Received: by 2002:a05:6a10:a841:0:0:0:0 with SMTP id d1csp172039pxy; Wed, 28 Apr 2021 01:45:24 -0700 (PDT) X-Google-Smtp-Source: ABdhPJwyLqfZymjXSDmEvppruRU2Fh3IbrUX+yWP8HZugD2r/3R+BoD/TXZXE2Pl3shACr2hcwnO X-Received: by 2002:a05:6402:1a2b:: with SMTP id be11mr9705766edb.304.1619599524730; Wed, 28 Apr 2021 01:45:24 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1619599524; cv=none; d=google.com; s=arc-20160816; b=UTy+aRFsjxwRCMp2455F17yEq77RKdRPyGV8dngreaDrJ0mCobJp9ndvJpHAkFujZZ qJzUxLN2Z5Q+mG8Na9NzEaIT+nkRQacofgG0CPi622yrT0sRcZM+K6yNqVP+dllKdJBc J+H3YQ+QjmR/i/wZLVX2XvsHRicecFP8N4GVQz8Zs/MeSzs2E5mesSx2QyqPxe68AeKq +1rNF6KksSCGxczxglsbufE4Yv5rge6cLe5BKi1hDqIa7nocRYYcBZ5p69XKcLbR/+YV jLtuzxNQflNMuSNAgvzwDAZN7WQ1IfmnDxcwGuGpKbNF0hSTNFuaOpbkmYxclm+FB413 s/lQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:mime-version :message-id:date:subject:cc:to:from; bh=i8NdFzSd8ijviPmWxor4zsUZyVM0spBty9/+bjz6vYo=; b=fclT3lxHu51vuX+5ROcWCqjdqrG2SF+6hpaB1uz/PsMcorTV033wpcroMUuFtXHK5b cqiz8PvZ9WEqwfjX15KfdWFz9sZAidtVtp1di5Mo14yOyAE3Nj8ziVtJEnbFlmz6/PHm RLCzDpKJXN1SEgZqkT0U/bzm7+G68PkQo8IZryttkN/kCUAYhhpUO4Rf3sZP3y1/2sBf etKPlcFlIr6GYPpAATrtbTrWbCD5EEoX3IBMeTKvhb2CvdpnFmC0mo3CdLqHpd1lAcZd GL2QnsDrNESUkQII5tnmT5SrB8zrGJWsWVWjghoDFQoEKPtX6Nanfgr3BJjSEkCTvNM4 uepw== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of linux-ext4-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-ext4-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=huawei.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id re25si2247015ejb.425.2021.04.28.01.44.55; Wed, 28 Apr 2021 01:45:24 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-ext4-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; spf=pass (google.com: domain of linux-ext4-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-ext4-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=huawei.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S237187AbhD1Io5 (ORCPT + 99 others); Wed, 28 Apr 2021 04:44:57 -0400 Received: from szxga06-in.huawei.com ([45.249.212.32]:17404 "EHLO szxga06-in.huawei.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229643AbhD1Io5 (ORCPT ); Wed, 28 Apr 2021 04:44:57 -0400 Received: from DGGEMS407-HUB.china.huawei.com (unknown [172.30.72.58]) by szxga06-in.huawei.com (SkyGuard) with ESMTP id 4FVXDx45ggzlZFH; Wed, 28 Apr 2021 16:42:09 +0800 (CST) Received: from huawei.com (10.175.127.227) by DGGEMS407-HUB.china.huawei.com (10.3.19.207) with Microsoft SMTP Server id 14.3.498.0; Wed, 28 Apr 2021 16:44:01 +0800 From: Ye Bin To: , , , , CC: Ye Bin Subject: [PATCH v3] ext4: Fix bug on in ext4_es_cache_extent as ext4_split_extent_at failed Date: Wed, 28 Apr 2021 16:51:58 +0800 Message-ID: <20210428085158.3728201-1-yebin10@huawei.com> X-Mailer: git-send-email 2.25.4 MIME-Version: 1.0 Content-Transfer-Encoding: 7BIT Content-Type: text/plain; charset=US-ASCII X-Originating-IP: [10.175.127.227] X-CFilter-Loop: Reflected Precedence: bulk List-ID: X-Mailing-List: linux-ext4@vger.kernel.org We got follow bug_on when run fsstress with injecting IO fault: [130747.323114] kernel BUG at fs/ext4/extents_status.c:762! [130747.323117] Internal error: Oops - BUG: 0 [#1] SMP ...... [130747.334329] Call trace: [130747.334553] ext4_es_cache_extent+0x150/0x168 [ext4] [130747.334975] ext4_cache_extents+0x64/0xe8 [ext4] [130747.335368] ext4_find_extent+0x300/0x330 [ext4] [130747.335759] ext4_ext_map_blocks+0x74/0x1178 [ext4] [130747.336179] ext4_map_blocks+0x2f4/0x5f0 [ext4] [130747.336567] ext4_mpage_readpages+0x4a8/0x7a8 [ext4] [130747.336995] ext4_readpage+0x54/0x100 [ext4] [130747.337359] generic_file_buffered_read+0x410/0xae8 [130747.337767] generic_file_read_iter+0x114/0x190 [130747.338152] ext4_file_read_iter+0x5c/0x140 [ext4] [130747.338556] __vfs_read+0x11c/0x188 [130747.338851] vfs_read+0x94/0x150 [130747.339110] ksys_read+0x74/0xf0 If call ext4_ext_insert_extent failed but new extent already inserted, we just update "ex->ee_len = orig_ex.ee_len", this will lead to extent overlap, then cause bug on when cache extent. If call ext4_ext_insert_extent failed don't update ex->ee_len with old value. Maybe there will lead to block leak, but it can be fixed by fsck later. After we fixed above issue with v2 patch, but we got the same issue. ext4_split_extent_at: { ...... err = ext4_ext_insert_extent(handle, inode, ppath, &newex, flags); if (err == -ENOSPC && (EXT4_EXT_MAY_ZEROOUT & split_flag)) { ...... ext4_ext_try_to_merge(handle, inode, path, ex); ->step(1) err = ext4_ext_dirty(handle, inode, path + path->p_depth); ->step(2) if (err) goto fix_extent_len; ...... } ...... fix_extent_len: ex->ee_len = orig_ex.ee_len; ->step(3) ...... } If step(1) have been merged, but step(2) dirty extent failed, then go to fix_extent_len label to fix ex->ee_len with orig_ex.ee_len. But "ex" may not be old one, will cause overwritten. Then will trigger the same issue as previous. If step(2) failed, just return error, don't fix ex->ee_len with old value. Signed-off-by: Ye Bin --- fs/ext4/extents.c | 13 +++++-------- 1 file changed, 5 insertions(+), 8 deletions(-) diff --git a/fs/ext4/extents.c b/fs/ext4/extents.c index 77c84d6f1af6..d4aa24a09d8b 100644 --- a/fs/ext4/extents.c +++ b/fs/ext4/extents.c @@ -3238,15 +3238,12 @@ static int ext4_split_extent_at(handle_t *handle, ex->ee_len = cpu_to_le16(ee_len); ext4_ext_try_to_merge(handle, inode, path, ex); err = ext4_ext_dirty(handle, inode, path + path->p_depth); - if (err) - goto fix_extent_len; - - /* update extent status tree */ - err = ext4_zeroout_es(inode, &zero_ex); - - goto out; - } else if (err) + if (!err) + /* update extent status tree */ + err = ext4_zeroout_es(inode, &zero_ex); + } else if (err && err != -EROFS) { goto fix_extent_len; + } out: ext4_ext_show_leaf(inode, path); -- 2.25.4