Project

General

Profile

Bug #24560

BitmapAllocator::_mark_allocated parameter overflow.

Added by jianpeng ma about 2 years ago. Updated about 2 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
-
Target version:
-
% Done:

100%

Source:
Tags:
bluestore
Backport:
Regression:
No
Severity:
3 - minor
Reviewed:
Affected Versions:
ceph-qa-suite:
Pull request ID:
Crash signature:

Description

In fact, length of 'struct interval_t' and 'struct bluestore_pextent_t'
is uint32_t. But len of AllocatorLevel02::_mark_allocated is uint64_t.
So it may cause data overflow which cause bug.

History

#1 Updated by jianpeng ma about 2 years ago

This bug can 100% reproduce for larger bluestore_block_device which allocator space to bluefs which is larger than 0xFFFFFFF(max value of uint32_t ) .https://github.com/ceph/ceph/pull/22610

#2 Updated by Igor Fedotov about 2 years ago

  • Status changed from New to Resolved

Also available in: Atom PDF