consolidate and streamline build (#2469)

* consolidate and streamline build

* fix workflow syntax

* fix workflow syntax

* fix workflow syntax

* fix workflow syntax

* fix build scripts

* only build platform-specific system images

* fix build script

* more build fixes

* fix

* fix compat build for x86

* wat

* checkout

* Prevent rebuild of compiled artifacts

* Update startos-iso.yaml

* Update startos-iso.yaml

* fix raspi build

* handle missing platform better

* reduce arm vcpus

* remove arch and platform from fe config, add to patch db

---------

Co-authored-by: Matt Hill <mattnine@protonmail.com>

build/.gitignore

@@ -0,0 +1,2 @@
+lib/depends
+lib/conflicts

build/dpkg-deps/conflicts

@@ -1,5 +1,5 @@
-openresolv
 dhcpcd5
 firewalld
 nginx
-nginx-common
+nginx-common
+openresolv

build/dpkg-deps/depends

@@ -6,21 +6,15 @@ bmon
 btrfs-progs
 ca-certificates
 cifs-utils
-containerd.io
 cryptsetup
 curl
 dmidecode
-docker-ce
-docker-ce-cli
-docker-compose-plugin
 dosfstools
 e2fsprogs
 ecryptfs-utils
 exfatprogs
 flashrom
-gdb
 grub-common
-heaptrack
 htop
 httpdirfs
 iotop

build/dpkg-deps/docker.depends

@@ -0,0 +1,5 @@
++ containerd.io
++ docker-ce
++ docker-ce-cli
++ docker-compose-plugin
+- podman

build/dpkg-deps/generate.sh

@@ -0,0 +1,43 @@
+#!/bin/bash
+
+set -e
+
+cd "$(dirname "${BASH_SOURCE[0]}")"
+
+IFS="-" read -ra FEATURES <<< "$ENVIRONMENT"
+
+feature_file_checker='
+/^#/ { next }
+/^\+ [a-z0-9]+$/ { next }
+/^- [a-z0-9]+$/ { next }
+{ exit 1 }
+'
+
+for type in conflicts depends; do
+    pkgs=()
+    for feature in ${FEATURES[@]}; do
+        file="$feature.$type"
+        if [ -f $file ]; then
+            # TODO check for syntax errrors
+            cat $file | awk "$feature_file_checker"
+            for pkg in $(cat $file | awk '/^\+/ {print $2}'); do
+                pkgs+=($pkg)
+            done
+        fi
+    done
+    for pkg in $(cat $type); do
+        SKIP=
+        for feature in ${FEATURES[@]}; do
+            file="$feature.$type"
+            if [ -f $file ]; then
+                if grep "^- $pkg$" $file; then
+                    SKIP=1
+                fi
+            fi
+        done
+        if [ -z $SKIP ]; then
+            pkgs+=($pkg)
+        fi
+    done
+    (IFS=$'\n'; echo "${pkgs[*]}") | sort -u > ../lib/$type
+done

build/dpkg-deps/unstable.depends

@@ -0,0 +1,2 @@
++ gdb
++ heaptrack

build/lib/motd

@@ -11,8 +11,8 @@ cat << "ASCII"
 ASCII
 printf "   %s (%s %s)\n" "$(uname -o)" "$(uname -r)" "$(uname -m)"
 printf "   $(start-cli --version | sed 's/StartOS CLI /StartOS v/g') - $(start-cli git-info)"
-if [ -n "$(cat /usr/lib/embassy/ENVIRONMENT.txt)" ]; then
-    printf " ~ $(cat /usr/lib/embassy/ENVIRONMENT.txt)\n"
+if [ -n "$(cat /usr/lib/startos/ENVIRONMENT.txt)" ]; then
+    printf " ~ $(cat /usr/lib/startos/ENVIRONMENT.txt)\n"
 else
     printf "\n"
 fi

build/lib/scripts/enable-kiosk

@@ -72,7 +72,7 @@ user_pref("messaging-system.rsexperimentloader.enabled", false);
 user_pref("network.allow-experiments", false);
 user_pref("network.captive-portal-service.enabled", false);
 user_pref("network.connectivity-service.enabled", false);
-user_pref("network.proxy.autoconfig_url", "file:///usr/lib/embassy/proxy.pac");
+user_pref("network.proxy.autoconfig_url", "file:///usr/lib/startos/proxy.pac");
 user_pref("network.proxy.socks_remote_dns", true);
 user_pref("network.proxy.type", 2);
 user_pref("signon.rememberSignons", false);
@@ -91,11 +91,11 @@ EOT
 while ! curl "http://localhost" > /dev/null; do
     sleep 1
 done
-while ! /usr/lib/embassy/scripts/check-monitor; do
+while ! /usr/lib/startos/scripts/check-monitor; do
     sleep 15
 done
 (
-    while /usr/lib/embassy/scripts/check-monitor; do
+    while /usr/lib/startos/scripts/check-monitor; do
         sleep 15
     done
     killall firefox-esr

build/lib/scripts/fake-apt

@@ -13,7 +13,7 @@ fi
 >&2 echo '    sudo rm /usr/local/bin/apt'
 >&2 echo
 >&2 echo 'Otherwise, what you probably want to do is run:'
->&2 echo '    sudo /usr/lib/embassy/scripts/chroot-and-upgrade'
+>&2 echo '    sudo /usr/lib/startos/scripts/chroot-and-upgrade'
 >&2 echo 'You can run apt in this context to add packages to your system.'
 >&2 echo 'When you are done with your changes, type "exit" and the device will reboot into a system with the changes applied.'
 >&2 echo 'This is still NOT RECOMMENDED if you don'"'"'t know what you are doing, but at least isn'"'"'t guaranteed to break things.'

build/lib/scripts/persist-apt-install

@@ -14,7 +14,7 @@ while [ -n "$1" ]; do
 done
 
 if [ ${#TO_INSTALL[@]} -ne 0 ]; then
-/usr/lib/embassy/scripts/chroot-and-upgrade << EOF
+/usr/lib/startos/scripts/chroot-and-upgrade << EOF
 apt-get update && apt-get install -y ${TO_INSTALL[@]}
 EOF
 fi

build/lib/scripts/postinst

@@ -1,121 +0,0 @@
-#!/bin/sh
-set -e
-
-SYSTEMCTL=systemctl
-if [ -n "$DPKG_MAINTSCRIPT_PACKAGE" ]; then
-	  SYSTEMCTL=deb-systemd-helper
-fi
-
-if [ -f /usr/sbin/grub-probe ]; then
-  mv /usr/sbin/grub-probe /usr/sbin/grub-probe-default
-  ln -s /usr/lib/embassy/scripts/grub-probe-eos /usr/sbin/grub-probe
-fi
-
-cp /usr/lib/embassy/scripts/embassy-initramfs-module /etc/initramfs-tools/scripts/embassy
-
-if ! grep overlay /etc/initramfs-tools/modules > /dev/null; then
-    echo overlay >> /etc/initramfs-tools/modules
-fi
-
-update-initramfs -u -k all
-
-if [ -f /etc/default/grub ]; then
-    sed -i '/\(^\|#\)GRUB_CMDLINE_LINUX=/c\GRUB_CMDLINE_LINUX="boot=embassy"' /etc/default/grub
-fi
-
-# change timezone
-rm -f /etc/localtime
-ln -s /usr/share/zoneinfo/Etc/UTC /etc/localtime
-
-# switch to systemd-resolved & network-manager
-echo "#" > /etc/network/interfaces
-if ! [ -f /etc/resolv.conf ]; then
-  rm -f /etc/resolv.conf
-  echo "nameserver 8.8.8.8" > /etc/resolv.conf # Google DNS Fallback
-fi
-if ! [ -f /run/systemd/resolve/stub-resolv.conf ]; then
-    mkdir -p /run/systemd/resolve
-    cp /etc/resolv.conf /run/systemd/resolve/stub-resolv.conf
-fi
-ln -sf /run/systemd/resolve/stub-resolv.conf /etc/resolv.conf
-cat << EOF > /etc/NetworkManager/NetworkManager.conf
-[main]
-plugins=ifupdown,keyfile
-dns=systemd-resolved
-
-[ifupdown]
-managed=true
-EOF
-$SYSTEMCTL enable systemd-resolved.service
-$SYSTEMCTL enable systemd-networkd-wait-online.service
-$SYSTEMCTL enable ssh.service
-$SYSTEMCTL disable wpa_supplicant.service
-
-$SYSTEMCTL disable docker.service
-$SYSTEMCTL disable postgresql.service
-$SYSTEMCTL disable tor.service
-$SYSTEMCTL disable bluetooth.service
-$SYSTEMCTL disable hciuart.service
-$SYSTEMCTL disable triggerhappy.service
-
-$SYSTEMCTL mask sleep.target
-$SYSTEMCTL mask suspend.target
-$SYSTEMCTL mask hibernate.target
-$SYSTEMCTL mask hybrid-sleep.target
-
-if which gsettings > /dev/null; then
-    gsettings set org.gnome.settings-daemon.plugins.power sleep-inactive-ac-timeout '0'
-    gsettings set org.gnome.settings-daemon.plugins.power sleep-inactive-battery-timeout '0'
-fi
-
-sed -i 's/PasswordAuthentication no/PasswordAuthentication yes/g' /etc/ssh/sshd_config
-sed -i 's/Restart=on-failure/Restart=always/g' /lib/systemd/system/tor@default.service
-sed -i 's/ExecStart=\/usr\/bin\/dockerd/ExecStart=\/usr\/bin\/dockerd --exec-opt native.cgroupdriver=systemd/g' /lib/systemd/system/docker.service
-sed -i '/\(^\|#\)entries-per-entry-group-max=/c\entries-per-entry-group-max=128' /etc/avahi/avahi-daemon.conf
-sed -i '/\(^\|#\)Storage=/c\Storage=persistent' /etc/systemd/journald.conf
-sed -i '/\(^\|#\)Compress=/c\Compress=yes' /etc/systemd/journald.conf
-sed -i '/\(^\|#\)SystemMaxUse=/c\SystemMaxUse=1G' /etc/systemd/journald.conf
-sed -i '/\(^\|#\)ForwardToSyslog=/c\ForwardToSyslog=no' /etc/systemd/journald.conf
-sed -i '/^\s*#\?\s*issue_discards\s*=\s*/c\issue_discards = 1' /etc/lvm/lvm.conf
-mkdir -p /etc/docker
-cat > /etc/docker/daemon.json << EOF
-{
-    "storage-driver": "overlay2"
-}
-EOF
-podman network create -d bridge --subnet 172.18.0.1/24 --opt com.docker.network.bridge.name=br-start9 start9
-mkdir -p /etc/nginx/ssl
-
-# fix to suppress docker warning, fixed in 21.xx release of docker cli: https://github.com/docker/cli/pull/2934
-mkdir -p /root/.docker
-touch /root/.docker/config.json
-
-cat << EOF > /etc/tor/torrc
-SocksPort 0.0.0.0:9050
-SocksPolicy accept 127.0.0.1
-SocksPolicy accept 172.18.0.0/16
-SocksPolicy reject *
-ControlPort 9051
-CookieAuthentication 1
-EOF
-
-rm -rf /var/lib/tor/*
-ln -sf /usr/lib/embassy/scripts/tor-check.sh /usr/bin/tor-check
-
-echo "fs.inotify.max_user_watches=1048576" > /etc/sysctl.d/97-embassy.conf
-
-# Old pi was set with this locale, because of pg we are now stuck with including that locale
-locale-gen en_GB en_GB.UTF-8 
-echo "locales locales/locales_to_be_generated multiselect en_GB.UTF-8 UTF-8" | debconf-set-selections
-update-locale  LANGUAGE
-rm "/etc/locale.gen"
-dpkg-reconfigure --frontend noninteractive locales
-
-groupadd embassy
-
-ln -s /usr/lib/embassy/scripts/dhclient-exit-hook /etc/dhcp/dhclient-exit-hooks.d/embassy
-
-rm -f /etc/motd
-ln -sf /usr/lib/embassy/motd /etc/update-motd.d/00-embassy
-chmod -x /etc/update-motd.d/*
-chmod +x /etc/update-motd.d/00-embassy

build/raspberrypi/fstab

@@ -1,2 +0,0 @@
-/dev/mmcblk0p1  /boot       vfat    umask=0077  0   2
-/dev/mmcblk0p2  /           ext4    defaults    0   1

build/raspberrypi/init_resize.sh

@@ -1,129 +0,0 @@
-#!/bin/bash
-
-get_variables () {
-  ROOT_PART_DEV=$(findmnt / -o source -n)
-  ROOT_PART_NAME=$(echo "$ROOT_PART_DEV" | cut -d "/" -f 3)
-  ROOT_DEV_NAME=$(echo /sys/block/*/"${ROOT_PART_NAME}" | cut -d "/" -f 4)
-  ROOT_DEV="/dev/${ROOT_DEV_NAME}"
-  ROOT_PART_NUM=$(cat "/sys/block/${ROOT_DEV_NAME}/${ROOT_PART_NAME}/partition")
-
-  BOOT_PART_DEV=$(findmnt /boot -o source -n)
-  BOOT_PART_NAME=$(echo "$BOOT_PART_DEV" | cut -d "/" -f 3)
-  BOOT_DEV_NAME=$(echo /sys/block/*/"${BOOT_PART_NAME}" | cut -d "/" -f 4)
-  BOOT_PART_NUM=$(cat "/sys/block/${BOOT_DEV_NAME}/${BOOT_PART_NAME}/partition")
-
-  OLD_DISKID=$(fdisk -l "$ROOT_DEV" | sed -n 's/Disk identifier: 0x\([^ ]*\)/\1/p')
-
-  ROOT_DEV_SIZE=$(cat "/sys/block/${ROOT_DEV_NAME}/size")
-  if [ "$ROOT_DEV_SIZE" -le 67108864 ]; then
-      TARGET_END=$((ROOT_DEV_SIZE - 1))
-  else
-      TARGET_END=$((33554432 - 1))
-      DATA_PART_START=33554432
-      DATA_PART_END=$((ROOT_DEV_SIZE - 1))
-  fi
-
-  PARTITION_TABLE=$(parted -m "$ROOT_DEV" unit s print | tr -d 's')
-
-  LAST_PART_NUM=$(echo "$PARTITION_TABLE" | tail -n 1 | cut -d ":" -f 1)
-
-  ROOT_PART_LINE=$(echo "$PARTITION_TABLE" | grep -e "^${ROOT_PART_NUM}:")
-  ROOT_PART_START=$(echo "$ROOT_PART_LINE" | cut -d ":" -f 2)
-  ROOT_PART_END=$(echo "$ROOT_PART_LINE" | cut -d ":" -f 3)
-}
-
-check_variables () {
-  if [ "$BOOT_DEV_NAME" != "$ROOT_DEV_NAME" ]; then
-      FAIL_REASON="Boot and root partitions are on different devices"
-      return 1
-  fi
-
-  if [ "$ROOT_PART_NUM" -ne "$LAST_PART_NUM" ]; then
-    FAIL_REASON="Root partition should be last partition"
-    return 1
-  fi
-
-  if [ "$ROOT_PART_END" -gt "$TARGET_END" ]; then
-    FAIL_REASON="Root partition runs past the end of device"
-    return 1
-  fi
-
-  if [ ! -b "$ROOT_DEV" ] || [ ! -b "$ROOT_PART_DEV" ] || [ ! -b "$BOOT_PART_DEV" ] ; then
-    FAIL_REASON="Could not determine partitions"
-    return 1
-  fi
-}
-
-main () {
-  get_variables
-
-  if ! check_variables; then
-    return 1
-  fi
-
-#   if [ "$ROOT_PART_END" -eq "$TARGET_END" ]; then
-#     reboot_pi
-#   fi
-
-  if ! echo Yes | parted -m --align=optimal "$ROOT_DEV" ---pretend-input-tty u s resizepart "$ROOT_PART_NUM" "$TARGET_END" ; then
-    FAIL_REASON="Root partition resize failed"
-    return 1
-  fi
-
-  if [ -n "$DATA_PART_START" ]; then
-    if ! parted -ms --align=optimal "$ROOT_DEV" u s mkpart primary "$DATA_PART_START" "$DATA_PART_END"; then
-      FAIL_REASON="Data partition creation failed"
-      return 1
-    fi
-  fi
-
-  (
-    echo x
-    echo i
-    echo "0xcb15ae4d"
-    echo r
-    echo w
-  ) | fdisk $ROOT_DEV
-
-  mount / -o remount,rw
-
-  resize2fs $ROOT_PART_DEV
-
-  if ! systemd-machine-id-setup; then
-    FAIL_REASON="systemd-machine-id-setup failed"
-    return 1
-  fi
-
-  if ! ssh-keygen -A; then
-    FAIL_REASON="ssh host key generation failed"
-    return 1
-  fi
-
-  echo start > /etc/hostname
-
-  return 0
-}
-
-mount -t proc proc /proc
-mount -t sysfs sys /sys
-mount -t tmpfs tmp /run
-mkdir -p /run/systemd
-mount /boot
-mount / -o remount,ro
-
-beep
-
-if main; then
-  sed -i 's| init=/usr/lib/embassy/scripts/init_resize\.sh| boot=embassy|' /boot/cmdline.txt
-  echo "Resized root filesystem. Rebooting in 5 seconds..."
-  sleep 5
-else
-  echo -e "Could not expand filesystem.\n${FAIL_REASON}"
-  sleep 5
-fi
-
-sync
-
-umount /boot
-
-reboot -f

build/raspberrypi/make-image.sh

@@ -60,12 +60,12 @@ sudo mount `partition_for ${OUTPUT_DEVICE} 2` $TMPDIR
 sudo mkdir $TMPDIR/boot
 sudo mount `partition_for ${OUTPUT_DEVICE} 1` $TMPDIR/boot
 sudo unsquashfs -f -d $TMPDIR startos.raspberrypi.squashfs
-REAL_GIT_HASH=$(cat $TMPDIR/usr/lib/embassy/GIT_HASH.txt)
-REAL_VERSION=$(cat $TMPDIR/usr/lib/embassy/VERSION.txt)
-REAL_ENVIRONMENT=$(cat $TMPDIR/usr/lib/embassy/ENVIRONMENT.txt)
-sudo sed -i 's| boot=embassy| init=/usr/lib/embassy/scripts/init_resize\.sh|' $TMPDIR/boot/cmdline.txt
+REAL_GIT_HASH=$(cat $TMPDIR/usr/lib/startos/GIT_HASH.txt)
+REAL_VERSION=$(cat $TMPDIR/usr/lib/startos/VERSION.txt)
+REAL_ENVIRONMENT=$(cat $TMPDIR/usr/lib/startos/ENVIRONMENT.txt)
+sudo sed -i 's| boot=embassy| init=/usr/lib/startos/scripts/init_resize\.sh|' $TMPDIR/boot/cmdline.txt
 sudo cp ./build/raspberrypi/fstab $TMPDIR/etc/
-sudo cp ./build/raspberrypi/init_resize.sh $TMPDIR/usr/lib/embassy/scripts/init_resize.sh
+sudo cp ./build/raspberrypi/init_resize.sh $TMPDIR/usr/lib/startos/scripts/init_resize.sh
 sudo umount $TMPDIR/boot
 sudo umount $TMPDIR
 sudo losetup -d $OUTPUT_DEVICE