From 60c5f7002bfee928fb8799eb35e5cc95da982a48 Mon Sep 17 00:00:00 2001 From: Lennart Poettering Date: Thu, 18 Nov 2021 22:00:31 +0100 Subject: extension-release.d/: add a new field SYSEXT_SCOPE= for clarifying what a system extension is for MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This should make things a bit more robust since it ensures system extension can only applied to the right environments. Right now three different "scopes" are defined: 1. "system" (for regular OS systems, after the initrd transition) 2. "initrd" (for sysext images that apply to the initrd environment) 3. "portable" (for sysext images that apply to portable images) If not specified we imply a default of "system portable", i.e. any image where the field is not specified is implicitly OK for application to OS images and for portable services – but not for initrds. --- src/shared/dissect-image.h | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'src/shared/dissect-image.h') diff --git a/src/shared/dissect-image.h b/src/shared/dissect-image.h index b75b86ab99..8ad26bc45b 100644 --- a/src/shared/dissect-image.h +++ b/src/shared/dissect-image.h @@ -228,4 +228,4 @@ bool dissected_image_verity_sig_ready(const DissectedImage *image, PartitionDesi int mount_image_privately_interactively(const char *path, DissectImageFlags flags, char **ret_directory, LoopDevice **ret_loop_device, DecryptedImage **ret_decrypted_image); -int verity_dissect_and_mount(const char *src, const char *dest, const MountOptions *options, const char *required_host_os_release_id, const char *required_host_os_release_version_id, const char *required_host_os_release_sysext_level); +int verity_dissect_and_mount(const char *src, const char *dest, const MountOptions *options, const char *required_host_os_release_id, const char *required_host_os_release_version_id, const char *required_host_os_release_sysext_level, const char *required_sysext_scope); -- cgit v1.2.1