ext4: disallow files with EXT4_JOURNAL_DATA_FL from EXT4_IOC_SWAP_BOOT

mainline inclusion from mainline-5.1 commit 6e589291f4b1b700ca12baec5930592a0d51e63c category: bugfix bugzilla: 10709 CVE: NA --------------------------- A malicious/clueless root user can use EXT4_IOC_SWAP_BOOT to force a corner casew which can lead to the file system getting corrupted. There's no usefulness to allowing this, so just prohibit this case. Signed-off-by: N Theodore Ts'o <tytso@mit.edu> Conflict: fs/ext4/ioctl.c Signed-off-by: N zhangyi (F) <yi.zhang@huawei.com> Reviewed-by: N yangerkun <yangerkun@huawei.com> Signed-off-by: N Yang Yingliang <yangyingliang@huawei.com>

ext4: disallow files with EXT4_JOURNAL_DATA_FL from EXT4_IOC_SWAP_BOOT
mainline inclusion from mainline-5.1 commit 6e589291f4b1b700ca12baec5930592a0d51e63c category: bugfix bugzilla: 10709 CVE: NA --------------------------- A malicious/clueless root user can use EXT4_IOC_SWAP_BOOT to force a corner casew which can lead to the file system getting corrupted. There's no usefulness to allowing this, so just prohibit this case. Signed-off-by: N Theodore Ts'o <tytso@mit.edu> Conflict: fs/ext4/ioctl.c Signed-off-by: N zhangyi (F) <yi.zhang@huawei.com> Reviewed-by: N yangerkun <yangerkun@huawei.com> Signed-off-by: N Yang Yingliang <yangyingliang@huawei.com>
14d2a7ce · Theodore Ts'o · Xie XiuQi · 585adb5d · 14d2a7ce
显示空白变更内容
内联并排

Showing with 1 addition and 0 deletion

fs/ext4/ioctl.c fs/ext4/ioctl.c +1 -0

未找到文件。
--- a/fs/ext4/ioctl.c
+++ b/fs/ext4/ioctl.c
@@ -118,6 +118,7 @@ static long swap_inode_boot_loader(struct super_block *sb,
 	if (inode->i_nlink != 1 || !S_ISREG(inode->i_mode) ||
 	    IS_SWAPFILE(inode) || IS_ENCRYPTED(inode) ||
+	    (EXT4_I(inode)->i_flags & EXT4_JOURNAL_DATA_FL) ||
 	    ext4_has_inline_data(inode))
 		return -EINVAL;