From: Sasha Levin Date: Tue, 18 Feb 2020 18:17:22 +0000 (-0500) Subject: fixes for 4.9 X-Git-Tag: v4.19.105~3 X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=49e583e4e4f18da408be2ff390b669124de00b5a;p=thirdparty%2Fkernel%2Fstable-queue.git fixes for 4.9 Signed-off-by: Sasha Levin --- diff --git a/queue-4.9/btrfs-print-message-when-tree-log-replay-starts.patch b/queue-4.9/btrfs-print-message-when-tree-log-replay-starts.patch new file mode 100644 index 00000000000..2226e9a95d6 --- /dev/null +++ b/queue-4.9/btrfs-print-message-when-tree-log-replay-starts.patch @@ -0,0 +1,38 @@ +From 21f6ba715943eddb5e11ae5176f904243e772455 Mon Sep 17 00:00:00 2001 +From: Sasha Levin +Date: Wed, 5 Feb 2020 17:12:16 +0100 +Subject: btrfs: print message when tree-log replay starts + +From: David Sterba + +[ Upstream commit e8294f2f6aa6208ed0923aa6d70cea3be178309a ] + +There's no logged information about tree-log replay although this is +something that points to previous unclean unmount. Other filesystems +report that as well. + +Suggested-by: Chris Murphy +CC: stable@vger.kernel.org # 4.4+ +Reviewed-by: Anand Jain +Reviewed-by: Johannes Thumshirn +Signed-off-by: David Sterba +Signed-off-by: Sasha Levin +--- + fs/btrfs/disk-io.c | 1 + + 1 file changed, 1 insertion(+) + +diff --git a/fs/btrfs/disk-io.c b/fs/btrfs/disk-io.c +index e3524ecce3d77..390053557d4d2 100644 +--- a/fs/btrfs/disk-io.c ++++ b/fs/btrfs/disk-io.c +@@ -2979,6 +2979,7 @@ int open_ctree(struct super_block *sb, + /* do not make disk changes in broken FS or nologreplay is given */ + if (btrfs_super_log_root(disk_super) != 0 && + !btrfs_test_opt(tree_root->fs_info, NOLOGREPLAY)) { ++ btrfs_info(fs_info, "start tree-log replay"); + ret = btrfs_replay_log(fs_info, fs_devices); + if (ret) { + err = ret; +-- +2.20.1 + diff --git a/queue-4.9/jbd2-do-not-clear-the-bh_mapped-flag-when-forgetting.patch b/queue-4.9/jbd2-do-not-clear-the-bh_mapped-flag-when-forgetting.patch new file mode 100644 index 00000000000..cf0d202d10f --- /dev/null +++ b/queue-4.9/jbd2-do-not-clear-the-bh_mapped-flag-when-forgetting.patch @@ -0,0 +1,95 @@ +From d2647630c886ee482409ae2528d8486cbef2b52e Mon Sep 17 00:00:00 2001 +From: Sasha Levin +Date: Tue, 18 Feb 2020 18:58:23 +0800 +Subject: jbd2: do not clear the BH_Mapped flag when forgetting a metadata + buffer + +From: zhangyi (F) + +[ Upstream commit c96dceeabf765d0b1b1f29c3bf50a5c01315b820 ] + +Commit 904cdbd41d74 ("jbd2: clear dirty flag when revoking a buffer from +an older transaction") set the BH_Freed flag when forgetting a metadata +buffer which belongs to the committing transaction, it indicate the +committing process clear dirty bits when it is done with the buffer. But +it also clear the BH_Mapped flag at the same time, which may trigger +below NULL pointer oops when block_size < PAGE_SIZE. + +rmdir 1 kjournald2 mkdir 2 + jbd2_journal_commit_transaction + commit transaction N +jbd2_journal_forget +set_buffer_freed(bh1) + jbd2_journal_commit_transaction + commit transaction N+1 + ... + clear_buffer_mapped(bh1) + ext4_getblk(bh2 ummapped) + ... + grow_dev_page + init_page_buffers + bh1->b_private=NULL + bh2->b_private=NULL + jbd2_journal_put_journal_head(jh1) + __journal_remove_journal_head(hb1) + jh1 is NULL and trigger oops + +*) Dir entry block bh1 and bh2 belongs to one page, and the bh2 has + already been unmapped. + +For the metadata buffer we forgetting, we should always keep the mapped +flag and clear the dirty flags is enough, so this patch pick out the +these buffers and keep their BH_Mapped flag. + +Link: https://lore.kernel.org/r/20200213063821.30455-3-yi.zhang@huawei.com +Fixes: 904cdbd41d74 ("jbd2: clear dirty flag when revoking a buffer from an older transaction") +Reviewed-by: Jan Kara +Signed-off-by: zhangyi (F) +Signed-off-by: Theodore Ts'o +Cc: stable@kernel.org +Signed-off-by: Sasha Levin +--- + fs/jbd2/commit.c | 25 +++++++++++++++++++++---- + 1 file changed, 21 insertions(+), 4 deletions(-) + +diff --git a/fs/jbd2/commit.c b/fs/jbd2/commit.c +index 2ee0013d86af5..72b5bbfd38447 100644 +--- a/fs/jbd2/commit.c ++++ b/fs/jbd2/commit.c +@@ -978,12 +978,29 @@ void jbd2_journal_commit_transaction(journal_t *journal) + * pagesize and it is attached to the last partial page. + */ + if (buffer_freed(bh) && !jh->b_next_transaction) { ++ struct address_space *mapping; ++ + clear_buffer_freed(bh); + clear_buffer_jbddirty(bh); +- clear_buffer_mapped(bh); +- clear_buffer_new(bh); +- clear_buffer_req(bh); +- bh->b_bdev = NULL; ++ ++ /* ++ * Block device buffers need to stay mapped all the ++ * time, so it is enough to clear buffer_jbddirty and ++ * buffer_freed bits. For the file mapping buffers (i.e. ++ * journalled data) we need to unmap buffer and clear ++ * more bits. We also need to be careful about the check ++ * because the data page mapping can get cleared under ++ * out hands, which alse need not to clear more bits ++ * because the page and buffers will be freed and can ++ * never be reused once we are done with them. ++ */ ++ mapping = READ_ONCE(bh->b_page->mapping); ++ if (mapping && !sb_is_blkdev_sb(mapping->host->i_sb)) { ++ clear_buffer_mapped(bh); ++ clear_buffer_new(bh); ++ clear_buffer_req(bh); ++ bh->b_bdev = NULL; ++ } + } + + if (buffer_jbddirty(bh)) { +-- +2.20.1 + diff --git a/queue-4.9/jbd2-move-the-clearing-of-b_modified-flag-to-the-jou.patch b/queue-4.9/jbd2-move-the-clearing-of-b_modified-flag-to-the-jou.patch new file mode 100644 index 00000000000..165c36185a2 --- /dev/null +++ b/queue-4.9/jbd2-move-the-clearing-of-b_modified-flag-to-the-jou.patch @@ -0,0 +1,107 @@ +From 602fcfe1e3d736cb61450bd4a35beb8278784ac9 Mon Sep 17 00:00:00 2001 +From: Sasha Levin +Date: Tue, 18 Feb 2020 18:58:22 +0800 +Subject: jbd2: move the clearing of b_modified flag to the + journal_unmap_buffer() + +From: zhangyi (F) + +[ Upstream commit 6a66a7ded12baa6ebbb2e3e82f8cb91382814839 ] + +There is no need to delay the clearing of b_modified flag to the +transaction committing time when unmapping the journalled buffer, so +just move it to the journal_unmap_buffer(). + +Link: https://lore.kernel.org/r/20200213063821.30455-2-yi.zhang@huawei.com +Reviewed-by: Jan Kara +Signed-off-by: zhangyi (F) +Signed-off-by: Theodore Ts'o +Cc: stable@kernel.org +Signed-off-by: Sasha Levin +--- + fs/jbd2/commit.c | 43 +++++++++++++++---------------------------- + fs/jbd2/transaction.c | 10 ++++++---- + 2 files changed, 21 insertions(+), 32 deletions(-) + +diff --git a/fs/jbd2/commit.c b/fs/jbd2/commit.c +index d002b2b6895fe..2ee0013d86af5 100644 +--- a/fs/jbd2/commit.c ++++ b/fs/jbd2/commit.c +@@ -969,34 +969,21 @@ void jbd2_journal_commit_transaction(journal_t *journal) + * it. */ + + /* +- * A buffer which has been freed while still being journaled by +- * a previous transaction. +- */ +- if (buffer_freed(bh)) { +- /* +- * If the running transaction is the one containing +- * "add to orphan" operation (b_next_transaction != +- * NULL), we have to wait for that transaction to +- * commit before we can really get rid of the buffer. +- * So just clear b_modified to not confuse transaction +- * credit accounting and refile the buffer to +- * BJ_Forget of the running transaction. If the just +- * committed transaction contains "add to orphan" +- * operation, we can completely invalidate the buffer +- * now. We are rather through in that since the +- * buffer may be still accessible when blocksize < +- * pagesize and it is attached to the last partial +- * page. +- */ +- jh->b_modified = 0; +- if (!jh->b_next_transaction) { +- clear_buffer_freed(bh); +- clear_buffer_jbddirty(bh); +- clear_buffer_mapped(bh); +- clear_buffer_new(bh); +- clear_buffer_req(bh); +- bh->b_bdev = NULL; +- } ++ * A buffer which has been freed while still being journaled ++ * by a previous transaction, refile the buffer to BJ_Forget of ++ * the running transaction. If the just committed transaction ++ * contains "add to orphan" operation, we can completely ++ * invalidate the buffer now. We are rather through in that ++ * since the buffer may be still accessible when blocksize < ++ * pagesize and it is attached to the last partial page. ++ */ ++ if (buffer_freed(bh) && !jh->b_next_transaction) { ++ clear_buffer_freed(bh); ++ clear_buffer_jbddirty(bh); ++ clear_buffer_mapped(bh); ++ clear_buffer_new(bh); ++ clear_buffer_req(bh); ++ bh->b_bdev = NULL; + } + + if (buffer_jbddirty(bh)) { +diff --git a/fs/jbd2/transaction.c b/fs/jbd2/transaction.c +index 799f96c67211d..04dd0652bb5ca 100644 +--- a/fs/jbd2/transaction.c ++++ b/fs/jbd2/transaction.c +@@ -2213,14 +2213,16 @@ static int journal_unmap_buffer(journal_t *journal, struct buffer_head *bh, + return -EBUSY; + } + /* +- * OK, buffer won't be reachable after truncate. We just set +- * j_next_transaction to the running transaction (if there is +- * one) and mark buffer as freed so that commit code knows it +- * should clear dirty bits when it is done with the buffer. ++ * OK, buffer won't be reachable after truncate. We just clear ++ * b_modified to not confuse transaction credit accounting, and ++ * set j_next_transaction to the running transaction (if there ++ * is one) and mark buffer as freed so that commit code knows ++ * it should clear dirty bits when it is done with the buffer. + */ + set_buffer_freed(bh); + if (journal->j_running_transaction && buffer_jbddirty(bh)) + jh->b_next_transaction = journal->j_running_transaction; ++ jh->b_modified = 0; + jbd2_journal_put_journal_head(jh); + spin_unlock(&journal->j_list_lock); + jbd_unlock_bh_state(bh); +-- +2.20.1 + diff --git a/queue-4.9/series b/queue-4.9/series index c01cdc89a9e..b8c0bab5862 100644 --- a/queue-4.9/series +++ b/queue-4.9/series @@ -9,3 +9,6 @@ padata-remove-broken-queue-flushing.patch s390-time-fix-clk-type-in-get_tod_clock.patch perf-x86-intel-fix-inaccurate-period-in-context-switch-for-auto-reload.patch hwmon-pmbus-ltc2978-fix-pmbus-polling-of-mfr_common-definitions.patch +jbd2-move-the-clearing-of-b_modified-flag-to-the-jou.patch +jbd2-do-not-clear-the-bh_mapped-flag-when-forgetting.patch +btrfs-print-message-when-tree-log-replay-starts.patch