571Smm/*
248571Smm * DSL Pool Configuration Lock
248571Smm *
248571Smm * The dp_config_rwlock protects against changes to DSL state (e.g. dataset
248571Smm * creation / destruction / rename / property setting).  It must be held for
248571Smm * read to hold a dataset or dsl_dir.  I.e. you must call
248571Smm * dsl_pool_config_enter() or dsl_pool_hold() before calling
248571Smm * dsl_{dataset,dir}_hold{_obj}.  In most circumstances, the dp_config_rwlock
248571Smm * must be held continuously until all datasets and dsl_dirs are released.
248571Smm *
248571Smm * The only exception to this rule is that if a "long hold" is placed on
248571Smm * a dataset, then the dp_config_rwlock may be dropped while the dataset
248571Smm * is still held.  The long hold will prevent the dataset from being
248571Smm * destroyed -- the destroy will fail with EBUSY.  A long hold can be
248571Smm * obtained by calling dsl_dataset_long_hold(), or by "owning" a dataset
248571Smm * (by calling dsl_{dataset,objset}_{try}own{_obj}).
248571Smm *
248571Smm * Legitimate long-holders (including owners) should be long-running, cancelable
248571Smm * tasks that should cause "zfs destroy" to fail.  This includes DMU
248571Smm * consumers (i.e. a ZPL filesystem being mounted or ZVOL being open),
248571Smm * "zfs send", and "zfs diff".  There are several other long-holders whose
248571Smm * uses are suboptimal (e.g. "zfs promote", and zil_suspend()).
248571Smm *
248571Smm * The usual formula for long-holding would be:
248571Smm * dsl_pool_hold()
248571Smm * dsl_dataset_hold()
248571Smm * ... perform checks ...
248571Smm * dsl_dataset_long_hold()
248571Smm * dsl_pool_rele()
248571Smm * ... perform long-running task ...
248571Smm * dsl_dataset_long_rele()
248571Smm * dsl_dataset_rele()
248571Smm *
248571Smm * Note that when the long hold is released, the dataset is still held but
248571Smm * the pool is not held.  The dataset may change arbitrarily during this time
248571Smm * (e.g. it could be destroyed).  Therefore you shouldn't do anything to the
248571Smm * dataset except release it.
248571Smm *
248571Smm * User-initiated operations (e.g. ioctls, zfs_ioc_*()) are either read-only
248571Smm * or modifying operations.
248571Smm *
248571Smm * Modifying operations should generally use dsl_sync_task().  The synctask
248571Smm * infrastructure enforces proper locking strategy with respect to the
248571Smm * dp_config_rwlock.  See the comment above dsl_sync_task() for details.
248571Smm *
248571Smm * Read-only operations will manually hold the pool, then the dataset, obtain
248571Smm * information from the dataset, then release the pool and dataset.
248571Smm * dmu_objset_{hold,rele}() are convenience routines that also do the pool
248571Smm * hold/rele.
248571Smm */
248571Smm
248571Smmint
248571Smmdsl_pool_hold(const char *name, void *tag, dsl_pool_t **dp)
248571Smm{
248571Smm	spa_t *spa;
248571Smm	int error;
248571Smm
248571Smm	error = spa_open(name, &spa, tag);
248571Smm	if (error == 0) {
248571Smm		*dp = spa_get_dsl(spa);
248571Smm		dsl_pool_config_enter(*dp, tag);
248571Smm	}
248571Smm	return (error);
248571Smm}
248571Smm
248571Smmvoid
248571Smmdsl_pool_rele(dsl_pool_t *dp, void *tag)
248571Smm{
248571Smm	dsl_pool_config_exit(dp, tag);
248571Smm	spa_close(dp->dp_spa, tag);
248571Smm}
248571Smm
248571Smmvoid
248571Smmdsl_pool_config_enter(dsl_pool_t *dp, void *tag)
248571Smm{
248571Smm	/*
248571Smm	 * We use a "reentrant" reader-writer lock, but not reentrantly.
248571Smm	 *
248571Smm	 * The rrwlock can (with the track_all flag) track all reading threads,
248571Smm	 * which is very useful for debugging which code path failed to release
248571Smm	 * the lock, and for verifying that the *current* thread does hold
248571Smm	 * the lock.
248571Smm	 *
248571Smm	 * (Unlike a rwlock, which knows that N threads hold it for
248571Smm	 * read, but not *which* threads, so rw_held(RW_READER) returns TRUE
248571Smm	 * if any thread holds it for read, even if this thread doesn't).
248571Smm	 */
248571Smm	ASSERT(!rrw_held(&dp->dp_config_rwlock, RW_READER));
248571Smm	rrw_enter(&dp->dp_config_rwlock, RW_READER, tag);
248571Smm}
248571Smm
248571Smmvoid
248571Smmdsl_pool_config_exit(dsl_pool_t *dp, void *tag)
248571Smm{
248571Smm	rrw_exit(&dp->dp_config_rwlock, tag);
248571Smm}
248571Smm
248571Smmboolean_t
248571Smmdsl_pool_config_held(dsl_pool_t *dp)
248571Smm{
248571Smm	return (RRW_LOCK_HELD(&dp->dp_config_rwlock));
248571Smm}