[OpenAFS] Memory leak with 1.4.1 modules on Linux 2.6.16

Jose Calhariz jose.calhariz@tagus.ist.utl.pt
Wed, 26 Jul 2006 19:49:06 +0100


--fdj2RfSjLxBAspz7
Content-Type: text/plain; charset=iso-8859-1
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Wed, Jul 26, 2006 at 05:08:54PM +0200, Mathias Feiler wrote:
> On Wed, 26 Jul 2006, Jose Calhariz wrote:
>=20
> |On Fri, Jul 21, 2006 at 11:32:24PM -0700, Caskey L. Dickson wrote:
> |>
> |> You have created a cycle in your filesystem tree.  Unix tools assume
> |> that the structure of the file system is a tree in the ADT sense, name=
ly
> |> an acyclic directed graph.  (Thus the default prohibition of making ha=
rd
> |> links to directories.)
> |>
> |> The path /afs/cell/dir/new_cells/cell/dir/new_cells/cell... produces an
> |> infinitely deep tree.
> |
> |I know that was my mistake.
> |
> |My problem is why the openafs modules consumed all the free RAM on
> |the client?  Don't the openafs client or the modules have protections
> |in place to prevent following infinity cycles in the path?
> |
> |Can it be possible for a normal user to create this kind of infinity
> |cycles in the path?  And this way to cause a DoS on a multi-user
> |server that is client of AFS?
>=20
> A kinde of YES!
>=20
> My colleague  injected  this one
> 	http://rt.central.org/rt/index.html?q=3D+36195
> (He just passed me the link, so don't blame me.)
>=20
> Which actually "substitudes/simulates" the infinitiv directory loop.
> Linux 2.6 with Openafs 1.4 crashes, while Linux 2.4 or with Openafs 1.2.*
> does not.
>=20
> On the other hand , user are allowd to mount volumes at their own.....
>=20

Psst.  Don't tell it to my users :-)

    Jos=E9 Calhariz

--=20
Devo, n=E3o pago. Nego enquanto puder.

--fdj2RfSjLxBAspz7
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: Digital signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQFEx7khVNiv5i0lZUgRAsRbAJ9PnwtWkiaPGN4YRVEy5xdLpx7dXwCg8FSC
hb0iaV5/d8kE8B5+VoUKAX8=
=B+Fr
-----END PGP SIGNATURE-----

--fdj2RfSjLxBAspz7--