[Bug Report] NVMe-oF/TCP - Slab OOB Read in `nvmet_ctrl_find_get`

Chaitanya Kulkarni chaitanyak at nvidia.com
Thu Nov 9 00:49:52 PST 2023


On 11/8/2023 8:52 PM, Christoph Hellwig wrote:
> On Wed, Nov 08, 2023 at 10:09:27PM +0000, Chaitanya Kulkarni wrote:
>> I specifically didn't send this patch when I wrote it initially, coz we are
>> modifying connect data and yes it will work just fine functionally but
>> in principal we should not touch connect data after nvmet_copy_from_sgl()
>> call even for the sake of debug prints or string comparison since it's
>> a data that we've received from host and should be in read-only mode.
>>
>> please correct me if connect data should not be treated as read-only...
> 
> Why would it?  It's purely in-memory and any data transfer is copied
> into it.

okay.

-ck




More information about the Linux-nvme mailing list