Quick fix for stack overflow when there are more than about 25 slices.
Using recursion to traverse the recursive data structure for extended partitions was never good, but when slice support was implemented in 1995, the recursion worked for the default maximum number of slices (32), and standard fdisk utilities didn't support creating more than the default number. Even then, corrupt extended partitions could cause endless recursion, because we attempt to check all slices, even ones which we don't turn into devices. The recursion has succumbed to creeping features. The stack requirements for each level had grown to 204 bytes on i386's. Most of the growth was caused by adding a 64-byte copy of the DOSpartition table to each frame. The kernel stack size has shrunk to about 5K on i386's. Most of the shrinkage was caused by the growth of `struct sigacts' by 2388 bytes to support 128 signals. Linux fdisk (a 1997 version at least) can now create 60 slices (4 standard ones, 56 for logical drives within extended partitions, and it seems to be leaving room to map the 4 BSD partitions on my test drive), and Linux (2.2.29 and 2.3.35 at least) now reports all these slices at boot time. The fix limits the recursion to 16 levels (4 + 16 slices) and recovers 32 bytes per level caused by gcc pessimizing for space. Switching to a static buffer doesn't cause any problems due to recursion, since the buffer is not passed down. Using a static buffer is wrong in general because it requires the giant lock to protect it. However, this problem is small compared with using a static buffer for dsname(). We sometimes neglect to copy the result of dsname() before sleeping. Also fixed slice names when we find more than MAX_SLICES (32) slices. The number of the last slice found was not passed passed recursively. The limit on the recursion now prevents finding more than 32 slices with a standard extended partition data structure anyway.
This commit is contained in:
parent
05c6d03276
commit
458336647a
@ -71,7 +71,8 @@ static int check_part __P((char *sname, struct dos_partition *dp,
|
||||
static void mbr_extended __P((dev_t dev, struct disklabel *lp,
|
||||
struct diskslices *ssp, u_long ext_offset,
|
||||
u_long ext_size, u_long base_ext_offset,
|
||||
int nsectors, int ntracks, u_long mbr_offset));
|
||||
int nsectors, int ntracks, u_long mbr_offset,
|
||||
int level));
|
||||
|
||||
static int
|
||||
check_part(sname, dp, offset, nsectors, ntracks, mbr_offset )
|
||||
@ -340,7 +341,15 @@ dsinit(dev, lp, sspp)
|
||||
sp->ds_type == DOSPTYP_EXTENDEDX)
|
||||
mbr_extended(bp->b_dev, lp, ssp,
|
||||
sp->ds_offset, sp->ds_size, sp->ds_offset,
|
||||
max_nsectors, max_ntracks, mbr_offset);
|
||||
max_nsectors, max_ntracks, mbr_offset, 1);
|
||||
|
||||
/*
|
||||
* mbr_extended() abuses ssp->dss_nslices for the number of slices
|
||||
* that would be found if there were no limit on the number of slices
|
||||
* in *ssp. Cut it back now.
|
||||
*/
|
||||
if (ssp->dss_nslices > MAX_SLICES)
|
||||
ssp->dss_nslices = MAX_SLICES;
|
||||
|
||||
done:
|
||||
bp->b_flags |= B_INVAL | B_AGE;
|
||||
@ -352,7 +361,7 @@ dsinit(dev, lp, sspp)
|
||||
|
||||
void
|
||||
mbr_extended(dev, lp, ssp, ext_offset, ext_size, base_ext_offset, nsectors,
|
||||
ntracks, mbr_offset)
|
||||
ntracks, mbr_offset, level)
|
||||
dev_t dev;
|
||||
struct disklabel *lp;
|
||||
struct diskslices *ssp;
|
||||
@ -362,6 +371,7 @@ mbr_extended(dev, lp, ssp, ext_offset, ext_size, base_ext_offset, nsectors,
|
||||
int nsectors;
|
||||
int ntracks;
|
||||
u_long mbr_offset;
|
||||
int level;
|
||||
{
|
||||
struct buf *bp;
|
||||
u_char *cp;
|
||||
@ -375,6 +385,13 @@ mbr_extended(dev, lp, ssp, ext_offset, ext_size, base_ext_offset, nsectors,
|
||||
char *sname;
|
||||
struct diskslice *sp;
|
||||
|
||||
if (level >= 16) {
|
||||
printf(
|
||||
"%s: excessive recursion in search for slices; aborting search\n",
|
||||
devtoname(dev));
|
||||
return;
|
||||
}
|
||||
|
||||
/* Read extended boot record. */
|
||||
bp = geteblk((int)lp->d_secsize);
|
||||
bp->b_dev = dev;
|
||||
@ -403,16 +420,16 @@ mbr_extended(dev, lp, ssp, ext_offset, ext_size, base_ext_offset, nsectors,
|
||||
/* Make a copy of the partition table to avoid alignment problems. */
|
||||
memcpy(&dpcopy[0], cp + DOSPARTOFF, sizeof(dpcopy));
|
||||
|
||||
for (dospart = 0, dp = &dpcopy[0], slice = ssp->dss_nslices,
|
||||
sp = &ssp->dss_slices[slice];
|
||||
dospart < NDOSPART; dospart++, dp++) {
|
||||
slice = ssp->dss_nslices;
|
||||
for (dospart = 0, dp = &dpcopy[0]; dospart < NDOSPART;
|
||||
dospart++, dp++) {
|
||||
ext_sizes[dospart] = 0;
|
||||
if (dp->dp_scyl == 0 && dp->dp_shd == 0 && dp->dp_ssect == 0
|
||||
&& dp->dp_start == 0 && dp->dp_size == 0)
|
||||
continue;
|
||||
if (dp->dp_typ == DOSPTYP_EXTENDED ||
|
||||
dp->dp_typ == DOSPTYP_EXTENDEDX) {
|
||||
char buf[32];
|
||||
static char buf[32];
|
||||
|
||||
sname = dsname(dev, dkunit(dev), WHOLE_DISK_SLICE,
|
||||
RAW_PART, partname);
|
||||
@ -433,6 +450,7 @@ mbr_extended(dev, lp, ssp, ext_offset, ext_size, base_ext_offset, nsectors,
|
||||
slice++;
|
||||
continue;
|
||||
}
|
||||
sp = &ssp->dss_slices[slice];
|
||||
sp->ds_offset = ext_offset + dp->dp_start;
|
||||
sp->ds_size = dp->dp_size;
|
||||
sp->ds_type = dp->dp_typ;
|
||||
@ -441,18 +459,17 @@ mbr_extended(dev, lp, ssp, ext_offset, ext_size, base_ext_offset, nsectors,
|
||||
if (sp->ds_type == DOSPTYP_386BSD)
|
||||
sp->ds_type = 0x94;
|
||||
#endif
|
||||
ssp->dss_nslices++;
|
||||
slice++;
|
||||
sp++;
|
||||
}
|
||||
}
|
||||
ssp->dss_nslices = slice;
|
||||
|
||||
/* If we found any more slices, recursively find all the subslices. */
|
||||
for (dospart = 0; dospart < NDOSPART; dospart++)
|
||||
if (ext_sizes[dospart] != 0)
|
||||
mbr_extended(dev, lp, ssp, ext_offsets[dospart],
|
||||
ext_sizes[dospart], base_ext_offset,
|
||||
nsectors, ntracks, mbr_offset);
|
||||
nsectors, ntracks, mbr_offset, ++level);
|
||||
|
||||
done:
|
||||
bp->b_flags |= B_INVAL | B_AGE;
|
||||
|
Loading…
Reference in New Issue
Block a user