| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 12 Jul 2019 12:02:24 +0200
From: Pali Rohár <pali.rohar@...il.com>
To: Jan Kara <jack@...e.com>,
"Steven J. Magnani" <steve.magnani@...idescorp.com>,
Roald Strauss <mr_lou@...fall.dk>,
linux-fsdevel@...r.kernel.org, linux-kernel@...r.kernel.org
Subject: UDF filesystem image with Write-Once UDF Access Type
Hello,
I had discussion with Roald and based on his tests, Linux kernel udf.ko
driver mounts UDF filesystem image with Write-Once UDF Access Type as
normal read/write filesystem.
I think this is a bug as Write-Once Access Type is defined that existing
blocks on filesystem cannot be rewritten. Only new blocks can be
appended after end of device. Basically it means special HW support from
underlying media, e.g. for optical medias packet-writing technique (or
ability to burn new session) and CDROM_LAST_WRITTEN ioctl to locate
"current" end of device.
In my opinion without support for additional layer, kernel should treat
UDF Write-Once Access Type as read-only mount for userspace. And not
classic read/write mount.
If you want to play with Write-Once Access Type, use recent version of
mkudffs and choose --media-type=cdr option, which generates UDF
filesystem suitable for CD-R (Write-Once Access Type with VAT and other
UDF options according to UDF specification).
Also in git master of udftools has mkduffs now new option --read-only
which creates UDF image with Read-Only Access Type.
It seems that udf.ko does not support updating VAT table, so probably it
should treat also filesystem with VAT as read-only too.
--
Pali Rohár
pali.rohar@...il.com
Powered by blists - more mailing lists