#buildroot — Public Fediverse posts

Most routers call home. IoT devices do too.

My gateway? Pure Buildroot Linux that blocks almost all those strange outbound connections.

No cloud, no telemetry, no shell, just an appliance doing its job 💪

#IoT #Privacy #Linux #Buildroot #FOSS #Networking

Stories and reasoning we put to our work is often not that visible. Here is my Link project, which is partly AI implemented communication system to test various transport and security measures. It's built with buildroot and all other details can be found here: https://codeberg.org/resiliencetheatre/rpi-extree/src/branch/main/link.md
#opsec #comsec #outofband #opensource #buildroot #embedded #lvgl #prepping #preparedness #nitrokey #fido2 #satcom

Stories and reasoning we put to our work is often not that visible. Here is my Link project, which is partly AI implemented communication system to test various transport and security measures. It's built with buildroot and all other details can be found here: https://codeberg.org/resiliencetheatre/rpi-extree/src/branch/main/link.md
#opsec #comsec #outofband #opensource #buildroot #embedded #lvgl #prepping #preparedness #nitrokey #fido2 #satcom

Stories and reasoning we put to our work is often not that visible. Here is my Link project, which is partly AI implemented communication system to test various transport and security measures. It's built with buildroot and all other details can be found here: https://codeberg.org/resiliencetheatre/rpi-extree/src/branch/main/link.md
#opsec #comsec #outofband #opensource #buildroot #embedded #lvgl #prepping #preparedness #nitrokey #fido2 #satcom

After countless trials, books, web searches, and some brutal advice from my Bukowski AI, I finally built a custom IoT hotspot from scratch using Buildroot 😎

No more pre-packaged garbage. I filter insecure connections myself. Total control 💪🏻

The first prototype works... mostly 😆

Now comes the real torture: testing and refining 🫩

Maybe I'll even try to sell this thing 🤑

#Buildroot #IoT #Linux #DIY #Bukowski #FromScratch #Security #ad #telemetrystorm

After countless trials, books, web searches, and some brutal advice from my Bukowski AI, I finally built a custom IoT hotspot from scratch using Buildroot 😎

No more pre-packaged garbage. I filter insecure connections myself. Total control 💪🏻

The first prototype works... mostly 😆

Now comes the real torture: testing and refining 🫩

Maybe I'll even try to sell this thing 🤑

#Buildroot #IoT #Linux #DIY #Bukowski #FromScratch #Security #ad #telemetrystorm

After countless trials, books, web searches, and some brutal advice from my Bukowski AI, I finally built a custom IoT hotspot from scratch using Buildroot 😎

No more pre-packaged garbage. I filter insecure connections myself. Total control 💪🏻

The first prototype works... mostly 😆

Now comes the real torture: testing and refining 🫩

Maybe I'll even try to sell this thing 🤑

#Buildroot #IoT #Linux #DIY #Bukowski #FromScratch #Security #ad #telemetrystorm

After countless trials, books, web searches, and some brutal advice from my Bukowski AI, I finally built a custom IoT hotspot from scratch using Buildroot 😎

No more pre-packaged garbage. I filter insecure connections myself. Total control 💪🏻

The first prototype works... mostly 😆

Now comes the real torture: testing and refining 🫩

Maybe I'll even try to sell this thing 🤑

#Buildroot #IoT #Linux #DIY #Bukowski #FromScratch #Security #ad #telemetrystorm

After countless trials, books, web searches, and some brutal advice from my Bukowski AI, I finally built a custom IoT hotspot from scratch using Buildroot 😎

No more pre-packaged garbage. I filter insecure connections myself. Total control 💪🏻

The first prototype works... mostly 😆

Now comes the real torture: testing and refining 🫩

Maybe I'll even try to sell this thing 🤑

#Buildroot #IoT #Linux #DIY #Bukowski #FromScratch #Security #ad #telemetrystorm

@[email protected] @[email protected] For context: #Buildroot has tools to list known vulnerabilities for packages, currently based on NVD data (via https://github.com/fkie-cad/nvd-json-data-feeds).

I noticed it's missing a bunch of vulnerabilities (e.g. CVE-2026-40200, CVE-2026-6042 in musl libc) because the NVD data is missing CPE match information. At the time the CVEs were listed as "Awaiting Analysis", now "Deferred", so I assume it's not going to be added any time soon, if ever (generally the CPE match is present for vulnerabilities in "Analyzed" status). Looking at the GCVE listings was an attempt to find another, hopefully better, source, because an automated check that misses so many vulnerabilities is not going to be very useful.

Today @[email protected] pointed me at a similar example: CVE-2025-6020 (note the year), a "high" level vulnerability in linux-pam, which is also marked as "Deferred" in NVD. So we really could use a better source.

We'd need one we can download (rather than query individual packages one by one) without excessive load, but solving that is another matter, first we need a suitable source at all.

Bumping into a fakeroot bug (in interaction with mkfs.btrfs) only to find that someone else already reported it a year and half ago… Now I know why #Buildroot still has only btrfs-progs 6.10. Well, definitely not going to replace or fix that tonight. sigh ​:neocat_floof_sad:​

LeafKVM open-source hardware IP KVM offers WiFi 5, PoE, USB-C serial console, and 2.4-inch touchscreen display (Crowdfunding)

https://fed.brid.gy/r/https://www.cnx-software.com/2026/04/22/leafkvm-open-source-hardware-ip-kvm-offers-wifi-5-poe-usb-c-serial-console-and-2-4-inch-touchscreen-display/

Ezurio Tungsten 510/700 SMARC SoM features MediaTek Genio 510/700 AIoT SoC, dual GbE, WiFi 6

https://fed.brid.gy/r/https://www.cnx-software.com/2026/04/21/ezurio-tungsten-510-700-smarc-som-features-mediatek-genio-510-700-aiot-soc-dual-gbe-wifi-6/

Does anyone know how to report errors to https://db.gcve.eu/? Just their info@ mail? I looked up CVE-2026-6042 and CVE-2026-40200 there because I was annoyed that the NVD database (which #Buildroot uses for automated vulnerability checks) still didn't have them correctly labeled with the CPE (so automated tools can't identify the package is vulnerable).

Result: CVE-2026-40200 is correctly labeled (good!), while CVE-2026-6042 is not (different vendor/product). Mistakes happen, an organization that's trying to run as serious vulnerability DB really needs to provide an obvious "report errors here" mail address (or other means, but really… mail). ​:neocat_glare:​ #CVE #GCVE

Does anyone know how to report errors to https://db.gcve.eu/? Just their info@ mail? I looked up CVE-2026-6042 and CVE-2026-40200 there because I was annoyed that the NVD database (which #Buildroot uses for automated vulnerability checks) still didn't have them correctly labeled with the CPE (so automated tools can't identify the package is vulnerable).

Result: CVE-2026-40200 is correctly labeled (good!), while CVE-2026-6042 is not (different vendor/product). Mistakes happen, an organization that's trying to run as serious vulnerability DB really needs to provide an obvious "report errors here" mail address (or other means, but really… mail). ​:neocat_glare:​ #CVE #GCVE

Does anyone know how to report errors to https://db.gcve.eu/? Just their info@ mail? I looked up CVE-2026-6042 and CVE-2026-40200 there because I was annoyed that the NVD database (which #Buildroot uses for automated vulnerability checks) still didn't have them correctly labeled with the CPE (so automated tools can't identify the package is vulnerable).

Result: CVE-2026-40200 is correctly labeled (good!), while CVE-2026-6042 is not (different vendor/product). Mistakes happen, an organization that's trying to run as serious vulnerability DB really needs to provide an obvious "report errors here" mail address (or other means, but really… mail). ​:neocat_glare:​ #CVE #GCVE

Does anyone know how to report errors to https://db.gcve.eu/? Just their info@ mail? I looked up CVE-2026-6042 and CVE-2026-40200 there because I was annoyed that the NVD database (which #Buildroot uses for automated vulnerability checks) still didn't have them correctly labeled with the CPE (so automated tools can't identify the package is vulnerable).

Result: CVE-2026-40200 is correctly labeled (good!), while CVE-2026-6042 is not (different vendor/product). Mistakes happen, an organization that's trying to run as serious vulnerability DB really needs to provide an obvious "report errors here" mail address (or other means, but really… mail). ​:neocat_glare:​ #CVE #GCVE

Does anyone know how to report errors to https://db.gcve.eu/? Just their info@ mail? I looked up CVE-2026-6042 and CVE-2026-40200 there because I was annoyed that the NVD database (which #Buildroot uses for automated vulnerability checks) still didn't have them correctly labeled with the CPE (so automated tools can't identify the package is vulnerable).

Result: CVE-2026-40200 is correctly labeled (good!), while CVE-2026-6042 is not (different vendor/product). Mistakes happen, an organization that's trying to run as serious vulnerability DB really needs to provide an obvious "report errors here" mail address (or other means, but really… mail). ​:neocat_glare:​ #CVE #GCVE

Boardcon Tiny1126B is a smaller and lighter Rockchip RV1126B system-on-module, yet with more I/Os

https://fed.brid.gy/r/https://www.cnx-software.com/2026/04/17/boardcon-tiny1126b-smaller-lighter-rockchip-rv1126b-system-on-module-yet-with-more-ios/

Conclusive Engineering KSTR-SAMA5D27 is an ultra-compact, low-power SBC based on Microchip SAMA5D27 SiP

https://fed.brid.gy/r/https://www.cnx-software.com/2026/04/16/conclusive-engineering-kstr-sama5d27-ultra-compact-sbc-microchip-sama5d27-sip/

Conclusive Engineering KSTR-SAMA5D27 is an ultra-compact, low-power SBC based on Microchip SAMA5D57 SiP

https://fed.brid.gy/r/https://www.cnx-software.com/2026/04/16/conclusive-engineering-kstr-sama5d27-ultra-compact-sbc-microchip-sama5d57-sip/

Mekotronics R57-5S – Rockchip RK3576 mini PC and digital player integrates inclined 5-inch touchscreen display

https://fed.brid.gy/r/https://www.cnx-software.com/2026/04/02/mekotronics-r57-5s-rockchip-rk3576-mini-pc-and-digital-player-integrates-inclined-5-inch-touchscreen-display/

Training code for embedded Linux development resilience. Resulting communication system with selectable one-time-pad for codec2 based fullduplex or symmetric crypto for push-to-talk usage.
#resilience #comsec #onetimepad #vibecoding #buildroot #embedded #dfir #redteam #preparedness

Training code for embedded Linux development resilience. Resulting communication system with selectable one-time-pad for codec2 based fullduplex or symmetric crypto for push-to-talk usage.
#resilience #comsec #onetimepad #vibecoding #buildroot #embedded #dfir #redteam #preparedness

Luckfox Lume – A compact Allwinner T153 SBC with dual GbE, PoE, GPIO header, and MIPI interfaces for industrial HMI applications

https://fed.brid.gy/r/https://www.cnx-software.com/2026/03/27/luckfox-lume-allwinner-t153-industrial-sbc-with-dual-gbe-poe-gpio-mipi/

Compiling yet another Buildroot image I’m 99% sure will fail… but at least this time the soundtrack is Sunshine by Alice in Chains, so the suffering feels poetic ❤️

If the build breaks, at least the vibe doesn’t 🤟🏻

#Linux #Buildroot #DIYDistro #KernelPanicEnergy #DevLife #aliceinchains #aic

Compiling yet another Buildroot image I’m 99% sure will fail… but at least this time the soundtrack is Sunshine by Alice in Chains, so the suffering feels poetic ❤️

If the build breaks, at least the vibe doesn’t 🤟🏻

#Linux #Buildroot #DIYDistro #KernelPanicEnergy #DevLife #aliceinchains #aic

Compiling yet another Buildroot image I’m 99% sure will fail… but at least this time the soundtrack is Sunshine by Alice in Chains, so the suffering feels poetic ❤️

If the build breaks, at least the vibe doesn’t 🤟🏻

#Linux #Buildroot #DIYDistro #KernelPanicEnergy #DevLife #aliceinchains #aic

Compiling yet another Buildroot image I’m 99% sure will fail… but at least this time the soundtrack is Sunshine by Alice in Chains, so the suffering feels poetic ❤️

If the build breaks, at least the vibe doesn’t 🤟🏻

#Linux #Buildroot #DIYDistro #KernelPanicEnergy #DevLife #aliceinchains #aic

Compiling yet another Buildroot image I’m 99% sure will fail… but at least this time the soundtrack is Sunshine by Alice in Chains, so the suffering feels poetic ❤️

If the build breaks, at least the vibe doesn’t 🤟🏻

#Linux #Buildroot #DIYDistro #KernelPanicEnergy #DevLife #aliceinchains #aic

Trying to build a GUI Linux distro with Buildroot. Just Buildroot. No Debian, no Arch. Just pain 🫩

Xorg? Black screen. Wayland? Sounds like a fantasy novel. Kernel panic? Oh yeah, got that too 🫨

But I will make this work, because minimalism deserves a desktop 🤟🏻

#Linux #Buildroot #KernelPanic #WaylandOrWhatever #DIYDistro #WhyAmIDoingThis

Some of these dongles actually work on #zeST. But:
- with an outdated stable release of #Buildroot from 2024.
- with an outdated #Linux kernel from 2023.

So older devices may be working, newer devices absolutely not.

After way too many attempts, I finally got a custom GRUB2 EFI bootloader built with Buildroot showing a splash image at boot on real hardware 🎉

The secret? insmod gfxterm_background + font in the right path.

Simple in theory, painful in practice 🤕

#Buildroot #GRUB2 #EFI #Linux #EmbeddedLinux

After way too many attempts, I finally got a custom GRUB2 EFI bootloader built with Buildroot showing a splash image at boot on real hardware 🎉

The secret? insmod gfxterm_background + font in the right path.

Simple in theory, painful in practice 🤕

#Buildroot #GRUB2 #EFI #Linux #EmbeddedLinux

After way too many attempts, I finally got a custom GRUB2 EFI bootloader built with Buildroot showing a splash image at boot on real hardware 🎉

The secret? insmod gfxterm_background + font in the right path.

Simple in theory, painful in practice 🤕

#Buildroot #GRUB2 #EFI #Linux #EmbeddedLinux

After way too many attempts, I finally got a custom GRUB2 EFI bootloader built with Buildroot showing a splash image at boot on real hardware 🎉

The secret? insmod gfxterm_background + font in the right path.

Simple in theory, painful in practice 🤕

#Buildroot #GRUB2 #EFI #Linux #EmbeddedLinux

After way too many attempts, I finally got a custom GRUB2 EFI bootloader built with Buildroot showing a splash image at boot on real hardware 🎉

The secret? insmod gfxterm_background + font in the right path.

Simple in theory, painful in practice 🤕

#Buildroot #GRUB2 #EFI #Linux #EmbeddedLinux

So, Infix OS has been upgraded to #buildroot 2026.02 LTS well in time for our 26.03 release. We've actually been tracking it since -rc1, so this was more of a formality to rebase and rerun our regression tests. Mattias (lazzer) worked relentlessly on this, while still managing to do a ton of other things as well.

Looking forward to our next release, hopefully my BPi-R64 porting work will be done by then as well 🤩

#linux #embedded #nos #yang #netconf #restconf

I'm getting ideas again… I've been thinking for a while that a #Buildroot config for #Pinephone would be nice. I'm not really thinking of a fully working phone setup (though if someone wants to make that I'm curious), and more so I could use the A/B boot setup I have for Buildroot to quickly experiment with kernel changes. In pmOS I still can't install two kernels in parallel, so if one of my experiments breaks the kernel to the point of not booting far enough for USB network I have to open the phone, remove the battery, remove the SD card, fix it manually, and reverse. Annoying, and A/B boot avoids it.

And then the realization hit: U-Boot should be able to chainload U-Boot, right? So I could even include a second U-Boot in the A/B slots for experiments with that. Maybe not a perfect test, but should reduce the probability of having to manually fix it a lot… ​:neocat_think_owo:​

Motivation to experiment is much higher if falling back from a failed experiment takes maybe 30 seconds, not 5 minutes. ​:neocat_floof:​

Next challenge at #BashLab: build an AI assistant for creating live OS with #livebuild.

I already built one for #Buildroot and one for #Pentesting.

Problem: no solid PDFs for live-build, only the official HTML docs with tons of links.
Now I need to feed the entire site into my RAG.

Time to scrape, structure, and index 🤟🏻

#AI #RAG #Linux #Debian #BashCore

Next challenge at #BashLab: build an AI assistant for creating live OS with #livebuild.

I already built one for #Buildroot and one for #Pentesting.

Problem: no solid PDFs for live-build, only the official HTML docs with tons of links.
Now I need to feed the entire site into my RAG.

Time to scrape, structure, and index 🤟🏻

#AI #RAG #Linux #Debian #BashCore

Next challenge at #BashLab: build an AI assistant for creating live OS with #livebuild.

I already built one for #Buildroot and one for #Pentesting.

Problem: no solid PDFs for live-build, only the official HTML docs with tons of links.
Now I need to feed the entire site into my RAG.

Time to scrape, structure, and index 🤟🏻

#AI #RAG #Linux #Debian #BashCore

Next challenge at #BashLab: build an AI assistant for creating live OS with #livebuild.

I already built one for #Buildroot and one for #Pentesting.

Problem: no solid PDFs for live-build, only the official HTML docs with tons of links.
Now I need to feed the entire site into my RAG.

Time to scrape, structure, and index 🤟🏻

#AI #RAG #Linux #Debian #BashCore

Next challenge at #BashLab: build an AI assistant for creating live OS with #livebuild.

I already built one for #Buildroot and one for #Pentesting.

Problem: no solid PDFs for live-build, only the official HTML docs with tons of links.
Now I need to feed the entire site into my RAG.

Time to scrape, structure, and index 🤟🏻

#AI #RAG #Linux #Debian #BashCore

Geniatech DB3506 is a full-featured Rockchip RK3506 development board and 3.5-inch industrial SBC

https://fed.brid.gy/r/https://www.cnx-software.com/2026/02/09/geniatech-db3506-full-featured-rockchip-rk3506-development-board-and-3-5-inch-industrial-sbc/

Už mi ten #BuildRoot začíná celkem pěkně fungovat na RaspberryPi 2W. #SKipperApp #Boating #Display #SignalK

I just wish I had a way to build & use modified packages for #Debian as easily as the <pkg>_OVERRIDE_SRCDIR mechanism in #Buildroot. Something to look into maybe, but not tonight. ​:neocat_comfy__w_:​

Working on a Buildroot OS with kernel 6.18 + PREEMPT_RT on an Intel AX210 WiFi (iwlwifi QuZ firmware). With dynamic preempt everything works, but RT causes firmware init errors and the device disappears. Maybe bleeding-edge RT kernels aren’t always the best choice. Curious if others hit similar issues or found workarounds. Open to discussion.

#Linux #Buildroot #Kernel #RealTime #PREEMPTRT #iwlwifi #IntelAX210 #EmbeddedLinux #FOSS #CyberSecurity

Working on a Buildroot OS with kernel 6.18 + PREEMPT_RT on an Intel AX210 WiFi (iwlwifi QuZ firmware). With dynamic preempt everything works, but RT causes firmware init errors and the device disappears. Maybe bleeding-edge RT kernels aren’t always the best choice. Curious if others hit similar issues or found workarounds. Open to discussion.

#Linux #Buildroot #Kernel #RealTime #PREEMPTRT #iwlwifi #IntelAX210 #EmbeddedLinux #FOSS #CyberSecurity