Re: [PATCH] overlayfs: Trigger file re-evaluation by IMA / EVM after writes

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On 4/6/23 14:46, Jeff Layton wrote:

On Thu, 2023-04-06 at 17:01 +0200, Christian Brauner wrote:

On Thu, Apr 06, 2023 at 10:36:41AM -0400, Paul Moore wrote:




Correct. As long as IMA is also measuring the upper inode then it seems
like you shouldn't need to do anything special here.


Unfortunately IMA does not notice the changes. With the patch provided in the other email IMA works as expected.



What sort of fs are you using for the upper layer?


jffs2:

/dev/mtdblock4 on /run/initramfs/ro type squashfs (ro,relatime,errors=continue)
/dev/mtdblock5 on /run/initramfs/rw type jffs2 (rw,relatime)
cow on / type overlay (rw,relatime,lowerdir=run/initramfs/ro,upperdir=run/initramfs/rw/cow,workdir=run/initramfs/rw/work)

Regards,
   Stefan
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Index of Archives]     [Linux Kernel]     [Linux Kernel Hardening]     [Linux NFS]     [Linux NILFS]     [Linux USB Devel]     [Video for Linux]     [Linux Audio Users]     [Yosemite News]     [Linux SCSI]

  Powered by Linux