[pve-devel] [PATCH] nexenta: volume_size_info: parse result to avoid tainted value

Dietmar Maurer dietmar at proxmox.com
Mon May 27 11:32:26 CEST 2013


> -    return nexenta_get_zvol_size($scfg, "$scfg->{pool}/$name"),
> +    my $ret = nexenta_get_zvol_size($scfg, "$scfg->{pool}/$name");
> +    $ret =~ m/^(\d+)$/ or die "size is not valid";

Can we do those check inside nexenta_get_zvol_size()?



More information about the pve-devel mailing list