On Fri, 23 Aug 2024 11:51:08 -0400, Olga Kornievskaia wrote:
> Prior to commit 3f29cc82a84c ("nfsd: split sc_status out of
> sc_type") states_show() relied on sc_type field to be of valid
> type before calling into a subfunction to show content of a
> particular stateid. From that commit, we split the validity of
> the stateid into sc_status and no longer changed sc_type to 0
> while unhashing the stateid. This resulted in kernel oopsing
> for nfsv4.0 opens that stay around and in nfs4_show_open()
> would derefence sc_file which was NULL.
>
> [...]
Applied to nfsd-fixes for v6.11-rc, thanks!
[1/1] nfsd: prevent panic for nfsv4.0 closed files in nfs4_show_open
commit: a204501e1743d695ca2930ed25a2be9f8ced96d3
--
Chuck Lever
