On 20.11.2019 16:11, Mouse wrote: >> During the fuzzing of FFS filesystem, we had a couple of issues >> caused by corrupted inode fields. [...] > >> To make sure that corrupted mount won't cause harm to the user, I >> want to add function to validate root inode on mount step (after >> superblock validation) > > Don't you have more or less the same issue with every other non-free > inode in the filesystem? The only thing I can see that's special about > the root inode in this regard is that it is the only inode that is used > immediately upon mount. > From a high level point of view, we want to reject early corrupted FS on a mount. Today we panic the kernel needlessly.
Attachment:
signature.asc
Description: OpenPGP digital signature