On Tue, Sep 29 2020 at 16:57, Hillf Danton wrote: > So the timer was armed at some point and then the expiry which does the > forward races with the ioctl which starts the timer. Lack of > serialization or such ... > === > > To close the race, replace hrtimer_is_queued() with hrtimer_active() on > enqueuing timer, because it also covers the case of a running timer in > addition to the queued one. > > Link: https://lore.kernel.org/lkml/87pn65khft....@nanos.tec.linutronix.de/ > Reported-by: syzbot+ca740b95a16399ceb...@syzkaller.appspotmail.com > Decoded-by: Thomas Gleixner <t...@linutronix.de> > Signed-off-by: Hillf Danton <hdan...@sina.com>
Reviewed-by: Thomas Gleixner <t...@linutronix.de>
