Diffusion FreeBSD src repository 441222585968

nfscl: Fix use after free for forced dismount
441222585968
Actions

Tags

None

Referenced Files

None

Subscribers

None

Description

nfscl: Fix use after free for forced dismount

When a forced dismount is done and delegations are being
issued by the server (disabled by default for FreeBSD
servers), the delegation structure is free'd before the
loop calling vflush(). This could result in a use after
free of the delegation structure.

This patch changes the code so that the delegation
structures are not free'd until after the vflush()
loop for forced dismounts.

Found during a recent IETF NFSv4 working group testing event.

MFC after: 2 weeks

Details

Provenance

Authored on Nov 3 2021, 7:15 PM

Parents

rG6afabf00920f: scsi_cd: Improve TOC access validation

Branches

Unknown

Tags

Unknown

Event Timeline

rmacklem committed rG441222585968: nfscl: Fix use after free for forced dismount (authored by rmacklem).Nov 3 2021, 7:15 PM

rmacklem mentioned this in rG4a03ae8d17dd: nfscl: Fix use after free for forced dismount.Nov 17 2021, 1:24 AM

rmacklem mentioned this in rG04c2ce41e3fc: nfscl: Fix use after free for forced dismount.Nov 17 2021, 1:47 AM

Changes (3)

Path

Size

sys/

fs/

nfs/

nfsclient/

rG441222585968

sys/fs/nfs/nfs_var.h

Loading...

sys/fs/nfsclient/nfs_clstate.c

Loading...

sys/fs/nfsclient/nfs_clvfsops.c

Loading...