[PATCH v3] ima: add a knob ima= to allow disabling IMA in kdump kernel
Baoquan He
bhe at redhat.com
Tue Jun 17 01:25:51 PDT 2025
On 06/16/25 at 10:04am, Mimi Zohar wrote:
> On Sat, 2025-06-14 at 10:23 +0800, Baoquan He wrote:
> > Kdump kernel doesn't need IMA functionality, and enabling IMA will cost
> > extra memory. It would be very helpful to allow IMA to be disabled for
> > kdump kernel.
> >
> > Hence add a knob ima=on|off here to allow turning IMA off in kdump
> > kernel if needed.
> >
> > Note that this IMA disabling is limited to kdump kernel, please don't
> > abuse it in other kernel and thus serious consequences are caused.
> >
> > Signed-off-by: Baoquan He <bhe at redhat.com>
> > ---
> > v2->v3:
> > - Remove rdundant word 'only' and rephrase sentences in patch log code
> > comment, and rephrase patch subject, thanks to Mimi's comments.
>
> Thanks, Baoquan. The patch is now queued.
Thanks a lot for your patience, careful reviewing and great suggestions.
More information about the kexec
mailing list