fs/zfs/vdev.c

168404Spjd/*
168404Spjd * CDDL HEADER START
168404Spjd *
168404Spjd * The contents of this file are subject to the terms of the
168404Spjd * Common Development and Distribution License (the "License").
168404Spjd * You may not use this file except in compliance with the License.
168404Spjd *
168404Spjd * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
168404Spjd * or http://www.opensolaris.org/os/licensing.
168404Spjd * See the License for the specific language governing permissions
168404Spjd * and limitations under the License.
168404Spjd *
168404Spjd * When distributing Covered Code, include this CDDL HEADER in each
168404Spjd * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
168404Spjd * If applicable, add the following below this CDDL HEADER, with the
168404Spjd * fields enclosed by brackets "[]" replaced with your own identifying
168404Spjd * information: Portions Copyright [yyyy] [name of copyright owner]
168404Spjd *
168404Spjd * CDDL HEADER END
168404Spjd */
168404Spjd
168404Spjd/*
219089Spjd * Copyright (c) 2005, 2010, Oracle and/or its affiliates. All rights reserved.
228103Smm * Copyright 2011 Nexenta Systems, Inc.  All rights reserved.
228103Smm * Copyright (c) 2011 by Delphix. All rights reserved.
168404Spjd */
168404Spjd
168404Spjd#include <sys/zfs_context.h>
168404Spjd#include <sys/fm/fs/zfs.h>
168404Spjd#include <sys/spa.h>
168404Spjd#include <sys/spa_impl.h>
168404Spjd#include <sys/dmu.h>
168404Spjd#include <sys/dmu_tx.h>
168404Spjd#include <sys/vdev_impl.h>
168404Spjd#include <sys/uberblock_impl.h>
168404Spjd#include <sys/metaslab.h>
168404Spjd#include <sys/metaslab_impl.h>
168404Spjd#include <sys/space_map.h>
168404Spjd#include <sys/zio.h>
168404Spjd#include <sys/zap.h>
168404Spjd#include <sys/fs/zfs.h>
185029Spjd#include <sys/arc.h>
213197Smm#include <sys/zil.h>
219089Spjd#include <sys/dsl_scan.h>
168404Spjd
168404SpjdSYSCTL_DECL(_vfs_zfs);
168404SpjdSYSCTL_NODE(_vfs_zfs, OID_AUTO, vdev, CTLFLAG_RW, 0, "ZFS VDEV");
168404Spjd
168404Spjd/*
168404Spjd * Virtual device management.
168404Spjd */
168404Spjd
168404Spjdstatic vdev_ops_t *vdev_ops_table[] = {
168404Spjd	&vdev_root_ops,
168404Spjd	&vdev_raidz_ops,
168404Spjd	&vdev_mirror_ops,
168404Spjd	&vdev_replacing_ops,
168404Spjd	&vdev_spare_ops,
168404Spjd#ifdef _KERNEL
168404Spjd	&vdev_geom_ops,
168404Spjd#else
168404Spjd	&vdev_disk_ops,
185029Spjd#endif
168404Spjd	&vdev_file_ops,
168404Spjd	&vdev_missing_ops,
219089Spjd	&vdev_hole_ops,
168404Spjd	NULL
168404Spjd};
168404Spjd
185029Spjd/* maximum scrub/resilver I/O queue per leaf vdev */
185029Spjdint zfs_scrub_limit = 10;
168404Spjd
185029SpjdTUNABLE_INT("vfs.zfs.scrub_limit", &zfs_scrub_limit);
185029SpjdSYSCTL_INT(_vfs_zfs, OID_AUTO, scrub_limit, CTLFLAG_RDTUN, &zfs_scrub_limit, 0,
185029Spjd    "Maximum scrub/resilver I/O queue");
185029Spjd
168404Spjd/*
168404Spjd * Given a vdev type, return the appropriate ops vector.
168404Spjd */
168404Spjdstatic vdev_ops_t *
168404Spjdvdev_getops(const char *type)
168404Spjd{
168404Spjd	vdev_ops_t *ops, **opspp;
168404Spjd
168404Spjd	for (opspp = vdev_ops_table; (ops = *opspp) != NULL; opspp++)
168404Spjd		if (strcmp(ops->vdev_op_type, type) == 0)
168404Spjd			break;
168404Spjd
168404Spjd	return (ops);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Default asize function: return the MAX of psize with the asize of
168404Spjd * all children.  This is what's used by anything other than RAID-Z.
168404Spjd */
168404Spjduint64_t
168404Spjdvdev_default_asize(vdev_t *vd, uint64_t psize)
168404Spjd{
168404Spjd	uint64_t asize = P2ROUNDUP(psize, 1ULL << vd->vdev_top->vdev_ashift);
168404Spjd	uint64_t csize;
168404Spjd
219089Spjd	for (int c = 0; c < vd->vdev_children; c++) {
168404Spjd		csize = vdev_psize_to_asize(vd->vdev_child[c], psize);
168404Spjd		asize = MAX(asize, csize);
168404Spjd	}
168404Spjd
168404Spjd	return (asize);
168404Spjd}
168404Spjd
168404Spjd/*
219089Spjd * Get the minimum allocatable size. We define the allocatable size as
219089Spjd * the vdev's asize rounded to the nearest metaslab. This allows us to
219089Spjd * replace or attach devices which don't have the same physical size but
219089Spjd * can still satisfy the same number of allocations.
168404Spjd */
168404Spjduint64_t
219089Spjdvdev_get_min_asize(vdev_t *vd)
168404Spjd{
219089Spjd	vdev_t *pvd = vd->vdev_parent;
168404Spjd
219089Spjd	/*
219089Spjd	 * The our parent is NULL (inactive spare or cache) or is the root,
219089Spjd	 * just return our own asize.
219089Spjd	 */
219089Spjd	if (pvd == NULL)
219089Spjd		return (vd->vdev_asize);
168404Spjd
168404Spjd	/*
219089Spjd	 * The top-level vdev just returns the allocatable size rounded
219089Spjd	 * to the nearest metaslab.
168404Spjd	 */
219089Spjd	if (vd == vd->vdev_top)
219089Spjd		return (P2ALIGN(vd->vdev_asize, 1ULL << vd->vdev_ms_shift));
168404Spjd
219089Spjd	/*
219089Spjd	 * The allocatable space for a raidz vdev is N * sizeof(smallest child),
219089Spjd	 * so each child must provide at least 1/Nth of its asize.
219089Spjd	 */
219089Spjd	if (pvd->vdev_ops == &vdev_raidz_ops)
219089Spjd		return (pvd->vdev_min_asize / pvd->vdev_children);
168404Spjd
219089Spjd	return (pvd->vdev_min_asize);
219089Spjd}
168404Spjd
219089Spjdvoid
219089Spjdvdev_set_min_asize(vdev_t *vd)
219089Spjd{
219089Spjd	vd->vdev_min_asize = vdev_get_min_asize(vd);
219089Spjd
219089Spjd	for (int c = 0; c < vd->vdev_children; c++)
219089Spjd		vdev_set_min_asize(vd->vdev_child[c]);
168404Spjd}
168404Spjd
168404Spjdvdev_t *
168404Spjdvdev_lookup_top(spa_t *spa, uint64_t vdev)
168404Spjd{
168404Spjd	vdev_t *rvd = spa->spa_root_vdev;
168404Spjd
185029Spjd	ASSERT(spa_config_held(spa, SCL_ALL, RW_READER) != 0);
185029Spjd
185029Spjd	if (vdev < rvd->vdev_children) {
185029Spjd		ASSERT(rvd->vdev_child[vdev] != NULL);
168404Spjd		return (rvd->vdev_child[vdev]);
185029Spjd	}
168404Spjd
168404Spjd	return (NULL);
168404Spjd}
168404Spjd
168404Spjdvdev_t *
168404Spjdvdev_lookup_by_guid(vdev_t *vd, uint64_t guid)
168404Spjd{
168404Spjd	vdev_t *mvd;
168404Spjd
168404Spjd	if (vd->vdev_guid == guid)
168404Spjd		return (vd);
168404Spjd
219089Spjd	for (int c = 0; c < vd->vdev_children; c++)
168404Spjd		if ((mvd = vdev_lookup_by_guid(vd->vdev_child[c], guid)) !=
168404Spjd		    NULL)
168404Spjd			return (mvd);
168404Spjd
168404Spjd	return (NULL);
168404Spjd}
168404Spjd
168404Spjdvoid
168404Spjdvdev_add_child(vdev_t *pvd, vdev_t *cvd)
168404Spjd{
168404Spjd	size_t oldsize, newsize;
168404Spjd	uint64_t id = cvd->vdev_id;
168404Spjd	vdev_t **newchild;
168404Spjd
185029Spjd	ASSERT(spa_config_held(cvd->vdev_spa, SCL_ALL, RW_WRITER) == SCL_ALL);
168404Spjd	ASSERT(cvd->vdev_parent == NULL);
168404Spjd
168404Spjd	cvd->vdev_parent = pvd;
168404Spjd
168404Spjd	if (pvd == NULL)
168404Spjd		return;
168404Spjd
168404Spjd	ASSERT(id >= pvd->vdev_children || pvd->vdev_child[id] == NULL);
168404Spjd
168404Spjd	oldsize = pvd->vdev_children * sizeof (vdev_t *);
168404Spjd	pvd->vdev_children = MAX(pvd->vdev_children, id + 1);
168404Spjd	newsize = pvd->vdev_children * sizeof (vdev_t *);
168404Spjd
168404Spjd	newchild = kmem_zalloc(newsize, KM_SLEEP);
168404Spjd	if (pvd->vdev_child != NULL) {
168404Spjd		bcopy(pvd->vdev_child, newchild, oldsize);
168404Spjd		kmem_free(pvd->vdev_child, oldsize);
168404Spjd	}
168404Spjd
168404Spjd	pvd->vdev_child = newchild;
168404Spjd	pvd->vdev_child[id] = cvd;
168404Spjd
168404Spjd	cvd->vdev_top = (pvd->vdev_top ? pvd->vdev_top: cvd);
168404Spjd	ASSERT(cvd->vdev_top->vdev_parent->vdev_parent == NULL);
168404Spjd
168404Spjd	/*
168404Spjd	 * Walk up all ancestors to update guid sum.
168404Spjd	 */
168404Spjd	for (; pvd != NULL; pvd = pvd->vdev_parent)
168404Spjd		pvd->vdev_guid_sum += cvd->vdev_guid_sum;
168404Spjd}
168404Spjd
168404Spjdvoid
168404Spjdvdev_remove_child(vdev_t *pvd, vdev_t *cvd)
168404Spjd{
168404Spjd	int c;
168404Spjd	uint_t id = cvd->vdev_id;
168404Spjd
168404Spjd	ASSERT(cvd->vdev_parent == pvd);
168404Spjd
168404Spjd	if (pvd == NULL)
168404Spjd		return;
168404Spjd
168404Spjd	ASSERT(id < pvd->vdev_children);
168404Spjd	ASSERT(pvd->vdev_child[id] == cvd);
168404Spjd
168404Spjd	pvd->vdev_child[id] = NULL;
168404Spjd	cvd->vdev_parent = NULL;
168404Spjd
168404Spjd	for (c = 0; c < pvd->vdev_children; c++)
168404Spjd		if (pvd->vdev_child[c])
168404Spjd			break;
168404Spjd
168404Spjd	if (c == pvd->vdev_children) {
168404Spjd		kmem_free(pvd->vdev_child, c * sizeof (vdev_t *));
168404Spjd		pvd->vdev_child = NULL;
168404Spjd		pvd->vdev_children = 0;
168404Spjd	}
168404Spjd
168404Spjd	/*
168404Spjd	 * Walk up all ancestors to update guid sum.
168404Spjd	 */
168404Spjd	for (; pvd != NULL; pvd = pvd->vdev_parent)
168404Spjd		pvd->vdev_guid_sum -= cvd->vdev_guid_sum;
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Remove any holes in the child array.
168404Spjd */
168404Spjdvoid
168404Spjdvdev_compact_children(vdev_t *pvd)
168404Spjd{
168404Spjd	vdev_t **newchild, *cvd;
168404Spjd	int oldc = pvd->vdev_children;
219089Spjd	int newc;
168404Spjd
185029Spjd	ASSERT(spa_config_held(pvd->vdev_spa, SCL_ALL, RW_WRITER) == SCL_ALL);
168404Spjd
219089Spjd	for (int c = newc = 0; c < oldc; c++)
168404Spjd		if (pvd->vdev_child[c])
168404Spjd			newc++;
168404Spjd
168404Spjd	newchild = kmem_alloc(newc * sizeof (vdev_t *), KM_SLEEP);
168404Spjd
219089Spjd	for (int c = newc = 0; c < oldc; c++) {
168404Spjd		if ((cvd = pvd->vdev_child[c]) != NULL) {
168404Spjd			newchild[newc] = cvd;
168404Spjd			cvd->vdev_id = newc++;
168404Spjd		}
168404Spjd	}
168404Spjd
168404Spjd	kmem_free(pvd->vdev_child, oldc * sizeof (vdev_t *));
168404Spjd	pvd->vdev_child = newchild;
168404Spjd	pvd->vdev_children = newc;
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Allocate and minimally initialize a vdev_t.
168404Spjd */
219089Spjdvdev_t *
168404Spjdvdev_alloc_common(spa_t *spa, uint_t id, uint64_t guid, vdev_ops_t *ops)
168404Spjd{
168404Spjd	vdev_t *vd;
168404Spjd
168404Spjd	vd = kmem_zalloc(sizeof (vdev_t), KM_SLEEP);
168404Spjd
168404Spjd	if (spa->spa_root_vdev == NULL) {
168404Spjd		ASSERT(ops == &vdev_root_ops);
168404Spjd		spa->spa_root_vdev = vd;
228103Smm		spa->spa_load_guid = spa_generate_guid(NULL);
168404Spjd	}
168404Spjd
219089Spjd	if (guid == 0 && ops != &vdev_hole_ops) {
168404Spjd		if (spa->spa_root_vdev == vd) {
168404Spjd			/*
168404Spjd			 * The root vdev's guid will also be the pool guid,
168404Spjd			 * which must be unique among all pools.
168404Spjd			 */
219089Spjd			guid = spa_generate_guid(NULL);
168404Spjd		} else {
168404Spjd			/*
168404Spjd			 * Any other vdev's guid must be unique within the pool.
168404Spjd			 */
219089Spjd			guid = spa_generate_guid(spa);
168404Spjd		}
168404Spjd		ASSERT(!spa_guid_exists(spa_guid(spa), guid));
168404Spjd	}
168404Spjd
168404Spjd	vd->vdev_spa = spa;
168404Spjd	vd->vdev_id = id;
168404Spjd	vd->vdev_guid = guid;
168404Spjd	vd->vdev_guid_sum = guid;
168404Spjd	vd->vdev_ops = ops;
168404Spjd	vd->vdev_state = VDEV_STATE_CLOSED;
219089Spjd	vd->vdev_ishole = (ops == &vdev_hole_ops);
168404Spjd
168404Spjd	mutex_init(&vd->vdev_dtl_lock, NULL, MUTEX_DEFAULT, NULL);
168404Spjd	mutex_init(&vd->vdev_stat_lock, NULL, MUTEX_DEFAULT, NULL);
185029Spjd	mutex_init(&vd->vdev_probe_lock, NULL, MUTEX_DEFAULT, NULL);
209962Smm	for (int t = 0; t < DTL_TYPES; t++) {
209962Smm		space_map_create(&vd->vdev_dtl[t], 0, -1ULL, 0,
209962Smm		    &vd->vdev_dtl_lock);
209962Smm	}
168404Spjd	txg_list_create(&vd->vdev_ms_list,
168404Spjd	    offsetof(struct metaslab, ms_txg_node));
168404Spjd	txg_list_create(&vd->vdev_dtl_list,
168404Spjd	    offsetof(struct vdev, vdev_dtl_node));
168404Spjd	vd->vdev_stat.vs_timestamp = gethrtime();
185029Spjd	vdev_queue_init(vd);
185029Spjd	vdev_cache_init(vd);
168404Spjd
168404Spjd	return (vd);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Allocate a new vdev.  The 'alloctype' is used to control whether we are
168404Spjd * creating a new vdev or loading an existing one - the behavior is slightly
168404Spjd * different for each case.
168404Spjd */
168404Spjdint
168404Spjdvdev_alloc(spa_t *spa, vdev_t **vdp, nvlist_t *nv, vdev_t *parent, uint_t id,
168404Spjd    int alloctype)
168404Spjd{
168404Spjd	vdev_ops_t *ops;
168404Spjd	char *type;
185029Spjd	uint64_t guid = 0, islog, nparity;
168404Spjd	vdev_t *vd;
168404Spjd
185029Spjd	ASSERT(spa_config_held(spa, SCL_ALL, RW_WRITER) == SCL_ALL);
168404Spjd
168404Spjd	if (nvlist_lookup_string(nv, ZPOOL_CONFIG_TYPE, &type) != 0)
168404Spjd		return (EINVAL);
168404Spjd
168404Spjd	if ((ops = vdev_getops(type)) == NULL)
168404Spjd		return (EINVAL);
168404Spjd
168404Spjd	/*
168404Spjd	 * If this is a load, get the vdev guid from the nvlist.
168404Spjd	 * Otherwise, vdev_alloc_common() will generate one for us.
168404Spjd	 */
168404Spjd	if (alloctype == VDEV_ALLOC_LOAD) {
168404Spjd		uint64_t label_id;
168404Spjd
168404Spjd		if (nvlist_lookup_uint64(nv, ZPOOL_CONFIG_ID, &label_id) ||
168404Spjd		    label_id != id)
168404Spjd			return (EINVAL);
168404Spjd
168404Spjd		if (nvlist_lookup_uint64(nv, ZPOOL_CONFIG_GUID, &guid) != 0)
168404Spjd			return (EINVAL);
168404Spjd	} else if (alloctype == VDEV_ALLOC_SPARE) {
168404Spjd		if (nvlist_lookup_uint64(nv, ZPOOL_CONFIG_GUID, &guid) != 0)
168404Spjd			return (EINVAL);
185029Spjd	} else if (alloctype == VDEV_ALLOC_L2CACHE) {
185029Spjd		if (nvlist_lookup_uint64(nv, ZPOOL_CONFIG_GUID, &guid) != 0)
185029Spjd			return (EINVAL);
219089Spjd	} else if (alloctype == VDEV_ALLOC_ROOTPOOL) {
219089Spjd		if (nvlist_lookup_uint64(nv, ZPOOL_CONFIG_GUID, &guid) != 0)
219089Spjd			return (EINVAL);
168404Spjd	}
168404Spjd
168404Spjd	/*
168404Spjd	 * The first allocated vdev must be of type 'root'.
168404Spjd	 */
168404Spjd	if (ops != &vdev_root_ops && spa->spa_root_vdev == NULL)
168404Spjd		return (EINVAL);
168404Spjd
185029Spjd	/*
185029Spjd	 * Determine whether we're a log vdev.
185029Spjd	 */
185029Spjd	islog = 0;
185029Spjd	(void) nvlist_lookup_uint64(nv, ZPOOL_CONFIG_IS_LOG, &islog);
185029Spjd	if (islog && spa_version(spa) < SPA_VERSION_SLOGS)
185029Spjd		return (ENOTSUP);
168404Spjd
219089Spjd	if (ops == &vdev_hole_ops && spa_version(spa) < SPA_VERSION_HOLES)
219089Spjd		return (ENOTSUP);
219089Spjd
168404Spjd	/*
185029Spjd	 * Set the nparity property for RAID-Z vdevs.
168404Spjd	 */
185029Spjd	nparity = -1ULL;
168404Spjd	if (ops == &vdev_raidz_ops) {
168404Spjd		if (nvlist_lookup_uint64(nv, ZPOOL_CONFIG_NPARITY,
185029Spjd		    &nparity) == 0) {
219089Spjd			if (nparity == 0 || nparity > VDEV_RAIDZ_MAXPARITY)
168404Spjd				return (EINVAL);
168404Spjd			/*
219089Spjd			 * Previous versions could only support 1 or 2 parity
219089Spjd			 * device.
168404Spjd			 */
219089Spjd			if (nparity > 1 &&
219089Spjd			    spa_version(spa) < SPA_VERSION_RAIDZ2)
168404Spjd				return (ENOTSUP);
219089Spjd			if (nparity > 2 &&
219089Spjd			    spa_version(spa) < SPA_VERSION_RAIDZ3)
219089Spjd				return (ENOTSUP);
168404Spjd		} else {
168404Spjd			/*
168404Spjd			 * We require the parity to be specified for SPAs that
168404Spjd			 * support multiple parity levels.
168404Spjd			 */
219089Spjd			if (spa_version(spa) >= SPA_VERSION_RAIDZ2)
168404Spjd				return (EINVAL);
168404Spjd			/*
168404Spjd			 * Otherwise, we default to 1 parity device for RAID-Z.
168404Spjd			 */
185029Spjd			nparity = 1;
168404Spjd		}
168404Spjd	} else {
185029Spjd		nparity = 0;
168404Spjd	}
185029Spjd	ASSERT(nparity != -1ULL);
168404Spjd
185029Spjd	vd = vdev_alloc_common(spa, id, guid, ops);
185029Spjd
185029Spjd	vd->vdev_islog = islog;
185029Spjd	vd->vdev_nparity = nparity;
185029Spjd
185029Spjd	if (nvlist_lookup_string(nv, ZPOOL_CONFIG_PATH, &vd->vdev_path) == 0)
185029Spjd		vd->vdev_path = spa_strdup(vd->vdev_path);
185029Spjd	if (nvlist_lookup_string(nv, ZPOOL_CONFIG_DEVID, &vd->vdev_devid) == 0)
185029Spjd		vd->vdev_devid = spa_strdup(vd->vdev_devid);
185029Spjd	if (nvlist_lookup_string(nv, ZPOOL_CONFIG_PHYS_PATH,
185029Spjd	    &vd->vdev_physpath) == 0)
185029Spjd		vd->vdev_physpath = spa_strdup(vd->vdev_physpath);
209962Smm	if (nvlist_lookup_string(nv, ZPOOL_CONFIG_FRU, &vd->vdev_fru) == 0)
209962Smm		vd->vdev_fru = spa_strdup(vd->vdev_fru);
185029Spjd
168404Spjd	/*
168404Spjd	 * Set the whole_disk property.  If it's not specified, leave the value
168404Spjd	 * as -1.
168404Spjd	 */
168404Spjd	if (nvlist_lookup_uint64(nv, ZPOOL_CONFIG_WHOLE_DISK,
168404Spjd	    &vd->vdev_wholedisk) != 0)
168404Spjd		vd->vdev_wholedisk = -1ULL;
168404Spjd
168404Spjd	/*
168404Spjd	 * Look for the 'not present' flag.  This will only be set if the device
168404Spjd	 * was not present at the time of import.
168404Spjd	 */
209962Smm	(void) nvlist_lookup_uint64(nv, ZPOOL_CONFIG_NOT_PRESENT,
209962Smm	    &vd->vdev_not_present);
168404Spjd
168404Spjd	/*
168404Spjd	 * Get the alignment requirement.
168404Spjd	 */
168404Spjd	(void) nvlist_lookup_uint64(nv, ZPOOL_CONFIG_ASHIFT, &vd->vdev_ashift);
168404Spjd
168404Spjd	/*
219089Spjd	 * Retrieve the vdev creation time.
219089Spjd	 */
219089Spjd	(void) nvlist_lookup_uint64(nv, ZPOOL_CONFIG_CREATE_TXG,
219089Spjd	    &vd->vdev_crtxg);
219089Spjd
219089Spjd	/*
168404Spjd	 * If we're a top-level vdev, try to load the allocation parameters.
168404Spjd	 */
219089Spjd	if (parent && !parent->vdev_parent &&
219089Spjd	    (alloctype == VDEV_ALLOC_LOAD || alloctype == VDEV_ALLOC_SPLIT)) {
168404Spjd		(void) nvlist_lookup_uint64(nv, ZPOOL_CONFIG_METASLAB_ARRAY,
168404Spjd		    &vd->vdev_ms_array);
168404Spjd		(void) nvlist_lookup_uint64(nv, ZPOOL_CONFIG_METASLAB_SHIFT,
168404Spjd		    &vd->vdev_ms_shift);
168404Spjd		(void) nvlist_lookup_uint64(nv, ZPOOL_CONFIG_ASIZE,
168404Spjd		    &vd->vdev_asize);
219089Spjd		(void) nvlist_lookup_uint64(nv, ZPOOL_CONFIG_REMOVING,
219089Spjd		    &vd->vdev_removing);
168404Spjd	}
168404Spjd
219089Spjd	if (parent && !parent->vdev_parent) {
219089Spjd		ASSERT(alloctype == VDEV_ALLOC_LOAD ||
219089Spjd		    alloctype == VDEV_ALLOC_ADD ||
219089Spjd		    alloctype == VDEV_ALLOC_SPLIT ||
219089Spjd		    alloctype == VDEV_ALLOC_ROOTPOOL);
219089Spjd		vd->vdev_mg = metaslab_group_create(islog ?
219089Spjd		    spa_log_class(spa) : spa_normal_class(spa), vd);
219089Spjd	}
219089Spjd
168404Spjd	/*
185029Spjd	 * If we're a leaf vdev, try to load the DTL object and other state.
168404Spjd	 */
185029Spjd	if (vd->vdev_ops->vdev_op_leaf &&
219089Spjd	    (alloctype == VDEV_ALLOC_LOAD || alloctype == VDEV_ALLOC_L2CACHE ||
219089Spjd	    alloctype == VDEV_ALLOC_ROOTPOOL)) {
185029Spjd		if (alloctype == VDEV_ALLOC_LOAD) {
185029Spjd			(void) nvlist_lookup_uint64(nv, ZPOOL_CONFIG_DTL,
209962Smm			    &vd->vdev_dtl_smo.smo_object);
185029Spjd			(void) nvlist_lookup_uint64(nv, ZPOOL_CONFIG_UNSPARE,
185029Spjd			    &vd->vdev_unspare);
185029Spjd		}
219089Spjd
219089Spjd		if (alloctype == VDEV_ALLOC_ROOTPOOL) {
219089Spjd			uint64_t spare = 0;
219089Spjd
219089Spjd			if (nvlist_lookup_uint64(nv, ZPOOL_CONFIG_IS_SPARE,
219089Spjd			    &spare) == 0 && spare)
219089Spjd				spa_spare_add(vd);
219089Spjd		}
219089Spjd
168404Spjd		(void) nvlist_lookup_uint64(nv, ZPOOL_CONFIG_OFFLINE,
168404Spjd		    &vd->vdev_offline);
185029Spjd
219089Spjd		(void) nvlist_lookup_uint64(nv, ZPOOL_CONFIG_RESILVERING,
219089Spjd		    &vd->vdev_resilvering);
219089Spjd
185029Spjd		/*
185029Spjd		 * When importing a pool, we want to ignore the persistent fault
185029Spjd		 * state, as the diagnosis made on another system may not be
219089Spjd		 * valid in the current context.  Local vdevs will
219089Spjd		 * remain in the faulted state.
185029Spjd		 */
219089Spjd		if (spa_load_state(spa) == SPA_LOAD_OPEN) {
185029Spjd			(void) nvlist_lookup_uint64(nv, ZPOOL_CONFIG_FAULTED,
185029Spjd			    &vd->vdev_faulted);
185029Spjd			(void) nvlist_lookup_uint64(nv, ZPOOL_CONFIG_DEGRADED,
185029Spjd			    &vd->vdev_degraded);
185029Spjd			(void) nvlist_lookup_uint64(nv, ZPOOL_CONFIG_REMOVED,
185029Spjd			    &vd->vdev_removed);
219089Spjd
219089Spjd			if (vd->vdev_faulted || vd->vdev_degraded) {
219089Spjd				char *aux;
219089Spjd
219089Spjd				vd->vdev_label_aux =
219089Spjd				    VDEV_AUX_ERR_EXCEEDED;
219089Spjd				if (nvlist_lookup_string(nv,
219089Spjd				    ZPOOL_CONFIG_AUX_STATE, &aux) == 0 &&
219089Spjd				    strcmp(aux, "external") == 0)
219089Spjd					vd->vdev_label_aux = VDEV_AUX_EXTERNAL;
219089Spjd			}
185029Spjd		}
168404Spjd	}
168404Spjd
168404Spjd	/*
168404Spjd	 * Add ourselves to the parent's list of children.
168404Spjd	 */
168404Spjd	vdev_add_child(parent, vd);
168404Spjd
168404Spjd	*vdp = vd;
168404Spjd
168404Spjd	return (0);
168404Spjd}
168404Spjd
168404Spjdvoid
168404Spjdvdev_free(vdev_t *vd)
168404Spjd{
185029Spjd	spa_t *spa = vd->vdev_spa;
168404Spjd
168404Spjd	/*
168404Spjd	 * vdev_free() implies closing the vdev first.  This is simpler than
168404Spjd	 * trying to ensure complicated semantics for all callers.
168404Spjd	 */
168404Spjd	vdev_close(vd);
168404Spjd
185029Spjd	ASSERT(!list_link_active(&vd->vdev_config_dirty_node));
219089Spjd	ASSERT(!list_link_active(&vd->vdev_state_dirty_node));
168404Spjd
168404Spjd	/*
168404Spjd	 * Free all children.
168404Spjd	 */
219089Spjd	for (int c = 0; c < vd->vdev_children; c++)
168404Spjd		vdev_free(vd->vdev_child[c]);
168404Spjd
168404Spjd	ASSERT(vd->vdev_child == NULL);
168404Spjd	ASSERT(vd->vdev_guid_sum == vd->vdev_guid);
168404Spjd
168404Spjd	/*
168404Spjd	 * Discard allocation state.
168404Spjd	 */
219089Spjd	if (vd->vdev_mg != NULL) {
168404Spjd		vdev_metaslab_fini(vd);
219089Spjd		metaslab_group_destroy(vd->vdev_mg);
219089Spjd	}
168404Spjd
168404Spjd	ASSERT3U(vd->vdev_stat.vs_space, ==, 0);
168404Spjd	ASSERT3U(vd->vdev_stat.vs_dspace, ==, 0);
168404Spjd	ASSERT3U(vd->vdev_stat.vs_alloc, ==, 0);
168404Spjd
168404Spjd	/*
168404Spjd	 * Remove this vdev from its parent's child list.
168404Spjd	 */
168404Spjd	vdev_remove_child(vd->vdev_parent, vd);
168404Spjd
168404Spjd	ASSERT(vd->vdev_parent == NULL);
168404Spjd
185029Spjd	/*
185029Spjd	 * Clean up vdev structure.
185029Spjd	 */
185029Spjd	vdev_queue_fini(vd);
185029Spjd	vdev_cache_fini(vd);
185029Spjd
185029Spjd	if (vd->vdev_path)
185029Spjd		spa_strfree(vd->vdev_path);
185029Spjd	if (vd->vdev_devid)
185029Spjd		spa_strfree(vd->vdev_devid);
185029Spjd	if (vd->vdev_physpath)
185029Spjd		spa_strfree(vd->vdev_physpath);
209962Smm	if (vd->vdev_fru)
209962Smm		spa_strfree(vd->vdev_fru);
185029Spjd
185029Spjd	if (vd->vdev_isspare)
185029Spjd		spa_spare_remove(vd);
185029Spjd	if (vd->vdev_isl2cache)
185029Spjd		spa_l2cache_remove(vd);
185029Spjd
185029Spjd	txg_list_destroy(&vd->vdev_ms_list);
185029Spjd	txg_list_destroy(&vd->vdev_dtl_list);
209962Smm
185029Spjd	mutex_enter(&vd->vdev_dtl_lock);
209962Smm	for (int t = 0; t < DTL_TYPES; t++) {
209962Smm		space_map_unload(&vd->vdev_dtl[t]);
209962Smm		space_map_destroy(&vd->vdev_dtl[t]);
209962Smm	}
185029Spjd	mutex_exit(&vd->vdev_dtl_lock);
209962Smm
185029Spjd	mutex_destroy(&vd->vdev_dtl_lock);
185029Spjd	mutex_destroy(&vd->vdev_stat_lock);
185029Spjd	mutex_destroy(&vd->vdev_probe_lock);
185029Spjd
185029Spjd	if (vd == spa->spa_root_vdev)
185029Spjd		spa->spa_root_vdev = NULL;
185029Spjd
185029Spjd	kmem_free(vd, sizeof (vdev_t));
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Transfer top-level vdev state from svd to tvd.
168404Spjd */
168404Spjdstatic void
168404Spjdvdev_top_transfer(vdev_t *svd, vdev_t *tvd)
168404Spjd{
168404Spjd	spa_t *spa = svd->vdev_spa;
168404Spjd	metaslab_t *msp;
168404Spjd	vdev_t *vd;
168404Spjd	int t;
168404Spjd
168404Spjd	ASSERT(tvd == tvd->vdev_top);
168404Spjd
168404Spjd	tvd->vdev_ms_array = svd->vdev_ms_array;
168404Spjd	tvd->vdev_ms_shift = svd->vdev_ms_shift;
168404Spjd	tvd->vdev_ms_count = svd->vdev_ms_count;
168404Spjd
168404Spjd	svd->vdev_ms_array = 0;
168404Spjd	svd->vdev_ms_shift = 0;
168404Spjd	svd->vdev_ms_count = 0;
168404Spjd
168404Spjd	tvd->vdev_mg = svd->vdev_mg;
168404Spjd	tvd->vdev_ms = svd->vdev_ms;
168404Spjd
168404Spjd	svd->vdev_mg = NULL;
168404Spjd	svd->vdev_ms = NULL;
168404Spjd
168404Spjd	if (tvd->vdev_mg != NULL)
168404Spjd		tvd->vdev_mg->mg_vd = tvd;
168404Spjd
168404Spjd	tvd->vdev_stat.vs_alloc = svd->vdev_stat.vs_alloc;
168404Spjd	tvd->vdev_stat.vs_space = svd->vdev_stat.vs_space;
168404Spjd	tvd->vdev_stat.vs_dspace = svd->vdev_stat.vs_dspace;
168404Spjd
168404Spjd	svd->vdev_stat.vs_alloc = 0;
168404Spjd	svd->vdev_stat.vs_space = 0;
168404Spjd	svd->vdev_stat.vs_dspace = 0;
168404Spjd
168404Spjd	for (t = 0; t < TXG_SIZE; t++) {
168404Spjd		while ((msp = txg_list_remove(&svd->vdev_ms_list, t)) != NULL)
168404Spjd			(void) txg_list_add(&tvd->vdev_ms_list, msp, t);
168404Spjd		while ((vd = txg_list_remove(&svd->vdev_dtl_list, t)) != NULL)
168404Spjd			(void) txg_list_add(&tvd->vdev_dtl_list, vd, t);
168404Spjd		if (txg_list_remove_this(&spa->spa_vdev_txg_list, svd, t))
168404Spjd			(void) txg_list_add(&spa->spa_vdev_txg_list, tvd, t);
168404Spjd	}
168404Spjd
185029Spjd	if (list_link_active(&svd->vdev_config_dirty_node)) {
168404Spjd		vdev_config_clean(svd);
168404Spjd		vdev_config_dirty(tvd);
168404Spjd	}
168404Spjd
185029Spjd	if (list_link_active(&svd->vdev_state_dirty_node)) {
185029Spjd		vdev_state_clean(svd);
185029Spjd		vdev_state_dirty(tvd);
185029Spjd	}
168404Spjd
168404Spjd	tvd->vdev_deflate_ratio = svd->vdev_deflate_ratio;
168404Spjd	svd->vdev_deflate_ratio = 0;
185029Spjd
185029Spjd	tvd->vdev_islog = svd->vdev_islog;
185029Spjd	svd->vdev_islog = 0;
168404Spjd}
168404Spjd
168404Spjdstatic void
168404Spjdvdev_top_update(vdev_t *tvd, vdev_t *vd)
168404Spjd{
168404Spjd	if (vd == NULL)
168404Spjd		return;
168404Spjd
168404Spjd	vd->vdev_top = tvd;
168404Spjd
219089Spjd	for (int c = 0; c < vd->vdev_children; c++)
168404Spjd		vdev_top_update(tvd, vd->vdev_child[c]);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Add a mirror/replacing vdev above an existing vdev.
168404Spjd */
168404Spjdvdev_t *
168404Spjdvdev_add_parent(vdev_t *cvd, vdev_ops_t *ops)
168404Spjd{
168404Spjd	spa_t *spa = cvd->vdev_spa;
168404Spjd	vdev_t *pvd = cvd->vdev_parent;
168404Spjd	vdev_t *mvd;
168404Spjd
185029Spjd	ASSERT(spa_config_held(spa, SCL_ALL, RW_WRITER) == SCL_ALL);
168404Spjd
168404Spjd	mvd = vdev_alloc_common(spa, cvd->vdev_id, 0, ops);
168404Spjd
168404Spjd	mvd->vdev_asize = cvd->vdev_asize;
219089Spjd	mvd->vdev_min_asize = cvd->vdev_min_asize;
168404Spjd	mvd->vdev_ashift = cvd->vdev_ashift;
168404Spjd	mvd->vdev_state = cvd->vdev_state;
219089Spjd	mvd->vdev_crtxg = cvd->vdev_crtxg;
168404Spjd
168404Spjd	vdev_remove_child(pvd, cvd);
168404Spjd	vdev_add_child(pvd, mvd);
168404Spjd	cvd->vdev_id = mvd->vdev_children;
168404Spjd	vdev_add_child(mvd, cvd);
168404Spjd	vdev_top_update(cvd->vdev_top, cvd->vdev_top);
168404Spjd
168404Spjd	if (mvd == mvd->vdev_top)
168404Spjd		vdev_top_transfer(cvd, mvd);
168404Spjd
168404Spjd	return (mvd);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Remove a 1-way mirror/replacing vdev from the tree.
168404Spjd */
168404Spjdvoid
168404Spjdvdev_remove_parent(vdev_t *cvd)
168404Spjd{
168404Spjd	vdev_t *mvd = cvd->vdev_parent;
168404Spjd	vdev_t *pvd = mvd->vdev_parent;
168404Spjd
185029Spjd	ASSERT(spa_config_held(cvd->vdev_spa, SCL_ALL, RW_WRITER) == SCL_ALL);
168404Spjd
168404Spjd	ASSERT(mvd->vdev_children == 1);
168404Spjd	ASSERT(mvd->vdev_ops == &vdev_mirror_ops ||
168404Spjd	    mvd->vdev_ops == &vdev_replacing_ops ||
168404Spjd	    mvd->vdev_ops == &vdev_spare_ops);
168404Spjd	cvd->vdev_ashift = mvd->vdev_ashift;
168404Spjd
168404Spjd	vdev_remove_child(mvd, cvd);
168404Spjd	vdev_remove_child(pvd, mvd);
209962Smm
185029Spjd	/*
185029Spjd	 * If cvd will replace mvd as a top-level vdev, preserve mvd's guid.
185029Spjd	 * Otherwise, we could have detached an offline device, and when we
185029Spjd	 * go to import the pool we'll think we have two top-level vdevs,
185029Spjd	 * instead of a different version of the same top-level vdev.
185029Spjd	 */
209962Smm	if (mvd->vdev_top == mvd) {
209962Smm		uint64_t guid_delta = mvd->vdev_guid - cvd->vdev_guid;
219089Spjd		cvd->vdev_orig_guid = cvd->vdev_guid;
209962Smm		cvd->vdev_guid += guid_delta;
209962Smm		cvd->vdev_guid_sum += guid_delta;
209962Smm	}
168404Spjd	cvd->vdev_id = mvd->vdev_id;
168404Spjd	vdev_add_child(pvd, cvd);
168404Spjd	vdev_top_update(cvd->vdev_top, cvd->vdev_top);
168404Spjd
168404Spjd	if (cvd == cvd->vdev_top)
168404Spjd		vdev_top_transfer(mvd, cvd);
168404Spjd
168404Spjd	ASSERT(mvd->vdev_children == 0);
168404Spjd	vdev_free(mvd);
168404Spjd}
168404Spjd
168404Spjdint
168404Spjdvdev_metaslab_init(vdev_t *vd, uint64_t txg)
168404Spjd{
168404Spjd	spa_t *spa = vd->vdev_spa;
168404Spjd	objset_t *mos = spa->spa_meta_objset;
168404Spjd	uint64_t m;
168404Spjd	uint64_t oldc = vd->vdev_ms_count;
168404Spjd	uint64_t newc = vd->vdev_asize >> vd->vdev_ms_shift;
168404Spjd	metaslab_t **mspp;
168404Spjd	int error;
168404Spjd
219089Spjd	ASSERT(txg == 0 || spa_config_held(spa, SCL_ALLOC, RW_WRITER));
219089Spjd
219089Spjd	/*
219089Spjd	 * This vdev is not being allocated from yet or is a hole.
219089Spjd	 */
219089Spjd	if (vd->vdev_ms_shift == 0)
168404Spjd		return (0);
168404Spjd
219089Spjd	ASSERT(!vd->vdev_ishole);
219089Spjd
213197Smm	/*
213197Smm	 * Compute the raidz-deflation ratio.  Note, we hard-code
213197Smm	 * in 128k (1 << 17) because it is the current "typical" blocksize.
213197Smm	 * Even if SPA_MAXBLOCKSIZE changes, this algorithm must never change,
213197Smm	 * or we will inconsistently account for existing bp's.
213197Smm	 */
213197Smm	vd->vdev_deflate_ratio = (1 << 17) /
213197Smm	    (vdev_psize_to_asize(vd, 1 << 17) >> SPA_MINBLOCKSHIFT);
213197Smm
168404Spjd	ASSERT(oldc <= newc);
168404Spjd
168404Spjd	mspp = kmem_zalloc(newc * sizeof (*mspp), KM_SLEEP);
168404Spjd
168404Spjd	if (oldc != 0) {
168404Spjd		bcopy(vd->vdev_ms, mspp, oldc * sizeof (*mspp));
168404Spjd		kmem_free(vd->vdev_ms, oldc * sizeof (*mspp));
168404Spjd	}
168404Spjd
168404Spjd	vd->vdev_ms = mspp;
168404Spjd	vd->vdev_ms_count = newc;
168404Spjd
168404Spjd	for (m = oldc; m < newc; m++) {
168404Spjd		space_map_obj_t smo = { 0, 0, 0 };
168404Spjd		if (txg == 0) {
168404Spjd			uint64_t object = 0;
168404Spjd			error = dmu_read(mos, vd->vdev_ms_array,
209962Smm			    m * sizeof (uint64_t), sizeof (uint64_t), &object,
209962Smm			    DMU_READ_PREFETCH);
168404Spjd			if (error)
168404Spjd				return (error);
168404Spjd			if (object != 0) {
168404Spjd				dmu_buf_t *db;
168404Spjd				error = dmu_bonus_hold(mos, object, FTAG, &db);
168404Spjd				if (error)
168404Spjd					return (error);
185029Spjd				ASSERT3U(db->db_size, >=, sizeof (smo));
185029Spjd				bcopy(db->db_data, &smo, sizeof (smo));
168404Spjd				ASSERT3U(smo.smo_object, ==, object);
168404Spjd				dmu_buf_rele(db, FTAG);
168404Spjd			}
168404Spjd		}
168404Spjd		vd->vdev_ms[m] = metaslab_init(vd->vdev_mg, &smo,
168404Spjd		    m << vd->vdev_ms_shift, 1ULL << vd->vdev_ms_shift, txg);
168404Spjd	}
168404Spjd
219089Spjd	if (txg == 0)
219089Spjd		spa_config_enter(spa, SCL_ALLOC, FTAG, RW_WRITER);
219089Spjd
219089Spjd	/*
219089Spjd	 * If the vdev is being removed we don't activate
219089Spjd	 * the metaslabs since we want to ensure that no new
219089Spjd	 * allocations are performed on this device.
219089Spjd	 */
219089Spjd	if (oldc == 0 && !vd->vdev_removing)
219089Spjd		metaslab_group_activate(vd->vdev_mg);
219089Spjd
219089Spjd	if (txg == 0)
219089Spjd		spa_config_exit(spa, SCL_ALLOC, FTAG);
219089Spjd
168404Spjd	return (0);
168404Spjd}
168404Spjd
168404Spjdvoid
168404Spjdvdev_metaslab_fini(vdev_t *vd)
168404Spjd{
168404Spjd	uint64_t m;
168404Spjd	uint64_t count = vd->vdev_ms_count;
168404Spjd
168404Spjd	if (vd->vdev_ms != NULL) {
219089Spjd		metaslab_group_passivate(vd->vdev_mg);
168404Spjd		for (m = 0; m < count; m++)
168404Spjd			if (vd->vdev_ms[m] != NULL)
168404Spjd				metaslab_fini(vd->vdev_ms[m]);
168404Spjd		kmem_free(vd->vdev_ms, count * sizeof (metaslab_t *));
168404Spjd		vd->vdev_ms = NULL;
168404Spjd	}
168404Spjd}
168404Spjd
185029Spjdtypedef struct vdev_probe_stats {
185029Spjd	boolean_t	vps_readable;
185029Spjd	boolean_t	vps_writeable;
185029Spjd	int		vps_flags;
185029Spjd} vdev_probe_stats_t;
185029Spjd
185029Spjdstatic void
185029Spjdvdev_probe_done(zio_t *zio)
185029Spjd{
209962Smm	spa_t *spa = zio->io_spa;
209962Smm	vdev_t *vd = zio->io_vd;
185029Spjd	vdev_probe_stats_t *vps = zio->io_private;
185029Spjd
209962Smm	ASSERT(vd->vdev_probe_zio != NULL);
209962Smm
185029Spjd	if (zio->io_type == ZIO_TYPE_READ) {
185029Spjd		if (zio->io_error == 0)
185029Spjd			vps->vps_readable = 1;
209962Smm		if (zio->io_error == 0 && spa_writeable(spa)) {
209962Smm			zio_nowait(zio_write_phys(vd->vdev_probe_zio, vd,
185029Spjd			    zio->io_offset, zio->io_size, zio->io_data,
185029Spjd			    ZIO_CHECKSUM_OFF, vdev_probe_done, vps,
185029Spjd			    ZIO_PRIORITY_SYNC_WRITE, vps->vps_flags, B_TRUE));
185029Spjd		} else {
185029Spjd			zio_buf_free(zio->io_data, zio->io_size);
185029Spjd		}
185029Spjd	} else if (zio->io_type == ZIO_TYPE_WRITE) {
185029Spjd		if (zio->io_error == 0)
185029Spjd			vps->vps_writeable = 1;
185029Spjd		zio_buf_free(zio->io_data, zio->io_size);
185029Spjd	} else if (zio->io_type == ZIO_TYPE_NULL) {
209962Smm		zio_t *pio;
185029Spjd
185029Spjd		vd->vdev_cant_read |= !vps->vps_readable;
185029Spjd		vd->vdev_cant_write |= !vps->vps_writeable;
185029Spjd
185029Spjd		if (vdev_readable(vd) &&
209962Smm		    (vdev_writeable(vd) || !spa_writeable(spa))) {
185029Spjd			zio->io_error = 0;
185029Spjd		} else {
185029Spjd			ASSERT(zio->io_error != 0);
185029Spjd			zfs_ereport_post(FM_EREPORT_ZFS_PROBE_FAILURE,
209962Smm			    spa, vd, NULL, 0, 0);
185029Spjd			zio->io_error = ENXIO;
185029Spjd		}
209962Smm
209962Smm		mutex_enter(&vd->vdev_probe_lock);
209962Smm		ASSERT(vd->vdev_probe_zio == zio);
209962Smm		vd->vdev_probe_zio = NULL;
209962Smm		mutex_exit(&vd->vdev_probe_lock);
209962Smm
209962Smm		while ((pio = zio_walk_parents(zio)) != NULL)
209962Smm			if (!vdev_accessible(vd, pio))
209962Smm				pio->io_error = ENXIO;
209962Smm
185029Spjd		kmem_free(vps, sizeof (*vps));
185029Spjd	}
185029Spjd}
185029Spjd
168404Spjd/*
185029Spjd * Determine whether this device is accessible by reading and writing
185029Spjd * to several known locations: the pad regions of each vdev label
185029Spjd * but the first (which we leave alone in case it contains a VTOC).
185029Spjd */
185029Spjdzio_t *
209962Smmvdev_probe(vdev_t *vd, zio_t *zio)
185029Spjd{
185029Spjd	spa_t *spa = vd->vdev_spa;
209962Smm	vdev_probe_stats_t *vps = NULL;
209962Smm	zio_t *pio;
185029Spjd
209962Smm	ASSERT(vd->vdev_ops->vdev_op_leaf);
185029Spjd
209962Smm	/*
209962Smm	 * Don't probe the probe.
209962Smm	 */
209962Smm	if (zio && (zio->io_flags & ZIO_FLAG_PROBE))
209962Smm		return (NULL);
185029Spjd
209962Smm	/*
209962Smm	 * To prevent 'probe storms' when a device fails, we create
209962Smm	 * just one probe i/o at a time.  All zios that want to probe
209962Smm	 * this vdev will become parents of the probe io.
209962Smm	 */
209962Smm	mutex_enter(&vd->vdev_probe_lock);
209962Smm
209962Smm	if ((pio = vd->vdev_probe_zio) == NULL) {
209962Smm		vps = kmem_zalloc(sizeof (*vps), KM_SLEEP);
209962Smm
209962Smm		vps->vps_flags = ZIO_FLAG_CANFAIL | ZIO_FLAG_PROBE |
209962Smm		    ZIO_FLAG_DONT_CACHE | ZIO_FLAG_DONT_AGGREGATE |
213198Smm		    ZIO_FLAG_TRYHARD;
209962Smm
209962Smm		if (spa_config_held(spa, SCL_ZIO, RW_WRITER)) {
209962Smm			/*
209962Smm			 * vdev_cant_read and vdev_cant_write can only
209962Smm			 * transition from TRUE to FALSE when we have the
209962Smm			 * SCL_ZIO lock as writer; otherwise they can only
209962Smm			 * transition from FALSE to TRUE.  This ensures that
209962Smm			 * any zio looking at these values can assume that
209962Smm			 * failures persist for the life of the I/O.  That's
209962Smm			 * important because when a device has intermittent
209962Smm			 * connectivity problems, we want to ensure that
209962Smm			 * they're ascribed to the device (ENXIO) and not
209962Smm			 * the zio (EIO).
209962Smm			 *
209962Smm			 * Since we hold SCL_ZIO as writer here, clear both
209962Smm			 * values so the probe can reevaluate from first
209962Smm			 * principles.
209962Smm			 */
209962Smm			vps->vps_flags |= ZIO_FLAG_CONFIG_WRITER;
209962Smm			vd->vdev_cant_read = B_FALSE;
209962Smm			vd->vdev_cant_write = B_FALSE;
209962Smm		}
209962Smm
209962Smm		vd->vdev_probe_zio = pio = zio_null(NULL, spa, vd,
209962Smm		    vdev_probe_done, vps,
209962Smm		    vps->vps_flags | ZIO_FLAG_DONT_PROPAGATE);
209962Smm
219089Spjd		/*
219089Spjd		 * We can't change the vdev state in this context, so we
219089Spjd		 * kick off an async task to do it on our behalf.
219089Spjd		 */
209962Smm		if (zio != NULL) {
209962Smm			vd->vdev_probe_wanted = B_TRUE;
209962Smm			spa_async_request(spa, SPA_ASYNC_PROBE);
209962Smm		}
185029Spjd	}
185029Spjd
209962Smm	if (zio != NULL)
209962Smm		zio_add_child(zio, pio);
185029Spjd
209962Smm	mutex_exit(&vd->vdev_probe_lock);
185029Spjd
209962Smm	if (vps == NULL) {
209962Smm		ASSERT(zio != NULL);
209962Smm		return (NULL);
209962Smm	}
185029Spjd
185029Spjd	for (int l = 1; l < VDEV_LABELS; l++) {
209962Smm		zio_nowait(zio_read_phys(pio, vd,
185029Spjd		    vdev_label_offset(vd->vdev_psize, l,
209962Smm		    offsetof(vdev_label_t, vl_pad2)),
209962Smm		    VDEV_PAD_SIZE, zio_buf_alloc(VDEV_PAD_SIZE),
185029Spjd		    ZIO_CHECKSUM_OFF, vdev_probe_done, vps,
185029Spjd		    ZIO_PRIORITY_SYNC_READ, vps->vps_flags, B_TRUE));
185029Spjd	}
185029Spjd
209962Smm	if (zio == NULL)
209962Smm		return (pio);
209962Smm
209962Smm	zio_nowait(pio);
209962Smm	return (NULL);
185029Spjd}
185029Spjd
219089Spjdstatic void
219089Spjdvdev_open_child(void *arg)
219089Spjd{
219089Spjd	vdev_t *vd = arg;
219089Spjd
219089Spjd	vd->vdev_open_thread = curthread;
219089Spjd	vd->vdev_open_error = vdev_open(vd);
219089Spjd	vd->vdev_open_thread = NULL;
219089Spjd}
219089Spjd
219089Spjdboolean_t
219089Spjdvdev_uses_zvols(vdev_t *vd)
219089Spjd{
219089Spjd	if (vd->vdev_path && strncmp(vd->vdev_path, ZVOL_DIR,
219089Spjd	    strlen(ZVOL_DIR)) == 0)
219089Spjd		return (B_TRUE);
219089Spjd	for (int c = 0; c < vd->vdev_children; c++)
219089Spjd		if (vdev_uses_zvols(vd->vdev_child[c]))
219089Spjd			return (B_TRUE);
219089Spjd	return (B_FALSE);
219089Spjd}
219089Spjd
219089Spjdvoid
219089Spjdvdev_open_children(vdev_t *vd)
219089Spjd{
219089Spjd	taskq_t *tq;
219089Spjd	int children = vd->vdev_children;
219089Spjd
219089Spjd	/*
219089Spjd	 * in order to handle pools on top of zvols, do the opens
219089Spjd	 * in a single thread so that the same thread holds the
219089Spjd	 * spa_namespace_lock
219089Spjd	 */
219089Spjd	if (B_TRUE || vdev_uses_zvols(vd)) {
219089Spjd		for (int c = 0; c < children; c++)
219089Spjd			vd->vdev_child[c]->vdev_open_error =
219089Spjd			    vdev_open(vd->vdev_child[c]);
219089Spjd		return;
219089Spjd	}
219089Spjd	tq = taskq_create("vdev_open", children, minclsyspri,
219089Spjd	    children, children, TASKQ_PREPOPULATE);
219089Spjd
219089Spjd	for (int c = 0; c < children; c++)
219089Spjd		VERIFY(taskq_dispatch(tq, vdev_open_child, vd->vdev_child[c],
219089Spjd		    TQ_SLEEP) != 0);
219089Spjd
219089Spjd	taskq_destroy(tq);
219089Spjd}
219089Spjd
185029Spjd/*
168404Spjd * Prepare a virtual device for access.
168404Spjd */
168404Spjdint
168404Spjdvdev_open(vdev_t *vd)
168404Spjd{
209962Smm	spa_t *spa = vd->vdev_spa;
168404Spjd	int error;
168404Spjd	uint64_t osize = 0;
168404Spjd	uint64_t asize, psize;
168404Spjd	uint64_t ashift = 0;
168404Spjd
219089Spjd	ASSERT(vd->vdev_open_thread == curthread ||
219089Spjd	    spa_config_held(spa, SCL_STATE_ALL, RW_WRITER) == SCL_STATE_ALL);
168404Spjd	ASSERT(vd->vdev_state == VDEV_STATE_CLOSED ||
168404Spjd	    vd->vdev_state == VDEV_STATE_CANT_OPEN ||
168404Spjd	    vd->vdev_state == VDEV_STATE_OFFLINE);
168404Spjd
168404Spjd	vd->vdev_stat.vs_aux = VDEV_AUX_NONE;
213197Smm	vd->vdev_cant_read = B_FALSE;
213197Smm	vd->vdev_cant_write = B_FALSE;
219089Spjd	vd->vdev_min_asize = vdev_get_min_asize(vd);
168404Spjd
219089Spjd	/*
219089Spjd	 * If this vdev is not removed, check its fault status.  If it's
219089Spjd	 * faulted, bail out of the open.
219089Spjd	 */
185029Spjd	if (!vd->vdev_removed && vd->vdev_faulted) {
168404Spjd		ASSERT(vd->vdev_children == 0);
219089Spjd		ASSERT(vd->vdev_label_aux == VDEV_AUX_ERR_EXCEEDED ||
219089Spjd		    vd->vdev_label_aux == VDEV_AUX_EXTERNAL);
185029Spjd		vdev_set_state(vd, B_TRUE, VDEV_STATE_FAULTED,
219089Spjd		    vd->vdev_label_aux);
185029Spjd		return (ENXIO);
185029Spjd	} else if (vd->vdev_offline) {
185029Spjd		ASSERT(vd->vdev_children == 0);
168404Spjd		vdev_set_state(vd, B_TRUE, VDEV_STATE_OFFLINE, VDEV_AUX_NONE);
168404Spjd		return (ENXIO);
168404Spjd	}
168404Spjd
168404Spjd	error = vd->vdev_ops->vdev_op_open(vd, &osize, &ashift);
168404Spjd
219089Spjd	/*
219089Spjd	 * Reset the vdev_reopening flag so that we actually close
219089Spjd	 * the vdev on error.
219089Spjd	 */
219089Spjd	vd->vdev_reopening = B_FALSE;
168404Spjd	if (zio_injection_enabled && error == 0)
213198Smm		error = zio_handle_device_injection(vd, NULL, ENXIO);
168404Spjd
185029Spjd	if (error) {
185029Spjd		if (vd->vdev_removed &&
185029Spjd		    vd->vdev_stat.vs_aux != VDEV_AUX_OPEN_FAILED)
185029Spjd			vd->vdev_removed = B_FALSE;
168404Spjd
168404Spjd		vdev_set_state(vd, B_TRUE, VDEV_STATE_CANT_OPEN,
168404Spjd		    vd->vdev_stat.vs_aux);
168404Spjd		return (error);
168404Spjd	}
168404Spjd
185029Spjd	vd->vdev_removed = B_FALSE;
168404Spjd
219089Spjd	/*
219089Spjd	 * Recheck the faulted flag now that we have confirmed that
219089Spjd	 * the vdev is accessible.  If we're faulted, bail.
219089Spjd	 */
219089Spjd	if (vd->vdev_faulted) {
219089Spjd		ASSERT(vd->vdev_children == 0);
219089Spjd		ASSERT(vd->vdev_label_aux == VDEV_AUX_ERR_EXCEEDED ||
219089Spjd		    vd->vdev_label_aux == VDEV_AUX_EXTERNAL);
219089Spjd		vdev_set_state(vd, B_TRUE, VDEV_STATE_FAULTED,
219089Spjd		    vd->vdev_label_aux);
219089Spjd		return (ENXIO);
219089Spjd	}
219089Spjd
185029Spjd	if (vd->vdev_degraded) {
185029Spjd		ASSERT(vd->vdev_children == 0);
185029Spjd		vdev_set_state(vd, B_TRUE, VDEV_STATE_DEGRADED,
185029Spjd		    VDEV_AUX_ERR_EXCEEDED);
185029Spjd	} else {
219089Spjd		vdev_set_state(vd, B_TRUE, VDEV_STATE_HEALTHY, 0);
185029Spjd	}
185029Spjd
219089Spjd	/*
219089Spjd	 * For hole or missing vdevs we just return success.
219089Spjd	 */
219089Spjd	if (vd->vdev_ishole || vd->vdev_ops == &vdev_missing_ops)
219089Spjd		return (0);
219089Spjd
219089Spjd	for (int c = 0; c < vd->vdev_children; c++) {
168404Spjd		if (vd->vdev_child[c]->vdev_state != VDEV_STATE_HEALTHY) {
168404Spjd			vdev_set_state(vd, B_TRUE, VDEV_STATE_DEGRADED,
168404Spjd			    VDEV_AUX_NONE);
168404Spjd			break;
168404Spjd		}
219089Spjd	}
168404Spjd
168404Spjd	osize = P2ALIGN(osize, (uint64_t)sizeof (vdev_label_t));
168404Spjd
168404Spjd	if (vd->vdev_children == 0) {
168404Spjd		if (osize < SPA_MINDEVSIZE) {
168404Spjd			vdev_set_state(vd, B_TRUE, VDEV_STATE_CANT_OPEN,
168404Spjd			    VDEV_AUX_TOO_SMALL);
168404Spjd			return (EOVERFLOW);
168404Spjd		}
168404Spjd		psize = osize;
168404Spjd		asize = osize - (VDEV_LABEL_START_SIZE + VDEV_LABEL_END_SIZE);
168404Spjd	} else {
168404Spjd		if (vd->vdev_parent != NULL && osize < SPA_MINDEVSIZE -
168404Spjd		    (VDEV_LABEL_START_SIZE + VDEV_LABEL_END_SIZE)) {
168404Spjd			vdev_set_state(vd, B_TRUE, VDEV_STATE_CANT_OPEN,
168404Spjd			    VDEV_AUX_TOO_SMALL);
168404Spjd			return (EOVERFLOW);
168404Spjd		}
168404Spjd		psize = 0;
168404Spjd		asize = osize;
168404Spjd	}
168404Spjd
168404Spjd	vd->vdev_psize = psize;
168404Spjd
219089Spjd	/*
219089Spjd	 * Make sure the allocatable size hasn't shrunk.
219089Spjd	 */
219089Spjd	if (asize < vd->vdev_min_asize) {
219089Spjd		vdev_set_state(vd, B_TRUE, VDEV_STATE_CANT_OPEN,
219089Spjd		    VDEV_AUX_BAD_LABEL);
219089Spjd		return (EINVAL);
219089Spjd	}
219089Spjd
168404Spjd	if (vd->vdev_asize == 0) {
168404Spjd		/*
168404Spjd		 * This is the first-ever open, so use the computed values.
168404Spjd		 * For testing purposes, a higher ashift can be requested.
168404Spjd		 */
168404Spjd		vd->vdev_asize = asize;
168404Spjd		vd->vdev_ashift = MAX(ashift, vd->vdev_ashift);
168404Spjd	} else {
168404Spjd		/*
168404Spjd		 * Make sure the alignment requirement hasn't increased.
168404Spjd		 */
168404Spjd		if (ashift > vd->vdev_top->vdev_ashift) {
168404Spjd			vdev_set_state(vd, B_TRUE, VDEV_STATE_CANT_OPEN,
168404Spjd			    VDEV_AUX_BAD_LABEL);
168404Spjd			return (EINVAL);
168404Spjd		}
219089Spjd	}
168404Spjd
219089Spjd	/*
219089Spjd	 * If all children are healthy and the asize has increased,
219089Spjd	 * then we've experienced dynamic LUN growth.  If automatic
219089Spjd	 * expansion is enabled then use the additional space.
219089Spjd	 */
219089Spjd	if (vd->vdev_state == VDEV_STATE_HEALTHY && asize > vd->vdev_asize &&
219089Spjd	    (vd->vdev_expanding || spa->spa_autoexpand))
219089Spjd		vd->vdev_asize = asize;
168404Spjd
219089Spjd	vdev_set_min_asize(vd);
168404Spjd
168404Spjd	/*
185029Spjd	 * Ensure we can issue some IO before declaring the
185029Spjd	 * vdev open for business.
185029Spjd	 */
185029Spjd	if (vd->vdev_ops->vdev_op_leaf &&
185029Spjd	    (error = zio_wait(vdev_probe(vd, NULL))) != 0) {
219089Spjd		vdev_set_state(vd, B_TRUE, VDEV_STATE_FAULTED,
219089Spjd		    VDEV_AUX_ERR_EXCEEDED);
185029Spjd		return (error);
185029Spjd	}
185029Spjd
185029Spjd	/*
185029Spjd	 * If a leaf vdev has a DTL, and seems healthy, then kick off a
209962Smm	 * resilver.  But don't do this if we are doing a reopen for a scrub,
209962Smm	 * since this would just restart the scrub we are already doing.
168404Spjd	 */
209962Smm	if (vd->vdev_ops->vdev_op_leaf && !spa->spa_scrub_reopen &&
209962Smm	    vdev_resilver_needed(vd, NULL, NULL))
209962Smm		spa_async_request(spa, SPA_ASYNC_RESILVER);
168404Spjd
168404Spjd	return (0);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Called once the vdevs are all opened, this routine validates the label
168404Spjd * contents.  This needs to be done before vdev_load() so that we don't
185029Spjd * inadvertently do repair I/Os to the wrong device.
168404Spjd *
168404Spjd * This function will only return failure if one of the vdevs indicates that it
168404Spjd * has since been destroyed or exported.  This is only possible if
168404Spjd * /etc/zfs/zpool.cache was readonly at the time.  Otherwise, the vdev state
168404Spjd * will be updated but the function will return 0.
168404Spjd */
168404Spjdint
168404Spjdvdev_validate(vdev_t *vd)
168404Spjd{
168404Spjd	spa_t *spa = vd->vdev_spa;
168404Spjd	nvlist_t *label;
219089Spjd	uint64_t guid = 0, top_guid;
168404Spjd	uint64_t state;
168404Spjd
219089Spjd	for (int c = 0; c < vd->vdev_children; c++)
168404Spjd		if (vdev_validate(vd->vdev_child[c]) != 0)
168926Spjd			return (EBADF);
168404Spjd
168404Spjd	/*
168404Spjd	 * If the device has already failed, or was marked offline, don't do
168404Spjd	 * any further validation.  Otherwise, label I/O will fail and we will
168404Spjd	 * overwrite the previous state.
168404Spjd	 */
185029Spjd	if (vd->vdev_ops->vdev_op_leaf && vdev_readable(vd)) {
219089Spjd		uint64_t aux_guid = 0;
219089Spjd		nvlist_t *nvl;
168404Spjd
168404Spjd		if ((label = vdev_label_read_config(vd)) == NULL) {
168404Spjd			vdev_set_state(vd, B_TRUE, VDEV_STATE_CANT_OPEN,
168404Spjd			    VDEV_AUX_BAD_LABEL);
168404Spjd			return (0);
168404Spjd		}
168404Spjd
219089Spjd		/*
219089Spjd		 * Determine if this vdev has been split off into another
219089Spjd		 * pool.  If so, then refuse to open it.
219089Spjd		 */
219089Spjd		if (nvlist_lookup_uint64(label, ZPOOL_CONFIG_SPLIT_GUID,
219089Spjd		    &aux_guid) == 0 && aux_guid == spa_guid(spa)) {
219089Spjd			vdev_set_state(vd, B_FALSE, VDEV_STATE_CANT_OPEN,
219089Spjd			    VDEV_AUX_SPLIT_POOL);
219089Spjd			nvlist_free(label);
219089Spjd			return (0);
219089Spjd		}
219089Spjd
168404Spjd		if (nvlist_lookup_uint64(label, ZPOOL_CONFIG_POOL_GUID,
168404Spjd		    &guid) != 0 || guid != spa_guid(spa)) {
168404Spjd			vdev_set_state(vd, B_FALSE, VDEV_STATE_CANT_OPEN,
168404Spjd			    VDEV_AUX_CORRUPT_DATA);
168404Spjd			nvlist_free(label);
168404Spjd			return (0);
168404Spjd		}
168404Spjd
219089Spjd		if (nvlist_lookup_nvlist(label, ZPOOL_CONFIG_VDEV_TREE, &nvl)
219089Spjd		    != 0 || nvlist_lookup_uint64(nvl, ZPOOL_CONFIG_ORIG_GUID,
219089Spjd		    &aux_guid) != 0)
219089Spjd			aux_guid = 0;
219089Spjd
185029Spjd		/*
185029Spjd		 * If this vdev just became a top-level vdev because its
185029Spjd		 * sibling was detached, it will have adopted the parent's
185029Spjd		 * vdev guid -- but the label may or may not be on disk yet.
185029Spjd		 * Fortunately, either version of the label will have the
185029Spjd		 * same top guid, so if we're a top-level vdev, we can
185029Spjd		 * safely compare to that instead.
219089Spjd		 *
219089Spjd		 * If we split this vdev off instead, then we also check the
219089Spjd		 * original pool's guid.  We don't want to consider the vdev
219089Spjd		 * corrupt if it is partway through a split operation.
185029Spjd		 */
168404Spjd		if (nvlist_lookup_uint64(label, ZPOOL_CONFIG_GUID,
185029Spjd		    &guid) != 0 ||
185029Spjd		    nvlist_lookup_uint64(label, ZPOOL_CONFIG_TOP_GUID,
185029Spjd		    &top_guid) != 0 ||
219089Spjd		    ((vd->vdev_guid != guid && vd->vdev_guid != aux_guid) &&
185029Spjd		    (vd->vdev_guid != top_guid || vd != vd->vdev_top))) {
168404Spjd			vdev_set_state(vd, B_FALSE, VDEV_STATE_CANT_OPEN,
168404Spjd			    VDEV_AUX_CORRUPT_DATA);
168404Spjd			nvlist_free(label);
168404Spjd			return (0);
168404Spjd		}
168404Spjd
168404Spjd		if (nvlist_lookup_uint64(label, ZPOOL_CONFIG_POOL_STATE,
168404Spjd		    &state) != 0) {
168404Spjd			vdev_set_state(vd, B_FALSE, VDEV_STATE_CANT_OPEN,
168404Spjd			    VDEV_AUX_CORRUPT_DATA);
168404Spjd			nvlist_free(label);
168404Spjd			return (0);
168404Spjd		}
168404Spjd
168404Spjd		nvlist_free(label);
168404Spjd
209962Smm		/*
219089Spjd		 * If this is a verbatim import, no need to check the
209962Smm		 * state of the pool.
209962Smm		 */
219089Spjd		if (!(spa->spa_import_flags & ZFS_IMPORT_VERBATIM) &&
219089Spjd		    spa_load_state(spa) == SPA_LOAD_OPEN &&
168404Spjd		    state != POOL_STATE_ACTIVE)
168926Spjd			return (EBADF);
185029Spjd
185029Spjd		/*
185029Spjd		 * If we were able to open and validate a vdev that was
185029Spjd		 * previously marked permanently unavailable, clear that state
185029Spjd		 * now.
185029Spjd		 */
185029Spjd		if (vd->vdev_not_present)
185029Spjd			vd->vdev_not_present = 0;
168404Spjd	}
168404Spjd
168404Spjd	return (0);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Close a virtual device.
168404Spjd */
168404Spjdvoid
168404Spjdvdev_close(vdev_t *vd)
168404Spjd{
209962Smm	spa_t *spa = vd->vdev_spa;
219089Spjd	vdev_t *pvd = vd->vdev_parent;
209962Smm
209962Smm	ASSERT(spa_config_held(spa, SCL_STATE_ALL, RW_WRITER) == SCL_STATE_ALL);
209962Smm
219089Spjd	/*
219089Spjd	 * If our parent is reopening, then we are as well, unless we are
219089Spjd	 * going offline.
219089Spjd	 */
219089Spjd	if (pvd != NULL && pvd->vdev_reopening)
219089Spjd		vd->vdev_reopening = (pvd->vdev_reopening && !vd->vdev_offline);
219089Spjd
168404Spjd	vd->vdev_ops->vdev_op_close(vd);
168404Spjd
185029Spjd	vdev_cache_purge(vd);
168404Spjd
168404Spjd	/*
219089Spjd	 * We record the previous state before we close it, so that if we are
168404Spjd	 * doing a reopen(), we don't generate FMA ereports if we notice that
168404Spjd	 * it's still faulted.
168404Spjd	 */
168404Spjd	vd->vdev_prevstate = vd->vdev_state;
168404Spjd
168404Spjd	if (vd->vdev_offline)
168404Spjd		vd->vdev_state = VDEV_STATE_OFFLINE;
168404Spjd	else
168404Spjd		vd->vdev_state = VDEV_STATE_CLOSED;
168404Spjd	vd->vdev_stat.vs_aux = VDEV_AUX_NONE;
168404Spjd}
168404Spjd
168404Spjdvoid
219089Spjdvdev_hold(vdev_t *vd)
219089Spjd{
219089Spjd	spa_t *spa = vd->vdev_spa;
219089Spjd
219089Spjd	ASSERT(spa_is_root(spa));
219089Spjd	if (spa->spa_state == POOL_STATE_UNINITIALIZED)
219089Spjd		return;
219089Spjd
219089Spjd	for (int c = 0; c < vd->vdev_children; c++)
219089Spjd		vdev_hold(vd->vdev_child[c]);
219089Spjd
219089Spjd	if (vd->vdev_ops->vdev_op_leaf)
219089Spjd		vd->vdev_ops->vdev_op_hold(vd);
219089Spjd}
219089Spjd
219089Spjdvoid
219089Spjdvdev_rele(vdev_t *vd)
219089Spjd{
219089Spjd	spa_t *spa = vd->vdev_spa;
219089Spjd
219089Spjd	ASSERT(spa_is_root(spa));
219089Spjd	for (int c = 0; c < vd->vdev_children; c++)
219089Spjd		vdev_rele(vd->vdev_child[c]);
219089Spjd
219089Spjd	if (vd->vdev_ops->vdev_op_leaf)
219089Spjd		vd->vdev_ops->vdev_op_rele(vd);
219089Spjd}
219089Spjd
219089Spjd/*
219089Spjd * Reopen all interior vdevs and any unopened leaves.  We don't actually
219089Spjd * reopen leaf vdevs which had previously been opened as they might deadlock
219089Spjd * on the spa_config_lock.  Instead we only obtain the leaf's physical size.
219089Spjd * If the leaf has never been opened then open it, as usual.
219089Spjd */
219089Spjdvoid
168404Spjdvdev_reopen(vdev_t *vd)
168404Spjd{
168404Spjd	spa_t *spa = vd->vdev_spa;
168404Spjd
185029Spjd	ASSERT(spa_config_held(spa, SCL_STATE_ALL, RW_WRITER) == SCL_STATE_ALL);
168404Spjd
219089Spjd	/* set the reopening flag unless we're taking the vdev offline */
219089Spjd	vd->vdev_reopening = !vd->vdev_offline;
168404Spjd	vdev_close(vd);
168404Spjd	(void) vdev_open(vd);
168404Spjd
168404Spjd	/*
168404Spjd	 * Call vdev_validate() here to make sure we have the same device.
168404Spjd	 * Otherwise, a device with an invalid label could be successfully
168404Spjd	 * opened in response to vdev_reopen().
168404Spjd	 */
185029Spjd	if (vd->vdev_aux) {
185029Spjd		(void) vdev_validate_aux(vd);
185029Spjd		if (vdev_readable(vd) && vdev_writeable(vd) &&
209962Smm		    vd->vdev_aux == &spa->spa_l2cache &&
219089Spjd		    !l2arc_vdev_present(vd))
219089Spjd			l2arc_add_vdev(spa, vd);
185029Spjd	} else {
185029Spjd		(void) vdev_validate(vd);
185029Spjd	}
168404Spjd
168404Spjd	/*
185029Spjd	 * Reassess parent vdev's health.
168404Spjd	 */
185029Spjd	vdev_propagate_state(vd);
168404Spjd}
168404Spjd
168404Spjdint
168404Spjdvdev_create(vdev_t *vd, uint64_t txg, boolean_t isreplacing)
168404Spjd{
168404Spjd	int error;
168404Spjd
168404Spjd	/*
168404Spjd	 * Normally, partial opens (e.g. of a mirror) are allowed.
168404Spjd	 * For a create, however, we want to fail the request if
168404Spjd	 * there are any components we can't open.
168404Spjd	 */
168404Spjd	error = vdev_open(vd);
168404Spjd
168404Spjd	if (error || vd->vdev_state != VDEV_STATE_HEALTHY) {
168404Spjd		vdev_close(vd);
168404Spjd		return (error ? error : ENXIO);
168404Spjd	}
168404Spjd
168404Spjd	/*
168404Spjd	 * Recursively initialize all labels.
168404Spjd	 */
168404Spjd	if ((error = vdev_label_init(vd, txg, isreplacing ?
168404Spjd	    VDEV_LABEL_REPLACE : VDEV_LABEL_CREATE)) != 0) {
168404Spjd		vdev_close(vd);
168404Spjd		return (error);
168404Spjd	}
168404Spjd
168404Spjd	return (0);
168404Spjd}
168404Spjd
168404Spjdvoid
219089Spjdvdev_metaslab_set_size(vdev_t *vd)
168404Spjd{
168404Spjd	/*
168404Spjd	 * Aim for roughly 200 metaslabs per vdev.
168404Spjd	 */
168404Spjd	vd->vdev_ms_shift = highbit(vd->vdev_asize / 200);
168404Spjd	vd->vdev_ms_shift = MAX(vd->vdev_ms_shift, SPA_MAXBLOCKSHIFT);
168404Spjd}
168404Spjd
168404Spjdvoid
168404Spjdvdev_dirty(vdev_t *vd, int flags, void *arg, uint64_t txg)
168404Spjd{
168404Spjd	ASSERT(vd == vd->vdev_top);
219089Spjd	ASSERT(!vd->vdev_ishole);
168404Spjd	ASSERT(ISP2(flags));
219089Spjd	ASSERT(spa_writeable(vd->vdev_spa));
168404Spjd
168404Spjd	if (flags & VDD_METASLAB)
168404Spjd		(void) txg_list_add(&vd->vdev_ms_list, arg, txg);
168404Spjd
168404Spjd	if (flags & VDD_DTL)
168404Spjd		(void) txg_list_add(&vd->vdev_dtl_list, arg, txg);
168404Spjd
168404Spjd	(void) txg_list_add(&vd->vdev_spa->spa_vdev_txg_list, vd, txg);
168404Spjd}
168404Spjd
209962Smm/*
209962Smm * DTLs.
209962Smm *
209962Smm * A vdev's DTL (dirty time log) is the set of transaction groups for which
219089Spjd * the vdev has less than perfect replication.  There are four kinds of DTL:
209962Smm *
209962Smm * DTL_MISSING: txgs for which the vdev has no valid copies of the data
209962Smm *
209962Smm * DTL_PARTIAL: txgs for which data is available, but not fully replicated
209962Smm *
209962Smm * DTL_SCRUB: the txgs that could not be repaired by the last scrub; upon
209962Smm *	scrub completion, DTL_SCRUB replaces DTL_MISSING in the range of
209962Smm *	txgs that was scrubbed.
209962Smm *
209962Smm * DTL_OUTAGE: txgs which cannot currently be read, whether due to
209962Smm *	persistent errors or just some device being offline.
209962Smm *	Unlike the other three, the DTL_OUTAGE map is not generally
209962Smm *	maintained; it's only computed when needed, typically to
209962Smm *	determine whether a device can be detached.
209962Smm *
209962Smm * For leaf vdevs, DTL_MISSING and DTL_PARTIAL are identical: the device
209962Smm * either has the data or it doesn't.
209962Smm *
209962Smm * For interior vdevs such as mirror and RAID-Z the picture is more complex.
209962Smm * A vdev's DTL_PARTIAL is the union of its children's DTL_PARTIALs, because
209962Smm * if any child is less than fully replicated, then so is its parent.
209962Smm * A vdev's DTL_MISSING is a modified union of its children's DTL_MISSINGs,
209962Smm * comprising only those txgs which appear in 'maxfaults' or more children;
209962Smm * those are the txgs we don't have enough replication to read.  For example,
209962Smm * double-parity RAID-Z can tolerate up to two missing devices (maxfaults == 2);
209962Smm * thus, its DTL_MISSING consists of the set of txgs that appear in more than
209962Smm * two child DTL_MISSING maps.
209962Smm *
209962Smm * It should be clear from the above that to compute the DTLs and outage maps
209962Smm * for all vdevs, it suffices to know just the leaf vdevs' DTL_MISSING maps.
209962Smm * Therefore, that is all we keep on disk.  When loading the pool, or after
209962Smm * a configuration change, we generate all other DTLs from first principles.
209962Smm */
168404Spjdvoid
209962Smmvdev_dtl_dirty(vdev_t *vd, vdev_dtl_type_t t, uint64_t txg, uint64_t size)
168404Spjd{
209962Smm	space_map_t *sm = &vd->vdev_dtl[t];
209962Smm
209962Smm	ASSERT(t < DTL_TYPES);
209962Smm	ASSERT(vd != vd->vdev_spa->spa_root_vdev);
219089Spjd	ASSERT(spa_writeable(vd->vdev_spa));
209962Smm
168404Spjd	mutex_enter(sm->sm_lock);
168404Spjd	if (!space_map_contains(sm, txg, size))
168404Spjd		space_map_add(sm, txg, size);
168404Spjd	mutex_exit(sm->sm_lock);
168404Spjd}
168404Spjd
209962Smmboolean_t
209962Smmvdev_dtl_contains(vdev_t *vd, vdev_dtl_type_t t, uint64_t txg, uint64_t size)
168404Spjd{
209962Smm	space_map_t *sm = &vd->vdev_dtl[t];
209962Smm	boolean_t dirty = B_FALSE;
168404Spjd
209962Smm	ASSERT(t < DTL_TYPES);
209962Smm	ASSERT(vd != vd->vdev_spa->spa_root_vdev);
168404Spjd
168404Spjd	mutex_enter(sm->sm_lock);
209962Smm	if (sm->sm_space != 0)
209962Smm		dirty = space_map_contains(sm, txg, size);
168404Spjd	mutex_exit(sm->sm_lock);
168404Spjd
168404Spjd	return (dirty);
168404Spjd}
168404Spjd
209962Smmboolean_t
209962Smmvdev_dtl_empty(vdev_t *vd, vdev_dtl_type_t t)
209962Smm{
209962Smm	space_map_t *sm = &vd->vdev_dtl[t];
209962Smm	boolean_t empty;
209962Smm
209962Smm	mutex_enter(sm->sm_lock);
209962Smm	empty = (sm->sm_space == 0);
209962Smm	mutex_exit(sm->sm_lock);
209962Smm
209962Smm	return (empty);
209962Smm}
209962Smm
168404Spjd/*
168404Spjd * Reassess DTLs after a config change or scrub completion.
168404Spjd */
168404Spjdvoid
168404Spjdvdev_dtl_reassess(vdev_t *vd, uint64_t txg, uint64_t scrub_txg, int scrub_done)
168404Spjd{
168404Spjd	spa_t *spa = vd->vdev_spa;
209962Smm	avl_tree_t reftree;
209962Smm	int minref;
168404Spjd
209962Smm	ASSERT(spa_config_held(spa, SCL_ALL, RW_READER) != 0);
168404Spjd
209962Smm	for (int c = 0; c < vd->vdev_children; c++)
209962Smm		vdev_dtl_reassess(vd->vdev_child[c], txg,
209962Smm		    scrub_txg, scrub_done);
209962Smm
219089Spjd	if (vd == spa->spa_root_vdev || vd->vdev_ishole || vd->vdev_aux)
209962Smm		return;
209962Smm
209962Smm	if (vd->vdev_ops->vdev_op_leaf) {
219089Spjd		dsl_scan_t *scn = spa->spa_dsl_pool->dp_scan;
219089Spjd
168404Spjd		mutex_enter(&vd->vdev_dtl_lock);
185029Spjd		if (scrub_txg != 0 &&
219089Spjd		    (spa->spa_scrub_started ||
219089Spjd		    (scn && scn->scn_phys.scn_errors == 0))) {
185029Spjd			/*
185029Spjd			 * We completed a scrub up to scrub_txg.  If we
185029Spjd			 * did it without rebooting, then the scrub dtl
185029Spjd			 * will be valid, so excise the old region and
185029Spjd			 * fold in the scrub dtl.  Otherwise, leave the
185029Spjd			 * dtl as-is if there was an error.
209962Smm			 *
209962Smm			 * There's little trick here: to excise the beginning
209962Smm			 * of the DTL_MISSING map, we put it into a reference
209962Smm			 * tree and then add a segment with refcnt -1 that
209962Smm			 * covers the range [0, scrub_txg).  This means
209962Smm			 * that each txg in that range has refcnt -1 or 0.
209962Smm			 * We then add DTL_SCRUB with a refcnt of 2, so that
209962Smm			 * entries in the range [0, scrub_txg) will have a
209962Smm			 * positive refcnt -- either 1 or 2.  We then convert
209962Smm			 * the reference tree into the new DTL_MISSING map.
185029Spjd			 */
209962Smm			space_map_ref_create(&reftree);
209962Smm			space_map_ref_add_map(&reftree,
209962Smm			    &vd->vdev_dtl[DTL_MISSING], 1);
209962Smm			space_map_ref_add_seg(&reftree, 0, scrub_txg, -1);
209962Smm			space_map_ref_add_map(&reftree,
209962Smm			    &vd->vdev_dtl[DTL_SCRUB], 2);
209962Smm			space_map_ref_generate_map(&reftree,
209962Smm			    &vd->vdev_dtl[DTL_MISSING], 1);
209962Smm			space_map_ref_destroy(&reftree);
168404Spjd		}
209962Smm		space_map_vacate(&vd->vdev_dtl[DTL_PARTIAL], NULL, NULL);
209962Smm		space_map_walk(&vd->vdev_dtl[DTL_MISSING],
209962Smm		    space_map_add, &vd->vdev_dtl[DTL_PARTIAL]);
168404Spjd		if (scrub_done)
209962Smm			space_map_vacate(&vd->vdev_dtl[DTL_SCRUB], NULL, NULL);
209962Smm		space_map_vacate(&vd->vdev_dtl[DTL_OUTAGE], NULL, NULL);
209962Smm		if (!vdev_readable(vd))
209962Smm			space_map_add(&vd->vdev_dtl[DTL_OUTAGE], 0, -1ULL);
209962Smm		else
209962Smm			space_map_walk(&vd->vdev_dtl[DTL_MISSING],
209962Smm			    space_map_add, &vd->vdev_dtl[DTL_OUTAGE]);
168404Spjd		mutex_exit(&vd->vdev_dtl_lock);
185029Spjd
168404Spjd		if (txg != 0)
168404Spjd			vdev_dirty(vd->vdev_top, VDD_DTL, vd, txg);
168404Spjd		return;
168404Spjd	}
168404Spjd
168404Spjd	mutex_enter(&vd->vdev_dtl_lock);
209962Smm	for (int t = 0; t < DTL_TYPES; t++) {
209962Smm		/* account for child's outage in parent's missing map */
209962Smm		int s = (t == DTL_MISSING) ? DTL_OUTAGE: t;
209962Smm		if (t == DTL_SCRUB)
209962Smm			continue;			/* leaf vdevs only */
209962Smm		if (t == DTL_PARTIAL)
209962Smm			minref = 1;			/* i.e. non-zero */
209962Smm		else if (vd->vdev_nparity != 0)
209962Smm			minref = vd->vdev_nparity + 1;	/* RAID-Z */
209962Smm		else
209962Smm			minref = vd->vdev_children;	/* any kind of mirror */
209962Smm		space_map_ref_create(&reftree);
209962Smm		for (int c = 0; c < vd->vdev_children; c++) {
209962Smm			vdev_t *cvd = vd->vdev_child[c];
209962Smm			mutex_enter(&cvd->vdev_dtl_lock);
209962Smm			space_map_ref_add_map(&reftree, &cvd->vdev_dtl[s], 1);
209962Smm			mutex_exit(&cvd->vdev_dtl_lock);
209962Smm		}
209962Smm		space_map_ref_generate_map(&reftree, &vd->vdev_dtl[t], minref);
209962Smm		space_map_ref_destroy(&reftree);
209962Smm	}
168404Spjd	mutex_exit(&vd->vdev_dtl_lock);
168404Spjd}
168404Spjd
168404Spjdstatic int
168404Spjdvdev_dtl_load(vdev_t *vd)
168404Spjd{
168404Spjd	spa_t *spa = vd->vdev_spa;
209962Smm	space_map_obj_t *smo = &vd->vdev_dtl_smo;
168404Spjd	objset_t *mos = spa->spa_meta_objset;
168404Spjd	dmu_buf_t *db;
168404Spjd	int error;
168404Spjd
168404Spjd	ASSERT(vd->vdev_children == 0);
168404Spjd
168404Spjd	if (smo->smo_object == 0)
168404Spjd		return (0);
168404Spjd
219089Spjd	ASSERT(!vd->vdev_ishole);
219089Spjd
168404Spjd	if ((error = dmu_bonus_hold(mos, smo->smo_object, FTAG, &db)) != 0)
168404Spjd		return (error);
168404Spjd
185029Spjd	ASSERT3U(db->db_size, >=, sizeof (*smo));
185029Spjd	bcopy(db->db_data, smo, sizeof (*smo));
168404Spjd	dmu_buf_rele(db, FTAG);
168404Spjd
168404Spjd	mutex_enter(&vd->vdev_dtl_lock);
209962Smm	error = space_map_load(&vd->vdev_dtl[DTL_MISSING],
209962Smm	    NULL, SM_ALLOC, smo, mos);
168404Spjd	mutex_exit(&vd->vdev_dtl_lock);
168404Spjd
168404Spjd	return (error);
168404Spjd}
168404Spjd
168404Spjdvoid
168404Spjdvdev_dtl_sync(vdev_t *vd, uint64_t txg)
168404Spjd{
168404Spjd	spa_t *spa = vd->vdev_spa;
209962Smm	space_map_obj_t *smo = &vd->vdev_dtl_smo;
209962Smm	space_map_t *sm = &vd->vdev_dtl[DTL_MISSING];
168404Spjd	objset_t *mos = spa->spa_meta_objset;
168404Spjd	space_map_t smsync;
168404Spjd	kmutex_t smlock;
168404Spjd	dmu_buf_t *db;
168404Spjd	dmu_tx_t *tx;
168404Spjd
219089Spjd	ASSERT(!vd->vdev_ishole);
219089Spjd
168404Spjd	tx = dmu_tx_create_assigned(spa->spa_dsl_pool, txg);
168404Spjd
168404Spjd	if (vd->vdev_detached) {
168404Spjd		if (smo->smo_object != 0) {
168404Spjd			int err = dmu_object_free(mos, smo->smo_object, tx);
168404Spjd			ASSERT3U(err, ==, 0);
168404Spjd			smo->smo_object = 0;
168404Spjd		}
168404Spjd		dmu_tx_commit(tx);
168404Spjd		return;
168404Spjd	}
168404Spjd
168404Spjd	if (smo->smo_object == 0) {
168404Spjd		ASSERT(smo->smo_objsize == 0);
168404Spjd		ASSERT(smo->smo_alloc == 0);
168404Spjd		smo->smo_object = dmu_object_alloc(mos,
168404Spjd		    DMU_OT_SPACE_MAP, 1 << SPACE_MAP_BLOCKSHIFT,
168404Spjd		    DMU_OT_SPACE_MAP_HEADER, sizeof (*smo), tx);
168404Spjd		ASSERT(smo->smo_object != 0);
168404Spjd		vdev_config_dirty(vd->vdev_top);
168404Spjd	}
168404Spjd
168404Spjd	mutex_init(&smlock, NULL, MUTEX_DEFAULT, NULL);
168404Spjd
168404Spjd	space_map_create(&smsync, sm->sm_start, sm->sm_size, sm->sm_shift,
168404Spjd	    &smlock);
168404Spjd
168404Spjd	mutex_enter(&smlock);
168404Spjd
168404Spjd	mutex_enter(&vd->vdev_dtl_lock);
168404Spjd	space_map_walk(sm, space_map_add, &smsync);
168404Spjd	mutex_exit(&vd->vdev_dtl_lock);
168404Spjd
168404Spjd	space_map_truncate(smo, mos, tx);
168404Spjd	space_map_sync(&smsync, SM_ALLOC, smo, mos, tx);
168404Spjd
168404Spjd	space_map_destroy(&smsync);
168404Spjd
168404Spjd	mutex_exit(&smlock);
168404Spjd	mutex_destroy(&smlock);
168404Spjd
168404Spjd	VERIFY(0 == dmu_bonus_hold(mos, smo->smo_object, FTAG, &db));
168404Spjd	dmu_buf_will_dirty(db, tx);
185029Spjd	ASSERT3U(db->db_size, >=, sizeof (*smo));
185029Spjd	bcopy(smo, db->db_data, sizeof (*smo));
168404Spjd	dmu_buf_rele(db, FTAG);
168404Spjd
168404Spjd	dmu_tx_commit(tx);
168404Spjd}
168404Spjd
185029Spjd/*
209962Smm * Determine whether the specified vdev can be offlined/detached/removed
209962Smm * without losing data.
209962Smm */
209962Smmboolean_t
209962Smmvdev_dtl_required(vdev_t *vd)
209962Smm{
209962Smm	spa_t *spa = vd->vdev_spa;
209962Smm	vdev_t *tvd = vd->vdev_top;
209962Smm	uint8_t cant_read = vd->vdev_cant_read;
209962Smm	boolean_t required;
209962Smm
209962Smm	ASSERT(spa_config_held(spa, SCL_STATE_ALL, RW_WRITER) == SCL_STATE_ALL);
209962Smm
209962Smm	if (vd == spa->spa_root_vdev || vd == tvd)
209962Smm		return (B_TRUE);
209962Smm
209962Smm	/*
209962Smm	 * Temporarily mark the device as unreadable, and then determine
209962Smm	 * whether this results in any DTL outages in the top-level vdev.
209962Smm	 * If not, we can safely offline/detach/remove the device.
209962Smm	 */
209962Smm	vd->vdev_cant_read = B_TRUE;
209962Smm	vdev_dtl_reassess(tvd, 0, 0, B_FALSE);
209962Smm	required = !vdev_dtl_empty(tvd, DTL_OUTAGE);
209962Smm	vd->vdev_cant_read = cant_read;
209962Smm	vdev_dtl_reassess(tvd, 0, 0, B_FALSE);
209962Smm
219089Spjd	if (!required && zio_injection_enabled)
219089Spjd		required = !!zio_handle_device_injection(vd, NULL, ECHILD);
219089Spjd
209962Smm	return (required);
209962Smm}
209962Smm
209962Smm/*
185029Spjd * Determine if resilver is needed, and if so the txg range.
185029Spjd */
185029Spjdboolean_t
185029Spjdvdev_resilver_needed(vdev_t *vd, uint64_t *minp, uint64_t *maxp)
185029Spjd{
185029Spjd	boolean_t needed = B_FALSE;
185029Spjd	uint64_t thismin = UINT64_MAX;
185029Spjd	uint64_t thismax = 0;
185029Spjd
185029Spjd	if (vd->vdev_children == 0) {
185029Spjd		mutex_enter(&vd->vdev_dtl_lock);
209962Smm		if (vd->vdev_dtl[DTL_MISSING].sm_space != 0 &&
209962Smm		    vdev_writeable(vd)) {
185029Spjd			space_seg_t *ss;
185029Spjd
209962Smm			ss = avl_first(&vd->vdev_dtl[DTL_MISSING].sm_root);
185029Spjd			thismin = ss->ss_start - 1;
209962Smm			ss = avl_last(&vd->vdev_dtl[DTL_MISSING].sm_root);
185029Spjd			thismax = ss->ss_end;
185029Spjd			needed = B_TRUE;
185029Spjd		}
185029Spjd		mutex_exit(&vd->vdev_dtl_lock);
185029Spjd	} else {
209962Smm		for (int c = 0; c < vd->vdev_children; c++) {
185029Spjd			vdev_t *cvd = vd->vdev_child[c];
185029Spjd			uint64_t cmin, cmax;
185029Spjd
185029Spjd			if (vdev_resilver_needed(cvd, &cmin, &cmax)) {
185029Spjd				thismin = MIN(thismin, cmin);
185029Spjd				thismax = MAX(thismax, cmax);
185029Spjd				needed = B_TRUE;
185029Spjd			}
185029Spjd		}
185029Spjd	}
185029Spjd
185029Spjd	if (needed && minp) {
185029Spjd		*minp = thismin;
185029Spjd		*maxp = thismax;
185029Spjd	}
185029Spjd	return (needed);
185029Spjd}
185029Spjd
168404Spjdvoid
168404Spjdvdev_load(vdev_t *vd)
168404Spjd{
168404Spjd	/*
168404Spjd	 * Recursively load all children.
168404Spjd	 */
209962Smm	for (int c = 0; c < vd->vdev_children; c++)
168404Spjd		vdev_load(vd->vdev_child[c]);
168404Spjd
168404Spjd	/*
168404Spjd	 * If this is a top-level vdev, initialize its metaslabs.
168404Spjd	 */
219089Spjd	if (vd == vd->vdev_top && !vd->vdev_ishole &&
168404Spjd	    (vd->vdev_ashift == 0 || vd->vdev_asize == 0 ||
168404Spjd	    vdev_metaslab_init(vd, 0) != 0))
168404Spjd		vdev_set_state(vd, B_FALSE, VDEV_STATE_CANT_OPEN,
168404Spjd		    VDEV_AUX_CORRUPT_DATA);
168404Spjd
168404Spjd	/*
168404Spjd	 * If this is a leaf vdev, load its DTL.
168404Spjd	 */
168404Spjd	if (vd->vdev_ops->vdev_op_leaf && vdev_dtl_load(vd) != 0)
168404Spjd		vdev_set_state(vd, B_FALSE, VDEV_STATE_CANT_OPEN,
168404Spjd		    VDEV_AUX_CORRUPT_DATA);
168404Spjd}
168404Spjd
168404Spjd/*
185029Spjd * The special vdev case is used for hot spares and l2cache devices.  Its
185029Spjd * sole purpose it to set the vdev state for the associated vdev.  To do this,
185029Spjd * we make sure that we can open the underlying device, then try to read the
185029Spjd * label, and make sure that the label is sane and that it hasn't been
185029Spjd * repurposed to another pool.
168404Spjd */
168404Spjdint
185029Spjdvdev_validate_aux(vdev_t *vd)
168404Spjd{
168404Spjd	nvlist_t *label;
168404Spjd	uint64_t guid, version;
168404Spjd	uint64_t state;
168404Spjd
185029Spjd	if (!vdev_readable(vd))
185029Spjd		return (0);
185029Spjd
168404Spjd	if ((label = vdev_label_read_config(vd)) == NULL) {
168404Spjd		vdev_set_state(vd, B_TRUE, VDEV_STATE_CANT_OPEN,
168404Spjd		    VDEV_AUX_CORRUPT_DATA);
168404Spjd		return (-1);
168404Spjd	}
168404Spjd
168404Spjd	if (nvlist_lookup_uint64(label, ZPOOL_CONFIG_VERSION, &version) != 0 ||
185029Spjd	    version > SPA_VERSION ||
168404Spjd	    nvlist_lookup_uint64(label, ZPOOL_CONFIG_GUID, &guid) != 0 ||
168404Spjd	    guid != vd->vdev_guid ||
168404Spjd	    nvlist_lookup_uint64(label, ZPOOL_CONFIG_POOL_STATE, &state) != 0) {
168404Spjd		vdev_set_state(vd, B_TRUE, VDEV_STATE_CANT_OPEN,
168404Spjd		    VDEV_AUX_CORRUPT_DATA);
168404Spjd		nvlist_free(label);
168404Spjd		return (-1);
168404Spjd	}
168404Spjd
168404Spjd	/*
168404Spjd	 * We don't actually check the pool state here.  If it's in fact in
168404Spjd	 * use by another pool, we update this fact on the fly when requested.
168404Spjd	 */
168404Spjd	nvlist_free(label);
168404Spjd	return (0);
168404Spjd}
168404Spjd
168404Spjdvoid
219089Spjdvdev_remove(vdev_t *vd, uint64_t txg)
219089Spjd{
219089Spjd	spa_t *spa = vd->vdev_spa;
219089Spjd	objset_t *mos = spa->spa_meta_objset;
219089Spjd	dmu_tx_t *tx;
219089Spjd
219089Spjd	tx = dmu_tx_create_assigned(spa_get_dsl(spa), txg);
219089Spjd
219089Spjd	if (vd->vdev_dtl_smo.smo_object) {
219089Spjd		ASSERT3U(vd->vdev_dtl_smo.smo_alloc, ==, 0);
219089Spjd		(void) dmu_object_free(mos, vd->vdev_dtl_smo.smo_object, tx);
219089Spjd		vd->vdev_dtl_smo.smo_object = 0;
219089Spjd	}
219089Spjd
219089Spjd	if (vd->vdev_ms != NULL) {
219089Spjd		for (int m = 0; m < vd->vdev_ms_count; m++) {
219089Spjd			metaslab_t *msp = vd->vdev_ms[m];
219089Spjd
219089Spjd			if (msp == NULL || msp->ms_smo.smo_object == 0)
219089Spjd				continue;
219089Spjd
219089Spjd			ASSERT3U(msp->ms_smo.smo_alloc, ==, 0);
219089Spjd			(void) dmu_object_free(mos, msp->ms_smo.smo_object, tx);
219089Spjd			msp->ms_smo.smo_object = 0;
219089Spjd		}
219089Spjd	}
219089Spjd
219089Spjd	if (vd->vdev_ms_array) {
219089Spjd		(void) dmu_object_free(mos, vd->vdev_ms_array, tx);
219089Spjd		vd->vdev_ms_array = 0;
219089Spjd		vd->vdev_ms_shift = 0;
219089Spjd	}
219089Spjd	dmu_tx_commit(tx);
219089Spjd}
219089Spjd
219089Spjdvoid
168404Spjdvdev_sync_done(vdev_t *vd, uint64_t txg)
168404Spjd{
168404Spjd	metaslab_t *msp;
211931Smm	boolean_t reassess = !txg_list_empty(&vd->vdev_ms_list, TXG_CLEAN(txg));
168404Spjd
219089Spjd	ASSERT(!vd->vdev_ishole);
219089Spjd
168404Spjd	while (msp = txg_list_remove(&vd->vdev_ms_list, TXG_CLEAN(txg)))
168404Spjd		metaslab_sync_done(msp, txg);
211931Smm
211931Smm	if (reassess)
211931Smm		metaslab_sync_reassess(vd->vdev_mg);
168404Spjd}
168404Spjd
168404Spjdvoid
168404Spjdvdev_sync(vdev_t *vd, uint64_t txg)
168404Spjd{
168404Spjd	spa_t *spa = vd->vdev_spa;
168404Spjd	vdev_t *lvd;
168404Spjd	metaslab_t *msp;
168404Spjd	dmu_tx_t *tx;
168404Spjd
219089Spjd	ASSERT(!vd->vdev_ishole);
219089Spjd
168404Spjd	if (vd->vdev_ms_array == 0 && vd->vdev_ms_shift != 0) {
168404Spjd		ASSERT(vd == vd->vdev_top);
168404Spjd		tx = dmu_tx_create_assigned(spa->spa_dsl_pool, txg);
168404Spjd		vd->vdev_ms_array = dmu_object_alloc(spa->spa_meta_objset,
168404Spjd		    DMU_OT_OBJECT_ARRAY, 0, DMU_OT_NONE, 0, tx);
168404Spjd		ASSERT(vd->vdev_ms_array != 0);
168404Spjd		vdev_config_dirty(vd);
168404Spjd		dmu_tx_commit(tx);
168404Spjd	}
168404Spjd
219089Spjd	/*
219089Spjd	 * Remove the metadata associated with this vdev once it's empty.
219089Spjd	 */
219089Spjd	if (vd->vdev_stat.vs_alloc == 0 && vd->vdev_removing)
219089Spjd		vdev_remove(vd, txg);
219089Spjd
168404Spjd	while ((msp = txg_list_remove(&vd->vdev_ms_list, txg)) != NULL) {
168404Spjd		metaslab_sync(msp, txg);
168404Spjd		(void) txg_list_add(&vd->vdev_ms_list, msp, TXG_CLEAN(txg));
168404Spjd	}
168404Spjd
168404Spjd	while ((lvd = txg_list_remove(&vd->vdev_dtl_list, txg)) != NULL)
168404Spjd		vdev_dtl_sync(lvd, txg);
168404Spjd
168404Spjd	(void) txg_list_add(&spa->spa_vdev_txg_list, vd, TXG_CLEAN(txg));
168404Spjd}
168404Spjd
168404Spjduint64_t
168404Spjdvdev_psize_to_asize(vdev_t *vd, uint64_t psize)
168404Spjd{
168404Spjd	return (vd->vdev_ops->vdev_op_asize(vd, psize));
168404Spjd}
168404Spjd
185029Spjd/*
185029Spjd * Mark the given vdev faulted.  A faulted vdev behaves as if the device could
185029Spjd * not be opened, and no I/O is attempted.
185029Spjd */
185029Spjdint
219089Spjdvdev_fault(spa_t *spa, uint64_t guid, vdev_aux_t aux)
168404Spjd{
219089Spjd	vdev_t *vd, *tvd;
168404Spjd
219089Spjd	spa_vdev_state_enter(spa, SCL_NONE);
185029Spjd
185029Spjd	if ((vd = spa_lookup_by_guid(spa, guid, B_TRUE)) == NULL)
185029Spjd		return (spa_vdev_state_exit(spa, NULL, ENODEV));
185029Spjd
185029Spjd	if (!vd->vdev_ops->vdev_op_leaf)
185029Spjd		return (spa_vdev_state_exit(spa, NULL, ENOTSUP));
185029Spjd
219089Spjd	tvd = vd->vdev_top;
219089Spjd
185029Spjd	/*
219089Spjd	 * We don't directly use the aux state here, but if we do a
219089Spjd	 * vdev_reopen(), we need this value to be present to remember why we
219089Spjd	 * were faulted.
219089Spjd	 */
219089Spjd	vd->vdev_label_aux = aux;
219089Spjd
219089Spjd	/*
185029Spjd	 * Faulted state takes precedence over degraded.
185029Spjd	 */
219089Spjd	vd->vdev_delayed_close = B_FALSE;
185029Spjd	vd->vdev_faulted = 1ULL;
185029Spjd	vd->vdev_degraded = 0ULL;
219089Spjd	vdev_set_state(vd, B_FALSE, VDEV_STATE_FAULTED, aux);
185029Spjd
185029Spjd	/*
219089Spjd	 * If this device has the only valid copy of the data, then
219089Spjd	 * back off and simply mark the vdev as degraded instead.
185029Spjd	 */
219089Spjd	if (!tvd->vdev_islog && vd->vdev_aux == NULL && vdev_dtl_required(vd)) {
185029Spjd		vd->vdev_degraded = 1ULL;
185029Spjd		vd->vdev_faulted = 0ULL;
185029Spjd
185029Spjd		/*
185029Spjd		 * If we reopen the device and it's not dead, only then do we
185029Spjd		 * mark it degraded.
185029Spjd		 */
219089Spjd		vdev_reopen(tvd);
185029Spjd
219089Spjd		if (vdev_readable(vd))
219089Spjd			vdev_set_state(vd, B_FALSE, VDEV_STATE_DEGRADED, aux);
185029Spjd	}
185029Spjd
185029Spjd	return (spa_vdev_state_exit(spa, vd, 0));
168404Spjd}
168404Spjd
185029Spjd/*
185029Spjd * Mark the given vdev degraded.  A degraded vdev is purely an indication to the
185029Spjd * user that something is wrong.  The vdev continues to operate as normal as far
185029Spjd * as I/O is concerned.
185029Spjd */
185029Spjdint
219089Spjdvdev_degrade(spa_t *spa, uint64_t guid, vdev_aux_t aux)
168404Spjd{
185029Spjd	vdev_t *vd;
168404Spjd
219089Spjd	spa_vdev_state_enter(spa, SCL_NONE);
168404Spjd
185029Spjd	if ((vd = spa_lookup_by_guid(spa, guid, B_TRUE)) == NULL)
185029Spjd		return (spa_vdev_state_exit(spa, NULL, ENODEV));
168404Spjd
185029Spjd	if (!vd->vdev_ops->vdev_op_leaf)
185029Spjd		return (spa_vdev_state_exit(spa, NULL, ENOTSUP));
185029Spjd
185029Spjd	/*
185029Spjd	 * If the vdev is already faulted, then don't do anything.
185029Spjd	 */
185029Spjd	if (vd->vdev_faulted || vd->vdev_degraded)
185029Spjd		return (spa_vdev_state_exit(spa, NULL, 0));
185029Spjd
185029Spjd	vd->vdev_degraded = 1ULL;
185029Spjd	if (!vdev_is_dead(vd))
185029Spjd		vdev_set_state(vd, B_FALSE, VDEV_STATE_DEGRADED,
219089Spjd		    aux);
185029Spjd
185029Spjd	return (spa_vdev_state_exit(spa, vd, 0));
168404Spjd}
168404Spjd
185029Spjd/*
185029Spjd * Online the given vdev.  If 'unspare' is set, it implies two things.  First,
185029Spjd * any attached spare device should be detached when the device finishes
185029Spjd * resilvering.  Second, the online should be treated like a 'test' online case,
185029Spjd * so no FMA events are generated if the device fails to open.
185029Spjd */
168404Spjdint
185029Spjdvdev_online(spa_t *spa, uint64_t guid, uint64_t flags, vdev_state_t *newstate)
168404Spjd{
219089Spjd	vdev_t *vd, *tvd, *pvd, *rvd = spa->spa_root_vdev;
168404Spjd
219089Spjd	spa_vdev_state_enter(spa, SCL_NONE);
168404Spjd
185029Spjd	if ((vd = spa_lookup_by_guid(spa, guid, B_TRUE)) == NULL)
185029Spjd		return (spa_vdev_state_exit(spa, NULL, ENODEV));
168404Spjd
168404Spjd	if (!vd->vdev_ops->vdev_op_leaf)
185029Spjd		return (spa_vdev_state_exit(spa, NULL, ENOTSUP));
168404Spjd
219089Spjd	tvd = vd->vdev_top;
168404Spjd	vd->vdev_offline = B_FALSE;
168404Spjd	vd->vdev_tmpoffline = B_FALSE;
185029Spjd	vd->vdev_checkremove = !!(flags & ZFS_ONLINE_CHECKREMOVE);
185029Spjd	vd->vdev_forcefault = !!(flags & ZFS_ONLINE_FORCEFAULT);
219089Spjd
219089Spjd	/* XXX - L2ARC 1.0 does not support expansion */
219089Spjd	if (!vd->vdev_aux) {
219089Spjd		for (pvd = vd; pvd != rvd; pvd = pvd->vdev_parent)
219089Spjd			pvd->vdev_expanding = !!(flags & ZFS_ONLINE_EXPAND);
219089Spjd	}
219089Spjd
219089Spjd	vdev_reopen(tvd);
185029Spjd	vd->vdev_checkremove = vd->vdev_forcefault = B_FALSE;
168404Spjd
219089Spjd	if (!vd->vdev_aux) {
219089Spjd		for (pvd = vd; pvd != rvd; pvd = pvd->vdev_parent)
219089Spjd			pvd->vdev_expanding = B_FALSE;
219089Spjd	}
219089Spjd
185029Spjd	if (newstate)
185029Spjd		*newstate = vd->vdev_state;
185029Spjd	if ((flags & ZFS_ONLINE_UNSPARE) &&
185029Spjd	    !vdev_is_dead(vd) && vd->vdev_parent &&
185029Spjd	    vd->vdev_parent->vdev_ops == &vdev_spare_ops &&
185029Spjd	    vd->vdev_parent->vdev_child[0] == vd)
185029Spjd		vd->vdev_unspare = B_TRUE;
168404Spjd
219089Spjd	if ((flags & ZFS_ONLINE_EXPAND) || spa->spa_autoexpand) {
219089Spjd
219089Spjd		/* XXX - L2ARC 1.0 does not support expansion */
219089Spjd		if (vd->vdev_aux)
219089Spjd			return (spa_vdev_state_exit(spa, vd, ENOTSUP));
219089Spjd		spa_async_request(spa, SPA_ASYNC_CONFIG_UPDATE);
219089Spjd	}
209962Smm	return (spa_vdev_state_exit(spa, vd, 0));
168404Spjd}
168404Spjd
219089Spjdstatic int
219089Spjdvdev_offline_locked(spa_t *spa, uint64_t guid, uint64_t flags)
168404Spjd{
213197Smm	vdev_t *vd, *tvd;
219089Spjd	int error = 0;
219089Spjd	uint64_t generation;
219089Spjd	metaslab_group_t *mg;
168404Spjd
219089Spjdtop:
219089Spjd	spa_vdev_state_enter(spa, SCL_ALLOC);
168404Spjd
185029Spjd	if ((vd = spa_lookup_by_guid(spa, guid, B_TRUE)) == NULL)
185029Spjd		return (spa_vdev_state_exit(spa, NULL, ENODEV));
168404Spjd
168404Spjd	if (!vd->vdev_ops->vdev_op_leaf)
185029Spjd		return (spa_vdev_state_exit(spa, NULL, ENOTSUP));
168404Spjd
213197Smm	tvd = vd->vdev_top;
219089Spjd	mg = tvd->vdev_mg;
219089Spjd	generation = spa->spa_config_generation + 1;
213197Smm
168404Spjd	/*
168404Spjd	 * If the device isn't already offline, try to offline it.
168404Spjd	 */
168404Spjd	if (!vd->vdev_offline) {
168404Spjd		/*
209962Smm		 * If this device has the only valid copy of some data,
213197Smm		 * don't allow it to be offlined. Log devices are always
213197Smm		 * expendable.
168404Spjd		 */
213197Smm		if (!tvd->vdev_islog && vd->vdev_aux == NULL &&
213197Smm		    vdev_dtl_required(vd))
185029Spjd			return (spa_vdev_state_exit(spa, NULL, EBUSY));
168404Spjd
168404Spjd		/*
219089Spjd		 * If the top-level is a slog and it has had allocations
219089Spjd		 * then proceed.  We check that the vdev's metaslab group
219089Spjd		 * is not NULL since it's possible that we may have just
219089Spjd		 * added this vdev but not yet initialized its metaslabs.
219089Spjd		 */
219089Spjd		if (tvd->vdev_islog && mg != NULL) {
219089Spjd			/*
219089Spjd			 * Prevent any future allocations.
219089Spjd			 */
219089Spjd			metaslab_group_passivate(mg);
219089Spjd			(void) spa_vdev_state_exit(spa, vd, 0);
219089Spjd
219089Spjd			error = spa_offline_log(spa);
219089Spjd
219089Spjd			spa_vdev_state_enter(spa, SCL_ALLOC);
219089Spjd
219089Spjd			/*
219089Spjd			 * Check to see if the config has changed.
219089Spjd			 */
219089Spjd			if (error || generation != spa->spa_config_generation) {
219089Spjd				metaslab_group_activate(mg);
219089Spjd				if (error)
219089Spjd					return (spa_vdev_state_exit(spa,
219089Spjd					    vd, error));
219089Spjd				(void) spa_vdev_state_exit(spa, vd, 0);
219089Spjd				goto top;
219089Spjd			}
219089Spjd			ASSERT3U(tvd->vdev_stat.vs_alloc, ==, 0);
219089Spjd		}
219089Spjd
219089Spjd		/*
168404Spjd		 * Offline this device and reopen its top-level vdev.
213197Smm		 * If the top-level vdev is a log device then just offline
213197Smm		 * it. Otherwise, if this action results in the top-level
213197Smm		 * vdev becoming unusable, undo it and fail the request.
168404Spjd		 */
168404Spjd		vd->vdev_offline = B_TRUE;
213197Smm		vdev_reopen(tvd);
213197Smm
213197Smm		if (!tvd->vdev_islog && vd->vdev_aux == NULL &&
213197Smm		    vdev_is_dead(tvd)) {
168404Spjd			vd->vdev_offline = B_FALSE;
213197Smm			vdev_reopen(tvd);
185029Spjd			return (spa_vdev_state_exit(spa, NULL, EBUSY));
168404Spjd		}
219089Spjd
219089Spjd		/*
219089Spjd		 * Add the device back into the metaslab rotor so that
219089Spjd		 * once we online the device it's open for business.
219089Spjd		 */
219089Spjd		if (tvd->vdev_islog && mg != NULL)
219089Spjd			metaslab_group_activate(mg);
168404Spjd	}
168404Spjd
185029Spjd	vd->vdev_tmpoffline = !!(flags & ZFS_OFFLINE_TEMPORARY);
168404Spjd
219089Spjd	return (spa_vdev_state_exit(spa, vd, 0));
219089Spjd}
213197Smm
219089Spjdint
219089Spjdvdev_offline(spa_t *spa, uint64_t guid, uint64_t flags)
219089Spjd{
219089Spjd	int error;
213197Smm
219089Spjd	mutex_enter(&spa->spa_vdev_top_lock);
219089Spjd	error = vdev_offline_locked(spa, guid, flags);
219089Spjd	mutex_exit(&spa->spa_vdev_top_lock);
219089Spjd
219089Spjd	return (error);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Clear the error counts associated with this vdev.  Unlike vdev_online() and
168404Spjd * vdev_offline(), we assume the spa config is locked.  We also clear all
168404Spjd * children.  If 'vd' is NULL, then the user wants to clear all vdevs.
168404Spjd */
168404Spjdvoid
168404Spjdvdev_clear(spa_t *spa, vdev_t *vd)
168404Spjd{
185029Spjd	vdev_t *rvd = spa->spa_root_vdev;
168404Spjd
185029Spjd	ASSERT(spa_config_held(spa, SCL_STATE_ALL, RW_WRITER) == SCL_STATE_ALL);
185029Spjd
168404Spjd	if (vd == NULL)
185029Spjd		vd = rvd;
168404Spjd
168404Spjd	vd->vdev_stat.vs_read_errors = 0;
168404Spjd	vd->vdev_stat.vs_write_errors = 0;
168404Spjd	vd->vdev_stat.vs_checksum_errors = 0;
168404Spjd
185029Spjd	for (int c = 0; c < vd->vdev_children; c++)
168404Spjd		vdev_clear(spa, vd->vdev_child[c]);
185029Spjd
185029Spjd	/*
185029Spjd	 * If we're in the FAULTED state or have experienced failed I/O, then
185029Spjd	 * clear the persistent state and attempt to reopen the device.  We
185029Spjd	 * also mark the vdev config dirty, so that the new faulted state is
185029Spjd	 * written out to disk.
185029Spjd	 */
185029Spjd	if (vd->vdev_faulted || vd->vdev_degraded ||
185029Spjd	    !vdev_readable(vd) || !vdev_writeable(vd)) {
185029Spjd
219089Spjd		/*
219089Spjd		 * When reopening in reponse to a clear event, it may be due to
219089Spjd		 * a fmadm repair request.  In this case, if the device is
219089Spjd		 * still broken, we want to still post the ereport again.
219089Spjd		 */
219089Spjd		vd->vdev_forcefault = B_TRUE;
219089Spjd
219089Spjd		vd->vdev_faulted = vd->vdev_degraded = 0ULL;
185029Spjd		vd->vdev_cant_read = B_FALSE;
185029Spjd		vd->vdev_cant_write = B_FALSE;
185029Spjd
219089Spjd		vdev_reopen(vd == rvd ? rvd : vd->vdev_top);
185029Spjd
219089Spjd		vd->vdev_forcefault = B_FALSE;
219089Spjd
219089Spjd		if (vd != rvd && vdev_writeable(vd->vdev_top))
185029Spjd			vdev_state_dirty(vd->vdev_top);
185029Spjd
185029Spjd		if (vd->vdev_aux == NULL && !vdev_is_dead(vd))
185029Spjd			spa_async_request(spa, SPA_ASYNC_RESILVER);
185029Spjd
185029Spjd		spa_event_notify(spa, vd, ESC_ZFS_VDEV_CLEAR);
185029Spjd	}
219089Spjd
219089Spjd	/*
219089Spjd	 * When clearing a FMA-diagnosed fault, we always want to
219089Spjd	 * unspare the device, as we assume that the original spare was
219089Spjd	 * done in response to the FMA fault.
219089Spjd	 */
219089Spjd	if (!vdev_is_dead(vd) && vd->vdev_parent != NULL &&
219089Spjd	    vd->vdev_parent->vdev_ops == &vdev_spare_ops &&
219089Spjd	    vd->vdev_parent->vdev_child[0] == vd)
219089Spjd		vd->vdev_unspare = B_TRUE;
168404Spjd}
168404Spjd
185029Spjdboolean_t
168404Spjdvdev_is_dead(vdev_t *vd)
168404Spjd{
219089Spjd	/*
219089Spjd	 * Holes and missing devices are always considered "dead".
219089Spjd	 * This simplifies the code since we don't have to check for
219089Spjd	 * these types of devices in the various code paths.
219089Spjd	 * Instead we rely on the fact that we skip over dead devices
219089Spjd	 * before issuing I/O to them.
219089Spjd	 */
219089Spjd	return (vd->vdev_state < VDEV_STATE_DEGRADED || vd->vdev_ishole ||
219089Spjd	    vd->vdev_ops == &vdev_missing_ops);
168404Spjd}
168404Spjd
185029Spjdboolean_t
185029Spjdvdev_readable(vdev_t *vd)
168404Spjd{
185029Spjd	return (!vdev_is_dead(vd) && !vd->vdev_cant_read);
185029Spjd}
168404Spjd
185029Spjdboolean_t
185029Spjdvdev_writeable(vdev_t *vd)
185029Spjd{
185029Spjd	return (!vdev_is_dead(vd) && !vd->vdev_cant_write);
185029Spjd}
168404Spjd
185029Spjdboolean_t
208370Smmvdev_allocatable(vdev_t *vd)
208370Smm{
209962Smm	uint64_t state = vd->vdev_state;
209962Smm
208370Smm	/*
209962Smm	 * We currently allow allocations from vdevs which may be in the
208370Smm	 * process of reopening (i.e. VDEV_STATE_CLOSED). If the device
208370Smm	 * fails to reopen then we'll catch it later when we're holding
209962Smm	 * the proper locks.  Note that we have to get the vdev state
209962Smm	 * in a local variable because although it changes atomically,
209962Smm	 * we're asking two separate questions about it.
208370Smm	 */
209962Smm	return (!(state < VDEV_STATE_DEGRADED && state != VDEV_STATE_CLOSED) &&
219089Spjd	    !vd->vdev_cant_write && !vd->vdev_ishole);
208370Smm}
208370Smm
208370Smmboolean_t
185029Spjdvdev_accessible(vdev_t *vd, zio_t *zio)
185029Spjd{
185029Spjd	ASSERT(zio->io_vd == vd);
168404Spjd
185029Spjd	if (vdev_is_dead(vd) || vd->vdev_remove_wanted)
185029Spjd		return (B_FALSE);
168404Spjd
185029Spjd	if (zio->io_type == ZIO_TYPE_READ)
185029Spjd		return (!vd->vdev_cant_read);
168404Spjd
185029Spjd	if (zio->io_type == ZIO_TYPE_WRITE)
185029Spjd		return (!vd->vdev_cant_write);
168404Spjd
185029Spjd	return (B_TRUE);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Get statistics for the given vdev.
168404Spjd */
168404Spjdvoid
168404Spjdvdev_get_stats(vdev_t *vd, vdev_stat_t *vs)
168404Spjd{
168404Spjd	vdev_t *rvd = vd->vdev_spa->spa_root_vdev;
168404Spjd
168404Spjd	mutex_enter(&vd->vdev_stat_lock);
168404Spjd	bcopy(&vd->vdev_stat, vs, sizeof (*vs));
168404Spjd	vs->vs_timestamp = gethrtime() - vs->vs_timestamp;
168404Spjd	vs->vs_state = vd->vdev_state;
219089Spjd	vs->vs_rsize = vdev_get_min_asize(vd);
219089Spjd	if (vd->vdev_ops->vdev_op_leaf)
219089Spjd		vs->vs_rsize += VDEV_LABEL_START_SIZE + VDEV_LABEL_END_SIZE;
168404Spjd	mutex_exit(&vd->vdev_stat_lock);
168404Spjd
168404Spjd	/*
168404Spjd	 * If we're getting stats on the root vdev, aggregate the I/O counts
168404Spjd	 * over all top-level vdevs (i.e. the direct children of the root).
168404Spjd	 */
168404Spjd	if (vd == rvd) {
185029Spjd		for (int c = 0; c < rvd->vdev_children; c++) {
168404Spjd			vdev_t *cvd = rvd->vdev_child[c];
168404Spjd			vdev_stat_t *cvs = &cvd->vdev_stat;
168404Spjd
168404Spjd			mutex_enter(&vd->vdev_stat_lock);
185029Spjd			for (int t = 0; t < ZIO_TYPES; t++) {
168404Spjd				vs->vs_ops[t] += cvs->vs_ops[t];
168404Spjd				vs->vs_bytes[t] += cvs->vs_bytes[t];
168404Spjd			}
219089Spjd			cvs->vs_scan_removing = cvd->vdev_removing;
168404Spjd			mutex_exit(&vd->vdev_stat_lock);
168404Spjd		}
168404Spjd	}
168404Spjd}
168404Spjd
168404Spjdvoid
185029Spjdvdev_clear_stats(vdev_t *vd)
168404Spjd{
185029Spjd	mutex_enter(&vd->vdev_stat_lock);
185029Spjd	vd->vdev_stat.vs_space = 0;
185029Spjd	vd->vdev_stat.vs_dspace = 0;
185029Spjd	vd->vdev_stat.vs_alloc = 0;
185029Spjd	mutex_exit(&vd->vdev_stat_lock);
185029Spjd}
185029Spjd
185029Spjdvoid
219089Spjdvdev_scan_stat_init(vdev_t *vd)
219089Spjd{
219089Spjd	vdev_stat_t *vs = &vd->vdev_stat;
219089Spjd
219089Spjd	for (int c = 0; c < vd->vdev_children; c++)
219089Spjd		vdev_scan_stat_init(vd->vdev_child[c]);
219089Spjd
219089Spjd	mutex_enter(&vd->vdev_stat_lock);
219089Spjd	vs->vs_scan_processed = 0;
219089Spjd	mutex_exit(&vd->vdev_stat_lock);
219089Spjd}
219089Spjd
219089Spjdvoid
185029Spjdvdev_stat_update(zio_t *zio, uint64_t psize)
185029Spjd{
209962Smm	spa_t *spa = zio->io_spa;
209962Smm	vdev_t *rvd = spa->spa_root_vdev;
185029Spjd	vdev_t *vd = zio->io_vd ? zio->io_vd : rvd;
168404Spjd	vdev_t *pvd;
168404Spjd	uint64_t txg = zio->io_txg;
168404Spjd	vdev_stat_t *vs = &vd->vdev_stat;
168404Spjd	zio_type_t type = zio->io_type;
168404Spjd	int flags = zio->io_flags;
168404Spjd
185029Spjd	/*
185029Spjd	 * If this i/o is a gang leader, it didn't do any actual work.
185029Spjd	 */
185029Spjd	if (zio->io_gang_tree)
185029Spjd		return;
185029Spjd
168404Spjd	if (zio->io_error == 0) {
185029Spjd		/*
185029Spjd		 * If this is a root i/o, don't count it -- we've already
185029Spjd		 * counted the top-level vdevs, and vdev_get_stats() will
185029Spjd		 * aggregate them when asked.  This reduces contention on
185029Spjd		 * the root vdev_stat_lock and implicitly handles blocks
185029Spjd		 * that compress away to holes, for which there is no i/o.
185029Spjd		 * (Holes never create vdev children, so all the counters
185029Spjd		 * remain zero, which is what we want.)
185029Spjd		 *
185029Spjd		 * Note: this only applies to successful i/o (io_error == 0)
185029Spjd		 * because unlike i/o counts, errors are not additive.
185029Spjd		 * When reading a ditto block, for example, failure of
185029Spjd		 * one top-level vdev does not imply a root-level error.
185029Spjd		 */
185029Spjd		if (vd == rvd)
185029Spjd			return;
185029Spjd
185029Spjd		ASSERT(vd == zio->io_vd);
209962Smm
209962Smm		if (flags & ZIO_FLAG_IO_BYPASS)
209962Smm			return;
209962Smm
209962Smm		mutex_enter(&vd->vdev_stat_lock);
209962Smm
185029Spjd		if (flags & ZIO_FLAG_IO_REPAIR) {
219089Spjd			if (flags & ZIO_FLAG_SCAN_THREAD) {
219089Spjd				dsl_scan_phys_t *scn_phys =
219089Spjd				    &spa->spa_dsl_pool->dp_scan->scn_phys;
219089Spjd				uint64_t *processed = &scn_phys->scn_processed;
219089Spjd
219089Spjd				/* XXX cleanup? */
219089Spjd				if (vd->vdev_ops->vdev_op_leaf)
219089Spjd					atomic_add_64(processed, psize);
219089Spjd				vs->vs_scan_processed += psize;
219089Spjd			}
219089Spjd
209962Smm			if (flags & ZIO_FLAG_SELF_HEAL)
185029Spjd				vs->vs_self_healed += psize;
168404Spjd		}
209962Smm
209962Smm		vs->vs_ops[type]++;
209962Smm		vs->vs_bytes[type] += psize;
209962Smm
209962Smm		mutex_exit(&vd->vdev_stat_lock);
168404Spjd		return;
168404Spjd	}
168404Spjd
168404Spjd	if (flags & ZIO_FLAG_SPECULATIVE)
168404Spjd		return;
168404Spjd
213198Smm	/*
213198Smm	 * If this is an I/O error that is going to be retried, then ignore the
213198Smm	 * error.  Otherwise, the user may interpret B_FAILFAST I/O errors as
213198Smm	 * hard errors, when in reality they can happen for any number of
213198Smm	 * innocuous reasons (bus resets, MPxIO link failure, etc).
213198Smm	 */
213198Smm	if (zio->io_error == EIO &&
213198Smm	    !(zio->io_flags & ZIO_FLAG_IO_RETRY))
213198Smm		return;
213198Smm
219089Spjd	/*
219089Spjd	 * Intent logs writes won't propagate their error to the root
219089Spjd	 * I/O so don't mark these types of failures as pool-level
219089Spjd	 * errors.
219089Spjd	 */
219089Spjd	if (zio->io_vd == NULL && (zio->io_flags & ZIO_FLAG_DONT_PROPAGATE))
219089Spjd		return;
219089Spjd
185029Spjd	mutex_enter(&vd->vdev_stat_lock);
209962Smm	if (type == ZIO_TYPE_READ && !vdev_is_dead(vd)) {
185029Spjd		if (zio->io_error == ECKSUM)
185029Spjd			vs->vs_checksum_errors++;
185029Spjd		else
185029Spjd			vs->vs_read_errors++;
168404Spjd	}
209962Smm	if (type == ZIO_TYPE_WRITE && !vdev_is_dead(vd))
185029Spjd		vs->vs_write_errors++;
185029Spjd	mutex_exit(&vd->vdev_stat_lock);
168404Spjd
209962Smm	if (type == ZIO_TYPE_WRITE && txg != 0 &&
209962Smm	    (!(flags & ZIO_FLAG_IO_REPAIR) ||
219089Spjd	    (flags & ZIO_FLAG_SCAN_THREAD) ||
219089Spjd	    spa->spa_claiming)) {
209962Smm		/*
219089Spjd		 * This is either a normal write (not a repair), or it's
219089Spjd		 * a repair induced by the scrub thread, or it's a repair
219089Spjd		 * made by zil_claim() during spa_load() in the first txg.
219089Spjd		 * In the normal case, we commit the DTL change in the same
219089Spjd		 * txg as the block was born.  In the scrub-induced repair
219089Spjd		 * case, we know that scrubs run in first-pass syncing context,
219089Spjd		 * so we commit the DTL change in spa_syncing_txg(spa).
219089Spjd		 * In the zil_claim() case, we commit in spa_first_txg(spa).
209962Smm		 *
209962Smm		 * We currently do not make DTL entries for failed spontaneous
209962Smm		 * self-healing writes triggered by normal (non-scrubbing)
209962Smm		 * reads, because we have no transactional context in which to
209962Smm		 * do so -- and it's not clear that it'd be desirable anyway.
209962Smm		 */
209962Smm		if (vd->vdev_ops->vdev_op_leaf) {
209962Smm			uint64_t commit_txg = txg;
219089Spjd			if (flags & ZIO_FLAG_SCAN_THREAD) {
209962Smm				ASSERT(flags & ZIO_FLAG_IO_REPAIR);
209962Smm				ASSERT(spa_sync_pass(spa) == 1);
209962Smm				vdev_dtl_dirty(vd, DTL_SCRUB, txg, 1);
219089Spjd				commit_txg = spa_syncing_txg(spa);
219089Spjd			} else if (spa->spa_claiming) {
219089Spjd				ASSERT(flags & ZIO_FLAG_IO_REPAIR);
219089Spjd				commit_txg = spa_first_txg(spa);
209962Smm			}
219089Spjd			ASSERT(commit_txg >= spa_syncing_txg(spa));
209962Smm			if (vdev_dtl_contains(vd, DTL_MISSING, txg, 1))
168404Spjd				return;
209962Smm			for (pvd = vd; pvd != rvd; pvd = pvd->vdev_parent)
209962Smm				vdev_dtl_dirty(pvd, DTL_PARTIAL, txg, 1);
209962Smm			vdev_dirty(vd->vdev_top, VDD_DTL, vd, commit_txg);
168404Spjd		}
209962Smm		if (vd != rvd)
209962Smm			vdev_dtl_dirty(vd, DTL_MISSING, txg, 1);
168404Spjd	}
168404Spjd}
168404Spjd
168404Spjd/*
219089Spjd * Update the in-core space usage stats for this vdev, its metaslab class,
219089Spjd * and the root vdev.
168404Spjd */
168404Spjdvoid
219089Spjdvdev_space_update(vdev_t *vd, int64_t alloc_delta, int64_t defer_delta,
219089Spjd    int64_t space_delta)
168404Spjd{
168404Spjd	int64_t dspace_delta = space_delta;
185029Spjd	spa_t *spa = vd->vdev_spa;
185029Spjd	vdev_t *rvd = spa->spa_root_vdev;
219089Spjd	metaslab_group_t *mg = vd->vdev_mg;
219089Spjd	metaslab_class_t *mc = mg ? mg->mg_class : NULL;
168404Spjd
185029Spjd	ASSERT(vd == vd->vdev_top);
168404Spjd
185029Spjd	/*
185029Spjd	 * Apply the inverse of the psize-to-asize (ie. RAID-Z) space-expansion
185029Spjd	 * factor.  We must calculate this here and not at the root vdev
185029Spjd	 * because the root vdev's psize-to-asize is simply the max of its
185029Spjd	 * childrens', thus not accurate enough for us.
185029Spjd	 */
185029Spjd	ASSERT((dspace_delta & (SPA_MINBLOCKSIZE-1)) == 0);
213197Smm	ASSERT(vd->vdev_deflate_ratio != 0 || vd->vdev_isl2cache);
185029Spjd	dspace_delta = (dspace_delta >> SPA_MINBLOCKSHIFT) *
185029Spjd	    vd->vdev_deflate_ratio;
185029Spjd
185029Spjd	mutex_enter(&vd->vdev_stat_lock);
219089Spjd	vd->vdev_stat.vs_alloc += alloc_delta;
185029Spjd	vd->vdev_stat.vs_space += space_delta;
185029Spjd	vd->vdev_stat.vs_dspace += dspace_delta;
185029Spjd	mutex_exit(&vd->vdev_stat_lock);
185029Spjd
219089Spjd	if (mc == spa_normal_class(spa)) {
185029Spjd		mutex_enter(&rvd->vdev_stat_lock);
219089Spjd		rvd->vdev_stat.vs_alloc += alloc_delta;
185029Spjd		rvd->vdev_stat.vs_space += space_delta;
185029Spjd		rvd->vdev_stat.vs_dspace += dspace_delta;
185029Spjd		mutex_exit(&rvd->vdev_stat_lock);
185029Spjd	}
219089Spjd
219089Spjd	if (mc != NULL) {
219089Spjd		ASSERT(rvd == vd->vdev_parent);
219089Spjd		ASSERT(vd->vdev_ms_count != 0);
219089Spjd
219089Spjd		metaslab_class_space_update(mc,
219089Spjd		    alloc_delta, defer_delta, space_delta, dspace_delta);
219089Spjd	}
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Mark a top-level vdev's config as dirty, placing it on the dirty list
168404Spjd * so that it will be written out next time the vdev configuration is synced.
168404Spjd * If the root vdev is specified (vdev_top == NULL), dirty all top-level vdevs.
168404Spjd */
168404Spjdvoid
168404Spjdvdev_config_dirty(vdev_t *vd)
168404Spjd{
168404Spjd	spa_t *spa = vd->vdev_spa;
168404Spjd	vdev_t *rvd = spa->spa_root_vdev;
168404Spjd	int c;
168404Spjd
219089Spjd	ASSERT(spa_writeable(spa));
219089Spjd
168404Spjd	/*
209962Smm	 * If this is an aux vdev (as with l2cache and spare devices), then we
209962Smm	 * update the vdev config manually and set the sync flag.
185029Spjd	 */
185029Spjd	if (vd->vdev_aux != NULL) {
185029Spjd		spa_aux_vdev_t *sav = vd->vdev_aux;
185029Spjd		nvlist_t **aux;
185029Spjd		uint_t naux;
185029Spjd
185029Spjd		for (c = 0; c < sav->sav_count; c++) {
185029Spjd			if (sav->sav_vdevs[c] == vd)
185029Spjd				break;
185029Spjd		}
185029Spjd
185029Spjd		if (c == sav->sav_count) {
185029Spjd			/*
185029Spjd			 * We're being removed.  There's nothing more to do.
185029Spjd			 */
185029Spjd			ASSERT(sav->sav_sync == B_TRUE);
185029Spjd			return;
185029Spjd		}
185029Spjd
185029Spjd		sav->sav_sync = B_TRUE;
185029Spjd
209962Smm		if (nvlist_lookup_nvlist_array(sav->sav_config,
209962Smm		    ZPOOL_CONFIG_L2CACHE, &aux, &naux) != 0) {
209962Smm			VERIFY(nvlist_lookup_nvlist_array(sav->sav_config,
209962Smm			    ZPOOL_CONFIG_SPARES, &aux, &naux) == 0);
209962Smm		}
185029Spjd
185029Spjd		ASSERT(c < naux);
185029Spjd
185029Spjd		/*
185029Spjd		 * Setting the nvlist in the middle if the array is a little
185029Spjd		 * sketchy, but it will work.
185029Spjd		 */
185029Spjd		nvlist_free(aux[c]);
219089Spjd		aux[c] = vdev_config_generate(spa, vd, B_TRUE, 0);
185029Spjd
185029Spjd		return;
185029Spjd	}
185029Spjd
185029Spjd	/*
185029Spjd	 * The dirty list is protected by the SCL_CONFIG lock.  The caller
185029Spjd	 * must either hold SCL_CONFIG as writer, or must be the sync thread
185029Spjd	 * (which holds SCL_CONFIG as reader).  There's only one sync thread,
168404Spjd	 * so this is sufficient to ensure mutual exclusion.
168404Spjd	 */
185029Spjd	ASSERT(spa_config_held(spa, SCL_CONFIG, RW_WRITER) ||
185029Spjd	    (dsl_pool_sync_context(spa_get_dsl(spa)) &&
185029Spjd	    spa_config_held(spa, SCL_CONFIG, RW_READER)));
168404Spjd
168404Spjd	if (vd == rvd) {
168404Spjd		for (c = 0; c < rvd->vdev_children; c++)
168404Spjd			vdev_config_dirty(rvd->vdev_child[c]);
168404Spjd	} else {
168404Spjd		ASSERT(vd == vd->vdev_top);
168404Spjd
219089Spjd		if (!list_link_active(&vd->vdev_config_dirty_node) &&
219089Spjd		    !vd->vdev_ishole)
185029Spjd			list_insert_head(&spa->spa_config_dirty_list, vd);
168404Spjd	}
168404Spjd}
168404Spjd
168404Spjdvoid
168404Spjdvdev_config_clean(vdev_t *vd)
168404Spjd{
168404Spjd	spa_t *spa = vd->vdev_spa;
168404Spjd
185029Spjd	ASSERT(spa_config_held(spa, SCL_CONFIG, RW_WRITER) ||
185029Spjd	    (dsl_pool_sync_context(spa_get_dsl(spa)) &&
185029Spjd	    spa_config_held(spa, SCL_CONFIG, RW_READER)));
168404Spjd
185029Spjd	ASSERT(list_link_active(&vd->vdev_config_dirty_node));
185029Spjd	list_remove(&spa->spa_config_dirty_list, vd);
168404Spjd}
168404Spjd
185029Spjd/*
185029Spjd * Mark a top-level vdev's state as dirty, so that the next pass of
185029Spjd * spa_sync() can convert this into vdev_config_dirty().  We distinguish
185029Spjd * the state changes from larger config changes because they require
185029Spjd * much less locking, and are often needed for administrative actions.
185029Spjd */
168404Spjdvoid
185029Spjdvdev_state_dirty(vdev_t *vd)
185029Spjd{
185029Spjd	spa_t *spa = vd->vdev_spa;
185029Spjd
219089Spjd	ASSERT(spa_writeable(spa));
185029Spjd	ASSERT(vd == vd->vdev_top);
185029Spjd
185029Spjd	/*
185029Spjd	 * The state list is protected by the SCL_STATE lock.  The caller
185029Spjd	 * must either hold SCL_STATE as writer, or must be the sync thread
185029Spjd	 * (which holds SCL_STATE as reader).  There's only one sync thread,
185029Spjd	 * so this is sufficient to ensure mutual exclusion.
185029Spjd	 */
185029Spjd	ASSERT(spa_config_held(spa, SCL_STATE, RW_WRITER) ||
185029Spjd	    (dsl_pool_sync_context(spa_get_dsl(spa)) &&
185029Spjd	    spa_config_held(spa, SCL_STATE, RW_READER)));
185029Spjd
219089Spjd	if (!list_link_active(&vd->vdev_state_dirty_node) && !vd->vdev_ishole)
185029Spjd		list_insert_head(&spa->spa_state_dirty_list, vd);
185029Spjd}
185029Spjd
185029Spjdvoid
185029Spjdvdev_state_clean(vdev_t *vd)
185029Spjd{
185029Spjd	spa_t *spa = vd->vdev_spa;
185029Spjd
185029Spjd	ASSERT(spa_config_held(spa, SCL_STATE, RW_WRITER) ||
185029Spjd	    (dsl_pool_sync_context(spa_get_dsl(spa)) &&
185029Spjd	    spa_config_held(spa, SCL_STATE, RW_READER)));
185029Spjd
185029Spjd	ASSERT(list_link_active(&vd->vdev_state_dirty_node));
185029Spjd	list_remove(&spa->spa_state_dirty_list, vd);
185029Spjd}
185029Spjd
185029Spjd/*
185029Spjd * Propagate vdev state up from children to parent.
185029Spjd */
185029Spjdvoid
168404Spjdvdev_propagate_state(vdev_t *vd)
168404Spjd{
209962Smm	spa_t *spa = vd->vdev_spa;
209962Smm	vdev_t *rvd = spa->spa_root_vdev;
168404Spjd	int degraded = 0, faulted = 0;
168404Spjd	int corrupted = 0;
168404Spjd	vdev_t *child;
168404Spjd
185029Spjd	if (vd->vdev_children > 0) {
219089Spjd		for (int c = 0; c < vd->vdev_children; c++) {
185029Spjd			child = vd->vdev_child[c];
168404Spjd
219089Spjd			/*
219089Spjd			 * Don't factor holes into the decision.
219089Spjd			 */
219089Spjd			if (child->vdev_ishole)
219089Spjd				continue;
219089Spjd
185029Spjd			if (!vdev_readable(child) ||
209962Smm			    (!vdev_writeable(child) && spa_writeable(spa))) {
185029Spjd				/*
185029Spjd				 * Root special: if there is a top-level log
185029Spjd				 * device, treat the root vdev as if it were
185029Spjd				 * degraded.
185029Spjd				 */
185029Spjd				if (child->vdev_islog && vd == rvd)
185029Spjd					degraded++;
185029Spjd				else
185029Spjd					faulted++;
185029Spjd			} else if (child->vdev_state <= VDEV_STATE_DEGRADED) {
185029Spjd				degraded++;
185029Spjd			}
185029Spjd
185029Spjd			if (child->vdev_stat.vs_aux == VDEV_AUX_CORRUPT_DATA)
185029Spjd				corrupted++;
185029Spjd		}
185029Spjd
185029Spjd		vd->vdev_ops->vdev_op_state_change(vd, faulted, degraded);
185029Spjd
185029Spjd		/*
185029Spjd		 * Root special: if there is a top-level vdev that cannot be
185029Spjd		 * opened due to corrupted metadata, then propagate the root
185029Spjd		 * vdev's aux state as 'corrupt' rather than 'insufficient
185029Spjd		 * replicas'.
185029Spjd		 */
185029Spjd		if (corrupted && vd == rvd &&
185029Spjd		    rvd->vdev_state == VDEV_STATE_CANT_OPEN)
185029Spjd			vdev_set_state(rvd, B_FALSE, VDEV_STATE_CANT_OPEN,
185029Spjd			    VDEV_AUX_CORRUPT_DATA);
168404Spjd	}
168404Spjd
185029Spjd	if (vd->vdev_parent)
185029Spjd		vdev_propagate_state(vd->vdev_parent);
168404Spjd}
168404Spjd
168404Spjd/*
168404Spjd * Set a vdev's state.  If this is during an open, we don't update the parent
168404Spjd * state, because we're in the process of opening children depth-first.
168404Spjd * Otherwise, we propagate the change to the parent.
168404Spjd *
168404Spjd * If this routine places a device in a faulted state, an appropriate ereport is
168404Spjd * generated.
168404Spjd */
168404Spjdvoid
168404Spjdvdev_set_state(vdev_t *vd, boolean_t isopen, vdev_state_t state, vdev_aux_t aux)
168404Spjd{
168404Spjd	uint64_t save_state;
185029Spjd	spa_t *spa = vd->vdev_spa;
168404Spjd
168404Spjd	if (state == vd->vdev_state) {
168404Spjd		vd->vdev_stat.vs_aux = aux;
168404Spjd		return;
168404Spjd	}
168404Spjd
168404Spjd	save_state = vd->vdev_state;
168404Spjd
168404Spjd	vd->vdev_state = state;
168404Spjd	vd->vdev_stat.vs_aux = aux;
168404Spjd
173373Spjd	/*
173373Spjd	 * If we are setting the vdev state to anything but an open state, then
219089Spjd	 * always close the underlying device unless the device has requested
219089Spjd	 * a delayed close (i.e. we're about to remove or fault the device).
219089Spjd	 * Otherwise, we keep accessible but invalid devices open forever.
219089Spjd	 * We don't call vdev_close() itself, because that implies some extra
219089Spjd	 * checks (offline, etc) that we don't want here.  This is limited to
219089Spjd	 * leaf devices, because otherwise closing the device will affect other
219089Spjd	 * children.
173373Spjd	 */
219089Spjd	if (!vd->vdev_delayed_close && vdev_is_dead(vd) &&
219089Spjd	    vd->vdev_ops->vdev_op_leaf)
173373Spjd		vd->vdev_ops->vdev_op_close(vd);
173373Spjd
219089Spjd	/*
219089Spjd	 * If we have brought this vdev back into service, we need
219089Spjd	 * to notify fmd so that it can gracefully repair any outstanding
219089Spjd	 * cases due to a missing device.  We do this in all cases, even those
219089Spjd	 * that probably don't correlate to a repaired fault.  This is sure to
219089Spjd	 * catch all cases, and we let the zfs-retire agent sort it out.  If
219089Spjd	 * this is a transient state it's OK, as the retire agent will
219089Spjd	 * double-check the state of the vdev before repairing it.
219089Spjd	 */
219089Spjd	if (state == VDEV_STATE_HEALTHY && vd->vdev_ops->vdev_op_leaf &&
219089Spjd	    vd->vdev_prevstate != state)
219089Spjd		zfs_post_state_change(spa, vd);
219089Spjd
185029Spjd	if (vd->vdev_removed &&
185029Spjd	    state == VDEV_STATE_CANT_OPEN &&
185029Spjd	    (aux == VDEV_AUX_OPEN_FAILED || vd->vdev_checkremove)) {
168404Spjd		/*
185029Spjd		 * If the previous state is set to VDEV_STATE_REMOVED, then this
185029Spjd		 * device was previously marked removed and someone attempted to
185029Spjd		 * reopen it.  If this failed due to a nonexistent device, then
185029Spjd		 * keep the device in the REMOVED state.  We also let this be if
185029Spjd		 * it is one of our special test online cases, which is only
185029Spjd		 * attempting to online the device and shouldn't generate an FMA
185029Spjd		 * fault.
185029Spjd		 */
185029Spjd		vd->vdev_state = VDEV_STATE_REMOVED;
185029Spjd		vd->vdev_stat.vs_aux = VDEV_AUX_NONE;
185029Spjd	} else if (state == VDEV_STATE_REMOVED) {
185029Spjd		vd->vdev_removed = B_TRUE;
185029Spjd	} else if (state == VDEV_STATE_CANT_OPEN) {
185029Spjd		/*
219089Spjd		 * If we fail to open a vdev during an import or recovery, we
219089Spjd		 * mark it as "not available", which signifies that it was
219089Spjd		 * never there to begin with.  Failure to open such a device
219089Spjd		 * is not considered an error.
168404Spjd		 */
219089Spjd		if ((spa_load_state(spa) == SPA_LOAD_IMPORT ||
219089Spjd		    spa_load_state(spa) == SPA_LOAD_RECOVER) &&
168404Spjd		    vd->vdev_ops->vdev_op_leaf)
168404Spjd			vd->vdev_not_present = 1;
168404Spjd
168404Spjd		/*
168404Spjd		 * Post the appropriate ereport.  If the 'prevstate' field is
168404Spjd		 * set to something other than VDEV_STATE_UNKNOWN, it indicates
168404Spjd		 * that this is part of a vdev_reopen().  In this case, we don't
168404Spjd		 * want to post the ereport if the device was already in the
168404Spjd		 * CANT_OPEN state beforehand.
185029Spjd		 *
185029Spjd		 * If the 'checkremove' flag is set, then this is an attempt to
185029Spjd		 * online the device in response to an insertion event.  If we
185029Spjd		 * hit this case, then we have detected an insertion event for a
185029Spjd		 * faulted or offline device that wasn't in the removed state.
185029Spjd		 * In this scenario, we don't post an ereport because we are
185029Spjd		 * about to replace the device, or attempt an online with
185029Spjd		 * vdev_forcefault, which will generate the fault for us.
168404Spjd		 */
185029Spjd		if ((vd->vdev_prevstate != state || vd->vdev_forcefault) &&
185029Spjd		    !vd->vdev_not_present && !vd->vdev_checkremove &&
185029Spjd		    vd != spa->spa_root_vdev) {
168404Spjd			const char *class;
168404Spjd
168404Spjd			switch (aux) {
168404Spjd			case VDEV_AUX_OPEN_FAILED:
168404Spjd				class = FM_EREPORT_ZFS_DEVICE_OPEN_FAILED;
168404Spjd				break;
168404Spjd			case VDEV_AUX_CORRUPT_DATA:
168404Spjd				class = FM_EREPORT_ZFS_DEVICE_CORRUPT_DATA;
168404Spjd				break;
168404Spjd			case VDEV_AUX_NO_REPLICAS:
168404Spjd				class = FM_EREPORT_ZFS_DEVICE_NO_REPLICAS;
168404Spjd				break;
168404Spjd			case VDEV_AUX_BAD_GUID_SUM:
168404Spjd				class = FM_EREPORT_ZFS_DEVICE_BAD_GUID_SUM;
168404Spjd				break;
168404Spjd			case VDEV_AUX_TOO_SMALL:
168404Spjd				class = FM_EREPORT_ZFS_DEVICE_TOO_SMALL;
168404Spjd				break;
168404Spjd			case VDEV_AUX_BAD_LABEL:
168404Spjd				class = FM_EREPORT_ZFS_DEVICE_BAD_LABEL;
168404Spjd				break;
168404Spjd			default:
168404Spjd				class = FM_EREPORT_ZFS_DEVICE_UNKNOWN;
168404Spjd			}
168404Spjd
185029Spjd			zfs_ereport_post(class, spa, vd, NULL, save_state, 0);
168404Spjd		}
185029Spjd
185029Spjd		/* Erase any notion of persistent removed state */
185029Spjd		vd->vdev_removed = B_FALSE;
185029Spjd	} else {
185029Spjd		vd->vdev_removed = B_FALSE;
168404Spjd	}
168404Spjd
209962Smm	if (!isopen && vd->vdev_parent)
209962Smm		vdev_propagate_state(vd->vdev_parent);
185029Spjd}
168404Spjd
185029Spjd/*
185029Spjd * Check the vdev configuration to ensure that it's capable of supporting
193163Sdfr * a root pool.
193163Sdfr *
193163Sdfr * On Solaris, we do not support RAID-Z or partial configuration.  In
193163Sdfr * addition, only a single top-level vdev is allowed and none of the
193163Sdfr * leaves can be wholedisks.
193163Sdfr *
193163Sdfr * For FreeBSD, we can boot from any configuration. There is a
193163Sdfr * limitation that the boot filesystem must be either uncompressed or
193163Sdfr * compresses with lzjb compression but I'm not sure how to enforce
193163Sdfr * that here.
185029Spjd */
185029Spjdboolean_t
185029Spjdvdev_is_bootable(vdev_t *vd)
185029Spjd{
213197Smm#ifdef sun
185029Spjd	if (!vd->vdev_ops->vdev_op_leaf) {
185029Spjd		char *vdev_type = vd->vdev_ops->vdev_op_type;
185029Spjd
185029Spjd		if (strcmp(vdev_type, VDEV_TYPE_ROOT) == 0 &&
185029Spjd		    vd->vdev_children > 1) {
185029Spjd			return (B_FALSE);
185029Spjd		} else if (strcmp(vdev_type, VDEV_TYPE_RAIDZ) == 0 ||
185029Spjd		    strcmp(vdev_type, VDEV_TYPE_MISSING) == 0) {
185029Spjd			return (B_FALSE);
185029Spjd		}
185029Spjd	} else if (vd->vdev_wholedisk == 1) {
185029Spjd		return (B_FALSE);
185029Spjd	}
185029Spjd
219089Spjd	for (int c = 0; c < vd->vdev_children; c++) {
185029Spjd		if (!vdev_is_bootable(vd->vdev_child[c]))
185029Spjd			return (B_FALSE);
185029Spjd	}
213197Smm#endif	/* sun */
185029Spjd	return (B_TRUE);
168404Spjd}
213197Smm
219089Spjd/*
219089Spjd * Load the state from the original vdev tree (ovd) which
219089Spjd * we've retrieved from the MOS config object. If the original
219089Spjd * vdev was offline or faulted then we transfer that state to the
219089Spjd * device in the current vdev tree (nvd).
219089Spjd */
213197Smmvoid
219089Spjdvdev_load_log_state(vdev_t *nvd, vdev_t *ovd)
213197Smm{
219089Spjd	spa_t *spa = nvd->vdev_spa;
213197Smm
219089Spjd	ASSERT(nvd->vdev_top->vdev_islog);
219089Spjd	ASSERT(spa_config_held(spa, SCL_STATE_ALL, RW_WRITER) == SCL_STATE_ALL);
219089Spjd	ASSERT3U(nvd->vdev_guid, ==, ovd->vdev_guid);
213197Smm
219089Spjd	for (int c = 0; c < nvd->vdev_children; c++)
219089Spjd		vdev_load_log_state(nvd->vdev_child[c], ovd->vdev_child[c]);
213197Smm
219089Spjd	if (nvd->vdev_ops->vdev_op_leaf) {
213197Smm		/*
219089Spjd		 * Restore the persistent vdev state
213197Smm		 */
219089Spjd		nvd->vdev_offline = ovd->vdev_offline;
219089Spjd		nvd->vdev_faulted = ovd->vdev_faulted;
219089Spjd		nvd->vdev_degraded = ovd->vdev_degraded;
219089Spjd		nvd->vdev_removed = ovd->vdev_removed;
213197Smm	}
213197Smm}
219089Spjd
219089Spjd/*
219089Spjd * Determine if a log device has valid content.  If the vdev was
219089Spjd * removed or faulted in the MOS config then we know that
219089Spjd * the content on the log device has already been written to the pool.
219089Spjd */
219089Spjdboolean_t
219089Spjdvdev_log_state_valid(vdev_t *vd)
219089Spjd{
219089Spjd	if (vd->vdev_ops->vdev_op_leaf && !vd->vdev_faulted &&
219089Spjd	    !vd->vdev_removed)
219089Spjd		return (B_TRUE);
219089Spjd
219089Spjd	for (int c = 0; c < vd->vdev_children; c++)
219089Spjd		if (vdev_log_state_valid(vd->vdev_child[c]))
219089Spjd			return (B_TRUE);
219089Spjd
219089Spjd	return (B_FALSE);
219089Spjd}
219089Spjd
219089Spjd/*
219089Spjd * Expand a vdev if possible.
219089Spjd */
219089Spjdvoid
219089Spjdvdev_expand(vdev_t *vd, uint64_t txg)
219089Spjd{
219089Spjd	ASSERT(vd->vdev_top == vd);
219089Spjd	ASSERT(spa_config_held(vd->vdev_spa, SCL_ALL, RW_WRITER) == SCL_ALL);
219089Spjd
219089Spjd	if ((vd->vdev_asize >> vd->vdev_ms_shift) > vd->vdev_ms_count) {
219089Spjd		VERIFY(vdev_metaslab_init(vd, txg) == 0);
219089Spjd		vdev_config_dirty(vd);
219089Spjd	}
219089Spjd}
219089Spjd
219089Spjd/*
219089Spjd * Split a vdev.
219089Spjd */
219089Spjdvoid
219089Spjdvdev_split(vdev_t *vd)
219089Spjd{
219089Spjd	vdev_t *cvd, *pvd = vd->vdev_parent;
219089Spjd
219089Spjd	vdev_remove_child(pvd, vd);
219089Spjd	vdev_compact_children(pvd);
219089Spjd
219089Spjd	cvd = pvd->vdev_child[0];
219089Spjd	if (pvd->vdev_children == 1) {
219089Spjd		vdev_remove_parent(cvd);
219089Spjd		cvd->vdev_splitting = B_TRUE;
219089Spjd	}
219089Spjd	vdev_propagate_state(cvd);
219089Spjd}