Ksmbd: Mapping MFSymlinks To Native Symlinks

Introduction to MFSymlinks and ksmbd

In the realm of network file systems, the interaction between clients and servers often involves handling symbolic links, or symlinks. Symlinks are essentially pointers to other files or directories, offering a convenient way to create shortcuts and manage file system structures. When it comes to the Server Message Block (SMB) protocol, which is widely used for file sharing in Windows and Linux environments, the handling of symlinks can vary depending on the client and server implementations. This discussion revolves around ksmbd, a kernel-based SMB server for Linux, and its potential to improve symlink handling by mapping mfsymlinks to native symlinks on the server side.

Specifically, the mfsymlinks mount option, commonly used with the Linux client (cifs.ko), enables Linux clients (and, according to the SAMBA Wiki, also Apple clients) to create and resolve symlinks on the client side. However, the current behavior of ksmbd involves storing these client-side symlinks as regular files with special content and size, known as Minshall+French symlinks. The goal is to explore the possibility of ksmbd mapping these mfsymlinks to native symlinks on the server-side filesystem, which would offer several advantages in terms of compatibility, performance, and overall file system integrity. By natively storing symlinks, ksmbd can align better with the expected behavior of other SMB implementations and provide a more seamless experience for clients interacting with the server. The following sections will delve into the details of this proposed change, its implications, and the challenges involved.

The Problem with Minshall+French Symlinks

Currently, when a Linux client using the mfsymlinks option creates a symlink on a ksmbd server, the server does not store it as a native symlink. Instead, it stores it as a regular file with the content and size that follow the Minshall+French symlinks convention. This approach has several drawbacks:

1. Compatibility Issues: Other SMB clients or applications that expect native symlinks might not correctly interpret these Minshall+French symlinks. This can lead to broken links or unexpected behavior when accessing the files from different platforms or applications.
2. Performance Overhead: Storing symlinks as regular files requires additional processing to interpret them as symlinks. This can introduce performance overhead, especially when dealing with a large number of symlinks.
3. File System Inconsistency: The file system on the server becomes inconsistent because what should be a symlink is actually a regular file. This can complicate file management and backup processes.

To illustrate this issue, consider the following scenario. A Linux client creates a symlink named symlink-clientside.txt that points to test.txt on the ksmbd server. On the client side, this symlink behaves as expected. However, on the server side, it is stored as a regular file with the content of the symlink (i.e., the path to test.txt) and a specific size. This discrepancy can lead to confusion and compatibility problems.

Reporting of Symlinks in Linux 6.16 and Beyond

As of Linux kernel version 6.16, there is a change in how native symlinks on the server-side file system are reported to the client. Specifically, a native symlink on the server side is reported as an inaccessible symlink on the client. This means that when a client lists the files in a directory containing a server-side symlink, the symlink is displayed with question marks, indicating that the client cannot access it. Here's an example:

# client-side ls -l
l????????? ? ?    ?     ?            ? symlink-serverside.txt
lrwxrwxrwx 1 user group 8 Nov 16  2025 symlink-clientside.txt -> test.txt

In this example, symlink-serverside.txt is a native symlink on the server, but it is displayed as inaccessible on the client. On the other hand, symlink-clientside.txt is a symlink created by the client using the mfsymlinks option, and it is correctly displayed as a symlink on the client side. However, when viewed on the server side, the symlink-clientside.txt is reported as a regular file:

# server-side ls -l
lrwxrwxrwx 1 user group    8 Nov 16  2025 symlink-serverside.txt -> test.txt
-rwxr-xr-x 1 user group 1067 Nov 16  2025 symlink-clientside.txt

This behavior highlights the need for ksmbd to properly handle native symlinks on the server side, ensuring that they are correctly reported and accessible to clients. By mapping mfsymlinks to native symlinks, ksmbd can avoid this issue and provide a more consistent and reliable experience for clients.

Benefits of Mapping MFSymlinks to Native Symlinks

Mapping mfsymlinks to native symlinks on the ksmbd server side offers several significant advantages:

1. Improved Compatibility: By storing symlinks as native symlinks, ksmbd ensures that they are correctly interpreted by all SMB clients, regardless of their operating system or configuration. This eliminates the compatibility issues associated with Minshall+French symlinks.
2. Enhanced Performance: Native symlinks are processed more efficiently than Minshall+French symlinks, reducing the overhead associated with symlink resolution. This can lead to improved performance, especially in scenarios with a large number of symlinks.
3. Simplified File Management: Storing symlinks as native symlinks simplifies file management tasks, such as backup and recovery. It also makes the file system more consistent and easier to understand.
4. Better Integration with Existing Tools: Native symlinks are supported by a wide range of file system tools and utilities, making it easier to manage and manipulate symlinks on the server.

Security Considerations: Share-Crossing and allow insecure wide links

When implementing server-side conversion of mfsymlinks to native symlinks, security considerations are paramount. One important aspect is the handling of share-crossing symlinks, which are symlinks that point to files or directories outside the current share. To address this, ksmbd can leverage the allow insecure wide links configuration setting.

If allow insecure wide links is disabled, ksmbd should deny the creation of absolute symlinks or symlinks pointing out of the share. This prevents malicious clients from creating symlinks that could potentially expose sensitive files or directories outside the intended scope. On the other hand, if allow insecure wide links is enabled, ksmbd can allow the creation of share-crossing symlinks, but with the understanding that this may introduce security risks.

The decision of whether to allow share-crossing symlinks depends on the specific security requirements of the environment. In highly secure environments, it is generally recommended to disable allow insecure wide links to minimize the risk of unauthorized access. However, in more relaxed environments, it may be acceptable to enable this setting to provide greater flexibility.

Interaction with the follow symlinks Option

It's important to note that mapping mfsymlinks to native symlinks is largely independent of the follow symlinks configuration option. The follow symlinks option determines whether the server should follow symlinks when accessing files. When a client has mfsymlinks enabled, the server does not need to follow symlinks because the client is responsible for resolving them. Therefore, the follow symlinks option has no effect in this scenario.

In other words, even if follow symlinks is disabled, ksmbd can still map mfsymlinks to native symlinks without any issues. The key is that the server is simply storing the symlinks as native symlinks, and the client is responsible for resolving them. This separation of concerns simplifies the implementation and ensures that the two features can coexist without interfering with each other.

Conclusion

Mapping mfsymlinks to native symlinks on the ksmbd server side is a valuable enhancement that can improve compatibility, performance, and file system integrity. By storing symlinks as native symlinks, ksmbd can provide a more seamless and consistent experience for clients, regardless of their operating system or configuration. Additionally, the implementation should take into account security considerations, such as the handling of share-crossing symlinks and the allow insecure wide links configuration setting. By carefully addressing these issues, ksmbd can become an even more robust and reliable SMB server for Linux environments. By understanding the nuances of symlink handling and the implications of different configuration options, administrators can optimize their ksmbd deployments for both security and usability.

For further reading on SMB and symlink handling, refer to the Samba Wiki at https://wiki.samba.org/index.php/Main_Page.