Received: by 2002:a05:6a10:eb17:0:0:0:0 with SMTP id hx23csp1040765pxb; Fri, 3 Sep 2021 21:42:42 -0700 (PDT) X-Google-Smtp-Source: ABdhPJzRME8YyzEqmfnxWyEd39PUiXBtJaOlC5/rsCYXDRCsxshkJ1bSFox9Mx4UPMvB3cBXIizM X-Received: by 2002:a02:cc59:: with SMTP id i25mr1915490jaq.125.1630730562511; Fri, 03 Sep 2021 21:42:42 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1630730562; cv=none; d=google.com; s=arc-20160816; b=Fmb/tfmxdpfloHjxmfUYVl+cKWfWIhlja9te23i2vLq2MwHnQBZm+pjCfvO4GaO+Tp 0kniDElM49yWpFaNCotOvKBQ4jaPJJNUdTfC4Ziiob7Hrf4529FPKYqWHaQUjpjc5ny0 yOCMv4S1lzw9YcMmLEfies9M2/79A/u/CSkqlHJjPU4SPRbY20uTd/SAN46GNmi+neB/ 5thIJYT+/V8L36Q8CZtXjlkzXpWnuB8tBlrIh8Htop3VQ4L9pfAjjDqyhLvR0KyV1wHo pRcp5dD2iG32hipuC2yn0o4Yk0o7EGsh6kxS+8rqAXVWuF4IfE/RiCT70pftBhf0nitS HX0Q== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:mime-version :message-id:date:subject:cc:to:from; bh=VrYjGtPAkqyK+o7BS67c6gxIA5Cod0FTXju05yITju8=; b=cpE38fiLMQwJSj3Fhh3Ebq+ifPvmOQJ+dNx/0gvOHNBTjFMSnAlgMup8yqVp5lDSYP /P6H+ckUGLN+Q1XvobHkqRaIBWokzqfOiUZaumXF4PLBJul+UJVoMZjxdxuQbUZpiekR /p9lIPL8hJvn52+C9y7q2rlfZjRjZobP/525SwQYlB6GfHdvel09grIbUV54/CjtX6TS RYH25myo1/lsNWl6Rno2x/+JYkTkl+TgowYsXqZY106de2C/DncNvLdk9v2tsPy9x6VE /aRzy4rrknsd0OcqUSdZXjV4ZqfP/DvTHD+WhKK1WUKwu3JMhOGTPEUoVBV/142Vp2qk VMEw== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of linux-ext4-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-ext4-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=huawei.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id q128si1396326ioq.111.2021.09.03.21.42.30; Fri, 03 Sep 2021 21:42:42 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-ext4-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; spf=pass (google.com: domain of linux-ext4-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-ext4-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=huawei.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S230094AbhIDEko (ORCPT + 99 others); Sat, 4 Sep 2021 00:40:44 -0400 Received: from szxga08-in.huawei.com ([45.249.212.255]:15238 "EHLO szxga08-in.huawei.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229777AbhIDEkn (ORCPT ); Sat, 4 Sep 2021 00:40:43 -0400 Received: from dggemv704-chm.china.huawei.com (unknown [172.30.72.57]) by szxga08-in.huawei.com (SkyGuard) with ESMTP id 4H1hkk6qczz1DD7Z; Sat, 4 Sep 2021 12:38:54 +0800 (CST) Received: from dggema766-chm.china.huawei.com (10.1.198.208) by dggemv704-chm.china.huawei.com (10.3.19.47) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256) id 15.1.2176.2; Sat, 4 Sep 2021 12:39:40 +0800 Received: from localhost.localdomain (10.175.127.227) by dggema766-chm.china.huawei.com (10.1.198.208) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.2308.8; Sat, 4 Sep 2021 12:39:40 +0800 From: yangerkun To: , CC: , , Subject: [PATCH 0/2] bugfix for read_extent_tree_block Date: Sat, 4 Sep 2021 12:49:44 +0800 Message-ID: <20210904044946.2102404-1-yangerkun@huawei.com> X-Mailer: git-send-email 2.31.1 MIME-Version: 1.0 Content-Transfer-Encoding: 7BIT Content-Type: text/plain; charset=US-ASCII X-Originating-IP: [10.175.127.227] X-ClientProxiedBy: dggems701-chm.china.huawei.com (10.3.19.178) To dggema766-chm.china.huawei.com (10.1.198.208) X-CFilter-Loop: Reflected Precedence: bulk List-ID: X-Mailing-List: linux-ext4@vger.kernel.org Our stress testcase with io error can trigger later OOB: [59898.282466] BUG: KASAN: slab-out-of-bounds in ext4_find_extent+0x2e4/0x480 ... [59898.287162] Call Trace: [59898.287575] dump_stack+0x8b/0xb9 [59898.288070] print_address_description+0x73/0x280 [59898.289903] ext4_find_extent+0x2e4/0x480 [59898.290553] ext4_ext_map_blocks+0x125/0x1470 [59898.295481] ext4_map_blocks+0x5ee/0x940 [59898.315984] ext4_mpage_readpages+0x63c/0xdb0 [59898.320231] read_pages+0xe6/0x370 [59898.321589] __do_page_cache_readahead+0x233/0x2a0 [59898.321594] ondemand_readahead+0x157/0x450 [59898.321598] generic_file_read_iter+0xcb2/0x1550 [59898.328828] __vfs_read+0x233/0x360 [59898.328840] vfs_read+0xa5/0x190 [59898.330126] ksys_read+0xa5/0x150 [59898.331405] do_syscall_64+0x6d/0x1f0 [59898.331418] entry_SYSCALL_64_after_hwframe+0x44/0xa9 It seem that a xattr block with verified confuse read_extent_tree_block. The detail of the patch show us how to fix it. yangerkun (2): ext4: avoid recheck extent for EXT4_EX_FORCE_CACHE ext4: check magic even the extent block bh is verified fs/ext4/extents.c | 25 ++++++++++++++++++------- 1 file changed, 18 insertions(+), 7 deletions(-) -- 2.31.1