On Tue, May 20, 2008 at 09:27:13AM -0400, Talpey, Thomas wrote: > At 09:07 PM 5/19/2008, Tom Tucker wrote: > >No we don't and a Byzantine client could crash us. > > That can be arranged... :-) > > >This kind of check along with a bunch of others should go in > >svc_rdma_xdr_decode_req. I have these things planned for the 2.6.27 > >time-frame (along with Fast NSMR support). > > > >Do you think it's more urgent? > > MHO is that it's important but not urgent, and it should be part of a later > change. At Connectathon, no clients were sending any problematic requests, > so I think it's unlikely this will affect us in the wild, for now. Somewhere in the documentation, a really clear warning about the security assumptions would be useful. It could also help if the howto (on the web and in Documentation/filesystems/nfs-rdma.txt) included any instructions on necessary firewalling, etc. By the way, the Kconfig help text for SUNRPC_XPRT_RDMA looks like it needs an update to mention the server? --b. -- To unsubscribe from this list: send the line "unsubscribe linux-nfs" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
