On 28/11/2021 19:56, Adrian Vovk wrote:
- Journal mode: is slow. It atomically writes data+hash, so the
situation I describe above can never happen. However, to pull this off
it writes the data twice. Effectively every layer of journaled
dm-integrity will cut write speeds in half. This isn't to
Hello,
I've been doing some planning to actually implement the authenticated boot
process proposed by Lennart. My distro uses ostree, so the limitations of
dm-verity are making this much more difficult than it could have been. Hence,
I've been reading up on dm-integrity and its various modes. Howe
