From: Jeff Layton <jlayton@redhat.com>
To: Trond Myklebust <trond.myklebust@fys.uio.no>
Cc: linux-fsdevel@vger.kernel.org, aviro@redhat.com,
nfs@lists.sourceforge.net, nhorman@tuxdriver.com
Subject: Re: [RFC:PATCH] How best to handle implicit clearing of setuid/setgid bits on NFS?
Date: Tue, 24 Jul 2007 07:42:25 -0400 [thread overview]
Message-ID: <20070724074225.730c9845.jlayton@redhat.com> (raw)
In-Reply-To: <1185222803.6582.42.camel@localhost>
On Mon, 23 Jul 2007 16:33:23 -0400 Trond Myklebust
<trond.myklebust@fys.uio.no> wrote:
> What is so bloody difficult about remembering to support ATTR_KILL_SUID
> ATTR_KILL_SGID vs all the other ATTR_* flags if you are choosing to
> implement your own .setattr?
> As long as there exists a simple VFS helper to do the translation into
> an ATTR_MODE request, so that those filesystems that rely on the current
> translation by 'notify_change' can easily migrate, then I can't see why
> this is such a problem.
>
You're quite right. If you declare your own .setattr, then you ought to
know what you're doing. My concern was more about the breadth of the
change and how best to make sure we don't open security holes with this.
On the technical side, I don't think we can just move this into
inode_setattr. The ia_mode really needs to be set before inode_change_ok
is called. So I think we'll have to make sure that all .setattr ops
call the helper explicitly.
I'm working on a patchset now and hope to have something together in a
few days.
--
Jeff Layton <jlayton@redhat.com>
-------------------------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc.
Still grepping through log files to find problems? Stop.
Now Search log events and configuration files using AJAX and a browser.
Download your FREE copy of Splunk now >> http://get.splunk.com/
_______________________________________________
NFS maillist - NFS@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/nfs
prev parent reply other threads:[~2007-07-24 11:42 UTC|newest]
Thread overview: 5+ messages / expand[flat|nested] mbox.gz Atom feed top
[not found] <20070529124705.a1e70735.jlayton@redhat.com>
[not found] ` <1182982555.5311.67.camel@heimdal.trondhjem.org>
2007-06-28 2:13 ` [RFC:PATCH] How best to handle implicit clearing of setuid/setgid bits on NFS? Jeff Layton
2007-06-28 13:38 ` Trond Myklebust
2007-07-23 19:05 ` Jeff Layton
2007-07-23 20:33 ` [NFS] " Trond Myklebust
2007-07-24 11:42 ` Jeff Layton [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20070724074225.730c9845.jlayton@redhat.com \
--to=jlayton@redhat.com \
--cc=aviro@redhat.com \
--cc=linux-fsdevel@vger.kernel.org \
--cc=nfs@lists.sourceforge.net \
--cc=nhorman@tuxdriver.com \
--cc=trond.myklebust@fys.uio.no \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).