[PATCH 4.4 062/112] NFSv4: nfs4_copy_delegation_stateid() must fail if the delegation is invalid

From: Greg Kroah-Hartman
Date: Wed Oct 26 2016 - 08:35:05 EST

Next message: Greg Kroah-Hartman: "[PATCH 4.4 089/112] net/mlx4_core: Allow resetting VF admin mac to zero"
Previous message: Greg Kroah-Hartman: "[PATCH 4.4 086/112] hpsa: correct skipping masked peripherals"
In reply to: Greg Kroah-Hartman: "[PATCH 4.4 086/112] hpsa: correct skipping masked peripherals"
Next in thread: Greg Kroah-Hartman: "[PATCH 4.4 089/112] net/mlx4_core: Allow resetting VF admin mac to zero"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

4.4-stable review patch. If anyone has any objections, please let me know.

------------------

From: Trond Myklebust <trond.myklebust@xxxxxxxxxxxxxxx>

commit aa05c87f23efe417adc7ff9b4193b7201ec0dd79 upstream.

We must not allow the use of delegations that have been revoked or are
being returned.

Signed-off-by: Trond Myklebust <trond.myklebust@xxxxxxxxxxxxxxx>
Fixes: 869f9dfa4d6d ("NFSv4: Fix races between nfs_remove_bad_delegation()...")
Signed-off-by: Trond Myklebust <trond.myklebust@xxxxxxxxxxxxxxx>
Tested-by: Oleg Drokin <green@xxxxxxxxxxxxxx>
Signed-off-by: Anna Schumaker <Anna.Schumaker@xxxxxxxxxx>
Signed-off-by: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>

---
fs/nfs/delegation.c | 17 +++++++++++++----
1 file changed, 13 insertions(+), 4 deletions(-)

--- a/fs/nfs/delegation.c
+++ b/fs/nfs/delegation.c
@@ -41,6 +41,17 @@ void nfs_mark_delegation_referenced(stru
set_bit(NFS_DELEGATION_REFERENCED, &delegation->flags);
}

+static bool
+nfs4_is_valid_delegation(const struct nfs_delegation *delegation,
+ fmode_t flags)
+{
+ if (delegation != NULL && (delegation->type & flags) == flags &&
+ !test_bit(NFS_DELEGATION_REVOKED, &delegation->flags) &&
+ !test_bit(NFS_DELEGATION_RETURNING, &delegation->flags))
+ return true;
+ return false;
+}
+
static int
nfs4_do_check_delegation(struct inode *inode, fmode_t flags, bool mark)
{
@@ -50,9 +61,7 @@ nfs4_do_check_delegation(struct inode *i
flags &= FMODE_READ|FMODE_WRITE;
rcu_read_lock();
delegation = rcu_dereference(NFS_I(inode)->delegation);
- if (delegation != NULL && (delegation->type & flags) == flags &&
- !test_bit(NFS_DELEGATION_REVOKED, &delegation->flags) &&
- !test_bit(NFS_DELEGATION_RETURNING, &delegation->flags)) {
+ if (nfs4_is_valid_delegation(delegation, flags)) {
if (mark)
nfs_mark_delegation_referenced(delegation);
ret = 1;
@@ -893,7 +902,7 @@ bool nfs4_copy_delegation_stateid(nfs4_s
flags &= FMODE_READ|FMODE_WRITE;
rcu_read_lock();
delegation = rcu_dereference(nfsi->delegation);
- ret = (delegation != NULL && (delegation->type & flags) == flags);
+ ret = nfs4_is_valid_delegation(delegation, flags);
if (ret) {
nfs4_stateid_copy(dst, &delegation->stateid);
nfs_mark_delegation_referenced(delegation);

Next message: Greg Kroah-Hartman: "[PATCH 4.4 089/112] net/mlx4_core: Allow resetting VF admin mac to zero"
Previous message: Greg Kroah-Hartman: "[PATCH 4.4 086/112] hpsa: correct skipping masked peripherals"
In reply to: Greg Kroah-Hartman: "[PATCH 4.4 086/112] hpsa: correct skipping masked peripherals"
Next in thread: Greg Kroah-Hartman: "[PATCH 4.4 089/112] net/mlx4_core: Allow resetting VF admin mac to zero"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]