FEX-Emu/linux
1
0
Fork 0
mirror of https://github.com/FEX-Emu/linux.git synced 2024-12-16 14:02:10 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Btrfs: set trans to null in reserve_metadata_bytes if we commit the transaction

Browse Source 
btrfs_commit_transaction will free our trans, but because we pass trans to
shrink_delalloc we could possibly have a use after free situation.  So instead
if we commit the transaction, set trans to null and set committed to true so we
don't keep trying to commit a transaction.  This fixes a panic I could reproduce
at will.  Thanks,

Signed-off-by: Josef Bacik <josef@redhat.com>
This commit is contained in:
Josef Bacik 2010-10-26 12:52:53 -04:00
parent 0e78340f3c
commit 382279336f
1 changed files with 6 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
fs/btrfs/extent-tree.c
View File

@ -3157,6 +3157,7 @@ static int reserve_metadata_bytes(struct btrfs_trans_handle *trans,
int retries = 0; int retries = 0;
int ret = 0; int ret = 0;
bool reserved = false; bool reserved = false;
bool committed = false;
again: again:
ret = -ENOSPC; ret = -ENOSPC;
@ -3249,17 +3250,19 @@ again:
goto out; goto out;
ret = -EAGAIN; ret = -EAGAIN;
if (trans) if (trans || committed)
goto out; goto out;
ret = -ENOSPC; ret = -ENOSPC;
trans = btrfs_join_transaction(root, 1); trans = btrfs_join_transaction(root, 1);
if (IS_ERR(trans)) if (IS_ERR(trans))
goto out; goto out;
ret = btrfs_commit_transaction(trans, root); ret = btrfs_commit_transaction(trans, root);
if (!ret) if (!ret) {
trans = NULL;
committed = true;
goto again; goto again;
}
out: out:
if (reserved) { if (reserved) {