diff options
author | Anand Avati <avati@gluster.com> | 2010-10-12 02:25:46 +0000 |
---|---|---|
committer | Vijay Bellur <vijay@dev.gluster.com> | 2010-10-12 01:39:41 -0700 |
commit | ed4975b13db3220d461b8ea2a764efd6572e156a (patch) | |
tree | 3b08b1ee326d6394f15224a42225bd80373ec9a3 /rpc | |
parent | 48672d26a01f3ce443479b19820e2822a6c650f6 (diff) |
nfs: avoid assignment of structure pointer into serialized buffer
With the introduction of variable sized file handle feature in NFS,
on-wire lengths of file handles can be lesser than file handle structure
of code. Direct pointer assignment into the offsetted buffer and
dereference and result in reads beyond the end of buffer and crashes.
Signed-off-by: Anand V. Avati <avati@blackhole.gluster.com>
Signed-off-by: Vijay Bellur <vijay@dev.gluster.com>
BUG: 999 (Crash in nfs3_fh_resolve_and_resume)
URL: http://bugs.gluster.com/cgi-bin/bugzilla3/show_bug.cgi?id=999
Diffstat (limited to 'rpc')
0 files changed, 0 insertions, 0 deletions