]> git.ipfire.org Git - thirdparty/systemd.git/commit
projects / thirdparty / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 78816ce) | patch
dissect-image: add flag for explicitly enabling userspace verity signature checking
authorLennart Poettering <lennart@poettering.net>
Wed, 28 Feb 2024 12:17:03 +0000 (13:17 +0100)
committerLennart Poettering <lennart@poettering.net>
Wed, 28 Feb 2024 15:17:40 +0000 (16:17 +0100)
commitf4a63ce25f1b672fa2e5b52462ac925bb0027291
tree54e4ca1a63ad547e098a06756faea8fa7f18b614tree | snapshot
parent78816ce72efde8b4ef506e80b0726d2779e5f3ffcommit | diff
dissect-image: add flag for explicitly enabling userspace verity signature checking

let's make userspace verity signature checking optional. This adds a
dissection flag to enable the logic and patches through all our users to
enable it by default, thus effectively not changing anything from the
status quo ante. However, know we have a knob to turn this off in
certain scenarios.
21 files changed:
src/analyze/analyze.c diff | blob | blame | history
src/boot/bootctl.c diff | blob | blame | history
src/core/namespace.c diff | blob | blame | history
src/coredump/coredumpctl.c diff | blob | blame | history
src/dissect/dissect.c diff | blob | blame | history
src/firstboot/firstboot.c diff | blob | blame | history
src/journal/journalctl.c diff | blob | blame | history
src/kernel-install/kernel-install.c diff | blob | blame | history
src/machine-id-setup/machine-id-setup-main.c diff | blob | blame | history
src/nspawn/nspawn.c diff | blob | blame | history
src/partition/repart.c diff | blob | blame | history
src/portable/portable.c diff | blob | blame | history
src/shared/discover-image.c diff | blob | blame | history
src/shared/dissect-image.c diff | blob | blame | history
src/shared/dissect-image.h diff | blob | blame | history
src/shared/mount-util.c diff | blob | blame | history
src/sysext/sysext.c diff | blob | blame | history
src/systemctl/systemctl.c diff | blob | blame | history
src/sysupdate/sysupdate.c diff | blob | blame | history
src/sysusers/sysusers.c diff | blob | blame | history
src/tmpfiles/tmpfiles.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.