| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 27 May 2011 13:24:06 -0500 From: Seth Forshee <seth.forshee@...onical.com> To: Christoph Hellwig <hch@...radead.org>, Anton Salikhmetov <alexo@...era.com>, linux-kernel@...r.kernel.org Subject: Re: hfsplus mount regression in 2.6.38 On Fri, May 27, 2011 at 08:23:56AM -0500, Seth Forshee wrote: > On Fri, May 27, 2011 at 05:25:22AM -0400, Christoph Hellwig wrote: > > On Wed, May 25, 2011 at 09:25:21AM -0500, Seth Forshee wrote: > > > Reverting commits 52399b1 (hfsplus: use raw bio access for the volume > > > headers) and 358f26d5 (hfsplus: use raw bio access for partition tables) > > > fixes the problems. It appears the problems are due to hfsplus > > > submitting 512 byte bios to a block device whose sector size is larger > > > than 512 byts (2 KB in the log above), and the block driver is quite > > > reasonably rejecting any requests without proper sector alignment. > > > > > > How would you suggest fixing this? Most file systems are using > > > sb_bread() for this sort of thing, but since the offending patches are > > > intended to stop using buffer_heads I'm assuming that's not an option. > > > > Basically all hardcoded uses of HFSPLUS_SECTOR_SIZE need to be replaced > > with a use of bdev_logical_block_size, or a per-sb variable derived from > > it, and the addressing needs to be accomodated to fit it. I'd need to > > look into a bit more detail in what form the sectors we pass into it > > are in - we might have to convert them from 512byte to large units, > > or they might already be in it. If they happen to be in 512 byte units > > we might have to do read-modify write cycles. > > It seems reasonable to use sb->s_blocksize for this, as it shouldn't get > set to anything larger than the logical block size. That's what > sb_bread() uses in fact. I started looking into this, and it seems like one aspect of it is a little nasty. My knowledge here is rudimentary at best though, so maybe you can comment on whether or not this situation is possible. It looks like some of the metadata accessed via bio can reside in blocks adjacent to blocks containing file data, in which case it would be possible for some of this metadata to be present in the page cache. This could potentially lead to races where metadata changes are committed and later overwritten by stale data in the page cache. Is this a valid concern? I'm also not fully understanding why using buffer_heads caused the issue these patches were intended to fix. It looks to me like the bios submitted by sb_bread() to read the alternate volume header should be the maximum of 512 bytes and the logical block size set by the block driver. So unless the block driver is setting this size incorrectly I don't see how the I/O size gets forced to 4 KB. Am I missing something? Thanks, Seth -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists