jimzah/openafs
1
0
Fork 0
mirror of https://git.openafs.org/openafs.git synced 2025-01-19 07:20:11 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
8f1eba056f
openafs/doc/man-pages/pod8
History
Jeffrey Altman 8f1eba056f CVE-2018-7168 RXAFS_StoreACL deprecate 134 introduce 164 
There exist in the wild AFS3 clients that improperly construct access
control lists which are then stored to directories via RXAFS_StoreACL
(opcode 134).  These clients add negative access control entries (if any)
to the normal rights list.

As there is no method by which a fileserver can determine that the
ACL is improperly constructed, the only method to defend the storage of
broken ACLs is to identify clients that are known to properly construct
ACLs by introducing a new RXAFS_StoreACL opcode (164).

This change:

 * Renames RXAFS opcode 134 to RXAFS_OldStoreACL

 * Introduces RXAFS opcode 164 as RXAFS_StoreACL

 * Implements SRXAFS_OldStoreACL and SRXAFS_StoreACL in the fileserver
   via a common_StoreACL() function that accepts the executed opcode
   as input.

 * To avoid breaking changes in stable release branches,
   SRXAFS_OldStoreACL will still be allowed by default, with an option
   to cause it to be failed by default with error EPERM/UAEPERM.
   A follow-up commit will cause SRXAFS_OldStoreACL to fail by default
   on the master branch.

 * When opcode 134 is called, the a FileLog entry will be generated
   at log level 0 instead of 1 and the entry will contain the string
   "CVE-2018-7168".

 * Modifies the format of the ACL logged to the FileLog and the audit
   stream.  Previously the AFSOpaque format was used directly.  The
   problem with this format is that it uses newlines as the ACE
   separator.  Since the FileLog and file audit log is intended to
   be one line per log entry, the newlines break the file formats.
   This change replaces the newlines with spaces for display purposes
   unless the process is unable to allocate the additional memory.

 * Introduces a new fileserver command line switch -cve-2018-7168-enforce
   which when specified causes SRXAFS_OldStoreACL RPCs to be failed.

[kaduk@mit.edu: switch en/disable-by-default behavior and fix argument parsing]

Change-Id: Ic92ef45314d75fbc2b8ff574223fab2d398a1d60
FIXES: 134485
Reviewed-on: https://gerrit.openafs.org/12942
Reviewed-by: Jeffrey Altman <jaltman@auristor.com>
Tested-by: BuildBot <buildbot@rampaginggeek.com>
Reviewed-by: Benjamin Kaduk <kaduk@mit.edu>
2021-10-08 16:15:55 -04:00
..
fragments CVE-2018-7168 RXAFS_StoreACL deprecate 134 introduce 164 2021-10-08 16:15:55 -04:00
.gitignore document dasalvager 2010-07-18 09:46:48 -07:00
afsd.pod doc: Edits to the 'afsd -volume-ttl' manpage 2018-02-15 22:16:00 -05:00
akeyconvert.pod Add akeyconvert, for rxkad.keytab to KeyFileExt conversion 2016-04-28 19:24:09 -04:00
aklog_dynamic_auth.pod doc: Add aklog_dynamic_auth manpage 2011-05-15 06:15:43 -07:00
asetkey.pod asetkey: add 'add-random' command 2019-04-19 17:06:41 -04:00
backup_adddump.pod man-page-name-underscore-20071111 2007-11-11 22:54:56 +00:00
backup_addhost.pod doc: replace hostnames with IETF example hostnames 2012-02-17 20:51:58 -08:00
backup_addvolentry.pod doc: quote list items in POD 2013-05-01 13:58:56 -07:00
backup_addvolset.pod man-page-name-underscore-20071111 2007-11-11 22:54:56 +00:00
backup_apropos.pod man-page-name-underscore-20071111 2007-11-11 22:54:56 +00:00
backup_dbverify.pod doc: replace hostnames with IETF example hostnames 2012-02-17 20:51:58 -08:00
backup_deldump.pod man-page-name-underscore-20071111 2007-11-11 22:54:56 +00:00
backup_deletedump.pod doc: backup manpage fix 2015-02-03 13:50:32 -05:00
backup_delhost.pod doc: replace hostnames with IETF example hostnames 2012-02-17 20:51:58 -08:00
backup_delvolentry.pod Update backup suite manpages 2009-10-08 15:40:35 -07:00
backup_delvolset.pod man-page-name-underscore-20071111 2007-11-11 22:54:56 +00:00
backup_diskrestore.pod doc: backup manpage fixes 2013-11-07 04:21:42 -08:00
backup_dump.pod doc: backup manpage fixes 2013-11-07 04:21:42 -08:00
backup_dumpinfo.pod man-page-name-underscore-20071111 2007-11-11 22:54:56 +00:00
backup_help.pod Update backup suite manpages 2009-10-08 15:40:35 -07:00
backup_interactive.pod man-page-name-underscore-20071111 2007-11-11 22:54:56 +00:00
backup_jobs.pod man-page-name-underscore-20071111 2007-11-11 22:54:56 +00:00
backup_kill.pod doc: fix some broken link specifications 2011-06-22 11:01:09 -07:00
backup_labeltape.pod doc: fix some broken link specifications 2011-06-22 11:01:09 -07:00
backup_listdumps.pod man-page-name-underscore-20071111 2007-11-11 22:54:56 +00:00
backup_listhosts.pod doc: replace hostnames with IETF example hostnames 2012-02-17 20:51:58 -08:00
backup_listvolsets.pod man-page-name-underscore-20071111 2007-11-11 22:54:56 +00:00
backup_quit.pod man-page-name-underscore-20071111 2007-11-11 22:54:56 +00:00
backup_readlabel.pod doc: replace hostnames with IETF example hostnames 2012-02-17 20:51:58 -08:00
backup_restoredb.pod Remove references to IBM AFS 2010-05-26 12:05:45 -07:00
backup_savedb.pod Update backup suite manpages 2009-10-08 15:40:35 -07:00
backup_scantape.pod doc: replace hostnames with IETF example hostnames 2012-02-17 20:51:58 -08:00
backup_setexp.pod Update backup suite manpages 2009-10-08 15:40:35 -07:00
backup_status.pod Update backup suite manpages 2009-10-08 15:40:35 -07:00
backup_volinfo.pod Update backup suite manpages 2009-10-08 15:40:35 -07:00
backup_volrestore.pod doc: backup manpage fixes 2013-11-07 04:21:42 -08:00
backup_volsetrestore.pod doc: backup manpage fixes 2013-11-07 04:21:42 -08:00
backup.pod OPENAFS-SA-2018-001 backup: use authenticated connection to butc 2018-09-10 22:45:22 -05:00
bos_addhost.pod Document KeyFileExt(5) 2015-08-27 22:31:44 -04:00
bos_addkey.pod Document KeyFileExt(5) 2015-08-27 22:31:44 -04:00
bos_adduser.pod Document KeyFileExt(5) 2015-08-27 22:31:44 -04:00
bos_apropos.pod man-page-name-underscore-20071111 2007-11-11 22:54:56 +00:00
bos_create.pod Document KeyFileExt(5) 2015-08-27 22:31:44 -04:00
bos_delete.pod Document KeyFileExt(5) 2015-08-27 22:31:44 -04:00
bos_exec.pod doc: replace hostnames with IETF example hostnames 2012-02-17 20:51:58 -08:00
bos_getdate.pod Document KeyFileExt(5) 2015-08-27 22:31:44 -04:00
bos_getlog.pod doc: add the PtLog man page 2016-12-22 17:21:50 -05:00
bos_getrestart.pod Document KeyFileExt(5) 2015-08-27 22:31:44 -04:00
bos_getrestricted.pod doc: improve man pages related to bos restricted mode 2014-03-11 06:26:42 -07:00
bos_help.pod man-page-name-underscore-20071111 2007-11-11 22:54:56 +00:00
bos_install.pod Document KeyFileExt(5) 2015-08-27 22:31:44 -04:00
bos_listhosts.pod Document KeyFileExt(5) 2015-08-27 22:31:44 -04:00
bos_listkeys.pod Document KeyFileExt(5) 2015-08-27 22:31:44 -04:00
bos_listusers.pod Document KeyFileExt(5) 2015-08-27 22:31:44 -04:00
bos_prune.pod Document KeyFileExt(5) 2015-08-27 22:31:44 -04:00
bos_removehost.pod Document KeyFileExt(5) 2015-08-27 22:31:44 -04:00
bos_removekey.pod Document KeyFileExt(5) 2015-08-27 22:31:44 -04:00
bos_removeuser.pod Document KeyFileExt(5) 2015-08-27 22:31:44 -04:00
bos_restart.pod Document KeyFileExt(5) 2015-08-27 22:31:44 -04:00
bos_salvage.pod doc: the last partition name is /vicepiu 2018-09-14 08:35:26 -04:00
bos_setauth.pod Document KeyFileExt(5) 2015-08-27 22:31:44 -04:00
bos_setcellname.pod Document KeyFileExt(5) 2015-08-27 22:31:44 -04:00
bos_setrestart.pod Document KeyFileExt(5) 2015-08-27 22:31:44 -04:00
bos_setrestricted.pod doc: bos setrestricted -mode 0 does make sense 2014-03-26 14:00:35 -07:00
bos_shutdown.pod Document KeyFileExt(5) 2015-08-27 22:31:44 -04:00
bos_start.pod Document KeyFileExt(5) 2015-08-27 22:31:44 -04:00
bos_startup.pod Document KeyFileExt(5) 2015-08-27 22:31:44 -04:00
bos_status.pod Document KeyFileExt(5) 2015-08-27 22:31:44 -04:00
bos_stop.pod Document KeyFileExt(5) 2015-08-27 22:31:44 -04:00
bos_uninstall.pod Document KeyFileExt(5) 2015-08-27 22:31:44 -04:00
bos_util.pod spelling/grammar fixes for manpages 2011-02-03 12:29:34 -08:00
bos.pod doc: document the version subcommand 2015-11-12 11:29:37 -05:00
bosserver.pod Add command line support for multiple audit logs 2020-12-04 19:04:12 -05:00
buserver.pod Add command line support for multiple audit logs 2020-12-04 19:04:12 -05:00
butc.pod Add command line support for multiple audit logs 2020-12-04 19:04:12 -05:00
dafileserver.pod.in viced: make -vhashsize usable for non-DAFS 2016-07-05 19:04:33 -04:00
dasalvager.pod.in document dasalvager 2010-07-18 09:46:48 -07:00
davolserver.pod.in doc: replace hostnames with IETF example hostnames 2012-02-17 20:51:58 -08:00
fileserver.pod.in doc: replace hostnames with IETF example hostnames 2012-02-17 20:51:58 -08:00
fms.pod Remove references to IBM AFS 2010-05-26 12:05:45 -07:00
fssync-debug_attach.pod doc: Add -help option to fssync-debug manpages 2013-11-04 04:07:38 -08:00
fssync-debug_callback.pod doc: Add -help option to fssync-debug manpages 2013-11-04 04:07:38 -08:00
fssync-debug_detach.pod doc: Add -help option to fssync-debug manpages 2013-11-04 04:07:38 -08:00
fssync-debug_error.pod doc: Add -help option to fssync-debug manpages 2013-11-04 04:07:38 -08:00
fssync-debug_header.pod doc: Add -help option to fssync-debug manpages 2013-11-04 04:07:38 -08:00
fssync-debug_leaveoff.pod doc: Add -help option to fssync-debug manpages 2013-11-04 04:07:38 -08:00
fssync-debug_list.pod doc: Add -help option to fssync-debug manpages 2013-11-04 04:07:38 -08:00
fssync-debug_mode.pod doc: Add -help option to fssync-debug manpages 2013-11-04 04:07:38 -08:00
fssync-debug_move.pod doc: Add -help option to fssync-debug manpages 2013-11-04 04:07:38 -08:00
fssync-debug_offline.pod doc: Add -help option to fssync-debug manpages 2013-11-04 04:07:38 -08:00
fssync-debug_online.pod doc: Add -help option to fssync-debug manpages 2013-11-04 04:07:38 -08:00
fssync-debug_query.pod doc: Add -help option to fssync-debug manpages 2013-11-04 04:07:38 -08:00
fssync-debug_stats.pod doc: Add -help option to fssync-debug manpages 2013-11-04 04:07:38 -08:00
fssync-debug_vgcadd.pod doc: Add -help option to fssync-debug manpages 2013-11-04 04:07:38 -08:00
fssync-debug_vgcdel.pod doc: Add -help option to fssync-debug manpages 2013-11-04 04:07:38 -08:00
fssync-debug_vgcquery.pod doc: Add -help option to fssync-debug manpages 2013-11-04 04:07:38 -08:00
fssync-debug_vgcscan.pod doc: Add -help option to fssync-debug manpages 2013-11-04 04:07:38 -08:00
fssync-debug_vgcscanall.pod doc: Add -help option to fssync-debug manpages 2013-11-04 04:07:38 -08:00
fssync-debug_vnode.pod doc: Add -help option to fssync-debug manpages 2013-11-04 04:07:38 -08:00
fssync-debug_volop.pod doc: Add -help option to fssync-debug manpages 2013-11-04 04:07:38 -08:00
fssync-debug.pod Link dafssync-debug(8) to fssync-debug(8) 2010-09-23 02:22:44 -07:00
fstrace_apropos.pod Update fstrace suite manpages 2009-10-08 15:28:56 -07:00
fstrace_clear.pod Update fstrace suite manpages 2009-10-08 15:28:56 -07:00
fstrace_dump.pod fstrace: add dump -debug option 2021-07-01 11:27:48 -04:00
fstrace_help.pod man-page-name-underscore-20071111 2007-11-11 22:54:56 +00:00
fstrace_lslog.pod Update fstrace suite manpages 2009-10-08 15:28:56 -07:00
fstrace_lsset.pod man-page-name-underscore-20071111 2007-11-11 22:54:56 +00:00
fstrace_setlog.pod Update fstrace suite manpages 2009-10-08 15:28:56 -07:00
fstrace_setset.pod Update fstrace suite manpages 2009-10-08 15:28:56 -07:00
fstrace.pod Remove references to IBM AFS 2010-05-26 12:05:45 -07:00
ka-forwarder.pod doc: fix typo on ka-forwarder man page 2014-03-06 12:52:30 -08:00
kadb_check.pod doc: fix some broken link specifications 2011-06-22 11:01:09 -07:00
kas_apropos.pod man-page-name-underscore-20071111 2007-11-11 22:54:56 +00:00
kas_create.pod man-page-name-underscore-20071111 2007-11-11 22:54:56 +00:00
kas_delete.pod man-page-name-underscore-20071111 2007-11-11 22:54:56 +00:00
kas_examine.pod spelling/grammar fixes for manpages 2011-02-03 12:29:34 -08:00
kas_forgetticket.pod man-page-name-underscore-20071111 2007-11-11 22:54:56 +00:00
kas_help.pod man-page-name-underscore-20071111 2007-11-11 22:54:56 +00:00
kas_interactive.pod doc: replace hostnames with IETF example hostnames 2012-02-17 20:51:58 -08:00
kas_list.pod man-page-name-underscore-20071111 2007-11-11 22:54:56 +00:00
kas_listtickets.pod doc: replace hostnames with IETF example hostnames 2012-02-17 20:51:58 -08:00
kas_noauthentication.pod man-page-name-underscore-20071111 2007-11-11 22:54:56 +00:00
kas_quit.pod man-page-name-underscore-20071111 2007-11-11 22:54:56 +00:00
kas_setfields.pod spelling/grammar fixes for manpages 2011-02-03 12:29:34 -08:00
kas_setpassword.pod Remove references to IBM AFS 2010-05-26 12:05:45 -07:00
kas_statistics.pod doc: replace hostnames with IETF example hostnames 2012-02-17 20:51:58 -08:00
kas_stringtokey.pod doc: replace hostnames with IETF example hostnames 2012-02-17 20:51:58 -08:00
kas_unlock.pod man-page-name-underscore-20071111 2007-11-11 22:54:56 +00:00
kas.pod doc: document the version subcommand 2015-11-12 11:29:37 -05:00
kaserver.pod kauth: Add support for updated audit facility 2020-12-04 19:08:59 -05:00
kdb.pod doc: kdb manpage fixes 2013-11-04 11:58:10 -08:00
kpwvalid.pod doc: fix some broken link specifications 2011-06-22 11:01:09 -07:00
prdb_check.pod doc: fix some broken link specifications 2011-06-22 11:01:09 -07:00
pt_util.pod doc: remove supergroup caution from pt_util 2015-09-13 03:16:45 -04:00
ptserver.pod Add command line support for multiple audit logs 2020-12-04 19:04:12 -05:00
read_tape.pod Move restorevol to bin from sbin 2009-09-09 21:22:34 -07:00
rmtsysd.pod man-page-rmtsysd-20090518 2009-05-18 21:22:04 +00:00
salvager.pod.in document dasalvager 2010-07-18 09:46:48 -07:00
salvageserver.pod dafs: remove the salvageserver -showlog option 2015-12-02 23:52:07 -05:00
state_analyzer.pod Minor state_analyzer manpage corrections 2010-03-29 08:04:42 -07:00
upclient.pod doc: replace hostnames with IETF example hostnames 2012-02-17 20:51:58 -08:00
upserver.pod doc: upserver manpage fixes 2013-11-04 09:34:08 -08:00
uss_add.pod doc: the last partition name is /vicepiu 2018-09-14 08:35:26 -04:00
uss_apropos.pod More deprecations noted. 2010-11-27 22:40:07 -08:00
uss_bulk.pod More deprecations noted. 2010-11-27 22:40:07 -08:00
uss_delete.pod doc: replace hostnames with IETF example hostnames 2012-02-17 20:51:58 -08:00
uss_help.pod More deprecations noted. 2010-11-27 22:40:07 -08:00
uss.pod More deprecations noted. 2010-11-27 22:40:07 -08:00
vldb_check.pod doc: vldb_check manpage fixes 2013-11-04 09:34:19 -08:00
vldb_convert.pod doc: vldb_check manpage fixes 2013-11-04 09:34:19 -08:00
vlserver.pod Add command line support for multiple audit logs 2020-12-04 19:04:12 -05:00
voldump.pod volser: Don't NUL-pad failed pread()s in dumps 2020-07-24 12:03:44 -04:00
volinfo.pod doc: volscan man page 2014-03-25 09:59:10 -07:00
volscan.pod volscan: fix copyright and licence notice 2014-08-13 12:06:38 -04:00
volserver.pod.in doc: replace hostnames with IETF example hostnames 2012-02-17 20:51:58 -08:00
vsys.pod man-page-vsys-20090518 2009-05-18 21:28:26 +00:00
xfs_size_check.pod pretty-html-synopsis-20060228 2006-03-01 05:02:29 +00:00