Inicio Explorar Axuda
Iniciar sesión
GfA
/
linux_kernel
5
0
Fork 0
Ficheiros Incidencias 0 Pull Requests 0 Wiki
Explorar o código

Merge tag 'xfs-4.20-fixes-1' of git://git.kernel.org/pub/scm/fs/xfs/xfs-linux

Pull xfs fixes from Darrick Wong:

 - fix incorrect dropping of error code from bmap

 - print buffer offsets instead of useless hashed pointers when dumping
   corrupt metadata

 - fix integer overflow in attribute verifier

* tag 'xfs-4.20-fixes-1' of git://git.kernel.org/pub/scm/fs/xfs/xfs-linux:
  xfs: fix overflow in xfs_attr3_leaf_verify
  xfs: print buffer offsets when dumping corrupt buffers
  xfs: Fix error code in 'xfs_ioc_getbmap()'
Linus Torvalds %!s(int64=6) %!d(string=hai) anos
pai
6a1ac56c23 837514f7a4
achega
24ccea7e10
Modificáronse 3 ficheiros con 11 adicións e 4 borrados
Unificar vista Mostrar estatísticas de Diff
  1. 9 2
      fs/xfs/libxfs/xfs_attr_leaf.c
  2. 1 1
      fs/xfs/xfs_ioctl.c
  3. 1 1
      fs/xfs/xfs_message.c

+ 9 - 2
fs/xfs/libxfs/xfs_attr_leaf.c
Ver ficheiro 

@@ -243,7 +243,7 @@ xfs_attr3_leaf_verify(
 
 	struct xfs_mount		*mp = bp->b_target->bt_mount;
 
 	struct xfs_mount		*mp = bp->b_target->bt_mount;
 
 	struct xfs_attr_leafblock	*leaf = bp->b_addr;
 
 	struct xfs_attr_leafblock	*leaf = bp->b_addr;
 
 	struct xfs_attr_leaf_entry	*entries;
 
 	struct xfs_attr_leaf_entry	*entries;
 
-	uint16_t			end;
 
+	uint32_t			end;	/* must be 32bit - see below */
 
 	int				i;
 
 	int				i;
 
 
 
 	xfs_attr3_leaf_hdr_from_disk(mp->m_attr_geo, &ichdr, leaf);
 
 	xfs_attr3_leaf_hdr_from_disk(mp->m_attr_geo, &ichdr, leaf);
 
@@ -293,6 +293,11 @@ xfs_attr3_leaf_verify(
 
 	/*
 
 	/*
 
 	 * Quickly check the freemap information.  Attribute data has to be
 
 	 * Quickly check the freemap information.  Attribute data has to be
 
 	 * aligned to 4-byte boundaries, and likewise for the free space.
 
 	 * aligned to 4-byte boundaries, and likewise for the free space.
 
+	 *
 
+	 * Note that for 64k block size filesystems, the freemap entries cannot
 
+	 * overflow as they are only be16 fields. However, when checking end
 
+	 * pointer of the freemap, we have to be careful to detect overflows and
 
+	 * so use uint32_t for those checks.
 
 	 */
 
 	 */
 
 	for (i = 0; i < XFS_ATTR_LEAF_MAPSIZE; i++) {
 
 	for (i = 0; i < XFS_ATTR_LEAF_MAPSIZE; i++) {
 
 		if (ichdr.freemap[i].base > mp->m_attr_geo->blksize)
 
 		if (ichdr.freemap[i].base > mp->m_attr_geo->blksize)
 
@@ -303,7 +308,9 @@ xfs_attr3_leaf_verify(
 
 			return __this_address;
 
 			return __this_address;
 
 		if (ichdr.freemap[i].size & 0x3)
 
 		if (ichdr.freemap[i].size & 0x3)
 
 			return __this_address;
 
 			return __this_address;
 
-		end = ichdr.freemap[i].base + ichdr.freemap[i].size;
 
+
 
+		/* be care of 16 bit overflows here */
 
+		end = (uint32_t)ichdr.freemap[i].base + ichdr.freemap[i].size;
 
 		if (end < ichdr.freemap[i].base)
 
 		if (end < ichdr.freemap[i].base)
 
 			return __this_address;
 
 			return __this_address;
 
 		if (end > mp->m_attr_geo->blksize)
 
 		if (end > mp->m_attr_geo->blksize)

+ 1 - 1
fs/xfs/xfs_ioctl.c
Ver ficheiro 

@@ -1608,7 +1608,7 @@ xfs_ioc_getbmap(
 
 	error = 0;
 
 	error = 0;
 
 out_free_buf:
 
 out_free_buf:
 
 	kmem_free(buf);
 
 	kmem_free(buf);
 
-	return 0;
 
+	return error;
 
 }
 
 }
 
 
 
 struct getfsmap_info {
 
 struct getfsmap_info {

+ 1 - 1
fs/xfs/xfs_message.c
Ver ficheiro 

@@ -107,5 +107,5 @@ assfail(char *expr, char *file, int line)
 
 void
 
 void
 
 xfs_hex_dump(void *p, int length)
 
 xfs_hex_dump(void *p, int length)
 
 {
 
 {
 
-	print_hex_dump(KERN_ALERT, "", DUMP_PREFIX_ADDRESS, 16, 1, p, length, 1);
 
+	print_hex_dump(KERN_ALERT, "", DUMP_PREFIX_OFFSET, 16, 1, p, length, 1);
 
 }
 
 }