Diffusion FreeBSD src repository 8bde6d15d1fa

nfsclient: Copy only initialized fields in nfs_getattr()
8bde6d15d1fa
Actions

Tags

None

Referenced Files

None

Subscribers

None

Description

nfsclient: Copy only initialized fields in nfs_getattr()

When loading attributes from the cache, the NFS client is careful to
copy only the fields that it initialized. After fetching attributes
from the server, however, it would copy the entire vattr structure
initialized from the RPC response, so uninitialized stack bytes would
end up being copied to userspace. In particular, va_birthtime (v2 and
v3) and va_gen (v3) had this problem.

Use a common subroutine to copy fields provided by the NFS client, and
ensure that we provide a dummy va_gen for the v3 case.

Reviewed by: rmacklem
Reported by: KMSAN
MFC after: 1 week
Sponsored by: The FreeBSD Foundation
Differential Revision: https://reviews.freebsd.org/D30090

Details

Provenance

Authored on May 4 2021, 12:53 PM

Reviewer

Differential Revision

D30090: nfsclient: Copy only initialized fields in nfs_getattr()

Parents

rGee384b229dc6: linux(4): make linkat(2) handle AT_EMPTY_PATH

Branches

Unknown

Tags

Unknown

Event Timeline

markj committed rG8bde6d15d1fa: nfsclient: Copy only initialized fields in nfs_getattr() (authored by markj).May 4 2021, 12:53 PM

markj added an edge: D30090: nfsclient: Copy only initialized fields in nfs_getattr().May 4 2021, 12:57 PM

markj mentioned this in rG1db8c60c4d0f: nfsclient: Copy only initialized fields in nfs_getattr().May 11 2021, 12:28 AM

markj mentioned this in rG2bad237ec94f: nfsclient: Copy only initialized fields in nfs_getattr().

Changes (4)

Path

Size

sys/

fs/

nfs/

nfsclient/

nfs_clcomsubs.c

rG8bde6d15d1fa

sys/fs/nfs/nfsport.h

Loading...

sys/fs/nfsclient/nfs_clcomsubs.c

Loading...

sys/fs/nfsclient/nfs_clport.c

Loading...

sys/fs/nfsclient/nfs_clvnops.c

Loading...