From: "Darrick J. Wong" <djwong@kernel.org>
To: chandan.babu@gmail.com, djwong@kernel.org
Cc: linux-xfs@vger.kernel.org, david@fromorbit.com, sandeen@sandeen.net
Subject: [PATCH 3/3] xfs: log is not writable if we have unknown rocompat features
Date: Thu, 24 Aug 2023 16:21:52 -0700 [thread overview]
Message-ID: <169291931221.220104.3437825303883889120.stgit@frogsfrogsfrogs> (raw)
In-Reply-To: <169291929524.220104.3844042018007786965.stgit@frogsfrogsfrogs>
From: Darrick J. Wong <djwong@kernel.org>
Ever since commit 9e037cb7972f, the superblock write verifier will trip
if someone tries to write a superblock with unknown rocompat features.
However, we allow ro mounts of a filesystem with unknown rocompat
features if the log is clean, except that has been broken for years
because the end of an ro mount cleans the log, which logs and writes the
superblock.
Therefore, don't allow log writes to happen if there are unknown
rocompat features set.
Fixes: 9e037cb7972f ("xfs: check for unknown v5 feature bits in superblock write verifier")
Signed-off-by: Darrick J. Wong <djwong@kernel.org>
---
fs/xfs/xfs_log.c | 6 ++++++
fs/xfs/xfs_log_priv.h | 7 +++++++
fs/xfs/xfs_log_recover.c | 7 +++++++
3 files changed, 20 insertions(+)
diff --git a/fs/xfs/xfs_log.c b/fs/xfs/xfs_log.c
index 51c100c86177..c1bbc8040bcb 100644
--- a/fs/xfs/xfs_log.c
+++ b/fs/xfs/xfs_log.c
@@ -391,6 +391,8 @@ xfs_log_writable(
return false;
if (xlog_is_shutdown(mp->m_log))
return false;
+ if (xlog_is_readonly(mp->m_log))
+ return false;
return true;
}
@@ -408,6 +410,8 @@ xfs_log_regrant(
if (xlog_is_shutdown(log))
return -EIO;
+ if (xlog_is_readonly(log))
+ return -EROFS;
XFS_STATS_INC(mp, xs_try_logspace);
@@ -471,6 +475,8 @@ xfs_log_reserve(
if (xlog_is_shutdown(log))
return -EIO;
+ if (xlog_is_readonly(log))
+ return -EROFS;
XFS_STATS_INC(mp, xs_try_logspace);
diff --git a/fs/xfs/xfs_log_priv.h b/fs/xfs/xfs_log_priv.h
index af87648331d5..14892e01de38 100644
--- a/fs/xfs/xfs_log_priv.h
+++ b/fs/xfs/xfs_log_priv.h
@@ -461,6 +461,7 @@ struct xlog {
#define XLOG_IO_ERROR 2 /* log hit an I/O error, and being
shutdown */
#define XLOG_TAIL_WARN 3 /* log tail verify warning issued */
+#define XLOG_READONLY 4 /* cannot write to the log */
static inline bool
xlog_recovery_needed(struct xlog *log)
@@ -480,6 +481,12 @@ xlog_is_shutdown(struct xlog *log)
return test_bit(XLOG_IO_ERROR, &log->l_opstate);
}
+static inline bool
+xlog_is_readonly(struct xlog *log)
+{
+ return test_bit(XLOG_READONLY, &log->l_opstate);
+}
+
/*
* Wait until the xlog_force_shutdown() has marked the log as shut down
* so xlog_is_shutdown() will always return true.
diff --git a/fs/xfs/xfs_log_recover.c b/fs/xfs/xfs_log_recover.c
index b4458b7fd6f7..f8f13d5f79cd 100644
--- a/fs/xfs/xfs_log_recover.c
+++ b/fs/xfs/xfs_log_recover.c
@@ -3450,6 +3450,13 @@ xlog_recover(
error = xlog_do_recover(log, head_blk, tail_blk);
set_bit(XLOG_RECOVERY_NEEDED, &log->l_opstate);
+ } else if (unknown_rocompat) {
+ /*
+ * Log recovery wasn't needed, but if the superblock has
+ * unknown rocompat features, don't allow log writes at all
+ * because the sb write verifier will trip.
+ */
+ set_bit(XLOG_READONLY, &log->l_opstate);
}
return error;
}
next prev parent reply other threads:[~2023-08-24 23:22 UTC|newest]
Thread overview: 12+ messages / expand[flat|nested] mbox.gz Atom feed top
2023-08-24 23:21 [PATCHSET 0/3] xfs: fix ro mounting with unknown rocompat features Darrick J. Wong
2023-08-24 23:21 ` [PATCH 1/3] xfs: allow inode inactivation during a ro mount log recovery Darrick J. Wong
2023-08-24 23:21 ` [PATCH 2/3] xfs: don't allow log recovery when unknown rocompat bits are set Darrick J. Wong
2023-08-25 1:07 ` Dave Chinner
2023-08-25 4:04 ` Darrick J. Wong
2023-08-28 19:08 ` Darrick J. Wong
2023-08-28 21:47 ` Dave Chinner
2023-08-29 3:10 ` Darrick J. Wong
2023-08-24 23:21 ` Darrick J. Wong [this message]
2023-08-25 1:08 ` [PATCH 3/3] xfs: log is not writable if we have unknown rocompat features Dave Chinner
2023-08-24 23:27 ` [PATCH 4/3] xfs/270: actually test file readability Darrick J. Wong
2023-08-24 23:28 ` [PATCH 5/3] xfs/270: actually test log recovery with unknown rocompat features Darrick J. Wong
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=169291931221.220104.3437825303883889120.stgit@frogsfrogsfrogs \
--to=djwong@kernel.org \
--cc=chandan.babu@gmail.com \
--cc=david@fromorbit.com \
--cc=linux-xfs@vger.kernel.org \
--cc=sandeen@sandeen.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.