dm verity: set DM_TARGET_IMMUTABLE feature flag

commit 4caae58406 upstream. The device-mapper framework provides a mechanism to mark targets as immutable (and hence fail table reloads that try to change the target type). Add the DM_TARGET_IMMUTABLE flag to the dm-verity target's feature flags to prevent switching the verity target with a different target type. Fixes: a4ffc15219 ("dm: add verity target") Cc: stable@vger.kernel.org Signed-off-by: Sarthak Kukreti <sarthakkukreti@google.com> Reviewed-by: Kees Cook <keescook@chromium.org> Signed-off-by: Mike Snitzer <snitzer@kernel.org> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> Change-Id: Iae91b853dcddf1194448749d231533602b34bde0
2026-06-09 20:32:04 +09:00 · 2022-05-31 15:56:40 -04:00
parent 7614cde254
commit 9cc71f7dfa
1 changed files with 1 additions and 0 deletions
--- a/drivers/md/dm-verity-target.c
+++ b/drivers/md/dm-verity-target.c
@@ -1138,6 +1138,7 @@ EXPORT_SYMBOL_GPL(verity_ctr);
 static struct target_type verity_target = {
 	.name		= "verity",
 	.version	= {1, 4, 0},
+	.features	= DM_TARGET_IMMUTABLE,
 	.module		= THIS_MODULE,
 	.ctr		= verity_ctr,
 	.dtr		= verity_dtr,