ZFS does not validate the sharenfs parameter #16971

asomers · 2025-01-21T19:21:14Z

System information

Type	Version/Name
Distribution Name	FreeBSD
Distribution Version	FreeBSD
Kernel Version	15.0-CURRENT
Architecture	amd64
OpenZFS Version	zfs-2.3.99-114-FreeBSD_ge0039c705 zfs-kmod-2.3.99-114-FreeBSD_ge0039c705

Describe the problem you're observing

On Illumos, ZFS will validate that the "sharenfs" parameter is valid. It will refuse to set it to an invalid value. But FreeBSD does not validate it. This could cause mountd to crash or misbehave. I haven't checked Linux.

Note that this is not a security vulnerability, even in combination with ZFS delegations, because /etc/zfs/exports may only be updated by root, even when the sharenfs property is delegated

Describe how to reproduce the problem

Using bash:

$ sudo zpool create foo da0
$ sudo zfs set sharenfs=$'XXX\n/usr/home' foo
$ sudo cat /etc/zfs/exports 
# !!! DO NOT EDIT THIS FILE MANUALLY !!!

/foo    XXX
/usr/home

Downstream bug reports

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=221987

The text was updated successfully, but these errors were encountered:

asomers added the Type: Defect Incorrect behavior (e.g. crash, hang) label Jan 21, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

ZFS does not validate the sharenfs parameter #16971

ZFS does not validate the sharenfs parameter #16971

asomers commented Jan 21, 2025

ZFS does not validate the sharenfs parameter #16971

ZFS does not validate the sharenfs parameter #16971

Comments

asomers commented Jan 21, 2025

System information

Describe the problem you're observing

Describe how to reproduce the problem

Downstream bug reports