mirror of
https://github.com/linuxboot/heads.git
synced 2025-01-22 12:28:04 +00:00
92a6b5410d
Provide mask_param() function to uniformly mask secret parameters, while still indicating whether they are empty. Extend DO_WITH_DEBUG to allow masking a password parameter by position, using mask_param(). Move from ash_functions to functions (isn't used by ash scripts). Mask password parameters in kexec-unseal-key and tpmr seal. Use mask_param() on existing masked params in tpmr. Trim more troubleshooting output from tpm2_extend() in tpmr. Clarify tpmr kexec_finalize echo; it's the TPM's platform heirarchy, users might not know what this was referring to. Signed-off-by: Jonathon Hall <jonathon.hall@puri.sm>
45 lines
999 B
Bash
45 lines
999 B
Bash
#!/bin/sh
|
|
#
|
|
# Core shell functions that do not require bash. These functions are used with
|
|
# busybox ash on legacy-flash boards, and with bash on all other boards.
|
|
|
|
die() {
|
|
echo >&2 "$*";
|
|
sleep 2;
|
|
exit 1;
|
|
}
|
|
|
|
warn() {
|
|
echo >&2 "$*";
|
|
sleep 1;
|
|
}
|
|
|
|
DEBUG() {
|
|
if [ "$CONFIG_DEBUG_OUTPUT" = "y" ];then
|
|
echo "DEBUG: $*" | tee -a /tmp/debug.log >&2;
|
|
fi
|
|
}
|
|
|
|
TRACE() {
|
|
if [ "$CONFIG_ENABLE_FUNCTION_TRACING_OUTPUT" = "y" ];then
|
|
echo "TRACE: $*" | tee -a /tmp/debug.log >&2;
|
|
fi
|
|
}
|
|
|
|
preserve_rom() {
|
|
TRACE "Under /etc/functions:preserve_rom"
|
|
new_rom="$1"
|
|
old_files=`cbfs -t 50 -l 2>/dev/null | grep "^heads/"`
|
|
|
|
for old_file in `echo $old_files`; do
|
|
new_file=`cbfs.sh -o $1 -l | grep -x $old_file`
|
|
if [ -z "$new_file" ]; then
|
|
echo "+++ Adding $old_file to $1"
|
|
cbfs -t 50 -r $old_file >/tmp/rom.$$ \
|
|
|| die "Failed to read cbfs file from ROM"
|
|
cbfs.sh -o $1 -a $old_file -f /tmp/rom.$$ \
|
|
|| die "Failed to write cbfs file to new ROM file"
|
|
fi
|
|
done
|
|
}
|