Re: [PATCH v2 01/12] fs-verity: add a documentation file

From: Theodore Y. Ts'o
Date: Fri Dec 21 2018 - 10:52:26 EST

Next message: Michal Hocko: "Re: [PATCH RFC] mm: vmalloc: do not allow kzalloc to fail"
Previous message: Michel DÃnzer: "Re: [PATCH] drm: add capability DRM_CAP_ASYNC_UPDATE"
In reply to: Richard Weinberger: "Re: [PATCH v2 01/12] fs-verity: add a documentation file"
Next in thread: Matthew Wilcox: "Re: [PATCH v2 01/12] fs-verity: add a documentation file"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Dec 20, 2018 at 11:04:47PM -0800, Christoph Hellwig wrote:
> Ted, I think you know yourself this isn't true. Whenever we added
> useful interface to one of the major file systems we had other pick
> it up, and that is a good thing because the last thing we need is
> fragmentation of interfaces. And even if that wasn't the case I don't
> think we should take short cuts, because even if an interface was just
> for a file system or two it still needs to be properly desgined.

This is why I think the interface argument is totally bogus.

If you're OK with Darrick's suggested interface, where you pass in a
file descriptor, offset and length --- that's just a superset of the
current interface, except where the file descriptor is in the file
which is going to be protected using fs-verity. So there's if you're
OK with that interface, we can add that interface later, and it's
really no big deal; it certainly doesn't add any extra complexity for
XFS --- assuming that XFS even gets around to adding support for
fs-verity.

Adding that extra complexity is not necessary for the current users of
the interface, and as I've said multiple times before, there's no
*value* in allowing the Merkle tree to be passed in via some arbitrary
file descriptor, which might even be on a separate fhile system, as
opposed in the file which is about to be protected using fs-verity.

Linus --- we're going round and round, and I don't think this is
really a technical dispute at this point, but rather an aesthetics
one. Will you be willing to accept my pull request for a feature
which is being shippped on millions of Android phones, has been out
for review for months, and for which, if we *really* need to add
uselessly complicated interface later, we can do that? It's always
been the case for internal Kernel interfaces not to add code "just in
case" it's useful, but rather when a user turns up. I argue we should
be doing the same thing for user-space visible interfaces.

Regards,

- Ted

Next message: Michal Hocko: "Re: [PATCH RFC] mm: vmalloc: do not allow kzalloc to fail"
Previous message: Michel DÃnzer: "Re: [PATCH] drm: add capability DRM_CAP_ASYNC_UPDATE"
In reply to: Richard Weinberger: "Re: [PATCH v2 01/12] fs-verity: add a documentation file"
Next in thread: Matthew Wilcox: "Re: [PATCH v2 01/12] fs-verity: add a documentation file"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]