[...] > Allowing lofi devices into non-global zones > introduces a security > issue. Some filesystems (notably UFS) are not > sufficiently protected > against corrupted or maliciously constructed > filesystem images, > which lofi allows the zone root user to modify. > This could > potentially lead to a non-global zone panicking > the kernel. > Therefore, mounts within a non-global zone are > restricted to a > given allowed list of filesystems, as described > in Section 5 and > Section 6. This applies to all mounts not just > lofi ones. > 5. New vfs flag VSW_ZMOUNT > > The default list of allowed filesystems is based > upon a new vfsdef_t > flag VSW_ZMOUNT. If set, then the filesytem may be > mounted within a > zone, regardless of the fs-allowed value. > This flag is Consolidation Private. > Today, this flag is set for pseudo filesystems > such as proc, network > filesystems such as NFS, plus the hsfs filesystem. > Future work may > enable other filesystems by default. [...]
Is the implementation of hsfs therefore known to be robust against kernel crashes due to a corrupted filesystem, or is it simply that the demand is so high for lofi plus hsfs? What about udfs - if one wants to use CD images, presumably one might want do use DVD-ROM images as well. -- This message posted from opensolaris.org _______________________________________________ opensolaris-arc mailing list [email protected]
