git.baikalelectronics.ru Git - kernel.git/commit

author	Suren Baghdasaryan <surenb@google.com>
	Thu, 30 Jul 2020 19:26:32 +0000 (12:26 -0700)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Fri, 31 Jul 2020 12:41:43 +0000 (14:41 +0200)
commit	0112758f17562e8bd9588c88be68aa4522534d58
tree	3c1222a64fc7c3a9a9157da7daac1d36b22559c6	tree \| snapshot
parent	49d985dc438d844a4a3a6e9f080257e8b4abeac5	commit \| diff

staging: android: ashmem: Fix lockdep warning for write operation

syzbot report [1] describes a deadlock when write operation against an
ashmem fd executed at the time when ashmem is shrinking its cache results
in the following lock sequence:

Possible unsafe locking scenario:

        CPU0                    CPU1
        ----                    ----
   lock(fs_reclaim);
                                lock(&sb->s_type->i_mutex_key#13);
                                lock(fs_reclaim);
   lock(&sb->s_type->i_mutex_key#13);

kswapd takes fs_reclaim and then inode_lock while generic_perform_write
takes inode_lock and then fs_reclaim. However ashmem does not support
writing into backing shmem with a write syscall. The only way to change
its content is to mmap it and operate on mapped memory. Therefore the race
that lockdep is warning about is not valid. Resolve this by introducing a
separate lockdep class for the backing shmem inodes.

[1]: https://lkml.kernel.org/lkml/0000000000000b5f9d059aa2037f@google.com/

Reported-by: syzbot+7a0d9d0b26efefe61780@syzkaller.appspotmail.com
Signed-off-by: Suren Baghdasaryan <surenb@google.com>
Cc: stable <stable@vger.kernel.org>
Reviewed-by: Joel Fernandes (Google) <joel@joelfernandes.org>
Link: https://lore.kernel.org/r/20200730192632.3088194-1-surenb@google.com
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>