NFS: Don't drop CB requests with invalid principals Before commit 778be232a207 ("NFS do not find client in NFSv4 pg_authenticate"), the Linux callback server replied with RPC_AUTH_ERROR / RPC_AUTH_BADCRED, instead of dropping the CB request. Let's restore that behavior so the server has a chance to do something useful about it, and provide a warning that helps admins correct the problem. Fixes: 778be232a207 ("NFS do not find client in NFSv4 ...") Signed-off-by: Chuck Lever <chuck.lever@oracle.com> Tested-by: Steve Wise <swise@opengridcomputing.com> Signed-off-by: Anna Schumaker <Anna.Schumaker@Netapp.com>

commit: a4e187d83d88eeaba6252aac0a2ffe5eaa73a818 [log] [tgz]
author: Chuck Lever <chuck.lever@oracle.com> Wed Jun 29 13:55:22 2016 -0400
committer: Anna Schumaker <Anna.Schumaker@Netapp.com> Mon Jul 11 15:50:43 2016 -0400
tree: 31ac04d7813866463fccf2ec9ec4dea9c88edc75
parent: 0533b13072f4bf35738290d2cf9e299c7bc6c42a [diff] [blame]
diff --git a/net/sunrpc/svc.c b/net/sunrpc/svc.c
index 87290a5..c5b0cb4 100644
--- a/net/sunrpc/svc.c
+++ b/net/sunrpc/svc.c

@@ -1194,6 +1194,11 @@
 				procp->pc_release(rqstp, NULL, rqstp->rq_resp);
 			goto dropit;
 		}
+		if (*statp == rpc_autherr_badcred) {
+			if (procp->pc_release)
+				procp->pc_release(rqstp, NULL, rqstp->rq_resp);
+			goto err_bad_auth;
+		}
 		if (*statp == rpc_success &&
 		    (xdr = procp->pc_encode) &&
 		    !xdr(rqstp, resv->iov_base+resv->iov_len, rqstp->rq_resp)) {
commit	a4e187d83d88eeaba6252aac0a2ffe5eaa73a818	[log] [tgz]
author	Chuck Lever <chuck.lever@oracle.com>	Wed Jun 29 13:55:22 2016 -0400
committer	Anna Schumaker <Anna.Schumaker@Netapp.com>	Mon Jul 11 15:50:43 2016 -0400
tree	31ac04d7813866463fccf2ec9ec4dea9c88edc75
parent	0533b13072f4bf35738290d2cf9e299c7bc6c42a [diff] [blame]