pygos/build
1
0
Fork 0
mirror of https://github.com/pygos/build.git synced 2024-11-05 11:37:10 +01:00
Code Issues Releases Wiki Activity
519 commits 1 branch 0 tags 4.1 MiB
Commit graph

452 commits

Author SHA1 Message Date
David Oberhollenzer
45cc27ca40 Bump binutils version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-11-03 19:28:43 +01:00
David Oberhollenzer
6ad8ed37f7 Cleanup binutils confgiure flags, add relro, PIC, deterministic ar 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-11-03 19:28:43 +01:00
David Oberhollenzer
1aa829699c Explicitly disable libquadmath in second stage gcc 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-11-03 19:28:43 +01:00
David Oberhollenzer
544ac03d1f Allways build libssp_noshared, even for non hardened toolchains 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-11-03 19:28:43 +01:00
David Oberhollenzer
e87a8ec43c Explicitly turn on size optimizations 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-11-03 19:28:43 +01:00
David Oberhollenzer
cf2e438a45 Bump Raspberry Pi 3 vendor kernel version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-11-03 19:28:43 +01:00
David Oberhollenzer
35e72a4ae7 Bump Raspberry Pi 3 firmware version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-11-03 19:28:43 +01:00
David Oberhollenzer
82a00e5a1b Bump mainline LTS linux version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-11-03 19:28:43 +01:00
David Oberhollenzer
60f9a68807 Bump file version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-11-03 19:28:43 +01:00
David Oberhollenzer
81f4f36044 Bump tzdata version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-11-03 19:28:43 +01:00
David Oberhollenzer
e91029b64e Bump unbound version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-11-03 19:28:43 +01:00
David Oberhollenzer
0b5e2ccc38 Bump dnsmasq version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-11-03 19:28:43 +01:00
David Oberhollenzer
1786c65c4c Bump init version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-11-03 19:28:43 +01:00
David Oberhollenzer
d6030cd898 Replace gcc libssp with built musl builtins 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-10-20 12:52:06 +02:00
David Oberhollenzer
d06083c96d Propperly process Linux package targets in deploy function 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-10-19 21:50:57 +02:00
David Oberhollenzer
7dd6306b30 cleanup: derive LINUX_CPU from TARGET, merge linux packages 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-10-19 21:50:57 +02:00
David Oberhollenzer
b5d4ece03d cleanup: derive MUSL_CPU from TARGET in Musl package 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-10-19 21:50:57 +02:00
David Oberhollenzer
569f7d5e0c cleanup: derive OPENSSL_TARGET from TARGET in OpenSSL package 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-10-19 21:50:57 +02:00
David Oberhollenzer
8e5c6d3a2e Make toolchain and user space hardening configurable 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-10-19 21:50:57 +02:00
David Oberhollenzer
69aa1d33e9 Set hardening options for packages with custom build system 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-10-19 00:18:51 +02:00
David Oberhollenzer
8063550d4e Add libc agnostic fortify-headers package 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-10-17 01:11:02 +02:00
David Oberhollenzer
52933c58c9 Enable hardening flags for stage-1 gcc 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-10-17 00:52:10 +02:00
David Oberhollenzer
0958272eb3 Export CROSS_COMPILE environment variable for Musl build script 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-10-17 00:52:10 +02:00
David Oberhollenzer
c16ff53c14 Remove overlay partition setup from release shell scripts 
The initial ram disk does that for us (with the propper permissions
in the case of Qemu).

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-10-11 19:02:11 +02:00
David Oberhollenzer
2a1add41e7 Enable stack protection flags in GCC cross compiler 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-10-11 19:02:11 +02:00
David Oberhollenzer
f1be060f7c Bump mainline LTS linux version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-10-07 16:35:25 +02:00
David Oberhollenzer
62345ef7bb Cleanup nginx user and directory setup 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-10-07 16:35:25 +02:00
David Oberhollenzer
dcadff7637 Init version rebase 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-10-07 02:16:28 +02:00
David Oberhollenzer
8d75cb83fd Add nginx package 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-10-06 20:32:44 +02:00
David Oberhollenzer
f3861b9df1 Add PCRE package 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-10-06 17:25:52 +02:00
David Oberhollenzer
a71c45aec0 Fix final image copy in Linux LTS build script 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-10-06 17:25:52 +02:00
David Oberhollenzer
e7101d5400 Unfuck libtool archives for libnl3 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-10-06 17:25:52 +02:00
David Oberhollenzer
86dcb7d8c1 Bump mainline LTS linux version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-10-01 20:49:03 +02:00
David Oberhollenzer
e61ca9decf Another overlay mount overhaul 
- Directly pass the device type to the mount command
 - Use the special default type "hwdevice" to wait for a device node
   before mounting it
 - Initialize the overlay partition from the initrd script
 - Do the bind mount setup as document

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-10-01 19:11:12 +02:00
David Oberhollenzer
121fee7e97 Add configuration for testing with qemu 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-30 01:28:33 +02:00
David Oberhollenzer
59d01432b1 More sophisticated filesystem setup from initrd 
- Let us specify the "type" of the root and overlay filesystem.
   At the moment we have raw device that we wait for (default) and
   qemu virtio 9pfs.
 - If no squasfs image is specified, mount the root partition as
   root filesystem.
 - If no overlay device is specified, don't touch the new root
   filesystem.

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-29 21:32:58 +02:00
David Oberhollenzer
2d74caf06b Remove perl scripts from ntp package installed files 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-29 17:10:07 +02:00
David Oberhollenzer
90fc4f4e9e Patch gcc to install 64 bit libraries to /lib instead of /lib64 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-29 17:10:07 +02:00
David Oberhollenzer
6ced6fc948 Minor fixes for main line Linux LTS build 
- Patch the config first, don't touch it after running make oldconfig
 - Add modules target to toolchain config, don't directly call it
 - Only try to install modules if we actually have support for loadable
   modules

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-29 17:10:07 +02:00
David Oberhollenzer
8faae986b6 Bump psmisc version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-27 23:58:12 +02:00
David Oberhollenzer
b0da273179 Bump mainline LTS linux version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-27 23:56:34 +02:00
David Oberhollenzer
de14b86043 Build coreutils as single call binary 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-22 21:29:29 +02:00
David Oberhollenzer
de90e7bcbb Bump nano version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-21 22:27:18 +02:00
David Oberhollenzer
0b8ffdbb7f Bump mainline LTS linux version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-21 22:25:49 +02:00
David Oberhollenzer
e865ae2d1c Bump Raspberry Pi 3 vendor kernel version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-21 22:23:08 +02:00
David Oberhollenzer
ad3b6d19a2 Bump Raspberry Pi 3 firmware version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-21 22:22:50 +02:00
David Oberhollenzer
bbac1391dc Bump init version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-21 22:11:58 +02:00
David Oberhollenzer
51a2c5ea17 Fix permissions for root user home directory 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-15 20:25:27 +02:00
David Oberhollenzer
700395b508 Bump OpenSSL version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-15 20:18:19 +02:00
David Oberhollenzer
0f3d04a3b8 Bump unbound version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-15 20:18:19 +02:00
David Oberhollenzer
76fba828f3 Bump mainline LTS linux version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-15 20:18:19 +02:00
David Oberhollenzer
48e6358906 Bump busybox version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-15 20:18:19 +02:00
David Oberhollenzer
fc6d7292c5 Bump nano version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-15 20:18:19 +02:00
David Oberhollenzer
6aff04a1fd Shadow: provide configuration files directly 
Instead of patching around in the build/deploy directories, simply
provide a set of default configuration files directly from the package
directory.

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-15 20:18:19 +02:00
David Oberhollenzer
d515f0dde2 Minor default settings cleanup 
- Add 'rm -I' and 'cp -i' aliases to bashrc
 - Make sure tmpfsvar creates the log files that the login program expects
 - Restore 'tty' group; some scripts actually rely on that

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-15 16:01:06 +02:00
David Oberhollenzer
7eb727e26f Remove programs depending on non-existant utmp data 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-10 09:26:47 +02:00
David Oberhollenzer
b4502eaf80 Add time zone data 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-08 15:05:49 +02:00
David Oberhollenzer
3e75dc1e37 Add ntp package 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-08 15:05:49 +02:00
David Oberhollenzer
03a11e26ef Bump Raspberry Pi 3 firmware version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-08 15:05:49 +02:00
David Oberhollenzer
8b1e3e0b6b Bump Raspberry Pi 3 vendor kernel version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-08 15:05:49 +02:00
David Oberhollenzer
79ac5f1293 Propperly handle symlinks to directories in rootfs package 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-08 14:51:52 +02:00
David Oberhollenzer
4498b0ccb0 Bump mainline LTS linux version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-08 14:51:52 +02:00
David Oberhollenzer
136ff32374 Bump musl version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-08 14:51:52 +02:00
David Oberhollenzer
50dce293c1 Add helper macro for running configure with standard arguments 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-03 13:58:35 +02:00
David Oberhollenzer
7f020c855b Remove defunct nettle and support libraries 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-02 14:25:56 +02:00
David Oberhollenzer
c29955adf5 Add default configuration for OpenSSH server 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-01 17:49:18 +02:00
David Oberhollenzer
601068d8ed Bump init version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-09-01 17:49:18 +02:00
David Oberhollenzer
054464e16b Change/add bash aliases to enable ls colors by default 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-31 22:49:18 +02:00
David Oberhollenzer
ab17c95cf9 Redirect bzip2 URL 
The domain bzip2.org has expired and is now held by someone placing ads.

Aparently bzip2 development is pretty dead for now.

Redirect source URL to the debian snapshot archive.

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-31 18:41:07 +02:00
David Oberhollenzer
382f2b9bfe Bump OpenSSH version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-31 18:41:07 +02:00
David Oberhollenzer
02f2fdcb4d Bump ethtool version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-24 22:00:09 +02:00
David Oberhollenzer
80ae626080 Bump dhcpcd version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-24 22:00:09 +02:00
David Oberhollenzer
c75c488e4f Bump main line Linux version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-24 22:00:09 +02:00
David Oberhollenzer
7d53200b9c Remove arpd and Oracle BDB it depends on 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-19 15:59:43 +02:00
David Oberhollenzer
9684f7bb92 Cleanup users and groups 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-19 15:57:06 +02:00
David Oberhollenzer
6472fbe9c0 Remove further unneded programs 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-19 15:56:48 +02:00
David Oberhollenzer
53c93938ac Remove programs for which we have bash shell builtins 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-19 15:55:58 +02:00
David Oberhollenzer
e8f94f293b Remove unused eudev package 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-19 12:24:37 +02:00
David Oberhollenzer
048229bb71 Bump sqlite version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-18 17:59:25 +02:00
David Oberhollenzer
0faf37f421 Bump iproute2 version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-18 17:59:25 +02:00
David Oberhollenzer
ebee030b86 Bump btrfs-progs version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-18 17:59:25 +02:00
David Oberhollenzer
5c60596853 Bump dhcpcd version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-18 17:59:25 +02:00
David Oberhollenzer
b31bd42a93 Bump libexpat version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-18 17:59:25 +02:00
David Oberhollenzer
49f0751c11 Mover mainline kernel version to newest LTS 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-17 10:35:43 +02:00
David Oberhollenzer
0584cd076c Add routing configuration 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-16 22:54:28 +02:00
David Oberhollenzer
360a9538c5 Bump init version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-16 22:54:28 +02:00
David Oberhollenzer
e7a86f1f70 Downgrade binutils to 2.30 
This is a workaround for an issue with binutils on statically linked x86
binaries. The tls section has some loading flag set wrong and is not mapped
into memory by the kernel. The musl startup code tries to parse the section
information and segfaults.

See: http://www.openwall.com/lists/musl/2018/07/18/5

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-16 17:39:12 +02:00
David Oberhollenzer
8e4ff996e8 Bump openssl version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-15 01:19:21 +02:00
David Oberhollenzer
512fb7bc28 Bump file version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-15 01:19:21 +02:00
David Oberhollenzer
16e7c6da93 Bump gcc version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-15 01:19:21 +02:00
David Oberhollenzer
259005f7ed Bump binutils version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-15 01:19:21 +02:00
David Oberhollenzer
831e4cee6e Bump busybox version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-14 20:12:01 +02:00
David Oberhollenzer
aed4fe12f6 Remove nftables example files from root filesystem 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-12 18:51:05 +02:00
David Oberhollenzer
790db0d992 Add tcpdump and libpcap packages 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-08-12 18:51:05 +02:00
David Oberhollenzer
7ba1cda7f2 Add hostapd package 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-07-20 23:39:55 +02:00
David Oberhollenzer
6c68ba8332 Bump bbstatic version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-07-16 20:00:35 +02:00
David Oberhollenzer
04459a3847 Bump binutils version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-07-16 20:00:26 +02:00
David Oberhollenzer
b96462d5dd Bump coreutils version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-07-16 20:00:14 +02:00
David Oberhollenzer
4bd18560dd Add wifi command line tools 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-07-16 17:56:32 +02:00
David Oberhollenzer
7a735f1a75 Bump Raspberry Pi 3 wireless firmware version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-07-15 21:24:13 +02:00
David Oberhollenzer
b7fdbc5599 Bump Raspberry Pi 3 kernel version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-07-15 20:46:32 +02:00
David Oberhollenzer
d820876472 Bump Raspberry Pi 3 firmware version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-07-15 20:42:31 +02:00
David Oberhollenzer
cd74009293 Merge linux_modules package into linux package 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-07-15 17:59:47 +02:00
David Oberhollenzer
39c0c2c98d Handle boot files via regular rootfs package machanisms 
Just install the kernel package to the rootfs /boot directory and add a step
to the rootfs package to move /boot data out of the squasfs image.

Add linux package as regular dependency to the rootfs.

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-07-15 16:19:44 +02:00
David Oberhollenzer
54b9f37d96 Add Raspberry Pi 3 wifi firmware config & blob 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-06-24 21:54:18 +02:00
David Oberhollenzer
fff4f7a5be Add ldns package 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-06-22 20:49:54 +02:00
David Oberhollenzer
800b2b9dd1 Bump dhcpcd version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-06-22 17:57:45 +02:00
David Oberhollenzer
bb000e5c24 Bump unbound version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-06-22 17:57:45 +02:00
David Oberhollenzer
89f3997429 Bump iproute2 version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-06-21 16:45:42 +02:00
David Oberhollenzer
a4a73b01e1 Bump libunistring version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-06-19 22:56:06 +02:00
David Oberhollenzer
5bbaffbd58 Bump unbound version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-06-19 22:56:06 +02:00
David Oberhollenzer
4452aa2314 Bump nftables version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-06-19 22:56:06 +02:00
David Oberhollenzer
4b3832bbb5 Bump nano version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-06-19 22:56:06 +02:00
David Oberhollenzer
24cee8f784 Bump libnftnl version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-06-19 22:56:06 +02:00
David Oberhollenzer
41fe94e070 Bump dhcpcd version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-06-19 20:49:37 +02:00
David Oberhollenzer
848411862a Bump ethtool version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-06-19 20:48:20 +02:00
David Oberhollenzer
ea1f28e5d1 Bump btrfs-progs version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-06-19 20:47:09 +02:00
David Oberhollenzer
2c73c4b9c6 Make sure local DNS queries are resolved by dnsmasq 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-06-19 18:33:30 +02:00
David Oberhollenzer
1e3cf6eaac Remove obsolete tools from kbd package 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-06-18 18:49:15 +02:00
David Oberhollenzer
05076009ca Remove bash-completions for distro package managers 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-06-18 18:48:40 +02:00
David Oberhollenzer
5bea71e0a2 Remove useless and broken dhcpcd hooks 
We don't need some of those hooks anyway, and some others are generated
based on tools we have installed on the build system, so we would need
a workaround anyway if we needed them.

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-06-18 00:47:50 +02:00
David Oberhollenzer
8c2af75243 Bump bash-completion version, fix upstream URL 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-06-17 23:14:51 +02:00
David Oberhollenzer
7204b9dd75 Cleanup: strip executables in mk.sh 
Automagically strip all executables (recursively for subdirectories in lib
and bin) inside the mk.sh build loop.

This removes the necessity in the build scripts to strip the files. This also
allows us to remove the error prone install-strip target from the build
scripts.

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-06-17 20:22:10 +02:00
David Oberhollenzer
3d30afef75 Remove dev deploy split 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-06-17 20:22:10 +02:00
David Oberhollenzer
90b2586ea4 Restructure assembly of root filesystem image 
Every package now has or generates a rootfs_files.txt containing a list
of files that should be packed into the rootfs, their permissions and
their owner.

This gives us fine grained controll over the owners and permissions of the
rootfs files (by generating a squashfs pseudo file).

In subsequent steps, this allows us to remove the deploy/devdeploy split and
actually simplifiy most of the build scripts.

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-06-17 20:22:10 +02:00
David Oberhollenzer
878f4360f1 Bump init version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-06-17 20:22:02 +02:00
David Oberhollenzer
5dd03bd5fb Add raw service list to enable for init package 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-06-17 01:45:27 +02:00
David Oberhollenzer
8c76110586 Fix unbound directory setup 
- Move root.key into /etc/unbound directory
 - Remove pid file from config, it is baked into the configure options
 - Make sure unbound does not try to chroot anywhere

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-06-04 16:27:10 +02:00
David Oberhollenzer
750d53d82d Generate trust anchor file for unbound 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-06-04 09:09:15 +02:00
David Oberhollenzer
5128a00400 Fix raspberry pi 3 kernel check_update version comparison 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-25 18:36:59 +02:00
David Oberhollenzer
c0027fbaf7 Bump raspberry pi 3 kernel version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-25 18:36:59 +02:00
David Oberhollenzer
8052eaf596 Bump raspberry pi 3 firmware version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-25 18:36:59 +02:00
David Oberhollenzer
17d31e5f70 Bump procps-ng version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-25 18:36:59 +02:00
David Oberhollenzer
bb5445a3e1 Bump libidn2 version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-25 18:36:59 +02:00
David Oberhollenzer
3e22e24004 Bump libbsd version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-25 18:36:59 +02:00
David Oberhollenzer
3f0c67b4cd Bump BusyBox version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-25 18:36:59 +02:00
David Oberhollenzer
2a1519ea2c Bump nano version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-25 18:36:59 +02:00
David Oberhollenzer
2d57db89d9 Simplify unbound build 
- Remove libevent dependency
 - Since we only have a single config file anyway,
   use it as main unbound.conf
 - We also need libbsd as build dependency
 2018-05-25 18:36:36 +02:00
David Oberhollenzer
86120862c5 Add some usefull bash aliases 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-19 23:05:30 +02:00
David Oberhollenzer
d5c8fce58b Add helper function to fixup libtool files 
When "libdir" is not the final path where we install the library,
libtool will mess up the relinking process and prepend the global
library directories to the linker search path.

If we fix the libdir path, libtool will insert it into the rpath
in the binary, which is also pretty bonkers.

Maybe, there is a way to do this correctly, but the various GNU
mailing lists, Debian wiki, etc.. could not provide a better
alternative than patching up libtool scripts.

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-19 23:05:30 +02:00
David Oberhollenzer
e97e355b64 Explicitly specify library search path when building cross binutils 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-19 00:31:01 +02:00
David Oberhollenzer
d9e5af3644 mainline kernel: only check for newer LTS versions 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-14 18:31:24 +02:00
David Oberhollenzer
5e2a443ae5 Minor util-linux build script fixes 
- Remove extra back slash
 - The good old "install uses build systems strip tool and it doesn't know
   what to do with ARM binaries"

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-14 00:04:32 +02:00
David Oberhollenzer
e82eda5bef bash: don't link against the build systems readline library 
If we tell bash to used the installed readline library, it defaults
to adding -L/lib for the readline and history library prefixes.

This prepends the local systems search path to the toolchain search
path and makes bash build break on some systems.

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-14 00:04:32 +02:00
David Oberhollenzer
8d9e25b8d0 Bump nftables version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-11 23:30:07 +02:00
David Oberhollenzer
c6ae50eb40 Add helpers for override behaviour based shell inclusion 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-10 16:01:53 +02:00
David Oberhollenzer
e8371806cd Bump procps-ng version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-10 12:21:33 +02:00
David Oberhollenzer
a21ae85b50 Bump gcc version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-08 15:01:23 +02:00
David Oberhollenzer
02f73edff8 Bump libnftnl version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-08 15:01:23 +02:00
David Oberhollenzer
191b5f82d8 Bump sqlite3 version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-08 15:01:23 +02:00
David Oberhollenzer
b110b7d0e1 Bump btrfs-progs version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-08 15:01:23 +02:00
David Oberhollenzer
645881d071 Bump dhcpcd version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-08 15:01:23 +02:00
David Oberhollenzer
7009e9554a Bump ethtool version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-08 15:01:23 +02:00
David Oberhollenzer
c94b7320dd Bump nano version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-08 15:01:23 +02:00
David Oberhollenzer
74ea27e37c Bump nftables version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-08 15:01:23 +02:00
David Oberhollenzer
ab2492ea6a Bump shadow version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-08 15:01:23 +02:00
David Oberhollenzer
f464aeb721 Bump unbound version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-08 15:01:23 +02:00
David Oberhollenzer
dcee71aa34 Bump file version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-08 15:01:23 +02:00
David Oberhollenzer
6746f5c033 Bump XZ version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-08 15:01:23 +02:00
David Oberhollenzer
b1bdce20a9 Add automatic update chacking script 
Crunch project websites and try to find the latest version for each
package without having to do the work manually.

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-08 15:01:23 +02:00
David Oberhollenzer
acd2a1f57f Fix dhcpcd service 
First of all, fix the dependency name in the per-interface service file.

Second, we allow the master services daemonize itself and change the target
to wait. This way, we block init until we are sure the dhcpcd master
is running. Otherwise we have a race condition if init gets scheduled
for some reason and immediately starts the dhcpcd interface daemon that
cannot see the master and decides that *it* is the msater now.

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-08 14:59:13 +02:00
David Oberhollenzer
5388c0f925 Cleanup file override behaviour 
Look for board specific product files in product/$product/$board/

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-06 00:21:09 +02:00
David Oberhollenzer
b0a3baf8bb Add dhcpcd configuration 
- Service file for dhcpcd master service
 - Service template file for interfaces
 - Service symlink for each configured interface
 - Get DHCP address on raspberry pi 3 for ethernet port

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-05 21:53:34 +02:00
David Oberhollenzer
e65f40e01f Add network configuration 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-05 18:27:57 +02:00
David Oberhollenzer
387281fae4 Add configuration for deterministic network interface names 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-05 18:27:57 +02:00
David Oberhollenzer
1389c74f95 Add pygos specific init setup to init package 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-05 18:27:57 +02:00
David Oberhollenzer
390c1e6a15 Bump init version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-05-05 18:27:57 +02:00
David Oberhollenzer
b7de7a0ccb cleanup: remove w flag from all read only files 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-20 13:24:36 +02:00
David Oberhollenzer
2df0ef2945 cleanup: remove /opt and /srv from default filesystem 
Let packages decide if they want to install something to /opt or /srv,
but there is no reason to have empty directories by default in the read
only root filesystem.

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-20 13:24:30 +02:00
David Oberhollenzer
7f5f64978d cleanup: restructure user directories 
Instead of having an overlay mounted /root in the root filesystem,
move it to the other user directories, i.e. /usr/root.

We then overlay mount the entire /usr directory. This still allows
us to mount /usr from somewhere else if we wish, but cleans
up/simplifies the filesystem for now and implements some default
management of general user directories.

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-20 13:24:24 +02:00
David Oberhollenzer
db05815d17 Bump main line kernel version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-16 23:26:48 +02:00
David Oberhollenzer
76cd516b5f Bump init version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-14 23:04:31 +02:00
David Oberhollenzer
8239578deb Move filesystem setup to init 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-07 00:52:21 +02:00
David Oberhollenzer
08c7fe9b4f Cleanup: remove useless shadow-util programs 
- vigr and vipw. We don't have vi installed.
 - chsh. We only have one shell installed.

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-06 14:41:20 +02:00
David Oberhollenzer
9d75cc8400 Cleanup: move libexec directory into /lib 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-06 01:03:29 +02:00
David Oberhollenzer
66be5567f9 Fix: don't remove magic 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-06 00:48:56 +02:00
David Oberhollenzer
60efe6d501 Bump procps-ng version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-05 23:06:54 +02:00
David Oberhollenzer
14c8a79268 Bump iproute2 version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-05 21:57:15 +02:00
David Oberhollenzer
61393153d4 Bump OpenSSH version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-05 21:50:31 +02:00
David Oberhollenzer
06cf2e05cf Bump btrfs-progs version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-05 21:43:41 +02:00
David Oberhollenzer
3363827c78 Bump util-linux version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-05 21:37:07 +02:00
David Oberhollenzer
35558aa27d Bump busybox version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-05 20:30:20 +02:00
David Oberhollenzer
f415a39e96 Bump nftables version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-05 20:30:20 +02:00
David Oberhollenzer
f1759dffed Bump unbound version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-05 20:30:20 +02:00
David Oberhollenzer
2121f940c9 Bump OpenSSL version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-05 20:30:20 +02:00
David Oberhollenzer
89c3c31702 Bump libunistring version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-05 20:30:20 +02:00
David Oberhollenzer
7136fcda6c Bump sqlite3 version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-05 20:30:20 +02:00
David Oberhollenzer
966f16f775 Bump dhcpcd version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-05 20:30:20 +02:00
David Oberhollenzer
e69717f6b9 Bump dnsmasq version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-05 20:30:20 +02:00
David Oberhollenzer
fe349bba1f Bump less version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-05 20:30:20 +02:00
David Oberhollenzer
16ce4d5732 Bump gawk version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-05 20:30:20 +02:00
David Oberhollenzer
e708ec7192 Bump sed version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-05 20:30:20 +02:00
David Oberhollenzer
95ec1be661 Bump nano version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-05 20:30:20 +02:00
David Oberhollenzer
d049b3a9d1 Bump musl version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-05 20:30:20 +02:00
David Oberhollenzer
72512d6bac Bump init version 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-04-05 20:30:20 +02:00
David Oberhollenzer
3907b48c1f Add eudev package 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-03-24 21:14:29 +01:00
David Oberhollenzer
d458890335 Add dhcpcd package 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-03-24 21:14:29 +01:00
David Oberhollenzer
f5a62aef6a Replace OpenRC with custom init system 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-03-24 18:28:29 +01:00
David Oberhollenzer
94cc2d2c46 Implement board/product config schema 
- build needs a pair of product and board name
 - some products can only be built for some boards
 - Config files in product/<name> directory override those in board/<name>
 - For some config files, like LDPATH or ROOTFS, the files are merged
 - product/common provides defaults

Add default config for various services:
 - Add default config for unbound
 - Add default config for dnsmasq

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-03-24 18:28:29 +01:00
David Oberhollenzer
372fc76053 Bump busybox version to 1.28.1 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
 2018-03-24 18:28:29 +01:00