linux

mirror of https://github.com/torvalds/linux.git synced 2026-03-08 06:44:49 +01:00

Linux kernel source tree

Find a file

Vasiliy Kovalev 37bfb464dd jfs: validate AG parameters in dbMount() to prevent crashes Validate db_agheight, db_agwidth, and db_agstart in dbMount to catch corrupted metadata early and avoid undefined behavior in dbAllocAG. Limits are derived from L2LPERCTL, LPERCTL/MAXAG, and CTLTREESIZE: - agheight: 0 to L2LPERCTL/2 (0 to 5) ensures shift (L2LPERCTL - 2agheight) >= 0. - agwidth: 1 to min(LPERCTL/MAXAG, 2^(L2LPERCTL - 2agheight)) ensures agperlev >= 1. - Ranges: 1-8 (agheight 0-3), 1-4 (agheight 4), 1 (agheight 5). - LPERCTL/MAXAG = 1024/128 = 8 limits leaves per AG; 2^(10 - 2agheight) prevents division to 0. - agstart: 0 to CTLTREESIZE-1 - agwidth(MAXAG-1) keeps ti within stree (size 1365). - Ranges: 0-1237 (agwidth 1), 0-348 (agwidth 8). UBSAN: shift-out-of-bounds in fs/jfs/jfs_dmap.c:1400:9 shift exponent -335544310 is negative CPU: 0 UID: 0 PID: 5822 Comm: syz-executor130 Not tainted 6.14.0-rc5-syzkaller #0 Hardware name: Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 Call Trace: <TASK> __dump_stack lib/dump_stack.c:94 [inline] dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120 ubsan_epilogue lib/ubsan.c:231 [inline] __ubsan_handle_shift_out_of_bounds+0x3c8/0x420 lib/ubsan.c:468 dbAllocAG+0x1087/0x10b0 fs/jfs/jfs_dmap.c:1400 dbDiscardAG+0x352/0xa20 fs/jfs/jfs_dmap.c:1613 jfs_ioc_trim+0x45a/0x6b0 fs/jfs/jfs_discard.c:105 jfs_ioctl+0x2cd/0x3e0 fs/jfs/ioctl.c:131 vfs_ioctl fs/ioctl.c:51 [inline] __do_sys_ioctl fs/ioctl.c:906 [inline] __se_sys_ioctl+0xf5/0x170 fs/ioctl.c:892 do_syscall_x64 arch/x86/entry/common.c:52 [inline] do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83 entry_SYSCALL_64_after_hwframe+0x77/0x7f Found by Linux Verification Center (linuxtesting.org) with Syzkaller. Cc: stable@vger.kernel.org Fixes: `1da177e4c3` ("Linux-2.6.12-rc2") Reported-by: syzbot+fe8264911355151c487f@syzkaller.appspotmail.com Closes: https://syzkaller.appspot.com/bug?extid=fe8264911355151c487f Signed-off-by: Vasiliy Kovalev <kovalev@altlinux.org> Signed-off-by: Dave Kleikamp <dave.kleikamp@oracle.com>		2025-04-03 09:11:42 -05:00
arch	cxl for v6.15	2025-04-02 20:04:43 -07:00
block	for-6.15/block-20250322	2025-03-26 18:08:55 -07:00
certs	sign-file,extract-cert: use pkcs11 provider for OPENSSL MAJOR >= 3	2024-09-20 19:52:48 +03:00
crypto	This push fixes reverts the multibuffer hash testing as it is buggy.	2025-04-02 09:14:59 -07:00
Documentation	- dm-crypt: switch to using the crc32 library	2025-04-02 21:27:59 -07:00
drivers	firewire updates for v6.15	2025-04-02 22:41:04 -07:00
fs	jfs: validate AG parameters in dbMount() to prevent crashes	2025-04-03 09:11:42 -05:00
include	cxl for v6.15	2025-04-02 20:04:43 -07:00
init	[ Merge note: this pull request depends on you having merged	2025-03-24 22:06:11 -07:00
io_uring	for-6.15/io_uring-reg-vec-20250327	2025-03-28 15:07:04 -07:00
ipc	treewide: const qualify ctl_tables where applicable	2025-01-28 13:48:37 +01:00
kernel	TTY/Serial driver updates for 6.15-rc1	2025-04-02 18:17:33 -07:00
lib	more printk changes for 6.15	2025-04-02 10:05:55 -07:00
LICENSES	LICENSES: add 0BSD license text	2024-09-01 20:43:24 -07:00
mm	mm/page_alloc: Fix try_alloc_pages	2025-04-02 09:34:31 -07:00
net	NFS client updates for Linux 6.15	2025-04-02 17:06:31 -07:00
rust	LoongArch changes for v6.15	2025-04-02 12:15:01 -07:00
samples	Char/Misc/IIO driver updates for 6.15-rc1	2025-04-01 11:26:08 -07:00
scripts	These are objtool fixes and updates by Josh Poimboeuf, centered	2025-04-02 10:30:10 -07:00
security	Driver core updates for 6.15-rc1	2025-04-01 11:02:03 -07:00
sound	These are objtool fixes and updates by Josh Poimboeuf, centered	2025-04-02 10:30:10 -07:00
tools	cxl for v6.15	2025-04-02 20:04:43 -07:00
usr	kbuild: hdrcheck: fix cross build with clang	2025-03-05 04:06:45 +09:00
virt	ARM:	2025-03-25 14:22:07 -07:00
.clang-format	clang-format: Update with v6.11-rc1's `for_each` macro list	2024-08-02 13:20:31 +02:00
.clippy.toml	rust: give Clippy the minimum supported Rust version	2025-01-10 00:17:25 +01:00
.cocciconfig	scripts: add Linux .cocciconfig for coccinelle	2016-07-22 12:13:39 +02:00
.editorconfig	.editorconfig: remove trim_trailing_whitespace option	2024-06-13 16:47:52 +02:00
.get_maintainer.ignore	MAINTAINERS: Retire Ralf Baechle	2024-11-12 15:48:59 +01:00
.gitattributes	.gitattributes: set diff driver for Rust source code files	2023-05-31 17:48:25 +02:00
.gitignore	rust: use host dylib naming convention to support macOS	2025-01-10 01:01:24 +01:00
.mailmap	- The 7 patch series "powerpc/crash: use generic crashkernel	2025-04-01 10:06:52 -07:00
.rustfmt.toml	rust: add `.rustfmt.toml`	2022-09-28 09:02:20 +02:00
COPYING	COPYING: state that all contributions really are covered by this file	2020-02-10 13:32:20 -08:00
CREDITS	vfs-6.15-rc1.fixes	2025-04-02 16:05:21 -07:00
Kbuild	drm: ensure drm headers are self-contained and pass kernel-doc	2025-02-12 10:44:43 +02:00
Kconfig	io_uring: Rename KConfig to Kconfig	2025-02-19 14:53:27 -07:00
MAINTAINERS	USB/Thunderbolt update for 6.15-rc1	2025-04-02 18:23:31 -07:00
Makefile	[ Merge note: this pull request depends on you having merged	2025-03-24 22:06:11 -07:00
README	README: Fix spelling	2024-03-18 03:36:32 -06:00

README

Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the reStructuredText markup notation.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.