David Oberhollenzer
45cc27ca40
Bump binutils version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-11-03 19:28:43 +01:00
David Oberhollenzer
6ad8ed37f7
Cleanup binutils confgiure flags, add relro, PIC, deterministic ar
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-11-03 19:28:43 +01:00
David Oberhollenzer
1aa829699c
Explicitly disable libquadmath in second stage gcc
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-11-03 19:28:43 +01:00
David Oberhollenzer
544ac03d1f
Allways build libssp_noshared, even for non hardened toolchains
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-11-03 19:28:43 +01:00
David Oberhollenzer
e87a8ec43c
Explicitly turn on size optimizations
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-11-03 19:28:43 +01:00
David Oberhollenzer
cf2e438a45
Bump Raspberry Pi 3 vendor kernel version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-11-03 19:28:43 +01:00
David Oberhollenzer
35e72a4ae7
Bump Raspberry Pi 3 firmware version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-11-03 19:28:43 +01:00
David Oberhollenzer
82a00e5a1b
Bump mainline LTS linux version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-11-03 19:28:43 +01:00
David Oberhollenzer
60f9a68807
Bump file version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-11-03 19:28:43 +01:00
David Oberhollenzer
81f4f36044
Bump tzdata version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-11-03 19:28:43 +01:00
David Oberhollenzer
e91029b64e
Bump unbound version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-11-03 19:28:43 +01:00
David Oberhollenzer
0b5e2ccc38
Bump dnsmasq version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-11-03 19:28:43 +01:00
David Oberhollenzer
1786c65c4c
Bump init version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-11-03 19:28:43 +01:00
David Oberhollenzer
d6030cd898
Replace gcc libssp with built musl builtins
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-10-20 12:52:06 +02:00
David Oberhollenzer
d06083c96d
Propperly process Linux package targets in deploy function
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-10-19 21:50:57 +02:00
David Oberhollenzer
7dd6306b30
cleanup: derive LINUX_CPU from TARGET, merge linux packages
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-10-19 21:50:57 +02:00
David Oberhollenzer
b5d4ece03d
cleanup: derive MUSL_CPU from TARGET in Musl package
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-10-19 21:50:57 +02:00
David Oberhollenzer
569f7d5e0c
cleanup: derive OPENSSL_TARGET from TARGET in OpenSSL package
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-10-19 21:50:57 +02:00
David Oberhollenzer
8e5c6d3a2e
Make toolchain and user space hardening configurable
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-10-19 21:50:57 +02:00
David Oberhollenzer
69aa1d33e9
Set hardening options for packages with custom build system
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-10-19 00:18:51 +02:00
David Oberhollenzer
8063550d4e
Add libc agnostic fortify-headers package
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-10-17 01:11:02 +02:00
David Oberhollenzer
52933c58c9
Enable hardening flags for stage-1 gcc
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-10-17 00:52:10 +02:00
David Oberhollenzer
0958272eb3
Export CROSS_COMPILE environment variable for Musl build script
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-10-17 00:52:10 +02:00
David Oberhollenzer
c16ff53c14
Remove overlay partition setup from release shell scripts
...
The initial ram disk does that for us (with the propper permissions
in the case of Qemu).
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-10-11 19:02:11 +02:00
David Oberhollenzer
2a1add41e7
Enable stack protection flags in GCC cross compiler
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-10-11 19:02:11 +02:00
David Oberhollenzer
f1be060f7c
Bump mainline LTS linux version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-10-07 16:35:25 +02:00
David Oberhollenzer
62345ef7bb
Cleanup nginx user and directory setup
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-10-07 16:35:25 +02:00
David Oberhollenzer
dcadff7637
Init version rebase
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-10-07 02:16:28 +02:00
David Oberhollenzer
8d75cb83fd
Add nginx package
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-10-06 20:32:44 +02:00
David Oberhollenzer
f3861b9df1
Add PCRE package
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-10-06 17:25:52 +02:00
David Oberhollenzer
a71c45aec0
Fix final image copy in Linux LTS build script
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-10-06 17:25:52 +02:00
David Oberhollenzer
e7101d5400
Unfuck libtool archives for libnl3
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-10-06 17:25:52 +02:00
David Oberhollenzer
86dcb7d8c1
Bump mainline LTS linux version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-10-01 20:49:03 +02:00
David Oberhollenzer
e61ca9decf
Another overlay mount overhaul
...
- Directly pass the device type to the mount command
- Use the special default type "hwdevice" to wait for a device node
before mounting it
- Initialize the overlay partition from the initrd script
- Do the bind mount setup as document
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-10-01 19:11:12 +02:00
David Oberhollenzer
121fee7e97
Add configuration for testing with qemu
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-30 01:28:33 +02:00
David Oberhollenzer
59d01432b1
More sophisticated filesystem setup from initrd
...
- Let us specify the "type" of the root and overlay filesystem.
At the moment we have raw device that we wait for (default) and
qemu virtio 9pfs.
- If no squasfs image is specified, mount the root partition as
root filesystem.
- If no overlay device is specified, don't touch the new root
filesystem.
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-29 21:32:58 +02:00
David Oberhollenzer
2d74caf06b
Remove perl scripts from ntp package installed files
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-29 17:10:07 +02:00
David Oberhollenzer
90fc4f4e9e
Patch gcc to install 64 bit libraries to /lib instead of /lib64
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-29 17:10:07 +02:00
David Oberhollenzer
6ced6fc948
Minor fixes for main line Linux LTS build
...
- Patch the config first, don't touch it after running make oldconfig
- Add modules target to toolchain config, don't directly call it
- Only try to install modules if we actually have support for loadable
modules
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-29 17:10:07 +02:00
David Oberhollenzer
8faae986b6
Bump psmisc version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-27 23:58:12 +02:00
David Oberhollenzer
b0da273179
Bump mainline LTS linux version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-27 23:56:34 +02:00
David Oberhollenzer
de14b86043
Build coreutils as single call binary
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-22 21:29:29 +02:00
David Oberhollenzer
de90e7bcbb
Bump nano version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-21 22:27:18 +02:00
David Oberhollenzer
0b8ffdbb7f
Bump mainline LTS linux version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-21 22:25:49 +02:00
David Oberhollenzer
e865ae2d1c
Bump Raspberry Pi 3 vendor kernel version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-21 22:23:08 +02:00
David Oberhollenzer
ad3b6d19a2
Bump Raspberry Pi 3 firmware version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-21 22:22:50 +02:00
David Oberhollenzer
bbac1391dc
Bump init version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-21 22:11:58 +02:00
David Oberhollenzer
51a2c5ea17
Fix permissions for root user home directory
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-15 20:25:27 +02:00
David Oberhollenzer
700395b508
Bump OpenSSL version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-15 20:18:19 +02:00
David Oberhollenzer
0f3d04a3b8
Bump unbound version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-15 20:18:19 +02:00
David Oberhollenzer
76fba828f3
Bump mainline LTS linux version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-15 20:18:19 +02:00
David Oberhollenzer
48e6358906
Bump busybox version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-15 20:18:19 +02:00
David Oberhollenzer
fc6d7292c5
Bump nano version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-15 20:18:19 +02:00
David Oberhollenzer
6aff04a1fd
Shadow: provide configuration files directly
...
Instead of patching around in the build/deploy directories, simply
provide a set of default configuration files directly from the package
directory.
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-15 20:18:19 +02:00
David Oberhollenzer
d515f0dde2
Minor default settings cleanup
...
- Add 'rm -I' and 'cp -i' aliases to bashrc
- Make sure tmpfsvar creates the log files that the login program expects
- Restore 'tty' group; some scripts actually rely on that
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-15 16:01:06 +02:00
David Oberhollenzer
7eb727e26f
Remove programs depending on non-existant utmp data
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-10 09:26:47 +02:00
David Oberhollenzer
b4502eaf80
Add time zone data
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-08 15:05:49 +02:00
David Oberhollenzer
3e75dc1e37
Add ntp package
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-08 15:05:49 +02:00
David Oberhollenzer
03a11e26ef
Bump Raspberry Pi 3 firmware version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-08 15:05:49 +02:00
David Oberhollenzer
8b1e3e0b6b
Bump Raspberry Pi 3 vendor kernel version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-08 15:05:49 +02:00
David Oberhollenzer
79ac5f1293
Propperly handle symlinks to directories in rootfs package
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-08 14:51:52 +02:00
David Oberhollenzer
4498b0ccb0
Bump mainline LTS linux version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-08 14:51:52 +02:00
David Oberhollenzer
136ff32374
Bump musl version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-08 14:51:52 +02:00
David Oberhollenzer
50dce293c1
Add helper macro for running configure with standard arguments
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-03 13:58:35 +02:00
David Oberhollenzer
7f020c855b
Remove defunct nettle and support libraries
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-02 14:25:56 +02:00
David Oberhollenzer
c29955adf5
Add default configuration for OpenSSH server
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-01 17:49:18 +02:00
David Oberhollenzer
601068d8ed
Bump init version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-09-01 17:49:18 +02:00
David Oberhollenzer
054464e16b
Change/add bash aliases to enable ls colors by default
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-31 22:49:18 +02:00
David Oberhollenzer
ab17c95cf9
Redirect bzip2 URL
...
The domain bzip2.org has expired and is now held by someone placing ads.
Aparently bzip2 development is pretty dead for now.
Redirect source URL to the debian snapshot archive.
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-31 18:41:07 +02:00
David Oberhollenzer
382f2b9bfe
Bump OpenSSH version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-31 18:41:07 +02:00
David Oberhollenzer
02f2fdcb4d
Bump ethtool version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-24 22:00:09 +02:00
David Oberhollenzer
80ae626080
Bump dhcpcd version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-24 22:00:09 +02:00
David Oberhollenzer
c75c488e4f
Bump main line Linux version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-24 22:00:09 +02:00
David Oberhollenzer
7d53200b9c
Remove arpd and Oracle BDB it depends on
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-19 15:59:43 +02:00
David Oberhollenzer
9684f7bb92
Cleanup users and groups
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-19 15:57:06 +02:00
David Oberhollenzer
6472fbe9c0
Remove further unneded programs
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-19 15:56:48 +02:00
David Oberhollenzer
53c93938ac
Remove programs for which we have bash shell builtins
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-19 15:55:58 +02:00
David Oberhollenzer
e8f94f293b
Remove unused eudev package
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-19 12:24:37 +02:00
David Oberhollenzer
048229bb71
Bump sqlite version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-18 17:59:25 +02:00
David Oberhollenzer
0faf37f421
Bump iproute2 version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-18 17:59:25 +02:00
David Oberhollenzer
ebee030b86
Bump btrfs-progs version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-18 17:59:25 +02:00
David Oberhollenzer
5c60596853
Bump dhcpcd version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-18 17:59:25 +02:00
David Oberhollenzer
b31bd42a93
Bump libexpat version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-18 17:59:25 +02:00
David Oberhollenzer
49f0751c11
Mover mainline kernel version to newest LTS
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-17 10:35:43 +02:00
David Oberhollenzer
0584cd076c
Add routing configuration
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-16 22:54:28 +02:00
David Oberhollenzer
360a9538c5
Bump init version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-16 22:54:28 +02:00
David Oberhollenzer
e7a86f1f70
Downgrade binutils to 2.30
...
This is a workaround for an issue with binutils on statically linked x86
binaries. The tls section has some loading flag set wrong and is not mapped
into memory by the kernel. The musl startup code tries to parse the section
information and segfaults.
See: http://www.openwall.com/lists/musl/2018/07/18/5
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-16 17:39:12 +02:00
David Oberhollenzer
8e4ff996e8
Bump openssl version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-15 01:19:21 +02:00
David Oberhollenzer
512fb7bc28
Bump file version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-15 01:19:21 +02:00
David Oberhollenzer
16e7c6da93
Bump gcc version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-15 01:19:21 +02:00
David Oberhollenzer
259005f7ed
Bump binutils version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-15 01:19:21 +02:00
David Oberhollenzer
831e4cee6e
Bump busybox version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-14 20:12:01 +02:00
David Oberhollenzer
aed4fe12f6
Remove nftables example files from root filesystem
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-12 18:51:05 +02:00
David Oberhollenzer
790db0d992
Add tcpdump and libpcap packages
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-08-12 18:51:05 +02:00
David Oberhollenzer
7ba1cda7f2
Add hostapd package
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-07-20 23:39:55 +02:00
David Oberhollenzer
6c68ba8332
Bump bbstatic version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-07-16 20:00:35 +02:00
David Oberhollenzer
04459a3847
Bump binutils version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-07-16 20:00:26 +02:00
David Oberhollenzer
b96462d5dd
Bump coreutils version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-07-16 20:00:14 +02:00
David Oberhollenzer
4bd18560dd
Add wifi command line tools
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-07-16 17:56:32 +02:00
David Oberhollenzer
7a735f1a75
Bump Raspberry Pi 3 wireless firmware version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-07-15 21:24:13 +02:00
David Oberhollenzer
b7fdbc5599
Bump Raspberry Pi 3 kernel version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-07-15 20:46:32 +02:00
David Oberhollenzer
d820876472
Bump Raspberry Pi 3 firmware version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-07-15 20:42:31 +02:00
David Oberhollenzer
cd74009293
Merge linux_modules package into linux package
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-07-15 17:59:47 +02:00
David Oberhollenzer
39c0c2c98d
Handle boot files via regular rootfs package machanisms
...
Just install the kernel package to the rootfs /boot directory and add a step
to the rootfs package to move /boot data out of the squasfs image.
Add linux package as regular dependency to the rootfs.
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-07-15 16:19:44 +02:00
David Oberhollenzer
54b9f37d96
Add Raspberry Pi 3 wifi firmware config & blob
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-06-24 21:54:18 +02:00
David Oberhollenzer
fff4f7a5be
Add ldns package
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-06-22 20:49:54 +02:00
David Oberhollenzer
800b2b9dd1
Bump dhcpcd version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-06-22 17:57:45 +02:00
David Oberhollenzer
bb000e5c24
Bump unbound version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-06-22 17:57:45 +02:00
David Oberhollenzer
89f3997429
Bump iproute2 version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-06-21 16:45:42 +02:00
David Oberhollenzer
a4a73b01e1
Bump libunistring version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-06-19 22:56:06 +02:00
David Oberhollenzer
5bbaffbd58
Bump unbound version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-06-19 22:56:06 +02:00
David Oberhollenzer
4452aa2314
Bump nftables version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-06-19 22:56:06 +02:00
David Oberhollenzer
4b3832bbb5
Bump nano version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-06-19 22:56:06 +02:00
David Oberhollenzer
24cee8f784
Bump libnftnl version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-06-19 22:56:06 +02:00
David Oberhollenzer
41fe94e070
Bump dhcpcd version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-06-19 20:49:37 +02:00
David Oberhollenzer
848411862a
Bump ethtool version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-06-19 20:48:20 +02:00
David Oberhollenzer
ea1f28e5d1
Bump btrfs-progs version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-06-19 20:47:09 +02:00
David Oberhollenzer
2c73c4b9c6
Make sure local DNS queries are resolved by dnsmasq
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-06-19 18:33:30 +02:00
David Oberhollenzer
1e3cf6eaac
Remove obsolete tools from kbd package
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-06-18 18:49:15 +02:00
David Oberhollenzer
05076009ca
Remove bash-completions for distro package managers
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-06-18 18:48:40 +02:00
David Oberhollenzer
5bea71e0a2
Remove useless and broken dhcpcd hooks
...
We don't need some of those hooks anyway, and some others are generated
based on tools we have installed on the build system, so we would need
a workaround anyway if we needed them.
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-06-18 00:47:50 +02:00
David Oberhollenzer
8c2af75243
Bump bash-completion version, fix upstream URL
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-06-17 23:14:51 +02:00
David Oberhollenzer
7204b9dd75
Cleanup: strip executables in mk.sh
...
Automagically strip all executables (recursively for subdirectories in lib
and bin) inside the mk.sh build loop.
This removes the necessity in the build scripts to strip the files. This also
allows us to remove the error prone install-strip target from the build
scripts.
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-06-17 20:22:10 +02:00
David Oberhollenzer
3d30afef75
Remove dev deploy split
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-06-17 20:22:10 +02:00
David Oberhollenzer
90b2586ea4
Restructure assembly of root filesystem image
...
Every package now has or generates a rootfs_files.txt containing a list
of files that should be packed into the rootfs, their permissions and
their owner.
This gives us fine grained controll over the owners and permissions of the
rootfs files (by generating a squashfs pseudo file).
In subsequent steps, this allows us to remove the deploy/devdeploy split and
actually simplifiy most of the build scripts.
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-06-17 20:22:10 +02:00
David Oberhollenzer
878f4360f1
Bump init version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-06-17 20:22:02 +02:00
David Oberhollenzer
5dd03bd5fb
Add raw service list to enable for init package
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-06-17 01:45:27 +02:00
David Oberhollenzer
8c76110586
Fix unbound directory setup
...
- Move root.key into /etc/unbound directory
- Remove pid file from config, it is baked into the configure options
- Make sure unbound does not try to chroot anywhere
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-06-04 16:27:10 +02:00
David Oberhollenzer
750d53d82d
Generate trust anchor file for unbound
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-06-04 09:09:15 +02:00
David Oberhollenzer
5128a00400
Fix raspberry pi 3 kernel check_update version comparison
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-25 18:36:59 +02:00
David Oberhollenzer
c0027fbaf7
Bump raspberry pi 3 kernel version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-25 18:36:59 +02:00
David Oberhollenzer
8052eaf596
Bump raspberry pi 3 firmware version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-25 18:36:59 +02:00
David Oberhollenzer
17d31e5f70
Bump procps-ng version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-25 18:36:59 +02:00
David Oberhollenzer
bb5445a3e1
Bump libidn2 version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-25 18:36:59 +02:00
David Oberhollenzer
3e22e24004
Bump libbsd version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-25 18:36:59 +02:00
David Oberhollenzer
3f0c67b4cd
Bump BusyBox version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-25 18:36:59 +02:00
David Oberhollenzer
2a1519ea2c
Bump nano version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-25 18:36:59 +02:00
David Oberhollenzer
2d57db89d9
Simplify unbound build
...
- Remove libevent dependency
- Since we only have a single config file anyway,
use it as main unbound.conf
- We also need libbsd as build dependency
2018-05-25 18:36:36 +02:00
David Oberhollenzer
86120862c5
Add some usefull bash aliases
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-19 23:05:30 +02:00
David Oberhollenzer
d5c8fce58b
Add helper function to fixup libtool files
...
When "libdir" is not the final path where we install the library,
libtool will mess up the relinking process and prepend the global
library directories to the linker search path.
If we fix the libdir path, libtool will insert it into the rpath
in the binary, which is also pretty bonkers.
Maybe, there is a way to do this correctly, but the various GNU
mailing lists, Debian wiki, etc.. could not provide a better
alternative than patching up libtool scripts.
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-19 23:05:30 +02:00
David Oberhollenzer
e97e355b64
Explicitly specify library search path when building cross binutils
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-19 00:31:01 +02:00
David Oberhollenzer
d9e5af3644
mainline kernel: only check for newer LTS versions
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-14 18:31:24 +02:00
David Oberhollenzer
5e2a443ae5
Minor util-linux build script fixes
...
- Remove extra back slash
- The good old "install uses build systems strip tool and it doesn't know
what to do with ARM binaries"
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-14 00:04:32 +02:00
David Oberhollenzer
e82eda5bef
bash: don't link against the build systems readline library
...
If we tell bash to used the installed readline library, it defaults
to adding -L/lib for the readline and history library prefixes.
This prepends the local systems search path to the toolchain search
path and makes bash build break on some systems.
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-14 00:04:32 +02:00
David Oberhollenzer
8d9e25b8d0
Bump nftables version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-11 23:30:07 +02:00
David Oberhollenzer
c6ae50eb40
Add helpers for override behaviour based shell inclusion
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-10 16:01:53 +02:00
David Oberhollenzer
e8371806cd
Bump procps-ng version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-10 12:21:33 +02:00
David Oberhollenzer
a21ae85b50
Bump gcc version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-08 15:01:23 +02:00
David Oberhollenzer
02f73edff8
Bump libnftnl version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-08 15:01:23 +02:00
David Oberhollenzer
191b5f82d8
Bump sqlite3 version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-08 15:01:23 +02:00
David Oberhollenzer
b110b7d0e1
Bump btrfs-progs version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-08 15:01:23 +02:00
David Oberhollenzer
645881d071
Bump dhcpcd version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-08 15:01:23 +02:00
David Oberhollenzer
7009e9554a
Bump ethtool version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-08 15:01:23 +02:00
David Oberhollenzer
c94b7320dd
Bump nano version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-08 15:01:23 +02:00
David Oberhollenzer
74ea27e37c
Bump nftables version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-08 15:01:23 +02:00
David Oberhollenzer
ab2492ea6a
Bump shadow version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-08 15:01:23 +02:00
David Oberhollenzer
f464aeb721
Bump unbound version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-08 15:01:23 +02:00
David Oberhollenzer
dcee71aa34
Bump file version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-08 15:01:23 +02:00
David Oberhollenzer
6746f5c033
Bump XZ version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-08 15:01:23 +02:00
David Oberhollenzer
b1bdce20a9
Add automatic update chacking script
...
Crunch project websites and try to find the latest version for each
package without having to do the work manually.
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-08 15:01:23 +02:00
David Oberhollenzer
acd2a1f57f
Fix dhcpcd service
...
First of all, fix the dependency name in the per-interface service file.
Second, we allow the master services daemonize itself and change the target
to wait. This way, we block init until we are sure the dhcpcd master
is running. Otherwise we have a race condition if init gets scheduled
for some reason and immediately starts the dhcpcd interface daemon that
cannot see the master and decides that *it* is the msater now.
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-08 14:59:13 +02:00
David Oberhollenzer
5388c0f925
Cleanup file override behaviour
...
Look for board specific product files in product/$product/$board/
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-06 00:21:09 +02:00
David Oberhollenzer
b0a3baf8bb
Add dhcpcd configuration
...
- Service file for dhcpcd master service
- Service template file for interfaces
- Service symlink for each configured interface
- Get DHCP address on raspberry pi 3 for ethernet port
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-05 21:53:34 +02:00
David Oberhollenzer
e65f40e01f
Add network configuration
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-05 18:27:57 +02:00
David Oberhollenzer
387281fae4
Add configuration for deterministic network interface names
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-05 18:27:57 +02:00
David Oberhollenzer
1389c74f95
Add pygos specific init setup to init package
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-05 18:27:57 +02:00
David Oberhollenzer
390c1e6a15
Bump init version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-05-05 18:27:57 +02:00
David Oberhollenzer
b7de7a0ccb
cleanup: remove w flag from all read only files
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-20 13:24:36 +02:00
David Oberhollenzer
2df0ef2945
cleanup: remove /opt and /srv from default filesystem
...
Let packages decide if they want to install something to /opt or /srv,
but there is no reason to have empty directories by default in the read
only root filesystem.
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-20 13:24:30 +02:00
David Oberhollenzer
7f5f64978d
cleanup: restructure user directories
...
Instead of having an overlay mounted /root in the root filesystem,
move it to the other user directories, i.e. /usr/root.
We then overlay mount the entire /usr directory. This still allows
us to mount /usr from somewhere else if we wish, but cleans
up/simplifies the filesystem for now and implements some default
management of general user directories.
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-20 13:24:24 +02:00
David Oberhollenzer
db05815d17
Bump main line kernel version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-16 23:26:48 +02:00
David Oberhollenzer
76cd516b5f
Bump init version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-14 23:04:31 +02:00
David Oberhollenzer
8239578deb
Move filesystem setup to init
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-07 00:52:21 +02:00
David Oberhollenzer
08c7fe9b4f
Cleanup: remove useless shadow-util programs
...
- vigr and vipw. We don't have vi installed.
- chsh. We only have one shell installed.
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-06 14:41:20 +02:00
David Oberhollenzer
9d75cc8400
Cleanup: move libexec directory into /lib
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-06 01:03:29 +02:00
David Oberhollenzer
66be5567f9
Fix: don't remove magic
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-06 00:48:56 +02:00
David Oberhollenzer
60efe6d501
Bump procps-ng version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-05 23:06:54 +02:00
David Oberhollenzer
14c8a79268
Bump iproute2 version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-05 21:57:15 +02:00
David Oberhollenzer
61393153d4
Bump OpenSSH version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-05 21:50:31 +02:00
David Oberhollenzer
06cf2e05cf
Bump btrfs-progs version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-05 21:43:41 +02:00
David Oberhollenzer
3363827c78
Bump util-linux version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-05 21:37:07 +02:00
David Oberhollenzer
35558aa27d
Bump busybox version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-05 20:30:20 +02:00
David Oberhollenzer
f415a39e96
Bump nftables version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-05 20:30:20 +02:00
David Oberhollenzer
f1759dffed
Bump unbound version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-05 20:30:20 +02:00
David Oberhollenzer
2121f940c9
Bump OpenSSL version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-05 20:30:20 +02:00
David Oberhollenzer
89c3c31702
Bump libunistring version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-05 20:30:20 +02:00
David Oberhollenzer
7136fcda6c
Bump sqlite3 version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-05 20:30:20 +02:00
David Oberhollenzer
966f16f775
Bump dhcpcd version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-05 20:30:20 +02:00
David Oberhollenzer
e69717f6b9
Bump dnsmasq version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-05 20:30:20 +02:00
David Oberhollenzer
fe349bba1f
Bump less version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-05 20:30:20 +02:00
David Oberhollenzer
16ce4d5732
Bump gawk version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-05 20:30:20 +02:00
David Oberhollenzer
e708ec7192
Bump sed version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-05 20:30:20 +02:00
David Oberhollenzer
95ec1be661
Bump nano version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-05 20:30:20 +02:00
David Oberhollenzer
d049b3a9d1
Bump musl version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-05 20:30:20 +02:00
David Oberhollenzer
72512d6bac
Bump init version
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-04-05 20:30:20 +02:00
David Oberhollenzer
3907b48c1f
Add eudev package
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-03-24 21:14:29 +01:00
David Oberhollenzer
d458890335
Add dhcpcd package
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-03-24 21:14:29 +01:00
David Oberhollenzer
f5a62aef6a
Replace OpenRC with custom init system
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-03-24 18:28:29 +01:00
David Oberhollenzer
94cc2d2c46
Implement board/product config schema
...
- build needs a pair of product and board name
- some products can only be built for some boards
- Config files in product/<name> directory override those in board/<name>
- For some config files, like LDPATH or ROOTFS, the files are merged
- product/common provides defaults
Add default config for various services:
- Add default config for unbound
- Add default config for dnsmasq
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-03-24 18:28:29 +01:00
David Oberhollenzer
372fc76053
Bump busybox version to 1.28.1
...
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
2018-03-24 18:28:29 +01:00