Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix bounds check in zio_crypt_do_objset_hmacs #7210

Merged
merged 1 commit into from Feb 22, 2018
Merged

Fix bounds check in zio_crypt_do_objset_hmacs #7210

merged 1 commit into from Feb 22, 2018

Conversation

tcaputi
Copy link
Contributor

@tcaputi tcaputi commented Feb 21, 2018

The current bounds check in zio_crypt_do_objset_hmacs() does not
properly handle the possible sizes of the objset_phys_t and
can therefore read outside the buffer's memory. If that memory
happened to match what the check was actually looking for, the
objset would fail to be owned, complaining that the MAC was
invalid.

Signed-off-by: Tom Caputi tcaputi@datto.com

Motivation and Context

This often broke the zpool_import_errata_003.ksh test.

Types of changes

  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • Performance enhancement (non-breaking change which improves efficiency)
  • Code cleanup (non-breaking change which makes code smaller or more readable)
  • Breaking change (fix or feature that would cause existing functionality to change)
  • Documentation (a change to man pages or other documentation)

Checklist:

  • My code follows the ZFS on Linux code style requirements.
  • I have updated the documentation accordingly.
  • I have read the CONTRIBUTING document.
  • I have added tests to cover my changes.
  • All new and existing tests passed.
  • All commit messages are properly formatted and contain Signed-off-by.
  • Change has been approved by a ZFS on Linux member.

Fix bounds check in zio_crypt_do_objset_hmacs
51ac419 
The current bounds check in zio_crypt_do_objset_hmacs() does not
properly handle the possible sizes of the objset_phys_t and
can therefore read outside the buffer's memory. If that memory
happened to match what the check was actually looking for, the
objset would fail to be owned, complaining that the MAC was
invalid.

Signed-off-by: Tom Caputi <tcaputi@datto.com>
behlendorf
behlendorf approved these changes Feb 22, 2018
View reviewed changes
Copy link
Contributor

@behlendorf behlendorf left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks, that nicely explains the testing failures which were observed. For good measure I've also verified the fix locally.

@tcaputi tcaputi mentioned this pull request Feb 22, 2018
Closed
@codecov
Copy link

codecov bot commented Feb 22, 2018
edited

Codecov Report

Merging #7210 into master will increase coverage by 0.17%.
The diff coverage is 100%.

Impacted file tree graph

@@            Coverage Diff             @@
##           master    #7210      +/-   ##
==========================================
+ Coverage   76.23%    76.4%   +0.17%     
==========================================
  Files         327      327              
  Lines      103833   103835       +2     
==========================================
+ Hits        79156    79335     +179     
+ Misses      24677    24500     -177
Flag Coverage Δ
#kernel 75.82% <100%> (-0.5%) ⬇️
#user 65.89% <40%> (+0.49%) ⬆️

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 09302a4...51ac419. Read the comment docs.

@prometheanfire prometheanfire mentioned this pull request Feb 22, 2018
Closed
@behlendorf behlendorf merged commit f8478fc into openzfs:master Feb 22, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@behlendorf behlendorf behlendorf approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@tcaputi @behlendorf