[#LU-11612] Potential null pointer dereference in new_init

[LU-11612] Potential null pointer dereference in new_init_ucred Created: 03/Nov/18 Updated: 20/Jan/22
Status:	Open
Project:	Lustre
Component/s:	None
Affects Version/s:	Lustre 2.12.0, Lustre 2.10.5
Fix Version/s:	None

Type:

Bug

Priority:

Minor

Reporter:

Oleg Drokin

Assignee:

WC Triage

Resolution:

Unresolved

Votes:

Labels:

easy

Severity:

Rank (Obsolete):

9223372036854775807

Description

The code looks like this:

        setgid = ((pud->pud_gid != pud->pud_fsgid) ||
                  (ucred->uc_identity &&
                   (pud->pud_gid != ucred->uc_identity->mi_gid)));
...
        if (setgid && !(perm & CFS_SETGID_PERM)) {
                CDEBUG(D_SEC, "mdt blocked setgid attempt (%u:%u/%u:%u -> %u) "
                       "from %s\n", pud->pud_uid, pud->pud_gid,
                       pud->pud_fsuid, pud->pud_fsgid,
                       ucred->uc_identity->mi_gid, libcfs_nid2str(peernid));
                GOTO(out, rc = -EACCES);
        }

So the posssibility seems to be pretty real though typically D_SEC is not defined so no crash like that by default.

Comments

Comment by Andreas Dilger [ 20/Jan/22 ]

still an issue

Generated at Sat Feb 10 02:45:24 UTC 2024 using Jira 9.4.14#940014-sha1:734e6822bbf0d45eff9af51f82432957f73aa32c.

[LU-11612] Potential null pointer dereference in new_init_ucred Created: 03/Nov/18 Updated: 20/Jan/22