Re: openg and path_to_handle

view
thread

Score:

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Cc: Rob Ross <rross@...>, Latchesar Ionkov <lionkov@...>, Christoph Hellwig <hch@...>, Gary Grider <ggrider@...>, <linux-fsdevel@...>

Subject: Re: openg and path_to_handle

Date: Wednesday, December 6, 2006 - 4:50 pm

On Thu, Dec 07, 2006 at 07:40:05AM +1100, David Chinner wrote:
quoted text> Permission checks are done on the path_to_handle(), so in reality
> only root or CAP_SYS_ADMIN users can currently use the
> open_by_handle interface because of this lack of checking. Given
> that our current users of this interface need root permissions to do
> other things (data migration), this has never been an issue.
> 
> This is an implementation detail - it is possible that file handle,
> being opaque, could encode a UID/GID of the user that constructed
> the handle and then allow any process with the same UID/GID to use
> open_by_handle() on that handle. (I think hch has already pointed
> this out.)

While it could do that, I'd be interested to see how you'd construct
the handle such that it's immune to a malicious user tampering with it,
or saving it across a reboot, or constructing one from scratch.

I suspect any real answer to this would have to involve cryptographical
techniques (say, creating a secure hash of the information plus a
boot-time generated nonce).  Now you're starting to use a lot of bits,
and compute time, and you'll need to be sure to keep the nonce secret.
-
To unsubscribe from this list: send the line "unsubscribe linux-fsdevel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

NFSv4/pNFS possible POSIX I/O API standards, Gary Grider, (Tue Nov 28, 12:34 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Matthew Wilcox, (Tue Nov 28, 11:08 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Christoph Hellwig, (Tue Nov 28, 1:54 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Christoph Hellwig, (Wed Nov 29, 5:04 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Matthew Wilcox, (Wed Nov 29, 8:23 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Christoph Hellwig, (Wed Nov 29, 8:39 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Rob Ross, (Fri Dec 1, 6:29 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Latchesar Ionkov, (Fri Dec 1, 10:35 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Rob Ross, (Mon Dec 4, 8:37 pm)

Re: Re: NFSv4/pNFS possible POSIX I/O API standards, Latchesar Ionkov, (Tue Dec 5, 12:47 pm)

Re: Re: NFSv4/pNFS possible POSIX I/O API standards, David Chinner, (Wed Dec 6, 5:48 am)

openg and path_to_handle, Rob Ross, (Wed Dec 6, 11:53 am)

Re: openg and path_to_handle, Latchesar Ionkov, (Wed Dec 6, 7:19 pm)

Re: openg and path_to_handle, Rob Ross, (Thu Dec 14, 5:00 pm)

Re: openg and path_to_handle, Matthew Wilcox, (Thu Dec 14, 5:20 pm)

Re: openg and path_to_handle, Rob Ross, (Thu Dec 14, 7:02 pm)

Re: openg and path_to_handle, David Chinner, (Wed Dec 6, 4:40 pm)

Re: openg and path_to_handle, Rob Ross, (Wed Dec 6, 4:50 pm)

Re: openg and path_to_handle, David Chinner, (Wed Dec 6, 5:01 pm)

Re: openg and path_to_handle, Matthew Wilcox, (Wed Dec 6, 4:50 pm)

Re: openg and path_to_handle, Andreas Dilger, (Wed Dec 6, 6:09 pm)

Re: openg and path_to_handle, Christoph Hellwig, (Wed Dec 6, 7:39 pm)

Re: openg and path_to_handle, Rob Ross, (Thu Dec 14, 6:52 pm)

Re: openg and path_to_handle, Matthew Wilcox, (Wed Dec 6, 6:17 pm)

Re: openg and path_to_handle, Andreas Dilger, (Wed Dec 6, 6:41 pm)

Re: openg and path_to_handle, David Chinner, (Wed Dec 6, 5:09 pm)

Re: openg and path_to_handle, Matthew Wilcox, (Wed Dec 6, 12:04 pm)

Re: openg and path_to_handle, Rob Ross, (Wed Dec 6, 12:20 pm)

Re: openg and path_to_handle, David Chinner, (Wed Dec 6, 4:57 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Rob Ross, (Tue Dec 5, 5:44 pm)

Re: Re: NFSv4/pNFS possible POSIX I/O API standards, Latchesar Ionkov, (Wed Dec 6, 7:25 pm)

openg, Christoph Hellwig, (Wed Dec 6, 7:01 am)

Re: openg, Rob Ross, (Wed Dec 6, 11:42 am)

Re: openg, Christoph Hellwig, (Wed Dec 6, 7:32 pm)

Re: openg, Rob Ross, (Thu Dec 14, 7:36 pm)

Re: openg, Trond Myklebust, (Wed Dec 6, 11:41 am)

Re: Re: NFSv4/pNFS possible POSIX I/O API standards, Matthew Wilcox, (Tue Dec 5, 1:01 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Peter Staubach, (Tue Dec 5, 5:50 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Christoph Hellwig, (Tue Dec 5, 6:02 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Matthew Wilcox, (Wed Nov 29, 8:35 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Gary Grider, (Wed Nov 29, 12:26 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Christoph Hellwig, (Wed Nov 29, 1:18 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Andreas Dilger, (Wed Nov 29, 5:48 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Ric Wheeler, (Fri Dec 1, 11:52 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Steven Whitehouse, (Wed Nov 29, 6:25 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Christoph Hellwig, (Thu Nov 30, 8:29 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Anton Altaparmakov, (Wed Nov 29, 6:18 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Brad Boyer, (Wed Nov 29, 4:26 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Christoph Hellwig, (Thu Nov 30, 5:25 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Sage Weil, (Thu Nov 30, 1:49 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Trond Myklebust, (Fri Dec 1, 1:26 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Sage Weil, (Fri Dec 1, 3:08 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Trond Myklebust, (Fri Dec 1, 10:41 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Andreas Dilger, (Sat Dec 2, 9:52 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Sage Weil, (Sun Dec 3, 12:10 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Andreas Dilger, (Mon Dec 4, 3:32 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Trond Myklebust, (Mon Dec 4, 11:15 am)

Re: readdirplus() as possible POSIX I/O API, Andreas Dilger, (Tue Dec 5, 6:26 am)

Re: Re: readdirplus() as possible POSIX I/O API, Latchesar Ionkov, (Tue Dec 5, 1:06 pm)

Re: readdirplus() as possible POSIX I/O API, Rob Ross, (Tue Dec 5, 6:48 pm)

Re: readdirplus() as possible POSIX I/O API, Trond Myklebust, (Tue Dec 5, 11:23 am)

Re: readdirplus() as possible POSIX I/O API, Andreas Dilger, (Wed Dec 6, 6:28 am)

Re: readdirplus() as possible POSIX I/O API, Trond Myklebust, (Wed Dec 6, 11:10 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Rob Ross, (Mon Dec 4, 8:59 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Peter Staubach, (Tue Dec 5, 10:37 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Trond Myklebust, (Tue Dec 5, 1:56 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Christoph Hellwig, (Tue Dec 5, 6:07 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Rob Ross, (Tue Dec 5, 5:50 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Christoph Hellwig, (Tue Dec 5, 6:05 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Nikita Danilov, (Thu Dec 7, 7:39 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Ulrich Drepper, (Tue Dec 5, 7:55 pm)

statlite(), Rob Ross, (Thu Dec 14, 7:58 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Andreas Dilger, (Wed Dec 6, 6:06 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Ulrich Drepper, (Wed Dec 6, 1:19 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Rob Ross, (Wed Dec 6, 1:27 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Ulrich Drepper, (Wed Dec 6, 1:42 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Andreas Dilger, (Thu Dec 7, 1:57 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Ulrich Drepper, (Fri Dec 15, 6:37 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Andreas Dilger, (Sat Dec 16, 2:13 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Ulrich Drepper, (Sat Dec 16, 3:08 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Ragnar , (Wed Dec 6, 2:01 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Ulrich Drepper, (Wed Dec 6, 2:13 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Ragnar , (Sun Dec 17, 10:41 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Ulrich Drepper, (Sun Dec 17, 3:07 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Matthew Wilcox, (Sun Dec 17, 3:38 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Ulrich Drepper, (Sun Dec 17, 5:51 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Ragnar , (Sun Dec 17, 10:57 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Gary Grider, (Sun Dec 17, 11:54 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Sage Weil, (Tue Dec 5, 7:18 pm)

Re: Re: NFSv4/pNFS possible POSIX I/O API standards, Latchesar Ionkov, (Tue Dec 5, 12:55 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Christoph Hellwig, (Tue Dec 5, 6:12 pm)

Re: Re: NFSv4/pNFS possible POSIX I/O API standards, Latchesar Ionkov, (Wed Dec 6, 7:12 pm)

Re: Re: NFSv4/pNFS possible POSIX I/O API standards, Trond Myklebust, (Wed Dec 6, 7:33 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Trond Myklebust, (Tue Dec 5, 10:55 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Ragnar , (Wed Dec 6, 8:22 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Trond Myklebust, (Wed Dec 6, 11:14 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Rob Ross, (Tue Dec 5, 6:11 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Trond Myklebust, (Tue Dec 5, 7:24 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Rob Ross, (Wed Dec 6, 12:42 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Matthew Wilcox, (Tue Dec 5, 10:20 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Rob Ross, (Wed Dec 6, 11:04 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Matthew Wilcox, (Wed Dec 6, 11:44 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Rob Ross, (Wed Dec 6, 12:15 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Gary Grider, (Tue Dec 5, 12:44 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Christoph Hellwig, (Tue Dec 5, 6:05 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Sage Weil, (Fri Dec 1, 12:47 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Trond Myklebust, (Fri Dec 1, 2:07 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Andreas Dilger, (Sat Dec 2, 9:57 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Sage Weil, (Fri Dec 1, 2:42 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Peter Staubach, (Mon Dec 4, 2:02 pm)

Re: readdirplus() as possible POSIX I/O API, Sage Weil, (Tue Dec 5, 7:20 pm)

Re: readdirplus() as possible POSIX I/O API, Peter Staubach, (Wed Dec 6, 11:48 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Trond Myklebust, (Fri Dec 1, 3:13 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Sage Weil, (Fri Dec 1, 4:32 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Christoph Hellwig, (Wed Nov 29, 5:14 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Andreas Dilger, (Tue Nov 28, 6:54 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Wendy Cheng, (Tue Nov 28, 7:28 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Christoph Hellwig, (Wed Nov 29, 5:12 am)

Re: NFSv4/pNFS possible POSIX I/O API standards, Russell Cattelan, (Tue Nov 28, 4:17 pm)

Re: NFSv4/pNFS possible POSIX I/O API standards, Anton Altaparmakov, (Tue Nov 28, 7:28 am)

Navigation

Mail archive search

Popular discussions


linux-kernel:
Mariusz Kozlowski	[PATCH 12] fs/reiser4/plugin/file/cryptcompress.c: kmalloc + memset conversion to ...
Greg KH	[GIT PATCH] driver core patches against 2.6.24
Eric Paris	Re: [malware-list] [RFC 0/5] [TALPA] Intro to a linux interface for on access scan...
Pardo	Re: pthread_create() slow for many threads; also time to revisit 64b context switc...
git:
Aaron Bentley	Re: VCS comparison table
Ken Pratt	pack operation is thrashing my server
Jonas Fonseca	Re: First cut at git port to Cygwin
Ingo Molnar	[OT] Your branch is ahead of the tracked remote branch 'origin/master' by 50 commi...
openbsd-misc:
Richard Stallman	Real men don't attack straw men
Richard Stallman	Re: Real men don't attack straw men
GVG GVG	ssh_exchange_identification: Connection closed by remote host
Predrag Punosevac	Skype on the OpenBSD
linux-activists:
Jim Winstead Jr.	Re: Root Disk/Book Disk Compatibility
Rick Emerson	Re: [comp.os.linux]: Re: File system issues!
Doug Evans	Re: Stabilizing Linux
Dong Liu	Re: CXterm for LINUX

Latest forum posts


Easter Eggs in windows XP	2 hours ago	Windows
Kernel Module Oops! TRICKY PROBLEM!	2 hours ago	Linux kernel
usb mic not detected	18 hours ago	Applications and Utilities
linux-2.6.10	1 day ago	Linux kernel
How to detect usb device insertioin and removal event ?	1 day ago	Linux general
Extended configuration Read/Write	1 day ago	Windows
Add ext2 inode field	1 day ago	Linux kernel
the kernel how to power off the machine	2 days ago	Linux kernel
struct gendisk via request_queue	2 days ago	Linux kernel
page initialization during kernel initialization	3 days ago	Linux kernel

Show all forums...

Recent Tags

-rc 2.6.27 quote Linux Intel Linus Torvalds 2.6.27-rc8 -rc8 bugs

more tags

Colocation donated by:

Online users

Syndicate