summaryrefslogtreecommitdiffstats
path: root/Assemble.c
diff options
context:
space:
mode:
authorBingJing Chang <bingjingc@synology.com>2018-02-22 08:00:28 +0100
committerJes Sorensen <jsorensen@fb.com>2018-02-23 17:05:00 +0100
commit62f1aee7ada5e752bda0448b2003a64b31cad5af (patch)
tree1bee9348f52d7e5e8c143765bee8d90670607e64 /Assemble.c
parentimsm: update product name in error message (diff)
downloadmdadm-62f1aee7ada5e752bda0448b2003a64b31cad5af.tar.xz
mdadm-62f1aee7ada5e752bda0448b2003a64b31cad5af.zip
mdadm: prevent out-of-date reshaping devices from force assemble
With "--force", we can assemble the array even if some superblocks appear out-of-date. But their data layout is regarded to make sense. In reshape cases, if two devices claims different reshape progresses, we cannot forcely assemble them back to array. Kernel will treat only one of them as reshape progress. However, their data is still laid on different layouts. It may lead to disaster if reshape goes on. Reproducible Steps: mdadm -C /dev/md0 --assume-clean -l5 -n3 /dev/loop[012] mdadm -a /dev/md0 /dev/loop3 mdadm -G /dev/md0 -n4 mdadm -f /dev/md0 /dev/loop0 # after a period mdadm -S /dev/md0 # after another period mdadm -E /dev/loop[01] # make sure that they claims different ones mdadm -Af -R /dev/md0 /dev/loop[023] # give no enough devices for force_array() to pick non-fresh devices cat /sys/block/md0/md/reshape_position # You can see that Kernel resume reshape the from any progress of them. Note: The unit of mdadm -E is KB, but reshape_position's is sector. In order to prevent disaster, we add logics to prevent devices with different reshape progress from being added into the array. Reported-by: Allen Peng <allenpeng@synology.com> Reviewed-by: Alex Wu <alexwu@synology.com> Signed-off-by: BingJing Chang <bingjingc@synology.com> Signed-off-by: Jes Sorensen <jsorensen@fb.com>
Diffstat (limited to 'Assemble.c')
-rw-r--r--Assemble.c22
1 files changed, 20 insertions, 2 deletions
diff --git a/Assemble.c b/Assemble.c
index 9e19246c..9f33c614 100644
--- a/Assemble.c
+++ b/Assemble.c
@@ -846,7 +846,19 @@ static int force_array(struct mdinfo *content,
/* OK */;
else
continue;
- }
+ } else if (devices[j].i.reshape_active !=
+ content->reshape_active ||
+ (devices[j].i.reshape_active &&
+ devices[j].i.reshape_progress !=
+ content->reshape_progress))
+ /* Here, it may be a source of data. If two
+ * devices claim different progresses, it
+ * means that reshape boundaries differ for
+ * their own devices. Kernel will only treat
+ * the first one as reshape progress and
+ * go on. It may cause disaster, so avoid it.
+ */
+ continue;
if (chosen_drive < 0 ||
devices[j].i.events
> devices[chosen_drive].i.events)
@@ -908,7 +920,13 @@ static int force_array(struct mdinfo *content,
if (j >= 0 &&
!devices[j].uptodate &&
devices[j].i.recovery_start == MaxSector &&
- devices[j].i.events == current_events) {
+ devices[j].i.events == current_events &&
+ ((!devices[j].i.reshape_active &&
+ !content->reshape_active) ||
+ (devices[j].i.reshape_active ==
+ content->reshape_active &&
+ devices[j].i.reshape_progress ==
+ content->reshape_progress))) {
chosen_drive = j;
goto add_another;
}