Gitiles
Code Review Sign In
gerrit.openbmc.org / openbmc / estoraged / 605085a6319630441a71fecc897465b419675bf6
commit605085a6319630441a71fecc897465b419675bf6[log] [tgz]
authorJohn Edward Broadbent <jebr@google.com>Fri Nov 05 13:45:45 2021 -0700
committerJohn Edward Broadbent <jebr@google.com>Fri Apr 01 15:30:40 2022 -0700
tree07050151ff5d9c81ca47915b487a4760d31d24a9
parente35e73613719d1ef33fe6fa03bfb8f8d6ec64370 [diff]
Add erase sanitize

Sanitize uses the eMMC firmware to erase all blocks.

Tested:
$ cat /dev/urandom > /dev/mmcblk0

$ time busctl call xyz.openbmc_project.eStoraged.mmcblk0 \
/xyz/openbmc_project/inventory/storage/mmcblk0 \
xyz.openbmc_project.Inventory.Item.Volume Erase s \
xyz.openbmc_project.Inventory.Item.Volume.EraseMethod.VendorSanitize \
--timeout=1200

real    0m1.793s
user    0m0.021s
sys     0m0.009s

root@ytbaz20-nfd01:/# cat /dev/mmcblk0 | hexdump

0000000 0000 0000 0000 0000 0000 0000 0000 0000
*

Signed-off-by: John Edward Broadbent <jebr@google.com>
Change-Id: I31bc21c0b6d31cbba0db752d94a93eb004dbbde6
7 files changed
tree: 07050151ff5d9c81ca47915b487a4760d31d24a9
  1. include/
  2. src/
  3. subprojects/
  4. .clang-format
  5. .clang-tidy
  6. .gitignore
  7. LICENSE
  8. MAINTAINERS
  9. meson.build
  10. meson_options.txt
  11. OWNERS
  12. README.md
README.md

eStoraged

This daemon serves as an abstraction for an encrypted storage device, encapsulating the security functionality and providing a D-Bus interface to manage the encrypted filesystem on the device. Using the D-Bus interface, other software components can interact with eStoraged to do things like create a new encrypted filesystem, wipe its contents, lock/unlock the device, or change the password.