-# $OpenBSD: Makefile,v 1.11 2020/12/16 22:59:55 bluhm Exp $
+# $OpenBSD: Makefile,v 1.12 2022/04/27 18:02:05 anton Exp $
PROGS+= flock
SRCS_flock= flock.c util.c
+LDADD_flock= -lutil
PROGS+= lockf
SRCS_lockf= lockf.c util.c
WARNINGS= yes
-TESTS_FLOCK!= jot 24 1
+TESTS_FLOCK!= jot 25 1
.for t in ${TESTS_FLOCK}
run-flock-$t: flock
./flock ${LOCKFLAGS} $t
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
+#include <termios.h>
#include <unistd.h>
+#include <util.h>
#include "util.h"
SUCCEED;
}
+/*
+ * Test 25 - use after free regression
+ *
+ * Discovered by syzkaller.
+ */
+static int
+test25(int fd)
+{
+ struct flock fl;
+ int master, res, slave;
+
+ res = openpty(&master, &slave, NULL, NULL, NULL);
+ FAIL(res == -1);
+ close(master);
+
+ fl.l_start = 0;
+ fl.l_len = 0;
+ fl.l_pid = 0;
+ fl.l_type = F_RDLCK;
+ fl.l_whence = SEEK_SET;
+ res = fcntl(slave, F_SETLKW, &fl);
+ FAIL(res != 0);
+
+ fl.l_start = 3;
+ fl.l_len = 0x7ffffffffffffffd;
+ fl.l_pid = 0;
+ fl.l_type = F_UNLCK;
+ fl.l_whence = SEEK_END;
+ res = fcntl(slave, F_SETLKW, &fl);
+ FAIL(res != 0);
+
+ fl.l_start = 0;
+ fl.l_len = 0;
+ fl.l_pid = 0;
+ fl.l_type = F_RDLCK;
+ fl.l_whence = SEEK_SET;
+ res = fcntl(slave, F_SETLKW, &fl);
+ FAIL(res != 0);
+
+ close(slave);
+
+ SUCCEED;
+}
+
static struct test tests[] = {
{ test1, 0 },
{ test2, 0 },
{ test22, 0 },
{ test23, 0 },
{ test24, 0 },
+ { test25, 0 },
};
static int test_count = sizeof(tests) / sizeof(tests[0]);
projects / openbsd / commitdiff