Received: by 2002:a05:6358:9144:b0:117:f937:c515 with SMTP id r4csp5058695rwr;
        Sun, 23 Apr 2023 20:21:37 -0700 (PDT)
X-Google-Smtp-Source: AKy350a14Wa6jMnG4Qi8mL2P0CymGYLnauTx8iTR4CuhR6G8PszDhL1NRq3LZjU9SGGj4hmFK18u
X-Received: by 2002:a17:903:189:b0:1a6:4c34:98bb with SMTP id z9-20020a170903018900b001a64c3498bbmr13468674plg.57.1682306496852;
        Sun, 23 Apr 2023 20:21:36 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1682306496; cv=none;
        d=google.com; s=arc-20160816;
        b=fSgeAg1Uq/MoGOEyAWBsVTiC/fHfFVfeeUPYllc9kEvY+qMQ7FCTNn5BdU+vbN0x9K
         yIDf5lBsmx+l1eFvdGpYovr357HXxzEPx0qegd71tJQa+LoIFKjcvcTCB6HrHlr4iu56
         IrAq3KmV7I73VKGDEjoJCZyby8hUYGTzOUiZFeOIWnRiUFk1lDUurmaVvdqez2/HgYCP
         F8cKkYlm8BUDowZ9laavR5T3JoUrWmrLO1mO1kZq0h6Q+KV/QuPtNcmpoMFCCKhUJLc8
         PWBRJ3XvOCEncxlmEJAIDwEdjAMm2KYEkqc7gAI0ngvECAIxiXpGDf9zEZNZzYkMOiT0
         r7mQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:mime-version
         :message-id:date:subject:cc:to:from;
        bh=Hb0+OjceEwGcB7cAirdCredagNEro7z+ETwvs78DlNI=;
        b=YQOtog9U5T/tRkYnvlbzTv6I7pzoKULwAEYxDBD+0qhZ/wvS/2w4G053yEqA0y9OTF
         z1KywkLJofiBn6Lmlmc/RRR3oJt8uDwRjvN0qcm9N3HxQ/4T8GfNgAAOF2bQNot9+ryC
         wZ/TTUJDBCqTzmANxhJBcFWpBcVvp6yJ48WcuiOSftEQuQ3uYgopTR0WY7gZ9W3Fto4E
         EgFYLG7Fh4Wnuin+RlTe1BKztUtXyb9GDj+74Yu0KCSHHD7UJFFpZOKckAC3i1AkrYkh
         GXROeVa/lN5Cs43OU2/1wU7EWOvPzB3JMIX7rIWsp9P7pIbTK9E3LccCcl95S7YRM+3S
         Ijtw==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id q10-20020a170902a3ca00b001a92e587f72si6061126plb.413.2023.04.23.20.21.24;
        Sun, 23 Apr 2023 20:21:36 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S230340AbjDXDAk (ORCPT <rfc822;aubrey.intel@gmail.com>
        + 99 others); Sun, 23 Apr 2023 23:00:40 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:54550 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S230121AbjDXDAh (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Sun, 23 Apr 2023 23:00:37 -0400
Received: from mailgw.kylinos.cn (mailgw.kylinos.cn [124.126.103.232])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 9F4FB2132;
        Sun, 23 Apr 2023 20:00:35 -0700 (PDT)
X-UUID: deb8f0db20d1454e8d9be9d27a29357a-20230424
X-CID-P-RULE: Release_Ham
X-CID-O-INFO: VERSION:1.1.22,REQID:8e281a50-621e-4468-b1e3-f4ceac775c82,IP:5,U
        RL:0,TC:0,Content:-25,EDM:0,RT:0,SF:-15,FILE:0,BULK:0,RULE:Release_Ham,ACT
        ION:release,TS:-35
X-CID-INFO: VERSION:1.1.22,REQID:8e281a50-621e-4468-b1e3-f4ceac775c82,IP:5,URL
        :0,TC:0,Content:-25,EDM:0,RT:0,SF:-15,FILE:0,BULK:0,RULE:Release_Ham,ACTIO
        N:release,TS:-35
X-CID-META: VersionHash:120426c,CLOUDID:d5a9e5eb-db6f-41fe-8b83-13fe7ed1ef52,B
        ulkID:230424110030EEXGQR72,BulkQuantity:0,Recheck:0,SF:19|44|38|24|17|102,
        TC:nil,Content:0,EDM:-3,IP:-2,URL:0,File:nil,Bulk:nil,QS:nil,BEC:nil,COL:0
        ,OSI:0,OSA:0,AV:0
X-CID-BVR: 0
X-CID-BAS: 0,_,0,_
X-UUID: deb8f0db20d1454e8d9be9d27a29357a-20230424
X-User: gehao@kylinos.cn
Received: from localhost.localdomain [(116.128.244.169)] by mailgw
        (envelope-from <gehao@kylinos.cn>)
        (Generic MTA)
        with ESMTP id 1489151809; Mon, 24 Apr 2023 11:00:28 +0800
From:   Hao Ge <gehao@kylinos.cn>
To:     viro@zeniv.linux.org.uk, brauner@kernel.org
Cc:     linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org,
        gehao618@163.com, Hao Ge <gehao@kylinos.cn>
Subject: [PATCH] fs: fix undefined behavior in bit shift for SB_NOUSER
Date:   Mon, 24 Apr 2023 11:00:05 +0800
Message-Id: <20230424030005.363457-1-gehao@kylinos.cn>
X-Mailer: git-send-email 2.25.1
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,SPF_HELO_NONE,
        SPF_PASS,T_SCC_BODY_TEXT_LINE,UNPARSEABLE_RELAY autolearn=ham
        autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

Shifting signed 32-bit value by 31 bits is undefined, so changing
significant bit to unsigned. The UBSAN warning calltrace like below:

UBSAN: shift-out-of-bounds in fs/nsfs.c:306:32
left shift of 1 by 31 places cannot be represented in type 'int'
CPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.3.0-rc4+ #2
Call trace:
<TASK>
dump_backtrace+0x134/0x1e0
show_stack+0x2c/0x3c
dump_stack_lvl+0xb0/0xd4
dump_stack+0x14/0x1c
ubsan_epilogue+0xc/0x3c
__ubsan_handle_shift_out_of_bounds+0xb0/0x14c
nsfs_init+0x4c/0xb0
start_kernel+0x38c/0x738
__primary_switched+0xbc/0xc4
</TASK>

Signed-off-by: Hao Ge <gehao@kylinos.cn>
---
 include/linux/fs.h | 22 +++++++++++-----------
 1 file changed, 11 insertions(+), 11 deletions(-)

diff --git a/include/linux/fs.h b/include/linux/fs.h
index c85916e9f7db..86ab23a05b61 100644
--- a/include/linux/fs.h
+++ b/include/linux/fs.h
@@ -1069,19 +1069,19 @@ extern int send_sigurg(struct fown_struct *fown);
 #define SB_NOATIME	1024	/* Do not update access times. */
 #define SB_NODIRATIME	2048	/* Do not update directory access times */
 #define SB_SILENT	32768
-#define SB_POSIXACL	(1<<16)	/* VFS does not apply the umask */
-#define SB_INLINECRYPT	(1<<17)	/* Use blk-crypto for encrypted files */
-#define SB_KERNMOUNT	(1<<22) /* this is a kern_mount call */
-#define SB_I_VERSION	(1<<23) /* Update inode I_version field */
-#define SB_LAZYTIME	(1<<25) /* Update the on-disk [acm]times lazily */
+#define SB_POSIXACL	(1U<<16)	/* VFS does not apply the umask */
+#define SB_INLINECRYPT	(1U<<17)	/* Use blk-crypto for encrypted files */
+#define SB_KERNMOUNT	(1U<<22) /* this is a kern_mount call */
+#define SB_I_VERSION	(1U<<23) /* Update inode I_version field */
+#define SB_LAZYTIME	(1U<<25) /* Update the on-disk [acm]times lazily */
 
 /* These sb flags are internal to the kernel */
-#define SB_SUBMOUNT     (1<<26)
-#define SB_FORCE    	(1<<27)
-#define SB_NOSEC	(1<<28)
-#define SB_BORN		(1<<29)
-#define SB_ACTIVE	(1<<30)
-#define SB_NOUSER	(1<<31)
+#define SB_SUBMOUNT     (1U<<26)
+#define SB_FORCE	(1U<<27)
+#define SB_NOSEC	(1U<<28)
+#define SB_BORN		(1U<<29)
+#define SB_ACTIVE	(1U<<30)
+#define SB_NOUSER	(1U<<31)
 
 /* These flags relate to encoding and casefolding */
 #define SB_ENC_STRICT_MODE_FL	(1 << 0)
-- 
2.25.1


No virus found
		Checked by Hillstone Network AntiVirus