WARNING in md_ioctl

From: Dae R. Jeong
Date: Sat Oct 17 2020 - 07:13:39 EST

Next message: Raj, Ashok: "Re: [RFC PATCH 0/2] iommu: Avoid unnecessary PRI queue flushes"
Previous message: Salvatore Bonaccorso: "Re: [PATCH 4.19 00/21] 4.19.152-rc1 review"
Next in thread: Song Liu: "Re: WARNING in md_ioctl"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

I looked into the warning "WARNING in md_ioctl" found by Syzkaller.
(https://syzkaller.appspot.com/bug?id=fbf9eaea2e65bfcabb4e2750c3ab0892867edea1)
I suspect that it is caused by a race between two concurrenct ioctl()s as belows.

CPU1 (md_ioctl()) CPU2 (md_ioctl())
------ ------
set_bit(MD_CLOSING, &mddev->flags);
did_set_md_closing = true;
WARN_ON_ONCE(test_bit(MD_CLOSING, &mddev->flags));

if(did_set_md_closing)
clear_bit(MD_CLOSING, &mddev->flags);

If the above is correct, this warning is introduced
in the commit 065e519e("md: MD_CLOSING needs to be cleared after called md_set_readonly or do_md_stop").
Could you please take a look into this?

Best regards,
Dae R. Jeong

Next message: Raj, Ashok: "Re: [RFC PATCH 0/2] iommu: Avoid unnecessary PRI queue flushes"
Previous message: Salvatore Bonaccorso: "Re: [PATCH 4.19 00/21] 4.19.152-rc1 review"
Next in thread: Song Liu: "Re: WARNING in md_ioctl"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]