"value":"In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: don't take dev_replace rwsem on task already holding it\n\nRunning fstests btrfs/011 with MKFS_OPTIONS=\"-O rst\"toforcetheusageof\ntheRAIDstripe-tree,wegetthefollowingsplatfromlockdep:\n\nBTRFSinfo(devicesdd):dev_replacefrom/dev/sdd(devid1)to/dev/sdbstarted\n\n============================================\nWARNING:possiblerecursivelockingdetected\n6.11.0-rc3-btrfs-for-next#599Nottainted\n--------------------------------------------\nbtrfs/2326istryingtoacquirelock:\nffff88810f215c98(&fs_info->dev_replace.rwsem){++++}-{3:3},at:btrfs_map_block+0x39f/0x2250\n\nbuttaskisalreadyholdinglock:\nffff88810f215c98(&fs_info->dev_replace.rwsem){++++}-{3:3},at:btrfs_map_block+0x39f/0x2250\n\notherinfothatmighthelpusdebugthis:\nPossibleunsafelockingscenario:\n\nCPU0\n----\nlock(&fs_info->dev_replace.rwsem);\nlock(&fs_info->dev_replace.rwsem);\n\n***DEADLOCK***\n\nMaybeduetomissinglocknestingnotation\n\n1lockheldbybtrfs/2326:\n#0:ffff88810f215c98(&fs_info->dev_replace.rwsem){++++}-{3:3},at:btrfs_map_block+0x39f/0x2250\n\nstackbacktrace:\nCPU:1UID:0PID:2326Comm:btrfsNottainted6.11.0-rc3-btrfs-for-next#599\nHardwarename:BochsBochs,BIOSBochs01/01/2011\nCallTrace:\n<TASK>\ndump_stack_lvl+0x5b/0x80\n__lock_acquire+0x2798/0x69d0\n?__pfx___lock_acquire+0x10/0x10\n?__pfx___lock_acquire+0x10/0x10\nlock_acquire+0x19d/0x4a0\n?btrfs_map_block+0x39f/0x2250\n?__pfx_lock_acquire+0x10/0x10\n?find_held_lock+0x2d/0x110\n?lock_is_held_type+0x8f/0x100\ndown_read+0x8e/0x440\n?btrfs_map_block+0x39f/0x2250\n?__pfx_down_read+0x10/0x10\n?do_raw_read_unlock+0x44/0x70\n?_raw_read_unlock+0x23/0x40\nbtrfs_map_block+0x39f/0x2250\n?btrfs_dev_replace_by_ioctl+0xd69/0x1d00\n?btrfs_bio_counter_inc_blocked+0xd9/0x2e0\n?__kasan_slab_alloc+0x6e/0x70\n?__pfx_btrfs_map_block+0x10/0x10\n?__pfx_btrfs_bio_counter_inc_blocked+0x10/0x10\n?kmem_cache_alloc_noprof+0x1f2/0x300\n?mempool_alloc_noprof+0xed/0x2b0\nbtrfs_submit_chunk+0x28d/0x17e0\n?__pfx_btrfs_submit_chunk+0x10/0x10\n?bvec_alloc+0xd7/0x1b0\n?bio_add_folio+0x171/0x270\n?__pfx_bio_add_folio+0x10/0x10\n?__kasan_check_read+0x20/0x20\nbtrfs_submit_bio+0x37/0x80\nread_extent_buffer_pages+0x3df/0x6c0\nbtrfs_read_extent_buffer+0x13e/0x5f0\nread_tree_block+0x81/0xe0\nread_block_for_search+0x4bd/0x7a0\n?__pfx_read_block_for_search+0x10/0x10\nbtrfs_search_slot+0x78d/0x2720\n?__pfx_btrfs_search_slot+0x10/0x10\n?lock_is_held_type+0x8f/0x100\n?kasan_save_track+0x14/0x30\n?__kasan_slab_alloc+0x6e/0x70\n?kmem_cache_alloc_noprof+0x1f2/0x300\nbtrfs_get_raid_extent_offset+0x181/0x820\n?__pfx_lock_acquire+0x10/0x10\n?__pfx_btrfs_get_raid_extent_offset+0x10/0x10\n?down_read+0x194/0x440\n?__pfx_down_read+0x10/0x10\n?do_raw_read_unlock+0x44/0x70\n?_raw_read_unlock+0x23/0x40\nbtrfs_map_block+0x5b5/0x2250\n?__pfx_btrfs_map_block+0x10/0x10\nscrub_submit_initial_read+0x8fe/0x11b0\n?__pfx_scrub_submit_initial_read+0x10/0x10\nsubmit_initial_group_read+0x161/0x3a0\n?lock_release+0x20e/0x710\n?__pfx_submit_initial_group_read+0x10/0x10\n?__pfx_lock_release+0x10/0x10\nscrub_simple_mirror.isra.0+0x3eb/0x580\nscrub_stripe+0xe4d/0x1440\n?lock_release+0x20e/0x710\n?__pfx_scrub_stripe+0x10/0x10\n?__pfx_lock_release+0x10/0x10\n?do_raw_read_unlock+0x44/0x70\n?_raw_read_unlock+0x23/0x40\nscrub_chunk+0x257/0x4a0\nscrub_enumerate_chunks+0x64c/0xf70\n?__mutex_unlock_slowpath+0x147/0x5f0\n?__pfx_scrub_enumerate_chunks+0x10/0x10\n?bit_wait_timeout+0xb0/0x170\n?__up_read+0x189/0x700\n?scrub_workers_get+0x231/0x300\n?up_write+0x490/0x4f0\nbtrfs_scrub_dev+0x52e/0xcd0\n?create_pending_snapshots+0x230/0x250\n?__pfx_btrfs_scrub_dev+0x10/0x10\nbtrfs_dev_replace_by_ioctl+0xd69/0x1d00\n?lock_acquire+0x19d/0x4a0\n?__pfx_btrfs_dev_replace_by_
"value":"En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: btrfs: no tome dev_replace rwsem en la tarea que ya lo contiene Al ejecutar fstests btrfs/011 con MKFS_OPTIONS=\"-O rst\" para forzar el uso del \u00e1rbol de bandas RAID, obtenemos el siguiente mensaje de lockdep: Informaci\u00f3n de BTRFS (dispositivo sdd): dev_replace de /dev/sdd (devid 1) a /dev/sdb iniciado ============================================ ADVERTENCIA: se detect\u00f3 un posible bloqueo recursivo 6.11.0-rc3-btrfs-for-next #599 No contaminado -------------------------------------------- btrfs/2326 est\u00e1 intentando adquirir el bloqueo: ffff88810f215c98 (&fs_info->dev_replace.rwsem){++++}-{3:3}, en: btrfs_map_block+0x39f/0x2250 pero la tarea ya tiene el bloqueo: ffff88810f215c98 (&fs_info->dev_replace.rwsem){++++}-{3:3}, en: btrfs_map_block+0x39f/0x2250 otra informaci\u00f3n que podr\u00eda ayudarnos a depurar esto: Posible escenario de bloqueo inseguro: CPU0 ---- lock(&fs_info->dev_replace.rwsem); lock(&fs_info->dev_replace.rwsem); *** BLOQUEO INTERMEDIO *** Puede deberse a la falta de notaci\u00f3n de anidamiento de bloqueo 1 bloqueo mantenido por btrfs/2326: #0: ffff88810f215c98 (&fs_info->dev_replace.rwsem){++++}-{3:3}, en: btrfs_map_block+0x39f/0x2250 seguimiento de pila: CPU: 1 UID: 0 PID: 2326 Comm: btrfs No contaminado 6.11.0-rc3-btrfs-for-next #599 Nombre del hardware: Bochs Bochs, BIOS Bochs 01/01/2011 Seguimiento de llamadas: dump_stack_lvl+0x5b/0x80 __lock_acquire+0x2798/0x69d0 ? __pfx___lock_acquire+0x10/0x10 ? __pfx___lock_acquire+0x10/0x10 lock_acquire+0x19d/0x4a0 ? btrfs_map_block+0x39f/0x2250 ? __pfx_lock_acquire+0x10/0x10 ? find_held_lock+0x2d/0x110 ? lock_is_held_type+0x8f/0x100 down_read+0x8e/0x440 ? btrfs_map_block+0x39f/0x2250 ? __pfx_down_read+0x10/0x10 ? do_raw_read_unlock+0x44/0x70 ? kmem_cache_alloc_noprof+0x1f2/0x300 ? bvec_alloc+0xd7/0x1b0 ? bio_add_folio+0x171/0x270 ? __pfx_bio_add_folio+0x10/0x10 ? __kasan_check_read+0x20/0x20 btrfs_submit_bio+0x37/0x80 lectura_extensi\u00f3n_b\u00fafer_p\u00e1ginas+0x3df/0x6c0 btrfs_lectura_extensi\u00f3n_b\u00fafer+0x13e/0x5f0 lectura_\u00e1rbol_bloque+0x81/0xe0 lectura_bloque_para_b\u00fasqueda+0x4bd/0x7a0 ? __pfx_lectura_bloque_para_b\u00fasqueda+0x10/0x10 btrfs_b\u00fasqueda_slot+0x78d/0x2720 ? __pfx_btrfs_b\u00fasqueda_slot+0x10/0x10 ? bloqueo_se_retiene_tipo+0x8f/0x100 ? kasan_guardar_pista+0x14/0x30 ? __kasan_slab_alloc+0x6e/0x70 ? kmem_cache_alloc_noprof+0x1f2/0x300 btrfs_get_raid_extent_offset+0x181/0x820 ? __pfx_lock_acquire+0x10/0x10 ? __pfx_btrfs_get_raid_extent_offset+0x10/0x10 ? down_read+0x194/0x440 ? __pfx_down_read+0x10/0x10 ? do_raw_read_unlock+0x44/0x70 ? _raw_read_unlock+0x23/0x40 btrfs_map_block+0x5b5/0x2250 ? liberaci\u00f3n de bloqueo+0x20e/0x710 ? __pfx_scrub_stripe+0x10/0x10 ? __pfx_lock_release+0x10/0x10 ? hacer_desbloqueo_lectura_sin_encriptar+0x44/0x70 ? _desbloqueo_lectura_sin_encriptar+0x23/0x40 fragmento_de_scruzamiento+0x257/0x4a0 fragmento_de_scruzamiento_enumerar+0x64c/0xf70 ? __mutex_unlock_slowpath+0x147/0x5f0 ? __pfx_scrub_enumerar_chunks+0x10/0x10 ? tiempo_de_espera_bit+0xb0/0x170 ? __up_read+0x189/0x700 ? obtenci\u00f3n_trabajadores_de_scruzamiento+0x231/0x300 ? up_write+0x490/0x4f0 btrfs_scrub_dev+0x52e/0xcd0 ? create_pending_snapshots+0x230/0x250 ? __pfx_btrfs_scrub_dev+0x10/0x10 btrfs_dev_replace_by_ioctl+0xd69/0x1d00 ? lock_acquire+0x19d/0x4a0 ? __pfx_btrfs_dev_replace_by_ioctl+0x10/0x10 ? ---truncado---"
