unix: Fix handling of listening sockets during garbage collection
ClosedPublic
Actions

Authored by markj on Nov 13 2025, 7:42 PM.

Details

Reviewers

Commits

rGf7c3aa281504: unix: Fix handling of listening sockets during garbage collection
rG9d9fa9a2c22f: unix: Fix handling of listening sockets during garbage collection

Summary

socantrcvmore() and unp_dispose() assume that the socket's socket
buffers are initialized, which isn't the case for listening sockets.

Reported by: syzbot+a62883292a5c257703be@syzkaller.appspotmail.com

Diff Detail

Repository

rG FreeBSD src repository

Lint

Lint Skipped

Unit

Tests Skipped

Build Status

Buildable 68617
Build 65500: arc lint + arc unit

Event Timeline

markj created this revision.Nov 13 2025, 7:42 PM

Herald added subscribers: olce, imp. · View Herald TranscriptNov 13 2025, 7:42 PM

markj requested review of this revision.Nov 13 2025, 7:42 PM

Harbormaster completed remote builds in B68617: Diff 166385.Nov 13 2025, 7:42 PM

glebius accepted this revision.Nov 13 2025, 10:39 PM

This revision is now accepted and ready to land.Nov 13 2025, 10:39 PM

Closed by commit rG9d9fa9a2c22f: unix: Fix handling of listening sockets during garbage collection (authored by markj). · Explain WhyNov 14 2025, 12:46 AM

This revision was automatically updated to reflect the committed changes.

markj added a commit: rG9d9fa9a2c22f: unix: Fix handling of listening sockets during garbage collection.

markj added a commit: rGf7c3aa281504: unix: Fix handling of listening sockets during garbage collection.Nov 21 2025, 2:25 PM

Revision Contents
Changeset List

Path

Size

sys/

kern/

uipc_usrreq.c

10 lines

tests/

sys/

kern/

unix_passfd_test.c

29 lines

Diff 166385

View Options

sys/kern/uipc_usrreq.c