From: bfields@fieldses.org (J. Bruce Fields)
To: Chuck Lever III <chuck.lever@oracle.com>
Cc: Dai Ngo <dai.ngo@oracle.com>,
Linux NFS Mailing List <linux-nfs@vger.kernel.org>
Subject: Re: [PATCH 1/1] nfsd: nfsd4_setclientid_confirm mistakenly expires confirmed client.
Date: Thu, 27 Jan 2022 14:42:07 -0500 [thread overview]
Message-ID: <20220127194207.GA3459@fieldses.org> (raw)
In-Reply-To: <5D07AA4C-D6ED-4E53-AFFE-D0B91B11622C@oracle.com>
On Thu, Jan 27, 2022 at 03:51:54PM +0000, Chuck Lever III wrote:
> Hi Dai-
>
> > On Jan 26, 2022, at 4:13 PM, Dai Ngo <dai.ngo@oracle.com> wrote:
> >
> > From RFC 7530 Section 16.34.5:
> >
> > o The server has not recorded an unconfirmed { v, x, c, *, * } and
> > has recorded a confirmed { v, x, c, *, s }. If the principals of
> > the record and of SETCLIENTID_CONFIRM do not match, the server
> > returns NFS4ERR_CLID_INUSE without removing any relevant leased
> > client state, and without changing recorded callback and
> > callback_ident values for client { x }.
> >
> > The current code intents to do what the spec describes above but
> > it forgot to set 'old' to NULL resulting to the confirmed client
> > to be expired.
> >
> > Signed-off-by: Dai Ngo <dai.ngo@oracle.com>
>
> On it's face, this seems like the correct thing to do.
>
> I believe the issue was introduced in commit 2b63482185e6 ("nfsd:
> fix clid_inuse on mount with security change") in 2015. I can
> add a Fixes: tag and apply this for 5.17-rc.
Looks right to me too--thanks, Dai.
--b.
> > ---
> > fs/nfsd/nfs4state.c | 4 +++-
> > 1 file changed, 3 insertions(+), 1 deletion(-)
> >
> > diff --git a/fs/nfsd/nfs4state.c b/fs/nfsd/nfs4state.c
> > index 72900b89cf84..32063733443d 100644
> > --- a/fs/nfsd/nfs4state.c
> > +++ b/fs/nfsd/nfs4state.c
> > @@ -4130,8 +4130,10 @@ nfsd4_setclientid_confirm(struct svc_rqst *rqstp,
> > status = nfserr_clid_inuse;
> > if (client_has_state(old)
> > && !same_creds(&unconf->cl_cred,
> > - &old->cl_cred))
> > + &old->cl_cred)) {
> > + old = NULL;
> > goto out;
> > + }
> > status = mark_client_expired_locked(old);
> > if (status) {
> > old = NULL;
> > --
> > 2.9.5
> >
>
> --
> Chuck Lever
>
>
next prev parent reply other threads:[~2022-01-27 19:42 UTC|newest]
Thread overview: 5+ messages / expand[flat|nested] mbox.gz Atom feed top
2022-01-26 21:13 [PATCH 1/1] nfsd: nfsd4_setclientid_confirm mistakenly expires confirmed client Dai Ngo
2022-01-27 15:51 ` Chuck Lever III
2022-01-27 19:42 ` J. Bruce Fields [this message]
2022-01-28 14:02 ` Chuck Lever III
2022-01-28 15:04 ` Bruce Fields
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20220127194207.GA3459@fieldses.org \
--to=bfields@fieldses.org \
--cc=chuck.lever@oracle.com \
--cc=dai.ngo@oracle.com \
--cc=linux-nfs@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.