On Thu, Mar 20, 2025 at 5:28 PM Yuezhang.Mo@xxxxxxxx <Yuezhang.Mo@xxxxxxxx> wrote: > > In exfat_find_last_cluster(), the cluster chain is traversed until > the EOF cluster. If the cluster chain includes a loop due to file > system corruption, the EOF cluster cannot be traversed, resulting > in an infinite loop. > > If the number of clusters indicated by the file size is inconsistent > with the cluster chain length, exfat_find_last_cluster() will return > an error, so if this inconsistency is found, the traversal can be > aborted without traversing to the EOF cluster. > > Reported-by: syzbot+f7d147e6db52b1e09dba@xxxxxxxxxxxxxxxxxxxxxxxxx > Closes: https://syzkaller.appspot.com/bug?extid=f7d147e6db52b1e09dba > Tested-by: syzbot+f7d147e6db52b1e09dba@xxxxxxxxxxxxxxxxxxxxxxxxx > Fixes: 31023864e67a ("exfat: add fat entry operations") > Signed-off-by: Yuezhang Mo <Yuezhang.Mo@xxxxxxxx> Applied it to #dev. Thanks!
