ima: use of radix tree cache indexing == massive waste of memory?
Christoph Hellwig
hch at infradead.org
Sun Oct 17 00:49:45 UTC 2010
On Sat, Oct 16, 2010 at 02:10:29PM -0700, H. Peter Anvin wrote:
> I'm confused ... what makes you think we are? This might have been an unintentional misconfiguration...
I didn't mean to imply you enabled it intentionally. In fact it looks
like the inode tracking in IMA is always on once it's compiled in, which
totally defeats the purpose of doing it's on iternal inode tracking
instead of bloating the inode what they originally proposed. IMA really
needs a kernel parameter to only enabled this crap when people actually
use it.
And whoever turned it on in Fedora needs some serious wahcking.
More information about the kernel
mailing list