* [PATCH] btrfs: qgroups: Fix BUG_ON condition
@ 2017-07-12 6:42 Nikolay Borisov
2017-07-12 7:09 ` Qu Wenruo
0 siblings, 1 reply; 7+ messages in thread
From: Nikolay Borisov @ 2017-07-12 6:42 UTC (permalink / raw)
To: linux-btrfs; +Cc: dsterba, rgoldwyn, Nikolay Borisov
The current code was erroneously checking for root_level > BTRFS_MAX_LEVEL. If
we had a root_level of 8 then the check won't trigger and we could
potentially hit a buffer overflow. The correct check should be
root_level >= BTRFS_MAX_LEVEL
Signed-off-by: Nikolay Borisov <nborisov@suse.com>
---
fs/btrfs/qgroup.c | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/fs/btrfs/qgroup.c b/fs/btrfs/qgroup.c
index 4ce351efe281..3b787915ef31 100644
--- a/fs/btrfs/qgroup.c
+++ b/fs/btrfs/qgroup.c
@@ -1603,7 +1603,7 @@ int btrfs_qgroup_trace_subtree(struct btrfs_trans_handle *trans,
struct extent_buffer *eb = root_eb;
struct btrfs_path *path = NULL;
- BUG_ON(root_level < 0 || root_level > BTRFS_MAX_LEVEL);
+ BUG_ON(root_level < 0 || root_level >= BTRFS_MAX_LEVEL);
BUG_ON(root_eb == NULL);
if (!test_bit(BTRFS_FS_QUOTA_ENABLED, &fs_info->flags))
@@ -2959,7 +2959,7 @@ static int __btrfs_qgroup_release_data(struct inode *inode,
if (free && reserved)
return qgroup_free_reserved_data(inode, reserved, start, len);
extent_changeset_init(&changeset);
- ret = clear_record_extent_bits(&BTRFS_I(inode)->io_tree, start,
+ ret = clear_record_extent_bits(&BTRFS_I(inode)->io_tree, start,
start + len -1, EXTENT_QGROUP_RESERVED, &changeset);
if (ret < 0)
goto out;
--
2.7.4
^ permalink raw reply related [flat|nested] 7+ messages in thread
* Re: [PATCH] btrfs: qgroups: Fix BUG_ON condition
2017-07-12 6:42 [PATCH] btrfs: qgroups: Fix BUG_ON condition Nikolay Borisov
@ 2017-07-12 7:09 ` Qu Wenruo
2017-07-12 13:42 ` David Sterba
0 siblings, 1 reply; 7+ messages in thread
From: Qu Wenruo @ 2017-07-12 7:09 UTC (permalink / raw)
To: Nikolay Borisov, linux-btrfs; +Cc: dsterba, rgoldwyn
在 2017年07月12日 14:42, Nikolay Borisov 写道:
> The current code was erroneously checking for root_level > BTRFS_MAX_LEVEL. If
> we had a root_level of 8 then the check won't trigger and we could
> potentially hit a buffer overflow. The correct check should be
> root_level >= BTRFS_MAX_LEVEL
Thanks for catching this.
Reviewed-by: Qu Wenruo <quwenruo.btrfs@gmx.com>
>
> Signed-off-by: Nikolay Borisov <nborisov@suse.com>
> ---
> fs/btrfs/qgroup.c | 4 ++--
> 1 file changed, 2 insertions(+), 2 deletions(-)
>
> diff --git a/fs/btrfs/qgroup.c b/fs/btrfs/qgroup.c
> index 4ce351efe281..3b787915ef31 100644
> --- a/fs/btrfs/qgroup.c
> +++ b/fs/btrfs/qgroup.c
> @@ -1603,7 +1603,7 @@ int btrfs_qgroup_trace_subtree(struct btrfs_trans_handle *trans,
> struct extent_buffer *eb = root_eb;
> struct btrfs_path *path = NULL;
>
> - BUG_ON(root_level < 0 || root_level > BTRFS_MAX_LEVEL);
> + BUG_ON(root_level < 0 || root_level >= BTRFS_MAX_LEVEL);
> BUG_ON(root_eb == NULL);
>
> if (!test_bit(BTRFS_FS_QUOTA_ENABLED, &fs_info->flags))
> @@ -2959,7 +2959,7 @@ static int __btrfs_qgroup_release_data(struct inode *inode,
> if (free && reserved)
> return qgroup_free_reserved_data(inode, reserved, start, len);
> extent_changeset_init(&changeset);
> - ret = clear_record_extent_bits(&BTRFS_I(inode)->io_tree, start,
> + ret = clear_record_extent_bits(&BTRFS_I(inode)->io_tree, start,
> start + len -1, EXTENT_QGROUP_RESERVED, &changeset);
I didn't recongize it's a tailing white space at first.
Nice catch.
Thanks,
Qu
> if (ret < 0)
> goto out;
>
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: [PATCH] btrfs: qgroups: Fix BUG_ON condition
2017-07-12 7:09 ` Qu Wenruo
@ 2017-07-12 13:42 ` David Sterba
2017-07-12 13:50 ` Nikolay Borisov
2017-07-12 14:00 ` Qu Wenruo
0 siblings, 2 replies; 7+ messages in thread
From: David Sterba @ 2017-07-12 13:42 UTC (permalink / raw)
To: Qu Wenruo; +Cc: Nikolay Borisov, linux-btrfs, rgoldwyn
On Wed, Jul 12, 2017 at 03:09:42PM +0800, Qu Wenruo wrote:
>
>
> 在 2017年07月12日 14:42, Nikolay Borisov 写道:
> > The current code was erroneously checking for root_level > BTRFS_MAX_LEVEL. If
> > we had a root_level of 8 then the check won't trigger and we could
> > potentially hit a buffer overflow. The correct check should be
> > root_level >= BTRFS_MAX_LEVEL
>
> Thanks for catching this.
>
> Reviewed-by: Qu Wenruo <quwenruo.btrfs@gmx.com>
>
> >
> > Signed-off-by: Nikolay Borisov <nborisov@suse.com>
> > ---
> > fs/btrfs/qgroup.c | 4 ++--
> > 1 file changed, 2 insertions(+), 2 deletions(-)
> >
> > diff --git a/fs/btrfs/qgroup.c b/fs/btrfs/qgroup.c
> > index 4ce351efe281..3b787915ef31 100644
> > --- a/fs/btrfs/qgroup.c
> > +++ b/fs/btrfs/qgroup.c
> > @@ -1603,7 +1603,7 @@ int btrfs_qgroup_trace_subtree(struct btrfs_trans_handle *trans,
> > struct extent_buffer *eb = root_eb;
> > struct btrfs_path *path = NULL;
> >
> > - BUG_ON(root_level < 0 || root_level > BTRFS_MAX_LEVEL);
> > + BUG_ON(root_level < 0 || root_level >= BTRFS_MAX_LEVEL);
> > BUG_ON(root_eb == NULL);
> >
> > if (!test_bit(BTRFS_FS_QUOTA_ENABLED, &fs_info->flags))
> > @@ -2959,7 +2959,7 @@ static int __btrfs_qgroup_release_data(struct inode *inode,
> > if (free && reserved)
> > return qgroup_free_reserved_data(inode, reserved, start, len);
> > extent_changeset_init(&changeset);
> > - ret = clear_record_extent_bits(&BTRFS_I(inode)->io_tree, start,
> > + ret = clear_record_extent_bits(&BTRFS_I(inode)->io_tree, start,
> > start + len -1, EXTENT_QGROUP_RESERVED, &changeset);
>
> I didn't recongize it's a tailing white space at first.
The original code is from you, so please configure your editor to
hilight trailing whitespace. Whitespace damage happens, git am warns
about tha but git cherry-pick does not.
> Nice catch.
So before we start seeing patches that fix random whitespace in
unrelated code: please don't do that.
As you wrote, it was not obvious that there was no change on the line,
this just slowed down reading the patch.
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: [PATCH] btrfs: qgroups: Fix BUG_ON condition
2017-07-12 13:42 ` David Sterba
@ 2017-07-12 13:50 ` Nikolay Borisov
2017-07-12 13:51 ` David Sterba
2017-07-12 14:00 ` Qu Wenruo
1 sibling, 1 reply; 7+ messages in thread
From: Nikolay Borisov @ 2017-07-12 13:50 UTC (permalink / raw)
To: dsterba, Qu Wenruo, linux-btrfs, rgoldwyn
On 12.07.2017 16:42, David Sterba wrote:
> On Wed, Jul 12, 2017 at 03:09:42PM +0800, Qu Wenruo wrote:
>>
>>
>> 在 2017年07月12日 14:42, Nikolay Borisov 写道:
>>> The current code was erroneously checking for root_level > BTRFS_MAX_LEVEL. If
>>> we had a root_level of 8 then the check won't trigger and we could
>>> potentially hit a buffer overflow. The correct check should be
>>> root_level >= BTRFS_MAX_LEVEL
>>
>> Thanks for catching this.
>>
>> Reviewed-by: Qu Wenruo <quwenruo.btrfs@gmx.com>
>>
>>>
>>> Signed-off-by: Nikolay Borisov <nborisov@suse.com>
>>> ---
>>> fs/btrfs/qgroup.c | 4 ++--
>>> 1 file changed, 2 insertions(+), 2 deletions(-)
>>>
>>> diff --git a/fs/btrfs/qgroup.c b/fs/btrfs/qgroup.c
>>> index 4ce351efe281..3b787915ef31 100644
>>> --- a/fs/btrfs/qgroup.c
>>> +++ b/fs/btrfs/qgroup.c
>>> @@ -1603,7 +1603,7 @@ int btrfs_qgroup_trace_subtree(struct btrfs_trans_handle *trans,
>>> struct extent_buffer *eb = root_eb;
>>> struct btrfs_path *path = NULL;
>>>
>>> - BUG_ON(root_level < 0 || root_level > BTRFS_MAX_LEVEL);
>>> + BUG_ON(root_level < 0 || root_level >= BTRFS_MAX_LEVEL);
>>> BUG_ON(root_eb == NULL);
>>>
>>> if (!test_bit(BTRFS_FS_QUOTA_ENABLED, &fs_info->flags))
>>> @@ -2959,7 +2959,7 @@ static int __btrfs_qgroup_release_data(struct inode *inode,
>>> if (free && reserved)
>>> return qgroup_free_reserved_data(inode, reserved, start, len);
>>> extent_changeset_init(&changeset);
>>> - ret = clear_record_extent_bits(&BTRFS_I(inode)->io_tree, start,
>>> + ret = clear_record_extent_bits(&BTRFS_I(inode)->io_tree, start,
>>> start + len -1, EXTENT_QGROUP_RESERVED, &changeset);
>>
>> I didn't recongize it's a tailing white space at first.
>
> The original code is from you, so please configure your editor to
> hilight trailing whitespace. Whitespace damage happens, git am warns
> about tha but git cherry-pick does not.
>
>> Nice catch.
>
> So before we start seeing patches that fix random whitespace in
> unrelated code: please don't do that.
>
> As you wrote, it was not obvious that there was no change on the line,
> this just slowed down reading the patch.
I didn't intentionally fix this, I've configured vi so as to
automatically do this. There is also whitespace damage on a particular
line in extent-tree.c and every time I submit a patch that touches this
file I explicitly have to omit that particular hunk.
How would you feel about me sending a patch fixing those 2 whitespace
damages?
>
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: [PATCH] btrfs: qgroups: Fix BUG_ON condition
2017-07-12 13:50 ` Nikolay Borisov
@ 2017-07-12 13:51 ` David Sterba
2017-07-12 14:11 ` Qu Wenruo
0 siblings, 1 reply; 7+ messages in thread
From: David Sterba @ 2017-07-12 13:51 UTC (permalink / raw)
To: Nikolay Borisov; +Cc: Qu Wenruo, linux-btrfs, rgoldwyn
On Wed, Jul 12, 2017 at 04:50:20PM +0300, Nikolay Borisov wrote:
> > As you wrote, it was not obvious that there was no change on the line,
> > this just slowed down reading the patch.
>
> I didn't intentionally fix this, I've configured vi so as to
> automatically do this. There is also whitespace damage on a particular
> line in extent-tree.c and every time I submit a patch that touches this
> file I explicitly have to omit that particular hunk.
>
> How would you feel about me sending a patch fixing those 2 whitespace
> damages?
Can't you fix your editor not to auto-correct? :)
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: [PATCH] btrfs: qgroups: Fix BUG_ON condition
2017-07-12 13:42 ` David Sterba
2017-07-12 13:50 ` Nikolay Borisov
@ 2017-07-12 14:00 ` Qu Wenruo
1 sibling, 0 replies; 7+ messages in thread
From: Qu Wenruo @ 2017-07-12 14:00 UTC (permalink / raw)
To: dsterba, Nikolay Borisov, linux-btrfs, rgoldwyn
On 2017年07月12日 21:42, David Sterba wrote:
> On Wed, Jul 12, 2017 at 03:09:42PM +0800, Qu Wenruo wrote:
>>
>>
>> 在 2017年07月12日 14:42, Nikolay Borisov 写道:
>>> The current code was erroneously checking for root_level > BTRFS_MAX_LEVEL. If
>>> we had a root_level of 8 then the check won't trigger and we could
>>> potentially hit a buffer overflow. The correct check should be
>>> root_level >= BTRFS_MAX_LEVEL
>>
>> Thanks for catching this.
>>
>> Reviewed-by: Qu Wenruo <quwenruo.btrfs@gmx.com>
>>
>>>
>>> Signed-off-by: Nikolay Borisov <nborisov@suse.com>
>>> ---
>>> fs/btrfs/qgroup.c | 4 ++--
>>> 1 file changed, 2 insertions(+), 2 deletions(-)
>>>
>>> diff --git a/fs/btrfs/qgroup.c b/fs/btrfs/qgroup.c
>>> index 4ce351efe281..3b787915ef31 100644
>>> --- a/fs/btrfs/qgroup.c
>>> +++ b/fs/btrfs/qgroup.c
>>> @@ -1603,7 +1603,7 @@ int btrfs_qgroup_trace_subtree(struct btrfs_trans_handle *trans,
>>> struct extent_buffer *eb = root_eb;
>>> struct btrfs_path *path = NULL;
>>>
>>> - BUG_ON(root_level < 0 || root_level > BTRFS_MAX_LEVEL);
>>> + BUG_ON(root_level < 0 || root_level >= BTRFS_MAX_LEVEL);
>>> BUG_ON(root_eb == NULL);
>>>
>>> if (!test_bit(BTRFS_FS_QUOTA_ENABLED, &fs_info->flags))
>>> @@ -2959,7 +2959,7 @@ static int __btrfs_qgroup_release_data(struct inode *inode,
>>> if (free && reserved)
>>> return qgroup_free_reserved_data(inode, reserved, start, len);
>>> extent_changeset_init(&changeset);
>>> - ret = clear_record_extent_bits(&BTRFS_I(inode)->io_tree, start,
>>> + ret = clear_record_extent_bits(&BTRFS_I(inode)->io_tree, start,
>>> start + len -1, EXTENT_QGROUP_RESERVED, &changeset);
>>
>> I didn't recongize it's a tailing white space at first.
>
> The original code is from you, so please configure your editor to
> hilight trailing whitespace. Whitespace damage happens, git am warns
> about tha but git cherry-pick does not.
Well, I should make send-email to automatically to run checkpatch.
Sometimes I forgot to run checkpatch manually and will cause such damage.
Really sorry for that.
Thanks,
Qu
>
>> Nice catch.
>
> So before we start seeing patches that fix random whitespace in
> unrelated code: please don't do that.
>
> As you wrote, it was not obvious that there was no change on the line,
> this just slowed down reading the patch.
>
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: [PATCH] btrfs: qgroups: Fix BUG_ON condition
2017-07-12 13:51 ` David Sterba
@ 2017-07-12 14:11 ` Qu Wenruo
0 siblings, 0 replies; 7+ messages in thread
From: Qu Wenruo @ 2017-07-12 14:11 UTC (permalink / raw)
To: dsterba, Nikolay Borisov, linux-btrfs, rgoldwyn
On 2017年07月12日 21:51, David Sterba wrote:
> On Wed, Jul 12, 2017 at 04:50:20PM +0300, Nikolay Borisov wrote:
>>> As you wrote, it was not obvious that there was no change on the line,
>>> this just slowed down reading the patch.
>>
>> I didn't intentionally fix this, I've configured vi so as to
>> automatically do this. There is also whitespace damage on a particular
>> line in extent-tree.c and every time I submit a patch that touches this
>> file I explicitly have to omit that particular hunk.
>>
>> How would you feel about me sending a patch fixing those 2 whitespace
>> damages?
>
> Can't you fix your editor not to auto-correct? :)
At least for tailing white space, there are only 4 in v4.12, including
this one.
Why not fixing it in one patch so we don't need to bother them any longer?
Thanks,
Qu
^ permalink raw reply [flat|nested] 7+ messages in thread
end of thread, other threads:[~2017-07-12 14:11 UTC | newest]
Thread overview: 7+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2017-07-12 6:42 [PATCH] btrfs: qgroups: Fix BUG_ON condition Nikolay Borisov
2017-07-12 7:09 ` Qu Wenruo
2017-07-12 13:42 ` David Sterba
2017-07-12 13:50 ` Nikolay Borisov
2017-07-12 13:51 ` David Sterba
2017-07-12 14:11 ` Qu Wenruo
2017-07-12 14:00 ` Qu Wenruo
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.