commit | d9b27dd376e27be210cb2feef6da84c31adcd986 | [log] [tgz] |
---|---|---|
author | Sahitya Tummala <stummala@codeaurora.org> | Tue Sep 17 10:19:23 2019 +0530 |
committer | Jaegeuk Kim <jaegeuk@kernel.org> | Tue Sep 24 09:11:26 2019 -0700 |
tree | f0d7a518f1c8b72237db98e595b1b2ee03e58fb2 | |
parent | dc27e30bae960d83b15812a4686ba420e15d1205 [diff] |
f2fs: add a condition to detect overflow in f2fs_ioc_gc_range() end = range.start + range.len; If the range.start/range.len is a very large value, then end can overflow in this operation. It results into a crash in get_valid_blocks() when accessing the invalid range.start segno. This issue is reported in ioctl fuzz testing. Signed-off-by: Sahitya Tummala <stummala@codeaurora.org> Reviewed-by: Chao Yu <yuchao0@huawei.com> Signed-off-by: Jaegeuk Kim <jaegeuk@kernel.org>