Commit Graph

118 Commits

Author SHA1 Message Date
nl6720
78fe656042
Deprecate customize_airootfs.sh
Show a deprecation notice if airootfs/root/customize_airootfs.sh is found.
2020-07-28 11:56:58 +03:00
nl6720
df93289b73
Install all packages in one go and don't copy pacman.conf to airootfs
configs/{baseline,releng}/build.sh:
Copy custom files to airootfs before installing packages.
Instead of calling `mkarchiso init`, list all required packages in packages.x86_64 and install them all at once with `mkarchiso install`. The mkdir command which `mkarchiso init` performs is now done by make_custom_airootfs.

configs/releng/build.sh:
Don't copy configs/releng/pacman.conf to airootfs, it is only meant to provide a unmodified pacman.conf durring pacstrap. In airootfs, an unmodified /etc/pacman.conf will be installed with the pacman package.
2020-07-28 11:50:25 +03:00
nl6720
6689537563
Set root user's shell and password with custom /etc/passwd and /etc/shadow
Correct shadow file permissions from build.sh.
2020-07-20 13:39:41 +03:00
Justin Kromlinger
6f0a15c34a
Fix unexpected script_path behaviour
When one calls the `build.sh` scripts with bash instead of the shebang
`$script_path` contains the filepath, not the parent dir:

```
% cd /path
% grep -A2 script_path= build.sh
script_path=$(readlink -f "${0%/*}")
echo "$script_path"
exit 0
% ./build.sh
/path
% bash build.sh
/path/build.sh
```

This commit fixes that:

```
% grep -A2 script_path= build.sh
script_path="$( cd -P "$( dirname "$(readlink -f "$0")" )" && pwd )"
echo "$script_path"
exit 0
% ./build.sh
/path
% bash build.sh
/path
```
2020-07-16 22:54:16 +02:00
nl6720
51170c5352
Don't hardcode packages in build.sh
Move all required packages to packages.x86_64.
Test file availability before copying them.
2020-07-12 16:28:38 +03:00
nl6720
550aca7124
Remove lynx usage in configs/releng/build.sh
/usr/local/bin/Installation_guide:
Add a convenience script which opens the installation guide in lynx.

/etc/motd:
Provide a message with minimal instructions for connecting to internet and inform about the Installation_guide convenience script.
2020-07-11 17:08:44 +03:00
nl6720
d5d0f78139
Use /usr/bin/env in shebangs 2020-07-11 16:31:18 +03:00
nl6720
d39e2ba41b
Keep /root permissions as 750
The filesystem package installs /root as 750 not 700.

Move chmod from customize_airootfs.sh to build.sh.
2020-07-11 16:30:25 +03:00
David Runge
5e43a63b3c
Fixing issues with variable quoting and arrays
archiso/mkarchiso:
Calls to _pacman() need to be done with multiple parameters (e.g. array) instead of one string, as string splitting is
not done in that function anymore.
Turning _iso_efi_boot_args from string into an array to have an easier time of passing it to xorriso.
Calling xorriso within the if statements instead of providing -quiet via variable.
Fixing command_install() to provide packages separately to _pacman()

configs/releng/build.sh:
Replacing all newlines when retrieving the packages from packages.x86_64 with spaces so they will be properly provided
to "mkarchiso install".
2020-06-30 19:35:56 +02:00
nl6720
3cf8e738ed
Do not download a mirrorlist durring build
Pacman's mirrolist will be updated by reflector.service in the live system.
2020-06-30 18:10:45 +03:00
David Runge
47533fd974
Introducing shellcheck in gitlab CI
archiso/mkarchiso:
Quoting all variables.
Changing pkg_list to be an array instead of a string for easier
handling. Using read to properly populate pkg_list from OPTARG with
stripped whitespaces.
Not exporting iso_label anymore as there seems to be no reason to do so.
Introducing line breaks.

.editorconfig:
Setting max_line_length to 120.
Adding a section for YAML files (e.g. .gitlab-ci.yml).

configs/releng/build.sh
Quting nearly all variables.
Introducing line breaks.

configs/baseline/build.sh:
Quoting all variables.
Introducing line breaks.

.gitlab-ci.yml:
Adding gitlab CI for shelleck linting of the config build scripts, mkarchiso and startup scripts in releng.

Closes #19
2020-06-29 20:10:23 +02:00
David Runge
839f74335b
Fixing ownership in airootfs customization
configs/releng/build.sh:
Fixing wrong ownership of files when copying overlay modifications from
the config's airootfs directory to the working directory in
make_customize_airootfs() by using the cp flag
'--no-preserve=ownership'.

Thanks to Marcos Mello and Francois Dupoux of sysresccd
(https://gitlab.com/fdupoux/sysresccd-src) for making this fix
available.

Closes #11
2020-06-23 22:16:16 +02:00
David Runge
2d4b9f3e34
Removing custom UEFI shell boot loader configs
configs/releng/build.sh:
Copying the edk2-shell based Shell_Full.efi to the root of the iso/ efi
image as 'shellx64.efi' is automatically picked up by certain hardware
and by systemd-boot.
This makes all custom UEFI shell configuration obsolete.

configs/releng/efiboot/loader/entries/uefi-shell-*.conf:
Removing obsolete custom UEFI shell boot loader configuration.

Closes #14
2020-06-23 20:44:29 +02:00
David Runge
68df5746f2
Removing efitools
configs/releng/build.sh:
Removing the efitools based PreLoader.efi and HashTool.efi, as they are
dead weight due to not allowing secure boot (FS#59487).
Future secure boot functionality (most probably based on shim) is being
discussed in FS#53864.

Closes #17
2020-06-23 20:08:57 +02:00
David Runge
2ce375cd01
Using edk2-shell for UEFI shell
configs/releng/build.sh:
Instead of downloading UDK2018 based edk2 UEFI shell, use the Shell
binaries from the edk2-shell package.
This effectively makes the use of EFI shell v1 obsolete.

configs/releng/efiboot/loader/entries/uefi-shell-v*:
Renaming UEFI shell entries to match the packaged edk2-shell based UEFI
shell binaries.

configs/releng/build.sh:
Renaming the systemd-boot bootloader entries for UEFI shell (normal and
full version) to reflect their file names, which are derived from the
binary names in the edk2-shell package.
Copying the edk2-shell based UEFI shell binaries for normal efiboot and
.iso based "el-torito" efiboot mode.

docs/README.build:
Adding edk2-shell to the requirements in the documentation, as the
package is now used to provide UEFI shell.
2020-05-30 19:30:52 +02:00
Christian Hesse
170ff713c3 update download url for Shell.efi
Signed-off-by: Christian Hesse <mail@eworm.de>
2019-04-26 11:47:15 -03:00
Christian Hesse
c060639bae update download url for Shell_Full.efi
https://bugzilla.tianocore.org/show_bug.cgi?id=1108
Signed-off-by: Christian Hesse <mail@eworm.de>
2018-12-13 01:08:14 -03:00
Gerardo Exequiel Pozzi
e23dbb4516 [configs/releng] Update amd-ucode license path
Signed-off-by: Gerardo Exequiel Pozzi <vmlinuz386@gmail.com>
2018-08-25 13:45:05 -03:00
Christian Hesse
f9308678ee use package amd-ucode for amd microcode
The package linux-firmware has a new split package amd-ucode. Do not
build the image manually but use the package.

Signed-off-by: Christian Hesse <mail@eworm.de>
2018-08-24 17:36:48 -03:00
Gerardo Exequiel Pozzi
5a353529f7 [configs/releng] Make and use amd_ucode.bin for initrd.
Requested at FS#59694
2018-08-18 23:23:44 -03:00
Eli Schwartz via arch-releng
ddad85c86a make detection of kernel modules dir more robust
extract `uname -r` from the contents of vmlinuz-linux rather than make
assumptions about the kernel EXTRAVERSION.

This is trivially customizable by changing the chosen kernel image.

Fixes FS#59496

Signed-off-by: Eli Schwartz <eschwartz@archlinux.org>
2018-08-01 00:56:20 -03:00
Gerardo Exequiel Pozzi
fd228a9a44 [releng] Copy custom pacman.conf to airootfs 2018-06-28 00:40:13 -03:00
Gerardo Exequiel Pozzi
02164ac244 [releng] support for -P iso_publisher and -A iso_application in build.sh
Implement FS#54126
2018-06-23 22:38:34 -03:00
Gerardo Exequiel Pozzi
cf094d07b2 [releng] Cleanup remain dual-arch stuff
Signed-off-by: Gerardo Exequiel Pozzi <vmlinuz386@gmail.com>
2018-06-23 16:34:15 -03:00
Gerardo Exequiel Pozzi
b200ce82f7 Ensure correct umask for scripts
Fix for FS#58473

Signed-off-by: Gerardo Exequiel Pozzi <vmlinuz386@gmail.com>
2018-06-23 16:09:33 -03:00
Gerardo Exequiel Pozzi
52a00da605 [configs/releng] Oops, rename -dual.iso -> -x86_64.iso
Signed-off-by: Gerardo Exequiel Pozzi <vmlinuz386@gmail.com>
2017-03-01 23:05:35 -03:00
Gerardo Exequiel Pozzi
01b54d2406 [configs/releng] Do not build i686
Only avoid build i686. The syslinux config files for i686 are still
present. This implies that a i686 entry will be present but not working.
In another patch, this can be removed if desired.

Signed-off-by: Gerardo Exequiel Pozzi <vmlinuz386@gmail.com>
2017-01-23 14:05:25 -03:00
Gerardo Exequiel Pozzi
09e5693bab [configs/releng] Increse efiboot.img again
We reached the upper limit again [#1], increasing sufficiently
to do not touch again in long time.

[#1] 526be1579e

Signed-off-by: Gerardo Exequiel Pozzi <vmlinuz386@gmail.com>
2016-12-07 19:24:31 -03:00
Gerardo Exequiel Pozzi
091e40e3c9 [configs/releng] Fix efitools path #2
Thanks Daniel Hillenbrand.
2016-05-15 16:04:05 -03:00
Gerardo Exequiel Pozzi
b7996e2407 [configs/releng] Oops, fix efitools path
Thanks Philip Müller.

Signed-off-by: Gerardo Exequiel Pozzi <vmlinuz386@gmail.com>
2016-05-14 23:47:07 -03:00
Gerardo Exequiel Pozzi
908370a17e [configs/releng] prebootloader -> efitools
Should be fixed FS#49314 first
2016-05-12 22:09:45 -03:00
Christian Hesse
068459537c update to match upstream binary name mkfs.fat
Starting with dosfstools 4.0-1 the mkfs executable is called 'mkfs.fat'.

Signed-off-by: Christian Hesse <mail@eworm.de>
2016-05-12 20:39:12 -03:00
Gerardo Exequiel Pozzi
526be1579e [archiso] Increase EFI image size for El Torito boot method
Current build leaves ~800K free of 31M in the FAT filesystem, adding 9M.

Going beyond 65535 sectors of 512-byte is a bit special,
but works for EFI. Image size is reported a zero in boot catalog,
but xorriso does a good job, and writes right value in hybrid-partition.

Tested booting in qemu in both modes (cd-rom and hybrid) and works fine.

Signed-off-by: Gerardo Exequiel Pozzi <vmlinuz386@gmail.com>
2016-03-01 23:57:47 -03:00
Gerardo Exequiel Pozzi
63399225b5 Fix non-signed builds
FS#48382
2016-03-01 21:47:44 -03:00
Thomas Bächler
e36e63b8f1 Optionally sign the squashfs files with gpg and add the gpg key to the initramfs
A new option -g <keyid> is added to build.sh set the key id. If it is set, the squashfs files will be signed
by gpg and the gpg key will be added to archiso.img. In order to use this option, a gpg agent must be running.
Since build.sh is executed as root, it may be necessary to set the GNUPGHOME environment variable, for
example

$ su -c "GNUPGHOME=/home/youruser/.gnupg /path/to/build.sh -g yourkeyid"
2016-02-28 17:09:08 -03:00
Gerardo Exequiel Pozzi
9dfae68fbe [configs/releng] Fix EFI shells URL
Signed-off-by: Gerardo Exequiel Pozzi <vmlinuz386@gmail.com>
2015-07-20 13:04:34 -03:00
Gerardo Exequiel Pozzi
e709474a89 [configs/releng] Update EFI Shells URL
Signed-off-by: Gerardo Exequiel Pozzi <vmlinuz386@gmail.com>
2015-07-18 15:39:48 -03:00
Gerardo Exequiel Pozzi
f1a445ad4e [configs/releng] refind-efi is not used for ISO build, move to packages
Signed-off-by: Gerardo Exequiel Pozzi <vmlinuz386@gmail.com>
2015-06-24 22:18:46 -03:00
Gerardo Exequiel Pozzi
6004782c21 [configs/releng] Move on gummiboot -> systemd-boot
Signed-off-by: Gerardo Exequiel Pozzi <vmlinuz386@gmail.com>
2015-06-24 22:17:29 -03:00
Christian Hesse
dced05a847 explicitly detach loop device on umount
I see cases where a stale loop device stays around and fills up my
partition as image file is still in use and does not get unlinked.

Explicitly detach loop device on umount to fix that.

Signed-off-by: Christian Hesse <mail@eworm.de>
2015-04-21 19:24:30 -03:00
Gerardo Exequiel Pozzi
2b1d127835 [configs/releng] Fix pacman.conf location when non-default work_dir is used
Fix FS#44620, reported by Lukas B.

Signed-off-by: Gerardo Exequiel Pozzi <vmlinuz386@gmail.com>
2015-04-17 11:26:31 -03:00
Gerardo Exequiel Pozzi
1da2d027c5 [configs/releng] Always install needed pkgs from build.sh
Signed-off-by: Gerardo Exequiel Pozzi <vmlinuz386@gmail.com>
2014-12-21 18:54:24 -03:00
Gerardo Exequiel Pozzi
d5ee91554b [configs/releng] Always load intel-ucode in early boot stage
Signed-off-by: Gerardo Exequiel Pozzi <vmlinuz386@gmail.com>
2014-10-31 22:29:33 -03:00
Gerardo Exequiel Pozzi
89e89bd96b [configs/*] Install archiso initcpio files in /etc/initcpio
Signed-off-by: Gerardo Exequiel Pozzi <vmlinuz386@gmail.com>
2014-10-29 20:35:00 -03:00
Gerardo Exequiel Pozzi
b3e1d31343 [archiso] Rework checksum function 2014-06-28 00:35:51 -03:00
Gerardo Exequiel Pozzi
36459f3acc [archiso] Drop aitab support
Always create one filesystem of a fixed size (32G), format (ext4) and
know name "airootfs".

Simplify logic a lot.
2014-06-28 00:35:50 -03:00
Gerardo Exequiel Pozzi
604b182af5 [archiso] Rename root-image to airootfs
Two purposes:
 * systemd filename friendly: "-" is used for "/" and must be escaped with "\x20"
 * ISO9660 filename friendly: "-" is replaced with "_"
2014-06-28 00:35:50 -03:00
Gerardo Exequiel Pozzi
6d4e69b905 [archiso] changes for syslinux 6
Signed-off-by: Gerardo Exequiel Pozzi <vmlinuz386@yahoo.com.ar>
2013-10-19 15:02:35 -03:00
Gerardo Exequiel Pozzi
25b00a5682 [configs/releng] Fix EFI shells URLs
FS#36780

Signed-off-by: Gerardo Exequiel Pozzi <vmlinuz386@yahoo.com.ar>
2013-09-03 12:28:25 -03:00
Gerardo Exequiel Pozzi
3e4740484e [configs/releng] Add SecureBoot support via prebootloader
Tested only under QEMU using OVMF SecureBoot enabled firmware plus lockdown-ms.

Both loader.efi (gummiboot) and vmlinuz.efi should be hashed before boot in secure mode.

Signed-off-by: Gerardo Exequiel Pozzi <vmlinuz386@yahoo.com.ar>
2013-06-19 20:36:37 -03:00