fs/ubifs/file.c · 2bad0e7b109665009e7b58ec8b9f9c30ba0fbdd0 · Kirill Smelkov / linux

UBIFS: fix an mmap and fsync race condition · 2bad0e7b

hujianyang authored Apr 30, 2014

commit 691a7c6f upstream.

There is a race condition in UBIFS:

Thread A (mmap)                        Thread B (fsync)

->__do_fault                           ->write_cache_pages
   -> ubifs_vm_page_mkwrite
       -> budget_space
       -> lock_page
       -> release/convert_page_budget
       -> SetPagePrivate
       -> TestSetPageDirty
       -> unlock_page
                                       -> lock_page
                                           -> TestClearPageDirty
                                           -> ubifs_writepage
                                               -> do_writepage
                                                   -> release_budget
                                                   -> ClearPagePrivate
                                                   -> unlock_page
   -> !(ret & VM_FAULT_LOCKED)
   -> lock_page
   -> set_page_dirty
       -> ubifs_set_page_dirty
           -> TestSetPageDirty (se...

2bad0e7b

file.c 45 KB

Replace file.c