| Summary: | Buffer overflow in nfs3_create_exclusive. | ||
|---|---|---|---|
| Product: | [Community] GlusterFS | Reporter: | Gaurav <ggangalw> |
| Component: | nfs | Assignee: | Gaurav <ggangalw> |
| Status: | CLOSED CURRENTRELEASE | QA Contact: | |
| Severity: | medium | Docs Contact: | |
| Priority: | medium | ||
| Version: | 3.1.3 | CC: | gluster-bugs, saurabh |
| Target Milestone: | --- | ||
| Target Release: | --- | ||
| Hardware: | x86_64 | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | Type: | --- | |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
|
Description
Anand Avati
2011-06-01 04:29:49 UTC
PATCH: http://patches.gluster.com/patch/7346 in release-3.1 (NFS : Handle buffer overflow in nfs3_create_exclusive.) PATCH: http://patches.gluster.com/patch/7345 in release-3.2 (NFS : Handle buffer overflow in nfs3_create_exclusive.) cs->stbuf.ia_atime = (cs->cookieverf & 0xFFFFFFFF00000000); cs->stbuf.ia_mtime = (cs->cookieverf & 0x00000000FFFFFFFF); ia_atime aand ia_mtime are 32 bit variables. Hey Gaurav, can you suggest what are changes that went to fix this bug? Also, some test plan. For this test, I tried to run posix and iozone, though the issue is related to memory and hard to reproduce, but still tried to verify using Iozone, and it passed. The test was over nfs mount on a 3.2.1qa2 build. |