Age | Commit message (Collapse) | Author | |
---|---|---|---|
2020-05-07 | initrd: ignore failure of samizdat-password-agent | Andrew Cady | |
2020-05-06 | initrd: call samizdat_install_udev_rules earlier | Andrew Cady | |
2019-10-17 | fixup! avoid initrd race condition | Andrew Cady | |
2019-10-16 | avoid initrd race condition | Andrew Cady | |
2019-10-13 | fix luksFormat for newer initramfs-tools | Andrew Cady | |
2019-10-04 | create /home/u with btrfs subvolumes preinstalled | Andrew Cady | |
2019-06-19 | remember to remove temporary directories | Andrew Cady | |
2019-06-19 | initrd patchroot.sh: remove cruft | Andrew Cady | |
2019-06-19 | avoid redundantly copying files into rootfs | Andrew Cady | |
2019-06-17 | make-total-destroy | Andrew Cady | |
This tool is a convenience for testing. Run it in the initrd shell and it will erase the hard drive so that you can install Samizdat fresh. | |||
2018-07-09 | eliminate warning (don't numerically compare the empty string) | Andrew Cady | |
2018-07-09 | bugfix: new installs were never finalized | Andrew Cady | |
Because a non-local shell variable was accidentally overwritten, the partitions containing a fresh install to an empty disk were never relabeled to indicate finalization. They would have to be relabeled manually to boot the installed system. | |||
2018-06-16 | Move unknown mountpoints before booting | Andrew Cady | |
If there are mountpoints outside of /root, which `run-init` does not have in its whitelist, then `run-init` will refuse to boot and will crash the kernel instead (process 1 will exit). | |||
2018-06-13 | making btrfs subvolumes should be idempotent | Andrew Cady | |
2017-04-02 | remove obsolete comment | Andrew Cady | |
2017-03-28 | verify that we can decrypt rootfs before offering it as menu item | Andrew Cady | |
2017-03-28 | Use pxelinux "ipappend" option to choose rootfs source | Andrew Cady | |
This fixes the issue described in the first 'netkeys' commit, where the network would need to be available even when it was not used. The "ipappend" option results in a $BOOTIF variable in the initrd environment. This variable is now used to determine whether to wait on the network for a rootfs & keys, or to wait on the boot device becoming available to determine whether it has the keys. That is, there may or may not be a boot device which may or may not have keys and/or rootfs, but we will always know for sure whether it does, therefore there are no races and no waiting on the network unnecessarily. The qemu.sh script was updated to provide the BOOTIF variable when PXE boot is emulated. | |||
2017-03-28 | change some log locations | Andrew Cady | |
2017-03-28 | Wait for nbd-client before using /dev/nbd0 | Andrew Cady | |
For explanation, see: https://lists.freedesktop.org/archives/systemd-devel/2014-March/018053.html But for the proper solution, see: https://lists.freedesktop.org/archives/systemd-devel/2014-March/018054.html Another option would just be to use a partitioned nbd device. The nbd device _partitions_ do not have this issue at all. | |||
2017-03-28 | use mountpoint /plaintext for samizdat-plaintext partition | Andrew Cady | |
2017-03-28 | Ensure we can decrypt the luks key before attempting to use it | Andrew Cady | |
This just fails earlier when the wrong GPG key is used. The correct solution is to avoid the failure by testing for GPG keys before offering disks to boot. | |||
2017-03-26 | fully enable booting from installed native partition | Andrew Cady | |
2017-03-26 | Implement booting already-installed native install | Andrew Cady | |
This option is only available if the partitions have been renamed to indicate finalization of the install. The code that finalizes the install by renaming the partitions is available, but not yet run after the install. | |||
2017-03-26 | create and boot the encrypted root filesystem | Andrew Cady | |
2017-03-25 | Initial support for installing to an empty disk device | Andrew Cady | |
Right now, this just installs a new GPT partition table on the disk, with the partitions samizdat needs. Then nothing happens because nothing else is implemented. It will only allow a disk to be wiped like this if there are no partitions on the disk (or if the only partitions on the disk are partially-installed samizdat partitions). | |||
2016-05-03 | fix the rest of the bugs | Andrew Cady | |
2016-05-01 | copy more executables from initrd to rootfs (if missing) | Andrew Cady | |
2016-05-01 | netbooting, with unique keys, WORKS | Andrew Cady | |
2016-05-01 | run an extra grok-block since nbd0 wasn't mountable otherwise | Andrew Cady | |
2016-05-01 | avoid waiting for cdrom in more places | Andrew Cady | |
2016-05-01 | don't wait for the cdrom when all we need is the gpg homedir | Andrew Cady | |
2016-05-01 | get GNUPGHOME from the network-downloaded .tar instead of the cdrom | Andrew Cady | |
(if available) | |||
2016-05-01 | remove unused functions | Andrew Cady | |
2016-05-01 | fixup! remove unused files | Andrew Cady | |
2016-05-01 | rename now-ill-named "lvm-create" | Andrew Cady | |
2016-05-01 | remove unused files | Andrew Cady | |
2016-04-30 | samizdat-eject will wait to do the last step instead of giving up | Andrew Cady | |
2016-04-29 | more path fixes | Andrew Cady | |
2016-04-29 | fix paths (in progress) | Andrew Cady | |