2 * journal.c --- code for handling the "ext3" journal
4 * Copyright (C) 2000 Andreas Dilger
5 * Copyright (C) 2000 Theodore Ts'o
7 * Parts of the code are based on fs/jfs/journal.c by Stephen C. Tweedie
8 * Copyright (C) 1999 Red Hat Software
10 * This file may be redistributed under the terms of the
11 * GNU General Public License version 2 or at your discretion
16 #ifdef HAVE_SYS_MOUNT_H
17 #include <sys/param.h>
18 #include <sys/mount.h>
19 #define MNT_FL (MS_MGC_VAL | MS_RDONLY)
21 #ifdef HAVE_SYS_STAT_H
25 #define E2FSCK_INCLUDE_INLINE_FUNCS
28 #include "uuid/uuid.h"
30 #ifdef CONFIG_JBD_DEBUG /* Enabled by configure --enable-jfs-debug */
31 static int bh_count = 0;
35 * Define USE_INODE_IO to use the inode_io.c / fileio.c codepaths.
36 * This creates a larger static binary, and a smaller binary using
37 * shared libraries. It's also probably slightly less CPU-efficient,
38 * which is why it's not on by default. But, it's a good way of
39 * testing the functions in inode_io.c and fileio.c.
43 /* Checksumming functions */
44 static int e2fsck_journal_verify_csum_type(journal_t *j,
45 journal_superblock_t *jsb)
47 if (!journal_has_csum_v2or3(j))
50 return jsb->s_checksum_type == JBD2_CRC32C_CHKSUM;
53 static __u32 e2fsck_journal_sb_csum(journal_superblock_t *jsb)
57 old_crc = jsb->s_checksum;
59 crc = ext2fs_crc32c_le(~0, (unsigned char *)jsb,
60 sizeof(journal_superblock_t));
61 jsb->s_checksum = old_crc;
66 static int e2fsck_journal_sb_csum_verify(journal_t *j,
67 journal_superblock_t *jsb)
69 __u32 provided, calculated;
71 if (!journal_has_csum_v2or3(j))
74 provided = ext2fs_be32_to_cpu(jsb->s_checksum);
75 calculated = e2fsck_journal_sb_csum(jsb);
77 return provided == calculated;
80 static errcode_t e2fsck_journal_sb_csum_set(journal_t *j,
81 journal_superblock_t *jsb)
85 if (!journal_has_csum_v2or3(j))
88 crc = e2fsck_journal_sb_csum(jsb);
89 jsb->s_checksum = ext2fs_cpu_to_be32(crc);
93 /* Kernel compatibility functions for handling the journal. These allow us
94 * to use the recovery.c file virtually unchanged from the kernel, so we
95 * don't have to do much to keep kernel and user recovery in sync.
97 int journal_bmap(journal_t *journal, blk64_t block, unsigned long long *phys)
103 struct inode *inode = journal->j_inode;
112 retval= ext2fs_bmap2(inode->i_ctx->fs, inode->i_ino,
113 &inode->i_ext2, NULL, 0, block, 0, &pblk);
119 struct buffer_head *getblk(kdev_t kdev, blk64_t blocknr, int blocksize)
121 struct buffer_head *bh;
122 int bufsize = sizeof(*bh) + kdev->k_ctx->fs->blocksize -
125 bh = e2fsck_allocate_memory(kdev->k_ctx, bufsize, "block buffer");
129 #ifdef CONFIG_JBD_DEBUG
130 if (journal_enable_debug >= 3)
133 jfs_debug(4, "getblk for block %llu (%d bytes)(total %d)\n",
134 (unsigned long long) blocknr, blocksize, bh_count);
136 bh->b_ctx = kdev->k_ctx;
137 if (kdev->k_dev == K_DEV_FS)
138 bh->b_io = kdev->k_ctx->fs->io;
140 bh->b_io = kdev->k_ctx->journal_io;
141 bh->b_size = blocksize;
142 bh->b_blocknr = blocknr;
147 int sync_blockdev(kdev_t kdev)
151 if (kdev->k_dev == K_DEV_FS)
152 io = kdev->k_ctx->fs->io;
154 io = kdev->k_ctx->journal_io;
156 return io_channel_flush(io) ? EIO : 0;
159 void ll_rw_block(int rw, int nr, struct buffer_head *bhp[])
162 struct buffer_head *bh;
164 for (; nr > 0; --nr) {
166 if (rw == READ && !bh->b_uptodate) {
167 jfs_debug(3, "reading block %llu/%p\n",
168 bh->b_blocknr, (void *) bh);
169 retval = io_channel_read_blk64(bh->b_io,
173 com_err(bh->b_ctx->device_name, retval,
174 "while reading block %llu\n",
176 bh->b_err = (int) retval;
180 } else if (rw == WRITE && bh->b_dirty) {
181 jfs_debug(3, "writing block %llu/%p\n",
184 retval = io_channel_write_blk64(bh->b_io,
188 com_err(bh->b_ctx->device_name, retval,
189 "while writing block %llu\n",
191 bh->b_err = (int) retval;
197 jfs_debug(3, "no-op %s for block %llu\n",
198 rw == READ ? "read" : "write",
204 void mark_buffer_dirty(struct buffer_head *bh)
209 static void mark_buffer_clean(struct buffer_head * bh)
214 void brelse(struct buffer_head *bh)
217 ll_rw_block(WRITE, 1, &bh);
218 jfs_debug(3, "freeing block %llu/%p (total %d)\n",
219 bh->b_blocknr, (void *) bh, --bh_count);
220 ext2fs_free_mem(&bh);
223 int buffer_uptodate(struct buffer_head *bh)
225 return bh->b_uptodate;
228 void mark_buffer_uptodate(struct buffer_head *bh, int val)
230 bh->b_uptodate = val;
233 void wait_on_buffer(struct buffer_head *bh)
236 ll_rw_block(READ, 1, &bh);
240 static void e2fsck_clear_recover(e2fsck_t ctx, int error)
242 ctx->fs->super->s_feature_incompat &= ~EXT3_FEATURE_INCOMPAT_RECOVER;
244 /* if we had an error doing journal recovery, we need a full fsck */
246 ctx->fs->super->s_state &= ~EXT2_VALID_FS;
247 ext2fs_mark_super_dirty(ctx->fs);
251 * This is a helper function to check the validity of the journal.
253 struct process_block_struct {
254 e2_blkcnt_t last_block;
257 static int process_journal_block(ext2_filsys fs,
259 e2_blkcnt_t blockcnt,
260 blk64_t ref_block EXT2FS_ATTR((unused)),
261 int ref_offset EXT2FS_ATTR((unused)),
264 struct process_block_struct *p;
265 blk64_t blk = *block_nr;
267 p = (struct process_block_struct *) priv_data;
269 if (!blk || blk < fs->super->s_first_data_block ||
270 blk >= ext2fs_blocks_count(fs->super))
274 p->last_block = blockcnt;
278 static errcode_t e2fsck_get_journal(e2fsck_t ctx, journal_t **ret_journal)
280 struct process_block_struct pb;
281 struct ext2_super_block *sb = ctx->fs->super;
282 struct ext2_super_block jsuper;
283 struct problem_context pctx;
284 struct buffer_head *bh;
285 struct inode *j_inode = NULL;
286 struct kdev_s *dev_fs = NULL, *dev_journal;
287 const char *journal_name = 0;
288 journal_t *journal = NULL;
289 errcode_t retval = 0;
290 io_manager io_ptr = 0;
291 unsigned long long start = 0;
293 int tried_backup_jnl = 0;
295 clear_problem_context(&pctx);
297 journal = e2fsck_allocate_memory(ctx, sizeof(journal_t), "journal");
299 return EXT2_ET_NO_MEMORY;
302 dev_fs = e2fsck_allocate_memory(ctx, 2*sizeof(struct kdev_s), "kdev");
304 retval = EXT2_ET_NO_MEMORY;
307 dev_journal = dev_fs+1;
309 dev_fs->k_ctx = dev_journal->k_ctx = ctx;
310 dev_fs->k_dev = K_DEV_FS;
311 dev_journal->k_dev = K_DEV_JOURNAL;
313 journal->j_dev = dev_journal;
314 journal->j_fs_dev = dev_fs;
315 journal->j_inode = NULL;
316 journal->j_blocksize = ctx->fs->blocksize;
318 if (uuid_is_null(sb->s_journal_uuid)) {
319 if (!sb->s_journal_inum) {
320 retval = EXT2_ET_BAD_INODE_NUM;
323 j_inode = e2fsck_allocate_memory(ctx, sizeof(*j_inode),
326 retval = EXT2_ET_NO_MEMORY;
330 j_inode->i_ctx = ctx;
331 j_inode->i_ino = sb->s_journal_inum;
333 if ((retval = ext2fs_read_inode(ctx->fs,
335 &j_inode->i_ext2))) {
337 if (sb->s_jnl_backup_type != EXT3_JNL_BACKUP_BLOCKS ||
340 memset(&j_inode->i_ext2, 0, sizeof(struct ext2_inode));
341 memcpy(&j_inode->i_ext2.i_block[0], sb->s_jnl_blocks,
343 j_inode->i_ext2.i_size_high = sb->s_jnl_blocks[15];
344 j_inode->i_ext2.i_size = sb->s_jnl_blocks[16];
345 j_inode->i_ext2.i_links_count = 1;
346 j_inode->i_ext2.i_mode = LINUX_S_IFREG | 0600;
347 e2fsck_use_inode_shortcuts(ctx, 1);
348 ctx->stashed_ino = j_inode->i_ino;
349 ctx->stashed_inode = &j_inode->i_ext2;
352 if (!j_inode->i_ext2.i_links_count ||
353 !LINUX_S_ISREG(j_inode->i_ext2.i_mode)) {
354 retval = EXT2_ET_NO_JOURNAL;
355 goto try_backup_journal;
357 if (EXT2_I_SIZE(&j_inode->i_ext2) / journal->j_blocksize <
358 JFS_MIN_JOURNAL_BLOCKS) {
359 retval = EXT2_ET_JOURNAL_TOO_SMALL;
360 goto try_backup_journal;
363 retval = ext2fs_block_iterate3(ctx->fs, j_inode->i_ino,
365 process_journal_block, &pb);
366 if ((pb.last_block + 1) * ctx->fs->blocksize <
367 (int) EXT2_I_SIZE(&j_inode->i_ext2)) {
368 retval = EXT2_ET_JOURNAL_TOO_SMALL;
369 goto try_backup_journal;
371 if (tried_backup_jnl && !(ctx->options & E2F_OPT_READONLY)) {
372 retval = ext2fs_write_inode(ctx->fs, sb->s_journal_inum,
378 journal->j_maxlen = EXT2_I_SIZE(&j_inode->i_ext2) /
379 journal->j_blocksize;
382 retval = ext2fs_inode_io_intern2(ctx->fs, sb->s_journal_inum,
388 io_ptr = inode_io_manager;
390 journal->j_inode = j_inode;
391 ctx->journal_io = ctx->fs->io;
392 if ((retval = (errcode_t) journal_bmap(journal, 0, &start)) != 0)
397 if (!ctx->journal_name) {
400 uuid_unparse(sb->s_journal_uuid, uuid);
401 ctx->journal_name = blkid_get_devname(ctx->blkid,
403 if (!ctx->journal_name)
404 ctx->journal_name = blkid_devno_to_devname(sb->s_journal_dev);
406 journal_name = ctx->journal_name;
409 fix_problem(ctx, PR_0_CANT_FIND_JOURNAL, &pctx);
410 retval = EXT2_ET_LOAD_EXT_JOURNAL;
414 jfs_debug(1, "Using journal file %s\n", journal_name);
415 io_ptr = unix_io_manager;
419 test_io_backing_manager = io_ptr;
420 io_ptr = test_io_manager;
426 int flags = IO_FLAG_RW;
427 if (!(ctx->mount_flags & EXT2_MF_ISROOT &&
428 ctx->mount_flags & EXT2_MF_READONLY))
429 flags |= IO_FLAG_EXCLUSIVE;
430 if ((ctx->mount_flags & EXT2_MF_READONLY) &&
431 (ctx->options & E2F_OPT_FORCE))
432 flags &= ~IO_FLAG_EXCLUSIVE;
435 retval = io_ptr->open(journal_name, flags,
441 io_channel_set_blksize(ctx->journal_io, ctx->fs->blocksize);
446 start = ext2fs_journal_sb_start(ctx->fs->blocksize) - 1;
447 bh = getblk(dev_journal, start, ctx->fs->blocksize);
449 retval = EXT2_ET_NO_MEMORY;
452 ll_rw_block(READ, 1, &bh);
453 if ((retval = bh->b_err) != 0) {
457 memcpy(&jsuper, start ? bh->b_data : bh->b_data + SUPERBLOCK_OFFSET,
459 #ifdef WORDS_BIGENDIAN
460 if (jsuper.s_magic == ext2fs_swab16(EXT2_SUPER_MAGIC))
461 ext2fs_swap_super(&jsuper);
463 if (jsuper.s_magic != EXT2_SUPER_MAGIC ||
464 !(jsuper.s_feature_incompat & EXT3_FEATURE_INCOMPAT_JOURNAL_DEV)) {
465 fix_problem(ctx, PR_0_EXT_JOURNAL_BAD_SUPER, &pctx);
466 retval = EXT2_ET_LOAD_EXT_JOURNAL;
470 /* Make sure the journal UUID is correct */
471 if (memcmp(jsuper.s_uuid, ctx->fs->super->s_journal_uuid,
472 sizeof(jsuper.s_uuid))) {
473 fix_problem(ctx, PR_0_JOURNAL_BAD_UUID, &pctx);
474 retval = EXT2_ET_LOAD_EXT_JOURNAL;
479 /* Check the superblock checksum */
480 if (jsuper.s_feature_ro_compat &
481 EXT4_FEATURE_RO_COMPAT_METADATA_CSUM) {
482 struct struct_ext2_filsys fsx;
483 struct ext2_super_block superx;
486 p = start ? bh->b_data : bh->b_data + SUPERBLOCK_OFFSET;
487 memcpy(&fsx, ctx->fs, sizeof(fsx));
488 memcpy(&superx, ctx->fs->super, sizeof(superx));
490 fsx.super->s_feature_ro_compat |=
491 EXT4_FEATURE_RO_COMPAT_METADATA_CSUM;
492 if (!ext2fs_superblock_csum_verify(&fsx, p) &&
493 fix_problem(ctx, PR_0_EXT_JOURNAL_SUPER_CSUM_INVALID,
495 ext2fs_superblock_csum_set(&fsx, p);
496 mark_buffer_dirty(bh);
501 maxlen = ext2fs_blocks_count(&jsuper);
502 journal->j_maxlen = (maxlen < 1ULL << 32) ? maxlen : (1ULL << 32) - 1;
506 if (!(bh = getblk(dev_journal, start, journal->j_blocksize))) {
507 retval = EXT2_ET_NO_MEMORY;
511 journal->j_sb_buffer = bh;
512 journal->j_superblock = (journal_superblock_t *)bh->b_data;
516 ext2fs_free_mem(&j_inode);
519 *ret_journal = journal;
520 e2fsck_use_inode_shortcuts(ctx, 0);
524 e2fsck_use_inode_shortcuts(ctx, 0);
526 ext2fs_free_mem(&dev_fs);
528 ext2fs_free_mem(&j_inode);
530 ext2fs_free_mem(&journal);
534 static errcode_t e2fsck_journal_fix_bad_inode(e2fsck_t ctx,
535 struct problem_context *pctx)
537 struct ext2_super_block *sb = ctx->fs->super;
538 int recover = ctx->fs->super->s_feature_incompat &
539 EXT3_FEATURE_INCOMPAT_RECOVER;
540 int has_journal = ctx->fs->super->s_feature_compat &
541 EXT3_FEATURE_COMPAT_HAS_JOURNAL;
543 if (has_journal || sb->s_journal_inum) {
544 /* The journal inode is bogus, remove and force full fsck */
545 pctx->ino = sb->s_journal_inum;
546 if (fix_problem(ctx, PR_0_JOURNAL_BAD_INODE, pctx)) {
547 if (has_journal && sb->s_journal_inum)
548 printf("*** ext3 journal has been deleted - "
549 "filesystem is now ext2 only ***\n\n");
550 sb->s_feature_compat &= ~EXT3_FEATURE_COMPAT_HAS_JOURNAL;
551 sb->s_journal_inum = 0;
552 memset(sb->s_jnl_blocks, 0, sizeof(sb->s_jnl_blocks));
553 ctx->flags |= E2F_FLAG_JOURNAL_INODE;
554 ctx->fs->flags &= ~EXT2_FLAG_MASTER_SB_ONLY;
555 e2fsck_clear_recover(ctx, 1);
558 return EXT2_ET_BAD_INODE_NUM;
559 } else if (recover) {
560 if (fix_problem(ctx, PR_0_JOURNAL_RECOVER_SET, pctx)) {
561 e2fsck_clear_recover(ctx, 1);
564 return EXT2_ET_UNSUPP_FEATURE;
569 #define V1_SB_SIZE 0x0024
570 static void clear_v2_journal_fields(journal_t *journal)
572 e2fsck_t ctx = journal->j_dev->k_ctx;
573 struct problem_context pctx;
575 clear_problem_context(&pctx);
577 if (!fix_problem(ctx, PR_0_CLEAR_V2_JOURNAL, &pctx))
580 memset(((char *) journal->j_superblock) + V1_SB_SIZE, 0,
581 ctx->fs->blocksize-V1_SB_SIZE);
582 mark_buffer_dirty(journal->j_sb_buffer);
586 static errcode_t e2fsck_journal_load(journal_t *journal)
588 e2fsck_t ctx = journal->j_dev->k_ctx;
589 journal_superblock_t *jsb;
590 struct buffer_head *jbh = journal->j_sb_buffer;
591 struct problem_context pctx;
593 clear_problem_context(&pctx);
595 ll_rw_block(READ, 1, &jbh);
597 com_err(ctx->device_name, jbh->b_err, "%s",
598 _("reading journal superblock\n"));
602 jsb = journal->j_superblock;
603 /* If we don't even have JFS_MAGIC, we probably have a wrong inode */
604 if (jsb->s_header.h_magic != htonl(JFS_MAGIC_NUMBER))
605 return e2fsck_journal_fix_bad_inode(ctx, &pctx);
607 switch (ntohl(jsb->s_header.h_blocktype)) {
608 case JFS_SUPERBLOCK_V1:
609 journal->j_format_version = 1;
610 if (jsb->s_feature_compat ||
611 jsb->s_feature_incompat ||
612 jsb->s_feature_ro_compat ||
614 clear_v2_journal_fields(journal);
617 case JFS_SUPERBLOCK_V2:
618 journal->j_format_version = 2;
619 if (ntohl(jsb->s_nr_users) > 1 &&
620 uuid_is_null(ctx->fs->super->s_journal_uuid))
621 clear_v2_journal_fields(journal);
622 if (ntohl(jsb->s_nr_users) > 1) {
623 fix_problem(ctx, PR_0_JOURNAL_UNSUPP_MULTIFS, &pctx);
624 return EXT2_ET_JOURNAL_UNSUPP_VERSION;
629 * These should never appear in a journal super block, so if
630 * they do, the journal is badly corrupted.
632 case JFS_DESCRIPTOR_BLOCK:
633 case JFS_COMMIT_BLOCK:
634 case JFS_REVOKE_BLOCK:
635 return EXT2_ET_CORRUPT_SUPERBLOCK;
637 /* If we don't understand the superblock major type, but there
638 * is a magic number, then it is likely to be a new format we
639 * just don't understand, so leave it alone. */
641 return EXT2_ET_JOURNAL_UNSUPP_VERSION;
644 if (JFS_HAS_INCOMPAT_FEATURE(journal, ~JFS_KNOWN_INCOMPAT_FEATURES))
645 return EXT2_ET_UNSUPP_FEATURE;
647 if (JFS_HAS_RO_COMPAT_FEATURE(journal, ~JFS_KNOWN_ROCOMPAT_FEATURES))
648 return EXT2_ET_RO_UNSUPP_FEATURE;
650 /* Checksum v1-3 are mutually exclusive features. */
651 if (JFS_HAS_INCOMPAT_FEATURE(journal, JFS_FEATURE_INCOMPAT_CSUM_V2) &&
652 JFS_HAS_INCOMPAT_FEATURE(journal, JFS_FEATURE_INCOMPAT_CSUM_V3))
653 return EXT2_ET_CORRUPT_SUPERBLOCK;
655 if (journal_has_csum_v2or3(journal) &&
656 JFS_HAS_COMPAT_FEATURE(journal, JFS_FEATURE_COMPAT_CHECKSUM))
657 return EXT2_ET_CORRUPT_SUPERBLOCK;
659 if (!e2fsck_journal_verify_csum_type(journal, jsb) ||
660 !e2fsck_journal_sb_csum_verify(journal, jsb))
661 return EXT2_ET_CORRUPT_SUPERBLOCK;
663 if (journal_has_csum_v2or3(journal))
664 journal->j_csum_seed = jbd2_chksum(journal, ~0, jsb->s_uuid,
665 sizeof(jsb->s_uuid));
667 /* We have now checked whether we know enough about the journal
668 * format to be able to proceed safely, so any other checks that
669 * fail we should attempt to recover from. */
670 if (jsb->s_blocksize != htonl(journal->j_blocksize)) {
671 com_err(ctx->program_name, EXT2_ET_CORRUPT_SUPERBLOCK,
672 _("%s: no valid journal superblock found\n"),
674 return EXT2_ET_CORRUPT_SUPERBLOCK;
677 if (ntohl(jsb->s_maxlen) < journal->j_maxlen)
678 journal->j_maxlen = ntohl(jsb->s_maxlen);
679 else if (ntohl(jsb->s_maxlen) > journal->j_maxlen) {
680 com_err(ctx->program_name, EXT2_ET_CORRUPT_SUPERBLOCK,
681 _("%s: journal too short\n"),
683 return EXT2_ET_CORRUPT_SUPERBLOCK;
686 journal->j_tail_sequence = ntohl(jsb->s_sequence);
687 journal->j_transaction_sequence = journal->j_tail_sequence;
688 journal->j_tail = ntohl(jsb->s_start);
689 journal->j_first = ntohl(jsb->s_first);
690 journal->j_last = ntohl(jsb->s_maxlen);
695 static void e2fsck_journal_reset_super(e2fsck_t ctx, journal_superblock_t *jsb,
706 /* Leave a valid existing V1 superblock signature alone.
707 * Anything unrecognisable we overwrite with a new V2
710 if (jsb->s_header.h_magic != htonl(JFS_MAGIC_NUMBER) ||
711 jsb->s_header.h_blocktype != htonl(JFS_SUPERBLOCK_V1)) {
712 jsb->s_header.h_magic = htonl(JFS_MAGIC_NUMBER);
713 jsb->s_header.h_blocktype = htonl(JFS_SUPERBLOCK_V2);
716 /* Zero out everything else beyond the superblock header */
718 p = ((char *) jsb) + sizeof(journal_header_t);
719 memset (p, 0, ctx->fs->blocksize-sizeof(journal_header_t));
721 jsb->s_blocksize = htonl(ctx->fs->blocksize);
722 jsb->s_maxlen = htonl(journal->j_maxlen);
723 jsb->s_first = htonl(1);
725 /* Initialize the journal sequence number so that there is "no"
726 * chance we will find old "valid" transactions in the journal.
727 * This avoids the need to zero the whole journal (slow to do,
728 * and risky when we are just recovering the filesystem).
730 uuid_generate(u.uuid);
731 for (i = 0; i < 4; i ++)
733 jsb->s_sequence = htonl(new_seq);
734 e2fsck_journal_sb_csum_set(journal, jsb);
736 mark_buffer_dirty(journal->j_sb_buffer);
737 ll_rw_block(WRITE, 1, &journal->j_sb_buffer);
740 static errcode_t e2fsck_journal_fix_corrupt_super(e2fsck_t ctx,
742 struct problem_context *pctx)
744 struct ext2_super_block *sb = ctx->fs->super;
745 int recover = ctx->fs->super->s_feature_incompat &
746 EXT3_FEATURE_INCOMPAT_RECOVER;
748 if (sb->s_feature_compat & EXT3_FEATURE_COMPAT_HAS_JOURNAL) {
749 if (fix_problem(ctx, PR_0_JOURNAL_BAD_SUPER, pctx)) {
750 e2fsck_journal_reset_super(ctx, journal->j_superblock,
752 journal->j_transaction_sequence = 1;
753 e2fsck_clear_recover(ctx, recover);
756 return EXT2_ET_CORRUPT_SUPERBLOCK;
757 } else if (e2fsck_journal_fix_bad_inode(ctx, pctx))
758 return EXT2_ET_CORRUPT_SUPERBLOCK;
763 static void e2fsck_journal_release(e2fsck_t ctx, journal_t *journal,
766 journal_superblock_t *jsb;
769 mark_buffer_clean(journal->j_sb_buffer);
770 else if (!(ctx->options & E2F_OPT_READONLY)) {
771 jsb = journal->j_superblock;
772 jsb->s_sequence = htonl(journal->j_transaction_sequence);
774 jsb->s_start = 0; /* this marks the journal as empty */
775 e2fsck_journal_sb_csum_set(journal, jsb);
776 mark_buffer_dirty(journal->j_sb_buffer);
778 brelse(journal->j_sb_buffer);
780 if (ctx->journal_io) {
781 if (ctx->fs && ctx->fs->io != ctx->journal_io)
782 io_channel_close(ctx->journal_io);
787 if (journal->j_inode)
788 ext2fs_free_mem(&journal->j_inode);
790 if (journal->j_fs_dev)
791 ext2fs_free_mem(&journal->j_fs_dev);
792 ext2fs_free_mem(&journal);
796 * This function makes sure that the superblock fields regarding the
797 * journal are consistent.
799 errcode_t e2fsck_check_ext3_journal(e2fsck_t ctx)
801 struct ext2_super_block *sb = ctx->fs->super;
803 int recover = ctx->fs->super->s_feature_incompat &
804 EXT3_FEATURE_INCOMPAT_RECOVER;
805 struct problem_context pctx;
807 int reset = 0, force_fsck = 0;
810 /* If we don't have any journal features, don't do anything more */
811 if (!(sb->s_feature_compat & EXT3_FEATURE_COMPAT_HAS_JOURNAL) &&
812 !recover && sb->s_journal_inum == 0 && sb->s_journal_dev == 0 &&
813 uuid_is_null(sb->s_journal_uuid))
816 clear_problem_context(&pctx);
817 pctx.num = sb->s_journal_inum;
819 retval = e2fsck_get_journal(ctx, &journal);
821 if ((retval == EXT2_ET_BAD_INODE_NUM) ||
822 (retval == EXT2_ET_BAD_BLOCK_NUM) ||
823 (retval == EXT2_ET_JOURNAL_TOO_SMALL) ||
824 (retval == EXT2_ET_NO_JOURNAL))
825 return e2fsck_journal_fix_bad_inode(ctx, &pctx);
829 retval = e2fsck_journal_load(journal);
831 if ((retval == EXT2_ET_CORRUPT_SUPERBLOCK) ||
832 ((retval == EXT2_ET_UNSUPP_FEATURE) &&
833 (!fix_problem(ctx, PR_0_JOURNAL_UNSUPP_INCOMPAT,
835 ((retval == EXT2_ET_RO_UNSUPP_FEATURE) &&
836 (!fix_problem(ctx, PR_0_JOURNAL_UNSUPP_ROCOMPAT,
838 ((retval == EXT2_ET_JOURNAL_UNSUPP_VERSION) &&
839 (!fix_problem(ctx, PR_0_JOURNAL_UNSUPP_VERSION, &pctx))))
840 retval = e2fsck_journal_fix_corrupt_super(ctx, journal,
842 e2fsck_journal_release(ctx, journal, 0, 1);
847 * We want to make the flags consistent here. We will not leave with
848 * needs_recovery set but has_journal clear. We can't get in a loop
849 * with -y, -n, or -p, only if a user isn't making up their mind.
852 if (!(sb->s_feature_compat & EXT3_FEATURE_COMPAT_HAS_JOURNAL)) {
853 recover = sb->s_feature_incompat & EXT3_FEATURE_INCOMPAT_RECOVER;
854 if (fix_problem(ctx, PR_0_JOURNAL_HAS_JOURNAL, &pctx)) {
856 !fix_problem(ctx, PR_0_JOURNAL_RECOVER_SET, &pctx))
859 * Need a full fsck if we are releasing a
860 * journal stored on a reserved inode.
862 force_fsck = recover ||
863 (sb->s_journal_inum < EXT2_FIRST_INODE(sb));
864 /* Clear all of the journal fields */
865 sb->s_journal_inum = 0;
866 sb->s_journal_dev = 0;
867 memset(sb->s_journal_uuid, 0,
868 sizeof(sb->s_journal_uuid));
869 e2fsck_clear_recover(ctx, force_fsck);
870 } else if (!(ctx->options & E2F_OPT_READONLY)) {
871 sb->s_feature_compat |= EXT3_FEATURE_COMPAT_HAS_JOURNAL;
872 ctx->fs->flags &= ~EXT2_FLAG_MASTER_SB_ONLY;
873 ext2fs_mark_super_dirty(ctx->fs);
877 if (sb->s_feature_compat & EXT3_FEATURE_COMPAT_HAS_JOURNAL &&
878 !(sb->s_feature_incompat & EXT3_FEATURE_INCOMPAT_RECOVER) &&
879 journal->j_superblock->s_start != 0) {
880 /* Print status information */
881 fix_problem(ctx, PR_0_JOURNAL_RECOVERY_CLEAR, &pctx);
883 problem = PR_0_JOURNAL_RUN_DEFAULT;
885 problem = PR_0_JOURNAL_RUN;
886 if (fix_problem(ctx, problem, &pctx)) {
887 ctx->options |= E2F_OPT_FORCE;
888 sb->s_feature_incompat |=
889 EXT3_FEATURE_INCOMPAT_RECOVER;
890 ext2fs_mark_super_dirty(ctx->fs);
891 } else if (fix_problem(ctx,
892 PR_0_JOURNAL_RESET_JOURNAL, &pctx)) {
894 sb->s_state &= ~EXT2_VALID_FS;
895 ext2fs_mark_super_dirty(ctx->fs);
898 * If the user answers no to the above question, we
899 * ignore the fact that journal apparently has data;
900 * accidentally replaying over valid data would be far
901 * worse than skipping a questionable recovery.
903 * XXX should we abort with a fatal error here? What
904 * will the ext3 kernel code do if a filesystem with
905 * !NEEDS_RECOVERY but with a non-zero
906 * journal->j_superblock->s_start is mounted?
911 * If we don't need to do replay the journal, check to see if
912 * the journal's errno is set; if so, we need to mark the file
913 * system as being corrupt and clear the journal's s_errno.
915 if (!(sb->s_feature_incompat & EXT3_FEATURE_INCOMPAT_RECOVER) &&
916 journal->j_superblock->s_errno) {
917 ctx->fs->super->s_state |= EXT2_ERROR_FS;
918 ext2fs_mark_super_dirty(ctx->fs);
919 journal->j_superblock->s_errno = 0;
920 e2fsck_journal_sb_csum_set(journal, journal->j_superblock);
921 mark_buffer_dirty(journal->j_sb_buffer);
924 e2fsck_journal_release(ctx, journal, reset, 0);
928 static errcode_t recover_ext3_journal(e2fsck_t ctx)
930 struct problem_context pctx;
934 clear_problem_context(&pctx);
936 journal_init_revoke_caches();
937 retval = e2fsck_get_journal(ctx, &journal);
941 retval = e2fsck_journal_load(journal);
945 retval = journal_init_revoke(journal, 1024);
949 retval = -journal_recover(journal);
953 if (journal->j_failed_commit) {
954 pctx.ino = journal->j_failed_commit;
955 fix_problem(ctx, PR_0_JNL_TXN_CORRUPT, &pctx);
956 journal->j_superblock->s_errno = -EINVAL;
957 mark_buffer_dirty(journal->j_sb_buffer);
961 journal_destroy_revoke(journal);
962 journal_destroy_revoke_caches();
963 e2fsck_journal_release(ctx, journal, 1, 0);
967 errcode_t e2fsck_run_ext3_journal(e2fsck_t ctx)
969 io_manager io_ptr = ctx->fs->io->manager;
970 int blocksize = ctx->fs->blocksize;
971 errcode_t retval, recover_retval;
973 unsigned long long kbytes_written = 0;
975 printf(_("%s: recovering journal\n"), ctx->device_name);
976 if (ctx->options & E2F_OPT_READONLY) {
977 printf(_("%s: won't do journal recovery while read-only\n"),
979 return EXT2_ET_FILE_RO;
982 if (ctx->fs->flags & EXT2_FLAG_DIRTY)
983 ext2fs_flush(ctx->fs); /* Force out any modifications */
985 recover_retval = recover_ext3_journal(ctx);
988 * Reload the filesystem context to get up-to-date data from disk
989 * because journal recovery will change the filesystem under us.
991 if (ctx->fs->super->s_kbytes_written &&
992 ctx->fs->io->manager->get_stats)
993 ctx->fs->io->manager->get_stats(ctx->fs->io, &stats);
994 if (stats && stats->bytes_written)
995 kbytes_written = stats->bytes_written >> 10;
997 ext2fs_mmp_stop(ctx->fs);
998 ext2fs_free(ctx->fs);
999 retval = ext2fs_open(ctx->filesystem_name, ctx->openfs_flags,
1000 ctx->superblock, blocksize, io_ptr,
1003 com_err(ctx->program_name, retval,
1004 _("while trying to re-open %s"),
1006 fatal_error(ctx, 0);
1008 ctx->fs->priv_data = ctx;
1009 ctx->fs->now = ctx->now;
1010 ctx->fs->flags |= EXT2_FLAG_MASTER_SB_ONLY;
1011 ctx->fs->super->s_kbytes_written += kbytes_written;
1013 /* Set the superblock flags */
1014 e2fsck_clear_recover(ctx, recover_retval != 0);
1017 * Do one last sanity check, and propagate journal->s_errno to
1018 * the EXT2_ERROR_FS flag in the fs superblock if needed.
1020 retval = e2fsck_check_ext3_journal(ctx);
1021 return retval ? retval : recover_retval;
1025 * This function will move the journal inode from a visible file in
1026 * the filesystem directory hierarchy to the reserved inode if necessary.
1028 static const char * const journal_names[] = {
1029 ".journal", "journal", ".journal.dat", "journal.dat", 0 };
1031 void e2fsck_move_ext3_journal(e2fsck_t ctx)
1033 struct ext2_super_block *sb = ctx->fs->super;
1034 struct problem_context pctx;
1035 struct ext2_inode inode;
1036 ext2_filsys fs = ctx->fs;
1039 const char * const * cpp;
1043 clear_problem_context(&pctx);
1046 * If the filesystem is opened read-only, or there is no
1047 * journal, then do nothing.
1049 if ((ctx->options & E2F_OPT_READONLY) ||
1050 (sb->s_journal_inum == 0) ||
1051 !(sb->s_feature_compat & EXT3_FEATURE_COMPAT_HAS_JOURNAL))
1055 * Read in the journal inode
1057 if (ext2fs_read_inode(fs, sb->s_journal_inum, &inode) != 0)
1061 * If it's necessary to backup the journal inode, do so.
1063 if ((sb->s_jnl_backup_type == 0) ||
1064 ((sb->s_jnl_backup_type == EXT3_JNL_BACKUP_BLOCKS) &&
1065 memcmp(inode.i_block, sb->s_jnl_blocks, EXT2_N_BLOCKS*4))) {
1066 if (fix_problem(ctx, PR_0_BACKUP_JNL, &pctx)) {
1067 memcpy(sb->s_jnl_blocks, inode.i_block,
1069 sb->s_jnl_blocks[15] = inode.i_size_high;
1070 sb->s_jnl_blocks[16] = inode.i_size;
1071 sb->s_jnl_backup_type = EXT3_JNL_BACKUP_BLOCKS;
1072 ext2fs_mark_super_dirty(fs);
1073 fs->flags &= ~EXT2_FLAG_MASTER_SB_ONLY;
1078 * If the journal is already the hidden inode, then do nothing
1080 if (sb->s_journal_inum == EXT2_JOURNAL_INO)
1084 * The journal inode had better have only one link and not be readable.
1086 if (inode.i_links_count != 1)
1090 * If the filesystem is mounted, or we can't tell whether
1091 * or not it's mounted, do nothing.
1093 retval = ext2fs_check_if_mounted(ctx->filesystem_name, &mount_flags);
1094 if (retval || (mount_flags & EXT2_MF_MOUNTED))
1098 * If we can't find the name of the journal inode, then do
1101 for (cpp = journal_names; *cpp; cpp++) {
1102 retval = ext2fs_lookup(fs, EXT2_ROOT_INO, *cpp,
1103 strlen(*cpp), 0, &ino);
1104 if ((retval == 0) && (ino == sb->s_journal_inum))
1110 /* We need the inode bitmap to be loaded */
1111 retval = ext2fs_read_bitmaps(fs);
1116 if (!fix_problem(ctx, PR_0_MOVE_JOURNAL, &pctx))
1120 * OK, we've done all the checks, let's actually move the
1121 * journal inode. Errors at this point mean we need to force
1122 * an ext2 filesystem check.
1124 if ((retval = ext2fs_unlink(fs, EXT2_ROOT_INO, *cpp, ino, 0)) != 0)
1126 if ((retval = ext2fs_write_inode(fs, EXT2_JOURNAL_INO, &inode)) != 0)
1128 sb->s_journal_inum = EXT2_JOURNAL_INO;
1129 ext2fs_mark_super_dirty(fs);
1130 fs->flags &= ~EXT2_FLAG_MASTER_SB_ONLY;
1131 inode.i_links_count = 0;
1132 inode.i_dtime = ctx->now;
1133 if ((retval = ext2fs_write_inode(fs, ino, &inode)) != 0)
1136 group = ext2fs_group_of_ino(fs, ino);
1137 ext2fs_unmark_inode_bitmap2(fs->inode_map, ino);
1138 ext2fs_mark_ib_dirty(fs);
1139 ext2fs_bg_free_inodes_count_set(fs, group, ext2fs_bg_free_inodes_count(fs, group) + 1);
1140 ext2fs_group_desc_csum_set(fs, group);
1141 fs->super->s_free_inodes_count++;
1145 pctx.errcode = retval;
1146 fix_problem(ctx, PR_0_ERR_MOVE_JOURNAL, &pctx);
1147 fs->super->s_state &= ~EXT2_VALID_FS;
1148 ext2fs_mark_super_dirty(fs);
1153 * This function makes sure the superblock hint for the external
1154 * journal is correct.
1156 int e2fsck_fix_ext3_journal_hint(e2fsck_t ctx)
1158 struct ext2_super_block *sb = ctx->fs->super;
1159 struct problem_context pctx;
1160 char uuid[37], *journal_name;
1163 if (!(sb->s_feature_compat & EXT3_FEATURE_COMPAT_HAS_JOURNAL) ||
1164 uuid_is_null(sb->s_journal_uuid))
1167 uuid_unparse(sb->s_journal_uuid, uuid);
1168 journal_name = blkid_get_devname(ctx->blkid, "UUID", uuid);
1172 if (stat(journal_name, &st) < 0) {
1177 if (st.st_rdev != sb->s_journal_dev) {
1178 clear_problem_context(&pctx);
1179 pctx.num = st.st_rdev;
1180 if (fix_problem(ctx, PR_0_EXTERNAL_JOURNAL_HINT, &pctx)) {
1181 sb->s_journal_dev = st.st_rdev;
1182 ext2fs_mark_super_dirty(ctx->fs);
git://git.whamcloud.com / tools / e2fsprogs.git / blob