linux/meta-security.git/recipes-core/initrdscripts/initramfs-framework-dm, branch master-next

dm-verity: hook separate hash into initramfs framework

2023-06-25T19:05:28+00:00

The prior commits create the separate hash so now it is time to update the initramfs framework so that veritysetup, which is responsible for binding the data and hash, is aware of when separate hash is in use, and can react accordingly. The added code follows the existing appended hash code style, but is considerably smaller because it doesn't have the large case statement that supports all possible identification schemes (label, UUID, ...). With the root hash split in two to create the respective partition UUIDs, we know exactly how to identify it, and the UUIDs used. Signed-off-by: Paul Gortmaker Signed-off-by: Armin Kuster

dmverity: Suppress the realpath errors

2023-06-11T14:40:33+00:00

If we use a non PARTUUID root parameter, we would always get a error like below: realpath: /dev/disk/by-partuuid//dev/mmcblk0p2: No such file or directory This seems pretty confusion and it also seems no need to emit this kind of error when we are waiting for the root device. So suppress all the realpath errors. Signed-off-by: Kevin Hao Signed-off-by: Armin Kuster

dmverity: Make use of DATA_BLOCK_SIZE variable in initrdscript.

2021-09-28T23:18:41+00:00

DATA_BLOCK_SIZE variable was set in dm-verity-img.bbclass at build time but the initrdscript was not updated to pass the DATA_BLOCK_SIZE to the veritysetup. Now the functionality is complete. Signed-off-by: Paulo Neves Signed-off-by: Armin Kuster

initramfs-framework: rename files dir

2021-06-29T16:31:13+00:00

Fixes: ERROR: initramfs-framework-1.0-r4 do_fetch: Fetcher failure for URL: 'file://dmverity'. Unable to fetch URL from any source. Signed-off-by: Armin Kuster