Re: problems with latest smbfs changes on 2.4.34 and security backports

From: Willy Tarreau
Date: Tue Jan 23 2007 - 00:43:41 EST

Next message: Balbir Singh: "Re: Why active list and inactive list?"
Previous message: Nicholas Miell: "Re: sigaction's ucontext_t with incorrect stack reference whenSA_SIGINFO is being used ?"
In reply to: dann frazier: "Re: problems with latest smbfs changes on 2.4.34 and security backports"
Next in thread: dann frazier: "Re: problems with latest smbfs changes on 2.4.34 and security backports"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi Dann,

On Mon, Jan 22, 2007 at 11:19:43AM -0700, dann frazier wrote:
> On Mon, Jan 22, 2007 at 10:50:47AM +1100, Grant Coady wrote:
> > On Mon, 22 Jan 2007 00:03:21 +0100, Willy Tarreau <w@xxxxxx> wrote:
> > grant@sempro:/home/other$ uname -r
> > 2.4.34b
> > grant@sempro:/home/other$ mkdir test
> > grant@sempro:/home/other$ ln -s test testlink
> > ln: creating symbolic link `testlink' to `test': Operation not permitted
> > grant@sempro:/home/other$ echo "this is also a test" > test/file
> > grant@sempro:/home/other$ ln -s test/file test2
> > ln: creating symbolic link `test2' to `test/file': Operation not permitted
> >
> > trying to create symlinks.
> >
> > No problems creating symlinks with 2.4.33.3.
>
> Yes, I've found that this varies depending upon the options passed. If
> uid=0, I can create symlinks, otherwise I always get permission
> denied. This behavior appears to be consistent with 2.6.
>
> I also need to do some testing with the proposed patch to smbmount
> that will let you omit options (current versions will always pass an
> option to the kernel, even if you the user did not provide one).
> If you do not pass options, the behavior should fallback to
> server-provided values.
>
> Note that this bug has been my only interaction with smbfs, so I'm
> certainly no expert on how it *should* behave. My plan is to
> take all of the use cases we're coming up with and try to maintain
> the "historic" 2.4 behavior as much as possible, but still not
> silently dropping user-provided mount options. When the behavior needs
> to change to honor them, I'll try to match what current 2.6
> does. Make sense?

Yes, it does for me. So to sum up, I apply your patch to 2.4.34.1
and it restores the same behaviour for Santiago and Grant as they get
in 2.6. Whether it's the expected behaviour or not is not the point,
as it will be easier for us to later mimic 2.6 if a change is needed
since we're not experts at all in this area.

If we're all OK for this, I'll go with that.

Thanks guys,
Willy

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Balbir Singh: "Re: Why active list and inactive list?"
Previous message: Nicholas Miell: "Re: sigaction's ucontext_t with incorrect stack reference whenSA_SIGINFO is being used ?"
In reply to: dann frazier: "Re: problems with latest smbfs changes on 2.4.34 and security backports"
Next in thread: dann frazier: "Re: problems with latest smbfs changes on 2.4.34 and security backports"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]