Sagar Singh has uploaded this change for review.

View Change

Fix race between nfs_rpc_call and nfs_rpc_call_process(callback).

If the callback (nfs_rpc_call_process) runs before the call
(nfs_rpc_call) finishes, it can hit use-after-free for the
"rpc_call_t" data structure shared between these. This change
uses a local callback channel pointer, in nfs_rpc_call to
avoid segmentation fault.

Change-Id: Ia95f35d9b3730cf47525ba8bbb3f8030ef0b782a
Signed-off-by: Sagar Singh <sagar.it.iiests@gmail.com>
---
M src/MainNFSD/nfs_rpc_callback.c
M src/libntirpc
2 files changed, 31 insertions(+), 8 deletions(-)

git pull ssh://review.gerrithub.io:29418/ffilz/nfs-ganesha refs/changes/08/547808/1

To view, visit change 547808. To unsubscribe, or for help writing mail filters, visit settings.

Gerrit-Project: ffilz/nfs-ganesha
Gerrit-Branch: next
Gerrit-Change-Id: Ia95f35d9b3730cf47525ba8bbb3f8030ef0b782a
Gerrit-Change-Number: 547808
Gerrit-PatchSet: 1
Gerrit-Owner: Sagar Singh <sagar.it.iiests@gmail.com>
Gerrit-MessageType: newchange