Raspi2-3_GenImage Commit - r76:50170a27d411 · Collaboration Tremplin des Sciences

Added: KERNEL_REDUCE - less than 128MB used space, Added: REDUCE_ parameters

Jan Wagner -

r76:50170a27d411

parent child

Context file:

r76:50170a27d411

Collapse all files

bootstrap.d/99-reduce.sh created 644 +72 0

			@@ -0,0 +1,72
		1	#
		2	# Reduce system disk usage
		3	#
		4
		5	# Load utility functions
		6	. ./functions.sh
		7
		8	# Reduce the image size by various operations
		9	if [ "$ENABLE_REDUCE" = true ] ; then
		10	if [ "$REDUCE_APT" = true ] ; then
		11	# Install dpkg configuration file
		12	if [ "$REDUCE_DOC" = true ] \|\| [ "$REDUCE_MAN" = true ] ; then
		13	install_readonly files/dpkg/01nodoc "$R/etc/dpkg/dpkg.cfg.d/01nodoc"
		14	fi
		15
		16	# Install APT configuration files
		17	install_readonly files/apt/02nocache "$R/etc/apt/apt.conf.d/02nocache"
		18	install_readonly files/apt/03compress "$R/etc/apt/apt.conf.d/03compress"
		19	install_readonly files/apt/04norecommends "$R/etc/apt/apt.conf.d/04norecommends"
		20
		21	# Remove APT cache files
		22	rm -fr "$R/var/cache/apt/pkgcache.bin"
		23	rm -fr "$R/var/cache/apt/srcpkgcache.bin"
		24	fi
		25
		26	# Remove all doc files
		27	if [ "$REDUCE_DOC" = true ] ; then
		28	find "$R/usr/share/doc" -depth -type f ! -name copyright \| xargs rm \|\| true
		29	find "$R/usr/share/doc" -empty \| xargs rmdir \|\| true
		30	fi
		31
		32	# Remove all man pages and info files
		33	if [ "$REDUCE_MAN" = true ] ; then
		34	rm -rf "$R/usr/share/man" "$R/usr/share/groff" "$R/usr/share/info" "$R/usr/share/lintian" "$R/usr/share/linda" "$R/var/cache/man"
		35	fi
		36
		37	# Remove all locale translation files
		38	if [ "$REDUCE_LOCALE" = true ] ; then
		39	find "$R/usr/share/locale" -mindepth 1 -maxdepth 1 ! -name 'en' \| xargs rm -r
		40	fi
		41
		42	# Remove hwdb PCI device classes (experimental)
		43	if [ "$REDUCE_HWDB" = true ] ; then
		44	rm -fr "/lib/udev/hwdb.d/20-pci-*"
		45	fi
		46
		47	# Replace bash shell by dash shell (experimental)
		48	if [ "$REDUCE_BASH" = true ] ; then
		49	echo "Yes, do as I say!" \| chroot_exec apt-get purge -qq -y --force-yes bash
		50	chroot_exec update-alternatives --install /bin/bash bash /bin/dash 100
		51	fi
		52
		53	# Remove sound utils and libraries
		54	if [ "$ENABLE_SOUND" = false ] ; then
		55	chroot_exec apt-get -qq -y --force-yes purge alsa-utils libsamplerate0 libasound2 libasound2-data
		56	fi
		57
		58	# Re-install tools for managing kernel moduless
		59	chroot_exec apt-get -qq -y --force-yes install module-init-tools
		60
		61	# Remove GPU kernels
		62	if [ "$ENABLE_MINGPU" = true ] ; then
		63	rm -f "$R/boot/firmware/start.elf"
		64	rm -f "$R/boot/firmware/fixup.dat"
		65	rm -f "$R/boot/firmware/start_x.elf"
		66	rm -f "$R/boot/firmware/fixup_x.dat"
		67	fi
		68
		69	# Clean APT list of repositories
		70	rm -fr "$R/var/lib/apt/lists/*"
		71	chroot_exec apt-get -qq -y update
		72	fi

README.md +31 -1

              # rpi2-gen-image
              ## Introduction
              `rpi2-gen-image.sh` is an advanced Debian Linux bootstrapping shell script for generating Debian OS images for the Raspberry 2 (RPi2) computer. The script at this time only supports the bootstrapping of the current stable Debian 8 "jessie" release.
              ## Build dependencies
              The following list of Debian packages must be installed on the build system because they are essentially required for the bootstrapping process. The script will check if all required packages are installed and missing packages will be installed automatically if confirmed by the user.
                ```debootstrap debian-archive-keyring qemu-user-static binfmt-support dosfstools rsync bmap-tools whois git-core```
              ## Command-line parameters
              The script accepts certain command-line parameters to enable or disable specific OS features, services and configuration settings. These parameters are passed to the `rpi2-gen-image.sh` script via (simple) shell-variables. Unlike environment shell-variables (simple) shell-variables are defined at the beginning of the command-line call of the `rpi2-gen-image.sh` script.
              #####Command-line examples:
              ```shell
              ENABLE_UBOOT=true ./rpi2-gen-image.sh
              ENABLE_CONSOLE=false ENABLE_IPV6=false ./rpi2-gen-image.sh
              ENABLE_WM=xfce4 ENABLE_FBTURBO=true ENABLE_MINBASE=true ./rpi2-gen-image.sh
              ENABLE_HARDNET=true ENABLE_IPTABLES=true /rpi2-gen-image.sh
              APT_SERVER=ftp.de.debian.org APT_PROXY="http://127.0.0.1:3142/" ./rpi2-gen-image.sh
              ENABLE_MINBASE=true ./rpi2-gen-image.sh
              BUILD_KERNEL=true ENABLE_MINBASE=true ENABLE_IPV6=false ./rpi2-gen-image.sh
              BUILD_KERNEL=true KERNELSRC_DIR=/tmp/linux ./rpi2-gen-image.sh
              ENABLE_MINBASE=true ENABLE_REDUCE=true ENABLE_MINGPU=true BUILD_KERNEL=true ./rpi2-gen-image.sh
              ```
              #### APT settings:
              ##### `APT_SERVER`="ftp.debian.org"
              Set Debian packages server address. Choose a server from the list of Debian worldwide [mirror sites](https://www.debian.org/mirror/list). Using a nearby server will probably speed-up all required downloads within the bootstrapping process.
              ##### `APT_PROXY`=""
              Set Proxy server address. Using a local Proxy-Cache like `apt-cacher-ng` will speed-up the bootstrapping process because all required Debian packages will only be downloaded from the Debian mirror site once.
              ##### `APT_INCLUDES`=""
              A comma seperated list of additional packages to be installed during bootstrapping.
              #### General system settings:
              ##### `HOSTNAME`="rpi2-jessie"
              Set system host name. It's recommended that the host name is unique in the corresponding subnet.
              ##### `PASSWORD`="raspberry"
              Set system `root` password. The same password is used for the created user `pi`. It's **STRONGLY** recommended that you choose a custom password.
              ##### `DEFLOCAL`="en_US.UTF-8"
              Set default system locale. This setting can also be changed inside the running OS using the `dpkg-reconfigure locales` command. The script variant `minbase` (ENABLE_MINBASE=true) doesn't install `locales`.
              ##### `TIMEZONE`="Europe/Berlin"
              Set default system timezone. All available timezones can be found in the `/usr/share/zoneinfo/` directory. This setting can also be changed inside the running OS using the `dpkg-reconfigure tzdata` command.
              ##### `EXPANDROOT`=true
              Expand the root partition and filesystem automatically on first boot.
              #### Keyboard settings:
              These options are used to configure keyboard layout in `/etc/default/keyboard` for console and Xorg. These settings can also be changed inside the running OS using the `dpkg-reconfigure keyboard-configuration` command.
              ##### `XKB_MODEL`=""
              Set the name of the model of your keyboard type.
              ##### `XKB_LAYOUT`=""
              Set the supported keyboard layout(s).
              ##### `XKB_VARIANT`=""
              Set the supported variant(s) of the keyboard layout(s).
              ##### `XKB_OPTIONS`=""
              Set extra xkb configuration options.
              #### Networking settings (DHCP):
              This setting is used to set up networking auto configuration in `/etc/systemd/network/eth.network`.
              #####`ENABLE_DHCP`=true
              Set the system to use DHCP. This requires an DHCP server.
              #### Networking settings (static):
              These settings are used to set up a static networking configuration in /etc/systemd/network/eth.network. The following static networking settings are only supported if `ENABLE_DHCP` was set to `false`.
              #####`NET_ADDRESS`=""
              Set a static IPv4 or IPv6 address and its prefix, separated by "/", eg. "192.169.0.3/24".
              #####`NET_GATEWAY`=""
              Set the IP address for the default gateway.
              #####`NET_DNS_1`=""
              Set the IP address for the first DNS server.
              #####`NET_DNS_2`=""
              Set the IP address for the second DNS server.
              #####`NET_DNS_DOMAINS`=""
              Set the default DNS search domains to use for non fully qualified host names.
              #####`NET_NTP_1`=""
              Set the IP address for the first NTP server.
              #####`NET_NTP_2`=""
              Set the IP address for the second NTP server.
              #### Basic system features:
              ##### `ENABLE_CONSOLE`=true
              Enable serial console interface. Recommended if no monitor or keyboard is connected to the RPi2. In case of problems fe. if the network (auto) configuration failed - the serial console can be used to access the system.
              ##### `ENABLE_IPV6`=true
              Enable IPv6 support. The network interface configuration is managed via systemd-networkd.
              ##### `ENABLE_SSHD`=true
              Install and enable OpenSSH service. The default configuration of the service doesn't allow `root` to login. Please use the user `pi` instead and `su -` or `sudo` to execute commands as root.
              ##### `ENABLE_RSYSLOG`=true
              If set to false, disable and uninstall rsyslog (so logs will be available only
              in journal files)
              ##### `ENABLE_SOUND`=true
              Enable sound hardware and install Advanced Linux Sound Architecture.
              ##### `ENABLE_HWRANDOM`=true
              Enable Hardware Random Number Generator. Strong random numbers are important for most network based communications that use encryption. It's recommended to be enabled.
              ##### `ENABLE_MINGPU`=false
              Minimize the amount of shared memory reserved for the GPU. It doesn't seem to be possible to fully disable the GPU.
              ##### `ENABLE_DBUS`=true
              Install and enable D-Bus message bus. Please note that systemd should work without D-bus but it's recommended to be enabled.
              ##### `ENABLE_XORG`=false
              Install Xorg open-source X Window System.
              ##### `ENABLE_WM`=""
              Install a user defined window manager for the X Window System. To make sure all X related package dependencies are getting installed `ENABLE_XORG` will automatically get enabled if `ENABLE_WM` is used. The `rpi2-gen-image.sh` script has been tested with the following list of window managers: `blackbox`, `openbox`, `fluxbox`, `jwm`, `dwm`, `xfce4`, `awesome`.
              #### Advanced system features:
              ##### `ENABLE_MINBASE`=false
              Use debootstrap script variant `minbase` which only includes essential packages and apt. This will reduce the disk usage by about 65 MB.
              ##### `ENABLE_REDUCE`=false
-             Reduce the disk usage by deleting all man pages and doc files (harsh). APT will be configured to use compressed package repository lists and no package caching files. If `ENABLE_MINGPU`=true unnecessary start.elf and fixup.dat files will also be removed from the boot partition. This will make it possible to generate output OS images with about 160MB of used disk space. It's recommended to use this parameter in combination with `ENABLE_MINBASE`=true.
+             Reduce the disk usage by deleting packages and files. See `REDUCE_*` parameters for detailed information.
              ##### `ENABLE_UBOOT`=false
              Replace default RPi2 second stage bootloader (bootcode.bin) with U-Boot bootloader. U-Boot can boot images via the network using the BOOTP/TFTP protocol.
              ##### `ENABLE_FBTURBO`=false
              Install and enable the hardware accelerated Xorg video driver `fbturbo`. Please note that this driver is currently limited to hardware accelerated window moving and scrolling.
              ##### `ENABLE_IPTABLES`=false
              Enable iptables IPv4/IPv6 firewall. Simplified ruleset: Allow all outgoing connections. Block all incoming connections except to OpenSSH service.
              ##### `ENABLE_USER`=true
              Create pi user with password raspberry
              ##### `ENABLE_ROOT`=true
              Set root user password so root login will be enabled
              ##### `ENABLE_ROOT_SSH`=true
              Enable password root login via SSH. May be a security risk with default
              password, use only in trusted environments.
              ##### `ENABLE_HARDNET`=false
              Enable IPv4/IPv6 network stack hardening settings.
              ##### `ENABLE_SPLITFS`=false
              Enable having root partition on an USB drive by creating two image files: one for the `/boot/firmware` mount point, and another for `/`.
              ##### `CHROOT_SCRIPTS`=""
              Path to a directory with scripts that should be run in the chroot before the image is finally built. Every executable file in this direcory is run in lexicographical order.
              #### Kernel compilation:
              ##### `BUILD_KERNEL`=false
              Build and install the latest RPi2 Linux kernel. Currently only the default RPi2 kernel configuration is used. Detailed configuration parameters for customizing the kernel and minor bug fixes still need to get implemented. feel free to help.
+             ##### `KERNEL_REDUCE`=false
+             Reduce the size of the generated kernel by removing unwanted device, network and filesystem drivers (experimental).
              ##### `KERNEL_THREADS`=1
              Number of parallel kernel building threads. If the parameter is left untouched the script will automatically determine the number of CPU cores to set the number of parallel threads to speed the kernel compilation.
              ##### `KERNEL_HEADERS`=true
              Install kernel headers with built kernel.
              ##### `KERNEL_MENUCONFIG`=false
              Start `make menuconfig` interactive menu-driven kernel configuration. The script will continue after `make menuconfig` was terminated.
              ##### `KERNEL_REMOVESRC`=true
              Remove all kernel sources from the generated OS image after it was built and installed.
              ##### `KERNELSRC_DIR`=""
              Path to a directory of [RaspberryPi Linux kernel sources](https://github.com/raspberrypi/linux) that will be copied, configured, build and installed inside the chroot.
              ##### `KERNELSRC_CLEAN`=false
              Clean the existing kernel sources directory `KERNELSRC_DIR` (using `make mrproper`) after it was copied to the chroot and before the compilation of the kernel has started. This setting will be ignored if no `KERNELSRC_DIR` was specified or if `KERNELSRC_PREBUILT`=true.
              ##### `KERNELSRC_CONFIG`=true
              Run `make bcm2709_defconfig` (and optional `make menuconfig`) to configure the kernel sources before building. This setting is automatically set to `true` if no existing kernel sources directory was specified using `KERNELSRC_DIR`. This settings is ignored if `KERNELSRC_PREBUILT`=true.
              ##### `KERNELSRC_PREBUILT`=false
              With this parameter set to true the script expects the existing kernel sources directory to be already successfully cross-compiled. The parameters `KERNELSRC_CLEAN`, `KERNELSRC_CONFIG` and `KERNEL_MENUCONFIG` are ignored and no kernel compilation tasks are performed.
+             #### Reduce disk usage:
+             The following list of parameters is ignored if `ENABLE_REDUCE`=false.
+             ##### `REDUCE_APT`=true
+             Configure APT to use compressed package repository lists and no package caching files.
+             ##### `REDUCE_DOC`=true
+             Remove all doc files (harsh). Configure APT to not include doc files on future `apt-get` package installations.
+             ##### `REDUCE_MAN`=true
+             Remove all man pages and info files (harsh).  Configure APT to not include man pages on future `apt-get` package installations.
+             ##### `REDUCE_VIM`=true
+             Replace `vim-tiny` package by `levee` a tiny vim clone.
+             ##### `REDUCE_BASH`=false
+             Remove `bash` package and switch to `dash` shell (experimental).
+             ##### `REDUCE_HWDB`=true
+             Remove PCI related hwdb files (experimental).
+             ##### `REDUCE_SSHD`=true
+             Replace `openssh-server` with dropbear.
+             ##### `REDUCE_LOCALE`=true
+             Remove all `locale` translation files.
              ## Understanding the script
              The functions of this script that are required for the different stages of the bootstrapping are split up into single files located inside the `bootstrap.d` directory. During the bootstrapping every script in this directory gets executed in lexicographical order:
              | Script | Description |
              | --- | --- |
              | `10-bootstrap.sh` | Debootstrap basic system |
              | `11-apt.sh` | Setup APT repositories |
              | `12-locale.sh` | Setup Locales and keyboard settings |
              | `13-kernel.sh` | Build and install RPi2 Kernel |
              | `20-networking.sh` | Setup Networking |
              | `21-firewall.sh` | Setup Firewall |
              | `30-security.sh` | Setup Users and Security settings |
              | `31-logging.sh` | Setup Logging |
              | `41-uboot.sh` | Build and Setup U-Boot |
              | `42-fbturbo.sh` | Build and Setup fbturbo Xorg driver |
              | `50-firstboot.sh` | First boot actions |
              All the required configuration files that will be copied to the generated OS image are located inside the `files` directory. It is not recommended to modify these configuration files manually.
              | Directory | Description |
              | --- | --- |
              | `boot` | Boot and RPi2 configuration files |
              | `dpkg` | Package Manager configuration |
              | `firstboot` | Scripts that get executed on first boot  |
              | `iptables` | Firewall configuration files |
              | `locales` | Locales configuration |
              | `modules` | Kernel Modules configuration |
              | `mount` | Fstab configuration |
              | `network` | Networking configuration files |
              | `sysctl.d` | Swapping and Network Hardening configuration |
              | `xorg` | fbturbo Xorg driver configuration |
              ## Logging of the bootstrapping process
              All information related to the bootstrapping process and the commands executed by the `rpi2-gen-image.sh` script can easily be saved into a logfile. The common shell command `script` can be used for this purpose:
              ```shell
              script -c 'APT_SERVER=ftp.de.debian.org ./rpi2-gen-image.sh' ./build.log
              ```
              ## Flashing the image file
              After the image file was successfully created by the `rpi2-gen-image.sh` script it can be copied to the microSD card that will be used by the RPi2 computer. This can be performed by using the tools `bmaptool` or `dd`. Using `bmaptool` will probably speed-up the copy process because `bmaptool` copies more wisely than `dd`.
              #####Flashing examples:
              ```shell
              bmaptool copy ./images/jessie/2015-12-13-debian-jessie.img /dev/mmcblk0
              dd bs=4M if=./images/jessie/2015-12-13-debian-jessie.img of=/dev/mmcblk0
              ```
              If you have set `ENABLE_SPLITFS`, copy the `-frmw` image on the microSD card, then the `-root` one on the USB drive:
              ```shell
              bmaptool copy ./images/jessie/2015-12-13-debian-jessie-frmw.img /dev/mmcblk0
              bmaptool copy ./images/jessie/2015-12-13-debian-jessie-root.img /dev/sdc
              ```

bootstrap.d/10-bootstrap.sh +1 -1

              #
              # Debootstrap basic system
              #
              # Load utility functions
              . ./functions.sh
              # Base debootstrap (unpack only)
              if [ "$ENABLE_MINBASE" = true ] ; then
-               http_proxy=${APT_PROXY} debootstrap --arch="${RELEASE_ARCH}" --variant=minbase --foreign --include="${APT_INCLUDES}" "${RELEASE}" "$R" "http://${APT_SERVER}/debian"
+               http_proxy=${APT_PROXY} debootstrap --arch="${RELEASE_ARCH}" --foreign --variant=minbase --include="${APT_INCLUDES}" "${RELEASE}" "$R" "http://${APT_SERVER}/debian"
              else
                http_proxy=${APT_PROXY} debootstrap --arch="${RELEASE_ARCH}" --foreign --include="${APT_INCLUDES}" "${RELEASE}" "$R" "http://${APT_SERVER}/debian"
              fi
              # Copy qemu emulator binary to chroot
              cp "${QEMU_BINARY}" "$R/usr/bin"
              # Copy debian-archive-keyring.pgp
              mkdir -p "$R/usr/share/keyrings"
              cp /usr/share/keyrings/debian-archive-keyring.gpg "$R/usr/share/keyrings/debian-archive-keyring.gpg"
              # Complete the bootstrapping process
              chroot_exec /debootstrap/debootstrap --second-stage
              # Mount required filesystems
              mount -t proc none "$R/proc"
              mount -t sysfs none "$R/sys"
              mount --bind /dev/pts "$R/dev/pts"

bootstrap.d/13-kernel.sh +38 -1

              #
              # Build and Setup RPi2 Kernel
              #
              # Load utility functions
              . ./functions.sh
              # Fetch and build latest raspberry kernel
              if [ "$BUILD_KERNEL" = true ] ; then
                # Setup source directory
                mkdir -p "$R/usr/src"
                # Copy existing kernel sources into chroot directory
                if [ -n "$KERNELSRC_DIR" ] && [ -d "$KERNELSRC_DIR" ] ; then
                  # Copy kernel sources
                  cp -r "${KERNELSRC_DIR}" "${R}/usr/src"
                  # Clean the kernel sources
                  if [ "$KERNELSRC_CLEAN" = true ] && [ "$KERNELSRC_PREBUILT" = false ] ; then
                    make -C "$R/usr/src/linux" ARCH="${KERNEL_ARCH}" CROSS_COMPILE="${CROSS_COMPILE}" mrproper
                  fi
                else # KERNELSRC_DIR=""
                  # Fetch current raspberrypi kernel sources
                  git -C "$R/usr/src" clone --depth=1 https://github.com/raspberrypi/linux
                fi
                # Calculate optimal number of kernel building threads
                if [ "$KERNEL_THREADS" = "1" ] && [ -r /proc/cpuinfo ] ; then
                  KERNEL_THREADS=$(grep -c processor /proc/cpuinfo)
                fi
+               # Configure and build kernel
                if [ "$KERNELSRC_PREBUILT" = false ] ; then
+                 # Remove device, network and filesystem drivers from kernel configuration
+                 if [ "$KERNEL_REDUCE" = true ] ; then
+                   make -C "$R/usr/src/linux" ARCH="${KERNEL_ARCH}" CROSS_COMPILE="${CROSS_COMPILE}" "${KERNEL_DEFCONFIG}"
+                   sed -i\
+                   -e "s/\(^CONFIG_SND.*\=\).*/\1n/"\
+                   -e "s/\(^CONFIG_SOUND.*\=\).*/\1n/"\
+                   -e "s/\(^CONFIG_AC97.*\=\).*/\1n/"\
+                   -e "s/\(^CONFIG_VIDEO_.*\=\).*/\1n/"\
+                   -e "s/\(^CONFIG_MEDIA_TUNER.*\=\).*/\1n/"\
+                   -e "s/\(^CONFIG_DVB.*\=\)[ym]/\1n/"\
+                   -e "s/\(^CONFIG_REISERFS.*\=\).*/\1n/"\
+                   -e "s/\(^CONFIG_JFS.*\=\).*/\1n/"\
+                   -e "s/\(^CONFIG_XFS.*\=\).*/\1n/"\
+                   -e "s/\(^CONFIG_GFS2.*\=\).*/\1n/"\
+                   -e "s/\(^CONFIG_OCFS2.*\=\).*/\1n/"\
+                   -e "s/\(^CONFIG_BTRFS.*\=\).*/\1n/"\
+                   -e "s/\(^CONFIG_HFS.*\=\).*/\1n/"\
+                   -e "s/\(^CONFIG_JFFS2.*\=\)[ym]/\1n/"\
+                   -e "s/\(^CONFIG_UBIFS.*\=\).*/\1n/"\
+                   -e "s/\(^CONFIG_SQUASHFS.*\=\)[ym]/\1n/"\
+                   -e "s/\(^CONFIG_W1.*\=\)[ym]/\1n/"\
+                   -e "s/\(^CONFIG_HAMRADIO.*\=\).*/\1n/"\
+                   -e "s/\(^CONFIG_CAN.*\=\).*/\1n/"\
+                   -e "s/\(^CONFIG_IRDA.*\=\).*/\1n/"\
+                   -e "s/\(^CONFIG_BT_.*\=\).*/\1n/"\
+                   -e "s/\(^CONFIG_WIMAX.*\=\)[ym]/\1n/"\
+                   -e "s/\(^CONFIG_6LOWPAN.*\=\).*/\1n/"\
+                   -e "s/\(^CONFIG_IEEE802154.*\=\).*/\1n/"\
+                   -e "s/\(^CONFIG_NFC.*\=\).*/\1n/"\
+                   -e "s/\(^CONFIG_FB_TFT=.*\=\).*/\1n/"\
+                   -e "s/\(^CONFIG_TOUCHSCREEN.*\=\).*/\1n/"\
+                   -e "s/\(^CONFIG_USB_GSPCA_.*\=\).*/\1n/"\
+                   -e "s/\(^CONFIG_DRM.*\=\).*/\1n/"\
+                   "$R/usr/src/linux/.config"
+                 fi
                  if [ "$KERNELSRC_CONFIG" = true ] ; then
                    # Load default raspberry kernel configuration
                    make -C "$R/usr/src/linux" ARCH="${KERNEL_ARCH}" CROSS_COMPILE="${CROSS_COMPILE}" "${KERNEL_DEFCONFIG}"
                    # Start menu-driven kernel configuration (interactive)
                    if [ "$KERNEL_MENUCONFIG" = true ] ; then
                      make -C "$R/usr/src/linux" ARCH="${KERNEL_ARCH}" CROSS_COMPILE="${CROSS_COMPILE}" menuconfig
                    fi
                  fi
                  # Cross compile kernel and modules
                  make -C "$R/usr/src/linux" -j${KERNEL_THREADS} ARCH="${KERNEL_ARCH}" CROSS_COMPILE="${CROSS_COMPILE}" zImage modules dtbs
                fi
                # Check if kernel compilation was successful
                if [ ! -r "$R/usr/src/linux/arch/${KERNEL_ARCH}/boot/zImage" ] ; then
                  echo "error: kernel compilation failed! (zImage not found)"
                  cleanup
                  exit 1
                fi
                # Install kernel modules
                if [ "$ENABLE_REDUCE" = true ] ; then
                  make -C "$R/usr/src/linux" ARCH="${KERNEL_ARCH}" CROSS_COMPILE="${CROSS_COMPILE}" INSTALL_MOD_STRIP=1 INSTALL_MOD_PATH=../../.. modules_install
                else
                  make -C "$R/usr/src/linux" ARCH="${KERNEL_ARCH}" CROSS_COMPILE="${CROSS_COMPILE}" INSTALL_MOD_PATH=../../.. modules_install
                  # Install kernel firmware
                  make -C "$R/usr/src/linux" ARCH="${KERNEL_ARCH}" CROSS_COMPILE="${CROSS_COMPILE}" INSTALL_FW_PATH=../../../lib firmware_install
                fi
                # Install kernel headers
-               if [ "$KERNEL_HEADERS" = true ] ; then
+               if [ "$KERNEL_HEADERS" = true ] && [ "$KERNEL_REDUCE" = false ] ; then
                  make -C "$R/usr/src/linux" ARCH="${KERNEL_ARCH}" CROSS_COMPILE="${CROSS_COMPILE}" INSTALL_HDR_PATH=../.. headers_install
                fi
                # Prepare boot (firmware) directory
                mkdir "$R/boot/firmware/"
                # Get kernel release version
                KERNEL_VERSION=`cat "$R/usr/src/linux/include/config/kernel.release"`
                # Copy kernel configuration file to the boot directory
                cp "$R/usr/src/linux/.config" "$R/boot/config-${KERNEL_VERSION}"
                # Copy dts and dtb device tree sources and binaries
                mkdir "$R/boot/firmware/overlays/"
                cp "$R/usr/src/linux/arch/${KERNEL_ARCH}/boot/dts/"*.dtb "$R/boot/firmware/"
                cp "$R/usr/src/linux/arch/${KERNEL_ARCH}/boot/dts/overlays/"*.dtb* "$R/boot/firmware/overlays/"
                cp "$R/usr/src/linux/arch/${KERNEL_ARCH}/boot/dts/overlays/README" "$R/boot/firmware/overlays/"
                # Convert kernel zImage and copy it to the boot directory
                "$R/usr/src/linux/scripts/mkknlimg" "$R/usr/src/linux/arch/${KERNEL_ARCH}/boot/zImage" "$R/boot/firmware/kernel7.img"
                # Remove kernel sources
                if [ "$KERNEL_REMOVESRC" = true ] ; then
                  rm -fr "$R/usr/src/linux"
                fi
                # Install raspberry bootloader and flash-kernel packages
                chroot_exec apt-get -qq -y --no-install-recommends install raspberrypi-bootloader-nokernel
              else # BUILD_KERNEL=false
                # Kernel installation
                chroot_exec apt-get -qq -y --no-install-recommends install linux-image-"${COLLABORA_KERNEL}" raspberrypi-bootloader-nokernel
                # Install flash-kernel last so it doesn't try (and fail) to detect the platform in the chroot
                chroot_exec apt-get -qq -y install flash-kernel
                VMLINUZ="$(ls -1 $R/boot/vmlinuz-* | sort | tail -n 1)"
                [ -z "$VMLINUZ" ] && exit 1
                cp "$VMLINUZ" "$R/boot/firmware/kernel7.img"
              fi
              # Setup firmware boot cmdline
              if [ "$ENABLE_SPLITFS" = true ] ; then
                CMDLINE="dwc_otg.lpm_enable=0 root=/dev/sda1 rootfstype=ext4 rootflags=commit=100,data=writeback elevator=deadline rootwait net.ifnames=1 console=tty1 ${CMDLINE}"
              else
                CMDLINE="dwc_otg.lpm_enable=0 root=/dev/mmcblk0p2 rootfstype=ext4 rootflags=commit=100,data=writeback elevator=deadline rootwait net.ifnames=1 console=tty1 ${CMDLINE}"
              fi
              # Add serial console support
              if [ "$ENABLE_CONSOLE" = true ] ; then
                CMDLINE="${CMDLINE} console=ttyAMA0,115200 kgdboc=ttyAMA0,115200"
              fi
              # Remove IPv6 networking support
              if [ "$ENABLE_IPV6" = false ] ; then
                CMDLINE="${CMDLINE} ipv6.disable=1"
              fi
              # Install firmware boot cmdline
              echo "${CMDLINE}" > "$R/boot/firmware/cmdline.txt"
              # Install firmware config
              install_readonly files/boot/config.txt "$R/boot/firmware/config.txt"
              # Setup minimal GPU memory allocation size: 16MB (no X)
              if [ "$ENABLE_MINGPU" = true ] ; then
                echo "gpu_mem=16" >> "$R/boot/firmware/config.txt"
              fi
              # Create firmware configuration and cmdline symlinks
              ln -sf firmware/config.txt "$R/boot/config.txt"
              ln -sf firmware/cmdline.txt "$R/boot/cmdline.txt"
              # Install and setup kernel modules to load at boot
              mkdir -p "$R/lib/modules-load.d/"
              install_readonly files/modules/rpi2.conf "$R/lib/modules-load.d/rpi2.conf"
              # Load hardware random module at boot
              if [ "$ENABLE_HWRANDOM" = true ] ; then
                sed -i "s/^# bcm2708_rng/bcm2708_rng/" "$R/lib/modules-load.d/rpi2.conf"
              fi
              # Load sound module at boot
              if [ "$ENABLE_SOUND" = true ] ; then
                sed -i "s/^# snd_bcm2835/snd_bcm2835/" "$R/lib/modules-load.d/rpi2.conf"
              fi
              # Install kernel modules blacklist
              mkdir -p "$R/etc/modprobe.d/"
              install_readonly files/modules/raspi-blacklist.conf "$R/etc/modprobe.d/raspi-blacklist.conf"
              # Install and setup fstab
              install_readonly files/mount/fstab "$R/etc/fstab"
              if [ "$ENABLE_SPLITFS" = true ] ; then
                sed -i 's/mmcblk0p2/sda1/' "$R/etc/fstab"
              fi
              # Install sysctl.d configuration files
              install_readonly files/sysctl.d/81-rpi-vm.conf "$R/etc/sysctl.d/81-rpi-vm.conf"

bootstrap.d/50-firstboot.sh +1 -1

              #
              # First boot actions
              #
              # Load utility functions
              . ./functions.sh
              # Prepare rc.firstboot script
              cat files/firstboot/10-begin.sh > "$R/etc/rc.firstboot"
              # Ensure openssh server host keys are regenerated on first boot
-             if [ "$ENABLE_SSHD" = true ] ; then
+             if [ "$ENABLE_SSHD" = true ] && [ "$ENABLE_REDUCE" = false ]; then
                cat files/firstboot/21-generate-ssh-keys.sh >> "$R/etc/rc.firstboot"
                rm -f "$R/etc/ssh/ssh_host_*"
              fi
              # Prepare filesystem auto expand
              if [ "$EXPANDROOT" = true ] ; then
                cat files/firstboot/22-expandroot.sh >> "$R/etc/rc.firstboot"
              fi
              # Ensure that dbus machine-id exists
              cat files/firstboot/23-generate-machineid.sh >> "$R/etc/rc.firstboot"
              # Create /etc/resolv.conf symlink
              cat files/firstboot/24-create-resolv-symlink.sh >> "$R/etc/rc.firstboot"
              # Finalize rc.firstboot script
              cat files/firstboot/99-finish.sh >> "$R/etc/rc.firstboot"
              chmod +x "$R/etc/rc.firstboot"
              # Add rc.firstboot script to rc.local
              sed -i '/exit 0/d' "$R/etc/rc.local"
              echo /etc/rc.firstboot >> "$R/etc/rc.local"
              echo exit 0 >> "$R/etc/rc.local"

files/firstboot/24-create-resolv-symlink.sh +10 -1

		@@ -1,4 +1,13
1	1	logger -t "rc.firstboot" "Creating /etc/resolv.conf symlink"
2		if [ -f "/run/systemd/resolve/resolv.conf" ] ; then
	2
	3
	4	# Check if systemd resolve directory exists
	5	if [ -d "/run/systemd/resolve" ] ; then
	6	# Create resolv.conf file if it does not exists
	7	if [ ! -f "/run/systemd/resolve/resolv.conf" ] ; then
	8	touch /run/systemd/resolve/resolv.conf
	9	fi
	10
	11	# Create symlink to /etc/reolv.conf
3	12	ln -s /run/systemd/resolve/resolv.conf /etc/resolv.conf
4	13	fi

rpi2-gen-image.sh +77 -95

              #!/bin/sh
              ########################################################################
              # rpi2-gen-image.sh					   ver2a 12/2015
              #
              # Advanced debian "jessie" bootstrap script for RPi2
              #
              # This program is free software; you can redistribute it and/or
              # modify it under the terms of the GNU General Public License
              # as published by the Free Software Foundation; either version 2
              # of the License, or (at your option) any later version.
              #
              # some parts based on rpi2-build-image:
              # Copyright (C) 2015 Ryan Finnie <ryan@finnie.org>
              # Copyright (C) 2015 Luca Falavigna <dktrkranz@debian.org>
              ########################################################################
+             # Are we running as root?
+             if [ "$(id -u)" -ne "0" ] ; then
+               echo "error: this script must be executed with root privileges!"
+               exit 1
+             fi
              # Check if ./functions.sh script exists
              if [ ! -r "./functions.sh" ] ; then
                echo "error: './functions.sh' required script not found. please reinstall the latest script version!"
                exit 1
              fi
              # Load utility functions
              . ./functions.sh
              # Introduce settings
              set -e
              echo -n -e "\n#\n# RPi2 Bootstrap Settings\n#\n"
              set -x
              # Debian release
              RELEASE=${RELEASE:=jessie}
              KERNEL_ARCH=${KERNEL_ARCH:=arm}
              RELEASE_ARCH=${RELEASE_ARCH:=armhf}
              CROSS_COMPILE=${CROSS_COMPILE:=arm-linux-gnueabihf-}
              COLLABORA_KERNEL=${COLLABORA_KERNEL:=3.18.0-trunk-rpi2}
              KERNEL_DEFCONFIG=${KERNEL_DEFCONFIG:=bcm2709_defconfig}
              QEMU_BINARY=${QEMU_BINARY:=/usr/bin/qemu-arm-static}
-             # Build settings
+             # Build directories
              BASEDIR=$(pwd)/images/${RELEASE}
              BUILDDIR=${BASEDIR}/build
+             R=${BUILDDIR}/chroot
              # General settings
              HOSTNAME=${HOSTNAME:=rpi2-${RELEASE}}
              PASSWORD=${PASSWORD:=raspberry}
              DEFLOCAL=${DEFLOCAL:="en_US.UTF-8"}
              TIMEZONE=${TIMEZONE:="Europe/Berlin"}
              EXPANDROOT=${EXPANDROOT:=true}
              # Keyboard settings
              XKB_MODEL=${XKB_MODEL:=""}
              XKB_LAYOUT=${XKB_LAYOUT:=""}
              XKB_VARIANT=${XKB_VARIANT:=""}
              XKB_OPTIONS=${XKB_OPTIONS:=""}
              # Network settings (DHCP)
              ENABLE_DHCP=${ENABLE_DHCP:=true}
              # Network settings (static)
-             # only used on ENABLE_DHCP=false
              NET_ADDRESS=${NET_ADDRESS:=""}
              NET_GATEWAY=${NET_GATEWAY:=""}
              NET_DNS_1=${NET_DNS_1:=""}
              NET_DNS_2=${NET_DNS_2:=""}
              NET_DNS_DOMAINS=${NET_DNS_DOMAINS:=""}
              NET_NTP_1=${NET_NTP_1:=""}
              NET_NTP_2=${NET_NTP_2:=""}
              # APT settings
              APT_PROXY=${APT_PROXY:=""}
              APT_SERVER=${APT_SERVER:="ftp.debian.org"}
              # Feature settings
              ENABLE_CONSOLE=${ENABLE_CONSOLE:=true}
              ENABLE_IPV6=${ENABLE_IPV6:=true}
              ENABLE_SSHD=${ENABLE_SSHD:=true}
              ENABLE_SOUND=${ENABLE_SOUND:=true}
              ENABLE_DBUS=${ENABLE_DBUS:=true}
              ENABLE_HWRANDOM=${ENABLE_HWRANDOM:=true}
              ENABLE_MINGPU=${ENABLE_MINGPU:=false}
              ENABLE_XORG=${ENABLE_XORG:=false}
              ENABLE_WM=${ENABLE_WM:=""}
              ENABLE_RSYSLOG=${ENABLE_RSYSLOG:=true}
              ENABLE_USER=${ENABLE_USER:=true}
              ENABLE_ROOT=${ENABLE_ROOT:=false}
              ENABLE_ROOT_SSH=${ENABLE_ROOT_SSH:=false}
              # Advanced settings
              ENABLE_MINBASE=${ENABLE_MINBASE:=false}
              ENABLE_REDUCE=${ENABLE_REDUCE:=flase}
              ENABLE_UBOOT=${ENABLE_UBOOT:=false}
              ENABLE_FBTURBO=${ENABLE_FBTURBO:=false}
              ENABLE_HARDNET=${ENABLE_HARDNET:=false}
              ENABLE_IPTABLES=${ENABLE_IPTABLES:=false}
              ENABLE_SPLITFS=${ENABLE_SPLITFS:=false}
              # Kernel compilation settings
              BUILD_KERNEL=${BUILD_KERNEL:=false}
+             KERNEL_REDUCE=${KERNEL_REDUCE:=false}
              KERNEL_THREADS=${KERNEL_THREADS:=1}
              KERNEL_HEADERS=${KERNEL_HEADERS:=true}
              KERNEL_MENUCONFIG=${KERNEL_MENUCONFIG:=false}
              KERNEL_REMOVESRC=${KERNEL_REMOVESRC:=true}
              # Kernel compilation from source directory settings
              KERNELSRC_DIR=${KERNELSRC_DIR:=""}
              KERNELSRC_CLEAN=${KERNELSRC_CLEAN:=false}
              KERNELSRC_CONFIG=${KERNELSRC_CONFIG:=true}
              KERNELSRC_PREBUILT=${KERNELSRC_PREBUILT:=false}
-             # Image chroot path
-             R=${BUILDDIR}/chroot
+             # Reduce disk usage settings
+             REDUCE_APT=${REDUCE_APT:=true}
+             REDUCE_DOC=${REDUCE_DOC:=true}
+             REDUCE_MAN=${REDUCE_MAN:=true}
+             REDUCE_VIM=${REDUCE_VIM:=true}
+             REDUCE_BASH=${REDUCE_BASH:=false}
+             REDUCE_HWDB=${REDUCE_HWDB:=true}
+             REDUCE_SSHD=${REDUCE_SSHD:=true}
+             REDUCE_LOCALE=${REDUCE_LOCALE:=true}
+             # Chroot scripts directory
              CHROOT_SCRIPTS=${CHROOT_SCRIPTS:=""}
-             # Packages required for bootstrapping
-             REQUIRED_PACKAGES="debootstrap debian-archive-keyring qemu-user-static binfmt-support dosfstools rsync bmap-tools whois git-core"
-             # Missing packages that need to be installed
-             MISSING_PACKAGES=""
              # Packages required in the chroot build environment
              APT_INCLUDES=${APT_INCLUDES:=""}
              APT_INCLUDES="${APT_INCLUDES},apt-transport-https,apt-utils,ca-certificates,debian-archive-keyring,dialog,sudo"
-             set +x
-             # Are we running as root?
-             if [ "$(id -u)" -ne "0" ] ; then
-               echo "error: this script must be executed with root privileges!"
-               exit 1
-             fi
-             # Check if ./bootstrap.d directory exists
-             if [ ! -d "./bootstrap.d/" ] ; then
-               echo "error: './bootstrap.d' required directory not found. please reinstall the latest script version!"
-               exit 1
-             fi
-             # Check if ./files directory exists
-             if [ ! -d "./files/" ] ; then
-               echo "error: './files' required directory not found. please reinstall the latest script version!"
-               exit 1
-             fi
-             # Check if specified KERNELSRC_DIR directory exists
-             if [ -n "$KERNELSRC_DIR" ] && [ ! -d "$KERNELSRC_DIR" ] ; then
-               echo "error: ${KERNELSRC_DIR} (KERNELSRC_DIR) specified directory not found!"
-               exit 1
-             fi
+             # Packages required for bootstrapping
+             REQUIRED_PACKAGES="debootstrap debian-archive-keyring qemu-user-static binfmt-support dosfstools rsync bmap-tools whois git-core"
+             MISSING_PACKAGES=""
-             # Check if specified CHROOT_SCRIPTS directory exists
-             if [ -n "$CHROOT_SCRIPTS" ] && [ ! -d "$CHROOT_SCRIPTS" ] ; then
-                echo "error: ${CHROOT_SCRIPTS} (CHROOT_SCRIPTS) specified directory not found!"
-                exit 1
-             fi
+             set +x
              # Add packages required for kernel cross compilation
              if [ "$BUILD_KERNEL" = true ] ; then
                REQUIRED_PACKAGES="${REQUIRED_PACKAGES} crossbuild-essential-armhf"
+             fi
-               if [ "$KERNEL_MENUCONFIG" = true ] ; then
-                 REQUIRED_PACKAGES="${REQUIRED_PACKAGES} ncurses-dev"
-               fi
+             # Add libncurses5 to enable kernel menuconfig
+             if [ "$KERNEL_MENUCONFIG" = true ] ; then
+               REQUIRED_PACKAGES="${REQUIRED_PACKAGES} libncurses5-dev"
              fi
-             # Check if all required packages are installed
+             # Check if all required packages are installed on the build system
              for package in $REQUIRED_PACKAGES ; do
                if [ "`dpkg-query -W -f='${Status}' $package`" != "install ok installed" ] ; then
                  MISSING_PACKAGES="${MISSING_PACKAGES} $package"
                fi
              done
              # Ask if missing packages should get installed right now
              if [ -n "$MISSING_PACKAGES" ] ; then
                echo "the following packages needed by this script are not installed:"
                echo "$MISSING_PACKAGES"
                echo -n "\ndo you want to install the missing packages right now? [y/n] "
                read confirm
-               if [ "$confirm" != "y" ] ; then
-                 exit 1
-               fi
+               [ "$confirm" != "y" ] && exit 1
              fi
              # Make sure all required packages are installed
              apt-get -qq -y install ${REQUIRED_PACKAGES}
+             # Check if ./bootstrap.d directory exists
+             if [ ! -d "./bootstrap.d/" ] ; then
+               echo "error: './bootstrap.d' required directory not found!"
+               exit 1
+             fi
+             # Check if ./files directory exists
+             if [ ! -d "./files/" ] ; then
+               echo "error: './files' required directory not found!"
+               exit 1
+             fi
+             # Check if specified KERNELSRC_DIR directory exists
+             if [ -n "$KERNELSRC_DIR" ] && [ ! -d "$KERNELSRC_DIR" ] ; then
+               echo "error: '${KERNELSRC_DIR}' specified directory not found (KERNELSRC_DIR)!"
+               exit 1
+             fi
+             # Check if specified CHROOT_SCRIPTS directory exists
+             if [ -n "$CHROOT_SCRIPTS" ] && [ ! -d "$CHROOT_SCRIPTS" ] ; then
+                echo "error: ${CHROOT_SCRIPTS} specified directory not found (CHROOT_SCRIPTS)!"
+                exit 1
+             fi
              # Don't clobber an old build
              if [ -e "$BUILDDIR" ] ; then
                echo "error: directory ${BUILDDIR} already exists, not proceeding"
                exit 1
              fi
              # Setup chroot directory
              mkdir -p "$R"
              # Check if build directory has enough of free disk space >512MB
              if [ "$(df --output=avail ${BUILDDIR} | sed "1d")" -le "524288" ] ; then
-               echo "error: ${BUILDDIR} not enough space left on this partition to generate the output image!"
+               echo "error: ${BUILDDIR} not enough space left to generate the output image!"
                exit 1
              fi
-             # Warn if build directory has low free disk space <1024MB
-             if [ "$(df --output=avail ${BUILDDIR} | sed "1d")" -le "1048576" ] ; then
-               echo `df -h --output=avail ${BUILDDIR} | sed "1 s|.*Avail|warning: $partition is low on free space:|"`
-             fi
              set -x
              # Call "cleanup" function on various signals and errors
              trap cleanup 0 1 2 3 6
              # Add required packages for the minbase installation
              if [ "$ENABLE_MINBASE" = true ] ; then
                APT_INCLUDES="${APT_INCLUDES},vim-tiny,netbase,net-tools"
              else
                APT_INCLUDES="${APT_INCLUDES},locales,keyboard-configuration,console-setup"
              fi
              # Add parted package, required to get partprobe utility
              if [ "$EXPANDROOT" = true ] ; then
                APT_INCLUDES="${APT_INCLUDES},parted"
              fi
              # Add dbus package, recommended if using systemd
              if [ "$ENABLE_DBUS" = true ] ; then
                APT_INCLUDES="${APT_INCLUDES},dbus"
              fi
              # Add iptables IPv4/IPv6 package
              if [ "$ENABLE_IPTABLES" = true ] ; then
                APT_INCLUDES="${APT_INCLUDES},iptables"
              fi
              # Add openssh server package
              if [ "$ENABLE_SSHD" = true ] ; then
                APT_INCLUDES="${APT_INCLUDES},openssh-server"
              fi
              # Add alsa-utils package
              if [ "$ENABLE_SOUND" = true ] ; then
                APT_INCLUDES="${APT_INCLUDES},alsa-utils"
              fi
              # Add rng-tools package
              if [ "$ENABLE_HWRANDOM" = true ] ; then
                APT_INCLUDES="${APT_INCLUDES},rng-tools"
              fi
              # Add fbturbo video driver
              if [ "$ENABLE_FBTURBO" = true ] ; then
                # Enable xorg package dependencies
                ENABLE_XORG=true
              fi
              # Add user defined window manager package
              if [ -n "$ENABLE_WM" ] ; then
                APT_INCLUDES="${APT_INCLUDES},${ENABLE_WM}"
                # Enable xorg package dependencies
                ENABLE_XORG=true
              fi
              # Add xorg package
              if [ "$ENABLE_XORG" = true ] ; then
                APT_INCLUDES="${APT_INCLUDES},xorg"
              fi
-             # Set KERNELSRC_CONFIG=true
+             # Replace selected packages with smaller clones
+             if [ "$ENABLE_REDUCE" = true ] ; then
+               # Add levee package instead of vim-tiny
+               if [ "$REDUCE_VIM" = true ] ; then
+                 APT_INCLUDES="$(echo ${APT_INCLUDES} | sed "s/vim-tiny/levee/")"
+               fi
+               # Add dropbear package instead of openssh-server
+               if [ "$REDUCE_SSHD" = true ] ; then
+                 APT_INCLUDES="$(echo ${APT_INCLUDES} | sed "s/openssh-server/dropbear/")"
+               fi
+             fi
+             # Configure kernel sources if no KERNELSRC_DIR
              if [ "$BUILD_KERNEL" = true ] && [ -z "$KERNELSRC_DIR" ] ; then
                KERNELSRC_CONFIG=true
              fi
-             ## MAIN bootstrap
+             # Configure reduced kernel
+             if [ "$KERNEL_REDUCE" = true ] ; then
+               KERNELSRC_CONFIG=false
+             fi
+             # Execute bootstrap scripts
              for SCRIPT in bootstrap.d/*.sh; do
-               # Execute bootstrap scripts (lexicographical order)
-               head -n 3 "$SCRIPT"
                . "$SCRIPT"
              done
-             ## Custom bootstrap scripts
+             ## Execute custom bootstrap scripts
              if [ -d "custom.d" ] ; then
-               # Execute custom bootstrap scripts (lexicographical order)
-               for SCRIPT in custom.d/*.sh; do
                  . "$SCRIPT"
                done
              fi
-             # Invoke custom scripts
+             # Execute custom scripts inside the chroot
              if [ -n "$CHROOT_SCRIPTS" ] && [ -d "$CHROOT_SCRIPTS" ] ; then
                cp -r "${CHROOT_SCRIPTS}" "${R}/chroot_scripts"
-               # Execute scripts inside the chroot (lexicographical order)
-               chroot_exec /bin/bash -x <<'EOF'
              for SCRIPT in /chroot_scripts/* ; do
                if [ -f $SCRIPT -a -x $SCRIPT ] ; then
                  $SCRIPT
                fi
              done
              EOF
                rm -rf "$R/chroot_scripts"
              fi
              # Remove apt-utils
              chroot_exec apt-get purge -qq -y --force-yes apt-utils
-             # Reduce the image size by removing and compressing
-             if [ "$ENABLE_REDUCE" = true ] ; then
-               # Install dpkg configuration fragment file
-               install_readonly files/dpkg/01nodoc "$R/etc/dpkg/dpkg.cfg.d/01nodoc"
-               # Install APT configuration fragment files
-               install_readonly files/apt/02nocache "$R/etc/apt/apt.conf.d/02nocache"
-               install_readonly files/apt/03compress "$R/etc/apt/apt.conf.d/03compress"
-               install_readonly files/apt/04norecommends "$R/etc/apt/apt.conf.d/04norecommends"
-               # Remove APT cache files
-               rm -fr "$R/var/cache/apt/pkgcache.bin"
-               rm -fr "$R/var/cache/apt/srcpkgcache.bin"
-               # Remove all doc and man files
-               find "$R/usr/share/doc" -depth -type f ! -name copyright | xargs rm || true
-               find "$R/usr/share/doc" -empty | xargs rmdir || true
-               rm -rf "$R/usr/share/man" "$R/usr/share/groff" "$R/usr/share/info" "$R/usr/share/lintian" "$R/usr/share/linda" "$R/var/cache/man"
-               # Remove all translation files
-               find "$R/usr/share/locale" -mindepth 1 -maxdepth 1 ! -name 'en' | xargs rm -r
-               # Clean APT list of repositories
-               rm -fr "$R/var/lib/apt/lists/*"
-               chroot_exec apt-get -qq -y update
-               # Remove GPU kernels
-               if [ "$ENABLE_MINGPU" = true ] ; then
-                 rm -f "$R/boot/firmware/start.elf"
-                 rm -f "$R/boot/firmware/fixup.dat"
-                 rm -f "$R/boot/firmware/start_x.elf"
-                 rm -f "$R/boot/firmware/fixup_x.dat"
-               fi
-             fi
              # APT Cleanup
              chroot_exec apt-get -y clean
              chroot_exec apt-get -y autoclean
              chroot_exec apt-get -y autoremove
              # Unmount mounted filesystems
              umount -l "$R/proc"
              umount -l "$R/sys"
              # Clean up directories
              rm -rf "$R/run"
              rm -rf "$R/tmp/*"
              # Clean up files
              rm -f "$R/etc/apt/sources.list.save"
              rm -f "$R/etc/resolvconf/resolv.conf.d/original"
              rm -f "$R/etc/*-"
              rm -f "$R/root/.bash_history"
              rm -f "$R/var/lib/urandom/random-seed"
              rm -f "$R/var/lib/dbus/machine-id"
              rm -f "$R/etc/machine-id"
              rm -f "$R/etc/apt/apt.conf.d/10proxy"
              rm -f "$R/etc/resolv.conf"
              rm -f "${R}${QEMU_BINARY}"
              # Calculate size of the chroot directory in KB
              CHROOT_SIZE=$(expr `du -s "$R" | awk '{ print $1 }'`)
              # Calculate the amount of needed 512 Byte sectors
              TABLE_SECTORS=$(expr 1 \* 1024 \* 1024 \/ 512)
              FRMW_SECTORS=$(expr 64 \* 1024 \* 1024 \/ 512)
              ROOT_OFFSET=$(expr ${TABLE_SECTORS} + ${FRMW_SECTORS})
              # The root partition is EXT4
              # This means more space than the actual used space of the chroot is used.
              # As overhead for journaling and reserved blocks 20% are added.
              ROOT_SECTORS=$(expr $(expr ${CHROOT_SIZE} + ${CHROOT_SIZE} \/ 100 \* 20) \* 1024 \/ 512)
              # Calculate required image size in 512 Byte sectors
              IMAGE_SECTORS=$(expr ${TABLE_SECTORS} + ${FRMW_SECTORS} + ${ROOT_SECTORS})
              # Prepare date string for image file name
              DATE="$(date +%Y-%m-%d)"
              # Prepare image file
              if [ "$ENABLE_SPLITFS" = true ] ; then
                dd if=/dev/zero of="$BASEDIR/${DATE}-debian-${RELEASE}-frmw.img" bs=512 count=${TABLE_SECTORS}
                dd if=/dev/zero of="$BASEDIR/${DATE}-debian-${RELEASE}-frmw.img" bs=512 count=0 seek=${FRMW_SECTORS}
                dd if=/dev/zero of="$BASEDIR/${DATE}-debian-${RELEASE}-root.img" bs=512 count=${TABLE_SECTORS}
                dd if=/dev/zero of="$BASEDIR/${DATE}-debian-${RELEASE}-root.img" bs=512 count=0 seek=${ROOT_SECTORS}
                # Write partition tables
                sfdisk -q -L -f "$BASEDIR/${DATE}-debian-${RELEASE}-frmw.img" <<EOM
              unit: sectors
 : start=   ${TABLE_SECTORS}, size=   ${FRMW_SECTORS}, Id= c, bootable
 : start=                  0, size=                 0, Id= 0
 : start=                  0, size=                 0, Id= 0
 : start=                  0, size=                 0, Id= 0
              EOM
                sfdisk -q -L -f "$BASEDIR/${DATE}-debian-${RELEASE}-root.img" <<EOM
              unit: sectors
 : start=   ${TABLE_SECTORS}, size=   ${ROOT_SECTORS}, Id=83
 : start=                  0, size=                 0, Id= 0
 : start=                  0, size=                 0, Id= 0
 : start=                  0, size=                 0, Id= 0
              EOM
                # Setup temporary loop devices
                FRMW_LOOP="$(losetup -o 1M --sizelimit 64M -f --show $BASEDIR/${DATE}-debian-${RELEASE}-frmw.img)"
                ROOT_LOOP="$(losetup -o 1M -f --show $BASEDIR/${DATE}-debian-${RELEASE}-root.img)"
              else
                dd if=/dev/zero of="$BASEDIR/${DATE}-debian-${RELEASE}.img" bs=512 count=${TABLE_SECTORS}
                dd if=/dev/zero of="$BASEDIR/${DATE}-debian-${RELEASE}.img" bs=512 count=0 seek=${IMAGE_SECTORS}
                # Write partition table
                sfdisk -q -f "$BASEDIR/${DATE}-debian-${RELEASE}.img" <<EOM
              unit: sectors
 : start=   ${TABLE_SECTORS}, size=   ${FRMW_SECTORS}, Id= c, bootable
 : start=     ${ROOT_OFFSET}, size=   ${ROOT_SECTORS}, Id=83
 : start=                  0, size=                 0, Id= 0
 : start=                  0, size=                 0, Id= 0
              EOM
                # Setup temporary loop devices
                FRMW_LOOP="$(losetup -o 1M --sizelimit 64M -f --show $BASEDIR/${DATE}-debian-${RELEASE}.img)"
                ROOT_LOOP="$(losetup -o 65M -f --show $BASEDIR/${DATE}-debian-${RELEASE}.img)"
              fi
              # Build filesystems
              mkfs.vfat "$FRMW_LOOP"
              mkfs.ext4 "$ROOT_LOOP"
              # Mount the temporary loop devices
              mkdir -p "$BUILDDIR/mount"
              mount "$ROOT_LOOP" "$BUILDDIR/mount"
              mkdir -p "$BUILDDIR/mount/boot/firmware"
              mount "$FRMW_LOOP" "$BUILDDIR/mount/boot/firmware"
              # Copy all files from the chroot to the loop device mount point directory
              rsync -a "$R/" "$BUILDDIR/mount/"
              # Unmount all temporary loop devices and mount points
              cleanup
              # Create block map file(s) of image(s)
              if [ "$ENABLE_SPLITFS" = true ] ; then
                # Create block map files for "bmaptool"
                bmaptool create -o "$BASEDIR/${DATE}-debian-${RELEASE}-frmw.bmap" "$BASEDIR/${DATE}-debian-${RELEASE}-frmw.img"
                bmaptool create -o "$BASEDIR/${DATE}-debian-${RELEASE}-root.bmap" "$BASEDIR/${DATE}-debian-${RELEASE}-root.img"
                # Image was successfully created
                echo "$BASEDIR/${DATE}-debian-${RELEASE}-frmw.img ($(expr \( ${TABLE_SECTORS} + ${FRMW_SECTORS} \) \* 512 \/ 1024 \/ 1024)M)" ": successfully created"
                echo "$BASEDIR/${DATE}-debian-${RELEASE}-root.img ($(expr \( ${TABLE_SECTORS} + ${ROOT_SECTORS} \) \* 512 \/ 1024 \/ 1024)M)" ": successfully created"
              else
                # Create block map file for "bmaptool"
                bmaptool create -o "$BASEDIR/${DATE}-debian-${RELEASE}.bmap" "$BASEDIR/${DATE}-debian-${RELEASE}.img"
                # Image was successfully created
                echo "$BASEDIR/${DATE}-debian-${RELEASE}.img ($(expr \( ${TABLE_SECTORS} + ${FRMW_SECTORS} + ${ROOT_SECTORS} \) \* 512 \/ 1024 \/ 1024)M)" ": successfully created"
              fi

General Comments 0

Écrire
Preview

Vous devez vous connecter pour laisser un commentaire. Se connecter maintenant

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Dépôts
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages