linux-toradex.git/net/9p, branch v4.1 Linux kernel for Apalis and Colibri modules Merge tag 'for-linus-4.1-merge-window' of git://git.kernel.org/pub/scm/linux/kernel/git/ericvh/v9fs 2015-04-18T21:45:30+00:00 Linus Torvalds torvalds@linux-foundation.org 2015-04-18T21:45:30+00:00 dba94f2155f581395ef9608418778e3491b3d470 Pull 9pfs updates from Eric Van Hensbergen: "Some accumulated cleanup patches for kerneldoc and unused variables as well as some lock bug fixes and adding privateport option for RDMA" * tag 'for-linus-4.1-merge-window' of git://git.kernel.org/pub/scm/linux/kernel/git/ericvh/v9fs: net/9p: add a privport option for RDMA transport. fs/9p: Initialize status in v9fs_file_do_lock. net/9p: Initialize opts->privport as it should be. net/9p: use memcpy() instead of snprintf() in p9_mount_tag_show() 9p: use unsigned integers for nwqid/count 9p: do not crash on unknown lock status code 9p: fix error handling in v9fs_file_do_lock 9p: remove unused variable in p9_fd_create() 9p: kerneldoc warning fixes 
Pull 9pfs updates from Eric Van Hensbergen:
 "Some accumulated cleanup patches for kerneldoc and unused variables as
  well as some lock bug fixes and adding privateport option for RDMA"

* tag 'for-linus-4.1-merge-window' of git://git.kernel.org/pub/scm/linux/kernel/git/ericvh/v9fs:
  net/9p: add a privport option for RDMA transport.
  fs/9p: Initialize status in v9fs_file_do_lock.
  net/9p: Initialize opts->privport as it should be.
  net/9p: use memcpy() instead of snprintf() in p9_mount_tag_show()
  9p: use unsigned integers for nwqid/count
  9p: do not crash on unknown lock status code
  9p: fix error handling in v9fs_file_do_lock
  9p: remove unused variable in p9_fd_create()
  9p: kerneldoc warning fixes
net/9p: remove (now-)unused helpers 2015-04-12T02:28:29+00:00 Al Viro viro@zeniv.linux.org.uk 2015-04-03T03:11:36+00:00 dcdbd7b269003bec7d729ca3fd143f93cf98f56e Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> 
Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
p9_client_attach(): set fid->uid correctly 2015-04-12T02:28:28+00:00 Al Viro viro@zeniv.linux.org.uk 2015-04-03T01:47:49+00:00 21c9f5ccb103868c730aec6f8548e144ec397fed it's almost always equal to current_fsuid(), but there's an exception - if the first writeback fid is opened by non-root *and* that happens before root has done any lookups in /, we end up doing attach for root. The current code leaves the resulting FID owned by root from the server POV and by non-root from the client one. Unfortunately, it means that e.g. massive dcache eviction will leave that user buggered - they'll end up redoing walks from / *and* picking that FID every time. As soon as they try to create something, the things will get nasty. Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> 
it's almost always equal to current_fsuid(), but there's an exception -
if the first writeback fid is opened by non-root *and* that happens before
root has done any lookups in /, we end up doing attach for root.  The
current code leaves the resulting FID owned by root from the server POV
and by non-root from the client one.  Unfortunately, it means that e.g.
massive dcache eviction will leave that user buggered - they'll end
up redoing walks from / *and* picking that FID every time.  As soon as
they try to create something, the things will get nasty.

Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
9p: switch p9_client_read() to passing struct iov_iter * 2015-04-12T02:28:27+00:00 Al Viro viro@zeniv.linux.org.uk 2015-04-02T03:42:28+00:00 e1200fe68f20759f359698f8a8dc81d06d1265f5 ... and make it loop Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> 
... and make it loop

Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
9p: switch p9_client_write() to passing it struct iov_iter * 2015-04-12T02:28:25+00:00 Al Viro viro@zeniv.linux.org.uk 2015-04-02T00:17:51+00:00 070b3656cf228eaaef7b28b59264c5c7cdbdd0fb ... and make it loop until it's done Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> 
... and make it loop until it's done

Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
net/9p: switch the guts of p9_client_{read,write}() to iov_iter 2015-04-12T02:28:25+00:00 Al Viro viro@zeniv.linux.org.uk 2015-04-01T23:57:53+00:00 4f3b35c157e43107cc7e1f1aa06694e8b22e10bb ... and have get_user_pages_fast() mapping fewer pages than requested to generate a short read/write. Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> 
... and have get_user_pages_fast() mapping fewer pages than requested
to generate a short read/write.

Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
net/9p: add a privport option for RDMA transport. 2015-03-22T02:32:33+00:00 Dominique Martinet dominique.martinet@cea.fr 2015-01-09T12:07:00+00:00 f569d3ef8254d4b3b8daa4f131f9397d48bf296c RDMA can use the same kind of weak security as TCP by checking the client can bind to a privileged port, which is better than nothing if TAUTH isn't implemented. Signed-off-by: Dominique Martinet <dominique.martinet@cea.fr> Signed-off-by: Eric Van Hensbergen <ericvh@gmail.com> 
RDMA can use the same kind of weak security as TCP by checking the
client can bind to a privileged port, which is better than nothing
if TAUTH isn't implemented.

Signed-off-by: Dominique Martinet <dominique.martinet@cea.fr>
Signed-off-by: Eric Van Hensbergen <ericvh@gmail.com>
net/9p: Initialize opts->privport as it should be. 2015-03-22T02:27:22+00:00 Dominique Martinet dominique.martinet@cea.fr 2015-01-09T12:05:56+00:00 b99baa43e533eb62a947e623d0ef844cfbf28d8e We're currently using an uninitialized value if option privport is not set, thus (almost) always using a privileged port. Signed-off-by: Dominique Martinet <dominique.martinet@cea.fr> Signed-off-by: Eric Van Hensbergen <ericvh@gmail.com> 
We're currently using an uninitialized value if option privport is not set,
thus (almost) always using a privileged port.

Signed-off-by: Dominique Martinet <dominique.martinet@cea.fr>
Signed-off-by: Eric Van Hensbergen <ericvh@gmail.com>
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net 2015-03-20T22:51:09+00:00 David S. Miller davem@davemloft.net 2015-03-20T22:51:09+00:00 0fa74a4be48e0f810d3dc6ddbc9d6ac7e86cbee8 Conflicts: drivers/net/ethernet/emulex/benet/be_main.c net/core/sysctl_net_core.c net/ipv4/inet_diag.c The be_main.c conflict resolution was really tricky. The conflict hunks generated by GIT were very unhelpful, to say the least. It split functions in half and moved them around, when the real actual conflict only existed solely inside of one function, that being be_map_pci_bars(). So instead, to resolve this, I checked out be_main.c from the top of net-next, then I applied the be_main.c changes from 'net' since the last time I merged. And this worked beautifully. The inet_diag.c and sysctl_net_core.c conflicts were simple overlapping changes, and were easily to resolve. Signed-off-by: David S. Miller <davem@davemloft.net> 
Conflicts:
	drivers/net/ethernet/emulex/benet/be_main.c
	net/core/sysctl_net_core.c
	net/ipv4/inet_diag.c

The be_main.c conflict resolution was really tricky.  The conflict
hunks generated by GIT were very unhelpful, to say the least.  It
split functions in half and moved them around, when the real actual
conflict only existed solely inside of one function, that being
be_map_pci_bars().

So instead, to resolve this, I checked out be_main.c from the top
of net-next, then I applied the be_main.c changes from 'net' since
the last time I merged.  And this worked beautifully.

The inet_diag.c and sysctl_net_core.c conflicts were simple
overlapping changes, and were easily to resolve.

Signed-off-by: David S. Miller <davem@davemloft.net>
net/9p: use memcpy() instead of snprintf() in p9_mount_tag_show() 2015-03-20T14:34:43+00:00 Andrey Ryabinin a.ryabinin@samsung.com 2015-01-27T13:00:19+00:00 179a5bc4b8cbe68ca675057b960dd805867e41c4 p9_mount_tag_show() uses '%s' format string to print non-NULL terminated chan->tag string. This leads to out of bounds memory read, because format '%s' implies that string is NULL-terminated. The length of string is know here, so its simpler and safer to use memcpy instead of snprintf(). Signed-off-by: Andrey Ryabinin <a.ryabinin@samsung.com> Signed-off-by: Dominique Martinet <dominique.martinet@cea.fr> Signed-off-by: Eric Van Hensbergen <ericvh@gmail.com> 
p9_mount_tag_show() uses '%s' format string to print
non-NULL terminated chan->tag string. This leads
to out of bounds memory read, because format '%s'
implies that string is NULL-terminated.

The length of string is know here, so its simpler and safer
to use memcpy instead of snprintf().

Signed-off-by: Andrey Ryabinin <a.ryabinin@samsung.com>
Signed-off-by: Dominique Martinet <dominique.martinet@cea.fr>
Signed-off-by: Eric Van Hensbergen <ericvh@gmail.com>