CVE-2024-50006

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> ext4: fix i_data_sem unlock order in ext4_ind_migrate()<br /> <br /> Fuzzing reports a possible deadlock in jbd2_log_wait_commit.<br /> <br /> This issue is triggered when an EXT4_IOC_MIGRATE ioctl is set to require<br /> synchronous updates because the file descriptor is opened with O_SYNC.<br /> This can lead to the jbd2_journal_stop() function calling<br /> jbd2_might_wait_for_commit(), potentially causing a deadlock if the<br /> EXT4_IOC_MIGRATE call races with a write(2) system call.<br /> <br /> This problem only arises when CONFIG_PROVE_LOCKING is enabled. In this<br /> case, the jbd2_might_wait_for_commit macro locks jbd2_handle in the<br /> jbd2_journal_stop function while i_data_sem is locked. This triggers<br /> lockdep because the jbd2_journal_start function might also lock the same<br /> jbd2_handle simultaneously.<br /> <br /> Found by Linux Verification Center (linuxtesting.org) with syzkaller.<br /> <br /> Rule: add