[futility] Open gscvd in R/O mode when verifying

Otherwise, it will mutate the file under your feet! This also adds some clarifying messages, including a message if verification failed due to incorrect signing instead of silent output. BUG=None TEST=`futility gscvd <file>` does not change sha256sum of file BRANCH=None Signed-off-by: Alyssa Haroldsen <kupiakos@google.com> Change-Id: Ic793ad47c0160e3cedb7e2b7cc842a3f4380749d Reviewed-on: https://chromium-review.googlesource.com/c/chromiumos/platform/vboot_reference/+/3584690 Reviewed-by: Vadim Bendebury <vbendeb@chromium.org> Commit-Queue: Alyssa Haroldsen <kupiakos@google.com> Tested-by: Alyssa Haroldsen <kupiakos@google.com>
author: Alyssa Haroldsen <kupiakos@google.com> 2022-04-12 14:21:46 -0700
committer: Chromeos LUCI <chromeos-scoped@luci-project-accounts.iam.gserviceaccount.com> 2022-04-13 10:35:51 +0000
commit: 33ff54fd5272ba4807c704aee8a46ee5d7d29215 (patch)
tree: 1a2d749c922830acffe60c384d4a45b0bf5cf569 /futility/cmd_show.c
parent: e61f21346777c792868c96aad295aa704a41eae3 (diff)
download: vboot-33ff54fd5272ba4807c704aee8a46ee5d7d29215.tar.gz
1 files changed, 2 insertions, 1 deletions
diff --git a/futility/cmd_show.c b/futility/cmd_show.c
index dbe6edde..08974e4c 100644
--- a/futility/cmd_show.c
+++ b/futility/cmd_show.c
@@ -635,4 +635,5 @@ static int do_verify(int argc, char *argv[])
 
 DECLARE_FUTIL_COMMAND(verify, do_verify,
 		      VBOOT_VERSION_ALL,
-		      "Verify the signatures of various binary components");
+		      "Verify the signatures of various binary components. "
+		      "This does not verify GSCVD contents.");
author	Alyssa Haroldsen <kupiakos@google.com>	2022-04-12 14:21:46 -0700
committer	Chromeos LUCI <chromeos-scoped@luci-project-accounts.iam.gserviceaccount.com>	2022-04-13 10:35:51 +0000
commit	33ff54fd5272ba4807c704aee8a46ee5d7d29215 (patch)
tree	1a2d749c922830acffe60c384d4a45b0bf5cf569 /futility/cmd_show.c
parent	e61f21346777c792868c96aad295aa704a41eae3 (diff)
download	vboot-33ff54fd5272ba4807c704aee8a46ee5d7d29215.tar.gz