Bug 739095

Summary: makedumpfile enhancement to filter out specific kernel data (like security keys)
Product: Red Hat Enterprise Linux 6 Reporter: IBM Bug Proxy <bugproxy>
Component: kexec-toolsAssignee: Cong Wang <amwang>
Status: CLOSED DUPLICATE QA Contact: Kernel Dump QE <kernel-dump-qe>
Severity: high Docs Contact:
Priority: high    
Version: 6.3CC: jjarvis, nobody+PNT0273897, qcai, rkhan, sbest
Target Milestone: betaKeywords: FutureFeature
Target Release: 6.3   
Hardware: All   
OS: All   
Whiteboard:
Fixed In Version: Doc Type: Enhancement
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2011-12-08 07:35:16 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Bug Depends On:    
Bug Blocks: 704634, 705085, 767187    

Description IBM Bug Proxy 2011-09-16 14:51:12 UTC 
1. Feature Overview:
Feature Id: [75105]
a. Name of Feature: makedumpfile enhancement to filter out specific kernel data (like security keys)
b. Feature Description

makedumpfile enhancement to filter out specific kernel data (like security keys)

makedumpfile tool allows one to compress as well as filter out the undesired sections like user pages, zero filled pages etc from the kernel dump. In addition to that enhance the tool to filter out specific kernel data like security keys and encryption related data from kernel dump that will help customer to get appropriate service from service support team while maintaining confidentiality of their data. Work is to implement a common framework that works for all architecture supported by makedumpfile. 

We intend to push this feature to upstream makedumpfile too.

2. Feature Details:
Sponsor: LTC RAS
Architectures:  IA_64, ppc64, x86, x86_64, zSeries - 64 native, 

Arch Specificity: purely common code
Affects Kernel Modules: No
Delivery Mechanism: Direct from Community
Category: other
Request Type: Package - Update Version
d. Upstream Acceptance: In Progress
Sponsor Priority P3
f. Severity: high
IBM Confidential: No
Code Contribution: IBM code
g. Component Version Target: ---

3. Business Case
The customer who are concern about maintaining confidentiality of their sensitive data would want the confidential data, security keys and encryption related data to be removed from the kernel dump before sending it to service support team for analysis. 

4. Primary contact at Red Hat:
John Jarvis, jjarvis

5. Primary contacts at Partner:
Project Management Contact:
Michael W. Wortman, wortman.com

Technical contact(s):
MAHESH J. SALGAONKAR, mahesh.salgaonkar.com
Comment 2 IBM Bug Proxy 2011-09-19 16:50:35 UTC 
------- Comment From mahesh.ibm.com 2011-09-19 12:44 EDT-------
The latest release of makedumpfile-1.4.0 includes this feature.

http://lists.infradead.org/pipermail/kexec/2011-September/005466.html
Comment 4 Cong Wang 2011-12-08 07:35:16 UTC 

*** This bug has been marked as a duplicate of bug 694498 ***