##// END OF EJS Templates
Raspi2-3_GenImage
RSS

Cloner depuis https://github.com/drtyhlpr/rpi23-gen-image.git

cleanups
Unknown -
r389:bc6d966f8243
parent child
Show More
Show file before | Show file after | Hide comments
@@ -1,499 +1,502
1 1 # rpi23-gen-image
2 2 ## Introduction
3 3 `rpi23-gen-image.sh` is an advanced Debian Linux bootstrapping shell script for generating Debian OS images for Raspberry Pi 2 (RPi2) and Raspberry Pi 3 (RPi3) computers. The script at this time supports the bootstrapping of the Debian (armhf) releases `stretch` and `buster`. Raspberry Pi 3 images are generated for 32-bit mode only. Raspberry Pi 3 64-bit images can be generated using custom configuration parameters (```templates/rpi3-stretch-arm64-4.11.y```).
4 4
5 5 ## Build dependencies
6 6 The following list of Debian packages must be installed on the build system because they are essentially required for the bootstrapping process. The script will check if all required packages are installed and missing packages will be installed automatically if confirmed by the user.
7 7
8 8 ```debootstrap debian-archive-keyring qemu-user-static binfmt-support dosfstools rsync bmap-tools whois git bc psmisc dbus sudo```
9 9
10 10 It is recommended to configure the `rpi23-gen-image.sh` script to build and install the latest Raspberry Pi Linux kernel. For the RPi3 this is mandatory. Kernel compilation and linking will be performed on the build system using an ARM (armhf) cross-compiler toolchain.
11 11
12 The script has been tested using the default `crossbuild-essential-armhf` toolchain meta package on Debian Linux and `stretch` build systems. Please check the [Debian CrossToolchains Wiki](https://wiki.debian.org/CrossToolchains) for further information.
12 The script has been tested using the default `crossbuild-essential-armhf` toolchain meta package on Debian Linux `stretch` build systems. Please check the [Debian CrossToolchains Wiki](https://wiki.debian.org/CrossToolchains) for further information.
13 13
14 14 ## Command-line parameters
15 15 The script accepts certain command-line parameters to enable or disable specific OS features, services and configuration settings. These parameters are passed to the `rpi23-gen-image.sh` script via (simple) shell-variables. Unlike environment shell-variables (simple) shell-variables are defined at the beginning of the command-line call of the `rpi23-gen-image.sh` script.
16 16
17 17 ##### Command-line examples:
18 18 ```shell
19 19 ENABLE_UBOOT=true ./rpi23-gen-image.sh
20 20 ENABLE_CONSOLE=false ENABLE_IPV6=false ./rpi23-gen-image.sh
21 21 ENABLE_WM=xfce4 ENABLE_FBTURBO=true ENABLE_MINBASE=true ./rpi23-gen-image.sh
22 22 ENABLE_HARDNET=true ENABLE_IPTABLES=true /rpi23-gen-image.sh
23 23 APT_SERVER=ftp.de.debian.org APT_PROXY="http://127.0.0.1:3142/" ./rpi23-gen-image.sh
24 24 ENABLE_MINBASE=true ./rpi23-gen-image.sh
25 25 BUILD_KERNEL=true ENABLE_MINBASE=true ENABLE_IPV6=false ./rpi23-gen-image.sh
26 26 BUILD_KERNEL=true KERNELSRC_DIR=/tmp/linux ./rpi23-gen-image.sh
27 27 ENABLE_MINBASE=true ENABLE_REDUCE=true ENABLE_MINGPU=true BUILD_KERNEL=true ./rpi23-gen-image.sh
28 28 ENABLE_CRYPTFS=true CRYPTFS_PASSWORD=changeme EXPANDROOT=false ENABLE_MINBASE=true ENABLE_REDUCE=true ENABLE_MINGPU=true BUILD_KERNEL=true ./rpi23-gen-image.sh
29 29 RELEASE=stretch BUILD_KERNEL=true ./rpi23-gen-image.sh
30 30 RPI_MODEL=3 ENABLE_WIRELESS=true ENABLE_MINBASE=true BUILD_KERNEL=true ./rpi23-gen-image.sh
31 31 RELEASE=stretch RPI_MODEL=3 ENABLE_WIRELESS=true ENABLE_MINBASE=true BUILD_KERNEL=true ./rpi23-gen-image.sh
32 32 ```
33 33
34 34 ## Configuration template files
35 35 To avoid long lists of command-line parameters and to help to store the favourite parameter configurations the `rpi23-gen-image.sh` script supports so called configuration template files (`CONFIG_TEMPLATE`=template). These are simple text files located in the `./templates` directory that contain the list of configuration parameters that will be used. New configuration template files can be added to the `./templates` directory.
36 36
37 37 ##### Command-line examples:
38 38 ```shell
39 39 CONFIG_TEMPLATE=rpi3stretch ./rpi23-gen-image.sh
40 40 CONFIG_TEMPLATE=rpi2stretch ./rpi23-gen-image.sh
41 41 ```
42 42
43 43 ## Supported parameters and settings
44 44 #### APT settings:
45 45 ##### `APT_SERVER`="ftp.debian.org/debian"
46 46 Set Debian packages server address. Choose a server from the list of Debian worldwide [mirror sites](https://www.debian.org/mirror/list). Using a nearby server will probably speed-up all required downloads within the bootstrapping process.
47 47
48 48 ##### `APT_PROXY`=""
49 49 Set Proxy server address. Using a local Proxy-Cache like `apt-cacher-ng` will speed-up the bootstrapping process because all required Debian packages will only be downloaded from the Debian mirror site once. If `apt-cacher-ng` is running on default `http://127.0.0.1:3142` it is autodetected and you don't need to set this.
50 50
51 51 ##### `APT_INCLUDES`=""
52 52 A comma separated list of additional packages to be installed by debootstrap during bootstrapping.
53 53
54 54 ##### `APT_INCLUDES_LATE`=""
55 55 A comma separated list of additional packages to be installed by apt after bootstrapping and after APT sources are set up. This is useful for packages with pre-depends, which debootstrap do not handle well.
56 56
57 57 ---
58 58
59 59 #### General system settings:
60 ##### `SET_ARCH`=32
61 Set Architecture to default 32bit. If you want to to compile 64bit (RPI3 or RPI3+) set it to `64`. This option will set every needed crosscompiler or boeard specific option for a successful build.
62 If you want to change e.g. cross-compiler -> Templates always override defaults
63
60 64 ##### `RPI_MODEL`=2
61 65 Specifiy the target Raspberry Pi hardware model. The script at this time supports the following Raspberry Pi models:
62 66 `0` = Used for Raspberry Pi 0 and Raspberry Pi 0 W
63 67 `1` = Used for Pi 1 model A and B
64 68 `1P` = Used for Pi 1 model B+ and A+
65 69 `2` = Used for Pi 2 model B
66 70 `3` = Used for Pi 3 model B
67 71 `3P` = Used for Pi 3 model B+
68 72 `BUILD_KERNEL`=true will automatically be set if the Raspberry Pi model `3` or `3P` is used.
69 73
70 74 ##### `RELEASE`="buster"
71 Set the desired Debian release name. The script at this time supports the bootstrapping of the Debian releases "stretch" and "buster". `BUILD_KERNEL`=true will automatically be set if the Debian releases `stretch` or `buster` are used.
75 Set the desired Debian release name. The script at this time supports the bootstrapping of the Debian releases `stretch` and `buster`.
72 76
73 77 ##### `RELEASE_ARCH`="armhf"
74 78 Set the desired Debian release architecture.
75 79
76 80 ##### `HOSTNAME`="rpi$RPI_MODEL-$RELEASE"
77 81 Set system host name. It's recommended that the host name is unique in the corresponding subnet.
78 82
79 83 ##### `PASSWORD`="raspberry"
80 84 Set system `root` password. It's **STRONGLY** recommended that you choose a custom password.
81 85
82 86 ##### `USER_PASSWORD`="raspberry"
83 87 Set password for the created non-root user `USER_NAME`=pi. Ignored if `ENABLE_USER`=false. It's **STRONGLY** recommended that you choose a custom password.
84 88
85 89 ##### `DEFLOCAL`="en_US.UTF-8"
86 90 Set default system locale. This setting can also be changed inside the running OS using the `dpkg-reconfigure locales` command. Please note that on using this parameter the script will automatically install the required packages `locales`, `keyboard-configuration` and `console-setup`.
87 91
88 92 ##### `TIMEZONE`="Europe/Berlin"
89 93 Set default system timezone. All available timezones can be found in the `/usr/share/zoneinfo/` directory. This setting can also be changed inside the running OS using the `dpkg-reconfigure tzdata` command.
90 94
91 95 ##### `EXPANDROOT`=true
92 96 Expand the root partition and filesystem automatically on first boot.
93 97
94 98 ##### `ENABLE_QEMU`=false
95 99 Generate kernel (`vexpress_defconfig`), file system image (`qcow2`) and DTB files that can be used for QEMU full system emulation (`vexpress-A15`). The output files are stored in the `$(pwd)/images/qemu` directory. You can find more information about running the generated image in the QEMU section of this readme file.
96 100
97 101 ---
98 102
99 103 #### Keyboard settings:
100 104 These options are used to configure keyboard layout in `/etc/default/keyboard` for console and Xorg. These settings can also be changed inside the running OS using the `dpkg-reconfigure keyboard-configuration` command.
101 105
102 106 ##### `XKB_MODEL`=""
103 107 Set the name of the model of your keyboard type.
104 108
105 109 ##### `XKB_LAYOUT`=""
106 110 Set the supported keyboard layout(s).
107 111
108 112 ##### `XKB_VARIANT`=""
109 113 Set the supported variant(s) of the keyboard layout(s).
110 114
111 115 ##### `XKB_OPTIONS`=""
112 116 Set extra xkb configuration options.
113 117
114 118 ---
115 119
116 120 #### Networking settings (DHCP):
117 121 This parameter is used to set up networking auto configuration in `/etc/systemd/network/eth.network`. The default location of network configuration files in the Debian `stretch` release was changed to `/lib/systemd/network`.`
118 122
119 123 ##### `ENABLE_DHCP`=true
120 124 Set the system to use DHCP. This requires an DHCP server.
121 125
122 126 ---
123 127
124 128 #### Networking settings (static):
125 129 These parameters are used to set up a static networking configuration in `/etc/systemd/network/eth.network`. The following static networking parameters are only supported if `ENABLE_DHCP` was set to `false`. The default location of network configuration files in the Debian `stretch` release was changed to `/lib/systemd/network`.
126 130
127 131 ##### `NET_ADDRESS`=""
128 132 Set a static IPv4 or IPv6 address and its prefix, separated by "/", eg. "192.169.0.3/24".
129 133
130 134 ##### `NET_GATEWAY`=""
131 135 Set the IP address for the default gateway.
132 136
133 137 ##### `NET_DNS_1`=""
134 138 Set the IP address for the first DNS server.
135 139
136 140 ##### `NET_DNS_2`=""
137 141 Set the IP address for the second DNS server.
138 142
139 143 ##### `NET_DNS_DOMAINS`=""
140 144 Set the default DNS search domains to use for non fully qualified host names.
141 145
142 146 ##### `NET_NTP_1`=""
143 147 Set the IP address for the first NTP server.
144 148
145 149 ##### `NET_NTP_2`=""
146 150 Set the IP address for the second NTP server.
147 151
148 152 ---
149 153
150 154 #### Basic system features:
151 155 ##### `ENABLE_CONSOLE`=true
152 156 Enable serial console interface. Recommended if no monitor or keyboard is connected to the RPi2/3. In case of problems fe. if the network (auto) configuration failed - the serial console can be used to access the system.
153 157
154 158 ##### `ENABLE_I2C`=false
155 159 Enable I2C interface on the RPi2/3. Please check the [RPi2/3 pinout diagrams](https://elinux.org/RPi_Low-level_peripherals) to connect the right GPIO pins.
156 160
157 161 ##### `ENABLE_SPI`=false
158 162 Enable SPI interface on the RPi2/3. Please check the [RPi2/3 pinout diagrams](https://elinux.org/RPi_Low-level_peripherals) to connect the right GPIO pins.
159 163
160 164 ##### `ENABLE_IPV6`=true
161 165 Enable IPv6 support. The network interface configuration is managed via systemd-networkd.
162 166
163 167 ##### `ENABLE_SSHD`=true
164 168 Install and enable OpenSSH service. The default configuration of the service doesn't allow `root` to login. Please use the user `pi` instead and `su -` or `sudo` to execute commands as root.
165 169
166 170 ##### `ENABLE_NONFREE`=false
167 171 Allow the installation of non-free Debian packages that do not comply with the DFSG. This is required to install closed-source firmware binary blobs.
168 172
169 173 ##### `ENABLE_WIRELESS`=false
170 174 Download and install the [closed-source firmware binary blob](https://github.com/RPi-Distro/firmware-nonfree/raw/master/brcm) that is required to run the internal wireless interface of the Raspberry Pi model `3`. This parameter is ignored if the specified `RPI_MODEL` is not `3`.
171 175
172 176 ##### `ENABLE_RSYSLOG`=true
173 177 If set to false, disable and uninstall rsyslog (so logs will be available only
174 178 in journal files)
175 179
176 180 ##### `ENABLE_SOUND`=true
177 181 Enable sound hardware and install Advanced Linux Sound Architecture.
178 182
179 183 ##### `ENABLE_HWRANDOM`=true
180 184 Enable Hardware Random Number Generator. Strong random numbers are important for most network based communications that use encryption. It's recommended to be enabled.
181 185
182 186 ##### `ENABLE_MINGPU`=false
183 187 Minimize the amount of shared memory reserved for the GPU. It doesn't seem to be possible to fully disable the GPU.
184 188
185 189 ##### `ENABLE_DBUS`=true
186 190 Install and enable D-Bus message bus. Please note that systemd should work without D-bus but it's recommended to be enabled.
187 191
188 192 ##### `ENABLE_XORG`=false
189 193 Install Xorg open-source X Window System.
190 194
191 195 ##### `ENABLE_WM`=""
192 196 Install a user defined window manager for the X Window System. To make sure all X related package dependencies are getting installed `ENABLE_XORG` will automatically get enabled if `ENABLE_WM` is used. The `rpi23-gen-image.sh` script has been tested with the following list of window managers: `blackbox`, `openbox`, `fluxbox`, `jwm`, `dwm`, `xfce4`, `awesome`.
193 197
198 ##### `ENABLE_SYSVINIT`=false
199 Support for halt,init,poweroff,reboot,runlevel,shutdown,telinit commands
200
194 201 ---
195 202
196 203 #### Advanced system features:
197 204 ##### `ENABLE_MINBASE`=false
198 205 Use debootstrap script variant `minbase` which only includes essential packages and apt. This will reduce the disk usage by about 65 MB.
199 206
200 207 ##### `ENABLE_REDUCE`=false
201 208 Reduce the disk space usage by deleting packages and files. See `REDUCE_*` parameters for detailed information.
202 209
203 210 ##### `ENABLE_UBOOT`=false
204 211 Replace the default RPi2/3 second stage bootloader (bootcode.bin) with [U-Boot bootloader](https://git.denx.de/?p=u-boot.git;a=summary). U-Boot can boot images via the network using the BOOTP/TFTP protocol.
205 212
206 213 ##### `UBOOTSRC_DIR`=""
207 214 Path to a directory (`u-boot`) of [U-Boot bootloader sources](https://git.denx.de/?p=u-boot.git;a=summary) that will be copied, configured, build and installed inside the chroot.
208 215
209 216 ##### `ENABLE_FBTURBO`=false
210 217 Install and enable the [hardware accelerated Xorg video driver](https://github.com/ssvb/xf86-video-fbturbo) `fbturbo`. Please note that this driver is currently limited to hardware accelerated window moving and scrolling.
211 218
212 219 ##### `FBTURBOSRC_DIR`=""
213 220 Path to a directory (`xf86-video-fbturbo`) of [hardware accelerated Xorg video driver sources](https://github.com/ssvb/xf86-video-fbturbo) that will be copied, configured, build and installed inside the chroot.
214 221
215 222 ##### `ENABLE_VIDEOCORE`=false
216 223 Install and enable the [Source code for ARM side libraries for interfacing to Raspberry Pi GPU](https://github.com/raspberrypi/userland) `vcgencmd`. Please note that this driver is currently limited to hardware accelerated window moving and scrolling.
217 224
218 225 ##### `VIDEOCORESRC_DIR`=""
219 226 Path to a directory (`userland`) of [Source code for ARM side libraries for interfacing to Raspberry Pi GPU](https://github.com/raspberrypi/userland) that will be copied, configured, build and installed inside the chroot.
220 227
221 228 ##### `ENABLE_IPTABLES`=false
222 229 Enable iptables IPv4/IPv6 firewall. Simplified ruleset: Allow all outgoing connections. Block all incoming connections except to OpenSSH service.
223 230
224 231 ##### `ENABLE_USER`=true
225 232 Create non-root user with password `USER_PASSWORD`=raspberry. Unless overridden with `USER_NAME`=user, username will be `pi`.
226 233
227 234 ##### `USER_NAME`=pi
228 235 Non-root user to create. Ignored if `ENABLE_USER`=false
229 236
230 237 ##### `ENABLE_ROOT`=false
231 238 Set root user password so root login will be enabled
232 239
233 240 ##### `ENABLE_HARDNET`=false
234 241 Enable IPv4/IPv6 network stack hardening settings.
235 242
236 243 ##### `ENABLE_SPLITFS`=false
237 244 Enable having root partition on an USB drive by creating two image files: one for the `/boot/firmware` mount point, and another for `/`.
238 245
239 246 ##### `CHROOT_SCRIPTS`=""
240 247 Path to a directory with scripts that should be run in the chroot before the image is finally built. Every executable file in this directory is run in lexicographical order.
241 248
242 249 ##### `ENABLE_INITRAMFS`=false
243 250 Create an initramfs that that will be loaded during the Linux startup process. `ENABLE_INITRAMFS` will automatically get enabled if `ENABLE_CRYPTFS`=true. This parameter will be ignored if `BUILD_KERNEL`=false.
244 251
245 252 ##### `ENABLE_IFNAMES`=true
246 Enable automatic assignment of predictable, stable network interface names for all local Ethernet, WLAN interfaces. This might create complex and long interface names. This parameter is only supported if the Debian releases `stretch` or `buster` are used.
253 Enable automatic assignment of predictable, stable network interface names for all local Ethernet, WLAN interfaces. This might create complex and long interface names.
247 254
248 255 ##### `DISABLE_UNDERVOLT_WARNINGS`=
249 256 Disable RPi2/3 under-voltage warnings and overlays. Setting the parameter to `1` will disable the warning overlay. Setting it to `2` will additionally allow RPi2/3 turbo mode when low-voltage is present.
250 257
251 258 ---
252 259
253 260 #### SSH settings:
254 261 ##### `SSH_ENABLE_ROOT`=false
255 262 Enable password root login via SSH. This may be a security risk with default password, use only in trusted environments. `ENABLE_ROOT` must be set to `true`.
256 263
257 264 ##### `SSH_DISABLE_PASSWORD_AUTH`=false
258 265 Disable password based SSH authentication. Only public key based SSH (v2) authentication will be supported.
259 266
260 267 ##### `SSH_LIMIT_USERS`=false
261 268 Limit the users that are allowed to login via SSH. Only allow user `USER_NAME`=pi and root if `SSH_ENABLE_ROOT`=true to login. This parameter will be ignored if `dropbear` SSH is used (`REDUCE_SSHD`=true).
262 269
263 270 ##### `SSH_ROOT_PUB_KEY`=""
264 271 Add SSH (v2) public key(s) from specified file to `authorized_keys` file to enable public key based SSH (v2) authentication of user `root`. The specified file can also contain multiple SSH (v2) public keys. SSH protocol version 1 is not supported. `ENABLE_ROOT` **and** `SSH_ENABLE_ROOT` must be set to `true`.
265 272
266 273 ##### `SSH_USER_PUB_KEY`=""
267 274 Add SSH (v2) public key(s) from specified file to `authorized_keys` file to enable public key based SSH (v2) authentication of user `USER_NAME`=pi. The specified file can also contain multiple SSH (v2) public keys. SSH protocol version 1 is not supported.
268 275
269 276 ---
270 277
271 278 #### Kernel compilation:
272 ##### `BUILD_KERNEL`=false
273 Build and install the latest RPi2/3 Linux kernel. Currently only the default RPi2/3 kernel configuration is used. `BUILD_KERNEL`=true will automatically be set if the Raspberry Pi model `3` is used.
279 ##### `BUILD_KERNEL`=true
280 Build and install the latest RPi2/3 Linux kernel. Currently only the default RPi2/3 kernel configuration is used.
274 281
275 282 ##### `CROSS_COMPILE`="arm-linux-gnueabihf-"
276 283 This sets the cross compile enviornment for the compiler.
277 284
278 285 ##### `KERNEL_ARCH`="arm"
279 286 This sets the kernel architecture for the compiler.
280 287
281 288 ##### `KERNEL_IMAGE`="kernel7.img"
282 289 Name of the image file in the boot partition. If not set, `KERNEL_IMAGE` will be set to "kernel8.img" automatically if building for arm64.
283 290
284 291 ##### `KERNEL_BRANCH`=""
285 292 Name of the requested branch from the GIT location for the RPi Kernel. Default is using the current default branch from the GIT site.
286 293
287 294 ##### `QEMU_BINARY`="/usr/bin/qemu-arm-static"
288 295 Sets the QEMU enviornment for the Debian archive. If not set, `QEMU_BINARY` will be set to "/usr/bin/qemu-aarch64-static" automatically if building for arm64.
289 296
290 297 ##### `KERNEL_DEFCONFIG`="bcm2709_defconfig"
291 298 Sets the default config for kernel compiling. If not set, `KERNEL_DEFCONFIG` will be set to "bcmrpi3\_defconfig" automatically if building for arm64.
292 299
293 300 ##### `KERNEL_REDUCE`=false
294 301 Reduce the size of the generated kernel by removing unwanted device, network and filesystem drivers (experimental).
295 302
296 303 ##### `KERNEL_THREADS`=1
297 304 Number of parallel kernel building threads. If the parameter is left untouched the script will automatically determine the number of CPU cores to set the number of parallel threads to speed the kernel compilation.
298 305
299 306 ##### `KERNEL_HEADERS`=true
300 307 Install kernel headers with built kernel.
301 308
302 309 ##### `KERNEL_MENUCONFIG`=false
303 310 Start `make menuconfig` interactive menu-driven kernel configuration. The script will continue after `make menuconfig` was terminated.
304 311
305 312 ##### `KERNEL_OLDDEFCONFIG`=false
306 313 Run `make olddefconfig` to automatically set all new kernel configuration options to their recommended default values.
307 314
308 315 ##### `KERNEL_CCACHE`=false
309 316 Compile the kernel using ccache. This speeds up kernel recompilation by caching previous compilations and detecting when the same compilation is being done again.
310 317
311 318 ##### `KERNEL_REMOVESRC`=true
312 319 Remove all kernel sources from the generated OS image after it was built and installed.
313 320
314 321 ##### `KERNELSRC_DIR`=""
315 322 Path to a directory (`linux`) of [RaspberryPi Linux kernel sources](https://github.com/raspberrypi/linux) that will be copied, configured, build and installed inside the chroot.
316 323
317 324 ##### `KERNELSRC_CLEAN`=false
318 325 Clean the existing kernel sources directory `KERNELSRC_DIR` (using `make mrproper`) after it was copied to the chroot and before the compilation of the kernel has started. This parameter will be ignored if no `KERNELSRC_DIR` was specified or if `KERNELSRC_PREBUILT`=true.
319 326
320 327 ##### `KERNELSRC_CONFIG`=true
321 328 Run `make bcm2709_defconfig` (and optional `make menuconfig`) to configure the kernel sources before building. This parameter is automatically set to `true` if no existing kernel sources directory was specified using `KERNELSRC_DIR`. This parameter is ignored if `KERNELSRC_PREBUILT`=true.
322 329
323 330 ##### `KERNELSRC_USRCONFIG`=""
324 331 Copy own config file to kernel `.config`. If `KERNEL_MENUCONFIG`=true then running after copy.
325 332
326 333 ##### `KERNELSRC_PREBUILT`=false
327 334 With this parameter set to true the script expects the existing kernel sources directory to be already successfully cross-compiled. The parameters `KERNELSRC_CLEAN`, `KERNELSRC_CONFIG`, `KERNELSRC_USRCONFIG` and `KERNEL_MENUCONFIG` are ignored and no kernel compilation tasks are performed.
328 335
329 336 ##### `RPI_FIRMWARE_DIR`=""
330 337 The directory (`firmware`) containing a local copy of the firmware from the [RaspberryPi firmware project](https://github.com/raspberrypi/firmware). Default is to download the latest firmware directly from the project.
331 338
332 339 ##### `KERNEL_NF`=false
333 340 Enable Netfilter modules as kernel modules
334 341
335 342 ##### `KERNEL_VIRT`=false
336 343 Enable Kernel KVM support (/dev/kvm)
337 344
338 345 ##### `KERNEL_ZSWAP`=false
339 346 Enable Kernel Zswap support. Best use on high RAM load and mediocre CPU load usecases
340 347
341 348 ##### `KERNEL_BPF`=true
342 349 Allow attaching eBPF programs to a cgroup using the bpf syscall (CONFIG_BPF_SYSCALL CONFIG_CGROUP_BPF) [systemd compilations about it - File /lib/systemd/system/systemd-journald.server:36 configures an IP firewall (IPAddressDeny=all), but the local system does not support BPF/cgroup based firewalls]
343 350
344 351 ---
345 352
346 353 #### Reduce disk usage:
347 354 The following list of parameters is ignored if `ENABLE_REDUCE`=false.
348 355
349 356 ##### `REDUCE_APT`=true
350 357 Configure APT to use compressed package repository lists and no package caching files.
351 358
352 359 ##### `REDUCE_DOC`=true
353 360 Remove all doc files (harsh). Configure APT to not include doc files on future `apt-get` package installations.
354 361
355 362 ##### `REDUCE_MAN`=true
356 363 Remove all man pages and info files (harsh). Configure APT to not include man pages on future `apt-get` package installations.
357 364
358 365 ##### `REDUCE_VIM`=false
359 366 Replace `vim-tiny` package by `levee` a tiny vim clone.
360 367
361 368 ##### `REDUCE_BASH`=false
362 369 Remove `bash` package and switch to `dash` shell (experimental).
363 370
364 371 ##### `REDUCE_HWDB`=true
365 372 Remove PCI related hwdb files (experimental).
366 373
367 374 ##### `REDUCE_SSHD`=true
368 375 Replace `openssh-server` with `dropbear`.
369 376
370 377 ##### `REDUCE_LOCALE`=true
371 378 Remove all `locale` translation files.
372 379
373 380 ---
374 381
375 382 #### Encrypted root partition:
376 383 ##### `ENABLE_CRYPTFS`=false
377 384 Enable full system encryption with dm-crypt. Setup a fully LUKS encrypted root partition (aes-xts-plain64:sha512) and generate required initramfs. The /boot directory will not be encrypted. This parameter will be ignored if `BUILD_KERNEL`=false. `ENABLE_CRYPTFS` is experimental. SSH-to-initramfs is currently not supported but will be soon - feel free to help.
378 385
379 386 ##### `CRYPTFS_PASSWORD`=""
380 387 Set password of the encrypted root partition. This parameter is mandatory if `ENABLE_CRYPTFS`=true.
381 388
382 389 ##### `CRYPTFS_MAPPING`="secure"
383 390 Set name of dm-crypt managed device-mapper mapping.
384 391
385 392 ##### `CRYPTFS_CIPHER`="aes-xts-plain64:sha512"
386 393 Set cipher specification string. `aes-xts*` ciphers are strongly recommended.
387 394
388 395 ##### `CRYPTFS_XTSKEYSIZE`=512
389 396 Sets key size in bits. The argument has to be a multiple of 8.
390 397
391 398 ---
392 399
393 400 #### Build settings:
394 401 ##### `BASEDIR`=$(pwd)/images/${RELEASE}
395 402 Set a path to a working directory used by the script to generate an image.
396 403
397 404 ##### `IMAGE_NAME`=${BASEDIR}/${DATE}-${KERNEL_ARCH}-${KERNEL_BRANCH}-rpi${RPI_MODEL}-${RELEASE}-${RELEASE_ARCH}
398 405 Set a filename for the output file(s). Note: the script will create $IMAGE_NAME.img if `ENABLE_SPLITFS`=false or $IMAGE_NAME-frmw.img and $IMAGE_NAME-root.img if `ENABLE_SPLITFS`=true. Note 2: If the KERNEL_BRANCH is not set, the word "CURRENT" is used.
399 406
400 407 ## Understanding the script
401 408 The functions of this script that are required for the different stages of the bootstrapping are split up into single files located inside the `bootstrap.d` directory. During the bootstrapping every script in this directory gets executed in lexicographical order:
402 409
403 410 | Script | Description |
404 411 | --- | --- |
405 412 | `10-bootstrap.sh` | Debootstrap basic system |
406 413 | `11-apt.sh` | Setup APT repositories |
407 414 | `12-locale.sh` | Setup Locales and keyboard settings |
408 415 | `13-kernel.sh` | Build and install RPi2/3 Kernel |
409 416 | `14-fstab.sh` | Setup fstab and initramfs |
410 417 | `15-rpi-config.sh` | Setup RPi2/3 config and cmdline |
411 418 | `20-networking.sh` | Setup Networking |
412 419 | `21-firewall.sh` | Setup Firewall |
413 420 | `30-security.sh` | Setup Users and Security settings |
414 421 | `31-logging.sh` | Setup Logging |
415 422 | `32-sshd.sh` | Setup SSH and public keys |
416 423 | `41-uboot.sh` | Build and Setup U-Boot |
417 424 | `42-fbturbo.sh` | Build and Setup fbturbo Xorg driver |
418 425 | `50-firstboot.sh` | First boot actions |
419 426 | `99-reduce.sh` | Reduce the disk space usage |
420 427
421 428 All the required configuration files that will be copied to the generated OS image are located inside the `files` directory. It is not recommended to modify these configuration files manually.
422 429
423 430 | Directory | Description |
424 431 | --- | --- |
425 432 | `apt` | APT management configuration files |
426 433 | `boot` | Boot and RPi2/3 configuration files |
427 434 | `dpkg` | Package Manager configuration |
428 435 | `etc` | Configuration files and rc scripts |
429 436 | `firstboot` | Scripts that get executed on first boot |
430 437 | `initramfs` | Initramfs scripts |
431 438 | `iptables` | Firewall configuration files |
432 439 | `locales` | Locales configuration |
433 440 | `modules` | Kernel Modules configuration |
434 441 | `mount` | Fstab configuration |
435 442 | `network` | Networking configuration files |
436 443 | `sysctl.d` | Swapping and Network Hardening configuration |
437 444 | `xorg` | fbturbo Xorg driver configuration |
438 445
439 446 ## Custom packages and scripts
440 447 Debian custom packages, i.e. those not in the debian repositories, can be installed by placing them in the `packages` directory. They are installed immediately after packages from the repositories are installed. Any dependencies listed in the custom packages will be downloaded automatically from the repositories. Do not list these custom packages in `APT_INCLUDES`.
441 448
442 449 Scripts in the custom.d directory will be executed after all other installation is complete but before the image is created.
443 450
444 451 ## Logging of the bootstrapping process
445 452 All information related to the bootstrapping process and the commands executed by the `rpi23-gen-image.sh` script can easily be saved into a logfile. The common shell command `script` can be used for this purpose:
446 453
447 454 ```shell
448 455 script -c 'APT_SERVER=ftp.de.debian.org ./rpi23-gen-image.sh' ./build.log
449 456 ```
450 457
451 458 ## Flashing the image file
452 459 After the image file was successfully created by the `rpi23-gen-image.sh` script it can be copied to the microSD card that will be used by the RPi2/3 computer. This can be performed by using the tools `bmaptool` or `dd`. Using `bmaptool` will probably speed-up the copy process because `bmaptool` copies more wisely than `dd`.
453 460
454 461 ##### Flashing examples:
455 462 ```shell
456 463 bmaptool copy ./images/buster/2017-01-23-rpi3-buster.img /dev/mmcblk0
457 464 dd bs=4M if=./images/buster/2017-01-23-rpi3-buster.img of=/dev/mmcblk0
458 465 ```
459 466 If you have set `ENABLE_SPLITFS`, copy the `-frmw` image on the microSD card, then the `-root` one on the USB drive:
460 467 ```shell
461 468 bmaptool copy ./images/buster/2017-01-23-rpi3-buster-frmw.img /dev/mmcblk0
462 469 bmaptool copy ./images/buster/2017-01-23-rpi3-buster-root.img /dev/sdc
463 470 ```
464 471
465 472 ## QEMU emulation
466 473 Start QEMU full system emulation:
467 474 ```shell
468 475 qemu-system-arm -m 2048M -M vexpress-a15 -cpu cortex-a15 -kernel kernel7.img -no-reboot -dtb vexpress-v2p-ca15_a7.dtb -sd ${IMAGE_NAME}.qcow2 -append "root=/dev/mmcblk0p2 rw rootfstype=ext4 console=tty1"
469 476 ```
470 477
471 478 Start QEMU full system emulation and output to console:
472 479 ```shell
473 480 qemu-system-arm -m 2048M -M vexpress-a15 -cpu cortex-a15 -kernel kernel7.img -no-reboot -dtb vexpress-v2p-ca15_a7.dtb -sd ${IMAGE_NAME}.qcow2 -append "root=/dev/mmcblk0p2 rw rootfstype=ext4 console=ttyAMA0,115200 init=/bin/systemd" -serial stdio
474 481 ```
475 482
476 483 Start QEMU full system emulation with SMP and output to console:
477 484 ```shell
478 485 qemu-system-arm -m 2048M -M vexpress-a15 -cpu cortex-a15 -smp cpus=2,maxcpus=2 -kernel kernel7.img -no-reboot -dtb vexpress-v2p-ca15_a7.dtb -sd ${IMAGE_NAME}.qcow2 -append "root=/dev/mmcblk0p2 rw rootfstype=ext4 console=ttyAMA0,115200 init=/bin/systemd" -serial stdio
479 486 ```
480 487
481 488 Start QEMU full system emulation with cryptfs, initramfs and output to console:
482 489 ```shell
483 490 qemu-system-arm -m 2048M -M vexpress-a15 -cpu cortex-a15 -kernel kernel7.img -no-reboot -dtb vexpress-v2p-ca15_a7.dtb -sd ${IMAGE_NAME}.qcow2 -initrd "initramfs-${KERNEL_VERSION}" -append "root=/dev/mapper/secure cryptdevice=/dev/mmcblk0p2:secure rw rootfstype=ext4 console=ttyAMA0,115200 init=/bin/systemd" -serial stdio
484 491 ```
485 492
486 ## Weekly image builds
487 The image files are provided by JRWR'S I/O PORT and are built once a Sunday at midnight UTC!
488 * [Debian Stretch Raspberry Pi2/3 Weekly Image Builds](https://jrwr.io/doku.php?id=projects:debianpi)
489
490 493 ## External links and references
491 494 * [Debian worldwide mirror sites](https://www.debian.org/mirror/list)
492 495 * [Debian Raspberry Pi 2 Wiki](https://wiki.debian.org/RaspberryPi2)
493 496 * [Debian CrossToolchains Wiki](https://wiki.debian.org/CrossToolchains)
494 497 * [Official Raspberry Pi Firmware on github](https://github.com/raspberrypi/firmware)
495 498 * [Official Raspberry Pi Kernel on github](https://github.com/raspberrypi/linux)
496 499 * [U-BOOT git repository](https://git.denx.de/?p=u-boot.git;a=summary)
497 500 * [Xorg DDX driver fbturbo](https://github.com/ssvb/xf86-video-fbturbo)
498 501 * [RPi3 Wireless interface firmware](https://github.com/RPi-Distro/firmware-nonfree/tree/master/brcm80211/brcm)
499 502 * [Collabora RPi2 Kernel precompiled](https://repositories.collabora.co.uk/debian/)
Show file before | Show file after | Hide comments
@@ -1,406 +1,406
1 1 #
2 2 # Build and Setup RPi2/3 Kernel
3 3 #
4 4
5 5 # Load utility functions
6 6 . ./functions.sh
7 7
8 8 # Fetch and build latest raspberry kernel
9 9 if [ "$BUILD_KERNEL" = true ] ; then
10 10 # Setup source directory
11 11 mkdir -p "${KERNEL_DIR}"
12 12
13 13 # Copy existing kernel sources into chroot directory
14 14 if [ -n "$KERNELSRC_DIR" ] && [ -d "$KERNELSRC_DIR" ] ; then
15 15 # Copy kernel sources and include hidden files
16 16 cp -r "${KERNELSRC_DIR}/". "${KERNEL_DIR}"
17 17
18 18 # Clean the kernel sources
19 19 if [ "$KERNELSRC_CLEAN" = true ] && [ "$KERNELSRC_PREBUILT" = false ] ; then
20 20 make -C "${KERNEL_DIR}" ARCH="${KERNEL_ARCH}" CROSS_COMPILE="${CROSS_COMPILE}" mrproper
21 21 fi
22 22 else # KERNELSRC_DIR=""
23 23 # Create temporary directory for kernel sources
24 24 temp_dir=$(as_nobody mktemp -d)
25 25
26 26 # Fetch current RPi2/3 kernel sources
27 27 if [ -z "${KERNEL_BRANCH}" ] ; then
28 28 as_nobody -H git -C "${temp_dir}" clone --depth=1 "${KERNEL_URL}" linux
29 29 else
30 30 as_nobody -H git -C "${temp_dir}" clone --depth=1 --branch "${KERNEL_BRANCH}" "${KERNEL_URL}" linux
31 31 fi
32 32
33 33 # Copy downloaded kernel sources
34 34 cp -r "${temp_dir}/linux/"* "${KERNEL_DIR}"
35 35
36 36 # Remove temporary directory for kernel sources
37 37 rm -fr "${temp_dir}"
38 38
39 39 # Set permissions of the kernel sources
40 40 chown -R root:root "${R}/usr/src"
41 41 fi
42 42
43 43 # Calculate optimal number of kernel building threads
44 44 if [ "$KERNEL_THREADS" = "1" ] && [ -r /proc/cpuinfo ] ; then
45 45 KERNEL_THREADS=$(grep -c processor /proc/cpuinfo)
46 46 fi
47 47
48 48 # Configure and build kernel
49 49 if [ "$KERNELSRC_PREBUILT" = false ] ; then
50 50 # Remove device, network and filesystem drivers from kernel configuration
51 51 if [ "$KERNEL_REDUCE" = true ] ; then
52 52 make -C "${KERNEL_DIR}" ARCH="${KERNEL_ARCH}" CROSS_COMPILE="${CROSS_COMPILE}" "${KERNEL_DEFCONFIG}"
53 53 sed -i\
54 54 -e "s/\(^CONFIG_SND.*\=\).*/\1n/"\
55 55 -e "s/\(^CONFIG_SOUND.*\=\).*/\1n/"\
56 56 -e "s/\(^CONFIG_AC97.*\=\).*/\1n/"\
57 57 -e "s/\(^CONFIG_VIDEO_.*\=\).*/\1n/"\
58 58 -e "s/\(^CONFIG_MEDIA_TUNER.*\=\).*/\1n/"\
59 59 -e "s/\(^CONFIG_DVB.*\=\)[ym]/\1n/"\
60 60 -e "s/\(^CONFIG_REISERFS.*\=\).*/\1n/"\
61 61 -e "s/\(^CONFIG_JFS.*\=\).*/\1n/"\
62 62 -e "s/\(^CONFIG_XFS.*\=\).*/\1n/"\
63 63 -e "s/\(^CONFIG_GFS2.*\=\).*/\1n/"\
64 64 -e "s/\(^CONFIG_OCFS2.*\=\).*/\1n/"\
65 65 -e "s/\(^CONFIG_BTRFS.*\=\).*/\1n/"\
66 66 -e "s/\(^CONFIG_HFS.*\=\).*/\1n/"\
67 67 -e "s/\(^CONFIG_JFFS2.*\=\)[ym]/\1n/"\
68 68 -e "s/\(^CONFIG_UBIFS.*\=\).*/\1n/"\
69 69 -e "s/\(^CONFIG_SQUASHFS.*\=\)[ym]/\1n/"\
70 70 -e "s/\(^CONFIG_W1.*\=\)[ym]/\1n/"\
71 71 -e "s/\(^CONFIG_HAMRADIO.*\=\).*/\1n/"\
72 72 -e "s/\(^CONFIG_CAN.*\=\).*/\1n/"\
73 73 -e "s/\(^CONFIG_IRDA.*\=\).*/\1n/"\
74 74 -e "s/\(^CONFIG_BT_.*\=\).*/\1n/"\
75 75 -e "s/\(^CONFIG_WIMAX.*\=\)[ym]/\1n/"\
76 76 -e "s/\(^CONFIG_6LOWPAN.*\=\).*/\1n/"\
77 77 -e "s/\(^CONFIG_IEEE802154.*\=\).*/\1n/"\
78 78 -e "s/\(^CONFIG_NFC.*\=\).*/\1n/"\
79 79 -e "s/\(^CONFIG_FB_TFT=.*\=\).*/\1n/"\
80 80 -e "s/\(^CONFIG_TOUCHSCREEN.*\=\).*/\1n/"\
81 81 -e "s/\(^CONFIG_USB_GSPCA_.*\=\).*/\1n/"\
82 82 -e "s/\(^CONFIG_DRM.*\=\).*/\1n/"\
83 83 "${KERNEL_DIR}/.config"
84 84 fi
85
85
86 86 if [ "$KERNELSRC_CONFIG" = true ] ; then
87 87 # Load default raspberry kernel configuration
88 88 make -C "${KERNEL_DIR}" ARCH="${KERNEL_ARCH}" CROSS_COMPILE="${CROSS_COMPILE}" "${KERNEL_DEFCONFIG}"
89 89 #Switch to KERNELSRC_DIR
90 90 pushd "${KERNEL_DIR}"
91 91
92 92 # GPL v2.0
93 93 #https://github.com/sakaki-/bcmrpi3-kernel-bis/blob/master/conform_config.sh
94 94 if [ "$KERNEL_ZSWAP" = true ] && { [ "$RPI_MODEL" = 3 ] || [ "$RPI_MODEL" = 3P ] ; } ; then
95 95 # enable ZSWAP support for better performance during large builds etc.
96 96 # requires activation via kernel parameter or sysfs
97 97 # see e.g. https://askubuntu.com/a/472227 for a summary of ZSWAP (vs ZRAM etc.)
98 98 # and e.g. https://wiki.archlinux.org/index.php/zswap for parameters etc.
99 99 set_kernel_config ZPOOL y
100 100 set_kernel_config ZSWAP y
101 101 set_kernel_config ZBUD y
102 102 set_kernel_config Z3FOLD y
103 103 set_kernel_config ZSMALLOC y
104 104 set_kernel_config PGTABLE_MAPPING y
105 105 fi
106 106
107 107 if [ "$KERNEL_VIRT" = true ] && { [ "$RPI_MODEL" = 3 ] || [ "$RPI_MODEL" = 3P ] ; } ; then
108 108 # enable basic KVM support; see e.g.
109 109 # https://www.raspberrypi.org/forums/viewtopic.php?f=63&t=210546&start=25#p1300453
110 110 set_kernel_config VIRTUALIZATION y
111 111 set_kernel_config KVM y
112 112 set_kernel_config VHOST_NET m
113 113 set_kernel_config VHOST_CROSS_ENDIAN_LEGACY y
114 114 fi
115 115 #See https://github.com/raspberrypi/linux/issues/2177#issuecomment-354647406
116 116 # Netfilter kernel support
117 117 if [ "$KERNEL_NF" = true ] && { [ "$RPI_MODEL" = 3 ] || [ "$RPI_MODEL" = 3P ] ; } ; then
118 118 set_kernel_config CONFIG_NETFILTER_XTABLES m
119 119 set_kernel_config CONFIG_NF_DUP_NETDEV m
120 120 set_kernel_config CONFIG_NF_NAT_SIP m
121 121 set_kernel_config CONFIG_NF_TABLES_ARP m
122 122 set_kernel_config CONFIG_NF_TABLES_BRIDGE m
123 123 set_kernel_config NF_TABLES m
124 124 set_kernel_config CONFIG_BRIDGE_EBT_BROUTE m
125 125 set_kernel_config CONFIG_BRIDGE_EBT_T_FILTER m
126 126 set_kernel_config CONFIG_BRIDGE_NF_EBTABLES m
127 127 set_kernel_config CONFIG_IP6_NF_IPTABLES m
128 128 set_kernel_config CONFIG_IP6_NF_MATCH_AH m
129 129 set_kernel_config CONFIG_IP6_NF_MATCH_EUI64 m
130 130 set_kernel_config CONFIG_IP6_NF_NAT m
131 131 set_kernel_config CONFIG_IP6_NF_TARGET_MASQUERADE m
132 132 set_kernel_config CONFIG_IP6_NF_TARGET_NPT m
133 133 set_kernel_config CONFIG_IP_SET_BITMAP_IPMAC m
134 134 set_kernel_config CONFIG_IP_SET_BITMAP_PORT m
135 135 set_kernel_config CONFIG_IP_SET_HASH_IP m
136 136 set_kernel_config CONFIG_IP_SET_HASH_IPMARK m
137 137 set_kernel_config CONFIG_IP_SET_HASH_IPPORT m
138 138 set_kernel_config CONFIG_IP_SET_HASH_IPPORTIP m
139 139 set_kernel_config CONFIG_IP_SET_HASH_IPPORTNET m
140 140 set_kernel_config CONFIG_IP_SET_HASH_MAC m
141 141 set_kernel_config CONFIG_IP_SET_HASH_NET m
142 142 set_kernel_config CONFIG_IP_SET_HASH_NETIFACE m
143 143 set_kernel_config CONFIG_IP_SET_HASH_NETNET m
144 144 set_kernel_config CONFIG_IP_SET_HASH_NETPORT m
145 145 set_kernel_config CONFIG_IP_SET_HASH_NETPORTNET m
146 146 set_kernel_config CONFIG_IP_SET_LIST_SET m
147 147 set_kernel_config CONFIG_NFT_BRIDGE_META m
148 148 set_kernel_config CONFIG_NFT_BRIDGE_REJECT m
149 149 set_kernel_config CONFIG_NFT_CHAIN_NAT_IPV4 m
150 150 set_kernel_config CONFIG_NFT_CHAIN_NAT_IPV6 m
151 151 set_kernel_config CONFIG_NFT_CHAIN_ROUTE_IPV4 m
152 152 set_kernel_config CONFIG_NFT_CHAIN_ROUTE_IPV6 m
153 153 set_kernel_config CONFIG_NFT_COMPAT m
154 154 set_kernel_config CONFIG_NFT_COUNTER m
155 155 set_kernel_config CONFIG_NFT_CT m
156 156 set_kernel_config CONFIG_NFT_DUP_IPV4 m
157 157 set_kernel_config CONFIG_NFT_DUP_IPV6 m
158 158 set_kernel_config CONFIG_NFT_DUP_NETDEV m
159 159 set_kernel_config CONFIG_NFT_EXTHDR m
160 160 set_kernel_config CONFIG_NFT_FWD_NETDEV m
161 161 set_kernel_config CONFIG_NFT_HASH m
162 162 set_kernel_config CONFIG_NFT_LIMIT m
163 163 set_kernel_config CONFIG_NFT_LOG m
164 164 set_kernel_config CONFIG_NFT_MASQ m
165 165 set_kernel_config CONFIG_NFT_MASQ_IPV4 m
166 166 set_kernel_config CONFIG_NFT_MASQ_IPV6 m
167 167 set_kernel_config CONFIG_NFT_META m
168 168 set_kernel_config CONFIG_NFT_NAT m
169 169 set_kernel_config CONFIG_NFT_NUMGEN m
170 170 set_kernel_config CONFIG_NFT_QUEUE m
171 171 set_kernel_config CONFIG_NFT_QUOTA m
172 172 set_kernel_config CONFIG_NFT_REDIR m
173 173 set_kernel_config CONFIG_NFT_REDIR_IPV4 m
174 174 set_kernel_config CONFIG_NFT_REDIR_IPV6 m
175 175 set_kernel_config CONFIG_NFT_REJECT m
176 176 set_kernel_config CONFIG_NFT_REJECT_INET m
177 177 set_kernel_config CONFIG_NFT_REJECT_IPV4 m
178 178 set_kernel_config CONFIG_NFT_REJECT_IPV6 m
179 179 set_kernel_config CONFIG_NFT_SET_HASH m
180 180 set_kernel_config CONFIG_NFT_SET_RBTREE m
181 181 set_kernel_config CONFIG_NF_CONNTRACK_IPV4 m
182 182 set_kernel_config CONFIG_NF_CONNTRACK_IPV6 m
183 183 set_kernel_config CONFIG_NF_DEFRAG_IPV4 m
184 184 set_kernel_config CONFIG_NF_DEFRAG_IPV6 m
185 185 set_kernel_config CONFIG_NF_DUP_IPV4 m
186 186 set_kernel_config CONFIG_NF_DUP_IPV6 m
187 187 set_kernel_config CONFIG_NF_LOG_BRIDGE m
188 188 set_kernel_config CONFIG_NF_LOG_IPV4 m
189 189 set_kernel_config CONFIG_NF_LOG_IPV6 m
190 190 set_kernel_config CONFIG_NF_NAT_IPV4 m
191 191 set_kernel_config CONFIG_NF_NAT_IPV6 m
192 192 set_kernel_config CONFIG_NF_NAT_MASQUERADE_IPV4 m
193 193 set_kernel_config CONFIG_NF_NAT_MASQUERADE_IPV6 m
194 194 set_kernel_config CONFIG_NF_NAT_PPTP m
195 195 set_kernel_config CONFIG_NF_NAT_PROTO_GRE m
196 196 set_kernel_config CONFIG_NF_NAT_REDIRECT m
197 197 set_kernel_config CONFIG_NF_NAT_SNMP_BASIC m
198 198 set_kernel_config CONFIG_NF_NAT_TFTP m
199 199 set_kernel_config CONFIG_NF_REJECT_IPV4 m
200 200 set_kernel_config CONFIG_NF_REJECT_IPV6 m
201 201 set_kernel_config CONFIG_NF_TABLES_INET m
202 202 set_kernel_config CONFIG_NF_TABLES_IPV4 m
203 203 set_kernel_config CONFIG_NF_TABLES_IPV6 m
204 204 set_kernel_config CONFIG_NF_TABLES_NETDEV m
205 205 set_kernel_config NETFILTER_XTABLES m
206 206 fi
207 207
208 208 #https://groups.google.com/forum/#!topic/linux.gentoo.user/_2aSc_ztGpA
209 209 #https://github.com/torvalds/linux/blob/master/init/Kconfig#L848
210 210 # Enables BPF syscall for systemd-journald
211 211 if [ "$KERNEL_BPF" = true ] && { [ "$RPI_MODEL" = 3 ] || [ "$RPI_MODEL" = 3P ] ; } ; then
212 set_kernel_config CONFIG_BPF_SYSCALL y
212 set_kernel_config CONFIG_BPF_SYSCALL y
213 213 set_kernel_config CONFIG_CGROUP_BPF y
214 214 fi
215 215
216 216 #Revert to previous directory
217 217 popd
218 218
219 219 # Set kernel configuration parameters to enable qemu emulation
220 220 if [ "$ENABLE_QEMU" = true ] ; then
221 221 echo "CONFIG_FHANDLE=y" >> "${KERNEL_DIR}"/.config
222 222 echo "CONFIG_LBDAF=y" >> "${KERNEL_DIR}"/.config
223 223
224 224 if [ "$ENABLE_CRYPTFS" = true ] ; then
225 225 {
226 226 echo "CONFIG_EMBEDDED=y"
227 227 echo "CONFIG_EXPERT=y"
228 228 echo "CONFIG_DAX=y"
229 229 echo "CONFIG_MD=y"
230 230 echo "CONFIG_BLK_DEV_MD=y"
231 231 echo "CONFIG_MD_AUTODETECT=y"
232 232 echo "CONFIG_BLK_DEV_DM=y"
233 233 echo "CONFIG_BLK_DEV_DM_BUILTIN=y"
234 234 echo "CONFIG_DM_CRYPT=y"
235 235 echo "CONFIG_CRYPTO_BLKCIPHER=y"
236 236 echo "CONFIG_CRYPTO_CBC=y"
237 237 echo "CONFIG_CRYPTO_XTS=y"
238 238 echo "CONFIG_CRYPTO_SHA512=y"
239 239 echo "CONFIG_CRYPTO_MANAGER=y"
240 } >> "${KERNEL_DIR}/.config"
240 } >> "${KERNEL_DIR}"/.config
241 241 fi
242 242 fi
243 243
244 244 # Copy custom kernel configuration file
245 245 if [ -n "$KERNELSRC_USRCONFIG" ] ; then
246 246 cp "$KERNELSRC_USRCONFIG" "${KERNEL_DIR}"/.config
247 247 fi
248 248
249 249 # Set kernel configuration parameters to their default values
250 250 if [ "$KERNEL_OLDDEFCONFIG" = true ] ; then
251 251 make -C "${KERNEL_DIR}" ARCH="${KERNEL_ARCH}" CROSS_COMPILE="${CROSS_COMPILE}" olddefconfig
252 252 fi
253 253
254 254 # Start menu-driven kernel configuration (interactive)
255 255 if [ "$KERNEL_MENUCONFIG" = true ] ; then
256 256 make -C "${KERNEL_DIR}" ARCH="${KERNEL_ARCH}" CROSS_COMPILE="${CROSS_COMPILE}" menuconfig
257 257 fi
258 258 fi
259 259
260 260 # Use ccache to cross compile the kernel
261 261 if [ "$KERNEL_CCACHE" = true ] ; then
262 262 cc="ccache ${CROSS_COMPILE}gcc"
263 263 else
264 264 cc="${CROSS_COMPILE}gcc"
265 265 fi
266 266
267 267 # Cross compile kernel and dtbs
268 268 make -C "${KERNEL_DIR}" -j"${KERNEL_THREADS}" ARCH="${KERNEL_ARCH}" CROSS_COMPILE="${CROSS_COMPILE}" CC="${cc}" "${KERNEL_BIN_IMAGE}" dtbs
269 269
270 270 # Cross compile kernel modules
271 271 if grep -q "CONFIG_MODULES=y" "${KERNEL_DIR}/.config" ; then
272 272 make -C "${KERNEL_DIR}" -j"${KERNEL_THREADS}" ARCH="${KERNEL_ARCH}" CROSS_COMPILE="${CROSS_COMPILE}" CC="${cc}" modules
273 273 fi
274 274 fi
275 275
276 276 # Check if kernel compilation was successful
277 277 if [ ! -r "${KERNEL_DIR}/arch/${KERNEL_ARCH}/boot/${KERNEL_BIN_IMAGE}" ] ; then
278 278 echo "error: kernel compilation failed! (kernel image not found)"
279 279 cleanup
280 280 exit 1
281 281 fi
282 282
283 283 # Install kernel modules
284 284 if [ "$ENABLE_REDUCE" = true ] ; then
285 285 if grep -q "CONFIG_MODULES=y" "${KERNEL_DIR}/.config" ; then
286 286 make -C "${KERNEL_DIR}" ARCH="${KERNEL_ARCH}" CROSS_COMPILE="${CROSS_COMPILE}" INSTALL_MOD_STRIP=1 INSTALL_MOD_PATH=../../.. modules_install
287 287 fi
288 288 else
289 289 if grep -q "CONFIG_MODULES=y" "${KERNEL_DIR}/.config" ; then
290 290 make -C "${KERNEL_DIR}" ARCH="${KERNEL_ARCH}" CROSS_COMPILE="${CROSS_COMPILE}" INSTALL_MOD_PATH=../../.. modules_install
291 291 fi
292 292
293 293 # Install kernel firmware
294 294 if grep -q "^firmware_install:" "${KERNEL_DIR}/Makefile" ; then
295 295 make -C "${KERNEL_DIR}" ARCH="${KERNEL_ARCH}" CROSS_COMPILE="${CROSS_COMPILE}" INSTALL_FW_PATH=../../../lib firmware_install
296 296 fi
297 297 fi
298 298
299 299 # Install kernel headers
300 300 if [ "$KERNEL_HEADERS" = true ] && [ "$KERNEL_REDUCE" = false ] ; then
301 301 make -C "${KERNEL_DIR}" ARCH="${KERNEL_ARCH}" CROSS_COMPILE="${CROSS_COMPILE}" INSTALL_HDR_PATH=../.. headers_install
302 302 fi
303 303 # make tar.gz kernel package - missing os bzw. modules
304 304 #** ** ** WARNING ** ** **
305 305 #Your architecture did not define any architecture-dependent files
306 306 #to be placed into the tarball. Please add those to ./scripts/package/buildtar .
307 307 # make -C "${KERNEL_DIR}" ARCH="${KERNEL_ARCH}" CROSS_COMPILE="${CROSS_COMPILE}" CC="${cc}" targz-pkg
308 308
309 309 # Prepare boot (firmware) directory
310 310 mkdir "${BOOT_DIR}"
311 311
312 312 # Get kernel release version
313 313 KERNEL_VERSION=$(cat "${KERNEL_DIR}/include/config/kernel.release")
314 314
315 315 # Copy kernel configuration file to the boot directory
316 316 install_readonly "${KERNEL_DIR}/.config" "${R}/boot/config-${KERNEL_VERSION}"
317 317
318 318 # Prepare device tree directory
319 319 mkdir "${BOOT_DIR}/overlays"
320 320
321 321 # Ensure the proper .dtb is located
322 322 if [ "$KERNEL_ARCH" = "arm" ] ; then
323 323 for dtb in "${KERNEL_DIR}/arch/${KERNEL_ARCH}/boot/dts/"*.dtb ; do
324 324 if [ -f "${dtb}" ] ; then
325 325 install_readonly "${dtb}" "${BOOT_DIR}/"
326 326 fi
327 327 done
328 328 else
329 329 for dtb in "${KERNEL_DIR}/arch/${KERNEL_ARCH}/boot/dts/broadcom/"*.dtb ; do
330 330 if [ -f "${dtb}" ] ; then
331 331 install_readonly "${dtb}" "${BOOT_DIR}/"
332 332 fi
333 333 done
334 334 fi
335 335
336 336 # Copy compiled dtb device tree files
337 337 if [ -d "${KERNEL_DIR}/arch/${KERNEL_ARCH}/boot/dts/overlays" ] ; then
338 338 for dtb in "${KERNEL_DIR}/arch/${KERNEL_ARCH}/boot/dts/overlays/"*.dtb ; do
339 339 if [ -f "${dtb}" ] ; then
340 340 install_readonly "${dtb}" "${BOOT_DIR}/overlays/"
341 341 fi
342 342 done
343 343
344 344 if [ -f "${KERNEL_DIR}/arch/${KERNEL_ARCH}/boot/dts/overlays/README" ] ; then
345 345 install_readonly "${KERNEL_DIR}/arch/${KERNEL_ARCH}/boot/dts/overlays/README" "${BOOT_DIR}/overlays/README"
346 346 fi
347 347 fi
348 348
349 349 if [ "$ENABLE_UBOOT" = false ] ; then
350 350 # Convert and copy kernel image to the boot directory
351 351 "${KERNEL_DIR}/scripts/mkknlimg" "${KERNEL_DIR}/arch/${KERNEL_ARCH}/boot/${KERNEL_BIN_IMAGE}" "${BOOT_DIR}/${KERNEL_IMAGE}"
352 352 else
353 353 # Copy kernel image to the boot directory
354 354 install_readonly "${KERNEL_DIR}/arch/${KERNEL_ARCH}/boot/${KERNEL_BIN_IMAGE}" "${BOOT_DIR}/${KERNEL_IMAGE}"
355 355 fi
356 356
357 357 # Remove kernel sources
358 358 if [ "$KERNEL_REMOVESRC" = true ] ; then
359 359 rm -fr "${KERNEL_DIR}"
360 360 else
361 361 # Prepare compiled kernel modules
362 362 if grep -q "CONFIG_MODULES=y" "${KERNEL_DIR}/.config" ; then
363 363 if grep -q "^modules_prepare:" "${KERNEL_DIR}/Makefile" ; then
364 364 make -C "${KERNEL_DIR}" ARCH="${KERNEL_ARCH}" CROSS_COMPILE="${CROSS_COMPILE}" modules_prepare
365 365 fi
366 366
367 367 # Create symlinks for kernel modules
368 368 chroot_exec ln -sf /usr/src/linux "/lib/modules/${KERNEL_VERSION}/build"
369 369 chroot_exec ln -sf /usr/src/linux "/lib/modules/${KERNEL_VERSION}/source"
370 370 fi
371 371 fi
372 372
373 373 else # BUILD_KERNEL=false
374 374 # echo Install precompiled kernel...
375 375 # echo error: not implemented
376 376 if [ "$KERNEL_ARCH" = arm64 ] && { [ "$RPI_MODEL" = 3 ] || [ "$RPI_MODEL" = 3P ] ; } ; then
377 377 # Create temporary directory for dl
378 378 temp_dir=$(as_nobody mktemp -d)
379 379
380 380 # Fetch kernel dl
381 381 as_nobody wget -O "${temp_dir}"/kernel.tar.xz -c "$RPI3_64_KERNEL_URL"
382 382 #extract download
383 383 tar -xJf "${temp_dir}"/kernel.tar.xz -C "${temp_dir}"
384 384
385 385 #move extracted kernel to /boot/firmware
386 386 mkdir "${R}/boot/firmware"
387 387 cp "${temp_dir}"/boot/* "${R}"/boot/firmware/
388 388 cp -r "${temp_dir}"/lib/* "${R}"/lib/
389 389
390 390 # Remove temporary directory for kernel sources
391 391 rm -fr "${temp_dir}"
392 392 # Set permissions of the kernel sources
393 393 chown -R root:root "${R}/boot/firmware"
394 394 chown -R root:root "${R}/lib/modules"
395 395 #Create cmdline.txt for 15-rpi-config.sh
396 396 touch "${BOOT_DIR}/cmdline.txt"
397 397 fi
398 398
399 399 # Check if kernel installation was successful
400 400 KERNEL="$(ls -1 "${R}"/boot/kernel* | sort | tail -n 1)"
401 401 if [ -z "$KERNEL" ] ; then
402 402 echo "error: kernel installation failed! (/boot/kernel* not found)"
403 403 cleanup
404 404 exit 1
405 405 fi
406 406 fi
Show file before | Show file after | Hide comments
@@ -1,209 +1,203
1 1 #
2 2 # Setup RPi2/3 config and cmdline
3 3 #
4 4
5 5 # Load utility functions
6 6 . ./functions.sh
7 7
8 8 if [ "$BUILD_KERNEL" = true ] ; then
9 9 if [ -n "$RPI_FIRMWARE_DIR" ] && [ -d "$RPI_FIRMWARE_DIR" ] ; then
10 10 # Install boot binaries from local directory
11 11 cp "${RPI_FIRMWARE_DIR}"/boot/bootcode.bin "${BOOT_DIR}"/bootcode.bin
12 12 cp "${RPI_FIRMWARE_DIR}"/boot/fixup.dat "${BOOT_DIR}"/fixup.dat
13 13 cp "${RPI_FIRMWARE_DIR}"/boot/fixup_cd.dat "${BOOT_DIR}"/fixup_cd.dat
14 14 cp "${RPI_FIRMWARE_DIR}"/boot/fixup_x.dat "${BOOT_DIR}"/fixup_x.dat
15 15 cp "${RPI_FIRMWARE_DIR}"/boot/start.elf "${BOOT_DIR}"/start.elf
16 16 cp "${RPI_FIRMWARE_DIR}"/boot/start_cd.elf "${BOOT_DIR}"/start_cd.elf
17 17 cp "${RPI_FIRMWARE_DIR}"/boot/start_x.elf "${BOOT_DIR}"/start_x.elf
18 18 else
19 19 # Create temporary directory for boot binaries
20 20 temp_dir=$(as_nobody mktemp -d)
21 21
22 22 # Install latest boot binaries from raspberry/firmware github
23 23 as_nobody wget -q -O "${temp_dir}/bootcode.bin" "${FIRMWARE_URL}/bootcode.bin"
24 24 as_nobody wget -q -O "${temp_dir}/fixup.dat" "${FIRMWARE_URL}/fixup.dat"
25 25 as_nobody wget -q -O "${temp_dir}/fixup_cd.dat" "${FIRMWARE_URL}/fixup_cd.dat"
26 26 as_nobody wget -q -O "${temp_dir}/fixup_x.dat" "${FIRMWARE_URL}/fixup_x.dat"
27 27 as_nobody wget -q -O "${temp_dir}/start.elf" "${FIRMWARE_URL}/start.elf"
28 28 as_nobody wget -q -O "${temp_dir}/start_cd.elf" "${FIRMWARE_URL}/start_cd.elf"
29 29 as_nobody wget -q -O "${temp_dir}/start_x.elf" "${FIRMWARE_URL}/start_x.elf"
30 30
31 31 # Move downloaded boot binaries
32 32 mv "${temp_dir}/"* "${BOOT_DIR}/"
33 33
34 34 # Remove temporary directory for boot binaries
35 35 rm -fr "${temp_dir}"
36 36
37 37 # Set permissions of the boot binaries
38 38 chown -R root:root "${BOOT_DIR}"
39 39 chmod -R 600 "${BOOT_DIR}"
40 40 fi
41 41 fi
42 42
43 43 # Setup firmware boot cmdline
44 44 if [ "$ENABLE_UBOOTUSB" = true ] ; then
45 45 CMDLINE="dwc_otg.lpm_enable=0 root=/dev/sda2 rootfstype=ext4 rootflags=commit=100,data=writeback elevator=deadline rootwait console=tty1"
46 46 else
47 47 if [ "$ENABLE_SPLITFS" = true ] ; then
48 48 CMDLINE="dwc_otg.lpm_enable=0 root=/dev/sda1 rootfstype=ext4 rootflags=commit=100,data=writeback elevator=deadline rootwait console=tty1"
49 49 else
50 50 CMDLINE="dwc_otg.lpm_enable=0 root=/dev/mmcblk0p2 rootfstype=ext4 rootflags=commit=100,data=writeback elevator=deadline rootwait console=tty1"
51 51 fi
52 52 fi
53 53
54 54
55 55
56 56 # Add encrypted root partition to cmdline.txt
57 57 if [ "$ENABLE_CRYPTFS" = true ] ; then
58 58 if [ "$ENABLE_SPLITFS" = true ] ; then
59 59 CMDLINE=$(echo "${CMDLINE}" | sed "s/sda1/mapper\/${CRYPTFS_MAPPING} cryptdevice=\/dev\/sda1:${CRYPTFS_MAPPING}/")
60 60 else
61 61 if [ "$ENABLE_UBOOTUSB" = true ] ; then
62 62 CMDLINE=$(echo "${CMDLINE}" | sed "s/sda2/mapper\/${CRYPTFS_MAPPING} cryptdevice=\/dev\/sda2:${CRYPTFS_MAPPING}/")
63 63 else
64 64 CMDLINE=$(echo "${CMDLINE}" | sed "s/mmcblk0p2/mapper\/${CRYPTFS_MAPPING} cryptdevice=\/dev\/mmcblk0p2:${CRYPTFS_MAPPING}/")
65 65 fi
66 66 fi
67 67 fi
68 68
69 69 # Add serial console support
70 70 if [ "$ENABLE_CONSOLE" = true ] ; then
71 71 CMDLINE="${CMDLINE} console=ttyAMA0,115200 kgdboc=ttyAMA0,115200"
72 72 fi
73 73
74 74 # Remove IPv6 networking support
75 75 if [ "$ENABLE_IPV6" = false ] ; then
76 76 CMDLINE="${CMDLINE} ipv6.disable=1"
77 77 fi
78 78
79 79 # Automatically assign predictable network interface names
80 80 if [ "$ENABLE_IFNAMES" = false ] ; then
81 81 CMDLINE="${CMDLINE} net.ifnames=0"
82 82 else
83 83 CMDLINE="${CMDLINE} net.ifnames=1"
84 84 fi
85 85
86 86 # Install firmware boot cmdline
87 87 echo "${CMDLINE}" > "${BOOT_DIR}/cmdline.txt"
88 88
89 89 # Install firmware config
90 90 install_readonly files/boot/config.txt "${BOOT_DIR}/config.txt"
91 91
92 92 # Setup minimal GPU memory allocation size: 16MB (no X)
93 93 if [ "$ENABLE_MINGPU" = true ] ; then
94 94 echo "gpu_mem=16" >> "${BOOT_DIR}/config.txt"
95 95 fi
96 96
97 97 # Setup boot with initramfs
98 98 if [ "$ENABLE_INITRAMFS" = true ] ; then
99 99 echo "initramfs initramfs-${KERNEL_VERSION} followkernel" >> "${BOOT_DIR}/config.txt"
100 100 fi
101 101
102 102 # Disable RPi3 Bluetooth and restore ttyAMA0 serial device
103 if [ "$RPI_MODEL" = 3 ] || [ "$RPI_MODEL" = 3P ] || [ "$RPI_MODEL" = 3P ]; then
103 if [ "$RPI_MODEL" = 3 ] || [ "$RPI_MODEL" = 3P ] ; then
104 104 if [ "$ENABLE_CONSOLE" = true ] && [ "$ENABLE_UBOOT" = false ] ; then
105 105 echo "dtoverlay=pi3-disable-bt" >> "${BOOT_DIR}/config.txt"
106 106 echo "enable_uart=1" >> "${BOOT_DIR}/config.txt"
107 107 else
108 108 # Create temporary directory for Bluetooth sources
109 109 temp_dir=$(as_nobody mktemp -d)
110 110
111 111 # Fetch Bluetooth sources
112 112 as_nobody git -C "${temp_dir}" clone "${BLUETOOTH_URL}"
113 113
114 114 # Copy downloaded sources
115 115 mv "${temp_dir}/pi-bluetooth" "${R}/tmp/"
116 116
117 117 # Raspberry-sys-mod package for /dev/serial device needed by bluetooth service
118 118 wget -O "${R}/tmp/pi-bluetooth/99-com.rules" https://raw.githubusercontent.com/RPi-Distro/raspberrypi-sys-mods/master/etc.armhf/udev/rules.d/99-com.rules
119 119
120 120 # Bluetooth firmware from arch aur https://aur.archlinux.org/packages/pi-bluetooth/
121 121 wget -O "${R}/tmp/pi-bluetooth/LICENCE.broadcom_bcm43xx" https://aur.archlinux.org/cgit/aur.git/plain/LICENCE.broadcom_bcm43xx?h=pi-bluetooth
122 122 wget -O "${R}/tmp/pi-bluetooth/BCM43430A1.hcd" https://aur.archlinux.org/cgit/aur.git/plain/BCM43430A1.hcd?h=pi-bluetooth
123 123
124 124 # Set permissions
125 125 chown -R root:root "${R}/tmp/pi-bluetooth"
126 126
127 127 # Install files to chroot
128 128 # Install tools
129 129 install_readonly "${R}/tmp/pi-bluetooth/usr/bin/btuart" "${R}/usr/bin/btuart"
130 130 install_readonly "${R}/tmp/pi-bluetooth/usr/bin/bthelper" "${R}/usr/bin/bthelper"
131 131
132 132 # Install bluetooth udev rule
133 133 install_readonly "${R}/tmp/pi-bluetooth/lib/udev/rules.d/90-pi-bluetooth.rules" "${LIB_DIR}/udev/rules.d/90-pi-bluetooth.rules"
134 134 # aur
135 135 # install_readonly "${R}/tmp/pi-bluetooth/50-bluetooth-hci-auto-poweron.rules" "${ETC_DIR}/udev/rules.d/50-bluetooth-hci-auto-poweron.rules"
136 136
137 137 # Install Firmware Flash file and apropiate licence
138 138 mkdir "${ETC_DIR}/firmware/"
139 139
140 140 # Install firmware and licence
141 141 # install_readonly "${R}/tmp/pi-bluetooth/LICENCE.broadcom_bcm43xx" "${ETC_DIR}/firmware/LICENCE.broadcom_bcm43xx"
142 142 # install_readonly "${R}/tmp/pi-bluetooth/BCM43430A1.hcd" "${ETC_DIR}/firmware/BCM43430A1.hcd"
143 143 install_readonly "${R}/tmp/pi-bluetooth/LICENCE.broadcom_bcm43xx" "${ETC_DIR}/firmware/LICENCE.broadcom_bcm43xx"
144 144 install_readonly "${R}/tmp/pi-bluetooth/BCM43430A1.hcd" "${ETC_DIR}/firmware/LICENCE.broadcom_bcm43xx"
145 145
146 146 # Install systemd service for bluetooth
147 147 # install_readonly "${R}/tmp/pi-bluetooth/brcm43438.service" "${ETC_DIR}/systemd/system/brcm43438.service"
148 148 install_readonly "${R}/tmp/pi-bluetooth/debian/pi-bluetooth.bthelper@.service" "${ETC_DIR}/systemd/system/pi-bluetooth.bthelper@.service"
149 149 install_readonly "${R}/tmp/pi-bluetooth/debian/pi-bluetooth.hciuart.service" "${ETC_DIR}/systemd/system/pi-bluetooth.hciuart.service"
150
151
152 150 install_readonly "${R}/tmp/pi-bluetooth/99-com.rules" "${ETC_DIR}/udev/rules.d/99-com.rules"
153 151
154 152 # Remove temporary directory
155 153 rm -fr "${temp_dir}"
156
157 # Get /dev/serial back for compability
158
159
160 154 fi
161 155 fi
162 156
163 157 # Create firmware configuration and cmdline symlinks
164 158 ln -sf firmware/config.txt "${R}/boot/config.txt"
165 159 ln -sf firmware/cmdline.txt "${R}/boot/cmdline.txt"
166 160
167 161 # Install and setup kernel modules to load at boot
168 162 mkdir -p "${LIB_DIR}/modules-load.d/"
169 163 install_readonly files/modules/rpi2.conf "${LIB_DIR}/modules-load.d/rpi2.conf"
170 164
171 165 # Load hardware random module at boot
172 166 if [ "$ENABLE_HWRANDOM" = true ] && [ "$BUILD_KERNEL" = false ] ; then
173 167 sed -i "s/^# bcm2708_rng/bcm2708_rng/" "${LIB_DIR}/modules-load.d/rpi2.conf"
174 168 fi
175 169
176 170 # Load sound module at boot
177 171 if [ "$ENABLE_SOUND" = true ] ; then
178 172 sed -i "s/^# snd_bcm2835/snd_bcm2835/" "${LIB_DIR}/modules-load.d/rpi2.conf"
179 173 else
180 174 echo "dtparam=audio=off" >> "${BOOT_DIR}/config.txt"
181 175 fi
182 176
183 177 # Enable I2C interface
184 178 if [ "$ENABLE_I2C" = true ] ; then
185 179 echo "dtparam=i2c_arm=on" >> "${BOOT_DIR}/config.txt"
186 180 sed -i "s/^# i2c-bcm2708/i2c-bcm2708/" "${LIB_DIR}/modules-load.d/rpi2.conf"
187 181 sed -i "s/^# i2c-dev/i2c-dev/" "${LIB_DIR}/modules-load.d/rpi2.conf"
188 182 fi
189 183
190 184 # Enable SPI interface
191 185 if [ "$ENABLE_SPI" = true ] ; then
192 186 echo "dtparam=spi=on" >> "${BOOT_DIR}/config.txt"
193 187 echo "spi-bcm2708" >> "${LIB_DIR}/modules-load.d/rpi2.conf"
194 188 if [ "$RPI_MODEL" = 3 ] || [ "$RPI_MODEL" = 3P ]; then
195 189 sed -i "s/spi-bcm2708/spi-bcm2835/" "${LIB_DIR}/modules-load.d/rpi2.conf"
196 190 fi
197 191 fi
198 192
199 193 # Disable RPi2/3 under-voltage warnings
200 194 if [ -n "$DISABLE_UNDERVOLT_WARNINGS" ] ; then
201 195 echo "avoid_warnings=${DISABLE_UNDERVOLT_WARNINGS}" >> "${BOOT_DIR}/config.txt"
202 196 fi
203 197
204 198 # Install kernel modules blacklist
205 199 mkdir -p "${ETC_DIR}/modprobe.d/"
206 200 install_readonly files/modules/raspi-blacklist.conf "${ETC_DIR}/modprobe.d/raspi-blacklist.conf"
207 201
208 202 # Install sysctl.d configuration files
209 203 install_readonly files/sysctl.d/81-rpi-vm.conf "${ETC_DIR}/sysctl.d/81-rpi-vm.conf"
Show file before | Show file after | Hide comments
@@ -1,16 +1,16
1 1 # Set device tree fdtfile
2 setenv dtbfile bcm2710-rpi-3-b.dtb
2 setenv dtbfile bcm2709-rpi-2-b.dtb
3 3
4 4 # Tell Linux that it is booting on a Raspberry Pi2/3
5 5 setenv machid 0x00000c42
6 6
7 7 # Save these changes to u-boot's environment
8 8 saveenv
9 9
10 10 # Load the existing Linux kernel into RAM
11 11 mmc dev 0
12 fatload mmc 0:1 ${kernel_addr_r} Image
12 fatload mmc 0:1 ${kernel_addr_r} kernel7.img
13 13 fatload mmc 0:1 ${fdt_addr_r} ${dtbfile}
14 14 fatload mmc 0:1 ${ramdisk_addr_r} ${initramfs}
15 15
16 16 # Boot the kernel we have just loaded
Show file before | Show file after | Hide comments
@@ -1,829 +1,830
1 1 #!/bin/sh
2 2 ########################################################################
3 3 # rpi23-gen-image.sh 2015-2017
4 4 #
5 5 # Advanced Debian "stretch" and "buster" bootstrap script for RPi2/3
6 6 #
7 7 # This program is free software; you can redistribute it and/or
8 8 # modify it under the terms of the GNU General Public License
9 9 # as published by the Free Software Foundation; either version 2
10 10 # of the License, or (at your option) any later version.
11 11 #
12 12 # Copyright (C) 2015 Jan Wagner <mail@jwagner.eu>
13 13 #
14 14 # Big thanks for patches and enhancements by 20+ github contributors!
15 15 ########################################################################
16 16
17 17 # Are we running as root?
18 18 if [ "$(id -u)" -ne "0" ] ; then
19 19 echo "error: this script must be executed with root privileges!"
20 20 exit 1
21 21 fi
22 22
23 23 # Check if ./functions.sh script exists
24 24 if [ ! -r "./functions.sh" ] ; then
25 25 echo "error: './functions.sh' required script not found!"
26 26 exit 1
27 27 fi
28 28
29 29 # Load utility functions
30 30 . ./functions.sh
31 31
32 32 # Load parameters from configuration template file
33 33 if [ -n "$CONFIG_TEMPLATE" ] ; then
34 34 use_template
35 35 fi
36 36
37 37 # Introduce settings
38 38 set -e
39 39 echo -n -e "\n#\n# RPi2/3 Bootstrap Settings\n#\n"
40 40 set -x
41 41
42 42 # Raspberry Pi model configuration
43 export RPI_MODEL=${RPI_MODEL:=2}
43 RPI_MODEL=${RPI_MODEL:=2}
44 44
45 45 # Debian release
46 export RELEASE=${RELEASE:=buster}
46 RELEASE=${RELEASE:=buster}
47 47
48 48 #Kernel Branch
49 export KERNEL_BRANCH=${KERNEL_BRANCH:=""}
49 KERNEL_BRANCH=${KERNEL_BRANCH:=""}
50 50
51 51 # URLs
52 52 KERNEL_URL=${KERNEL_URL:=https://github.com/raspberrypi/linux}
53 53 FIRMWARE_URL=${FIRMWARE_URL:=https://github.com/raspberrypi/firmware/raw/master/boot}
54 54 WLAN_FIRMWARE_URL=${WLAN_FIRMWARE_URL:=https://github.com/RPi-Distro/firmware-nonfree/raw/master/brcm}
55 55 COLLABORA_URL=${COLLABORA_URL:=https://repositories.collabora.co.uk/debian}
56 56 FBTURBO_URL=${FBTURBO_URL:=https://github.com/ssvb/xf86-video-fbturbo.git}
57 57 UBOOT_URL=${UBOOT_URL:=https://git.denx.de/u-boot.git}
58 58 VIDEOCORE_URL=${VIDEOCORE_URL:=https://github.com/raspberrypi/userland}
59 59 #BIS= Kernel has KVM and zswap enabled
60 60 RPI3_64_BIS_KERNEL_URL=${RPI3_64_BIS_KERNEL_URL:=https://github.com/sakaki-/bcmrpi3-kernel-bis/releases/download/4.14.80.20181113/bcmrpi3-kernel-bis-4.14.80.20181113.tar.xz}
61 61 #default bcmrpi3_defconfig target kernel
62 62 RPI3_64_DEF_KERNEL_URL=${RPI3_64_DEF_KERNEL_URL:=https://github.com/sakaki-/bcmrpi3-kernel/releases/download/4.14.80.20181113/bcmrpi3-kernel-4.14.80.20181113.tar.xz}
63 63 #enhanced kernel
64 64 RPI3_64_KERNEL_URL=${RPI3_64_KERNEL_URL:=$RPI3_64_BIS_KERNEL_URL}
65 65 BLUETOOTH_URL=${BLUETOOTH_URL:=https://github.com/RPi-Distro/pi-bluetooth.git}
66 66
67 67 # Build directories
68 68 BASEDIR=${BASEDIR:=$(pwd)/images/${RELEASE}}
69 69 BUILDDIR="${BASEDIR}/build"
70 70
71 71 # Prepare date string for default image file name
72 72 DATE="$(date +%Y-%m-%d)"
73 73 if [ -z "$KERNEL_BRANCH" ] ; then
74 74 IMAGE_NAME=${IMAGE_NAME:=${BASEDIR}/${DATE}-${KERNEL_ARCH}-CURRENT-rpi${RPI_MODEL}-${RELEASE}-${RELEASE_ARCH}}
75 75 else
76 76 IMAGE_NAME=${IMAGE_NAME:=${BASEDIR}/${DATE}-${KERNEL_ARCH}-${KERNEL_BRANCH}-rpi${RPI_MODEL}-${RELEASE}-${RELEASE_ARCH}}
77 77 fi
78 78
79 79 # Chroot directories
80 80 R="${BUILDDIR}/chroot"
81 81 ETC_DIR="${R}/etc"
82 82 LIB_DIR="${R}/lib"
83 83 BOOT_DIR="${R}/boot/firmware"
84 84 KERNEL_DIR="${R}/usr/src/linux"
85 85 WLAN_FIRMWARE_DIR="${LIB_DIR}/firmware/brcm"
86 86
87 87 # Firmware directory: Blank if download from github
88 88 RPI_FIRMWARE_DIR=${RPI_FIRMWARE_DIR:=""}
89
89 90 # General settings
90 91 SET_ARCH=${SET_ARCH:=32}
91 92 HOSTNAME=${HOSTNAME:=rpi${RPI_MODEL}-${RELEASE}}
92 93 PASSWORD=${PASSWORD:=raspberry}
93 94 USER_PASSWORD=${USER_PASSWORD:=raspberry}
94 95 DEFLOCAL=${DEFLOCAL:="en_US.UTF-8"}
95 96 TIMEZONE=${TIMEZONE:="Europe/Berlin"}
96 97 EXPANDROOT=${EXPANDROOT:=true}
97 98
98 99 # Keyboard settings
99 100 XKB_MODEL=${XKB_MODEL:=""}
100 101 XKB_LAYOUT=${XKB_LAYOUT:=""}
101 102 XKB_VARIANT=${XKB_VARIANT:=""}
102 103 XKB_OPTIONS=${XKB_OPTIONS:=""}
103 104
104 105 # Network settings (DHCP)
105 106 ENABLE_DHCP=${ENABLE_DHCP:=true}
106 107
107 108 # Network settings (static)
108 109 NET_ADDRESS=${NET_ADDRESS:=""}
109 110 NET_GATEWAY=${NET_GATEWAY:=""}
110 111 NET_DNS_1=${NET_DNS_1:=""}
111 112 NET_DNS_2=${NET_DNS_2:=""}
112 113 NET_DNS_DOMAINS=${NET_DNS_DOMAINS:=""}
113 114 NET_NTP_1=${NET_NTP_1:=""}
114 115 NET_NTP_2=${NET_NTP_2:=""}
115 116
116 117 # APT settings
117 118 APT_PROXY=${APT_PROXY:=""}
118 119 APT_SERVER=${APT_SERVER:="ftp.debian.org"}
119 120
120 121 # Feature settings
121 122 ENABLE_CONSOLE=${ENABLE_CONSOLE:=true}
122 123 ENABLE_I2C=${ENABLE_I2C:=false}
123 124 ENABLE_SPI=${ENABLE_SPI:=false}
124 125 ENABLE_IPV6=${ENABLE_IPV6:=true}
125 126 ENABLE_SSHD=${ENABLE_SSHD:=true}
126 127 ENABLE_NONFREE=${ENABLE_NONFREE:=false}
127 128 ENABLE_WIRELESS=${ENABLE_WIRELESS:=false}
128 129 ENABLE_SOUND=${ENABLE_SOUND:=true}
129 130 ENABLE_DBUS=${ENABLE_DBUS:=true}
130 131 ENABLE_HWRANDOM=${ENABLE_HWRANDOM:=true}
131 132 ENABLE_MINGPU=${ENABLE_MINGPU:=false}
132 133 ENABLE_XORG=${ENABLE_XORG:=false}
133 134 ENABLE_WM=${ENABLE_WM:=""}
134 135 ENABLE_RSYSLOG=${ENABLE_RSYSLOG:=true}
135 136 ENABLE_USER=${ENABLE_USER:=true}
136 137 USER_NAME=${USER_NAME:="pi"}
137 138 ENABLE_ROOT=${ENABLE_ROOT:=false}
138 139 ENABLE_QEMU=${ENABLE_QEMU:=false}
139 140 ENABLE_SYSVINIT=${ENABLE_SYSVINIT:=false}
140 141
141 142 # SSH settings
142 143 SSH_ENABLE_ROOT=${SSH_ENABLE_ROOT:=false}
143 144 SSH_DISABLE_PASSWORD_AUTH=${SSH_DISABLE_PASSWORD_AUTH:=false}
144 145 SSH_LIMIT_USERS=${SSH_LIMIT_USERS:=false}
145 146 SSH_ROOT_PUB_KEY=${SSH_ROOT_PUB_KEY:=""}
146 147 SSH_USER_PUB_KEY=${SSH_USER_PUB_KEY:=""}
147 148
148 149 # Advanced settings
149 150 ENABLE_MINBASE=${ENABLE_MINBASE:=false}
150 151 ENABLE_REDUCE=${ENABLE_REDUCE:=false}
151 152 ENABLE_UBOOT=${ENABLE_UBOOT:=false}
152 153 UBOOTSRC_DIR=${UBOOTSRC_DIR:=""}
153 154 ENABLE_UBOOTUSB=${ENABLE_UBOOTUSB=false}
154 155 ENABLE_FBTURBO=${ENABLE_FBTURBO:=false}
155 156 ENABLE_VIDEOCORE=${ENABLE_VIDEOCORE:=true}
156 157 VIDEOCORESRC_DIR=${VIDEOCORESRC_DIR:=""}
157 158 FBTURBOSRC_DIR=${FBTURBOSRC_DIR:=""}
158 159 ENABLE_HARDNET=${ENABLE_HARDNET:=false}
159 160 ENABLE_IPTABLES=${ENABLE_IPTABLES:=false}
160 161 ENABLE_SPLITFS=${ENABLE_SPLITFS:=false}
161 162 ENABLE_INITRAMFS=${ENABLE_INITRAMFS:=false}
162 163 ENABLE_IFNAMES=${ENABLE_IFNAMES:=true}
163 164 DISABLE_UNDERVOLT_WARNINGS=${DISABLE_UNDERVOLT_WARNINGS:=}
164 165
165 166 # Kernel compilation settings
166 167 BUILD_KERNEL=${BUILD_KERNEL:=true}
167 168 KERNEL_REDUCE=${KERNEL_REDUCE:=false}
168 169 KERNEL_THREADS=${KERNEL_THREADS:=1}
169 170 KERNEL_HEADERS=${KERNEL_HEADERS:=true}
170 171 KERNEL_MENUCONFIG=${KERNEL_MENUCONFIG:=false}
171 172 KERNEL_REMOVESRC=${KERNEL_REMOVESRC:=true}
172 173 KERNEL_OLDDEFCONFIG=${KERNEL_OLDDEFCONFIG:=false}
173 174 KERNEL_CCACHE=${KERNEL_CCACHE:=false}
174 175 KERNEL_ZSWAP=${KERNEL_ZSWAP:=false}
175 176 KERNEL_VIRT=${KERNEL_VIRT:=false}
176 177 KERNEL_BPF=${KERNEL_BPF:=true}
177 178
178 179 # Kernel compilation from source directory settings
179 180 KERNELSRC_DIR=${KERNELSRC_DIR:=""}
180 181 KERNELSRC_CLEAN=${KERNELSRC_CLEAN:=false}
181 182 KERNELSRC_CONFIG=${KERNELSRC_CONFIG:=true}
182 183 KERNELSRC_PREBUILT=${KERNELSRC_PREBUILT:=false}
183 184
184 185 # Reduce disk usage settings
185 186 REDUCE_APT=${REDUCE_APT:=true}
186 187 REDUCE_DOC=${REDUCE_DOC:=true}
187 188 REDUCE_MAN=${REDUCE_MAN:=true}
188 189 REDUCE_VIM=${REDUCE_VIM:=false}
189 190 REDUCE_BASH=${REDUCE_BASH:=false}
190 191 REDUCE_HWDB=${REDUCE_HWDB:=true}
191 192 REDUCE_SSHD=${REDUCE_SSHD:=true}
192 193 REDUCE_LOCALE=${REDUCE_LOCALE:=true}
193 194
194 195 # Encrypted filesystem settings
195 196 ENABLE_CRYPTFS=${ENABLE_CRYPTFS:=false}
196 197 CRYPTFS_PASSWORD=${CRYPTFS_PASSWORD:=""}
197 198 CRYPTFS_MAPPING=${CRYPTFS_MAPPING:="secure"}
198 199 CRYPTFS_CIPHER=${CRYPTFS_CIPHER:="aes-xts-plain64:sha512"}
199 200 CRYPTFS_XTSKEYSIZE=${CRYPTFS_XTSKEYSIZE:=512}
200 201
201 202 # Chroot scripts directory
202 203 CHROOT_SCRIPTS=${CHROOT_SCRIPTS:=""}
203 204
204 205 # Packages required in the chroot build environment
205 206 APT_INCLUDES=${APT_INCLUDES:=""}
206 207 APT_INCLUDES="${APT_INCLUDES},apt-transport-https,apt-utils,ca-certificates,debian-archive-keyring,dialog,sudo,systemd,sysvinit-utils,locales,keyboard-configuration,console-setup"
207 208
208 209 #Packages to exclude from chroot build environment
209 210 APT_EXCLUDES=${APT_EXCLUDES:=""}
210 211
211 212 # Packages required for bootstrapping
212 213 REQUIRED_PACKAGES="debootstrap debian-archive-keyring qemu-user-static binfmt-support dosfstools rsync bmap-tools whois git bc psmisc dbus sudo netselect-apt"
213 214 MISSING_PACKAGES=""
214 215
215 216 # Packages installed for c/c++ build environment in chroot (keep empty)
216 217 COMPILER_PACKAGES=""
217 218
218 219 #If init and systemd-sysv are wanted e.g. halt/reboot/shutdown scripts
219 220 if [ "$ENABLE_SYSVINIT" = false ] ; then
220 221 APT_EXCLUDES="--exclude=${APT_EXCLUDES},init,systemd-sysv"
221 222 fi
222 223
223 224 #Check if apt-cacher-ng has its default port open on and set APT_PROXY
224 225 if [ -n "$(lsof -i :3142)" ] ; then
225 226 HTTP_PROXY=http://127.0.0.1:3142/
226 227 fi
227 228
228 229 #ipinfo=$(curl ipinfo.io | grep country )
229 230 #grep -o '\"[^"]*\"' $ipinfo | tr -d '"'
230 231 #grep -Po '"country":.*?[^\\]",' $(curl ipinfo.io | grep country )
231 232 #sed -i "s,http:,https:,g" "${ETC_DIR}/apt/sources.list"
232 233 #autconfigure best apt server to not spam ftp.debian.org
233 234 #rm files/apt/sources.list
234 235 #netselect-apt does not know buster yet
235 236 if [ "$RELEASE" = "buster" ] ; then
236 237 RLS=testing
237 238 else
238 239 RLS="$RELEASE"
239 240 fi
240 241
241 242 if [ -f "$(pwd)/files/apt/sources.list" ] ; then
242 243 rm "$(pwd)/files/apt/sources.list"
243 244 fi
244 245
245 246 if [ "$ENABLE_NONFREE" = true ] ; then
246 247 netselect-apt --arch "$RELEASE_ARCH" --tests 10 --sources --nonfree --outfile "$(pwd)/files/apt/sources.list" -d "$RLS"
247 248 else
248 249 netselect-apt --arch "$RELEASE_ARCH" --tests 10 --sources --outfile "$(pwd)/files/apt/sources.list" -d "$RLS"
249 250 fi
250 251
251 252 #sed and cut the result string so we can use it as APT_SERVER
252 253 APT_SERVER=$(grep -m 1 http files/apt/sources.list | sed "s|http://| |g" | cut -d ' ' -f 3)
253 254 APT_SERVER=${APT_SERVER::-1}
254 255
255 256 #make script easier and more stable to use with convenient setup switch. Just setup SET_ARCH and RPI_MODEL and your good to go!
256 257 if [ -n "$SET_ARCH" ] ; then
257 258 echo "Setting Architecture specific settings"
258 259 ##################################
259 260 # 64 bit config
260 261 ##################################
261 262 if [ "$SET_ARCH" = 64 ] ; then
262 263 echo "64 bit mode selected - Setting up enviroment"
263 264 # 64 bit depended settings
264 265 QEMU_BINARY=${QEMU_BINARY:=/usr/bin/qemu-aarch64-static}
265 266 KERNEL_ARCH=${KERNEL_ARCH:=arm64}
266 267 KERNEL_BIN_IMAGE=${KERNEL_BIN_IMAGE:="Image"}
267 268
268 269 if [ "$RPI_MODEL" = 3 ] || [ "$RPI_MODEL" = 3P ] ; then
269 270 REQUIRED_PACKAGES="${REQUIRED_PACKAGES} crossbuild-essential-arm64"
270 271 KERNEL_DEFCONFIG=${KERNEL_DEFCONFIG:=bcmrpi3_defconfig}
271 272 RELEASE_ARCH=${RELEASE_ARCH:=arm64}
272 273 KERNEL_IMAGE=${KERNEL_IMAGE:=kernel8.img}
273 274 CROSS_COMPILE=${CROSS_COMPILE:=aarch64-linux-gnu-}
274 275 else
275 276 echo "error: Only Raspberry PI 3 and 3B+ support 64bit"
276 277 exit 1
277 278 fi
278 279 fi
279 280
280 281 ##################################
281 282 # 32 bit config
282 283 ##################################
283 284 if [ "$SET_ARCH" = 32 ] ; then
284 285 echo "32 bit mode selected - Setting up enviroment"
285 286 #General 32bit configuration
286 287 QEMU_BINARY=${QEMU_BINARY:=/usr/bin/qemu-arm-static}
287 288 KERNEL_ARCH=${KERNEL_ARCH:=arm}
288 289 KERNEL_BIN_IMAGE=${KERNEL_BIN_IMAGE:="zImage"}
289 290
290 291 #Raspberry setting grouped by board compability
291 292 if [ "$RPI_MODEL" = 0 ] || [ "$RPI_MODEL" = 1 ] || [ "$RPI_MODEL" = 1P ] ; then
292 293 echo "Setting settings for bcm2835 Raspberry PI boards"
293 294 REQUIRED_PACKAGES="${REQUIRED_PACKAGES} crossbuild-essential-armel"
294 295 KERNEL_DEFCONFIG=${KERNEL_DEFCONFIG:=bcmrpi_defconfig}
295 296 RELEASE_ARCH=${RELEASE_ARCH:=armel}
296 297 KERNEL_IMAGE=${KERNEL_IMAGE:=kernel.img}
297 298 CROSS_COMPILE=${CROSS_COMPILE:=arm-linux-gnueabi-}
298 299 fi
299 300 if [ "$RPI_MODEL" = 2 ] || [ "$RPI_MODEL" = 3 ] || [ "$RPI_MODEL" = 3P ] ; then
300 301 echo "Setting settings for bcm2837 Raspberry PI boards"
301 302 REQUIRED_PACKAGES="${REQUIRED_PACKAGES} crossbuild-essential-armhf"
302 303 KERNEL_DEFCONFIG=${KERNEL_DEFCONFIG:=bcm2709_defconfig}
303 304 RELEASE_ARCH=${RELEASE_ARCH:=armhf}
304 305 KERNEL_IMAGE=${KERNEL_IMAGE:=kernel7.img}
305 306 CROSS_COMPILE=${CROSS_COMPILE:=arm-linux-gnueabihf-}
306 307 fi
307 308 fi
308 309 #SET_ARCH not set
309 310 else
310 311 echo "error: Please set '32' or '64' as value for SET_ARCH"
311 312 exit 1
312 313 fi
313 314
314 315 #Device specific configuration
315 316 echo "Select DTB-File"
316 317 case "$RPI_MODEL" in
317 318 0)
318 319 DTB_FILE=${DTB_FILE:=bcm2708-rpi-0-w.dtb}
319 320 UBOOT_CONFIG=${UBOOT_CONFIG:=rpi_defconfig}
320 321 ;;
321 322 1)
322 323 DTB_FILE=${DTB_FILE:=bcm2708-rpi-b.dtb}
323 324 UBOOT_CONFIG=${UBOOT_CONFIG:=rpi_defconfig}
324 325 ;;
325 326 1P)
326 327 DTB_FILE=${DTB_FILE:=bcm2708-rpi-b-plus.dtb}
327 328 UBOOT_CONFIG=${UBOOT_CONFIG:=rpi_defconfig}
328 329 ;;
329 330 2)
330 331 DTB_FILE=${DTB_FILE:=bcm2709-rpi-2-b.dtb}
331 332 UBOOT_CONFIG=${UBOOT_CONFIG:=rpi_2_defconfig}
332 333 ;;
333 334 3)
334 335 DTB_FILE=${DTB_FILE:=bcm2710-rpi-3-b.dtb}
335 336 UBOOT_CONFIG=${UBOOT_CONFIG:=rpi_3_defconfig}
336 337 ;;
337 338 3P)
338 339 DTB_FILE=${DTB_FILE:=bcm2710-rpi-3-b.dtb}
339 340 UBOOT_CONFIG=${UBOOT_CONFIG:=rpi_3_defconfig}
340 341 ;;
341 342 *)
342 343 echo "error: Raspberry Pi model $RPI_MODEL is not supported!"
343 344 exit 1
344 345 ;;
345 346 esac
346 347 echo "$DTB_FILE selected"
347 348
348 349 #DEBUG off
349 350 set +x
350 351
351 352 # Check if the internal wireless interface is supported by the RPi model
352 353 if [ "$ENABLE_WIRELESS" = true ] ; then
353 354 if [ "$RPI_MODEL" = 1 ] || [ "$RPI_MODEL" = 1P ] || [ "$RPI_MODEL" = 2 ] ; then
354 355 echo "error: The selected Raspberry Pi model has no internal wireless interface"
355 356 exit 1
356 357 else
357 358 echo "Raspberry Pi $RPI_MODEL has WIFI support"
358 359 fi
359 360 fi
360 361
361 362 # Check if DISABLE_UNDERVOLT_WARNINGS parameter value is supported
362 363 if [ -n "$DISABLE_UNDERVOLT_WARNINGS" ] ; then
363 364 if [ "$DISABLE_UNDERVOLT_WARNINGS" != 1 ] && [ "$DISABLE_UNDERVOLT_WARNINGS" != 2 ] ; then
364 365 echo "error: DISABLE_UNDERVOLT_WARNINGS=${DISABLE_UNDERVOLT_WARNINGS} is not supported"
365 366 exit 1
366 367 fi
367 368 fi
368 369
369 370 if [ "$ENABLE_VIDEOCORE" = true ] ; then
370 371 REQUIRED_PACKAGES="${REQUIRED_PACKAGES} cmake"
371 372 fi
372 373
373 374 # Add libncurses5 to enable kernel menuconfig
374 375 if [ "$KERNEL_MENUCONFIG" = true ] ; then
375 376 REQUIRED_PACKAGES="${REQUIRED_PACKAGES} libncurses-dev"
376 377 fi
377 378
378 379 # Add ccache compiler cache for (faster) kernel cross (re)compilation
379 380 if [ "$KERNEL_CCACHE" = true ] ; then
380 381 REQUIRED_PACKAGES="${REQUIRED_PACKAGES} ccache"
381 382 fi
382 383
383 384 # Add cryptsetup package to enable filesystem encryption
384 385 if [ "$ENABLE_CRYPTFS" = true ] && [ "$BUILD_KERNEL" = true ] ; then
385 386 REQUIRED_PACKAGES="${REQUIRED_PACKAGES} cryptsetup"
386 387 APT_INCLUDES="${APT_INCLUDES},cryptsetup,busybox,console-setup"
387 388
388 389 if [ -z "$CRYPTFS_PASSWORD" ] ; then
389 390 echo "error: no password defined (CRYPTFS_PASSWORD)!"
390 391 exit 1
391 392 fi
392 393 ENABLE_INITRAMFS=true
393 394 fi
394 395
395 396 # Add initramfs generation tools
396 397 if [ "$ENABLE_INITRAMFS" = true ] && [ "$BUILD_KERNEL" = true ] ; then
397 398 APT_INCLUDES="${APT_INCLUDES},initramfs-tools"
398 399 fi
399 400
400 401 # Add device-tree-compiler required for building the U-Boot bootloader
401 402 if [ "$ENABLE_UBOOT" = true ] ; then
402 403 APT_INCLUDES="${APT_INCLUDES},device-tree-compiler,bison,flex,bc"
403 404 else
404 405 if [ "$ENABLE_UBOOTUSB" = true ] ; then
405 406 echo "error: Enabling UBOOTUSB requires u-boot to be enabled"
406 407 exit 1
407 408 fi
408 409 fi
409 410
410 411 # Check if root SSH (v2) public key file exists
411 412 if [ -n "$SSH_ROOT_PUB_KEY" ] ; then
412 413 if [ ! -f "$SSH_ROOT_PUB_KEY" ] ; then
413 414 echo "error: '$SSH_ROOT_PUB_KEY' specified SSH public key file not found (SSH_ROOT_PUB_KEY)!"
414 415 exit 1
415 416 fi
416 417 fi
417 418
418 419 # Check if $USER_NAME SSH (v2) public key file exists
419 420 if [ -n "$SSH_USER_PUB_KEY" ] ; then
420 421 if [ ! -f "$SSH_USER_PUB_KEY" ] ; then
421 422 echo "error: '$SSH_USER_PUB_KEY' specified SSH public key file not found (SSH_USER_PUB_KEY)!"
422 423 exit 1
423 424 fi
424 425 fi
425 426
426 427 # Check if all required packages are installed on the build system
427 428 for package in $REQUIRED_PACKAGES ; do
428 429 if [ "$(dpkg-query -W -f='${Status}' $package)" != "install ok installed" ] ; then
429 430 MISSING_PACKAGES="${MISSING_PACKAGES} $package"
430 431 fi
431 432 done
432 433
433 434 # If there are missing packages ask confirmation for install, or exit
434 435 if [ -n "$MISSING_PACKAGES" ] ; then
435 436 echo "the following packages needed by this script are not installed:"
436 437 echo "$MISSING_PACKAGES"
437 438
438 439 printf "\ndo you want to install the missing packages right now? [y/n] "
439 440 read -r confirm
440 441 [ "$confirm" != "y" ] && exit 1
441 442
442 443 # Make sure all missing required packages are installed
443 444 apt-get -qq -y install "${MISSING_PACKAGES}"
444 445 fi
445 446
446 447 # Check if ./bootstrap.d directory exists
447 448 if [ ! -d "./bootstrap.d/" ] ; then
448 449 echo "error: './bootstrap.d' required directory not found!"
449 450 exit 1
450 451 fi
451 452
452 453 # Check if ./files directory exists
453 454 if [ ! -d "./files/" ] ; then
454 455 echo "error: './files' required directory not found!"
455 456 exit 1
456 457 fi
457 458
458 459 # Check if specified KERNELSRC_DIR directory exists
459 460 if [ -n "$KERNELSRC_DIR" ] && [ ! -d "$KERNELSRC_DIR" ] ; then
460 461 echo "error: '${KERNELSRC_DIR}' specified directory not found (KERNELSRC_DIR)!"
461 462 exit 1
462 463 fi
463 464
464 465 # Check if specified UBOOTSRC_DIR directory exists
465 466 if [ -n "$UBOOTSRC_DIR" ] && [ ! -d "$UBOOTSRC_DIR" ] ; then
466 467 echo "error: '${UBOOTSRC_DIR}' specified directory not found (UBOOTSRC_DIR)!"
467 468 exit 1
468 469 fi
469 470
470 471 # Check if specified VIDEOCORESRC_DIR directory exists
471 472 if [ -n "$VIDEOCORESRC_DIR" ] && [ ! -d "$VIDEOCORESRC_DIR" ] ; then
472 473 echo "error: '${VIDEOCORESRC_DIR}' specified directory not found (VIDEOCORESRC_DIR)!"
473 474 exit 1
474 475 fi
475 476
476 477 # Check if specified FBTURBOSRC_DIR directory exists
477 478 if [ -n "$FBTURBOSRC_DIR" ] && [ ! -d "$FBTURBOSRC_DIR" ] ; then
478 479 echo "error: '${FBTURBOSRC_DIR}' specified directory not found (FBTURBOSRC_DIR)!"
479 480 exit 1
480 481 fi
481 482
482 483 # Check if specified CHROOT_SCRIPTS directory exists
483 484 if [ -n "$CHROOT_SCRIPTS" ] && [ ! -d "$CHROOT_SCRIPTS" ] ; then
484 485 echo "error: ${CHROOT_SCRIPTS} specified directory not found (CHROOT_SCRIPTS)!"
485 486 exit 1
486 487 fi
487 488
488 489 # Check if specified device mapping already exists (will be used by cryptsetup)
489 490 if [ -r "/dev/mapping/${CRYPTFS_MAPPING}" ] ; then
490 491 echo "error: mapping /dev/mapping/${CRYPTFS_MAPPING} already exists, not proceeding"
491 492 exit 1
492 493 fi
493 494
494 495 # Don't clobber an old build
495 496 if [ -e "$BUILDDIR" ] ; then
496 497 echo "error: directory ${BUILDDIR} already exists, not proceeding"
497 498 exit 1
498 499 fi
499 500
500 501 # Setup chroot directory
501 502 mkdir -p "${R}"
502 503
503 504 # Check if build directory has enough of free disk space >512MB
504 505 if [ "$(df --output=avail "${BUILDDIR}" | sed "1d")" -le "524288" ] ; then
505 506 echo "error: ${BUILDDIR} not enough space left to generate the output image!"
506 507 exit 1
507 508 fi
508 509
509 510 set -x
510 511
511 512 # Call "cleanup" function on various signals and errors
512 513 trap cleanup 0 1 2 3 6
513 514
514 515 # Add required packages for the minbase installation
515 516 if [ "$ENABLE_MINBASE" = true ] ; then
516 517 APT_INCLUDES="${APT_INCLUDES},vim-tiny,netbase,net-tools,ifupdown"
517 518 fi
518 519
519 520 # Add parted package, required to get partprobe utility
520 521 if [ "$EXPANDROOT" = true ] ; then
521 522 APT_INCLUDES="${APT_INCLUDES},parted"
522 523 fi
523 524
524 525 # Add dbus package, recommended if using systemd
525 526 if [ "$ENABLE_DBUS" = true ] ; then
526 527 APT_INCLUDES="${APT_INCLUDES},dbus"
527 528 fi
528 529
529 530 # Add iptables IPv4/IPv6 package
530 531 if [ "$ENABLE_IPTABLES" = true ] ; then
531 532 APT_INCLUDES="${APT_INCLUDES},iptables,iptables-persistent"
532 533 fi
533 534
534 535 # Add openssh server package
535 536 if [ "$ENABLE_SSHD" = true ] ; then
536 537 APT_INCLUDES="${APT_INCLUDES},openssh-server"
537 538 fi
538 539
539 540 # Add alsa-utils package
540 541 if [ "$ENABLE_SOUND" = true ] ; then
541 542 APT_INCLUDES="${APT_INCLUDES},alsa-utils"
542 543 fi
543 544
544 545 # Add rng-tools package
545 546 if [ "$ENABLE_HWRANDOM" = true ] ; then
546 547 APT_INCLUDES="${APT_INCLUDES},rng-tools"
547 548 fi
548 549
549 550 # Add fbturbo video driver
550 551 if [ "$ENABLE_FBTURBO" = true ] ; then
551 552 # Enable xorg package dependencies
552 553 ENABLE_XORG=true
553 554 fi
554 555
555 556 # Add user defined window manager package
556 557 if [ -n "$ENABLE_WM" ] ; then
557 558 APT_INCLUDES="${APT_INCLUDES},${ENABLE_WM}"
558 559
559 560 # Enable xorg package dependencies
560 561 ENABLE_XORG=true
561 562 fi
562 563
563 564 # Add xorg package
564 565 if [ "$ENABLE_XORG" = true ] ; then
565 566 APT_INCLUDES="${APT_INCLUDES},xorg,dbus-x11"
566 567 fi
567 568
568 569 # Replace selected packages with smaller clones
569 570 if [ "$ENABLE_REDUCE" = true ] ; then
570 571 # Add levee package instead of vim-tiny
571 572 if [ "$REDUCE_VIM" = true ] ; then
572 573 APT_INCLUDES="$(echo ${APT_INCLUDES} | sed "s/vim-tiny/levee/")"
573 574 fi
574 575
575 576 # Add dropbear package instead of openssh-server
576 577 if [ "$REDUCE_SSHD" = true ] ; then
577 578 APT_INCLUDES="$(echo "${APT_INCLUDES}" | sed "s/openssh-server/dropbear/")"
578 579 fi
579 580 fi
580 581
581 582 # Configure kernel sources if no KERNELSRC_DIR
582 583 if [ "$BUILD_KERNEL" = true ] && [ -z "$KERNELSRC_DIR" ] ; then
583 584 KERNELSRC_CONFIG=true
584 585 fi
585 586
586 587 # Configure reduced kernel
587 588 if [ "$KERNEL_REDUCE" = true ] ; then
588 589 KERNELSRC_CONFIG=false
589 590 fi
590 591
591 592 # Configure qemu compatible kernel
592 593 if [ "$ENABLE_QEMU" = true ] ; then
593 594 DTB_FILE=vexpress-v2p-ca15_a7.dtb
594 595 UBOOT_CONFIG=vexpress_ca15_tc2_defconfig
595 596 KERNEL_DEFCONFIG="vexpress_defconfig"
596 597 if [ "$KERNEL_MENUCONFIG" = false ] ; then
597 598 KERNEL_OLDDEFCONFIG=true
598 599 fi
599 600 fi
600 601
601 602 # Execute bootstrap scripts
602 603 for SCRIPT in bootstrap.d/*.sh; do
603 604 head -n 3 "$SCRIPT"
604 605 . "$SCRIPT"
605 606 done
606 607
607 608 ## Execute custom bootstrap scripts
608 609 if [ -d "custom.d" ] ; then
609 610 for SCRIPT in custom.d/*.sh; do
610 611 . "$SCRIPT"
611 612 done
612 613 fi
613 614
614 615 # Execute custom scripts inside the chroot
615 616 if [ -n "$CHROOT_SCRIPTS" ] && [ -d "$CHROOT_SCRIPTS" ] ; then
616 617 cp -r "${CHROOT_SCRIPTS}" "${R}/chroot_scripts"
617 618 chroot_exec /bin/bash -x <<'EOF'
618 619 for SCRIPT in /chroot_scripts/* ; do
619 620 if [ -f $SCRIPT -a -x $SCRIPT ] ; then
620 621 $SCRIPT
621 622 fi
622 623 done
623 624 EOF
624 625 rm -rf "${R}/chroot_scripts"
625 626 fi
626 627
627 628 # Remove c/c++ build environment from the chroot
628 629 chroot_remove_cc
629 630
630 631 # Generate required machine-id
631 632 MACHINE_ID=$(dbus-uuidgen)
632 633 echo -n "${MACHINE_ID}" > "${R}/var/lib/dbus/machine-id"
633 634 echo -n "${MACHINE_ID}" > "${ETC_DIR}/machine-id"
634 635
635 636 # APT Cleanup
636 637 chroot_exec apt-get -y clean
637 638 chroot_exec apt-get -y autoclean
638 639 chroot_exec apt-get -y autoremove
639 640
640 641 # Unmount mounted filesystems
641 642 umount -l "${R}/proc"
642 643 umount -l "${R}/sys"
643 644
644 645 # Clean up directories
645 646 rm -rf "${R}/run/*"
646 647 rm -rf "${R}/tmp/*"
647 648
648 649 # Clean up files
649 650 rm -f "${ETC_DIR}/ssh/ssh_host_*"
650 651 rm -f "${ETC_DIR}/dropbear/dropbear_*"
651 652 rm -f "${ETC_DIR}/apt/sources.list.save"
652 653 rm -f "${ETC_DIR}/resolvconf/resolv.conf.d/original"
653 654 rm -f "${ETC_DIR}/*-"
654 655 rm -f "${ETC_DIR}/apt/apt.conf.d/10proxy"
655 656 rm -f "${ETC_DIR}/resolv.conf"
656 657 rm -f "${R}/root/.bash_history"
657 658 rm -f "${R}/var/lib/urandom/random-seed"
658 659 rm -f "${R}/initrd.img"
659 660 rm -f "${R}/vmlinuz"
660 661 rm -f "${R}${QEMU_BINARY}"
661 662
662 663 if [ "$ENABLE_QEMU" = true ] ; then
663 664 # Setup QEMU directory
664 665 mkdir "${BASEDIR}/qemu"
665 666
666 667 # Copy kernel image to QEMU directory
667 668 install_readonly "${BOOT_DIR}/${KERNEL_IMAGE}" "${BASEDIR}/qemu/${KERNEL_IMAGE}"
668 669
669 670 # Copy kernel config to QEMU directory
670 671 install_readonly "${R}/boot/config-${KERNEL_VERSION}" "${BASEDIR}/qemu/config-${KERNEL_VERSION}"
671 672
672 673 # Copy kernel dtbs to QEMU directory
673 674 for dtb in "${BOOT_DIR}/"*.dtb ; do
674 675 if [ -f "${dtb}" ] ; then
675 676 install_readonly "${dtb}" "${BASEDIR}/qemu/"
676 677 fi
677 678 done
678 679
679 680 # Copy kernel overlays to QEMU directory
680 681 if [ -d "${BOOT_DIR}/overlays" ] ; then
681 682 # Setup overlays dtbs directory
682 683 mkdir "${BASEDIR}/qemu/overlays"
683 684
684 685 for dtb in "${BOOT_DIR}/overlays/"*.dtb ; do
685 686 if [ -f "${dtb}" ] ; then
686 687 install_readonly "${dtb}" "${BASEDIR}/qemu/overlays/"
687 688 fi
688 689 done
689 690 fi
690 691
691 692 # Copy u-boot files to QEMU directory
692 693 if [ "$ENABLE_UBOOT" = true ] ; then
693 694 if [ -f "${BOOT_DIR}/u-boot.bin" ] ; then
694 695 install_readonly "${BOOT_DIR}/u-boot.bin" "${BASEDIR}/qemu/u-boot.bin"
695 696 fi
696 697 if [ -f "${BOOT_DIR}/uboot.mkimage" ] ; then
697 698 install_readonly "${BOOT_DIR}/uboot.mkimage" "${BASEDIR}/qemu/uboot.mkimage"
698 699 fi
699 700 if [ -f "${BOOT_DIR}/boot.scr" ] ; then
700 701 install_readonly "${BOOT_DIR}/boot.scr" "${BASEDIR}/qemu/boot.scr"
701 702 fi
702 703 fi
703 704
704 705 # Copy initramfs to QEMU directory
705 706 if [ -f "${BOOT_DIR}/initramfs-${KERNEL_VERSION}" ] ; then
706 707 install_readonly "${BOOT_DIR}/initramfs-${KERNEL_VERSION}" "${BASEDIR}/qemu/initramfs-${KERNEL_VERSION}"
707 708 fi
708 709 fi
709 710
710 711 # Calculate size of the chroot directory in KB
711 712 CHROOT_SIZE=$(expr "$(du -s "${R}" | awk '{ print $1 }')")
712 713
713 714 # Calculate the amount of needed 512 Byte sectors
714 715 TABLE_SECTORS=$(expr 1 \* 1024 \* 1024 \/ 512)
715 716 FRMW_SECTORS=$(expr 64 \* 1024 \* 1024 \/ 512)
716 717 ROOT_OFFSET=$(expr "${TABLE_SECTORS}" + "${FRMW_SECTORS}")
717 718
718 719 # The root partition is EXT4
719 720 # This means more space than the actual used space of the chroot is used.
720 721 # As overhead for journaling and reserved blocks 35% are added.
721 722 ROOT_SECTORS=$(expr "$(expr "${CHROOT_SIZE}" + "${CHROOT_SIZE}" \/ 100 \* 35)" \* 1024 \/ 512)
722 723
723 724 # Calculate required image size in 512 Byte sectors
724 725 IMAGE_SECTORS=$(expr "${TABLE_SECTORS}" + "${FRMW_SECTORS}" + "${ROOT_SECTORS}")
725 726
726 727 # Prepare image file
727 728 if [ "$ENABLE_SPLITFS" = true ] ; then
728 729 dd if=/dev/zero of="$IMAGE_NAME-frmw.img" bs=512 count="${TABLE_SECTORS}"
729 730 dd if=/dev/zero of="$IMAGE_NAME-frmw.img" bs=512 count=0 seek="${FRMW_SECTORS}"
730 731 dd if=/dev/zero of="$IMAGE_NAME-root.img" bs=512 count="${TABLE_SECTORS}"
731 732 dd if=/dev/zero of="$IMAGE_NAME-root.img" bs=512 count=0 seek="${ROOT_SECTORS}"
732 733
733 734 # Write firmware/boot partition tables
734 735 sfdisk -q -L -uS -f "$IMAGE_NAME-frmw.img" 2> /dev/null <<EOM
735 736 ${TABLE_SECTORS},${FRMW_SECTORS},c,*
736 737 EOM
737 738
738 739 # Write root partition table
739 740 sfdisk -q -L -uS -f "$IMAGE_NAME-root.img" 2> /dev/null <<EOM
740 741 ${TABLE_SECTORS},${ROOT_SECTORS},83
741 742 EOM
742 743
743 744 # Setup temporary loop devices
744 745 FRMW_LOOP="$(losetup -o 1M --sizelimit 64M -f --show "$IMAGE_NAME"-frmw.img)"
745 746 ROOT_LOOP="$(losetup -o 1M -f --show "$IMAGE_NAME"-root.img)"
746 747 else # ENABLE_SPLITFS=false
747 748 dd if=/dev/zero of="$IMAGE_NAME.img" bs=512 count="${TABLE_SECTORS}"
748 749 dd if=/dev/zero of="$IMAGE_NAME.img" bs=512 count=0 seek="${IMAGE_SECTORS}"
749 750
750 751 # Write partition table
751 752 sfdisk -q -L -uS -f "$IMAGE_NAME.img" 2> /dev/null <<EOM
752 753 ${TABLE_SECTORS},${FRMW_SECTORS},c,*
753 754 ${ROOT_OFFSET},${ROOT_SECTORS},83
754 755 EOM
755 756
756 757 # Setup temporary loop devices
757 758 FRMW_LOOP="$(losetup -o 1M --sizelimit 64M -f --show "$IMAGE_NAME".img)"
758 759 ROOT_LOOP="$(losetup -o 65M -f --show "$IMAGE_NAME".img)"
759 760 fi
760 761
761 762 if [ "$ENABLE_CRYPTFS" = true ] ; then
762 763 # Create dummy ext4 fs
763 764 mkfs.ext4 "$ROOT_LOOP"
764 765
765 766 # Setup password keyfile
766 767 touch .password
767 768 chmod 600 .password
768 769 echo -n ${CRYPTFS_PASSWORD} > .password
769 770
770 771 # Initialize encrypted partition
771 772 echo "YES" | cryptsetup luksFormat "${ROOT_LOOP}" -c "${CRYPTFS_CIPHER}" -s "${CRYPTFS_XTSKEYSIZE}" .password
772 773
773 774 # Open encrypted partition and setup mapping
774 775 cryptsetup luksOpen "${ROOT_LOOP}" -d .password "${CRYPTFS_MAPPING}"
775 776
776 777 # Secure delete password keyfile
777 778 shred -zu .password
778 779
779 780 # Update temporary loop device
780 781 ROOT_LOOP="/dev/mapper/${CRYPTFS_MAPPING}"
781 782
782 783 # Wipe encrypted partition (encryption cipher is used for randomness)
783 784 dd if=/dev/zero of="${ROOT_LOOP}" bs=512 count="$(blockdev --getsz "${ROOT_LOOP}")"
784 785 fi
785 786
786 787 # Build filesystems
787 788 mkfs.vfat "$FRMW_LOOP"
788 789 mkfs.ext4 "$ROOT_LOOP"
789 790
790 791 # Mount the temporary loop devices
791 792 mkdir -p "$BUILDDIR/mount"
792 793 mount "$ROOT_LOOP" "$BUILDDIR/mount"
793 794
794 795 mkdir -p "$BUILDDIR/mount/boot/firmware"
795 796 mount "$FRMW_LOOP" "$BUILDDIR/mount/boot/firmware"
796 797
797 798 # Copy all files from the chroot to the loop device mount point directory
798 799 rsync -a "${R}/" "$BUILDDIR/mount/"
799 800
800 801 # Unmount all temporary loop devices and mount points
801 802 cleanup
802 803
803 804 # Create block map file(s) of image(s)
804 805 if [ "$ENABLE_SPLITFS" = true ] ; then
805 806 # Create block map files for "bmaptool"
806 807 bmaptool create -o "$IMAGE_NAME-frmw.bmap" "$IMAGE_NAME-frmw.img"
807 808 bmaptool create -o "$IMAGE_NAME-root.bmap" "$IMAGE_NAME-root.img"
808 809
809 810 # Image was successfully created
810 811 echo "$IMAGE_NAME-frmw.img ($(expr \( "${TABLE_SECTORS}" + "${FRMW_SECTORS}" \) \* 512 \/ 1024 \/ 1024)M)" ": successfully created"
811 812 echo "$IMAGE_NAME-root.img ($(expr \( "${TABLE_SECTORS}" + "${ROOT_SECTORS}" \) \* 512 \/ 1024 \/ 1024)M)" ": successfully created"
812 813 else
813 814 # Create block map file for "bmaptool"
814 815 bmaptool create -o "$IMAGE_NAME.bmap" "$IMAGE_NAME.img"
815 816
816 817 # Image was successfully created
817 818 echo "$IMAGE_NAME.img ($(expr \( "${TABLE_SECTORS}" + "${FRMW_SECTORS}" + "${ROOT_SECTORS}" \) \* 512 \/ 1024 \/ 1024)M)" ": successfully created"
818 819
819 820 # Create qemu qcow2 image
820 821 if [ "$ENABLE_QEMU" = true ] ; then
821 822 QEMU_IMAGE=${QEMU_IMAGE:=${BASEDIR}/qemu/${DATE}-${KERNEL_ARCH}-CURRENT-rpi${RPI_MODEL}-${RELEASE}-${RELEASE_ARCH}}
822 823 QEMU_SIZE=16G
823 824
824 825 qemu-img convert -f raw -O qcow2 "$IMAGE_NAME".img "$QEMU_IMAGE".qcow2
825 826 qemu-img resize "$QEMU_IMAGE".qcow2 $QEMU_SIZE
826 827
827 828 echo "$QEMU_IMAGE.qcow2 ($QEMU_SIZE)" ": successfully created"
828 829 fi
829 830 fi
General Comments 0
Vous devez vous connecter pour laisser un commentaire. Se connecter maintenant