nfs_nfsdserv.c: Add sanity check for layout commit cnt
Needs ReviewPublic
Actions

Authored by rmacklem on Sat, Oct 25, 8:17 PM.

Tags

None

Referenced Files

	F133584001: D53354.id165030.diff
	Sun, Oct 26, 8:02 PM

	F133583987: D53354.id.diff
	Sun, Oct 26, 8:02 PM

	F133548700: D53354.diff
	Sun, Oct 26, 2:17 PM

	F133515463: D53354.id.diff
	Sun, Oct 26, 8:17 AM

	F133515396: D53354.diff
	Sun, Oct 26, 8:17 AM

	F133495169: D53354.diff
	Sun, Oct 26, 5:15 AM

	F133493277: D53354.id.diff
	Sun, Oct 26, 4:58 AM

	F133493155: D53354.id165030.diff
	Sun, Oct 26, 4:56 AM

View All 9 Files

Subscribers

imp

Details

Reviewers

emaste
markj

Summary

If a client were to send a LayoutCommit (seldom
used and only for a pNFS server) with a bogus
cnt, there could be problems with a malloc() call
that uses it.

This patch adds a sanity check for the cnt. Note
that RFC8881 does not specify any upper bound
on the cnt.

Test Plan

Not tested. To do so would require a pNFS server
configuration and a broken client.

Diff Detail

Repository

rG FreeBSD src repository

Lint

Lint Skipped

Unit

Tests Skipped

Event Timeline

rmacklem created this revision.Sat, Oct 25, 8:17 PM

Herald added a subscriber: imp. · View Herald TranscriptSat, Oct 25, 8:17 PM

rmacklem requested review of this revision.Sat, Oct 25, 8:17 PM

Revision Contents
Changeset List

Path

Size

sys/

fs/

nfsserver/

	nfs_nfsdserv.c
	nfs_nfsdserv.c.shit0

5 lines

Diff 165030

View Options

sys/fs/nfsserver/nfs_nfsdserv.c

nfs_nfsdserv.c: Add sanity check for layout commit cntNeeds ReviewPublicActions