From: "Aneesh Kumar K.V" Subject: Re: [PATCH] Fix oops in mballoc caused by a variable overflow Date: Thu, 17 Jan 2008 17:32:16 +0530 Message-ID: <20080117120216.GA24979@skywalker> References: <1200510717.4561.11.camel@ext1.frec.bull.fr> <1200509307.3985.8.camel@localhost.localdomain> <20080117064736.GA6749@skywalker> <478F234C.90807@bull.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Cc: Mingming Cao , linux-ext4 To: Valerie Clement Return-path: Received: from E23SMTP06.au.ibm.com ([202.81.18.175]:42738 "EHLO e23smtp06.au.ibm.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1750952AbYAQMCY (ORCPT ); Thu, 17 Jan 2008 07:02:24 -0500 Received: from d23relay03.au.ibm.com (d23relay03.au.ibm.com [202.81.18.234]) by e23smtp06.au.ibm.com (8.13.1/8.13.1) with ESMTP id m0HC2EDP002446 for ; Thu, 17 Jan 2008 23:02:14 +1100 Received: from d23av02.au.ibm.com (d23av02.au.ibm.com [9.190.235.138]) by d23relay03.au.ibm.com (8.13.8/8.13.8/NCO v8.7) with ESMTP id m0HC2Mr53379430 for ; Thu, 17 Jan 2008 23:02:22 +1100 Received: from d23av02.au.ibm.com (loopback [127.0.0.1]) by d23av02.au.ibm.com (8.12.11.20060308/8.13.3) with ESMTP id m0HC2L7K003648 for ; Thu, 17 Jan 2008 23:02:22 +1100 Content-Disposition: inline In-Reply-To: <478F234C.90807@bull.net> Sender: linux-ext4-owner@vger.kernel.org List-ID: On Thu, Jan 17, 2008 at 10:43:40AM +0100, Valerie Clement wrote: > Aneesh Kumar K.V wrote: >> What about this ? I guess we will overflow start = start << bsbits; >> > > Hi Aneesh, > your patch below doesn't fix the issue, because as start_off is also > loff_t, start_off = ac->ac_o_ex.fe_logical << bsbits also overflows. > loff_t is 64 bits. typedef long long __kernel_loff_t; typedef __u32 ext4_lblk_t; -aneesh