diff options
author | Insu Yun <wuninsu@gmail.com> | 2016-02-12 01:15:59 -0500 |
---|---|---|
committer | Greg Kroah-Hartman <gregkh@linuxfoundation.org> | 2016-02-25 11:58:52 -0800 |
commit | 1bffbd129f598df60747f9eb6028e5a06c65001c (patch) | |
tree | 9ae354168c66e88b26c2ac15c2fbf18a46402928 /fs | |
parent | c4f4b82694fe48b02f7a881a1797131a6dad1364 (diff) | |
download | lwn-1bffbd129f598df60747f9eb6028e5a06c65001c.tar.gz lwn-1bffbd129f598df60747f9eb6028e5a06c65001c.zip |
ext4: fix potential integer overflow
commit 46901760b46064964b41015d00c140c83aa05bcf upstream.
Since sizeof(ext_new_group_data) > sizeof(ext_new_flex_group_data),
integer overflow could be happened.
Therefore, need to fix integer overflow sanitization.
Signed-off-by: Insu Yun <wuninsu@gmail.com>
Signed-off-by: Theodore Ts'o <tytso@mit.edu>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Diffstat (limited to 'fs')
-rw-r--r-- | fs/ext4/resize.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/fs/ext4/resize.c b/fs/ext4/resize.c index 831cb305c63f..ae8ce49c0437 100644 --- a/fs/ext4/resize.c +++ b/fs/ext4/resize.c @@ -186,7 +186,7 @@ static struct ext4_new_flex_group_data *alloc_flex_gd(unsigned long flexbg_size) if (flex_gd == NULL) goto out3; - if (flexbg_size >= UINT_MAX / sizeof(struct ext4_new_flex_group_data)) + if (flexbg_size >= UINT_MAX / sizeof(struct ext4_new_group_data)) goto out2; flex_gd->count = flexbg_size; |