| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <tencent_8F67C9C6DBD2F6867309802EEE2ED84C8406@qq.com>
Date: Sun, 22 Sep 2024 12:56:56 +0800
From: Edward Adam Davis <eadavis@...com>
To: syzbot+ddf8715339c89280b6fc@...kaller.appspotmail.com
Cc: jack@...e.com,
linux-kernel@...r.kernel.org,
syzkaller-bugs@...glegroups.com
Subject: Re: [syzbot] [udf?] general protection fault in udf_read_folio
In erofs_bread(),
folio = read_mapping_folio(buf->mapping, index, NULL);
file is NULL, it triger this issue.
#syz test
diff --git a/fs/udf/inode.c b/fs/udf/inode.c
index 4726a4d014b6..fb8121edee8f 100644
--- a/fs/udf/inode.c
+++ b/fs/udf/inode.c
@@ -220,7 +220,7 @@ static void udf_adinicb_read_folio(struct folio *folio)
static int udf_read_folio(struct file *file, struct folio *folio)
{
- struct udf_inode_info *iinfo = UDF_I(file_inode(file));
+ struct udf_inode_info *iinfo = UDF_I(folio->mapping->host);
if (iinfo->i_alloc_type == ICBTAG_FLAG_AD_IN_ICB) {
udf_adinicb_read_folio(folio);
Powered by blists - more mailing lists