On 03/17/25 at 06:04pm, steven chen wrote:
> The extra memory allocated for carrying the IMA measurement list across
> kexec is hard-coded as half a PAGE. Make it configurable.
>
> Define a Kconfig option, IMA_KEXEC_EXTRA_MEMORY_KB, to configure the
> extra memory (in kb) to be allocated for IMA
enrel if needed.
Signed-off-by: Baoquan He
---
.../admin-guide/kernel-parameters.txt | 5 +
security/integrity/ima/ima_main.c | 22 +++
2 files changed, 27 insertions(+)
diff --git a/Documentation/admin-guide/kernel-parameters.txt
b/Documentation/adm
kdump kernel, please don't
abuse it in other kernel and thus serious consequences are caused.
Signed-off-by: Baoquan He
---
v1->v2:
- Improve patch log and doc description;
- Make slight adjustment in code;
These are all made according to Mimi's great suggestions.
.../
-06-11 at 16:25 +0800, Baoquan He wrote:
> > Kdump kernel doesn't need IMA functionality, and enabling IMA will cost
> > extra memory. It would be very helpful to allow IMA to be disabled for
> > kdump kernel.
> >
> > Hence add a knob ima=on|off here to allow turn
