[dm-devel] [PATCH 0/7] device mapper target measurements using IMA
Tushar Sugandhi
tusharsu at linux.microsoft.com
Wed Jul 28 03:10:29 UTC 2021
Hi Thore,
On 7/27/21 1:33 PM, Alasdair G Kergon wrote:
>> Creating a dm-verity device with mount then removing it and now if you create it
>> again no measurement is generated. Is that the expected behavior?
> Each of the relevant dm ioctls should be logged separately each time. If that's
> not happening it might need fixing.
>
Most likely this is because you haven't set CONFIG_IMA_DISABLE_HTABLE=y.
See "IMA: support for duplicate measurement records" [1] for details.
Please let us know if you still see this behavior after setting
CONFIG_IMA_DISABLE_HTABLE=y.
Thanks,
Tushar
[1]
https://github.com/torvalds/linux/commit/52c208397c246f0c31d031eb8c41f9c7e9fdec0e
More information about the dm-devel
mailing list