aboutsummaryrefslogtreecommitdiff
path: root/configs/releng/airootfs
Commit message (Collapse)AuthorAgeFilesLines
* configs/*/airootfs/etc/systemd/network/: add RequiredForOnline=routablenl67202023-12-093-0/+9
| | | | | | | | | | | By default systemd-networkd-wait-online.service considers a network connection to be "online" when it has reached the "degraded" state (see networkctl(1) for the definitions). Since "degraded" does not ensure there's a routable address, let's change the connection's requirement to "routable" instead. This gives a better chance that the network really is online when network-online.target is reached.
* Allow download automated script using TFTPJohn Lane2023-12-071-1/+1
|
* Use pcsclite for communicating with OpenPGP smartcardsDavid Runge2023-08-292-0/+5
| | | | | As opgpcard uses pcsclite and gnupg is able to use it as well, switch away from using gnupg's internal ccid driver.
* /etc/ssh/sshd_config.d/10-archiso.conf: keep only the modified optionsnl67202023-08-261-115/+2
| | | | | | | | The only changes we make to the default are to enable root login via a password. While `PasswordAuthentication yes` is the default, let's set it explicitly to avoid potential issues in the future.
* Move custom sshd_config to /etc/ssh/sshd_config.d/nl67202023-08-261-0/+0
| | | | | | | | openssh 9.4p1-2 changed /etc/ssh/sshd_config to add support for drop-in files in /etc/ssh/sshd_config.d/. Using drop-in files avoids needing to keep up with changes to the default /etc/ssh/sshd_config.
* Set IPv6PrivacyExtensions=yes in global systemd-netorkd configurationnl67202023-08-114-3/+2
| | | | | | Since systemd 245, IPv6PrivacyExtensions can be set not just per connection, but also globally for all connection with a configuration file in /etc/systemd/network.conf.d/.
* configs/releng/airootfs/etc/systemd/system/etc-pacman.d-gnupg.mount: use ↵nl67202023-08-051-3/+3
| | | | | | | | | tmpfs with noswap option Since tmpfs has a `noswap` option, use it instead of ramfs. Unlike ramfs, tmpfs has a limit to its size. This reverts commit 09b0428128700f37bd465eb54c6e45f69c17617d ("configs/releng/airootfs/etc/systemd/system/etc-pacman.d-gnupg.mount: use ramfs").
* configs/*/airootfs/etc/mkinitcpio.conf.d/archiso.conf: remove comments and ↵nl67202023-06-211-65/+0
| | | | | | unused options Set only the custom values for HOOKS and COMPRESSION.
* configs/: move custom mkinitcpio.conf files to /etc/mkinitcpio.conf.d/nl67202023-06-212-1/+1
| | | | This allows to retain a pristine /etc/mkinitcpio.conf in the rootfs.
* Fix optional shellcheck warningsnl67202023-06-153-67/+60
| | | | Additionally fix a few code style issues found with shfmt.
* Add support for mDNS.Sorin Pânca2023-05-223-0/+6
|
* wait for networkd online before curl invocationZig Globulin2023-03-021-1/+10
| | | | | | | 1) wait for network-online.target before invoking curl as there's no synchronization with network setup for this script 2) don't hide curl errors - it may be easier to debug the issues 3) add log and comments
* configs/*/airootfs/etc/ssh/sshd_config: update to match 9.2p1-1nl67202023-02-071-3/+3
| | | | | | | | Update /etc/ssh/sshd_config to match changes made in https://github.com/archlinux/svntogit-packages/commit/42aa04744e96c5805b7aa3904636f8cbd781f682 and https://github.com/archlinux/svntogit-packages/commit/7166713c55002dac3c2b306fdc63e89a412083a6 The only modification remains `PermitRootLogin yes`.
* configs/releng/airootfs/root/.zlogin: use grep -a to ensure /proc/cmdline is ↵nl67202022-11-121-1/+1
| | | | | | | treated as text This protects against the case where /proc/cmdline contains garbage triggering grep to think it is a binary. See e.g. https://bugs.archlinux.org/task/76468 for an example.
* configs/releng/airootfs/etc/mkinitcpio.conf: replace the deprecated ↵nl67202022-10-251-1/+1
| | | | | | | | archiso_kms hook with kms The archiso_kms hook was moved from mkinitcpio-archiso to the mkinitcpio project. See https://github.com/archlinux/mkinitcpio/commit/7bfe4861eacb3bf6cb70d9a17a0262542733a8ed and https://gitlab.archlinux.org/mkinitcpio/mkinitcpio-archiso/-/commit/dec17db5324285118e2faee296cc990ff1281bd8
* configs/: Do not explicitly enable qemu-guest-agent.servicenl67202022-10-061-1/+0
| | | | | | qemu-guest-agent.service will be started by the /usr/lib/udev/rules.d/99-qemu-guest-agent.rules udev rule. Fixes #199
* Order pacman-init.service after time-sync.targetDavid Runge2022-09-251-1/+1
| | | | | configs/releng/airootfs/etc/systemd/system/pacman-init.service: Order pacman-init.service after time-sync.target, so that time on the host is synchronized before initializing pacman.
* Enable systemd-timesyncd and systemd-time-wait-syncDavid Runge2022-09-253-0/+3
| | | | | | | | configs/releng/airootfs/etc/systemd/system/{dbus-org.freedesktop.timesync1},sysinit.target.wants/systemd-timesyncd}.service: Enable systemd-timesyncd which aliases to dbus-org.freedesktop.timesync1 to ensure time gets synced on the host. configs/releng/airootfs/etc/systemd/system/sysinit.target.wants/systemd-time-wait-sync.service: Enable systemd-time-wait-sync to ensure time is finished syncing when time-sync.target is finished.
* Order pacman-init.service before archlinux-keyring-wkd-sync.servicenl67202022-09-011-0/+2
| | | | | | archlinux-keyring-wkd-sync.service needs an initialized pacman keyring to work. Add BindsTo=etc-pacman.d-gnupg.mount to stop pacman-init.service if the mount unit suddenly enters inactive state.
* configs/: use the C.UTF-8 localenl67202022-06-092-14/+1
| | | | | | | The glibc 2.35-6 package ships with the C.UTF-8 locale included. This means there is now a UTF-8 locale available by default and en_US.UTF-8, which requires editing /etc/locale.gen and running locale-gen, is not needed anymore. Implements #175.
* configs/*: add VMware and Hyper-V guest packages and enable their servicesnl67202022-04-305-0/+5
| | | | | | | * open-vm-tools package, vmtoolsd.service and vmware-vmblock-fuse.service for VMware. * hyperv package, hv_fcopy_daemon.service, hv_kvp_daemon.service and hv_vss_daemon.service for Hyper-V. Related to #118.
* configs/releng/airootfs/etc/xdg/reflector/reflector.conf: use mirrors that ↵nl67202022-04-281-0/+2
| | | | | | support both IPv4 & IPv6 This ensures that IPv6-only systems get working mirrors.
* configs/releng/airootfs/etc/systemd/system/etc-pacman.d-gnupg.mount: use ramfsnl67202022-04-061-2/+2
| | | | | When using tmpfs, it is possible that parts of it end up getting put in swap space (only if there is one). This may not be desired, so use ramfs instead.
* Revert "Merge remote-tracking branch 'origin/merge-requests/239'"nl67202022-04-045-21/+0
| | | | | | | People get scared by it. See https://gitlab.archlinux.org/archlinux/archiso/-/merge_requests/239#note_61954. This reverts commit b5011af3f4ac63214fdecef442550cce5ae4a971, reversing changes made to 07d8035624cff64e28f1148ddec9e970e26173da.
* Merge remote-tracking branch 'origin/merge-requests/239'nl67202022-03-315-0/+21
|\ | | | | | | | | | | | | * origin/merge-requests/239: add needed files See merge request !239
| * add needed filesAlexander Epaneshnikov2022-03-295-0/+21
| | | | | | | | this fixes #167
* | configs/releng: Improve motdKristian Klausen2022-03-291-0/+1
|/ | | | Fix #167
* configs/{baseline,releng}/: disable systemd-gpt-auto-generatornl67202022-03-251-0/+1
| | | | | | | | | | | | | | | When booting the ISO, you can observe a message that systemd-gpt-auto-generator has failed: systemd-gpt-auto-generator[197]: Reading EFI variable /sys/firmware/efi/efivars/LoaderDevicePartUUID-4a67b082-0a4c-41cf-b6c7-440b29bb8c4f. systemd-gpt-auto-generator[197]: open("/sys/firmware/efi/efivars/LoaderDevicePartUUID-4a67b082-0a4c-41cf-b6c7-440b29bb8c4f") failed: No such file or directory systemd-gpt-auto-generator[197]: EFI loader partition unknown, exiting. systemd-gpt-auto-generator[197]: (The boot loader did not set EFI variable LoaderDevicePartUUID.) systemd-gpt-auto-generator[197]: Failed to open device: No such device Seeing as it started to appear relatively recently, it may be a systemd bug. Since we do not want any GPT partition automounting in the live environment anyway, systemd-gpt-auto-generator can simply be disabled. Fixes #164.
* configs/releng/airootfs/etc/systemd/system/getty@tty1.service.d/autologin.co ↵nl67202022-01-281-1/+1
| | | | | | | | nf: update ExecStart Update the drop-in to more closely match getty@.service of systemd 250. Use example from https://wiki.archlinux.org/title/getty#Virtual_console
* configs/*/airootfs/etc/systemd/network/20-ethernet.network: add a comment to ↵nl67202022-01-221-0/+3
| | | | | | | | document why an interface name glob is used This documents the changes made in !177 inside the .network files themselves. Related to #142.
* configs/releng/airootfs/etc/mkinitcpio.conf: remove archiso_shutdownnl67202021-12-021-1/+1
| | | | | | | The archiso_shutdown hook has been obsolete since mkinitcpio 16. https://lists.archlinux.org/pipermail/arch-dev-public/2013-December/025742.html Related to mkinitcpio/mkinitcpio-archiso#8.
* Fixes failure to retry script download. Tested and verified the issue is ↵Howard Hicks2021-11-301-1/+1
| | | | | | | | resolved. The curl --retry-connrefused option is used with not instead of the --retry <num> option to add an extra type of failure to retry on, without --retry <num> it does not retry at all even on a connection refused. https://man.archlinux.org/man/curl.1.en
* configs/*/airootfs/etc/ssh/sshd_config: update to openssh 8.7p1-1nl67202021-08-251-5/+5
| | | | | Update /etc/ssh/sshd_config to match upstream changes. The only modification remains "PermitRootLogin yes".
* Remove SPDX license identifier from releng configsDavid Runge2021-07-2916-47/+0
| | | | | | configs/releng/*: Remove the SPDX license identifier comment from the configuration files in the profile, as they are not eligible for copyright.
* configs/*/airootfs/etc/systemd/system/systemd-networkd-wait-online.service.d ↵nl67202021-07-271-0/+3
| | | | | | | | /wait-for-only-one-interface.conf: document why the drop-in file exists Related to #142. Add missing `ExecStart=` to baseline's /etc/systemd/system/systemd-networkd-wait-online.service.d/wait-for-only-one-interface.conf.
* configs/releng/airootfs/etc/systemd/network/: move RouteMetric= from ↵nl67202021-07-273-9/+24
| | | | | | | | | | | | [DHCPv6] to [IPv6AcceptRA] systemd moved the option. See https://github.com/systemd/systemd/commit/8ebafba9f987c21aa5787c8767f2e390b4ec0bc5 . Implements #123. Document in comments why the route metrics need to be set (because of https://github.com/systemd/systemd/issues/17698 ) and use the same metric values as NetworkManager. https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/blob/main/src/core/devices/nm-device.c Additionally remove RouteMetric from configs/baseline/airootfs/etc/systemd/network/20-ethernet.network. There is only one networkd configuration file in baseline, meaning, there are no other routes.
* Update ArchWiki article URLsnl67202021-06-182-2/+2
| | | | Use the new, prettier short URLs.
* configs/releng/airootfs/etc/systemd/network/: match by globbing the ↵nl67202021-05-293-3/+4
| | | | | | | | | | interface name instead of matching the type Type=ether matches virtual Ethernet interfaces (veth*) which may break networking inside containers. Fixes https://bugs.archlinux.org/task/70892 . Partially reverts 8a521d0bfaedf16b95c09b4837981c4b567b5118 .
* configs/releng/airootfs/etc/systemd/system/pacman-init.service: don't ↵nl67202021-05-121-1/+1
| | | | | | | | hardcode the keyrings If the keyring is not specified, pacman-key will simply use all keyrings from /usr/share/pacman/keyrings/. Fixes #133.
* configs/*: add VM guest packages and enable their servicesnl67202021-05-112-0/+2
| | | | | | | * virtualbox-guest-utils-nox package and vboxservice.service for VirtualBox. * qemu-guest-agent package and qemu-guest-agent.service for QEMU & libvirt. Implements #118.
* Revert "configs/releng: improve UX"David Runge2021-03-301-16/+9
| | | | This reverts commit 8b6f3545e348caf16a2ff30d948ff93b4d9a4b89.
* configs/releng: improve UXnl67202021-03-301-9/+16
| | | | Implements #90
* Reduce amount of checked mirrorsDavid Runge2021-03-291-1/+1
| | | | | | | | | configs/releng/airootfs/etc/xdg/reflector/reflector.conf: Reduce the amount mirrors that reflector checks from 70 to 20. This significantly reduces the time it takes to end up with an up-to-date mirrorlist during boot with the releng profile. Fixes #92
* Allow redirects for scriptsDavid Runge2021-03-291-1/+1
| | | | | | | | configs/releng/airootfs/root/.automated_script.sh: Add the `--location` curl parameter (see `man 1 curl`) to allow for curl to retrieve a remote script even if the source is being redirected (e.g. moved permanently) when using the `script=` kernel commandline parameter. Fixes #113
* configs/releng: add and enable ModemManagernl67202021-03-263-1/+4
| | | | | | | | ModemManager's mmcli is the simplest way to connect with WWAN modems. Mention mmcli in MOTD. Implements #110.
* configs/releng: start DHCP client for mobile broadbandnl67202021-03-261-0/+15
| | | | | | Add /etc/systemd/network/20-wwan.network Related to #110.
* configs/releng: rename 20-wireless.network to 20-wlan.networknl67202021-03-261-0/+0
| | | | The file is limited to Wi-Fi (Type=wlan in networkd configuration).
* Update ↵nl67202021-03-262-6/+10
| | | | | | | configs/releng/airootfs/etc/systemd/network/20-{ethernet,wireless}.network * Match the device type instead of the interface name. * Replace DHCP section with DHCPv4/DHCPv6. systemd split the sections.
* Remove havegedKristian Klausen2021-02-161-2/+0
| | | | | | | | | | | | | | | | | | | haveged was added 8 years ago[1] to increase entropy and presumably to prevent entropy starvation. A few things has changed since, most notable: * the kernel actively tries to add entropy (jitter entropy)[2][3][4][5] * /dev/random no longer blocks after CRNG initialization[6][7] [1] d7e790d ("Initialize pacman keyring on bootup") [2] https://github.com/torvalds/linux/commit/3f2dc2798b81531fd93a3b9b7c39da47ec689e55 [3] https://github.com/torvalds/linux/commit/50ee7529ec4500c88f8664560770a7a1b65db72b [4] https://lore.kernel.org/lkml/alpine.DEB.2.21.1909290010500.2636@nanos.tec.linutronix.de/T/ [5] https://lwn.net/Articles/800509/ [6] https://github.com/torvalds/linux/commit/30c08efec8884fb106b8e57094baa51bb4c44e32 [7] https://lwn.net/Articles/808575/ Fix #98
* configs/releng: move locale-gen from customize_airootfs.sh to a pacman hooknl67202021-01-312-10/+13
| | | | | | This finally removes customize_airootfs.sh from releng. Fixes https://gitlab.archlinux.org/archlinux/archiso/-/issues/21 .
generated by cgit v1.2.3-70-g09d2 (git 2.51.0) at 2025-12-29 20:19:53 +0000