mirror of
https://github.com/Telecominfraproject/OpenCellular.git
synced 2025-11-25 18:55:24 +00:00
20525b9164
The make_dev_ssd.sh is made for devinstall shim to
change SSD kernels to be signed by dev keys.
- Kernel A, B will be resigned with dev keys (ignore if A/B seems not bootable)
- Adding param --remove_rootfs_verification can even disable rootfs hash check
This CL also includes some shared refine/fix to make_dev_firmware.sh
BUG=chrome-os-partner:1276
TEST=sudo ./make_dev_ssd.sh; (seeing Kernel A is resigned and B is ignored)
then reboot without developer mode (OK),
rootdev shows /dev/dm-0, rootdev -s shows /dev/sda3
sudo ./make_dev_ssd.sh --remove_rootfs_verification;
then reboot without developer mode (OK), rootdev shows /dev/sda3
Change-Id: Ic20f734b2af42e50a43c19a565a166a39d57a7fd
Review URL: http://codereview.chromium.org/3772013
166 lines
4.5 KiB
Bash
Executable File
166 lines
4.5 KiB
Bash
Executable File
#!/bin/bash
|
|
|
|
# Copyright (c) 2010 The Chromium OS Authors. All rights reserved.
|
|
# Use of this source code is governed by a BSD-style license that can be
|
|
# found in the LICENSE file.
|
|
|
|
# Determine script directory
|
|
SCRIPT_DIR=$(dirname $0)
|
|
PROG=$(basename $0)
|
|
GPT=cgpt
|
|
|
|
# The tag when the rootfs is changed.
|
|
TAG_NEEDS_TO_BE_SIGNED="/root/.need_to_be_signed"
|
|
|
|
# Finds and loads the 'shflags' library, or return as failed.
|
|
load_shflags() {
|
|
# Load shflags
|
|
if [ -f /usr/lib/shflags ]; then
|
|
. /usr/lib/shflags
|
|
elif [ -f "${SCRIPT_DIR}/shflags" ]; then
|
|
. "${SCRIPT_DIR}/shflags"
|
|
elif [ -f "${SCRIPT_DIR}/lib/shflags/shflags" ]; then
|
|
. "${SCRIPT_DIR}/lib/shflags/shflags"
|
|
else
|
|
echo "ERROR: Cannot find the required shflags library."
|
|
return 1
|
|
fi
|
|
}
|
|
|
|
# List of Temporary files and mount points.
|
|
TEMP_FILE_LIST=$(mktemp)
|
|
TEMP_DIR_LIST=$(mktemp)
|
|
|
|
# Read GPT table to find the starting location of a specific partition.
|
|
# Args: DEVICE PARTNUM
|
|
# Returns: offset (in sectors) of partition PARTNUM
|
|
partoffset() {
|
|
sudo $GPT show -b -i $2 $1
|
|
}
|
|
|
|
# Read GPT table to find the size of a specific partition.
|
|
# Args: DEVICE PARTNUM
|
|
# Returns: size (in sectors) of partition PARTNUM
|
|
partsize() {
|
|
sudo $GPT show -s -i $2 $1
|
|
}
|
|
|
|
# Tags a file system as "needs to be resigned".
|
|
# Args: MOUNTDIRECTORY
|
|
tag_as_needs_to_be_resigned() {
|
|
local mount_dir="$1"
|
|
sudo touch "$mount_dir/$TAG_NEEDS_TO_BE_SIGNED"
|
|
}
|
|
|
|
# Determines if the target file system has the tag for resign
|
|
# Args: MOUNTDIRECTORY
|
|
# Returns: true if the tag is there otherwise false
|
|
has_needs_to_be_resigned_tag() {
|
|
local mount_dir="$1"
|
|
[ -f "$mount_dir/$TAG_NEEDS_TO_BE_SIGNED" ]
|
|
}
|
|
|
|
# Determines if the target file system is a Chrome OS root fs
|
|
# Args: MOUNTDIRECTORY
|
|
# Returns: true if MOUNTDIRECTORY looks like root fs, otherwise false
|
|
is_rootfs_partition() {
|
|
local mount_dir="$1"
|
|
[ -f "$mount_dir/$(dirname "$TAG_NEEDS_TO_BE_SIGNED")" ]
|
|
}
|
|
|
|
# Mount a partition read-only from an image into a local directory
|
|
# Args: IMAGE PARTNUM MOUNTDIRECTORY
|
|
mount_image_partition_ro() {
|
|
local image=$1
|
|
local partnum=$2
|
|
local mount_dir=$3
|
|
local offset=$(partoffset "$image" "$partnum")
|
|
sudo mount -o loop,ro,offset=$((offset * 512)) "$image" "$mount_dir"
|
|
}
|
|
|
|
# Mount a partition from an image into a local directory
|
|
# Args: IMAGE PARTNUM MOUNTDIRECTORY
|
|
mount_image_partition() {
|
|
local image=$1
|
|
local partnum=$2
|
|
local mount_dir=$3
|
|
local offset=$(partoffset "$image" "$partnum")
|
|
sudo mount -o loop,offset=$((offset * 512)) "$image" "$mount_dir"
|
|
if is_rootfs_partition "$mount_dir"; then
|
|
tag_as_needs_to_be_resigned "$mount_dir"
|
|
fi
|
|
}
|
|
|
|
# Extract a partition to a file
|
|
# Args: IMAGE PARTNUM OUTPUTFILE
|
|
extract_image_partition() {
|
|
local image=$1
|
|
local partnum=$2
|
|
local output_file=$3
|
|
local offset=$(partoffset "$image" "$partnum")
|
|
local size=$(partsize "$image" "$partnum")
|
|
dd if=$image of=$output_file bs=512 skip=$offset count=$size conv=notrunc >/dev/null 2>&1
|
|
}
|
|
|
|
# Replace a partition in an image from file
|
|
# Args: IMAGE PARTNUM INPUTFILE
|
|
replace_image_partition() {
|
|
local image=$1
|
|
local partnum=$2
|
|
local input_file=$3
|
|
local offset=$(partoffset "$image" "$partnum")
|
|
local size=$(partsize "$image" "$partnum")
|
|
dd if=$input_file of=$image bs=512 seek=$offset count=$size conv=notrunc
|
|
}
|
|
|
|
# Create a new temporary file and return its name.
|
|
# File is automatically cleaned when cleanup_temps_and_mounts() is called.
|
|
make_temp_file() {
|
|
local tempfile=$(mktemp)
|
|
echo "$tempfile" >> $TEMP_FILE_LIST
|
|
echo $tempfile
|
|
}
|
|
|
|
# Create a new temporary directory and return its name.
|
|
# Directory is automatically deleted and any filesystem mounted on it unmounted
|
|
# when cleanup_temps_and_mounts() is called.
|
|
make_temp_dir() {
|
|
local tempdir=$(mktemp -d)
|
|
echo "$tempdir" >> $TEMP_DIR_LIST
|
|
echo $tempdir
|
|
}
|
|
|
|
cleanup_temps_and_mounts() {
|
|
for i in "$(cat $TEMP_FILE_LIST)"; do
|
|
rm -f $i
|
|
done
|
|
set +e # umount may fail for unmounted directories
|
|
for i in "$(cat $TEMP_DIR_LIST)"; do
|
|
if [ -n "$i" ]; then
|
|
if has_needs_to_be_resigned_tag "$i"; then
|
|
echo "Warning: image may be modified. Please resign image."
|
|
fi
|
|
sudo umount -d $i 2>/dev/null
|
|
rm -rf $i
|
|
fi
|
|
done
|
|
set -e
|
|
rm -rf $TEMP_DIR_LIST $TEMP_FILE_LIST
|
|
}
|
|
|
|
# Returns true if all files in parameters exist.
|
|
ensure_files_exist() {
|
|
local filename return_value=0
|
|
for filename in "$@"; do
|
|
if [ ! -f "$filename" -a ! -b "$filename" ]; then
|
|
echo "ERROR: Cannot find required file: $filename"
|
|
return_value=1
|
|
fi
|
|
done
|
|
|
|
return $return_value
|
|
}
|
|
|
|
trap "cleanup_temps_and_mounts" EXIT
|
|
|