[PATCH] ubifs: Fail commit if TNC is obviously inconsistent

From: Richard Weinberger
Date: Wed Jun 07 2017 - 17:33:46 EST

Next message: Kani, Toshimitsu: "Re: [PATCH] Add support of NVDIMM memory error notification in ACPI 6.2"
Previous message: Rob Herring: "Re: [PATCH v3 1/3] dt-bindings: mediatek: add bindings for MediaTek MT7622 SoC"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

A reference to LEB 0 or with length 0 in the TNC
is never correct and could be caused by a memory corruption.
Don't write such a bad index node to the MTD.
Instead fail the commit which will turn UBIFS into read-only mode.

This is less painful than having the bad reference on the MTD
from where UBFIS has no chance to recover.

Signed-off-by: Richard Weinberger <richard@xxxxxx>
---
fs/ubifs/tnc_commit.c | 4 ++++
1 file changed, 4 insertions(+)

diff --git a/fs/ubifs/tnc_commit.c b/fs/ubifs/tnc_commit.c
index 51157da3f76e..aa31f60220ef 100644
--- a/fs/ubifs/tnc_commit.c
+++ b/fs/ubifs/tnc_commit.c
@@ -57,6 +57,8 @@ static int make_idx_node(struct ubifs_info *c, struct ubifs_idx_node *idx,
ubifs_dump_znode(c, znode);
if (zbr->znode)
ubifs_dump_znode(c, zbr->znode);
+
+ return -EINVAL;
}
}
ubifs_prepare_node(c, idx, len, 0);
@@ -859,6 +861,8 @@ static int write_index(struct ubifs_info *c)
ubifs_dump_znode(c, znode);
if (zbr->znode)
ubifs_dump_znode(c, zbr->znode);
+
+ return -EINVAL;
}
}
len = ubifs_idx_node_sz(c, znode->child_cnt);
--
2.12.3

Next message: Kani, Toshimitsu: "Re: [PATCH] Add support of NVDIMM memory error notification in ACPI 6.2"
Previous message: Rob Herring: "Re: [PATCH v3 1/3] dt-bindings: mediatek: add bindings for MediaTek MT7622 SoC"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]