• Hidehiro Kawai's avatar
    jbd2: abort when failed to log metadata buffers · 77e841de
    Hidehiro Kawai authored
    If we failed to write metadata buffers to the journal space and
    succeeded to write the commit record, stale data can be written
    back to the filesystem as metadata in the recovery phase.
    
    To avoid this, when we failed to write out metadata buffers,
    abort the journal before writing the commit record.
    
    We can also avoid this kind of corruption by using the journal
    checksum feature because it can detect invalid metadata blocks in the
    journal and avoid them from being replayed.  So we don't need to care
    about asynchronous commit record writeout with a checksum.
    Signed-off-by: default avatarHidehiro Kawai <hidehiro.kawai.ez@hitachi.com>
    Signed-off-by: default avatarTheodore Ts'o <tytso@mit.edu>
    77e841de
commit.c 30 KB