Make sign_official_build.sh verify perform an additional rootfs sanity check using e2fsck.

scripts/image_signing/sign_official_build.sh

 #!/bin/bash
 
 # Copyright (c) 2010 The Chromium OS Authors. All rights reserved.
 # Use of this source code is governed by a BSD-style license that can be
 # found in the LICENSE file.
 
 # Sign the final build image using the "official" keys.
 #
 # Prerequisite tools needed in the system path:
 #
@@ skipping 27 matching lines @@
 if [ $# -ne 3 ] && [ $# -ne 4 ]; then
   usage
   exit 1
 fi
 
 # Abort on errors.
 set -e
 
 # Make sure the tools we need are available.
 for prereqs in gbb_utility vbutil_kernel cgpt dump_kernel_config verity \
-  load_kernel_test dumpe2fs sha1sum;
+  load_kernel_test dumpe2fs sha1sum e2fsck;
 do
   type -P "${prereqs}" &>/dev/null || \
     { echo "${prereqs} tool not found."; exit 1; }
 done
 
 TYPE=$1
 INPUT_IMAGE=$2
 KEY_DIR=$3
 OUTPUT_IMAGE=$4
 
@@ skipping 112 matching lines @@
   vbutil_kernel --repack ${updated_kimage} \
     --keyblock ${keyblock} \
     --signprivate ${signprivate} \
     --oldblob ${temp_kimage} \
     --config ${temp_config}
 
   replace_image_partition ${image} ${kernelpart} ${updated_kimage}
   replace_image_partition ${image} 3 ${rootfs_image}
 }
 
+# Do a sanity check on the image's rootfs
+# ARGS: Image
+verify_image_rootfs() {
+  local image=$1
+  local rootfs_image=$(make_temp_file)
+  extract_image_partition ${image} 3 ${rootfs_image}
+  # This flips the read-only compatibility flag, so that e2fsck does not
+  # complain about unknown file system capabilities.
+  enable_rw_mount ${rootfs_image}
+  echo "Running e2fsck to check root file system for errors"
+  sudo e2fsck -fn "${rootfs_image}" ||
+    { echo "Root file system has errors!" && exit 1;}
+}
+  
 # Extracts the firmware update binaries from the a firmware update
 # shell ball (generated by src/platform/firmware/pack_firmware.sh)
 # Args: INPUT_SCRIPT OUTPUT_DIR
 get_firmwarebin_from_shellball() {
   local input=$1
   local output_dir=$2
   if [ -s "${input}" ]; then
     uudecode -o - ${input} | tar -C ${output_dir} -zxf - 2>/dev/null || \
       { echo "Extracting firmware autoupdate failed." && exit 1; }
   else
@@ skipping 108 matching lines @@
   try_key=${KEY_DIR}/kernel_subkey.vbpubk
   # The SSD key is only used in non-recovery mode.
   echo -n "With SSD Key (Recovery Mode OFF, Dev Mode OFF): " && \
   { load_kernel_test "${INPUT_IMAGE}" "${try_key}" -b 0 >/dev/null 2>&1  && \
     echo "YES"; } || echo "NO"
   echo -n "With SSD Key (Recovery Mode OFF, Dev Mode ON): " && \
   { load_kernel_test "${INPUT_IMAGE}" "${try_key}" -b 1 >/dev/null 2>&1 && \
     echo "YES"; } || echo "NO"
   set -e
 
+  verify_image_rootfs "${INPUT_IMAGE}"
+
   # TODO(gauravsh): Check embedded firmware AU signatures.
 }
 
 # Generate the SSD image
 sign_for_ssd() {
   ${SCRIPT_DIR}/resign_image.sh ${INPUT_IMAGE} ${OUTPUT_IMAGE} \
     ${KEY_DIR}/kernel_data_key.vbprivk \
     ${KEY_DIR}/kernel.keyblock
   echo "Signed SSD image output to ${OUTPUT_IMAGE}"
 }
@@ skipping 119 matching lines @@
   resign_firmware_payload ${INPUT_IMAGE}
   update_rootfs_hash ${INPUT_IMAGE} \
     ${KEY_DIR}/installer_kernel.keyblock \
     ${KEY_DIR}/installer_kernel_data_key.vbprivk \
     2
   sign_for_factory_install
 else
   echo "Invalid type ${TYPE}"
   exit 1
 fi