| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 22 Nov 2007 23:57:27 -0500 From: Theodore Tso <tytso@....edu> To: Alan Cox <alan@...rguk.ukuu.org.uk> Cc: Arjan van de Ven <arjan@...radead.org>, Jan Kara <jack@...e.cz>, linux-kernel@...r.kernel.org Subject: Re: Why is FIBMAP ioctl root only? On Thu, Nov 22, 2007 at 07:56:20PM +0000, Alan Cox wrote: > > probably principle of least privilege; the location on physical media > > for a file is clearly something internal to the OS, and non-trusted > > users normally don't have any business knowing that. > > FIBMAP isn't correctly locked against misuse, and that requires FIBMAP is > safe against truncate and relocation. There was thread on l/k about this > a month ago or so. > > Its also the wrong API (32bit, no notion of extents, compression etc) The right approach would be to create a new syscall, and a new entry point in the inode operations table, and filesystems could provide support for the new system call as their bmap code was audited for correctness. For bonus points the new interface would also provide make it more efficient for filesystems to return information about extents. (i.e., Not only is logical block 150 mapped to physical block 5550, it is part of an 200 block extent starting at logical block 0 to physical block 5400.) - Ted - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists