rafeOS/rafeOS
1
0
Fork 0
Code Actions Packages Releases Activity

Test sysexts

Browse source
This commit is contained in:
Tobias Strobel 2024-03-04 21:54:10 +01:00
parent 97b315904c
commit 3630d25d6e
11 changed files with 92 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
mkosi.conf
View file

@ -2,18 +2,21 @@
Distribution=arch
Architecture=x86-64
PackageManagerTrees=mkosi.pacman
#CacheOnly=yes
[Config]
Images=server
Images=
server
mkosi
openssh
MinimumVersion=20.2
[Validation]
# Use RSA 2048 keys for wide UEFI compatibility
SecureBootKey=signing-keys/rafeOS_secureboot.key
SecureBootCertificate=signing-keys/rafeOS_secureboot.crt
# Use modern EC keys
VerityKey=signing-keys/rafeOS_verity.key
VerityCertificate=signing-keys/rafeOS_verity.crt
VerityKey=signing-keys/rafeOS_secureboot.key
VerityCertificate=signing-keys/rafeOS_secureboot.crt
[Host]
Incremental=true

10
mkosi.images/base/mkosi.extra/usr/lib/systemd/import-pubring.asc Normal file
View file

@ -0,0 +1,10 @@
-----BEGIN PGP PUBLIC KEY BLOCK-----
mDMEZZnR4RYJKwYBBAHaRw8BAQdAGRcV4reORo51jiWK0umHCTEIVPYVP0fdmkGg
yRpOYzO0M3JhZmVPUyByZWxlYXNlIHNpZ25pbmcga2V5IDxyYWZlb3MtcmVsZWFz
ZUByYWZlLmxpPoiUBBMWCgA8FiEESXsbF77lPV3wroM/YHdZAN3fqmcFAmWZ0eEC
GwMFCQWjmoAECwkIBwQVCgkIBRYCAwEAAh4FAheAAAoJEGB3WQDd36pn95YBAJ46
x71+zLZLGgqxbipMNZXTQhJX4t8BMCMyqY/1PB5wAP9v83NKCUx13LpXHcWASxOu
EcW60JxJ/K6qn5ciCmVxAA==
=ubh/
-----END PGP PUBLIC KEY BLOCK-----

21
mkosi.images/mkosi/mkosi.conf Normal file
View file

@ -0,0 +1,21 @@
[Config]
Dependencies=base
[Output]
Format=sysext
Overlay=yes
Output=mkosi_%v.sysext
SectorSize=4096
# For Reproducible Builds
Seed=834dd70f55be43cc9934b20fc0b7f7be
[Validation]
SecureBoot=true
SignExpectedPcr=true
[Content]
SourceDateEpoch=0
BaseTrees=../../mkosi.output/base/
Packages=
mkosi
ukify

14
mkosi.images/mkosi/mkosi.postinst.chroot Executable file
View file

@ -0,0 +1,14 @@
#!/bin/bash
set -eu
mkdir -p /usr/lib/extension-release.d/
cat >/usr/lib/extension-release.d/extension-release.mkosi <<EOF
ID=rafeOS
SYSEXT_ID=mkosi
SYSEXT_SCOPE=system
EOF
# The default profiles mount the host's /etc/resolv.conf into our
# image. For that the file to mount over needs to exist. Let's create
# it here.
touch /etc/resolv.conf

1
mkosi.images/mkosi/mkosi.version Normal file
View file

@ -0,0 +1 @@
0.0.4

20
mkosi.images/openssh/mkosi.conf Normal file
View file

@ -0,0 +1,20 @@
[Config]
Dependencies=base
[Output]
Format=portable
Overlay=yes
Output=openssh_%v.portable
SectorSize=4096
# For Reproducible Builds
Seed=834dd70f55be43cc9934b20fc0b7f7be
[Validation]
SecureBoot=true
SignExpectedPcr=true
[Content]
SourceDateEpoch=0
BaseTrees=../../mkosi.output/base/
Packages=
openssh

15
mkosi.images/openssh/mkosi.postinst.chroot Executable file
View file

@ -0,0 +1,15 @@
#!/bin/bash
set -eu
cat >/usr/lib/os-release <<EOF
ID=rafeOS
SYSEXT_ID=openssh
SYSEXT_SCOPE=portable
PORTABLE_PREFIXES=sshd
PORTABLE_PRETTY_NAME="OpenSSH Portable Service"
EOF
# The default profiles mount the host's /etc/resolv.conf into our
# image. For that the file to mount over needs to exist. Let's create
# it here.
touch /etc/resolv.conf

1
mkosi.images/openssh/mkosi.version Normal file
View file

@ -0,0 +1 @@
0.0.4

2
mkosi.images/server/mkosi.conf
View file

@ -4,7 +4,7 @@ Dependencies=base
[Output]
Format=disk
Output=rafeOS-server
Output=rafeOS-server_%v
SplitArtifacts=yes
ManifestFormat=json,changelog
ImageId=rafeOS

2
mkosi.images/server/mkosi.version
View file

@ -1 +1 @@
0.0.2
0.0.4

2
prepare-release-upload.sh
View file

@ -90,7 +90,7 @@ release_directory="$output_directory/release-v$version_string"
mkdir -p "$release_directory"
# Move all files of the release to the new directory
mv "$output_directory/${IMAGE_ID}-${IMAGE_VARIANT}_$version_string"* "$release_directory/"
mv "$output_directory/${IMAGE_ID}-${IMAGE_VARIANT}_$version_string."* "$release_directory/"
cd "$release_directory/"