From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from foss.arm.com (foss.arm.com [217.140.110.172])
	by smtp.subspace.kernel.org (Postfix) with ESMTP id 7CF7B48B360;
	Tue,  5 May 2026 15:56:20 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=217.140.110.172
ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1777996584; cv=none; b=rryTg8c0n80OSHgviSc9ZfgBhv1K5B9PwGClDf/XxusN2r/I5CfnjK3Dz84Jzc6r0UhmPipxgZi+QFHWqPfBvJumVfOvX4HWkJ+qbDyLMiRZZHh2s1euKE+OWZwnjr4ftwR046LH87EgIukNiOollztBWF+V0x7iDOxAUmEZW4U=
ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1777996584; c=relaxed/simple;
	bh=kvJeHu3YGkMrq2Vupe9NLww3ryBGHfmI7ERF9HH9Xuk=;
	h=From:To:Subject:CC:Date:Message-ID:MIME-Version:Content-Type; b=qxM/GmZ7RxboGb1MftGfCcXG7TB+WC8AR09g77YCIneixbyV3MvUH+JVkJjb8yoxJ9SSWElsjomhejCXfWmckk0Nn6gACH4TTk0d/O83+6tpTUSPv9+YzriSPmgjRG6N5zT6NuPWzTScTtvN3sHa38YQ8EC3zY4vsp2lp2NFje0=
ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=arm.com; spf=pass smtp.mailfrom=arm.com; dkim=pass (1024-bit key) header.d=arm.com header.i=@arm.com header.b=NYCsE1KM; arc=none smtp.client-ip=217.140.110.172
Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=arm.com
Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=arm.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (1024-bit key) header.d=arm.com header.i=@arm.com header.b="NYCsE1KM"
Received: from usa-sjc-imap-foss1.foss.arm.com (unknown [10.121.207.14])
	by usa-sjc-mx-foss1.foss.arm.com (Postfix) with ESMTP id 1B3B62681;
	Tue,  5 May 2026 08:56:14 -0700 (PDT)
Received: from GX9GF4H4XN (unknown [10.1.25.224])
	by usa-sjc-imap-foss1.foss.arm.com (Postfix) with ESMTPSA id A67CE3F836;
	Tue,  5 May 2026 08:56:17 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=arm.com; s=foss;
	t=1777996579; bh=kvJeHu3YGkMrq2Vupe9NLww3ryBGHfmI7ERF9HH9Xuk=;
	h=From:To:Subject:CC:Date:From;
	b=NYCsE1KM5DeKUXhyKa+C+1z08/dxT/RHr2cHuIiKwpOq5paO/igWgTvFZaRPWJtxC
	 DY/V/H95uIy4lACZiBSae6XEjGRiptbTk9eg7M17HILbTl2MYCFX+FPujEcYyw/bID
	 8y/DXb4+X7jKxMxxv3c/417/Qd5Zm7xtJTFCHbFE=
From: Seunguk Shin <seunguk.shin@arm.com>
To: <linux-kernel@vger.kernel.org>, <dan.j.williams@intel.com>
Subject: [PATCH v3] fs/dax: check zero or empty entry before converting
 xarray entry
CC: <linux-fsdevel@vger.kernel.org>, <nvdimm@lists.linux.dev>,
 <jack@suse.cz>, <willy@infradead.org>, <Nick.Connolly@arm.com>,
 <ffidencio@nvidia.com>, <seunguk.shin@arm.com>
Date: Tue, 05 May 2026 16:56:08 +0100
Message-ID: <m2jythetpj.fsf@arm.com>
User-Agent: Gnus/5.13 (Gnus v5.13)
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
MIME-Version: 1.0
Content-Type: text/plain

dax_associate_entry(), dax_disassociate_entry(), and dax_busy_page()
call dax_to_folio(entry) before checking whether entry is a zero or
empty xarray entry.

That ordering is wrong because zero and empty entries are not folio
entries. Commit 98c183a4fccf ("fs/dax: don't disassociate zero page
entries") added guards in the associate and disassociate paths, but the
guards still come after dax_to_folio(entry), and dax_busy_page() still
has the same problem.

Move the zero/empty checks before dax_to_folio(entry) in all three helpers.

Fixes: 38607c62b34b ("fs/dax: properly refcount fs dax pages")
Signed-off-by: Seunguk Shin <seunguk.shin@arm.com>
Reviewed-by: Jan Kara <jack@suse.cz>
Reviewed-by: Alistair Popple <apopple@nvidia.com>
---
Changes in v3:
- Rebase on current upstream
- Update the changelog for the current code state
- Link to v2: https://lore.kernel.org/all/m2jyv11mqe.fsf@arm.com/
Changes in v2:
- Add Fixes and Reviewed-by tags.
- Rebase on the latest.
- Link to v1: https://lore.kernel.org/all/18af3213-6c46-4611-ba75-da5be5a1c9b0@arm.com/
---
 fs/dax.c | 9 ++++++---
 1 file changed, 6 insertions(+), 3 deletions(-)

diff --git a/fs/dax.c b/fs/dax.c
index 6d175cd47a99..4bca6e2bc342 100644
--- a/fs/dax.c
+++ b/fs/dax.c
@@ -480,11 +480,12 @@ static void dax_associate_entry(void *entry, struct address_space *mapping,
 				unsigned long address, bool shared)
 {
 	unsigned long size = dax_entry_size(entry), index;
-	struct folio *folio = dax_to_folio(entry);
+	struct folio *folio;
 
 	if (dax_is_zero_entry(entry) || dax_is_empty_entry(entry))
 		return;
 
+	folio = dax_to_folio(entry);
 	index = linear_page_index(vma, address & ~(size - 1));
 	if (shared && (folio->mapping || dax_folio_is_shared(folio))) {
 		if (folio->mapping)
@@ -505,21 +506,23 @@ static void dax_associate_entry(void *entry, struct address_space *mapping,
 static void dax_disassociate_entry(void *entry, struct address_space *mapping,
 				bool trunc)
 {
-	struct folio *folio = dax_to_folio(entry);
+	struct folio *folio;
 
 	if (dax_is_zero_entry(entry) || dax_is_empty_entry(entry))
 		return;
 
+	folio = dax_to_folio(entry);
 	dax_folio_put(folio);
 }
 
 static struct page *dax_busy_page(void *entry)
 {
-	struct folio *folio = dax_to_folio(entry);
+	struct folio *folio;
 
 	if (dax_is_zero_entry(entry) || dax_is_empty_entry(entry))
 		return NULL;
 
+	folio = dax_to_folio(entry);
 	if (folio_ref_count(folio) - folio_mapcount(folio))
 		return &folio->page;
 	else
-- 
2.34.1