Received: by 2002:a05:6358:9144:b0:117:f937:c515 with SMTP id r4csp5120273rwr;
        Sun, 23 Apr 2023 22:00:27 -0700 (PDT)
X-Google-Smtp-Source: AKy350YMfNwqgbis9DEK32dc1wMObi5i4sGXvyEVA/YhtEL8hprQJKDGJeUdJro+2LlihhS2itjj
X-Received: by 2002:a05:6a00:a93:b0:63f:244d:cd07 with SMTP id b19-20020a056a000a9300b0063f244dcd07mr11835917pfl.31.1682312426876;
        Sun, 23 Apr 2023 22:00:26 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1682312426; cv=none;
        d=google.com; s=arc-20160816;
        b=TG3K4rq9MHoqn8RtvTOie3SrH+Pm391azqtXykHAeGRzHAFAPzhyvMMOoNn2qrQ0Qk
         WM9Y5yFVlmnP8tr0lRJJ+Pkg+q39SXOcLnaE8XpT4Pb5R2HSudiUxlrCZmWC+JKUGWU/
         /1bLqmPaDPCjgx4TneASWZChSyEwplZvbUHv8aA/xUn8oCvk/f8fTVIK+jqtuj4qoL/A
         sLKtnATOpDu6FmMA6DdD6vjx16VIdLyjslktIPhTje1NeSJLekcz0fBDfWS7Ov23XP2l
         H4I/z0crXj0bioejZHMFQ2o5eeWfB+HWqrbq6JEaNzhDkp2cEYuFf3SJJ3Uj9DMOpXNV
         CNNw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:mime-version
         :references:in-reply-to:message-id:date:subject:cc:to:from;
        bh=Me+x38H0A7LPo8P5xe4ImwBGwbHB5p926l330YiF7tg=;
        b=jgfKFJlofWrFr84+1nQ73J5jRqDSrHO9G/OYDt+mcNpzfx9jPRBVx0TUPnyoZAUvwC
         865G6UgmJ28oZHEZs+ff4TeObzMKpXJGm5scFwgV+fnEA7WMrm5XCrsZp4A+8dNGJiSE
         WQ60m7B/bQR2j+Fuf7bwbhCvpCi6QrljX+CoRhujE21PlKWP6+LY7grBIQFMtBTF1q2U
         TvgD50rSHCgJIye364vlYRtijw2LFOsR2zaGLnM34mF8H09aYFHgJ9qLVdjW3dbiwU0r
         lA5ffRiYD1m1QbiOhzJRAioVENDfbA3IFLhRJtxVk04dln5ucQAbp8jTTFYumkNnsxtq
         HZ1g==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id r13-20020aa7962d000000b0063d2608a875si10433601pfg.374.2023.04.23.22.00.13;
        Sun, 23 Apr 2023 22:00:26 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S230471AbjDXEvw (ORCPT <rfc822;aubrey.intel@gmail.com>
        + 99 others); Mon, 24 Apr 2023 00:51:52 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:57726 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S230450AbjDXEvu (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Mon, 24 Apr 2023 00:51:50 -0400
Received: from mailgw.kylinos.cn (mailgw.kylinos.cn [124.126.103.232])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 35D442D48;
        Sun, 23 Apr 2023 21:51:46 -0700 (PDT)
X-UUID: 886b32d10673477db2b5947a0d3fb511-20230424
X-CID-CACHE: Type:Local,Time:202304241246+08,HitQuantity:1
X-CID-P-RULE: Release_Ham
X-CID-O-INFO: VERSION:1.1.22,REQID:b652d489-1d09-4d14-a81f-45cbe1d5f83f,IP:5,U
        RL:0,TC:0,Content:-25,EDM:0,RT:0,SF:-15,FILE:0,BULK:0,RULE:Release_Ham,ACT
        ION:release,TS:-35
X-CID-INFO: VERSION:1.1.22,REQID:b652d489-1d09-4d14-a81f-45cbe1d5f83f,IP:5,URL
        :0,TC:0,Content:-25,EDM:0,RT:0,SF:-15,FILE:0,BULK:0,RULE:Release_Ham,ACTIO
        N:release,TS:-35
X-CID-META: VersionHash:120426c,CLOUDID:c96be9eb-db6f-41fe-8b83-13fe7ed1ef52,B
        ulkID:nil,BulkQuantity:0,Recheck:0,SF:24|17|19|44|38|102,TC:nil,Content:0,
        EDM:-3,IP:-2,URL:0,File:nil,Bulk:nil,QS:nil,BEC:nil,COL:0,OSI:0,OSA:0,AV:0
X-CID-BVR: 0
X-CID-BAS: 0,_,0,_
X-UUID: 886b32d10673477db2b5947a0d3fb511-20230424
X-User: gehao@kylinos.cn
Received: from localhost.localdomain [(116.128.244.169)] by mailgw
        (envelope-from <gehao@kylinos.cn>)
        (Generic MTA)
        with ESMTP id 2085282739; Mon, 24 Apr 2023 12:51:39 +0800
From:   Hao Ge <gehao@kylinos.cn>
To:     viro@zeniv.linux.org.uk, brauner@kernel.org
Cc:     linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org,
        gehao618@163.com, Hao Ge <gehao@kylinos.cn>
Subject: [PATCH V2] fs: fix undefined behavior in bit shift for SB_NOUSER
Date:   Mon, 24 Apr 2023 12:51:22 +0800
Message-Id: <20230424045122.370511-1-gehao@kylinos.cn>
X-Mailer: git-send-email 2.25.1
In-Reply-To: <20230424030005.363457-1-gehao@kylinos.cn>
References: <20230424030005.363457-1-gehao@kylinos.cn>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,SPF_HELO_NONE,
        SPF_PASS,T_SCC_BODY_TEXT_LINE,UNPARSEABLE_RELAY autolearn=ham
        autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

Shifting signed 32-bit value by 31 bits is undefined, so changing
significant bit to unsigned. The UBSAN warning calltrace like below:

UBSAN: shift-out-of-bounds in fs/nsfs.c:306:32
left shift of 1 by 31 places cannot be represented in type 'int'
CPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.3.0-rc4+ #2
Call trace:
<TASK>
dump_backtrace+0x134/0x1e0
show_stack+0x2c/0x3c
dump_stack_lvl+0xb0/0xd4
dump_stack+0x14/0x1c
ubsan_epilogue+0xc/0x3c
__ubsan_handle_shift_out_of_bounds+0xb0/0x14c
nsfs_init+0x4c/0xb0
start_kernel+0x38c/0x738
__primary_switched+0xbc/0xc4
</TASK>

Fixes: e462ec50cb5f ("VFS: Differentiate mount flags (MS_*) from internal superblock flags")
Signed-off-by: Hao Ge <gehao@kylinos.cn>
---

v2: add Fixes for changelog
---
 include/linux/fs.h | 22 +++++++++++-----------
 1 file changed, 11 insertions(+), 11 deletions(-)

diff --git a/include/linux/fs.h b/include/linux/fs.h
index c85916e9f7db..86ab23a05b61 100644
--- a/include/linux/fs.h
+++ b/include/linux/fs.h
@@ -1069,19 +1069,19 @@ extern int send_sigurg(struct fown_struct *fown);
 #define SB_NOATIME	1024	/* Do not update access times. */
 #define SB_NODIRATIME	2048	/* Do not update directory access times */
 #define SB_SILENT	32768
-#define SB_POSIXACL	(1<<16)	/* VFS does not apply the umask */
-#define SB_INLINECRYPT	(1<<17)	/* Use blk-crypto for encrypted files */
-#define SB_KERNMOUNT	(1<<22) /* this is a kern_mount call */
-#define SB_I_VERSION	(1<<23) /* Update inode I_version field */
-#define SB_LAZYTIME	(1<<25) /* Update the on-disk [acm]times lazily */
+#define SB_POSIXACL	(1U<<16)	/* VFS does not apply the umask */
+#define SB_INLINECRYPT	(1U<<17)	/* Use blk-crypto for encrypted files */
+#define SB_KERNMOUNT	(1U<<22) /* this is a kern_mount call */
+#define SB_I_VERSION	(1U<<23) /* Update inode I_version field */
+#define SB_LAZYTIME	(1U<<25) /* Update the on-disk [acm]times lazily */
 
 /* These sb flags are internal to the kernel */
-#define SB_SUBMOUNT     (1<<26)
-#define SB_FORCE    	(1<<27)
-#define SB_NOSEC	(1<<28)
-#define SB_BORN		(1<<29)
-#define SB_ACTIVE	(1<<30)
-#define SB_NOUSER	(1<<31)
+#define SB_SUBMOUNT     (1U<<26)
+#define SB_FORCE	(1U<<27)
+#define SB_NOSEC	(1U<<28)
+#define SB_BORN		(1U<<29)
+#define SB_ACTIVE	(1U<<30)
+#define SB_NOUSER	(1U<<31)
 
 /* These flags relate to encoding and casefolding */
 #define SB_ENC_STRICT_MODE_FL	(1 << 0)
-- 
2.25.1


No virus found
		Checked by Hillstone Network AntiVirus