2017-11-20 19:49:47 +00:00
|
|
|
/*-
|
|
|
|
|
* SPDX-License-Identifier: BSD-3-Clause
|
|
|
|
|
*
|
1994-05-26 06:35:07 +00:00
|
|
|
* Copyright (c) 1980, 1986, 1993
|
|
|
|
|
* The Regents of the University of California. All rights reserved.
|
|
|
|
|
*
|
|
|
|
|
* Redistribution and use in source and binary forms, with or without
|
|
|
|
|
* modification, are permitted provided that the following conditions
|
|
|
|
|
* are met:
|
|
|
|
|
* 1. Redistributions of source code must retain the above copyright
|
|
|
|
|
* notice, this list of conditions and the following disclaimer.
|
|
|
|
|
* 2. Redistributions in binary form must reproduce the above copyright
|
|
|
|
|
* notice, this list of conditions and the following disclaimer in the
|
|
|
|
|
* documentation and/or other materials provided with the distribution.
|
2017-02-28 23:42:47 +00:00
|
|
|
* 3. Neither the name of the University nor the names of its contributors
|
1994-05-26 06:35:07 +00:00
|
|
|
* may be used to endorse or promote products derived from this software
|
|
|
|
|
* without specific prior written permission.
|
|
|
|
|
*
|
|
|
|
|
* THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
|
|
|
|
|
* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
|
|
|
|
|
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
|
|
|
|
|
* ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
|
|
|
|
|
* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
|
|
|
|
|
* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
|
|
|
|
|
* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
|
|
|
|
|
* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
|
|
|
|
|
* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
|
|
|
|
|
* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
|
|
|
|
|
* SUCH DAMAGE.
|
|
|
|
|
*/
|
|
|
|
|
|
2003-05-03 18:41:59 +00:00
|
|
|
#if 0
|
1994-05-26 06:35:07 +00:00
|
|
|
#ifndef lint
|
1995-04-02 14:52:29 +00:00
|
|
|
static const char copyright[] =
|
1994-05-26 06:35:07 +00:00
|
|
|
"@(#) Copyright (c) 1980, 1986, 1993\n\
|
|
|
|
|
The Regents of the University of California. All rights reserved.\n";
|
|
|
|
|
#endif /* not lint */
|
|
|
|
|
|
|
|
|
|
#ifndef lint
|
1998-12-03 02:41:11 +00:00
|
|
|
static char sccsid[] = "@(#)main.c 8.6 (Berkeley) 5/14/95";
|
1994-05-26 06:35:07 +00:00
|
|
|
#endif /* not lint */
|
2003-05-03 18:41:59 +00:00
|
|
|
#endif
|
2002-03-24 15:17:53 +00:00
|
|
|
#include <sys/cdefs.h>
|
|
|
|
|
__FBSDID("$FreeBSD$");
|
|
|
|
|
|
2018-02-08 23:14:24 +00:00
|
|
|
#define IN_RTLD /* So we pickup the P_OSREL defines */
|
1994-05-26 06:35:07 +00:00
|
|
|
#include <sys/param.h>
|
2001-04-16 22:22:21 +00:00
|
|
|
#include <sys/file.h>
|
1994-05-26 06:35:07 +00:00
|
|
|
#include <sys/mount.h>
|
1998-11-05 03:26:36 +00:00
|
|
|
#include <sys/resource.h>
|
2011-01-24 06:17:05 +00:00
|
|
|
#include <sys/stat.h>
|
2001-11-17 23:48:21 +00:00
|
|
|
#include <sys/sysctl.h>
|
2007-09-19 01:24:19 +00:00
|
|
|
#include <sys/uio.h>
|
2002-06-21 06:18:05 +00:00
|
|
|
#include <sys/disklabel.h>
|
1997-03-11 12:20:21 +00:00
|
|
|
|
1994-05-26 06:35:07 +00:00
|
|
|
#include <ufs/ufs/dinode.h>
|
|
|
|
|
#include <ufs/ffs/fs.h>
|
1997-03-11 12:20:21 +00:00
|
|
|
|
|
|
|
|
#include <err.h>
|
2000-01-10 08:21:22 +00:00
|
|
|
#include <errno.h>
|
1994-05-26 06:35:07 +00:00
|
|
|
#include <fstab.h>
|
2003-10-08 02:14:03 +00:00
|
|
|
#include <grp.h>
|
2016-08-19 00:03:41 +00:00
|
|
|
#include <inttypes.h>
|
2020-08-15 21:40:36 +00:00
|
|
|
#include <libufs.h>
|
2007-09-19 01:24:19 +00:00
|
|
|
#include <mntopts.h>
|
2000-01-10 08:21:22 +00:00
|
|
|
#include <paths.h>
|
2002-07-31 12:01:14 +00:00
|
|
|
#include <stdint.h>
|
2001-11-17 23:48:21 +00:00
|
|
|
#include <string.h>
|
2011-01-24 06:17:05 +00:00
|
|
|
#include <time.h>
|
1997-03-11 12:20:21 +00:00
|
|
|
|
1994-05-26 06:35:07 +00:00
|
|
|
#include "fsck.h"
|
1997-03-11 12:20:21 +00:00
|
|
|
|
2021-01-07 01:37:08 +00:00
|
|
|
static int restarts;
|
2013-12-30 01:16:08 +00:00
|
|
|
|
2002-03-20 22:57:10 +00:00
|
|
|
static void usage(void) __dead2;
|
2016-08-19 00:03:41 +00:00
|
|
|
static intmax_t argtoimax(int flag, const char *req, const char *str, int base);
|
2002-03-20 22:57:10 +00:00
|
|
|
static int checkfilesys(char *filesys);
|
2022-02-04 19:46:36 +00:00
|
|
|
static int setup_bkgrdchk(struct statfs *mntp, int sbrdfailed, char **filesys);
|
2007-08-10 06:29:54 +00:00
|
|
|
static int chkdoreload(struct statfs *mntp);
|
2002-03-20 22:57:10 +00:00
|
|
|
static struct statfs *getmntpt(const char *);
|
1994-05-26 06:35:07 +00:00
|
|
|
|
1995-04-02 14:52:29 +00:00
|
|
|
int
|
2002-03-20 22:57:10 +00:00
|
|
|
main(int argc, char *argv[])
|
1994-05-26 06:35:07 +00:00
|
|
|
{
|
|
|
|
|
int ch;
|
1998-12-03 02:27:35 +00:00
|
|
|
struct rlimit rlimit;
|
2004-02-28 07:50:42 +00:00
|
|
|
struct itimerval itimerval;
|
Exit fsck_ffs with non-zero status when file system is not repaired.
When the fsck_ffs program cannot fully repair a file system, it will
output the message PLEASE RERUN FSCK. However, it does not exit with a
non-zero status in this case (contradicting the man page claim that it
"exits with 0 on success, and >0 if an error occurs." The fsck
rc-script (when running "fsck -y") tests the status from fsck (which
passes along the exit status from fsck_ffs) and issues a "stop_boot"
if the status fails. However, this is not effective since fsck_ffs can
return zero even on (some) errors. Effectively, it is left to a later
step in the boot process when the file systems are mounted to detect
the still-unclean file system and stop the boot.
This change modifies fsck_ffs so that when it cannot fully repair the
file system and issues the PLEASE RERUN FSCK message it also exits
with a non-zero status.
While here, the fsck_ffs man page has also been updated to document
the failing exit status codes used by fsck_ffs. Previously, only exit
status 7 was documented. Some of these exit statuses are tested for in
the fsck rc-script, so they are clearly depended upon and deserve
documentation.
Reviewed by: mckusick, vangyzen, jilles (manpages)
MFC after: 1 week
Sponsored by: Dell EMC
Differential Revision: https://reviews.freebsd.org/D13862
2018-01-15 19:25:11 +00:00
|
|
|
int fsret;
|
2000-10-09 08:26:35 +00:00
|
|
|
int ret = 0;
|
1994-05-26 06:35:07 +00:00
|
|
|
|
|
|
|
|
sync();
|
2000-10-09 08:26:35 +00:00
|
|
|
skipclean = 1;
|
2009-02-04 01:02:56 +00:00
|
|
|
inoopt = 0;
|
This update eliminates a kernel stack disclosure bug in UFS/FFS
directory entries that is caused by uninitialized directory entry
padding written to the disk. It can be viewed by any user with read
access to that directory. Up to 3 bytes of kernel stack are disclosed
per file entry, depending on the the amount of padding the kernel
needs to pad out the entry to a 32 bit boundry. The offset in the
kernel stack that is disclosed is a function of the filename size.
Furthermore, if the user can create files in a directory, this 3
byte window can be expanded 3 bytes at a time to a 254 byte window
with 75% of the data in that window exposed. The additional exposure
is done by removing the entry, creating a new entry with a 4-byte
longer name, extracting 3 more bytes by reading the directory, and
repeating until a 252 byte name is created.
This exploit works in part because the area of the kernel stack
that is being disclosed is in an area that typically doesn't change
that often (perhaps a few times a second on a lightly loaded system),
and these file creates and unlinks themselves don't overwrite the
area of kernel stack being disclosed.
It appears that this bug originated with the creation of the Fast
File System in 4.1b-BSD (Circa 1982, more than 36 years ago!), and
is likely present in every Unix or Unix-like system that uses
UFS/FFS. Amazingly, nobody noticed until now.
This update also adds the -z flag to fsck_ffs to have it scrub
the leaked information in the name padding of existing directories.
It only needs to be run once on each UFS/FFS filesystem after a
patched kernel is installed and running.
Submitted by: David G. Lawrence <dg@dglawrence.com>
Reviewed by: kib
MFC after: 1 week
2019-05-03 21:54:14 +00:00
|
|
|
while ((ch = getopt(argc, argv, "b:Bc:CdEfFm:npRrSyZz")) != -1) {
|
1994-05-26 06:35:07 +00:00
|
|
|
switch (ch) {
|
|
|
|
|
case 'b':
|
2000-10-09 08:26:35 +00:00
|
|
|
skipclean = 0;
|
2016-08-19 00:03:41 +00:00
|
|
|
bflag = argtoimax('b', "number", optarg, 10);
|
|
|
|
|
printf("Alternate super block location: %jd\n", bflag);
|
1994-05-26 06:35:07 +00:00
|
|
|
break;
|
|
|
|
|
|
2001-03-21 09:48:03 +00:00
|
|
|
case 'B':
|
|
|
|
|
bkgrdflag = 1;
|
|
|
|
|
break;
|
|
|
|
|
|
1994-05-26 06:35:07 +00:00
|
|
|
case 'c':
|
2000-10-09 08:26:35 +00:00
|
|
|
skipclean = 0;
|
2016-08-19 00:03:41 +00:00
|
|
|
cvtlevel = argtoimax('c', "conversion level", optarg,
|
|
|
|
|
10);
|
2002-06-21 06:18:05 +00:00
|
|
|
if (cvtlevel < 3)
|
|
|
|
|
errx(EEXIT, "cannot do level %d conversion",
|
|
|
|
|
cvtlevel);
|
1994-05-26 06:35:07 +00:00
|
|
|
break;
|
1995-05-30 06:12:45 +00:00
|
|
|
|
1994-05-26 06:35:07 +00:00
|
|
|
case 'd':
|
|
|
|
|
debug++;
|
|
|
|
|
break;
|
|
|
|
|
|
2011-04-29 23:00:23 +00:00
|
|
|
case 'E':
|
|
|
|
|
Eflag++;
|
|
|
|
|
break;
|
|
|
|
|
|
1994-08-20 16:56:36 +00:00
|
|
|
case 'f':
|
2000-10-09 08:26:35 +00:00
|
|
|
skipclean = 0;
|
1994-05-26 06:35:07 +00:00
|
|
|
break;
|
|
|
|
|
|
2001-04-24 22:38:08 +00:00
|
|
|
case 'F':
|
|
|
|
|
bkgrdcheck = 1;
|
|
|
|
|
break;
|
|
|
|
|
|
1994-05-26 06:35:07 +00:00
|
|
|
case 'm':
|
2016-08-19 00:03:41 +00:00
|
|
|
lfmode = argtoimax('m', "mode", optarg, 8);
|
1994-05-26 06:35:07 +00:00
|
|
|
if (lfmode &~ 07777)
|
1997-03-11 12:20:21 +00:00
|
|
|
errx(EEXIT, "bad mode to -m: %o", lfmode);
|
1994-05-26 06:35:07 +00:00
|
|
|
printf("** lost+found creation mode %o\n", lfmode);
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
case 'n':
|
|
|
|
|
nflag++;
|
|
|
|
|
yflag = 0;
|
|
|
|
|
break;
|
|
|
|
|
|
2000-10-09 08:26:35 +00:00
|
|
|
case 'p':
|
|
|
|
|
preen++;
|
2009-01-30 18:33:05 +00:00
|
|
|
/*FALLTHROUGH*/
|
|
|
|
|
|
|
|
|
|
case 'C':
|
|
|
|
|
ckclean++;
|
2000-10-09 08:26:35 +00:00
|
|
|
break;
|
|
|
|
|
|
2013-12-30 01:16:08 +00:00
|
|
|
case 'R':
|
|
|
|
|
wantrestart = 1;
|
|
|
|
|
break;
|
2009-02-04 01:02:56 +00:00
|
|
|
case 'r':
|
|
|
|
|
inoopt++;
|
|
|
|
|
break;
|
|
|
|
|
|
2013-07-30 22:57:12 +00:00
|
|
|
case 'S':
|
|
|
|
|
surrender = 1;
|
|
|
|
|
break;
|
|
|
|
|
|
1994-05-26 06:35:07 +00:00
|
|
|
case 'y':
|
|
|
|
|
yflag++;
|
|
|
|
|
nflag = 0;
|
|
|
|
|
break;
|
|
|
|
|
|
2013-04-29 20:13:09 +00:00
|
|
|
case 'Z':
|
|
|
|
|
Zflag++;
|
|
|
|
|
break;
|
|
|
|
|
|
This update eliminates a kernel stack disclosure bug in UFS/FFS
directory entries that is caused by uninitialized directory entry
padding written to the disk. It can be viewed by any user with read
access to that directory. Up to 3 bytes of kernel stack are disclosed
per file entry, depending on the the amount of padding the kernel
needs to pad out the entry to a 32 bit boundry. The offset in the
kernel stack that is disclosed is a function of the filename size.
Furthermore, if the user can create files in a directory, this 3
byte window can be expanded 3 bytes at a time to a 254 byte window
with 75% of the data in that window exposed. The additional exposure
is done by removing the entry, creating a new entry with a 4-byte
longer name, extracting 3 more bytes by reading the directory, and
repeating until a 252 byte name is created.
This exploit works in part because the area of the kernel stack
that is being disclosed is in an area that typically doesn't change
that often (perhaps a few times a second on a lightly loaded system),
and these file creates and unlinks themselves don't overwrite the
area of kernel stack being disclosed.
It appears that this bug originated with the creation of the Fast
File System in 4.1b-BSD (Circa 1982, more than 36 years ago!), and
is likely present in every Unix or Unix-like system that uses
UFS/FFS. Amazingly, nobody noticed until now.
This update also adds the -z flag to fsck_ffs to have it scrub
the leaked information in the name padding of existing directories.
It only needs to be run once on each UFS/FFS filesystem after a
patched kernel is installed and running.
Submitted by: David G. Lawrence <dg@dglawrence.com>
Reviewed by: kib
MFC after: 1 week
2019-05-03 21:54:14 +00:00
|
|
|
case 'z':
|
|
|
|
|
zflag++;
|
|
|
|
|
break;
|
|
|
|
|
|
1994-05-26 06:35:07 +00:00
|
|
|
default:
|
2000-10-09 08:26:35 +00:00
|
|
|
usage();
|
1994-05-26 06:35:07 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
argc -= optind;
|
|
|
|
|
argv += optind;
|
2000-10-09 08:26:35 +00:00
|
|
|
|
|
|
|
|
if (!argc)
|
|
|
|
|
usage();
|
|
|
|
|
|
2022-02-04 19:46:36 +00:00
|
|
|
if (bkgrdflag && cvtlevel > 0) {
|
|
|
|
|
pfatal("CANNOT CONVERT A SNAPSHOT\n");
|
|
|
|
|
exit(EEXIT);
|
|
|
|
|
}
|
|
|
|
|
|
1994-05-26 06:35:07 +00:00
|
|
|
if (signal(SIGINT, SIG_IGN) != SIG_IGN)
|
|
|
|
|
(void)signal(SIGINT, catch);
|
2009-01-30 18:33:05 +00:00
|
|
|
if (ckclean)
|
1994-05-26 06:35:07 +00:00
|
|
|
(void)signal(SIGQUIT, catchquit);
|
2000-12-15 14:23:55 +00:00
|
|
|
signal(SIGINFO, infohandler);
|
2004-02-28 07:50:42 +00:00
|
|
|
if (bkgrdflag) {
|
|
|
|
|
signal(SIGALRM, alarmhandler);
|
|
|
|
|
itimerval.it_interval.tv_sec = 5;
|
|
|
|
|
itimerval.it_interval.tv_usec = 0;
|
|
|
|
|
itimerval.it_value.tv_sec = 5;
|
|
|
|
|
itimerval.it_value.tv_usec = 0;
|
|
|
|
|
setitimer(ITIMER_REAL, &itimerval, NULL);
|
|
|
|
|
}
|
1998-12-03 02:27:35 +00:00
|
|
|
/*
|
|
|
|
|
* Push up our allowed memory limit so we can cope
|
2002-08-21 18:11:48 +00:00
|
|
|
* with huge file systems.
|
1998-12-03 02:27:35 +00:00
|
|
|
*/
|
|
|
|
|
if (getrlimit(RLIMIT_DATA, &rlimit) == 0) {
|
|
|
|
|
rlimit.rlim_cur = rlimit.rlim_max;
|
|
|
|
|
(void)setrlimit(RLIMIT_DATA, &rlimit);
|
|
|
|
|
}
|
2013-12-30 01:16:08 +00:00
|
|
|
while (argc > 0) {
|
Exit fsck_ffs with non-zero status when file system is not repaired.
When the fsck_ffs program cannot fully repair a file system, it will
output the message PLEASE RERUN FSCK. However, it does not exit with a
non-zero status in this case (contradicting the man page claim that it
"exits with 0 on success, and >0 if an error occurs." The fsck
rc-script (when running "fsck -y") tests the status from fsck (which
passes along the exit status from fsck_ffs) and issues a "stop_boot"
if the status fails. However, this is not effective since fsck_ffs can
return zero even on (some) errors. Effectively, it is left to a later
step in the boot process when the file systems are mounted to detect
the still-unclean file system and stop the boot.
This change modifies fsck_ffs so that when it cannot fully repair the
file system and issues the PLEASE RERUN FSCK message it also exits
with a non-zero status.
While here, the fsck_ffs man page has also been updated to document
the failing exit status codes used by fsck_ffs. Previously, only exit
status 7 was documented. Some of these exit statuses are tested for in
the fsck rc-script, so they are clearly depended upon and deserve
documentation.
Reviewed by: mckusick, vangyzen, jilles (manpages)
MFC after: 1 week
Sponsored by: Dell EMC
Differential Revision: https://reviews.freebsd.org/D13862
2018-01-15 19:25:11 +00:00
|
|
|
if ((fsret = checkfilesys(*argv)) == ERESTART)
|
2013-12-30 01:16:08 +00:00
|
|
|
continue;
|
Exit fsck_ffs with non-zero status when file system is not repaired.
When the fsck_ffs program cannot fully repair a file system, it will
output the message PLEASE RERUN FSCK. However, it does not exit with a
non-zero status in this case (contradicting the man page claim that it
"exits with 0 on success, and >0 if an error occurs." The fsck
rc-script (when running "fsck -y") tests the status from fsck (which
passes along the exit status from fsck_ffs) and issues a "stop_boot"
if the status fails. However, this is not effective since fsck_ffs can
return zero even on (some) errors. Effectively, it is left to a later
step in the boot process when the file systems are mounted to detect
the still-unclean file system and stop the boot.
This change modifies fsck_ffs so that when it cannot fully repair the
file system and issues the PLEASE RERUN FSCK message it also exits
with a non-zero status.
While here, the fsck_ffs man page has also been updated to document
the failing exit status codes used by fsck_ffs. Previously, only exit
status 7 was documented. Some of these exit statuses are tested for in
the fsck rc-script, so they are clearly depended upon and deserve
documentation.
Reviewed by: mckusick, vangyzen, jilles (manpages)
MFC after: 1 week
Sponsored by: Dell EMC
Differential Revision: https://reviews.freebsd.org/D13862
2018-01-15 19:25:11 +00:00
|
|
|
ret |= fsret;
|
2013-12-30 01:16:08 +00:00
|
|
|
argc--;
|
|
|
|
|
argv++;
|
|
|
|
|
}
|
2000-10-09 08:26:35 +00:00
|
|
|
|
1994-05-26 06:35:07 +00:00
|
|
|
if (returntosingle)
|
2000-10-09 08:26:35 +00:00
|
|
|
ret = 2;
|
1994-05-26 06:35:07 +00:00
|
|
|
exit(ret);
|
|
|
|
|
}
|
|
|
|
|
|
2016-08-19 00:03:41 +00:00
|
|
|
static intmax_t
|
|
|
|
|
argtoimax(int flag, const char *req, const char *str, int base)
|
1994-05-26 06:35:07 +00:00
|
|
|
{
|
|
|
|
|
char *cp;
|
2016-08-19 00:03:41 +00:00
|
|
|
intmax_t ret;
|
1994-05-26 06:35:07 +00:00
|
|
|
|
2016-08-19 00:03:41 +00:00
|
|
|
ret = strtoimax(str, &cp, base);
|
1994-05-26 06:35:07 +00:00
|
|
|
if (cp == str || *cp)
|
1997-03-11 12:20:21 +00:00
|
|
|
errx(EEXIT, "-%c flag requires a %s", flag, req);
|
1994-05-26 06:35:07 +00:00
|
|
|
return (ret);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
2002-08-21 18:11:48 +00:00
|
|
|
* Check the specified file system.
|
1994-05-26 06:35:07 +00:00
|
|
|
*/
|
|
|
|
|
/* ARGSUSED */
|
1997-03-11 12:20:21 +00:00
|
|
|
static int
|
2002-03-20 22:57:10 +00:00
|
|
|
checkfilesys(char *filesys)
|
1994-05-26 06:35:07 +00:00
|
|
|
{
|
2002-06-21 06:18:05 +00:00
|
|
|
ufs2_daddr_t n_ffree, n_bfree;
|
1994-05-26 06:35:07 +00:00
|
|
|
struct dups *dp;
|
2001-03-21 09:48:03 +00:00
|
|
|
struct statfs *mntp;
|
2012-09-28 17:34:34 +00:00
|
|
|
intmax_t blks, files;
|
2002-07-31 12:01:14 +00:00
|
|
|
size_t size;
|
2022-02-04 19:46:36 +00:00
|
|
|
int sbreadfailed, ofsmodified;
|
1994-05-26 06:35:07 +00:00
|
|
|
|
2013-12-30 01:16:08 +00:00
|
|
|
fsutilinit();
|
|
|
|
|
fsckinit();
|
2007-09-19 01:24:19 +00:00
|
|
|
|
1994-05-26 06:35:07 +00:00
|
|
|
cdevname = filesys;
|
2009-01-30 18:33:05 +00:00
|
|
|
if (debug && ckclean)
|
1994-05-26 06:35:07 +00:00
|
|
|
pwarn("starting\n");
|
2001-04-24 22:38:08 +00:00
|
|
|
/*
|
|
|
|
|
* Make best effort to get the disk name. Check first to see
|
2002-08-21 18:11:48 +00:00
|
|
|
* if it is listed among the mounted file systems. Failing that
|
2001-04-24 22:38:08 +00:00
|
|
|
* check to see if it is listed in /etc/fstab.
|
|
|
|
|
*/
|
|
|
|
|
mntp = getmntpt(filesys);
|
|
|
|
|
if (mntp != NULL)
|
|
|
|
|
filesys = mntp->f_mntfromname;
|
|
|
|
|
else
|
|
|
|
|
filesys = blockcheck(filesys);
|
|
|
|
|
/*
|
|
|
|
|
* If -F flag specified, check to see whether a background check
|
|
|
|
|
* is possible and needed. If possible and needed, exit with
|
|
|
|
|
* status zero. Otherwise exit with status non-zero. A non-zero
|
|
|
|
|
* exit status will cause a foreground check to be run.
|
|
|
|
|
*/
|
2001-04-16 22:22:21 +00:00
|
|
|
sblock_init();
|
2022-02-04 19:46:36 +00:00
|
|
|
sbreadfailed = 0;
|
Move the ability to search for alternate UFS superblocks from fsck_ffs(8)
into ffs_sbsearch() to allow use by other parts of the system.
Historically only fsck_ffs(8), the UFS filesystem checker, had code
to track down and use alternate UFS superblocks. Since fsdb(8) used
much of the fsck_ffs(8) implementation it had some ability to track
down alternate superblocks.
This change extracts the code to track down alternate superblocks
from fsck_ffs(8) and puts it into a new function ffs_sbsearch() in
sys/ufs/ffs/ffs_subr.c. Like ffs_sbget() and ffs_sbput() also found
in ffs_subr.c, these functions can be used directly by the kernel
subsystems. Additionally they are exported to the UFS library,
libufs(8) so that they can be used by user-level programs. The new
functions added to libufs(8) are sbfind(3) that is an alternative
to sbread(3) and sbsearch(3) that is an alternative to sbget(3).
See their manual pages for further details.
The utilities that have been changed to search for superblocks are
dumpfs(8), fsdb(8), ffsinfo(8), and fsck_ffs(8). Also, the prtblknos(8)
tool found in tools/diag/prtblknos searches for superblocks.
The UFS specific mount code uses the superblock search interface
when mounting the root filesystem and when the administrator doing
a mount(8) command specifies the force flag (-f). The standalone UFS
boot code (found in stand/libsa/ufs.c) uses the superblock search
code in the hope of being able to get the system up and running so
that fsck_ffs(8) can be used to get the filesystem cleaned up.
The following utilities have not been changed to search for
superblocks: clri(8), tunefs(8), snapinfo(8), fstyp(8), quot(8),
dump(8), fsirand(8), growfs(8), quotacheck(8), gjournal(8), and
glabel(8). When these utilities fail, they do report the cause of
the failure. The one exception is the tasting code used to try and
figure what a given disk contains. The tasting code will remain
silent so as not to put out a slew of messages as it trying to taste
every new mass storage device that shows up.
Reviewed by: kib
Reviewed by: Warner Losh
Tested by: Peter Holm
Differential Revision: https://reviews.freebsd.org/D36053
Sponsored by: The FreeBSD Foundation
2022-08-13 19:41:53 +00:00
|
|
|
if (openfilesys(filesys) == 0 || readsb() == 0)
|
2022-02-04 19:46:36 +00:00
|
|
|
sbreadfailed = 1;
|
2001-04-24 22:38:08 +00:00
|
|
|
if (bkgrdcheck) {
|
2022-02-04 19:46:36 +00:00
|
|
|
if (sbreadfailed)
|
2001-04-24 22:38:08 +00:00
|
|
|
exit(3); /* Cannot read superblock */
|
2010-04-24 07:05:35 +00:00
|
|
|
/* Earlier background failed or journaled */
|
|
|
|
|
if (sblock.fs_flags & (FS_NEEDSFSCK | FS_SUJ))
|
|
|
|
|
exit(4);
|
2001-04-24 22:38:08 +00:00
|
|
|
if ((sblock.fs_flags & FS_DOSOFTDEP) == 0)
|
|
|
|
|
exit(5); /* Not running soft updates */
|
|
|
|
|
size = MIBSIZE;
|
|
|
|
|
if (sysctlnametomib("vfs.ffs.adjrefcnt", adjrefcnt, &size) < 0)
|
|
|
|
|
exit(6); /* Lacks kernel support */
|
|
|
|
|
if ((mntp == NULL && sblock.fs_clean == 1) ||
|
|
|
|
|
(mntp != NULL && (sblock.fs_flags & FS_UNCLEAN) == 0))
|
|
|
|
|
exit(7); /* Filesystem clean, report it now */
|
|
|
|
|
exit(0);
|
|
|
|
|
}
|
2009-01-30 18:33:05 +00:00
|
|
|
if (ckclean && skipclean) {
|
2006-10-31 22:06:56 +00:00
|
|
|
/*
|
|
|
|
|
* If file system is gjournaled, check it here.
|
|
|
|
|
*/
|
2022-02-04 19:46:36 +00:00
|
|
|
if (sbreadfailed)
|
2006-10-31 22:06:56 +00:00
|
|
|
exit(3); /* Cannot read superblock */
|
2021-07-11 20:47:27 +00:00
|
|
|
if (bkgrdflag == 0 &&
|
|
|
|
|
(nflag || (fswritefd = open(filesys, O_WRONLY)) < 0)) {
|
2021-01-07 01:37:08 +00:00
|
|
|
fswritefd = -1;
|
|
|
|
|
if (preen)
|
|
|
|
|
pfatal("NO WRITE ACCESS");
|
|
|
|
|
printf(" (NO WRITE)");
|
|
|
|
|
}
|
2006-10-31 22:06:56 +00:00
|
|
|
if ((sblock.fs_flags & FS_GJOURNAL) != 0) {
|
|
|
|
|
if (sblock.fs_clean == 1) {
|
|
|
|
|
pwarn("FILE SYSTEM CLEAN; SKIPPING CHECKS\n");
|
|
|
|
|
exit(0);
|
|
|
|
|
}
|
2022-02-04 19:46:36 +00:00
|
|
|
if ((sblock.fs_flags &
|
|
|
|
|
(FS_UNCLEAN | FS_NEEDSFSCK)) == 0) {
|
2021-06-03 01:41:31 +00:00
|
|
|
bufinit();
|
2006-10-31 22:06:56 +00:00
|
|
|
gjournal_check(filesys);
|
2007-08-10 06:29:54 +00:00
|
|
|
if (chkdoreload(mntp) == 0)
|
|
|
|
|
exit(0);
|
|
|
|
|
exit(4);
|
2006-10-31 22:06:56 +00:00
|
|
|
} else {
|
2022-02-04 19:46:36 +00:00
|
|
|
pfatal("FULL FSCK NEEDED, CANNOT RUN FAST "
|
|
|
|
|
"FSCK\n");
|
2006-10-31 22:06:56 +00:00
|
|
|
}
|
|
|
|
|
}
|
2021-07-11 20:47:27 +00:00
|
|
|
close(fswritefd);
|
2022-02-04 19:46:36 +00:00
|
|
|
fswritefd = -1;
|
2006-10-31 22:06:56 +00:00
|
|
|
}
|
2001-03-21 09:48:03 +00:00
|
|
|
if (bkgrdflag) {
|
2022-02-04 19:46:36 +00:00
|
|
|
switch (setup_bkgrdchk(mntp, sbreadfailed, &filesys)) {
|
|
|
|
|
case -1: /* filesystem clean */
|
|
|
|
|
goto clean;
|
|
|
|
|
case 0: /* cannot do background, give up */
|
|
|
|
|
exit(EEXIT);
|
|
|
|
|
case 1: /* doing background check, preen rules apply */
|
|
|
|
|
preen = 1;
|
|
|
|
|
break;
|
2001-03-21 09:48:03 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
1997-03-11 12:20:21 +00:00
|
|
|
switch (setup(filesys)) {
|
|
|
|
|
case 0:
|
1994-05-26 06:35:07 +00:00
|
|
|
if (preen)
|
|
|
|
|
pfatal("CAN'T CHECK FILE SYSTEM.");
|
2020-09-01 18:50:26 +00:00
|
|
|
return (EEXIT);
|
1997-03-11 12:20:21 +00:00
|
|
|
case -1:
|
2001-04-16 22:22:21 +00:00
|
|
|
clean:
|
2001-11-17 23:48:21 +00:00
|
|
|
pwarn("clean, %ld free ", (long)(sblock.fs_cstotal.cs_nffree +
|
|
|
|
|
sblock.fs_frag * sblock.fs_cstotal.cs_nbfree));
|
2012-09-28 17:34:34 +00:00
|
|
|
printf("(%jd frags, %jd blocks, %.1f%% fragmentation)\n",
|
|
|
|
|
(intmax_t)sblock.fs_cstotal.cs_nffree,
|
|
|
|
|
(intmax_t)sblock.fs_cstotal.cs_nbfree,
|
1998-12-03 02:41:11 +00:00
|
|
|
sblock.fs_cstotal.cs_nffree * 100.0 / sblock.fs_dsize);
|
1997-12-20 22:24:32 +00:00
|
|
|
return (0);
|
1994-08-20 16:56:36 +00:00
|
|
|
}
|
2010-04-24 07:05:35 +00:00
|
|
|
/*
|
|
|
|
|
* Determine if we can and should do journal recovery.
|
|
|
|
|
*/
|
2010-06-22 00:26:07 +00:00
|
|
|
if ((sblock.fs_flags & FS_SUJ) == FS_SUJ) {
|
|
|
|
|
if ((sblock.fs_flags & FS_NEEDSFSCK) != FS_NEEDSFSCK && skipclean) {
|
2021-01-07 01:37:08 +00:00
|
|
|
sujrecovery = 1;
|
2019-12-24 23:03:12 +00:00
|
|
|
if (suj_check(filesys) == 0) {
|
|
|
|
|
printf("\n***** FILE SYSTEM MARKED CLEAN *****\n");
|
|
|
|
|
if (chkdoreload(mntp) == 0)
|
|
|
|
|
exit(0);
|
|
|
|
|
exit(4);
|
2010-04-24 07:05:35 +00:00
|
|
|
}
|
2021-01-07 01:37:08 +00:00
|
|
|
sujrecovery = 0;
|
2010-06-22 00:26:07 +00:00
|
|
|
printf("** Skipping journal, falling through to full fsck\n\n");
|
2010-04-24 07:05:35 +00:00
|
|
|
}
|
2021-06-29 21:29:15 +00:00
|
|
|
if (fswritefd != -1) {
|
|
|
|
|
/*
|
|
|
|
|
* Write the superblock so we don't try to recover the
|
|
|
|
|
* journal on another pass. If this is the only change
|
|
|
|
|
* to the filesystem, we do not want it to be called
|
|
|
|
|
* out as modified.
|
|
|
|
|
*/
|
|
|
|
|
sblock.fs_mtime = time(NULL);
|
|
|
|
|
sbdirty();
|
|
|
|
|
ofsmodified = fsmodified;
|
|
|
|
|
flush(fswritefd, &sblk);
|
|
|
|
|
fsmodified = ofsmodified;
|
|
|
|
|
}
|
2010-04-24 07:05:35 +00:00
|
|
|
}
|
2018-02-08 23:14:24 +00:00
|
|
|
/*
|
|
|
|
|
* If the filesystem was run on an old kernel that did not
|
|
|
|
|
* support check hashes, clear the check-hash flags so that
|
|
|
|
|
* we do not try to verify them.
|
|
|
|
|
*/
|
|
|
|
|
if ((sblock.fs_flags & FS_METACKHASH) == 0)
|
|
|
|
|
sblock.fs_metackhash = 0;
|
|
|
|
|
/*
|
|
|
|
|
* If we are running on a kernel that can provide check hashes
|
|
|
|
|
* that are not yet enabled for the filesystem and we are
|
|
|
|
|
* running manually without the -y flag, offer to add any
|
|
|
|
|
* supported check hashes that are not already enabled.
|
|
|
|
|
*/
|
|
|
|
|
ckhashadd = 0;
|
|
|
|
|
if (preen == 0 && yflag == 0 && sblock.fs_magic != FS_UFS1_MAGIC &&
|
|
|
|
|
fswritefd != -1 && getosreldate() >= P_OSREL_CK_CYLGRP) {
|
|
|
|
|
if ((sblock.fs_metackhash & CK_CYLGRP) == 0 &&
|
2018-11-13 21:40:56 +00:00
|
|
|
reply("ADD CYLINDER GROUP CHECK-HASH PROTECTION") != 0) {
|
2018-02-08 23:14:24 +00:00
|
|
|
ckhashadd |= CK_CYLGRP;
|
2018-11-13 21:40:56 +00:00
|
|
|
sblock.fs_metackhash |= CK_CYLGRP;
|
|
|
|
|
}
|
2018-02-08 23:14:24 +00:00
|
|
|
if ((sblock.fs_metackhash & CK_SUPERBLOCK) == 0 &&
|
|
|
|
|
getosreldate() >= P_OSREL_CK_SUPERBLOCK &&
|
2018-10-23 21:10:06 +00:00
|
|
|
reply("ADD SUPERBLOCK CHECK-HASH PROTECTION") != 0) {
|
2018-11-13 21:40:56 +00:00
|
|
|
ckhashadd |= CK_SUPERBLOCK;
|
2018-10-23 21:10:06 +00:00
|
|
|
sblock.fs_metackhash |= CK_SUPERBLOCK;
|
|
|
|
|
}
|
2018-02-08 23:14:24 +00:00
|
|
|
if ((sblock.fs_metackhash & CK_INODE) == 0 &&
|
|
|
|
|
getosreldate() >= P_OSREL_CK_INODE &&
|
2018-11-13 21:40:56 +00:00
|
|
|
reply("ADD INODE CHECK-HASH PROTECTION") != 0) {
|
2018-02-08 23:14:24 +00:00
|
|
|
ckhashadd |= CK_INODE;
|
2018-11-13 21:40:56 +00:00
|
|
|
sblock.fs_metackhash |= CK_INODE;
|
|
|
|
|
}
|
2018-12-11 22:14:37 +00:00
|
|
|
#ifdef notyet
|
2018-02-08 23:14:24 +00:00
|
|
|
if ((sblock.fs_metackhash & CK_INDIR) == 0 &&
|
|
|
|
|
getosreldate() >= P_OSREL_CK_INDIR &&
|
2018-11-13 21:40:56 +00:00
|
|
|
reply("ADD INDIRECT BLOCK CHECK-HASH PROTECTION") != 0) {
|
2018-02-08 23:14:24 +00:00
|
|
|
ckhashadd |= CK_INDIR;
|
2018-11-13 21:40:56 +00:00
|
|
|
sblock.fs_metackhash |= CK_INDIR;
|
|
|
|
|
}
|
2018-02-08 23:14:24 +00:00
|
|
|
if ((sblock.fs_metackhash & CK_DIR) == 0 &&
|
|
|
|
|
getosreldate() >= P_OSREL_CK_DIR &&
|
2018-11-13 21:40:56 +00:00
|
|
|
reply("ADD DIRECTORY CHECK-HASH PROTECTION") != 0) {
|
2018-02-08 23:14:24 +00:00
|
|
|
ckhashadd |= CK_DIR;
|
2018-11-13 21:40:56 +00:00
|
|
|
sblock.fs_metackhash |= CK_DIR;
|
|
|
|
|
}
|
2018-02-08 23:14:24 +00:00
|
|
|
#endif /* notyet */
|
2018-11-13 21:40:56 +00:00
|
|
|
if (ckhashadd != 0) {
|
2018-02-08 23:14:24 +00:00
|
|
|
sblock.fs_flags |= FS_METACKHASH;
|
2018-11-13 21:40:56 +00:00
|
|
|
sbdirty();
|
|
|
|
|
}
|
2018-02-08 23:14:24 +00:00
|
|
|
}
|
1998-03-08 09:59:44 +00:00
|
|
|
/*
|
|
|
|
|
* Cleared if any questions answered no. Used to decide if
|
|
|
|
|
* the superblock should be marked clean.
|
|
|
|
|
*/
|
|
|
|
|
resolved = 1;
|
1994-05-26 06:35:07 +00:00
|
|
|
/*
|
|
|
|
|
* 1: scan inodes tallying blocks used
|
|
|
|
|
*/
|
|
|
|
|
if (preen == 0) {
|
|
|
|
|
printf("** Last Mounted on %s\n", sblock.fs_fsmnt);
|
2001-03-21 09:48:03 +00:00
|
|
|
if (mntp != NULL && mntp->f_flags & MNT_ROOTFS)
|
2002-08-21 18:11:48 +00:00
|
|
|
printf("** Root file system\n");
|
1994-05-26 06:35:07 +00:00
|
|
|
printf("** Phase 1 - Check Blocks and Sizes\n");
|
|
|
|
|
}
|
2013-02-24 06:44:29 +00:00
|
|
|
clock_gettime(CLOCK_REALTIME_PRECISE, &startprog);
|
1994-05-26 06:35:07 +00:00
|
|
|
pass1();
|
2013-02-24 06:44:29 +00:00
|
|
|
IOstats("Pass1");
|
1994-05-26 06:35:07 +00:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* 1b: locate first references to duplicates, if any
|
|
|
|
|
*/
|
|
|
|
|
if (duplist) {
|
1998-03-08 09:59:44 +00:00
|
|
|
if (preen || usedsoftdep)
|
2022-01-06 00:32:12 +00:00
|
|
|
pfatal("INTERNAL ERROR: DUPS WITH %s%s%s",
|
2010-01-07 01:10:49 +00:00
|
|
|
preen ? "-p" : "",
|
2022-01-06 00:32:12 +00:00
|
|
|
(preen && usedsoftdep) ? " AND " : "",
|
|
|
|
|
usedsoftdep ? "SOFTUPDATES" : "");
|
1994-05-26 06:35:07 +00:00
|
|
|
printf("** Phase 1b - Rescan For More DUPS\n");
|
|
|
|
|
pass1b();
|
2013-02-24 06:44:29 +00:00
|
|
|
IOstats("Pass1b");
|
1994-05-26 06:35:07 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* 2: traverse directories from root to mark all connected directories
|
|
|
|
|
*/
|
|
|
|
|
if (preen == 0)
|
|
|
|
|
printf("** Phase 2 - Check Pathnames\n");
|
|
|
|
|
pass2();
|
2013-02-24 06:44:29 +00:00
|
|
|
IOstats("Pass2");
|
1994-05-26 06:35:07 +00:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* 3: scan inodes looking for disconnected directories
|
|
|
|
|
*/
|
|
|
|
|
if (preen == 0)
|
|
|
|
|
printf("** Phase 3 - Check Connectivity\n");
|
|
|
|
|
pass3();
|
2013-02-24 06:44:29 +00:00
|
|
|
IOstats("Pass3");
|
1994-05-26 06:35:07 +00:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* 4: scan inodes looking for disconnected files; check reference counts
|
|
|
|
|
*/
|
|
|
|
|
if (preen == 0)
|
|
|
|
|
printf("** Phase 4 - Check Reference Counts\n");
|
|
|
|
|
pass4();
|
2013-02-24 06:44:29 +00:00
|
|
|
IOstats("Pass4");
|
1994-05-26 06:35:07 +00:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* 5: check and repair resource counts in cylinder groups
|
|
|
|
|
*/
|
|
|
|
|
if (preen == 0)
|
|
|
|
|
printf("** Phase 5 - Check Cyl groups\n");
|
|
|
|
|
pass5();
|
2013-02-24 06:44:29 +00:00
|
|
|
IOstats("Pass5");
|
1994-05-26 06:35:07 +00:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* print out summary statistics
|
|
|
|
|
*/
|
|
|
|
|
n_ffree = sblock.fs_cstotal.cs_nffree;
|
|
|
|
|
n_bfree = sblock.fs_cstotal.cs_nbfree;
|
2017-02-15 19:50:26 +00:00
|
|
|
files = maxino - UFS_ROOTINO - sblock.fs_cstotal.cs_nifree - n_files;
|
2001-03-21 09:48:03 +00:00
|
|
|
blks = n_blks +
|
|
|
|
|
sblock.fs_ncg * (cgdmin(&sblock, 0) - cgsblock(&sblock, 0));
|
|
|
|
|
blks += cgsblock(&sblock, 0) - cgbase(&sblock, 0);
|
|
|
|
|
blks += howmany(sblock.fs_cssize, sblock.fs_fsize);
|
|
|
|
|
blks = maxfsblock - (n_ffree + sblock.fs_frag * n_bfree) - blks;
|
|
|
|
|
if (bkgrdflag && (files > 0 || blks > 0)) {
|
|
|
|
|
countdirs = sblock.fs_cstotal.cs_ndir - countdirs;
|
2012-09-28 17:34:34 +00:00
|
|
|
pwarn("Reclaimed: %ld directories, %jd files, %jd fragments\n",
|
|
|
|
|
countdirs, files - countdirs, blks);
|
2001-03-21 09:48:03 +00:00
|
|
|
}
|
2002-07-31 12:01:14 +00:00
|
|
|
pwarn("%ld files, %jd used, %ju free ",
|
|
|
|
|
(long)n_files, (intmax_t)n_blks,
|
|
|
|
|
(uintmax_t)n_ffree + sblock.fs_frag * n_bfree);
|
|
|
|
|
printf("(%ju frags, %ju blocks, %.1f%% fragmentation)\n",
|
|
|
|
|
(uintmax_t)n_ffree, (uintmax_t)n_bfree,
|
|
|
|
|
n_ffree * 100.0 / sblock.fs_dsize);
|
1994-05-26 06:35:07 +00:00
|
|
|
if (debug) {
|
2001-03-21 09:48:03 +00:00
|
|
|
if (files < 0)
|
2012-09-28 17:34:34 +00:00
|
|
|
printf("%jd inodes missing\n", -files);
|
2001-03-21 09:48:03 +00:00
|
|
|
if (blks < 0)
|
2012-09-28 17:34:34 +00:00
|
|
|
printf("%jd blocks missing\n", -blks);
|
1994-05-26 06:35:07 +00:00
|
|
|
if (duplist != NULL) {
|
|
|
|
|
printf("The following duplicate blocks remain:");
|
|
|
|
|
for (dp = duplist; dp; dp = dp->next)
|
2012-09-28 17:34:34 +00:00
|
|
|
printf(" %jd,", (intmax_t)dp->dup);
|
1994-05-26 06:35:07 +00:00
|
|
|
printf("\n");
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
duplist = (struct dups *)0;
|
|
|
|
|
muldup = (struct dups *)0;
|
|
|
|
|
inocleanup();
|
1994-08-21 08:47:10 +00:00
|
|
|
if (fsmodified) {
|
1998-12-03 02:27:35 +00:00
|
|
|
sblock.fs_time = time(NULL);
|
1994-05-26 06:35:07 +00:00
|
|
|
sbdirty();
|
|
|
|
|
}
|
2021-01-07 01:37:08 +00:00
|
|
|
if (cvtlevel && (sblk.b_flags & B_DIRTY) != 0) {
|
1995-05-30 06:12:45 +00:00
|
|
|
/*
|
1994-05-26 06:35:07 +00:00
|
|
|
* Write out the duplicate super blocks
|
|
|
|
|
*/
|
2020-08-15 21:40:36 +00:00
|
|
|
if (sbput(fswritefd, &sblock, sblock.fs_ncg) == 0)
|
|
|
|
|
fsmodified = 1;
|
1994-05-26 06:35:07 +00:00
|
|
|
}
|
1998-03-08 09:59:44 +00:00
|
|
|
if (rerun)
|
|
|
|
|
resolved = 0;
|
1999-12-30 16:32:40 +00:00
|
|
|
|
2000-01-10 08:21:22 +00:00
|
|
|
/*
|
2002-08-21 18:11:48 +00:00
|
|
|
* Check to see if the file system is mounted read-write.
|
2000-01-10 08:21:22 +00:00
|
|
|
*/
|
2001-03-21 09:48:03 +00:00
|
|
|
if (bkgrdflag == 0 && mntp != NULL && (mntp->f_flags & MNT_RDONLY) == 0)
|
1999-12-30 16:32:40 +00:00
|
|
|
resolved = 0;
|
1998-03-08 09:59:44 +00:00
|
|
|
ckfini(resolved);
|
1998-12-03 02:27:35 +00:00
|
|
|
|
|
|
|
|
if (fsmodified && !preen)
|
1994-05-26 06:35:07 +00:00
|
|
|
printf("\n***** FILE SYSTEM WAS MODIFIED *****\n");
|
2013-12-30 01:16:08 +00:00
|
|
|
if (rerun) {
|
|
|
|
|
if (wantrestart && (restarts++ < 10) &&
|
|
|
|
|
(preen || reply("RESTART")))
|
|
|
|
|
return (ERESTART);
|
1996-10-08 14:54:53 +00:00
|
|
|
printf("\n***** PLEASE RERUN FSCK *****\n");
|
2013-12-30 01:16:08 +00:00
|
|
|
}
|
2007-08-10 06:29:54 +00:00
|
|
|
if (chkdoreload(mntp) != 0) {
|
1998-12-03 02:27:35 +00:00
|
|
|
if (!fsmodified)
|
|
|
|
|
return (0);
|
1994-05-26 06:35:07 +00:00
|
|
|
if (!preen)
|
|
|
|
|
printf("\n***** REBOOT NOW *****\n");
|
|
|
|
|
sync();
|
|
|
|
|
return (4);
|
|
|
|
|
}
|
Exit fsck_ffs with non-zero status when file system is not repaired.
When the fsck_ffs program cannot fully repair a file system, it will
output the message PLEASE RERUN FSCK. However, it does not exit with a
non-zero status in this case (contradicting the man page claim that it
"exits with 0 on success, and >0 if an error occurs." The fsck
rc-script (when running "fsck -y") tests the status from fsck (which
passes along the exit status from fsck_ffs) and issues a "stop_boot"
if the status fails. However, this is not effective since fsck_ffs can
return zero even on (some) errors. Effectively, it is left to a later
step in the boot process when the file systems are mounted to detect
the still-unclean file system and stop the boot.
This change modifies fsck_ffs so that when it cannot fully repair the
file system and issues the PLEASE RERUN FSCK message it also exits
with a non-zero status.
While here, the fsck_ffs man page has also been updated to document
the failing exit status codes used by fsck_ffs. Previously, only exit
status 7 was documented. Some of these exit statuses are tested for in
the fsck rc-script, so they are clearly depended upon and deserve
documentation.
Reviewed by: mckusick, vangyzen, jilles (manpages)
MFC after: 1 week
Sponsored by: Dell EMC
Differential Revision: https://reviews.freebsd.org/D13862
2018-01-15 19:25:11 +00:00
|
|
|
return (rerun ? ERERUN : 0);
|
1994-05-26 06:35:07 +00:00
|
|
|
}
|
1999-12-30 16:32:40 +00:00
|
|
|
|
2022-02-04 19:46:36 +00:00
|
|
|
/*
|
|
|
|
|
* If we are to do a background check:
|
|
|
|
|
* Get the mount point information of the file system
|
|
|
|
|
* If already clean, return -1
|
|
|
|
|
* Check that kernel supports background fsck
|
|
|
|
|
* Find or create the snapshot directory
|
|
|
|
|
* Create the snapshot file
|
|
|
|
|
* Open snapshot
|
|
|
|
|
* If anything fails print reason and return 0 which exits
|
|
|
|
|
*/
|
|
|
|
|
static int
|
|
|
|
|
setup_bkgrdchk(struct statfs *mntp, int sbreadfailed, char **filesys)
|
|
|
|
|
{
|
|
|
|
|
struct stat snapdir;
|
|
|
|
|
struct group *grp;
|
|
|
|
|
struct iovec *iov;
|
|
|
|
|
char errmsg[255];
|
|
|
|
|
int iovlen;
|
2022-02-04 22:04:12 +00:00
|
|
|
size_t size;
|
2022-02-04 19:46:36 +00:00
|
|
|
|
|
|
|
|
/* Get the mount point information of the file system */
|
|
|
|
|
if (mntp == NULL) {
|
|
|
|
|
pwarn("NOT MOUNTED, CANNOT RUN IN BACKGROUND\n");
|
|
|
|
|
return (0);
|
|
|
|
|
}
|
|
|
|
|
if ((mntp->f_flags & MNT_RDONLY) != 0) {
|
|
|
|
|
pwarn("MOUNTED READ-ONLY, CANNOT RUN IN BACKGROUND\n");
|
|
|
|
|
return (0);
|
|
|
|
|
}
|
|
|
|
|
if ((mntp->f_flags & MNT_SOFTDEP) == 0) {
|
|
|
|
|
pwarn("NOT USING SOFT UPDATES, CANNOT RUN IN BACKGROUND\n");
|
|
|
|
|
return (0);
|
|
|
|
|
}
|
|
|
|
|
if (sbreadfailed) {
|
|
|
|
|
pwarn("SUPERBLOCK READ FAILED, CANNOT RUN IN BACKGROUND\n");
|
|
|
|
|
return (0);
|
|
|
|
|
}
|
|
|
|
|
if ((sblock.fs_flags & FS_NEEDSFSCK) != 0) {
|
|
|
|
|
pwarn("FULL FSCK NEEDED, CANNOT RUN IN BACKGROUND\n");
|
|
|
|
|
return (0);
|
|
|
|
|
}
|
|
|
|
|
if ((sblock.fs_flags & FS_SUJ) != 0) {
|
|
|
|
|
pwarn("JOURNALED FILESYSTEM, CANNOT RUN IN BACKGROUND\n");
|
|
|
|
|
return (0);
|
|
|
|
|
}
|
|
|
|
|
if (skipclean && ckclean &&
|
|
|
|
|
(sblock.fs_flags & (FS_UNCLEAN|FS_NEEDSFSCK)) == 0) {
|
|
|
|
|
/*
|
|
|
|
|
* file system is clean;
|
|
|
|
|
* skip snapshot and report it clean
|
|
|
|
|
*/
|
|
|
|
|
pwarn("FILE SYSTEM CLEAN; SKIPPING CHECKS\n");
|
|
|
|
|
return (-1);
|
|
|
|
|
}
|
|
|
|
|
/* Check that kernel supports background fsck */
|
|
|
|
|
size = MIBSIZE;
|
|
|
|
|
if (sysctlnametomib("vfs.ffs.adjrefcnt", adjrefcnt, &size) < 0||
|
|
|
|
|
sysctlnametomib("vfs.ffs.adjblkcnt", adjblkcnt, &size) < 0||
|
|
|
|
|
sysctlnametomib("vfs.ffs.setsize", setsize, &size) < 0 ||
|
|
|
|
|
sysctlnametomib("vfs.ffs.freefiles", freefiles, &size) < 0||
|
|
|
|
|
sysctlnametomib("vfs.ffs.freedirs", freedirs, &size) < 0 ||
|
|
|
|
|
sysctlnametomib("vfs.ffs.freeblks", freeblks, &size) < 0) {
|
|
|
|
|
pwarn("KERNEL LACKS BACKGROUND FSCK SUPPORT\n");
|
|
|
|
|
return (0);
|
|
|
|
|
}
|
|
|
|
|
/*
|
|
|
|
|
* When kernel lacks runtime bgfsck superblock summary
|
|
|
|
|
* adjustment functionality, it does not mean we can not
|
|
|
|
|
* continue, as old kernels will recompute the summary at
|
|
|
|
|
* mount time. However, it will be an unexpected softupdates
|
|
|
|
|
* inconsistency if it turns out that the summary is still
|
|
|
|
|
* incorrect. Set a flag so subsequent operation can know this.
|
|
|
|
|
*/
|
|
|
|
|
bkgrdsumadj = 1;
|
|
|
|
|
if (sysctlnametomib("vfs.ffs.adjndir", adjndir, &size) < 0 ||
|
|
|
|
|
sysctlnametomib("vfs.ffs.adjnbfree", adjnbfree, &size) < 0 ||
|
|
|
|
|
sysctlnametomib("vfs.ffs.adjnifree", adjnifree, &size) < 0 ||
|
|
|
|
|
sysctlnametomib("vfs.ffs.adjnffree", adjnffree, &size) < 0 ||
|
|
|
|
|
sysctlnametomib("vfs.ffs.adjnumclusters", adjnumclusters,
|
|
|
|
|
&size) < 0) {
|
|
|
|
|
bkgrdsumadj = 0;
|
|
|
|
|
pwarn("KERNEL LACKS RUNTIME SUPERBLOCK SUMMARY ADJUSTMENT "
|
|
|
|
|
"SUPPORT\n");
|
|
|
|
|
}
|
|
|
|
|
/* Find or create the snapshot directory */
|
|
|
|
|
snprintf(snapname, sizeof snapname, "%s/.snap",
|
|
|
|
|
mntp->f_mntonname);
|
|
|
|
|
if (stat(snapname, &snapdir) < 0) {
|
|
|
|
|
if (errno != ENOENT) {
|
|
|
|
|
pwarn("CANNOT FIND SNAPSHOT DIRECTORY %s: %s, CANNOT "
|
|
|
|
|
"RUN IN BACKGROUND\n", snapname, strerror(errno));
|
|
|
|
|
return (0);
|
|
|
|
|
}
|
|
|
|
|
if ((grp = getgrnam("operator")) == NULL ||
|
|
|
|
|
mkdir(snapname, 0770) < 0 ||
|
|
|
|
|
chown(snapname, -1, grp->gr_gid) < 0 ||
|
|
|
|
|
chmod(snapname, 0770) < 0) {
|
|
|
|
|
pwarn("CANNOT CREATE SNAPSHOT DIRECTORY %s: %s, "
|
|
|
|
|
"CANNOT RUN IN BACKGROUND\n", snapname,
|
|
|
|
|
strerror(errno));
|
|
|
|
|
return (0);
|
|
|
|
|
}
|
|
|
|
|
} else if (!S_ISDIR(snapdir.st_mode)) {
|
|
|
|
|
pwarn("%s IS NOT A DIRECTORY, CANNOT RUN IN BACKGROUND\n",
|
|
|
|
|
snapname);
|
|
|
|
|
return (0);
|
|
|
|
|
}
|
|
|
|
|
/* Create the snapshot file */
|
|
|
|
|
iov = NULL;
|
|
|
|
|
iovlen = 0;
|
|
|
|
|
errmsg[0] = '\0';
|
|
|
|
|
snprintf(snapname, sizeof snapname, "%s/.snap/fsck_snapshot",
|
|
|
|
|
mntp->f_mntonname);
|
|
|
|
|
build_iovec(&iov, &iovlen, "fstype", "ffs", 4);
|
|
|
|
|
build_iovec(&iov, &iovlen, "from", snapname, (size_t)-1);
|
|
|
|
|
build_iovec(&iov, &iovlen, "fspath", mntp->f_mntonname, (size_t)-1);
|
|
|
|
|
build_iovec(&iov, &iovlen, "errmsg", errmsg, sizeof(errmsg));
|
|
|
|
|
build_iovec(&iov, &iovlen, "update", NULL, 0);
|
|
|
|
|
build_iovec(&iov, &iovlen, "snapshot", NULL, 0);
|
2022-04-09 12:37:13 +00:00
|
|
|
/* Create snapshot, removing old snapshot if it exists */
|
2022-02-04 19:46:36 +00:00
|
|
|
while (nmount(iov, iovlen, mntp->f_flags) < 0) {
|
|
|
|
|
if (errno == EEXIST && unlink(snapname) == 0)
|
|
|
|
|
continue;
|
|
|
|
|
pwarn("CANNOT CREATE SNAPSHOT %s: %s %s\n", snapname,
|
|
|
|
|
strerror(errno), errmsg);
|
|
|
|
|
return (0);
|
|
|
|
|
}
|
|
|
|
|
/* Open snapshot */
|
|
|
|
|
if (openfilesys(snapname) == 0) {
|
|
|
|
|
unlink(snapname);
|
|
|
|
|
pwarn("CANNOT OPEN SNAPSHOT %s: %s, CANNOT RUN IN "
|
|
|
|
|
"BACKGROUND\n", snapname, strerror(errno));
|
|
|
|
|
return (0);
|
|
|
|
|
}
|
|
|
|
|
free(sblock.fs_csp);
|
|
|
|
|
free(sblock.fs_si);
|
|
|
|
|
havesb = 0;
|
|
|
|
|
*filesys = snapname;
|
|
|
|
|
cmd.version = FFS_CMD_VERSION;
|
|
|
|
|
cmd.handle = fsreadfd;
|
|
|
|
|
return (1);
|
|
|
|
|
}
|
|
|
|
|
|
2007-08-10 06:29:54 +00:00
|
|
|
static int
|
|
|
|
|
chkdoreload(struct statfs *mntp)
|
|
|
|
|
{
|
2007-09-19 01:24:19 +00:00
|
|
|
struct iovec *iov;
|
|
|
|
|
int iovlen;
|
|
|
|
|
char errmsg[255];
|
2007-08-10 06:29:54 +00:00
|
|
|
|
|
|
|
|
if (mntp == NULL)
|
|
|
|
|
return (0);
|
2007-09-19 01:24:19 +00:00
|
|
|
|
|
|
|
|
iov = NULL;
|
|
|
|
|
iovlen = 0;
|
|
|
|
|
errmsg[0] = '\0';
|
2007-08-10 06:29:54 +00:00
|
|
|
/*
|
|
|
|
|
* We modified a mounted file system. Do a mount update on
|
|
|
|
|
* it unless it is read-write, so we can continue using it
|
|
|
|
|
* as safely as possible.
|
|
|
|
|
*/
|
|
|
|
|
if (mntp->f_flags & MNT_RDONLY) {
|
2007-09-19 01:24:19 +00:00
|
|
|
build_iovec(&iov, &iovlen, "fstype", "ffs", 4);
|
|
|
|
|
build_iovec(&iov, &iovlen, "from", mntp->f_mntfromname,
|
|
|
|
|
(size_t)-1);
|
|
|
|
|
build_iovec(&iov, &iovlen, "fspath", mntp->f_mntonname,
|
|
|
|
|
(size_t)-1);
|
|
|
|
|
build_iovec(&iov, &iovlen, "errmsg", errmsg,
|
|
|
|
|
sizeof(errmsg));
|
2008-03-05 08:25:49 +00:00
|
|
|
build_iovec(&iov, &iovlen, "update", NULL, 0);
|
2008-08-23 01:21:10 +00:00
|
|
|
build_iovec(&iov, &iovlen, "reload", NULL, 0);
|
2008-04-04 01:50:58 +00:00
|
|
|
/*
|
|
|
|
|
* XX: We need the following line until we clean up
|
|
|
|
|
* nmount parsing of root mounts and NFS root mounts.
|
2011-04-27 02:55:03 +00:00
|
|
|
*/
|
2008-03-05 08:25:49 +00:00
|
|
|
build_iovec(&iov, &iovlen, "ro", NULL, 0);
|
2008-12-24 03:07:19 +00:00
|
|
|
if (nmount(iov, iovlen, mntp->f_flags) == 0) {
|
2007-08-10 06:29:54 +00:00
|
|
|
return (0);
|
|
|
|
|
}
|
2007-09-19 01:24:19 +00:00
|
|
|
pwarn("mount reload of '%s' failed: %s %s\n\n",
|
|
|
|
|
mntp->f_mntonname, strerror(errno), errmsg);
|
2007-08-10 06:29:54 +00:00
|
|
|
return (1);
|
|
|
|
|
}
|
|
|
|
|
return (0);
|
|
|
|
|
}
|
|
|
|
|
|
1999-12-30 16:32:40 +00:00
|
|
|
/*
|
2001-04-24 22:38:08 +00:00
|
|
|
* Get the mount point information for name.
|
1999-12-30 16:32:40 +00:00
|
|
|
*/
|
|
|
|
|
static struct statfs *
|
2002-03-20 22:57:10 +00:00
|
|
|
getmntpt(const char *name)
|
1999-12-30 16:32:40 +00:00
|
|
|
{
|
|
|
|
|
struct stat devstat, mntdevstat;
|
2000-01-10 08:21:22 +00:00
|
|
|
char device[sizeof(_PATH_DEV) - 1 + MNAMELEN];
|
2002-07-30 13:01:25 +00:00
|
|
|
char *ddevname;
|
2001-04-24 22:38:08 +00:00
|
|
|
struct statfs *mntbuf, *statfsp;
|
|
|
|
|
int i, mntsize, isdev;
|
1999-12-30 16:32:40 +00:00
|
|
|
|
2001-04-24 22:38:08 +00:00
|
|
|
if (stat(name, &devstat) != 0)
|
1999-12-30 16:32:40 +00:00
|
|
|
return (NULL);
|
2001-04-24 22:38:08 +00:00
|
|
|
if (S_ISCHR(devstat.st_mode) || S_ISBLK(devstat.st_mode))
|
|
|
|
|
isdev = 1;
|
|
|
|
|
else
|
|
|
|
|
isdev = 0;
|
1999-12-30 16:32:40 +00:00
|
|
|
mntsize = getmntinfo(&mntbuf, MNT_NOWAIT);
|
|
|
|
|
for (i = 0; i < mntsize; i++) {
|
2001-04-24 22:38:08 +00:00
|
|
|
statfsp = &mntbuf[i];
|
2002-07-30 13:01:25 +00:00
|
|
|
ddevname = statfsp->f_mntfromname;
|
|
|
|
|
if (*ddevname != '/') {
|
2016-05-11 16:20:23 +00:00
|
|
|
if (strlen(_PATH_DEV) + strlen(ddevname) + 1 >
|
|
|
|
|
sizeof(statfsp->f_mntfromname))
|
|
|
|
|
continue;
|
2000-01-10 08:21:22 +00:00
|
|
|
strcpy(device, _PATH_DEV);
|
2002-07-30 13:01:25 +00:00
|
|
|
strcat(device, ddevname);
|
2001-04-24 22:38:08 +00:00
|
|
|
strcpy(statfsp->f_mntfromname, device);
|
|
|
|
|
}
|
|
|
|
|
if (isdev == 0) {
|
|
|
|
|
if (strcmp(name, statfsp->f_mntonname))
|
|
|
|
|
continue;
|
|
|
|
|
return (statfsp);
|
2000-01-10 08:21:22 +00:00
|
|
|
}
|
2002-07-30 13:01:25 +00:00
|
|
|
if (stat(ddevname, &mntdevstat) == 0 &&
|
2000-01-10 08:21:22 +00:00
|
|
|
mntdevstat.st_rdev == devstat.st_rdev)
|
2001-04-24 22:38:08 +00:00
|
|
|
return (statfsp);
|
1999-12-30 16:32:40 +00:00
|
|
|
}
|
2001-04-24 22:38:08 +00:00
|
|
|
statfsp = NULL;
|
|
|
|
|
return (statfsp);
|
1999-12-30 16:32:40 +00:00
|
|
|
}
|
2000-10-09 08:26:35 +00:00
|
|
|
|
|
|
|
|
static void
|
2002-03-20 22:57:10 +00:00
|
|
|
usage(void)
|
2000-10-09 08:26:35 +00:00
|
|
|
{
|
2011-04-27 02:55:03 +00:00
|
|
|
(void) fprintf(stderr,
|
2017-02-14 21:14:24 +00:00
|
|
|
"usage: %s [-BCdEFfnpRrSyZ] [-b block] [-c level] [-m mode] filesystem ...\n",
|
2011-04-27 02:55:03 +00:00
|
|
|
getprogname());
|
|
|
|
|
exit(1);
|
2000-10-09 08:26:35 +00:00
|
|
|
}
|
2013-12-30 01:16:08 +00:00
|
|
|
|
|
|
|
|
void
|
|
|
|
|
infohandler(int sig __unused)
|
|
|
|
|
{
|
|
|
|
|
got_siginfo = 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void
|
|
|
|
|
alarmhandler(int sig __unused)
|
|
|
|
|
{
|
|
|
|
|
got_sigalarm = 1;
|
|
|
|
|
}
|
