[PATCH 1/4] 9p: acl: fix uninitialized iattr access

From: Dominique Martinet
Date: Fri Sep 07 2018 - 12:51:16 EST

Next message: Dominique Martinet: "[PATCH 2/4] 9p/rdma: remove useless check in cm_event_handler"
Previous message: Dominique Martinet: "[PATCH 0/4] 9p coverity fixes"
In reply to: Dominique Martinet: "[PATCH 0/4] 9p coverity fixes"
Next in thread: Dominique Martinet: "[PATCH 2/4] 9p/rdma: remove useless check in cm_event_handler"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Dominique Martinet <dominique.martinet@xxxxxx>

iattr is passed to v9fs_vfs_setattr_dotl which does send various
values from iattr over the wire, even if it tells the server to
only look at iattr.ia_valid fields this could leak some stack data.

Addresses-Coverity-ID: 1195601 ("Uninitalized scalar variable")
Signed-off-by: Dominique Martinet <dominique.martinet@xxxxxx>
---
fs/9p/acl.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/fs/9p/acl.c b/fs/9p/acl.c
index 082d227fa56b..6261719f6f2a 100644
--- a/fs/9p/acl.c
+++ b/fs/9p/acl.c
@@ -276,7 +276,7 @@ static int v9fs_xattr_set_acl(const struct xattr_handler *handler,
switch (handler->flags) {
case ACL_TYPE_ACCESS:
if (acl) {
- struct iattr iattr;
+ struct iattr iattr = { 0 };
struct posix_acl *old_acl = acl;

retval = posix_acl_update_mode(inode, &iattr.ia_mode, &acl);
--
2.17.1

Next message: Dominique Martinet: "[PATCH 2/4] 9p/rdma: remove useless check in cm_event_handler"
Previous message: Dominique Martinet: "[PATCH 0/4] 9p coverity fixes"
In reply to: Dominique Martinet: "[PATCH 0/4] 9p coverity fixes"
Next in thread: Dominique Martinet: "[PATCH 2/4] 9p/rdma: remove useless check in cm_event_handler"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]