IETF Logo Mail Archive

Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3

Andy Adamson <androsadamson@gmail.com> Wed, 04 September 2013 21:55 UTC

Return-Path: <androsadamson@gmail.com>
X-Original-To: nfsv4@ietfa.amsl.com
Delivered-To: nfsv4@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 673DB21F9D8B for <nfsv4@ietfa.amsl.com>; Wed, 4 Sep 2013 14:55:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, NO_RELAYS=-0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Nv1UfbMblHrT for <nfsv4@ietfa.amsl.com>; Wed, 4 Sep 2013 14:55:50 -0700 (PDT)
Received: from mail-ob0-x22e.google.com (mail-ob0-x22e.google.com [IPv6:2607:f8b0:4003:c01::22e]) by ietfa.amsl.com (Postfix) with ESMTP id D37CB21F9D89 for <nfsv4@ietf.org>; Wed, 4 Sep 2013 14:55:50 -0700 (PDT)
Received: by mail-ob0-f174.google.com with SMTP id wd6so1086195obb.5 for <nfsv4@ietf.org>; Wed, 04 Sep 2013 14:55:50 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=v7V4sw7UDs8IVOUP01xNe0hCEfwZnOvl8v5n2GXCkEY=; b=iq/TTwbCVAUhjNM70hDT3LeR61MebZpeXP+AKlIPAozx5JjXufrHtflDAZ6k7iJrYj VxoQxzvhXPKkYASG4TbR+iR+CWpYepKGH7pJK82edGVax0gsiIGGnNqXifUM2vRm1L+E l0ad2K3koW7upj+ZzYBK6yfBCnbyIDLQ77lfce1vdod19tIaBXNLdBnGbWrwWmKBZ1JN 5fVS1bb6A1jVdiEHF/Mf+3dMV1xwjM8OOnvzBFRWODyBKGG64n447aTz9f+6Hy8KtBxC f07fpKodPybjU/R/LiXc5Tw77gB23DnaM7RSRbTZGgiE09NwAcyU5R/XH7BEh/96NQ5L cjaA==
MIME-Version: 1.0
X-Received: by 10.182.61.44 with SMTP id m12mr3809109obr.52.1378331749356; Wed, 04 Sep 2013 14:55:49 -0700 (PDT)
Received: by 10.76.28.42 with HTTP; Wed, 4 Sep 2013 14:55:49 -0700 (PDT)
In-Reply-To: <CAK3OfOjPAEzgBc+5L35UoU-uS1t1kQ_Xo0uzy+nX+MGHayhD2A@mail.gmail.com>
References: <039D3CB813A4D544863BB7D4F46A1857306DB713@TK5EX14MBXC254.redmond.corp.microsoft.com> <CAHVgHyXCc1mtmLRC_s0ghMS89LV9D5GK=AwRas3DsgVaTaz_4w@mail.gmail.com> <256d66f4017097a61f1fb230c386bf53@countercultured.net> <CAK3OfOhbiEJzzKUVj6GYhEktg9RdiPKuUDSqTDC7X4-Ndnz1og@mail.gmail.com> <20130812220405.GE2395@fieldses.org> <CAK3OfOi7qa0uMo_vQKS=opzih_Sw1XnRHW74cV0N3VBtdZ3wQQ@mail.gmail.com> <CAHVgHyUXo0MTjPfDtpPDVnC67O7RKy_uvhkNUEiKDbnrdyZTMA@mail.gmail.com> <20130823220331.GA24575@gmail.com> <CAHVgHyW5bOc=u2fRRsOJ_98u6RjJBDSpdOeoVd17XBNPrG2WTA@mail.gmail.com> <CAK3OfOjXahXxNj3F+iYH8hcHEuCB-WuK=8ZphTB9_t1WNf=JeA@mail.gmail.com> <CAHVgHyUySm+zNfzih-rhBsrX3uHuRfOE7T42=7zNhigH2=dk7A@mail.gmail.com> <CAK3OfOgeC440o5-OKvbL+X-qGfDe=qXY8g0DYDT3YqoF9zg2-g@mail.gmail.com> <CAK3OfOjMWR=x13PTS0OGtnL_Bu_Lk_9m+H-MPeYd0MStwjHmrQ@mail.gmail.com> <5DEA8DB993B81040A21CF3CB332489F608A690E0A8@MX31A.corp.emc.com> <CAK3OfOiKRjDGSM29mQRkxHfOPJQPRJCE-X-sCjmrRP9YNxCZdg@mail.gmail.com> <CAHVgHyWwWFLkkW=PjbaCse19YtA5N0uzN8LdgtfQpFChheWO0w@mail.gmail.com> <CAK3OfOjPAEzgBc+5L35UoU-uS1t1kQ_Xo0uzy+nX+MGHayhD2A@mail.gmail.com>
Date: Wed, 04 Sep 2013 17:55:49 -0400
Message-ID: <CAHVgHyU3TnwDsMj22WTYj4e8qjtv5tXTGhdkyOspLWH8Td6LNA@mail.gmail.com>
From: Andy Adamson <androsadamson@gmail.com>
To: Nico Williams <nico@cryptonector.com>
Content-Type: text/plain; charset="ISO-8859-1"
Cc: "J. Bruce Fields" <bfields@fieldses.org>, NFSv4 <nfsv4@ietf.org>
Subject: Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3
X-BeenThere: nfsv4@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: NFSv4 Working Group <nfsv4.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/nfsv4>, <mailto:nfsv4-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/nfsv4>
List-Post: <mailto:nfsv4@ietf.org>
List-Help: <mailto:nfsv4-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/nfsv4>, <mailto:nfsv4-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 04 Sep 2013 21:55:51 -0000

On Wed, Sep 4, 2013 at 5:24 PM, Nico Williams <nico@cryptonector.com> wrote:
> On Wed, Sep 4, 2013 at 4:05 PM, Andy Adamson <androsadamson@gmail.com> wrote:
>> Just out of curiosity, I'm still not clear on why the combination of a
>> compound authenticated identity and the server privilege payloads
>> described in draft-ietf-nfsv4-minorversion2-19 both in a
>> RPCSEC_GSS3_CREATE call don't convey the necessary authorization.
>
> The compound authentication feature requires that one party (the user)
> place full trust on another (the client host).  In the
> server-to-server case you'd not have the destination trust the client,
> so it'd have to be the other way: trust the destination to act on
> behalf of the client.

Hmm.

The copy_from_auth sets a privilege up on the source server from the
client including a shared secret. The copy_to_auth sets a privilege up
on the destination server from the client with the same shared secret.
The copy_confirm_auth is sent from the destination server to the
source server with the same shared secret. The READ is performed under
the GSS3 context established by the copy_confirm_auth privilege.
Doesn't the shared secret allow the client to trust the destination
server to act on behalf of the client?

> Using a structured privilege marked as critical
> would work to constrain the compound context, but you'd be
> establishing an RPCSEC_GSS context per-copy.

Yes, draft-ietf-nfsv4-minorversion2-19 requires a RPCSEC_GSS3 context per copy.

> Ah, that's what I was
> missing: the structured privilege.
>
> OK, so that would work, but I'm not sure it's worth the overhead.

Well, the non-rpcsec_gssv3 proposals have similar overhead - stuff
being sent per COPY.

> Also, if we're going to have structured privileges then we should work
> that into RPCSEC_GSSv3.

Where can I find the definition of "structured privilege"? A quick
google search just turns up a SAP HANA reference ;)

-->Andy

v2.23.0 | Report a Bug | By Email