Received: by 2002:a05:6359:c8b:b0:c7:702f:21d4 with SMTP id go11csp3874501rwb;
        Fri, 30 Sep 2022 09:26:34 -0700 (PDT)
X-Google-Smtp-Source: AMsMyM7ic4CZmlBP1zBfHpYSFDWHCN8gPlD9xPJaYkAwVpQXio59yYRIvGq7tINDr5qSCuK/UxDb
X-Received: by 2002:a17:907:2724:b0:779:7545:5df6 with SMTP id d4-20020a170907272400b0077975455df6mr7039026ejl.325.1664555194629;
        Fri, 30 Sep 2022 09:26:34 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1664555194; cv=none;
        d=google.com; s=arc-20160816;
        b=Gq+PtLrzuz2pFjTBNqbJ/zOGug77Sm4TG1rm+ukeyYluj/7UaDZoVn+pJYFCaAZgL/
         bkbmaCkbDBctqyX8FG4D81vVpaoQjuFKtho1wGo6Ut7jGOS7Nk0y2iAsWQBKvSYxdQhj
         PNXTlOPszJr4/7+YrvZsYdID9je5uEwA/tOEkzkTuTYmioPDr+1/hBv0kFMncVWGq/fP
         AI9Y81gfEiM9EvkBq469jA84Aexe7LLhOdMksQAacWeF1yslVrirtziuOx6ZTbaOECK8
         ODc3NYYBdS4gw6tkQ9gC/ZG7mUmx97HaBN69wUUXyvHIh6uK16ycWE6IMkhCS02N10je
         ZTQQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:in-reply-to:from
         :references:cc:to:content-language:subject:user-agent:mime-version
         :date:message-id:dkim-signature;
        bh=Kvp3r7tFqjR0yQUkLn4RKotejn0Af9kAQkVNGppOqCY=;
        b=c5RLjfkCGV3gVrrmyqvbyVr8KJY+FCdQOTknug3gTALuXf5nJAv1pQdQO4lRvEFpR5
         rOmQF6ZWYQPjovn6GwPn81IQXMDzgY6Yj4iymMkpHjaE205vD34DMkbutxrqF4TO029B
         1TVkyVveG8+iNzVJIuU6emwiLumMVfRwv8xSWw0qG41duxFMVGTudVus/qWROPzOIG1E
         H6kmwtxVJ9xVdWxorE3uzMavUD0BrMcitQJQYuH/6g4bImvSfADTMUzZF2epaElKOAhX
         c4ysoBh7za92PqlPcU4hFxM1o8GPsSAlco2dxOrA9IeCz3IzLRLq7GUKyHCaz0ju79FB
         BxWw==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@paragon-software.com header.s=mail header.b=N4iYopAo;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=paragon-software.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id xc1-20020a170907074100b00734b2821879si2237447ejb.898.2022.09.30.09.26.08;
        Fri, 30 Sep 2022 09:26:34 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@paragon-software.com header.s=mail header.b=N4iYopAo;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=paragon-software.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S231172AbiI3Px6 (ORCPT <rfc822;andyjasonwalsh@gmail.com>
        + 99 others); Fri, 30 Sep 2022 11:53:58 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:47148 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S231791AbiI3Pxu (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Fri, 30 Sep 2022 11:53:50 -0400
Received: from relayaws-01.paragon-software.com (relayaws-01.paragon-software.com [35.157.23.187])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id EEA871C2945
        for <linux-kernel@vger.kernel.org>; Fri, 30 Sep 2022 08:53:33 -0700 (PDT)
Received: from dlg2.mail.paragon-software.com (vdlg-exch-02.paragon-software.com [172.30.1.105])
        by relayaws-01.paragon-software.com (Postfix) with ESMTPS id F26BF1D0C;
        Fri, 30 Sep 2022 15:51:15 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=paragon-software.com; s=mail; t=1664553076;
        bh=Kvp3r7tFqjR0yQUkLn4RKotejn0Af9kAQkVNGppOqCY=;
        h=Date:Subject:To:CC:References:From:In-Reply-To;
        b=N4iYopAoQnsMun+YtbBED0m3e86Buan5J8XaR87ATlrwKL6QyIkZckpdajKohdm8J
         hFOAnkaCDOsMEJ6I7W47RG0xckzZpVqAUONhaDVHcJ3cdZ6nwjNSWfC5nl6wOGbxtw
         cAWFNwxX75QW1Kyuy+XnlOHI4tXA44JzrFdfQ8eY=
Received: from [172.30.8.65] (172.30.8.65) by
 vdlg-exch-02.paragon-software.com (172.30.1.105) with Microsoft SMTP Server
 (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id
 15.1.2375.7; Fri, 30 Sep 2022 18:53:30 +0300
Message-ID: <136fa55a-56d5-7d62-bbf0-602a357ab46d@paragon-software.com>
Date:   Fri, 30 Sep 2022 18:53:30 +0300
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101
 Thunderbird/91.11.0
Subject: Re: [PATCH] fs/ntfs3: Avoid UBSAN error on true_sectors_per_clst()
Content-Language: en-US
To:     Shigeru Yoshida <syoshida@redhat.com>
CC:     <ntfs3@lists.linux.dev>, <linux-kernel@vger.kernel.org>,
        "Author : Randy Dunlap" <rdunlap@infradead.org>,
        <syzbot+35b87c668935bb55e666@syzkaller.appspotmail.com>
References: <20220823144625.1627736-1-syoshida@redhat.com>
From:   Konstantin Komarov <almaz.alexandrovich@paragon-software.com>
In-Reply-To: <20220823144625.1627736-1-syoshida@redhat.com>
Content-Type: text/plain; charset="UTF-8"; format=flowed
Content-Transfer-Encoding: 7bit
X-Originating-IP: [172.30.8.65]
X-ClientProxiedBy: vobn-exch-01.paragon-software.com (172.30.72.13) To
 vdlg-exch-02.paragon-software.com (172.30.1.105)
X-Spam-Status: No, score=-2.7 required=5.0 tests=BAYES_00,DKIM_SIGNED,
        DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,NICE_REPLY_A,SPF_HELO_NONE,
        SPF_PASS autolearn=ham autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org



On 8/23/22 17:46, Shigeru Yoshida wrote:
> syzbot reported UBSAN error as below:
> 
> [   76.901829][ T6677] ================================================================================
> [   76.903908][ T6677] UBSAN: shift-out-of-bounds in fs/ntfs3/super.c:675:13
> [   76.905363][ T6677] shift exponent -247 is negative
> 
> This patch avoid this error.
> 
> Link: https://syzkaller.appspot.com/bug?id=b0299c09a14aababf0f1c862dd4ebc8ab9eb0179
> Fixes: a3b774342fa7 (fs/ntfs3: validate BOOT sectors_per_clusters)
> Cc: Author: Randy Dunlap <rdunlap@infradead.org>
> Reported-by: syzbot+35b87c668935bb55e666@syzkaller.appspotmail.com
> Signed-off-by: Shigeru Yoshida <syoshida@redhat.com>
> ---
>   fs/ntfs3/super.c | 2 +-
>   1 file changed, 1 insertion(+), 1 deletion(-)
> 
> diff --git a/fs/ntfs3/super.c b/fs/ntfs3/super.c
> index 47012c9bf505..adc4f73722b7 100644
> --- a/fs/ntfs3/super.c
> +++ b/fs/ntfs3/super.c
> @@ -672,7 +672,7 @@ static u32 true_sectors_per_clst(const struct NTFS_BOOT *boot)
>   	if (boot->sectors_per_clusters <= 0x80)
>   		return boot->sectors_per_clusters;
>   	if (boot->sectors_per_clusters >= 0xf4) /* limit shift to 2MB max */
> -		return 1U << (0 - boot->sectors_per_clusters);
> +		return 1U << -(s8)boot->sectors_per_clusters;
>   	return -EINVAL;
>   }
>   

Applied, thanks again for the patch!