* [PATCH v3] xfs: check for possible overflow in xfs_ioc_trim
@ 2012-08-09 9:07 Tomas Racek
2012-08-09 23:47 ` Dave Chinner
0 siblings, 1 reply; 3+ messages in thread
From: Tomas Racek @ 2012-08-09 9:07 UTC (permalink / raw)
To: linux-xfs
Cc: Alex Elder, open list, Tomas Racek, supporter:XFS FILESYSTEM,
Ben Myers, lczerner
If range.start or range.minlen is bigger than filesystem size, return
invalid value error. This fixes possible overflow in BTOBB macro when
passed value was nearly ULLONG_MAX.
Signed-off-by: Tomas Racek <tracek@redhat.com>
---
fs/xfs/xfs_discard.c | 6 ++++--
1 files changed, 4 insertions(+), 2 deletions(-)
diff --git a/fs/xfs/xfs_discard.c b/fs/xfs/xfs_discard.c
index f9c3fe3..4e07a56 100644
--- a/fs/xfs/xfs_discard.c
+++ b/fs/xfs/xfs_discard.c
@@ -179,12 +179,14 @@ xfs_ioc_trim(
* used by the fstrim application. In the end it really doesn't
* matter as trimming blocks is an advisory interface.
*/
+ if (range.start >= XFS_FSB_TO_B(mp, mp->m_sb.sb_dblocks) ||
+ range.minlen > XFS_FSB_TO_B(mp, mp->m_sb.sb_dblocks))
+ return -XFS_ERROR(EINVAL);
+
start = BTOBB(range.start);
end = start + BTOBBT(range.len) - 1;
minlen = BTOBB(max_t(u64, granularity, range.minlen));
- if (XFS_BB_TO_FSB(mp, start) >= mp->m_sb.sb_dblocks)
- return -XFS_ERROR(EINVAL);
if (end > XFS_FSB_TO_BB(mp, mp->m_sb.sb_dblocks) - 1)
end = XFS_FSB_TO_BB(mp, mp->m_sb.sb_dblocks)- 1;
--
1.7.7.6
_______________________________________________
xfs mailing list
xfs@oss.sgi.com
http://oss.sgi.com/mailman/listinfo/xfs
^ permalink raw reply related [flat|nested] 3+ messages in thread
* Re: [PATCH v3] xfs: check for possible overflow in xfs_ioc_trim
2012-08-09 9:07 [PATCH v3] xfs: check for possible overflow in xfs_ioc_trim Tomas Racek
@ 2012-08-09 23:47 ` Dave Chinner
2012-08-13 8:16 ` Tomas Racek
0 siblings, 1 reply; 3+ messages in thread
From: Dave Chinner @ 2012-08-09 23:47 UTC (permalink / raw)
To: Tomas Racek; +Cc: lczerner, Ben Myers, Alex Elder, supporter:XFS FILESYSTEM
[ Trimmed lkml from cc list. There's no need to cc lkml on XFS
specific stuff. ]
[ Trimmed linux-xfs@vger.kernel.org as that is not a list any XFS
developer is subscribed to. ]
On Thu, Aug 09, 2012 at 11:07:09AM +0200, Tomas Racek wrote:
> If range.start or range.minlen is bigger than filesystem size, return
> invalid value error. This fixes possible overflow in BTOBB macro when
> passed value was nearly ULLONG_MAX.
>
> Signed-off-by: Tomas Racek <tracek@redhat.com>
> ---
> fs/xfs/xfs_discard.c | 6 ++++--
> 1 files changed, 4 insertions(+), 2 deletions(-)
>
> diff --git a/fs/xfs/xfs_discard.c b/fs/xfs/xfs_discard.c
> index f9c3fe3..4e07a56 100644
> --- a/fs/xfs/xfs_discard.c
> +++ b/fs/xfs/xfs_discard.c
> @@ -179,12 +179,14 @@ xfs_ioc_trim(
> * used by the fstrim application. In the end it really doesn't
> * matter as trimming blocks is an advisory interface.
> */
> + if (range.start >= XFS_FSB_TO_B(mp, mp->m_sb.sb_dblocks) ||
> + range.minlen > XFS_FSB_TO_B(mp, mp->m_sb.sb_dblocks))
> + return -XFS_ERROR(EINVAL);
That's not correct for minlen. The maximum minlen we can
support is the length of the largest freespace extent in the
filesystem, and that is limited to the size of an AG. i.e.
XFS_FSB_TO_B(mp, XFS_ALLOC_AG_MAX_USABLE(mp))
Cheers,
Dave.
--
Dave Chinner
david@fromorbit.com
_______________________________________________
xfs mailing list
xfs@oss.sgi.com
http://oss.sgi.com/mailman/listinfo/xfs
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: [PATCH v3] xfs: check for possible overflow in xfs_ioc_trim
2012-08-09 23:47 ` Dave Chinner
@ 2012-08-13 8:16 ` Tomas Racek
0 siblings, 0 replies; 3+ messages in thread
From: Tomas Racek @ 2012-08-13 8:16 UTC (permalink / raw)
To: Dave Chinner; +Cc: lczerner, Ben Myers, Alex Elder, supporter:XFS FILESYSTEM
> [ Trimmed lkml from cc list. There's no need to cc lkml on XFS
> specific stuff. ]
>
> [ Trimmed linux-xfs@vger.kernel.org as that is not a list any XFS
> developer is subscribed to. ]
Oh, it's good to know (I used get_maintainer script before).
>
> On Thu, Aug 09, 2012 at 11:07:09AM +0200, Tomas Racek wrote:
> > If range.start or range.minlen is bigger than filesystem size,
> > return
> > invalid value error. This fixes possible overflow in BTOBB macro
> > when
> > passed value was nearly ULLONG_MAX.
> >
> > Signed-off-by: Tomas Racek <tracek@redhat.com>
> > ---
> > fs/xfs/xfs_discard.c | 6 ++++--
> > 1 files changed, 4 insertions(+), 2 deletions(-)
> >
> > diff --git a/fs/xfs/xfs_discard.c b/fs/xfs/xfs_discard.c
> > index f9c3fe3..4e07a56 100644
> > --- a/fs/xfs/xfs_discard.c
> > +++ b/fs/xfs/xfs_discard.c
> > @@ -179,12 +179,14 @@ xfs_ioc_trim(
> > * used by the fstrim application. In the end it really doesn't
> > * matter as trimming blocks is an advisory interface.
> > */
> > + if (range.start >= XFS_FSB_TO_B(mp, mp->m_sb.sb_dblocks) ||
> > + range.minlen > XFS_FSB_TO_B(mp, mp->m_sb.sb_dblocks))
> > + return -XFS_ERROR(EINVAL);
>
> That's not correct for minlen. The maximum minlen we can
> support is the length of the largest freespace extent in the
> filesystem, and that is limited to the size of an AG. i.e.
> XFS_FSB_TO_B(mp, XFS_ALLOC_AG_MAX_USABLE(mp))
Will do, thank you!
Tomas
>
> Cheers,
>
> Dave.
> --
> Dave Chinner
> david@fromorbit.com
>
_______________________________________________
xfs mailing list
xfs@oss.sgi.com
http://oss.sgi.com/mailman/listinfo/xfs
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2012-08-13 8:16 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2012-08-09 9:07 [PATCH v3] xfs: check for possible overflow in xfs_ioc_trim Tomas Racek
2012-08-09 23:47 ` Dave Chinner
2012-08-13 8:16 ` Tomas Racek
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox