[PATCH 5.10 13/63] scsi: block: Fix a race in the runtime power management code

From: Greg Kroah-Hartman
Date: Mon Jan 04 2021 - 11:11:40 EST

Next message: Greg Kroah-Hartman: "[PATCH 5.4 19/47] uapi: move constants from <linux/kernel.h> to <linux/const.h>"
Previous message: Greg Kroah-Hartman: "[PATCH 5.4 22/47] of: fix linker-section match-table corruption"
In reply to: Greg Kroah-Hartman: "[PATCH 5.10 18/63] io_uring: use bottom half safe lock for fixed file data"
Next in thread: Greg Kroah-Hartman: "[PATCH 5.10 10/63] spi: dw-bt1: Fix undefined devm_mux_control_get symbol"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Bart Van Assche <bvanassche@xxxxxxx>

commit fa4d0f1992a96f6d7c988ef423e3127e613f6ac9 upstream.

With the current implementation the following race can happen:

* blk_pre_runtime_suspend() calls blk_freeze_queue_start() and
blk_mq_unfreeze_queue().

* blk_queue_enter() calls blk_queue_pm_only() and that function returns
true.

* blk_queue_enter() calls blk_pm_request_resume() and that function does
not call pm_request_resume() because the queue runtime status is
RPM_ACTIVE.

* blk_pre_runtime_suspend() changes the queue status into RPM_SUSPENDING.

Fix this race by changing the queue runtime status into RPM_SUSPENDING
before switching q_usage_counter to atomic mode.

Link: https://lore.kernel.org/r/20201209052951.16136-2-bvanassche@xxxxxxx
Fixes: 986d413b7c15 ("blk-mq: Enable support for runtime power management")
Cc: Ming Lei <ming.lei@xxxxxxxxxx>
Cc: Rafael J. Wysocki <rafael.j.wysocki@xxxxxxxxx>
Cc: stable <stable@xxxxxxxxxxxxxxx>
Reviewed-by: Christoph Hellwig <hch@xxxxxx>
Reviewed-by: Hannes Reinecke <hare@xxxxxxx>
Reviewed-by: Jens Axboe <axboe@xxxxxxxxx>
Acked-by: Alan Stern <stern@xxxxxxxxxxxxxxxxxxx>
Acked-by: Stanley Chu <stanley.chu@xxxxxxxxxxxx>
Co-developed-by: Can Guo <cang@xxxxxxxxxxxxxx>
Signed-off-by: Can Guo <cang@xxxxxxxxxxxxxx>
Signed-off-by: Bart Van Assche <bvanassche@xxxxxxx>
Signed-off-by: Martin K. Petersen <martin.petersen@xxxxxxxxxx>
Signed-off-by: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>

---
block/blk-pm.c | 15 +++++++++------
1 file changed, 9 insertions(+), 6 deletions(-)

--- a/block/blk-pm.c
+++ b/block/blk-pm.c
@@ -67,6 +67,10 @@ int blk_pre_runtime_suspend(struct reque

WARN_ON_ONCE(q->rpm_status != RPM_ACTIVE);

+ spin_lock_irq(&q->queue_lock);
+ q->rpm_status = RPM_SUSPENDING;
+ spin_unlock_irq(&q->queue_lock);
+
/*
* Increase the pm_only counter before checking whether any
* non-PM blk_queue_enter() calls are in progress to avoid that any
@@ -89,15 +93,14 @@ int blk_pre_runtime_suspend(struct reque
/* Switch q_usage_counter back to per-cpu mode. */
blk_mq_unfreeze_queue(q);

- spin_lock_irq(&q->queue_lock);
- if (ret < 0)
+ if (ret < 0) {
+ spin_lock_irq(&q->queue_lock);
+ q->rpm_status = RPM_ACTIVE;
pm_runtime_mark_last_busy(q->dev);
- else
- q->rpm_status = RPM_SUSPENDING;
- spin_unlock_irq(&q->queue_lock);
+ spin_unlock_irq(&q->queue_lock);

- if (ret)
blk_clear_pm_only(q);
+ }

return ret;
}

Next message: Greg Kroah-Hartman: "[PATCH 5.4 19/47] uapi: move constants from <linux/kernel.h> to <linux/const.h>"
Previous message: Greg Kroah-Hartman: "[PATCH 5.4 22/47] of: fix linker-section match-table corruption"
In reply to: Greg Kroah-Hartman: "[PATCH 5.10 18/63] io_uring: use bottom half safe lock for fixed file data"
Next in thread: Greg Kroah-Hartman: "[PATCH 5.10 10/63] spi: dw-bt1: Fix undefined devm_mux_control_get symbol"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]