[RFC PATCH 3/3] fs: detect that the i_rwsem has already been taken exclusively
Linus Torvalds
torvalds at linux-foundation.org
Sun Oct 1 23:15:07 UTC 2017
On Sun, Oct 1, 2017 at 3:34 PM, Dave Chinner <david at fromorbit.com> wrote:
>
> We already have a change counter on the inode, which is modified on
> any data or metadata write (i_version) under filesystem locks. The
> i_version counter has well defined semantics - it's required by
> NFSv4 to increment on any metadata or data change - so we should be
> able to rely on it's behaviour to implement IMA as well.
I actually think i_version has exactly the wrong semantics.
Afaik, it doesn't actually version the file _data_ at all, it only
versions "inode itself changed".
But I might have missed something obvious. The updates are hidden in
some odd places sometimes.
Linus
--
To unsubscribe from this list: send the line "unsubscribe linux-security-module" in
the body of a message to majordomo at vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
More information about the Linux-security-module-archive
mailing list