CVS commit: src/sys/nfs

To: source-changes%NetBSD.org@localhost
Subject: CVS commit: src/sys/nfs
From: Manuel Bouyer <bouyer%netbsd.org@localhost>
Date: Fri, 10 Apr 2009 19:04:14 +0000

Module Name:    src
Committed By:   bouyer
Date:           Fri Apr 10 19:04:14 UTC 2009

Modified Files:
        src/sys/nfs: nfs_syscalls.c

Log Message:
PR kern/41154: possible races in NFS server code

Fix some of the races (but probably not all of them) in the NFS server code.
nfssvc_nfsd(): change a splsoftclock()/spx() to mutex_enter/exit(&nfsd_lock)
 (I guess it was forgotten when the nfsd code was made SMP safe)
m_freem(nd_nam) in nfsrv_slpderef() instead of nfsrv_zapsock() to
 avoid possible use after free in nfssvc_nfsd()
Fix nfsrv_slpderef() to not release  nfsd_lock before testing SLP_VALID
 and reaquiring it just after. This could cause a use after free
 of the slp if one thread is in nfsrv_slpderef() and the other one grabs
 slp from nfssvc_sockpending and zap it.


To generate a diff of this commit:
cvs rdiff -u -r1.146 -r1.147 src/sys/nfs/nfs_syscalls.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: src/sys/nfs
Next by Date: CVS commit: src/sys/arch/i386/stand/lib
Previous by Thread: CVS commit: src/sys/nfs
Next by Thread: CVS commit: src/sys/arch/i386/stand/lib
Indexes:

Home | Main Index | Thread Index | Old Index