[PATCH v2 1/2] exfat: add NameLength check when extracting name

Tetsuhiro Kohada Tue, 18 Aug 2020 23:37:00 -0700

The current implementation doesn't care NameLength when extracting
the name from Name dir-entries, so the name may be incorrect.
(Without null-termination, Insufficient Name dir-entries, etc)
Add a NameLength check when extracting the name from Name dir-entries
to extract correct name.
And, change to get the information of file/stream-ext dir-entries
via the member variable in exfat_entry_set_cache.


** This patch depends on:
  '[PATCH v3] exfat: integrates dir-entry getting and validation'.

Suggested-by: Sungjong Seo <sj1557....@samsung.com>
Signed-off-by: Tetsuhiro Kohada <kohada...@gmail.com>
---
Changes in v2
 - Add error check when extracting name
 - Change error from EIO to EINVAL when the name length is invalid
 - Correct the spelling in commit messages

 fs/exfat/dir.c | 87 +++++++++++++++++++++++++-------------------------
 1 file changed, 43 insertions(+), 44 deletions(-)

diff --git a/fs/exfat/dir.c b/fs/exfat/dir.c
index 91cdbede0fd1..08ebfcdd66a0 100644
--- a/fs/exfat/dir.c
+++ b/fs/exfat/dir.c
@@ -28,16 +28,15 @@ static int exfat_extract_uni_name(struct exfat_dentry *ep,
 
 }
 
-static void exfat_get_uniname_from_ext_entry(struct super_block *sb,
-               struct exfat_chain *p_dir, int entry, unsigned short *uniname)
+static int exfat_get_uniname_from_name_entries(struct exfat_entry_set_cache 
*es,
+               struct exfat_uni_name *uniname)
 {
-       int i;
-       struct exfat_entry_set_cache *es;
+       int n, l, i;
        struct exfat_dentry *ep;
 
-       es = exfat_get_dentry_set(sb, p_dir, entry, ES_ALL_ENTRIES);
-       if (!es)
-               return;
+       uniname->name_len = es->de_stream->name_len;
+       if (uniname->name_len == 0)
+               return -EINVAL;
 
        /*
         * First entry  : file entry
@@ -45,24 +44,26 @@ static void exfat_get_uniname_from_ext_entry(struct 
super_block *sb,
         * Third entry  : first file-name entry
         * So, the index of first file-name dentry should start from 2.
         */
-
-       i = 2;
-       while ((ep = exfat_get_validated_dentry(es, i++, TYPE_NAME))) {
-               exfat_extract_uni_name(ep, uniname);
-               uniname += EXFAT_FILE_NAME_LEN;
+       for (l = 0, n = 2; l < uniname->name_len; n++) {
+               ep = exfat_get_validated_dentry(es, n, TYPE_NAME);
+               if (!ep)
+                       return -EIO;
+               for (i = 0; l < uniname->name_len && i < EXFAT_FILE_NAME_LEN; 
i++, l++)
+                       uniname->name[l] = 
le16_to_cpu(ep->dentry.name.unicode_0_14[i]);
        }
-
-       exfat_free_dentry_set(es, false);
+       uniname->name[l] = 0;
+       return 0;
 }
 
 /* read a directory entry from the opened directory */
 static int exfat_readdir(struct inode *inode, struct exfat_dir_entry 
*dir_entry)
 {
-       int i, dentries_per_clu, dentries_per_clu_bits = 0;
+       int i, dentries_per_clu, dentries_per_clu_bits = 0, err;
        unsigned int type, clu_offset;
        sector_t sector;
        struct exfat_chain dir, clu;
        struct exfat_uni_name uni_name;
+       struct exfat_entry_set_cache *es;
        struct exfat_dentry *ep;
        struct super_block *sb = inode->i_sb;
        struct exfat_sb_info *sbi = EXFAT_SB(sb);
@@ -114,47 +115,45 @@ static int exfat_readdir(struct inode *inode, struct 
exfat_dir_entry *dir_entry)
                                return -EIO;
 
                        type = exfat_get_entry_type(ep);
-                       if (type == TYPE_UNUSED) {
-                               brelse(bh);
+                       brelse(bh);
+
+                       if (type == TYPE_UNUSED)
                                break;
-                       }
 
-                       if (type != TYPE_FILE && type != TYPE_DIR) {
-                               brelse(bh);
+                       if (type != TYPE_FILE && type != TYPE_DIR)
                                continue;
-                       }
 
-                       dir_entry->attr = le16_to_cpu(ep->dentry.file.attr);
+                       es = exfat_get_dentry_set(sb, &dir, dentry, 
ES_ALL_ENTRIES);
+                       if (!es)
+                               return -EIO;
+
+                       dir_entry->attr = le16_to_cpu(es->de_file->attr);
                        exfat_get_entry_time(sbi, &dir_entry->crtime,
-                                       ep->dentry.file.create_tz,
-                                       ep->dentry.file.create_time,
-                                       ep->dentry.file.create_date,
-                                       ep->dentry.file.create_time_cs);
+                                       es->de_file->create_tz,
+                                       es->de_file->create_time,
+                                       es->de_file->create_date,
+                                       es->de_file->create_time_cs);
                        exfat_get_entry_time(sbi, &dir_entry->mtime,
-                                       ep->dentry.file.modify_tz,
-                                       ep->dentry.file.modify_time,
-                                       ep->dentry.file.modify_date,
-                                       ep->dentry.file.modify_time_cs);
+                                       es->de_file->modify_tz,
+                                       es->de_file->modify_time,
+                                       es->de_file->modify_date,
+                                       es->de_file->modify_time_cs);
                        exfat_get_entry_time(sbi, &dir_entry->atime,
-                                       ep->dentry.file.access_tz,
-                                       ep->dentry.file.access_time,
-                                       ep->dentry.file.access_date,
+                                       es->de_file->access_tz,
+                                       es->de_file->access_time,
+                                       es->de_file->access_date,
                                        0);
 
-                       *uni_name.name = 0x0;
-                       exfat_get_uniname_from_ext_entry(sb, &dir, dentry,
-                               uni_name.name);
+                       dir_entry->size = 
le64_to_cpu(es->de_stream->valid_size);
+
+                       err = exfat_get_uniname_from_name_entries(es, 
&uni_name);
+                       exfat_free_dentry_set(es, false);
+                       if (err)
+                               return err;
+
                        exfat_utf16_to_nls(sb, &uni_name,
                                dir_entry->namebuf.lfn,
                                dir_entry->namebuf.lfnbuf_len);
-                       brelse(bh);
-
-                       ep = exfat_get_dentry(sb, &clu, i + 1, &bh, NULL);
-                       if (!ep)
-                               return -EIO;
-                       dir_entry->size =
-                               le64_to_cpu(ep->dentry.stream.valid_size);
-                       brelse(bh);
 
                        ei->hint_bmap.off = dentry >> dentries_per_clu_bits;
                        ei->hint_bmap.clu = clu.dir;
-- 
2.25.1

[PATCH v2 1/2] exfat: add NameLength check when extracting name

Reply via email to