Hi,
My research group is working on a tool that automatically finds bugs
in FS mounting code by mount a "symbolic" disk. Our approach
carefully (automatically) looks at the checks the FS does on the disk
and sees if certain checks that prevent potential errors are missing.
We have found two Null pointer dereference bugs caused by the
following disks. Both disks are only 64k long but the crashes happen
nonetheless. I have only given the actual bugs a cursory look but
they seem pretty complicated.
Bug 1: jfs_metapage.c:
http://keeda.stanford.edu/jfs_mount.bug.disk
Bug 2: jfs_mount.c:
http://keeda.stanford.edu/jfs_metapage.bug.disk
I hope these bug reports help. We are still in the early stages of
using our tool and hope to provide you with more bug reports in the
future.
Regards,
Can Sar
-------------------------------------------------------
SF.Net email is sponsored by:
Tame your development challenges with Apache's Geronimo App Server. Download
it for free - -and be entered to win a 42" plasma tv or your very own
Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php
_______________________________________________
Jfs-discussion mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/jfs-discussion
