[dm-devel] New mode DM-Verity error handling
Mike Snitzer
snitzer at redhat.com
Thu Jun 18 17:09:52 UTC 2020
On Thu, Jun 18 2020 at 12:50pm -0400,
Sami Tolvanen <samitolvanen at google.com> wrote:
> On Thu, Jun 18, 2020 at 11:44:45AM -0400, Mike Snitzer wrote:
> > I do not accept that panicing the system because of verity failure is
> > reasonable.
> >
> > In fact, even rebooting (via DM_VERITY_MODE_RESTART) looks very wrong.
> >
> > The device should be put in a failed state and left for admin recovery.
>
> That's exactly how the restart mode works on some Android devices. The
> bootloader sees the verification error and puts the device in recovery
> mode. Using the restart mode on systems without firmware support won't
> make sense, obviously.
OK, so I need further justification from Samsung why they are asking for
this panic mode.
Thanks,
Mike
More information about the dm-devel
mailing list