DOCSLIB.ORG

Securing Distributed Systems with Information Flow Control Nickolai Zeldovich, Silas Boyd-Wickizer, and David Mazieres` Stanford University

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Securing Distributed Systems with Information Flow Control Nickolai Zeldovich, Silas Boyd-Wickizer, and David Mazieres` Stanford University Securing Distributed Systems with Information Flow Control Nickolai Zeldovich, Silas Boyd-Wickizer, and David Mazieres` Stanford University ABSTRACT HTTPS Untrustworthy Recent operating systems [12, 21, 26] have shown that Web Front-end Application Database Browser decentralized information flow control (DIFC) can se- Server Code cure applications built from mostly untrusted code. This paper extends DIFC to the network. We present DStar, Web Server a system that enforces the security requirements of mu- Figure 1: High-level structure of a web application. The shaded ap- tually distrustful components through cryptography on plication code is typically the least trustworthy of all components, and should be treated as untrusted code to the extent possible. Dashed lines the network and local OS protection mechanisms on each indicate how the web server can be decomposed into three kinds of ma- host. DStar does not require any fully-trusted processes chines for scalability—namely, front-end, application, and data servers. or machines, and is carefully constructed to avoid covert channels inherent in its interface. We use DStar to build HTTPS server forwards the username and password sup- a three-tiered web server that mitigates the effects of un- plied by the browser to the database for verification, the trustworthy applications and compromised machines. database only allows the application to access records of the verified user, and the HTTPS server only sends 1 INTRODUCTION the application’s output to the same web browser that Software systems are plagued by security vulnerabilities supplied the password. Then even a malicious applica- in poorly-written application code. A particularly acute tion cannot inappropriately disclose users’ data. Effec- example is web applications, which are constructed for tively we consider the application untrusted, mitigating a specific web site and cannot benefit from the same the consequences if it turns out to be untrustworthy. level of peer review as more widely distributed software. While DIFC OSes allow us to tolerate untrustworthy Worse yet, a sizeable faction of web application code ac- applications, they can do so only if all processes are run- tually comes from third parties, in the form of libraries ning on the same machine. Production web sites, on the and utilities for tasks such as image conversion, data in- other hand, must scale to many servers. A site like Pay- dexing, or manipulating PDF, XML, and other complex Maxx might use different pools of machines for front- file formats. Indeed, faced with these kinds of tasks, most end HTTPS servers, application servers, and back-end people start off searching for existing code. Sites such database servers. To achieve Figure 1’s configuration as FreshMeat and SourceForge make it easy to find and when each component runs on a separate machine, we download a wide variety of freely available code, which also need a network protocol that supports DIFC. unfortunately comes with no guarantee of correctness. This paper presents DStar, a protocol and framework Integrating third-party code is often the job of junior en- that leverages OS-level protection on individual ma- gineers, making it easy for useful but buggy third-party chines to provide DIFC in a distributed system. At a code to slip into production systems. It is no surprise high level, DStar controls which messages sent to a ma- we constantly hear of catastrophic security breaches that, chine can affect which messages sent from the machine, for example, permit a rudimentary attacker to download thereby letting us plumb together secure systems out of 100,000 PayMaxx users’ tax forms [20]. untrusted components. DStar was designed to meet the If we cannot improve the quality of software, an al- following goals: ternative is to design systems that remain secure despite Decentralized trust. While an operating system has untrustworthy code. Recent operating systems such as the luxury of an entirely trusted kernel, a distributed sys- Asbestos [21], HiStar [26], and Flume [12] have shown tem might not have any fully-trusted code on any ma- this can be achieved through decentralized information chine. Web applications rely on fully-trusted certificate flow control (DIFC). Consider again the PayMaxx ex- authorities such as Verisign to determine what servers to ample, which runs untrustworthy application code for trust: for example, Google’s web applications might trust each user to generate a tax form. In a DIFC operating any server whose certificate from Verisign gives it a name system, we could sandwich each active user’s tax form ending in .google.com. However, we believe that requir- generation process between the payroll database and an ing such centralized trust by design needlessly stifles in- HTTPS server, using the DIFC mechanism to prevent the novation and reduces security. Instead, DStar strives to application from communicating with any other compo- provide a more general, decentralized mechanism that nent. Figure 1 illustrates this configuration. Suppose the lets applications either use authorities such as Verisign 1 by convention or manage their trust in other ways. More- machine, our web server ensures that the SSL certificate over, the lack of a single trusted authority simplifies in- private key is accessible only to a small part of the SSL tegration of systems in different administrative domains. library, and can only be used for legitimate SSL negotia- Egalitarian mechanisms. One of the features that dif- tion. It also protects authentication tokens, such as pass- ferentiates DIFC work from previous information flow words, so that even the bulk of the authentication code control operating systems is that DIFC mechanisms are cannot disclose them. In a distributed setting, DStar al- specifically designed for use by applications. Any code, lows the web server to ensure that private user data re- no matter how unprivileged, can still use DIFC to pro- turned from a data server can only be written to an SSL tect its data or further subdivide permissions. This prop- connection over which the appropriate user has authenti- erty greatly facilitates interaction between mutually dis- cated himself. DStar’s decentralized model also ensures trustful components, one of the keys to preserving secu- that even web server machines are minimally trusted: if rity in the face of untrustworthy code. By contrast, mili- any one machine is compromised, it can only subvert the tary systems, such as [22], have also long controlled in- security of users that use or had recently used it. formation flow, but using mechanisms only available to privileged administrators, not application programmers. 2 INFORMATION FLOW CONTROL Similarly, administrators can already control information DStar enforces DIFC with labels. This section first de- flow in the network using firewalls and VLANs or VPNs. scribes how these labels—which are similar to those of DStar’s goal is to offer such control to applications and to DIFC OSes—can help secure a web application like Pay- provide much finer granularity, so that, in the PayMaxx Maxx. We then detail DStar’s specific label mechanism. example, every user’s tax information can be individually 2.1 Labels tracked and protected as it flows through the network. DStar’s job is to control how information flows between No inherent covert channels. Information flow con- processes on different machines—in other words, to en- trol systems inevitably allow some communication in vi- sure that only processes that should communicate can olation of policy through covert channels. However, dif- do so. Communication permissions are specified with ferent applications have different sensitivities to covert labels. Each process has a label; whether and in which channel bandwidth. PayMaxx could easily tolerate a direction two processes may communicate is a function 1,000-bit/second covert channel: even if a single in- of their labels. This function is actually a partial order, stance of the untrusted application could read the entire which we write v (pronounced “can flow to”). database, it would need almost a day to leak 100,000 user Roughly speaking, given processes S and R labeled records of 100 bytes each. (Exploiting covert channels L and L , respectively, a message can flow from S to often involves monopolizing resources such as the CPU S R R only if L v L . Bidirectional communication is per- or network, which over such a long period could easily S R mitted only if, in addition, L v L . Labels can also be be detected.) By contrast, military systems consider even R S incomparable; if L 6v L and L 6v L , then S and R may 100 bits/second to be high bandwidth. To ensure that S R R S not communicate in either direction. Such label mech- DStar can adapt to different security requirements, our anisms are often referred to as “no read up, no write goal is to avoid any covert channels inherent in its inter- down,” where “up” is the right hand side of v. Given that face. This allows any covert channels to be mitigated in a labels can be incomparable, however, a more accurate de- particular deployment without breaking backwards com- scription might be, “only read down, only write up.” patibility. Avoiding inherent covert channels is particu- Because a distributed system cannot simultaneously larly tricky with decentralized trust, as even seemingly observe the labels of processes on different machines, innocuous actions such as querying a server for autho- DStar also labels messages. When S sends a message M rization or allocating memory to hold a certificate can to R, S specifies a label L for the message. The property inadvertently leak information. M enforced by DStar is that L v L v L . Intuitively, the DStar runs on a number of operating systems, includ- S M R message label ensures that untrusted code cannot inap- ing HiStar, Flume, and Linux.
Load more

Recommended publications
  • Hacking for Dummies.Pdf
    01 55784X FM.qxd 3/29/04 4:16 PM Page i Hacking FOR DUMmIES‰ by Kevin Beaver Foreword by Stuart McClure 01 55784X FM.qxd 3/29/04 4:16 PM Page v 01 55784X FM.qxd 3/29/04 4:16 PM Page i Hacking FOR DUMmIES‰ by Kevin Beaver Foreword by Stuart McClure 01 55784X FM.qxd 3/29/04 4:16 PM Page ii Hacking For Dummies® Published by Wiley Publishing, Inc. 111 River Street Hoboken, NJ 07030-5774 Copyright © 2004 by Wiley Publishing, Inc., Indianapolis, Indiana Published by Wiley Publishing, Inc., Indianapolis, Indiana Published simultaneously in Canada No part of this publication may be reproduced, stored in a retrieval system or transmitted in any form or by any means, electronic, mechanical, photocopying, recording, scanning or otherwise, except as permitted under Sections 107 or 108 of the 1976 United States Copyright Act, without either the prior written permis- sion of the Publisher, or authorization through payment of the appropriate per-copy fee to the Copyright Clearance Center, 222 Rosewood Drive, Danvers, MA 01923, (978) 750-8400, fax (978) 646-8600. Requests to the Publisher for permission should be addressed to the Legal Department, Wiley Publishing, Inc., 10475 Crosspoint Blvd., Indianapolis, IN 46256, (317) 572-3447, fax (317) 572-4447, e-mail: permcoordinator@ wiley.com. Trademarks: Wiley, the Wiley Publishing logo, For Dummies, the Dummies Man logo, A Reference for the Rest of Us!, The Dummies Way, Dummies Daily, The Fun and Easy Way, Dummies.com, and related trade dress are trademarks or registered trademarks of John Wiley & Sons, Inc.
    [Show full text]
  • High Performance Web Servers: a Study in Concurrent Programming Models
    High Performance Web Servers: A Study In Concurrent Programming Models by Srihari Radhakrishnan A thesis presented to the University of Waterloo in fulfillment of the thesis requirement for the degree of Master of Mathematics in Computer Science Waterloo, Ontario, Canada, 2019 c Srihari Radhakrishnan 2019 Author’s Declaration I hereby declare that I am the sole author of this thesis. This is a true copy of the thesis, including any required final revisions, as accepted by my examiners. I understand that my thesis may be made electronically available to the public. ii Abstract With the advent of commodity large-scale multi-core computers, the performance of software running on these computers has become a challenge to researchers and enterprise developers. While academic research and industrial products have moved in the direction of writing scalable and highly available services using distributed computing, single machine performance remains an active domain, one which is far from saturated. This thesis selects an archetypal software example and workload in this domain, and de- scribes software characteristics affecting performance. The example is highly-parallel web- servers processing a static workload. Particularly, this work examines concurrent programming models in the context of high-performance web-servers across different architectures — threaded (Apache, Go and µKnot), event-driven (Nginx, µServer) and staged (WatPipe) — compared with two static workloads in two different domains. The two workloads are a Zipf distribution of file sizes representing a user session pulling an assortment of many small and a few large files, and a 50KB file representing chunked streaming of a large audio or video file.
    [Show full text]
  • Is Parallel Programming Hard, And, If So, What Can You Do About It?
    Is Parallel Programming Hard, And, If So, What Can You Do About It? Edited by: Paul E. McKenney Linux Technology Center IBM Beaverton [email protected] January 2, 2017 ii Legal Statement This work represents the views of the editor and the authors and does not necessarily represent the view of their respective employers. Trademarks: • IBM, zSeries, and PowerPC are trademarks or registered trademarks of Interna- tional Business Machines Corporation in the United States, other countries, or both. • Linux is a registered trademark of Linus Torvalds. • i386 is a trademark of Intel Corporation or its subsidiaries in the United States, other countries, or both. • Other company, product, and service names may be trademarks or service marks of such companies. The non-source-code text and images in this document are provided under the terms of the Creative Commons Attribution-Share Alike 3.0 United States license.1 In brief, you may use the contents of this document for any purpose, personal, commercial, or otherwise, so long as attribution to the authors is maintained. Likewise, the document may be modified, and derivative works and translations made available, so long as such modifications and derivations are offered to the public on equal terms as the non-source-code text and images in the original document. Source code is covered by various versions of the GPL.2 Some of this code is GPLv2-only, as it derives from the Linux kernel, while other code is GPLv2-or-later. See the comment headers of the individual source files within the CodeSamples directory in the git archive3 for the exact licenses.
    [Show full text]
  • Open Source Software License Information
    Open Source Software license information This document contains an open source software license information for the product VACUU·SELECT. The product VACUU·SELECT contains open source components which are licensed under the applicable open source licenses. The applicable open source licenses are listed below. The open source software licenses are granted by the respective right holders directly. The open source licenses prevail all other license information with regard to the respective open source software components contained in the product. Modifications of our programs which are linked to LGPL libraries are permitted for the customer's own use and reverse engineering for debugging such modifications. However, forwarding the information acquired during reverse engineering or debugging to third parties is prohibited. Furthermore, it is prohibited to distribute modified versions of our programs. In any case, the warranty for the product VACUU·SELECT will expire, as long as the customer cannot prove that the defect would also occur without these modification. WARRANTY DISCLAIMER THE OPEN SOURCE SOFTWARE IN THIS PRODUCT IS DISTRIBUTED IN THE HOPE THAT IT WILL BE USEFUL, BUT WITHOUT ANY WARRANTY, WITHOUT EVEN THE IMPLIED WARRANTY OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. See the applicable licenses for more details. Written offer This product VACUU·SELECT contains software components that are licensed by the holder of the rights as free software, or Open Source software, under GNU General Public License, Versions 2 and 3, or GNU Lesser General Public License, Versions 2.1, or GNU Library General Public License, Version 2, respectively. The source code for these software components can be obtained from us on a data carrier (e.g.
    [Show full text]
  • Is Parallel Programming Hard, And, If So, What Can You Do About It?
    Is Parallel Programming Hard, And, If So, What Can You Do About It? Edited by: Paul E. McKenney Linux Technology Center IBM Beaverton [email protected] August 8, 2012 ii Legal Statement This work represents the views of the authors and does not necessarily represent the view of their employers. IBM, zSeries, and PowerPC are trademarks or registered trademarks of International Business Machines Corporation in the United States, other countries, or both. Linux is a registered trademark of Linus Torvalds. i386 is a trademark of Intel Corporation or its subsidiaries in the United States, other countries, or both. Other company, product, and service names may be trademarks or service marks of such compa- nies. The non-source-code text and images in this document are provided under the terms of the Cre- ative Commons Attribution-Share Alike 3.0 United States license (http://creativecommons. org/licenses/by-sa/3.0/us/). In brief, you may use the contents of this document for any purpose, personal, commercial, or otherwise, so long as attribution to the authors is maintained. Likewise, the document may be modified, and derivative works and translations made available, so long as such modifications and derivations are offered to the public on equal terms as the non-source-code text and images in the original document. Source code is covered by various versions of the GPL (http://www.gnu.org/licenses/ gpl-2.0.html). Some of this code is GPLv2-only, as it derives from the Linux kernel, while other code is GPLv2-or-later. See the CodeSamples directory in the git archive (git://git.
    [Show full text]
  • Licence Agreement Supplement
    Licence Agreement Supplement 2 Index The ISC License ............................................ 300 Unicode License ........................................... 301 Contents X11 License.................................................. 302 Overview .......................................................... 3 Zlib License .................................................. 302 Note ................................................................. 3 Academic Free License 2.1 .............................. 4 Apache License, Version 2.0 ............................ 7 Beerware License ........................................... 10 Boost Software License 1.0 ........................... 10 BSD 2-clause .................................................. 11 BSD 3-clause .................................................. 17 BSD 4-Clause ................................................. 25 BSD variants................................................... 26 Bzip2 License ................................................. 26 Coffee-ware License ...................................... 27 Copyleft-next License .................................... 27 Curl License ................................................... 31 dhcp License .................................................. 32 Dropbear License ........................................... 33 expat License ................................................. 35 GNU GPL v 1.0 ............................................... 36 GNU GPL v 2.0 ............................................... 40 GNU GPL 3.0 ...............................................
    [Show full text]
  • Linux Firewalls.Pdf
    USE IPTABLES TO DETECT AND P R E V E N T LINUXLINUX NETWORK-BASED LINUX FIREWALLS LINUX FIREWALLS ATTACKS FIREWALLSFIREWALLS ATTACK DETECTION A N D RESPONSE W I T H System administrators need to stay ahead of new • Tools for visualizing iptables logs IPTABLES , PSAD , A N D FWSNORT security vulnerabilities that leave their networks exposed • Passive OS fingerprinting with iptables every day. A firewall and an intrusion detection system (IDS) are two important weapons in that fight, enabling Perl and C code snippets offer practical examples MICHAEL RASH you to proactively deny access and monitor network that will help you to maximize your deployment of traffic for signs of an attack. Linux firewalls. Linux Firewalls discusses the technical details of the If you’re responsible for keeping a network secure, Linux Firewalls is a great book. iptables firewall and the Netfilter framework that are you’ll find Linux Firewalls invaluable in your attempt to —From the foreword by Richard Bejtlich built into the Linux kernel, and it explains how they understand attacks and use iptables—along with psad of TaoSecurity.com provide strong filtering, Network Address Translation and fwsnort—to detect and even prevent compromises. (NAT), state tracking, and application layer inspection ABOUT THE AUTHOR capabilities that rival many commercial tools. You’ll learn how to deploy iptables as an IDS with psad and Michael Rash is a security architect with Enterasys fwsnort and how to build a strong, passive authentica- Networks, Inc., where he develops the Dragon tion layer around iptables with fwknop. intrusion detection and prevention system.
    [Show full text]
  • Mvbluefox3 Technical Manual (Pdf)
    mvBlueFOX3 Technical Manual English - Version 3.04 i 1.1 About this manual............................................ 1 1.1.1 Goal of the manual ....................................... 1 1.1.2 Contents of the manual..................................... 1 1.2 Imprint.................................................. 2 1.2.1 Introduction ........................................... 3 1.2.2 wxWidgets............................................ 3 1.2.3 Sarissa ............................................. 3 1.2.4 GenICam ............................................ 3 1.2.5 libusb .............................................. 3 1.2.6 libusbK.............................................. 3 1.2.6.1 libusbK license .................................... 3 1.2.7 Doxygen............................................. 4 1.2.7.1 Doxygen license ................................... 4 1.2.8 SHA1 algorithm......................................... 4 1.2.9 Expat .............................................. 5 1.2.9.1 Expat Copyright.................................... 5 1.2.10 CppUnit ............................................ 5 1.2.11 NUnit.............................................. 5 1.2.11.1 NUnit License.................................... 5 1.3 Legal notice............................................... 6 1.3.1 Introduction ........................................... 6 1.3.2 cJSON.............................................. 6 1.3.3 Unity............................................... 6 1.4 Revisions ...............................................
    [Show full text]
  • Ubports Documentation
    UBports Documentation Marius Gripsgard Sep 23, 2021 ABOUT 1 Introduction 3 2 Processes 5 3 Install Ubuntu Touch 11 4 Daily use 15 5 Advanced use 27 6 Contributing to UBports 35 7 App development 47 8 Human interface guidelines 87 9 System software development 123 10 Introduction 143 11 Building and booting 149 12 Configuring, testing and fixing 165 13 Finalizing the port 177 i ii UBports Documentation Welcome to the official documentation of the UBports project! UBports develops the mobile phone operating system Ubuntu Touch. Ubuntu Touch is a mobile operating system focused on ease of use, privacy, and convergence. On this website you find guides to install Ubuntu Touch on your mobile phone, use Ubuntu Touch, develop Ubuntu Touch apps, port Ubuntu Touch to an Android handset and learn more about system components. If this is your first time here, please consider reading our introduction. If you want to help improving this documentation, the Documentation contribute page will get you started. You may view this documentation in the following languages: • English • Català • Français • Deutsch • Italiano • Română • • Türkçe • Español • Simplified Chinese ABOUT 1 UBports Documentation 2 ABOUT CHAPTER ONE INTRODUCTION Our goal is to create a copylefted libre mobile operating system. One you can use, study, change and share; with all. 1.1 About UBports The project was founded by Marius Gripsgard in 2015 and in its infancy a place where developers could share ideas and educate each other in hopes of bringing the Ubuntu Touch platform to more mobile devices. After Canonical suddenly announced plans to terminate support for Ubuntu Touch in April of 2017, UBports and its sister projects began work on the source code; maintaining and expanding its possibilities for the future.
    [Show full text]
  • Mellanox OFED for Linux Release Notes
    Mellanox OFED for Linux Release Notes Rev 4.3-3.0.2.1 www.mellanox.com Mellanox Technologies NOTE: THIS HARDWARE, SOFTWARE OR TEST SUITE PRODUCT (“PRODUCT (S)”) AND ITS RELATED DOCUMENTATION ARE PROVIDED BY MELLANOX TECHNOLOGIES “AS-IS” WITH ALL FAULTS OF ANY KIND AND SOLELY FOR THE PURPOSE OF AIDING THE CUSTOMER IN TESTING APPLICATIONS THAT USE THE PRODUCTS IN DESIGNATED SOLUTIONS. THE CUSTOMER'S MANUFACTURING TEST ENVIRONMENT HAS NOT MET THE STANDARDS SET BY MELLANOX TECHNOLOGIES TO FULLY QUALIFY THE PRODUCT(S) AND/OR THE SYSTEM USING IT. THEREFORE, MELLANOX TECHNOLOGIES CANNOT AND DOES NOT GUARANTEE OR WARRANT THAT THE PRODUCTS WILL OPERATE WITH THE HIGHEST QUALITY. ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT ARE DISCLAIMED. IN NO EVENT SHALL MELLANOX BE LIABLE TO CUSTOMER OR ANY THIRD PARTIES FOR ANY DIRECT, INDIRECT, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES OF ANY KIND (INCLUDING, BUT NOT LIMITED TO, PAYMENT FOR PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT , STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY FROM THE USE OF THE PRODUCT(S) AND RELATED DOCUMENTATION EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. Mellanox Technologies 350 Oakmead Parkway Suite 100 Sunnyvale, CA 94085 U.S.A. www.mellanox.com Tel: (408) 970-3400 Fax: (408) 970-3403 © Copyright
    [Show full text]
  • Postgresql License
    SOURCE SOFTWARE NOTICE Software: postgresql 9.6 Copyright notice: Legal Notice PostgreSQL is Copyright © 1996-2020 by the PostgreSQL Global Development Group. Postgres95 is Copyright © 1994-5 by the Regents of the University of California. Permission to use, copy, modify, and distribute this software and its documentation for any purpose, without fee, and without a written agreement is hereby granted, provided that the above copyright notice and this paragraph and the following two paragraphs appear in all copies. IN NO EVENT SHALL THE UNIVERSITY OF CALIFORNIA BE LIABLE TO ANY PARTY FOR DIRECT, INDIRECT, SPECIAL, INCIDENTAL, OR CONSEQUENTIAL DAMAGES, INCLUDING LOST PROFITS, ARISING OUT OF THE USE OF THIS SOFTWARE AND ITS DOCUMENTATION, EVEN IF THE UNIVERSITY OF CALIFORNIA HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. THE UNIVERSITY OF CALIFORNIA SPECIFICALLY DISCLAIMS ANY WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. THE SOFTWARE PROVIDED HEREUNDER IS ON AN "AS-IS" BASIS, AND THE UNIVERSITY OF CALIFORNIA HAS NO OBLIGATIONS TO PROVIDE MAINTENANCE, SUPPORT, UPDATES, ENHANCEMENTS, OR MODIFICATIONS. License: PostgreSQL License PostgreSQL is released under the PostgreSQL License, a liberal Open Source license, similar to the BSD or MIT licenses. PostgreSQL Database Management System (formerly known as Postgres, then as Postgres95) Portions Copyright © 1996-2020, The PostgreSQL Global Development Group Portions Copyright © 1994, The Regents of the University of California Permission to use, copy, modify, and distribute this software and its documentation for any purpose, without fee, and without a written agreement is hereby granted, provided that the above copyright notice and this paragraph and the following two paragraphs appear in all copies.
    [Show full text]
  • Mellanox OFED for Linux Release Notes Rev 3.4-1.0.0.0
    Mellanox OFED for Linux Release Notes Rev 3.4-1.0.0.0 www.mellanox.com Rev 3.4- NOTE: THIS HARDWARE, SOFTWARE OR TEST SUITE PRODUCT (“PRODUCT(S)”) AND ITS RELATED DOCUMENTATION ARE PROVIDED BY MELLANOX TECHNOLOGIES “AS-IS” WITH ALL FAULTS OF ANY KIND AND SOLELY FOR THE PURPOSE OF AIDING THE CUSTOMER IN TESTING APPLICATIONS THAT USE THE PRODUCTS IN DESIGNATED SOLUTIONS. THE CUSTOMER'S MANUFACTURING TEST ENVIRONMENT HAS NOT MET THE STANDARDS SET BY MELLANOX TECHNOLOGIES TO FULLY QUALIFY THE PRODUCT(S) AND/OR THE SYSTEM USING IT. THEREFORE, MELLANOX TECHNOLOGIES CANNOT AND DOES NOT GUARANTEE OR WARRANT THAT THE PRODUCTS WILL OPERATE WITH THE HIGHEST QUALITY. ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT ARE DISCLAIMED. IN NO EVENT SHALL MELLANOX BE LIABLE TO CUSTOMER OR ANY THIRD PARTIES FOR ANY DIRECT, INDIRECT, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES OF ANY KIND (INCLUDING, BUT NOT LIMITED TO, PAYMENT FOR PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY FROM THE USE OF THE PRODUCT(S) AND RELATED DOCUMENTATION EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. Mellanox Technologies 350 Oakmead Parkway Suite 100 Sunnyvale , CA 94085 U.S.A. www.mellanox.com Tel: (408) 970-3400 Fax: (408) 970-3403 © Copyright 2016. Mellanox
    [Show full text]