| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 01 Jun 2011 16:10:26 +0300 From: Boaz Harrosh <bharrosh@...asas.com> To: Bernd Schubert <bernd.schubert@...m.fraunhofer.de> CC: Ted Ts'o <tytso@....edu>, linux-nfs@...r.kernel.org, linux-ext4@...r.kernel.org Subject: Re: infinite getdents64 loop On 05/31/2011 08:30 PM, Bernd Schubert wrote: > On 05/31/2011 07:13 PM, Boaz Harrosh wrote: >> On 05/31/2011 03:35 PM, Ted Ts'o wrote: >>> On Tue, May 31, 2011 at 12:18:11PM +0200, Bernd Schubert wrote: >>>> >>>> Out of interest, did anyone ever benchmark if dirindex provides any >>>> advantages to readdir? And did those benchmarks include the >>>> disadvantages of the present implementation (non-linear inode >>>> numbers from readdir, so disk seeks on stat() (e.g. from 'ls -l') or >>>> 'rm -fr $dir')? >>> >>> The problem is that seekdir/telldir is terminally broken (and so is >>> NFSv2 for using a such a tiny cookie) in that it fundamentally assumes >>> a linear data structure. If you're going to use any kind of >>> tree-based data structure, a 32-bit "offset" for seekdir/telldir just >>> doesn't cut it. We actually play games where we memoize the low >>> 32-bits of the hash and keep track of which cookies we hand out via >>> seekdir/telldir so that things mostly work --- except for NFSv2, where >>> with the 32-bit cookie, you're just hosed. >>> >>> The reason why we have to iterate over the directory in hash tree >>> order is because if we have a leaf node split, half the directories >>> entries get copied to another directory entry, given the promises made >>> by seekdir() and telldir() about directory entries appearing exactly >>> once during a readdir() stream, even if you hold the fd open for weeks >>> or days, mean that you really have to iterate over things in hash >>> order. >> >> open fd means that it does not survive a server reboot. Why don't you >> keep an array per open fd, and hand out the array index. In the array >> you can keep a pointer to any info you want to keep. (that's the meaning of >> a cookie) > > An array can take lots of memory for a large directory, of course. Do we > really want to do that in kernel space? Although I wouldn't have a > problem to reserve a certain amount of memory for that. But what do we > do if that gets exhausted (for example directory too large or several > open filedescriptors)? You miss understood me. Ted was complaining that the cookie was only 32 bit and he hoped it was bigger, perhaps 128 minimum. What I said is that for each open fd, a cookie is returned that denotes a temporary space allocated for just that caller. When a second call with the same fd, same cookie comes, the allocated object is inspected to retrieve all the information needed to continue the walk from the same place. So the allocated space is only per active caller, up to the time fd is closed. (I never meant per directory entry) > And how does that help with NFS and other cluster filesystems where the > client passes over the cookie? We ignore posix compliance then? > I was not referring to that. I understand that this is an hard problem but it is solvable. The space per cookie is solved above. > Thanks, > Bernd But this is all talk. I don't know enough, or use, ext4 to be able to solve it myself. So I'm just babbling out here. Just that in the server we've done it before to keep things in an internal array and return the index as a magic cookie, when more information was needed internally. Boaz -- To unsubscribe from this list: send the line "unsubscribe linux-ext4" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists