ext4: don't assume that mmp_nodename/bdevname have NUL

Message ID	1580076215-1048-1-git-send-email-adilger@dilger.ca
State	Accepted
Headers	show Return-Path: <linux-ext4-owner@vger.kernel.org> From: Andreas Dilger <adilger@dilger.ca> To: tytso@mit.edu Cc: linux-ext4@vger.kernel.org, Andreas Dilger <adilger@dilger.ca> Subject: [PATCH] ext4: don't assume that mmp_nodename/bdevname have NUL Date: Sun, 26 Jan 2020 15:03:34 -0700 Message-Id: <1580076215-1048-1-git-send-email-adilger@dilger.ca> In-Reply-To: <1579983942-11927-1-git-send-email-adilger@dilger.ca> References: <1579983942-11927-1-git-send-email-adilger@dilger.ca> Sender: linux-ext4-owner@vger.kernel.org Precedence: bulk
Series	ext4: don't assume that mmp_nodename/bdevname have NUL \| expand ext4: don't assume that mmp_nodename/bdevname have NUL

Message ID

1580076215-1048-1-git-send-email-adilger@dilger.ca

State

Accepted

Headers

From: Andreas Dilger <adilger@dilger.ca>
To: tytso@mit.edu
Cc: linux-ext4@vger.kernel.org, Andreas Dilger <adilger@dilger.ca>
Subject: [PATCH] ext4: don't assume that mmp_nodename/bdevname have NUL
Date: Sun, 26 Jan 2020 15:03:34 -0700
Message-Id: <1580076215-1048-1-git-send-email-adilger@dilger.ca>
In-Reply-To: <1579983942-11927-1-git-send-email-adilger@dilger.ca>
References: <1579983942-11927-1-git-send-email-adilger@dilger.ca>
Sender: linux-ext4-owner@vger.kernel.org
Precedence: bulk

Series

ext4: don't assume that mmp_nodename/bdevname have NUL | expand

Commit Message

Andreas Dilger Jan. 26, 2020, 10:03 p.m. UTC

Don't assume that the mmp_nodename and mmp_bdevname strings are NUL
terminated, since they are filled in by snprintf(), which is not
guaranteed to do so.

Signed-off-by: Andreas Dilger <adilger@dilger.ca>
---
 fs/ext4/mmp.c | 12 +++++++-----
 1 file changed, 7 insertions(+), 5 deletions(-)

Comments

Theodore Ts'o Feb. 13, 2020, 3:25 p.m. UTC | #1

On Sun, Jan 26, 2020 at 03:03:34PM -0700, Andreas Dilger wrote:
> Don't assume that the mmp_nodename and mmp_bdevname strings are NUL
> terminated, since they are filled in by snprintf(), which is not
> guaranteed to do so.
> 
> Signed-off-by: Andreas Dilger <adilger@dilger.ca>

Applied, thanks.

					- Ted

diff --git a/fs/ext4/mmp.c b/fs/ext4/mmp.c
index 2305b43..9d00e0d 100644
--- a/fs/ext4/mmp.c
+++ b/fs/ext4/mmp.c
@@ -120,10 +120,10 @@  void __dump_mmp_msg(struct super_block *sb, struct mmp_struct *mmp,
 {
 	__ext4_warning(sb, function, line, "%s", msg);
 	__ext4_warning(sb, function, line,
-		       "MMP failure info: last update time: %llu, last update "
-		       "node: %s, last update device: %s",
-		       (long long unsigned int) le64_to_cpu(mmp->mmp_time),
-		       mmp->mmp_nodename, mmp->mmp_bdevname);
+		       "MMP failure info: last update time: %llu, last update node: %.*s, last update device: %.*s",
+		       (unsigned long long)le64_to_cpu(mmp->mmp_time),
+		       (int)sizeof(mmp->mmp_nodename), mmp->mmp_nodename,
+		       (int)sizeof(mmp->mmp_bdevname), mmp->mmp_bdevname);
 }
 
 /*
@@ -154,6 +154,7 @@  static int kmmpd(void *data)
 	mmp_check_interval = max(EXT4_MMP_CHECK_MULT * mmp_update_interval,
 				 EXT4_MMP_MIN_CHECK_INTERVAL);
 	mmp->mmp_check_interval = cpu_to_le16(mmp_check_interval);
+	BUILD_BUG_ON(sizeof(mmp->mmp_bdevname) < BDEVNAME_SIZE);
 	bdevname(bh->b_bdev, mmp->mmp_bdevname);
 
 	memcpy(mmp->mmp_nodename, init_utsname()->nodename,
@@ -375,7 +376,8 @@  int ext4_multi_mount_protect(struct super_block *sb,
 	/*
 	 * Start a kernel thread to update the MMP block periodically.
 	 */
-	EXT4_SB(sb)->s_mmp_tsk = kthread_run(kmmpd, mmpd_data, "kmmpd-%s",
+	EXT4_SB(sb)->s_mmp_tsk = kthread_run(kmmpd, mmpd_data, "kmmpd-%.*s",
+					     (int)sizeof(mmp->mmp_bdevname),
 					     bdevname(bh->b_bdev,
 						      mmp->mmp_bdevname));
 	if (IS_ERR(EXT4_SB(sb)->s_mmp_tsk)) {

ext4: don't assume that mmp_nodename/bdevname have NUL

Commit Message

Comments

Patch