Andrew Geissler | d1d22e6 | 2020-10-16 10:14:32 -0500 | [diff] [blame] | 1 | # A dm-verity variant of the regular wks for IA machines. We need to fetch |
| 2 | # the partition images from the IMGDEPLOYDIR as the rootfs source plugin will |
| 3 | # not recreate the exact block device corresponding with the hash tree. We must |
| 4 | # not alter the label or any other setting on the image. |
| 5 | # Based on OE-core's systemd-bootdisk.wks and meta-security's beaglebone-yocto-verity.wks.in file |
| 6 | # |
| 7 | # This .wks only works with the dm-verity-img class. |
Andrew Geissler | dc9d614 | 2023-05-19 09:38:37 -0500 | [diff] [blame] | 8 | # Also note that the use of microcode.cpio introduces a meta-intel layer dependency. |
Andrew Geissler | d1d22e6 | 2020-10-16 10:14:32 -0500 | [diff] [blame] | 9 | |
| 10 | part /boot --source bootimg-efi --sourceparams="loader=systemd-boot,initrd=microcode.cpio" --ondisk sda --label msdos --active --align 1024 --use-uuid |
| 11 | |
| 12 | part / --source rawcopy --ondisk sda --sourceparams="file=${IMGDEPLOYDIR}/${DM_VERITY_IMAGE}-${MACHINE}.${DM_VERITY_IMAGE_TYPE}.verity" --use-uuid |
| 13 | |
| 14 | part swap --ondisk sda --size 44 --label swap1 --fstype=swap --use-uuid |
| 15 | |
| 16 | bootloader --ptable gpt --timeout=5 --append=" " |