NFSv4: Catch and trace server filehandle encoding errors

If the server returns a filehandle with an invalid length, then trace that, and return an EREMOTEIO error. Signed-off-by: Trond Myklebust <trond.myklebust@hammerspace.com>
author: Trond Myklebust <trond.myklebust@hammerspace.com> 2021-04-01 14:03:26 -0400
committer: Trond Myklebust <trond.myklebust@hammerspace.com> 2021-04-14 09:36:29 -0400
commit: eb3d58c68e39fad68d8054e0324eb06d82dcedbb (patch)
tree: bebaae6d3ad6fad610fc1ac0e1662327f39ca823 /fs/nfs/nfs3xdr.c
parent: 3d66bae156a652be18e278f3c88bc3e069ae824b (diff)
download: linux-eb3d58c68e39fad68d8054e0324eb06d82dcedbb.tar.gz
1 files changed, 2 insertions, 2 deletions
diff --git a/fs/nfs/nfs3xdr.c b/fs/nfs/nfs3xdr.c
index 83ad62c81fc7..e6eca1d7481b 100644
--- a/fs/nfs/nfs3xdr.c
+++ b/fs/nfs/nfs3xdr.c
@@ -433,7 +433,7 @@ static int decode_nfs_fh3(struct xdr_stream *xdr, struct nfs_fh *fh)
 	if (unlikely(!p))
 		return -EIO;
 	length = be32_to_cpup(p++);
-	if (unlikely(length > NFS3_FHSIZE))
+	if (unlikely(length > NFS3_FHSIZE || length == 0))
 		goto out_toobig;
 	p = xdr_inline_decode(xdr, length);
 	if (unlikely(!p))
@@ -442,7 +442,7 @@ static int decode_nfs_fh3(struct xdr_stream *xdr, struct nfs_fh *fh)
 	memcpy(fh->data, p, length);
 	return 0;
 out_toobig:
-	dprintk("NFS: file handle size (%u) too big\n", length);
+	trace_nfs_xdr_bad_filehandle(xdr, NFSERR_BADHANDLE);
 	return -E2BIG;
 }
author	Trond Myklebust <trond.myklebust@hammerspace.com>	2021-04-01 14:03:26 -0400
committer	Trond Myklebust <trond.myklebust@hammerspace.com>	2021-04-14 09:36:29 -0400
commit	eb3d58c68e39fad68d8054e0324eb06d82dcedbb (patch)
tree	bebaae6d3ad6fad610fc1ac0e1662327f39ca823 /fs/nfs/nfs3xdr.c
parent	3d66bae156a652be18e278f3c88bc3e069ae824b (diff)
download	linux-eb3d58c68e39fad68d8054e0324eb06d82dcedbb.tar.gz