I'm planning to attend LPC next month. I'm interested in discussing IMA on distributed file systems in particular with anyone here who might also attend. I expect it would be a narrow topic, so a birds of a feather is probably appropriate, but hallway track could work too. I especially would like to discuss the on-disk format of IMA metadata, and how the IMA module behaves when it encounters metadata it does not recognize (or how you do on-disk format versioning). I'm still working on an Internet Draft that specifies how to enable IMA on NFS files. The biggest challenge has been the lack of IMA spec. The current revision of the Draft describes the requirements in generic terms, and cites the IMA wiki/white paper only as an Informative reference. I believe this will be adequate. I've also dropped EVM support for now. Two concerns: - NFS does not expose some file attributes that EVM protects - The format of some file attributes might not be the same on all client OSes. More to talk about in person, I hope. https://datatracker.ietf.org/doc/draft-ietf-nfsv4-integrity-measurement/ -- Chuck Lever
