Kernel/linux-stable
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git synced 2025-01-16 18:26:42 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
linux-stable/fs/nfs
History
Trond Myklebust 2fdb05dc09 NFSv4.0: Fix a use-after-free problem in the asynchronous open() 
Yang Erkun reports that when two threads are opening files at the same
time, and are forced to abort before a reply is seen, then the call to
nfs_release_seqid() in nfs4_opendata_free() can result in a
use-after-free of the pointer to the defunct rpc task of the other
thread.
The fix is to ensure that if the RPC call is aborted before the call to
nfs_wait_on_sequence() is complete, then we must call nfs_release_seqid()
in nfs4_open_release() before the rpc_task is freed.

Reported-by: Yang Erkun <yangerkun@huawei.com>
Fixes: 24ac23ab88df ("NFSv4: Convert open() into an asynchronous RPC call")
Reviewed-by: Yang Erkun <yangerkun@huawei.com>
Signed-off-by: Trond Myklebust <trond.myklebust@hammerspace.com>
2024-11-09 11:01:35 -05:00
..
blocklayout
nfs/blocklayout: add support for NVMe
2024-07-12 11:35:50 -04:00
filelayout
nfs: pass struct nfsd_file to nfs_init_pgio and nfs_init_commit
2024-09-23 15:03:30 -04:00
flexfilelayout
pnfs/flexfiles: enable localio support
2024-09-23 15:03:30 -04:00
cache_lib.c
cache_lib.h
callback_proc.c
pNFS: Add a flag argument to pnfs_destroy_layouts_byclid()
2024-07-08 13:47:26 -04:00
callback_xdr.c
SUNRPC: Fix integer overflow in decode_rc_list()
2024-10-03 16:19:13 -04:00
callback.c
sunrpc: allow svc threads to fail initialisation cleanly
2024-09-20 19:31:03 -04:00
callback.h
NFSv4: Add CB_GETATTR support for delegated attributes
2024-07-08 13:47:25 -04:00
client.c
NFS: Implement get_nfs_version()
2024-11-08 14:17:37 -05:00
delegation.c
NFS: remove revoked delegation from server's delegation list
2024-10-09 15:39:22 -04:00
delegation.h
NFSv4: Delegreturn must set m/atime when they are delegated
2024-07-08 13:47:25 -04:00
dir.c
nfs: Annotate struct nfs_cache_array with __counted_by()
2024-09-23 15:03:12 -04:00
direct.c
nfs: drop the incorrect assertion in nfs_swap_rw()
2024-06-24 20:52:11 -07:00
dns_resolve.c
NFS: Move common includes outside ifdef
2023-08-24 13:24:15 -04:00
dns_resolve.h
NFS: Avoid memcpy() run-time warning for struct sockaddr overflows
2022-10-27 15:52:10 -04:00
export.c
nfsd: allow reaping files still under writeback
2023-04-26 09:04:59 -04:00
file.c
fs: Convert aops->write_begin to take a folio
2024-08-07 11:33:21 +02:00
fs_context.c
NFS: Implement get_nfs_version()
2024-11-08 14:17:37 -05:00
fscache.c
netfs: Speed up buffered reading
2024-09-12 12:20:41 +02:00
fscache.h
netfs: Speed up buffered reading
2024-09-12 12:20:41 +02:00
getroot.c
nfs: fix the comment of nfs_get_root
2024-09-23 15:03:13 -04:00
inode.c
nfs: avoid i_lock contention in nfs_clear_invalid_mapping
2024-11-04 10:24:19 -05:00
internal.h
nfs/localio: use dedicated workqueues for filesystem read and write
2024-09-23 15:03:30 -04:00
io.c
NFS: Fix up incorrect documentation
2021-04-05 09:04:20 -04:00
iostat.h
mm: add comments for allocation helpers explaining why they are macros
2024-07-12 15:52:20 -07:00
Kconfig
nfs_common: factor out nfs_errtbl and nfs_stat_to_errno
2024-09-23 15:03:29 -04:00
localio.c
nfs/localio: eliminate need for nfs_local_fsync_work forward declaration
2024-11-08 14:26:20 -05:00
Makefile
nfs: add LOCALIO support
2024-09-23 15:03:30 -04:00
mount_clnt.c
NFS: remove unused struct 'mnt_fhstatus'
2024-07-08 13:47:24 -04:00
namespace.c
NFS: Implement get_nfs_version()
2024-11-08 14:17:37 -05:00
netns.h
nfs: make the rpc_stat per net namespace
2024-03-09 09:14:51 -05:00
nfs2super.c
fs: nfs: add missing MODULE_DESCRIPTION() macros
2024-07-08 13:47:24 -04:00
nfs2xdr.c
nfs_common: factor out nfs_errtbl and nfs_stat_to_errno
2024-09-23 15:03:29 -04:00
nfs3_fs.h
fs: drop unused posix acl handlers
2023-03-06 09:57:12 +01:00
nfs3acl.c
Mainly singleton patches all over the place. Series of note are:
2023-04-27 19:57:00 -07:00
nfs3client.c
NFS: enable nconnect for RDMA
2024-03-09 09:14:51 -05:00
nfs3proc.c
Return the delegation when deleting sillyrenamed files
2024-07-08 13:47:26 -04:00
nfs3super.c
fs: nfs: add missing MODULE_DESCRIPTION() macros
2024-07-08 13:47:24 -04:00
nfs3xdr.c
nfs_common: factor out nfs_errtbl and nfs_stat_to_errno
2024-09-23 15:03:29 -04:00
nfs4_fs.h
nfs: simplify and guarantee owner uniqueness.
2024-09-23 15:03:12 -04:00
nfs4client.c
NFSv4.1 another fix for EXCHGID4_FLAG_USE_PNFS_DS for DS server
2024-07-08 13:47:27 -04:00
nfs4file.c
filelock: split leases out of struct file_lock
2024-02-05 13:11:44 +01:00
nfs4getroot.c
nfs4idmap.c
cred: Do not default to init_cred in prepare_kernel_cred()
2022-11-01 10:04:52 -07:00
nfs4idmap.h
nfs4namespace.c
NFS: Avoid memcpy() run-time warning for struct sockaddr overflows
2022-10-27 15:52:10 -04:00
nfs4proc.c
NFSv4.0: Fix a use-after-free problem in the asynchronous open()
2024-11-09 11:01:35 -05:00
nfs4renewd.c
treewide: remove editor modelines and cruft
2021-05-07 00:26:34 -07:00
nfs4session.c
NFSv4: Sanity check the parameters in nfs41_update_target_slotid()
2021-11-07 09:23:14 -05:00
nfs4session.h
NFSv4: Sanity check the parameters in nfs41_update_target_slotid()
2021-11-07 09:23:14 -05:00
nfs4state.c
NFSv4.0: Fix the wake up of the next waiter in nfs_release_seqid()
2024-11-09 11:01:29 -05:00
nfs4super.c
fs: nfs: add missing MODULE_DESCRIPTION() macros
2024-07-08 13:47:24 -04:00
nfs4sysctl.c
fs: Remove the now superfluous sentinel elements from ctl_table array
2023-12-28 04:57:57 -08:00
nfs4trace.c
nfs/blocklayout: SCSI layout trace points for reservation key reg/unreg
2024-07-08 13:47:27 -04:00
nfs4trace.h
nfs/blocklayout: SCSI layout trace points for reservation key reg/unreg
2024-07-08 13:47:27 -04:00
nfs4xdr.c
NFS Client Updates for Linux 6.12
2024-09-24 15:44:18 -07:00
nfs42.h
NFSv4.2: fix listxattr maximum XDR buffer size
2024-02-28 16:18:18 -05:00
nfs42proc.c
NFSv4: Prevent NULL-pointer dereference in nfs42_complete_copies()
2024-10-03 16:19:13 -04:00
nfs42xattr.c
mm, slab: remove last vestiges of SLAB_MEM_SPREAD
2024-03-12 20:32:19 -07:00
nfs42xdr.c
NFSv4.2: Rework scratch handling for READ_PLUS (again)
2023-08-23 15:58:47 -04:00
nfs.h
NFS: Implement get_nfs_version()
2024-11-08 14:17:37 -05:00
nfsroot.c
NFS: Fix an off by one in root_nfs_cat()
2024-03-09 09:14:51 -05:00
nfstrace.c
NFSv4: Catch and trace server filehandle encoding errors
2021-04-14 09:36:29 -04:00
nfstrace.h
nfs: add LOCALIO support
2024-09-23 15:03:30 -04:00
pagelist.c
nfs: enable localio for non-pNFS IO
2024-09-23 15:03:30 -04:00
pnfs_dev.c
nfs: remove the unused max_deviceinfo_size field from struct pnfs_layoutdriver_type
2024-07-10 13:23:17 -04:00
pnfs_nfs.c
nfs: pass struct nfsd_file to nfs_init_pgio and nfs_init_commit
2024-09-23 15:03:30 -04:00
pnfs.c
NFSv4: Fix clearing of layout segments in layoutreturn
2024-08-22 17:01:10 -04:00
pnfs.h
nfs: remove the unused max_deviceinfo_size field from struct pnfs_layoutdriver_type
2024-07-10 13:23:17 -04:00
proc.c
Return the delegation when deleting sillyrenamed files
2024-07-08 13:47:26 -04:00
read.c
nfs: Remove unnecessary NULL check before kfree()
2024-09-23 15:03:12 -04:00
super.c
NFSv3: only use NFS timeout for MOUNT when protocols are compatible
2024-11-04 10:24:18 -05:00
symlink.c
nfs: Remove calls to folio_set_error
2024-05-31 12:31:41 +02:00
sysctl.c
fs: Remove the now superfluous sentinel elements from ctl_table array
2023-12-28 04:57:57 -08:00
sysfs.c
NFS: Fix sysfs server name memory leak
2023-08-19 10:26:29 -04:00
sysfs.h
NFS: Add sysfs links to sunrpc clients for nfs_clients
2023-06-19 15:04:13 -04:00
unlink.c
Return the delegation when deleting sillyrenamed files
2024-07-08 13:47:26 -04:00
write.c
nfs: enable localio for non-pNFS IO
2024-09-23 15:03:30 -04:00