From: Vladimir Davydov Date: Fri, 22 Mar 2013 22:04:51 +0000 (-0700) Subject: mqueue: sys_mq_open: do not call mnt_drop_write() if read-only X-Git-Tag: v3.8.5~46 X-Git-Url: https://git.karo-electronics.de/?a=commitdiff_plain;h=6ad6c406dddbca431b5bd86585b085fd005dd87b;p=karo-tx-linux.git mqueue: sys_mq_open: do not call mnt_drop_write() if read-only commit 38d78e587d4960d0db94add518d27ee74bad2301 upstream. mnt_drop_write() must be called only if mnt_want_write() succeeded, otherwise the mnt_writers counter will diverge. mnt_writers counters are used to check if remounting FS as read-only is OK, so after an extra mnt_drop_write() call, it would be impossible to remount mqueue FS as read-only. Besides, on umount a warning would be printed like this one: ===================================== [ BUG: bad unlock balance detected! ] 3.9.0-rc3 #5 Not tainted ------------------------------------- a.out/12486 is trying to release lock (sb_writers) at: mnt_drop_write+0x1f/0x30 but there are no more locks to release! Signed-off-by: Vladimir Davydov Cc: Doug Ledford Cc: KOSAKI Motohiro Cc: "Eric W. Biederman" Cc: Al Viro Signed-off-by: Andrew Morton Signed-off-by: Linus Torvalds Signed-off-by: Greg Kroah-Hartman --- diff --git a/ipc/mqueue.c b/ipc/mqueue.c index 71a3ca18c873..6ebfbf52712d 100644 --- a/ipc/mqueue.c +++ b/ipc/mqueue.c @@ -840,7 +840,8 @@ out_putfd: fd = error; } mutex_unlock(&root->d_inode->i_mutex); - mnt_drop_write(mnt); + if (!ro) + mnt_drop_write(mnt); out_putname: putname(name); return fd;