ext4: make sure directory and symlink blocks are revoked When an inode gets unlinked, the functions ext4_clear_blocks() and ext4_remove_blocks() call ext4_forget() for all the buffer heads corresponding to the deleted inode's data blocks. If the inode is a directory or a symlink, the is_metadata parameter must be non-zero so ext4_forget() will revoke them via jbd2_journal_revoke(). Otherwise, if these blocks are reused for a data file, and the system crashes before a journal checkpoint, the journal replay could end up corrupting these data blocks. Thanks to Curt Wohlgemuth for pointing out potential problems in this area. Signed-off-by: "Theodore Ts'o" <tytso@mit.edu> Cc: stable@kernel.org

commit: 50689696867d95b38d9c7be640a311494a04fb86 [log] [tgz]
author: Theodore Ts'o <tytso@mit.edu> Mon Nov 23 07:17:34 2009 -0500
committer: Theodore Ts'o <tytso@mit.edu> Mon Nov 23 07:17:34 2009 -0500
tree: 69e582bb6c95d8d0ac59bcad97b5f7f1d79e7126
parent: beac2da7565e42be59963824899825d0cc624295 [diff] [blame]
diff --git a/fs/ext4/extents.c b/fs/ext4/extents.c
index 715264b..74dcff8 100644
--- a/fs/ext4/extents.c
+++ b/fs/ext4/extents.c

@@ -2074,7 +2074,7 @@
 		ext_debug("free last %u blocks starting %llu\n", num, start);
 		for (i = 0; i < num; i++) {
 			bh = sb_find_get_block(inode->i_sb, start + i);
-			ext4_forget(handle, 0, inode, bh, start + i);
+			ext4_forget(handle, metadata, inode, bh, start + i);
 		}
 		ext4_free_blocks(handle, inode, start, num, metadata);
 	} else if (from == le32_to_cpu(ex->ee_block)
commit	50689696867d95b38d9c7be640a311494a04fb86	[log] [tgz]
author	Theodore Ts'o <tytso@mit.edu>	Mon Nov 23 07:17:34 2009 -0500
committer	Theodore Ts'o <tytso@mit.edu>	Mon Nov 23 07:17:34 2009 -0500
tree	69e582bb6c95d8d0ac59bcad97b5f7f1d79e7126
parent	beac2da7565e42be59963824899825d0cc624295 [diff] [blame]