ceph: blocklist the kclient when receiving corrupted snap trace

	u64 off = page_offset(page);

	u64 len = PAGE_SIZE;

	if (ceph_inode_is_shutdown(inode))

		return -EIO;

	if (off >= i_size_read(inode)) {

		zero_user_segment(page, 0, PAGE_SIZE);

		SetPageUptodate(page);

	int rc = 0;

	int max = 0;

	if (ceph_inode_is_shutdown(inode))

		return -EIO;

	if (ceph_inode(inode)->i_inline_version != CEPH_INLINE_NONE)

		return -EINVAL;

	dout("writepage %p idx %lu\n", page, page->index);

	if (ceph_inode_is_shutdown(inode))

		return -EIO;

	/* verify this is a writeable snap context */

	snapc = page_snap_context(page);

	if (!snapc) {

	dout("uninline_data %p %llx.%llx inline_version %llu\n",

	     inode, ceph_vinop(inode), inline_version);

	if (ceph_inode_is_shutdown(inode)) {

		err = -EIO;

		goto out;

	}

	if (inline_version == 1 || /* initial version, no data */

	    inline_version == CEPH_INLINE_NONE)

		goto out;

	void *p, *end;

	struct cap_extra_info extra_info = {};

	bool queue_trunc;

	bool close_sessions = false;

	dout("handle_caps from mds%d\n", session->s_mds);

		realm = NULL;

		if (snaptrace_len) {

			down_write(&mdsc->snap_rwsem);

			ceph_update_snap_trace(mdsc, snaptrace,

			if (ceph_update_snap_trace(mdsc, snaptrace,

						   snaptrace + snaptrace_len,

					       false, &realm);

						   false, &realm)) {

				up_write(&mdsc->snap_rwsem);

				close_sessions = true;

				goto done;

			}

			downgrade_write(&mdsc->snap_rwsem);

		} else {

			down_read(&mdsc->snap_rwsem);

	ceph_put_string(extra_info.pool_ns);

	/* avoid calling iput_final() in mds dispatch threads */

	ceph_async_iput(inode);

	/* Defer closing the sessions after s_mutex lock being released */

	if (close_sessions)

		ceph_mdsc_close_sessions(mdsc);

	return;

flush_cap_releases:

	loff_t zero = 0;

	int op;

	if (ceph_inode_is_shutdown(inode))

		return -EIO;

	if (!length) {

		op = offset ? CEPH_OSD_OP_DELETE : CEPH_OSD_OP_TRUNCATE;

		length = &zero;

{

	struct ceph_mds_session *s;

	if (READ_ONCE(mdsc->fsc->mount_state) == CEPH_MOUNT_FENCE_IO)

		return ERR_PTR(-EIO);

	if (mds >= mdsc->mdsmap->possible_max_rank)

		return ERR_PTR(-EINVAL);

	int mstate;

	int mds = session->s_mds;

	if (READ_ONCE(mdsc->fsc->mount_state) == CEPH_MOUNT_FENCE_IO)

		return -EIO;

	/* wait for mds to go active? */

	mstate = ceph_mdsmap_get_state(mdsc->mdsmap, mds);

	dout("open_session to mds%d (%s)\n", mds,

		return;

	}

	if (READ_ONCE(mdsc->fsc->mount_state) == CEPH_MOUNT_FENCE_IO) {

		dout("do_request metadata corrupted\n");

		err = -EIO;

		goto finish;

	}

	if (req->r_timeout &&

	    time_after_eq(jiffies, req->r_started + req->r_timeout)) {

		dout("do_request timed out\n");

	u64 tid;

	int err, result;

	int mds = session->s_mds;

	bool close_sessions = false;

	if (msg->front.iov_len < sizeof(*head)) {

		pr_err("mdsc_handle_reply got corrupt (short) reply\n");

	realm = NULL;

	if (rinfo->snapblob_len) {

		down_write(&mdsc->snap_rwsem);

		ceph_update_snap_trace(mdsc, rinfo->snapblob,

		err = ceph_update_snap_trace(mdsc, rinfo->snapblob,

				rinfo->snapblob + rinfo->snapblob_len,

				le32_to_cpu(head->op) == CEPH_MDS_OP_RMSNAP,

				&realm);

		if (err) {

			up_write(&mdsc->snap_rwsem);

			close_sessions = true;

			if (err == -EIO)

				ceph_msg_dump(msg);

			goto out_err;

		}

		downgrade_write(&mdsc->snap_rwsem);

	} else {

		down_read(&mdsc->snap_rwsem);

				     req->r_end_latency, err);

out:

	ceph_mdsc_put_request(req);

	/* Defer closing the sessions after s_mutex lock being released */

	if (close_sessions)

		ceph_mdsc_close_sessions(mdsc);

	return;

}

{

	u64 want_tid, want_flush;

	if (READ_ONCE(mdsc->fsc->mount_state) == CEPH_MOUNT_SHUTDOWN)

	if (READ_ONCE(mdsc->fsc->mount_state) >= CEPH_MOUNT_SHUTDOWN)

		return;

	dout("sync\n");

}

/*

 * called after sb is ro.

 * called after sb is ro or when metadata corrupted.

 */

void ceph_mdsc_close_sessions(struct ceph_mds_client *mdsc)

{

	struct ceph_mds_client *mdsc = s->s_mdsc;

	pr_warn("mds%d closed our session\n", s->s_mds);

	if (READ_ONCE(mdsc->fsc->mount_state) != CEPH_MOUNT_FENCE_IO)

		send_mds_reconnect(mdsc, s);

}

// SPDX-License-Identifier: GPL-2.0

#include <linux/ceph/ceph_debug.h>

#include <linux/fs.h>

#include <linux/sort.h>

#include <linux/slab.h>

#include <linux/iversion.h>

	struct ceph_snap_realm *realm;

	struct ceph_snap_realm *first_realm = NULL;

	struct ceph_snap_realm *realm_to_rebuild = NULL;

	struct ceph_client *client = mdsc->fsc->client;

	int rebuild_snapcs;

	int err = -ENOMEM;

	int ret;

	LIST_HEAD(dirty_realms);

	lockdep_assert_held_write(&mdsc->snap_rwsem);

	if (first_realm)

		ceph_put_snap_realm(mdsc, first_realm);

	pr_err("update_snap_trace error %d\n", err);

	/*

	 * When receiving a corrupted snap trace we don't know what

	 * exactly has happened in MDS side. And we shouldn't continue

	 * writing to OSD, which may corrupt the snapshot contents.

	 *

	 * Just try to blocklist this kclient and then this kclient

	 * must be remounted to continue after the corrupted metadata

	 * fixed in the MDS side.

	 */

	WRITE_ONCE(mdsc->fsc->mount_state, CEPH_MOUNT_FENCE_IO);

	ret = ceph_monc_blocklist_add(&client->monc, &client->msgr.inst.addr);

	if (ret)

		pr_err("%s failed to blocklist %s: %d\n", __func__,

		       ceph_pr_addr(&client->msgr.inst.addr), ret);

	WARN(1, "%s: %s%sdo remount to continue%s",

	     __func__, ret ? "" : ceph_pr_addr(&client->msgr.inst.addr),

	     ret ? "" : " was blocklisted, ",

	     err == -EIO ? " after corrupted snaptrace is fixed" : "");

	return err;

}

	__le64 *split_inos = NULL, *split_realms = NULL;

	int i;

	int locked_rwsem = 0;

	bool close_sessions = false;

	/* decode */

	if (msg->front.iov_len < sizeof(*h))

	 * update using the provided snap trace. if we are deleting a

	 * snap, we can avoid queueing cap_snaps.

	 */

	ceph_update_snap_trace(mdsc, p, e,

			       op == CEPH_SNAP_OP_DESTROY, NULL);

	if (ceph_update_snap_trace(mdsc, p, e,

				   op == CEPH_SNAP_OP_DESTROY,

				   NULL)) {

		close_sessions = true;

		goto bad;

	}

	if (op == CEPH_SNAP_OP_SPLIT)

		/* we took a reference when we created the realm, above */

out:

	if (locked_rwsem)

		up_write(&mdsc->snap_rwsem);

	if (close_sessions)

		ceph_mdsc_close_sessions(mdsc);

	return;

}