Catch up on stories from the past week (and beyond) at the Slashdot story archive

Major NFS Bugs Found & Being Fixed 24

Posted by Hemos on Sunday December 16, 2001 @10:01AM from the quashing-the-bugs dept.

mbadolato writes "From an article at kerneltrap.org: On the FreeBSD hacker mailing list, Jordan Hubbard commented on some serious issues with NFS, posting a tool called 'fsx' - originally developed for the NeXT OS - that was ideal for finding them. Matt Dillon was quite impressed by the tool and immediately started playing with it. In very little time, he presented a number of major fixes..."

There's a good collection of the emails here describing some of the fixes that Matt Dillon has made."

This discussion has been archived. No new comments can be posted.

Major NFS Bugs Found & Being Fixed

Load All Comments

Search 24 Comments Log In/Create an Account

Comments Filter:

Not only NFS (Score:3, Informative)

by flynn_nrg ( 266463 ) writes: <mmendez@gmail.BOYSENcom minus berry> on Sunday December 16, 2001 @11:36AM (#2711230) Homepage Journal

Apparently Matt found one bug in the softupdates code and reported it to McKusick, who has written a patch. Matt is still testing the new code in -current and if everythings works ok it will be MFC'ed to -stable within one week, so that this code makes it for 4.5-RELEASE that is coming soon.

Share
twitter facebook
- - Re:Not only NFS (Score:1)
    
    by oka ( 32496 ) writes:
    
    MFC: Merge From -Current
  - Re:Not only NFS (Score:2, Informative)
    
    by flynn_nrg ( 266463 ) writes:
    
    Merge From Current, when a patch or new feature is tested long enough in -CURRENT the core team back ports it to -STABLE.
fsx.c (Score:1)

by izzertaq ( 304006 ) writes:

blows up my FreeBSD 4.4 server pretty quickly (it panics and reboots.) Yes, I'm running softupdates.

Anyone gotten this to run on linux? After I fixed the (silly) division by zero error, it still dies with an mmap: Invalid argument error ...
- Re:fsx.c (on GNU/Linux) (Score:3, Informative)
  
  by Carl ( 12719 ) writes:
  
  It was already discussed on the kernel mailing list.
  Including a (trivial) port to GNU/Linux.
  Local filesystems are OK (except for ReiserFS), but NFS does show some problems.
  http://www.uwsg.indiana.edu/hypermail/linux/kernel /0112.1/1573.html [indiana.edu]
It also shows problems in Linux.... (Score:3, Informative)

by pwagland ( 472537 ) writes: on Sunday December 16, 2001 @05:51PM (#2712303) Journal

This [indiana.edu] is the linux-kernel thread.
In essence, the problem is seen on reiserfs (being investigated [indiana.edu]) and also in NFS. No-one has mentioned following up on the NFS problems yet...
Nor have problems yet been seen in XFS, Ext2 or Ext3.

Share
twitter facebook
- Re:Major NFS bugs found, but hidden from main page (Score:3, Interesting)
  
  by Coz ( 178857 ) writes:
  
  Would you rather be oblivious? As it stands, *BSD fans see this note, and a lot of work is going into developing a fix, not only for BSD, but for Linux as well - if you want to follow the status, follow the links/mirrors/forums. The tool these guys are using (publicly available) has discovered major flaws in the internal VM implementation - what are the odds you'd EVER hear of that with M$? (BTW, has anyone run this against M$'s NFS implementations?)
  
  Besides, part of the fun of open-source is watching the evolution. The emails documenting how this evolved are fun to read - wonder what M$'s equivalents say? We'll never know....
- Re:Major NFS bugs found, but hidden from main page (Score:2)
  
  by markj02 ( 544487 ) writes:
  
  I think you are a little confused about the facts.
  People using fsx found bugs in NFS, not security holes. Furthermore, by default, Sun and Linux machines do not export file systems, and NFS is not intended for use on unsecure networks (NFS is intrinsically not secure unless your network is secure, and this is documented). And neither Sun nor Linux are consumer operating systems--if you run them, you should know about proper system management and security.
  Microsoft, in contrast, shipped a consumer operating system that, when used as intended, out of the box, was wide open to take-over over the Internet. They have done similar things in the past with browsers and other software. That's not a "little security flaw", it's a major goof.
  Finally, both NFS and SMB came out of a closed source big corporate culture. They are both awful. The only reason they are still used is because of their corporate backing. You can blame Sun and Microsoft for that, not the open source community.
Another 'bug' in FreeBSD's NFS... (Score:1)

by typedef ( 139123 ) writes:

is the lack of Kerberos authentication, or any type of reliable authentication for that matter, in NFS. I would classify this as a 'shortcomning' rather than a 'bug' if the exports(5) [freebsd.org] manpage didn't seem to imply that it was possible. In any event, I really can't see myself using FreeBSD in any kind of production environment where security is even a minor concern when such a problem exists in NFS. Does anyone know if this issue is going to be addressed in later releases of FreeBSD? I think at least someone should take the 5 minutes to update the manpage...

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Major NFS Bugs Found & Being Fixed 24

Major NFS Bugs Found & Being Fixed More Login

Major NFS Bugs Found & Being Fixed

Not only NFS (Score:3, Informative)

Re:Not only NFS (Score:1)

Re:Not only NFS (Score:2, Informative)

fsx.c (Score:1)

Re:fsx.c (on GNU/Linux) (Score:3, Informative)

It also shows problems in Linux.... (Score:3, Informative)

Re:Major NFS bugs found, but hidden from main page (Score:3, Interesting)

Re:Major NFS bugs found, but hidden from main page (Score:2)

Another 'bug' in FreeBSD's NFS... (Score:1)

Related Links Top of the: day, week, month.

Slashdot Top Deals

Slashdot