_readdir_single_dirent_cb is invoked with zeroed pointers when called beneath readdir_r rather than directly readdirplus_r.
Those pointers are then dereferenced in assignment.
There is still a problem in readdir_r, so I extended the basic scenario in testceph.cc.
Methods readdir_r and readdirplus_r are bypassed in cfuse.
Brian Chrisman (2):
fix null deref when callback invoked en route from readdir_r rather
than readdirplus_r
add basic test case for readdir_r
src/client/Client.cc | 8 ++++++--
src/client/testceph.cc | 36 +++++++++++++++++++++++++++++++++++-
2 files changed, 41 insertions(+), 3 deletions(-)
--
To unsubscribe from this list: send the line "unsubscribe ceph-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
