review.tizen.org Git - platform/kernel/linux-rpi.git/commit

author	Josef Bacik <josef@toxicpanda.com>
	Thu, 14 Jan 2021 19:02:46 +0000 (14:02 -0500)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Thu, 4 Mar 2021 10:38:29 +0000 (11:38 +0100)
commit	4d3edf72d6b56cdb9011dc4246f74c0d9e357cbc
tree	4f303aad92c4ca424c0299f63868171b26462e2f	tree \| snapshot
parent	a1a5cc25489a69fa8846af5d1694ddb5149d5ea7	commit \| diff

btrfs: abort the transaction if we fail to inc ref in btrfs_copy_root

commit 867ed321f90d06aaba84e2c91de51cd3038825ef upstream.

While testing my error handling patches, I added a error injection site
at btrfs_inc_extent_ref, to validate the error handling I added was
doing the correct thing.  However I hit a pretty ugly corruption while
doing this check, with the following error injection stack trace:

btrfs_inc_extent_ref
  btrfs_copy_root
    create_reloc_root
      btrfs_init_reloc_root
btrfs_record_root_in_trans
  btrfs_start_transaction
    btrfs_update_inode
      btrfs_update_time
touch_atime
  file_accessed
    btrfs_file_mmap

This is because we do not catch the error from btrfs_inc_extent_ref,
which in practice would be ENOMEM, which means we lose the extent
references for a root that has already been allocated and inserted,
which is the problem.  Fix this by aborting the transaction if we fail
to do the reference modification.

CC: stable@vger.kernel.org # 4.4+
Signed-off-by: Josef Bacik <josef@toxicpanda.com>
Reviewed-by: David Sterba <dsterba@suse.com>
Signed-off-by: David Sterba <dsterba@suse.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>