From patchwork Thu Dec  5 13:19:57 2019
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Johannes Thumshirn <jth@kernel.org>
X-Patchwork-Id: 11274721
Return-Path: <SRS0=8E82=Z3=vger.kernel.org=linux-btrfs-owner@kernel.org>
Received: from mail.kernel.org (pdx-korg-mail-1.web.codeaurora.org
 [172.30.200.123])
	by pdx-korg-patchwork-2.web.codeaurora.org (Postfix) with ESMTP id D597D138D
	for <patchwork-linux-btrfs@patchwork.kernel.org>;
 Thu,  5 Dec 2019 13:20:14 +0000 (UTC)
Received: from vger.kernel.org (vger.kernel.org [209.132.180.67])
	by mail.kernel.org (Postfix) with ESMTP id B510F2464D
	for <patchwork-linux-btrfs@patchwork.kernel.org>;
 Thu,  5 Dec 2019 13:20:14 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org;
	s=default; t=1575552014;
	bh=8grJxlwtuw6DJoz7a+ESOcH6rCdL6YgzcmSif1H4+Bw=;
	h=From:To:Cc:Subject:Date:In-Reply-To:References:List-ID:From;
	b=OObMFEmIrzULss1xkFWRuuPrFthxw/pMRD5UMtbZIcbkzaEF6vzxCHz5isb3PE50Y
	 8p82PSqUmIwkfzJQhdQEr//E29+6KglChp9GLz7cg9XcndfvXWouDYpf0A/A+JQuby
	 2dxCTS3OmkoR3wk5nJbupBVjLV8sggIkEfzDFGZo=
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1729573AbfLENUJ (ORCPT
        <rfc822;patchwork-linux-btrfs@patchwork.kernel.org>);
        Thu, 5 Dec 2019 08:20:09 -0500
Received: from mail-wm1-f67.google.com ([209.85.128.67]:51144 "EHLO
        mail-wm1-f67.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1729398AbfLENUI (ORCPT
        <rfc822;linux-btrfs@vger.kernel.org>); Thu, 5 Dec 2019 08:20:08 -0500
Received: by mail-wm1-f67.google.com with SMTP id p9so3778942wmg.0
        for <linux-btrfs@vger.kernel.org>;
 Thu, 05 Dec 2019 05:20:07 -0800 (PST)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:from:to:cc:subject:date:message-id:in-reply-to
         :references:mime-version:content-transfer-encoding;
        bh=uCd5U7DoG4qBbFN1jQxLirgCPg7xjdQna64hhlRmvlI=;
        b=goAwKeAwFCyRyFk1Cw717Qb6c0SEXkQEWYiuc+0HtkQytpSjGbE+1799j2zhC3+UDf
         mIuMnQ/X155hFY5jLZd3DVHxjBPSL0dPwBlFMgVSC2tAA90nEJK4xLwh5EvEH2qBtS0n
         iccEOj/Fc1fGF72g/BZpBhyOnWj5PoCY6AU9rmK4m8+urwghAXyWtAUavL1x4nnu7Yas
         8f7Yw1qm/Nv8irTxYGrCLT40f3SWsBV8GpbpyBsR8Z8dITkY47aXvUuXK2Q+9Q8HQZjy
         shhBSF7R2rCsW+Whl6HkqbLnPoqAV9Djpl/MAgCqxQEef1NrHwaqiL6wozmw4mddZPhR
         6KrQ==
X-Gm-Message-State: APjAAAX5v93/uHiBsrRVZBjZEwYXKU/ifCSVCldSsjP7lVtPQuGsegGJ
        CCX7hUwT/OEYTxxcVrDM3pw=
X-Google-Smtp-Source: 
 APXvYqxEcwRjRhT26Y4VJ/emPseadGTe4SKoCj/kc8ci9HztGBQITvQ4gA6w8jbaB4ERjQSBRWvMcA==
X-Received: by 2002:a05:600c:204:: with SMTP id 4mr5557063wmi.1.1575552006689;
        Thu, 05 Dec 2019 05:20:06 -0800 (PST)
Received: from localhost.localdomain
 (ppp-46-244-194-187.dynamic.mnet-online.de. [46.244.194.187])
        by smtp.gmail.com with ESMTPSA id
 f67sm10482515wme.16.2019.12.05.05.20.05
        (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
        Thu, 05 Dec 2019 05:20:06 -0800 (PST)
From: Johannes Thumshirn <jth@kernel.org>
To: David Sterba <dsterba@suse.com>
Cc: Linux BTRFS Mailinglist <linux-btrfs@vger.kernel.org>,
        Johannes Thumshirn <jth@kernel.org>
Subject: [PATCH 1/3] btrfs: fix possible NULL-pointer dereference in integrity
 checks
Date: Thu,  5 Dec 2019 14:19:57 +0100
Message-Id: <20191205131959.19184-2-jth@kernel.org>
X-Mailer: git-send-email 2.21.0 (Apple Git-122)
In-Reply-To: <20191205131959.19184-1-jth@kernel.org>
References: <20191205131959.19184-1-jth@kernel.org>
MIME-Version: 1.0
Sender: linux-btrfs-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-btrfs.vger.kernel.org>
X-Mailing-List: linux-btrfs@vger.kernel.org

A user reports a possible NULL-pointer dereference in
btrfsic_process_superblock(). We are assigning state->fs_info to a local
fs_info variable and afterwards checking for the presence of state.

While we would BUG_ON() a NULL state anyways, we can also just remove the
local fs_info copy, as fs_info is only used once as the first argument for
btrfs_num_copies(). There we can just pass in state->fs_info as well.

Link: https://bugzilla.kernel.org/show_bug.cgi?id=205003
Signed-off-by: Johannes Thumshirn <jth@kernel.org>
---
 fs/btrfs/check-integrity.c | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/fs/btrfs/check-integrity.c b/fs/btrfs/check-integrity.c
index 0b52ab4cb964..72c70f59fc60 100644
--- a/fs/btrfs/check-integrity.c
+++ b/fs/btrfs/check-integrity.c
@@ -629,7 +629,6 @@ static struct btrfsic_dev_state *btrfsic_dev_state_hashtable_lookup(dev_t dev,
 static int btrfsic_process_superblock(struct btrfsic_state *state,
 				      struct btrfs_fs_devices *fs_devices)
 {
-	struct btrfs_fs_info *fs_info = state->fs_info;
 	struct btrfs_super_block *selected_super;
 	struct list_head *dev_head = &fs_devices->devices;
 	struct btrfs_device *device;
@@ -700,7 +699,7 @@ static int btrfsic_process_superblock(struct btrfsic_state *state,
 			break;
 		}
 
-		num_copies = btrfs_num_copies(fs_info, next_bytenr,
+		num_copies = btrfs_num_copies(state->fs_info, next_bytenr,
 					      state->metablock_size);
 		if (state->print_mask & BTRFSIC_PRINT_MASK_NUM_COPIES)
 			pr_info("num_copies(log_bytenr=%llu) = %d\n",

From patchwork Thu Dec  5 13:19:58 2019
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Johannes Thumshirn <jth@kernel.org>
X-Patchwork-Id: 11274717
Return-Path: <SRS0=8E82=Z3=vger.kernel.org=linux-btrfs-owner@kernel.org>
Received: from mail.kernel.org (pdx-korg-mail-1.web.codeaurora.org
 [172.30.200.123])
	by pdx-korg-patchwork-2.web.codeaurora.org (Postfix) with ESMTP id B6D1D139A
	for <patchwork-linux-btrfs@patchwork.kernel.org>;
 Thu,  5 Dec 2019 13:20:12 +0000 (UTC)
Received: from vger.kernel.org (vger.kernel.org [209.132.180.67])
	by mail.kernel.org (Postfix) with ESMTP id 95DB32464D
	for <patchwork-linux-btrfs@patchwork.kernel.org>;
 Thu,  5 Dec 2019 13:20:12 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org;
	s=default; t=1575552012;
	bh=LlATwjGvgqbg0mrbWC+y9a8HVmmLNiE2VL1fQW2CWZk=;
	h=From:To:Cc:Subject:Date:In-Reply-To:References:List-ID:From;
	b=s217wh8tuZACXmilu34VyxBLMUkjPvT6WGBfnXVk3dqnD7D3RrS/Subc3rYrbEa8D
	 +yRhIGuXMOhDw6Mlt885h8C4tKAv+8PneuRAnUZhDBOqMnK1kMKvSXIQ5K9MlK32wV
	 O+8tNmc3QlbW56ruxHNKFJCT0oKSnv6MIdYLnezY=
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1729587AbfLENUL (ORCPT
        <rfc822;patchwork-linux-btrfs@patchwork.kernel.org>);
        Thu, 5 Dec 2019 08:20:11 -0500
Received: from mail-wr1-f66.google.com ([209.85.221.66]:46493 "EHLO
        mail-wr1-f66.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1729398AbfLENUK (ORCPT
        <rfc822;linux-btrfs@vger.kernel.org>); Thu, 5 Dec 2019 08:20:10 -0500
Received: by mail-wr1-f66.google.com with SMTP id z7so3485884wrl.13
        for <linux-btrfs@vger.kernel.org>;
 Thu, 05 Dec 2019 05:20:09 -0800 (PST)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:from:to:cc:subject:date:message-id:in-reply-to
         :references:mime-version:content-transfer-encoding;
        bh=uJYL0L43GwvtAnJidqIWN/JjxWUixYHQvCd4q9ayaWI=;
        b=ujSPioT3Fx5he4hRGgtl37e3soaecxuXjwCQHR0+XuS/1LjvteEhh+1rMFqdUDA1/F
         UfVTg6vCmHhwEa10ylaTu3xZTbjkAS9VUz9aevX0mWH5eEZWugsYm9G0AbREycGANnvG
         x/4Q39qCcd8+6C3nk95u7LKxma8azmmN7ggoMMqMxACbYmw51LUlxqlfunjq+8az9Pmo
         ExpwZIVsEA7sCaxZ+DW65N61bZHqGRlKbN2qf02KIecD1/YMzyQBirqGSRjyAFpOlBJj
         vsGhofW/scReRAXfm7g4qs+wmWcVKsaivAHDtH/AlMpl/HEoSIn/VFW/lA23FhwJEpr3
         686w==
X-Gm-Message-State: APjAAAXRltv1XPHenTyb+BdQnNRbg7RjVTh9Wqaq/u4PdraG7poNvaj0
        LdFuQhSxwJV6JidkGuPt9mU=
X-Google-Smtp-Source: 
 APXvYqzTY4+bBXo3DDaZR/u0azkGC0/EGbRyV94+2XP+B0OwagZtZaWienwCvaDwyxxKseiiutmYUw==
X-Received: by 2002:adf:8541:: with SMTP id 59mr3990453wrh.307.1575552007847;
        Thu, 05 Dec 2019 05:20:07 -0800 (PST)
Received: from localhost.localdomain
 (ppp-46-244-194-187.dynamic.mnet-online.de. [46.244.194.187])
        by smtp.gmail.com with ESMTPSA id
 f67sm10482515wme.16.2019.12.05.05.20.06
        (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
        Thu, 05 Dec 2019 05:20:07 -0800 (PST)
From: Johannes Thumshirn <jth@kernel.org>
To: David Sterba <dsterba@suse.com>
Cc: Linux BTRFS Mailinglist <linux-btrfs@vger.kernel.org>,
        Johannes Thumshirn <jth@kernel.org>
Subject: [PATCH 2/3] btrfs: remove superfluous BUG_ON() in integrity checks
Date: Thu,  5 Dec 2019 14:19:58 +0100
Message-Id: <20191205131959.19184-3-jth@kernel.org>
X-Mailer: git-send-email 2.21.0 (Apple Git-122)
In-Reply-To: <20191205131959.19184-1-jth@kernel.org>
References: <20191205131959.19184-1-jth@kernel.org>
MIME-Version: 1.0
Sender: linux-btrfs-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-btrfs.vger.kernel.org>
X-Mailing-List: linux-btrfs@vger.kernel.org

btrfsic_process_superblock() BUG_ON()s if 'state' is NULL. But this can
never happen as the only caller from btrfsic_process_superblock() is btrfsic_mount()
which allocates 'state' some lines above calling
btrfsic_process_superblock() and checks for the allocation to succeed.

Let's just remove the impossible to hit BUG_ON().

Signed-off-by: Johannes Thumshirn <jth@kernel.org>
---
 fs/btrfs/check-integrity.c | 1 -
 1 file changed, 1 deletion(-)

diff --git a/fs/btrfs/check-integrity.c b/fs/btrfs/check-integrity.c
index 72c70f59fc60..a0ce69f2d27c 100644
--- a/fs/btrfs/check-integrity.c
+++ b/fs/btrfs/check-integrity.c
@@ -636,7 +636,6 @@ static int btrfsic_process_superblock(struct btrfsic_state *state,
 	int ret = 0;
 	int pass;
 
-	BUG_ON(NULL == state);
 	selected_super = kzalloc(sizeof(*selected_super), GFP_NOFS);
 	if (NULL == selected_super) {
 		pr_info("btrfsic: error, kmalloc failed!\n");

From patchwork Thu Dec  5 13:19:59 2019
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Johannes Thumshirn <jth@kernel.org>
X-Patchwork-Id: 11274719
Return-Path: <SRS0=8E82=Z3=vger.kernel.org=linux-btrfs-owner@kernel.org>
Received: from mail.kernel.org (pdx-korg-mail-1.web.codeaurora.org
 [172.30.200.123])
	by pdx-korg-patchwork-2.web.codeaurora.org (Postfix) with ESMTP id 4CD03139A
	for <patchwork-linux-btrfs@patchwork.kernel.org>;
 Thu,  5 Dec 2019 13:20:14 +0000 (UTC)
Received: from vger.kernel.org (vger.kernel.org [209.132.180.67])
	by mail.kernel.org (Postfix) with ESMTP id 1F6C82464D
	for <patchwork-linux-btrfs@patchwork.kernel.org>;
 Thu,  5 Dec 2019 13:20:14 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org;
	s=default; t=1575552014;
	bh=fe3uTQ3U6wHDiSCZyDdGpUrkOkcQas5Z53pfGAGRMlw=;
	h=From:To:Cc:Subject:Date:In-Reply-To:References:List-ID:From;
	b=cHZ+JdZ5At4zqxqwSXCXo6FIvUSugsRawi691OK/phDZ9KuQVbOkp+bKaLw0yWhMG
	 W4li0ojA3XHjWHv8KI4KuHxpxBs+QVqqx9SEZo7K/tdFQlxAlKak0SPNzlbedESqW4
	 ZXgnWw6Iv57i6gK48AaYW2dOdBjAVc6/QlyVNplk=
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1729099AbfLENUN (ORCPT
        <rfc822;patchwork-linux-btrfs@patchwork.kernel.org>);
        Thu, 5 Dec 2019 08:20:13 -0500
Received: from mail-wr1-f67.google.com ([209.85.221.67]:38152 "EHLO
        mail-wr1-f67.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1729583AbfLENUK (ORCPT
        <rfc822;linux-btrfs@vger.kernel.org>); Thu, 5 Dec 2019 08:20:10 -0500
Received: by mail-wr1-f67.google.com with SMTP id y17so3561469wrh.5
        for <linux-btrfs@vger.kernel.org>;
 Thu, 05 Dec 2019 05:20:09 -0800 (PST)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:from:to:cc:subject:date:message-id:in-reply-to
         :references:mime-version:content-transfer-encoding;
        bh=f75aBtieWlV+gKe2NKSv4ElkYcQqQ1WGTJiguF3h/UQ=;
        b=ZtHiCSN+Qe7grlIoi1pba/pHbGwCuoErumZy7IQuEJ22ViaBr4bVlhTm3Wo+IL4lTf
         csvKWM7nu/48nnbjhBRAZuTuFYGEW2j0RISsvnyzU8MWsXsDU8GUlSzRgJuGqBJlOL/d
         V5OhUNoZM9Q6lwT+RbZrQAyNtBBsf1aQFho4ehzRoV01/lqpeJWeJ0ndTN8L4VIcr8Zi
         lz2c4JmTaSVSPSQkgUMbgZFZVU6VchoKoyYR8QkqqLSrjOc8X5YLx3VjJI+PCVYhwPLo
         oqkjmvg3946QQ3Sl4qYMO3WxwS7tEwTSrHw5JN9Ftdvl5tMEc2+3v2fEwMIViIsvh43x
         AuyQ==
X-Gm-Message-State: APjAAAWXSy1LIcsmwAmwjO6PNGy+IXL9GPGrQYzyUhm+Z2aqf8qVTiaF
        W9Mw2HQmqmal1l9M44+/iDoCvYF4fNI=
X-Google-Smtp-Source: 
 APXvYqzU7Tp3ZItkkANa9IF/YOPWbHr8Buhyv5JWN9Rlq769MQI255DpbllsBWn7m+6R40BANSu2zw==
X-Received: by 2002:adf:ef0b:: with SMTP id
 e11mr10127686wro.128.1575552008789;
        Thu, 05 Dec 2019 05:20:08 -0800 (PST)
Received: from localhost.localdomain
 (ppp-46-244-194-187.dynamic.mnet-online.de. [46.244.194.187])
        by smtp.gmail.com with ESMTPSA id
 f67sm10482515wme.16.2019.12.05.05.20.07
        (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
        Thu, 05 Dec 2019 05:20:08 -0800 (PST)
From: Johannes Thumshirn <jth@kernel.org>
To: David Sterba <dsterba@suse.com>
Cc: Linux BTRFS Mailinglist <linux-btrfs@vger.kernel.org>,
        Johannes Thumshirn <jth@kernel.org>
Subject: [PATCH 3/3] btrfs: remove impossible WARN_ON in
 btrfs_destroy_dev_replace_tgtdev()
Date: Thu,  5 Dec 2019 14:19:59 +0100
Message-Id: <20191205131959.19184-4-jth@kernel.org>
X-Mailer: git-send-email 2.21.0 (Apple Git-122)
In-Reply-To: <20191205131959.19184-1-jth@kernel.org>
References: <20191205131959.19184-1-jth@kernel.org>
MIME-Version: 1.0
Sender: linux-btrfs-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-btrfs.vger.kernel.org>
X-Mailing-List: linux-btrfs@vger.kernel.org

We have a user report, that cppcheck is complaining about a possible
NULL-pointer dereference in btrfs_destroy_dev_replace_tgtdev().

We're first dereferencing the 'tgtdev' variable and the later check for
the validity of the pointer with a WARN_ON(!tgtdev);

But all callers of btrfs_destroy_dev_replace_tgtdev() either explicitly
check if 'tgtdev' is non-NULL or directly allocate 'tgtdev', so the
WARN_ON() is impossible to hit. Just remove it to silence the checker's
complains.

Link: https://bugzilla.kernel.org/show_bug.cgi?id=205003
Signed-off-by: Johannes Thumshirn <jth@kernel.org>
---
 fs/btrfs/volumes.c | 1 -
 1 file changed, 1 deletion(-)

diff --git a/fs/btrfs/volumes.c b/fs/btrfs/volumes.c
index c565650639ee..f5c0c401c330 100644
--- a/fs/btrfs/volumes.c
+++ b/fs/btrfs/volumes.c
@@ -2132,7 +2132,6 @@ void btrfs_destroy_dev_replace_tgtdev(struct btrfs_device *tgtdev)
 {
 	struct btrfs_fs_devices *fs_devices = tgtdev->fs_info->fs_devices;
 
-	WARN_ON(!tgtdev);
 	mutex_lock(&fs_devices->device_list_mutex);
 
 	btrfs_sysfs_rm_device_link(fs_devices, tgtdev);