Chuck Lever 0f5162480b NFSD: Watch for rq_pages bounds checking errors in nfsd_splice_actor() ... There have been several bugs over the years where the NFSD splice actor has attempted to write outside the rq_pages array. This is a "should never happen" condition, but if for some reason the pipe splice actor should attempt to walk past the end of rq_pages, it needs to terminate the READ operation to prevent corruption of the pointer addresses in the fields just beyond the array. A server crash is thus prevented. Since the code is not behaving, the READ operation returns -EIO to the client. None of the READ payload data can be trusted if the splice actor isn't operating as expected. Suggested-by: Jeff Layton <jlayton@kernel.org> Signed-off-by: Chuck Lever <chuck.lever@oracle.com> Reviewed-by: Jeff Layton <jlayton@kernel.org>		2023-04-26 09:05:01 -04:00
..
addr.h
auth.h
auth_gss.h
bc_xprt.h
cache.h	SUNRPC: return proper error from get_expiry()	2023-04-26 09:05:00 -04:00
clnt.h
debug.h
gss_api.h
gss_asn1.h
gss_err.h
gss_krb5.h	SUNRPC: Move remaining internal definitions to gss_krb5_internal.h	2023-02-20 09:20:46 -05:00
metrics.h
msg_prot.h	SUNRPC: Convert svcauth_unix_accept() to use xdr_stream	2023-02-20 09:20:11 -05:00
rpc_pipe_fs.h	SUNRPC: ensure the matching upcall is in-flight upon downcall	2022-12-15 18:13:53 -05:00
rpc_rdma.h
rpc_rdma_cid.h
sched.h	NFS Client Updates for Linux 6.1	2022-10-13 09:58:42 -07:00
stats.h
svc.h	NFSD: Watch for rq_pages bounds checking errors in nfsd_splice_actor()	2023-04-26 09:05:01 -04:00
svc_rdma.h
svc_rdma_pcl.h
svc_xprt.h	SUNRPC: Remove ->xpo_secure_port()	2023-02-20 09:20:55 -05:00
svcauth.h
svcauth_gss.h
svcsock.h
timer.h
types.h
xdr.h	SUNRPC: Push svcxdr_init_encode() into svc_process_common()	2023-02-20 09:20:27 -05:00
xprt.h
xprtmultipath.h
xprtrdma.h
xprtsock.h