nfsd: fix unlikely NULL deref in mach_creds_match We really shouldn't allow a client to be created with cl_mach_cred set unless it also has a principal name. This also allows us to fail such cases immediately on EXCHANGE_ID as opposed to waiting and incorrectly returning WRONG_CRED on the following CREATE_SESSION. Signed-off-by: J. Bruce Fields <bfields@redhat.com>

commit: 920dd9bb7d7cf9ae339e15240326a28a22f08a74 [log] [tgz]
author: J. Bruce Fields <bfields@redhat.com> Fri Nov 20 16:42:40 2015 -0500
committer: J. Bruce Fields <bfields@redhat.com> Tue Nov 24 10:39:18 2015 -0700
tree: 09637a832f3c4d4d1291ab990e162e903811b4f7
parent: 50c7b948adbd1f8f0475fa0c92abb51c8a49f847 [diff] [blame]
diff --git a/fs/nfsd/nfs4state.c b/fs/nfsd/nfs4state.c
index efa3d4c..ed58ced 100644
--- a/fs/nfsd/nfs4state.c
+++ b/fs/nfsd/nfs4state.c

@@ -2385,6 +2385,15 @@
 			status = nfserr_inval;
 			goto out_nolock;
 		}
+		/*
+		 * Sometimes userspace doesn't give us a principal.
+		 * Which is a bug, really.  Anyway, we can't enforce
+		 * MACH_CRED in that case, better to give up now:
+		 */
+		if (!new->cl_cred.cr_principal) {
+			status = nfserr_serverfault;
+			goto out_nolock;
+		}
 		new->cl_mach_cred = true;
 	case SP4_NONE:
 		break;
commit	920dd9bb7d7cf9ae339e15240326a28a22f08a74	[log] [tgz]
author	J. Bruce Fields <bfields@redhat.com>	Fri Nov 20 16:42:40 2015 -0500
committer	J. Bruce Fields <bfields@redhat.com>	Tue Nov 24 10:39:18 2015 -0700
tree	09637a832f3c4d4d1291ab990e162e903811b4f7
parent	50c7b948adbd1f8f0475fa0c92abb51c8a49f847 [diff] [blame]