2012-11-29 13:28:09 +09:00
|
|
|
/*
|
2012-11-02 17:10:12 +09:00
|
|
|
* fs/f2fs/data.c
|
|
|
|
|
*
|
|
|
|
|
* Copyright (c) 2012 Samsung Electronics Co., Ltd.
|
|
|
|
|
* http://www.samsung.com/
|
|
|
|
|
*
|
|
|
|
|
* This program is free software; you can redistribute it and/or modify
|
|
|
|
|
* it under the terms of the GNU General Public License version 2 as
|
|
|
|
|
* published by the Free Software Foundation.
|
|
|
|
|
*/
|
|
|
|
|
#include <linux/fs.h>
|
|
|
|
|
#include <linux/f2fs_fs.h>
|
|
|
|
|
#include <linux/buffer_head.h>
|
|
|
|
|
#include <linux/mpage.h>
|
|
|
|
|
#include <linux/writeback.h>
|
|
|
|
|
#include <linux/backing-dev.h>
|
f2fs: expose f2fs_write_cache_pages
If there are gced dirty pages and normal dirty pages in the mapping
of one inode, we might writeback them alternately with discontinuous
block address, resulting in low performance.
This patch introduces f2fs_write_cache_pages with codes copied from
write_cache_pages in mm/page-writeback.c.
In this function, we refactor flow with two steps:
1) writeback all cold type pages.
2) writeback all non-cold type pages.
By using this method, f2fs will writeback dirty pages with the same
temperature in bunch mode, it makes writeouted block being with
more continuous address, so they can be merged as much as possible
in f2fs bio cache, and also it will reduce the chance of submiting
small IO from block layer.
Test environment: 8g nokia sd card (very old sd card, but it shows
better effect when testing with this patch, and with a 32g kingston
sd card, I didn't see much more improvement).
Test step:
1. touch testfile;
2. truncate -s 512K testfile;
3. write all pages with odd index;
4. trigger gc by ioctl;
5. write all pages with even index;
6. time fsync testfile.
before:
real 0m0.402s
user 0m0.000s
sys 0m0.000s
after:
real 0m0.143s
user 0m0.004s
sys 0m0.004s
Signed-off-by: Chao Yu <chao2.yu@samsung.com>
Signed-off-by: Jaegeuk Kim <jaegeuk@kernel.org>
2015-07-14 18:56:10 +08:00
|
|
|
#include <linux/pagevec.h>
|
2012-11-02 17:10:12 +09:00
|
|
|
#include <linux/blkdev.h>
|
|
|
|
|
#include <linux/bio.h>
|
2012-12-19 22:19:30 +01:00
|
|
|
#include <linux/prefetch.h>
|
2015-02-22 08:58:50 -08:00
|
|
|
#include <linux/uio.h>
|
2015-04-09 11:20:42 -07:00
|
|
|
#include <linux/cleancache.h>
|
2012-11-02 17:10:12 +09:00
|
|
|
|
|
|
|
|
#include "f2fs.h"
|
|
|
|
|
#include "node.h"
|
|
|
|
|
#include "segment.h"
|
2014-12-17 20:04:08 -08:00
|
|
|
#include "trace.h"
|
2013-04-23 16:38:02 +09:00
|
|
|
#include <trace/events/f2fs.h>
|
2012-11-02 17:10:12 +09:00
|
|
|
|
2015-07-20 15:29:37 +02:00
|
|
|
static void f2fs_read_end_io(struct bio *bio)
|
2013-11-30 12:51:14 +09:00
|
|
|
{
|
2014-01-30 11:19:05 -08:00
|
|
|
struct bio_vec *bvec;
|
|
|
|
|
int i;
|
2013-11-30 12:51:14 +09:00
|
|
|
|
2015-04-23 12:04:33 -07:00
|
|
|
if (f2fs_bio_encrypted(bio)) {
|
2015-07-20 15:29:37 +02:00
|
|
|
if (bio->bi_error) {
|
2015-04-23 12:04:33 -07:00
|
|
|
f2fs_release_crypto_ctx(bio->bi_private);
|
|
|
|
|
} else {
|
|
|
|
|
f2fs_end_io_crypto_work(bio->bi_private, bio);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2015-05-25 18:03:38 +08:00
|
|
|
bio_for_each_segment_all(bvec, bio, i) {
|
|
|
|
|
struct page *page = bvec->bv_page;
|
2015-04-09 11:20:42 -07:00
|
|
|
|
2015-07-20 15:29:37 +02:00
|
|
|
if (!bio->bi_error) {
|
2015-04-09 11:20:42 -07:00
|
|
|
SetPageUptodate(page);
|
|
|
|
|
} else {
|
|
|
|
|
ClearPageUptodate(page);
|
|
|
|
|
SetPageError(page);
|
|
|
|
|
}
|
|
|
|
|
unlock_page(page);
|
|
|
|
|
}
|
|
|
|
|
bio_put(bio);
|
|
|
|
|
}
|
|
|
|
|
|
2015-07-20 15:29:37 +02:00
|
|
|
static void f2fs_write_end_io(struct bio *bio)
|
2013-11-30 12:51:14 +09:00
|
|
|
{
|
2014-02-03 10:50:22 +09:00
|
|
|
struct f2fs_sb_info *sbi = bio->bi_private;
|
2014-01-30 11:19:05 -08:00
|
|
|
struct bio_vec *bvec;
|
|
|
|
|
int i;
|
2013-11-30 12:51:14 +09:00
|
|
|
|
2014-01-30 11:19:05 -08:00
|
|
|
bio_for_each_segment_all(bvec, bio, i) {
|
2013-11-30 12:51:14 +09:00
|
|
|
struct page *page = bvec->bv_page;
|
|
|
|
|
|
2015-04-23 12:04:33 -07:00
|
|
|
f2fs_restore_and_release_control_page(&page);
|
|
|
|
|
|
2015-07-20 15:29:37 +02:00
|
|
|
if (unlikely(bio->bi_error)) {
|
2014-08-11 18:37:46 -07:00
|
|
|
set_page_dirty(page);
|
2013-11-30 12:51:14 +09:00
|
|
|
set_bit(AS_EIO, &page->mapping->flags);
|
2014-01-24 09:42:16 +09:00
|
|
|
f2fs_stop_checkpoint(sbi);
|
2013-11-30 12:51:14 +09:00
|
|
|
}
|
|
|
|
|
end_page_writeback(page);
|
|
|
|
|
dec_page_count(sbi, F2FS_WRITEBACK);
|
2014-01-30 11:19:05 -08:00
|
|
|
}
|
2013-11-30 12:51:14 +09:00
|
|
|
|
|
|
|
|
if (!get_pages(sbi, F2FS_WRITEBACK) &&
|
|
|
|
|
!list_empty(&sbi->cp_wait.task_list))
|
|
|
|
|
wake_up(&sbi->cp_wait);
|
|
|
|
|
|
|
|
|
|
bio_put(bio);
|
|
|
|
|
}
|
|
|
|
|
|
2013-12-20 17:39:59 +08:00
|
|
|
/*
|
|
|
|
|
* Low-level block read/write IO operations.
|
|
|
|
|
*/
|
|
|
|
|
static struct bio *__bio_alloc(struct f2fs_sb_info *sbi, block_t blk_addr,
|
|
|
|
|
int npages, bool is_read)
|
|
|
|
|
{
|
|
|
|
|
struct bio *bio;
|
|
|
|
|
|
2015-08-14 11:43:56 -07:00
|
|
|
bio = f2fs_bio_alloc(npages);
|
2013-12-20 17:39:59 +08:00
|
|
|
|
|
|
|
|
bio->bi_bdev = sbi->sb->s_bdev;
|
2014-09-15 18:01:10 +08:00
|
|
|
bio->bi_iter.bi_sector = SECTOR_FROM_BLOCK(blk_addr);
|
2013-12-20 17:39:59 +08:00
|
|
|
bio->bi_end_io = is_read ? f2fs_read_end_io : f2fs_write_end_io;
|
2015-05-25 18:03:38 +08:00
|
|
|
bio->bi_private = is_read ? NULL : sbi;
|
2013-12-20 17:39:59 +08:00
|
|
|
|
|
|
|
|
return bio;
|
|
|
|
|
}
|
|
|
|
|
|
2013-12-11 13:54:01 +09:00
|
|
|
static void __submit_merged_bio(struct f2fs_bio_info *io)
|
2013-11-30 12:51:14 +09:00
|
|
|
{
|
2013-12-11 13:54:01 +09:00
|
|
|
struct f2fs_io_info *fio = &io->fio;
|
2013-11-30 12:51:14 +09:00
|
|
|
|
|
|
|
|
if (!io->bio)
|
|
|
|
|
return;
|
|
|
|
|
|
2014-10-29 14:37:22 -07:00
|
|
|
if (is_read_io(fio->rw))
|
2014-12-24 16:08:14 +08:00
|
|
|
trace_f2fs_submit_read_bio(io->sbi->sb, fio, io->bio);
|
2014-10-29 14:37:22 -07:00
|
|
|
else
|
2014-12-24 16:08:14 +08:00
|
|
|
trace_f2fs_submit_write_bio(io->sbi->sb, fio, io->bio);
|
2013-12-20 17:39:59 +08:00
|
|
|
|
2014-10-29 14:37:22 -07:00
|
|
|
submit_bio(fio->rw, io->bio);
|
2013-11-30 12:51:14 +09:00
|
|
|
io->bio = NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void f2fs_submit_merged_bio(struct f2fs_sb_info *sbi,
|
2013-12-11 13:54:01 +09:00
|
|
|
enum page_type type, int rw)
|
2013-11-30 12:51:14 +09:00
|
|
|
{
|
|
|
|
|
enum page_type btype = PAGE_TYPE_OF_BIO(type);
|
|
|
|
|
struct f2fs_bio_info *io;
|
|
|
|
|
|
|
|
|
|
io = is_read_io(rw) ? &sbi->read_io : &sbi->write_io[btype];
|
|
|
|
|
|
2014-03-22 14:57:23 +08:00
|
|
|
down_write(&io->io_rwsem);
|
2013-12-11 13:54:01 +09:00
|
|
|
|
|
|
|
|
/* change META to META_FLUSH in the checkpoint procedure */
|
|
|
|
|
if (type >= META_FLUSH) {
|
|
|
|
|
io->fio.type = META_FLUSH;
|
2014-07-23 09:57:31 -07:00
|
|
|
if (test_opt(sbi, NOBARRIER))
|
|
|
|
|
io->fio.rw = WRITE_FLUSH | REQ_META | REQ_PRIO;
|
|
|
|
|
else
|
|
|
|
|
io->fio.rw = WRITE_FLUSH_FUA | REQ_META | REQ_PRIO;
|
2013-12-11 13:54:01 +09:00
|
|
|
}
|
|
|
|
|
__submit_merged_bio(io);
|
2014-03-22 14:57:23 +08:00
|
|
|
up_write(&io->io_rwsem);
|
2013-11-30 12:51:14 +09:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Fill the locked page with data located in the block address.
|
|
|
|
|
* Return unlocked page.
|
|
|
|
|
*/
|
2015-04-23 14:38:15 -07:00
|
|
|
int f2fs_submit_page_bio(struct f2fs_io_info *fio)
|
2013-11-30 12:51:14 +09:00
|
|
|
{
|
|
|
|
|
struct bio *bio;
|
2015-04-23 12:04:33 -07:00
|
|
|
struct page *page = fio->encrypted_page ? fio->encrypted_page : fio->page;
|
2013-11-30 12:51:14 +09:00
|
|
|
|
f2fs: fix to do sanity check with block address in main area
commit c9b60788fc760d136211853f10ce73dc152d1f4a upstream.
This patch add to do sanity check with below field:
- cp_pack_total_block_count
- blkaddr of data/node
- extent info
- Overview
BUG() in verify_block_addr() when writing to a corrupted f2fs image
- Reproduce (4.18 upstream kernel)
- POC (poc.c)
static void activity(char *mpoint) {
char *foo_bar_baz;
int err;
static int buf[8192];
memset(buf, 0, sizeof(buf));
err = asprintf(&foo_bar_baz, "%s/foo/bar/baz", mpoint);
int fd = open(foo_bar_baz, O_RDWR | O_TRUNC, 0777);
if (fd >= 0) {
write(fd, (char *)buf, sizeof(buf));
fdatasync(fd);
close(fd);
}
}
int main(int argc, char *argv[]) {
activity(argv[1]);
return 0;
}
- Kernel message
[ 689.349473] F2FS-fs (loop0): Mounted with checkpoint version = 3
[ 699.728662] WARNING: CPU: 0 PID: 1309 at fs/f2fs/segment.c:2860 f2fs_inplace_write_data+0x232/0x240
[ 699.728670] Modules linked in: snd_hda_codec_generic snd_hda_intel snd_hda_codec snd_hwdep snd_hda_core snd_pcm snd_timer snd mac_hid i2c_piix4 soundcore ib_iser rdma_cm iw_cm ib_cm ib_core iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi raid10 raid456 async_raid6_recov async_memcpy async_pq async_xor async_tx raid1 raid0 multipath linear 8139too crct10dif_pclmul crc32_pclmul qxl drm_kms_helper syscopyarea aesni_intel sysfillrect sysimgblt fb_sys_fops ttm drm aes_x86_64 crypto_simd cryptd 8139cp glue_helper mii pata_acpi floppy
[ 699.729056] CPU: 0 PID: 1309 Comm: a.out Not tainted 4.18.0-rc1+ #4
[ 699.729064] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Ubuntu-1.8.2-1ubuntu1 04/01/2014
[ 699.729074] RIP: 0010:f2fs_inplace_write_data+0x232/0x240
[ 699.729076] Code: ff e9 cf fe ff ff 49 8d 7d 10 e8 39 45 ad ff 4d 8b 7d 10 be 04 00 00 00 49 8d 7f 48 e8 07 49 ad ff 45 8b 7f 48 e9 fb fe ff ff <0f> 0b f0 41 80 4d 48 04 e9 65 fe ff ff 90 66 66 66 66 90 55 48 8d
[ 699.729130] RSP: 0018:ffff8801f43af568 EFLAGS: 00010202
[ 699.729139] RAX: 000000000000003f RBX: ffff8801f43af7b8 RCX: ffffffffb88c9113
[ 699.729142] RDX: 0000000000000003 RSI: dffffc0000000000 RDI: ffff8802024e5540
[ 699.729144] RBP: ffff8801f43af590 R08: 0000000000000009 R09: ffffffffffffffe8
[ 699.729147] R10: 0000000000000001 R11: ffffed0039b0596a R12: ffff8802024e5540
[ 699.729149] R13: ffff8801f0335500 R14: ffff8801e3e7a700 R15: ffff8801e1ee4450
[ 699.729154] FS: 00007f9bf97f5700(0000) GS:ffff8801f6e00000(0000) knlGS:0000000000000000
[ 699.729156] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 699.729159] CR2: 00007f9bf925d170 CR3: 00000001f0c34000 CR4: 00000000000006f0
[ 699.729171] Call Trace:
[ 699.729192] f2fs_do_write_data_page+0x2e2/0xe00
[ 699.729203] ? f2fs_should_update_outplace+0xd0/0xd0
[ 699.729238] ? memcg_drain_all_list_lrus+0x280/0x280
[ 699.729269] ? __radix_tree_replace+0xa3/0x120
[ 699.729276] __write_data_page+0x5c7/0xe30
[ 699.729291] ? kasan_check_read+0x11/0x20
[ 699.729310] ? page_mapped+0x8a/0x110
[ 699.729321] ? page_mkclean+0xe9/0x160
[ 699.729327] ? f2fs_do_write_data_page+0xe00/0xe00
[ 699.729331] ? invalid_page_referenced_vma+0x130/0x130
[ 699.729345] ? clear_page_dirty_for_io+0x332/0x450
[ 699.729351] f2fs_write_cache_pages+0x4ca/0x860
[ 699.729358] ? __write_data_page+0xe30/0xe30
[ 699.729374] ? percpu_counter_add_batch+0x22/0xa0
[ 699.729380] ? kasan_check_write+0x14/0x20
[ 699.729391] ? _raw_spin_lock+0x17/0x40
[ 699.729403] ? f2fs_mark_inode_dirty_sync.part.18+0x16/0x30
[ 699.729413] ? iov_iter_advance+0x113/0x640
[ 699.729418] ? f2fs_write_end+0x133/0x2e0
[ 699.729423] ? balance_dirty_pages_ratelimited+0x239/0x640
[ 699.729428] f2fs_write_data_pages+0x329/0x520
[ 699.729433] ? generic_perform_write+0x250/0x320
[ 699.729438] ? f2fs_write_cache_pages+0x860/0x860
[ 699.729454] ? current_time+0x110/0x110
[ 699.729459] ? f2fs_preallocate_blocks+0x1ef/0x370
[ 699.729464] do_writepages+0x37/0xb0
[ 699.729468] ? f2fs_write_cache_pages+0x860/0x860
[ 699.729472] ? do_writepages+0x37/0xb0
[ 699.729478] __filemap_fdatawrite_range+0x19a/0x1f0
[ 699.729483] ? delete_from_page_cache_batch+0x4e0/0x4e0
[ 699.729496] ? __vfs_write+0x2b2/0x410
[ 699.729501] file_write_and_wait_range+0x66/0xb0
[ 699.729506] f2fs_do_sync_file+0x1f9/0xd90
[ 699.729511] ? truncate_partial_data_page+0x290/0x290
[ 699.729521] ? __sb_end_write+0x30/0x50
[ 699.729526] ? vfs_write+0x20f/0x260
[ 699.729530] f2fs_sync_file+0x9a/0xb0
[ 699.729534] ? f2fs_do_sync_file+0xd90/0xd90
[ 699.729548] vfs_fsync_range+0x68/0x100
[ 699.729554] ? __fget_light+0xc9/0xe0
[ 699.729558] do_fsync+0x3d/0x70
[ 699.729562] __x64_sys_fdatasync+0x24/0x30
[ 699.729585] do_syscall_64+0x78/0x170
[ 699.729595] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 699.729613] RIP: 0033:0x7f9bf930d800
[ 699.729615] Code: 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 3d 49 bf 2c 00 00 75 10 b8 4b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 be 78 01 00 48 89 04 24
[ 699.729668] RSP: 002b:00007ffee3606c68 EFLAGS: 00000246 ORIG_RAX: 000000000000004b
[ 699.729673] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9bf930d800
[ 699.729675] RDX: 0000000000008000 RSI: 00000000006010a0 RDI: 0000000000000003
[ 699.729678] RBP: 00007ffee3606ca0 R08: 0000000001503010 R09: 0000000000000000
[ 699.729680] R10: 00000000000002e8 R11: 0000000000000246 R12: 0000000000400610
[ 699.729683] R13: 00007ffee3606da0 R14: 0000000000000000 R15: 0000000000000000
[ 699.729687] ---[ end trace 4ce02f25ff7d3df5 ]---
[ 699.729782] ------------[ cut here ]------------
[ 699.729785] kernel BUG at fs/f2fs/segment.h:654!
[ 699.731055] invalid opcode: 0000 [#1] SMP KASAN PTI
[ 699.732104] CPU: 0 PID: 1309 Comm: a.out Tainted: G W 4.18.0-rc1+ #4
[ 699.733684] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Ubuntu-1.8.2-1ubuntu1 04/01/2014
[ 699.735611] RIP: 0010:f2fs_submit_page_bio+0x29b/0x730
[ 699.736649] Code: 54 49 8d bd 18 04 00 00 e8 b2 59 af ff 41 8b 8d 18 04 00 00 8b 45 b8 41 d3 e6 44 01 f0 4c 8d 73 14 41 39 c7 0f 82 37 fe ff ff <0f> 0b 65 8b 05 2c 04 77 47 89 c0 48 0f a3 05 52 c1 d5 01 0f 92 c0
[ 699.740524] RSP: 0018:ffff8801f43af508 EFLAGS: 00010283
[ 699.741573] RAX: 0000000000000000 RBX: ffff8801f43af7b8 RCX: ffffffffb88a7cef
[ 699.743006] RDX: 0000000000000007 RSI: dffffc0000000000 RDI: ffff8801e3e7a64c
[ 699.744426] RBP: ffff8801f43af558 R08: ffffed003e066b55 R09: ffffed003e066b55
[ 699.745833] R10: 0000000000000001 R11: ffffed003e066b54 R12: ffffea0007876940
[ 699.747256] R13: ffff8801f0335500 R14: ffff8801e3e7a600 R15: 0000000000000001
[ 699.748683] FS: 00007f9bf97f5700(0000) GS:ffff8801f6e00000(0000) knlGS:0000000000000000
[ 699.750293] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 699.751462] CR2: 00007f9bf925d170 CR3: 00000001f0c34000 CR4: 00000000000006f0
[ 699.752874] Call Trace:
[ 699.753386] ? f2fs_inplace_write_data+0x93/0x240
[ 699.754341] f2fs_inplace_write_data+0xd2/0x240
[ 699.755271] f2fs_do_write_data_page+0x2e2/0xe00
[ 699.756214] ? f2fs_should_update_outplace+0xd0/0xd0
[ 699.757215] ? memcg_drain_all_list_lrus+0x280/0x280
[ 699.758209] ? __radix_tree_replace+0xa3/0x120
[ 699.759164] __write_data_page+0x5c7/0xe30
[ 699.760002] ? kasan_check_read+0x11/0x20
[ 699.760823] ? page_mapped+0x8a/0x110
[ 699.761573] ? page_mkclean+0xe9/0x160
[ 699.762345] ? f2fs_do_write_data_page+0xe00/0xe00
[ 699.763332] ? invalid_page_referenced_vma+0x130/0x130
[ 699.764374] ? clear_page_dirty_for_io+0x332/0x450
[ 699.765347] f2fs_write_cache_pages+0x4ca/0x860
[ 699.766276] ? __write_data_page+0xe30/0xe30
[ 699.767161] ? percpu_counter_add_batch+0x22/0xa0
[ 699.768112] ? kasan_check_write+0x14/0x20
[ 699.768951] ? _raw_spin_lock+0x17/0x40
[ 699.769739] ? f2fs_mark_inode_dirty_sync.part.18+0x16/0x30
[ 699.770885] ? iov_iter_advance+0x113/0x640
[ 699.771743] ? f2fs_write_end+0x133/0x2e0
[ 699.772569] ? balance_dirty_pages_ratelimited+0x239/0x640
[ 699.773680] f2fs_write_data_pages+0x329/0x520
[ 699.774603] ? generic_perform_write+0x250/0x320
[ 699.775544] ? f2fs_write_cache_pages+0x860/0x860
[ 699.776510] ? current_time+0x110/0x110
[ 699.777299] ? f2fs_preallocate_blocks+0x1ef/0x370
[ 699.778279] do_writepages+0x37/0xb0
[ 699.779026] ? f2fs_write_cache_pages+0x860/0x860
[ 699.779978] ? do_writepages+0x37/0xb0
[ 699.780755] __filemap_fdatawrite_range+0x19a/0x1f0
[ 699.781746] ? delete_from_page_cache_batch+0x4e0/0x4e0
[ 699.782820] ? __vfs_write+0x2b2/0x410
[ 699.783597] file_write_and_wait_range+0x66/0xb0
[ 699.784540] f2fs_do_sync_file+0x1f9/0xd90
[ 699.785381] ? truncate_partial_data_page+0x290/0x290
[ 699.786415] ? __sb_end_write+0x30/0x50
[ 699.787204] ? vfs_write+0x20f/0x260
[ 699.787941] f2fs_sync_file+0x9a/0xb0
[ 699.788694] ? f2fs_do_sync_file+0xd90/0xd90
[ 699.789572] vfs_fsync_range+0x68/0x100
[ 699.790360] ? __fget_light+0xc9/0xe0
[ 699.791128] do_fsync+0x3d/0x70
[ 699.791779] __x64_sys_fdatasync+0x24/0x30
[ 699.792614] do_syscall_64+0x78/0x170
[ 699.793371] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 699.794406] RIP: 0033:0x7f9bf930d800
[ 699.795134] Code: 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 3d 49 bf 2c 00 00 75 10 b8 4b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 be 78 01 00 48 89 04 24
[ 699.798960] RSP: 002b:00007ffee3606c68 EFLAGS: 00000246 ORIG_RAX: 000000000000004b
[ 699.800483] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9bf930d800
[ 699.801923] RDX: 0000000000008000 RSI: 00000000006010a0 RDI: 0000000000000003
[ 699.803373] RBP: 00007ffee3606ca0 R08: 0000000001503010 R09: 0000000000000000
[ 699.804798] R10: 00000000000002e8 R11: 0000000000000246 R12: 0000000000400610
[ 699.806233] R13: 00007ffee3606da0 R14: 0000000000000000 R15: 0000000000000000
[ 699.807667] Modules linked in: snd_hda_codec_generic snd_hda_intel snd_hda_codec snd_hwdep snd_hda_core snd_pcm snd_timer snd mac_hid i2c_piix4 soundcore ib_iser rdma_cm iw_cm ib_cm ib_core iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi raid10 raid456 async_raid6_recov async_memcpy async_pq async_xor async_tx raid1 raid0 multipath linear 8139too crct10dif_pclmul crc32_pclmul qxl drm_kms_helper syscopyarea aesni_intel sysfillrect sysimgblt fb_sys_fops ttm drm aes_x86_64 crypto_simd cryptd 8139cp glue_helper mii pata_acpi floppy
[ 699.817079] ---[ end trace 4ce02f25ff7d3df6 ]---
[ 699.818068] RIP: 0010:f2fs_submit_page_bio+0x29b/0x730
[ 699.819114] Code: 54 49 8d bd 18 04 00 00 e8 b2 59 af ff 41 8b 8d 18 04 00 00 8b 45 b8 41 d3 e6 44 01 f0 4c 8d 73 14 41 39 c7 0f 82 37 fe ff ff <0f> 0b 65 8b 05 2c 04 77 47 89 c0 48 0f a3 05 52 c1 d5 01 0f 92 c0
[ 699.822919] RSP: 0018:ffff8801f43af508 EFLAGS: 00010283
[ 699.823977] RAX: 0000000000000000 RBX: ffff8801f43af7b8 RCX: ffffffffb88a7cef
[ 699.825436] RDX: 0000000000000007 RSI: dffffc0000000000 RDI: ffff8801e3e7a64c
[ 699.826881] RBP: ffff8801f43af558 R08: ffffed003e066b55 R09: ffffed003e066b55
[ 699.828292] R10: 0000000000000001 R11: ffffed003e066b54 R12: ffffea0007876940
[ 699.829750] R13: ffff8801f0335500 R14: ffff8801e3e7a600 R15: 0000000000000001
[ 699.831192] FS: 00007f9bf97f5700(0000) GS:ffff8801f6e00000(0000) knlGS:0000000000000000
[ 699.832793] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 699.833981] CR2: 00007f9bf925d170 CR3: 00000001f0c34000 CR4: 00000000000006f0
[ 699.835556] ==================================================================
[ 699.837029] BUG: KASAN: stack-out-of-bounds in update_stack_state+0x38c/0x3e0
[ 699.838462] Read of size 8 at addr ffff8801f43af970 by task a.out/1309
[ 699.840086] CPU: 0 PID: 1309 Comm: a.out Tainted: G D W 4.18.0-rc1+ #4
[ 699.841603] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Ubuntu-1.8.2-1ubuntu1 04/01/2014
[ 699.843475] Call Trace:
[ 699.843982] dump_stack+0x7b/0xb5
[ 699.844661] print_address_description+0x70/0x290
[ 699.845607] kasan_report+0x291/0x390
[ 699.846351] ? update_stack_state+0x38c/0x3e0
[ 699.853831] __asan_load8+0x54/0x90
[ 699.854569] update_stack_state+0x38c/0x3e0
[ 699.855428] ? __read_once_size_nocheck.constprop.7+0x20/0x20
[ 699.856601] ? __save_stack_trace+0x5e/0x100
[ 699.857476] unwind_next_frame.part.5+0x18e/0x490
[ 699.858448] ? unwind_dump+0x290/0x290
[ 699.859217] ? clear_page_dirty_for_io+0x332/0x450
[ 699.860185] __unwind_start+0x106/0x190
[ 699.860974] __save_stack_trace+0x5e/0x100
[ 699.861808] ? __save_stack_trace+0x5e/0x100
[ 699.862691] ? unlink_anon_vmas+0xba/0x2c0
[ 699.863525] save_stack_trace+0x1f/0x30
[ 699.864312] save_stack+0x46/0xd0
[ 699.864993] ? __alloc_pages_slowpath+0x1420/0x1420
[ 699.865990] ? flush_tlb_mm_range+0x15e/0x220
[ 699.866889] ? kasan_check_write+0x14/0x20
[ 699.867724] ? __dec_node_state+0x92/0xb0
[ 699.868543] ? lock_page_memcg+0x85/0xf0
[ 699.869350] ? unlock_page_memcg+0x16/0x80
[ 699.870185] ? page_remove_rmap+0x198/0x520
[ 699.871048] ? mark_page_accessed+0x133/0x200
[ 699.871930] ? _cond_resched+0x1a/0x50
[ 699.872700] ? unmap_page_range+0xcd4/0xe50
[ 699.873551] ? rb_next+0x58/0x80
[ 699.874217] ? rb_next+0x58/0x80
[ 699.874895] __kasan_slab_free+0x13c/0x1a0
[ 699.875734] ? unlink_anon_vmas+0xba/0x2c0
[ 699.876563] kasan_slab_free+0xe/0x10
[ 699.877315] kmem_cache_free+0x89/0x1e0
[ 699.878095] unlink_anon_vmas+0xba/0x2c0
[ 699.878913] free_pgtables+0x101/0x1b0
[ 699.879677] exit_mmap+0x146/0x2a0
[ 699.880378] ? __ia32_sys_munmap+0x50/0x50
[ 699.881214] ? kasan_check_read+0x11/0x20
[ 699.882052] ? mm_update_next_owner+0x322/0x380
[ 699.882985] mmput+0x8b/0x1d0
[ 699.883602] do_exit+0x43a/0x1390
[ 699.884288] ? mm_update_next_owner+0x380/0x380
[ 699.885212] ? f2fs_sync_file+0x9a/0xb0
[ 699.885995] ? f2fs_do_sync_file+0xd90/0xd90
[ 699.886877] ? vfs_fsync_range+0x68/0x100
[ 699.887694] ? __fget_light+0xc9/0xe0
[ 699.888442] ? do_fsync+0x3d/0x70
[ 699.889118] ? __x64_sys_fdatasync+0x24/0x30
[ 699.889996] rewind_stack_do_exit+0x17/0x20
[ 699.890860] RIP: 0033:0x7f9bf930d800
[ 699.891585] Code: Bad RIP value.
[ 699.892268] RSP: 002b:00007ffee3606c68 EFLAGS: 00000246 ORIG_RAX: 000000000000004b
[ 699.893781] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9bf930d800
[ 699.895220] RDX: 0000000000008000 RSI: 00000000006010a0 RDI: 0000000000000003
[ 699.896643] RBP: 00007ffee3606ca0 R08: 0000000001503010 R09: 0000000000000000
[ 699.898069] R10: 00000000000002e8 R11: 0000000000000246 R12: 0000000000400610
[ 699.899505] R13: 00007ffee3606da0 R14: 0000000000000000 R15: 0000000000000000
[ 699.901241] The buggy address belongs to the page:
[ 699.902215] page:ffffea0007d0ebc0 count:0 mapcount:0 mapping:0000000000000000 index:0x0
[ 699.903811] flags: 0x2ffff0000000000()
[ 699.904585] raw: 02ffff0000000000 0000000000000000 ffffffff07d00101 0000000000000000
[ 699.906125] raw: 0000000000000000 0000000000240000 00000000ffffffff 0000000000000000
[ 699.907673] page dumped because: kasan: bad access detected
[ 699.909108] Memory state around the buggy address:
[ 699.910077] ffff8801f43af800: 00 f1 f1 f1 f1 00 f4 f4 f4 f3 f3 f3 f3 00 00 00
[ 699.911528] ffff8801f43af880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 699.912953] >ffff8801f43af900: 00 00 00 00 00 00 00 00 f1 01 f4 f4 f4 f2 f2 f2
[ 699.914392] ^
[ 699.915758] ffff8801f43af980: f2 00 f4 f4 00 00 00 00 f2 00 00 00 00 00 00 00
[ 699.917193] ffff8801f43afa00: 00 00 00 00 00 00 00 00 00 f3 f3 f3 00 00 00 00
[ 699.918634] ==================================================================
- Location
https://elixir.bootlin.com/linux/v4.18-rc1/source/fs/f2fs/segment.h#L644
Reported-by Wen Xu <wen.xu@gatech.edu>
Signed-off-by: Chao Yu <yuchao0@huawei.com>
Signed-off-by: Jaegeuk Kim <jaegeuk@kernel.org>
[bwh: Backported to 4.4:
- CoW is not implemented so check f2fs_io_info::blk_addr instead of
f2fs_io_info::{old,new}_blkaddr
- Operation code is f2fs_io_info::rw instead of f2fs_io_info::op
- f2fs_stop_checkpoint() only takes one argument
- In f2fs_map_blocks(), validate dn.data_blkaddr instead of blkaddr
- Adjust context]
Signed-off-by: Ben Hutchings <ben.hutchings@codethink.co.uk>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2018-08-01 19:13:44 +08:00
|
|
|
if (!f2fs_is_valid_blkaddr(fio->sbi, fio->blk_addr,
|
|
|
|
|
__is_meta_io(fio) ? META_GENERIC : DATA_GENERIC))
|
|
|
|
|
return -EFAULT;
|
|
|
|
|
|
2014-12-24 16:08:14 +08:00
|
|
|
trace_f2fs_submit_page_bio(page, fio);
|
2015-04-23 14:38:15 -07:00
|
|
|
f2fs_trace_ios(fio, 0);
|
2013-11-30 12:51:14 +09:00
|
|
|
|
|
|
|
|
/* Allocate a new bio */
|
2015-04-23 14:38:15 -07:00
|
|
|
bio = __bio_alloc(fio->sbi, fio->blk_addr, 1, is_read_io(fio->rw));
|
2013-11-30 12:51:14 +09:00
|
|
|
|
|
|
|
|
if (bio_add_page(bio, page, PAGE_CACHE_SIZE, 0) < PAGE_CACHE_SIZE) {
|
|
|
|
|
bio_put(bio);
|
|
|
|
|
return -EFAULT;
|
|
|
|
|
}
|
|
|
|
|
|
2014-12-17 19:33:13 -08:00
|
|
|
submit_bio(fio->rw, bio);
|
2013-11-30 12:51:14 +09:00
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2015-04-23 14:38:15 -07:00
|
|
|
void f2fs_submit_page_mbio(struct f2fs_io_info *fio)
|
2013-11-30 12:51:14 +09:00
|
|
|
{
|
2015-04-23 14:38:15 -07:00
|
|
|
struct f2fs_sb_info *sbi = fio->sbi;
|
2013-12-11 13:54:01 +09:00
|
|
|
enum page_type btype = PAGE_TYPE_OF_BIO(fio->type);
|
2013-11-30 12:51:14 +09:00
|
|
|
struct f2fs_bio_info *io;
|
2013-12-20 17:39:59 +08:00
|
|
|
bool is_read = is_read_io(fio->rw);
|
2015-04-23 12:04:33 -07:00
|
|
|
struct page *bio_page;
|
2013-11-30 12:51:14 +09:00
|
|
|
|
2013-12-20 17:39:59 +08:00
|
|
|
io = is_read ? &sbi->read_io : &sbi->write_io[btype];
|
2013-11-30 12:51:14 +09:00
|
|
|
|
2018-03-08 16:29:13 +08:00
|
|
|
verify_block_addr(fio, fio->blk_addr);
|
2013-11-30 12:51:14 +09:00
|
|
|
|
2014-03-22 14:57:23 +08:00
|
|
|
down_write(&io->io_rwsem);
|
2013-11-30 12:51:14 +09:00
|
|
|
|
2013-12-20 17:39:59 +08:00
|
|
|
if (!is_read)
|
2013-11-30 12:51:14 +09:00
|
|
|
inc_page_count(sbi, F2FS_WRITEBACK);
|
|
|
|
|
|
2014-12-17 19:33:13 -08:00
|
|
|
if (io->bio && (io->last_block_in_bio != fio->blk_addr - 1 ||
|
2013-12-11 13:54:01 +09:00
|
|
|
io->fio.rw != fio->rw))
|
|
|
|
|
__submit_merged_bio(io);
|
2013-11-30 12:51:14 +09:00
|
|
|
alloc_new:
|
|
|
|
|
if (io->bio == NULL) {
|
2014-09-22 16:21:07 -07:00
|
|
|
int bio_blocks = MAX_BIO_BLOCKS(sbi);
|
2013-12-20 17:39:59 +08:00
|
|
|
|
2014-12-17 19:33:13 -08:00
|
|
|
io->bio = __bio_alloc(sbi, fio->blk_addr, bio_blocks, is_read);
|
2013-12-11 13:54:01 +09:00
|
|
|
io->fio = *fio;
|
2013-11-30 12:51:14 +09:00
|
|
|
}
|
|
|
|
|
|
2015-04-23 12:04:33 -07:00
|
|
|
bio_page = fio->encrypted_page ? fio->encrypted_page : fio->page;
|
|
|
|
|
|
|
|
|
|
if (bio_add_page(io->bio, bio_page, PAGE_CACHE_SIZE, 0) <
|
2013-11-30 12:51:14 +09:00
|
|
|
PAGE_CACHE_SIZE) {
|
2013-12-11 13:54:01 +09:00
|
|
|
__submit_merged_bio(io);
|
2013-11-30 12:51:14 +09:00
|
|
|
goto alloc_new;
|
|
|
|
|
}
|
|
|
|
|
|
2014-12-17 19:33:13 -08:00
|
|
|
io->last_block_in_bio = fio->blk_addr;
|
2015-04-23 14:38:15 -07:00
|
|
|
f2fs_trace_ios(fio, 0);
|
2013-11-30 12:51:14 +09:00
|
|
|
|
2014-03-22 14:57:23 +08:00
|
|
|
up_write(&io->io_rwsem);
|
2015-04-23 14:38:15 -07:00
|
|
|
trace_f2fs_submit_page_mbio(fio->page, fio);
|
2013-11-30 12:51:14 +09:00
|
|
|
}
|
|
|
|
|
|
2012-11-29 13:28:09 +09:00
|
|
|
/*
|
2012-11-02 17:10:12 +09:00
|
|
|
* Lock ordering for the change of data block address:
|
|
|
|
|
* ->data_page
|
|
|
|
|
* ->node_page
|
|
|
|
|
* update block addresses in the node page
|
|
|
|
|
*/
|
2015-03-19 19:23:32 +08:00
|
|
|
void set_data_blkaddr(struct dnode_of_data *dn)
|
2012-11-02 17:10:12 +09:00
|
|
|
{
|
|
|
|
|
struct f2fs_node *rn;
|
|
|
|
|
__le32 *addr_array;
|
|
|
|
|
struct page *node_page = dn->node_page;
|
|
|
|
|
unsigned int ofs_in_node = dn->ofs_in_node;
|
|
|
|
|
|
2014-01-10 07:26:14 +00:00
|
|
|
f2fs_wait_on_page_writeback(node_page, NODE);
|
2012-11-02 17:10:12 +09:00
|
|
|
|
2013-07-15 17:57:38 +08:00
|
|
|
rn = F2FS_NODE(node_page);
|
2012-11-02 17:10:12 +09:00
|
|
|
|
|
|
|
|
/* Get physical address of data block */
|
|
|
|
|
addr_array = blkaddr_in_node(rn);
|
2014-12-30 22:57:55 -08:00
|
|
|
addr_array[ofs_in_node] = cpu_to_le32(dn->data_blkaddr);
|
2012-11-02 17:10:12 +09:00
|
|
|
set_page_dirty(node_page);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int reserve_new_block(struct dnode_of_data *dn)
|
|
|
|
|
{
|
2014-09-02 15:31:18 -07:00
|
|
|
struct f2fs_sb_info *sbi = F2FS_I_SB(dn->inode);
|
2012-11-02 17:10:12 +09:00
|
|
|
|
2013-12-06 15:00:58 +09:00
|
|
|
if (unlikely(is_inode_flag_set(F2FS_I(dn->inode), FI_NO_ALLOC)))
|
2012-11-02 17:10:12 +09:00
|
|
|
return -EPERM;
|
2013-12-05 17:15:22 +08:00
|
|
|
if (unlikely(!inc_valid_block_count(sbi, dn->inode, 1)))
|
2012-11-02 17:10:12 +09:00
|
|
|
return -ENOSPC;
|
|
|
|
|
|
2013-04-23 17:00:52 +09:00
|
|
|
trace_f2fs_reserve_new_block(dn->inode, dn->nid, dn->ofs_in_node);
|
|
|
|
|
|
2012-11-02 17:10:12 +09:00
|
|
|
dn->data_blkaddr = NEW_ADDR;
|
2015-03-19 19:23:32 +08:00
|
|
|
set_data_blkaddr(dn);
|
2014-01-21 13:32:12 +09:00
|
|
|
mark_inode_dirty(dn->inode);
|
2012-11-02 17:10:12 +09:00
|
|
|
sync_inode_page(dn);
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2013-11-10 23:13:18 +08:00
|
|
|
int f2fs_reserve_block(struct dnode_of_data *dn, pgoff_t index)
|
|
|
|
|
{
|
|
|
|
|
bool need_put = dn->inode_page ? false : true;
|
|
|
|
|
int err;
|
|
|
|
|
|
|
|
|
|
err = get_dnode_of_data(dn, index, ALLOC_NODE);
|
|
|
|
|
if (err)
|
|
|
|
|
return err;
|
2013-12-27 17:04:17 +09:00
|
|
|
|
2013-11-10 23:13:18 +08:00
|
|
|
if (dn->data_blkaddr == NULL_ADDR)
|
|
|
|
|
err = reserve_new_block(dn);
|
2013-12-27 17:04:17 +09:00
|
|
|
if (err || need_put)
|
2013-11-10 23:13:18 +08:00
|
|
|
f2fs_put_dnode(dn);
|
|
|
|
|
return err;
|
|
|
|
|
}
|
|
|
|
|
|
2015-08-05 15:52:16 +08:00
|
|
|
int f2fs_get_block(struct dnode_of_data *dn, pgoff_t index)
|
2012-11-02 17:10:12 +09:00
|
|
|
{
|
2015-03-19 19:26:02 +08:00
|
|
|
struct extent_info ei;
|
2015-08-05 15:52:16 +08:00
|
|
|
struct inode *inode = dn->inode;
|
2015-03-19 19:26:02 +08:00
|
|
|
|
2015-08-05 15:52:16 +08:00
|
|
|
if (f2fs_lookup_extent_cache(inode, index, &ei)) {
|
|
|
|
|
dn->data_blkaddr = ei.blk + index - ei.fofs;
|
|
|
|
|
return 0;
|
2015-02-05 17:54:31 +08:00
|
|
|
}
|
2015-03-19 19:26:02 +08:00
|
|
|
|
2015-08-05 15:52:16 +08:00
|
|
|
return f2fs_reserve_block(dn, index);
|
2012-11-02 17:10:12 +09:00
|
|
|
}
|
|
|
|
|
|
2015-10-09 15:11:38 -07:00
|
|
|
struct page *get_read_data_page(struct inode *inode, pgoff_t index,
|
|
|
|
|
int rw, bool for_write)
|
2012-11-02 17:10:12 +09:00
|
|
|
{
|
|
|
|
|
struct address_space *mapping = inode->i_mapping;
|
|
|
|
|
struct dnode_of_data dn;
|
|
|
|
|
struct page *page;
|
2015-02-05 18:03:40 +08:00
|
|
|
struct extent_info ei;
|
2012-11-02 17:10:12 +09:00
|
|
|
int err;
|
2014-12-17 19:33:13 -08:00
|
|
|
struct f2fs_io_info fio = {
|
2015-04-23 14:38:15 -07:00
|
|
|
.sbi = F2FS_I_SB(inode),
|
2014-12-17 19:33:13 -08:00
|
|
|
.type = DATA,
|
2015-04-30 17:00:33 -07:00
|
|
|
.rw = rw,
|
2015-04-23 12:04:33 -07:00
|
|
|
.encrypted_page = NULL,
|
2014-12-17 19:33:13 -08:00
|
|
|
};
|
2012-11-02 17:10:12 +09:00
|
|
|
|
2015-04-23 12:04:33 -07:00
|
|
|
if (f2fs_encrypted_inode(inode) && S_ISREG(inode->i_mode))
|
|
|
|
|
return read_mapping_page(mapping, index, NULL);
|
|
|
|
|
|
2015-10-09 15:11:38 -07:00
|
|
|
page = f2fs_grab_cache_page(mapping, index, for_write);
|
2013-05-13 08:38:35 +09:00
|
|
|
if (!page)
|
|
|
|
|
return ERR_PTR(-ENOMEM);
|
|
|
|
|
|
2015-02-05 18:03:40 +08:00
|
|
|
if (f2fs_lookup_extent_cache(inode, index, &ei)) {
|
|
|
|
|
dn.data_blkaddr = ei.blk + index - ei.fofs;
|
|
|
|
|
goto got_it;
|
|
|
|
|
}
|
|
|
|
|
|
2012-11-02 17:10:12 +09:00
|
|
|
set_new_dnode(&dn, inode, NULL, NULL, 0);
|
2013-02-26 13:10:46 +09:00
|
|
|
err = get_dnode_of_data(&dn, index, LOOKUP_NODE);
|
2015-07-15 13:08:21 -07:00
|
|
|
if (err)
|
|
|
|
|
goto put_err;
|
2012-11-02 17:10:12 +09:00
|
|
|
f2fs_put_dnode(&dn);
|
|
|
|
|
|
2013-12-06 15:00:58 +09:00
|
|
|
if (unlikely(dn.data_blkaddr == NULL_ADDR)) {
|
2015-07-15 13:08:21 -07:00
|
|
|
err = -ENOENT;
|
|
|
|
|
goto put_err;
|
2013-05-13 08:38:35 +09:00
|
|
|
}
|
2015-02-05 18:03:40 +08:00
|
|
|
got_it:
|
2015-04-30 17:00:33 -07:00
|
|
|
if (PageUptodate(page)) {
|
|
|
|
|
unlock_page(page);
|
2012-11-02 17:10:12 +09:00
|
|
|
return page;
|
2015-04-30 17:00:33 -07:00
|
|
|
}
|
2012-11-02 17:10:12 +09:00
|
|
|
|
2013-08-20 19:13:07 +09:00
|
|
|
/*
|
|
|
|
|
* A new dentry page is allocated but not able to be written, since its
|
|
|
|
|
* new inode page couldn't be allocated due to -ENOSPC.
|
|
|
|
|
* In such the case, its blkaddr can be remained as NEW_ADDR.
|
|
|
|
|
* see, f2fs_add_link -> get_new_data_page -> init_inode_metadata.
|
|
|
|
|
*/
|
|
|
|
|
if (dn.data_blkaddr == NEW_ADDR) {
|
|
|
|
|
zero_user_segment(page, 0, PAGE_CACHE_SIZE);
|
|
|
|
|
SetPageUptodate(page);
|
2015-04-30 17:00:33 -07:00
|
|
|
unlock_page(page);
|
2013-08-20 19:13:07 +09:00
|
|
|
return page;
|
|
|
|
|
}
|
2012-11-02 17:10:12 +09:00
|
|
|
|
2014-12-17 19:33:13 -08:00
|
|
|
fio.blk_addr = dn.data_blkaddr;
|
2015-04-23 14:38:15 -07:00
|
|
|
fio.page = page;
|
|
|
|
|
err = f2fs_submit_page_bio(&fio);
|
2013-03-08 21:29:23 +09:00
|
|
|
if (err)
|
2015-07-15 13:08:21 -07:00
|
|
|
goto put_err;
|
2015-04-30 17:00:33 -07:00
|
|
|
return page;
|
2015-07-15 13:08:21 -07:00
|
|
|
|
|
|
|
|
put_err:
|
|
|
|
|
f2fs_put_page(page, 1);
|
|
|
|
|
return ERR_PTR(err);
|
2015-04-30 17:00:33 -07:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
struct page *find_data_page(struct inode *inode, pgoff_t index)
|
|
|
|
|
{
|
|
|
|
|
struct address_space *mapping = inode->i_mapping;
|
|
|
|
|
struct page *page;
|
|
|
|
|
|
|
|
|
|
page = find_get_page(mapping, index);
|
|
|
|
|
if (page && PageUptodate(page))
|
|
|
|
|
return page;
|
|
|
|
|
f2fs_put_page(page, 0);
|
|
|
|
|
|
2015-10-09 15:11:38 -07:00
|
|
|
page = get_read_data_page(inode, index, READ_SYNC, false);
|
2015-04-30 17:00:33 -07:00
|
|
|
if (IS_ERR(page))
|
|
|
|
|
return page;
|
|
|
|
|
|
|
|
|
|
if (PageUptodate(page))
|
|
|
|
|
return page;
|
|
|
|
|
|
|
|
|
|
wait_on_page_locked(page);
|
|
|
|
|
if (unlikely(!PageUptodate(page))) {
|
|
|
|
|
f2fs_put_page(page, 0);
|
|
|
|
|
return ERR_PTR(-EIO);
|
|
|
|
|
}
|
|
|
|
|
return page;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* If it tries to access a hole, return an error.
|
|
|
|
|
* Because, the callers, functions in dir.c and GC, should be able to know
|
|
|
|
|
* whether this page exists or not.
|
|
|
|
|
*/
|
2015-10-09 15:11:38 -07:00
|
|
|
struct page *get_lock_data_page(struct inode *inode, pgoff_t index,
|
|
|
|
|
bool for_write)
|
2015-04-30 17:00:33 -07:00
|
|
|
{
|
|
|
|
|
struct address_space *mapping = inode->i_mapping;
|
|
|
|
|
struct page *page;
|
|
|
|
|
repeat:
|
2015-10-09 15:11:38 -07:00
|
|
|
page = get_read_data_page(inode, index, READ_SYNC, for_write);
|
2015-04-30 17:00:33 -07:00
|
|
|
if (IS_ERR(page))
|
|
|
|
|
return page;
|
2013-03-08 21:29:23 +09:00
|
|
|
|
2015-04-30 17:00:33 -07:00
|
|
|
/* wait for read completion */
|
2013-03-08 21:29:23 +09:00
|
|
|
lock_page(page);
|
2013-12-06 15:00:58 +09:00
|
|
|
if (unlikely(!PageUptodate(page))) {
|
2013-03-08 21:29:23 +09:00
|
|
|
f2fs_put_page(page, 1);
|
|
|
|
|
return ERR_PTR(-EIO);
|
2012-11-02 17:10:12 +09:00
|
|
|
}
|
2013-12-06 15:00:58 +09:00
|
|
|
if (unlikely(page->mapping != mapping)) {
|
2013-04-26 11:55:17 +09:00
|
|
|
f2fs_put_page(page, 1);
|
|
|
|
|
goto repeat;
|
2012-11-02 17:10:12 +09:00
|
|
|
}
|
|
|
|
|
return page;
|
|
|
|
|
}
|
|
|
|
|
|
2012-11-29 13:28:09 +09:00
|
|
|
/*
|
2012-11-02 17:10:12 +09:00
|
|
|
* Caller ensures that this data page is never allocated.
|
|
|
|
|
* A new zero-filled data page is allocated in the page cache.
|
f2fs: introduce a new global lock scheme
In the previous version, f2fs uses global locks according to the usage types,
such as directory operations, block allocation, block write, and so on.
Reference the following lock types in f2fs.h.
enum lock_type {
RENAME, /* for renaming operations */
DENTRY_OPS, /* for directory operations */
DATA_WRITE, /* for data write */
DATA_NEW, /* for data allocation */
DATA_TRUNC, /* for data truncate */
NODE_NEW, /* for node allocation */
NODE_TRUNC, /* for node truncate */
NODE_WRITE, /* for node write */
NR_LOCK_TYPE,
};
In that case, we lose the performance under the multi-threading environment,
since every types of operations must be conducted one at a time.
In order to address the problem, let's share the locks globally with a mutex
array regardless of any types.
So, let users grab a mutex and perform their jobs in parallel as much as
possbile.
For this, I propose a new global lock scheme as follows.
0. Data structure
- f2fs_sb_info -> mutex_lock[NR_GLOBAL_LOCKS]
- f2fs_sb_info -> node_write
1. mutex_lock_op(sbi)
- try to get an avaiable lock from the array.
- returns the index of the gottern lock variable.
2. mutex_unlock_op(sbi, index of the lock)
- unlock the given index of the lock.
3. mutex_lock_all(sbi)
- grab all the locks in the array before the checkpoint.
4. mutex_unlock_all(sbi)
- release all the locks in the array after checkpoint.
5. block_operations()
- call mutex_lock_all()
- sync_dirty_dir_inodes()
- grab node_write
- sync_node_pages()
Note that,
the pairs of mutex_lock_op()/mutex_unlock_op() and
mutex_lock_all()/mutex_unlock_all() should be used together.
Signed-off-by: Jaegeuk Kim <jaegeuk.kim@samsung.com>
2012-11-22 16:21:29 +09:00
|
|
|
*
|
2013-12-21 18:02:14 +08:00
|
|
|
* Also, caller should grab and release a rwsem by calling f2fs_lock_op() and
|
|
|
|
|
* f2fs_unlock_op().
|
2015-07-14 18:14:06 +08:00
|
|
|
* Note that, ipage is set only by make_empty_dir, and if any error occur,
|
|
|
|
|
* ipage should be released by this function.
|
2012-11-02 17:10:12 +09:00
|
|
|
*/
|
2013-05-20 09:55:50 +09:00
|
|
|
struct page *get_new_data_page(struct inode *inode,
|
2013-12-27 17:04:17 +09:00
|
|
|
struct page *ipage, pgoff_t index, bool new_i_size)
|
2012-11-02 17:10:12 +09:00
|
|
|
{
|
|
|
|
|
struct address_space *mapping = inode->i_mapping;
|
|
|
|
|
struct page *page;
|
|
|
|
|
struct dnode_of_data dn;
|
|
|
|
|
int err;
|
2015-04-29 11:18:42 -07:00
|
|
|
repeat:
|
2015-10-09 15:11:38 -07:00
|
|
|
page = f2fs_grab_cache_page(mapping, index, true);
|
2015-07-14 18:14:06 +08:00
|
|
|
if (!page) {
|
|
|
|
|
/*
|
|
|
|
|
* before exiting, we should make sure ipage will be released
|
|
|
|
|
* if any error occur.
|
|
|
|
|
*/
|
|
|
|
|
f2fs_put_page(ipage, 1);
|
2015-04-29 11:18:42 -07:00
|
|
|
return ERR_PTR(-ENOMEM);
|
2015-07-14 18:14:06 +08:00
|
|
|
}
|
2012-11-02 17:10:12 +09:00
|
|
|
|
2013-12-27 17:04:17 +09:00
|
|
|
set_new_dnode(&dn, inode, ipage, NULL, 0);
|
2013-11-10 23:13:18 +08:00
|
|
|
err = f2fs_reserve_block(&dn, index);
|
2015-04-29 11:18:42 -07:00
|
|
|
if (err) {
|
|
|
|
|
f2fs_put_page(page, 1);
|
2012-11-02 17:10:12 +09:00
|
|
|
return ERR_PTR(err);
|
2013-12-27 17:04:17 +09:00
|
|
|
}
|
2015-04-29 11:18:42 -07:00
|
|
|
if (!ipage)
|
|
|
|
|
f2fs_put_dnode(&dn);
|
2012-11-02 17:10:12 +09:00
|
|
|
|
|
|
|
|
if (PageUptodate(page))
|
2015-04-29 11:18:42 -07:00
|
|
|
goto got_it;
|
2012-11-02 17:10:12 +09:00
|
|
|
|
|
|
|
|
if (dn.data_blkaddr == NEW_ADDR) {
|
|
|
|
|
zero_user_segment(page, 0, PAGE_CACHE_SIZE);
|
2013-03-08 21:29:23 +09:00
|
|
|
SetPageUptodate(page);
|
2012-11-02 17:10:12 +09:00
|
|
|
} else {
|
2015-04-23 12:04:33 -07:00
|
|
|
f2fs_put_page(page, 1);
|
2013-12-27 17:04:17 +09:00
|
|
|
|
2015-10-09 15:11:38 -07:00
|
|
|
page = get_read_data_page(inode, index, READ_SYNC, true);
|
2015-04-23 12:04:33 -07:00
|
|
|
if (IS_ERR(page))
|
2013-04-26 11:55:17 +09:00
|
|
|
goto repeat;
|
2015-04-23 12:04:33 -07:00
|
|
|
|
|
|
|
|
/* wait for read completion */
|
|
|
|
|
lock_page(page);
|
2012-11-02 17:10:12 +09:00
|
|
|
}
|
2015-04-29 11:18:42 -07:00
|
|
|
got_it:
|
2015-09-11 14:43:52 +08:00
|
|
|
if (new_i_size && i_size_read(inode) <
|
|
|
|
|
((loff_t)(index + 1) << PAGE_CACHE_SHIFT)) {
|
|
|
|
|
i_size_write(inode, ((loff_t)(index + 1) << PAGE_CACHE_SHIFT));
|
2013-06-07 22:08:23 +09:00
|
|
|
/* Only the directory inode sets new_i_size */
|
|
|
|
|
set_inode_flag(F2FS_I(inode), FI_UPDATE_DIR);
|
2012-11-02 17:10:12 +09:00
|
|
|
}
|
|
|
|
|
return page;
|
|
|
|
|
}
|
|
|
|
|
|
2013-12-16 19:04:05 +09:00
|
|
|
static int __allocate_data_block(struct dnode_of_data *dn)
|
|
|
|
|
{
|
2014-09-02 15:31:18 -07:00
|
|
|
struct f2fs_sb_info *sbi = F2FS_I_SB(dn->inode);
|
2014-09-15 19:32:16 -07:00
|
|
|
struct f2fs_inode_info *fi = F2FS_I(dn->inode);
|
2013-12-16 19:04:05 +09:00
|
|
|
struct f2fs_summary sum;
|
|
|
|
|
struct node_info ni;
|
2015-01-05 16:02:20 -08:00
|
|
|
int seg = CURSEG_WARM_DATA;
|
2014-09-15 19:32:16 -07:00
|
|
|
pgoff_t fofs;
|
2013-12-16 19:04:05 +09:00
|
|
|
|
|
|
|
|
if (unlikely(is_inode_flag_set(F2FS_I(dn->inode), FI_NO_ALLOC)))
|
|
|
|
|
return -EPERM;
|
f2fs: preallocate fallocated blocks for direct IO
Normally, due to DIO_SKIP_HOLES flag is set by default, blockdev_direct_IO in
f2fs_direct_IO tries to skip DIO in holes when writing inside i_size, this
makes us falling back to buffered IO which shows lower performance.
So in commit 59b802e5a453 ("f2fs: allocate data blocks in advance for
f2fs_direct_IO"), we improve perfromance by allocating data blocks in advance
if we meet holes no matter in i_size or not, since with it we can avoid falling
back to buffered IO.
But we forget to consider for unwritten fallocated block in this commit.
This patch tries to fix it for fallocate case, this helps to improve
performance.
Test result:
Storage info: sandisk ultra 64G micro sd card.
touch /mnt/f2fs/file
truncate -s 67108864 /mnt/f2fs/file
fallocate -o 0 -l 67108864 /mnt/f2fs/file
time dd if=/dev/zero of=/mnt/f2fs/file bs=1M count=64 conv=notrunc oflag=direct
Time before applying the patch:
67108864 bytes (67 MB) copied, 36.16 s, 1.9 MB/s
real 0m36.162s
user 0m0.000s
sys 0m0.180s
Time after applying the patch:
67108864 bytes (67 MB) copied, 27.7776 s, 2.4 MB/s
real 0m27.780s
user 0m0.000s
sys 0m0.036s
Signed-off-by: Chao Yu <chao2.yu@samsung.com>
Signed-off-by: Jaegeuk Kim <jaegeuk@kernel.org>
2015-03-23 10:33:37 +08:00
|
|
|
|
|
|
|
|
dn->data_blkaddr = datablock_addr(dn->node_page, dn->ofs_in_node);
|
|
|
|
|
if (dn->data_blkaddr == NEW_ADDR)
|
|
|
|
|
goto alloc;
|
|
|
|
|
|
2013-12-16 19:04:05 +09:00
|
|
|
if (unlikely(!inc_valid_block_count(sbi, dn->inode, 1)))
|
|
|
|
|
return -ENOSPC;
|
|
|
|
|
|
f2fs: preallocate fallocated blocks for direct IO
Normally, due to DIO_SKIP_HOLES flag is set by default, blockdev_direct_IO in
f2fs_direct_IO tries to skip DIO in holes when writing inside i_size, this
makes us falling back to buffered IO which shows lower performance.
So in commit 59b802e5a453 ("f2fs: allocate data blocks in advance for
f2fs_direct_IO"), we improve perfromance by allocating data blocks in advance
if we meet holes no matter in i_size or not, since with it we can avoid falling
back to buffered IO.
But we forget to consider for unwritten fallocated block in this commit.
This patch tries to fix it for fallocate case, this helps to improve
performance.
Test result:
Storage info: sandisk ultra 64G micro sd card.
touch /mnt/f2fs/file
truncate -s 67108864 /mnt/f2fs/file
fallocate -o 0 -l 67108864 /mnt/f2fs/file
time dd if=/dev/zero of=/mnt/f2fs/file bs=1M count=64 conv=notrunc oflag=direct
Time before applying the patch:
67108864 bytes (67 MB) copied, 36.16 s, 1.9 MB/s
real 0m36.162s
user 0m0.000s
sys 0m0.180s
Time after applying the patch:
67108864 bytes (67 MB) copied, 27.7776 s, 2.4 MB/s
real 0m27.780s
user 0m0.000s
sys 0m0.036s
Signed-off-by: Chao Yu <chao2.yu@samsung.com>
Signed-off-by: Jaegeuk Kim <jaegeuk@kernel.org>
2015-03-23 10:33:37 +08:00
|
|
|
alloc:
|
2013-12-16 19:04:05 +09:00
|
|
|
get_node_info(sbi, dn->nid, &ni);
|
|
|
|
|
set_summary(&sum, dn->nid, dn->ofs_in_node, ni.version);
|
|
|
|
|
|
2015-01-05 16:02:20 -08:00
|
|
|
if (dn->ofs_in_node == 0 && dn->inode_page == dn->node_page)
|
|
|
|
|
seg = CURSEG_DIRECT_IO;
|
|
|
|
|
|
f2fs: preallocate fallocated blocks for direct IO
Normally, due to DIO_SKIP_HOLES flag is set by default, blockdev_direct_IO in
f2fs_direct_IO tries to skip DIO in holes when writing inside i_size, this
makes us falling back to buffered IO which shows lower performance.
So in commit 59b802e5a453 ("f2fs: allocate data blocks in advance for
f2fs_direct_IO"), we improve perfromance by allocating data blocks in advance
if we meet holes no matter in i_size or not, since with it we can avoid falling
back to buffered IO.
But we forget to consider for unwritten fallocated block in this commit.
This patch tries to fix it for fallocate case, this helps to improve
performance.
Test result:
Storage info: sandisk ultra 64G micro sd card.
touch /mnt/f2fs/file
truncate -s 67108864 /mnt/f2fs/file
fallocate -o 0 -l 67108864 /mnt/f2fs/file
time dd if=/dev/zero of=/mnt/f2fs/file bs=1M count=64 conv=notrunc oflag=direct
Time before applying the patch:
67108864 bytes (67 MB) copied, 36.16 s, 1.9 MB/s
real 0m36.162s
user 0m0.000s
sys 0m0.180s
Time after applying the patch:
67108864 bytes (67 MB) copied, 27.7776 s, 2.4 MB/s
real 0m27.780s
user 0m0.000s
sys 0m0.036s
Signed-off-by: Chao Yu <chao2.yu@samsung.com>
Signed-off-by: Jaegeuk Kim <jaegeuk@kernel.org>
2015-03-23 10:33:37 +08:00
|
|
|
allocate_data_block(sbi, NULL, dn->data_blkaddr, &dn->data_blkaddr,
|
|
|
|
|
&sum, seg);
|
2015-03-19 19:23:32 +08:00
|
|
|
set_data_blkaddr(dn);
|
2013-12-16 19:04:05 +09:00
|
|
|
|
2014-09-15 19:32:16 -07:00
|
|
|
/* update i_size */
|
|
|
|
|
fofs = start_bidx_of_node(ofs_of_node(dn->node_page), fi) +
|
|
|
|
|
dn->ofs_in_node;
|
2015-09-11 14:43:52 +08:00
|
|
|
if (i_size_read(dn->inode) < ((loff_t)(fofs + 1) << PAGE_CACHE_SHIFT))
|
|
|
|
|
i_size_write(dn->inode,
|
|
|
|
|
((loff_t)(fofs + 1) << PAGE_CACHE_SHIFT));
|
2014-09-15 19:32:16 -07:00
|
|
|
|
2015-06-19 17:53:26 -07:00
|
|
|
/* direct IO doesn't use extent cache to maximize the performance */
|
2015-07-08 17:59:36 +08:00
|
|
|
f2fs_drop_largest_extent(dn->inode, fofs);
|
2015-06-19 17:53:26 -07:00
|
|
|
|
2013-12-16 19:04:05 +09:00
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2015-02-09 12:09:53 -08:00
|
|
|
static void __allocate_data_blocks(struct inode *inode, loff_t offset,
|
|
|
|
|
size_t count)
|
|
|
|
|
{
|
|
|
|
|
struct f2fs_sb_info *sbi = F2FS_I_SB(inode);
|
|
|
|
|
struct dnode_of_data dn;
|
|
|
|
|
u64 start = F2FS_BYTES_TO_BLK(offset);
|
|
|
|
|
u64 len = F2FS_BYTES_TO_BLK(count);
|
|
|
|
|
bool allocated;
|
|
|
|
|
u64 end_offset;
|
|
|
|
|
|
|
|
|
|
while (len) {
|
|
|
|
|
f2fs_balance_fs(sbi);
|
|
|
|
|
f2fs_lock_op(sbi);
|
|
|
|
|
|
|
|
|
|
/* When reading holes, we need its node page */
|
|
|
|
|
set_new_dnode(&dn, inode, NULL, NULL, 0);
|
|
|
|
|
if (get_dnode_of_data(&dn, start, ALLOC_NODE))
|
|
|
|
|
goto out;
|
|
|
|
|
|
|
|
|
|
allocated = false;
|
|
|
|
|
end_offset = ADDRS_PER_PAGE(dn.node_page, F2FS_I(inode));
|
|
|
|
|
|
|
|
|
|
while (dn.ofs_in_node < end_offset && len) {
|
2015-03-12 17:04:24 +08:00
|
|
|
block_t blkaddr;
|
|
|
|
|
|
2015-09-21 20:17:52 +08:00
|
|
|
if (unlikely(f2fs_cp_error(sbi)))
|
|
|
|
|
goto sync_out;
|
|
|
|
|
|
2015-03-12 17:04:24 +08:00
|
|
|
blkaddr = datablock_addr(dn.node_page, dn.ofs_in_node);
|
f2fs: preallocate fallocated blocks for direct IO
Normally, due to DIO_SKIP_HOLES flag is set by default, blockdev_direct_IO in
f2fs_direct_IO tries to skip DIO in holes when writing inside i_size, this
makes us falling back to buffered IO which shows lower performance.
So in commit 59b802e5a453 ("f2fs: allocate data blocks in advance for
f2fs_direct_IO"), we improve perfromance by allocating data blocks in advance
if we meet holes no matter in i_size or not, since with it we can avoid falling
back to buffered IO.
But we forget to consider for unwritten fallocated block in this commit.
This patch tries to fix it for fallocate case, this helps to improve
performance.
Test result:
Storage info: sandisk ultra 64G micro sd card.
touch /mnt/f2fs/file
truncate -s 67108864 /mnt/f2fs/file
fallocate -o 0 -l 67108864 /mnt/f2fs/file
time dd if=/dev/zero of=/mnt/f2fs/file bs=1M count=64 conv=notrunc oflag=direct
Time before applying the patch:
67108864 bytes (67 MB) copied, 36.16 s, 1.9 MB/s
real 0m36.162s
user 0m0.000s
sys 0m0.180s
Time after applying the patch:
67108864 bytes (67 MB) copied, 27.7776 s, 2.4 MB/s
real 0m27.780s
user 0m0.000s
sys 0m0.036s
Signed-off-by: Chao Yu <chao2.yu@samsung.com>
Signed-off-by: Jaegeuk Kim <jaegeuk@kernel.org>
2015-03-23 10:33:37 +08:00
|
|
|
if (blkaddr == NULL_ADDR || blkaddr == NEW_ADDR) {
|
2015-02-09 12:09:53 -08:00
|
|
|
if (__allocate_data_block(&dn))
|
|
|
|
|
goto sync_out;
|
|
|
|
|
allocated = true;
|
|
|
|
|
}
|
|
|
|
|
len--;
|
|
|
|
|
start++;
|
|
|
|
|
dn.ofs_in_node++;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (allocated)
|
|
|
|
|
sync_inode_page(&dn);
|
|
|
|
|
|
|
|
|
|
f2fs_put_dnode(&dn);
|
|
|
|
|
f2fs_unlock_op(sbi);
|
|
|
|
|
}
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
sync_out:
|
|
|
|
|
if (allocated)
|
|
|
|
|
sync_inode_page(&dn);
|
|
|
|
|
f2fs_put_dnode(&dn);
|
|
|
|
|
out:
|
|
|
|
|
f2fs_unlock_op(sbi);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2012-11-29 13:28:09 +09:00
|
|
|
/*
|
2015-04-06 19:55:34 -07:00
|
|
|
* f2fs_map_blocks() now supported readahead/bmap/rw direct_IO with
|
|
|
|
|
* f2fs_map_blocks structure.
|
2013-12-21 18:02:14 +08:00
|
|
|
* If original data blocks are allocated, then give them to blockdev.
|
|
|
|
|
* Otherwise,
|
|
|
|
|
* a. preallocate requested block addresses
|
|
|
|
|
* b. do not use extent cache for better performance
|
|
|
|
|
* c. give the block addresses to blockdev
|
2012-11-02 17:10:12 +09:00
|
|
|
*/
|
2015-04-06 19:55:34 -07:00
|
|
|
static int f2fs_map_blocks(struct inode *inode, struct f2fs_map_blocks *map,
|
2015-08-19 19:11:19 +08:00
|
|
|
int create, int flag)
|
2012-11-02 17:10:12 +09:00
|
|
|
{
|
2015-04-06 19:55:34 -07:00
|
|
|
unsigned int maxblocks = map->m_len;
|
2012-11-02 17:10:12 +09:00
|
|
|
struct dnode_of_data dn;
|
2015-09-21 20:17:52 +08:00
|
|
|
struct f2fs_sb_info *sbi = F2FS_I_SB(inode);
|
2013-12-16 19:04:05 +09:00
|
|
|
int mode = create ? ALLOC_NODE : LOOKUP_NODE_RA;
|
|
|
|
|
pgoff_t pgofs, end_offset;
|
|
|
|
|
int err = 0, ofs = 1;
|
2015-02-05 17:50:30 +08:00
|
|
|
struct extent_info ei;
|
2013-12-16 19:04:05 +09:00
|
|
|
bool allocated = false;
|
2012-11-02 17:10:12 +09:00
|
|
|
|
2015-04-06 19:55:34 -07:00
|
|
|
map->m_len = 0;
|
|
|
|
|
map->m_flags = 0;
|
|
|
|
|
|
|
|
|
|
/* it only supports block size == page size */
|
|
|
|
|
pgofs = (pgoff_t)map->m_lblk;
|
2012-11-02 17:10:12 +09:00
|
|
|
|
2015-02-05 17:51:34 +08:00
|
|
|
if (f2fs_lookup_extent_cache(inode, pgofs, &ei)) {
|
2015-04-06 19:55:34 -07:00
|
|
|
map->m_pblk = ei.blk + pgofs - ei.fofs;
|
|
|
|
|
map->m_len = min((pgoff_t)maxblocks, ei.fofs + ei.len - pgofs);
|
|
|
|
|
map->m_flags = F2FS_MAP_MAPPED;
|
2013-12-16 19:04:05 +09:00
|
|
|
goto out;
|
2015-02-05 17:50:30 +08:00
|
|
|
}
|
2013-12-16 19:04:05 +09:00
|
|
|
|
2015-02-09 12:09:53 -08:00
|
|
|
if (create)
|
2014-09-02 15:31:18 -07:00
|
|
|
f2fs_lock_op(F2FS_I_SB(inode));
|
2012-11-02 17:10:12 +09:00
|
|
|
|
|
|
|
|
/* When reading holes, we need its node page */
|
|
|
|
|
set_new_dnode(&dn, inode, NULL, NULL, 0);
|
2013-12-16 19:04:05 +09:00
|
|
|
err = get_dnode_of_data(&dn, pgofs, mode);
|
2013-12-26 16:55:22 +09:00
|
|
|
if (err) {
|
2013-12-16 19:04:05 +09:00
|
|
|
if (err == -ENOENT)
|
|
|
|
|
err = 0;
|
|
|
|
|
goto unlock_out;
|
2013-04-23 16:38:02 +09:00
|
|
|
}
|
2015-09-18 16:51:51 +08:00
|
|
|
|
f2fs: fix to do sanity check with block address in main area
commit c9b60788fc760d136211853f10ce73dc152d1f4a upstream.
This patch add to do sanity check with below field:
- cp_pack_total_block_count
- blkaddr of data/node
- extent info
- Overview
BUG() in verify_block_addr() when writing to a corrupted f2fs image
- Reproduce (4.18 upstream kernel)
- POC (poc.c)
static void activity(char *mpoint) {
char *foo_bar_baz;
int err;
static int buf[8192];
memset(buf, 0, sizeof(buf));
err = asprintf(&foo_bar_baz, "%s/foo/bar/baz", mpoint);
int fd = open(foo_bar_baz, O_RDWR | O_TRUNC, 0777);
if (fd >= 0) {
write(fd, (char *)buf, sizeof(buf));
fdatasync(fd);
close(fd);
}
}
int main(int argc, char *argv[]) {
activity(argv[1]);
return 0;
}
- Kernel message
[ 689.349473] F2FS-fs (loop0): Mounted with checkpoint version = 3
[ 699.728662] WARNING: CPU: 0 PID: 1309 at fs/f2fs/segment.c:2860 f2fs_inplace_write_data+0x232/0x240
[ 699.728670] Modules linked in: snd_hda_codec_generic snd_hda_intel snd_hda_codec snd_hwdep snd_hda_core snd_pcm snd_timer snd mac_hid i2c_piix4 soundcore ib_iser rdma_cm iw_cm ib_cm ib_core iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi raid10 raid456 async_raid6_recov async_memcpy async_pq async_xor async_tx raid1 raid0 multipath linear 8139too crct10dif_pclmul crc32_pclmul qxl drm_kms_helper syscopyarea aesni_intel sysfillrect sysimgblt fb_sys_fops ttm drm aes_x86_64 crypto_simd cryptd 8139cp glue_helper mii pata_acpi floppy
[ 699.729056] CPU: 0 PID: 1309 Comm: a.out Not tainted 4.18.0-rc1+ #4
[ 699.729064] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Ubuntu-1.8.2-1ubuntu1 04/01/2014
[ 699.729074] RIP: 0010:f2fs_inplace_write_data+0x232/0x240
[ 699.729076] Code: ff e9 cf fe ff ff 49 8d 7d 10 e8 39 45 ad ff 4d 8b 7d 10 be 04 00 00 00 49 8d 7f 48 e8 07 49 ad ff 45 8b 7f 48 e9 fb fe ff ff <0f> 0b f0 41 80 4d 48 04 e9 65 fe ff ff 90 66 66 66 66 90 55 48 8d
[ 699.729130] RSP: 0018:ffff8801f43af568 EFLAGS: 00010202
[ 699.729139] RAX: 000000000000003f RBX: ffff8801f43af7b8 RCX: ffffffffb88c9113
[ 699.729142] RDX: 0000000000000003 RSI: dffffc0000000000 RDI: ffff8802024e5540
[ 699.729144] RBP: ffff8801f43af590 R08: 0000000000000009 R09: ffffffffffffffe8
[ 699.729147] R10: 0000000000000001 R11: ffffed0039b0596a R12: ffff8802024e5540
[ 699.729149] R13: ffff8801f0335500 R14: ffff8801e3e7a700 R15: ffff8801e1ee4450
[ 699.729154] FS: 00007f9bf97f5700(0000) GS:ffff8801f6e00000(0000) knlGS:0000000000000000
[ 699.729156] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 699.729159] CR2: 00007f9bf925d170 CR3: 00000001f0c34000 CR4: 00000000000006f0
[ 699.729171] Call Trace:
[ 699.729192] f2fs_do_write_data_page+0x2e2/0xe00
[ 699.729203] ? f2fs_should_update_outplace+0xd0/0xd0
[ 699.729238] ? memcg_drain_all_list_lrus+0x280/0x280
[ 699.729269] ? __radix_tree_replace+0xa3/0x120
[ 699.729276] __write_data_page+0x5c7/0xe30
[ 699.729291] ? kasan_check_read+0x11/0x20
[ 699.729310] ? page_mapped+0x8a/0x110
[ 699.729321] ? page_mkclean+0xe9/0x160
[ 699.729327] ? f2fs_do_write_data_page+0xe00/0xe00
[ 699.729331] ? invalid_page_referenced_vma+0x130/0x130
[ 699.729345] ? clear_page_dirty_for_io+0x332/0x450
[ 699.729351] f2fs_write_cache_pages+0x4ca/0x860
[ 699.729358] ? __write_data_page+0xe30/0xe30
[ 699.729374] ? percpu_counter_add_batch+0x22/0xa0
[ 699.729380] ? kasan_check_write+0x14/0x20
[ 699.729391] ? _raw_spin_lock+0x17/0x40
[ 699.729403] ? f2fs_mark_inode_dirty_sync.part.18+0x16/0x30
[ 699.729413] ? iov_iter_advance+0x113/0x640
[ 699.729418] ? f2fs_write_end+0x133/0x2e0
[ 699.729423] ? balance_dirty_pages_ratelimited+0x239/0x640
[ 699.729428] f2fs_write_data_pages+0x329/0x520
[ 699.729433] ? generic_perform_write+0x250/0x320
[ 699.729438] ? f2fs_write_cache_pages+0x860/0x860
[ 699.729454] ? current_time+0x110/0x110
[ 699.729459] ? f2fs_preallocate_blocks+0x1ef/0x370
[ 699.729464] do_writepages+0x37/0xb0
[ 699.729468] ? f2fs_write_cache_pages+0x860/0x860
[ 699.729472] ? do_writepages+0x37/0xb0
[ 699.729478] __filemap_fdatawrite_range+0x19a/0x1f0
[ 699.729483] ? delete_from_page_cache_batch+0x4e0/0x4e0
[ 699.729496] ? __vfs_write+0x2b2/0x410
[ 699.729501] file_write_and_wait_range+0x66/0xb0
[ 699.729506] f2fs_do_sync_file+0x1f9/0xd90
[ 699.729511] ? truncate_partial_data_page+0x290/0x290
[ 699.729521] ? __sb_end_write+0x30/0x50
[ 699.729526] ? vfs_write+0x20f/0x260
[ 699.729530] f2fs_sync_file+0x9a/0xb0
[ 699.729534] ? f2fs_do_sync_file+0xd90/0xd90
[ 699.729548] vfs_fsync_range+0x68/0x100
[ 699.729554] ? __fget_light+0xc9/0xe0
[ 699.729558] do_fsync+0x3d/0x70
[ 699.729562] __x64_sys_fdatasync+0x24/0x30
[ 699.729585] do_syscall_64+0x78/0x170
[ 699.729595] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 699.729613] RIP: 0033:0x7f9bf930d800
[ 699.729615] Code: 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 3d 49 bf 2c 00 00 75 10 b8 4b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 be 78 01 00 48 89 04 24
[ 699.729668] RSP: 002b:00007ffee3606c68 EFLAGS: 00000246 ORIG_RAX: 000000000000004b
[ 699.729673] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9bf930d800
[ 699.729675] RDX: 0000000000008000 RSI: 00000000006010a0 RDI: 0000000000000003
[ 699.729678] RBP: 00007ffee3606ca0 R08: 0000000001503010 R09: 0000000000000000
[ 699.729680] R10: 00000000000002e8 R11: 0000000000000246 R12: 0000000000400610
[ 699.729683] R13: 00007ffee3606da0 R14: 0000000000000000 R15: 0000000000000000
[ 699.729687] ---[ end trace 4ce02f25ff7d3df5 ]---
[ 699.729782] ------------[ cut here ]------------
[ 699.729785] kernel BUG at fs/f2fs/segment.h:654!
[ 699.731055] invalid opcode: 0000 [#1] SMP KASAN PTI
[ 699.732104] CPU: 0 PID: 1309 Comm: a.out Tainted: G W 4.18.0-rc1+ #4
[ 699.733684] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Ubuntu-1.8.2-1ubuntu1 04/01/2014
[ 699.735611] RIP: 0010:f2fs_submit_page_bio+0x29b/0x730
[ 699.736649] Code: 54 49 8d bd 18 04 00 00 e8 b2 59 af ff 41 8b 8d 18 04 00 00 8b 45 b8 41 d3 e6 44 01 f0 4c 8d 73 14 41 39 c7 0f 82 37 fe ff ff <0f> 0b 65 8b 05 2c 04 77 47 89 c0 48 0f a3 05 52 c1 d5 01 0f 92 c0
[ 699.740524] RSP: 0018:ffff8801f43af508 EFLAGS: 00010283
[ 699.741573] RAX: 0000000000000000 RBX: ffff8801f43af7b8 RCX: ffffffffb88a7cef
[ 699.743006] RDX: 0000000000000007 RSI: dffffc0000000000 RDI: ffff8801e3e7a64c
[ 699.744426] RBP: ffff8801f43af558 R08: ffffed003e066b55 R09: ffffed003e066b55
[ 699.745833] R10: 0000000000000001 R11: ffffed003e066b54 R12: ffffea0007876940
[ 699.747256] R13: ffff8801f0335500 R14: ffff8801e3e7a600 R15: 0000000000000001
[ 699.748683] FS: 00007f9bf97f5700(0000) GS:ffff8801f6e00000(0000) knlGS:0000000000000000
[ 699.750293] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 699.751462] CR2: 00007f9bf925d170 CR3: 00000001f0c34000 CR4: 00000000000006f0
[ 699.752874] Call Trace:
[ 699.753386] ? f2fs_inplace_write_data+0x93/0x240
[ 699.754341] f2fs_inplace_write_data+0xd2/0x240
[ 699.755271] f2fs_do_write_data_page+0x2e2/0xe00
[ 699.756214] ? f2fs_should_update_outplace+0xd0/0xd0
[ 699.757215] ? memcg_drain_all_list_lrus+0x280/0x280
[ 699.758209] ? __radix_tree_replace+0xa3/0x120
[ 699.759164] __write_data_page+0x5c7/0xe30
[ 699.760002] ? kasan_check_read+0x11/0x20
[ 699.760823] ? page_mapped+0x8a/0x110
[ 699.761573] ? page_mkclean+0xe9/0x160
[ 699.762345] ? f2fs_do_write_data_page+0xe00/0xe00
[ 699.763332] ? invalid_page_referenced_vma+0x130/0x130
[ 699.764374] ? clear_page_dirty_for_io+0x332/0x450
[ 699.765347] f2fs_write_cache_pages+0x4ca/0x860
[ 699.766276] ? __write_data_page+0xe30/0xe30
[ 699.767161] ? percpu_counter_add_batch+0x22/0xa0
[ 699.768112] ? kasan_check_write+0x14/0x20
[ 699.768951] ? _raw_spin_lock+0x17/0x40
[ 699.769739] ? f2fs_mark_inode_dirty_sync.part.18+0x16/0x30
[ 699.770885] ? iov_iter_advance+0x113/0x640
[ 699.771743] ? f2fs_write_end+0x133/0x2e0
[ 699.772569] ? balance_dirty_pages_ratelimited+0x239/0x640
[ 699.773680] f2fs_write_data_pages+0x329/0x520
[ 699.774603] ? generic_perform_write+0x250/0x320
[ 699.775544] ? f2fs_write_cache_pages+0x860/0x860
[ 699.776510] ? current_time+0x110/0x110
[ 699.777299] ? f2fs_preallocate_blocks+0x1ef/0x370
[ 699.778279] do_writepages+0x37/0xb0
[ 699.779026] ? f2fs_write_cache_pages+0x860/0x860
[ 699.779978] ? do_writepages+0x37/0xb0
[ 699.780755] __filemap_fdatawrite_range+0x19a/0x1f0
[ 699.781746] ? delete_from_page_cache_batch+0x4e0/0x4e0
[ 699.782820] ? __vfs_write+0x2b2/0x410
[ 699.783597] file_write_and_wait_range+0x66/0xb0
[ 699.784540] f2fs_do_sync_file+0x1f9/0xd90
[ 699.785381] ? truncate_partial_data_page+0x290/0x290
[ 699.786415] ? __sb_end_write+0x30/0x50
[ 699.787204] ? vfs_write+0x20f/0x260
[ 699.787941] f2fs_sync_file+0x9a/0xb0
[ 699.788694] ? f2fs_do_sync_file+0xd90/0xd90
[ 699.789572] vfs_fsync_range+0x68/0x100
[ 699.790360] ? __fget_light+0xc9/0xe0
[ 699.791128] do_fsync+0x3d/0x70
[ 699.791779] __x64_sys_fdatasync+0x24/0x30
[ 699.792614] do_syscall_64+0x78/0x170
[ 699.793371] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 699.794406] RIP: 0033:0x7f9bf930d800
[ 699.795134] Code: 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 3d 49 bf 2c 00 00 75 10 b8 4b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 be 78 01 00 48 89 04 24
[ 699.798960] RSP: 002b:00007ffee3606c68 EFLAGS: 00000246 ORIG_RAX: 000000000000004b
[ 699.800483] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9bf930d800
[ 699.801923] RDX: 0000000000008000 RSI: 00000000006010a0 RDI: 0000000000000003
[ 699.803373] RBP: 00007ffee3606ca0 R08: 0000000001503010 R09: 0000000000000000
[ 699.804798] R10: 00000000000002e8 R11: 0000000000000246 R12: 0000000000400610
[ 699.806233] R13: 00007ffee3606da0 R14: 0000000000000000 R15: 0000000000000000
[ 699.807667] Modules linked in: snd_hda_codec_generic snd_hda_intel snd_hda_codec snd_hwdep snd_hda_core snd_pcm snd_timer snd mac_hid i2c_piix4 soundcore ib_iser rdma_cm iw_cm ib_cm ib_core iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi raid10 raid456 async_raid6_recov async_memcpy async_pq async_xor async_tx raid1 raid0 multipath linear 8139too crct10dif_pclmul crc32_pclmul qxl drm_kms_helper syscopyarea aesni_intel sysfillrect sysimgblt fb_sys_fops ttm drm aes_x86_64 crypto_simd cryptd 8139cp glue_helper mii pata_acpi floppy
[ 699.817079] ---[ end trace 4ce02f25ff7d3df6 ]---
[ 699.818068] RIP: 0010:f2fs_submit_page_bio+0x29b/0x730
[ 699.819114] Code: 54 49 8d bd 18 04 00 00 e8 b2 59 af ff 41 8b 8d 18 04 00 00 8b 45 b8 41 d3 e6 44 01 f0 4c 8d 73 14 41 39 c7 0f 82 37 fe ff ff <0f> 0b 65 8b 05 2c 04 77 47 89 c0 48 0f a3 05 52 c1 d5 01 0f 92 c0
[ 699.822919] RSP: 0018:ffff8801f43af508 EFLAGS: 00010283
[ 699.823977] RAX: 0000000000000000 RBX: ffff8801f43af7b8 RCX: ffffffffb88a7cef
[ 699.825436] RDX: 0000000000000007 RSI: dffffc0000000000 RDI: ffff8801e3e7a64c
[ 699.826881] RBP: ffff8801f43af558 R08: ffffed003e066b55 R09: ffffed003e066b55
[ 699.828292] R10: 0000000000000001 R11: ffffed003e066b54 R12: ffffea0007876940
[ 699.829750] R13: ffff8801f0335500 R14: ffff8801e3e7a600 R15: 0000000000000001
[ 699.831192] FS: 00007f9bf97f5700(0000) GS:ffff8801f6e00000(0000) knlGS:0000000000000000
[ 699.832793] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 699.833981] CR2: 00007f9bf925d170 CR3: 00000001f0c34000 CR4: 00000000000006f0
[ 699.835556] ==================================================================
[ 699.837029] BUG: KASAN: stack-out-of-bounds in update_stack_state+0x38c/0x3e0
[ 699.838462] Read of size 8 at addr ffff8801f43af970 by task a.out/1309
[ 699.840086] CPU: 0 PID: 1309 Comm: a.out Tainted: G D W 4.18.0-rc1+ #4
[ 699.841603] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Ubuntu-1.8.2-1ubuntu1 04/01/2014
[ 699.843475] Call Trace:
[ 699.843982] dump_stack+0x7b/0xb5
[ 699.844661] print_address_description+0x70/0x290
[ 699.845607] kasan_report+0x291/0x390
[ 699.846351] ? update_stack_state+0x38c/0x3e0
[ 699.853831] __asan_load8+0x54/0x90
[ 699.854569] update_stack_state+0x38c/0x3e0
[ 699.855428] ? __read_once_size_nocheck.constprop.7+0x20/0x20
[ 699.856601] ? __save_stack_trace+0x5e/0x100
[ 699.857476] unwind_next_frame.part.5+0x18e/0x490
[ 699.858448] ? unwind_dump+0x290/0x290
[ 699.859217] ? clear_page_dirty_for_io+0x332/0x450
[ 699.860185] __unwind_start+0x106/0x190
[ 699.860974] __save_stack_trace+0x5e/0x100
[ 699.861808] ? __save_stack_trace+0x5e/0x100
[ 699.862691] ? unlink_anon_vmas+0xba/0x2c0
[ 699.863525] save_stack_trace+0x1f/0x30
[ 699.864312] save_stack+0x46/0xd0
[ 699.864993] ? __alloc_pages_slowpath+0x1420/0x1420
[ 699.865990] ? flush_tlb_mm_range+0x15e/0x220
[ 699.866889] ? kasan_check_write+0x14/0x20
[ 699.867724] ? __dec_node_state+0x92/0xb0
[ 699.868543] ? lock_page_memcg+0x85/0xf0
[ 699.869350] ? unlock_page_memcg+0x16/0x80
[ 699.870185] ? page_remove_rmap+0x198/0x520
[ 699.871048] ? mark_page_accessed+0x133/0x200
[ 699.871930] ? _cond_resched+0x1a/0x50
[ 699.872700] ? unmap_page_range+0xcd4/0xe50
[ 699.873551] ? rb_next+0x58/0x80
[ 699.874217] ? rb_next+0x58/0x80
[ 699.874895] __kasan_slab_free+0x13c/0x1a0
[ 699.875734] ? unlink_anon_vmas+0xba/0x2c0
[ 699.876563] kasan_slab_free+0xe/0x10
[ 699.877315] kmem_cache_free+0x89/0x1e0
[ 699.878095] unlink_anon_vmas+0xba/0x2c0
[ 699.878913] free_pgtables+0x101/0x1b0
[ 699.879677] exit_mmap+0x146/0x2a0
[ 699.880378] ? __ia32_sys_munmap+0x50/0x50
[ 699.881214] ? kasan_check_read+0x11/0x20
[ 699.882052] ? mm_update_next_owner+0x322/0x380
[ 699.882985] mmput+0x8b/0x1d0
[ 699.883602] do_exit+0x43a/0x1390
[ 699.884288] ? mm_update_next_owner+0x380/0x380
[ 699.885212] ? f2fs_sync_file+0x9a/0xb0
[ 699.885995] ? f2fs_do_sync_file+0xd90/0xd90
[ 699.886877] ? vfs_fsync_range+0x68/0x100
[ 699.887694] ? __fget_light+0xc9/0xe0
[ 699.888442] ? do_fsync+0x3d/0x70
[ 699.889118] ? __x64_sys_fdatasync+0x24/0x30
[ 699.889996] rewind_stack_do_exit+0x17/0x20
[ 699.890860] RIP: 0033:0x7f9bf930d800
[ 699.891585] Code: Bad RIP value.
[ 699.892268] RSP: 002b:00007ffee3606c68 EFLAGS: 00000246 ORIG_RAX: 000000000000004b
[ 699.893781] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9bf930d800
[ 699.895220] RDX: 0000000000008000 RSI: 00000000006010a0 RDI: 0000000000000003
[ 699.896643] RBP: 00007ffee3606ca0 R08: 0000000001503010 R09: 0000000000000000
[ 699.898069] R10: 00000000000002e8 R11: 0000000000000246 R12: 0000000000400610
[ 699.899505] R13: 00007ffee3606da0 R14: 0000000000000000 R15: 0000000000000000
[ 699.901241] The buggy address belongs to the page:
[ 699.902215] page:ffffea0007d0ebc0 count:0 mapcount:0 mapping:0000000000000000 index:0x0
[ 699.903811] flags: 0x2ffff0000000000()
[ 699.904585] raw: 02ffff0000000000 0000000000000000 ffffffff07d00101 0000000000000000
[ 699.906125] raw: 0000000000000000 0000000000240000 00000000ffffffff 0000000000000000
[ 699.907673] page dumped because: kasan: bad access detected
[ 699.909108] Memory state around the buggy address:
[ 699.910077] ffff8801f43af800: 00 f1 f1 f1 f1 00 f4 f4 f4 f3 f3 f3 f3 00 00 00
[ 699.911528] ffff8801f43af880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 699.912953] >ffff8801f43af900: 00 00 00 00 00 00 00 00 f1 01 f4 f4 f4 f2 f2 f2
[ 699.914392] ^
[ 699.915758] ffff8801f43af980: f2 00 f4 f4 00 00 00 00 f2 00 00 00 00 00 00 00
[ 699.917193] ffff8801f43afa00: 00 00 00 00 00 00 00 00 00 f3 f3 f3 00 00 00 00
[ 699.918634] ==================================================================
- Location
https://elixir.bootlin.com/linux/v4.18-rc1/source/fs/f2fs/segment.h#L644
Reported-by Wen Xu <wen.xu@gatech.edu>
Signed-off-by: Chao Yu <yuchao0@huawei.com>
Signed-off-by: Jaegeuk Kim <jaegeuk@kernel.org>
[bwh: Backported to 4.4:
- CoW is not implemented so check f2fs_io_info::blk_addr instead of
f2fs_io_info::{old,new}_blkaddr
- Operation code is f2fs_io_info::rw instead of f2fs_io_info::op
- f2fs_stop_checkpoint() only takes one argument
- In f2fs_map_blocks(), validate dn.data_blkaddr instead of blkaddr
- Adjust context]
Signed-off-by: Ben Hutchings <ben.hutchings@codethink.co.uk>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2018-08-01 19:13:44 +08:00
|
|
|
if (__is_valid_data_blkaddr(dn.data_blkaddr) &&
|
|
|
|
|
!f2fs_is_valid_blkaddr(sbi, dn.data_blkaddr, DATA_GENERIC)) {
|
|
|
|
|
err = -EFAULT;
|
|
|
|
|
goto sync_out;
|
|
|
|
|
}
|
|
|
|
|
|
2018-06-05 17:44:11 +08:00
|
|
|
if (!is_valid_data_blkaddr(sbi, dn.data_blkaddr)) {
|
2015-09-18 16:51:51 +08:00
|
|
|
if (create) {
|
2015-09-21 20:17:52 +08:00
|
|
|
if (unlikely(f2fs_cp_error(sbi))) {
|
|
|
|
|
err = -EIO;
|
|
|
|
|
goto put_out;
|
|
|
|
|
}
|
2015-09-18 16:51:51 +08:00
|
|
|
err = __allocate_data_block(&dn);
|
|
|
|
|
if (err)
|
|
|
|
|
goto put_out;
|
|
|
|
|
allocated = true;
|
|
|
|
|
map->m_flags = F2FS_MAP_NEW;
|
|
|
|
|
} else {
|
|
|
|
|
if (flag != F2FS_GET_BLOCK_FIEMAP ||
|
|
|
|
|
dn.data_blkaddr != NEW_ADDR) {
|
|
|
|
|
if (flag == F2FS_GET_BLOCK_BMAP)
|
|
|
|
|
err = -ENOENT;
|
|
|
|
|
goto put_out;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* preallocated unwritten block should be mapped
|
|
|
|
|
* for fiemap.
|
|
|
|
|
*/
|
|
|
|
|
if (dn.data_blkaddr == NEW_ADDR)
|
|
|
|
|
map->m_flags = F2FS_MAP_UNWRITTEN;
|
2015-08-19 19:11:19 +08:00
|
|
|
}
|
|
|
|
|
}
|
2012-11-02 17:10:12 +09:00
|
|
|
|
2015-09-18 16:51:51 +08:00
|
|
|
map->m_flags |= F2FS_MAP_MAPPED;
|
|
|
|
|
map->m_pblk = dn.data_blkaddr;
|
|
|
|
|
map->m_len = 1;
|
2013-12-16 19:04:05 +09:00
|
|
|
|
2014-04-26 19:59:52 +08:00
|
|
|
end_offset = ADDRS_PER_PAGE(dn.node_page, F2FS_I(inode));
|
2013-12-16 19:04:05 +09:00
|
|
|
dn.ofs_in_node++;
|
|
|
|
|
pgofs++;
|
|
|
|
|
|
|
|
|
|
get_next:
|
|
|
|
|
if (dn.ofs_in_node >= end_offset) {
|
|
|
|
|
if (allocated)
|
|
|
|
|
sync_inode_page(&dn);
|
|
|
|
|
allocated = false;
|
|
|
|
|
f2fs_put_dnode(&dn);
|
|
|
|
|
|
|
|
|
|
set_new_dnode(&dn, inode, NULL, NULL, 0);
|
|
|
|
|
err = get_dnode_of_data(&dn, pgofs, mode);
|
2013-12-26 16:55:22 +09:00
|
|
|
if (err) {
|
2013-12-16 19:04:05 +09:00
|
|
|
if (err == -ENOENT)
|
|
|
|
|
err = 0;
|
|
|
|
|
goto unlock_out;
|
|
|
|
|
}
|
2015-08-19 19:11:19 +08:00
|
|
|
|
2014-04-26 19:59:52 +08:00
|
|
|
end_offset = ADDRS_PER_PAGE(dn.node_page, F2FS_I(inode));
|
2013-12-16 19:04:05 +09:00
|
|
|
}
|
2012-11-02 17:10:12 +09:00
|
|
|
|
2015-04-06 19:55:34 -07:00
|
|
|
if (maxblocks > map->m_len) {
|
2013-12-16 19:04:05 +09:00
|
|
|
block_t blkaddr = datablock_addr(dn.node_page, dn.ofs_in_node);
|
2015-09-18 16:51:51 +08:00
|
|
|
|
|
|
|
|
if (blkaddr == NEW_ADDR || blkaddr == NULL_ADDR) {
|
|
|
|
|
if (create) {
|
2015-09-21 20:17:52 +08:00
|
|
|
if (unlikely(f2fs_cp_error(sbi))) {
|
|
|
|
|
err = -EIO;
|
|
|
|
|
goto sync_out;
|
|
|
|
|
}
|
2015-09-18 16:51:51 +08:00
|
|
|
err = __allocate_data_block(&dn);
|
|
|
|
|
if (err)
|
|
|
|
|
goto sync_out;
|
|
|
|
|
allocated = true;
|
|
|
|
|
map->m_flags |= F2FS_MAP_NEW;
|
|
|
|
|
blkaddr = dn.data_blkaddr;
|
|
|
|
|
} else {
|
|
|
|
|
/*
|
|
|
|
|
* we only merge preallocated unwritten blocks
|
|
|
|
|
* for fiemap.
|
|
|
|
|
*/
|
|
|
|
|
if (flag != F2FS_GET_BLOCK_FIEMAP ||
|
|
|
|
|
blkaddr != NEW_ADDR)
|
|
|
|
|
goto sync_out;
|
|
|
|
|
}
|
2013-12-16 19:04:05 +09:00
|
|
|
}
|
2015-09-18 16:51:51 +08:00
|
|
|
|
2014-08-06 23:22:50 +09:00
|
|
|
/* Give more consecutive addresses for the readahead */
|
2015-05-08 19:30:32 -07:00
|
|
|
if ((map->m_pblk != NEW_ADDR &&
|
|
|
|
|
blkaddr == (map->m_pblk + ofs)) ||
|
|
|
|
|
(map->m_pblk == NEW_ADDR &&
|
|
|
|
|
blkaddr == NEW_ADDR)) {
|
2013-12-16 19:04:05 +09:00
|
|
|
ofs++;
|
|
|
|
|
dn.ofs_in_node++;
|
|
|
|
|
pgofs++;
|
2015-04-06 19:55:34 -07:00
|
|
|
map->m_len++;
|
2013-12-16 19:04:05 +09:00
|
|
|
goto get_next;
|
|
|
|
|
}
|
2012-11-02 17:10:12 +09:00
|
|
|
}
|
2013-12-16 19:04:05 +09:00
|
|
|
sync_out:
|
|
|
|
|
if (allocated)
|
|
|
|
|
sync_inode_page(&dn);
|
|
|
|
|
put_out:
|
2012-11-02 17:10:12 +09:00
|
|
|
f2fs_put_dnode(&dn);
|
2013-12-16 19:04:05 +09:00
|
|
|
unlock_out:
|
|
|
|
|
if (create)
|
2014-09-02 15:31:18 -07:00
|
|
|
f2fs_unlock_op(F2FS_I_SB(inode));
|
2013-12-16 19:04:05 +09:00
|
|
|
out:
|
2015-04-06 19:55:34 -07:00
|
|
|
trace_f2fs_map_blocks(inode, map, err);
|
2013-12-16 19:04:05 +09:00
|
|
|
return err;
|
2012-11-02 17:10:12 +09:00
|
|
|
}
|
|
|
|
|
|
2015-04-06 19:55:34 -07:00
|
|
|
static int __get_data_block(struct inode *inode, sector_t iblock,
|
2015-08-19 19:11:19 +08:00
|
|
|
struct buffer_head *bh, int create, int flag)
|
2015-04-06 19:55:34 -07:00
|
|
|
{
|
|
|
|
|
struct f2fs_map_blocks map;
|
|
|
|
|
int ret;
|
|
|
|
|
|
|
|
|
|
map.m_lblk = iblock;
|
|
|
|
|
map.m_len = bh->b_size >> inode->i_blkbits;
|
|
|
|
|
|
2015-08-19 19:11:19 +08:00
|
|
|
ret = f2fs_map_blocks(inode, &map, create, flag);
|
2015-04-06 19:55:34 -07:00
|
|
|
if (!ret) {
|
|
|
|
|
map_bh(bh, inode->i_sb, map.m_pblk);
|
|
|
|
|
bh->b_state = (bh->b_state & ~F2FS_MAP_FLAGS) | map.m_flags;
|
2017-01-22 12:21:02 +08:00
|
|
|
bh->b_size = (u64)map.m_len << inode->i_blkbits;
|
2015-04-06 19:55:34 -07:00
|
|
|
}
|
|
|
|
|
return ret;
|
|
|
|
|
}
|
|
|
|
|
|
2014-06-13 13:02:11 +09:00
|
|
|
static int get_data_block(struct inode *inode, sector_t iblock,
|
2015-08-19 19:11:19 +08:00
|
|
|
struct buffer_head *bh_result, int create, int flag)
|
|
|
|
|
{
|
|
|
|
|
return __get_data_block(inode, iblock, bh_result, create, flag);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int get_data_block_dio(struct inode *inode, sector_t iblock,
|
2014-06-13 13:02:11 +09:00
|
|
|
struct buffer_head *bh_result, int create)
|
|
|
|
|
{
|
2015-08-19 19:11:19 +08:00
|
|
|
return __get_data_block(inode, iblock, bh_result, create,
|
|
|
|
|
F2FS_GET_BLOCK_DIO);
|
2014-06-13 13:02:11 +09:00
|
|
|
}
|
|
|
|
|
|
2015-08-19 19:11:19 +08:00
|
|
|
static int get_data_block_bmap(struct inode *inode, sector_t iblock,
|
2014-06-13 13:02:11 +09:00
|
|
|
struct buffer_head *bh_result, int create)
|
|
|
|
|
{
|
2015-08-19 19:11:19 +08:00
|
|
|
return __get_data_block(inode, iblock, bh_result, create,
|
|
|
|
|
F2FS_GET_BLOCK_BMAP);
|
2014-06-13 13:02:11 +09:00
|
|
|
}
|
|
|
|
|
|
2015-05-08 19:30:32 -07:00
|
|
|
static inline sector_t logical_to_blk(struct inode *inode, loff_t offset)
|
|
|
|
|
{
|
|
|
|
|
return (offset >> inode->i_blkbits);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static inline loff_t blk_to_logical(struct inode *inode, sector_t blk)
|
|
|
|
|
{
|
|
|
|
|
return (blk << inode->i_blkbits);
|
|
|
|
|
}
|
|
|
|
|
|
2014-06-08 04:30:14 +09:00
|
|
|
int f2fs_fiemap(struct inode *inode, struct fiemap_extent_info *fieinfo,
|
|
|
|
|
u64 start, u64 len)
|
|
|
|
|
{
|
2015-05-08 19:30:32 -07:00
|
|
|
struct buffer_head map_bh;
|
|
|
|
|
sector_t start_blk, last_blk;
|
|
|
|
|
loff_t isize = i_size_read(inode);
|
|
|
|
|
u64 logical = 0, phys = 0, size = 0;
|
|
|
|
|
u32 flags = 0;
|
|
|
|
|
bool past_eof = false, whole_file = false;
|
|
|
|
|
int ret = 0;
|
|
|
|
|
|
|
|
|
|
ret = fiemap_check_flags(fieinfo, FIEMAP_FLAG_SYNC);
|
|
|
|
|
if (ret)
|
|
|
|
|
return ret;
|
|
|
|
|
|
2015-10-15 11:34:49 -07:00
|
|
|
if (f2fs_has_inline_data(inode)) {
|
|
|
|
|
ret = f2fs_inline_data_fiemap(inode, fieinfo, start, len);
|
|
|
|
|
if (ret != -EAGAIN)
|
|
|
|
|
return ret;
|
|
|
|
|
}
|
|
|
|
|
|
2015-05-08 19:30:32 -07:00
|
|
|
mutex_lock(&inode->i_mutex);
|
|
|
|
|
|
|
|
|
|
if (len >= isize) {
|
|
|
|
|
whole_file = true;
|
|
|
|
|
len = isize;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (logical_to_blk(inode, len) == 0)
|
|
|
|
|
len = blk_to_logical(inode, 1);
|
|
|
|
|
|
|
|
|
|
start_blk = logical_to_blk(inode, start);
|
|
|
|
|
last_blk = logical_to_blk(inode, start + len - 1);
|
|
|
|
|
next:
|
|
|
|
|
memset(&map_bh, 0, sizeof(struct buffer_head));
|
|
|
|
|
map_bh.b_size = len;
|
|
|
|
|
|
2015-08-19 19:11:19 +08:00
|
|
|
ret = get_data_block(inode, start_blk, &map_bh, 0,
|
|
|
|
|
F2FS_GET_BLOCK_FIEMAP);
|
2015-05-08 19:30:32 -07:00
|
|
|
if (ret)
|
|
|
|
|
goto out;
|
|
|
|
|
|
|
|
|
|
/* HOLE */
|
|
|
|
|
if (!buffer_mapped(&map_bh)) {
|
|
|
|
|
start_blk++;
|
|
|
|
|
|
|
|
|
|
if (!past_eof && blk_to_logical(inode, start_blk) >= isize)
|
|
|
|
|
past_eof = 1;
|
|
|
|
|
|
|
|
|
|
if (past_eof && size) {
|
|
|
|
|
flags |= FIEMAP_EXTENT_LAST;
|
|
|
|
|
ret = fiemap_fill_next_extent(fieinfo, logical,
|
|
|
|
|
phys, size, flags);
|
|
|
|
|
} else if (size) {
|
|
|
|
|
ret = fiemap_fill_next_extent(fieinfo, logical,
|
|
|
|
|
phys, size, flags);
|
|
|
|
|
size = 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* if we have holes up to/past EOF then we're done */
|
|
|
|
|
if (start_blk > last_blk || past_eof || ret)
|
|
|
|
|
goto out;
|
|
|
|
|
} else {
|
|
|
|
|
if (start_blk > last_blk && !whole_file) {
|
|
|
|
|
ret = fiemap_fill_next_extent(fieinfo, logical,
|
|
|
|
|
phys, size, flags);
|
|
|
|
|
goto out;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* if size != 0 then we know we already have an extent
|
|
|
|
|
* to add, so add it.
|
|
|
|
|
*/
|
|
|
|
|
if (size) {
|
|
|
|
|
ret = fiemap_fill_next_extent(fieinfo, logical,
|
|
|
|
|
phys, size, flags);
|
|
|
|
|
if (ret)
|
|
|
|
|
goto out;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
logical = blk_to_logical(inode, start_blk);
|
|
|
|
|
phys = blk_to_logical(inode, map_bh.b_blocknr);
|
|
|
|
|
size = map_bh.b_size;
|
|
|
|
|
flags = 0;
|
|
|
|
|
if (buffer_unwritten(&map_bh))
|
|
|
|
|
flags = FIEMAP_EXTENT_UNWRITTEN;
|
|
|
|
|
|
|
|
|
|
start_blk += logical_to_blk(inode, size);
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* If we are past the EOF, then we need to make sure as
|
|
|
|
|
* soon as we find a hole that the last extent we found
|
|
|
|
|
* is marked with FIEMAP_EXTENT_LAST
|
|
|
|
|
*/
|
|
|
|
|
if (!past_eof && logical + size >= isize)
|
|
|
|
|
past_eof = true;
|
|
|
|
|
}
|
|
|
|
|
cond_resched();
|
|
|
|
|
if (fatal_signal_pending(current))
|
|
|
|
|
ret = -EINTR;
|
|
|
|
|
else
|
|
|
|
|
goto next;
|
|
|
|
|
out:
|
|
|
|
|
if (ret == 1)
|
|
|
|
|
ret = 0;
|
|
|
|
|
|
|
|
|
|
mutex_unlock(&inode->i_mutex);
|
|
|
|
|
return ret;
|
2014-06-08 04:30:14 +09:00
|
|
|
}
|
|
|
|
|
|
2016-07-03 22:05:11 +08:00
|
|
|
struct bio *f2fs_grab_bio(struct inode *inode, block_t blkaddr,
|
|
|
|
|
unsigned nr_pages)
|
|
|
|
|
{
|
|
|
|
|
struct f2fs_sb_info *sbi = F2FS_I_SB(inode);
|
|
|
|
|
struct f2fs_crypto_ctx *ctx = NULL;
|
|
|
|
|
struct block_device *bdev = sbi->sb->s_bdev;
|
|
|
|
|
struct bio *bio;
|
|
|
|
|
|
f2fs: fix to do sanity check with block address in main area v2
commit 91291e9998d208370eb8156c760691b873bd7522 upstream.
This patch adds f2fs_is_valid_blkaddr() in below functions to do sanity
check with block address to avoid pentential panic:
- f2fs_grab_read_bio()
- __written_first_block()
https://bugzilla.kernel.org/show_bug.cgi?id=200465
- Reproduce
- POC (poc.c)
#define _GNU_SOURCE
#include <sys/types.h>
#include <sys/mount.h>
#include <sys/mman.h>
#include <sys/stat.h>
#include <sys/xattr.h>
#include <dirent.h>
#include <errno.h>
#include <error.h>
#include <fcntl.h>
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <unistd.h>
#include <linux/falloc.h>
#include <linux/loop.h>
static void activity(char *mpoint) {
char *xattr;
int err;
err = asprintf(&xattr, "%s/foo/bar/xattr", mpoint);
char buf2[113];
memset(buf2, 0, sizeof(buf2));
listxattr(xattr, buf2, sizeof(buf2));
}
int main(int argc, char *argv[]) {
activity(argv[1]);
return 0;
}
- kernel message
[ 844.718738] F2FS-fs (loop0): Mounted with checkpoint version = 2
[ 846.430929] F2FS-fs (loop0): access invalid blkaddr:1024
[ 846.431058] WARNING: CPU: 1 PID: 1249 at fs/f2fs/checkpoint.c:154 f2fs_is_valid_blkaddr+0x10f/0x160
[ 846.431059] Modules linked in: snd_hda_codec_generic snd_hda_intel snd_hda_codec snd_hda_core snd_hwdep snd_pcm snd_timer snd input_leds joydev soundcore serio_raw i2c_piix4 mac_hid ib_iser rdma_cm iw_cm ib_cm ib_core configfs iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi autofs4 raid10 raid456 libcrc32c async_raid6_recov async_memcpy async_pq async_xor xor async_tx raid6_pq raid1 raid0 multipath linear qxl ttm crct10dif_pclmul crc32_pclmul drm_kms_helper ghash_clmulni_intel syscopyarea sysfillrect sysimgblt fb_sys_fops pcbc drm 8139too aesni_intel 8139cp floppy psmouse mii aes_x86_64 crypto_simd pata_acpi cryptd glue_helper
[ 846.431310] CPU: 1 PID: 1249 Comm: a.out Not tainted 4.18.0-rc3+ #1
[ 846.431312] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Ubuntu-1.8.2-1ubuntu1 04/01/2014
[ 846.431315] RIP: 0010:f2fs_is_valid_blkaddr+0x10f/0x160
[ 846.431316] Code: 00 eb ed 31 c0 83 fa 05 75 ae 48 83 ec 08 48 8b 3f 89 f1 48 c7 c2 fc 0b 0f 8b 48 c7 c6 8b d7 09 8b 88 44 24 07 e8 61 8b ff ff <0f> 0b 0f b6 44 24 07 48 83 c4 08 eb 81 4c 8b 47 10 8b 8f 38 04 00
[ 846.431347] RSP: 0018:ffff961c414a7bc0 EFLAGS: 00010282
[ 846.431349] RAX: 0000000000000000 RBX: ffffc5f787b8ea80 RCX: 0000000000000000
[ 846.431350] RDX: 0000000000000000 RSI: ffff89dfffd165d8 RDI: ffff89dfffd165d8
[ 846.431351] RBP: ffff961c414a7c20 R08: 0000000000000001 R09: 0000000000000248
[ 846.431353] R10: 0000000000000000 R11: 0000000000000248 R12: 0000000000000007
[ 846.431369] R13: ffff89dff5492800 R14: ffff89dfae3aa000 R15: ffff89dff4ff88d0
[ 846.431372] FS: 00007f882e2fb700(0000) GS:ffff89dfffd00000(0000) knlGS:0000000000000000
[ 846.431373] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 846.431374] CR2: 0000000001a88008 CR3: 00000001eb572000 CR4: 00000000000006e0
[ 846.431384] Call Trace:
[ 846.431426] f2fs_iget+0x6f4/0xe70
[ 846.431430] ? f2fs_find_entry+0x71/0x90
[ 846.431432] f2fs_lookup+0x1aa/0x390
[ 846.431452] __lookup_slow+0x97/0x150
[ 846.431459] lookup_slow+0x35/0x50
[ 846.431462] walk_component+0x1c6/0x470
[ 846.431479] ? memcg_kmem_charge_memcg+0x70/0x90
[ 846.431488] ? page_add_file_rmap+0x13/0x200
[ 846.431491] path_lookupat+0x76/0x230
[ 846.431501] ? __alloc_pages_nodemask+0xfc/0x280
[ 846.431504] filename_lookup+0xb8/0x1a0
[ 846.431534] ? _cond_resched+0x16/0x40
[ 846.431541] ? kmem_cache_alloc+0x160/0x1d0
[ 846.431549] ? path_listxattr+0x41/0xa0
[ 846.431551] path_listxattr+0x41/0xa0
[ 846.431570] do_syscall_64+0x55/0x100
[ 846.431583] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 846.431607] RIP: 0033:0x7f882de1c0d7
[ 846.431607] Code: f0 ff ff 73 01 c3 48 8b 0d be dd 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 c2 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 91 dd 2b 00 f7 d8 64 89 01 48
[ 846.431639] RSP: 002b:00007ffe8e66c238 EFLAGS: 00000202 ORIG_RAX: 00000000000000c2
[ 846.431641] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f882de1c0d7
[ 846.431642] RDX: 0000000000000071 RSI: 00007ffe8e66c280 RDI: 0000000001a880c0
[ 846.431643] RBP: 00007ffe8e66c300 R08: 0000000001a88010 R09: 0000000000000000
[ 846.431645] R10: 00000000000001ab R11: 0000000000000202 R12: 0000000000400550
[ 846.431646] R13: 00007ffe8e66c400 R14: 0000000000000000 R15: 0000000000000000
[ 846.431648] ---[ end trace abca54df39d14f5c ]---
[ 846.431651] F2FS-fs (loop0): invalid blkaddr: 1024, type: 5, run fsck to fix.
[ 846.431762] WARNING: CPU: 1 PID: 1249 at fs/f2fs/f2fs.h:2697 f2fs_iget+0xd17/0xe70
[ 846.431763] Modules linked in: snd_hda_codec_generic snd_hda_intel snd_hda_codec snd_hda_core snd_hwdep snd_pcm snd_timer snd input_leds joydev soundcore serio_raw i2c_piix4 mac_hid ib_iser rdma_cm iw_cm ib_cm ib_core configfs iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi autofs4 raid10 raid456 libcrc32c async_raid6_recov async_memcpy async_pq async_xor xor async_tx raid6_pq raid1 raid0 multipath linear qxl ttm crct10dif_pclmul crc32_pclmul drm_kms_helper ghash_clmulni_intel syscopyarea sysfillrect sysimgblt fb_sys_fops pcbc drm 8139too aesni_intel 8139cp floppy psmouse mii aes_x86_64 crypto_simd pata_acpi cryptd glue_helper
[ 846.431797] CPU: 1 PID: 1249 Comm: a.out Tainted: G W 4.18.0-rc3+ #1
[ 846.431798] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Ubuntu-1.8.2-1ubuntu1 04/01/2014
[ 846.431800] RIP: 0010:f2fs_iget+0xd17/0xe70
[ 846.431801] Code: ff ff 48 63 d8 e9 e1 f6 ff ff 48 8b 45 c8 41 b8 05 00 00 00 48 c7 c2 d8 e8 0e 8b 48 c7 c6 1d b0 0a 8b 48 8b 38 e8 f9 b4 00 00 <0f> 0b 48 8b 45 c8 f0 80 48 48 04 e9 d8 f9 ff ff 0f 0b 48 8b 43 18
[ 846.431832] RSP: 0018:ffff961c414a7bd0 EFLAGS: 00010282
[ 846.431834] RAX: 0000000000000000 RBX: ffffc5f787b8ea80 RCX: 0000000000000006
[ 846.431835] RDX: 0000000000000000 RSI: 0000000000000096 RDI: ffff89dfffd165d0
[ 846.431836] RBP: ffff961c414a7c20 R08: 0000000000000000 R09: 0000000000000273
[ 846.431837] R10: 0000000000000000 R11: ffff89dfad50ca60 R12: 0000000000000007
[ 846.431838] R13: ffff89dff5492800 R14: ffff89dfae3aa000 R15: ffff89dff4ff88d0
[ 846.431840] FS: 00007f882e2fb700(0000) GS:ffff89dfffd00000(0000) knlGS:0000000000000000
[ 846.431841] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 846.431842] CR2: 0000000001a88008 CR3: 00000001eb572000 CR4: 00000000000006e0
[ 846.431846] Call Trace:
[ 846.431850] ? f2fs_find_entry+0x71/0x90
[ 846.431853] f2fs_lookup+0x1aa/0x390
[ 846.431856] __lookup_slow+0x97/0x150
[ 846.431858] lookup_slow+0x35/0x50
[ 846.431874] walk_component+0x1c6/0x470
[ 846.431878] ? memcg_kmem_charge_memcg+0x70/0x90
[ 846.431880] ? page_add_file_rmap+0x13/0x200
[ 846.431882] path_lookupat+0x76/0x230
[ 846.431884] ? __alloc_pages_nodemask+0xfc/0x280
[ 846.431886] filename_lookup+0xb8/0x1a0
[ 846.431890] ? _cond_resched+0x16/0x40
[ 846.431891] ? kmem_cache_alloc+0x160/0x1d0
[ 846.431894] ? path_listxattr+0x41/0xa0
[ 846.431896] path_listxattr+0x41/0xa0
[ 846.431898] do_syscall_64+0x55/0x100
[ 846.431901] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 846.431902] RIP: 0033:0x7f882de1c0d7
[ 846.431903] Code: f0 ff ff 73 01 c3 48 8b 0d be dd 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 c2 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 91 dd 2b 00 f7 d8 64 89 01 48
[ 846.431934] RSP: 002b:00007ffe8e66c238 EFLAGS: 00000202 ORIG_RAX: 00000000000000c2
[ 846.431936] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f882de1c0d7
[ 846.431937] RDX: 0000000000000071 RSI: 00007ffe8e66c280 RDI: 0000000001a880c0
[ 846.431939] RBP: 00007ffe8e66c300 R08: 0000000001a88010 R09: 0000000000000000
[ 846.431940] R10: 00000000000001ab R11: 0000000000000202 R12: 0000000000400550
[ 846.431941] R13: 00007ffe8e66c400 R14: 0000000000000000 R15: 0000000000000000
[ 846.431943] ---[ end trace abca54df39d14f5d ]---
[ 846.432033] F2FS-fs (loop0): access invalid blkaddr:1024
[ 846.432051] WARNING: CPU: 1 PID: 1249 at fs/f2fs/checkpoint.c:154 f2fs_is_valid_blkaddr+0x10f/0x160
[ 846.432051] Modules linked in: snd_hda_codec_generic snd_hda_intel snd_hda_codec snd_hda_core snd_hwdep snd_pcm snd_timer snd input_leds joydev soundcore serio_raw i2c_piix4 mac_hid ib_iser rdma_cm iw_cm ib_cm ib_core configfs iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi autofs4 raid10 raid456 libcrc32c async_raid6_recov async_memcpy async_pq async_xor xor async_tx raid6_pq raid1 raid0 multipath linear qxl ttm crct10dif_pclmul crc32_pclmul drm_kms_helper ghash_clmulni_intel syscopyarea sysfillrect sysimgblt fb_sys_fops pcbc drm 8139too aesni_intel 8139cp floppy psmouse mii aes_x86_64 crypto_simd pata_acpi cryptd glue_helper
[ 846.432085] CPU: 1 PID: 1249 Comm: a.out Tainted: G W 4.18.0-rc3+ #1
[ 846.432086] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Ubuntu-1.8.2-1ubuntu1 04/01/2014
[ 846.432089] RIP: 0010:f2fs_is_valid_blkaddr+0x10f/0x160
[ 846.432089] Code: 00 eb ed 31 c0 83 fa 05 75 ae 48 83 ec 08 48 8b 3f 89 f1 48 c7 c2 fc 0b 0f 8b 48 c7 c6 8b d7 09 8b 88 44 24 07 e8 61 8b ff ff <0f> 0b 0f b6 44 24 07 48 83 c4 08 eb 81 4c 8b 47 10 8b 8f 38 04 00
[ 846.432120] RSP: 0018:ffff961c414a7900 EFLAGS: 00010286
[ 846.432122] RAX: 0000000000000000 RBX: 0000000000000400 RCX: 0000000000000006
[ 846.432123] RDX: 0000000000000000 RSI: 0000000000000096 RDI: ffff89dfffd165d0
[ 846.432124] RBP: ffff89dff5492800 R08: 0000000000000001 R09: 000000000000029d
[ 846.432125] R10: ffff961c414a7820 R11: 000000000000029d R12: 0000000000000400
[ 846.432126] R13: 0000000000000000 R14: ffff89dff4ff88d0 R15: 0000000000000000
[ 846.432128] FS: 00007f882e2fb700(0000) GS:ffff89dfffd00000(0000) knlGS:0000000000000000
[ 846.432130] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 846.432131] CR2: 0000000001a88008 CR3: 00000001eb572000 CR4: 00000000000006e0
[ 846.432135] Call Trace:
[ 846.432151] f2fs_wait_on_block_writeback+0x20/0x110
[ 846.432158] f2fs_grab_read_bio+0xbc/0xe0
[ 846.432161] f2fs_submit_page_read+0x21/0x280
[ 846.432163] f2fs_get_read_data_page+0xb7/0x3c0
[ 846.432165] f2fs_get_lock_data_page+0x29/0x1e0
[ 846.432167] f2fs_get_new_data_page+0x148/0x550
[ 846.432170] f2fs_add_regular_entry+0x1d2/0x550
[ 846.432178] ? __switch_to+0x12f/0x460
[ 846.432181] f2fs_add_dentry+0x6a/0xd0
[ 846.432184] f2fs_do_add_link+0xe9/0x140
[ 846.432186] __recover_dot_dentries+0x260/0x280
[ 846.432189] f2fs_lookup+0x343/0x390
[ 846.432193] __lookup_slow+0x97/0x150
[ 846.432195] lookup_slow+0x35/0x50
[ 846.432208] walk_component+0x1c6/0x470
[ 846.432212] ? memcg_kmem_charge_memcg+0x70/0x90
[ 846.432215] ? page_add_file_rmap+0x13/0x200
[ 846.432217] path_lookupat+0x76/0x230
[ 846.432219] ? __alloc_pages_nodemask+0xfc/0x280
[ 846.432221] filename_lookup+0xb8/0x1a0
[ 846.432224] ? _cond_resched+0x16/0x40
[ 846.432226] ? kmem_cache_alloc+0x160/0x1d0
[ 846.432228] ? path_listxattr+0x41/0xa0
[ 846.432230] path_listxattr+0x41/0xa0
[ 846.432233] do_syscall_64+0x55/0x100
[ 846.432235] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 846.432237] RIP: 0033:0x7f882de1c0d7
[ 846.432237] Code: f0 ff ff 73 01 c3 48 8b 0d be dd 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 c2 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 91 dd 2b 00 f7 d8 64 89 01 48
[ 846.432269] RSP: 002b:00007ffe8e66c238 EFLAGS: 00000202 ORIG_RAX: 00000000000000c2
[ 846.432271] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f882de1c0d7
[ 846.432272] RDX: 0000000000000071 RSI: 00007ffe8e66c280 RDI: 0000000001a880c0
[ 846.432273] RBP: 00007ffe8e66c300 R08: 0000000001a88010 R09: 0000000000000000
[ 846.432274] R10: 00000000000001ab R11: 0000000000000202 R12: 0000000000400550
[ 846.432275] R13: 00007ffe8e66c400 R14: 0000000000000000 R15: 0000000000000000
[ 846.432277] ---[ end trace abca54df39d14f5e ]---
[ 846.432279] F2FS-fs (loop0): invalid blkaddr: 1024, type: 5, run fsck to fix.
[ 846.432376] WARNING: CPU: 1 PID: 1249 at fs/f2fs/f2fs.h:2697 f2fs_wait_on_block_writeback+0xb1/0x110
[ 846.432376] Modules linked in: snd_hda_codec_generic snd_hda_intel snd_hda_codec snd_hda_core snd_hwdep snd_pcm snd_timer snd input_leds joydev soundcore serio_raw i2c_piix4 mac_hid ib_iser rdma_cm iw_cm ib_cm ib_core configfs iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi autofs4 raid10 raid456 libcrc32c async_raid6_recov async_memcpy async_pq async_xor xor async_tx raid6_pq raid1 raid0 multipath linear qxl ttm crct10dif_pclmul crc32_pclmul drm_kms_helper ghash_clmulni_intel syscopyarea sysfillrect sysimgblt fb_sys_fops pcbc drm 8139too aesni_intel 8139cp floppy psmouse mii aes_x86_64 crypto_simd pata_acpi cryptd glue_helper
[ 846.432410] CPU: 1 PID: 1249 Comm: a.out Tainted: G W 4.18.0-rc3+ #1
[ 846.432411] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Ubuntu-1.8.2-1ubuntu1 04/01/2014
[ 846.432413] RIP: 0010:f2fs_wait_on_block_writeback+0xb1/0x110
[ 846.432414] Code: 66 90 f0 ff 4b 34 74 59 5b 5d c3 48 8b 7d 00 41 b8 05 00 00 00 89 d9 48 c7 c2 d8 e8 0e 8b 48 c7 c6 1d b0 0a 8b e8 df bc fd ff <0f> 0b f0 80 4d 48 04 e9 67 ff ff ff 48 8b 03 48 c1 e8 37 83 e0 07
[ 846.432445] RSP: 0018:ffff961c414a7910 EFLAGS: 00010286
[ 846.432447] RAX: 0000000000000000 RBX: 0000000000000400 RCX: 0000000000000006
[ 846.432448] RDX: 0000000000000000 RSI: 0000000000000092 RDI: ffff89dfffd165d0
[ 846.432449] RBP: ffff89dff5492800 R08: 0000000000000000 R09: 00000000000002d1
[ 846.432450] R10: ffff961c414a7820 R11: ffff89dfad50cf80 R12: 0000000000000400
[ 846.432451] R13: 0000000000000000 R14: ffff89dff4ff88d0 R15: 0000000000000000
[ 846.432453] FS: 00007f882e2fb700(0000) GS:ffff89dfffd00000(0000) knlGS:0000000000000000
[ 846.432454] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 846.432455] CR2: 0000000001a88008 CR3: 00000001eb572000 CR4: 00000000000006e0
[ 846.432459] Call Trace:
[ 846.432463] f2fs_grab_read_bio+0xbc/0xe0
[ 846.432464] f2fs_submit_page_read+0x21/0x280
[ 846.432466] f2fs_get_read_data_page+0xb7/0x3c0
[ 846.432468] f2fs_get_lock_data_page+0x29/0x1e0
[ 846.432470] f2fs_get_new_data_page+0x148/0x550
[ 846.432473] f2fs_add_regular_entry+0x1d2/0x550
[ 846.432475] ? __switch_to+0x12f/0x460
[ 846.432477] f2fs_add_dentry+0x6a/0xd0
[ 846.432480] f2fs_do_add_link+0xe9/0x140
[ 846.432483] __recover_dot_dentries+0x260/0x280
[ 846.432485] f2fs_lookup+0x343/0x390
[ 846.432488] __lookup_slow+0x97/0x150
[ 846.432490] lookup_slow+0x35/0x50
[ 846.432505] walk_component+0x1c6/0x470
[ 846.432509] ? memcg_kmem_charge_memcg+0x70/0x90
[ 846.432511] ? page_add_file_rmap+0x13/0x200
[ 846.432513] path_lookupat+0x76/0x230
[ 846.432515] ? __alloc_pages_nodemask+0xfc/0x280
[ 846.432517] filename_lookup+0xb8/0x1a0
[ 846.432520] ? _cond_resched+0x16/0x40
[ 846.432522] ? kmem_cache_alloc+0x160/0x1d0
[ 846.432525] ? path_listxattr+0x41/0xa0
[ 846.432526] path_listxattr+0x41/0xa0
[ 846.432529] do_syscall_64+0x55/0x100
[ 846.432531] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 846.432533] RIP: 0033:0x7f882de1c0d7
[ 846.432533] Code: f0 ff ff 73 01 c3 48 8b 0d be dd 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 c2 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 91 dd 2b 00 f7 d8 64 89 01 48
[ 846.432565] RSP: 002b:00007ffe8e66c238 EFLAGS: 00000202 ORIG_RAX: 00000000000000c2
[ 846.432567] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f882de1c0d7
[ 846.432568] RDX: 0000000000000071 RSI: 00007ffe8e66c280 RDI: 0000000001a880c0
[ 846.432569] RBP: 00007ffe8e66c300 R08: 0000000001a88010 R09: 0000000000000000
[ 846.432570] R10: 00000000000001ab R11: 0000000000000202 R12: 0000000000400550
[ 846.432571] R13: 00007ffe8e66c400 R14: 0000000000000000 R15: 0000000000000000
[ 846.432573] ---[ end trace abca54df39d14f5f ]---
[ 846.434280] BUG: unable to handle kernel NULL pointer dereference at 0000000000000008
[ 846.434424] PGD 80000001ebd3a067 P4D 80000001ebd3a067 PUD 1eb1ae067 PMD 0
[ 846.434551] Oops: 0000 [#1] SMP PTI
[ 846.434697] CPU: 0 PID: 44 Comm: kworker/u5:0 Tainted: G W 4.18.0-rc3+ #1
[ 846.434805] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Ubuntu-1.8.2-1ubuntu1 04/01/2014
[ 846.435000] Workqueue: fscrypt_read_queue decrypt_work
[ 846.435174] RIP: 0010:fscrypt_do_page_crypto+0x6e/0x2d0
[ 846.435351] Code: 00 65 48 8b 04 25 28 00 00 00 48 89 84 24 88 00 00 00 31 c0 e8 43 c2 e0 ff 49 8b 86 48 02 00 00 85 ed c7 44 24 70 00 00 00 00 <48> 8b 58 08 0f 84 14 02 00 00 48 8b 78 10 48 8b 0c 24 48 c7 84 24
[ 846.435696] RSP: 0018:ffff961c40f9bd60 EFLAGS: 00010206
[ 846.435870] RAX: 0000000000000000 RBX: ffffc5f787719b80 RCX: ffffc5f787719b80
[ 846.436051] RDX: ffffffff8b9f4b88 RSI: ffffffff8b0ae622 RDI: ffff961c40f9bdb8
[ 846.436261] RBP: 0000000000001000 R08: ffffc5f787719b80 R09: 0000000000001000
[ 846.436433] R10: 0000000000000018 R11: fefefefefefefeff R12: ffffc5f787719b80
[ 846.436562] R13: ffffc5f787719b80 R14: ffff89dff4ff88d0 R15: 0ffff89dfaddee60
[ 846.436658] FS: 0000000000000000(0000) GS:ffff89dfffc00000(0000) knlGS:0000000000000000
[ 846.436758] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 846.436898] CR2: 0000000000000008 CR3: 00000001eddd0000 CR4: 00000000000006f0
[ 846.437001] Call Trace:
[ 846.437181] ? check_preempt_wakeup+0xf2/0x230
[ 846.437276] ? check_preempt_curr+0x7c/0x90
[ 846.437370] fscrypt_decrypt_page+0x48/0x4d
[ 846.437466] __fscrypt_decrypt_bio+0x5b/0x90
[ 846.437542] decrypt_work+0x12/0x20
[ 846.437651] process_one_work+0x15e/0x3d0
[ 846.437740] worker_thread+0x4c/0x440
[ 846.437848] kthread+0xf8/0x130
[ 846.437938] ? rescuer_thread+0x350/0x350
[ 846.438022] ? kthread_associate_blkcg+0x90/0x90
[ 846.438117] ret_from_fork+0x35/0x40
[ 846.438201] Modules linked in: snd_hda_codec_generic snd_hda_intel snd_hda_codec snd_hda_core snd_hwdep snd_pcm snd_timer snd input_leds joydev soundcore serio_raw i2c_piix4 mac_hid ib_iser rdma_cm iw_cm ib_cm ib_core configfs iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi autofs4 raid10 raid456 libcrc32c async_raid6_recov async_memcpy async_pq async_xor xor async_tx raid6_pq raid1 raid0 multipath linear qxl ttm crct10dif_pclmul crc32_pclmul drm_kms_helper ghash_clmulni_intel syscopyarea sysfillrect sysimgblt fb_sys_fops pcbc drm 8139too aesni_intel 8139cp floppy psmouse mii aes_x86_64 crypto_simd pata_acpi cryptd glue_helper
[ 846.438653] CR2: 0000000000000008
[ 846.438713] ---[ end trace abca54df39d14f60 ]---
[ 846.438796] RIP: 0010:fscrypt_do_page_crypto+0x6e/0x2d0
[ 846.438844] Code: 00 65 48 8b 04 25 28 00 00 00 48 89 84 24 88 00 00 00 31 c0 e8 43 c2 e0 ff 49 8b 86 48 02 00 00 85 ed c7 44 24 70 00 00 00 00 <48> 8b 58 08 0f 84 14 02 00 00 48 8b 78 10 48 8b 0c 24 48 c7 84 24
[ 846.439084] RSP: 0018:ffff961c40f9bd60 EFLAGS: 00010206
[ 846.439176] RAX: 0000000000000000 RBX: ffffc5f787719b80 RCX: ffffc5f787719b80
[ 846.440927] RDX: ffffffff8b9f4b88 RSI: ffffffff8b0ae622 RDI: ffff961c40f9bdb8
[ 846.442083] RBP: 0000000000001000 R08: ffffc5f787719b80 R09: 0000000000001000
[ 846.443284] R10: 0000000000000018 R11: fefefefefefefeff R12: ffffc5f787719b80
[ 846.444448] R13: ffffc5f787719b80 R14: ffff89dff4ff88d0 R15: 0ffff89dfaddee60
[ 846.445558] FS: 0000000000000000(0000) GS:ffff89dfffc00000(0000) knlGS:0000000000000000
[ 846.446687] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 846.447796] CR2: 0000000000000008 CR3: 00000001eddd0000 CR4: 00000000000006f0
- Location
https://elixir.bootlin.com/linux/v4.18-rc4/source/fs/crypto/crypto.c#L149
struct crypto_skcipher *tfm = ci->ci_ctfm;
Here ci can be NULL
Note that this issue maybe require CONFIG_F2FS_FS_ENCRYPTION=y to reproduce.
Reported-by Wen Xu <wen.xu@gatech.edu>
Signed-off-by: Chao Yu <yuchao0@huawei.com>
Signed-off-by: Jaegeuk Kim <jaegeuk@kernel.org>
[bwh: Backported to 4.4: adjust context]
Signed-off-by: Ben Hutchings <ben.hutchings@codethink.co.uk>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2018-07-10 23:01:45 +08:00
|
|
|
if (!f2fs_is_valid_blkaddr(sbi, blkaddr, DATA_GENERIC))
|
|
|
|
|
return ERR_PTR(-EFAULT);
|
|
|
|
|
|
2016-07-03 22:05:11 +08:00
|
|
|
if (f2fs_encrypted_inode(inode) && S_ISREG(inode->i_mode)) {
|
|
|
|
|
ctx = f2fs_get_crypto_ctx(inode);
|
|
|
|
|
if (IS_ERR(ctx))
|
|
|
|
|
return ERR_CAST(ctx);
|
|
|
|
|
|
|
|
|
|
/* wait the page to be moved by cleaning */
|
|
|
|
|
f2fs_wait_on_encrypted_page_writeback(sbi, blkaddr);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
bio = bio_alloc(GFP_KERNEL, min_t(int, nr_pages, BIO_MAX_PAGES));
|
|
|
|
|
if (!bio) {
|
|
|
|
|
if (ctx)
|
|
|
|
|
f2fs_release_crypto_ctx(ctx);
|
|
|
|
|
return ERR_PTR(-ENOMEM);
|
|
|
|
|
}
|
|
|
|
|
bio->bi_bdev = bdev;
|
|
|
|
|
bio->bi_iter.bi_sector = SECTOR_FROM_BLOCK(blkaddr);
|
|
|
|
|
bio->bi_end_io = f2fs_read_end_io;
|
|
|
|
|
bio->bi_private = ctx;
|
|
|
|
|
|
|
|
|
|
return bio;
|
|
|
|
|
}
|
|
|
|
|
|
2015-04-09 11:20:42 -07:00
|
|
|
/*
|
|
|
|
|
* This function was originally taken from fs/mpage.c, and customized for f2fs.
|
|
|
|
|
* Major change was from block_size == page_size in f2fs by default.
|
|
|
|
|
*/
|
|
|
|
|
static int f2fs_mpage_readpages(struct address_space *mapping,
|
|
|
|
|
struct list_head *pages, struct page *page,
|
|
|
|
|
unsigned nr_pages)
|
|
|
|
|
{
|
|
|
|
|
struct bio *bio = NULL;
|
|
|
|
|
unsigned page_idx;
|
|
|
|
|
sector_t last_block_in_bio = 0;
|
|
|
|
|
struct inode *inode = mapping->host;
|
|
|
|
|
const unsigned blkbits = inode->i_blkbits;
|
|
|
|
|
const unsigned blocksize = 1 << blkbits;
|
|
|
|
|
sector_t block_in_file;
|
|
|
|
|
sector_t last_block;
|
|
|
|
|
sector_t last_block_in_file;
|
|
|
|
|
sector_t block_nr;
|
|
|
|
|
struct f2fs_map_blocks map;
|
|
|
|
|
|
|
|
|
|
map.m_pblk = 0;
|
|
|
|
|
map.m_lblk = 0;
|
|
|
|
|
map.m_len = 0;
|
|
|
|
|
map.m_flags = 0;
|
|
|
|
|
|
|
|
|
|
for (page_idx = 0; nr_pages; page_idx++, nr_pages--) {
|
|
|
|
|
|
|
|
|
|
prefetchw(&page->flags);
|
|
|
|
|
if (pages) {
|
|
|
|
|
page = list_entry(pages->prev, struct page, lru);
|
|
|
|
|
list_del(&page->lru);
|
|
|
|
|
if (add_to_page_cache_lru(page, mapping,
|
|
|
|
|
page->index, GFP_KERNEL))
|
|
|
|
|
goto next_page;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
block_in_file = (sector_t)page->index;
|
|
|
|
|
last_block = block_in_file + nr_pages;
|
|
|
|
|
last_block_in_file = (i_size_read(inode) + blocksize - 1) >>
|
|
|
|
|
blkbits;
|
|
|
|
|
if (last_block > last_block_in_file)
|
|
|
|
|
last_block = last_block_in_file;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Map blocks using the previous result first.
|
|
|
|
|
*/
|
|
|
|
|
if ((map.m_flags & F2FS_MAP_MAPPED) &&
|
|
|
|
|
block_in_file > map.m_lblk &&
|
|
|
|
|
block_in_file < (map.m_lblk + map.m_len))
|
|
|
|
|
goto got_it;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Then do more f2fs_map_blocks() calls until we are
|
|
|
|
|
* done with this page.
|
|
|
|
|
*/
|
|
|
|
|
map.m_flags = 0;
|
|
|
|
|
|
|
|
|
|
if (block_in_file < last_block) {
|
|
|
|
|
map.m_lblk = block_in_file;
|
|
|
|
|
map.m_len = last_block - block_in_file;
|
|
|
|
|
|
2015-09-18 16:54:16 +08:00
|
|
|
if (f2fs_map_blocks(inode, &map, 0,
|
|
|
|
|
F2FS_GET_BLOCK_READ))
|
2015-04-09 11:20:42 -07:00
|
|
|
goto set_error_page;
|
|
|
|
|
}
|
|
|
|
|
got_it:
|
|
|
|
|
if ((map.m_flags & F2FS_MAP_MAPPED)) {
|
|
|
|
|
block_nr = map.m_pblk + block_in_file - map.m_lblk;
|
|
|
|
|
SetPageMappedToDisk(page);
|
|
|
|
|
|
|
|
|
|
if (!PageUptodate(page) && !cleancache_get_page(page)) {
|
|
|
|
|
SetPageUptodate(page);
|
|
|
|
|
goto confused;
|
|
|
|
|
}
|
f2fs: fix to do sanity check with block address in main area
commit c9b60788fc760d136211853f10ce73dc152d1f4a upstream.
This patch add to do sanity check with below field:
- cp_pack_total_block_count
- blkaddr of data/node
- extent info
- Overview
BUG() in verify_block_addr() when writing to a corrupted f2fs image
- Reproduce (4.18 upstream kernel)
- POC (poc.c)
static void activity(char *mpoint) {
char *foo_bar_baz;
int err;
static int buf[8192];
memset(buf, 0, sizeof(buf));
err = asprintf(&foo_bar_baz, "%s/foo/bar/baz", mpoint);
int fd = open(foo_bar_baz, O_RDWR | O_TRUNC, 0777);
if (fd >= 0) {
write(fd, (char *)buf, sizeof(buf));
fdatasync(fd);
close(fd);
}
}
int main(int argc, char *argv[]) {
activity(argv[1]);
return 0;
}
- Kernel message
[ 689.349473] F2FS-fs (loop0): Mounted with checkpoint version = 3
[ 699.728662] WARNING: CPU: 0 PID: 1309 at fs/f2fs/segment.c:2860 f2fs_inplace_write_data+0x232/0x240
[ 699.728670] Modules linked in: snd_hda_codec_generic snd_hda_intel snd_hda_codec snd_hwdep snd_hda_core snd_pcm snd_timer snd mac_hid i2c_piix4 soundcore ib_iser rdma_cm iw_cm ib_cm ib_core iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi raid10 raid456 async_raid6_recov async_memcpy async_pq async_xor async_tx raid1 raid0 multipath linear 8139too crct10dif_pclmul crc32_pclmul qxl drm_kms_helper syscopyarea aesni_intel sysfillrect sysimgblt fb_sys_fops ttm drm aes_x86_64 crypto_simd cryptd 8139cp glue_helper mii pata_acpi floppy
[ 699.729056] CPU: 0 PID: 1309 Comm: a.out Not tainted 4.18.0-rc1+ #4
[ 699.729064] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Ubuntu-1.8.2-1ubuntu1 04/01/2014
[ 699.729074] RIP: 0010:f2fs_inplace_write_data+0x232/0x240
[ 699.729076] Code: ff e9 cf fe ff ff 49 8d 7d 10 e8 39 45 ad ff 4d 8b 7d 10 be 04 00 00 00 49 8d 7f 48 e8 07 49 ad ff 45 8b 7f 48 e9 fb fe ff ff <0f> 0b f0 41 80 4d 48 04 e9 65 fe ff ff 90 66 66 66 66 90 55 48 8d
[ 699.729130] RSP: 0018:ffff8801f43af568 EFLAGS: 00010202
[ 699.729139] RAX: 000000000000003f RBX: ffff8801f43af7b8 RCX: ffffffffb88c9113
[ 699.729142] RDX: 0000000000000003 RSI: dffffc0000000000 RDI: ffff8802024e5540
[ 699.729144] RBP: ffff8801f43af590 R08: 0000000000000009 R09: ffffffffffffffe8
[ 699.729147] R10: 0000000000000001 R11: ffffed0039b0596a R12: ffff8802024e5540
[ 699.729149] R13: ffff8801f0335500 R14: ffff8801e3e7a700 R15: ffff8801e1ee4450
[ 699.729154] FS: 00007f9bf97f5700(0000) GS:ffff8801f6e00000(0000) knlGS:0000000000000000
[ 699.729156] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 699.729159] CR2: 00007f9bf925d170 CR3: 00000001f0c34000 CR4: 00000000000006f0
[ 699.729171] Call Trace:
[ 699.729192] f2fs_do_write_data_page+0x2e2/0xe00
[ 699.729203] ? f2fs_should_update_outplace+0xd0/0xd0
[ 699.729238] ? memcg_drain_all_list_lrus+0x280/0x280
[ 699.729269] ? __radix_tree_replace+0xa3/0x120
[ 699.729276] __write_data_page+0x5c7/0xe30
[ 699.729291] ? kasan_check_read+0x11/0x20
[ 699.729310] ? page_mapped+0x8a/0x110
[ 699.729321] ? page_mkclean+0xe9/0x160
[ 699.729327] ? f2fs_do_write_data_page+0xe00/0xe00
[ 699.729331] ? invalid_page_referenced_vma+0x130/0x130
[ 699.729345] ? clear_page_dirty_for_io+0x332/0x450
[ 699.729351] f2fs_write_cache_pages+0x4ca/0x860
[ 699.729358] ? __write_data_page+0xe30/0xe30
[ 699.729374] ? percpu_counter_add_batch+0x22/0xa0
[ 699.729380] ? kasan_check_write+0x14/0x20
[ 699.729391] ? _raw_spin_lock+0x17/0x40
[ 699.729403] ? f2fs_mark_inode_dirty_sync.part.18+0x16/0x30
[ 699.729413] ? iov_iter_advance+0x113/0x640
[ 699.729418] ? f2fs_write_end+0x133/0x2e0
[ 699.729423] ? balance_dirty_pages_ratelimited+0x239/0x640
[ 699.729428] f2fs_write_data_pages+0x329/0x520
[ 699.729433] ? generic_perform_write+0x250/0x320
[ 699.729438] ? f2fs_write_cache_pages+0x860/0x860
[ 699.729454] ? current_time+0x110/0x110
[ 699.729459] ? f2fs_preallocate_blocks+0x1ef/0x370
[ 699.729464] do_writepages+0x37/0xb0
[ 699.729468] ? f2fs_write_cache_pages+0x860/0x860
[ 699.729472] ? do_writepages+0x37/0xb0
[ 699.729478] __filemap_fdatawrite_range+0x19a/0x1f0
[ 699.729483] ? delete_from_page_cache_batch+0x4e0/0x4e0
[ 699.729496] ? __vfs_write+0x2b2/0x410
[ 699.729501] file_write_and_wait_range+0x66/0xb0
[ 699.729506] f2fs_do_sync_file+0x1f9/0xd90
[ 699.729511] ? truncate_partial_data_page+0x290/0x290
[ 699.729521] ? __sb_end_write+0x30/0x50
[ 699.729526] ? vfs_write+0x20f/0x260
[ 699.729530] f2fs_sync_file+0x9a/0xb0
[ 699.729534] ? f2fs_do_sync_file+0xd90/0xd90
[ 699.729548] vfs_fsync_range+0x68/0x100
[ 699.729554] ? __fget_light+0xc9/0xe0
[ 699.729558] do_fsync+0x3d/0x70
[ 699.729562] __x64_sys_fdatasync+0x24/0x30
[ 699.729585] do_syscall_64+0x78/0x170
[ 699.729595] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 699.729613] RIP: 0033:0x7f9bf930d800
[ 699.729615] Code: 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 3d 49 bf 2c 00 00 75 10 b8 4b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 be 78 01 00 48 89 04 24
[ 699.729668] RSP: 002b:00007ffee3606c68 EFLAGS: 00000246 ORIG_RAX: 000000000000004b
[ 699.729673] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9bf930d800
[ 699.729675] RDX: 0000000000008000 RSI: 00000000006010a0 RDI: 0000000000000003
[ 699.729678] RBP: 00007ffee3606ca0 R08: 0000000001503010 R09: 0000000000000000
[ 699.729680] R10: 00000000000002e8 R11: 0000000000000246 R12: 0000000000400610
[ 699.729683] R13: 00007ffee3606da0 R14: 0000000000000000 R15: 0000000000000000
[ 699.729687] ---[ end trace 4ce02f25ff7d3df5 ]---
[ 699.729782] ------------[ cut here ]------------
[ 699.729785] kernel BUG at fs/f2fs/segment.h:654!
[ 699.731055] invalid opcode: 0000 [#1] SMP KASAN PTI
[ 699.732104] CPU: 0 PID: 1309 Comm: a.out Tainted: G W 4.18.0-rc1+ #4
[ 699.733684] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Ubuntu-1.8.2-1ubuntu1 04/01/2014
[ 699.735611] RIP: 0010:f2fs_submit_page_bio+0x29b/0x730
[ 699.736649] Code: 54 49 8d bd 18 04 00 00 e8 b2 59 af ff 41 8b 8d 18 04 00 00 8b 45 b8 41 d3 e6 44 01 f0 4c 8d 73 14 41 39 c7 0f 82 37 fe ff ff <0f> 0b 65 8b 05 2c 04 77 47 89 c0 48 0f a3 05 52 c1 d5 01 0f 92 c0
[ 699.740524] RSP: 0018:ffff8801f43af508 EFLAGS: 00010283
[ 699.741573] RAX: 0000000000000000 RBX: ffff8801f43af7b8 RCX: ffffffffb88a7cef
[ 699.743006] RDX: 0000000000000007 RSI: dffffc0000000000 RDI: ffff8801e3e7a64c
[ 699.744426] RBP: ffff8801f43af558 R08: ffffed003e066b55 R09: ffffed003e066b55
[ 699.745833] R10: 0000000000000001 R11: ffffed003e066b54 R12: ffffea0007876940
[ 699.747256] R13: ffff8801f0335500 R14: ffff8801e3e7a600 R15: 0000000000000001
[ 699.748683] FS: 00007f9bf97f5700(0000) GS:ffff8801f6e00000(0000) knlGS:0000000000000000
[ 699.750293] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 699.751462] CR2: 00007f9bf925d170 CR3: 00000001f0c34000 CR4: 00000000000006f0
[ 699.752874] Call Trace:
[ 699.753386] ? f2fs_inplace_write_data+0x93/0x240
[ 699.754341] f2fs_inplace_write_data+0xd2/0x240
[ 699.755271] f2fs_do_write_data_page+0x2e2/0xe00
[ 699.756214] ? f2fs_should_update_outplace+0xd0/0xd0
[ 699.757215] ? memcg_drain_all_list_lrus+0x280/0x280
[ 699.758209] ? __radix_tree_replace+0xa3/0x120
[ 699.759164] __write_data_page+0x5c7/0xe30
[ 699.760002] ? kasan_check_read+0x11/0x20
[ 699.760823] ? page_mapped+0x8a/0x110
[ 699.761573] ? page_mkclean+0xe9/0x160
[ 699.762345] ? f2fs_do_write_data_page+0xe00/0xe00
[ 699.763332] ? invalid_page_referenced_vma+0x130/0x130
[ 699.764374] ? clear_page_dirty_for_io+0x332/0x450
[ 699.765347] f2fs_write_cache_pages+0x4ca/0x860
[ 699.766276] ? __write_data_page+0xe30/0xe30
[ 699.767161] ? percpu_counter_add_batch+0x22/0xa0
[ 699.768112] ? kasan_check_write+0x14/0x20
[ 699.768951] ? _raw_spin_lock+0x17/0x40
[ 699.769739] ? f2fs_mark_inode_dirty_sync.part.18+0x16/0x30
[ 699.770885] ? iov_iter_advance+0x113/0x640
[ 699.771743] ? f2fs_write_end+0x133/0x2e0
[ 699.772569] ? balance_dirty_pages_ratelimited+0x239/0x640
[ 699.773680] f2fs_write_data_pages+0x329/0x520
[ 699.774603] ? generic_perform_write+0x250/0x320
[ 699.775544] ? f2fs_write_cache_pages+0x860/0x860
[ 699.776510] ? current_time+0x110/0x110
[ 699.777299] ? f2fs_preallocate_blocks+0x1ef/0x370
[ 699.778279] do_writepages+0x37/0xb0
[ 699.779026] ? f2fs_write_cache_pages+0x860/0x860
[ 699.779978] ? do_writepages+0x37/0xb0
[ 699.780755] __filemap_fdatawrite_range+0x19a/0x1f0
[ 699.781746] ? delete_from_page_cache_batch+0x4e0/0x4e0
[ 699.782820] ? __vfs_write+0x2b2/0x410
[ 699.783597] file_write_and_wait_range+0x66/0xb0
[ 699.784540] f2fs_do_sync_file+0x1f9/0xd90
[ 699.785381] ? truncate_partial_data_page+0x290/0x290
[ 699.786415] ? __sb_end_write+0x30/0x50
[ 699.787204] ? vfs_write+0x20f/0x260
[ 699.787941] f2fs_sync_file+0x9a/0xb0
[ 699.788694] ? f2fs_do_sync_file+0xd90/0xd90
[ 699.789572] vfs_fsync_range+0x68/0x100
[ 699.790360] ? __fget_light+0xc9/0xe0
[ 699.791128] do_fsync+0x3d/0x70
[ 699.791779] __x64_sys_fdatasync+0x24/0x30
[ 699.792614] do_syscall_64+0x78/0x170
[ 699.793371] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 699.794406] RIP: 0033:0x7f9bf930d800
[ 699.795134] Code: 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 3d 49 bf 2c 00 00 75 10 b8 4b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 be 78 01 00 48 89 04 24
[ 699.798960] RSP: 002b:00007ffee3606c68 EFLAGS: 00000246 ORIG_RAX: 000000000000004b
[ 699.800483] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9bf930d800
[ 699.801923] RDX: 0000000000008000 RSI: 00000000006010a0 RDI: 0000000000000003
[ 699.803373] RBP: 00007ffee3606ca0 R08: 0000000001503010 R09: 0000000000000000
[ 699.804798] R10: 00000000000002e8 R11: 0000000000000246 R12: 0000000000400610
[ 699.806233] R13: 00007ffee3606da0 R14: 0000000000000000 R15: 0000000000000000
[ 699.807667] Modules linked in: snd_hda_codec_generic snd_hda_intel snd_hda_codec snd_hwdep snd_hda_core snd_pcm snd_timer snd mac_hid i2c_piix4 soundcore ib_iser rdma_cm iw_cm ib_cm ib_core iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi raid10 raid456 async_raid6_recov async_memcpy async_pq async_xor async_tx raid1 raid0 multipath linear 8139too crct10dif_pclmul crc32_pclmul qxl drm_kms_helper syscopyarea aesni_intel sysfillrect sysimgblt fb_sys_fops ttm drm aes_x86_64 crypto_simd cryptd 8139cp glue_helper mii pata_acpi floppy
[ 699.817079] ---[ end trace 4ce02f25ff7d3df6 ]---
[ 699.818068] RIP: 0010:f2fs_submit_page_bio+0x29b/0x730
[ 699.819114] Code: 54 49 8d bd 18 04 00 00 e8 b2 59 af ff 41 8b 8d 18 04 00 00 8b 45 b8 41 d3 e6 44 01 f0 4c 8d 73 14 41 39 c7 0f 82 37 fe ff ff <0f> 0b 65 8b 05 2c 04 77 47 89 c0 48 0f a3 05 52 c1 d5 01 0f 92 c0
[ 699.822919] RSP: 0018:ffff8801f43af508 EFLAGS: 00010283
[ 699.823977] RAX: 0000000000000000 RBX: ffff8801f43af7b8 RCX: ffffffffb88a7cef
[ 699.825436] RDX: 0000000000000007 RSI: dffffc0000000000 RDI: ffff8801e3e7a64c
[ 699.826881] RBP: ffff8801f43af558 R08: ffffed003e066b55 R09: ffffed003e066b55
[ 699.828292] R10: 0000000000000001 R11: ffffed003e066b54 R12: ffffea0007876940
[ 699.829750] R13: ffff8801f0335500 R14: ffff8801e3e7a600 R15: 0000000000000001
[ 699.831192] FS: 00007f9bf97f5700(0000) GS:ffff8801f6e00000(0000) knlGS:0000000000000000
[ 699.832793] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 699.833981] CR2: 00007f9bf925d170 CR3: 00000001f0c34000 CR4: 00000000000006f0
[ 699.835556] ==================================================================
[ 699.837029] BUG: KASAN: stack-out-of-bounds in update_stack_state+0x38c/0x3e0
[ 699.838462] Read of size 8 at addr ffff8801f43af970 by task a.out/1309
[ 699.840086] CPU: 0 PID: 1309 Comm: a.out Tainted: G D W 4.18.0-rc1+ #4
[ 699.841603] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Ubuntu-1.8.2-1ubuntu1 04/01/2014
[ 699.843475] Call Trace:
[ 699.843982] dump_stack+0x7b/0xb5
[ 699.844661] print_address_description+0x70/0x290
[ 699.845607] kasan_report+0x291/0x390
[ 699.846351] ? update_stack_state+0x38c/0x3e0
[ 699.853831] __asan_load8+0x54/0x90
[ 699.854569] update_stack_state+0x38c/0x3e0
[ 699.855428] ? __read_once_size_nocheck.constprop.7+0x20/0x20
[ 699.856601] ? __save_stack_trace+0x5e/0x100
[ 699.857476] unwind_next_frame.part.5+0x18e/0x490
[ 699.858448] ? unwind_dump+0x290/0x290
[ 699.859217] ? clear_page_dirty_for_io+0x332/0x450
[ 699.860185] __unwind_start+0x106/0x190
[ 699.860974] __save_stack_trace+0x5e/0x100
[ 699.861808] ? __save_stack_trace+0x5e/0x100
[ 699.862691] ? unlink_anon_vmas+0xba/0x2c0
[ 699.863525] save_stack_trace+0x1f/0x30
[ 699.864312] save_stack+0x46/0xd0
[ 699.864993] ? __alloc_pages_slowpath+0x1420/0x1420
[ 699.865990] ? flush_tlb_mm_range+0x15e/0x220
[ 699.866889] ? kasan_check_write+0x14/0x20
[ 699.867724] ? __dec_node_state+0x92/0xb0
[ 699.868543] ? lock_page_memcg+0x85/0xf0
[ 699.869350] ? unlock_page_memcg+0x16/0x80
[ 699.870185] ? page_remove_rmap+0x198/0x520
[ 699.871048] ? mark_page_accessed+0x133/0x200
[ 699.871930] ? _cond_resched+0x1a/0x50
[ 699.872700] ? unmap_page_range+0xcd4/0xe50
[ 699.873551] ? rb_next+0x58/0x80
[ 699.874217] ? rb_next+0x58/0x80
[ 699.874895] __kasan_slab_free+0x13c/0x1a0
[ 699.875734] ? unlink_anon_vmas+0xba/0x2c0
[ 699.876563] kasan_slab_free+0xe/0x10
[ 699.877315] kmem_cache_free+0x89/0x1e0
[ 699.878095] unlink_anon_vmas+0xba/0x2c0
[ 699.878913] free_pgtables+0x101/0x1b0
[ 699.879677] exit_mmap+0x146/0x2a0
[ 699.880378] ? __ia32_sys_munmap+0x50/0x50
[ 699.881214] ? kasan_check_read+0x11/0x20
[ 699.882052] ? mm_update_next_owner+0x322/0x380
[ 699.882985] mmput+0x8b/0x1d0
[ 699.883602] do_exit+0x43a/0x1390
[ 699.884288] ? mm_update_next_owner+0x380/0x380
[ 699.885212] ? f2fs_sync_file+0x9a/0xb0
[ 699.885995] ? f2fs_do_sync_file+0xd90/0xd90
[ 699.886877] ? vfs_fsync_range+0x68/0x100
[ 699.887694] ? __fget_light+0xc9/0xe0
[ 699.888442] ? do_fsync+0x3d/0x70
[ 699.889118] ? __x64_sys_fdatasync+0x24/0x30
[ 699.889996] rewind_stack_do_exit+0x17/0x20
[ 699.890860] RIP: 0033:0x7f9bf930d800
[ 699.891585] Code: Bad RIP value.
[ 699.892268] RSP: 002b:00007ffee3606c68 EFLAGS: 00000246 ORIG_RAX: 000000000000004b
[ 699.893781] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9bf930d800
[ 699.895220] RDX: 0000000000008000 RSI: 00000000006010a0 RDI: 0000000000000003
[ 699.896643] RBP: 00007ffee3606ca0 R08: 0000000001503010 R09: 0000000000000000
[ 699.898069] R10: 00000000000002e8 R11: 0000000000000246 R12: 0000000000400610
[ 699.899505] R13: 00007ffee3606da0 R14: 0000000000000000 R15: 0000000000000000
[ 699.901241] The buggy address belongs to the page:
[ 699.902215] page:ffffea0007d0ebc0 count:0 mapcount:0 mapping:0000000000000000 index:0x0
[ 699.903811] flags: 0x2ffff0000000000()
[ 699.904585] raw: 02ffff0000000000 0000000000000000 ffffffff07d00101 0000000000000000
[ 699.906125] raw: 0000000000000000 0000000000240000 00000000ffffffff 0000000000000000
[ 699.907673] page dumped because: kasan: bad access detected
[ 699.909108] Memory state around the buggy address:
[ 699.910077] ffff8801f43af800: 00 f1 f1 f1 f1 00 f4 f4 f4 f3 f3 f3 f3 00 00 00
[ 699.911528] ffff8801f43af880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 699.912953] >ffff8801f43af900: 00 00 00 00 00 00 00 00 f1 01 f4 f4 f4 f2 f2 f2
[ 699.914392] ^
[ 699.915758] ffff8801f43af980: f2 00 f4 f4 00 00 00 00 f2 00 00 00 00 00 00 00
[ 699.917193] ffff8801f43afa00: 00 00 00 00 00 00 00 00 00 f3 f3 f3 00 00 00 00
[ 699.918634] ==================================================================
- Location
https://elixir.bootlin.com/linux/v4.18-rc1/source/fs/f2fs/segment.h#L644
Reported-by Wen Xu <wen.xu@gatech.edu>
Signed-off-by: Chao Yu <yuchao0@huawei.com>
Signed-off-by: Jaegeuk Kim <jaegeuk@kernel.org>
[bwh: Backported to 4.4:
- CoW is not implemented so check f2fs_io_info::blk_addr instead of
f2fs_io_info::{old,new}_blkaddr
- Operation code is f2fs_io_info::rw instead of f2fs_io_info::op
- f2fs_stop_checkpoint() only takes one argument
- In f2fs_map_blocks(), validate dn.data_blkaddr instead of blkaddr
- Adjust context]
Signed-off-by: Ben Hutchings <ben.hutchings@codethink.co.uk>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2018-08-01 19:13:44 +08:00
|
|
|
|
|
|
|
|
if (!f2fs_is_valid_blkaddr(F2FS_I_SB(inode), block_nr,
|
|
|
|
|
DATA_GENERIC))
|
|
|
|
|
goto set_error_page;
|
2015-04-09 11:20:42 -07:00
|
|
|
} else {
|
|
|
|
|
zero_user_segment(page, 0, PAGE_CACHE_SIZE);
|
|
|
|
|
SetPageUptodate(page);
|
|
|
|
|
unlock_page(page);
|
|
|
|
|
goto next_page;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* This page will go to BIO. Do we need to send this
|
|
|
|
|
* BIO off first?
|
|
|
|
|
*/
|
|
|
|
|
if (bio && (last_block_in_bio != block_nr - 1)) {
|
|
|
|
|
submit_and_realloc:
|
|
|
|
|
submit_bio(READ, bio);
|
|
|
|
|
bio = NULL;
|
|
|
|
|
}
|
|
|
|
|
if (bio == NULL) {
|
2016-07-03 22:05:11 +08:00
|
|
|
bio = f2fs_grab_bio(inode, block_nr, nr_pages);
|
|
|
|
|
if (IS_ERR(bio))
|
2015-04-09 11:20:42 -07:00
|
|
|
goto set_error_page;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (bio_add_page(bio, page, blocksize, 0) < blocksize)
|
|
|
|
|
goto submit_and_realloc;
|
|
|
|
|
|
|
|
|
|
last_block_in_bio = block_nr;
|
|
|
|
|
goto next_page;
|
|
|
|
|
set_error_page:
|
|
|
|
|
SetPageError(page);
|
|
|
|
|
zero_user_segment(page, 0, PAGE_CACHE_SIZE);
|
|
|
|
|
unlock_page(page);
|
|
|
|
|
goto next_page;
|
|
|
|
|
confused:
|
|
|
|
|
if (bio) {
|
|
|
|
|
submit_bio(READ, bio);
|
|
|
|
|
bio = NULL;
|
|
|
|
|
}
|
|
|
|
|
unlock_page(page);
|
|
|
|
|
next_page:
|
|
|
|
|
if (pages)
|
|
|
|
|
page_cache_release(page);
|
|
|
|
|
}
|
|
|
|
|
BUG_ON(pages && !list_empty(pages));
|
|
|
|
|
if (bio)
|
|
|
|
|
submit_bio(READ, bio);
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2012-11-02 17:10:12 +09:00
|
|
|
static int f2fs_read_data_page(struct file *file, struct page *page)
|
|
|
|
|
{
|
f2fs: handle inline data operations
Hook inline data read/write, truncate, fallocate, setattr, etc.
Files need meet following 2 requirement to inline:
1) file size is not greater than MAX_INLINE_DATA;
2) file doesn't pre-allocate data blocks by fallocate().
FI_INLINE_DATA will not be set while creating a new regular inode because
most of the files are bigger than ~3.4K. Set FI_INLINE_DATA only when
data is submitted to block layer, ranther than set it while creating a new
inode, this also avoids converting data from inline to normal data block
and vice versa.
While writting inline data to inode block, the first data block should be
released if the file has a block indexed by i_addr[0].
On the other hand, when a file operation is appied to a file with inline
data, we need to test if this file can remain inline by doing this
operation, otherwise it should be convert into normal file by reserving
a new data block, copying inline data to this new block and clear
FI_INLINE_DATA flag. Because reserve a new data block here will make use
of i_addr[0], if we save inline data in i_addr[0..872], then the first
4 bytes would be overwriten. This problem can be avoided simply by
not using i_addr[0] for inline data.
Signed-off-by: Huajun Li <huajun.li@intel.com>
Signed-off-by: Haicheng Li <haicheng.li@linux.intel.com>
Signed-off-by: Weihong Xu <weihong.xu@intel.com>
Signed-off-by: Jaegeuk Kim <jaegeuk.kim@samsung.com>
2013-11-10 23:13:20 +08:00
|
|
|
struct inode *inode = page->mapping->host;
|
2014-10-23 19:48:09 -07:00
|
|
|
int ret = -EAGAIN;
|
f2fs: handle inline data operations
Hook inline data read/write, truncate, fallocate, setattr, etc.
Files need meet following 2 requirement to inline:
1) file size is not greater than MAX_INLINE_DATA;
2) file doesn't pre-allocate data blocks by fallocate().
FI_INLINE_DATA will not be set while creating a new regular inode because
most of the files are bigger than ~3.4K. Set FI_INLINE_DATA only when
data is submitted to block layer, ranther than set it while creating a new
inode, this also avoids converting data from inline to normal data block
and vice versa.
While writting inline data to inode block, the first data block should be
released if the file has a block indexed by i_addr[0].
On the other hand, when a file operation is appied to a file with inline
data, we need to test if this file can remain inline by doing this
operation, otherwise it should be convert into normal file by reserving
a new data block, copying inline data to this new block and clear
FI_INLINE_DATA flag. Because reserve a new data block here will make use
of i_addr[0], if we save inline data in i_addr[0..872], then the first
4 bytes would be overwriten. This problem can be avoided simply by
not using i_addr[0] for inline data.
Signed-off-by: Huajun Li <huajun.li@intel.com>
Signed-off-by: Haicheng Li <haicheng.li@linux.intel.com>
Signed-off-by: Weihong Xu <weihong.xu@intel.com>
Signed-off-by: Jaegeuk Kim <jaegeuk.kim@samsung.com>
2013-11-10 23:13:20 +08:00
|
|
|
|
2014-05-06 16:53:08 +08:00
|
|
|
trace_f2fs_readpage(page, DATA);
|
|
|
|
|
|
2014-08-06 23:22:50 +09:00
|
|
|
/* If the file has inline data, try to read it directly */
|
f2fs: handle inline data operations
Hook inline data read/write, truncate, fallocate, setattr, etc.
Files need meet following 2 requirement to inline:
1) file size is not greater than MAX_INLINE_DATA;
2) file doesn't pre-allocate data blocks by fallocate().
FI_INLINE_DATA will not be set while creating a new regular inode because
most of the files are bigger than ~3.4K. Set FI_INLINE_DATA only when
data is submitted to block layer, ranther than set it while creating a new
inode, this also avoids converting data from inline to normal data block
and vice versa.
While writting inline data to inode block, the first data block should be
released if the file has a block indexed by i_addr[0].
On the other hand, when a file operation is appied to a file with inline
data, we need to test if this file can remain inline by doing this
operation, otherwise it should be convert into normal file by reserving
a new data block, copying inline data to this new block and clear
FI_INLINE_DATA flag. Because reserve a new data block here will make use
of i_addr[0], if we save inline data in i_addr[0..872], then the first
4 bytes would be overwriten. This problem can be avoided simply by
not using i_addr[0] for inline data.
Signed-off-by: Huajun Li <huajun.li@intel.com>
Signed-off-by: Haicheng Li <haicheng.li@linux.intel.com>
Signed-off-by: Weihong Xu <weihong.xu@intel.com>
Signed-off-by: Jaegeuk Kim <jaegeuk.kim@samsung.com>
2013-11-10 23:13:20 +08:00
|
|
|
if (f2fs_has_inline_data(inode))
|
|
|
|
|
ret = f2fs_read_inline_data(inode, page);
|
2014-10-23 19:48:09 -07:00
|
|
|
if (ret == -EAGAIN)
|
2015-04-09 11:20:42 -07:00
|
|
|
ret = f2fs_mpage_readpages(page->mapping, NULL, page, 1);
|
f2fs: handle inline data operations
Hook inline data read/write, truncate, fallocate, setattr, etc.
Files need meet following 2 requirement to inline:
1) file size is not greater than MAX_INLINE_DATA;
2) file doesn't pre-allocate data blocks by fallocate().
FI_INLINE_DATA will not be set while creating a new regular inode because
most of the files are bigger than ~3.4K. Set FI_INLINE_DATA only when
data is submitted to block layer, ranther than set it while creating a new
inode, this also avoids converting data from inline to normal data block
and vice versa.
While writting inline data to inode block, the first data block should be
released if the file has a block indexed by i_addr[0].
On the other hand, when a file operation is appied to a file with inline
data, we need to test if this file can remain inline by doing this
operation, otherwise it should be convert into normal file by reserving
a new data block, copying inline data to this new block and clear
FI_INLINE_DATA flag. Because reserve a new data block here will make use
of i_addr[0], if we save inline data in i_addr[0..872], then the first
4 bytes would be overwriten. This problem can be avoided simply by
not using i_addr[0] for inline data.
Signed-off-by: Huajun Li <huajun.li@intel.com>
Signed-off-by: Haicheng Li <haicheng.li@linux.intel.com>
Signed-off-by: Weihong Xu <weihong.xu@intel.com>
Signed-off-by: Jaegeuk Kim <jaegeuk.kim@samsung.com>
2013-11-10 23:13:20 +08:00
|
|
|
return ret;
|
2012-11-02 17:10:12 +09:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int f2fs_read_data_pages(struct file *file,
|
|
|
|
|
struct address_space *mapping,
|
|
|
|
|
struct list_head *pages, unsigned nr_pages)
|
|
|
|
|
{
|
f2fs: handle inline data operations
Hook inline data read/write, truncate, fallocate, setattr, etc.
Files need meet following 2 requirement to inline:
1) file size is not greater than MAX_INLINE_DATA;
2) file doesn't pre-allocate data blocks by fallocate().
FI_INLINE_DATA will not be set while creating a new regular inode because
most of the files are bigger than ~3.4K. Set FI_INLINE_DATA only when
data is submitted to block layer, ranther than set it while creating a new
inode, this also avoids converting data from inline to normal data block
and vice versa.
While writting inline data to inode block, the first data block should be
released if the file has a block indexed by i_addr[0].
On the other hand, when a file operation is appied to a file with inline
data, we need to test if this file can remain inline by doing this
operation, otherwise it should be convert into normal file by reserving
a new data block, copying inline data to this new block and clear
FI_INLINE_DATA flag. Because reserve a new data block here will make use
of i_addr[0], if we save inline data in i_addr[0..872], then the first
4 bytes would be overwriten. This problem can be avoided simply by
not using i_addr[0] for inline data.
Signed-off-by: Huajun Li <huajun.li@intel.com>
Signed-off-by: Haicheng Li <haicheng.li@linux.intel.com>
Signed-off-by: Weihong Xu <weihong.xu@intel.com>
Signed-off-by: Jaegeuk Kim <jaegeuk.kim@samsung.com>
2013-11-10 23:13:20 +08:00
|
|
|
struct inode *inode = file->f_mapping->host;
|
2015-10-12 17:02:26 +08:00
|
|
|
struct page *page = list_entry(pages->prev, struct page, lru);
|
|
|
|
|
|
|
|
|
|
trace_f2fs_readpages(inode, page, nr_pages);
|
f2fs: handle inline data operations
Hook inline data read/write, truncate, fallocate, setattr, etc.
Files need meet following 2 requirement to inline:
1) file size is not greater than MAX_INLINE_DATA;
2) file doesn't pre-allocate data blocks by fallocate().
FI_INLINE_DATA will not be set while creating a new regular inode because
most of the files are bigger than ~3.4K. Set FI_INLINE_DATA only when
data is submitted to block layer, ranther than set it while creating a new
inode, this also avoids converting data from inline to normal data block
and vice versa.
While writting inline data to inode block, the first data block should be
released if the file has a block indexed by i_addr[0].
On the other hand, when a file operation is appied to a file with inline
data, we need to test if this file can remain inline by doing this
operation, otherwise it should be convert into normal file by reserving
a new data block, copying inline data to this new block and clear
FI_INLINE_DATA flag. Because reserve a new data block here will make use
of i_addr[0], if we save inline data in i_addr[0..872], then the first
4 bytes would be overwriten. This problem can be avoided simply by
not using i_addr[0] for inline data.
Signed-off-by: Huajun Li <huajun.li@intel.com>
Signed-off-by: Haicheng Li <haicheng.li@linux.intel.com>
Signed-off-by: Weihong Xu <weihong.xu@intel.com>
Signed-off-by: Jaegeuk Kim <jaegeuk.kim@samsung.com>
2013-11-10 23:13:20 +08:00
|
|
|
|
|
|
|
|
/* If the file has inline data, skip readpages */
|
|
|
|
|
if (f2fs_has_inline_data(inode))
|
|
|
|
|
return 0;
|
|
|
|
|
|
2015-04-09 11:20:42 -07:00
|
|
|
return f2fs_mpage_readpages(mapping, pages, NULL, nr_pages);
|
2012-11-02 17:10:12 +09:00
|
|
|
}
|
|
|
|
|
|
2015-04-23 14:38:15 -07:00
|
|
|
int do_write_data_page(struct f2fs_io_info *fio)
|
2012-11-02 17:10:12 +09:00
|
|
|
{
|
2015-04-23 14:38:15 -07:00
|
|
|
struct page *page = fio->page;
|
2012-11-02 17:10:12 +09:00
|
|
|
struct inode *inode = page->mapping->host;
|
|
|
|
|
struct dnode_of_data dn;
|
|
|
|
|
int err = 0;
|
|
|
|
|
|
|
|
|
|
set_new_dnode(&dn, inode, NULL, NULL, 0);
|
2013-02-26 13:10:46 +09:00
|
|
|
err = get_dnode_of_data(&dn, page->index, LOOKUP_NODE);
|
2012-11-02 17:10:12 +09:00
|
|
|
if (err)
|
|
|
|
|
return err;
|
|
|
|
|
|
2014-12-17 19:33:13 -08:00
|
|
|
fio->blk_addr = dn.data_blkaddr;
|
2012-11-02 17:10:12 +09:00
|
|
|
|
|
|
|
|
/* This page is already truncated */
|
2015-02-25 19:25:01 -08:00
|
|
|
if (fio->blk_addr == NULL_ADDR) {
|
|
|
|
|
ClearPageUptodate(page);
|
2012-11-02 17:10:12 +09:00
|
|
|
goto out_writepage;
|
2015-02-25 19:25:01 -08:00
|
|
|
}
|
2012-11-02 17:10:12 +09:00
|
|
|
|
2015-04-23 12:04:33 -07:00
|
|
|
if (f2fs_encrypted_inode(inode) && S_ISREG(inode->i_mode)) {
|
2015-10-08 13:27:34 +08:00
|
|
|
|
|
|
|
|
/* wait for GCed encrypted page writeback */
|
|
|
|
|
f2fs_wait_on_encrypted_page_writeback(F2FS_I_SB(inode),
|
|
|
|
|
fio->blk_addr);
|
|
|
|
|
|
2015-04-23 12:04:33 -07:00
|
|
|
fio->encrypted_page = f2fs_encrypt(inode, fio->page);
|
|
|
|
|
if (IS_ERR(fio->encrypted_page)) {
|
|
|
|
|
err = PTR_ERR(fio->encrypted_page);
|
|
|
|
|
goto out_writepage;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2012-11-02 17:10:12 +09:00
|
|
|
set_page_writeback(page);
|
|
|
|
|
|
f2fs: fix to do sanity check with block address in main area
commit c9b60788fc760d136211853f10ce73dc152d1f4a upstream.
This patch add to do sanity check with below field:
- cp_pack_total_block_count
- blkaddr of data/node
- extent info
- Overview
BUG() in verify_block_addr() when writing to a corrupted f2fs image
- Reproduce (4.18 upstream kernel)
- POC (poc.c)
static void activity(char *mpoint) {
char *foo_bar_baz;
int err;
static int buf[8192];
memset(buf, 0, sizeof(buf));
err = asprintf(&foo_bar_baz, "%s/foo/bar/baz", mpoint);
int fd = open(foo_bar_baz, O_RDWR | O_TRUNC, 0777);
if (fd >= 0) {
write(fd, (char *)buf, sizeof(buf));
fdatasync(fd);
close(fd);
}
}
int main(int argc, char *argv[]) {
activity(argv[1]);
return 0;
}
- Kernel message
[ 689.349473] F2FS-fs (loop0): Mounted with checkpoint version = 3
[ 699.728662] WARNING: CPU: 0 PID: 1309 at fs/f2fs/segment.c:2860 f2fs_inplace_write_data+0x232/0x240
[ 699.728670] Modules linked in: snd_hda_codec_generic snd_hda_intel snd_hda_codec snd_hwdep snd_hda_core snd_pcm snd_timer snd mac_hid i2c_piix4 soundcore ib_iser rdma_cm iw_cm ib_cm ib_core iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi raid10 raid456 async_raid6_recov async_memcpy async_pq async_xor async_tx raid1 raid0 multipath linear 8139too crct10dif_pclmul crc32_pclmul qxl drm_kms_helper syscopyarea aesni_intel sysfillrect sysimgblt fb_sys_fops ttm drm aes_x86_64 crypto_simd cryptd 8139cp glue_helper mii pata_acpi floppy
[ 699.729056] CPU: 0 PID: 1309 Comm: a.out Not tainted 4.18.0-rc1+ #4
[ 699.729064] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Ubuntu-1.8.2-1ubuntu1 04/01/2014
[ 699.729074] RIP: 0010:f2fs_inplace_write_data+0x232/0x240
[ 699.729076] Code: ff e9 cf fe ff ff 49 8d 7d 10 e8 39 45 ad ff 4d 8b 7d 10 be 04 00 00 00 49 8d 7f 48 e8 07 49 ad ff 45 8b 7f 48 e9 fb fe ff ff <0f> 0b f0 41 80 4d 48 04 e9 65 fe ff ff 90 66 66 66 66 90 55 48 8d
[ 699.729130] RSP: 0018:ffff8801f43af568 EFLAGS: 00010202
[ 699.729139] RAX: 000000000000003f RBX: ffff8801f43af7b8 RCX: ffffffffb88c9113
[ 699.729142] RDX: 0000000000000003 RSI: dffffc0000000000 RDI: ffff8802024e5540
[ 699.729144] RBP: ffff8801f43af590 R08: 0000000000000009 R09: ffffffffffffffe8
[ 699.729147] R10: 0000000000000001 R11: ffffed0039b0596a R12: ffff8802024e5540
[ 699.729149] R13: ffff8801f0335500 R14: ffff8801e3e7a700 R15: ffff8801e1ee4450
[ 699.729154] FS: 00007f9bf97f5700(0000) GS:ffff8801f6e00000(0000) knlGS:0000000000000000
[ 699.729156] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 699.729159] CR2: 00007f9bf925d170 CR3: 00000001f0c34000 CR4: 00000000000006f0
[ 699.729171] Call Trace:
[ 699.729192] f2fs_do_write_data_page+0x2e2/0xe00
[ 699.729203] ? f2fs_should_update_outplace+0xd0/0xd0
[ 699.729238] ? memcg_drain_all_list_lrus+0x280/0x280
[ 699.729269] ? __radix_tree_replace+0xa3/0x120
[ 699.729276] __write_data_page+0x5c7/0xe30
[ 699.729291] ? kasan_check_read+0x11/0x20
[ 699.729310] ? page_mapped+0x8a/0x110
[ 699.729321] ? page_mkclean+0xe9/0x160
[ 699.729327] ? f2fs_do_write_data_page+0xe00/0xe00
[ 699.729331] ? invalid_page_referenced_vma+0x130/0x130
[ 699.729345] ? clear_page_dirty_for_io+0x332/0x450
[ 699.729351] f2fs_write_cache_pages+0x4ca/0x860
[ 699.729358] ? __write_data_page+0xe30/0xe30
[ 699.729374] ? percpu_counter_add_batch+0x22/0xa0
[ 699.729380] ? kasan_check_write+0x14/0x20
[ 699.729391] ? _raw_spin_lock+0x17/0x40
[ 699.729403] ? f2fs_mark_inode_dirty_sync.part.18+0x16/0x30
[ 699.729413] ? iov_iter_advance+0x113/0x640
[ 699.729418] ? f2fs_write_end+0x133/0x2e0
[ 699.729423] ? balance_dirty_pages_ratelimited+0x239/0x640
[ 699.729428] f2fs_write_data_pages+0x329/0x520
[ 699.729433] ? generic_perform_write+0x250/0x320
[ 699.729438] ? f2fs_write_cache_pages+0x860/0x860
[ 699.729454] ? current_time+0x110/0x110
[ 699.729459] ? f2fs_preallocate_blocks+0x1ef/0x370
[ 699.729464] do_writepages+0x37/0xb0
[ 699.729468] ? f2fs_write_cache_pages+0x860/0x860
[ 699.729472] ? do_writepages+0x37/0xb0
[ 699.729478] __filemap_fdatawrite_range+0x19a/0x1f0
[ 699.729483] ? delete_from_page_cache_batch+0x4e0/0x4e0
[ 699.729496] ? __vfs_write+0x2b2/0x410
[ 699.729501] file_write_and_wait_range+0x66/0xb0
[ 699.729506] f2fs_do_sync_file+0x1f9/0xd90
[ 699.729511] ? truncate_partial_data_page+0x290/0x290
[ 699.729521] ? __sb_end_write+0x30/0x50
[ 699.729526] ? vfs_write+0x20f/0x260
[ 699.729530] f2fs_sync_file+0x9a/0xb0
[ 699.729534] ? f2fs_do_sync_file+0xd90/0xd90
[ 699.729548] vfs_fsync_range+0x68/0x100
[ 699.729554] ? __fget_light+0xc9/0xe0
[ 699.729558] do_fsync+0x3d/0x70
[ 699.729562] __x64_sys_fdatasync+0x24/0x30
[ 699.729585] do_syscall_64+0x78/0x170
[ 699.729595] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 699.729613] RIP: 0033:0x7f9bf930d800
[ 699.729615] Code: 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 3d 49 bf 2c 00 00 75 10 b8 4b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 be 78 01 00 48 89 04 24
[ 699.729668] RSP: 002b:00007ffee3606c68 EFLAGS: 00000246 ORIG_RAX: 000000000000004b
[ 699.729673] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9bf930d800
[ 699.729675] RDX: 0000000000008000 RSI: 00000000006010a0 RDI: 0000000000000003
[ 699.729678] RBP: 00007ffee3606ca0 R08: 0000000001503010 R09: 0000000000000000
[ 699.729680] R10: 00000000000002e8 R11: 0000000000000246 R12: 0000000000400610
[ 699.729683] R13: 00007ffee3606da0 R14: 0000000000000000 R15: 0000000000000000
[ 699.729687] ---[ end trace 4ce02f25ff7d3df5 ]---
[ 699.729782] ------------[ cut here ]------------
[ 699.729785] kernel BUG at fs/f2fs/segment.h:654!
[ 699.731055] invalid opcode: 0000 [#1] SMP KASAN PTI
[ 699.732104] CPU: 0 PID: 1309 Comm: a.out Tainted: G W 4.18.0-rc1+ #4
[ 699.733684] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Ubuntu-1.8.2-1ubuntu1 04/01/2014
[ 699.735611] RIP: 0010:f2fs_submit_page_bio+0x29b/0x730
[ 699.736649] Code: 54 49 8d bd 18 04 00 00 e8 b2 59 af ff 41 8b 8d 18 04 00 00 8b 45 b8 41 d3 e6 44 01 f0 4c 8d 73 14 41 39 c7 0f 82 37 fe ff ff <0f> 0b 65 8b 05 2c 04 77 47 89 c0 48 0f a3 05 52 c1 d5 01 0f 92 c0
[ 699.740524] RSP: 0018:ffff8801f43af508 EFLAGS: 00010283
[ 699.741573] RAX: 0000000000000000 RBX: ffff8801f43af7b8 RCX: ffffffffb88a7cef
[ 699.743006] RDX: 0000000000000007 RSI: dffffc0000000000 RDI: ffff8801e3e7a64c
[ 699.744426] RBP: ffff8801f43af558 R08: ffffed003e066b55 R09: ffffed003e066b55
[ 699.745833] R10: 0000000000000001 R11: ffffed003e066b54 R12: ffffea0007876940
[ 699.747256] R13: ffff8801f0335500 R14: ffff8801e3e7a600 R15: 0000000000000001
[ 699.748683] FS: 00007f9bf97f5700(0000) GS:ffff8801f6e00000(0000) knlGS:0000000000000000
[ 699.750293] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 699.751462] CR2: 00007f9bf925d170 CR3: 00000001f0c34000 CR4: 00000000000006f0
[ 699.752874] Call Trace:
[ 699.753386] ? f2fs_inplace_write_data+0x93/0x240
[ 699.754341] f2fs_inplace_write_data+0xd2/0x240
[ 699.755271] f2fs_do_write_data_page+0x2e2/0xe00
[ 699.756214] ? f2fs_should_update_outplace+0xd0/0xd0
[ 699.757215] ? memcg_drain_all_list_lrus+0x280/0x280
[ 699.758209] ? __radix_tree_replace+0xa3/0x120
[ 699.759164] __write_data_page+0x5c7/0xe30
[ 699.760002] ? kasan_check_read+0x11/0x20
[ 699.760823] ? page_mapped+0x8a/0x110
[ 699.761573] ? page_mkclean+0xe9/0x160
[ 699.762345] ? f2fs_do_write_data_page+0xe00/0xe00
[ 699.763332] ? invalid_page_referenced_vma+0x130/0x130
[ 699.764374] ? clear_page_dirty_for_io+0x332/0x450
[ 699.765347] f2fs_write_cache_pages+0x4ca/0x860
[ 699.766276] ? __write_data_page+0xe30/0xe30
[ 699.767161] ? percpu_counter_add_batch+0x22/0xa0
[ 699.768112] ? kasan_check_write+0x14/0x20
[ 699.768951] ? _raw_spin_lock+0x17/0x40
[ 699.769739] ? f2fs_mark_inode_dirty_sync.part.18+0x16/0x30
[ 699.770885] ? iov_iter_advance+0x113/0x640
[ 699.771743] ? f2fs_write_end+0x133/0x2e0
[ 699.772569] ? balance_dirty_pages_ratelimited+0x239/0x640
[ 699.773680] f2fs_write_data_pages+0x329/0x520
[ 699.774603] ? generic_perform_write+0x250/0x320
[ 699.775544] ? f2fs_write_cache_pages+0x860/0x860
[ 699.776510] ? current_time+0x110/0x110
[ 699.777299] ? f2fs_preallocate_blocks+0x1ef/0x370
[ 699.778279] do_writepages+0x37/0xb0
[ 699.779026] ? f2fs_write_cache_pages+0x860/0x860
[ 699.779978] ? do_writepages+0x37/0xb0
[ 699.780755] __filemap_fdatawrite_range+0x19a/0x1f0
[ 699.781746] ? delete_from_page_cache_batch+0x4e0/0x4e0
[ 699.782820] ? __vfs_write+0x2b2/0x410
[ 699.783597] file_write_and_wait_range+0x66/0xb0
[ 699.784540] f2fs_do_sync_file+0x1f9/0xd90
[ 699.785381] ? truncate_partial_data_page+0x290/0x290
[ 699.786415] ? __sb_end_write+0x30/0x50
[ 699.787204] ? vfs_write+0x20f/0x260
[ 699.787941] f2fs_sync_file+0x9a/0xb0
[ 699.788694] ? f2fs_do_sync_file+0xd90/0xd90
[ 699.789572] vfs_fsync_range+0x68/0x100
[ 699.790360] ? __fget_light+0xc9/0xe0
[ 699.791128] do_fsync+0x3d/0x70
[ 699.791779] __x64_sys_fdatasync+0x24/0x30
[ 699.792614] do_syscall_64+0x78/0x170
[ 699.793371] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 699.794406] RIP: 0033:0x7f9bf930d800
[ 699.795134] Code: 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 3d 49 bf 2c 00 00 75 10 b8 4b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 be 78 01 00 48 89 04 24
[ 699.798960] RSP: 002b:00007ffee3606c68 EFLAGS: 00000246 ORIG_RAX: 000000000000004b
[ 699.800483] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9bf930d800
[ 699.801923] RDX: 0000000000008000 RSI: 00000000006010a0 RDI: 0000000000000003
[ 699.803373] RBP: 00007ffee3606ca0 R08: 0000000001503010 R09: 0000000000000000
[ 699.804798] R10: 00000000000002e8 R11: 0000000000000246 R12: 0000000000400610
[ 699.806233] R13: 00007ffee3606da0 R14: 0000000000000000 R15: 0000000000000000
[ 699.807667] Modules linked in: snd_hda_codec_generic snd_hda_intel snd_hda_codec snd_hwdep snd_hda_core snd_pcm snd_timer snd mac_hid i2c_piix4 soundcore ib_iser rdma_cm iw_cm ib_cm ib_core iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi raid10 raid456 async_raid6_recov async_memcpy async_pq async_xor async_tx raid1 raid0 multipath linear 8139too crct10dif_pclmul crc32_pclmul qxl drm_kms_helper syscopyarea aesni_intel sysfillrect sysimgblt fb_sys_fops ttm drm aes_x86_64 crypto_simd cryptd 8139cp glue_helper mii pata_acpi floppy
[ 699.817079] ---[ end trace 4ce02f25ff7d3df6 ]---
[ 699.818068] RIP: 0010:f2fs_submit_page_bio+0x29b/0x730
[ 699.819114] Code: 54 49 8d bd 18 04 00 00 e8 b2 59 af ff 41 8b 8d 18 04 00 00 8b 45 b8 41 d3 e6 44 01 f0 4c 8d 73 14 41 39 c7 0f 82 37 fe ff ff <0f> 0b 65 8b 05 2c 04 77 47 89 c0 48 0f a3 05 52 c1 d5 01 0f 92 c0
[ 699.822919] RSP: 0018:ffff8801f43af508 EFLAGS: 00010283
[ 699.823977] RAX: 0000000000000000 RBX: ffff8801f43af7b8 RCX: ffffffffb88a7cef
[ 699.825436] RDX: 0000000000000007 RSI: dffffc0000000000 RDI: ffff8801e3e7a64c
[ 699.826881] RBP: ffff8801f43af558 R08: ffffed003e066b55 R09: ffffed003e066b55
[ 699.828292] R10: 0000000000000001 R11: ffffed003e066b54 R12: ffffea0007876940
[ 699.829750] R13: ffff8801f0335500 R14: ffff8801e3e7a600 R15: 0000000000000001
[ 699.831192] FS: 00007f9bf97f5700(0000) GS:ffff8801f6e00000(0000) knlGS:0000000000000000
[ 699.832793] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 699.833981] CR2: 00007f9bf925d170 CR3: 00000001f0c34000 CR4: 00000000000006f0
[ 699.835556] ==================================================================
[ 699.837029] BUG: KASAN: stack-out-of-bounds in update_stack_state+0x38c/0x3e0
[ 699.838462] Read of size 8 at addr ffff8801f43af970 by task a.out/1309
[ 699.840086] CPU: 0 PID: 1309 Comm: a.out Tainted: G D W 4.18.0-rc1+ #4
[ 699.841603] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Ubuntu-1.8.2-1ubuntu1 04/01/2014
[ 699.843475] Call Trace:
[ 699.843982] dump_stack+0x7b/0xb5
[ 699.844661] print_address_description+0x70/0x290
[ 699.845607] kasan_report+0x291/0x390
[ 699.846351] ? update_stack_state+0x38c/0x3e0
[ 699.853831] __asan_load8+0x54/0x90
[ 699.854569] update_stack_state+0x38c/0x3e0
[ 699.855428] ? __read_once_size_nocheck.constprop.7+0x20/0x20
[ 699.856601] ? __save_stack_trace+0x5e/0x100
[ 699.857476] unwind_next_frame.part.5+0x18e/0x490
[ 699.858448] ? unwind_dump+0x290/0x290
[ 699.859217] ? clear_page_dirty_for_io+0x332/0x450
[ 699.860185] __unwind_start+0x106/0x190
[ 699.860974] __save_stack_trace+0x5e/0x100
[ 699.861808] ? __save_stack_trace+0x5e/0x100
[ 699.862691] ? unlink_anon_vmas+0xba/0x2c0
[ 699.863525] save_stack_trace+0x1f/0x30
[ 699.864312] save_stack+0x46/0xd0
[ 699.864993] ? __alloc_pages_slowpath+0x1420/0x1420
[ 699.865990] ? flush_tlb_mm_range+0x15e/0x220
[ 699.866889] ? kasan_check_write+0x14/0x20
[ 699.867724] ? __dec_node_state+0x92/0xb0
[ 699.868543] ? lock_page_memcg+0x85/0xf0
[ 699.869350] ? unlock_page_memcg+0x16/0x80
[ 699.870185] ? page_remove_rmap+0x198/0x520
[ 699.871048] ? mark_page_accessed+0x133/0x200
[ 699.871930] ? _cond_resched+0x1a/0x50
[ 699.872700] ? unmap_page_range+0xcd4/0xe50
[ 699.873551] ? rb_next+0x58/0x80
[ 699.874217] ? rb_next+0x58/0x80
[ 699.874895] __kasan_slab_free+0x13c/0x1a0
[ 699.875734] ? unlink_anon_vmas+0xba/0x2c0
[ 699.876563] kasan_slab_free+0xe/0x10
[ 699.877315] kmem_cache_free+0x89/0x1e0
[ 699.878095] unlink_anon_vmas+0xba/0x2c0
[ 699.878913] free_pgtables+0x101/0x1b0
[ 699.879677] exit_mmap+0x146/0x2a0
[ 699.880378] ? __ia32_sys_munmap+0x50/0x50
[ 699.881214] ? kasan_check_read+0x11/0x20
[ 699.882052] ? mm_update_next_owner+0x322/0x380
[ 699.882985] mmput+0x8b/0x1d0
[ 699.883602] do_exit+0x43a/0x1390
[ 699.884288] ? mm_update_next_owner+0x380/0x380
[ 699.885212] ? f2fs_sync_file+0x9a/0xb0
[ 699.885995] ? f2fs_do_sync_file+0xd90/0xd90
[ 699.886877] ? vfs_fsync_range+0x68/0x100
[ 699.887694] ? __fget_light+0xc9/0xe0
[ 699.888442] ? do_fsync+0x3d/0x70
[ 699.889118] ? __x64_sys_fdatasync+0x24/0x30
[ 699.889996] rewind_stack_do_exit+0x17/0x20
[ 699.890860] RIP: 0033:0x7f9bf930d800
[ 699.891585] Code: Bad RIP value.
[ 699.892268] RSP: 002b:00007ffee3606c68 EFLAGS: 00000246 ORIG_RAX: 000000000000004b
[ 699.893781] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9bf930d800
[ 699.895220] RDX: 0000000000008000 RSI: 00000000006010a0 RDI: 0000000000000003
[ 699.896643] RBP: 00007ffee3606ca0 R08: 0000000001503010 R09: 0000000000000000
[ 699.898069] R10: 00000000000002e8 R11: 0000000000000246 R12: 0000000000400610
[ 699.899505] R13: 00007ffee3606da0 R14: 0000000000000000 R15: 0000000000000000
[ 699.901241] The buggy address belongs to the page:
[ 699.902215] page:ffffea0007d0ebc0 count:0 mapcount:0 mapping:0000000000000000 index:0x0
[ 699.903811] flags: 0x2ffff0000000000()
[ 699.904585] raw: 02ffff0000000000 0000000000000000 ffffffff07d00101 0000000000000000
[ 699.906125] raw: 0000000000000000 0000000000240000 00000000ffffffff 0000000000000000
[ 699.907673] page dumped because: kasan: bad access detected
[ 699.909108] Memory state around the buggy address:
[ 699.910077] ffff8801f43af800: 00 f1 f1 f1 f1 00 f4 f4 f4 f3 f3 f3 f3 00 00 00
[ 699.911528] ffff8801f43af880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 699.912953] >ffff8801f43af900: 00 00 00 00 00 00 00 00 f1 01 f4 f4 f4 f2 f2 f2
[ 699.914392] ^
[ 699.915758] ffff8801f43af980: f2 00 f4 f4 00 00 00 00 f2 00 00 00 00 00 00 00
[ 699.917193] ffff8801f43afa00: 00 00 00 00 00 00 00 00 00 f3 f3 f3 00 00 00 00
[ 699.918634] ==================================================================
- Location
https://elixir.bootlin.com/linux/v4.18-rc1/source/fs/f2fs/segment.h#L644
Reported-by Wen Xu <wen.xu@gatech.edu>
Signed-off-by: Chao Yu <yuchao0@huawei.com>
Signed-off-by: Jaegeuk Kim <jaegeuk@kernel.org>
[bwh: Backported to 4.4:
- CoW is not implemented so check f2fs_io_info::blk_addr instead of
f2fs_io_info::{old,new}_blkaddr
- Operation code is f2fs_io_info::rw instead of f2fs_io_info::op
- f2fs_stop_checkpoint() only takes one argument
- In f2fs_map_blocks(), validate dn.data_blkaddr instead of blkaddr
- Adjust context]
Signed-off-by: Ben Hutchings <ben.hutchings@codethink.co.uk>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2018-08-01 19:13:44 +08:00
|
|
|
if (__is_valid_data_blkaddr(fio->blk_addr) &&
|
|
|
|
|
!f2fs_is_valid_blkaddr(fio->sbi, fio->blk_addr,
|
|
|
|
|
DATA_GENERIC)) {
|
|
|
|
|
err = -EFAULT;
|
|
|
|
|
goto out_writepage;
|
|
|
|
|
}
|
2012-11-02 17:10:12 +09:00
|
|
|
/*
|
|
|
|
|
* If current allocation needs SSR,
|
|
|
|
|
* it had better in-place writes for updated data.
|
|
|
|
|
*/
|
2018-06-05 17:44:11 +08:00
|
|
|
if (unlikely(is_valid_data_blkaddr(fio->sbi, fio->blk_addr) &&
|
2013-06-13 16:59:29 +08:00
|
|
|
!is_cold_data(page) &&
|
|
|
|
|
need_inplace_update(inode))) {
|
2015-04-23 14:38:15 -07:00
|
|
|
rewrite_data_page(fio);
|
2014-07-25 07:40:59 -07:00
|
|
|
set_inode_flag(F2FS_I(inode), FI_UPDATE_WRITE);
|
2015-03-17 17:58:08 -07:00
|
|
|
trace_f2fs_do_write_data_page(page, IPU);
|
2012-11-02 17:10:12 +09:00
|
|
|
} else {
|
2015-04-23 14:38:15 -07:00
|
|
|
write_data_page(&dn, fio);
|
2015-03-19 19:23:32 +08:00
|
|
|
set_data_blkaddr(&dn);
|
2015-02-05 17:51:34 +08:00
|
|
|
f2fs_update_extent_cache(&dn);
|
2015-03-17 17:58:08 -07:00
|
|
|
trace_f2fs_do_write_data_page(page, OPU);
|
2014-07-25 07:40:59 -07:00
|
|
|
set_inode_flag(F2FS_I(inode), FI_APPEND_WRITE);
|
2015-03-17 17:16:35 -07:00
|
|
|
if (page->index == 0)
|
|
|
|
|
set_inode_flag(F2FS_I(inode), FI_FIRST_BLOCK_WRITTEN);
|
2012-11-02 17:10:12 +09:00
|
|
|
}
|
|
|
|
|
out_writepage:
|
|
|
|
|
f2fs_put_dnode(&dn);
|
|
|
|
|
return err;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int f2fs_write_data_page(struct page *page,
|
|
|
|
|
struct writeback_control *wbc)
|
|
|
|
|
{
|
|
|
|
|
struct inode *inode = page->mapping->host;
|
2014-09-02 15:31:18 -07:00
|
|
|
struct f2fs_sb_info *sbi = F2FS_I_SB(inode);
|
2012-11-02 17:10:12 +09:00
|
|
|
loff_t i_size = i_size_read(inode);
|
|
|
|
|
const pgoff_t end_index = ((unsigned long long) i_size)
|
|
|
|
|
>> PAGE_CACHE_SHIFT;
|
f2fs: handle inline data operations
Hook inline data read/write, truncate, fallocate, setattr, etc.
Files need meet following 2 requirement to inline:
1) file size is not greater than MAX_INLINE_DATA;
2) file doesn't pre-allocate data blocks by fallocate().
FI_INLINE_DATA will not be set while creating a new regular inode because
most of the files are bigger than ~3.4K. Set FI_INLINE_DATA only when
data is submitted to block layer, ranther than set it while creating a new
inode, this also avoids converting data from inline to normal data block
and vice versa.
While writting inline data to inode block, the first data block should be
released if the file has a block indexed by i_addr[0].
On the other hand, when a file operation is appied to a file with inline
data, we need to test if this file can remain inline by doing this
operation, otherwise it should be convert into normal file by reserving
a new data block, copying inline data to this new block and clear
FI_INLINE_DATA flag. Because reserve a new data block here will make use
of i_addr[0], if we save inline data in i_addr[0..872], then the first
4 bytes would be overwriten. This problem can be avoided simply by
not using i_addr[0] for inline data.
Signed-off-by: Huajun Li <huajun.li@intel.com>
Signed-off-by: Haicheng Li <haicheng.li@linux.intel.com>
Signed-off-by: Weihong Xu <weihong.xu@intel.com>
Signed-off-by: Jaegeuk Kim <jaegeuk.kim@samsung.com>
2013-11-10 23:13:20 +08:00
|
|
|
unsigned offset = 0;
|
f2fs: introduce a new global lock scheme
In the previous version, f2fs uses global locks according to the usage types,
such as directory operations, block allocation, block write, and so on.
Reference the following lock types in f2fs.h.
enum lock_type {
RENAME, /* for renaming operations */
DENTRY_OPS, /* for directory operations */
DATA_WRITE, /* for data write */
DATA_NEW, /* for data allocation */
DATA_TRUNC, /* for data truncate */
NODE_NEW, /* for node allocation */
NODE_TRUNC, /* for node truncate */
NODE_WRITE, /* for node write */
NR_LOCK_TYPE,
};
In that case, we lose the performance under the multi-threading environment,
since every types of operations must be conducted one at a time.
In order to address the problem, let's share the locks globally with a mutex
array regardless of any types.
So, let users grab a mutex and perform their jobs in parallel as much as
possbile.
For this, I propose a new global lock scheme as follows.
0. Data structure
- f2fs_sb_info -> mutex_lock[NR_GLOBAL_LOCKS]
- f2fs_sb_info -> node_write
1. mutex_lock_op(sbi)
- try to get an avaiable lock from the array.
- returns the index of the gottern lock variable.
2. mutex_unlock_op(sbi, index of the lock)
- unlock the given index of the lock.
3. mutex_lock_all(sbi)
- grab all the locks in the array before the checkpoint.
4. mutex_unlock_all(sbi)
- release all the locks in the array after checkpoint.
5. block_operations()
- call mutex_lock_all()
- sync_dirty_dir_inodes()
- grab node_write
- sync_node_pages()
Note that,
the pairs of mutex_lock_op()/mutex_unlock_op() and
mutex_lock_all()/mutex_unlock_all() should be used together.
Signed-off-by: Jaegeuk Kim <jaegeuk.kim@samsung.com>
2012-11-22 16:21:29 +09:00
|
|
|
bool need_balance_fs = false;
|
2012-11-02 17:10:12 +09:00
|
|
|
int err = 0;
|
2013-12-11 13:54:01 +09:00
|
|
|
struct f2fs_io_info fio = {
|
2015-04-23 14:38:15 -07:00
|
|
|
.sbi = sbi,
|
2013-12-11 13:54:01 +09:00
|
|
|
.type = DATA,
|
2014-01-17 14:44:39 -06:00
|
|
|
.rw = (wbc->sync_mode == WB_SYNC_ALL) ? WRITE_SYNC : WRITE,
|
2015-04-23 14:38:15 -07:00
|
|
|
.page = page,
|
2015-04-23 12:04:33 -07:00
|
|
|
.encrypted_page = NULL,
|
2013-12-11 13:54:01 +09:00
|
|
|
};
|
2012-11-02 17:10:12 +09:00
|
|
|
|
2014-05-06 16:48:26 +08:00
|
|
|
trace_f2fs_writepage(page, DATA);
|
|
|
|
|
|
2012-11-02 17:10:12 +09:00
|
|
|
if (page->index < end_index)
|
f2fs: introduce a new global lock scheme
In the previous version, f2fs uses global locks according to the usage types,
such as directory operations, block allocation, block write, and so on.
Reference the following lock types in f2fs.h.
enum lock_type {
RENAME, /* for renaming operations */
DENTRY_OPS, /* for directory operations */
DATA_WRITE, /* for data write */
DATA_NEW, /* for data allocation */
DATA_TRUNC, /* for data truncate */
NODE_NEW, /* for node allocation */
NODE_TRUNC, /* for node truncate */
NODE_WRITE, /* for node write */
NR_LOCK_TYPE,
};
In that case, we lose the performance under the multi-threading environment,
since every types of operations must be conducted one at a time.
In order to address the problem, let's share the locks globally with a mutex
array regardless of any types.
So, let users grab a mutex and perform their jobs in parallel as much as
possbile.
For this, I propose a new global lock scheme as follows.
0. Data structure
- f2fs_sb_info -> mutex_lock[NR_GLOBAL_LOCKS]
- f2fs_sb_info -> node_write
1. mutex_lock_op(sbi)
- try to get an avaiable lock from the array.
- returns the index of the gottern lock variable.
2. mutex_unlock_op(sbi, index of the lock)
- unlock the given index of the lock.
3. mutex_lock_all(sbi)
- grab all the locks in the array before the checkpoint.
4. mutex_unlock_all(sbi)
- release all the locks in the array after checkpoint.
5. block_operations()
- call mutex_lock_all()
- sync_dirty_dir_inodes()
- grab node_write
- sync_node_pages()
Note that,
the pairs of mutex_lock_op()/mutex_unlock_op() and
mutex_lock_all()/mutex_unlock_all() should be used together.
Signed-off-by: Jaegeuk Kim <jaegeuk.kim@samsung.com>
2012-11-22 16:21:29 +09:00
|
|
|
goto write;
|
2012-11-02 17:10:12 +09:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* If the offset is out-of-range of file size,
|
|
|
|
|
* this page does not have to be written to disk.
|
|
|
|
|
*/
|
|
|
|
|
offset = i_size & (PAGE_CACHE_SIZE - 1);
|
2014-04-15 16:04:15 +09:00
|
|
|
if ((page->index >= end_index + 1) || !offset)
|
f2fs: introduce a new global lock scheme
In the previous version, f2fs uses global locks according to the usage types,
such as directory operations, block allocation, block write, and so on.
Reference the following lock types in f2fs.h.
enum lock_type {
RENAME, /* for renaming operations */
DENTRY_OPS, /* for directory operations */
DATA_WRITE, /* for data write */
DATA_NEW, /* for data allocation */
DATA_TRUNC, /* for data truncate */
NODE_NEW, /* for node allocation */
NODE_TRUNC, /* for node truncate */
NODE_WRITE, /* for node write */
NR_LOCK_TYPE,
};
In that case, we lose the performance under the multi-threading environment,
since every types of operations must be conducted one at a time.
In order to address the problem, let's share the locks globally with a mutex
array regardless of any types.
So, let users grab a mutex and perform their jobs in parallel as much as
possbile.
For this, I propose a new global lock scheme as follows.
0. Data structure
- f2fs_sb_info -> mutex_lock[NR_GLOBAL_LOCKS]
- f2fs_sb_info -> node_write
1. mutex_lock_op(sbi)
- try to get an avaiable lock from the array.
- returns the index of the gottern lock variable.
2. mutex_unlock_op(sbi, index of the lock)
- unlock the given index of the lock.
3. mutex_lock_all(sbi)
- grab all the locks in the array before the checkpoint.
4. mutex_unlock_all(sbi)
- release all the locks in the array after checkpoint.
5. block_operations()
- call mutex_lock_all()
- sync_dirty_dir_inodes()
- grab node_write
- sync_node_pages()
Note that,
the pairs of mutex_lock_op()/mutex_unlock_op() and
mutex_lock_all()/mutex_unlock_all() should be used together.
Signed-off-by: Jaegeuk Kim <jaegeuk.kim@samsung.com>
2012-11-22 16:21:29 +09:00
|
|
|
goto out;
|
2012-11-02 17:10:12 +09:00
|
|
|
|
|
|
|
|
zero_user_segment(page, offset, PAGE_CACHE_SIZE);
|
f2fs: introduce a new global lock scheme
In the previous version, f2fs uses global locks according to the usage types,
such as directory operations, block allocation, block write, and so on.
Reference the following lock types in f2fs.h.
enum lock_type {
RENAME, /* for renaming operations */
DENTRY_OPS, /* for directory operations */
DATA_WRITE, /* for data write */
DATA_NEW, /* for data allocation */
DATA_TRUNC, /* for data truncate */
NODE_NEW, /* for node allocation */
NODE_TRUNC, /* for node truncate */
NODE_WRITE, /* for node write */
NR_LOCK_TYPE,
};
In that case, we lose the performance under the multi-threading environment,
since every types of operations must be conducted one at a time.
In order to address the problem, let's share the locks globally with a mutex
array regardless of any types.
So, let users grab a mutex and perform their jobs in parallel as much as
possbile.
For this, I propose a new global lock scheme as follows.
0. Data structure
- f2fs_sb_info -> mutex_lock[NR_GLOBAL_LOCKS]
- f2fs_sb_info -> node_write
1. mutex_lock_op(sbi)
- try to get an avaiable lock from the array.
- returns the index of the gottern lock variable.
2. mutex_unlock_op(sbi, index of the lock)
- unlock the given index of the lock.
3. mutex_lock_all(sbi)
- grab all the locks in the array before the checkpoint.
4. mutex_unlock_all(sbi)
- release all the locks in the array after checkpoint.
5. block_operations()
- call mutex_lock_all()
- sync_dirty_dir_inodes()
- grab node_write
- sync_node_pages()
Note that,
the pairs of mutex_lock_op()/mutex_unlock_op() and
mutex_lock_all()/mutex_unlock_all() should be used together.
Signed-off-by: Jaegeuk Kim <jaegeuk.kim@samsung.com>
2012-11-22 16:21:29 +09:00
|
|
|
write:
|
2015-01-28 17:48:42 +08:00
|
|
|
if (unlikely(is_sbi_flag_set(sbi, SBI_POR_DOING)))
|
2012-11-02 17:10:12 +09:00
|
|
|
goto redirty_out;
|
2014-12-09 06:08:59 -08:00
|
|
|
if (f2fs_is_drop_cache(inode))
|
|
|
|
|
goto out;
|
|
|
|
|
if (f2fs_is_volatile_file(inode) && !wbc->for_reclaim &&
|
|
|
|
|
available_free_memory(sbi, BASE_CHECK))
|
|
|
|
|
goto redirty_out;
|
2012-11-02 17:10:12 +09:00
|
|
|
|
f2fs: introduce a new global lock scheme
In the previous version, f2fs uses global locks according to the usage types,
such as directory operations, block allocation, block write, and so on.
Reference the following lock types in f2fs.h.
enum lock_type {
RENAME, /* for renaming operations */
DENTRY_OPS, /* for directory operations */
DATA_WRITE, /* for data write */
DATA_NEW, /* for data allocation */
DATA_TRUNC, /* for data truncate */
NODE_NEW, /* for node allocation */
NODE_TRUNC, /* for node truncate */
NODE_WRITE, /* for node write */
NR_LOCK_TYPE,
};
In that case, we lose the performance under the multi-threading environment,
since every types of operations must be conducted one at a time.
In order to address the problem, let's share the locks globally with a mutex
array regardless of any types.
So, let users grab a mutex and perform their jobs in parallel as much as
possbile.
For this, I propose a new global lock scheme as follows.
0. Data structure
- f2fs_sb_info -> mutex_lock[NR_GLOBAL_LOCKS]
- f2fs_sb_info -> node_write
1. mutex_lock_op(sbi)
- try to get an avaiable lock from the array.
- returns the index of the gottern lock variable.
2. mutex_unlock_op(sbi, index of the lock)
- unlock the given index of the lock.
3. mutex_lock_all(sbi)
- grab all the locks in the array before the checkpoint.
4. mutex_unlock_all(sbi)
- release all the locks in the array after checkpoint.
5. block_operations()
- call mutex_lock_all()
- sync_dirty_dir_inodes()
- grab node_write
- sync_node_pages()
Note that,
the pairs of mutex_lock_op()/mutex_unlock_op() and
mutex_lock_all()/mutex_unlock_all() should be used together.
Signed-off-by: Jaegeuk Kim <jaegeuk.kim@samsung.com>
2012-11-22 16:21:29 +09:00
|
|
|
/* Dentry blocks are controlled by checkpoint */
|
2012-11-02 17:10:12 +09:00
|
|
|
if (S_ISDIR(inode->i_mode)) {
|
2014-08-11 18:37:46 -07:00
|
|
|
if (unlikely(f2fs_cp_error(sbi)))
|
|
|
|
|
goto redirty_out;
|
2015-04-23 14:38:15 -07:00
|
|
|
err = do_write_data_page(&fio);
|
2014-02-17 19:29:27 +09:00
|
|
|
goto done;
|
|
|
|
|
}
|
f2fs: handle inline data operations
Hook inline data read/write, truncate, fallocate, setattr, etc.
Files need meet following 2 requirement to inline:
1) file size is not greater than MAX_INLINE_DATA;
2) file doesn't pre-allocate data blocks by fallocate().
FI_INLINE_DATA will not be set while creating a new regular inode because
most of the files are bigger than ~3.4K. Set FI_INLINE_DATA only when
data is submitted to block layer, ranther than set it while creating a new
inode, this also avoids converting data from inline to normal data block
and vice versa.
While writting inline data to inode block, the first data block should be
released if the file has a block indexed by i_addr[0].
On the other hand, when a file operation is appied to a file with inline
data, we need to test if this file can remain inline by doing this
operation, otherwise it should be convert into normal file by reserving
a new data block, copying inline data to this new block and clear
FI_INLINE_DATA flag. Because reserve a new data block here will make use
of i_addr[0], if we save inline data in i_addr[0..872], then the first
4 bytes would be overwriten. This problem can be avoided simply by
not using i_addr[0] for inline data.
Signed-off-by: Huajun Li <huajun.li@intel.com>
Signed-off-by: Haicheng Li <haicheng.li@linux.intel.com>
Signed-off-by: Weihong Xu <weihong.xu@intel.com>
Signed-off-by: Jaegeuk Kim <jaegeuk.kim@samsung.com>
2013-11-10 23:13:20 +08:00
|
|
|
|
2014-08-11 18:37:46 -07:00
|
|
|
/* we should bypass data pages to proceed the kworkder jobs */
|
|
|
|
|
if (unlikely(f2fs_cp_error(sbi))) {
|
|
|
|
|
SetPageError(page);
|
2014-09-12 15:53:45 -07:00
|
|
|
goto out;
|
2014-08-11 18:37:46 -07:00
|
|
|
}
|
|
|
|
|
|
2014-02-17 19:29:27 +09:00
|
|
|
if (!wbc->for_reclaim)
|
f2fs: introduce a new global lock scheme
In the previous version, f2fs uses global locks according to the usage types,
such as directory operations, block allocation, block write, and so on.
Reference the following lock types in f2fs.h.
enum lock_type {
RENAME, /* for renaming operations */
DENTRY_OPS, /* for directory operations */
DATA_WRITE, /* for data write */
DATA_NEW, /* for data allocation */
DATA_TRUNC, /* for data truncate */
NODE_NEW, /* for node allocation */
NODE_TRUNC, /* for node truncate */
NODE_WRITE, /* for node write */
NR_LOCK_TYPE,
};
In that case, we lose the performance under the multi-threading environment,
since every types of operations must be conducted one at a time.
In order to address the problem, let's share the locks globally with a mutex
array regardless of any types.
So, let users grab a mutex and perform their jobs in parallel as much as
possbile.
For this, I propose a new global lock scheme as follows.
0. Data structure
- f2fs_sb_info -> mutex_lock[NR_GLOBAL_LOCKS]
- f2fs_sb_info -> node_write
1. mutex_lock_op(sbi)
- try to get an avaiable lock from the array.
- returns the index of the gottern lock variable.
2. mutex_unlock_op(sbi, index of the lock)
- unlock the given index of the lock.
3. mutex_lock_all(sbi)
- grab all the locks in the array before the checkpoint.
4. mutex_unlock_all(sbi)
- release all the locks in the array after checkpoint.
5. block_operations()
- call mutex_lock_all()
- sync_dirty_dir_inodes()
- grab node_write
- sync_node_pages()
Note that,
the pairs of mutex_lock_op()/mutex_unlock_op() and
mutex_lock_all()/mutex_unlock_all() should be used together.
Signed-off-by: Jaegeuk Kim <jaegeuk.kim@samsung.com>
2012-11-22 16:21:29 +09:00
|
|
|
need_balance_fs = true;
|
2014-02-17 19:29:27 +09:00
|
|
|
else if (has_not_enough_free_secs(sbi, 0))
|
f2fs: introduce a new global lock scheme
In the previous version, f2fs uses global locks according to the usage types,
such as directory operations, block allocation, block write, and so on.
Reference the following lock types in f2fs.h.
enum lock_type {
RENAME, /* for renaming operations */
DENTRY_OPS, /* for directory operations */
DATA_WRITE, /* for data write */
DATA_NEW, /* for data allocation */
DATA_TRUNC, /* for data truncate */
NODE_NEW, /* for node allocation */
NODE_TRUNC, /* for node truncate */
NODE_WRITE, /* for node write */
NR_LOCK_TYPE,
};
In that case, we lose the performance under the multi-threading environment,
since every types of operations must be conducted one at a time.
In order to address the problem, let's share the locks globally with a mutex
array regardless of any types.
So, let users grab a mutex and perform their jobs in parallel as much as
possbile.
For this, I propose a new global lock scheme as follows.
0. Data structure
- f2fs_sb_info -> mutex_lock[NR_GLOBAL_LOCKS]
- f2fs_sb_info -> node_write
1. mutex_lock_op(sbi)
- try to get an avaiable lock from the array.
- returns the index of the gottern lock variable.
2. mutex_unlock_op(sbi, index of the lock)
- unlock the given index of the lock.
3. mutex_lock_all(sbi)
- grab all the locks in the array before the checkpoint.
4. mutex_unlock_all(sbi)
- release all the locks in the array after checkpoint.
5. block_operations()
- call mutex_lock_all()
- sync_dirty_dir_inodes()
- grab node_write
- sync_node_pages()
Note that,
the pairs of mutex_lock_op()/mutex_unlock_op() and
mutex_lock_all()/mutex_unlock_all() should be used together.
Signed-off-by: Jaegeuk Kim <jaegeuk.kim@samsung.com>
2012-11-22 16:21:29 +09:00
|
|
|
goto redirty_out;
|
2012-11-02 17:10:12 +09:00
|
|
|
|
2014-10-23 19:48:09 -07:00
|
|
|
err = -EAGAIN;
|
2014-02-17 19:29:27 +09:00
|
|
|
f2fs_lock_op(sbi);
|
2014-10-23 19:48:09 -07:00
|
|
|
if (f2fs_has_inline_data(inode))
|
|
|
|
|
err = f2fs_write_inline_data(inode, page);
|
|
|
|
|
if (err == -EAGAIN)
|
2015-04-23 14:38:15 -07:00
|
|
|
err = do_write_data_page(&fio);
|
2014-02-17 19:29:27 +09:00
|
|
|
f2fs_unlock_op(sbi);
|
|
|
|
|
done:
|
|
|
|
|
if (err && err != -ENOENT)
|
|
|
|
|
goto redirty_out;
|
2012-11-02 17:10:12 +09:00
|
|
|
|
|
|
|
|
clear_cold_data(page);
|
f2fs: introduce a new global lock scheme
In the previous version, f2fs uses global locks according to the usage types,
such as directory operations, block allocation, block write, and so on.
Reference the following lock types in f2fs.h.
enum lock_type {
RENAME, /* for renaming operations */
DENTRY_OPS, /* for directory operations */
DATA_WRITE, /* for data write */
DATA_NEW, /* for data allocation */
DATA_TRUNC, /* for data truncate */
NODE_NEW, /* for node allocation */
NODE_TRUNC, /* for node truncate */
NODE_WRITE, /* for node write */
NR_LOCK_TYPE,
};
In that case, we lose the performance under the multi-threading environment,
since every types of operations must be conducted one at a time.
In order to address the problem, let's share the locks globally with a mutex
array regardless of any types.
So, let users grab a mutex and perform their jobs in parallel as much as
possbile.
For this, I propose a new global lock scheme as follows.
0. Data structure
- f2fs_sb_info -> mutex_lock[NR_GLOBAL_LOCKS]
- f2fs_sb_info -> node_write
1. mutex_lock_op(sbi)
- try to get an avaiable lock from the array.
- returns the index of the gottern lock variable.
2. mutex_unlock_op(sbi, index of the lock)
- unlock the given index of the lock.
3. mutex_lock_all(sbi)
- grab all the locks in the array before the checkpoint.
4. mutex_unlock_all(sbi)
- release all the locks in the array after checkpoint.
5. block_operations()
- call mutex_lock_all()
- sync_dirty_dir_inodes()
- grab node_write
- sync_node_pages()
Note that,
the pairs of mutex_lock_op()/mutex_unlock_op() and
mutex_lock_all()/mutex_unlock_all() should be used together.
Signed-off-by: Jaegeuk Kim <jaegeuk.kim@samsung.com>
2012-11-22 16:21:29 +09:00
|
|
|
out:
|
2014-09-12 15:53:45 -07:00
|
|
|
inode_dec_dirty_pages(inode);
|
2015-02-25 19:25:01 -08:00
|
|
|
if (err)
|
|
|
|
|
ClearPageUptodate(page);
|
2012-11-02 17:10:12 +09:00
|
|
|
unlock_page(page);
|
f2fs: introduce a new global lock scheme
In the previous version, f2fs uses global locks according to the usage types,
such as directory operations, block allocation, block write, and so on.
Reference the following lock types in f2fs.h.
enum lock_type {
RENAME, /* for renaming operations */
DENTRY_OPS, /* for directory operations */
DATA_WRITE, /* for data write */
DATA_NEW, /* for data allocation */
DATA_TRUNC, /* for data truncate */
NODE_NEW, /* for node allocation */
NODE_TRUNC, /* for node truncate */
NODE_WRITE, /* for node write */
NR_LOCK_TYPE,
};
In that case, we lose the performance under the multi-threading environment,
since every types of operations must be conducted one at a time.
In order to address the problem, let's share the locks globally with a mutex
array regardless of any types.
So, let users grab a mutex and perform their jobs in parallel as much as
possbile.
For this, I propose a new global lock scheme as follows.
0. Data structure
- f2fs_sb_info -> mutex_lock[NR_GLOBAL_LOCKS]
- f2fs_sb_info -> node_write
1. mutex_lock_op(sbi)
- try to get an avaiable lock from the array.
- returns the index of the gottern lock variable.
2. mutex_unlock_op(sbi, index of the lock)
- unlock the given index of the lock.
3. mutex_lock_all(sbi)
- grab all the locks in the array before the checkpoint.
4. mutex_unlock_all(sbi)
- release all the locks in the array after checkpoint.
5. block_operations()
- call mutex_lock_all()
- sync_dirty_dir_inodes()
- grab node_write
- sync_node_pages()
Note that,
the pairs of mutex_lock_op()/mutex_unlock_op() and
mutex_lock_all()/mutex_unlock_all() should be used together.
Signed-off-by: Jaegeuk Kim <jaegeuk.kim@samsung.com>
2012-11-22 16:21:29 +09:00
|
|
|
if (need_balance_fs)
|
2012-11-02 17:10:12 +09:00
|
|
|
f2fs_balance_fs(sbi);
|
2014-04-24 09:49:52 +09:00
|
|
|
if (wbc->for_reclaim)
|
|
|
|
|
f2fs_submit_merged_bio(sbi, DATA, WRITE);
|
2012-11-02 17:10:12 +09:00
|
|
|
return 0;
|
|
|
|
|
|
|
|
|
|
redirty_out:
|
2014-04-15 16:04:15 +09:00
|
|
|
redirty_page_for_writepage(wbc, page);
|
2014-02-17 19:29:27 +09:00
|
|
|
return AOP_WRITEPAGE_ACTIVATE;
|
2012-11-02 17:10:12 +09:00
|
|
|
}
|
|
|
|
|
|
2013-01-15 16:45:24 +09:00
|
|
|
static int __f2fs_writepage(struct page *page, struct writeback_control *wbc,
|
|
|
|
|
void *data)
|
|
|
|
|
{
|
|
|
|
|
struct address_space *mapping = data;
|
|
|
|
|
int ret = mapping->a_ops->writepage(page, wbc);
|
|
|
|
|
mapping_set_error(mapping, ret);
|
|
|
|
|
return ret;
|
|
|
|
|
}
|
|
|
|
|
|
f2fs: expose f2fs_write_cache_pages
If there are gced dirty pages and normal dirty pages in the mapping
of one inode, we might writeback them alternately with discontinuous
block address, resulting in low performance.
This patch introduces f2fs_write_cache_pages with codes copied from
write_cache_pages in mm/page-writeback.c.
In this function, we refactor flow with two steps:
1) writeback all cold type pages.
2) writeback all non-cold type pages.
By using this method, f2fs will writeback dirty pages with the same
temperature in bunch mode, it makes writeouted block being with
more continuous address, so they can be merged as much as possible
in f2fs bio cache, and also it will reduce the chance of submiting
small IO from block layer.
Test environment: 8g nokia sd card (very old sd card, but it shows
better effect when testing with this patch, and with a 32g kingston
sd card, I didn't see much more improvement).
Test step:
1. touch testfile;
2. truncate -s 512K testfile;
3. write all pages with odd index;
4. trigger gc by ioctl;
5. write all pages with even index;
6. time fsync testfile.
before:
real 0m0.402s
user 0m0.000s
sys 0m0.000s
after:
real 0m0.143s
user 0m0.004s
sys 0m0.004s
Signed-off-by: Chao Yu <chao2.yu@samsung.com>
Signed-off-by: Jaegeuk Kim <jaegeuk@kernel.org>
2015-07-14 18:56:10 +08:00
|
|
|
/*
|
|
|
|
|
* This function was copied from write_cche_pages from mm/page-writeback.c.
|
|
|
|
|
* The major change is making write step of cold data page separately from
|
|
|
|
|
* warm/hot data page.
|
|
|
|
|
*/
|
|
|
|
|
static int f2fs_write_cache_pages(struct address_space *mapping,
|
|
|
|
|
struct writeback_control *wbc, writepage_t writepage,
|
|
|
|
|
void *data)
|
|
|
|
|
{
|
|
|
|
|
int ret = 0;
|
|
|
|
|
int done = 0;
|
|
|
|
|
struct pagevec pvec;
|
|
|
|
|
int nr_pages;
|
|
|
|
|
pgoff_t uninitialized_var(writeback_index);
|
|
|
|
|
pgoff_t index;
|
|
|
|
|
pgoff_t end; /* Inclusive */
|
|
|
|
|
pgoff_t done_index;
|
|
|
|
|
int cycled;
|
|
|
|
|
int range_whole = 0;
|
|
|
|
|
int tag;
|
|
|
|
|
int step = 0;
|
|
|
|
|
|
|
|
|
|
pagevec_init(&pvec, 0);
|
|
|
|
|
next:
|
|
|
|
|
if (wbc->range_cyclic) {
|
|
|
|
|
writeback_index = mapping->writeback_index; /* prev offset */
|
|
|
|
|
index = writeback_index;
|
|
|
|
|
if (index == 0)
|
|
|
|
|
cycled = 1;
|
|
|
|
|
else
|
|
|
|
|
cycled = 0;
|
|
|
|
|
end = -1;
|
|
|
|
|
} else {
|
|
|
|
|
index = wbc->range_start >> PAGE_CACHE_SHIFT;
|
|
|
|
|
end = wbc->range_end >> PAGE_CACHE_SHIFT;
|
|
|
|
|
if (wbc->range_start == 0 && wbc->range_end == LLONG_MAX)
|
|
|
|
|
range_whole = 1;
|
|
|
|
|
cycled = 1; /* ignore range_cyclic tests */
|
|
|
|
|
}
|
|
|
|
|
if (wbc->sync_mode == WB_SYNC_ALL || wbc->tagged_writepages)
|
|
|
|
|
tag = PAGECACHE_TAG_TOWRITE;
|
|
|
|
|
else
|
|
|
|
|
tag = PAGECACHE_TAG_DIRTY;
|
|
|
|
|
retry:
|
|
|
|
|
if (wbc->sync_mode == WB_SYNC_ALL || wbc->tagged_writepages)
|
|
|
|
|
tag_pages_for_writeback(mapping, index, end);
|
|
|
|
|
done_index = index;
|
|
|
|
|
while (!done && (index <= end)) {
|
|
|
|
|
int i;
|
|
|
|
|
|
|
|
|
|
nr_pages = pagevec_lookup_tag(&pvec, mapping, &index, tag,
|
|
|
|
|
min(end - index, (pgoff_t)PAGEVEC_SIZE - 1) + 1);
|
|
|
|
|
if (nr_pages == 0)
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
for (i = 0; i < nr_pages; i++) {
|
|
|
|
|
struct page *page = pvec.pages[i];
|
|
|
|
|
|
|
|
|
|
if (page->index > end) {
|
|
|
|
|
done = 1;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
done_index = page->index;
|
|
|
|
|
|
|
|
|
|
lock_page(page);
|
|
|
|
|
|
|
|
|
|
if (unlikely(page->mapping != mapping)) {
|
|
|
|
|
continue_unlock:
|
|
|
|
|
unlock_page(page);
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!PageDirty(page)) {
|
|
|
|
|
/* someone wrote it for us */
|
|
|
|
|
goto continue_unlock;
|
|
|
|
|
}
|
|
|
|
|
|
2015-07-17 12:56:00 +08:00
|
|
|
if (step == is_cold_data(page))
|
f2fs: expose f2fs_write_cache_pages
If there are gced dirty pages and normal dirty pages in the mapping
of one inode, we might writeback them alternately with discontinuous
block address, resulting in low performance.
This patch introduces f2fs_write_cache_pages with codes copied from
write_cache_pages in mm/page-writeback.c.
In this function, we refactor flow with two steps:
1) writeback all cold type pages.
2) writeback all non-cold type pages.
By using this method, f2fs will writeback dirty pages with the same
temperature in bunch mode, it makes writeouted block being with
more continuous address, so they can be merged as much as possible
in f2fs bio cache, and also it will reduce the chance of submiting
small IO from block layer.
Test environment: 8g nokia sd card (very old sd card, but it shows
better effect when testing with this patch, and with a 32g kingston
sd card, I didn't see much more improvement).
Test step:
1. touch testfile;
2. truncate -s 512K testfile;
3. write all pages with odd index;
4. trigger gc by ioctl;
5. write all pages with even index;
6. time fsync testfile.
before:
real 0m0.402s
user 0m0.000s
sys 0m0.000s
after:
real 0m0.143s
user 0m0.004s
sys 0m0.004s
Signed-off-by: Chao Yu <chao2.yu@samsung.com>
Signed-off-by: Jaegeuk Kim <jaegeuk@kernel.org>
2015-07-14 18:56:10 +08:00
|
|
|
goto continue_unlock;
|
|
|
|
|
|
|
|
|
|
if (PageWriteback(page)) {
|
|
|
|
|
if (wbc->sync_mode != WB_SYNC_NONE)
|
|
|
|
|
f2fs_wait_on_page_writeback(page, DATA);
|
|
|
|
|
else
|
|
|
|
|
goto continue_unlock;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
BUG_ON(PageWriteback(page));
|
|
|
|
|
if (!clear_page_dirty_for_io(page))
|
|
|
|
|
goto continue_unlock;
|
|
|
|
|
|
|
|
|
|
ret = (*writepage)(page, wbc, data);
|
|
|
|
|
if (unlikely(ret)) {
|
|
|
|
|
if (ret == AOP_WRITEPAGE_ACTIVATE) {
|
|
|
|
|
unlock_page(page);
|
|
|
|
|
ret = 0;
|
|
|
|
|
} else {
|
|
|
|
|
done_index = page->index + 1;
|
|
|
|
|
done = 1;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (--wbc->nr_to_write <= 0 &&
|
|
|
|
|
wbc->sync_mode == WB_SYNC_NONE) {
|
|
|
|
|
done = 1;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
pagevec_release(&pvec);
|
|
|
|
|
cond_resched();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (step < 1) {
|
|
|
|
|
step++;
|
|
|
|
|
goto next;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!cycled && !done) {
|
|
|
|
|
cycled = 1;
|
|
|
|
|
index = 0;
|
|
|
|
|
end = writeback_index - 1;
|
|
|
|
|
goto retry;
|
|
|
|
|
}
|
|
|
|
|
if (wbc->range_cyclic || (range_whole && wbc->nr_to_write > 0))
|
|
|
|
|
mapping->writeback_index = done_index;
|
|
|
|
|
|
|
|
|
|
return ret;
|
|
|
|
|
}
|
|
|
|
|
|
2012-11-28 16:12:41 +09:00
|
|
|
static int f2fs_write_data_pages(struct address_space *mapping,
|
2012-11-02 17:10:12 +09:00
|
|
|
struct writeback_control *wbc)
|
|
|
|
|
{
|
|
|
|
|
struct inode *inode = mapping->host;
|
2014-09-02 15:31:18 -07:00
|
|
|
struct f2fs_sb_info *sbi = F2FS_I_SB(inode);
|
2015-04-21 10:40:54 -07:00
|
|
|
bool locked = false;
|
2012-11-02 17:10:12 +09:00
|
|
|
int ret;
|
2014-03-18 13:47:11 +09:00
|
|
|
long diff;
|
2012-11-02 17:10:12 +09:00
|
|
|
|
2014-05-06 16:51:24 +08:00
|
|
|
trace_f2fs_writepages(mapping->host, wbc, DATA);
|
|
|
|
|
|
2013-04-03 11:38:00 +09:00
|
|
|
/* deal with chardevs and other special file */
|
|
|
|
|
if (!mapping->a_ops->writepage)
|
|
|
|
|
return 0;
|
|
|
|
|
|
2015-07-17 18:02:39 +08:00
|
|
|
/* skip writing if there is no dirty page in this inode */
|
|
|
|
|
if (!get_dirty_pages(inode) && wbc->sync_mode == WB_SYNC_NONE)
|
|
|
|
|
return 0;
|
|
|
|
|
|
2015-10-08 10:40:07 -07:00
|
|
|
if (S_ISDIR(inode->i_mode) && wbc->sync_mode == WB_SYNC_NONE &&
|
|
|
|
|
get_dirty_pages(inode) < nr_pages_to_skip(sbi, DATA) &&
|
|
|
|
|
available_free_memory(sbi, DIRTY_DENTS))
|
|
|
|
|
goto skip_write;
|
|
|
|
|
|
2015-02-27 13:37:39 -08:00
|
|
|
/* during POR, we don't need to trigger writepage at all. */
|
|
|
|
|
if (unlikely(is_sbi_flag_set(sbi, SBI_POR_DOING)))
|
|
|
|
|
goto skip_write;
|
|
|
|
|
|
2014-03-18 13:47:11 +09:00
|
|
|
diff = nr_pages_to_write(sbi, DATA, wbc);
|
2012-11-02 17:10:12 +09:00
|
|
|
|
2015-04-21 10:40:54 -07:00
|
|
|
if (!S_ISDIR(inode->i_mode)) {
|
|
|
|
|
mutex_lock(&sbi->writepages);
|
|
|
|
|
locked = true;
|
|
|
|
|
}
|
f2fs: expose f2fs_write_cache_pages
If there are gced dirty pages and normal dirty pages in the mapping
of one inode, we might writeback them alternately with discontinuous
block address, resulting in low performance.
This patch introduces f2fs_write_cache_pages with codes copied from
write_cache_pages in mm/page-writeback.c.
In this function, we refactor flow with two steps:
1) writeback all cold type pages.
2) writeback all non-cold type pages.
By using this method, f2fs will writeback dirty pages with the same
temperature in bunch mode, it makes writeouted block being with
more continuous address, so they can be merged as much as possible
in f2fs bio cache, and also it will reduce the chance of submiting
small IO from block layer.
Test environment: 8g nokia sd card (very old sd card, but it shows
better effect when testing with this patch, and with a 32g kingston
sd card, I didn't see much more improvement).
Test step:
1. touch testfile;
2. truncate -s 512K testfile;
3. write all pages with odd index;
4. trigger gc by ioctl;
5. write all pages with even index;
6. time fsync testfile.
before:
real 0m0.402s
user 0m0.000s
sys 0m0.000s
after:
real 0m0.143s
user 0m0.004s
sys 0m0.004s
Signed-off-by: Chao Yu <chao2.yu@samsung.com>
Signed-off-by: Jaegeuk Kim <jaegeuk@kernel.org>
2015-07-14 18:56:10 +08:00
|
|
|
ret = f2fs_write_cache_pages(mapping, wbc, __f2fs_writepage, mapping);
|
f2fs: enhance multithread performance
In ->writepages, we use writepages mutex lock to serialize all block
address allocation and page submitting pairs from different inodes.
This method makes our delayed dirty pages of one inode being written
continously as many as possible.
But there is one problem that we did not submit current cached bio in
protection region of writepages mutex lock, so there is a small chance
that we submit the one of other thread's as below, resulting in
splitting more bios.
thread 1 thread 2
->writepages
lock(writepages)
->write_cache_pages
unlock(writepages)
lock(writepages)
->write_cache_pages
->f2fs_submit_merged_bio
->writepage
unlock(writepages)
fs_mark-6535 [002] .... 2242.270230: f2fs_submit_write_bio: dev = (1,0), WRITE_SYNC, DATA, sector = 5766152, size = 524288
fs_mark-6536 [000] .... 2242.270361: f2fs_submit_write_bio: dev = (1,0), WRITE_SYNC, DATA, sector = 5767176, size = 4096
fs_mark-6536 [000] .... 2242.270370: f2fs_submit_write_bio: dev = (1,0), WRITE_SYNC, NODE, sector = 8138112, size = 4096
fs_mark-6535 [002] .... 2242.270776: f2fs_submit_write_bio: dev = (1,0), WRITE_SYNC, DATA, sector = 5767184, size = 516096
This may really increase time of block layer works, and may cause
larger IO lantency.
This patch moves the submitting operation into region of writepages
mutex lock to avoid bio splits when concurrently writebacking is
intensive.
my test environment: virtual machine,
intel cpu i5 2500, 8GB size memory, 4GB size ramdisk
time fs_mark -t 16 -L 1 -s 524288 -S 1 -d /mnt/f2fs/
before:
real 0m4.244s
user 0m0.088s
sys 0m12.336s
after:
real 0m3.822s
user 0m0.072s
sys 0m10.760s
Signed-off-by: Chao Yu <chao2.yu@samsung.com>
Signed-off-by: Jaegeuk Kim <jaegeuk@kernel.org>
2015-07-06 20:31:49 +08:00
|
|
|
f2fs_submit_merged_bio(sbi, DATA, WRITE);
|
2015-04-21 10:40:54 -07:00
|
|
|
if (locked)
|
|
|
|
|
mutex_unlock(&sbi->writepages);
|
2013-12-11 13:54:01 +09:00
|
|
|
|
2012-11-02 17:10:12 +09:00
|
|
|
remove_dirty_dir_inode(inode);
|
|
|
|
|
|
2014-03-18 13:47:11 +09:00
|
|
|
wbc->nr_to_write = max((long)0, wbc->nr_to_write - diff);
|
2012-11-02 17:10:12 +09:00
|
|
|
return ret;
|
2014-03-18 13:43:05 +09:00
|
|
|
|
|
|
|
|
skip_write:
|
2014-09-12 15:53:45 -07:00
|
|
|
wbc->pages_skipped += get_dirty_pages(inode);
|
2014-03-18 13:43:05 +09:00
|
|
|
return 0;
|
2012-11-02 17:10:12 +09:00
|
|
|
}
|
|
|
|
|
|
2014-07-02 13:25:04 +08:00
|
|
|
static void f2fs_write_failed(struct address_space *mapping, loff_t to)
|
|
|
|
|
{
|
|
|
|
|
struct inode *inode = mapping->host;
|
|
|
|
|
|
|
|
|
|
if (to > inode->i_size) {
|
|
|
|
|
truncate_pagecache(inode, inode->i_size);
|
2014-08-14 16:32:54 -07:00
|
|
|
truncate_blocks(inode, inode->i_size, true);
|
2014-07-02 13:25:04 +08:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2012-11-02 17:10:12 +09:00
|
|
|
static int f2fs_write_begin(struct file *file, struct address_space *mapping,
|
|
|
|
|
loff_t pos, unsigned len, unsigned flags,
|
|
|
|
|
struct page **pagep, void **fsdata)
|
|
|
|
|
{
|
|
|
|
|
struct inode *inode = mapping->host;
|
2014-09-02 15:31:18 -07:00
|
|
|
struct f2fs_sb_info *sbi = F2FS_I_SB(inode);
|
2015-07-15 13:08:21 -07:00
|
|
|
struct page *page = NULL;
|
|
|
|
|
struct page *ipage;
|
2012-11-02 17:10:12 +09:00
|
|
|
pgoff_t index = ((unsigned long long) pos) >> PAGE_CACHE_SHIFT;
|
|
|
|
|
struct dnode_of_data dn;
|
|
|
|
|
int err = 0;
|
|
|
|
|
|
2014-05-06 16:46:04 +08:00
|
|
|
trace_f2fs_write_begin(inode, pos, len, flags);
|
|
|
|
|
|
2012-11-02 17:10:12 +09:00
|
|
|
f2fs_balance_fs(sbi);
|
2014-11-25 10:59:45 -08:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* We should check this at this moment to avoid deadlock on inode page
|
|
|
|
|
* and #0 page. The locking rule for inline_data conversion should be:
|
|
|
|
|
* lock_page(page #0) -> lock_page(inode_page)
|
|
|
|
|
*/
|
|
|
|
|
if (index != 0) {
|
|
|
|
|
err = f2fs_convert_inline_inode(inode);
|
|
|
|
|
if (err)
|
|
|
|
|
goto fail;
|
|
|
|
|
}
|
2013-04-26 11:55:17 +09:00
|
|
|
repeat:
|
2017-02-17 09:55:55 -08:00
|
|
|
/*
|
|
|
|
|
* Do not use grab_cache_page_write_begin() to avoid deadlock due to
|
|
|
|
|
* wait_for_stable_page. Will wait that below with our IO control.
|
|
|
|
|
*/
|
|
|
|
|
page = pagecache_get_page(mapping, index,
|
|
|
|
|
FGP_LOCK | FGP_WRITE | FGP_CREAT, GFP_NOFS);
|
2014-07-02 13:25:04 +08:00
|
|
|
if (!page) {
|
|
|
|
|
err = -ENOMEM;
|
|
|
|
|
goto fail;
|
|
|
|
|
}
|
2014-04-30 09:22:45 +09:00
|
|
|
|
2012-11-02 17:10:12 +09:00
|
|
|
*pagep = page;
|
|
|
|
|
|
f2fs: use rw_sem instead of fs_lock(locks mutex)
The fs_locks is used to block other ops(ex, recovery) when doing checkpoint.
And each other operate routine(besides checkpoint) needs to acquire a fs_lock,
there is a terrible problem here, if these are too many concurrency threads acquiring
fs_lock, so that they will block each other and may lead to some performance problem,
but this is not the phenomenon we want to see.
Though there are some optimization patches introduced to enhance the usage of fs_lock,
but the thorough solution is using a *rw_sem* to replace the fs_lock.
Checkpoint routine takes write_sem, and other ops take read_sem, so that we can block
other ops(ex, recovery) when doing checkpoint, and other ops will not disturb each other,
this can avoid the problem described above completely.
Because of the weakness of rw_sem, the above change may introduce a potential problem
that the checkpoint thread might get starved if other threads are intensively locking
the read semaphore for I/O.(Pointed out by Xu Jin)
In order to avoid this, a wait_list is introduced, the appending read semaphore ops
will be dropped into the wait_list if checkpoint thread is waiting for write semaphore,
and will be waked up when checkpoint thread gives up write semaphore.
Thanks to Kim's previous review and test, and will be very glad to see other guys'
performance tests about this patch.
V2:
-fix the potential starvation problem.
-use more suitable func name suggested by Xu Jin.
Signed-off-by: Gu Zheng <guz.fnst@cn.fujitsu.com>
[Jaegeuk Kim: adjust minor coding standard]
Signed-off-by: Jaegeuk Kim <jaegeuk.kim@samsung.com>
2013-09-27 18:08:30 +08:00
|
|
|
f2fs_lock_op(sbi);
|
2014-10-17 20:33:55 -07:00
|
|
|
|
|
|
|
|
/* check inline_data */
|
|
|
|
|
ipage = get_node_page(sbi, inode->i_ino);
|
2014-12-01 11:30:20 +08:00
|
|
|
if (IS_ERR(ipage)) {
|
|
|
|
|
err = PTR_ERR(ipage);
|
2014-10-17 20:33:55 -07:00
|
|
|
goto unlock_fail;
|
2014-12-01 11:30:20 +08:00
|
|
|
}
|
2014-10-17 20:33:55 -07:00
|
|
|
|
2014-10-23 19:48:09 -07:00
|
|
|
set_new_dnode(&dn, inode, ipage, ipage, 0);
|
|
|
|
|
|
2014-10-17 20:33:55 -07:00
|
|
|
if (f2fs_has_inline_data(inode)) {
|
2014-10-23 19:48:09 -07:00
|
|
|
if (pos + len <= MAX_INLINE_DATA) {
|
|
|
|
|
read_inline_data(page, ipage);
|
|
|
|
|
set_inode_flag(F2FS_I(inode), FI_DATA_EXIST);
|
|
|
|
|
sync_inode_page(&dn);
|
|
|
|
|
goto put_next;
|
|
|
|
|
}
|
2014-11-25 10:59:45 -08:00
|
|
|
err = f2fs_convert_inline_page(&dn, page);
|
|
|
|
|
if (err)
|
|
|
|
|
goto put_fail;
|
2013-11-10 23:13:18 +08:00
|
|
|
}
|
2015-08-05 15:52:16 +08:00
|
|
|
|
|
|
|
|
err = f2fs_get_block(&dn, index);
|
2014-10-17 20:33:55 -07:00
|
|
|
if (err)
|
2014-11-17 16:14:11 -08:00
|
|
|
goto put_fail;
|
2014-10-23 19:48:09 -07:00
|
|
|
put_next:
|
2014-10-17 20:33:55 -07:00
|
|
|
f2fs_put_dnode(&dn);
|
|
|
|
|
f2fs_unlock_op(sbi);
|
|
|
|
|
|
2014-10-23 19:48:09 -07:00
|
|
|
f2fs_wait_on_page_writeback(page, DATA);
|
|
|
|
|
|
2015-10-08 13:27:34 +08:00
|
|
|
/* wait for GCed encrypted page writeback */
|
|
|
|
|
if (f2fs_encrypted_inode(inode) && S_ISREG(inode->i_mode))
|
|
|
|
|
f2fs_wait_on_encrypted_page_writeback(sbi, dn.data_blkaddr);
|
|
|
|
|
|
2015-07-08 18:24:38 +08:00
|
|
|
if (len == PAGE_CACHE_SIZE)
|
|
|
|
|
goto out_update;
|
|
|
|
|
if (PageUptodate(page))
|
|
|
|
|
goto out_clear;
|
2012-11-02 17:10:12 +09:00
|
|
|
|
|
|
|
|
if ((pos & PAGE_CACHE_MASK) >= i_size_read(inode)) {
|
|
|
|
|
unsigned start = pos & (PAGE_CACHE_SIZE - 1);
|
|
|
|
|
unsigned end = start + len;
|
|
|
|
|
|
|
|
|
|
/* Reading beyond i_size is simple: memset to zero */
|
|
|
|
|
zero_user_segments(page, 0, start, end, PAGE_CACHE_SIZE);
|
2015-07-08 18:24:38 +08:00
|
|
|
goto out_update;
|
2012-11-02 17:10:12 +09:00
|
|
|
}
|
|
|
|
|
|
2014-10-23 19:48:09 -07:00
|
|
|
if (dn.data_blkaddr == NEW_ADDR) {
|
2012-11-02 17:10:12 +09:00
|
|
|
zero_user_segment(page, 0, PAGE_CACHE_SIZE);
|
|
|
|
|
} else {
|
2016-07-03 22:05:11 +08:00
|
|
|
struct bio *bio;
|
|
|
|
|
|
|
|
|
|
bio = f2fs_grab_bio(inode, dn.data_blkaddr, 1);
|
|
|
|
|
if (IS_ERR(bio)) {
|
|
|
|
|
err = PTR_ERR(bio);
|
2014-10-22 15:21:47 +02:00
|
|
|
goto fail;
|
2016-07-03 22:05:11 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (bio_add_page(bio, page, PAGE_CACHE_SIZE, 0) < PAGE_CACHE_SIZE) {
|
|
|
|
|
bio_put(bio);
|
|
|
|
|
err = -EFAULT;
|
|
|
|
|
goto fail;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
submit_bio(READ_SYNC, bio);
|
2014-03-29 15:30:40 +08:00
|
|
|
|
2013-03-08 21:29:23 +09:00
|
|
|
lock_page(page);
|
2013-12-06 15:00:58 +09:00
|
|
|
if (unlikely(!PageUptodate(page))) {
|
2014-07-02 13:25:04 +08:00
|
|
|
err = -EIO;
|
|
|
|
|
goto fail;
|
2012-11-02 17:10:12 +09:00
|
|
|
}
|
2013-12-06 15:00:58 +09:00
|
|
|
if (unlikely(page->mapping != mapping)) {
|
2013-04-26 11:55:17 +09:00
|
|
|
f2fs_put_page(page, 1);
|
|
|
|
|
goto repeat;
|
2012-11-02 17:10:12 +09:00
|
|
|
}
|
|
|
|
|
}
|
2015-07-08 18:24:38 +08:00
|
|
|
out_update:
|
2012-11-02 17:10:12 +09:00
|
|
|
SetPageUptodate(page);
|
2015-07-08 18:24:38 +08:00
|
|
|
out_clear:
|
2012-11-02 17:10:12 +09:00
|
|
|
clear_cold_data(page);
|
|
|
|
|
return 0;
|
2014-10-17 20:33:55 -07:00
|
|
|
|
2014-11-17 16:14:11 -08:00
|
|
|
put_fail:
|
|
|
|
|
f2fs_put_dnode(&dn);
|
2014-10-17 20:33:55 -07:00
|
|
|
unlock_fail:
|
|
|
|
|
f2fs_unlock_op(sbi);
|
2014-07-02 13:25:04 +08:00
|
|
|
fail:
|
2015-07-15 13:08:21 -07:00
|
|
|
f2fs_put_page(page, 1);
|
2014-07-02 13:25:04 +08:00
|
|
|
f2fs_write_failed(mapping, pos + len);
|
|
|
|
|
return err;
|
2012-11-02 17:10:12 +09:00
|
|
|
}
|
|
|
|
|
|
2013-06-27 13:04:08 +09:00
|
|
|
static int f2fs_write_end(struct file *file,
|
|
|
|
|
struct address_space *mapping,
|
|
|
|
|
loff_t pos, unsigned len, unsigned copied,
|
|
|
|
|
struct page *page, void *fsdata)
|
|
|
|
|
{
|
|
|
|
|
struct inode *inode = page->mapping->host;
|
|
|
|
|
|
2014-05-06 16:47:23 +08:00
|
|
|
trace_f2fs_write_end(inode, pos, len, copied);
|
|
|
|
|
|
2014-10-09 13:19:53 -07:00
|
|
|
set_page_dirty(page);
|
2013-06-27 13:04:08 +09:00
|
|
|
|
|
|
|
|
if (pos + copied > i_size_read(inode)) {
|
|
|
|
|
i_size_write(inode, pos + copied);
|
|
|
|
|
mark_inode_dirty(inode);
|
|
|
|
|
update_inode_page(inode);
|
|
|
|
|
}
|
|
|
|
|
|
2013-11-16 14:15:59 +08:00
|
|
|
f2fs_put_page(page, 1);
|
2013-06-27 13:04:08 +09:00
|
|
|
return copied;
|
|
|
|
|
}
|
|
|
|
|
|
2015-03-16 04:33:52 -07:00
|
|
|
static int check_direct_IO(struct inode *inode, struct iov_iter *iter,
|
|
|
|
|
loff_t offset)
|
2013-12-26 20:15:09 +09:00
|
|
|
{
|
|
|
|
|
unsigned blocksize_mask = inode->i_sb->s_blocksize - 1;
|
|
|
|
|
|
|
|
|
|
if (offset & blocksize_mask)
|
|
|
|
|
return -EINVAL;
|
|
|
|
|
|
2014-03-16 18:07:34 -04:00
|
|
|
if (iov_iter_alignment(iter) & blocksize_mask)
|
|
|
|
|
return -EINVAL;
|
|
|
|
|
|
2013-12-26 20:15:09 +09:00
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2015-03-16 04:33:53 -07:00
|
|
|
static ssize_t f2fs_direct_IO(struct kiocb *iocb, struct iov_iter *iter,
|
|
|
|
|
loff_t offset)
|
2012-11-02 17:10:12 +09:00
|
|
|
{
|
|
|
|
|
struct file *file = iocb->ki_filp;
|
2014-07-02 13:25:04 +08:00
|
|
|
struct address_space *mapping = file->f_mapping;
|
|
|
|
|
struct inode *inode = mapping->host;
|
|
|
|
|
size_t count = iov_iter_count(iter);
|
|
|
|
|
int err;
|
2013-12-26 20:15:09 +09:00
|
|
|
|
2014-10-23 19:48:09 -07:00
|
|
|
/* we don't need to use inline_data strictly */
|
|
|
|
|
if (f2fs_has_inline_data(inode)) {
|
|
|
|
|
err = f2fs_convert_inline_inode(inode);
|
|
|
|
|
if (err)
|
|
|
|
|
return err;
|
|
|
|
|
}
|
f2fs: handle inline data operations
Hook inline data read/write, truncate, fallocate, setattr, etc.
Files need meet following 2 requirement to inline:
1) file size is not greater than MAX_INLINE_DATA;
2) file doesn't pre-allocate data blocks by fallocate().
FI_INLINE_DATA will not be set while creating a new regular inode because
most of the files are bigger than ~3.4K. Set FI_INLINE_DATA only when
data is submitted to block layer, ranther than set it while creating a new
inode, this also avoids converting data from inline to normal data block
and vice versa.
While writting inline data to inode block, the first data block should be
released if the file has a block indexed by i_addr[0].
On the other hand, when a file operation is appied to a file with inline
data, we need to test if this file can remain inline by doing this
operation, otherwise it should be convert into normal file by reserving
a new data block, copying inline data to this new block and clear
FI_INLINE_DATA flag. Because reserve a new data block here will make use
of i_addr[0], if we save inline data in i_addr[0..872], then the first
4 bytes would be overwriten. This problem can be avoided simply by
not using i_addr[0] for inline data.
Signed-off-by: Huajun Li <huajun.li@intel.com>
Signed-off-by: Haicheng Li <haicheng.li@linux.intel.com>
Signed-off-by: Weihong Xu <weihong.xu@intel.com>
Signed-off-by: Jaegeuk Kim <jaegeuk.kim@samsung.com>
2013-11-10 23:13:20 +08:00
|
|
|
|
2015-04-21 20:39:58 -07:00
|
|
|
if (f2fs_encrypted_inode(inode) && S_ISREG(inode->i_mode))
|
|
|
|
|
return 0;
|
|
|
|
|
|
2015-08-07 18:39:32 +08:00
|
|
|
err = check_direct_IO(inode, iter, offset);
|
|
|
|
|
if (err)
|
|
|
|
|
return err;
|
2013-12-26 20:15:09 +09:00
|
|
|
|
2015-03-16 04:33:52 -07:00
|
|
|
trace_f2fs_direct_IO_enter(inode, offset, count, iov_iter_rw(iter));
|
2014-07-31 21:11:22 +08:00
|
|
|
|
2015-09-21 20:17:52 +08:00
|
|
|
if (iov_iter_rw(iter) == WRITE) {
|
2015-02-09 12:09:53 -08:00
|
|
|
__allocate_data_blocks(inode, offset, count);
|
2015-09-21 20:17:52 +08:00
|
|
|
if (unlikely(f2fs_cp_error(F2FS_I_SB(inode)))) {
|
|
|
|
|
err = -EIO;
|
|
|
|
|
goto out;
|
|
|
|
|
}
|
|
|
|
|
}
|
2015-02-09 12:09:53 -08:00
|
|
|
|
2015-08-19 19:11:19 +08:00
|
|
|
err = blockdev_direct_IO(iocb, inode, iter, offset, get_data_block_dio);
|
2015-09-21 20:17:52 +08:00
|
|
|
out:
|
2015-03-16 04:33:52 -07:00
|
|
|
if (err < 0 && iov_iter_rw(iter) == WRITE)
|
2014-07-02 13:25:04 +08:00
|
|
|
f2fs_write_failed(mapping, offset + count);
|
2014-07-31 21:11:22 +08:00
|
|
|
|
2015-03-16 04:33:52 -07:00
|
|
|
trace_f2fs_direct_IO_exit(inode, offset, count, iov_iter_rw(iter), err);
|
2014-07-31 21:11:22 +08:00
|
|
|
|
2014-07-02 13:25:04 +08:00
|
|
|
return err;
|
2012-11-02 17:10:12 +09:00
|
|
|
}
|
|
|
|
|
|
2015-02-05 17:44:29 +08:00
|
|
|
void f2fs_invalidate_page(struct page *page, unsigned int offset,
|
|
|
|
|
unsigned int length)
|
2012-11-02 17:10:12 +09:00
|
|
|
{
|
|
|
|
|
struct inode *inode = page->mapping->host;
|
2015-02-05 17:44:29 +08:00
|
|
|
struct f2fs_sb_info *sbi = F2FS_I_SB(inode);
|
2014-09-12 15:53:45 -07:00
|
|
|
|
2015-02-05 17:44:29 +08:00
|
|
|
if (inode->i_ino >= F2FS_ROOT_INO(sbi) &&
|
|
|
|
|
(offset % PAGE_CACHE_SIZE || length != PAGE_CACHE_SIZE))
|
2014-09-12 15:53:45 -07:00
|
|
|
return;
|
|
|
|
|
|
2015-02-05 17:44:29 +08:00
|
|
|
if (PageDirty(page)) {
|
|
|
|
|
if (inode->i_ino == F2FS_META_INO(sbi))
|
|
|
|
|
dec_page_count(sbi, F2FS_DIRTY_META);
|
|
|
|
|
else if (inode->i_ino == F2FS_NODE_INO(sbi))
|
|
|
|
|
dec_page_count(sbi, F2FS_DIRTY_NODES);
|
|
|
|
|
else
|
|
|
|
|
inode_dec_dirty_pages(inode);
|
|
|
|
|
}
|
2015-08-07 18:42:09 +08:00
|
|
|
|
|
|
|
|
/* This is atomic written page, keep Private */
|
|
|
|
|
if (IS_ATOMIC_WRITTEN_PAGE(page))
|
|
|
|
|
return;
|
|
|
|
|
|
2012-11-02 17:10:12 +09:00
|
|
|
ClearPagePrivate(page);
|
|
|
|
|
}
|
|
|
|
|
|
2015-02-05 17:44:29 +08:00
|
|
|
int f2fs_release_page(struct page *page, gfp_t wait)
|
2012-11-02 17:10:12 +09:00
|
|
|
{
|
2015-01-30 11:39:08 -08:00
|
|
|
/* If this is dirty page, keep PagePrivate */
|
|
|
|
|
if (PageDirty(page))
|
|
|
|
|
return 0;
|
|
|
|
|
|
2015-08-07 18:42:09 +08:00
|
|
|
/* This is atomic written page, keep Private */
|
|
|
|
|
if (IS_ATOMIC_WRITTEN_PAGE(page))
|
|
|
|
|
return 0;
|
|
|
|
|
|
2012-11-02 17:10:12 +09:00
|
|
|
ClearPagePrivate(page);
|
2013-03-14 09:24:32 +09:00
|
|
|
return 1;
|
2012-11-02 17:10:12 +09:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int f2fs_set_data_page_dirty(struct page *page)
|
|
|
|
|
{
|
|
|
|
|
struct address_space *mapping = page->mapping;
|
|
|
|
|
struct inode *inode = mapping->host;
|
|
|
|
|
|
2013-10-24 17:53:29 +09:00
|
|
|
trace_f2fs_set_page_dirty(page, DATA);
|
|
|
|
|
|
2012-11-02 17:10:12 +09:00
|
|
|
SetPageUptodate(page);
|
2014-10-09 13:19:53 -07:00
|
|
|
|
2014-12-09 06:08:59 -08:00
|
|
|
if (f2fs_is_atomic_file(inode)) {
|
2015-08-07 18:42:09 +08:00
|
|
|
if (!IS_ATOMIC_WRITTEN_PAGE(page)) {
|
|
|
|
|
register_inmem_page(inode, page);
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
/*
|
|
|
|
|
* Previously, this page has been registered, we just
|
|
|
|
|
* return here.
|
|
|
|
|
*/
|
|
|
|
|
return 0;
|
2014-10-09 13:19:53 -07:00
|
|
|
}
|
|
|
|
|
|
2012-11-02 17:10:12 +09:00
|
|
|
if (!PageDirty(page)) {
|
|
|
|
|
__set_page_dirty_nobuffers(page);
|
2014-09-12 15:53:45 -07:00
|
|
|
update_dirty_page(inode, page);
|
2012-11-02 17:10:12 +09:00
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2013-01-17 20:30:23 +09:00
|
|
|
static sector_t f2fs_bmap(struct address_space *mapping, sector_t block)
|
|
|
|
|
{
|
2014-04-22 13:34:01 +08:00
|
|
|
struct inode *inode = mapping->host;
|
|
|
|
|
|
2015-10-19 10:29:51 -07:00
|
|
|
if (f2fs_has_inline_data(inode))
|
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
|
|
/* make sure allocating whole blocks */
|
|
|
|
|
if (mapping_tagged(mapping, PAGECACHE_TAG_DIRTY))
|
|
|
|
|
filemap_write_and_wait(mapping);
|
|
|
|
|
|
2015-08-19 19:11:19 +08:00
|
|
|
return generic_block_bmap(mapping, block, get_data_block_bmap);
|
2015-02-05 17:54:31 +08:00
|
|
|
}
|
|
|
|
|
|
2012-11-02 17:10:12 +09:00
|
|
|
const struct address_space_operations f2fs_dblock_aops = {
|
|
|
|
|
.readpage = f2fs_read_data_page,
|
|
|
|
|
.readpages = f2fs_read_data_pages,
|
|
|
|
|
.writepage = f2fs_write_data_page,
|
|
|
|
|
.writepages = f2fs_write_data_pages,
|
|
|
|
|
.write_begin = f2fs_write_begin,
|
2013-06-27 13:04:08 +09:00
|
|
|
.write_end = f2fs_write_end,
|
2012-11-02 17:10:12 +09:00
|
|
|
.set_page_dirty = f2fs_set_data_page_dirty,
|
2015-02-05 17:44:29 +08:00
|
|
|
.invalidatepage = f2fs_invalidate_page,
|
|
|
|
|
.releasepage = f2fs_release_page,
|
2012-11-02 17:10:12 +09:00
|
|
|
.direct_IO = f2fs_direct_IO,
|
2013-01-17 20:30:23 +09:00
|
|
|
.bmap = f2fs_bmap,
|
2012-11-02 17:10:12 +09:00
|
|
|
};
|
