[PATCH 4/4] ext3: Avoid printk floods in the face of directory corruption

From: Theodore Ts'o
Date: Sat Sep 13 2008 - 11:33:45 EST

Next message: Theodore Ts'o: "[PATCH 2/4] ext3: truncate block allocated on a failed ext3_write_begin"
Previous message: Theodore Ts'o: "[PATCH 3/4] ext2: Avoid printk floods in the face of directory corruption"
In reply to: Theodore Ts'o: "[PATCH 3/4] ext2: Avoid printk floods in the face of directory corruption"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Note: some people thinks this represents a security bug, since it
might make the system go away while it is printing a large number of
console messages, especially if a serial console is involved. Hence,
it has been assigned CVE-2008-3528, but it requires that the attacker
either has physical access to your machine to insert a USB disk with a
corrupted filesystem image (at which point why not just hit the power
button), or is otherwise able to convince the system administrator to
mount an arbitrary filesystem image (at which point why not just
include a setuid shell or world-writable hard disk device file or some
such). Me, I think they're just being silly.

Signed-off-by: Eric Sandeen <sandeen@xxxxxxxxxx>
Signed-off-by: "Theodore Ts'o" <tytso@xxxxxxx>
Cc: linux-ext4@xxxxxxxxxxxxxxx
Cc: Eugene Teo <eugeneteo@xxxxxxxxx>
---
fs/ext3/dir.c | 10 +++++++---
1 files changed, 7 insertions(+), 3 deletions(-)

diff --git a/fs/ext3/dir.c b/fs/ext3/dir.c
index 42c5391..283938a 100644
--- a/fs/ext3/dir.c
+++ b/fs/ext3/dir.c
@@ -102,6 +102,7 @@ static int ext3_readdir(struct file * filp,
int err;
struct inode *inode = filp->f_path.dentry->d_inode;
int ret = 0;
+ int dir_has_error = 0;

sb = inode->i_sb;

@@ -148,9 +149,12 @@ static int ext3_readdir(struct file * filp,
* of recovering data when there's a bad sector
*/
if (!bh) {
- ext3_error (sb, "ext3_readdir",
- "directory #%lu contains a hole at offset %lu",
- inode->i_ino, (unsigned long)filp->f_pos);
+ if (!dir_has_error) {
+ ext3_error(sb, __func__, "directory #%lu "
+ "contains a hole at offset %lld",
+ inode->i_ino, filp->f_pos);
+ dir_has_error = 1;
+ }
/* corrupt size? Maybe no more blocks to read */
if (filp->f_pos > inode->i_blocks << 9)
break;
--
1.5.6.1.205.ge2c7.dirty

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Theodore Ts'o: "[PATCH 2/4] ext3: truncate block allocated on a failed ext3_write_begin"
Previous message: Theodore Ts'o: "[PATCH 3/4] ext2: Avoid printk floods in the face of directory corruption"
In reply to: Theodore Ts'o: "[PATCH 3/4] ext2: Avoid printk floods in the face of directory corruption"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]