tjh.dev / kernel
Linux kernel mirror (for testing) git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git
kernel os linux
fork atom

ocfs2: add inline inode consistency check to ocfs2_validate_inode_block()

In 'ocfs2_validate_inode_block()', add an extra check whether an inode
with inline data (i.e. self-contained) has no clusters, thus preventing
an invalid inode from being passed to 'ocfs2_evict_inode()' and below.

Link: https://lkml.kernel.org/r/20251023141650.417129-1-dmantipov@yandex.ru
Signed-off-by: Dmitry Antipov <dmantipov@yandex.ru>
Reported-by: syzbot+c16daba279a1161acfb0@syzkaller.appspotmail.com
Closes: https://syzkaller.appspot.com/bug?extid=c16daba279a1161acfb0
Reviewed-by: Joseph Qi <joseph.qi@linux.alibaba.com>
Cc: Joseph Qi <jiangqi903@gmail.com>
Cc: Mark Fasheh <mark@fasheh.com>
Cc: Joel Becker <jlbec@evilplan.org>
Cc: Junxiao Bi <junxiao.bi@oracle.com>
Cc: Changwei Ge <gechangwei@live.cn>
Cc: Jun Piao <piaojun@huawei.com>
Cc: Heming Zhao <heming.zhao@suse.com>
Signed-off-by: Andrew Morton <akpm@linux-foundation.org>

authored by

Dmitry Antipov and committed by
Andrew Morton a2b1c419 6e89373c

+8
+8
fs/ocfs2/inode.c
··· 1505 1505 goto bail; 1506 1506 } 1507 1507 1508 + if ((le16_to_cpu(di->i_dyn_features) & OCFS2_INLINE_DATA_FL) && 1509 + le32_to_cpu(di->i_clusters)) { 1510 + rc = ocfs2_error(sb, "Invalid dinode %llu: %u clusters\n", 1511 + (unsigned long long)bh->b_blocknr, 1512 + le32_to_cpu(di->i_clusters)); 1513 + goto bail; 1514 + } 1515 + 1508 1516 rc = 0; 1509 1517 1510 1518 bail: