https://jira.whamcloud.com This file is an XML representation of an issue en-us 9.4.14 940014 05-12-2023 https://jira.whamcloud.com/browse/LU-8171 Lustre <p>With the stock 3.10 kernel, hai_dump_data_field will do a stack buffer overrun when cat'ing /proc/fs/lustre/.../hsm/actions if an action has some data in it. </p> <p>On that kernel, these 2 snprintf:</p> <div class="preformatted panel" style="border-width: 1px;"><div class="preformattedContent panelContent"> <pre> cnt = snprintf(buffer, 1, "%.2X", 54); cnt = snprintf(buffer, 2, "%.2X", 54); </pre> </div></div> <p>will return 2 instead of 0 and 1 respectively. The strings generated are correct, with 0 and 1 character followed by NUL, respectively.</p> <p>The coordinator code calls hai_dump_data_field with 12 bytes in the buffer. The last byte is printed incompletely to make room for the terminating NUL. However since that version of the kernel returns that 2 characters were written, when hai_dump_data_field writes the final NUL, it does it outside the reserved buffer, in the 13th byte. This stack buffer overrun hangs my VM.</p> <p>This doesn't happen on CentOS 6.</p> LU-8171

stack overrun in hai_dump_data_field

Bug Minor Resolved Fixed John Hammond Frank Zago cea Thu, 19 May 2016 21:16:17 +0000 Wed, 15 Mar 2017 09:39:59 +0000 Tue, 14 Jun 2016 23:04:22 +0000 Lustre 2.9.0 0 4 <p>Actually that snprintf behaviour is normal. It's a bug in Lustre.</p> <p>Frank Zago (fzago@cray.com) uploaded a new patch: <a href="http://review.whamcloud.com/20338" class="external-link" target="_blank" rel="nofollow noopener">http://review.whamcloud.com/20338</a><br/> Subject: <a href="https://jira.whamcloud.com/browse/LU-8171" title="stack overrun in hai_dump_data_field" class="issue-link" data-issue-key="LU-8171"><del>LU-8171</del></a> hsm: stack overrun in hai_dump_data_field<br/> Project: fs/lustre-release<br/> Branch: master<br/> Current Patch Set: 1<br/> Commit: 54e077102fbb5ec4fb7d1a86c89b24db2e31a6b8</p> <p>Hi John,</p> <p>Could you please advise here and have a look at the patch?</p> <p>Thanks.<br/> Joe</p> <p>Oleg Drokin (oleg.drokin@intel.com) merged in patch <a href="http://review.whamcloud.com/20338/" class="external-link" target="_blank" rel="nofollow noopener">http://review.whamcloud.com/20338/</a><br/> Subject: <a href="https://jira.whamcloud.com/browse/LU-8171" title="stack overrun in hai_dump_data_field" class="issue-link" data-issue-key="LU-8171"><del>LU-8171</del></a> hsm: stack overrun in hai_dump_data_field<br/> Project: fs/lustre-release<br/> Branch: master<br/> Current Patch Set: <br/> Commit: b631a91e7e70ff609268def24e51b5bb089a5545</p> <p>patch has landed to master for 2.9</p> <p>Backport to b2_7_fe <a href="http://review.whamcloud.com/#/c/21478/" class="external-link" target="_blank" rel="nofollow noopener">http://review.whamcloud.com/#/c/21478/</a></p> Duplicate Related Development Rank 1|hzyc9j: Rank (Obsolete) 9223372036854775807 Severity