UPSTREAM: f2fs: avoid potential int overflow in sanity_check_area_boundary()

While calculating the end addresses of main area and segment 0, u32 may be not enough to hold the result without the danger of int overflow. Just in case, play it safe and cast one of the operands to a wider type (u64). Found by Linux Verification Center (linuxtesting.org) with static analysis tool SVACE. Fixes: fd694733d5 ("f2fs: cover large section in sanity check of super") Cc: stable@vger.kernel.org Change-Id: If9ac0757f36bc9328cee0aabfa3ab586701fbfb6 Signed-off-by: Nikita Zhandarovich <n.zhandarovich@fintech.ru> Reviewed-by: Chao Yu <chao@kernel.org> Signed-off-by: Jaegeuk Kim <jaegeuk@kernel.org> (cherry picked from commit 50438dbc48)
2025-07-07 09:55:19 +02:00 · 2024-07-24 10:51:58 -07:00 · 2024-07-24 10:51:58 -07:00 · 2a9cd790f9
commit 2a9cd790f9
parent 063568a957
1 changed files with 2 additions and 2 deletions
--- a/fs/f2fs/super.c
+++ b/fs/f2fs/super.c
@ -3351,9 +3351,9 @@ static inline bool sanity_check_area_boundary(struct f2fs_sb_info *sbi,
 	u32 segment_count = le32_to_cpu(raw_super->segment_count);
 	u32 log_blocks_per_seg = le32_to_cpu(raw_super->log_blocks_per_seg);
 	u64 main_end_blkaddr = main_blkaddr +
-				(segment_count_main << log_blocks_per_seg);
+				((u64)segment_count_main << log_blocks_per_seg);
 	u64 seg_end_blkaddr = segment0_blkaddr +
-				(segment_count << log_blocks_per_seg);
+				((u64)segment_count << log_blocks_per_seg);

 	if (segment0_blkaddr != cp_blkaddr) {
 		f2fs_info(sbi, "Mismatch start address, segment0(%u) cp_blkaddr(%u)",