diff options
| author | Lennart Poettering <lennart@poettering.net> | 2021-03-23 16:16:42 +0100 |
|---|---|---|
| committer | Lennart Poettering <lennart@poettering.net> | 2021-04-19 23:16:02 +0200 |
| commit | e73309c532999cb15490a78575dd882b24bbe96f (patch) | |
| tree | d9e64f73526c04b33c1b025fb633cca6b6314941 /man/repart.d.xml | |
| parent | 5c08da586fc8fe7cda4010e0057cb79ba1d74335 (diff) | |
| download | systemd-e73309c532999cb15490a78575dd882b24bbe96f.tar.gz | |
repart: add new ReadOnly= and Flags= settings for repart dropins
Let's make the GPT partition flags configurable when creating new
partitions. This is primarily useful for the read-only flag (which we
want to set for verity enabled partitions).
This adds two settings for this: Flags= and ReadOnly=, which strictly
speaking are redundant. The main reason to have both is that usually the
ReadOnly= setting is the one wants to control, and it' more generic.
Moreover we might later on introduce inherting of flags from CopyBlocks=
partitions, where one might want to control most flags as is except for
the RO flag and similar, hence let's keep them separate.
Diffstat (limited to 'man/repart.d.xml')
| -rw-r--r-- | man/repart.d.xml | 23 |
1 files changed, 23 insertions, 0 deletions
diff --git a/man/repart.d.xml b/man/repart.d.xml index d404645588..5223f50364 100644 --- a/man/repart.d.xml +++ b/man/repart.d.xml @@ -565,6 +565,29 @@ factory reset operation. This functionality is useful to implement schemes where images can be reset into their original state by removing partitions and creating them anew. Defaults to off.</para></listitem> </varlistentry> + + <varlistentry> + <term><varname>Flags=</varname></term> + + <listitem><para>Configures the 64bit GPT partition flags to set for the partition when creating + it. This option has no effect if the partition already exists. If not specified the flags values is + set to all zeroes, except if the partition type (as configured with <varname>Type=</varname> above) + refers to a Verity partition, in wich case bit 60 is set (i.e. the read-only bit). This bit may also + be configured separately via <varname>ReadOnly=</varname>, see below. Specify the flags value in + hexadecimal (by prefixing it with <literal>0x</literal>), binary (prefix <literal>0b</literal>) or + decimal (no prefix).</para></listitem> + </varlistentry> + + <varlistentry> + <term><varname>ReadOnly=</varname></term> + + <listitem><para>Configures the Read-Only partition flags (bit 60) of the partition table entry. This + option is a friendly way to set bit 60 of the partition flags value without setting any of the other + bits, and may be set via <varname>Flags=</varname> too, see above.</para> + + <para>If both <varname>Flags=</varname> and <varname>ReadOnly=</varname> are set the latter controls + the value of the flag.</para></listitem> + </varlistentry> </variablelist> </refsect1> |