mirrors/linux-stable
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git synced 2024-10-13 20:16:26 +00:00
Code Issues Releases Wiki Activity
linux-stable/Documentation/admin-guide/device-mapper
History
Mikulas Patocka 9cb683c3c4 dm integrity: conditionally disable "recalculate" feature 
commit 5c02406428 upstream.

Otherwise a malicious user could (ab)use the "recalculate" feature
that makes dm-integrity calculate the checksums in the background
while the device is already usable. When the system restarts before all
checksums have been calculated, the calculation continues where it was
interrupted even if the recalculate feature is not requested the next
time the dm device is set up.

Disable recalculating if we use internal_hash or journal_hash with a
key (e.g. HMAC) and we don't have the "legacy_recalculate" flag.

This may break activation of a volume, created by an older kernel,
that is not yet fully recalculated -- if this happens, the user should
add the "legacy_recalculate" flag to constructor parameters.

Cc: stable@vger.kernel.org
Signed-off-by: Mikulas Patocka <mpatocka@redhat.com>
Reported-by: Daniel Glockner <dg@emlix.com>
Signed-off-by: Mike Snitzer <snitzer@redhat.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2021-01-27 11:54:55 +01:00
..
cache-policies.rst
cache.rst
delay.rst
dm-clone.rst dm: add clone target 2019-09-12 09:32:31 -04:00
dm-crypt.rst dm crypt: document encrypted keyring key option 2020-09-22 13:25:58 -04:00
dm-dust.rst dm dust: add interface to list all badblocks 2020-07-20 11:17:41 -04:00
dm-ebs.rst dm: add emulated block size target 2020-05-15 10:29:35 -04:00
dm-flakey.rst
dm-init.rst
dm-integrity.rst dm integrity: conditionally disable "recalculate" feature 2021-01-27 11:54:55 +01:00
dm-io.rst
dm-log.rst
dm-queue-length.rst
dm-raid.rst Replace HTTP links with HTTPS ones: LVM 2020-07-05 14:28:27 -06:00
dm-service-time.rst
dm-uevent.rst
dm-zoned.rst Replace HTTP links with HTTPS ones: LVM 2020-07-05 14:28:27 -06:00
era.rst
index.rst docs: device-mapper: add dm-ebs.rst to an index file 2020-06-19 12:21:56 -04:00
kcopyd.rst
linear.rst
log-writes.rst
persistent-data.rst
snapshot.rst
statistics.rst
striped.rst
switch.rst
thin-provisioning.rst
unstriped.rst
verity.rst dm verity: add "panic_on_corruption" error handling mode 2020-07-13 11:47:33 -04:00
writecache.rst
zero.rst