kevin/linux
1
Fork 0
Code
32b007b4e1
linux/fs/nfsd
History
J. Bruce Fields 32b007b4e1 nfsd4: fix bad pointer on failure to find delegation 
In case of a nonempty list, the return on error here is obviously bogus;
it ends up being a pointer to the list head instead of to any valid
delegation on the list.

In particular, if nfsd4_delegreturn() hits this case, and you're quite unlucky,
then renew_client may oops, and it may take an embarassingly long time to
figure out why.  Facepalm.

BUG: unable to handle kernel NULL pointer dereference at 0000000000000090
IP: [<ffffffff81292965>] nfsd4_delegreturn+0x125/0x200
...

Cc: stable@kernel.org
Signed-off-by: J. Bruce Fields <bfields@redhat.com>
2011-03-07 11:44:53 -05:00
..
acl.h nfsd4: remove outdated pathname-comments 2011-01-04 18:22:10 -05:00
auth.c
auth.h
cache.h
export.c nfsd: don't support msnfs export option 2011-01-13 21:04:07 -05:00
idmap.h nfsd4: return nfs errno from name_to_id functions 2011-01-04 18:22:11 -05:00
Kconfig lockd: push lock_flocks down 2010-10-27 21:39:39 +02:00
lockd.c
Makefile
nfs2acl.c
nfs3acl.c
nfs3proc.c nfsd: fix offset printk's in nfsd3 read/write 2010-12-17 15:48:18 -05:00
nfs3xdr.c nfsd: Fix possible BUG_ON firing in set_change_info 2010-12-08 11:44:04 -05:00
nfs4acl.c nfsd4: move idmap and acl header files into fs/nfsd 2011-01-04 18:22:09 -05:00
nfs4callback.c NFSD: fix decode_cb_sequence4resok 2011-02-22 15:55:09 -08:00
nfs4idmap.c nfsd4: return nfs errno from name_to_id functions 2011-01-04 18:22:11 -05:00
nfs4proc.c nfsd4: support BIND_CONN_TO_SESSION 2011-01-11 15:04:09 -05:00
nfs4recover.c nfsd4: fix mixed 4.0/4.1 handling, 4.1 reboot 2010-12-17 15:48:01 -05:00
nfs4state.c nfsd4: fix bad pointer on failure to find delegation 2011-03-07 11:44:53 -05:00
nfs4xdr.c nfsd: correctly handle return value from nfsd_map_name_to_* 2011-02-16 18:31:05 -05:00
nfscache.c
nfsctl.c nfsd4: move idmap and acl header files into fs/nfsd 2011-01-04 18:22:09 -05:00
nfsd.h nfsd4: name->id mapping should fail with BADOWNER not BADNAME 2011-01-04 18:21:36 -05:00
nfsfh.c
nfsfh.h nfsd: fix BUG at fs/nfsd/nfsfh.h:199 on unlink 2010-10-13 15:48:55 -04:00
nfsproc.c nfsd4: return nfs errno from name_to_id functions 2011-01-04 18:22:11 -05:00
nfssvc.c svcrpc: simpler request dropping 2011-01-04 16:49:22 -05:00
nfsxdr.c
state.h nfsd4: acquire only one lease per file 2011-02-14 10:35:19 -05:00
stats.c
vfs.c nfsd: break lease on unlink due to rename 2011-02-14 10:35:19 -05:00
vfs.h
xdr3.h
xdr4.h nfsd4: set sequence flag when backchannel is down 2011-01-11 15:04:10 -05:00
xdr.h