[LU-3282] copy_and_ioctl() uses wrong pointer in call to obd_iocontrol() Created: 06/May/13 Updated: 21/Oct/13 Resolved: 01/Aug/13 |
|
| Status: | Resolved |
| Project: | Lustre |
| Component/s: | None |
| Affects Version/s: | Lustre 2.4.0 |
| Fix Version/s: | Lustre 2.5.0 |
| Type: | Bug | Priority: | Major |
| Reporter: | John Hammond | Assignee: | John Hammond |
| Resolution: | Fixed | Votes: | 0 |
| Labels: | clang, llite, sparse | ||
| Severity: | 3 |
| Rank (Obsolete): | 8121 |
| Description |
|
In copy_and_ioctl() the userspace pointer is diligently copied in to kernel space but then passed to obd_iocontrol() as the karg pointer. This creates a minor DoS. |
| Comments |
| Comment by John Hammond [ 06/May/13 ] |
|
Please see http://review.whamcloud.com/6274. |
| Comment by John Hammond [ 01/Aug/13 ] |
|
Patch landed to master. |
| Comment by Jodi Levi (Inactive) [ 21/Oct/13 ] |
|
Patch landed under |