git.monstr.eu Git - linux-2.6-microblaze.git/commit

author	Hugh Dickins <hughd@google.com>
	Thu, 2 Sep 2021 21:53:57 +0000 (14:53 -0700)
committer	Linus Torvalds <torvalds@linux-foundation.org>
	Fri, 3 Sep 2021 16:58:11 +0000 (09:58 -0700)
commit	51cc3a6620a6ca934d468bda345678768493f5d8
tree	027998d57756dcca6c4c8717a0b8b29e499ca5c0	tree \| snapshot
parent	9857a17f206ff374aea78bccfb687f145368be2e	commit \| diff

fs, mm: fix race in unlinking swapfile

We had a recurring situation in which admin procedures setting up
swapfiles would race with test preparation clearing away swapfiles; and
just occasionally that got stuck on a swapfile "(deleted)" which could
never be swapped off. That is not supposed to be possible.

2.6.28 commit f9454548e17c ("don't unlink an active swapfile") admitted
that it was leaving a race window open: now close it.

may_delete() makes the IS_SWAPFILE check (amongst many others) before
inode_lock has been taken on target: now repeat just that simple check in
vfs_unlink() and vfs_rename(), after taking inode_lock.

Which goes most of the way to fixing the race, but swapon() must also
check after it acquires inode_lock, that the file just opened has not
already been unlinked.

Link: https://lkml.kernel.org/r/e17b91ad-a578-9a15-5e3-4989e0f999b5@google.com
Fixes: f9454548e17c ("don't unlink an active swapfile")
Signed-off-by: Hugh Dickins <hughd@google.com>
Reviewed-by: Jan Kara <jack@suse.cz>
Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>

fs/namei.c		diff \| blob \| history
mm/swapfile.c		diff \| blob \| history