Page MenuHomeFreeBSD
Differential D26524

Fix an integer overflow on 32-bit platforms.
ClosedPublic
Actions

Authored by delphij on Sep 22 2020, 9:30 PM.
Tags
None
Referenced Files
F106175498: D26524.id77400.diff
Thu, Dec 26, 3:32 PM
F106145891: D26524.diff
Thu, Dec 26, 3:54 AM
Unknown Object (File)
Fri, Dec 20, 12:46 AM
Unknown Object (File)
Oct 20 2024, 1:15 PM
Unknown Object (File)
Oct 13 2024, 8:09 PM
Unknown Object (File)
Sep 30 2024, 2:18 PM
Unknown Object (File)
Sep 25 2024, 3:22 AM
Unknown Object (File)
Sep 15 2024, 8:37 AM
View All 58 Files
Subscribers
imp
kevlo

Details

Reviewers
emaste
kevlo
Commits
rS366064: sbin/fsck_msdosfs: Fix an integer overflow on 32-bit platforms.
Summary

sbin/fsck_msdosfs: Fix an integer overflow on 32-bit platforms.

The purpose of checksize() is to verify that the referenced cluster chain
size matches the recorded file size (up to 2^32 - 1) in the directory
entry. We follow the cluster chain, then multiple the cluster count by
bytes per cluster to get the physical size, and then examine it against
the recorded size.

When a file is close to 4 GiB (between 4GiB - cluster size and 4GiB, both
non-inclusive), the product of cluster count and bytes per cluster would
be exactly 4 GiB. On 32-bit systems, because size_t is 32-bit, this would
wrap back to 0, which will cause the file be truncated to 0.

Fix this by using 64-bit physicalSize instead.

Diff Detail

Repository
rS FreeBSD src repository - subversion
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Revision Contents
Changeset List

PathSize
head/
sbin/
fsck_msdosfs/
15 lines

Diff 77400

View Options

head/sbin/fsck_msdosfs/dir.c

Loading...