iv/linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
d4e7cd36a90e38e0276d6ce0c20f5ccef17ec38c
linux/fs
History
Jens Axboe d4e7cd36a9 io_uring: sanitize double poll handling 
There's a bit of confusion on the matching pairs of poll vs double poll,
depending on if the request is a pure poll (IORING_OP_POLL_ADD) or
poll driven retry.

Add io_poll_get_double() that returns the double poll waitqueue, if any,
and io_poll_get_single() that returns the original poll waitqueue. With
that, remove the argument to io_poll_remove_double().

Finally ensure that wait->private is cleared once the double poll handler
has run, so that remove knows it's already been seen.

Cc: stable@vger.kernel.org # v5.8
Reported-by: syzbot+7f617d4a9369028b8a2c@syzkaller.appspotmail.com
Fixes: 18bceab101 ("io_uring: allow POLL_ADD with double poll_wait() users")
Signed-off-by: Jens Axboe <axboe@kernel.dk>
2020-08-15 11:48:18 -07:00
..
9p
9p: read only once on O_NONBLOCK
2020-03-27 09:29:56 +00:00
adfs
block: move struct block_device to blk_types.h
2020-06-24 09:16:02 -06:00
affs
block: move block-related definitions out of fs.h
2020-06-24 09:16:02 -06:00
afs
afs: Fix interruption of operations
2020-07-15 15:49:04 -07:00
autofs
autofs: switch to kernel_write
2020-07-08 08:27:56 +02:00
befs
block: move struct block_device to blk_types.h
2020-06-24 09:16:02 -06:00
bfs
docs: filesystems: fix renamed references
2020-04-20 15:45:22 -06:00
btrfs
Merge tag 'core-rcu-2020-08-03' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
2020-08-03 14:31:33 -07:00
cachefiles
cachefiles: switch to kernel_write
2020-07-08 08:27:56 +02:00
ceph
ceph: skip checking caps when session reconnecting and releasing reqs
2020-06-01 13:22:53 +02:00
cifs
Revert "cifs: Fix the target file was deleted when rename failed."
2020-07-23 15:44:11 -05:00
coda
docs: filesystems: convert coda.txt to ReST
2020-05-05 09:22:21 -06:00
configfs
Merge tag 'docs-5.8' of git://git.lwn.net/linux
2020-06-01 15:45:27 -07:00
cramfs
docs: filesystems: fix renamed references
2020-04-20 15:45:22 -06:00
crypto
fscrypt: don't load ->i_crypt_info before it's known to be valid
2020-07-30 14:21:50 -07:00
debugfs
Merge 5.7-rc3 into driver-core-next
2020-04-27 09:34:55 +02:00
devpts
dlm
Merge tag 'dlm-5.8' of git://git.kernel.org/pub/scm/linux/kernel/git/teigland/linux-dlm
2020-06-05 16:43:16 -07:00
ecryptfs
Merge tag 'docs-5.8' of git://git.lwn.net/linux
2020-06-01 15:45:27 -07:00
efivarfs
efi/efivars: Expose RT service availability via efivars abstraction
2020-07-09 10:14:29 +03:00
efs
block: move struct block_device to blk_types.h
2020-06-24 09:16:02 -06:00
erofs
erofs: fix partially uninitialized misuse in z_erofs_onlinepage_fixup
2020-06-24 09:47:44 +08:00
exfat
exfat: fix name_hash computation on big endian systems
2020-07-21 10:44:19 +09:00
exportfs
ext2
mmap locking API: convert mmap_sem comments
2020-06-09 09:39:14 -07:00
ext4
ext4: add inline encryption support
2020-07-08 10:29:43 -07:00
f2fs
f2fs: add inline encryption support
2020-07-08 10:29:43 -07:00
fat
fat: improve the readahead for FAT entries
2020-06-04 19:06:25 -07:00
freevxfs
fscache
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net-next
2020-06-03 16:27:18 -07:00
fuse
fuse: Fix parameter for FS_IOC_{GET,SET}FLAGS
2020-07-15 14:18:20 +02:00
gfs2
gfs2: Rework read and page fault locking
2020-07-07 23:40:12 +02:00
hfs
block: move block-related definitions out of fs.h
2020-06-24 09:16:02 -06:00
hfsplus
block: remove the error_sector argument to blkdev_issue_flush
2020-05-22 08:45:46 -06:00
hostfs
hostfs: Use kasprintf() instead of fixed buffer formatting
2020-03-29 23:23:00 +02:00
hpfs
hpfs: fix warning due to superfluous semicolon
2020-06-06 10:08:17 -07:00
hugetlbfs
mmap locking API: convert mmap_sem API comments
2020-06-09 09:39:14 -07:00
iomap
Merge tag 'iomap-5.8-merge-1' of git://git.kernel.org/pub/scm/fs/xfs/xfs-linux
2020-06-13 12:44:30 -07:00
isofs
isofs: remove a stale comment
2020-07-08 16:20:01 -06:00
jbd2
Merge tag 'ext4-for-linus-5.8-rc1-2' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4
2020-06-15 09:32:10 -07:00
jffs2
jffs2: Replace zero-length array with flexible-array
2020-06-15 23:08:31 -05:00
jfs
block: move struct block_device to blk_types.h
2020-06-24 09:16:02 -06:00
kernfs
mmap locking API: convert mmap_sem comments
2020-06-09 09:39:14 -07:00
lockd
proc: convert everything to "struct proc_ops"
2020-02-04 03:05:26 +00:00
minix
nfs
SUNRPC reverting d03727b248 ("NFSv4 fix CLOSE not waiting for direct IO compeletion")
2020-07-17 14:47:38 -04:00
nfs_common
nfsd
nfsd4: fix NULL dereference in nfsd/clients display code
2020-07-22 16:47:14 -04:00
nilfs2
nilfs2: fix null pointer dereference at nilfs_segctor_do_construct()
2020-06-10 19:14:17 -07:00
nls
treewide: replace '---help---' in Kconfig files with 'help'
2020-06-14 01:57:21 +09:00
notify
treewide: replace '---help---' in Kconfig files with 'help'
2020-06-14 01:57:21 +09:00
ntfs
block: move block-related definitions out of fs.h
2020-06-24 09:16:02 -06:00
ocfs2
ocfs2: fix value of OCFS2_INVALID_SLOT
2020-06-26 00:27:37 -07:00
omfs
fs: convert mpage_readpages to mpage_readahead
2020-06-02 10:59:07 -07:00
openpromfs
orangefs
Merge tag 'for-linus-5.8-ofs1' of git://git.kernel.org/pub/scm/linux/kernel/git/hubcap/linux
2020-06-05 16:44:36 -07:00
overlayfs
ovl: fix lookup of indexed hardlinks with metacopy
2020-07-16 07:24:47 +02:00
proc
Merge tag 'for-5.9/block-20200802' of git://git.kernel.dk/linux-block
2020-08-03 11:57:03 -07:00
pstore
Merge branch 'uaccess.__copy_from_user' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2020-06-01 16:18:46 -07:00
qnx4
qnx6
fs: convert mpage_readpages to mpage_readahead
2020-06-02 10:59:07 -07:00
quota
block: move block-related definitions out of fs.h
2020-06-24 09:16:02 -06:00
ramfs
fs_parse: fold fs_parameter_desc/fs_parameter_spec
2020-02-07 14:48:37 -05:00
reiserfs
block: move block-related definitions out of fs.h
2020-06-24 09:16:02 -06:00
romfs
treewide: replace '---help---' in Kconfig files with 'help'
2020-06-14 01:57:21 +09:00
squashfs
squashfs: fix length field overlap check in metadata reading
2020-07-24 12:42:41 -07:00
sysfs
Merge tag 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/rdma/rdma
2020-06-05 14:05:57 -07:00
sysv
docs: filesystems: fix renamed references
2020-04-20 15:45:22 -06:00
tracefs
ubifs
mm: remove the pgprot argument to __vmalloc
2020-06-02 10:59:11 -07:00
udf
Merge tag 'for-5.8/block-2020-06-01' of git://git.kernel.dk/linux-block
2020-06-02 15:29:19 -07:00
ufs
unicode
.gitignore: add SPDX License Identifier
2020-03-25 11:50:48 +01:00
vboxsf
vboxsf: don't use the source name in the bdi name
2020-05-07 08:45:47 -06:00
verity
fs-verity: use smp_load_acquire() for ->i_verity_info
2020-07-21 16:02:41 -07:00
xfs
Merge tag 'for-5.9/io_uring-20200802' of git://git.kernel.dk/linux-block
2020-08-03 13:01:22 -07:00
zonefs
zonefs: count pages after truncating the iterator
2020-07-20 17:59:31 +09:00
aio.c
aio: Replace zero-length array with flexible-array
2020-06-15 23:08:25 -05:00
anon_inodes.c
attr.c
bad_inode.c
fs: move the fiemap definitions out of fs.h
2020-06-03 23:16:55 -04:00
binfmt_aout.c
exec: Rename flush_old_exec begin_new_exec
2020-05-07 16:55:47 -05:00
binfmt_elf_fdpic.c
Merge branch 'uaccess.misc' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2020-06-10 16:02:54 -07:00
binfmt_elf.c
Merge branch 'uaccess.misc' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2020-06-10 16:02:54 -07:00
binfmt_em86.c
Merge branch 'akpm' (patches from Andrew)
2020-06-04 19:18:29 -07:00
binfmt_flat.c
Merge branch 'uaccess.misc' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2020-06-10 16:02:54 -07:00
binfmt_misc.c
Merge branch 'akpm' (patches from Andrew)
2020-06-04 19:18:29 -07:00
binfmt_script.c
Merge branch 'akpm' (patches from Andrew)
2020-06-04 19:18:29 -07:00
block_dev.c
Merge tag 'for-5.9/io_uring-20200802' of git://git.kernel.dk/linux-block
2020-08-03 13:01:22 -07:00
buffer.c
Merge tag 'for-5.9/block-20200802' of git://git.kernel.dk/linux-block
2020-08-03 11:57:03 -07:00
char_dev.c
vfs: allow unprivileged whiteout creation
2020-05-14 16:44:23 +02:00
compat_binfmt_elf.c
Merge tag 'core_core_updates_for_5.8' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
2020-06-05 13:45:21 -07:00
compat.c
coredump.c
mmap locking API: convert mmap_sem comments
2020-06-09 09:39:14 -07:00
d_path.c
dax.c
dax,iomap: Add helper dax_iomap_zero() to zero a range
2020-04-02 19:15:03 -07:00
dcache.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net-next
2020-06-03 16:27:18 -07:00
dcookies.c
direct-io.c
block: remove the bd_queue field from struct block_device
2020-07-01 08:08:20 -06:00
drop_caches.c
sysctl: pass kernel pointers to ->proc_handler
2020-04-27 02:07:40 -04:00
eventfd.c
eventfd: convert to f_op->read_iter()
2020-05-06 22:33:43 -04:00
eventpoll.c
epoll: call final ep_events_available() check under the lock
2020-05-14 10:00:35 -07:00
exec.c
mmap locking API: convert mmap_sem comments
2020-06-09 09:39:14 -07:00
fcntl.c
fcntl: Distribute switch variables for initialization
2020-03-03 10:55:06 -05:00
fhandle.c
file_table.c
Revert "fs: Do not check if there is a fsnotify watcher on pseudo inodes"
2020-06-29 09:40:55 -07:00
file.c
fix multiplication overflow in copy_fdtable()
2020-05-19 18:29:36 -04:00
filesystems.c
fs/filesystems.c: downgrade user-reachable WARN_ONCE() to pr_warn_once()
2020-04-10 15:36:22 -07:00
fs_context.c
vfs: don't parse "silent" option
2020-05-14 16:44:25 +02:00
fs_parser.c
fs_parse: remove pr_notice() about each validation
2020-04-02 09:35:26 -07:00
fs_pin.c
fs_struct.c
fs_types.c
fs-writeback.c
Merge tag 'ext4_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4
2020-06-05 16:19:28 -07:00
fsopen.c
add prefix to fs_context->log
2020-02-07 14:48:35 -05:00
inode.c
Merge tag 'afs-next-20200604' of git://git.kernel.org/pub/scm/linux/kernel/git/dhowells/linux-fs
2020-06-05 16:26:36 -07:00
internal.h
block: move block-related definitions out of fs.h
2020-06-24 09:16:02 -06:00
io_uring.c
io_uring: sanitize double poll handling
2020-08-15 11:48:18 -07:00
io-wq.c
io-wq: update hash bits
2020-07-25 09:47:44 -06:00
io-wq.h
io_uring/io-wq: move RLIMIT_FSIZE to io-wq
2020-07-24 13:00:44 -06:00
ioctl.c
fs: remove the access_ok() check in ioctl_fiemap
2020-06-03 23:16:55 -04:00
Kconfig
treewide: replace '---help---' in Kconfig files with 'help'
2020-06-14 01:57:21 +09:00
Kconfig.binfmt
treewide: replace '---help---' in Kconfig files with 'help'
2020-06-14 01:57:21 +09:00
libfs.c
block: remove the error_sector argument to blkdev_issue_flush
2020-05-22 08:45:46 -06:00
locks.c
Merge tag 'filelock-v5.9-1' of git://git.kernel.org/pub/scm/linux/kernel/git/jlayton/linux
2020-08-03 10:46:41 -07:00
Makefile
exfat: add Kconfig and Makefile
2020-03-05 21:00:40 -05:00
mbcache.c
mount.h
proc/mounts: add cursor
2020-05-14 16:44:24 +02:00
mpage.c
fs: convert mpage_readpages to mpage_readahead
2020-06-02 10:59:07 -07:00
namei.c
vfs: clean up posix_acl_permission() logic aroudn MAY_NOT_BLOCK
2020-06-08 11:04:19 -07:00
namespace.c
fuse: reject options on reconfigure via fsconfig(2)
2020-07-14 14:45:41 +02:00
no-block.c
nsfs.c
nsproxy: attach to namespaces via pidfds
2020-05-13 11:41:22 +02:00
open.c
Merge branch 'akpm' (patches from Andrew)
2020-06-02 12:21:36 -07:00
pipe.c
Merge tag 'notifications-20200601' of git://git.kernel.org/pub/scm/linux/kernel/git/dhowells/linux-fs
2020-06-13 09:56:21 -07:00
pnode.c
propagate_one(): mnt_set_mountpoint() needs mount_lock
2020-04-27 10:37:14 -04:00
pnode.h
posix_acl.c
vfs: clean up posix_acl_permission() logic aroudn MAY_NOT_BLOCK
2020-06-08 11:04:19 -07:00
proc_namespace.c
Merge branch 'proc-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebiederm/user-namespace
2020-06-04 13:54:34 -07:00
read_write.c
fs: remove __vfs_read
2020-07-08 08:27:57 +02:00
readdir.c
readdir.c: get rid of the last __put_user(), drop now-useless access_ok()
2020-05-01 20:29:54 -04:00
select.c
pselect6() and friends: take handling the combined 6th/7th args into helper
2020-05-29 19:10:42 -04:00
seq_file.c
fs/seq_file.c: seq_read: Update pr_info_ratelimited
2020-06-04 19:06:25 -07:00
signalfd.c
splice.c
Merge tag 'notifications-20200601' of git://git.kernel.org/pub/scm/linux/kernel/git/dhowells/linux-fs
2020-06-13 09:56:21 -07:00
stack.c
stat.c
Merge tag 'vfs-5.8-merge-1' of git://git.kernel.org/pub/scm/fs/xfs/xfs-linux
2020-06-02 19:45:12 -07:00
statfs.c
super.c
Merge branch 'work.misc' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2020-06-10 16:09:11 -07:00
sync.c
Merge tag 'ovl-update-5.8' of git://git.kernel.org/pub/scm/linux/kernel/git/mszeredi/vfs
2020-06-09 15:40:50 -07:00
timerfd.c
userfaultfd.c
userfaultfd: simplify fault handling
2020-08-03 11:25:16 -07:00
utimes.c
utimensat: AT_EMPTY_PATH support
2020-05-14 16:44:24 +02:00
xattr.c
xattr: fix uninitialized out-param
2020-04-09 15:33:09 -04:00