public
/
airgap
5
0
Fork 1
Code Issues Pull Requests 3 Packages Projects Releases Wiki Activity
80 Commits 13 Branches 0 Tags 2.1 GiB
Commit Graph

80 Commits

Author SHA1 Message Date
Lance Vick d408ead328
bump HEADS to latest upstream from purism 2020-10-21 22:59:10 -07:00
Lance Vick cdc7d346c4
Merge branch 'airgap-fixes' of gitlab.com:pchq/airgap into airgap-fixes 2020-10-21 15:15:51 -07:00
Lance Vick 5778705ef7
Merge branch 'master' into airgap-fixes 2020-10-21 15:15:13 -07:00
Lance Vick 92f2222849
working builds, working audit, drop unmaintained cpe-info 2020-10-21 14:38:25 -07:00
Lance Vick 7538907542
add 1.0.0rc12 2020-10-21 11:38:26 -07:00
Lance Vick 055e5038ba
Merge remote-tracking branch 'origin/master' into airgap-fixes 2020-10-20 17:05:56 -07:00
Lance Vick 434d641c46
Switch to bsdtar strategy for deterministic cpio 2020-10-20 01:02:39 -07:00
Lance Vick fa079ab953
drop git 2020-10-20 01:01:50 -07:00
Lance Vick f58df1bc42
rehash/resign rc11 2020-10-18 03:51:58 -07:00
Lance Vick 2ccea08480
1.0.0rc11 2020-10-17 17:20:24 -07:00
Lance Vick a9020ee29d
tested deterministic xorriso options 2020-10-17 17:12:59 -07:00
Lance Vick 28ba130cea
swap buggy/broken genisofs for maintained xorriso 2020-10-17 15:37:12 -07:00
Lance Vick d0e04eeb90
disable inode caching in genisoimage to work around miscounted hardlink bug 2020-10-16 23:49:48 -07:00
Lance Vick c8a07da24b
use https with apt wherever possible 2020-10-16 02:44:26 -07:00
Lance Vick 73d0e657fa
download and hash verify all packages before install 2020-10-16 01:37:56 -07:00
Lance Vick 249e93bcce
overhaul update-packages to be faster, and save sha256 hash manifest of downloaded debs 2020-10-15 17:08:15 -07:00
Lance Vick 1badff2241
safer/simpler uid/gid mapping w/ reduced build privs 2020-10-15 16:26:28 -07:00
Lance Vick 8a2ac4b000
reduce/update build apt packages 2020-10-15 16:24:35 -07:00
Lance Vick 3873dd5e07
ensure uid:gid in iso are always set to 0 2020-10-14 23:00:54 -07:00
Lance Vick ed74b314a5
1.0.0rc10 2020-10-14 03:24:13 -07:00
Lance Vick 9894b08bcb
sort order of files packed into initramfs 2020-10-13 23:07:41 -07:00
Lance Vick e3bf233b34
1.0.0rc9 2020-10-11 18:35:55 -07:00
Lance Vick 13535c14bd
revert docker buildkit which seems to be buggy in docker < 19 2020-10-10 00:56:44 -07:00
Lance Vick de8b907bd4
1.0.0.rc8 2020-10-07 23:01:02 -07:00
Lance Vick 2fdac9efed
cleaned up, updated, and more reliable package updates 2020-10-07 18:24:58 -07:00
Lance Vick ba8673c4f2
working measured boot from sd card without an internal disk present 2020-09-09 18:20:15 -07:00
Lance Vick 51a134f00f
make patches optional 2020-09-09 04:07:35 -07:00
Lance Vick 3d631420b1
fix patching on repeated builds 2020-08-12 22:54:32 -07:00
Lance Vick 244caf5b6d
allow checking out expired apt packages 2020-08-12 22:26:22 -07:00
Lance Vick 58ff50f779
cleanup console output 2020-08-12 22:26:07 -07:00
Lance Vick 4e66c50835
Name change and boot-from-usb on Heads 2020-08-12 22:25:41 -07:00
Lance Vick d4b60d191d
working autorun stack 2020-08-11 20:23:25 -07:00
Lance Vick db3ade30d4
document use of 'audit' target when releasing 2020-07-27 11:23:26 -07:00
Lance Vick 9d5ee9fc7e
Sign release 1.0.0rc6 2020-07-25 17:53:59 -07:00
Lance Vick 375bda1a39
allow multiple detached signatures named by fingerprint 2020-07-25 17:53:15 -07:00
Lance Vick 663fe8f750
1.0.0rc6 2020-07-25 13:10:35 -07:00
Lance Vick 349399f46b
fix verify hash path 2020-07-24 18:00:07 -07:00
Lance Vick 0e2c98c758
1.0.0rc5 2020-07-24 17:57:55 -07:00
Lance Vick 1ad50ac4c8
add build container cve reporting 2020-07-24 17:51:05 -07:00
Lance Vick bd5d947f1e
use main mirrors for pinned packages, then try snapshots 2020-07-24 13:19:34 -07:00
Lance Vick 826d60556d
improved audit output with CVE reporting 2020-07-24 13:18:53 -07:00
Lance Vick 1642587af3
bump packages/sources and increase timeout 2020-07-24 11:09:29 -07:00
Lance Vick b54b103009
add audit target for collecting legal/cve details 2020-07-24 03:08:28 -07:00
Lance Vick 2d00082279
updated hash format: 1.0.0rc4 2020-07-24 03:07:39 -07:00
Matt Weber 875c5c891f
patch: add cpe-info make target for buildroot 2020-07-24 03:07:08 -07:00
Lance Vick a5c4d51df1
1.0.0rc4 2020-07-23 14:19:43 -07:00
Lance Vick ba24e9f786
automate snapshot date bump 2020-07-23 04:12:31 -07:00
Lance Vick f806367aa6
tested knon working snapshot date 2020-07-23 04:07:35 -07:00
Lance Vick 22c9edfa67
lock debian sources to snapshots with auto retry 2020-07-23 01:33:05 -07:00
Lance Vick 25dcaab742
bump 1.0.0.rc3 hashes 2020-07-22 11:25:23 -07:00