morgan/systemd
1
0
Fork 0
mirror of https://github.com/morgan9e/systemd synced 2026-04-14 08:25:20 +09:00
Code Issues Packages Projects Releases Wiki Activity

repart: Extend check for read-only verity partitions

Browse Source 
Let's check for verity signature partitions as well. Let's also
check the configured verity mode, which is another way to indicate
verity partitions aside from the type UUID.
This commit is contained in:
Daan De Meyer
2023-08-07 15:23:49 +02:00
parent c578345334
commit 2208d49263
1 changed files with 5 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
src/partition/repart.c
View File

@@ -1749,7 +1749,11 @@ static int partition_read_definition(Partition *p, const char *path, const char
verity_mode_to_string(p->verity));
/* Verity partitions are read only, let's imply the RO flag hence, unless explicitly configured otherwise. */
if (IN_SET(p->type.designator, PARTITION_ROOT_VERITY, PARTITION_USR_VERITY) && p->read_only < 0)
if ((IN_SET(p->type.designator,
PARTITION_ROOT_VERITY,
PARTITION_ROOT_VERITY_SIG,
PARTITION_USR_VERITY,
PARTITION_USR_VERITY_SIG) || p->verity != VERITY_OFF) && p->read_only < 0)
p->read_only = true;
/* Default to "growfs" on, unless read-only */