systemd-veritysetup@.service - Man Page

Disk integrity protection logic

Synopsis

systemd-veritysetup@.service

/usr/lib/systemd/systemd-veritysetup

Description

systemd-veritysetup@.service is a service responsible for setting up integrity protection (verity) block devices. It should be instantiated for each device that requires integrity protection.

At early boot and when the system manager configuration is reloaded kernel command line configuration for integrity protected block devices is translated into systemd-veritysetup@.service units by systemd-veritysetup-generator(8).

systemd-veritysetup@.service calls systemd-veritysetup.

Commands

The following commands are understood by systemd-veritysetup:

attach volume datadevice hashdevice roothash [option...]

Create a block device volume using datadevice and hashdevice as the backing devices. roothash forms the root of the tree of hashes stored on hashdevice. See Kernel dm-verity[1] documentation for details.

detach volume

Detach (destroy) the block device volume.

help

Print short information about command syntax.

See Also

systemd(1), systemd-veritysetup-generator(8), veritysetup(8)

Notes

1.

Kernel dm-verity
https://www.kernel.org/doc/html/latest/admin-guide/device-mapper/verity.html

Referenced By

systemd.directives(7), systemd.index(7), systemd-veritysetup-generator(8), veritytab(5).

The man page systemd-veritysetup(8) is an alias of systemd-veritysetup@.service(8).

systemd 249