From nobody Thu Apr 16 08:34:49 2026 Received: from mail-pf1-f179.google.com (mail-pf1-f179.google.com [209.85.210.179]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id CFF9B430BBE for ; Sun, 1 Mar 2026 10:11:27 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=209.85.210.179 ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1772359888; cv=none; b=reEfYTI/MCaAgU4jcuTOdCCK9p7QCxOJ7wmJjofUNKNshXA4ASz+Bkx6yw2XNRYQyTy6ugPNZz8l9Kb1rLmxAm5zNKA+3uDLgt90dbr6pPtPHGx7lMWi1HIXGLLD+qC9V0LMmzKaLoGThEFGHQijZirQNuTzg16bHk4icrMmh1Y= ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1772359888; c=relaxed/simple; bh=woIS/wsHPvPvHWzL5+iJBEcWbuA0XO2nXIIe/7Qg0EM=; h=From:To:Cc:Subject:Date:Message-ID:MIME-Version; b=vE0PKcNfC4Axl4q1fIO4tUYg+kRfcFpJ6/XramO1vjpso0b9NbmkEoJQ1X63OhSQjlc97hS2gdQOtvZyq2YLsmIHR1WevuCSoxgxKu+KxzG17QrJKsGhexzcORyd/jYB5acg/217MlhrCtXNjXcy3ub7im/Hw9Q+EntptBjpW6w= ARC-Authentication-Results: i=1; smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=gmail.com; spf=pass smtp.mailfrom=gmail.com; dkim=pass (2048-bit key) header.d=gmail.com header.i=@gmail.com header.b=hFeiTvDE; arc=none smtp.client-ip=209.85.210.179 Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=gmail.com Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=gmail.com Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=gmail.com header.i=@gmail.com header.b="hFeiTvDE" Received: by mail-pf1-f179.google.com with SMTP id d2e1a72fcca58-824a9348603so1332245b3a.2 for ; Sun, 01 Mar 2026 02:11:27 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1772359887; x=1772964687; darn=vger.kernel.org; h=content-transfer-encoding:mime-version:message-id:date:subject:cc :to:from:from:to:cc:subject:date:message-id:reply-to; bh=Cp14pMKS6bkJE/Z/f1aNlGhNOXRNaHWCDHan9dnJcZo=; b=hFeiTvDEZyKuXLEIrztl8hrKJYwI7L2sfCXMIvoGECfpMSYPSQVAvdjdGQcM1XdKfj //lZZ3J8Mqyo4SHxEXP/BGbhNt5ZA/GzBm2KHbRIZDt4SZoJ4hhqlAQhbu8EXEsY8cTT 8IGtG7JTc3BCRpsaouJInrtdrYR/78C1xojufDpIFSc7VfoZB75YJX5hYRU8vOJoXn93 mhzLUK3lLwb1c0RX8BA4sqKW7bZxqdFIIhIzWjBi5cCJziqA2r2RT8Cujk+F0ykBfAag eiUNjPGX9AUZeid6gF468yYw0itn9s0Zyps9z549P1m8OE7GKZqD6g1D1bDPLIW2Oc95 qHgA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1772359887; x=1772964687; h=content-transfer-encoding:mime-version:message-id:date:subject:cc :to:from:x-gm-gg:x-gm-message-state:from:to:cc:subject:date :message-id:reply-to; bh=Cp14pMKS6bkJE/Z/f1aNlGhNOXRNaHWCDHan9dnJcZo=; b=kVDKhpRGQjf/D4Mi9AhqHCDkVvPMs/rrroj5SAk6cJnRWMeM1XCQeCP8iAdkhKl7k2 b8oMdzvvrp4z0LUsmtDirQ2vc2JYEFPQ0KPWUZKsVUDPifWgFnCUaxXDxb9POjoIJw/p 8HyIy4gZMIi5s5VWrO5zFP4LVnVvRzw2pf+VdGQIQXR56nSrADV0BJy5toGfoAYcp9Op ZLjYCFlrQPLAuh2/lrvY03Ty74HjD5lJ+NpWbVk6wmuR62+D+r1825rLObOkYx26lmnn Ks1mMu5WsiWi3L29JfD1y8TDmBEBnsTTlNyYpnUCCXaPRnovw03jUx/56sWAUSfBqkh1 /nag== X-Forwarded-Encrypted: i=1; AJvYcCXl8t8HO1fS3mk4iK9oHjWnbrtkuAgC/SxqxbiQoHIaQIUkg3lmX7gYUzqZc7XsQSNyVBEYx+z93pZZ2Lg=@vger.kernel.org X-Gm-Message-State: AOJu0YzZKFOor6lwGlRsZRejqjqbTxKhdNtEjbjDJK2cFGvGnZIvqtYO ij2czbsdimbcQi8WSX5DxzIT9WMjT87mZ+F1wUE2fZWDwvOeR7G5X2Sl X-Gm-Gg: ATEYQzwe28NnUom2D3Lr0Qdt55ViYBXQYTrqwkM65Q/2BVuO4QRTfygDRLLEhIRz8fX 0h8pRns9G5K7kBdWE/H3XevldCCVHMCz1RFtUuwjTUP8aze0X8+mX8isfMwsF20g1lrNVNlFv/9 uGKCVvL30c/l0VRdufX2xGf15IvC1mT94zQdzB3L5xlMbofk2rkaOPveYg/gW9e5xZUtRGaTQsk UG8iG+5IKjYOBuZhUljKVFlpI7SQHIwtJGufWOkxxmRcSEUL5NXfGTVTYzFPVIljzj7lZllB2Ww Abn54WAVvMBTbUDcV0RAQ5NetOVqXWQ1TqvbxzaC+hI7dLb58VGm31Bslgmkf4koa2z3BZ40vtR uIhHaN/cIQv4sJU8aKt8otY/NYv8yvz62dN99EX1v7h50EGFPPCILm5EHj5NwOM28EPg8OIVo3x dSqV/RLq52XD3fRzBAS9yDLkREa4hbP++0WjRVaTdNgcU5 X-Received: by 2002:a05:6a21:d89:b0:394:56ae:8a73 with SMTP id adf61e73a8af0-395c3af018amr8410142637.48.1772359887093; Sun, 01 Mar 2026 02:11:27 -0800 (PST) Received: from yangwen.localdomain ([121.225.53.117]) by smtp.gmail.com with ESMTPSA id 41be03b00d2f7-c70fa62147esm9205452a12.12.2026.03.01.02.11.23 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Sun, 01 Mar 2026 02:11:26 -0800 (PST) From: Yang Wen To: linkinjeon@kernel.org, sj1557.seo@samsung.com Cc: yuezhang.mo@sony.com, linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, Yang Wen Subject: [PATCH] exfat: initialize caching fields during inode allocation Date: Sun, 1 Mar 2026 18:11:19 +0800 Message-ID: <20260301101119.447-1-anmuxixixi@gmail.com> X-Mailer: git-send-email 2.43.0 Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset="utf-8" exfat_alloc_inode() does not initialize the cache_lru list head of struct exfat_inode_info. If an inode is evicted before its cache structures are properly initialized (e.g., during a forced unmount), the cleanup path in __exfat_cache_inval_inode() may observe an uninitialized list head. The check: while (!list_empty(&ei->cache_lru)) may incorrectly succeed when stale pointers remain from a reused slab object. Subsequent list traversal can then operate on invalid entries, potentially leading to a NULL pointer dereference or memory corruption. Initialize cache_lru, cache_lru_lock, nr_caches, and cache_valid_id in exfat_alloc_inode() to ensure a well-defined state at allocation time. Signed-off-by: Yang Wen --- fs/exfat/super.c | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/fs/exfat/super.c b/fs/exfat/super.c index 83396fd265cd..0c4a22b8d5fa 100644 --- a/fs/exfat/super.c +++ b/fs/exfat/super.c @@ -195,6 +195,10 @@ static struct inode *exfat_alloc_inode(struct super_bl= ock *sb) if (!ei) return NULL; =20 + spin_lock_init(&ei->cache_lru_lock); + ei->nr_caches =3D 0; + ei->cache_valid_id =3D EXFAT_CACHE_VALID + 1; + INIT_LIST_HEAD(&ei->cache_lru); init_rwsem(&ei->truncate_lock); return &ei->vfs_inode; } --=20 2.43.0