diff options
| author | Andrew Price <[email protected]> | 2020-10-07 12:30:58 +0100 | 
|---|---|---|
| committer | Andreas Gruenbacher <[email protected]> | 2020-10-14 23:54:43 +0200 | 
| commit | 0e539ca1bbbe85a86549c97a30a765ada4a09df9 (patch) | |
| tree | 939ab3e225c1051b9a3a23a2ffda1428739cf758 /scripts/gdb/linux/mm.py | |
| parent | 2164f9b9186962ffb7c687e18ec6f5255525f09d (diff) | |
gfs2: Fix NULL pointer dereference in gfs2_rgrp_dump
When an rindex entry is found to be corrupt, compute_bitstructs() calls
gfs2_consist_rgrpd() which calls gfs2_rgrp_dump() like this:
    gfs2_rgrp_dump(NULL, rgd->rd_gl, fs_id_buf);
gfs2_rgrp_dump then dereferences the gl without checking it and we get
    BUG: KASAN: null-ptr-deref in gfs2_rgrp_dump+0x28/0x280
because there's no rgrp glock involved while reading the rindex on mount.
Fix this by changing gfs2_rgrp_dump to take an rgrp argument.
Reported-by: [email protected]
Signed-off-by: Andrew Price <[email protected]>
Signed-off-by: Andreas Gruenbacher <[email protected]>
Diffstat (limited to 'scripts/gdb/linux/mm.py')
0 files changed, 0 insertions, 0 deletions