October 01, 2009 posted by Sarah Cockburn
The 8th EuroBSDCon was held at University of Cambridge in the United Kingdom on 18 - 20 September 2009. This year four NetBSD Developers, Alistair Crooks, Adam Hamsik, Joerg Sonnenberger and Arnaud Ysmal, presented a range of topics including Role Based Access Control, Journaling FFS, NetBSD LVM, The pkgsrc wrapper framework, A BSD licensed PGP library, and fs-utils: File systems access tools in userland.
Role Based Access Control - Alistair Crooks
This talk describes the design, implementation and real-world experience of implementing Role-Based Access Control in the NetBSD kernel. Using the existing kauth(9) facility, root's privileged operations have been split into 57 separate roles, and this talk will explain the different role groupings, the development process, design and implementation decisions, kernel and user level changes necessary, and practical lessons learned.
Journalling FFS - Joerg Sonnenberger
The talk reintroduces FFS and the consistency constraints for meta data
updates. It introduces the WAPBL changes, both in terms of the on-disk
format and the implementation in NetBSD. Finally the implementation is
compared with other file systems and specific issues of and plans for
the current implementation are discussed.
NetBSD LVM - Adam Hamsik
This talk introduces LVM as a method of allocating disk space on a disk storage devices. Which is more flexible than conventional ones. Logical Volume Manager can usually stripe, mirror or othervise combine disk partitions to bigger virtual partitions which can be easily moved, resized or manipulated in different ways while in use. Volume Management is one form of disk storage virtualization used in Operating Systems.
The NetBSD LVM has two parts user land tools and a kernel driver. Kernel driver is called device- mapper. User land part is based on Linux lvm tools developed by a community managed by Redhat inc.
The Device-mapper driver can create virtual disk devices according to device table loaded to it. This table specifies which devices are used as a backend, on which offset on particular device virtual device starts. Device-mapper configuration is not persistent and must be loaded to kernel after each reboot by lvm the tools.
The pkgsrc wrapper framework - Joerg Sonnenberger
The wrapper framework in pkgsrc serves two central roles: - abstracting
compiler specifica - limiting visibility of installed packages in
combination with buildlink. It helps making package builds a lot more
reproducable and decreases the number of patches for platforms that are
not using GCC or ELF. The offered flexibility comes at a price, both in
terms of execution speed and code complexity. This talk explains how the
wrapper framework interacts with the rest of pkgsrc, analyzes the
performance of the existing implementation and introduces a simpler and
netpgp - BSD-licensed privacy software - Alistair Crooks
This talk introduces the netpgp library, a BSD-licensed PGP library, which is compatible with the GNU Privacy Guard program (GPG or GNUPG). The library itself is described, and the suite of userland programs built around it, such as the signing/verification/encryption and decryption program, a program to manage keys, and a separate standalone verification program. Possible practical uses for the library are also provided, along with a demonstration of some of these uses.
fs-utils: File systems access tools in userland - Arnaud Ysmal
This talk introduces the fs-utils set of tools, an application suite which provides mtools-like file system access without requiring mount privileges or an in-kernel driver. fs-utils reuses the kernel file system drivers through the RUMP framework and the UKFS library instead of relying on a userspace reimplementation. It supports a total of 12 file systems from NetBSD plus FUSE file systems, and offers the same usage as the well-known tools (e.g. all of the flags of ls are supported).