From 015b08d64dfea093d8fcd0a30b655469b18bbc2e Mon Sep 17 00:00:00 2001
From: Shehjar Tikoo <shehjart@gluster.com>
Date: Tue, 16 Nov 2010 04:56:37 +0000
Subject: rpc-lib: Fail auth-unix if more than 16 gids found

Signed-off-by: Shehjar Tikoo <shehjart@gluster.com>
Signed-off-by: Anand V. Avati <avati@dev.gluster.com>

BUG: 2045 (Write permission denied for non-primary group membership)
URL: http://bugs.gluster.com/cgi-bin/bugzilla3/show_bug.cgi?id=2045
---
 rpc/rpc-lib/src/auth-glusterfs.c | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'rpc/rpc-lib/src/auth-glusterfs.c')

diff --git a/rpc/rpc-lib/src/auth-glusterfs.c b/rpc/rpc-lib/src/auth-glusterfs.c
index 278693491..9a9021046 100644
--- a/rpc/rpc-lib/src/auth-glusterfs.c
+++ b/rpc/rpc-lib/src/auth-glusterfs.c
@@ -172,6 +172,11 @@ int auth_glusterfs_authenticate (rpcsvc_request_t *req, void *priv)
         req->lk_owner = au.lk_owner;
         req->auxgidcount = au.ngrps;
 
+        if (req->auxgidcount > 16) {
+                ret = RPCSVC_AUTH_REJECT;
+                goto err;
+        }
+
         for (gidcount = 0; gidcount < au.ngrps; ++gidcount)
                 req->auxgids[gidcount] = au.groups[gidcount];
 
-- 
cgit