systemd-veritysetup@.service, systemd-veritysetup — Disk integrity protection logic
systemd-veritysetup@.service
/usr/lib/systemd/systemd-veritysetup
systemd-veritysetup@.service is a service responsible for setting up integrity
protection (verity) block devices. It should be instantiated for each device that requires integrity
protection.
At early boot and when the system manager configuration is reloaded kernel command line configuration for
integrity protected block devices is translated into systemd-veritysetup@.service units by
systemd-veritysetup-generator(8).
systemd-veritysetup@.service calls systemd-veritysetup.
The following commands are understood by systemd-veritysetup:
attach
volume
datadevice
hashdevice
roothash
[option...]
¶Create a block device volume using
datadevice and hashdevice as the backing
devices. roothash forms the root of the tree of hashes stored on
hashdevice. See
Kernel dm-verity documentation for details.
detach
volume
¶Detach (destroy) the block device
volume.
help
¶Print short information about command syntax.