SUNRPC: Use xdr_stream to encode Reply verifier in svcauth_unix_accept()

Done as part of hardening the server-side RPC header encoding path. Reviewed-by: Jeff Layton <jlayton@kernel.org> Signed-off-by: Chuck Lever <chuck.lever@oracle.com>

SUNRPC: Use xdr_stream to encode Reply verifier in svcauth_unix_accept()
Done as part of hardening the server-side RPC header encoding path. Reviewed-by: Jeff Layton <jlayton@kernel.org> Signed-off-by: Chuck Lever <chuck.lever@oracle.com>
3b03f3c5 · Chuck Lever · b2c88ca6 · 3b03f3c5
Commit 3b03f3c5 authored Jan 08, 2023 by Chuck Lever
Hide whitespace changes
Inline Side-by-side

Showing with 4 additions and 5 deletions

net/sunrpc/svcauth_unix.c net/sunrpc/svcauth_unix.c +4 -5

No files found.
--- a/net/sunrpc/svcauth_unix.c
+++ b/net/sunrpc/svcauth_unix.c
@@ -894,7 +894,6 @@ struct auth_ops svcauth_tls = {
 static int
 svcauth_unix_accept(struct svc_rqst *rqstp)
 {
-	struct kvec	*resv = &rqstp->rq_res.head[0];
 	struct xdr_stream *xdr = &rqstp->rq_arg_stream;
 	struct svc_cred	*cred = &rqstp->rq_cred;
 	struct user_namespace *userns;
@@ -956,12 +955,12 @@ svcauth_unix_accept(struct svc_rqst *rqstp)
 		return SVC_DENIED;
 	}
-	/* Put NULL verifier */
+	svcxdr_init_encode(rqstp);
-	svc_putnl(resv, RPC_AUTH_NULL);
+	if (xdr_stream_encode_opaque_auth(&rqstp->rq_res_stream,
-	svc_putnl(resv, 0);
+					  RPC_AUTH_NULL, NULL, 0) < 0)
+		return SVC_CLOSE;
 	rqstp->rq_cred.cr_flavor = RPC_AUTH_UNIX;
-	svcxdr_init_encode(rqstp);
 	return SVC_OK;
 badcred: