Bug 764704 (GLUSTER-2972) - Buffer overflow in nfs3_create_exclusive.
Summary: Buffer overflow in nfs3_create_exclusive.
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: GLUSTER-2972
Product: GlusterFS
Classification: Community
Component: nfs
Version: 3.1.3
Hardware: x86_64
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Gaurav
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2011-06-01 04:35 UTC by Gaurav
Modified: 2011-06-03 06:47 UTC (History)
2 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description Anand Avati 2011-06-01 04:29:49 UTC 
PATCH: http://patches.gluster.com/patch/7344 in master (NFS : Handle buffer overflow in nfs3_create_exclusive.)
Comment 1 Anand Avati 2011-06-01 04:29:54 UTC 
PATCH: http://patches.gluster.com/patch/7346 in release-3.1 (NFS : Handle buffer overflow in nfs3_create_exclusive.)
Comment 2 Anand Avati 2011-06-01 04:30:00 UTC 
PATCH: http://patches.gluster.com/patch/7345 in release-3.2 (NFS : Handle buffer overflow in nfs3_create_exclusive.)
Comment 3 Gaurav 2011-06-01 04:35:53 UTC 
cs->stbuf.ia_atime = (cs->cookieverf & 0xFFFFFFFF00000000);
cs->stbuf.ia_mtime = (cs->cookieverf & 0x00000000FFFFFFFF);

ia_atime aand ia_mtime are 32 bit variables.
Comment 4 Saurabh 2011-06-01 09:54:14 UTC 
Hey Gaurav,

  can you suggest what are changes that went to fix this bug? Also, some test plan.
Comment 5 Saurabh 2011-06-03 03:47:10 UTC 
For this test, I tried to run posix and iozone, though the issue is related to memory and hard to reproduce, but still tried to verify using Iozone, and it passed. The test was over nfs mount on a 3.2.1qa2 build.
Note You need to log in before you can comment on or make changes to this bug.