emulating windows file serving on posix jeremy allison
play

Emulating Windows file serving on POSIX Jeremy Allison Samba Team - PowerPoint PPT Presentation

Mar 27, 2023 •243 likes •549 views

Wider World Opening Windows to a Emulating Windows file serving on POSIX Jeremy Allison Samba Team jra@samba.org But isn't it easy ? Wider World Opening Windows to a Just take a kernel, add your own file system and.. Not if you don't own

  1. Wider World Opening Windows to a Emulating Windows file serving on POSIX Jeremy Allison Samba Team jra@samba.org

  2. But isn't it easy ? Wider World Opening Windows to a Just take a kernel, add your own file system and..

  3. Not if you don't own your own kernel Wider World Opening Windows to a or file system.

  4. POSIX mapping challenges ● Pathnames and Privilege. Wider World Opening Windows to a ● Extra attributes. ● Open Modes / Oplocks / Leasing. ● File Locking. ● ACLs / Identity mapping. ● Alternate Data Storage / Streams / EA's. ● Change Notification. ● Exotica (Quotas / Snapshots / MSDFS etc.).

  5. Pathnames and Privilege Wider World Opening Windows to a ● POSIX userspace API's are all pathname based. ● SMB2 on the wire protocol is handle based. – Less so for SMB1. – Incoming pathnames must be converted to handles using the userspace API's. ● Works fine with simple model of mapping Windows users to POSIX uids.

  6. Pathnames and Privilege (continued) ● Case insensitivity can hurt Wider World Opening Windows to a performance. – It's not the hits that cost, but the misses. – Samba uses a stat-cache to speed up name translation in userspace. – If users are happy with canonicalized case, that's the easiest way to deal with this. – Some UNIX filesystems support case insensitivity. – 8.3 filename mapping still rears its ugly head occasionally.

  7. Pathnames and Privilege (continued) ● POSIX symlinks can ruin your whole Wider World Opening Windows to a day. – Can be set via NFS or CIFS UNIX extensions. – Should the server follow them ? ● Harder to decide than it looks. ● Options: – O_NOFOLLOW on open(). – Use lstat/lchown/lchmod functions. – realpath(). – fopenat()/fstatat() and friends.

  8. Why following symlinks can cause problems Wider World Opening Windows to a Exported root of share: /safe/export/ a/realative/dir/path/file.txt Symlink, that points elsewhere /evil/directory

  9. Pathnames and Privilege (continued) ● Problems with preventing the following Wider World Opening Windows to a of symlinks - O_NOFOLLOW: – Not all systems have it. – It doesn't do what programmers want or expect. – Neither do the lstat/lchown/lchmod functions. – fopenat()/fstatat() is worse. ● Two fixes for this: – Walk the path a component at a time. – Use realpath().

  10. Pathnames and Privilege (continued) Wider World Opening Windows to a ● But what about users with elevated SeBackup/SeRestore privileges ? ● Symlink races are deadly with root access. – chdir() into target directory to avoid all the previous problems. – It's harder than that..

  11. Extra Attributes ● Windows files have many more Wider World Opening Windows to a attributes than POSIX – how to store them ? ● We cheat and insist on a file system with extended attributes. – It's not really POSIX under the rubber mask. ● If you can do without ACLs, simple mappings may be done onto POSIX permission bits.

  12. Open Modes / Oplocks / Leasing Wider World Opening Windows to a ● Using shared memory all the extra meta-data associated with opens can be efficiently shared. – So long as CIFS/SMB/SMB2 access is all that is required, this is enough. – Issues arise when NFS exports overlap the same file systems. – Windows open meta-data can cause NFS clients to fail in unexpected ways.

  13. Open Modes / Oplocks / Leasing (continued) Wider World Opening Windows to a ● Write a user space NFS server that integrates with the CIFS/SMB/SMB2 data model. ● Push required open state meta-data into the kernel. – First done in SGI IRIX. – Oplocks available as F_SETLEASE/F_GETLEASE in Linux. – Share modes passed into Linux kernel (for IBM GPFS) via flock() call.

  14. File Locking ● Finally a solved problem ! Wider World Opening Windows to a – Even the zero-zero locks :-). ● Shared memory allows a mapping layer on top of POSIX fcntl locks – POSIX locks are flexible enough that Windows locks can be mapped onto them. – See my previous talk on mapping Windows unsigned file locks onto POSIX signed locks. – Atomic operations are possible, but hard to get right.

  15. File Locking (continued) ● Smbtorture suite has a great set of Wider World Opening Windows to a regression tests for file (byte range) locking. – Unfortunately can't test cross protocol file locking semantics (interactions with NFS). ● Good news is almost no POSIX applications care about the exact semantics of file locking (except file servers like Samba). ● No significant file locking bugs reported in the past five years or so.

  16. ACLs / Identity mapping ● Underlying system must have some Wider World Opening Windows to a form of ACLs / access control. – (Draft) POSIX ACLs will do. – NFSv4 ACLs are better. – But nothing is perfect here.

  17. ACLs / Identity mapping (continued) Wider World Opening Windows to a ● How to get perfect Windows ACL fidelity mapped onto POSIX access control ? Samba solution: – Map incoming Windows ACL onto local filesystem. – Store unmodified Windows ACL along with a cryptographic hash of the underlying mapped ACL, read back into Windows format. – Allows detection of external modification by NFS or local processes.

  18. ACLs / Identity mapping (continued) Wider World Opening Windows to a ● Windows ACLs (stored with perfect fidelity) control the first level of access. – Any Windows DENY is correctly returned. – Problems can arise when Windows says ALLOW but POSIX mapping says DENY. – Optionally override POSIX permissions. ● Can lead to root symlink races, see earier section on pathname processing.

  19. ACLs / Identity mapping (continued) ● Mapping uids / gids to Windows SIDs is Wider World Opening Windows to a conceptually very simple, but there are many ways to do this. – Small cottage industry of solutions available. – Samba winbindd is the version we ship. – All solutions have to deal with the same fundamental issues (“foreign” SIDs, files with group ownership but no user ownership). – Some of these problems are very difficult (user/group enumeration).

  20. Alternate Data Storage / Streams / EA's Wider World Opening Windows to a ● Are a bad idea.. ● And thankfully are rarely used.

  21. Alternate Data Storage / Streams / EA's (continued) ● Windows extended attributes map Wider World Opening Windows to a easily into UNIX EA's (no such thing in POSIX). – Except case sensitivity issue. ● Windows streams in theory cannot map into UNIX EA's. – Arbitrary size means they will overflow. – In practice, due to small size, this can work. ● Without kernel support, map to “shadow” directories containing data.

  22. Change Notification Wider World Opening Windows to a ● A bad idea for scalability. – Allows simple client requests to cause large amounts of server resources to be used. ● A bad idea for clustered file servers. – Broad notify on the root of a filesystem can lead to lots of cross communication between cluster nodes. ● Not fully supported in a Windows compatible way on any UNIX.

  23. Change Notification (continued) Wider World Opening Windows to a ● All UNIXes do this differently. – Linux has inotify. – Solaris / Nexenta has FEN. – FreeBSD has fsnotify. ● In the same way as for oplocks, Samba implements a user space implementation that can map onto an underlying kernel version.

  24. Exotica (Quotas / Snapshots etc.) Wider World Opening Windows to a ● POSIX symlinks can hide a multitude of sins. ● Arbitrary blob store on disk, just like EA's but supported on all systems. – MSDFS links. – Reparse points. – Samba uses a prefix to ensure that such objects aren't misinterpreted by NFS clients. ● Only works for objects that don't have file stream content.

  25. Exotica (Quotas / Snapshots etc.) Wider World Opening Windows to a ● Windows is extending the filesystem in new and interesting ways. ● So are Linux, Solaris/Nexenta, FreeBSD and other POSIX-style systems. ● The problem is each system is implementing similar functionality in different ways. ● It truly is impossible to create a perfect mapping. – After all, if you really NEED Windows..

  26. You know where to license it Opening Windows to a Wider World

  27. Exotica (Quotas / Snapshots etc.) Wider World Opening Windows to a ● Samba attempts to map the significant features of each Linux / UNIX implementation into methods that Windows clients can use. – Abstract each feature into the Samba VFS (Virtual File System) switch. ● Keeps the Samba implementors job interesting. – Probably for another 20 years..

  28. “ Your next mission, should you chose to accept it, is to make it all work in a Wider World Opening Windows to a cluster.. ”

  29. Coming soon, in a talk by Michael Adam of SerNet Wider World Opening Windows to a

  30. Questions and Comments ? Wider World Opening Windows to a Email: jra@samba.org Slides available at: ftp://samba.org/pub/samba/slides/samba-impossible.odp

Recommend

Samba in the Enterprise : Samba 3.0 and beyond By Jeremy Allison jra@samba.org

Samba in the Enterprise : Samba 3.0 and beyond By Jeremy Allison jra@samba.org

Samba in the Enterprise : Samba 3.0 and beyond By Jeremy Allison jra@samba.org jeremy.allison@hp.com Where we are now : Samba 2.2 The current Samba is a credible replacement for a Windows server providing file and

529 views • 19 slides
Understanding Filenames in the Samba File Server World Opening Windows to a Wider Jeremy

Understanding Filenames in the Samba File Server World Opening Windows to a Wider Jeremy

Understanding Filenames in the Samba File Server World Opening Windows to a Wider Jeremy Allison Samba Team jra@samba.org jra@google.com What is a filename ? Not as simple a question as it seems (streams..). World Opening Windows to a

523 views • 20 slides
Posix-Free File Systems in the Cloud Jeff Chase Duke University Beyond Posix

Posix-Free File Systems in the Cloud Jeff Chase Duke University Beyond Posix

Posix-Free File Systems in the Cloud Jeff Chase Duke University Beyond Posix Filesystem Posix file system semantics? open(2) Hierarchical directories with aliasing Human-readable symbolic names Atomic ops on

599 views • 12 slides
Formally Specifying POSIX File Systems Gian Ntzik , Pedro da Rocha Pinto and Philippa Gardner

Formally Specifying POSIX File Systems Gian Ntzik , Pedro da Rocha Pinto and Philippa Gardner

Formally Specifying POSIX File Systems Gian Ntzik , Pedro da Rocha Pinto and Philippa Gardner Imperial College London July 16, 2015 1/39 POSIX File Systems POSIX: Portable Operating System Interface Large part devoted to the file system

630 views • 46 slides
Samba's Cloudy Future Wider World Opening Windows to a Jeremy Allison Samba Team jra@samba.org

Samba's Cloudy Future Wider World Opening Windows to a Jeremy Allison Samba Team jra@samba.org

Samba's Cloudy Future Wider World Opening Windows to a Jeremy Allison Samba Team jra@samba.org Isn't cloud storage the future ? Wider World Opening Windows to a Yes, but not usable for many existing apps. Cloud Storage is a blob store

317 views • 17 slides
Integration with Active Directory Jeremy Allison Samba Team Benefits of using Active Directory

Integration with Active Directory Jeremy Allison Samba Team Benefits of using Active Directory

Integration with Active Directory Jeremy Allison Samba Team Benefits of using Active Directory Unlike the earlier Microsoft Windows NT 4.x Domain directory service which used proprietary DCE/RPC calls, Active Directory is based on standard

557 views • 27 slides
Serving QML applications over the network Jeremy Lain Wifirst Jeremy Lain Using Qt since

Serving QML applications over the network Jeremy Lain Wifirst Jeremy Lain Using Qt since

Serving QML applications over the network Jeremy Lain Wifirst Jeremy Lain Using Qt since 2001 (desktop, mobile, embedded) Occasional Qt contributor (QDnsLookup) Head of software development at Wifjrst (ISP) Lead developer of a

373 views • 35 slides
Roadmap for Section 8.2 File Systems supported by Windows NTFS Design Goals File System Driver

Roadmap for Section 8.2 File Systems supported by Windows NTFS Design Goals File System Driver

Unit OS8: File System 8.2. Windows File Systems Windows Operating System Internals - by David A. Solomon and Mark E. Russinovich with Andreas Polze Roadmap for Section 8.2 File Systems supported by Windows NTFS Design Goals File System Driver

496 views • 34 slides
Windows File System Efficiency and Stability of a file system are contradicting requirements. How

Windows File System Efficiency and Stability of a file system are contradicting requirements. How

Unit OS8: File System 8.6. Quiz Windows Operating System Internals - by David A. Solomon and Mark E. Russinovich with Andreas Polze Windows File System Efficiency and Stability of a file system are contradicting requirements. How can the

279 views • 11 slides
POSIX IPC: Overview primitive POSIX function description message queues create or access

POSIX IPC: Overview primitive POSIX function description message queues create or access

CPSC-313: Introduction to Computer Systems POSIX IPC POSIX Inter-Process Communication (IPC) Message Queues Shared Memory Semaphores Reading: R&R, Ch 15 POSIX IPC: Overview primitive POSIX function description message

392 views • 6 slides
Implementing IPv6 for Windows NT Richard P. Draves, Microsoft Research Allison Mankin, USC/ISI

Implementing IPv6 for Windows NT Richard P. Draves, Microsoft Research Allison Mankin, USC/ISI

Implementing IPv6 for Windows NT Richard P. Draves, Microsoft Research Allison Mankin, USC/ISI Brian D. Zill, Microsoft Research Main Points Windows NT is a good base for network protocol development Our release is great sample code:

171 views • 16 slides
Getting Started with .NET Core 2.0 on macOS (and Windows, too) Jeremy Clark

Getting Started with .NET Core 2.0 on macOS (and Windows, too) Jeremy Clark

Getting Started with .NET Core 2.0 on macOS (and Windows, too) Jeremy Clark www.jeremybytes.com @jeremybytes What is .NET Core? Cross-Platform .NET Runs on macOS, Linux, and Windows Can be compiled to machine code based on

1.17k views • 15 slides
Roadmap for Section 8.3 Encrypting File System (EFS) Terminology EFS Operation Data Encryption

Roadmap for Section 8.3 Encrypting File System (EFS) Terminology EFS Operation Data Encryption

Unit OS8: File System 8.3. Encrypting File System Security in Windows Windows Operating System Internals - by David A. Solomon and Mark E. Russinovich with Andreas Polze Roadmap for Section 8.3 Encrypting File System (EFS) Terminology EFS

250 views • 12 slides
www.pdl.cmu.edu/posix/ December 14, 2005 APIs for HPC IO POSIX IO APIs (open, close, read,

www.pdl.cmu.edu/posix/ December 14, 2005 APIs for HPC IO POSIX IO APIs (open, close, read,

POSIX I/O High Performance Computing Extensions Brent Welch (Speaker) Panasas www.pdl.cmu.edu/posix/ December 14, 2005 APIs for HPC IO POSIX IO APIs (open, close, read, write, stat) have semantics that can make it hard to achieve high

674 views • 24 slides
Undocumented CIFS Jeremy Allison : Samba Team But isn't CIFS documented ? SNIA document does

Undocumented CIFS Jeremy Allison : Samba Team But isn't CIFS documented ? SNIA document does

Undocumented CIFS Jeremy Allison : Samba Team But isn't CIFS documented ? SNIA document does a basic job. Enough to get an implementor started. Roger Binns (VisionFS author) quote: Anyone following the CIFS spec has a beautiful

284 views • 26 slides
Windows Not just for houses Windows 1-10 Windows Server Essentially a jacked up windows 8 box

Windows Not just for houses Windows 1-10 Windows Server Essentially a jacked up windows 8 box

Windows Not just for houses Windows 1-10 Windows Server Essentially a jacked up windows 8 box - Still GUI based - Still makes no sense - No start menu :( - (Install classic shell)... trust me... Windows Server What can it do? - Email

1.06k views • 37 slides
MarFS : A Scalable Near-POSIX File System over Cloud Objects Kyle E. Lamb HPC Storage Team Lead

MarFS : A Scalable Near-POSIX File System over Cloud Objects Kyle E. Lamb HPC Storage Team Lead

MarFS : A Scalable Near-POSIX File System over Cloud Objects Kyle E. Lamb HPC Storage Team Lead Nov 18 th 2015 LA-UR-15-27431 Why Do We Need a MarFS HPC Post Trinity HPC Pre Trinity HPC At Trinity 1-2 PB/sec Memory Residence hours

470 views • 22 slides
The Specification of POSIX File Systems Gian Ntzik, Pedro da Rocha Pinto and Philippa Gardner

The Specification of POSIX File Systems Gian Ntzik, Pedro da Rocha Pinto and Philippa Gardner

The Specification of POSIX File Systems Gian Ntzik, Pedro da Rocha Pinto and Philippa Gardner Imperial College London gian.ntzik08@imperial.ac.uk pedro.da-rocha-pinto09@imperial.ac.uk p.gardner@imperial.ac.uk INVEST 2017 1/13 Logics for

461 views • 14 slides
ScoutFS: POSIX Archiving at Extreme Scale Zach Brown, Versity MSST 2019 POSIX Archiving with

ScoutFS: POSIX Archiving at Extreme Scale Zach Brown, Versity MSST 2019 POSIX Archiving with

ScoutFS: POSIX Archiving at Extreme Scale Zach Brown, Versity MSST 2019 POSIX Archiving with ScoutFS POSIX: NFS / SAMBA / RSYNC / CUSTOM ScoutFS SAN Fabric ScoutAM Archive Manager Archival Storage Archival Filesystem Differences Built

443 views • 8 slides
CSE 333 Section I/O, POSIX, and System Calls! 1 Logistics Due TODAY: Homework 1 @ 11:59 pm

CSE 333 Section I/O, POSIX, and System Calls! 1 Logistics Due TODAY: Homework 1 @ 11:59 pm

CSE 333 Section I/O, POSIX, and System Calls! 1 Logistics Due TODAY: Homework 1 @ 11:59 pm Due Monday: Exercise 7 @ 11 am 2 POSIX Posix is a family of standards specified by the IEEE. These standards maintains compatibility across

642 views • 30 slides
A Concurrent Specification for POSIX File Systems Gian Ntzik, Pedro da Rocha Pinto and Philippa

A Concurrent Specification for POSIX File Systems Gian Ntzik, Pedro da Rocha Pinto and Philippa

A Concurrent Specification for POSIX File Systems Gian Ntzik, Pedro da Rocha Pinto and Philippa Gardner Imperial College London gian.ntzik08@imperial.ac.uk pedro.da-rocha-pinto09@imperial.ac.uk p.gardner@imperial.ac.uk Dagstuhl 2016 1/22

560 views • 28 slides
ENGR/CS 101 CS Session Lecture 3 Log into Windows/ACENET (reboot if in lab machine is in

ENGR/CS 101 CS Session Lecture 3 Log into Windows/ACENET (reboot if in lab machine is in

ENGR/CS 101 CS Session Lecture 3 Log into Windows/ACENET (reboot if in lab machine is in Linux) Start IDLE (Python GUI) 2.7 Open the program file from last class. Save this file with a new name like 'lecture03.py' Lecture 3

469 views • 21 slides
CMSC201 Computer Science I for Majors Lecture 10 File I/O Prof. Jeremy Dixon Based on

CMSC201 Computer Science I for Majors Lecture 10 File I/O Prof. Jeremy Dixon Based on

CMSC201 Computer Science I for Majors Lecture 10 File I/O Prof. Jeremy Dixon Based on concepts from: http://mcsp.wartburg.edu/zelle/python/ppics2/code/ www.umbc.edu Last Class We Covered Using while loops Syntax Using them for

634 views • 47 slides
Transaction Support in Windows Transaction Support in Windows NTFS NTFS Surendra Verma

Transaction Support in Windows Transaction Support in Windows NTFS NTFS Surendra Verma

Transaction Support in Windows Transaction Support in Windows NTFS NTFS Surendra Verma Surendra Verma Development Manager Development Manager Windows File Systems Windows File Systems Microsoft Microsoft Transactional NTFS (TxF)

494 views • 21 slides

More recommend