Uploaded image for project: 'Core ReactOS'
  1. Core ReactOS
  2. CORE-14913

FastFAT assert triggerable from umode

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Untriaged
    • Priority: Major
    • Resolution: Unresolved
    • Fix Version/s: None
    • Component/s: Filesystems
    • Labels:

      Description

      An ASSERT in FastFAT can be easily triggered from user mode, just by sending the appropriate FSCTL on the appropriate device.
      Attached a test program.

      OffsetToCluster is called with FirstCluster = 0!
       
      *** Assertion failed: FALSE
      ***   Source File: /home/schweitzer/ReactOS/trunk/reactos.git/drivers/filesystems/fastfat/rw.c, line 79
       
      Break repeatedly, break Once, Ignore, terminate Process or terminate Thread (boipt)? 
      kdb:> o
      Execute '.cxr F6B986B4' to dump context
       
      Entered debugger on embedded INT3 at 0x0008:0x8095088e.
      kdb:> bt
      Eip:
      f6b98994 <NTOSKRNL.EXE:15088f (:0 (DbgBreakPoint))>
      Frames:
      f6b989c4 <fastfat.sys:1260a (drivers/filesystems/fastfat/rw.c:79 (OffsetToCluster))>
      f6b98ac4 <fastfat.sys:10e23 (drivers/filesystems/fastfat/fsctl.c:982 (VfatFileSystemControl))>
      f6b98af4 <fastfat.sys:11a22 (drivers/filesystems/fastfat/misc.c:137 (VfatDispatchRequest))>
      f6b98b1c <fastfat.sys:120d0 (drivers/filesystems/fastfat/misc.c:248 (VfatBuildRequest))>
      f6b98b44 <NTOSKRNL.EXE:71d55 (ntoskrnl/io/iomgr/irp.c:1286 (IofCallDriver))>
      f6b98b84 <NTOSKRNL.EXE:696e1 (ntoskrnl/io/iomgr/iofunc.c:142 (IopPerformSynchronousRequest))>
      f6b98cb4 <NTOSKRNL.EXE:6a146 (ntoskrnl/io/iomgr/iofunc.c:633 (IopDeviceFsIoControl))>
      f6b98cec <NTOSKRNL.EXE:6af73 (ntoskrnl/io/iomgr/iofunc.c:1359 (NtFsControlFile))>
      f6b98d5c <NTOSKRNL.EXE:134eae (ntoskrnl/include/internal/i386/ke.h:712 (KiSystemServiceHandler))>
      f6b98d64 <NTOSKRNL.EXE:3da9 (:0 (KiFastCallEntry))>
      0022fe48 <ntdll.dll:eda5>
      0022feb8 <retrievalpointers.exe:163c>
      0022ffa0 <retrievalpointers.exe:13f5>
      0022fff0 <KERNEL32.dll:10c42>
      00000000 <00000000>

        Attachments

          Activity

            People

            • Assignee:
              bug zilla Bug Zilla
              Reporter:
              Heis Spiter Pierre Schweitzer
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated: