[PATCH] ext4: fix potential integer overflow

From: Insu Yun
Date: Wed Jan 20 2016 - 11:16:10 EST

Next message: H. Peter Anvin: "Re: [PATCH] x86: static_cpu_has_safe: discard dynamic check after init"
Previous message: H. Nikolaus Schaller: "Re: [Gta04-owner] [PATCH 0/4] UART slave device support - version 4"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Since sizeof(ext_new_group_data) > sizeof(ext_new_flex_group_data),
integer overflow could be happened.
Therefore, need to fix integer overflow sanitization.

Signed-off-by: Insu Yun <wuninsu@xxxxxxxxx>
---
fs/ext4/resize.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/fs/ext4/resize.c b/fs/ext4/resize.c
index ad62d7a..34038e3 100644
--- a/fs/ext4/resize.c
+++ b/fs/ext4/resize.c
@@ -198,7 +198,7 @@ static struct ext4_new_flex_group_data *alloc_flex_gd(unsigned long flexbg_size)
if (flex_gd == NULL)
goto out3;

- if (flexbg_size >= UINT_MAX / sizeof(struct ext4_new_flex_group_data))
+ if (flexbg_size >= UINT_MAX / sizeof(struct ext4_new_group_data))
goto out2;
flex_gd->count = flexbg_size;

--
1.9.1

Next message: H. Peter Anvin: "Re: [PATCH] x86: static_cpu_has_safe: discard dynamic check after init"
Previous message: H. Nikolaus Schaller: "Re: [Gta04-owner] [PATCH 0/4] UART slave device support - version 4"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]