hulk inclusion category: bugfix bugzilla: https://gitee.com/src-openeuler/kernel/issues/I9Q98W CVE: CVE-2024-35808 -------------------------------- MD_RECOVERY_FROZEN should always remain set after array is frozen. But in raid_message(), this flag is cleared soon after frozen. Fix it. This flag will be cleared in md_idle_sync_thread(), there is no need to clear it again for idle. Fixes: cd32b27a66db ("md/dm-raid: don't call md_reap_sync_thread() directly") Signed-off-by: Li Nan <linan122@huawei.com> --- drivers/md/dm-raid.c | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/drivers/md/dm-raid.c b/drivers/md/dm-raid.c index 92587efb5b95..cb34dbf8bf31 100644 --- a/drivers/md/dm-raid.c +++ b/drivers/md/dm-raid.c @@ -3706,8 +3706,9 @@ static int raid_message(struct dm_target *ti, unsigned int argc, char **argv, frozen_sync_thread(mddev); else if (!strcasecmp(argv[0], "idle")) idle_sync_thread(mddev); + else + clear_bit(MD_RECOVERY_FROZEN, &mddev->recovery); - clear_bit(MD_RECOVERY_FROZEN, &mddev->recovery); if (decipher_sync_action(mddev, mddev->recovery) != st_idle) return -EBUSY; else if (!strcasecmp(argv[0], "resync")) -- 2.39.2