Actions
Bug #18187
closedrgw:radosgw server abort when accept a CORS request with short origin
% Done:
0%
Source:
other
Tags:
Backport:
jewel, hammer
Regression:
No
Severity:
3 - minor
Reviewed:
Affected Versions:
ceph-qa-suite:
Pull request ID:
Crash signature (v1):
Crash signature (v2):
Description
set public-acl to a rgw object.
set cors rule to the bucket(eg: <AllowedOrigin>*.verylongdomain.com</AllowedOrigin>).
simulating a CORS requests.
$ curl http://test.localhost:8000/app.data -H "Origin:http://s.com" 0> 2016-12-05 03:22:29.548138 7f6add05d700 -1 *** Caught signal (Aborted) ** in thread 7f6add05d700 thread_name:civetweb-worker ceph version 11.0.2-2168-gd2f8fb4 (d2f8fb4a6ba75af7e6da0f5a7f1b49ec998b1631) 1: (()+0x50720a) [0x7f6b147c420a] 2: (()+0xf370) [0x7f6b09a33370] 3: (gsignal()+0x37) [0x7f6b081ca1d7] 4: (abort()+0x148) [0x7f6b081cb8c8] 5: (__gnu_cxx::__verbose_terminate_handler()+0x165) [0x7f6b08ace9d5] 6: (()+0x5e946) [0x7f6b08acc946] 7: (()+0x5e973) [0x7f6b08acc973] 8: (()+0x5eb93) [0x7f6b08accb93] 9: (std::__throw_out_of_range(char const*)+0x77) [0x7f6b08b21a17] 10: (()+0xbd97a) [0x7f6b08b2b97a] 11: (()+0x449c1e) [0x7f6b14706c1e] 12: (RGWCORSRule::is_origin_present(char const*)+0x48) [0x7f6b147073b8] 13: (RGWCORSConfiguration::host_name_rule(char const*)+0x37) [0x7f6b147074e7] 14: (RGWOp::generate_cors_headers(std::string&, std::string&, std::string&, std::string&, unsigned int*)+0xa3) [0x7f6b14593e63] 15: (dump_access_control(req_state*, RGWOp*)+0x61) [0x7f6b14653f91]
Updated by yang liu over 7 years ago
patches have been pushed:
https://github.com/ceph/ceph/pull/12381
Updated by Yehuda Sadeh over 7 years ago
- Status changed from New to Pending Backport
- Backport set to jewel, hammer
Updated by Ken Dreyer over 7 years ago
I've requested that the Red Hat security team assign a CVE to this issue.
Updated by Matt Benjamin over 7 years ago
Updated by Nathan Cutler over 7 years ago
- Copied to Backport #18212: jewel: rgw:radosgw server abort when accept a CORS request with short origin added
Updated by Nathan Cutler over 7 years ago
- Copied to Backport #18213: hammer: rgw:radosgw server abort when accept a CORS request with short origin added
Updated by Ken Dreyer over 7 years ago
Red Hat's security team assigned CVE-2016-9579 to this issue.
Updated by Nathan Cutler about 7 years ago
- Status changed from Pending Backport to Resolved
Actions