diff options
| author | Bryan Schumaker <bjschuma@netapp.com> | 2011-04-06 14:33:28 -0400 |
|---|---|---|
| committer | Trond Myklebust <Trond.Myklebust@netapp.com> | 2011-04-06 16:25:04 -0400 |
| commit | 418875900e3de4831c84f86ae4756690dac5be77 (patch) | |
| tree | d0609f12b62962806adc092867350b7bfcfed5a3 | |
| parent | 0867659fa3c245bf203d837a82e0f6ea5079c2c5 (diff) | |
NFS: Fix a signed vs. unsigned secinfo bug
rpc_authflavor_t is cast from an unsigned int, but the
initial code tried to use it as a signed int. I fix
this by passing an rpc_authflavor_t pointer around, and
returning signed integers from functions.
Signed-off-by: Bryan Schumaker <bjschuma@netapp.com>
Reported-by: Dan Carpenter <error27@gmail.com>
Signed-off-by: Trond Myklebust <Trond.Myklebust@netapp.com>
| -rw-r--r-- | fs/nfs/namespace.c | 58 |
1 files changed, 25 insertions, 33 deletions
diff --git a/fs/nfs/namespace.c b/fs/nfs/namespace.c index 9166fcb66da2..89fc160fd5b0 100644 --- a/fs/nfs/namespace.c +++ b/fs/nfs/namespace.c | |||
| @@ -148,67 +148,64 @@ static rpc_authflavor_t nfs_find_best_sec(struct nfs4_secinfo_flavors *flavors, | |||
| 148 | return pseudoflavor; | 148 | return pseudoflavor; |
| 149 | } | 149 | } |
| 150 | 150 | ||
| 151 | static rpc_authflavor_t nfs_negotiate_security(const struct dentry *parent, const struct dentry *dentry) | 151 | static int nfs_negotiate_security(const struct dentry *parent, |
| 152 | const struct dentry *dentry, | ||
| 153 | rpc_authflavor_t *flavor) | ||
| 152 | { | 154 | { |
| 153 | int status = 0; | ||
| 154 | struct page *page; | 155 | struct page *page; |
| 155 | struct nfs4_secinfo_flavors *flavors; | 156 | struct nfs4_secinfo_flavors *flavors; |
| 156 | int (*secinfo)(struct inode *, const struct qstr *, struct nfs4_secinfo_flavors *); | 157 | int (*secinfo)(struct inode *, const struct qstr *, struct nfs4_secinfo_flavors *); |
| 157 | rpc_authflavor_t flavor = RPC_AUTH_UNIX; | 158 | int ret = -EPERM; |
| 158 | 159 | ||
| 159 | secinfo = NFS_PROTO(parent->d_inode)->secinfo; | 160 | secinfo = NFS_PROTO(parent->d_inode)->secinfo; |
| 160 | if (secinfo != NULL) { | 161 | if (secinfo != NULL) { |
| 161 | page = alloc_page(GFP_KERNEL); | 162 | page = alloc_page(GFP_KERNEL); |
| 162 | if (!page) { | 163 | if (!page) { |
| 163 | status = -ENOMEM; | 164 | ret = -ENOMEM; |
| 164 | goto out; | 165 | goto out; |
| 165 | } | 166 | } |
| 166 | flavors = page_address(page); | 167 | flavors = page_address(page); |
| 167 | status = secinfo(parent->d_inode, &dentry->d_name, flavors); | 168 | ret = secinfo(parent->d_inode, &dentry->d_name, flavors); |
| 168 | flavor = nfs_find_best_sec(flavors, dentry->d_inode); | 169 | *flavor = nfs_find_best_sec(flavors, dentry->d_inode); |
| 169 | put_page(page); | 170 | put_page(page); |
| 170 | } | 171 | } |
| 171 | 172 | ||
| 172 | return flavor; | ||
| 173 | |||
| 174 | out: | 173 | out: |
| 175 | status = -ENOMEM; | 174 | return ret; |
| 176 | return status; | ||
| 177 | } | 175 | } |
| 178 | 176 | ||
| 179 | static rpc_authflavor_t nfs_lookup_with_sec(struct nfs_server *server, struct dentry *parent, | 177 | static int nfs_lookup_with_sec(struct nfs_server *server, struct dentry *parent, |
| 180 | struct dentry *dentry, struct path *path, | 178 | struct dentry *dentry, struct path *path, |
| 181 | struct nfs_fh *fh, struct nfs_fattr *fattr) | 179 | struct nfs_fh *fh, struct nfs_fattr *fattr, |
| 180 | rpc_authflavor_t *flavor) | ||
| 182 | { | 181 | { |
| 183 | rpc_authflavor_t flavor; | ||
| 184 | struct rpc_clnt *clone; | 182 | struct rpc_clnt *clone; |
| 185 | struct rpc_auth *auth; | 183 | struct rpc_auth *auth; |
| 186 | int err; | 184 | int err; |
| 187 | 185 | ||
| 188 | flavor = nfs_negotiate_security(parent, path->dentry); | 186 | err = nfs_negotiate_security(parent, path->dentry, flavor); |
| 189 | if (flavor < 0) | 187 | if (err < 0) |
| 190 | goto out; | 188 | goto out; |
| 191 | clone = rpc_clone_client(server->client); | 189 | clone = rpc_clone_client(server->client); |
| 192 | auth = rpcauth_create(flavor, clone); | 190 | auth = rpcauth_create(*flavor, clone); |
| 193 | if (!auth) { | 191 | if (!auth) { |
| 194 | flavor = -EIO; | 192 | err = -EIO; |
| 195 | goto out_shutdown; | 193 | goto out_shutdown; |
| 196 | } | 194 | } |
| 197 | err = server->nfs_client->rpc_ops->lookup(clone, parent->d_inode, | 195 | err = server->nfs_client->rpc_ops->lookup(clone, parent->d_inode, |
| 198 | &path->dentry->d_name, | 196 | &path->dentry->d_name, |
| 199 | fh, fattr); | 197 | fh, fattr); |
| 200 | if (err < 0) | ||
| 201 | flavor = err; | ||
| 202 | out_shutdown: | 198 | out_shutdown: |
| 203 | rpc_shutdown_client(clone); | 199 | rpc_shutdown_client(clone); |
| 204 | out: | 200 | out: |
| 205 | return flavor; | 201 | return err; |
| 206 | } | 202 | } |
| 207 | #else /* CONFIG_NFS_V4 */ | 203 | #else /* CONFIG_NFS_V4 */ |
| 208 | static inline rpc_authflavor_t nfs_lookup_with_sec(struct nfs_server *server, | 204 | static inline int nfs_lookup_with_sec(struct nfs_server *server, |
| 209 | struct dentry *parent, struct dentry *dentry, | 205 | struct dentry *parent, struct dentry *dentry, |
| 210 | struct path *path, struct nfs_fh *fh, | 206 | struct path *path, struct nfs_fh *fh, |
| 211 | struct nfs_fattr *fattr) | 207 | struct nfs_fattr *fattr, |
| 208 | rpc_authflavor_t *flavor) | ||
| 212 | { | 209 | { |
| 213 | return -EPERM; | 210 | return -EPERM; |
| 214 | } | 211 | } |
| @@ -234,7 +231,7 @@ struct vfsmount *nfs_d_automount(struct path *path) | |||
| 234 | struct nfs_fh *fh = NULL; | 231 | struct nfs_fh *fh = NULL; |
| 235 | struct nfs_fattr *fattr = NULL; | 232 | struct nfs_fattr *fattr = NULL; |
| 236 | int err; | 233 | int err; |
| 237 | rpc_authflavor_t flavor = 1; | 234 | rpc_authflavor_t flavor = RPC_AUTH_UNIX; |
| 238 | 235 | ||
| 239 | dprintk("--> nfs_d_automount()\n"); | 236 | dprintk("--> nfs_d_automount()\n"); |
| 240 | 237 | ||
| @@ -255,13 +252,8 @@ struct vfsmount *nfs_d_automount(struct path *path) | |||
| 255 | err = server->nfs_client->rpc_ops->lookup(server->client, parent->d_inode, | 252 | err = server->nfs_client->rpc_ops->lookup(server->client, parent->d_inode, |
| 256 | &path->dentry->d_name, | 253 | &path->dentry->d_name, |
| 257 | fh, fattr); | 254 | fh, fattr); |
| 258 | if (err == -EPERM) { | 255 | if (err == -EPERM && NFS_PROTO(parent->d_inode)->secinfo != NULL) |
| 259 | flavor = nfs_lookup_with_sec(server, parent, path->dentry, path, fh, fattr); | 256 | err = nfs_lookup_with_sec(server, parent, path->dentry, path, fh, fattr, &flavor); |
| 260 | if (flavor < 0) | ||
| 261 | err = flavor; | ||
| 262 | else | ||
| 263 | err = 0; | ||
| 264 | } | ||
| 265 | dput(parent); | 257 | dput(parent); |
| 266 | if (err != 0) { | 258 | if (err != 0) { |
| 267 | mnt = ERR_PTR(err); | 259 | mnt = ERR_PTR(err); |