linux/fs/nfsd
J. Bruce Fields b663c6fd98 nfsd: fix oops on access from high-numbered ports
This bug was always here, but before my commit 6fa02839bf
("recheck for secure ports in fh_verify"), it could only be triggered by
failure of a kmalloc().  After that commit it could be triggered by a
client making a request from a non-reserved port for access to an export
marked "secure".  (Exports are "secure" by default.)

The result is a struct svc_export with a reference count one too low,
resulting in likely oopses next time the export is accessed.

The reference counting here is not straightforward; a later patch will
clean up fh_verify().

Thanks to Lukas Hejtmanek for the bug report and followup.

Signed-off-by: J. Bruce Fields <bfields@citi.umich.edu>
Cc: Lukas Hejtmanek <xhejtman@ics.muni.cz>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
2008-03-14 16:49:15 -07:00
..
auth.c Add 64-bit capability support to the kernel 2008-02-05 09:44:20 -08:00
auth.h
export.c d_path: Make d_path() use a struct path 2008-02-14 21:17:09 -08:00
lockd.c
Makefile
nfs2acl.c
nfs3acl.c
nfs3proc.c Use struct path in struct svc_export 2008-02-14 21:17:08 -08:00
nfs3xdr.c Use struct path in struct svc_export 2008-02-14 21:17:08 -08:00
nfs4acl.c
nfs4callback.c
nfs4idmap.c
nfs4proc.c
nfs4recover.c Introduce path_put() 2008-02-14 21:13:33 -08:00
nfs4state.c Introduce path_put() 2008-02-14 21:13:33 -08:00
nfs4xdr.c Use struct path in struct svc_export 2008-02-14 21:17:08 -08:00
nfscache.c
nfsctl.c nfsd: more careful input validation in nfsctl write methods 2008-02-01 16:42:15 -05:00
nfsfh.c nfsd: fix oops on access from high-numbered ports 2008-03-14 16:49:15 -07:00
nfsproc.c Use struct path in struct svc_export 2008-02-14 21:17:08 -08:00
nfssvc.c
nfsxdr.c Use struct path in struct svc_export 2008-02-14 21:17:08 -08:00
stats.c
vfs.c Use struct path in struct svc_export 2008-02-14 21:17:08 -08:00