nfsclient: Copy only initialized fields in nfs_getattr()
ClosedPublic
Actions

Authored by markj on May 3 2021, 1:31 PM.

Details

Reviewers

Commits

rG2bad237ec94f: nfsclient: Copy only initialized fields in nfs_getattr()
rG1db8c60c4d0f: nfsclient: Copy only initialized fields in nfs_getattr()
rG8bde6d15d1fa: nfsclient: Copy only initialized fields in nfs_getattr()

Summary

When loading attributes from the cache, the NFS client is careful to
copy only the fields that it initialized. After fetching attributes
from the server, however, it would copy the entire vattr structure
initialized from the RPC response, so uninitialized stack bytes would
end up being copied to userspace. In particular, va_btime (v2 and v3)
and va_gen (v3) had this problem.

Use a common subroutine to copy fields provided by the NFS client, and
ensure that we provide a dummy va_gen for the v3 case.

Diff Detail

Repository

rG FreeBSD src repository

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

markj created this revision.May 3 2021, 1:31 PM

Herald added a subscriber: imp. · View Herald TranscriptMay 3 2021, 1:31 PM

markj requested review of this revision.May 3 2021, 1:31 PM

Harbormaster completed remote builds in B38980: Diff 88537.May 3 2021, 1:31 PM

Looks fine to me. Until I just looked, I didn't realize
that the NFSv4 client doesn't get birthtime.
I'll add that to my todo list, but this patch looks
fine until then.

This revision is now accepted and ready to land.May 3 2021, 9:15 PM

Closed by commit rG8bde6d15d1fa: nfsclient: Copy only initialized fields in nfs_getattr() (authored by markj). · Explain WhyMay 4 2021, 12:57 PM

This revision was automatically updated to reflect the committed changes.

markj added a commit: rG8bde6d15d1fa: nfsclient: Copy only initialized fields in nfs_getattr().

markj added a commit: rG1db8c60c4d0f: nfsclient: Copy only initialized fields in nfs_getattr().May 11 2021, 12:28 AM

markj added a commit: rG2bad237ec94f: nfsclient: Copy only initialized fields in nfs_getattr().