HomeFreeBSD
Diffusion FreeBSD src repository d1d19c785497

OpenZFS 6876 - Stack corruption after importing a pool with a too-long name
d1d19c785497
Actions

Description

OpenZFS 6876 - Stack corruption after importing a pool with a too-long name

Reviewed by: Prakash Surya <prakash.surya@delphix.com>
Reviewed by: Dan Kimmel <dan.kimmel@delphix.com>
Reviewed by: George Wilson <george.wilson@delphix.com>
Reviewed by: Yuri Pankov <yuri.pankov@nexenta.com>
Ported-by: Brian Behlendorf <behlendorf1@llnl.gov>

Calling dsl_dataset_name on a dataset with a 256 byte buffer is asking
for trouble. We should check every dataset on import, using a 1024 byte
buffer and checking each time to see if the dataset's new name is longer
than 256 bytes.

OpenZFS-issue: https://www.illumos.org/issues/6876
OpenZFS-commit: https://github.com/openzfs/openzfs/commit/ca8674e

Details

Provenance
pcd_delphix.comAuthored on Jun 15 2016, 9:51 PM
Brian Behlendorf <behlendorf1@llnl.gov>Committed on Jun 28 2016, 8:47 PM
Parents
rGeca7b76001a7: OpenZFS 6314 - buffer overflow in dsl_dataset_name
Branches
Unknown
Tags
Unknown

Changes (3)

PathSize
lib/
libzfs/
module/
zfs/
tests/
zfs-tests/
tests/
functional/
cli_root/
zpool_import/

rGd1d19c785497

View Options

lib/libzfs/libzfs_pool.c

Loading...
View Options

module/zfs/spa.c

Loading...
View Options

tests/zfs-tests/tests/functional/cli_root/zpool_import/zpool_import_rename_001_pos.ksh

Loading...