Received: by 2002:a05:6a10:8c0a:0:0:0:0 with SMTP id go10csp2135862pxb; Thu, 11 Feb 2021 05:26:11 -0800 (PST) X-Google-Smtp-Source: ABdhPJx/t3TN9h/rWdh64CiSJaN3FWHaxiCa2xCPp//bjX12Km8+7YeLNViu/lUurRIh2bMj+64c X-Received: by 2002:a17:906:ca04:: with SMTP id jt4mr8679034ejb.548.1613049971141; Thu, 11 Feb 2021 05:26:11 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1613049971; cv=none; d=google.com; s=arc-20160816; b=i7uXa/0CbBTGSv5l/NYLwKLeNXzvw7aJ8WaXBVUTnOLQ/4P8WFTgR4VuZgMIwmKcei D01jVxf7RLr8dvXkLndHU7wQxS6lf5g++Y41MRGXrK8s+v3si6R/X41bgyqANbfXryTV MYJ7yAET4Yorr/zfaXfb6hAX5rr2Z/AoI3hqQIL6LAu9cEzcHcwg68Dn9aT527dUNlyM MFFEQixd8e5/nBkw9aOJ5qJg0tI0xwnKATVQK7JF5HEo1U2egwC4hHgoluJIkxVHW5ud AyBEVXH4vsjX610qfW75y2y3XQxzPhOTYkIisFW3R98j1/TnF9xibhdR8EY6wK+r2DVZ XuLg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:mime-version :message-id:date:subject:cc:to:from; bh=zjsrI6rX+L03O+HldJXRx26DMU9c7stWgEMxt5qKHUc=; b=PJbX4dvqINiGzT+ry4n1uTyjtrF7K1uXWR5DR5/qaJ4QblE/Rcjr3mKICbWzHwxSjb bcKiSewL1ywAXjym+QcFN22+jbiIR6o54yg0YQZ67TsCisC6tMVpXLzXNjUDJ42Vtrqg 6Mj9cYFmPS6jKbALkNLivo5zy1qsMUxR3/JEuIGAICfOjyglWdhbvZ67ZBR8lOIeOhFt ZIRgDWIti8obEwpgOJfhRXcZNFU3EA5MrLAoo7rHqkGfOR6ipSI5T/KLkEy3/2bAlWRi fY7Mro5GrSVRouC+g6NnVEJBqrx+0nztCz68X2R/6RxN/xjpL56lFfg/r33jEUpHNpX0 8aVg== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=canonical.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id a4si3557249eds.33.2021.02.11.05.25.44; Thu, 11 Feb 2021 05:26:11 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=canonical.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S230518AbhBKNXc (ORCPT + 99 others); Thu, 11 Feb 2021 08:23:32 -0500 Received: from youngberry.canonical.com ([91.189.89.112]:50083 "EHLO youngberry.canonical.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S231685AbhBKNCW (ORCPT ); Thu, 11 Feb 2021 08:02:22 -0500 Received: from 1.general.cking.uk.vpn ([10.172.193.212] helo=localhost) by youngberry.canonical.com with esmtpsa (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.86_2) (envelope-from ) id 1lABam-0004CX-TI; Thu, 11 Feb 2021 13:01:09 +0000 From: Colin King To: Dave Kleikamp , jfs-discussion@lists.sourceforge.net Cc: kernel-janitors@vger.kernel.org, linux-kernel@vger.kernel.org Subject: [PATCH][next][V2] fs/jfs: fix potential integer overflow on shift of a int Date: Thu, 11 Feb 2021 13:01:08 +0000 Message-Id: <20210211130108.171493-1-colin.king@canonical.com> X-Mailer: git-send-email 2.30.0 MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 8bit Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org From: Colin Ian King The left shift of int 32 bit integer constant 1 is evaluated using 32 bit arithmetic and then assigned to a signed 64 bit integer. In the case where l2nb is 32 or more this can lead to an overflow. Avoid this by shifting the value 1LL instead. Addresses-Coverity: ("Uninitentional integer overflow") Fixes: b40c2e665cd5 ("fs/jfs: TRIM support for JFS Filesystem") Signed-off-by: Colin Ian King --- V2: shift 1LL rather than using BIT_ULL macro as suggested by Dave Kleikamp. --- fs/jfs/jfs_dmap.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/fs/jfs/jfs_dmap.c b/fs/jfs/jfs_dmap.c index 94b7c1cb5ceb..7aee15608619 100644 --- a/fs/jfs/jfs_dmap.c +++ b/fs/jfs/jfs_dmap.c @@ -1656,7 +1656,7 @@ s64 dbDiscardAG(struct inode *ip, int agno, s64 minlen) } else if (rc == -ENOSPC) { /* search for next smaller log2 block */ l2nb = BLKSTOL2(nblocks) - 1; - nblocks = 1 << l2nb; + nblocks = 1LL << l2nb; } else { /* Trim any already allocated blocks */ jfs_error(bmp->db_ipbmap->i_sb, "-EIO\n"); -- 2.30.0