http://www.kerneltrap.org/taxonomy/term/901/0 en-local http://www.kerneltrap.org/Linux/NFS_Client_Updates_for_2.6.24 <div class="taxonomy-images"><a href="/news/linux" class="taxonomy-image-links"><img src="http://kerneltrap.org/files/category_pictures/K-Linux.gif" alt="Linux news" title="Linux news" width="75" height="75" /></a></div><!-- google_ad_section_start --><p>Trond Myklebust noted the <a href="http://kerneltrap.org/mailarchive/linux-kernel/2007/10/3/328870">NFS client updates</a> for the upcoming 2.6.24 kernel:</p> <blockquote><p>"Aside from the usual updates from Chuck for NFS-over-IPv6 (still incomplete) and a number of bugfixes for the text-based mount code, the main news in the NFS tree is the merging of support for the NFS/RDMA client code from Tom Talpey and the NetApp New England (NANE) team."</p></blockquote> <p>He continued, "<i>we also have the 64-bit inode support from RedHat/Peter Staubach. There is also the addition of a nfs_vm_page_mkwrite() method in order to clean up the mmap() write code. Finally, I've been working on a number of updates for the attribute revalidation, having pulled apart most of the dentry and attribute revalidation into separate variables. A number of fixes that address existing bugs fell out of that review, which should hopefully result in more efficient dcache behaviour...</i>" Actual source changes can be browsed in the <a href="http://linux-nfs.org/cgi-bin/gitweb.cgi?p=nfs-2.6.git;a=summary">NFS client git repository</a>.</p> <!-- google_ad_section_end --><p><a href="http://www.kerneltrap.org/Linux/NFS_Client_Updates_for_2.6.24" target="_blank">read more</a></p> http://www.kerneltrap.org/Linux/NFS_Client_Updates_for_2.6.24#comments 2.6.24 filesystem IPv6 Linux merge plans NFS Trond Myklebust Linux news Thu, 04 Oct 2007 12:31:08 +0000 Jeremy 14513 at http://www.kerneltrap.org http://www.kerneltrap.org/Linux/Copy_on_Write_Credentials <div class="taxonomy-images"><a href="/news/linux" class="taxonomy-image-links"><img src="http://kerneltrap.org/files/category_pictures/K-Linux.gif" alt="Linux news" title="Linux news" width="75" height="75" /></a></div><!-- google_ad_section_start --><p>"<i>Here's a new version of my credentials patch. It's still very basic, with only Ext3, (V)FAT, NFS, AFS, SELinux and keyrings compiled in on an x86_64 arch kernel,</i>" <a href="http://kerneltrap.org/mailarchive/linux-kernel/2007/9/18/262791">stated David Howells</a>. He described the patch as, "<i>introduce a copy on write credentials record (struct cred). The fsuid, fsgid, supplementary groups list move into it (DAC security). The session, process and thread keyrings are reflected in it, but don't primarily reside there as they aren't per-thread and occasionally need to be instantiated or replaced by other threads or processes.</i>"</p> <p>Casey Schaufler asked, "<i>what I don't really understand is what value is gained by this exercise. Are the savings sufficiently significant to justify the effort?</i>" Trond Myklebust explained, "<i>it is not about savings, but about new functionality. Basically, the existence of reference-counted credentials will allow AFS and NFS to cache that information and use it for deferred writes etc.</i>" David added, "<i>and also make it easier for cachefiles and hopefully NFSd to override the active security. There's a comment somewhere in, I think, the SunRPC code in the Linux kernel bemoaning the lack of this very feature:-)</i>"</p> <!-- google_ad_section_end --><p><a href="http://www.kerneltrap.org/Linux/Copy_on_Write_Credentials" target="_blank">read more</a></p> http://www.kerneltrap.org/Linux/Copy_on_Write_Credentials#comments COW David Howells Linux NFS patch Trond Myklebust Linux news Tue, 18 Sep 2007 19:16:19 +0000 Jeremy 14398 at http://www.kerneltrap.org http://www.kerneltrap.org/Linux/NFS_Regression <div class="taxonomy-images"><a href="/news/linux" class="taxonomy-image-links"><img src="http://kerneltrap.org/files/category_pictures/K-Linux.gif" alt="Linux news" title="Linux news" width="75" height="75" /></a></div><!-- google_ad_section_start --><p>Hua Zhong <a href="http://kerneltrap.org/mailarchive/linux-kernel/2007/8/30/166372">reported an NFS regression</a> in 2.6.23-rc4 as compared to 2.6.22, "<i>[upgrading] causes several autofs mounts to fail silently - they just [do] not appear when they should.</i>" Trond Myklebust explained that the change to default behavior was intentional to prevent an NFS mount from being mounted with the wrong options. The patch also introduced a new mount option, "<i>the new option is there in order to make it damned clear to sysadmins that this is a dangerous thing to do: mounts which don't share the same superblock also don't share the same data and attribute caches. Any file or directory which appears in both mounts had better only be used by one application at a time or be using an appropriate locking scheme.</i>" Jakob Oestergaard defended the change asserting, "<i>what he 'broke' is, for example, a ro mount being mounted as rw. That *could* be a very serious security (etc.etc.) problem which he just fixed. Anything depending on read-only not being enforced will cease to work, of course, and that is what a few people complain about(!).</i>"</p> <p>Linus Torvalds disagreed strongly with the change, "<i>that commit gets reverted or fixed. It's a regression, and your theories that it's 'better' that way are obviously broken.</i>" He added:</p> <blockquot