Linux Kernel ext4 Inode Quota Initialization Vulnerability in Rename Operation

A vulnerability exists in the Linux kernel's ext4 file system related to the handling of inode quotas during rename operations. When the 'ext4_rename' function is called, it modifies the 'old.inode' timestamp and marks it as dirty. This can trigger a process that expands the inode's extra size and allocates a block. If the inode's quota has not been properly initialized, it can lead to a warning. This issue was identified by Syzbot, which reported that the 'old.inode' quota was not initialized before the rename operation, causing a mismatch in expected and actual attribute sizes.

Impact

Failing to initialize the quota for the 'old.inode' during the rename process can result in a warning being generated, indicating a potential issue with the file system's integrity management.

Reproduction

The vulnerability can be reproduced by performing a rename operation in the ext4 file system without the proper initialization of the inode quota. This can be done by using a test program that simulates the rename process while bypassing the quota initialization step.

Remediation

The vulnerability has been addressed in the Linux kernel by modifying the 'ext4_rename' function to include the necessary quota initialization for the 'old.inode' before any modifications are made. Users should upgrade to the latest stable version of the Linux kernel where this fix has been applied.