lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Wed, 29 Jun 2022 12:21:03 +0200 From: Jan Kara <jack@...e.cz> To: Zhang Yi <yi.zhang@...wei.com> Cc: linux-ext4@...r.kernel.org, tytso@....edu, adilger.kernel@...ger.ca, jack@...e.cz, yukuai3@...wei.com Subject: Re: [PATCH v2 2/2] ext4: check and assert if marking an no_delete evicting inode dirty On Wed 29-06-22 10:29:40, Zhang Yi wrote: > In ext4_evict_inode(), if we evicting an inode in the 'no_delete' path, > it cannot be raced by another mark_inode_dirty(). If it happens, > someone else may accidentally dirty it without holding inode refcount > and probably cause use-after-free issues in the writeback procedure. > It's indiscoverable and hard to debug, so add an ASSERT to check and > detect this issue in advance. > > Suggested-by: Jan Kara <jack@...e.cz> > Signed-off-by: Zhang Yi <yi.zhang@...wei.com> > --- > fs/ext4/inode.c | 6 ++++++ > 1 file changed, 6 insertions(+) > > diff --git a/fs/ext4/inode.c b/fs/ext4/inode.c > index 702cc208689a..2ba74412aa89 100644 > --- a/fs/ext4/inode.c > +++ b/fs/ext4/inode.c > @@ -333,6 +333,12 @@ void ext4_evict_inode(struct inode *inode) > ext4_xattr_inode_array_free(ea_inode_array); > return; > no_delete: > + /* > + * Check out some where else accidentally dirty the evicting inode, > + * which may probably cause inode use-after-free issues later. > + */ > + ASSERT(list_empty_careful(&inode->i_io_list)); ASSERT() is harsh as it will take the kernel down. Just use WARN_ON_ONCE() to notify us of the coming problems :). Honza -- Jan Kara <jack@...e.com> SUSE Labs, CR
Powered by blists - more mailing lists