This is the mail archive of the libc-alpha@sourceware.org mailing list for the glibc project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: [Libtirpc-devel] Fwd: Re: proposed patch to rpcbind to providefiner-grained security controls than offered by the -i option

From: Daniel Jacobowitz <dan at codesourcery dot com>
To: Chuck Lever <chucklever at gmail dot com>
Cc: "Andrew J. Schorr" <ajschorr at alumni dot princeton dot edu>,Jeff Layton <jlayton at redhat dot com>, Steve Dickson <SteveD at redhat dot com>,libc-alpha at sourceware dot org,libtirpc <libtirpc-devel at lists dot sourceforge dot net>
Date: Sat, 18 Dec 2010 16:08:42 -0500
Subject: Re: [Libtirpc-devel] Fwd: Re: proposed patch to rpcbind to providefiner-grained security controls than offered by the -i option
References: <4D0632C5.1040107@RedHat.com><AANLkTi=FNANqAs5m3xbZcQq5K0vMtZBb1+KU9pWC9K8_@mail.gmail.com><20101218191228.GA31697@ti93.telemetry-investments.com><AANLkTin8Z-+M03r3xJEyNV4HYTdZETyfwb0m4ghmRRDX@mail.gmail.com>

On Sat, Dec 18, 2010 at 03:43:54PM -0500, Chuck Lever wrote:
> When we investigated this problem (and I think I remember talking with
> Jeff Layton and Peter Staubach about this at Connectathon 2010), we
> determined that glibc allowed more supplemental groups than the
> protocol and other implementations can support.  Sixteen is the
> standard limit.  If your application needs to communicate a longer
> list of supplemental groups, it should be using RPCSEC GSS.

getgroups returns "the supplementary group IDs of the calling
process".  It's not up to the application how many there are.
So the actual scenario is that if the user belongs to more than 16
groups, anything that uses this code will crash.  Doesn't that seem
like a pretty big problem?

-- 
Daniel Jacobowitz
CodeSourcery

Follow-Ups:
- Re: [Libtirpc-devel] Fwd: Re: proposed patch to rpcbind to providefiner-grained security controls than offered by the -i option
  - From: Chuck Lever

References:
- Fwd: Re: proposed patch to rpcbind to provide finer-grained securitycontrols than offered by the -i option
  - From: Steve Dickson
- Re: [Libtirpc-devel] Fwd: Re: proposed patch to rpcbind to providefiner-grained security controls than offered by the -i option
  - From: Chuck Lever
- Re: [Libtirpc-devel] Fwd: Re: proposed patch to rpcbind to providefiner-grained security controls than offered by the -i option
  - From: Andrew J. Schorr
- Re: [Libtirpc-devel] Fwd: Re: proposed patch to rpcbind to providefiner-grained security controls than offered by the -i option
  - From: Chuck Lever

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]