LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

Kernel prepatch 3.9-rc6

LWN.net Weekly Edition for April 4, 2013

LWN.net Weekly Edition for March 28, 2013

A kernel change breaks GlusterFS

PyCon: Evangelizing Python

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Why am I seeing a security exploit?

Why am I seeing a security exploit?

Posted Mar 29, 2013 13:49 UTC (Fri) by bfields (subscriber, #19510)
In reply to: Why am I seeing a security exploit? by jmorris42
Parent article: Widening ext4's readdir() cookie

So why can't someone precompute carefully constructed directory entries that will cause a collision, even with 63 bit hashes?

Looks like the hash algorithm takes a seed, which is per-superblock, generated at mkfs time, and should be unknown to an unprivileged user; grep for s_hash_seed in kernel and e2fsprogs source.

(Log in to post comments)

Why am I seeing a security exploit?

Posted Mar 29, 2013 16:37 UTC (Fri) by jmorris42 (subscriber, #2203) [Link]

Ok, at least they were on the ball. Still just doesn't seem right to design a filesystem that only works almost all the time. Computers are generally expected to be more deterministic that that.

Why am I seeing a security exploit?

Posted Apr 3, 2013 20:26 UTC (Wed) by bronson (subscriber, #4806) [Link]

The odds of a random 64 bit collision are worse than 10^18. Since you'll win the lottery thousands of times before that happens, you'll be too rich to care about two gobbledlygook filenames colliding. (But then, you've probably also been fried by lightning and crushed twice by the International Space Station...)

More seriously, there are other sources of error in your computer that are far more worthy of your attention: http://en.wikipedia.org/wiki/Soft_error

It's true that all bets are off if an attacker can break the hash. But, if/when that happens, the fix will probably be a straightforward kernel patch.

Why am I seeing a security exploit?

Posted Apr 4, 2013 16:20 UTC (Thu) by jimparis (subscriber, #38647) [Link]

The odds of two hashes colliding may be 1 in 10^18, but this grows with the number of files. With 60,000 files it's 1 in 10^10. Make up a use case where you're frequently creating or recreating directories with that many files, and it's not far fetched to expect someone to run into a collision pretty soon.

(numbers from http://preshing.com/20110504/hash-collision-probabilities)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds