From nobody Sat Feb 7 07:25:49 2026 Received: from m16.mail.126.com (m16.mail.126.com [117.135.210.7]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id CA3C12AE99 for ; Thu, 23 Oct 2025 04:25:37 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=117.135.210.7 ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1761193541; cv=none; b=AD/+PCw3pTAoEaaNN9EGBz8FFpbaOcLN5kF1c5GDKBLnNlb4yCHnGq2cg/cZ4RJDkkAwCv9+KaLpIEwEP/fXyReaEdtR1OwyhkUtvcGh89H2lXMPuio/QmH4PYOSeuxioWwpga29+T2d4iBLCtrDBbqBqnV8liGlhxjwHVAoNNQ= ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1761193541; c=relaxed/simple; bh=z4Puo+zc9XvnBd8Ju8SZ2LXSmy27b04FzAMlQ8Zhrto=; h=From:To:Cc:Subject:Date:Message-Id:MIME-Version; b=ESb2oAo/Hx3DxlU6HGlkgXmW+1ZEn6PlcjddGLYNfhyQSz1puve0bXD7S8iK2nqpi2D/dra98a14QNJ/TykysgSy2BmP1Xl3Ijw9nvgMCV9leWA/m1wJwJjEzGEZvjn29dADmpC68dYoIJ0NbPxgk3kElWbQFz8w4IeHJRBCUP0= ARC-Authentication-Results: i=1; smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=126.com; spf=pass smtp.mailfrom=126.com; dkim=pass (1024-bit key) header.d=126.com header.i=@126.com header.b=C6+sWVJE; arc=none smtp.client-ip=117.135.210.7 Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=126.com Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=126.com Authentication-Results: smtp.subspace.kernel.org; dkim=pass (1024-bit key) header.d=126.com header.i=@126.com header.b="C6+sWVJE" DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=126.com; s=s110527; h=From:To:Subject:Date:Message-Id:MIME-Version; bh=4D pwYpAE5ORP/RxAnKvHkfWEtGn9A0e6aZr4NNOu3Tw=; b=C6+sWVJEVzvM2PIF9M t9svG50KJF/E+zkic8YawjtpYjcYWQI2hXHJwo+rlLJWceaRoVfIO20iyBBEwwKv hdG0iFkwExEP/X5S1lSEoAWgQCK4d3bGxAvnSXAJy95JBKvwYbpv2fkEY/dDzCkW zLI6xP8t5Bp6SautiW9fX0xYU= Received: from gt-ubuntu22-04-cmd-v3-0-64gb-25m.. (unknown []) by gzga-smtp-mtada-g1-2 (Coremail) with SMTP id _____wDnb5v1pvloVjSrAQ--.57365S2; Thu, 23 Oct 2025 11:54:30 +0800 (CST) From: Xiaole He To: jaegeuk@kernel.org, chao@kernel.org Cc: linux-f2fs-devel@lists.sourceforge.net, linux-kernel@vger.kernel.org, Xiaole He Subject: [PATCH v1] f2fs: fix age extent cache insertion skip on counter overflow Date: Thu, 23 Oct 2025 11:54:16 +0800 Message-Id: <20251023035416.7943-1-hexiaole1994@126.com> X-Mailer: git-send-email 2.34.1 Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable X-CM-TRANSID: _____wDnb5v1pvloVjSrAQ--.57365S2 X-Coremail-Antispam: 1Uf129KBjvJXoW3Gr43CFWDXrW7ur4fCw4Durg_yoW7WF4Up3 yxCF15Kw45Zw48Xa92vr1kCF1S9w48JFWxGrsFy34jvay5X34fWF1kt345ZrWvqF4rJF1D ZF4Y9a4UJw15GaDanT9S1TB71UUUUU7qnTZGkaVYY2UrUUUUjbIjqfuFe4nvWSU5nxnvy2 9KBjDUYxBIdaVFxhVjvjDU0xZFpf9x0ziK0PfUUUUU= X-CM-SenderInfo: 5kh0xt5rohimizu6ij2wof0z/1tbijgDvBmj5ov08bwAAs6 Content-Type: text/plain; charset="utf-8" The age extent cache uses last_blocks (derived from allocated_data_blocks) to determine data age. However, there's a conflict between the deletion marker (last_blocks=3D0) and legitimate last_blocks=3D0 cases when allocated_data_blocks overflows to 0 after reaching ULLONG_MAX. In this case, valid extents are incorrectly skipped due to the "if (!tei->last_blocks)" check in __update_extent_tree_range(). This patch fixes the issue by: 1. Reserving ULLONG_MAX as an invalid/deletion marker 2. Limiting allocated_data_blocks to range [0, ULLONG_MAX-1] 3. Using F2FS_EXTENT_AGE_INVALID for deletion scenarios 4. Adjusting overflow age calculation from ULLONG_MAX to (ULLONG_MAX-1) Reproducer (using a patched kernel with allocated_data_blocks initialized to ULLONG_MAX - 3 for quick testing): Step 1: Mount and check initial state # dd if=3D/dev/zero of=3D/tmp/test.img bs=3D1M count=3D100 # mkfs.f2fs -f /tmp/test.img # mkdir -p /mnt/f2fs_test # mount -t f2fs -o loop,age_extent_cache /tmp/test.img /mnt/f2fs_test # cat /sys/kernel/debug/f2fs/status | grep "Block Age" Allocated Data Blocks: 18446744073709551612 # ULLONG_MAX - 3 Inner Struct Count: tree: 1(0), node: 0 Step 2: Create files and write data to trigger overflow # touch /mnt/f2fs_test/{1,2,3,4}.txt; sync # cat /sys/kernel/debug/f2fs/status | grep "Block Age" Allocated Data Blocks: 18446744073709551613 # ULLONG_MAX - 2 Inner Struct Count: tree: 5(0), node: 1 # dd if=3D/dev/urandom of=3D/mnt/f2fs_test/1.txt bs=3D4K count=3D1; sync # cat /sys/kernel/debug/f2fs/status | grep "Block Age" Allocated Data Blocks: 18446744073709551614 # ULLONG_MAX - 1 Inner Struct Count: tree: 5(0), node: 2 # dd if=3D/dev/urandom of=3D/mnt/f2fs_test/2.txt bs=3D4K count=3D1; sync # cat /sys/kernel/debug/f2fs/status | grep "Block Age" Allocated Data Blocks: 18446744073709551615 # ULLONG_MAX Inner Struct Count: tree: 5(0), node: 3 # dd if=3D/dev/urandom of=3D/mnt/f2fs_test/3.txt bs=3D4K count=3D1; sync # cat /sys/kernel/debug/f2fs/status | grep "Block Age" Allocated Data Blocks: 0 # Counter overflowed! Inner Struct Count: tree: 5(0), node: 4 Step 3: Trigger the bug - next write should create node but gets skipped # dd if=3D/dev/urandom of=3D/mnt/f2fs_test/4.txt bs=3D4K count=3D1; sync # cat /sys/kernel/debug/f2fs/status | grep "Block Age" Allocated Data Blocks: 1 Inner Struct Count: tree: 5(0), node: 4 Expected: node: 5 (new extent node for 4.txt) Actual: node: 4 (extent insertion was incorrectly skipped due to last_blocks =3D allocated_data_blocks =3D 0 in __get_new_block_age) After this fix, the extent node is correctly inserted and node count becomes 5 as expected. Signed-off-by: Xiaole He --- fs/f2fs/extent_cache.c | 5 +++-- fs/f2fs/f2fs.h | 6 ++++++ fs/f2fs/segment.c | 9 +++++++-- 3 files changed, 16 insertions(+), 4 deletions(-) diff --git a/fs/f2fs/extent_cache.c b/fs/f2fs/extent_cache.c index 33e09c453c70..0ed84cc065a7 100644 --- a/fs/f2fs/extent_cache.c +++ b/fs/f2fs/extent_cache.c @@ -808,7 +808,7 @@ static void __update_extent_tree_range(struct inode *in= ode, } goto out_read_extent_cache; update_age_extent_cache: - if (!tei->last_blocks) + if (tei->last_blocks =3D=3D F2FS_EXTENT_AGE_INVALID) goto out_read_extent_cache; =20 __set_extent_info(&ei, fofs, len, 0, false, @@ -912,7 +912,7 @@ static int __get_new_block_age(struct inode *inode, str= uct extent_info *ei, cur_age =3D cur_blocks - tei.last_blocks; else /* allocated_data_blocks overflow */ - cur_age =3D ULLONG_MAX - tei.last_blocks + cur_blocks; + cur_age =3D (ULLONG_MAX - 1) - tei.last_blocks + cur_blocks; =20 if (tei.age) ei->age =3D __calculate_block_age(sbi, cur_age, tei.age); @@ -1114,6 +1114,7 @@ void f2fs_update_age_extent_cache_range(struct dnode_= of_data *dn, struct extent_info ei =3D { .fofs =3D fofs, .len =3D len, + .last_blocks =3D F2FS_EXTENT_AGE_INVALID, }; =20 if (!__may_extent_tree(dn->inode, EX_BLOCK_AGE)) diff --git a/fs/f2fs/f2fs.h b/fs/f2fs/f2fs.h index 5b4e9548a231..fa3c676adc30 100644 --- a/fs/f2fs/f2fs.h +++ b/fs/f2fs/f2fs.h @@ -707,6 +707,12 @@ enum extent_type { NR_EXTENT_CACHES, }; =20 +/* + * Reserved value to mark invalid age extents, hence valid block range + * from 0 to ULLONG_MAX-1 + */ +#define F2FS_EXTENT_AGE_INVALID ULLONG_MAX + struct extent_info { unsigned int fofs; /* start offset in a file */ unsigned int len; /* length of the extent */ diff --git a/fs/f2fs/segment.c b/fs/f2fs/segment.c index b45eace879d7..a473cd1fb37d 100644 --- a/fs/f2fs/segment.c +++ b/fs/f2fs/segment.c @@ -3863,8 +3863,13 @@ int f2fs_allocate_data_block(struct f2fs_sb_info *sb= i, struct folio *folio, locate_dirty_segment(sbi, GET_SEGNO(sbi, old_blkaddr)); locate_dirty_segment(sbi, GET_SEGNO(sbi, *new_blkaddr)); =20 - if (IS_DATASEG(curseg->seg_type)) - atomic64_inc(&sbi->allocated_data_blocks); + if (IS_DATASEG(curseg->seg_type)) { + unsigned long long new_val; + + new_val =3D atomic64_inc_return(&sbi->allocated_data_blocks); + if (unlikely(new_val =3D=3D ULLONG_MAX)) + atomic64_set(&sbi->allocated_data_blocks, 0); + } =20 up_write(&sit_i->sentry_lock); =20 --=20 2.34.1