Releases: anatol/booster
Releases · anatol/booster
0.12
What's Changed
- generator: force load usbhid and hid_sensor_hub by @c3Ls1US in #236
- packaging: arch: Do not report removal errors for nonexistent files by @Zile995 in #239
- init: wait for usbhid drivers for fido2 unlocking by @c3Ls1US in #238
- Documentation, debugging by @emperor06 in #244
- Add debian lib64 path to elfLibDir by @ferrreo in #245
- arch: add script to generate UKIs by @c3Ls1US in #252
- Update documentation on UKIs by @c3Ls1US in #254
- Add regenerate_uki script to Arch packaging by @shvrma in #260
- init: check hidraw descriptor to figure out fido or not by @7Ji in #264
- Add gentoo dist-kernel specific config path by @alexminder in #272
New Contributors
- @c3Ls1US made their first contribution in #236
- @Zile995 made their first contribution in #239
- @emperor06 made their first contribution in #244
- @ferrreo made their first contribution in #245
- @shvrma made their first contribution in #260
- @7Ji made their first contribution in #264
- @alexminder made their first contribution in #272
Full Changelog: 0.11...0.12
0.11
- Handle distributions that do not have
/usr/lib
directory available (bc988b0) - booster cat: return an error if the requested file doesn't exist (ab0f6f3)
- generator: Do not rely on user's lookup order for binaries (#213). With this change booster stops using
$PATH
envvar and instead relies on the predefined list of directories to lookup binaries. It is done for security and reproducibility reasons. - Add support for *.zstd compressed firmware.
- Detect and handle
iso9660
filesystem type #223. Booster can be used for booting from*.iso
images now, this gives faster boot and smaller iso images.
0.10
It is a new maintenance release that improves stability, generation, and boot speed. The major bugfixes included in this release are:
- Fixes panic during LUKS volume unseal (#188)
- Brings support for
camelia
block cipher (#188) - Adds support for loadable crypto modules (#47 #188)
- Adds support for
twofish
block cipher - Fixes TPM device discovery race condition (#116)
- Allows force loading of extra modules via the kernel command-line (#186)
- Ignores
/etc/default/zfs
file if it does not exist (#181) - Does not fail if system contains multiple kernel modules with the same name (#192)
- Normalizes kernel module aliase names and makes
_
synonym of-
character (#185) - Adds scsi drivers to the list of the default modules (#196)
- Handles root on RAID0 btrfs partitions (#194)
- Handles systemd TPM2 + passphrase (#198)
- Adds 'usbhid' to the list of default modules (#206)
- Adds CentOS package support
0.9
- Load 'efivarfs' before mounting the filesystem (#149)
- generator: add drivers/ata to the list of default modules (#149)
- Recover panic in udev goroutine (#22 #31 #153)
- Always use path/filepath pkg for operating systems paths
- Adding a more advanced parser to allow handling more complex cmdline parameters (#73)
- Add zfs support (#33)
- Print NIC hardware address (#155)
- Replace github.com/s-urbaniak/uevent.go with github.com/pilebones/go-udev/netlink (#155)
- Add support to allow unlocking a luks volume by keyfile (#37)
0.8
- Add
booster.log
boot parameter that replaces and extends the functionality ofbooster.debug
.ooster.debug
is marked as deprecated. booster.disable_concurrent_module_loading
boot parameter has been removed. This parameter has been used as a safety net if concurrent module loading does not work properly. Concurrent module loading has been thoroughly tested and found no major issues. Drop the unneeded parameter.- Fix “too many open files” booster generator error (#76)
- Process udev and block scanning concurrently to increase the level of parallelism and reduce boot time.
- Refactor
booster
CLI. Addbooster build
,booster ls
,booster cat
,booster unpack
subcommand to build/inspect initramfs images. This functionality is roughly equivalent tolsinitcpio
(#11) - Add sdhci_acpi to the list of modules required for eMMC (#90)
- Handle
init=
kernel parameter (#115) - Handle devices with 4K sectors (#119)
- Fix GPU drivers loading (#120)
- Handle FAT16/FAT32 partitions correctly
- Add support for partitions used for hibernation
- Add uas to the list of default modules (#121)
- Handle multiple luks mappings in the kernel command line (#124)
- Handle firmware files compressed with xz (#127)
- Handle non-/usr filesystem hierarchy (such as used by Alpine Linux)
- Add /usr/lib64 to the list of elf directories to handle Fedora Linux (#137)
- Handle HWPATH=xxx device reference in boot parameters (#112)
- Handle WWID=XXX device reference in boot parameters (#111)
- (Experimental) Implement remote unlock functionality using Tang protocol. (#24)
- Unconditionally enable local echo for emergency shell (#144)
- Don't error-out if
/etc/locale.conf
doesn't exist - Lookup executable under
$PATH
Booster 0.7 release
- Fixed a race condition with mounting RAID5 volumes. (#97)
- Added support for custom encryption blocks. With cryptsetup 2.4.0 LUKS partitions use large encryption blocks of size 4096 bytes.
- Add support of sha512 and blake2b/blake2s hashes to pbkdf2 KDF.
- Add support of FIDO2 and TPM2 tokens enrolled with systemd-cryptenroll. (#96)
- Booster now waits till
modules_force_load
modules are fully loaded before switching to userspace. (#103) - Add compatibility support for proprietary drivers. It makes possible to load
amdgpu
at boot time. (#45 #104) - nvme and usb could be used as root devices now. (#94 #95)
- HID drivers
kernel/drivers/hid
are checked by default now. This improves keyboard drivers detection and fixes numerous keyboard issues at the boot time. (#80) - By default network modules removed from the image if network is disabled in config. This reduces size of the generated image.
- Improves Discoverable Partitions Specification compliance.
Booster makes sure that only root from active ESP disk is mounted; booster is able to detect LUKS partitions and mount them; booster takes GPT flags into account. (#98) - It is possible to specify a LUKS partitions as
root=
directly. In this case the LUKS partition is unlocked and mounted as/dev/mapper/root
.
0.6
- Add support for full-disk encryption using Yubikey. See https://github.com/anatol/clevis.go/blob/main/clevis-encrypt-yubikey for clevis plugin.
- Fix poweroff issues with i915 (#86)
- Add support for root partitions stored at MMC devices (#90)
- Add support for runit (#92). Runit is an init used at some ditros (e.g. Void Linux)