Re: [PATCH] ocfs2: Add i_size check for dir

From: Edward Adam Davis
Date: Wed Aug 21 2024 - 06:52:51 EST

Next message: lihuisong (C): "Re: [PATCH v3 06/14] thermal: core: Introduce .should_bind() thermal zone callback"
Previous message: Dragan Simic: "Re: [PATCH v2 3/3] phy: phy-rockchip-inno-usb2: Improve error handling while probing"
In reply to: heming.zhao@xxxxxxxx: "Re: [PATCH] ocfs2: Add i_size check for dir"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, 20 Aug 2024 15:59:56 +0100, Matthew Wilcox wrote:
> > When the i_size of dir is too large, it will cause limit to overflow and
> > be less than de_buf, ultimately resulting in last_de not being initialized
> > and causing uaf issue.
> >
> > + if (i_size_read(dir) > OCFS2_MAX_BLOCKSIZE)
> > + return -EINVAL;
>
> Surely directories can be more than one block in size?
In this issue, Yes.

--
Edward

Next message: lihuisong (C): "Re: [PATCH v3 06/14] thermal: core: Introduce .should_bind() thermal zone callback"
Previous message: Dragan Simic: "Re: [PATCH v2 3/3] phy: phy-rockchip-inno-usb2: Improve error handling while probing"
In reply to: heming.zhao@xxxxxxxx: "Re: [PATCH] ocfs2: Add i_size check for dir"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]