[nfsv4] Re: RFC: atomically acquiring some attributes for the posix-acls extension
David Noveck <davenoveck@gmail.com> Fri, 09 August 2024 00:20 UTC
Return-Path: <davenoveck@gmail.com>
X-Original-To: nfsv4@ietfa.amsl.com
Delivered-To: nfsv4@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D1CC3C169416 for <nfsv4@ietfa.amsl.com>; Thu, 8 Aug 2024 17:20:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.107
X-Spam-Level:
X-Spam-Status: No, score=-2.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id aMJUqR9jtYfZ for <nfsv4@ietfa.amsl.com>; Thu, 8 Aug 2024 17:20:06 -0700 (PDT)
Received: from mail-vs1-xe32.google.com (mail-vs1-xe32.google.com [IPv6:2607:f8b0:4864:20::e32]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 539E3C15198D for <nfsv4@ietf.org>; Thu, 8 Aug 2024 17:20:01 -0700 (PDT)
Received: by mail-vs1-xe32.google.com with SMTP id ada2fe7eead31-49297fca3c2so541545137.1 for <nfsv4@ietf.org>; Thu, 08 Aug 2024 17:20:01 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1723162800; x=1723767600; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=mUbR6vwU1cmFUyiK8HSHTQ9dDuMFVSuPSeuWNLpeTSA=; b=DzLyzrKUiMtFeI4YRYoH2b7YB1yRkfrmD03q+ipjlNAN7+6IWniyRx+DZmgWKg8zOs XVXZSod2zpI/XtLBz5zj/sJeFUQGNL6AGoz43nqu9jJj8Q/KqdcseMLUSkdSay63rDi6 HgQQif8mpI6nI+Xayw/JPeeWoqFyAyXIHv7rKqMHsY0DbveUV1y9ZphdM2ri8fhzOTZR oeKah7bvT8S89xZvkdgDuU5tI0j5AQG/lp+v/eRDiWnUmuZvN27heP/pa2G8rFzrDWI5 gGPyTBxsRbPKdh8Wf7gv2VIDqaIthma7PIkORGNaJ3oc3ZAcbQnRuWuxmZrZ7ixtWIKF tvzA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1723162800; x=1723767600; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=mUbR6vwU1cmFUyiK8HSHTQ9dDuMFVSuPSeuWNLpeTSA=; b=oG5a3wf5xCshjrSUHFB+AaknuXZ22pzx7FjN43Nkqf8eOByKz8YdcumxwdXcsJEgvX xkkNMN59dCjuGNtP0Bkq72RlcIk6rpSCXnjdfjIOh0h2J33uSMFw56ixnkikL7Ro5ptf jwFW11TeNXeF9KkLsUD9Rr7K4gdA/CDLJ6iEzNRZXMRQhOm78ub/LbNWfeuu2Zi9YSAC a7V87oBgv2hz68g/D+DM1JdVp/rBrNQFak6XlP8aHHaB4TQazRQHOlMNViQhPACQ9YeZ +NYUAbHyUT9Dr5kN6P+6mWFtuJrO7h0Hm5bU5Aer1Un9ERXtkm/MgrET5WK1asQ1yKqE CJKw==
X-Forwarded-Encrypted: i=1; AJvYcCV0qa2aSD8wAFbvychb4mhzH/nKC2d8dUxDY1qBAHYSUsIejSFJwVYkAmavgZDyjKWCqSNuVoGWgBpEoHne3A==
X-Gm-Message-State: AOJu0Yw8NBSaE1kjVw+vyB9pF90yC6w+zxsecsU7CFjX6NBlOselyEia nqS8u2AlI4VtXMXcTVSXdUxzezp2CTHPTuw7GRozrv296QPokNQYuYdBu2YnPAHi0uZKRvROrly H2Rt3Ou2zafOGbbA0qcf7uRoKNZ5YFw==
X-Google-Smtp-Source: AGHT+IF9vjHJ+Z/7/F678p3TGXTrWsnSia8iEN7Wv0Q+A+alnrZeoC0F27TPmCGkEg3etbN1NhBkR1mE+WlnpDIhuP4=
X-Received: by 2002:a05:6102:418e:b0:48f:447d:7915 with SMTP id ada2fe7eead31-495c5b0f6abmr4632058137.15.1723162800104; Thu, 08 Aug 2024 17:20:00 -0700 (PDT)
MIME-Version: 1.0
References: <CAM5tNy5OHG2qjtuZeuK2ZYtrKbrOq_wmYFwRHBcdm7PSH7s3qA@mail.gmail.com> <CAN0SSYy7qQ=Ndk1+GxpAfYzSSe2xRQ8rhjj9Wu=0qXYYe-qjFQ@mail.gmail.com>
In-Reply-To: <CAN0SSYy7qQ=Ndk1+GxpAfYzSSe2xRQ8rhjj9Wu=0qXYYe-qjFQ@mail.gmail.com>
From: David Noveck <davenoveck@gmail.com>
Date: Thu, 08 Aug 2024 20:19:49 -0400
Message-ID: <CADaq8jfw459k=TW3WgnU-ak0RuYYk8Ejn8ZEGCrFwo9jy7-fOA@mail.gmail.com>
To: Mark Liam Brown <brownmarkliam@gmail.com>
Content-Type: multipart/alternative; boundary="000000000000972eb6061f351aa6"
Message-ID-Hash: KTJY7RNV27KD2AG2PPQTIV4I4LRODFIG
X-Message-ID-Hash: KTJY7RNV27KD2AG2PPQTIV4I4LRODFIG
X-MailFrom: davenoveck@gmail.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-nfsv4.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: NFSv4 <nfsv4@ietf.org>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [nfsv4] Re: RFC: atomically acquiring some attributes for the posix-acls extension
List-Id: NFSv4 Working Group <nfsv4.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/nfsv4/bjv49paAcTLxszN9d1Xh1B5jxp4>
List-Archive: <https://mailarchive.ietf.org/arch/browse/nfsv4>
List-Help: <mailto:nfsv4-request@ietf.org?subject=help>
List-Owner: <mailto:nfsv4-owner@ietf.org>
List-Post: <mailto:nfsv4@ietf.org>
List-Subscribe: <mailto:nfsv4-join@ietf.org>
List-Unsubscribe: <mailto:nfsv4-leave@ietf.org>
On Thu, Aug 8, 2024, 5:54 PM Mark Liam Brown <brownmarkliam@gmail.com> wrote: > On Thu, Aug 8, 2024 at 10:15 PM Rick Macklem <rick.macklem@gmail.com> > wrote: > > > > Hi, > > > > As some will already know, I am working on a draft that > > proposes an extension to 4.2 related to POSIX ACLs which > > adds 4 new attributes. > > > > I have run into a case where specifying the GETATTR return > > some ACL related attributes "atomically". By atomically, I > > mean that no SETATTR by another client is permitted to change > > any on the attributes during the GETATTR. > > > > Some background: > > true form - Is the kind of ACL stored on the file object and > > used for access permissions. A new attribute called > > acl_trueform indicates what the true form is. > > It can be ACL_MODEL_NFS4, ACL_MODEL_POSIX_DRAFT or > > ACL_MODEL_NONE. > > Stop. > > 1. POSIX.1e has been withdrawn, including POSIX.1e ACLs. One of the > reasons were security issues > Could you be more specific? > 2. POSIX.1e ACLs are only usable on Linux or POSIX-like platforms. > They are INCOMPATIBLE to Windows, ZFS and NFSv4 ACLs, and there are no > proper or safe translations between them - you lose information when > going from NFSv4, ZFS or Windows ACLs, and the reverse translation > either causes inaccessible files if the translation is too > restrictive, or opens gaping security holes if the translations allows > more than the admin intended. > > Better would be for Linux finally to adopt NFSv4/ZFS-style ACLs, and > not cause security nightmares via grafting defunct POSIX.1e ACLs onto > everything. > Whether that is true is not a decision for the working group to make. Over the last two decades the current NFSv4 ACL model has been the only one supported and Linux has chosen not adopt that model. Whatever you think of that model, Linux has not chosen to adopt it and there are no prospects of it doing so in the foreseeable future. Rick's proposal would allow them to switch over in an incremental way by allowing transition between the two models by supporting both models at first (unlikely for decades) and eventual support of only the NFSv4 model or its successor (maybe in the 22nd century). > Mark > -- > IT Infrastructure Consultant > Windows, Linux > > _______________________________________________ > nfsv4 mailing list -- nfsv4@ietf.org > To unsubscribe send an email to nfsv4-leave@ietf.org >
- [nfsv4] RFC: atomically acquiring some attributes… Rick Macklem
- [nfsv4] Re: RFC: atomically acquiring some attrib… Mark Liam Brown
- [nfsv4] Re: RFC: atomically acquiring some attrib… Rick Macklem
- [nfsv4] Re: RFC: atomically acquiring some attrib… David Noveck
- [nfsv4] Re: RFC: atomically acquiring some attrib… Rick Macklem
- [nfsv4] Re: RFC: atomically acquiring some attrib… David Noveck