1
From: Andreas Gruenbacher <agruen@suse.de>
2
Subject: nfs NULL nameidata check?
4
nfs_lookup() checks for NULL nameidata in one place, but not in another. In
5
nfs_sillyrename() it calls lookup_one_len() -> __lookup_hash(), which passes
6
in a NULL nameidata to nfs_lookup(). Unless I'm overlooking something,
7
fs/nfs/dir.c:923 will dereference this NULL pointer if the sillyrenamed file
10
Signed-off-by: Andreas Gruenbacher <agruen@suse.de>
13
fs/nfs/dir.c | 12 ++++++------
14
1 file changed, 6 insertions(+), 6 deletions(-)
18
@@ -896,15 +896,15 @@ int nfs_is_exclusive_create(struct inode
19
return (nd->intent.open.flags & O_EXCL) != 0;
22
-static inline int nfs_reval_fsid(struct vfsmount *mnt, struct inode *dir,
23
+static inline int nfs_reval_fsid(struct nameidata *nd, struct inode *dir,
24
struct nfs_fh *fh, struct nfs_fattr *fattr)
26
struct nfs_server *server = NFS_SERVER(dir);
28
- if (!nfs_fsid_equal(&server->fsid, &fattr->fsid))
29
- /* Revalidate fsid on root dir */
30
- return __nfs_revalidate_inode(server, mnt->mnt_root->d_inode);
32
+ if (nd == NULL || nfs_fsid_equal(&server->fsid, &fattr->fsid))
34
+ /* Revalidate fsid on root dir */
35
+ return __nfs_revalidate_inode(server, nd->mnt->mnt_root->d_inode);
38
static struct dentry *nfs_lookup(struct inode *dir, struct dentry * dentry, struct nameidata2 *nd)
39
@@ -945,7 +945,7 @@ static struct dentry *nfs_lookup(struct
43
- error = nfs_reval_fsid(nd->mnt, dir, &fhandle, &fattr);
44
+ error = nfs_reval_fsid(nd, dir, &fhandle, &fattr);
added
removed
kernel-patches/for-mainline/nfs-nameidata-check.diff
