git.ipfire.org Git - thirdparty/kernel/stable.git/commit

author	Christoph Hellwig <hch@lst.de>
	Wed, 1 Sep 2021 11:38:29 +0000 (13:38 +0200)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Thu, 30 Sep 2021 08:09:24 +0000 (10:09 +0200)
commit	2b5befcd404522caae0df7e085b699122f5196a3
tree	5b5d0aa84348dd614d69dd1e3bcfee0a29bf0b45	tree \| snapshot
parent	42d3711c23781045e7a5cd28536c774b9a66d20b	commit \| diff

md: fix a lock order reversal in md_alloc

[ Upstream commit 7df835a32a8bedf7ce88efcfa7c9b245b52ff139 ]

Commit b0140891a8cea3 ("md: Fix race when creating a new md device.")
not only moved assigning mddev->gendisk before calling add_disk, which
fixes the races described in the commit log, but also added a
mddev->open_mutex critical section over add_disk and creation of the
md kobj. Adding a kobject after add_disk is racy vs deleting the gendisk
right after adding it, but md already prevents against that by holding
a mddev->active reference.

On the other hand taking this lock added a lock order reversal with what
is not disk->open_mutex (used to be bdev->bd_mutex when the commit was
added) for partition devices, which need that lock for the internal open
for the partition scan, and a recent commit also takes it for
non-partitioned devices, leading to further lockdep splatter.

Fixes: b0140891a8ce ("md: Fix race when creating a new md device.")
Fixes: d62633873590 ("block: support delayed holder registration")
Reported-by: syzbot+fadc0aaf497e6a493b9f@syzkaller.appspotmail.com
Signed-off-by: Christoph Hellwig <hch@lst.de>
Tested-by: syzbot+fadc0aaf497e6a493b9f@syzkaller.appspotmail.com
Reviewed-by: NeilBrown <neilb@suse.de>
Signed-off-by: Song Liu <songliubraving@fb.com>
Signed-off-by: Sasha Levin <sashal@kernel.org>