mirror of
https://git.proxmox.com/git/mirror_zfs.git
synced 2026-05-25 19:57:43 +03:00
Fix cloning into already dirty dbufs.
Undirty the dbuf and destroy its buffer when cloning into it. Coverity ID: CID-1535375 Reported-by: Richard Yao Reported-by: Benjamin Coddington Reviewed-by: Richard Yao <richard.yao@alumni.stonybrook.edu> Reviewed-by: Brian Behlendorf <behlendorf1@llnl.gov> Reviewed-by: Alexander Motin <mav@FreeBSD.org> Signed-off-by: Pawel Jakub Dawidek <pawel@dawidek.net> Closes #14655
This commit is contained in:
Pawel Jakub Dawidek
committed by
GitHub
GitHub
parent
5b5f518687
commit
ce0e1cc402
+24
-11
@@ -2190,7 +2190,8 @@ dmu_read_l0_bps(objset_t *os, uint64_t object, uint64_t offset, uint64_t length,
|
||||
for (int i = 0; i < numbufs; i++) {
|
||||
dbuf = dbp[i];
|
||||
db = (dmu_buf_impl_t *)dbuf;
|
||||
bp = db->db_blkptr;
|
||||
|
||||
mutex_enter(&db->db_mtx);
|
||||
|
||||
/*
|
||||
* If the block is not on the disk yet, it has no BP assigned.
|
||||
@@ -2212,10 +2213,16 @@ dmu_read_l0_bps(objset_t *os, uint64_t object, uint64_t offset, uint64_t length,
|
||||
* The block was modified in the same
|
||||
* transaction group.
|
||||
*/
|
||||
mutex_exit(&db->db_mtx);
|
||||
error = SET_ERROR(EAGAIN);
|
||||
goto out;
|
||||
}
|
||||
} else {
|
||||
bp = db->db_blkptr;
|
||||
}
|
||||
|
||||
mutex_exit(&db->db_mtx);
|
||||
|
||||
if (bp == NULL) {
|
||||
/*
|
||||
* The block was created in this transaction group,
|
||||
@@ -2273,19 +2280,23 @@ dmu_brt_clone(objset_t *os, uint64_t object, uint64_t offset, uint64_t length,
|
||||
ASSERT(db->db_blkid != DMU_BONUS_BLKID);
|
||||
ASSERT(BP_IS_HOLE(bp) || dbuf->db_size == BP_GET_LSIZE(bp));
|
||||
|
||||
if (db->db_state == DB_UNCACHED) {
|
||||
/*
|
||||
* XXX-PJD: If the dbuf is already cached, calling
|
||||
* dmu_buf_will_not_fill() will panic on assertion
|
||||
* (db->db_buf == NULL) in dbuf_clear_data(),
|
||||
* which is called from dbuf_noread() in DB_NOFILL
|
||||
* case. I'm not 100% sure this is the right thing
|
||||
* to do, but it seems to work.
|
||||
*/
|
||||
dmu_buf_will_not_fill(dbuf, tx);
|
||||
mutex_enter(&db->db_mtx);
|
||||
|
||||
VERIFY(!dbuf_undirty(db, tx));
|
||||
ASSERT(list_head(&db->db_dirty_records) == NULL);
|
||||
if (db->db_buf != NULL) {
|
||||
arc_buf_destroy(db->db_buf, db);
|
||||
db->db_buf = NULL;
|
||||
}
|
||||
|
||||
mutex_exit(&db->db_mtx);
|
||||
|
||||
dmu_buf_will_not_fill(dbuf, tx);
|
||||
|
||||
mutex_enter(&db->db_mtx);
|
||||
|
||||
dr = list_head(&db->db_dirty_records);
|
||||
VERIFY(dr != NULL);
|
||||
ASSERT3U(dr->dr_txg, ==, tx->tx_txg);
|
||||
dl = &dr->dt.dl;
|
||||
dl->dr_overridden_by = *bp;
|
||||
@@ -2301,6 +2312,8 @@ dmu_brt_clone(objset_t *os, uint64_t object, uint64_t offset, uint64_t length,
|
||||
BP_PHYSICAL_BIRTH(bp);
|
||||
}
|
||||
|
||||
mutex_exit(&db->db_mtx);
|
||||
|
||||
/*
|
||||
* When data in embedded into BP there is no need to create
|
||||
* BRT entry as there is no data block. Just copy the BP as
|
||||
|
||||
Reference in New Issue
Block a user