[PATCH v2 00/21] nfsd: more bugfixes
From: Jeff Layton
Date: Thu Jun 11 2026 - 16:01:18 EST
This version is addresses review comments from Sashiko. There wasn't
much in the way of regressions in v1, but it did notice a number of
nearby problems that should also be fixed.
This adds 3 patches to fix those. I also dropped the localio patch from
the series since that should probably go through the NFS client tree.
I'll send it separately.
AFAICT, these are garden-variety bugs. Chuck, please consider these for
v7.3.
Signed-off-by: Jeff Layton <jlayton@xxxxxxxxxx>
---
Changes in v2:
- Add 3 new patches for nearby bugs sashiko noticed while reviewing v1
- Clean up unwinding when server startup fails
- Link to v1: https://lore.kernel.org/r/20260609-nfsd-testing-v1-0-e83acead2ae8@xxxxxxxxxx
---
Jeff Layton (21):
nfsd: clear opcnt on compound arg release to prevent OOB read
nfsd: add missing read barrier to rpc_status_get dumpit seqcount retry
nfsd: fix netlink dumpit error handling for rpc_status_get
sunrpc: defer rq_argp and rq_resp free until after RCU grace period
nfsd: check nfsd4_acl_to_attr() return value in nfsd4_create()
nfsd: add filehandle match check to nfsd4_delegreturn()
nfsd: validate nseconds in TIME_DELEG decode paths
nfsd: remove premature NFS4_OO_CONFIRMED in CLAIM_PREVIOUS path
nfsd: fix version mismatch loops in nfsd_acl_init_request()
nfsd: fix FL_SLEEP being set unconditionally for all LOCK types
nfsd: add fh_want_write() for early-verified SETATTR in nfsd_proc_setattr()
nfsd: fix clock domain mismatch in clients_still_reclaiming()
nfsd: use test_and_clear_bit for somebody_reclaimed to prevent lost update
nfsd: reject reclaim LOCK after RECLAIM_COMPLETE
nfsd: validate sockaddr length per family in listener_set
lockd, nfsd: RCU-protect nlmsvc_ops dispatch
nfsd: move nfsd_debugfs_init() after nfsd4_init_slabs() in init_nfsd()
nfsd: initialize DRC hash table before registering shrinker
nfsd: restore rq_status_counter to even on all nfsd_dispatch() exit paths
nfsd: reset thread skip index when advancing pools in rpc_status dumpit
nfsd: drop the stateid, not the stateowner, on seqid_op replay retry
Documentation/netlink/specs/nfsd.yaml | 4 ++
fs/lockd/svc.c | 4 +-
fs/lockd/svc4proc.c | 4 +-
fs/lockd/svcproc.c | 4 +-
fs/lockd/svcsubs.c | 52 +++++++++++++++++++----
fs/nfsd/lockd.c | 6 ++-
fs/nfsd/netlink.c | 2 +-
fs/nfsd/netns.h | 1 +
fs/nfsd/nfs4callback.c | 4 ++
fs/nfsd/nfs4proc.c | 3 +-
fs/nfsd/nfs4state.c | 24 +++++++----
fs/nfsd/nfs4xdr.c | 5 +++
fs/nfsd/nfscache.c | 4 +-
fs/nfsd/nfsctl.c | 77 +++++++++++++++++++++++++++++------
fs/nfsd/nfsproc.c | 7 ++++
fs/nfsd/nfssvc.c | 27 ++++++++----
include/linux/lockd/bind.h | 12 ++++--
net/sunrpc/svc.c | 13 ++++--
18 files changed, 200 insertions(+), 53 deletions(-)
---
base-commit: 8defc3ed26a2b4c8677ce2106c2c92cd26ef1316
change-id: 20260608-nfsd-testing-688a82433c50
Best regards,
--
Jeff Layton <jlayton@xxxxxxxxxx>