mirror of https://github.com/vitalif/e2fsprogs
e2fsck: correctly deallocate invalid extent-mapped symlinks
The function deallocate_inode() in e2fsck/pass2.c was buggy in that it would clear out the inode's mode and flags fields before trying to deallocate any blocks which might belong to the inode. The good news is that deallocate_inode() is mostly used to free inodes which do not have blocks: device inodes, FIFO's, Unix-domain sockets. The bad news is that if deallocate_inode() tried to free an invalid extent-mapped inode, it would try to interpret the root of the extent node as block numbers, and would therefore mark various file system metadata blocks (the superblock, block group descriptors, the root directory, etc.) as free and available for allocation. This was unfortunate. (Try running an older e2fsck against the test file system image in the new test f_invalid_extent_symlink, and then run e2fsck a second time on the fs image, and weep.) Fortunately, this kind of file system image corruption appears to be fairly rare in actual practice, since it would require a very unlucky set of bits to be flipped, or a buggy file system implementation. Signed-off-by: "Theodore Ts'o" <tytso@mit.edu>debian-1.42.9
parent
dd50ef8743
commit
c8ec2bad18
|
@ -1189,7 +1189,6 @@ static void deallocate_inode(e2fsck_t ctx, ext2_ino_t ino, char* block_buf)
|
|||
struct del_block del_block;
|
||||
|
||||
e2fsck_read_inode(ctx, ino, &inode, "deallocate_inode");
|
||||
e2fsck_clear_inode(ctx, ino, &inode, 0, "deallocate_inode");
|
||||
clear_problem_context(&pctx);
|
||||
pctx.ino = ino;
|
||||
|
||||
|
@ -1224,7 +1223,7 @@ static void deallocate_inode(e2fsck_t ctx, ext2_ino_t ino, char* block_buf)
|
|||
}
|
||||
|
||||
if (!ext2fs_inode_has_valid_blocks2(fs, &inode))
|
||||
return;
|
||||
goto clear_inode;
|
||||
|
||||
if (LINUX_S_ISREG(inode.i_mode) && EXT2_I_SIZE(&inode) >= 0x80000000UL)
|
||||
ctx->large_files--;
|
||||
|
@ -1239,6 +1238,10 @@ static void deallocate_inode(e2fsck_t ctx, ext2_ino_t ino, char* block_buf)
|
|||
ctx->flags |= E2F_FLAG_ABORT;
|
||||
return;
|
||||
}
|
||||
clear_inode:
|
||||
/* Inode may have changed by block_iterate, so reread it */
|
||||
e2fsck_read_inode(ctx, ino, &inode, "deallocate_inode");
|
||||
e2fsck_clear_inode(ctx, ino, &inode, 0, "deallocate_inode");
|
||||
}
|
||||
|
||||
/*
|
||||
|
|
|
@ -0,0 +1,12 @@
|
|||
Pass 1: Checking inodes, blocks, and sizes
|
||||
Pass 2: Checking directory structure
|
||||
Symlink /a (inode #12) is invalid.
|
||||
Clear? yes
|
||||
|
||||
Pass 3: Checking directory connectivity
|
||||
Pass 4: Checking reference counts
|
||||
Pass 5: Checking group summary information
|
||||
|
||||
test_filesys: ***** FILE SYSTEM WAS MODIFIED *****
|
||||
test_filesys: 11/16 files (9.1% non-contiguous), 21/100 blocks
|
||||
Exit status is 1
|
|
@ -0,0 +1,7 @@
|
|||
Pass 1: Checking inodes, blocks, and sizes
|
||||
Pass 2: Checking directory structure
|
||||
Pass 3: Checking directory connectivity
|
||||
Pass 4: Checking reference counts
|
||||
Pass 5: Checking group summary information
|
||||
test_filesys: 11/16 files (0.0% non-contiguous), 21/100 blocks
|
||||
Exit status is 0
|
Binary file not shown.
|
@ -0,0 +1 @@
|
|||
extent-mapped symlink with two blocks
|
Loading…
Reference in New Issue