Re: [PATCH v4 3/3] virtiofsd: prevent opening of special files (CVE-2020

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH v4 3/3] virtiofsd: prevent opening of special files (CVE-2020

From:	Stefan Hajnoczi
Subject:	Re: [PATCH v4 3/3] virtiofsd: prevent opening of special files (CVE-2020-35517)
Date:	Wed, 3 Feb 2021 17:06:32 +0000

On Wed, Feb 03, 2021 at 04:57:59PM +0100, Greg Kurz wrote:
> On Wed,  3 Feb 2021 11:37:19 +0000
> Stefan Hajnoczi <stefanha@redhat.com> wrote:
> >  static int lo_do_open(struct lo_data *lo, struct lo_inode *inode,
> > -                      struct fuse_file_info *fi)
> > +                      int existing_fd, struct fuse_file_info *fi)
> >  {
> > -    char buf[64];
> >      ssize_t fh;
> > -    int fd;
> > +    int fd = existing_fd;
> >  
> >      update_open_flags(lo->writeback, lo->allow_direct_io, fi);
> >  
> > -    sprintf(buf, "%i", inode->fd);
> > -    fd = openat(lo->proc_self_fd, buf, fi->flags & ~O_NOFOLLOW);
> > -    if (fd == -1) {
> > -        return -errno;
> > +    if (fd < 0) {
> > +        fd = lo_inode_open(lo, inode, fi->flags);
> > +        if (fd == -1) {
> > +            return -errno;
> > +        }
> 
> lo_inode_open() returns a negative errno already so
> this should be converted to:
> 
>         if (fd < 0) {
>             return fd;
>         }
> 
> Apart from that LGTM.

Thanks, will fix.

Stefan

signature.asc
Description: PGP signature

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [PATCH v4 2/3] virtiofsd: optionally return inode pointer from lo_do_lookup(), (continued)
- [PATCH v4 3/3] virtiofsd: prevent opening of special files (CVE-2020-35517), Stefan Hajnoczi, 2021/02/03
  - Re: [PATCH v4 3/3] virtiofsd: prevent opening of special files (CVE-2020-35517), Vivek Goyal, 2021/02/03
    - Re: [PATCH v4 3/3] virtiofsd: prevent opening of special files (CVE-2020-35517), Greg Kurz, 2021/02/03
    - Re: [PATCH v4 3/3] virtiofsd: prevent opening of special files (CVE-2020-35517), Vivek Goyal, 2021/02/03
    - Re: [PATCH v4 3/3] virtiofsd: prevent opening of special files (CVE-2020-35517), Stefan Hajnoczi, 2021/02/03
    - Re: [PATCH v4 3/3] virtiofsd: prevent opening of special files (CVE-2020-35517), Dr. David Alan Gilbert, 2021/02/03
    - Re: [PATCH v4 3/3] virtiofsd: prevent opening of special files (CVE-2020-35517), Vivek Goyal, 2021/02/03
    - Re: [PATCH v4 3/3] virtiofsd: prevent opening of special files (CVE-2020-35517), Stefan Hajnoczi, 2021/02/04
  - Re: [PATCH v4 3/3] virtiofsd: prevent opening of special files (CVE-2020-35517), Greg Kurz, 2021/02/03
    - Re: [PATCH v4 3/3] virtiofsd: prevent opening of special files (CVE-2020-35517), Stefan Hajnoczi <=
- Re: [PATCH v4 0/3] virtiofsd: prevent opening of special files (CVE-2020-35517), no-reply, 2021/02/03

Prev by Date: Re: [PATCH v4 3/3] virtiofsd: prevent opening of special files (CVE-2020-35517)
Next by Date: Re: [PATCH v15 00/23] i386 cleanup PART 2
Previous by thread: Re: [PATCH v4 3/3] virtiofsd: prevent opening of special files (CVE-2020-35517)
Next by thread: Re: [PATCH v4 0/3] virtiofsd: prevent opening of special files (CVE-2020-35517)
Index(es):
- Date
- Thread