corrupted log causes infinite loop at mount

To:	xfs@xxxxxxxxxxx
Subject:	corrupted log causes infinite loop at mount
From:	Eric Sandeen <sandeen@xxxxxxxxxxx>
Date:	Fri, 13 Oct 2006 14:46:06 -0500
Sender:	xfs-bounce@xxxxxxxxxxx
User-agent:	Thunderbird 1.5.0.7 (X11/20060913)

While playing with some filesystem corruption testers, I ran into this.

http://sandeen.net/xfs.31.img.bz2

If you try to mount, it gets into xfs_buf_get_noaddr via log replay with
a len of 0, and I think this causes an infinite loop in the goto:

 try_again:
        data = kmem_alloc(malloc_len, KM_SLEEP | KM_MAYFAIL);
        if (unlikely(data == NULL))
                goto fail_free_buf;

        /* check whether alignment matches.. */
        if ((__psunsigned_t)data !=
            ((__psunsigned_t)data & ~target->bt_smask)) {
                /* .. else double the size and try again */
                kmem_free(data, malloc_len);
                malloc_len <<= 1;
                goto try_again;
        }

Up the callchain a bit there is an ASSERT that the size is > 0, but of
course that doesn't help on a non-debug kernel...

haven't had time to investigate beyond that.

-Eric

<Prev in Thread]	Current Thread	[Next in Thread>
corrupted log causes infinite loop at mount, Eric Sandeen <= Re: corrupted log causes infinite loop at mount, David Chatterton Re: corrupted log causes infinite loop at mount, Eric Sandeen Re: corrupted log causes infinite loop at mount, Eric Sandeen

Previous by Date:	URGENT COMPENSATION FOR YOUR PAST EFFORTS, Kelly Trotter
Next by Date:	FOR YOUR COMPENSATION, Kelly Trotter
Previous by Thread:	URGENT COMPENSATION FOR YOUR PAST EFFORTS, Kelly Trotter
Next by Thread:	Re: corrupted log causes infinite loop at mount, David Chatterton
Indexes:	[Date] [Thread] [Top] [All Lists]