Re: [PATCH v4 00/16] fs-verity: read-only file-based authenticity protection

[PATCH v4 00/16] fs-verity: read-only file-based authenticity protection · Eric Biggers <ebiggers@kernel.org> · 2019-06-06
[PATCH v4 01/16] fs-verity: add a documentation file · Eric Biggers <ebiggers@kernel.org> · 2019-06-06
Re: [PATCH v4 01/16] fs-verity: add a documentation file · "Theodore Ts'o" <tytso@mit.edu> · 2019-06-15
Re: [PATCH v4 01/16] fs-verity: add a documentation file · Eric Biggers <ebiggers@kernel.org> · 2019-06-18
[PATCH v4 09/16] fs-verity: add data verification hooks for ->readpages() · Eric Biggers <ebiggers@kernel.org> · 2019-06-06
Re: [PATCH v4 09/16] fs-verity: add data verification hooks for ->readpages() · "Theodore Ts'o" <tytso@mit.edu> · 2019-06-15
[PATCH v4 07/16] fs-verity: add the hook for file ->open() · Eric Biggers <ebiggers@kernel.org> · 2019-06-06
Re: [PATCH v4 07/16] fs-verity: add the hook for file ->open() · "Theodore Ts'o" <tytso@mit.edu> · 2019-06-15
Re: [PATCH v4 07/16] fs-verity: add the hook for file ->open() · Eric Biggers <ebiggers@kernel.org> · 2019-06-18
[PATCH v4 11/16] fs-verity: implement FS_IOC_MEASURE_VERITY ioctl · Eric Biggers <ebiggers@kernel.org> · 2019-06-06
Re: [PATCH v4 11/16] fs-verity: implement FS_IOC_MEASURE_VERITY ioctl · "Theodore Ts'o" <tytso@mit.edu> · 2019-06-15
[PATCH v4 13/16] fs-verity: support builtin file signatures · Eric Biggers <ebiggers@kernel.org> · 2019-06-06
Re: [PATCH v4 13/16] fs-verity: support builtin file signatures · "Theodore Ts'o" <tytso@mit.edu> · 2019-06-15
Re: [PATCH v4 13/16] fs-verity: support builtin file signatures · Eric Biggers <ebiggers@kernel.org> · 2019-06-18
[PATCH v4 16/16] f2fs: add fs-verity support · Eric Biggers <ebiggers@kernel.org> · 2019-06-06
[PATCH v4 15/16] ext4: add fs-verity read support · Eric Biggers <ebiggers@kernel.org> · 2019-06-06
[PATCH v4 14/16] ext4: add basic fs-verity support · Eric Biggers <ebiggers@kernel.org> · 2019-06-06
Re: [PATCH v4 14/16] ext4: add basic fs-verity support · "Theodore Ts'o" <tytso@mit.edu> · 2019-06-15
Re: [PATCH v4 14/16] ext4: add basic fs-verity support · Eric Biggers <ebiggers@kernel.org> · 2019-06-18
Re: [PATCH v4 14/16] ext4: add basic fs-verity support · "Theodore Ts'o" <tytso@mit.edu> · 2019-06-18
Re: [PATCH v4 14/16] ext4: add basic fs-verity support · Eric Biggers <ebiggers@kernel.org> · 2019-06-18
Re: [PATCH v4 14/16] ext4: add basic fs-verity support · "Theodore Ts'o" <tytso@mit.edu> · 2019-06-19
Re: [PATCH v4 14/16] ext4: add basic fs-verity support · Eric Biggers <ebiggers@kernel.org> · 2019-06-19
[PATCH v4 10/16] fs-verity: implement FS_IOC_ENABLE_VERITY ioctl · Eric Biggers <ebiggers@kernel.org> · 2019-06-06
Re: [PATCH v4 10/16] fs-verity: implement FS_IOC_ENABLE_VERITY ioctl · "Theodore Ts'o" <tytso@mit.edu> · 2019-06-15
Re: [PATCH v4 10/16] fs-verity: implement FS_IOC_ENABLE_VERITY ioctl · Eric Biggers <ebiggers@kernel.org> · 2019-06-18
[PATCH v4 12/16] fs-verity: add SHA-512 support · Eric Biggers <ebiggers@kernel.org> · 2019-06-06
Re: [PATCH v4 12/16] fs-verity: add SHA-512 support · "Theodore Ts'o" <tytso@mit.edu> · 2019-06-15
[PATCH v4 05/16] fs-verity: add Kconfig and the helper functions for hashing · Eric Biggers <ebiggers@kernel.org> · 2019-06-06
Re: [PATCH v4 05/16] fs-verity: add Kconfig and the helper functions for hashing · "Theodore Ts'o" <tytso@mit.edu> · 2019-06-15
Re: [PATCH v4 05/16] fs-verity: add Kconfig and the helper functions for hashing · Eric Biggers <ebiggers@kernel.org> · 2019-06-18
[PATCH v4 08/16] fs-verity: add the hook for file ->setattr() · Eric Biggers <ebiggers@kernel.org> · 2019-06-06
Re: [PATCH v4 08/16] fs-verity: add the hook for file ->setattr() · "Theodore Ts'o" <tytso@mit.edu> · 2019-06-15
[PATCH v4 06/16] fs-verity: add inode and superblock fields · Eric Biggers <ebiggers@kernel.org> · 2019-06-06
Re: [PATCH v4 06/16] fs-verity: add inode and superblock fields · "Theodore Ts'o" <tytso@mit.edu> · 2019-06-15
[PATCH v4 04/16] fs: uapi: define verity bit for FS_IOC_GETFLAGS · Eric Biggers <ebiggers@kernel.org> · 2019-06-06
Re: [PATCH v4 04/16] fs: uapi: define verity bit for FS_IOC_GETFLAGS · "Theodore Ts'o" <tytso@mit.edu> · 2019-06-15
[PATCH v4 02/16] fs-verity: add MAINTAINERS file entry · Eric Biggers <ebiggers@kernel.org> · 2019-06-06
Re: [PATCH v4 02/16] fs-verity: add MAINTAINERS file entry · "Theodore Ts'o" <tytso@mit.edu> · 2019-06-15
[PATCH v4 03/16] fs-verity: add UAPI header · Eric Biggers <ebiggers@kernel.org> · 2019-06-06
Re: [PATCH v4 00/16] fs-verity: read-only file-based authenticity protection · Linus Torvalds <torvalds@linux-foundation.org> · 2019-06-06
Re: [PATCH v4 00/16] fs-verity: read-only file-based authenticity protection · Eric Biggers <ebiggers@kernel.org> · 2019-06-06

From: Linus Torvalds <torvalds@linux-foundation.org>
Date: 2019-06-06 17:21:32
Also in: linux-ext4, linux-f2fs-devel, linux-fscrypt, linux-fsdevel, linux-integrity

On Thu, Jun 6, 2019 at 8:54 AM Eric Biggers [off-list ref] wrote:

This is a redesigned version of the fs-verity patchset, implementing
Ted's suggestion to build the Merkle tree in the kernel
(https://lore.kernel.org/linux-fsdevel/20190207031101.GA7387@mit.edu/ (local)).
This greatly simplifies the UAPI, since the verity metadata no longer
needs to be transferred to the kernel.

Interfaces look sane to me. My only real concern is whether it would
make sense to make the FS_IOC_ENABLE_VERITY ioctl be something that
could be done incrementally, since the way it is done now it looks
like any random user could create a big file and then do the
FS_IOC_ENABLE_VERITY to make the kernel do a _very_ expensive
operation.

Yes, I see the

+               if (fatal_signal_pending(current))
+                       return -EINTR;
+               cond_resched();

in there, so it's not like it's some entirely unkillable thing, and
maybe we don't care as a result. But maybe the ioctl interface could
be fundamentally restartable?

If that was already considered and people just went "too complex", never mind.

               Linus

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help