| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 06 Jan 2009 16:55:16 -0800 From: ebiederm@...ssion.com (Eric W. Biederman) To: Matt Helsley <matthltc@...ibm.com> Cc: "J. Bruce Fields" <bfields@...ldses.org>, Trond Myklebust <trond.myklebust@....uio.no>, "Serge E. Hallyn" <serue@...ibm.com>, Linux Containers <containers@...ts.linux-foundation.org>, linux-nfs@...r.kernel.org, Linux Kernel Mailing List <linux-kernel@...r.kernel.org>, Chuck Lever <chuck.lever@...cle.com>, Linux Containers <containers@...ts.osdl.org>, Cedric Le Goater <clg@...ibm.com> Subject: Re: [RFC][PATCH 2/4] sunrpc: Use utsnamespaces Matt Helsley <matthltc@...ibm.com> writes: > On Tue, 2009-01-06 at 18:53 -0500, J. Bruce Fields wrote: >> On Tue, Jan 06, 2009 at 06:35:43PM -0500, Trond Myklebust wrote: >> > On Tue, 2009-01-06 at 18:32 -0500, J. Bruce Fields wrote: >> > > On Tue, Jan 06, 2009 at 06:15:34PM -0500, Trond Myklebust wrote: >> > > > On Tue, 2009-01-06 at 15:04 -0800, Eric W. Biederman wrote: >> > > > > That implies to me you want to capture the value at mount time, and to >> > > > > pass it in to the rpc_call creation, and only at very specific well >> > > > > defined points where we interact with user space should we examine >> > > > > current->utsname(). At which point there should be no question >> > > > > of current->utsname() is valid as the user space process is alive. >> > > > >> > > > Why pretend that the filesystem is owned by a particular namespace? It >> > > > can, and will be shared among many containers... Sounds right. Still like the owner of a file it can happen that some containers are more correct than others. Especially in the context of mount merging and the other sophisticated caching that happens in NFS this increasingly sounds like something that belongs in the cred as that is where it is used. >> > > If the only purpose of this is to fill in the auth_unix cred then >> > > shouldn't it be part of whatever cred structures are passed around? >> > >> > So how does tracking it in a shared structure like the rpc_client help? >> > If you consider it to be part of the cred, then it needs to be tracked >> > in the cred... >> >> Right, that's what I meant. >> >> It seems like overkill, though. Does anyone actually care whether these >> names are right? > > That's certainly a tempting angle. However we may not "control" the > server code -- couldn't there be some oddball (maybe even proprietary) > NFS servers out there that users do care about interacting with? Matt could you look at what it will take to do the right thing from the network namespace side of things as well? I believe it is going to require the same level of understanding of the interactions in the code to get there. For the network namespace we should cache it at mount or server startup and use it until we are done. In a network namespace context there are good reasons for that because talking to 10.0.0.1 on one network may not be the same machine as talking to 10.0.0.1 on another network. NFS reestablishes tcp connections if the connection to the server breaks doesn't it? Or is that left to user space? Eric -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists