public
/
airgap
5
0
Fork 1
Code Issues Pull Requests 3 Packages Projects Releases Wiki Activity

Compare commits

base: public:417d30a6af67f3460f0008c2981bbb6c51ad7707
Branches Tags
public:main
public:sam/remove-extra-console-shell
public:release/2024.10.x
public:lance/fix-determinism
public:tpm2vm
public:sam/add-user-partition
public:2024.8.1
public:ryansquared/bump-keyfork-v0.2.3
public:lance/add-external-sigs
public:lance/fix-qemu-bios-boot
public:stagex-rewrite
public:release/2024.03.x
public:ryan/update-buildroot
...
compare: public:5288b3da772dd51787d7bbce85f70c483cdd1fe2
Branches Tags
public:sam/remove-extra-console-shell
public:release/2024.10.x
public:main
public:lance/fix-determinism
public:tpm2vm
public:sam/add-user-partition
public:2024.8.1
public:ryansquared/bump-keyfork-v0.2.3
public:lance/add-external-sigs
public:lance/fix-qemu-bios-boot
public:stagex-rewrite
public:release/2024.03.x
public:ryan/update-buildroot

2 Commits
417d30a6af ... 5288b3da77

Author SHA1 Message Date
Sam Ebstein 5288b3da77
rootfs/usr/local/bin/autorun: adding an explicit check for autorun on new fat32 formatted USER partition 2024-09-19 12:53:48 -07:00
Sam Ebstein ae9ea5a94d
Containerfile: creating a fat32 formatted third partition on airgap.iso 
to allow for arbitrary user data.
 2024-09-19 12:53:41 -07:00
3 changed files with 39 additions and 3 deletions
Show Stats Expand all files Collapse all files

23
Containerfile
View File

@ -179,6 +179,29 @@ RUN <<-EOF
iso/
EOF
# Need sfdisk from util-linux
COPY --from=util-linux . .
RUN <<-EOF
set -eux
# Increase the size of the ISO by X MB to create space for the third partition
dd if=/dev/zero bs=1M count=51 >> airgap.iso
# Append a new partition that uses the additional space
echo ", +" | sfdisk --append airgap.iso
# Set the newly added third partition to FAT32
sfdisk --part-type airgap.iso 3 b
# Calculate the byte offset of the third partition
# This is done by finding the end of the first partition using fdisk, adding 1 sector,
# and multiplying by 512 (since each sector is 512 bytes).
OFFSET=$(fdisk -l airgap.iso | awk '/^airgap.iso1/ {print ($4 + 1) * 512}')
echo "Calculated OFFSET: $OFFSET"
# Format the third partition as FAT32 and label it 'USER'
mformat -v USER -i airgap.iso@@$OFFSET ::
EOF
## Minimal Autorun SD card image
COPY sdcard sdcard
RUN <<-EOF

8
Makefile
View File

@ -55,7 +55,9 @@ vm-bios: out/airgap.iso
-usbdevice tablet \
-drive id=external,if=none,format=raw,file=out/sdcard.img \
-display gtk,show-menubar=off,zoom-to-fit=on \
-cdrom "out/airgap.iso"
-device usb-storage,drive=usbdrive \
-drive id=usbdrive,if=none,format=raw,file=out/airgap.iso \
-boot order=c
.PHONY: vm-efi
vm-efi: out/airgap.iso
@ -70,7 +72,9 @@ vm-efi: out/airgap.iso
-usbdevice tablet \
-drive id=external,if=none,format=raw,file=out/sdcard.img \
-display gtk,show-menubar=off,zoom-to-fit=on \
-cdrom "out/airgap.iso"
-device usb-storage,drive=usbdrive \
-drive id=usbdrive,if=none,format=raw,file=airgap.iso \
-boot order=c
## Signing, Verification, and Release Targets

11
rootfs/usr/local/bin/autorun
View File

@ -4,7 +4,16 @@ source /etc/profile
folder=${1?}
if [ -f "${folder}/autorun.sh.asc" ]; then
echo "Checking autorun in folder: ${folder}" >/dev/console
# Check if the folder is /media/USER and has autorun.sh
if [ "$folder" == "/media/USER" ] && [ -f "${folder}/autorun.sh" ]; then
echo "" >/dev/console
echo "++ Autorun: Found /media/USER/autorun.sh in a read-only directory" >/dev/console;
echo "** Autorun: Executing /media/USER/autorun.sh" >/dev/console
/bin/bash "/media/USER/autorun.sh" >/dev/console
elif [ -f "${folder}/autorun.sh.asc" ]; then
echo "" >/dev/console
echo "++ Autorun: Found ${folder}/autorun.sh" >/dev/console;
gpg --verify "${folder}/autorun.sh.asc" >/dev/null 2>&1 || {