Whamcloud Community JIRA https://jira.whamcloud.com This file is an XML representation of an issue en-us 9.4.14 940014 05-12-2023 [LU-4161] e2image -I has malloc corruption in write_bitmaps https://jira.whamcloud.com/browse/LU-4161 Lustre <p>For <a href="https://jira.whamcloud.com/browse/LU-3542" title="deleted/unused inodes not actually cleared by e2fsck" class="issue-link" data-issue-key="LU-3542"><del>LU-3542</del></a> I was trying to use e2image to get the sparse image of some OSTs, but was still having issues with the size of the files. I tried moving the sparse image to another machine and expanding it on a loopback device, but got malloc corruption when using -I. I tracked it down to a buffer overflow in write_bitmaps:</p> <div class="code panel" style="border-width: 1px;"><div class="codeContent panelContent"> <pre class="code-java">... retval = io_channel_alloc_buf(fs-&gt;io, 0, &amp;block_buf); <span class="code-keyword">if</span> (retval) <span class="code-keyword">goto</span> errout; memset(block_buf, 0xff, fs-&gt;blocksize); ... </pre> </div></div> <p>Basically, the io-&gt;block_size is 1024, so alloc_buf creates a 1k buffer but then memset writes out 4k. I changed it to:</p> <div class="code panel" style="border-width: 1px;"><div class="codeContent panelContent"> <pre class="code-java"> retval = io_channel_alloc_buf(fs-&gt;io, fs-&gt;blocksize / fs-&gt;io-&gt;block_size, &amp;block_buf); </pre> </div></div> <p>e2image -I still doesn't work for me for some reason, but it doesn't hit the malloc</p> Centos 5 LU-4161 e2image -I has malloc corruption in write_bitmaps Bug Trivial Resolved Fixed Niu Yawei Kit Westneat Mon, 28 Oct 2013 19:42:51 +0000 Mon, 10 Feb 2014 02:35:20 +0000 Mon, 10 Feb 2014 02:35:20 +0000 0 4 <p>I got it working I think, there were corresponding changes that needed to be made to the calls to io_channel_write_blk64. </p> <p>I'll try to get a patch together.</p> <p>That's great Kit!</p> <p>Niu</p> <p>Could you please help out with this one?</p> <p>Thanks</p> <p>Peter</p> <p>I spoke too soon, I still am having issues with -I correctly writing out an fs image.</p> <p>I suspect the first problem is that e2image incorrectly thinks the blocksize is 1024, when it should really be 4096 to match the filesystem image?</p> <p>it looks like ext2fs_rewrite_to_io is resetting the fs-&gt;io to be the IO channel of the new device, but that is still using the default blocksize of 1k. Should ext2fs_rewrite_to_io copy the block size?</p> <p>I can't think of any good reason that the blocksize would not be the same...</p> <p>Ok, I pushed a patch:<br/> <a href="http://review.whamcloud.com/#/c/8095" class="external-link" target="_blank" rel="nofollow noopener">http://review.whamcloud.com/#/c/8095</a></p> <p>I saw in the patch comment that you are using "e2image -I image" to install the image on a new device. I was using "<tt>e2image -Q /dev/XXX image.qcow</tt>" to generate a packed image, and then "e2image -r image.qcow image.raw" to convert it into a raw image for testing. I didn't use the "-I" image, so didn't see any problems.</p> <p>The pathes should be landed in master of e2fsprogs. So, we can close it.</p> Development Rank 1|hzw71j: Rank (Obsolete) 11285 Severity