From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on inbox.vuxu.org X-Spam-Level: X-Spam-Status: No, score=0.0 required=5.0 tests=none autolearn=ham autolearn_force=no version=3.4.4 Received: (qmail 1563 invoked from network); 22 Jan 2021 00:48:26 -0000 Received: from 1ess.inri.net (216.126.196.35) by inbox.vuxu.org with ESMTPUTF8; 22 Jan 2021 00:48:26 -0000 Received: from mimir.eigenstate.org ([206.124.132.107]) by 1ess; Thu Jan 21 19:24:16 -0500 2021 Received: from abbatoir.fios-router.home (pool-74-101-2-6.nycmny.fios.verizon.net [74.101.2.6]) by mimir.eigenstate.org (OpenSMTPD) with ESMTPSA id 5afc8c8f (TLSv1.2:ECDHE-RSA-AES256-SHA:256:NO) for <9front@9front.org>; Thu, 21 Jan 2021 16:24:07 -0800 (PST) Message-ID: <8810E8F846CEF25EEA2C33E9D750FA3D@eigenstate.org> To: 9front@9front.org Date: Thu, 21 Jan 2021 16:24:05 -0800 From: ori@eigenstate.org In-Reply-To: <8D8FC1E6-517F-4265-A250-55A8C990477C@stanleylieber.com> MIME-Version: 1.0 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: 8bit List-ID: <9front.9front.org> List-Help: X-Glyph: ➈ X-Bullshit: stateless decentralized factory-based general-purpose-oriented software Subject: Re: [9front] user none: cwfs vs hjfs Reply-To: 9front@9front.org Precedence: bulk Quoth Stanley Lieber : > On January 21, 2021 6:26:27 PM EST, Silas McCroskey wrote: > >> right now, running as user none is the only way to mask proc and other # file system data. > > > >How so? > > > >RFNOMNT If set, subsequent mounts into the new name space > > and dereferencing of pathnames starting with # are > > disallowed. > > > >- sam-d > > > > let's stipulate i don't know what i'm talking about. > > when i brought this up with cinap and ori on irc they agreed there is a bit of a problem here. maybe we're all wrong, or maybe i misunderstood their confirmation of my observations. > > observed: hjfs handles user none differently. Yes. Let's normalize the behavior. Since it seems like the cwfs behavior is expected and intended, I'd want to patch hjfs to match it. I'm happy to give you (and anyone else following) time to fix bugs, maybe going as far as putting the change behind a console knob for a few weeks for testing. I'd want the knob to go away quickly, though. > observed: as a regular user i was able to access # after rfork m. That is unexpected -- rfork m works as documented for me, though I think we punched a couple of holes to make it more useful. Without '#|', rc would be entirely broken after 'rfork m'. cpu% rfork m cpu% for(d in `{awk '{print $1}' /dev/drivers}){ ls $d>/dev/null && echo allowed: $d } ls: #/: mount/attach disallowed allowed: #c ls: #¶: mount/attach disallowed ls: #P: mount/attach disallowed ls: #$: mount/attach disallowed allowed: #e allowed: #| allowed: #p ls: #M: mount/attach disallowed ls: #s: mount/attach disallowed ls: #σ: mount/attach disallowed allowed: #d ls: #r: mount/attach disallowed ls: #D: mount/attach disallowed ls: #a: mount/attach disallowed ls: #¤: mount/attach disallowed ls: #K: mount/attach disallowed ls: #k: mount/attach disallowed ls: #l: mount/attach disallowed ls: #B: mount/attach disallowed ls: #I: mount/attach disallowed ls: #i: mount/attach disallowed ls: #m: mount/attach disallowed ls: #b: mount/attach disallowed ls: #v: mount/attach disallowed ls: #S: mount/attach disallowed ls: #æ: mount/attach disallowed ls: #A: mount/attach disallowed ls: #t: mount/attach disallowed ls: #u: mount/attach disallowed ls: #g: mount/attach disallowed ls: #X: mount/attach disallowed ls: #Δ: mount/attach disallowed On the other hand: cpu% auth/none cpu% for(d in `{awk '{print $1}' /dev/drivers}){ ls $d>/dev/null && echo allowed: $d } allowed: #/ allowed: #c allowed: #¶ allowed: #P allowed: #$ allowed: #e allowed: #| allowed: #p ls: #M: mount/attach disallowed allowed: #s allowed: #σ allowed: #d allowed: #r allowed: #D allowed: #a allowed: #¤ allowed: #K allowed: #k allowed: #l allowed: #B allowed: #I ls: #i: no frame buffer allowed: #m ls: #b: permission denied allowed: #v allowed: #S allowed: #æ ls: #A: no free devices allowed: #t allowed: #u allowed: #g allowed: #X allowed: #Δ