On Thu, 4 Jun 2009, Robert Watson wrote: [good stuff snipped] > > Possibly we should actually add MAC and audit functions along similar lines, > and initialize cr_prison to &prison0 for the NFS creds? On the other hand, > if they may be used for network I/O, perhaps cr_prison and the others should > be initialized based on the context in which nfsd is started, so that it > takes on those security attributes. > The experimental server crdup()'s the credentials that nfsd has, but I have no idea if that's the correct thing to do? (and I've never done ZFS, so I don't know if that fixes the crashes, either). rickReceived on Thu Jun 04 2009 - 13:54:17 UTC
This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:39:49 UTC