[quote="RangerZ, post:35, topic:52, full:true"]The big issue in my mind with trunk is package management. I think we should suggest that a user "plan" to download firmware and packages at the point they plan to do the install and suggest they immediately install Luci and USB. Storing the packages on a USB drive is probably the easiest way to address enhancing a particular build for an ongoing period.[/quote]Agree on general idea, adding my OpenWRT veteran experiences on it.
The best way to use devices kept on trunk is to integrate all packages in a flashable firmware image (using Image Builder, we currently don't have a tutorial in the wiki for this, must be imported from OpenWRT wiki) and do sysupgrades relatively often.
You can cram a surprising amount of things (for a router) in a 8 MiB firmware image as the Image Builder places everything in the highly compressed squashfs partition, doing extroot (expanding firmware in a USB/Sata/SDcard/whatever) isn't really required unless the device has 4 MiB of internal space or you are using it as a miniserver.
[quote](May need a page for USB, i do not see it in the user guide)[/quote]The page is here, but the fact you missed it probably means its title should be changed.
Currently the title in the user guide list is "Extroot configuration (expand your firmware space in a storage device)".
Feel free to come up with a better title.
[quote]but wget was not set up for https.[/quote]jow said that the onboard "wget" is actually uclient-fetch and that it should be able to use SSL if you install SSL libraries https://github.com/lede-project/source/pull/463#issuecomment-257545072 (and a ls -l /bin also confirms this, the "wget" tool is a symlink to uclient-fetch, not to busybox.)
I've just tested this on my guinea pig router, with PolarSSL library (not installed by default), but wget fails with "Invalid SSL certificate", because there is no certificate database in the default firmware (ca-certificates is the package name for that I think).
root@lede:/# wget -O /tmp/page https://wiki.openwrt.org/doc/howto/netfilter
Downloading 'https://wiki.openwrt.org/doc/howto/netfilter'
Connecting to 81.0.124.216:443
Connection error: Invalid SSL certificate
You can override the certificate check by giving it an option to not check certificates "--no-check-certificate", it is of course not a good thing to not check certificates, but if you need to download a package from dropbox or something like that in a pinch it will work fine from default LEDE firmware.
root@lede:/# wget --no-check-certificate -O /tmp/page https://wiki.openwrt.org/doc/howto/netfilter
Downloading 'https://wiki.openwrt.org/doc/howto/netfilter'
Connecting to 81.0.124.216:443
Writing to '/tmp/page'
/tmp/page 67344 --:--:-- ETA
Download completed (67344 bytes)