Re: [PATCH] btrfs: Fix the return value in case of error in 'btrfs_mark_extent_written()'

From: David Sterba
Date: Wed Oct 17 2018 - 10:11:01 EST

Next message: Stanimir Varbanov: "Re: [PATCH v12 0/5] Venus updates - PIL"
Previous message: Andi Kleen: "Re: l1tf: Kernel suggests I throw away third of my memory. I'd rather not"
In reply to: Christophe JAILLET: "[PATCH] btrfs: Fix the return value in case of error in 'btrfs_mark_extent_written()'"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Oct 17, 2018 at 11:13:59AM +0200, Christophe JAILLET wrote:
> We return 0 unconditionally in most of the error handling paths of
> 'btrfs_mark_extent_written()'.
> However, 'ret' is set to some error codes in several error handling paths.
>
> Return 'ret' instead to propagate the error code.
>
> Fixes: 9c8e63db1de9 ("Btrfs: kill BUG_ON()'s in btrfs_mark_extent_written")
> Signed-off-by: Christophe JAILLET <christophe.jaillet@xxxxxxxxxx>
> ---
> This patch proposal is purely speculative.
> I'm not sure at all that returning 'ret' is correct (but it looks like it
> is :) )

Agreed.

> What puzzles me is when 'ret' is set, 'btrfs_abort_transaction()' is also
> called.
> However, the only caller of 'btrfs_mark_extent_written()' (i.e.
> 'btrfs_finish_ordered_io()') also calls 'btrfs_abort_transaction()' if an
> error is returned.
> So returning an error code here, would lead to a double call to this abort
> function.

Calling abort multiple times shuld not hurt, there's a bit set atomically
so that only the first time the stacktrace is printed. There's
possiblity of the trans->aborted value overwrite if two completely
different aborts happen exactly at the same time, but still both values
gen printed in the log so there's enough information.

> I'm usure of if it is correct and/or intented.
> If returning 'ret' is correct, should we also axe the 'btrfs_abort_transaction()'
> calls here, and leave the caller do the clean-up?

This depends on the context where the abort is used. Functions that do a
lot of things but do not start the transaction are allowed to call abort
after the first unrecoverable failure, so this possibly logs the exact
error. If the abort is only in the caller, we would not know which of
the many calls in btrfs_mark_extent_written failed.

> Before the commit in the Fixes tag, we were BUGing_ON in case of errror. So
> propagating the error was pointless.

Right, now the error must be propagated to btrfs_finish_ordered_io so
the "if (ret < 0) abort" is not skipped and code continues to
add_pending_csums, btrfs_update_inode_fallback etc.

Good catch, please resend with updated changelog, you can use the
relevant parts of my comments above to explain what's wrong. Thanks.

Next message: Stanimir Varbanov: "Re: [PATCH v12 0/5] Venus updates - PIL"
Previous message: Andi Kleen: "Re: l1tf: Kernel suggests I throw away third of my memory. I'd rather not"
In reply to: Christophe JAILLET: "[PATCH] btrfs: Fix the return value in case of error in 'btrfs_mark_extent_written()'"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]