[stable] [45/55] cifs: check for NULL session password

Greg KH Fri, 05 Aug 2011 17:09:53 -0700

2.6.32-longterm review patch.  If anyone has any objections, please let us know.


------------------

From: Jeff Layton <jlay...@redhat.com>

commit 24e6cf92fde1f140d8eb0bf7cd24c2c78149b6b2 upstream.

It's possible for a cifsSesInfo struct to have a NULL password, so we
need to check for that prior to running strncmp on it.

Signed-off-by: Jeff Layton <jlay...@redhat.com>
Signed-off-by: Steve French <sfre...@us.ibm.com>
Signed-off-by: Greg Kroah-Hartman <gre...@suse.de>

---
 fs/cifs/connect.c |    1 +
 1 file changed, 1 insertion(+)

--- a/fs/cifs/connect.c
+++ b/fs/cifs/connect.c
@@ -1605,6 +1605,7 @@ cifs_find_smb_ses(struct TCP_Server_Info
                                    MAX_USERNAME_SIZE))
                                continue;
                        if (strlen(vol->username) != 0 &&
+                           ses->password != NULL &&
                            strncmp(ses->password,
                                    vol->password ? vol->password : "",
                                    MAX_PASSWORD_SIZE))


_______________________________________________
stable mailing list
stable@linux.kernel.org
http://linux.kernel.org/mailman/listinfo/stable

[stable] [45/55] cifs: check for NULL session password

Reply via email to