malhuda/msm-4.14
1
0
Fork 0
mirror of https://github.com/rd-stuffs/msm-4.14.git synced 2025-02-20 11:45:48 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity
msm-4.14/fs
History
Dmitry Monakhov a41537e69b ext4: prevent bugon on race between write/fcntl 
O_DIRECT flags can be toggeled via fcntl(F_SETFL). But this value checked
twice inside ext4_file_write_iter() and __generic_file_write() which
result in BUG_ON inside ext4_direct_IO.

Let's initialize iocb->private unconditionally.

TESTCASE: xfstest:generic/036  https://patchwork.ozlabs.org/patch/402445/

#TYPICAL STACK TRACE:
kernel BUG at fs/ext4/inode.c:2960!
invalid opcode: 0000 [#1] SMP
Modules linked in: brd iTCO_wdt lpc_ich mfd_core igb ptp dm_mirror dm_region_hash dm_log dm_mod
CPU: 6 PID: 5505 Comm: aio-dio-fcntl-r Not tainted 3.17.0-rc2-00176-gff5c017 #161
Hardware name: Intel Corporation W2600CR/W2600CR, BIOS SE5C600.86B.99.99.x028.061320111235 06/13/2011
task: ffff88080e95a7c0 ti: ffff88080f908000 task.ti: ffff88080f908000
RIP: 0010:[<ffffffff811fabf2>]  [<ffffffff811fabf2>] ext4_direct_IO+0x162/0x3d0
RSP: 0018:ffff88080f90bb58  EFLAGS: 00010246
RAX: 0000000000000400 RBX: ffff88080fdb2a28 RCX: 00000000a802c818
RDX: 0000040000080000 RSI: ffff88080d8aeb80 RDI: 0000000000000001
RBP: ffff88080f90bbc8 R08: 0000000000000000 R09: 0000000000001581
R10: 0000000000000000 R11: 0000000000000000 R12: ffff88080d8aeb80
R13: ffff88080f90bbf8 R14: ffff88080fdb28c8 R15: ffff88080fdb2a28
FS:  00007f23b2055700(0000) GS:ffff880818400000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f23b2045000 CR3: 000000080cedf000 CR4: 00000000000407e0
Stack:
 ffff88080f90bb98 0000000000000000 7ffffffffffffffe ffff88080fdb2c30
 0000000000000200 0000000000000200 0000000000000001 0000000000000200
 ffff88080f90bbc8 ffff88080fdb2c30 ffff88080f90be08 0000000000000200
Call Trace:
 [<ffffffff8112ca9d>] generic_file_direct_write+0xed/0x180
 [<ffffffff8112f2b2>] __generic_file_write_iter+0x222/0x370
 [<ffffffff811f495b>] ext4_file_write_iter+0x34b/0x400
 [<ffffffff811bd709>] ? aio_run_iocb+0x239/0x410
 [<ffffffff811bd709>] ? aio_run_iocb+0x239/0x410
 [<ffffffff810990e5>] ? local_clock+0x25/0x30
 [<ffffffff810abd94>] ? __lock_acquire+0x274/0x700
 [<ffffffff811f4610>] ? ext4_unwritten_wait+0xb0/0xb0
 [<ffffffff811bd756>] aio_run_iocb+0x286/0x410
 [<ffffffff810990e5>] ? local_clock+0x25/0x30
 [<ffffffff810ac359>] ? lock_release_holdtime+0x29/0x190
 [<ffffffff811bc05b>] ? lookup_ioctx+0x4b/0xf0
 [<ffffffff811bde3b>] do_io_submit+0x55b/0x740
 [<ffffffff811bdcaa>] ? do_io_submit+0x3ca/0x740
 [<ffffffff811be030>] SyS_io_submit+0x10/0x20
 [<ffffffff815ce192>] system_call_fastpath+0x16/0x1b
Code: 01 48 8b 80 f0 01 00 00 48 8b 18 49 8b 45 10 0f 85 f1 01 00 00 48 03 45 c8 48 3b 43 48 0f 8f e3 01 00 00 49 83 7c
24 18 00 75 04 <0f> 0b eb fe f0 ff 83 ec 01 00 00 49 8b 44 24 18 8b 00 85 c0 89
RIP  [<ffffffff811fabf2>] ext4_direct_IO+0x162/0x3d0
 RSP <ffff88080f90bb58>

Reported-by: Sasha Levin <sasha.levin@oracle.com>
Signed-off-by: Theodore Ts'o <tytso@mit.edu>
Signed-off-by: Dmitry Monakhov <dmonakhov@openvz.org>
Cc: stable@vger.kernel.org
2014-10-30 10:53:16 -04:00
..
9p
9p: switch to %p[dD]
2014-10-09 02:39:04 -04:00
adfs
adfs: add __printf verification, fix format/argument mismatches
2014-08-08 15:57:24 -07:00
affs
fs/affs: remove redundant sys_tz declarations
2014-10-14 02:18:22 +02:00
afs
Merge branch 'sched-core-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
2014-10-13 16:23:15 +02:00
autofs4
autofs4: d_manage() should return -EISDIR when appropriate in rcu-walk mode.
2014-10-14 02:18:16 +02:00
befs
fs/befs/btree.c: remove typedef befs_btree_node
2014-10-14 02:18:20 +02:00
bfs
fs/bfs: use bfs prefix for dump_imap
2014-08-08 15:57:24 -07:00
btrfs
vfs: export check_sticky()
2014-10-24 00:14:36 +02:00
cachefiles
FS-Cache fixes
2014-10-14 08:40:15 +02:00
ceph
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/sage/ceph-client
2014-10-15 06:46:01 +02:00
cifs
[CIFS] Remove obsolete comment
2014-10-17 17:17:12 -05:00
coda
fs/coda: use linux/uaccess.h
2014-08-08 15:57:20 -07:00
configfs
fs/configfs: use pr_fmt
2014-06-04 16:53:53 -07:00
cramfs
fs/cramfs/inode.c: use linux/uaccess.h
2014-08-08 15:57:25 -07:00
debugfs
fs: debugfs: remove trailing whitespace
2014-07-09 16:58:21 -07:00
devpts
fs/devpts/inode.c: convert printk to pr_foo()
2014-06-06 16:08:14 -07:00
dlm
dlm: fix missing endian conversion of rcom_status flags
2014-10-14 15:11:48 -05:00
ecryptfs
fs: limit filesystem stacking depth
2014-10-24 00:14:39 +02:00
efivarfs
fs/efivarfs/super.c: use static const for dentry_operations
2014-06-04 16:54:14 -07:00
efs
fs/efs/namei.c: return is not a function
2014-08-08 15:57:18 -07:00
exofs
Boaz Harrosh - Fix broken email address
2014-10-19 20:22:32 +03:00
exportfs
fs/exportfs/expfs.c: kernel-doc warning fixes
2014-06-04 16:54:14 -07:00
ext2
percpu_counter: add @gfp to percpu_counter_init()
2014-09-08 09:51:29 +09:00
ext3
Merge branch 'for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jack/linux-fs
2014-10-11 08:02:31 -04:00
ext4
ext4: prevent bugon on race between write/fcntl
2014-10-30 10:53:16 -04:00
f2fs
f2fs: support volatile operations for transient data
2014-10-07 11:54:41 -07:00
fat
fat: remove redundant sys_tz declaration
2014-10-14 02:18:20 +02:00
freevxfs
fscache
fs/fscache/object-list.c: use __seq_open_private()
2014-10-13 17:52:21 +01:00
fuse
vfs: Make d_invalidate return void
2014-10-09 02:38:57 -04:00
gfs2
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2014-10-13 11:28:42 +02:00
hfs
fs/hfs/hfs_fs.h: remove redundant sys_tz declaration
2014-10-14 02:18:20 +02:00
hfsplus
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2014-06-12 10:30:18 -07:00
hostfs
hostfs: support rename flags
2014-08-07 14:40:09 -04:00
hpfs
fs/hpfs/dnode.c: fix suspect code indent
2014-08-08 15:57:22 -07:00
hppfs
hugetlbfs
fs/hugetlbfs/inode.c: remove null test before kfree
2014-06-04 16:54:11 -07:00
isofs
isofs: replace strnicmp with strncasecmp
2014-10-14 02:18:24 +02:00
jbd
jbd/jbd2: use non-movable memory for the jbd superblock
2014-09-04 22:36:35 -04:00
jbd2
jbd2: simplify calling convention around __jbd2_journal_clean_checkpoint_list
2014-09-18 00:58:12 -04:00
jffs2
[jffs2] kill wbuf_queued/wbuf_dwork_lock
2014-10-09 02:39:01 -04:00
jfs
Merge branch 'sched-core-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
2014-10-13 16:23:15 +02:00
kernfs
vfs: Remove unnecessary calls of check_submounts_and_drop
2014-10-09 02:38:56 -04:00
lockd
File locking related changes for v3.18 (pile #1)
2014-10-11 13:21:34 -04:00
logfs
fs/logfs/readwrite.c: kernel-doc warning fixes
2014-08-06 18:01:12 -07:00
minix
minix zmap block counts calculation fix
2014-08-08 15:57:20 -07:00
ncpfs
fs/ncpfs/dir.c: remove redundant sys_tz declaration
2014-10-14 02:18:16 +02:00
nfs
Merge branch 'for-linus' of git://git.open-osd.org/linux-open-osd
2014-10-21 12:53:45 -07:00
nfs_common
lockd: move lockd's grace period handling into its own module
2014-09-17 16:33:11 -04:00
nfsd
Merge branch 'sched-core-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
2014-10-13 16:23:15 +02:00
nilfs2
nilfs2: improve the performance of fdatasync()
2014-10-14 02:18:20 +02:00
nls
notify
File locking related changes for v3.18 (pile #1)
2014-10-11 13:21:34 -04:00
ntfs
NTFS: Bump version to 2.1.31.
2014-10-16 12:53:35 +01:00
ocfs2
ocfs2: replace strnicmp with strncasecmp
2014-10-14 02:18:24 +02:00
omfs
FS/OMFS: block number sanity check during fill_super operation
2014-10-14 02:18:22 +02:00
openpromfs
overlayfs
overlayfs: embed middle into overlay_readdir_data
2014-10-24 20:25:23 -04:00
proc
mm: softdirty: enable write notifications on VMAs after VM_SOFTDIRTY cleared
2014-10-14 02:18:28 +02:00
pstore
pstore: Fix duplicate {console,ftrace}-efi entries
2014-10-15 13:51:33 -07:00
qnx4
qnx6
fs/qnx6: update debugging to current functions
2014-08-08 15:57:26 -07:00
quota
percpu_counter: add @gfp to percpu_counter_init()
2014-09-08 09:51:29 +09:00
ramfs
fs/ramfs/file-nommu.c: replace count*size kzalloc by kcalloc
2014-08-08 15:57:18 -07:00
reiserfs
fs/reiserfs/journal.c: fix sparse context imbalance warning
2014-10-14 02:18:20 +02:00
romfs
fs/romfs/super.c: add blank line after declarations
2014-08-08 15:57:25 -07:00
squashfs
fs/squashfs/super.c: logging cleanup
2014-08-06 18:01:13 -07:00
sysfs
kernfs: move the last knowledge of sysfs out from kernfs
2014-06-03 08:11:18 -07:00
sysv
ubifs
UBIFS: Fix trivial typo in power_cut_emulated()
2014-09-30 09:29:44 +03:00
udf
udf: Fix loading of special inodes
2014-10-09 13:06:14 +02:00
ufs
fs/ufs/balloc.c: remove unused variable
2014-10-14 02:18:20 +02:00
xfs
Merge branch 'for-3.18/core' of git://git.kernel.dk/linux-block
2014-10-18 11:53:51 -07:00
aio.c
percpu_ref: add PERCPU_REF_INIT_* flags
2014-09-24 13:31:50 -04:00
anon_inodes.c
attr.c
fs,userns: Change inode_capable to capable_wrt_inode_uidgid
2014-06-10 13:57:22 -07:00
bad_inode.c
bad_inode: add ->rename2()
2014-08-07 14:40:09 -04:00
binfmt_aout.c
handle suicide on late failure exits in execve() in search_binary_handler()
2014-10-09 02:39:00 -04:00
binfmt_elf_fdpic.c
handle suicide on late failure exits in execve() in search_binary_handler()
2014-10-09 02:39:00 -04:00
binfmt_elf.c
handle suicide on late failure exits in execve() in search_binary_handler()
2014-10-09 02:39:00 -04:00
binfmt_em86.c
binfmt_flat.c
fs/binfmt_flat.c: make old_reloc() static
2014-06-04 16:54:21 -07:00
binfmt_misc.c
binfmt_misc: work around gcc-4.9 warning
2014-10-14 02:18:16 +02:00
binfmt_script.c
binfmt_som.c
block_dev.c
Merge branch 'for-3.18/core' of git://git.kernel.dk/linux-block
2014-10-18 11:53:51 -07:00
buffer.c
A large number of cleanups and bug fixes, with some (minor) journal
2014-10-20 09:50:11 -07:00
char_dev.c
compat_binfmt_elf.c
compat_ioctl.c
Bluetooth: Move HCI socket definitions into its own header file
2014-07-11 13:53:04 +03:00
compat.c
vfs: move getname() from callers to do_mount()
2014-10-09 02:39:16 -04:00
coredump.c
coredump: add %i/%I in core_pattern to report the tid of the crashed thread
2014-10-14 02:18:21 +02:00
dcache.c
fix inode leaks on d_splice_alias() failure exits
2014-10-23 22:30:18 -04:00
dcookies.c
direct-io.c
fuse: honour max_read and max_write in direct_io mode
2014-09-26 21:16:51 -04:00
drop_caches.c
fs: convert use of typedef ctl_table to struct ctl_table
2014-06-06 16:08:16 -07:00
eventfd.c
eventpoll.c
eventpoll: fix uninitialized variable in epoll_ctl
2014-09-10 15:42:12 -07:00
exec.c
handle suicide on late failure exits in execve() in search_binary_handler()
2014-10-09 02:39:00 -04:00
fcntl.c
security: make security_file_set_fowner, f_setown and __f_setown void return
2014-09-09 16:01:36 -04:00
fhandle.c
file_table.c
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2014-10-13 11:28:42 +02:00
file.c
Merge branch 'core-rcu-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
2014-10-13 15:44:12 +02:00
filesystems.c
fs_pin.c
make fs/{namespace,super}.c forget about acct.h
2014-08-07 14:40:09 -04:00
fs_struct.c
fs-writeback.c
sched: Remove proliferation of wait_on_bit() action functions
2014-07-16 15:10:39 +02:00
inode.c
mm: allow drivers to prevent new writable mappings
2014-08-08 15:57:31 -07:00
internal.h
vfs: export __inode_permission() to modules
2014-10-24 00:14:35 +02:00
ioctl.c
Kconfig
overlay filesystem
2014-10-24 00:14:38 +02:00
Kconfig.binfmt
libfs.c
locks: plumb a "priv" pointer into the setlease routines
2014-10-07 14:06:12 -04:00
locks.c
locks: flock_make_lock should return a struct file_lock (or PTR_ERR)
2014-10-07 14:06:13 -04:00
Makefile
overlay filesystem
2014-10-24 00:14:38 +02:00
mbcache.c
fs/mbcache: replace __builtin_log2() with ilog2()
2014-06-25 22:08:29 -04:00
mount.h
vfs: Add a function to lazily unmount all mounts from any dentry.
2014-10-09 02:38:55 -04:00
mpage.c
vfs: guard end of device for mpage interface
2014-10-09 22:25:53 -04:00
namei.c
vfs: add RENAME_WHITEOUT
2014-10-24 00:14:37 +02:00
namespace.c
vfs: introduce clone_private_mount()
2014-10-24 00:14:36 +02:00
no-block.c
open.c
vfs: add i_op->dentry_open()
2014-10-24 00:14:35 +02:00
pipe.c
pnode.c
get rid of propagate_umount() mistakenly treating slaves as busy.
2014-08-30 18:31:41 -04:00
pnode.h
posix_acl.c
proc_namespace.c
namespaces: Use task_lock and not rcu to protect nsproxy
2014-07-29 18:08:50 -07:00
read_write.c
cachefiles_write_page(): switch to __kernel_write()
2014-10-09 02:39:05 -04:00
readdir.c
fanotify: create FAN_ACCESS event for readdir
2014-06-04 16:53:52 -07:00
select.c
seq_file.c
fs/seq_file: fallback to vmalloc allocation
2014-07-03 09:21:54 -07:00
signalfd.c
splice.c
vfs: export do_splice_direct() to modules
2014-10-24 00:14:35 +02:00
stack.c
fs: fix comment for 'CONFIG_LBADF'
2014-08-26 09:35:56 +02:00
stat.c
statfs.c
super.c
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2014-10-13 11:28:42 +02:00
sync.c
Export sync_filesystem() for modular ->remount_fs() use
2014-09-05 08:16:21 -07:00
timerfd.c
timerfd: Remove an always true check
2014-08-27 11:17:48 +02:00
utimes.c
xattr.c
vfs: Deduplicate code shared by xattr system calls operating on paths
2014-10-12 17:09:10 -04:00