[Bug 221987] ZFS does not validate the sharenfs parameter
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Fri Sep 1 22:43:03 UTC 2017
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=221987
Bug ID: 221987
Summary: ZFS does not validate the sharenfs parameter
Product: Base System
Version: CURRENT
Hardware: Any
OS: Any
Status: New
Severity: Affects Some People
Priority: ---
Component: kern
Assignee: freebsd-bugs at FreeBSD.org
Reporter: asomers at FreeBSD.org
On Illumos, ZFS will validate that the "sharenfs" parameter is valid. It will
refuse to set it to an invalid value. But FreeBSD does not validate it. This
could cause mountd to crash or misbehave.
Note that this is _not_ a security vulnerability, even in combination with ZFS
delegations, because /etc/zfs/exports may only be updated by root, even when
the sharenfs property is delegated.
$ sudo zpool create foo da0
$ sudo zfs set sharenfs=$'XXX\n/usr/home' foo
$ sudo cat /etc/zfs/exports
# !!! DO NOT EDIT THIS FILE MANUALLY !!!
/foo XXX
/usr/home
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-bugs
mailing list