Commit Graph

15 Commits

Author SHA1 Message Date
Thierry Laurion
1d2fb02668 Adding cryptsetup-reencrypt support 2018-10-08 16:28:05 -04:00
Trammell Hudson
07eb5e9717
Define $(CROSS_TOOLS) to ensure reproducible builds (issue )
Each of the submodule configuration files defined a subset of the
cross compiler tools that it used and many were picking up the
system `ar`, `nm`, `strip, `ld`, etc.  They all now use a `Makefile`
macro that defines the path to the proper cross compiler tools.

For ones that need the tools, but not the musl-libc gcc,
there is $(CROSS_TOOLS_NOCC) that is all of them without gcc.
This is for musl-libc itself, as well as xen and the Linux kernel.
2017-04-08 13:23:34 -04:00
Trammell Hudson
3c07e27d73
prefix should not be empty 2017-04-07 09:51:15 -04:00
Trammell Hudson
3d79f51e4a
Build lvm command line utility (issue )
Replace libuuid with util-linux libuuid (and libblkid,
although we are not using libblkid right now).

This also requires a much larger coreboot cbfs, which was
fixed as part of issue .
2017-04-03 17:13:59 -04:00
Trammell Hudson
c40748aa25
Build time configuration for startup scripts and modules.
This addresses multiple issues:

* Issue : initrd is build fresh each time, so tracked files do not matter.
* Issue : build time configuration
* Issue : allows us to customize the startup experience
* Issue : manual start-xen will go away
* Issue : tpmtotp PCRs are updated after reading the secret
* Issue : insmod now meaures modules
2017-03-31 11:18:46 -04:00
Trammell Hudson
ab0476ad2f
Remove populate-lib, rework libraries and kernel module installation.
The populate-lib program was buggy on some systems and could accidentally
introduce unwanted libraries into the initrd.  The Makefile now uses the
modules' $(module_libraries) variable to select which libraries should be
installed into the initrd.

Kernel modules are now stripped and installed using a similar system.
2017-03-29 15:15:03 -04:00
Trammell Hudson
aa473a0dea
limit parallel make load (issue ) 2017-03-22 11:53:08 -04:00
Trammell Hudson
356e9307a2
parameterize number of parallel make jobs (issue ) 2017-03-18 10:50:37 -04:00
Trammell Hudson
1411dffb6a
Make modules not depend on build path (issue ).
Use --prefix="" to ensure that no destination paths are in libraries.

Use -fdebug-prefix-map to rewrite build path so that it does not
appear in the executables.

Use -gno-record-gcc-switches to ensure that the -fdebug-prefix-map
does not appear in the executables.
2017-01-28 13:14:56 -05:00
Trammell Hudson
58ff95818e
Working build with musl-libc cross compiler (issue ).
Pass in the --host argument to all of the various programs
that need to treat the configure scripts as cross compilation
targets.

This removes all dependencies on the host libc (issue )
and adds some tools to the initrd (cryptsetup ).
2017-01-04 16:39:10 -05:00
Trammell Hudson
9273e252f6
Build initrd tools with musl-libc (issue ).
This adds compilations modules for musl-libc and kernel-headers.
The entire initrd (busybox, cryptsetup, gpgv, kexec, etc) can be built
with the much smaller libc and it appears to work with chroot.

Library paths are not set correctly and files are installed into
heads/install to make them accessible to other modules.  This prevents
the initrd from working without manual fixup; need to fix before
merging into master.

Build times have gone up since everything is being rebuilt more
often for some reason.
2016-12-29 18:23:08 -05:00
Trammell Hudson
5fd9878d28
Download and build almost all dependencies.
As part of issue , we should build all libraries and programs that we
deploy into the Heads initrd.  This modifies the module configurations
for all of them to install into heads/install so that we can build
against them.

Add dmsetup, cryptsetup and veritysetup (issue ).

Build gpgv 1.4 as a standalone tool (issue ).

Modify populate-lib to use the install directory by setting
LD_LIBRARY_PATH (issue ).
2016-12-28 12:45:12 -05:00
Trammell Hudson
ff5639a542
Build cryptsetup and install it into the initrd 2016-12-01 14:03:55 -05:00
Philipp Deppenwiese
5fd61f3e52
Update cryptsetup module and strip it down
Signed-off-by: Philipp Deppenwiese <zaolin@das-labor.org>
2016-11-29 20:24:01 +01:00
Trammell Hudson
18c9b2d808
cryptsetup for dm-verity support 2016-08-19 11:20:41 -04:00