Re: [PATCH] fs/ntfs3: reject evcn == U64_MAX in mi_enum_attr()

Next message: Peter Zijlstra: "Re: [PATCH 7.2 v10 2/2] x86/tlb: skip redundant sync IPIs for native TLB flush"
Previous message: Zi Yan: "Re: [PATCH 7.2 v4 09/12] mm/truncate: use folio_split() in truncate_inode_partial_folio()"
In reply to: Zhan Xusheng: "Re: [PATCH] fs/ntfs3: reject evcn == U64_MAX in mi_enum_attr()"
Next in thread: Zhan Xusheng: "Re: [PATCH] fs/ntfs3: reject evcn == U64_MAX in mi_enum_attr()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: David Laight

Date: Fri Apr 24 2026 - 11:17:09 EST

On Fri, 24 Apr 2026 21:20:31 +0800
Zhan Xusheng <zhanxusheng1024@xxxxxxxxx> wrote:

> Hi David,
>
> That would reject the svcn == evcn case, which represents a
> single-cluster extent (e.g. svcn=0, evcn=0) and is currently
> treated as valid.

Slight brain fade..

>
> The original check allows svcn == evcn + 1 (empty range), so the
> condition is strictly "greater than", not "greater than or equal".
>
> The issue here is the overflow of (evcn + 1) when evcn == U64_MAX,
> which turns the check into "svcn > 0" and incorrectly allows
> svcn == 0.

Is that analysis correct? with the current code:
If evcn is 2 then everything except 0, 1, 2 and 3 are errors.
If evcn is -3 then only -1 is an error.
If evcn is -2 no values are errors.
If evcn is -1 then all svcn values except 0 are errors.

Clearly this doesn't make sense if evcn is -1.

But there isn't an obvious reason why svcn == -4, evcn == -1
shouldn't be a valid range.
(There might be a sanity upper limit is evcn for other reasons.)

David

>
> My patch preserves the existing semantics and only adds the
> missing U64_MAX guard.
>
> Thanks,
> Zhan Xusheng
>