mirror of
https://github.com/systemd/systemd.git
synced 2025-01-24 06:04:05 +03:00
0470f91983
As described in the BLS, we should place binaries into the XBOOTLDR directory if it is available, otherwise into the ESP. Thus, we might need to put binaries into /boot or into /efi depending on the existence of the XBOOTLDR partition. With this change, we introduce a new PathRelativeTo= config option that makes this functionality possible
208 lines
5.3 KiB
Bash
Executable File
208 lines
5.3 KiB
Bash
Executable File
#!/usr/bin/env bash
|
|
# SPDX-License-Identifier: LGPL-2.1-or-later
|
|
# -*- mode: shell-script; indent-tabs-mode: nil; sh-basic-offset: 4; -*-
|
|
# ex: ts=8 sw=4 sts=4 et filetype=sh
|
|
set -eux
|
|
set -o pipefail
|
|
|
|
SYSUPDATE=/lib/systemd/systemd-sysupdate
|
|
|
|
if ! test -x "$SYSUPDATE"; then
|
|
echo "no systemd-sysupdate" >/skipped
|
|
exit 0
|
|
fi
|
|
|
|
export SYSTEMD_PAGER=cat
|
|
export SYSTEMD_LOG_LEVEL=debug
|
|
|
|
rm -f /var/tmp/72-joined.raw
|
|
truncate -s 10M /var/tmp/72-joined.raw
|
|
|
|
sfdisk /var/tmp/72-joined.raw <<EOF
|
|
label: gpt
|
|
unit: sectors
|
|
sector-size: 512
|
|
|
|
size=2048, type=4f68bce3-e8cd-4db1-96e7-fbcaf984b709, name=_empty
|
|
size=2048, type=4f68bce3-e8cd-4db1-96e7-fbcaf984b709, name=_empty
|
|
size=2048, type=2c7357ed-ebd2-46d9-aec1-23d437ec2bf5, name=_empty
|
|
size=2048, type=2c7357ed-ebd2-46d9-aec1-23d437ec2bf5, name=_empty
|
|
EOF
|
|
|
|
rm -rf /var/tmp/72-dirs
|
|
mkdir -p /var/tmp/72-dirs
|
|
|
|
rm -rf /var/tmp/72-defs
|
|
mkdir -p /var/tmp/72-defs
|
|
|
|
cat >/var/tmp/72-defs/01-first.conf <<"EOF"
|
|
[Source]
|
|
Type=regular-file
|
|
Path=/var/tmp/72-source
|
|
MatchPattern=part1-@v.raw
|
|
|
|
[Target]
|
|
Type=partition
|
|
Path=/var/tmp/72-joined.raw
|
|
MatchPattern=part1-@v
|
|
MatchPartitionType=root-x86-64
|
|
EOF
|
|
|
|
cat >/var/tmp/72-defs/02-second.conf <<"EOF"
|
|
[Source]
|
|
Type=regular-file
|
|
Path=/var/tmp/72-source
|
|
MatchPattern=part2-@v.raw.gz
|
|
|
|
[Target]
|
|
Type=partition
|
|
Path=/var/tmp/72-joined.raw
|
|
MatchPattern=part2-@v
|
|
MatchPartitionType=root-x86-64-verity
|
|
EOF
|
|
|
|
cat >/var/tmp/72-defs/03-third.conf <<"EOF"
|
|
[Source]
|
|
Type=directory
|
|
Path=/var/tmp/72-source
|
|
MatchPattern=dir-@v
|
|
|
|
[Target]
|
|
Type=directory
|
|
Path=/var/tmp/72-dirs
|
|
CurrentSymlink=/var/tmp/72-dirs/current
|
|
MatchPattern=dir-@v
|
|
InstancesMax=3
|
|
EOF
|
|
|
|
cat >/var/tmp/72-defs/04-fourth.conf <<"EOF"
|
|
[Source]
|
|
Type=regular-file
|
|
Path=/var/tmp/72-source
|
|
MatchPattern=uki-@v.efi
|
|
|
|
[Target]
|
|
Type=regular-file
|
|
Path=/EFI/Linux
|
|
PathRelativeTo=boot
|
|
MatchPattern=uki_@v+@l-@d.efi \
|
|
uki_@v+@l.efi \
|
|
uki_@v.efi
|
|
Mode=0444
|
|
TriesLeft=3
|
|
TriesDone=0
|
|
InstancesMax=2
|
|
EOF
|
|
|
|
rm -rf /var/tmp/72-esp /var/tmp/72-xbootldr
|
|
mkdir -p /var/tmp/72-esp/EFI/Linux /var/tmp/72-xbootldr/EFI/Linux
|
|
export SYSTEMD_ESP_PATH=/var/tmp/72-esp
|
|
export SYSTEMD_XBOOTLDR_PATH=/var/tmp/72-xbootldr
|
|
|
|
rm -rf /var/tmp/72-source
|
|
mkdir -p /var/tmp/72-source
|
|
|
|
new_version() {
|
|
# Create a pair of random partition payloads, and compress one
|
|
dd if=/dev/urandom of="/var/tmp/72-source/part1-$1.raw" bs=1024 count=1024
|
|
dd if=/dev/urandom of="/var/tmp/72-source/part2-$1.raw" bs=1024 count=1024
|
|
gzip -k -f "/var/tmp/72-source/part2-$1.raw"
|
|
|
|
# Create a random "UKI" payload
|
|
echo $RANDOM >"/var/tmp/72-source/uki-$1.efi"
|
|
|
|
# Create tarball of a directory
|
|
mkdir -p "/var/tmp/72-source/dir-$1"
|
|
echo $RANDOM >"/var/tmp/72-source/dir-$1/foo.txt"
|
|
echo $RANDOM >"/var/tmp/72-source/dir-$1/bar.txt"
|
|
tar --numeric-owner -C "/var/tmp/72-source/dir-$1/" -czf "/var/tmp/72-source/dir-$1.tar.gz" .
|
|
|
|
( cd /var/tmp/72-source/ && sha256sum uki* part* dir-*.tar.gz >SHA256SUMS )
|
|
}
|
|
|
|
update_now() {
|
|
# Update to newest version. First there should be an update ready, then we
|
|
# do the update, and then there should not be any ready anymore
|
|
|
|
"$SYSUPDATE" --definitions=/var/tmp/72-defs --verify=no check-new
|
|
"$SYSUPDATE" --definitions=/var/tmp/72-defs --verify=no update
|
|
( ! "$SYSUPDATE" --definitions=/var/tmp/72-defs --verify=no check-new )
|
|
}
|
|
|
|
verify_version() {
|
|
# Expects: version ID + sector offset of both partitions to compare
|
|
|
|
# Check the partitions
|
|
dd if=/var/tmp/72-joined.raw bs=1024 skip="$2" count=1024 | cmp "/var/tmp/72-source/part1-$1.raw"
|
|
dd if=/var/tmp/72-joined.raw bs=1024 skip="$3" count=1024 | cmp "/var/tmp/72-source/part2-$1.raw"
|
|
|
|
# Check the UKI
|
|
cmp "/var/tmp/72-source/uki-$1.efi" "/var/tmp/72-xbootldr/EFI/Linux/uki_$1+3-0.efi"
|
|
test -z "$(ls -A /var/tmp/72-esp/EFI/Linux)"
|
|
|
|
# Check the directories
|
|
cmp "/var/tmp/72-source/dir-$1/foo.txt" /var/tmp/72-dirs/current/foo.txt
|
|
cmp "/var/tmp/72-source/dir-$1/bar.txt" /var/tmp/72-dirs/current/bar.txt
|
|
}
|
|
|
|
# Install initial version and verify
|
|
new_version v1
|
|
update_now
|
|
verify_version v1 1024 3072
|
|
|
|
# Create second version, update and verify that it is added
|
|
new_version v2
|
|
update_now
|
|
verify_version v2 2048 4096
|
|
|
|
# Create third version, update and verify it replaced the first version
|
|
new_version v3
|
|
update_now
|
|
verify_version v3 1024 3072
|
|
test ! -f "/var/tmp/72-xbootldr/EFI/Linux/uki_v1+3-0.efi"
|
|
|
|
# Create fourth version, and update through a file:// URL. This should be
|
|
# almost as good as testing HTTP, but is simpler for us to set up. file:// is
|
|
# abstracted in curl for us, and since our main goal is to test our own code
|
|
# (and not curl) this test should be quite good even if not comprehensive. This
|
|
# will test the SHA256SUMS logic at least (we turn off GPG validation though,
|
|
# see above)
|
|
new_version v4
|
|
|
|
cat >/var/tmp/72-defs/02-second.conf <<"EOF"
|
|
[Source]
|
|
Type=url-file
|
|
Path=file:///var/tmp/72-source
|
|
MatchPattern=part2-@v.raw.gz
|
|
|
|
[Target]
|
|
Type=partition
|
|
Path=/var/tmp/72-joined.raw
|
|
MatchPattern=part2-@v
|
|
MatchPartitionType=root-x86-64-verity
|
|
EOF
|
|
|
|
cat >/var/tmp/72-defs/03-third.conf <<"EOF"
|
|
[Source]
|
|
Type=url-tar
|
|
Path=file:///var/tmp/72-source
|
|
MatchPattern=dir-@v.tar.gz
|
|
|
|
[Target]
|
|
Type=directory
|
|
Path=/var/tmp/72-dirs
|
|
CurrentSymlink=/var/tmp/72-dirs/current
|
|
MatchPattern=dir-@v
|
|
InstancesMax=3
|
|
EOF
|
|
|
|
update_now
|
|
verify_version v4 2048 4096
|
|
|
|
rm /var/tmp/72-joined.raw
|
|
rm -r /var/tmp/72-{dirs,defs,source,xbootldr,esp}
|
|
|
|
echo OK >/testok
|
|
|
|
exit 0
|