[PATCH 3/6] ext4.5: document the verity feature

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Eric Biggers <ebiggers@kernel.org>
To: linux-ext4@vger.kernel.org
Subject: [PATCH 3/6] ext4.5: document the verity feature
Date: Fri, 20 Sep 2019 14:29:51 -0700	[thread overview]
Message-ID: <20190920212954.205789-4-ebiggers@kernel.org> (raw)
In-Reply-To: <20190920212954.205789-1-ebiggers@kernel.org>

From: Eric Biggers <ebiggers@google.com>

Signed-off-by: Eric Biggers <ebiggers@google.com>
---
 misc/ext4.5.in | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

diff --git a/misc/ext4.5.in b/misc/ext4.5.in
index 40e75f81..627c0dad 100644
--- a/misc/ext4.5.in
+++ b/misc/ext4.5.in
@@ -312,6 +312,18 @@ the file system using
 and it also speeds up the time required for
 .BR mke2fs (8)
 to create the file system.
+.TP
+.B verity
+.br
+Enables support for verity protected files.  Verity files are readonly,
+and their data is transparently verified against a Merkle tree hidden
+past the end of the file.  Using the Merkle tree's root hash, a verity
+file can be efficiently authenticated, independent of the file's size.
+.IP
+This feature is most useful for authenticating important read-only files
+on read-write file systems.  If the file system itself is read-only,
+then using dm-verity to authenticate the entire block device may provide
+much better security.
 .SH MOUNT OPTIONS
 This section describes mount options which are specific to ext2, ext3,
 and ext4.  Other generic mount options may be used as well; see
@@ -774,6 +786,8 @@ ext4, 4.13
 ext4, 4.13
 .IP "\fBcasefold\fR" 2i
 ext4, 5.2
+.IP "\fBverity\fR" 2i
+ext4, 5.4
 .SH SEE ALSO
 .BR mke2fs (8),
 .BR mke2fs.conf (5),
-- 
2.23.0.351.gc4317032e6-goog

next prev parent reply	other threads:[~2019-09-20 21:31 UTC|newest]

Thread overview: 7+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2019-09-20 21:29 [PATCH 0/6] e2fsprogs: feature doc updates Eric Biggers
2019-09-20 21:29 ` [PATCH 1/6] ext4.5: move casefold feature to correct position Eric Biggers
2019-09-20 21:29 ` [PATCH 2/6] ext4.5: document first kernel version to support casefold feature Eric Biggers
2019-09-20 21:29 ` Eric Biggers [this message]
2019-09-20 21:29 ` [PATCH 4/6] ext4.5: tweak the documentation for the encrypt feature Eric Biggers
2019-09-20 21:29 ` [PATCH 5/6] tune2fs.8: document the verity feature Eric Biggers
2019-09-20 21:29 ` [PATCH 6/6] tune2fs.8: tweak the documentation for the encrypt feature Eric Biggers

find likely ancestor, descendant, or conflicting patches for this message:
( dfblob:40e75f8 dfblob:627c0da )
 OR (
bs:"[PATCH 3/6] ext4.5: document the verity feature" )
	(help)

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20190920212954.205789-4-ebiggers@kernel.org \
    --to=ebiggers@kernel.org \
    --cc=linux-ext4@vger.kernel.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.