btrfs: fix invalid inode pointer dereferences during log replay - kernel

diff options

author	Filipe Manana <[email protected]>	2025-06-03 18:29:01 +0000
committer	David Sterba <[email protected]>	2025-06-19 13:20:42 +0000
commit	2dcf838cf5c2f0f4501edaa1680fcad03618d760 (patch)
tree	d68a96dc262f3f86e5ec3861b1936c79b7920ce1 /lib/memory-notifier-error-inject.c
parent	btrfs: fix double unlock of buffer_tree xarray when releasing subpage eb (diff)
download	kernel-2dcf838cf5c2f0f4501edaa1680fcad03618d760.tar.gz kernel-2dcf838cf5c2f0f4501edaa1680fcad03618d760.zip

btrfs: fix invalid inode pointer dereferences during log replay

In a few places where we call read_one_inode(), if we get a NULL pointer we end up jumping into an error path, or fallthrough in case of __add_inode_ref(), where we then do something like this: iput(&inode->vfs_inode); which results in an invalid inode pointer that triggers an invalid memory access, resulting in a crash. Fix this by making sure we don't do such dereferences. Fixes: b4c50cbb01a1 ("btrfs: return a btrfs_inode from read_one_inode()") CC: [email protected] # 6.15+ Signed-off-by: Filipe Manana <[email protected]> Reviewed-by: David Sterba <[email protected]> Signed-off-by: David Sterba <[email protected]>

Diffstat (limited to 'lib/memory-notifier-error-inject.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: