nfsd: let "insecure" flag vary by pseudoflavor This was an oversight; it should be among the export flags that can be allowed to vary by pseudoflavor. This allows an administrator to (for example) allow auth_sys mounts only from low ports, but allow auth_krb5 mounts to use any port. Signed-off-by: J. Bruce Fields <bfields@citi.umich.edu>

commit: 12045a6ee9908b38b6d286530c7d816e39071346 [log] [tgz]
author: J. Bruce Fields <bfields@citi.umich.edu> Tue Dec 08 18:15:52 2009 -0500
committer: J. Bruce Fields <bfields@citi.umich.edu> Mon Dec 14 19:08:58 2009 -0500
tree: 649491cd62d895c32cde4ab488df7e32557eedff
parent: e8e8753f7a32ce4f636771126fc8eba0dc4ad817 [diff] [blame]
diff --git a/fs/nfsd/nfsfh.c b/fs/nfsd/nfsfh.c
index 0eb1c59..951938d 100644
--- a/fs/nfsd/nfsfh.c
+++ b/fs/nfsd/nfsfh.c

@@ -88,8 +88,10 @@
 static __be32 nfsd_setuser_and_check_port(struct svc_rqst *rqstp,
 					  struct svc_export *exp)
 {
+	int flags = nfsexp_flags(rqstp, exp);
+
 	/* Check if the request originated from a secure port. */
-	if (!rqstp->rq_secure && EX_SECURE(exp)) {
+	if (!rqstp->rq_secure && (flags & NFSEXP_INSECURE_PORT)) {
 		RPC_IFDEBUG(char buf[RPC_MAX_ADDRBUFLEN]);
 		dprintk(KERN_WARNING
 		       "nfsd: request from insecure port %s!\n",
commit	12045a6ee9908b38b6d286530c7d816e39071346	[log] [tgz]
author	J. Bruce Fields <bfields@citi.umich.edu>	Tue Dec 08 18:15:52 2009 -0500
committer	J. Bruce Fields <bfields@citi.umich.edu>	Mon Dec 14 19:08:58 2009 -0500
tree	649491cd62d895c32cde4ab488df7e32557eedff
parent	e8e8753f7a32ce4f636771126fc8eba0dc4ad817 [diff] [blame]