From 2df5ec0beeb08e58ca027ab19c90ec4a09b57aa6 Mon Sep 17 00:00:00 2001
From: rmacklem <rmacklem@ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f>
Date: Thu, 2 Jun 2011 20:57:36 +0000
Subject: [PATCH] MFC: r222075 Add a sanity check for the existence of an
 "addr" option to both NFS clients. This avoids the crash reported by Sergey
 Kandaurov (pluknet@gmail.com) to the freebsd-fs@ list with subject "[old
 nfsclient] different nmount() args passed from mount vs mount_nfs" dated May
 17, 2011.

git-svn-id: svn://svn.freebsd.org/base/stable/8@222629 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f
---
 sys/fs/nfsclient/nfs_clvfsops.c | 20 +++++++++++++-------
 sys/nfsclient/nfs_vfsops.c      |  4 ++++
 2 files changed, 17 insertions(+), 7 deletions(-)

diff --git a/sys/fs/nfsclient/nfs_clvfsops.c b/sys/fs/nfsclient/nfs_clvfsops.c
index 848a4daa0..a5938bf21 100644
--- a/sys/fs/nfsclient/nfs_clvfsops.c
+++ b/sys/fs/nfsclient/nfs_clvfsops.c
@@ -1075,15 +1075,21 @@ nfs_mount(struct mount *mp)
 		dirpath[0] = '\0';
 	dirlen = strlen(dirpath);
 
-	if (has_nfs_args_opt == 0 && vfs_getopt(mp->mnt_optnew, "addr",
-	    (void **)&args.addr, &args.addrlen) == 0) {
-		if (args.addrlen > SOCK_MAXADDRLEN) {
-			error = ENAMETOOLONG;
+	if (has_nfs_args_opt == 0) {
+		if (vfs_getopt(mp->mnt_optnew, "addr",
+		    (void **)&args.addr, &args.addrlen) == 0) {
+			if (args.addrlen > SOCK_MAXADDRLEN) {
+				error = ENAMETOOLONG;
+				goto out;
+			}
+			nam = malloc(args.addrlen, M_SONAME, M_WAITOK);
+			bcopy(args.addr, nam, args.addrlen);
+			nam->sa_len = args.addrlen;
+		} else {
+			vfs_mount_error(mp, "No server address");
+			error = EINVAL;
 			goto out;
 		}
-		nam = malloc(args.addrlen, M_SONAME, M_WAITOK);
-		bcopy(args.addr, nam, args.addrlen);
-		nam->sa_len = args.addrlen;
 	}
 
 	args.fh = nfh;
diff --git a/sys/nfsclient/nfs_vfsops.c b/sys/nfsclient/nfs_vfsops.c
index 7ce175dc6..b8bed59d0 100644
--- a/sys/nfsclient/nfs_vfsops.c
+++ b/sys/nfsclient/nfs_vfsops.c
@@ -1147,6 +1147,10 @@ nfs_mount(struct mount *mp)
 				goto out;
 			}
 		}
+	} else if (has_addr_opt == 0) {
+		vfs_mount_error(mp, "No server address");
+		error = EINVAL;
+		goto out;
 	}
 	error = mountnfs(&args, mp, nam, args.hostname, &vp,
 	    curthread->td_ucred, negnametimeo);
-- 
2.45.0