Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1751593AbdIOSFf (ORCPT <rfc822;w@1wt.eu>);
        Fri, 15 Sep 2017 14:05:35 -0400
Received: from mail-io0-f194.google.com ([209.85.223.194]:36082 "EHLO
        mail-io0-f194.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1751541AbdIOSFd (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Fri, 15 Sep 2017 14:05:33 -0400
X-Google-Smtp-Source: AOwi7QBDDEl48YKAXRuG4LNMKhuFHlLCOuM9yl8iUPso8t6nronKwtETjg6m4s8iWpceujOIuTVlxP2sYbOg93Byy2Y=
MIME-Version: 1.0
In-Reply-To: <1505466296.4200.86.camel@linux.vnet.ibm.com>
References: <1505451494-30228-1-git-send-email-zohar@linux.vnet.ibm.com>
 <1505451494-30228-4-git-send-email-zohar@linux.vnet.ibm.com>
 <CA+55aFwVujvsdaq09O216u-uBbBbo5i_1d6aw3ksottR_uiJ6w@mail.gmail.com> <1505466296.4200.86.camel@linux.vnet.ibm.com>
From: Linus Torvalds <torvalds@linux-foundation.org>
Date: Fri, 15 Sep 2017 11:05:31 -0700
X-Google-Sender-Auth: j0-gITcdjziUIt0F9ACXUFkgrUw
Message-ID: <CA+55aFwS39HcDEE3QrS0_nSahY9uQJBCYfqw1jhSa6x3Fg_=pw@mail.gmail.com>
Subject: Re: [PATCH 3/3] ima: use fs method to read integrity data
To: Mimi Zohar <zohar@linux.vnet.ibm.com>
Cc: Dave Kleikamp <shaggy@kernel.org>, Bob Peterson <rpeterso@redhat.com>,
        David Woodhouse <dwmw2@infradead.org>, Chao Yu <yuchao0@huawei.com>,
        Hugh Dickins <hughd@google.com>,
        "Darrick J. Wong" <darrick.wong@oracle.com>,
        Matthew Garrett <mjg59@srcf.ucam.org>,
        Joel Becker <jlbec@evilplan.org>, Jan Kara <jack@suse.com>,
        Chris Mason <clm@fb.com>,
        Ryusuke Konishi <konishi.ryusuke@lab.ntt.co.jp>,
        Steven Whitehouse <swhiteho@redhat.com>,
        Christoph Hellwig <hch@infradead.org>,
        Andreas Dilger <adilger.kernel@dilger.ca>,
        "Theodore Ts'o" <tytso@mit.edu>, Mark Fasheh <mfasheh@versity.com>,
        LSM List <linux-security-module@vger.kernel.org>,
        linux-ima-devel@lists.sourceforge.net,
        James Morris <jmorris@namei.org>, Richard Weinberger <richard@nod.at>,
        Jaegeuk Kim <jaegeuk@kernel.org>,
        Linux Kernel Mailing List <linux-kernel@vger.kernel.org>,
        Christoph Hellwig <hch@lst.de>
Content-Type: text/plain; charset="UTF-8"
Sender: linux-kernel-owner@vger.kernel.org
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org
Content-Length: 1123
Lines: 28

On Fri, Sep 15, 2017 at 2:04 AM, Mimi Zohar <zohar@linux.vnet.ibm.com> wrote:
> On Thu, 2017-09-14 at 22:50 -0700, Linus Torvalds wrote:
>> This is still wrong.
>>
>> (a) there is no explanation for why we need that exclusive lock in the
>> first place
>
>> Why should a read need exclusive access? You'd think shared is sufficient.
>
> True, reading a file shouldn't require an exclusive lock.  The
> exclusive lock is taken to prevent the file from changing while the
> file hash is being calculated.

That really shouldn't need an exclusive lock either. The whole point
is that you're just reading the file, so a shared lock should be fine.

There may be other *higher* level reasons why the caller then might
want an exclusive lock for other reasons, but that should have nothing
to do with the reading part.

So this is the thing I want explained. Right now there are no
explanations, and the few comments there are about exclusive locking
don't make sense, and don't match the lockdep tests.

So the patch itself may be fine, but the commentary and explanations
are broken and/or missing.

                     Linus