kernel / kernel-source

Clone
Source Code
GIT

Blame patches.suse/ext4-fix-special-inode-number-checks-in-__ext4_iget.patch

ALP-current ALP-current-GA ALP-current-RT ALP-current-RT-GA SLE12-SP5 SLE12-SP5-AZURE SLE12-SP5-RT SLE15-SP2-EB SLE15-SP3-RT-LTSS SLE15-SP4-RT-LTSS SLE15-SP5 SLE15-SP5-AZURE SLE15-SP5-RT SLE15-SP6 SLE15-SP6-AZURE SLE15-SP6-AZURE-GA SLE15-SP6-GA SLE15-SP6-RT SLE15-SP6-RT-GA linux-next master packaging scripts slowroll stable vanilla
  1.   42410b3106954b309b30192171d183270a6400e6
  2.   patches.suse
  3.   ext4-fix-special-inode-number-checks-in-__ext4_iget.patch
Blob History Raw
Jan Kara 99e7bb 
From 191ce17876c9367819c4b0a25b503c0f6d9054d8 Mon Sep 17 00:00:00 2001
Jan Kara 99e7bb 
From: Theodore Ts'o <tytso@mit.edu>
Jan Kara 99e7bb 
Date: Mon, 31 Dec 2018 22:34:31 -0500
Jan Kara 99e7bb 
Subject: [PATCH] ext4: fix special inode number checks in __ext4_iget()
Jan Kara 99e7bb 
Git-commit: 191ce17876c9367819c4b0a25b503c0f6d9054d8
Jan Kara 99e7bb 
Patch-mainline: v5.0-rc1
Jan Kara 99e7bb 
References: bsc#1158021 CVE-2019-19319
Jan Kara 99e7bb
Jan Kara 99e7bb 
The check for special (reserved) inode number checks in __ext4_iget()
Jan Kara 99e7bb 
was broken by commit 8a363970d1dc: ("ext4: avoid declaring fs
Jan Kara 99e7bb 
inconsistent due to invalid file handles").  This was caused by a
Jan Kara 99e7bb 
botched reversal of the sense of the flag now known as
Jan Kara 99e7bb 
EXT4_IGET_SPECIAL (when it was previously named EXT4_IGET_NORMAL).
Jan Kara 99e7bb 
Fix the logic appropriately.
Jan Kara 99e7bb
Jan Kara 99e7bb 
Fixes: 8a363970d1dc ("ext4: avoid declaring fs inconsistent...")
Jan Kara 99e7bb 
Signed-off-by: Theodore Ts'o <tytso@mit.edu>
Jan Kara 99e7bb 
Reported-by: Dan Carpenter <dan.carpenter@oracle.com>
Jan Kara 99e7bb 
Cc: stable@kernel.org
Jan Kara 99e7bb 
Acked-by: Jan Kara <jack@suse.cz>
Jan Kara 99e7bb
Jan Kara 99e7bb 
---
Jan Kara 99e7bb 
 fs/ext4/inode.c | 2 +-
Jan Kara 99e7bb 
 1 file changed, 1 insertion(+), 1 deletion(-)
Jan Kara 99e7bb
Jan Kara 99e7bb 
diff --git a/fs/ext4/inode.c b/fs/ext4/inode.c
Jan Kara 99e7bb 
index 165ff331d998..34d7e0703cc6 100644
Jan Kara 99e7bb 
--- a/fs/ext4/inode.c
Jan Kara 99e7bb 
+++ b/fs/ext4/inode.c
Jan Kara 99e7bb 
@@ -4834,7 +4834,7 @@ struct inode *__ext4_iget(struct super_block *sb, unsigned long ino,
Jan Kara 99e7bb 
 	gid_t i_gid;
Jan Kara 99e7bb 
 	projid_t i_projid;
Jan Kara 99e7bb
Jan Kara 99e7bb 
-	if (((flags & EXT4_IGET_NORMAL) &&
Jan Kara 99e7bb 
+	if ((!(flags & EXT4_IGET_SPECIAL) &&
Jan Kara 99e7bb 
 	     (ino < EXT4_FIRST_INO(sb) && ino != EXT4_ROOT_INO)) ||
Jan Kara 99e7bb 
 	    (ino < EXT4_ROOT_INO) ||
Jan Kara 99e7bb 
 	    (ino > le32_to_cpu(EXT4_SB(sb)->s_es->s_inodes_count))) {
Jan Kara 99e7bb 
--
Jan Kara 99e7bb 
2.16.4
Jan Kara 99e7bb
Powered by Pagure 5.13.3
DocumentationAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.