Received: by 2002:a05:6a10:8a4d:0:0:0:0 with SMTP id dn13csp188088pxb; Thu, 12 Aug 2021 14:00:27 -0700 (PDT) X-Google-Smtp-Source: ABdhPJxJCX+LfYw5a0/SC1YCRXjXPqvYnMc7ON7R6tcY8Q2jo5ShF4IU68LET+3idS8rH0wjtFU0 X-Received: by 2002:a17:906:3019:: with SMTP id 25mr5416903ejz.91.1628802026877; Thu, 12 Aug 2021 14:00:26 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1628802026; cv=none; d=google.com; s=arc-20160816; b=o11CqB2b48ICXpi3c77854XxVJV6s54UBOitXSK3En3TMHfjhGyr4+5hQ+2aorM8YY KIDlJIXJOKMMNKX+VgGp33Oc9fkLEQ/MkRyL1ZdwokJop6yfesQZhZR1d/obBwX4zEPs e0XlWj9KwZvYqvNj/LALP6BFg3bqDXxR3M6sDWtec0RUWunepnDXe3JDjy7SB89EpWvn 9LHFKKMDoiQUBkGZXHSDYvqFweHI/fa+fRTAp6R+uL0Yqt4F7OEIou9oUtCeT15ij1bq uuysIDUUt9IL04Mv1gTMDIv+B6RKXXngb0PC4j5ROqoLSpfzgqS5SiTEv8PC3cZGVpib uV5Q== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:in-reply-to:content-disposition:mime-version :references:message-id:subject:cc:to:from:date:dkim-signature; bh=xvP3tSGDGMQUMSp5Aqcjyv7yBhrYcX5M0+Lv0jpo9AY=; b=ExONFJ2N5mWi8D+ufRj9jyz4I0AwXGy6i4gyx4Rd0r0WqAbmuzWROFLiKrkjwVeEUs 2sR6OHHad15CSNIchghLdFdkWUJVkNiovTEXv8jVfodmXNsW3f7DZHdODXX8v5c6jJzc CnBjqKiAb2QoJN+XgwHIr3gJXUIOag8m5nZOzbsU8wZ7gMevJD0TtgXHbyPt9QwjeaxA WJwJc5Nn9ROO7ndFMKKgxd9mdSO2IuIWm1BC4P+HlzUaYXczlL8q3rnwjfjwZ9mq0XTG CtK16uYFRD8ZAH0GKiBjMG7JFNHtiJlavENf9v37cgKpZ8wWn17X2j847hXFT7LhIViI Vvvg== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=ji8MA6Nd; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id 11si3934937edw.187.2021.08.12.14.00.03; Thu, 12 Aug 2021 14:00:26 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=ji8MA6Nd; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S232066AbhHLUuQ (ORCPT + 99 others); Thu, 12 Aug 2021 16:50:16 -0400 Received: from mail.kernel.org ([198.145.29.99]:46006 "EHLO mail.kernel.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229655AbhHLUuN (ORCPT ); Thu, 12 Aug 2021 16:50:13 -0400 Received: by mail.kernel.org (Postfix) with ESMTPSA id 856DF60560; Thu, 12 Aug 2021 20:49:47 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=k20201202; t=1628801387; bh=1jFFI1mfz49g1sV9TwI8xebX1EbH0k/3dXkZktJuI5k=; h=Date:From:To:Cc:Subject:References:In-Reply-To:From; b=ji8MA6NdcDj7Ed4A7FPXDgErpY7OK63nis+ldVdluVXmXDiuaU+P1gA9B3ny7SV1y 6rnP+F/3URLGv50jQ796s3fAUiLMWRkSQjm+ajlQ322hYAkJfRjYotAwHuHgNK/yg7 yA5/+e6T6MDrhDKIjorkh52Pa92y4kGZmMxFrXZNwYId5C1JfkGri2/mnvYfxSaoR/ o7TnADoDEu4s1C4BPdXp3hYDskjV8dC8DJ13CgaQIc5a7rWgE40wBxGJYWJYXjsBgt otUMGlB4hZSwm4a6qCqY16pltAQpjPU1wGbriml8aX8ZgOdwomxlewDwpjWW+wmu4R p2tubOuN1zTCw== Date: Thu, 12 Aug 2021 13:49:46 -0700 From: Jaegeuk Kim To: Chao Yu Cc: linux-f2fs-devel@lists.sourceforge.net, linux-kernel@vger.kernel.org, Chao Yu Subject: Re: [PATCH v2] f2fs: compress: do sanity check on cluster Message-ID: References: <20210806000250.39728-1-chao@kernel.org> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20210806000250.39728-1-chao@kernel.org> Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 08/06, Chao Yu wrote: > This patch adds f2fs_sanity_check_cluster() to support doing > sanity check on cluster of compressed file, it will be triggered > from below two paths: > > - __f2fs_cluster_blocks() > - f2fs_map_blocks(F2FS_GET_BLOCK_FIEMAP) > > And it can detect below three kind of cluster insanity status. > > C: COMPRESS_ADDR > N: NULL_ADDR or NEW_ADDR > V: valid blkaddr > *: any value > > 1. [*|C|*|*] > 2. [C|*|C|*] > 3. [C|N|N|V] > > Signed-off-by: Chao Yu > --- > v2: > - cover all map_block cases > - give EFSCORRUPTED only when CHECK_FS is enabled for fiemap() > fs/f2fs/compress.c | 53 ++++++++++++++++++++++++++++++++++++++++++++++ > fs/f2fs/data.c | 9 ++++++++ > fs/f2fs/f2fs.h | 1 + > 3 files changed, 63 insertions(+) > > diff --git a/fs/f2fs/compress.c b/fs/f2fs/compress.c > index 7dbfd6965b97..f25b32a6893a 100644 > --- a/fs/f2fs/compress.c > +++ b/fs/f2fs/compress.c > @@ -898,6 +898,54 @@ static bool cluster_has_invalid_data(struct compress_ctx *cc) > return false; > } > > +bool f2fs_sanity_check_cluster(struct dnode_of_data *dn) > +{ > + struct f2fs_sb_info *sbi = F2FS_I_SB(dn->inode); > + unsigned int cluster_size = F2FS_I(dn->inode)->i_cluster_size; > + bool compressed = dn->data_blkaddr == COMPRESS_ADDR; > + int cluster_end = 0; > + int i; > + char *reason = ""; > + > + if (!compressed) > + return false; > + > + /* [..., COMPR_ADDR, ...] */ > + if (dn->ofs_in_node % cluster_size) { > + reason = "[*|C|*|*]"; > + goto out; > + } > + > + for (i = 1; i < cluster_size; i++) { > + block_t blkaddr = data_blkaddr(dn->inode, dn->node_page, > + dn->ofs_in_node + i); > + > + /* [COMPR_ADDR, ..., COMPR_ADDR] */ > + if (blkaddr == COMPRESS_ADDR) { > + reason = "[C|*|C|*]"; > + goto out; > + } > + if (compressed) { > + if (!__is_valid_data_blkaddr(blkaddr)) { > + if (!cluster_end) > + cluster_end = i; > + continue; > + } > + /* [COMPR_ADDR, NULL_ADDR or NEW_ADDR, valid_blkaddr] */ > + if (cluster_end) { > + reason = "[C|N|N|V]"; > + goto out; > + } > + } > + } > + return false; > +out: > + f2fs_warn(sbi, "access invalid cluster, ino:%lu, nid:%u, ofs_in_node:%u, reason:%s", > + dn->inode->i_ino, dn->nid, dn->ofs_in_node, reason); > + set_sbi_flag(sbi, SBI_NEED_FSCK); > + return true; > +} > + > static int __f2fs_cluster_blocks(struct inode *inode, > unsigned int cluster_idx, bool compr) > { > @@ -915,6 +963,11 @@ static int __f2fs_cluster_blocks(struct inode *inode, > goto fail; > } > > + if (f2fs_sanity_check_cluster(&dn)) { > + ret = -EFSCORRUPTED; > + goto fail; > + } > + > if (dn.data_blkaddr == COMPRESS_ADDR) { > int i; > > diff --git a/fs/f2fs/data.c b/fs/f2fs/data.c > index df5e8d8c654e..d4c9aeba0842 100644 > --- a/fs/f2fs/data.c > +++ b/fs/f2fs/data.c > @@ -1552,6 +1552,15 @@ int f2fs_map_blocks(struct inode *inode, struct f2fs_map_blocks *map, > map->m_flags |= F2FS_MAP_NEW; > blkaddr = dn.data_blkaddr; > } else { > +#ifdef CONFIG_F2FS_FS_COMPRESSION I tried to remove ifdef. Please check f2fs/dev branch. > + if (f2fs_compressed_file(inode) && > + f2fs_sanity_check_cluster(&dn) && > + (flag != F2FS_GET_BLOCK_FIEMAP || > + IS_ENABLED(CONFIG_F2FS_CHECK_FS))) { > + err = -EFSCORRUPTED; > + goto sync_out; > + } > +#endif > if (flag == F2FS_GET_BLOCK_BMAP) { > map->m_pblk = 0; > goto sync_out; > diff --git a/fs/f2fs/f2fs.h b/fs/f2fs/f2fs.h > index e97b4d8c5efc..3b368bcbc4d7 100644 > --- a/fs/f2fs/f2fs.h > +++ b/fs/f2fs/f2fs.h > @@ -4074,6 +4074,7 @@ void f2fs_end_read_compressed_page(struct page *page, bool failed, > block_t blkaddr); > bool f2fs_cluster_is_empty(struct compress_ctx *cc); > bool f2fs_cluster_can_merge_page(struct compress_ctx *cc, pgoff_t index); > +bool f2fs_sanity_check_cluster(struct dnode_of_data *dn); > void f2fs_compress_ctx_add_page(struct compress_ctx *cc, struct page *page); > int f2fs_write_multi_pages(struct compress_ctx *cc, > int *submitted, > -- > 2.22.1