| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <20200628060846.682158-1-ebiggers@kernel.org>
Date: Sat, 27 Jun 2020 23:08:39 -0700
From: Eric Biggers <ebiggers@...nel.org>
To: linux-fsdevel@...r.kernel.org,
Alexander Viro <viro@...iv.linux.org.uk>,
Andrew Morton <akpm@...ux-foundation.org>
Cc: linux-kernel@...r.kernel.org, Qiujun Huang <hqjagain@...il.com>
Subject: [PATCH 0/6] fs/minix: fix syzbot bugs and set s_maxbytes
This series fixes all syzbot bugs in the minix filesystem:
KASAN: null-ptr-deref Write in get_block
KASAN: use-after-free Write in get_block
KASAN: use-after-free Read in get_block
WARNING in inc_nlink
KMSAN: uninit-value in get_block
WARNING in drop_nlink
It also fixes the minix filesystem to set s_maxbytes correctly, so that
userspace sees the correct behavior when exceeding the max file size.
Al or Andrew: one of you will need to take these patches, since no one
is maintaining this filesystem.
Eric Biggers (6):
fs/minix: check return value of sb_getblk()
fs/minix: don't allow getting deleted inodes
fs/minix: reject too-large maximum file size
fs/minix: set s_maxbytes correctly
fs/minix: fix block limit check for V1 filesystems
fs/minix: remove expected error message in block_to_path()
fs/minix/inode.c | 42 +++++++++++++++++++++++++++++++++++++----
fs/minix/itree_common.c | 8 +++++++-
fs/minix/itree_v1.c | 12 ++++++------
fs/minix/itree_v2.c | 13 ++++++-------
fs/minix/minix.h | 1 -
5 files changed, 57 insertions(+), 19 deletions(-)
--
2.27.0
Powered by blists - more mailing lists