vyos/vyos-build
1
0
Fork 0
mirror of https://github.com/vyos/vyos-build.git synced 2025-10-01 20:28:40 +02:00
Code Issues Packages Projects Releases Wiki Activity
2,937 Commits 9 Branches 17 Tags
Commit Graph

2937 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Christian Breunig
53bd06d17b T861: stripping Kernel modules would also remove module signatures 
As the VyOS Linux Kernel will be compiled with CONFIG_MODULE_SIG_FORCE all
driver modules need to be cryptographically signed. This happens during build
of the Kernel and it's 3rd party modules.

Stripping the objects would remove said signature and the system will be unable
to boot b/c of CONFIG_MODULE_SIG_FORCE.
 2024-09-22 09:31:31 +02:00
Daniil Baturin
fa50a5073b
Merge pull request #769 from vyos/t6729-ethtool 
ethtool: T6729: upgrade to 6.10 to make use of more --json options
 2024-09-21 19:51:47 +01:00
Christian Breunig
9e7dd13f52 ethtool: T6729: upgrade to 6.10 to make use of more --json options 
Same as T6078 but we now wan't to make use of ethtool --json eth0 to drop out
own text based parsing of ethtool options in [1]. This is the base for moving
to a better, machine readable interface

1: https://github.com/vyos/vyos-1x/blob/e47d4fd385631236da68/python/vyos/ethtool.py#L77-L105
 2024-09-21 09:27:41 +02:00
Viacheslav Hletenko
3f57943971
Merge pull request #768 from dmbaturin/artifact-filtering 
build: T3664: add an option to specify artifact extensions
 2024-09-20 20:40:18 +03:00
Daniil Baturin
25aeda5c4b build: T3664: add an option to specify artifact extensions 
so that the manifest only contains files considered build artifacts,
and those artifacts can be automatically picked up by CI jobs and the like
 2024-09-20 16:07:00 +01:00
Daniil Baturin
8274a41894
Merge pull request #767 from dmbaturin/post_build_hook_improvements 
build: T3664: improve support for custom build hooks
 2024-09-19 16:13:57 +01:00
Daniil Baturin
3fe55e7813 build: T3664: improve support for custom build hooks 2024-09-18 13:06:49 +01:00
Daniil Baturin
ead4cc2eba
Merge pull request #766 from dmbaturin/manifest-reuse-iso 
build: T6653: fix a manifest generation error when using --reuse-iso
 2024-09-18 08:29:01 +01:00
Daniil Baturin
d991d8779b build: T6653: fix a manifest generation error when using --reuse-iso 2024-09-17 22:20:33 +01:00
Simon
2a53f210ee
Merge pull request #765 from sarthurdev/tpm_luks 2024-09-17 20:04:04 +02:00
sarthurdev
983e4ffd97 build: T861: Add socat as needed by commit 7f23b57 2024-09-17 11:30:36 +02:00
sarthurdev
d60f5222c2 tpm: T4919: Fix TPM test for changes in 7f23b57 2024-09-17 11:30:36 +02:00
sarthurdev
e35345a446 tpm: T4919: Fix check for /dev/tpm0 2024-09-17 10:25:36 +02:00
Christian Breunig
be867edddc
Merge pull request #764 from c-po/secure-boot 
Kernel: T861: use find over ls when probing for Kernel signing public keys
 2024-09-16 23:37:05 +02:00
Christian Breunig
5aaf98f57c Kernel: T861: use find over ls when probing for Kernel signing public keys 2024-09-16 21:09:41 +02:00
Daniil Baturin
d5adf5b36c
Merge pull request #758 from HollyGurza/T6684 
T6684: new Debian package repo snapshot logic
 2024-09-16 16:51:14 +01:00
Viacheslav Hletenko
5255ad102a
Merge pull request #763 from c-po/secure-boot 
T861: add UEFI Secure Boot support
 2024-09-16 12:27:21 +03:00
khramshinr
a26ef9e170 T6684: new Debian package repo snapshot logic 
patch live-build to save information about all installed packages and their source repo, including temporary packages
 2024-09-16 14:23:59 +06:00
Christian Breunig
928c1f505b Docker: T861: fix warning for UID_MIN/UID_MAC out of range 
Rise upper limit for UID when working in an Active Direcotry integrated
environment. This solves the warning: vyos_bld's uid 1632000007 outside of the
UID_MIN 1000 and UID_MAX 60000 range.
 2024-09-14 23:14:19 +02:00
Christian Breunig
fd737172f1 T861: add UEFI Secure Boot support 
This adds support for UEFI Secure Boot. It adds the missing pieces to the Linux
Kernel and enforces module signing. This results in an additional security
layer where untrusted (unsigned) Kernel modules can no longer be loaded into
the live system.

NOTE: This commit will not work unless signing keys are present. Arbitrary
keys can be generated using instructions found in:

  data/live-build-config/includes.chroot/var/lib/shim-signed/mok/README.md
 2024-09-14 23:05:23 +02:00
Christian Breunig
beb3df0733 Kernel: T5887: cleanup Debian postinst files after package build 2024-09-14 20:58:44 +02:00
Christian Breunig
f523ae5cac Kernel: T5887: update Linux Kernel to v6.6.51 2024-09-14 20:58:44 +02:00
Christian Breunig
e4a2e22ced mellanox: T6231: execute build script with sudo 2024-09-14 20:58:44 +02:00
Christian Breunig
300674c144
Merge pull request #759 from sever-sever/T6674-netfilter 
T6674: Fix build package netfilter dependencies
 2024-09-12 19:07:03 +02:00
Viacheslav Hletenko
21370c5c7d T6674: Fix build package netfilter dependencies 2024-09-12 08:26:26 +00:00
Christian Breunig
55c17f9283
Merge pull request #755 from nvollmar/T6703 
T6703: add support for amd pstate driver
 2024-09-09 10:40:46 +02:00
Christian Breunig
fc3f8317e9
Merge pull request #754 from sever-sever/T6674 
T6674: build-kernel: Get kernel version from the defatults
 2024-09-09 10:38:59 +02:00
Christian Breunig
e86bfd7ab9 Testsuite: T861: add explicit --smoketest argument 
In the past the CLI based smoketest was always executed under an else branch in
the testcase if-statement. Instead of using negative logic move all testcases
to positive logic adding an empty "catch all" else path.
 2024-09-07 21:32:34 +02:00
Christian Breunig
6ef7069098 Testsuite: T861: use fix bootindex for install medium and non-volatile disks 
This is required to support proper disk ejection and not reloading the disk on
system reboot when operation in BIOS mode.
 2024-09-07 21:32:34 +02:00
Christian Breunig
115fb522c8 Testsuite: T861: add support to use VNC for a graphics console 
To use VNC you could run "make test -- --vnc"
 2024-09-07 21:32:34 +02:00
Christian Breunig
986b71af2d Testsuite: T861: use variable to define one single place for VM name 2024-09-07 21:32:34 +02:00
Christian Breunig
aa6ca5c65b Testsuite: T861: cleanup imports and use "kernel_flavor" from vyos_defaults 2024-09-07 21:32:34 +02:00
Christian Breunig
e5627bf050 Testsuite: T861: remove option to disable KVM and use soft-emulation 
This code path was unused during CI runs.
 2024-09-07 21:32:34 +02:00
Christian Breunig
7f23b57b19 Testsuite: T861: eject installation media CD-ROM over powercycle 
When moving to UEFI and secure-boot it's better to just reboot the system
for Machine Owner Key installation, then powercycling the machine.

This commit will use `reboot now` over `poweroff` after base system installation
and boot into installed image for smoketest handling.
 2024-09-07 21:32:34 +02:00
Christian Breunig
fd7d1d0d20 Kernel: T861: remove superfluous architecture from Kernel string 2024-09-07 21:31:46 +02:00
Viacheslav Hletenko
f7022914d2 T6674: Add trigger rebuild kernel if defaults.toml is changed 2024-09-06 11:30:43 +00:00
Viacheslav Hletenko
f9372b85dd T6674: Add symlink to original linux-kernel arch and patches 2024-09-06 09:43:59 +00:00
Nicolas Vollmar
01085c0512 T6703: add support for amd pstate driver 2024-09-06 10:30:11 +02:00
Viacheslav Hletenko
9055e9bae1 T6674: build-kernel: Get kernel version from the defatults 
Get kernel version from the vyos-build/data/defaults.toml
for buld 'linux-kernel' and related packages
Retrun the original build-jool.py script
 2024-09-06 08:15:22 +00:00
Christian Breunig
ae3e89deea
Merge pull request #753 from sever-sever/T6674-actions-keys 
T6674: Add keys gpg_key_id and package_branch to rebuild packages
 2024-09-06 07:23:41 +02:00
Viacheslav Hletenko
c371faf389 T6674: Add keys gpg_key_id and package_branch to rebuild packages 2024-09-05 14:42:43 +00:00
Daniil Baturin
c319ca6723
Merge pull request #751 from c-po/secure-boot-cleanup 
T1416: T861: T3664: T3664: T2640: various cleanup commits
 2024-09-05 15:42:15 +01:00
Viacheslav Hletenko
a6a4f08d56
Merge pull request #752 from sever-sever/T6674-actions 
T6674: Add workflow to rebuild packages
 2024-09-05 13:52:54 +03:00
Viacheslav Hletenko
ceb91a27a8 T6674: Add workflow to rebuild packages 2024-09-05 10:12:31 +00:00
Christian Breunig
68671774f9 T4974: remove package openvpn-dco as it has a proper dependency via vyos-1x 2024-09-05 07:14:43 +02:00
Christian Breunig
d851548515 Makefile: T2640: fix PHONY typo 
Fix typo added in commit 499e8e1cbb ("Makefile: T2640: add helper to convert
ISO to OCI image to start a co…ntainer") should be PHONY over PHONE
 2024-09-05 07:14:43 +02:00
Christian Breunig
3170bcaf2c build: T3664: remove unused psutil dependency 2024-09-05 07:13:08 +02:00
Christian Breunig
f53921911e telegraf: T3664: remove package dependency 
Telegraf is not a full VyOS feature with a proper dependency in place via
vyos-1x package. Drop this temporary dependency.
 2024-09-05 07:13:08 +02:00
Christian Breunig
3e9cda21c8 Docker: T861: fix warnings about latest ENV key=value syntax 2024-09-05 07:13:08 +02:00
Christian Breunig
388efd9f78 Makefile: T861: add possibility to pass CLI options to check-qemu-install 
We can now pass any arbitrary option to the check-qemu-install script by
calling: make test -- --bar-option or make testc -- --foo-option

please note the -- which is not a typo but rather signals the end of options
and disables further option processing and passes the options down to the next
script.
 2024-09-05 07:13:08 +02:00