Digi
/
meta-digi
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

trustfence-initramfs: do not boot non-encrypted rootfs if encryption is enabled 

Allowing to boot a non-encrypted rootfs when encryption is enable is a security
hole: if an attacker can somehow write (offline) to the media, he could flash a
custom unencrypted rootfs and break into the system.

If the system is configured to use encryption, only encrypted rootfs will boot.
Trying to boot a non-encrypted rootfs will fail and power off the device.

https://jira.digi.com/browse/DEL-3829

Signed-off-by: Tatiana Leon <tatiana.leon@digi.com>
This commit is contained in:
Tatiana Leon 2017-03-14 13:42:13 +01:00
parent d441f8401e
commit f510a438df
1 changed files with 11 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
meta-digi-dey/recipes-core/trustfence/trustfence-initramfs/ccimx6sbc/trustfence-initramfs-init
View File

@ -15,6 +15,15 @@
# #
#=============================================================================== #===============================================================================
POWEROFF_TIME="10"
error() {
[ "${#}" != "0" ] && printf "\n[ERROR]: %s\n\n" "${1}"
echo "The system will poweroff in ${POWEROFF_TIME} seconds"
sleep "${POWEROFF_TIME}"
sync && poweroff -f
}
export PATH=/bin:/sbin:/usr/bin:/usr/sbin export PATH=/bin:/sbin:/usr/bin:/usr/sbin
mkdir -p /proc /sys /dev mkdir -p /proc /sys /dev
@ -51,6 +60,8 @@ fi
if trustfence-tool ${root} cryptroot; then if trustfence-tool ${root} cryptroot; then
# Reset root variable to the decrypted mapped device # Reset root variable to the decrypted mapped device
root="/dev/mapper/cryptroot" root="/dev/mapper/cryptroot"
else
error "unable to open encrypted partition."
fi fi
# Mount mapped device # Mount mapped device