diff mbox series

[V2,2/2] ocfs2: clear journal dirty flag after shutdown journal

Message ID 20181119080725.13059-2-junxiao.bi@oracle.com (mailing list archive)
State New, archived
Headers show
Series [1/2] ocfs2: fix panic due to unrecovered local alloc | expand

Commit Message

Junxiao Bi Nov. 19, 2018, 8:07 a.m. UTC 
Dirty flag of the journal should be cleared at the last stage of umount,
if do it before jbd2_journal_destroy(), then some metadata in uncommitted
transaction could be lost due to io error, but as dirty flag of journal
was already cleared, we can't find that until run a full fsck. This may
cause system panic or other corruption.

Signed-off-by: Junxiao Bi <junxiao.bi@oracle.com>
Cc: Yiwen Jiang <jiangyiwen@huawei.com>
Cc: Jun Piao <piaojun@huawei.com>
---
 fs/ocfs2/journal.c | 6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

 V1 -> V2:
 pointed by Yiwen, need check return value of jbd2_journal_destroy

Comments

Jiangyiwen Nov. 19, 2018, 12:29 p.m. UTC | #1 
On 2018/11/19 16:07, Junxiao Bi wrote:
> Dirty flag of the journal should be cleared at the last stage of umount,
> if do it before jbd2_journal_destroy(), then some metadata in uncommitted
> transaction could be lost due to io error, but as dirty flag of journal
> was already cleared, we can't find that until run a full fsck. This may
> cause system panic or other corruption.
> 
> Signed-off-by: Junxiao Bi <junxiao.bi@oracle.com>

Reviewed-by: Yiwen Jiang <jiangyiwen@huawei.com>

> Cc: Yiwen Jiang <jiangyiwen@huawei.com>
> Cc: Jun Piao <piaojun@huawei.com>
> ---
>  fs/ocfs2/journal.c | 6 ++----
>  1 file changed, 2 insertions(+), 4 deletions(-)
> 
>  V1 -> V2:
>  pointed by Yiwen, need check return value of jbd2_journal_destroy
> 
> diff --git a/fs/ocfs2/journal.c b/fs/ocfs2/journal.c
> index 13f8e097babf..b51bb873441f 100644
> --- a/fs/ocfs2/journal.c
> +++ b/fs/ocfs2/journal.c
> @@ -986,7 +986,8 @@ void ocfs2_journal_shutdown(struct ocfs2_super *osb)
>  			mlog_errno(status);
>  	}
>  
> -	if (status == 0) {
> +	/* Shutdown the kernel journal system */
> +	if (!jbd2_journal_destroy(journal->j_journal) && !status) {
>  		/*
>  		 * Do not toggle if flush was unsuccessful otherwise
>  		 * will leave dirty metadata in a "clean" journal
> @@ -995,9 +996,6 @@ void ocfs2_journal_shutdown(struct ocfs2_super *osb)
>  		if (status < 0)
>  			mlog_errno(status);
>  	}
> -
> -	/* Shutdown the kernel journal system */
> -	jbd2_journal_destroy(journal->j_journal);
>  	journal->j_journal = NULL;
>  
>  	OCFS2_I(inode)->ip_open_count--;
>
Joseph Qi Nov. 19, 2018, 12:34 p.m. UTC | #2 
Hi Junxiao,

On 18/11/19 16:07, Junxiao Bi wrote:
> Dirty flag of the journal should be cleared at the last stage of umount,
> if do it before jbd2_journal_destroy(), then some metadata in uncommitted
> transaction could be lost due to io error, but as dirty flag of journal
> was already cleared, we can't find that until run a full fsck. This may
> cause system panic or other corruption.
> 
> Signed-off-by: Junxiao Bi <junxiao.bi@oracle.com>
> Cc: Yiwen Jiang <jiangyiwen@huawei.com>
> Cc: Jun Piao <piaojun@huawei.com>
> ---
>  fs/ocfs2/journal.c | 6 ++----
>  1 file changed, 2 insertions(+), 4 deletions(-)
> 
>  V1 -> V2:
>  pointed by Yiwen, need check return value of jbd2_journal_destroy
> 
> diff --git a/fs/ocfs2/journal.c b/fs/ocfs2/journal.c
> index 13f8e097babf..b51bb873441f 100644
> --- a/fs/ocfs2/journal.c
> +++ b/fs/ocfs2/journal.c
> @@ -986,7 +986,8 @@ void ocfs2_journal_shutdown(struct ocfs2_super *osb)
>  			mlog_errno(status);
>  	}
>  
> -	if (status == 0) {
> +	/* Shutdown the kernel journal system */
> +	if (!jbd2_journal_destroy(journal->j_journal) && !status) {
>  		/*
>  		 * Do not toggle if flush was unsuccessful otherwise
>  		 * will leave dirty metadata in a "clean" journal
> @@ -995,9 +996,6 @@ void ocfs2_journal_shutdown(struct ocfs2_super *osb)
>  		if (status < 0)
>  			mlog_errno(status);
>  	}
> -
> -	/* Shutdown the kernel journal system */
> -	jbd2_journal_destroy(journal->j_journal);

Now we will write journal inode after journal has been destroyed.
I wonder if it the right way as expected.

Thanks,
Joseph

>  	journal->j_journal = NULL;
>  
>  	OCFS2_I(inode)->ip_open_count--;
>
Junxiao Bi Nov. 19, 2018, 11:26 p.m. UTC | #3 
Hi Joseph,

On 11/19/18 8:34 PM, Joseph Qi wrote:
> Hi Junxiao,
>
> On 18/11/19 16:07, Junxiao Bi wrote:
>> Dirty flag of the journal should be cleared at the last stage of umount,
>> if do it before jbd2_journal_destroy(), then some metadata in uncommitted
>> transaction could be lost due to io error, but as dirty flag of journal
>> was already cleared, we can't find that until run a full fsck. This may
>> cause system panic or other corruption.
>>
>> Signed-off-by: Junxiao Bi <junxiao.bi@oracle.com>
>> Cc: Yiwen Jiang <jiangyiwen@huawei.com>
>> Cc: Jun Piao <piaojun@huawei.com>
>> ---
>>   fs/ocfs2/journal.c | 6 ++----
>>   1 file changed, 2 insertions(+), 4 deletions(-)
>>
>>   V1 -> V2:
>>   pointed by Yiwen, need check return value of jbd2_journal_destroy
>>
>> diff --git a/fs/ocfs2/journal.c b/fs/ocfs2/journal.c
>> index 13f8e097babf..b51bb873441f 100644
>> --- a/fs/ocfs2/journal.c
>> +++ b/fs/ocfs2/journal.c
>> @@ -986,7 +986,8 @@ void ocfs2_journal_shutdown(struct ocfs2_super *osb)
>>   			mlog_errno(status);
>>   	}
>>   
>> -	if (status == 0) {
>> +	/* Shutdown the kernel journal system */
>> +	if (!jbd2_journal_destroy(journal->j_journal) && !status) {
>>   		/*
>>   		 * Do not toggle if flush was unsuccessful otherwise
>>   		 * will leave dirty metadata in a "clean" journal
>> @@ -995,9 +996,6 @@ void ocfs2_journal_shutdown(struct ocfs2_super *osb)
>>   		if (status < 0)
>>   			mlog_errno(status);
>>   	}
>> -
>> -	/* Shutdown the kernel journal system */
>> -	jbd2_journal_destroy(journal->j_journal);
> Now we will write journal inode after journal has been destroyed.
> I wonder if it the right way as expected.

The destroyed journal here was managed by jbd2 and located in the data 
section of ocfs2 journal inode, after clean up the data, clear flag in 
the inode, this seemed right way to go.

Thanks,

Junxiao.

>
> Thanks,
> Joseph
>
>>   	journal->j_journal = NULL;
>>   
>>   	OCFS2_I(inode)->ip_open_count--;
>>
Joseph Qi Nov. 20, 2018, 12:59 a.m. UTC | #4 
On 18/11/20 07:26, Junxiao Bi wrote:
> Hi Joseph,
> 
> On 11/19/18 8:34 PM, Joseph Qi wrote:
>> Hi Junxiao,
>>
>> On 18/11/19 16:07, Junxiao Bi wrote:
>>> Dirty flag of the journal should be cleared at the last stage of umount,
>>> if do it before jbd2_journal_destroy(), then some metadata in uncommitted
>>> transaction could be lost due to io error, but as dirty flag of journal
>>> was already cleared, we can't find that until run a full fsck. This may
>>> cause system panic or other corruption.
>>>
>>> Signed-off-by: Junxiao Bi <junxiao.bi@oracle.com>
>>> Cc: Yiwen Jiang <jiangyiwen@huawei.com>
>>> Cc: Jun Piao <piaojun@huawei.com>
>>> ---
>>>   fs/ocfs2/journal.c | 6 ++----
>>>   1 file changed, 2 insertions(+), 4 deletions(-)
>>>
>>>   V1 -> V2:
>>>   pointed by Yiwen, need check return value of jbd2_journal_destroy
>>>
>>> diff --git a/fs/ocfs2/journal.c b/fs/ocfs2/journal.c
>>> index 13f8e097babf..b51bb873441f 100644
>>> --- a/fs/ocfs2/journal.c
>>> +++ b/fs/ocfs2/journal.c
>>> @@ -986,7 +986,8 @@ void ocfs2_journal_shutdown(struct ocfs2_super *osb)
>>>               mlog_errno(status);
>>>       }
>>>   -    if (status == 0) {
>>> +    /* Shutdown the kernel journal system */
>>> +    if (!jbd2_journal_destroy(journal->j_journal) && !status) {
>>>           /*
>>>            * Do not toggle if flush was unsuccessful otherwise
>>>            * will leave dirty metadata in a "clean" journal
>>> @@ -995,9 +996,6 @@ void ocfs2_journal_shutdown(struct ocfs2_super *osb)
>>>           if (status < 0)
>>>               mlog_errno(status);
>>>       }
>>> -
>>> -    /* Shutdown the kernel journal system */
>>> -    jbd2_journal_destroy(journal->j_journal);
>> Now we will write journal inode after journal has been destroyed.
>> I wonder if it the right way as expected.
> 
> The destroyed journal here was managed by jbd2 and located in the data section of ocfs2 journal inode, after clean up the data, clear flag in the inode, this seemed right way to go.
> 
It makes sense.

Reviewed-by: Joseph Qi <jiangqi903@gmail.com>

> Thanks,
> 
> Junxiao.
> 
>>
>> Thanks,
>> Joseph
>>
>>>       journal->j_journal = NULL;
>>>         OCFS2_I(inode)->ip_open_count--;
>>>
diff mbox series

Patch

diff --git a/fs/ocfs2/journal.c b/fs/ocfs2/journal.c
index 13f8e097babf..b51bb873441f 100644
--- a/fs/ocfs2/journal.c
+++ b/fs/ocfs2/journal.c
@@ -986,7 +986,8 @@  void ocfs2_journal_shutdown(struct ocfs2_super *osb)
 			mlog_errno(status);
 	}
 
-	if (status == 0) {
+	/* Shutdown the kernel journal system */
+	if (!jbd2_journal_destroy(journal->j_journal) && !status) {
 		/*
 		 * Do not toggle if flush was unsuccessful otherwise
 		 * will leave dirty metadata in a "clean" journal
@@ -995,9 +996,6 @@  void ocfs2_journal_shutdown(struct ocfs2_super *osb)
 		if (status < 0)
 			mlog_errno(status);
 	}
-
-	/* Shutdown the kernel journal system */
-	jbd2_journal_destroy(journal->j_journal);
 	journal->j_journal = NULL;
 
 	OCFS2_I(inode)->ip_open_count--;