diff options
| author | Gordon GECOS <u@adam> | 2020-10-30 09:44:07 -0400 |
|---|---|---|
| committer | Gordon GECOS <u@adam> | 2020-10-30 09:44:07 -0400 |
| commit | 8e259ea7a7a125db55190ef7aeb6f368ff743e9d (patch) | |
| tree | 2c7f06c10ee5aa9740d7b27e76981a41c4ceed16 /Makefile | |
| parent | d99c20eba80bf3d6c8b22381db84c5eef2d5cdcc (diff) | |
port veritymount forward to separated verity partition
Diffstat (limited to 'Makefile')
| -rw-r--r-- | Makefile | 13 |
1 files changed, 6 insertions, 7 deletions
| @@ -204,24 +204,23 @@ get_loop_dev="$$(sudo losetup -n -O name -j $@~tmp)" | |||
| 204 | get_backing_file="$$(sudo losetup -n -O back-file -j $@~tmp)" | 204 | get_backing_file="$$(sudo losetup -n -O back-file -j $@~tmp)" |
| 205 | get_min_size="$$(btrfs inspect-internal min-dev-size --id 1 $@.mnt | (read b _; echo $$b))" | 205 | get_min_size="$$(btrfs inspect-internal min-dev-size --id 1 $@.mnt | (read b _; echo $$b))" |
| 206 | 206 | ||
| 207 | %.verity.sh: %.verity | 207 | verity_root_hash = $(shell sed -ne 's/^Root hash:[ \t]*//p' $<) |
| 208 | h=$$(sed -ne 's/^Root hash:[ \t]*//p' $<.log) && [ "$$h" ] && \ | ||
| 209 | printf 'verity_root_hash=%s\nverity_hash_offset=%s\n' "$$h" $(shell stat -c %s $(basename $<)) > $@ | ||
| 210 | 208 | ||
| 211 | %.verity.log: %.verity | 209 | %.verity.log: %.verity |
| 212 | %.verity: % | 210 | %.verity: % |
| 213 | rm -f $@~tmp | 211 | rm -f $@~tmp |
| 214 | sudo veritysetup format $^ $@~tmp > $@.log~tmp | 212 | sudo veritysetup format $^ $@~tmp > $@.log~tmp |
| 213 | sudo chmod 644 $@~tmp | ||
| 215 | mv $@.log~tmp $@.log | 214 | mv $@.log~tmp $@.log |
| 216 | mv $@~tmp $@ | 215 | mv $@~tmp $@ |
| 217 | sudo chmod 644 $@ | ||
| 218 | 216 | ||
| 219 | root_hash = $(shell sed -ne 's/^Root hash: *//p' < $<.log) | 217 | root_hash = $(shell sed -ne 's/^Root hash: *//p' < $<.log) |
| 220 | 218 | ||
| 221 | veritymount: rootfs/samizdat.seed.btrfs.verity.sh | 219 | veritymount: rootfs/samizdat.seed.btrfs.verity.log |
| 222 | @sudo veritysetup remove samizverity >/dev/null 2>&1 || true | 220 | @sudo veritysetup remove samizverity >/dev/null 2>&1 || true |
| 223 | set -x && . $< && sudo veritysetup --ignore-corruption --hash-offset=$$verity_hash_offset \ | 221 | sudo veritysetup create samizverity $(basename $(basename $<)) \ |
| 224 | create samizverity $(basename $<) $(basename $<) $$verity_root_hash | 222 | $(basename $<) \ |
| 223 | $(verity_root_hash) | ||
| 225 | sudo veritysetup remove samizverity | 224 | sudo veritysetup remove samizverity |
| 226 | 225 | ||
| 227 | %.verity.log.asc: %.verity.log | 226 | %.verity.log.asc: %.verity.log |