Re: [PATCH 3/3] bcachefs: chardev: fix an integer overflow (32 bit only)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: Dan Carpenter <dan.carpenter@xxxxxxxxxx>
Subject: Re: [PATCH 3/3] bcachefs: chardev: fix an integer overflow (32 bit only)
From: Kent Overstreet <kent.overstreet@xxxxxxxxx>
Date: Thu, 14 Sep 2023 15:56:50 -0400
Cc: Kent Overstreet <kent.overstreet@xxxxxxxxx>, Brian Foster <bfoster@xxxxxxxxxx>, linux-bcachefs@xxxxxxxxxxxxxxx, kernel-janitors@xxxxxxxxxxxxxxx
In-reply-to: <9ab0a914-3170-4728-92b2-09eebb0dbdbb@moroto.mountain>
References: <6f3b0d3e-d20e-47fc-a3e5-4ad4c03d58b8@moroto.mountain> <9ab0a914-3170-4728-92b2-09eebb0dbdbb@moroto.mountain>

On Thu, Sep 14, 2023 at 05:59:10PM +0300, Dan Carpenter wrote:
> On 32 bit systems, "sizeof(*arg) + replica_entries_bytes" can have an
> integer overflow leading to memory corruption.  Use size_add() to
> prevent this.

Thanks, applied

References:
- [PATCH 1/3] bcachefs: chardev: return -EFAULT if copy_to_user() fails
  - From: Dan Carpenter
- [PATCH 3/3] bcachefs: chardev: fix an integer overflow (32 bit only)
  - From: Dan Carpenter

Prev by Date: Re: [PATCH 2/3] bcachefs: chardev: fix NULL vs IS_ERR() checks
Next by Date: Re: [PATCH] bcachefs: fix error checking in bch2_fs_alloc()
Previous by thread: [PATCH 3/3] bcachefs: chardev: fix an integer overflow (32 bit only)
Next by thread: Re: [PATCH 1/3] bcachefs: chardev: return -EFAULT if copy_to_user() fails
Index(es):
- Date
- Thread

[Index of Archives] [Kernel Development] [Kernel Announce] [Kernel Newbies] [Linux Networking Development] [Share Photos] [IDE] [Security] [Git] [Netfilter] [Yosemite News] [MIPS Linux] [ARM Linux] [Device Mapper]

Powered by Linux