Re: [syzbot] Re: [syzbot] [fs?] BUG: corrupted list in remove_wait_queue (2)

From: syzbot
Date: Mon Feb 17 2025 - 02:26:49 EST

Next message: Thippeswamy Havalige: "[PATCH v3 0/2] Add support for Versal Net CPM5N Root Port controller"
Previous message: Stephen Rothwell: "Re: linux-next: Signed-off-by missing for commit in the kbuild tree"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

For archival purposes, forwarding an incoming command email to
linux-kernel@xxxxxxxxxxxxxxx.

***

Subject: Re: [syzbot] [fs?] BUG: corrupted list in remove_wait_queue (2)
Author: lizhi.xu@xxxxxxxxxxxxx

#syz test

diff --git a/fs/select.c b/fs/select.c
index 7da531b1cf6b..63dd2fb58447 100644
--- a/fs/select.c
+++ b/fs/select.c
@@ -977,6 +977,7 @@ static int do_sys_poll(struct pollfd __user *ufds, unsigned int nfds,
struct poll_list *walk = head;
unsigned int todo = nfds;
unsigned int len;
+ static DEFINE_MUTEX(syspoll_lock);

if (nfds > rlimit(RLIMIT_NOFILE))
return -EINVAL;
@@ -1005,9 +1006,11 @@ static int do_sys_poll(struct pollfd __user *ufds, unsigned int nfds,
}
}

+ mutex_lock(&syspoll_lock);
poll_initwait(&table);
fdcount = do_poll(head, &table, end_time);
poll_freewait(&table);
+ mutex_unlock(&syspoll_lock);

if (!user_write_access_begin(ufds, nfds * sizeof(*ufds)))
goto out_fds;

Next message: Thippeswamy Havalige: "[PATCH v3 0/2] Add support for Versal Net CPM5N Root Port controller"
Previous message: Stephen Rothwell: "Re: linux-next: Signed-off-by missing for commit in the kbuild tree"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]