ocfs2: silence an integer overflow warning

Message ID	20160707081241.GA16645@mwanda (mailing list archive)
State	New, archived
Headers	show Return-Path: <ocfs2-devel-bounces@oss.oracle.com> Date: Thu, 7 Jul 2016 11:12:41 +0300 From: Dan Carpenter <dan.carpenter@oracle.com> To: Mark Fasheh <mfasheh@suse.com> Message-ID: <20160707081241.GA16645@mwanda> MIME-Version: 1.0 Content-Disposition: inline User-Agent: Mutt/1.6.0 (2016-04-01) Cc: kernel-janitors@vger.kernel.org, ocfs2-devel@oss.oracle.com, linux-kernel@vger.kernel.org Subject: [Ocfs2-devel] [patch] ocfs2: silence an integer overflow warning Precedence: list Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: ocfs2-devel-bounces@oss.oracle.com Errors-To: ocfs2-devel-bounces@oss.oracle.com

Message ID

20160707081241.GA16645@mwanda (mailing list archive)

State

New, archived

Headers

Date: Thu, 7 Jul 2016 11:12:41 +0300
From: Dan Carpenter <dan.carpenter@oracle.com>
To: Mark Fasheh <mfasheh@suse.com>
Message-ID: <20160707081241.GA16645@mwanda>
MIME-Version: 1.0
Content-Disposition: inline
User-Agent: Mutt/1.6.0 (2016-04-01)
Cc: kernel-janitors@vger.kernel.org, ocfs2-devel@oss.oracle.com,
	linux-kernel@vger.kernel.org
Subject: [Ocfs2-devel] [patch] ocfs2: silence an integer overflow warning
Precedence: list
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: ocfs2-devel-bounces@oss.oracle.com
Errors-To: ocfs2-devel-bounces@oss.oracle.com

Commit Message

Dan Carpenter July 7, 2016, 8:12 a.m. UTC

My static checker complains that ->me_start + ->me_len can overflow.
I haven't followed it through to see the implications but it seems
simple enough to prevent the overflow.

Signed-off-by: Dan Carpenter <dan.carpenter@oracle.com>
---
move_extents in other less common file systems have this same warning as
well.

diff --git a/fs/ocfs2/move_extents.c b/fs/ocfs2/move_extents.c
index e3d05d9..9ff405a 100644
--- a/fs/ocfs2/move_extents.c
+++ b/fs/ocfs2/move_extents.c
@@ -1014,7 +1014,8 @@  int ocfs2_ioctl_move_extents(struct file *filp, void __user *argp)
 		goto out_free;
 	}
 
-	if (range.me_start > i_size_read(inode)) {
+	if (range.me_start > i_size_read(inode) ||
+	    range.me_len > i_size_read(inode)) {
 		status = -EINVAL;
 		goto out_free;
 	}

ocfs2: silence an integer overflow warning

Commit Message

Patch