Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit 2d3466a3 authored by Dmitriy Monakhov's avatar Dmitriy Monakhov Committed by Linus Torvalds
Browse files

reiserfs: possible null pointer dereference during resize 



sb_read may return NULL, let's explicitly check it.  If so free new bitmap
blocks array, after this we may safely exit as it done above during bitmap
allocation.

Signed-off-by: default avatarDmitriy Monakhov <dmonakhov@openvz.org>
Signed-off-by: default avatarAndrew Morton <akpm@linux-foundation.org>
Signed-off-by: default avatarLinus Torvalds <torvalds@linux-foundation.org>
parent 82f703bb

fs/reiserfs/resize.c

+4 −0
Original line number Diff line number Diff line
@@ -131,6 +131,10 @@ int reiserfs_resize(struct super_block *s, unsigned long block_count_new) 
			/* don't use read_bitmap_block since it will cache

			 * the uninitialized bitmap */

			bh = sb_bread(s, i * s->s_blocksize * 8);

			if (!bh) {

				vfree(bitmap);

				return -EIO;

			}

			memset(bh->b_data, 0, sb_blocksize(sb));

			reiserfs_test_and_set_le_bit(0, bh->b_data);

			reiserfs_cache_bitmap_metadata(s, bh, bitmap + i);