* [PATCH v2 0/2] Transaction abort macro optimizations
@ 2026-05-07 17:59 David Sterba
2026-05-07 17:59 ` [PATCH v2 1/2] btrfs: validate negative error number passed to btrfs_abort_transaction() David Sterba
2026-05-07 17:59 ` [PATCH v2 2/2] btrfs: simplify how first hit is passed to __btrfs_abort_transaction() David Sterba
0 siblings, 2 replies; 3+ messages in thread
From: David Sterba @ 2026-05-07 17:59 UTC (permalink / raw)
To: linux-btrfs; +Cc: David Sterba
Optimize size of the macro btrfs_abort_transaction() by encoding the
'first hit' logic into the error code. Additionally also verify that the
error code is negative.
v2:
- add patch with the verification
- in second patch reuse local variable for btrfs_abort_should_print_stack()
David Sterba (2):
btrfs: validate negative error number passed to
btrfs_abort_transaction()
btrfs: simplify how first hit is passed to __btrfs_abort_transaction()
fs/btrfs/transaction.c | 13 ++++++++++++-
fs/btrfs/transaction.h | 41 ++++++++++++++++++++++++++++++++++-------
2 files changed, 46 insertions(+), 8 deletions(-)
--
2.53.0
^ permalink raw reply [flat|nested] 3+ messages in thread
* [PATCH v2 1/2] btrfs: validate negative error number passed to btrfs_abort_transaction()
2026-05-07 17:59 [PATCH v2 0/2] Transaction abort macro optimizations David Sterba
@ 2026-05-07 17:59 ` David Sterba
2026-05-07 17:59 ` [PATCH v2 2/2] btrfs: simplify how first hit is passed to __btrfs_abort_transaction() David Sterba
1 sibling, 0 replies; 3+ messages in thread
From: David Sterba @ 2026-05-07 17:59 UTC (permalink / raw)
To: linux-btrfs; +Cc: David Sterba
In preparation to encode more information to the error value add a step
that verifies if the value is valid (i.e. < 0). This works for
compile-time and runtime (in debugging mode).
The compile-time check recognizes direct constants and defines an array
type. An invalid condition leads to negative array size which is caught
by compiler.
The runtime check constructs the array type from the condition and only
verifies the correct size, as we don't need to tweak the size to be
negative.
The sizeof() expressions do not generate any code. In the debugging
config the warning adds about 9KiB of btrfs.ko code size.
The array size trick is needed as we can't use static_array(), not even
with __builtin_constant_p().
Sample error message:
In file included from inode.c:40:
inode.c: In function ‘__cow_file_range_inline’:
transaction.h:261:26: error: size of unnamed array is negative
261 | (void)sizeof(char[-!(__builtin_constant_p(error) ? (error) < 0 : 1)]); \
| ^
transaction.h:275:9: note: in expansion of macro ‘VERIFY_NEGATIVE_ERROR’
275 | VERIFY_NEGATIVE_ERROR(error); \
| ^~~~~~~~~~~~~~~~~~~~~
inode.c:665:17: note: in expansion of macro ‘btrfs_abort_transaction’
665 | btrfs_abort_transaction(trans, 17);
| ^~~~~~~~~~~~~~~~~~~~~~~
Signed-off-by: David Sterba <dsterba@suse.com>
---
fs/btrfs/transaction.h | 24 ++++++++++++++++++++++++
1 file changed, 24 insertions(+)
diff --git a/fs/btrfs/transaction.h b/fs/btrfs/transaction.h
index f1cb05460cec..72ab32c8ddca 100644
--- a/fs/btrfs/transaction.h
+++ b/fs/btrfs/transaction.h
@@ -242,6 +242,29 @@ static inline bool btrfs_abort_should_print_stack(int error)
return true;
}
+/*
+ * Compile-time and run-time verification of error passed to transaction abort.
+ * Direct constants will be caught at compile time, errors read from variables
+ * can be caught only at run-time and will warn under debugging config.
+ *
+ * How verification works:
+ * - accepted builtin constants are all -EIO and such
+ * - for compile-time check, invalid condition produces a negative-sized array
+ * type, valid zero-sized
+ * - when a variable is passed as error the first check is a no-op
+ * - with enabled debugging, the second array type size is constructed from the
+ * real variable value, valid condition produces array of size 1
+ * - sizeof(type) does not generate any code
+ */
+#define VERIFY_NEGATIVE_ERROR(error) \
+do { \
+ (void)sizeof(char[-!(__builtin_constant_p(error) ? (error) < 0 : 1)]); \
+ if (IS_ENABLED(CONFIG_BTRFS_DEBUG)) { \
+ if (sizeof(char[(error) < 0]) != 1) \
+ DEBUG_WARN("error >= 0 passed to btrfs_abort_transaction()"); \
+ } \
+} while(0)
+
/*
* Call btrfs_abort_transaction as early as possible when an error condition is
* detected, that way the exact stack trace is reported for some errors.
@@ -249,6 +272,7 @@ static inline bool btrfs_abort_should_print_stack(int error)
#define btrfs_abort_transaction(trans, error) \
do { \
bool __first = false; \
+ VERIFY_NEGATIVE_ERROR(error); \
/* Report first abort since mount */ \
if (!test_and_set_bit(BTRFS_FS_STATE_TRANS_ABORTED, \
&((trans)->fs_info->fs_state))) { \
--
2.53.0
^ permalink raw reply related [flat|nested] 3+ messages in thread
* [PATCH v2 2/2] btrfs: simplify how first hit is passed to __btrfs_abort_transaction()
2026-05-07 17:59 [PATCH v2 0/2] Transaction abort macro optimizations David Sterba
2026-05-07 17:59 ` [PATCH v2 1/2] btrfs: validate negative error number passed to btrfs_abort_transaction() David Sterba
@ 2026-05-07 17:59 ` David Sterba
1 sibling, 0 replies; 3+ messages in thread
From: David Sterba @ 2026-05-07 17:59 UTC (permalink / raw)
To: linux-btrfs; +Cc: David Sterba
Optimize the btrfs_abort_transaction() for size as it (by our
convention) must be put right after the error condition is detected.
The exact file:line is reported so there's a portion that must be
inlined. As this is cold code it bloats functions. In previous patch
"btrfs: move transaction abort message to __btrfs_abort_transaction()"
the error message was moved to the common helper, saving like 20KiB of
btrfs.ko and several instructions per call site and some stack space.
There's little left to be optimized, we need to keep the atomic
test_and_set_bit() and to convey that as 'first hit' to
__btrfs_abort_transaction().
Right now it's a bool, which takes 8 bytes on stack for each call but
it's 1 bit of information. We can encode that to some of the other
parameters.
For that let's use the 'error' parameter, by convention it's negative
errno so we can reliably detect if it's the first hit or a later error.
Also the negation is usually implemented by a single instruction (NEG on
x86_64) so the resulting object code is kept short.
This reduces btrfs.ko by 8K and stack in several functions by 8 bytes.
Cumulative effect with the other commit is -30K of btrfs.ko. While the
encoding is an implementation detail, it's contained within the API.
Making the transaction abort calls very light is desired.
Signed-off-by: David Sterba <dsterba@suse.com>
---
fs/btrfs/transaction.c | 13 ++++++++++++-
fs/btrfs/transaction.h | 17 ++++++++++-------
2 files changed, 22 insertions(+), 8 deletions(-)
diff --git a/fs/btrfs/transaction.c b/fs/btrfs/transaction.c
index 0fd596e2c65b..bc99d1200d28 100644
--- a/fs/btrfs/transaction.c
+++ b/fs/btrfs/transaction.c
@@ -2722,12 +2722,23 @@ int btrfs_clean_one_deleted_snapshot(struct btrfs_fs_info *fs_info)
*
* We'll complete the cleanup in btrfs_end_transaction and
* btrfs_commit_transaction.
+ *
+ * Note: the parameter @error encodes whether the transactin abort was first hit
+ * (setting the FS_ERROR state bit in btrfs_abort_transaction())
+ * - positive number - first hit
+ * - negative number - abort after it was already done
*/
void __cold __btrfs_abort_transaction(struct btrfs_trans_handle *trans,
const char *function,
- unsigned int line, int error, bool first_hit)
+ unsigned int line, int error)
{
struct btrfs_fs_info *fs_info = trans->fs_info;
+ bool first_hit = false;
+
+ if (error > 0) {
+ error = -error;
+ first_hit = true;
+ }
WRITE_ONCE(trans->aborted, error);
WRITE_ONCE(trans->transaction->aborted, error);
diff --git a/fs/btrfs/transaction.h b/fs/btrfs/transaction.h
index 72ab32c8ddca..5e4b1106fd90 100644
--- a/fs/btrfs/transaction.h
+++ b/fs/btrfs/transaction.h
@@ -266,21 +266,24 @@ do { \
} while(0)
/*
- * Call btrfs_abort_transaction as early as possible when an error condition is
- * detected, that way the exact stack trace is reported for some errors.
+ * Call btrfs_abort_transaction() as early as possible when an error condition
+ * is detected, that way the exact stack trace is reported for some errors.
+ *
+ * Error number must be negative as it encodes wheather it's the first abort.
*/
#define btrfs_abort_transaction(trans, error) \
do { \
- bool __first = false; \
+ int __error = (error); \
+ \
VERIFY_NEGATIVE_ERROR(error); \
/* Report first abort since mount */ \
if (!test_and_set_bit(BTRFS_FS_STATE_TRANS_ABORTED, \
&((trans)->fs_info->fs_state))) { \
- __first = true; \
- WARN_ON(btrfs_abort_should_print_stack(error)); \
+ WARN_ON(btrfs_abort_should_print_stack(__error)); \
+ __error = -__error; \
} \
__btrfs_abort_transaction((trans), __func__, \
- __LINE__, (error), __first); \
+ __LINE__, __error); \
} while (0)
int btrfs_end_transaction(struct btrfs_trans_handle *trans);
@@ -318,7 +321,7 @@ void btrfs_add_dropped_root(struct btrfs_trans_handle *trans,
void btrfs_trans_release_chunk_metadata(struct btrfs_trans_handle *trans);
void __cold __btrfs_abort_transaction(struct btrfs_trans_handle *trans,
const char *function,
- unsigned int line, int error, bool first_hit);
+ unsigned int line, int error);
int __init btrfs_transaction_init(void);
void __cold btrfs_transaction_exit(void);
--
2.53.0
^ permalink raw reply related [flat|nested] 3+ messages in thread
end of thread, other threads:[~2026-05-07 18:00 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2026-05-07 17:59 [PATCH v2 0/2] Transaction abort macro optimizations David Sterba
2026-05-07 17:59 ` [PATCH v2 1/2] btrfs: validate negative error number passed to btrfs_abort_transaction() David Sterba
2026-05-07 17:59 ` [PATCH v2 2/2] btrfs: simplify how first hit is passed to __btrfs_abort_transaction() David Sterba
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox