From b985dce6c4415a9d67fefabdbf2e5fe287e1dc62 Mon Sep 17 00:00:00 2001
From: Shehjar Tikoo <shehjart@gluster.com>
Date: Tue, 16 Nov 2010 04:56:38 +0000
Subject: nfsrpc: Fail auth-unix if more than 16 gids found

Signed-off-by: Shehjar Tikoo <shehjart@gluster.com>
Signed-off-by: Anand V. Avati <avati@dev.gluster.com>

BUG: 2045 (Write permission denied for non-primary group membership)
URL: http://bugs.gluster.com/cgi-bin/bugzilla3/show_bug.cgi?id=2045
---
 xlators/nfs/lib/src/auth-unix.c | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/xlators/nfs/lib/src/auth-unix.c b/xlators/nfs/lib/src/auth-unix.c
index 10000c3858d..50ca381ec85 100644
--- a/xlators/nfs/lib/src/auth-unix.c
+++ b/xlators/nfs/lib/src/auth-unix.c
@@ -59,6 +59,11 @@ nfs_auth_unix_authenticate (rpcsvc_request_t *req, void *priv)
                 goto err;
         }
 
+        if (aup.aup_len > 16) {
+                ret = RPCSVC_AUTH_REJECT;
+                goto err;
+        }
+
         req->uid = aup.aup_uid;
         req->gid = aup.aup_gid;
         req->auxgidcount = aup.aup_len;
-- 
cgit