Page MenuHomeFreeBSD
Differential D47011

mountd(8): parsecred(): Fallback to "nogroup" or GID_NOGROUP
ClosedPublic
Actions

Authored by olce on Oct 8 2024, 1:43 PM.
Tags
None
Referenced Files
Unknown Object (File)
Sun, Jan 19, 5:04 AM
Unknown Object (File)
Fri, Jan 17, 3:31 PM
Unknown Object (File)
Mon, Jan 13, 9:23 AM
Unknown Object (File)
Sat, Jan 4, 8:30 AM
Unknown Object (File)
Dec 18 2024, 10:18 PM
Unknown Object (File)
Nov 23 2024, 12:47 PM
Unknown Object (File)
Nov 21 2024, 8:19 PM
Unknown Object (File)
Nov 15 2024, 9:22 PM
View All 18 Files
Subscribers
emaste
imp

Details

Reviewers
rmacklem
Commits
rG29a0511b184d: mountd(8): parsecred(): Fallback to "nogroup" or GID_NOGROUP
rGfb651b231863: mountd(8): parsecred(): Fallback to "nogroup" or GID_NOGROUP
rGbdc259ef382f: mountd(8): parsecred(): Fallback to "nogroup" or GID_NOGROUP
Summary

In the 'uid:gid:gid:...' case (for '-maproot' or '-mapall'), if no GID
is specified at all (i.e., input is of the form 'uid:', with the colon
at the end), mountd(8) would pass credentials with an empty array of
groups to the kernel.

For security reasons, we have put in place a kernel fallback a few
commits ago, which currently is the value of
NFSD_VNET(nfsrv_defaultgid). That value is by default GID_NOGROUP, and
may be set by nfsuserd(8) based on the content of '/etc/group' on the
host (or some other source, depending on 'nsswitch.conf'). As,
according to rmacklem@, lots of installations do not run nfsuserd(8), we
emulate its effect here by first trying to find the GID number
corresponding to "nogroup" and falling back to GID_NOGROUP.

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

olce created this revision.Oct 8 2024, 1:43 PM
Herald added a subscriber: imp. · View Herald TranscriptOct 8 2024, 1:43 PM
olce requested review of this revision.Oct 8 2024, 1:43 PM
Harbormaster completed remote builds in B59841: Diff 144485.Oct 8 2024, 1:43 PM
olce added a parent revision: D46920: mountd(8): parsecred(): Remove "duplicate compression".Oct 8 2024, 1:44 PM
olce added a child revision: D47012: exports(5): -maproot, -mapall: Explain the fallback on no group.
olce updated this revision to Diff 144826.Oct 14 2024, 4:06 PM

Simplify by using getgrnam() instead of getgrnam_r(), as mountd() is not multi-threaded and already uses getgrnam().

Isolate the fallback logic in a separate function (nogroup()) and substitute all uses of GID_NOGROUP with it.

Harbormaster completed remote builds in B59974: Diff 144826.Oct 14 2024, 4:06 PM
This revision was not accepted when it landed; it landed in state Needs Review.Dec 16 2024, 2:46 PM
Closed by commit rGbdc259ef382f: mountd(8): parsecred(): Fallback to "nogroup" or GID_NOGROUP (authored by olce). · Explain Why
This revision was automatically updated to reflect the committed changes.
olce added a commit: rGbdc259ef382f: mountd(8): parsecred(): Fallback to "nogroup" or GID_NOGROUP.
olce added a commit: rGfb651b231863: mountd(8): parsecred(): Fallback to "nogroup" or GID_NOGROUP.Thu, Jan 16, 6:09 PM
olce added a commit: rG29a0511b184d: mountd(8): parsecred(): Fallback to "nogroup" or GID_NOGROUP.Fri, Jan 17, 12:28 PM

Revision Contents
Changeset List

PathSize
usr.sbin/
mountd/
27 lines

Diff 148037

View Options

usr.sbin/mountd/mountd.c

Loading...