dbuf: separate refcount calls for dbuf and dbuf_user

[robn]

Motivation and Context

Investigation on #15802 found this. This is probably not the fix for that, but it is in the way of hunting it down.

Description

In 92dc4ad I updated the dbuf_cache accounting to track the size of userdata associated with dbufs. This adds the size of the dbuf+userdata together in a single call to zfs_refcount_add_many(), but sometime removes them in separate calls to zfs_refcount_remove_many(), if dbuf and userdata are evicted separately.

What I didn't realise is that when refcount tracking is on, zfs_refcount_add_many() and zfs_refcount_remove_many() are expected to be paired, with their second & third args (count & holder) the same on both sides. Splitting the remove part into two calls means the counts don't match up, tripping a panic.

This commit fixes that, by always adding and removing the dbuf and userdata counts separately.

How Has This Been Tested?

Just light sanity checking Test suite run with debug enabled is in progress.

Types of changes

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Performance enhancement (non-breaking change which improves efficiency)
• Code cleanup (non-breaking change which makes code smaller or more readable)
• Breaking change (fix or feature that would cause existing functionality to change)
• Library ABI change (libzfs, libzfs_core, libnvpair, libuutil and libzfsbootenv)
• Documentation (a change to man pages or other documentation)

Checklist:

• My code follows the OpenZFS code style requirements.
• I have updated the documentation accordingly.
• I have read the contributing document.
• I have added tests to cover my changes.
• I have run the ZFS Test Suite with this change applied.
• All commit messages are properly formatted and contain Signed-off-by.

[markjdb]

If I boot the affected system with this patch, I get the panic below. Though, this is the result of patching FreeBSD's in-tree copy of OpenZFS, which might be different enough from master to cause problems?

panic: No such hold 0xffffa7ffd1782d80 on refcount ffff0000017a7d80                                                                                                                                                                                                                                                           
cpuid = 35                                                                                                                                                                                                                                                                                                                    
time = 9                                                                                                                                                                                                                                                                                                                      
KDB: stack backtrace:                                                                                                                                                                                                                                                                                                         
db_trace_self() at db_trace_self                                                                                                                                                                                                                                                                                              
db_trace_self_wrapper() at db_trace_self_wrapper+0x38                                                                                                                                                                                                                                                                         
vpanic() at vpanic+0x1ac                                                                                                                                                                                                                                                                                                      
panic() at panic+0x48                                                                                                                                                                                                                                                                                                         
zfs_refcount_remove_many() at zfs_refcount_remove_many+0x1e8                                                                                                                                                                                                                                                                  
dbuf_hold_impl() at dbuf_hold_impl+0x520                                                                                                                                                                                                                                                                                      
dbuf_hold() at dbuf_hold+0x28                                                                                                                                                                                                                                                                                                 
dmu_buf_hold_noread_by_dnode() at dmu_buf_hold_noread_by_dnode+0x54                                                                                                                                                                                                                                                           
dmu_buf_hold_by_dnode() at dmu_buf_hold_by_dnode+0x20                                                                                                                                                                                                                                                                         
zap_lockdir() at zap_lockdir+0x58                                                                                                                                                                                                                                                                                             
zap_lookup_norm() at zap_lookup_norm+0x54                                                                                                                                                                                                                                                                                     
zap_lookup() at zap_lookup+0x20                                                                                                                                                                                                                                                                                               
spa_load() at spa_load+0x150                                                                                                                                                                                                                                                                                                  
spa_load_best() at spa_load_best+0x70                                                                                                                                                                                                                                                                                         
spa_open_common() at spa_open_common+0x14c                                                                                                                                                                                                                                                                                    
dsl_pool_hold() at dsl_pool_hold+0x28                                                                                                                                                                                                                                                                                         
dmu_objset_own() at dmu_objset_own+0x4c                                                                                                                                                                                                                                                                                       
zfsvfs_create() at zfsvfs_create+0xb4                                                                                                                                                                                                                                                                                         
$x.1() at $x.1+0x2d4                                                                                                                                                                                                                                                                                                          
vfs_domount_first() at vfs_domount_first+0x23c                                                                                                                                                                                                                                                                                
vfs_domount() at vfs_domount+0x2d4                                                                                                                                                                                                                                                                                            
vfs_donmount() at vfs_donmount+0x844                                                                                                                                                                                                                                                                                          
kernel_mount() at kernel_mount+0x64                                                                                                                                                                                                                                                                                           
parse_mount() at parse_mount+0x4a0                                                                                                                                                                                                                                                                                            
vfs_mountroot() at vfs_mountroot+0x5ac                                                                                                                                                                                                                                                                                        
start_init() at start_init+0x2c                                                                                                                                                                                                                                                                                               
fork_exit() at fork_exit+0x78                                                                                                                                                                                                                                                                                                 
fork_trampoline() at fork_trampoline+0x18                                                                                                                                                                                                                                                                                     
KDB: enter: panic                                                                                                                                                                                                                                                                                                             
[ thread pid 1 tid 100002 ]                                                                                                                                                                                                                                                                                                   
Stopped at      kdb_enter+0x48: str     xzr, [x19, #2048]

[robn]

Ugh, that's my mistake - overexcited copypasta. Updated.

Re in-tree, it'll be the same in main, but not in 14; specifically, after freebsd/freebsd-src@a2b560cc. It wouldn't apply cleanly without that, so I reckon you're good.

[markjdb]

Ugh, that's my mistake - overexcited copypasta. Updated.

The new version appears to fix the problem for me, thanks! As expected, the ARC leak is still there.