tjh.dev / kernel
Linux kernel mirror (for testing) git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git
kernel os linux
fork atom

freeze_bdev: don't deactivate successfully frozen MS_RDONLY sb

Thanks Thomas and Christoph for testing and review.
I removed 'smp_wmb()' before up_write from the previous patch,
since up_write() should have necessary ordering constraints.
(I.e. the change of s_frozen is visible to others after up_write)
I'm quite sure the change is harmless but if you are uncomfortable
with Tested-by/Reviewed-by on the modified patch, please remove them.

If MS_RDONLY, freeze_bdev should just up_write(s_umount) instead of
deactivate_locked_super().
Also, keep sb->s_frozen consistent so that remount can check the frozen state.

Otherwise a crash reported here can happen:
http://lkml.org/lkml/2010/1/16/37
http://lkml.org/lkml/2010/1/28/53

This patch should be applied for 2.6.32 stable series, too.

Reviewed-by: Christoph Hellwig <hch@lst.de>
Tested-by: Thomas Backlund <tmb@mandriva.org>
Signed-off-by: Jun'ichi Nomura <j-nomura@ce.jp.nec.com>
Cc: stable@kernel.org
Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>

authored by

Jun'ichi Nomura and committed by
Al Viro 4b06e5b9 8dd5ca53

+4 -3
unified split
+4 -3
fs/block_dev.c
··· 246 if (!sb) 247 goto out; 248 if (sb->s_flags & MS_RDONLY) { 249 - deactivate_locked_super(sb); 250 mutex_unlock(&bdev->bd_fsfreeze_mutex); 251 return sb; 252 } ··· 308 BUG_ON(sb->s_bdev != bdev); 309 down_write(&sb->s_umount); 310 if (sb->s_flags & MS_RDONLY) 311 - goto out_deactivate; 312 313 if (sb->s_op->unfreeze_fs) { 314 error = sb->s_op->unfreeze_fs(sb); ··· 322 } 323 } 324 325 sb->s_frozen = SB_UNFROZEN; 326 smp_wmb(); 327 wake_up(&sb->s_wait_unfrozen); 328 329 - out_deactivate: 330 if (sb) 331 deactivate_locked_super(sb); 332 out_unlock:
··· 246 if (!sb) 247 goto out; 248 if (sb->s_flags & MS_RDONLY) { 249 + sb->s_frozen = SB_FREEZE_TRANS; 250 + up_write(&sb->s_umount); 251 mutex_unlock(&bdev->bd_fsfreeze_mutex); 252 return sb; 253 } ··· 307 BUG_ON(sb->s_bdev != bdev); 308 down_write(&sb->s_umount); 309 if (sb->s_flags & MS_RDONLY) 310 + goto out_unfrozen; 311 312 if (sb->s_op->unfreeze_fs) { 313 error = sb->s_op->unfreeze_fs(sb); ··· 321 } 322 } 323 324 + out_unfrozen: 325 sb->s_frozen = SB_UNFROZEN; 326 smp_wmb(); 327 wake_up(&sb->s_wait_unfrozen); 328 329 if (sb) 330 deactivate_locked_super(sb); 331 out_unlock: