verity: ensure that hash_device and root_hash[_file] are passed together or not at all

If a hash device or a roothash are passed for verity usage, both have to be present
or we cannot use them. Make it an error to pass only one of them.

diff --git a/libmount/src/context_veritydev.c b/libmount/src/context_veritydev.c
index 42745068f622846e90241128084c67e8492d6552..3fbe2f343ab2d9eb66fe7af527bc7c7bfe1fb0ff 100644 (file)
--- a/libmount/src/context_veritydev.c
+++ b/libmount/src/context_veritydev.c
@@ -127,6 +127,11 @@ int mnt_context_setup_veritydev(struct libmnt_context *cxt)
                rc = rc < 1 ? rc : 0;
        }
 
+       if (!hash_device || !root_hash) {
+               DBG(VERITY, ul_debugobj(cxt, "verity.hashdevice and one of verity.roothash or verity.roothashfile are mandatory"));
+               rc = -EINVAL;
+       }
+
        if (rc)
                goto done;