Re: [syzbot] general protection fault in __io_sync_cancel

From: Jens Axboe
Date: Wed Aug 24 2022 - 13:22:31 EST

Next message: Kuogee Hsieh: "[PATCH v2] drm/msm/dp: correct 1.62G link rate at dp_catalog_ctrl_config_msa()"
Previous message: Stephen Boyd: "Re: [PATCH v5 2/3] PCI: qcom: Restrict pci transactions after pci suspend"
In reply to: syzbot: "Re: [syzbot] general protection fault in __io_sync_cancel"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 8/24/22 11:20 AM, syzbot wrote:
> Hello,
>
> syzbot tried to test the proposed patch but the build/boot failed:

Gah, that's the virtio-net issue that got fixed, not related. Maybe test
this one on master:

diff --git a/io_uring/cancel.c b/io_uring/cancel.c
index e4e1dc0325f0..5fc5d3e80fcb 100644
--- a/io_uring/cancel.c
+++ b/io_uring/cancel.c
@@ -218,7 +218,7 @@ static int __io_sync_cancel(struct io_uring_task *tctx,
(cd->flags & IORING_ASYNC_CANCEL_FD_FIXED)) {
unsigned long file_ptr;

- if (unlikely(fd > ctx->nr_user_files))
+ if (unlikely(fd >= ctx->nr_user_files))
return -EBADF;
fd = array_index_nospec(fd, ctx->nr_user_files);
file_ptr = io_fixed_file_slot(&ctx->file_table, fd)->file_ptr;

--
Jens Axboe

Next message: Kuogee Hsieh: "[PATCH v2] drm/msm/dp: correct 1.62G link rate at dp_catalog_ctrl_config_msa()"
Previous message: Stephen Boyd: "Re: [PATCH v5 2/3] PCI: qcom: Restrict pci transactions after pci suspend"
In reply to: syzbot: "Re: [syzbot] general protection fault in __io_sync_cancel"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]