Re: [syzbot] [nilfs?] KASAN: use-after-free Read in nilfs_find_entry

From: Ryusuke Konishi
Date: Tue Nov 12 2024 - 09:12:31 EST

Next message: Simon Horman: "Re: [EXTERNAL] Re: [PATCH net-next] octeon_ep: add ndo ops for VFs in PF driver"
Previous message: Bryan O'Donoghue: "Re: [PATCH 2/4] media: venus: hfi_parser: avoid OOB access beyond payload word count"
In reply to: Ryusuke Konishi: "Re: [PATCH] nilfs2: fix a uaf in nilfs_find_entry"
Next in thread: syzbot: "Re: [syzbot] [nilfs?] KASAN: use-after-free Read in nilfs_find_entry"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Test fix for local variable type in nilfs_last_byte()

#syz test

diff --git a/fs/nilfs2/dir.c b/fs/nilfs2/dir.c
index a8602729586a..6bc8f474a3e5 100644
--- a/fs/nilfs2/dir.c
+++ b/fs/nilfs2/dir.c
@@ -70,7 +70,7 @@ static inline unsigned int nilfs_chunk_size(struct inode *inode)
*/
static unsigned int nilfs_last_byte(struct inode *inode, unsigned long page_nr)
{
- unsigned int last_byte = inode->i_size;
+ loff_t last_byte = inode->i_size;

last_byte -= page_nr << PAGE_SHIFT;
if (last_byte > PAGE_SIZE)

Next message: Simon Horman: "Re: [EXTERNAL] Re: [PATCH net-next] octeon_ep: add ndo ops for VFs in PF driver"
Previous message: Bryan O'Donoghue: "Re: [PATCH 2/4] media: venus: hfi_parser: avoid OOB access beyond payload word count"
In reply to: Ryusuke Konishi: "Re: [PATCH] nilfs2: fix a uaf in nilfs_find_entry"
Next in thread: syzbot: "Re: [syzbot] [nilfs?] KASAN: use-after-free Read in nilfs_find_entry"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]