| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 5 Feb 2009 08:49:05 -0500 From: Theodore Tso <tytso@....edu> To: Thiemo Nagel <thiemo.nagel@...tum.de> Cc: Ext4 Developers List <linux-ext4@...r.kernel.org> Subject: Re: [RFC] ext4_bmap() may return blocks outside filesystem On Thu, Feb 05, 2009 at 01:03:23PM +0100, Thiemo Nagel wrote: > But there also are cases which are not handled gracefully by bmap() callers. > > I've attached a conceptual patch against 2.6.29-rc2 which fixes one case > in which invalid block numbers are returned (there might be more) by > adding sanity checks to ext4_ext_find_extent(), but before I start > looking for further occurences, I'd like to ask whether you think my > approach is reasonable. Yes, it's reasonable; the right thing is not just to jump out to errout, though, but to call ext4_error() first, since the filesystem is clearly corrupted, so we want to mark the filesystem as needing to be fsck'ed, and so if the filesystem is marked "remount readonly" or "panic" on filesystem errors, that the right thing happens. We should also log the device name, inode number and logical block number that was requested, so that someone who is looking in the console logs can see what was going on at the time. As an unrelated patch, might also want to put a check in fs/ext4/inode.c's ext4_get_branch(), so we can equivalently detect bogus direct/indirect blocks and flag them with the appropriate errors. - Ted -- To unsubscribe from this list: send the line "unsubscribe linux-ext4" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists