ovl: fix lock in ovl_llseek() ovl_inode_lock() is interruptible. When inode_lock() in ovl_llseek() was replaced with ovl_inode_lock(), we did not add a check for error. Fix this by making ovl_inode_lock() uninterruptible and change the existing call sites to use an _interruptible variant. Reported-by: syzbot+66a9752fa927f745385e@syzkaller.appspotmail.com Fixes: b1f9d3858f72 ("ovl: use ovl_inode_lock in ovl_llseek()") Signed-off-by: Amir Goldstein <amir73il@gmail.com> Signed-off-by: Miklos Szeredi <mszeredi@redhat.com>

commit: 531d3040bc5cf37dea01b118608347cca9325f9d [log] [tgz]
author: Amir Goldstein <amir73il@gmail.com> Mon Mar 02 15:03:35 2020 +0200
committer: Miklos Szeredi <mszeredi@redhat.com> Thu Mar 12 16:38:10 2020 +0100
tree: cebd4580264859afc1d17ec86a9ce44710708db9
parent: 11a48a5a18c63fd7621bb050228cebf13566e4d8 [diff] [blame]
diff --git a/fs/overlayfs/util.c b/fs/overlayfs/util.c
index ea00508..042f7eb 100644
--- a/fs/overlayfs/util.c
+++ b/fs/overlayfs/util.c

@@ -509,7 +509,7 @@ int ovl_copy_up_start(struct dentry *dentry, int flags)
 	struct inode *inode = d_inode(dentry);
 	int err;
 
-	err = ovl_inode_lock(inode);
+	err = ovl_inode_lock_interruptible(inode);
 	if (!err && ovl_already_copied_up_locked(dentry, flags)) {
 		err = 1; /* Already copied up */
 		ovl_inode_unlock(inode);
@@ -764,7 +764,7 @@ int ovl_nlink_start(struct dentry *dentry)
 			return err;
 	}
 
-	err = ovl_inode_lock(inode);
+	err = ovl_inode_lock_interruptible(inode);
 	if (err)
 		return err;
commit	531d3040bc5cf37dea01b118608347cca9325f9d	[log] [tgz]
author	Amir Goldstein <amir73il@gmail.com>	Mon Mar 02 15:03:35 2020 +0200
committer	Miklos Szeredi <mszeredi@redhat.com>	Thu Mar 12 16:38:10 2020 +0100
tree	cebd4580264859afc1d17ec86a9ce44710708db9
parent	11a48a5a18c63fd7621bb050228cebf13566e4d8 [diff] [blame]