The current DM IMA events do not cover the case where a device changes their attributes to indicate a state change. This adds a new event (dm_target_update) which allows targets to remeasure their table entries. The event includes the dm version, device metadata and the target data. Currently only verity supports this event to ensure that device corruption can be detected using IMA which is useful for remote attestation. The current implementation does not update the active table hash because it would require to rehash the entire table on every target change. Thore Sommer (3): dm ima: allow targets to remeasure their table entry dm verity: add support for IMA target update event dm ima: add documentation target update event .../admin-guide/device-mapper/dm-ima.rst | 33 ++++++++ drivers/md/dm-ima.c | 76 +++++++++++++++++++ drivers/md/dm-ima.h | 2 + drivers/md/dm-verity-target.c | 6 ++ 4 files changed, 117 insertions(+) -- 2.34.1
