Re: [PATCH v3] ima: detect changes to the backing overlay file

From: Mimi Zohar
Date: Wed Oct 25 2023 - 11:18:17 EST

Next message: Lizhi Hou: "Re: [PATCH V5 0/1] AMD QDMA driver"
Previous message: Dmitry Baryshkov: "Re: [RFC PATCH 03/10] drm/mipi-dsi: add API for manual control over the DSI link power state"
In reply to: Raul Rangel: "Re: [PATCH v3] ima: detect changes to the backing overlay file"
Next in thread: Eric Snowberg: "Re: [PATCH v3] ima: detect changes to the backing overlay file"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, 2023-10-25 at 08:59 -0600, Raul Rangel wrote:
> On Wed, Oct 25, 2023 at 8:39 AM Mimi Zohar <zohar@xxxxxxxxxxxxx> wrote:
> > + if (!IS_I_VERSION(backing_inode) ||
> > + backing_inode->i_sb->s_dev != iint->real_dev ||
> > + backing_inode->i_ino != iint->real_ino ||
> > + !inode_eq_iversion(backing_inode, iint->version)) {
> > + iint->flags &= ~IMA_DONE_MASK;
> > + iint->measured_pcrs = 0;
> > + }
> > + }
> > +
> Does this mean I need to mount ext4 with `-o iversion`? Or has it been
> enabled by default?

According to commit 1ff20307393e ("ext4: unconditionally enable the
i_version counter") it's now enabled by default.
>
> I can test this patch out sometime this week and verify it fixes the
> performance regression.
>
> Thanks!

Much appreciated!

--
thanks,

Mimi

Next message: Lizhi Hou: "Re: [PATCH V5 0/1] AMD QDMA driver"
Previous message: Dmitry Baryshkov: "Re: [RFC PATCH 03/10] drm/mipi-dsi: add API for manual control over the DSI link power state"
In reply to: Raul Rangel: "Re: [PATCH v3] ima: detect changes to the backing overlay file"
Next in thread: Eric Snowberg: "Re: [PATCH v3] ima: detect changes to the backing overlay file"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]