Slashdot Mirror

← Back to Stories (view on slashdot.org)

Major NFS Bugs Found & Being Fixed

Posted by Hemos on from the quashing-the-bugs dept.

mbadolato writes "From an article at kerneltrap.org: On the FreeBSD hacker mailing list, Jordan Hubbard commented on some serious issues with NFS, posting a tool called 'fsx' - originally developed for the NeXT OS - that was ideal for finding them. Matt Dillon was quite impressed by the tool and immediately started playing with it. In very little time, he presented a number of major fixes..."

There's a good collection of the emails here describing some of the fixes that Matt Dillon has made."

24 comments

  1. Mr. Dillon is a very talented man. by Anonymous Coward · · Score: 0

    It's amazing how quickly he fixed all these issues. He's great.

  2. Not only NFS by flynn_nrg · · Score: 3, Informative

    Apparently Matt found one bug in the softupdates code and reported it to McKusick, who has written a patch. Matt is still testing the new code in -current and if everythings works ok it will be MFC'ed to -stable within one week, so that this code makes it for 4.5-RELEASE that is coming soon.

    1. Re:Not only NFS by Anonymous Coward · · Score: 0

      What does MFC stand for?

    2. Re:Not only NFS by oka · · Score: 1

      MFC: Merge From -Current

    3. Re:Not only NFS by flynn_nrg · · Score: 2, Informative

      Merge From Current, when a patch or new feature is tested long enough in -CURRENT the core team back ports it to -STABLE.

    4. Re:Not only NFS by Anonymous Coward · · Score: 0

      Microsoft Foundation Classes?

      OK. Mod me down.

  3. Re:More proof: *BSD is dead by Anonymous Coward · · Score: 0

    Microsoft better hope that *BSD doesn't die. They will run out of places to find their "innovations".

  4. More proof: Trolls are dead by DrSpin · · Score: 0, Offtopic
    In the olden days, trolls lived under bridges in Scandinavia, and extracted monstrous payments from would-be passers by.

    Nowadays, Microsoft has taken on the job of ripping people off, even in the coldest parts of Scandinavia, and they can do it without using bridges (or routers - but if you have one, Cisco will rip you off too).

    This leaves trolls with nothing to do but post childish comments about operating systems that they have never used, and most people have never heard of.

    Netcraft and IDC never even mention trolls, and nor do Microsoft. Its not true that Bill Gates is a secret troll. George W Bush can't even spell "troll".

    Apple Computer ceased employing trolls when the Lisa failed to sell, and that was over 15 years ago. Even BSDZine doesn't mention trolls in 97% of issues. The bridge over Walnut Creek hasn't had a troll living under it since 1776.

    Clearly there is no future for trolls, even if they are alive, which is doubtful.

    The best advise to any remaining trolls is "get a life". (Though a part in "Lord of the Rings" might be more profitable.)

  5. Re:More proof: *BSD is dead by Anonymous Coward · · Score: 0

    No kidding, what would they use to run Hotmail? XP?? Hahahaha, right.

  6. fsx.c by izzertaq · · Score: 1

    blows up my FreeBSD 4.4 server pretty quickly (it panics and reboots.) Yes, I'm running softupdates.

    Anyone gotten this to run on linux? After I fixed the (silly) division by zero error, it still dies with an mmap: Invalid argument error ...

  7. Re:fsx.c (on GNU/Linux) by Carl · · Score: 3, Informative

    It was already discussed on the kernel mailing list.
    Including a (trivial) port to GNU/Linux.
    Local filesystems are OK (except for ReiserFS), but NFS does show some problems.
    http://www.uwsg.indiana.edu/hypermail/linux/kernel /0112.1/1573.html

  8. It also shows problems in Linux.... by pwagland · · Score: 3, Informative
    This is the linux-kernel thread.

    In essence, the problem is seen on reiserfs (being investigated) and also in NFS. No-one has mentioned following up on the NFS problems yet...

    Nor have problems yet been seen in XFS, Ext2 or Ext3.

  9. Re:More proof: *BSD is dead by Anonymous Coward · · Score: 0

    They really should keep preschoolers in school 24/7.

  10. Re:More proof: *BSD is dead by dankow · · Score: 0, Offtopic

    This guy's actually pretty funny- most of the time, he actually takes credit for his comment(s), though. Look up user "BSD is dying", and check out all of his posts.

    --
    I am the hub of Jack's digital lifestyle.
  11. fsx.c Uncovers Linux VFAT problems too by Anonymous Coward · · Score: 0

    fsx aborts with errors when tested on a VFAT partition on Linux 2.0.39

  12. Major NFS bugs found, but hidden from main page? by cpeterso · · Score: 0, Flamebait

    For every little security flaw in each Windows "strain", Slashdot sounds the klaxons and warns of Microsoft's buggy code. But when there is a serious bug in some Unix NFS code, it's hidden in the BSD section or "proof" that the Open Sores security model is just doin' its job..

    --
    cpeterso
  13. Re:Major NFS bugs found, but hidden from main page by Coz · · Score: 3, Interesting

    Would you rather be oblivious? As it stands, *BSD fans see this note, and a lot of work is going into developing a fix, not only for BSD, but for Linux as well - if you want to follow the status, follow the links/mirrors/forums. The tool these guys are using (publicly available) has discovered major flaws in the internal VM implementation - what are the odds you'd EVER hear of that with M$? (BTW, has anyone run this against M$'s NFS implementations?)

    Besides, part of the fun of open-source is watching the evolution. The emails documenting how this evolved are fun to read - wonder what M$'s equivalents say? We'll never know....

    --
    I love vegetarians - some of my favorite foods are vegetarians.
  14. Another 'bug' in FreeBSD's NFS... by typedef · · Score: 1

    is the lack of Kerberos authentication, or any type of reliable authentication for that matter, in NFS. I would classify this as a 'shortcomning' rather than a 'bug' if the exports(5) manpage didn't seem to imply that it was possible. In any event, I really can't see myself using FreeBSD in any kind of production environment where security is even a minor concern when such a problem exists in NFS. Does anyone know if this issue is going to be addressed in later releases of FreeBSD? I think at least someone should take the 5 minutes to update the manpage...

  15. Re:Major NFS bugs found, but hidden from main page by markj02 · · Score: 2
    I think you are a little confused about the facts.

    People using fsx found bugs in NFS, not security holes. Furthermore, by default, Sun and Linux machines do not export file systems, and NFS is not intended for use on unsecure networks (NFS is intrinsically not secure unless your network is secure, and this is documented). And neither Sun nor Linux are consumer operating systems--if you run them, you should know about proper system management and security.

    Microsoft, in contrast, shipped a consumer operating system that, when used as intended, out of the box, was wide open to take-over over the Internet. They have done similar things in the past with browsers and other software. That's not a "little security flaw", it's a major goof.

    Finally, both NFS and SMB came out of a closed source big corporate culture. They are both awful. The only reason they are still used is because of their corporate backing. You can blame Sun and Microsoft for that, not the open source community.