2910 Commits

This Branch

This Branch

All Branches

Author	SHA1	Message	Date
Daniil Baturin	d2c98d1510	Merge pull request #788 from sever-sever/T6758 ... T6758: Add build package xen-guest-agent	2024-10-03 13:24:42 +01:00
Viacheslav Hletenko	1d69d490ca	T6758: Add build package xen-guest-agent ... The 'xen-guest-agent' could be used for XCP-NG images	2024-10-03 12:03:18 +00:00
Viacheslav Hletenko	40b0d63dcb	T973: Add build script for node_exporter package	2024-10-02 16:18:07 +00:00
Viacheslav Hletenko	2b9303d0bd	Merge pull request #781 from sever-sever/T6754 ... T6754: Delete Jenkins build packages	2024-10-02 15:05:03 +03:00
Viacheslav Hletenko	1bc5f4de47	Merge pull request #780 from sever-sever/T6755 ... T6755: Change default vyos mirror URL	2024-10-02 15:04:20 +03:00
Viacheslav Hletenko	a3b515ca71	T6713: Update Realtek r8152 driver	2024-10-02 11:48:46 +00:00
Viacheslav Hletenko	2fed892f27	T6754: Delete Jenkins build packages	2024-10-02 08:02:51 +00:00
Viacheslav Hletenko	7bd5496de1	T6755: Change default vyos mirror URL	2024-10-02 07:34:49 +00:00
John Estabrook	c89609e997	Merge pull request #779 from dmbaturin/T6742-childless-leaf-nodes-rendering-libvyosconfig ... docker: T6742: libvyosconfig update for childless node rendering	2024-10-01 13:50:21 -05:00
Daniil Baturin	c611f83ad1	docker: T6742: libvyosconfig update for childless node rendering	2024-10-01 19:44:49 +01:00
Viacheslav Hletenko	356ef07467	Merge pull request #778 from sever-sever/T861-mlnx ... T861: Fix mellanox build by actions	2024-10-01 19:18:24 +03:00
Viacheslav Hletenko	8879bf0fdf	T861: Fix mellanox build by actions	2024-10-01 15:53:10 +00:00
Christian Breunig	7670c2533b	Merge pull request #776 from sever-sever/T861 ... T861: Fix kernel suffix for package build by actions	2024-10-01 16:27:52 +02:00
Viacheslav Hletenko	db70544b0d	T861: Fix kernel suffix for package build by actions	2024-10-01 12:45:16 +00:00
Daniil Baturin	a0deb45ac8	Merge pull request #774 from dmbaturin/T6742-childless-leaf-nodes-rendering ... build-image: T6742: update vyos1x-config for childless non-leaf node rendering fixes	2024-09-30 16:19:40 +01:00
Christian Breunig	47de7d4103	Merge pull request #773 from dmbaturin/T6738-build-type-field ... build: T6738: add build_type field to version data instead of the very limited and unused lts_build	2024-09-30 17:09:08 +02:00
Daniil Baturin	5788fc9075	build-image: T6742: update vyos1x-config for childless non-leaf node fixes	2024-09-27 17:01:14 +01:00
Christian Breunig	eff99f5eda	Merge pull request #772 from c-po/kernel-ephemeral-keys ... T861: sign all Kernel modules with an ephemeral key	2024-09-25 20:24:47 +02:00
Christian Breunig	d235b31a09	T861: sign all Kernel modules with an ephemeral key ... The shim review board (which is the secure boot base loader) recommends using ephemeral keys when signing the Linux Kernel. This commit enables the Kernel build system to generate a one-time ephemeral key that is used to: * sign all build-in Kernel modules * sign all other out-of-tree Kernel modules The key lives in /tmp and is destroyed after the build container exits and is named: "VyOS build time autogenerated kernel key". In addition the Kernel now uses CONFIG_MODULE_SIG_FORCE. This now makes it unable to load any Kernel Module to the image that is NOT signed by the ephemeral key.	2024-09-25 20:24:21 +02:00
Daniil Baturin	e41d2f12b9	build: T6738: add build_type field to version data ... instead of the very limited and unused lts_build	2024-09-25 11:50:48 +01:00
Christian Breunig	b93672d9fb	T861: VyOS image build should use UTC timestamps	2024-09-22 09:31:31 +02:00
Christian Breunig	b2945a4753	Kernel: T5887: disable various unused/not needed debug options	2024-09-22 09:31:31 +02:00
Christian Breunig	88f072df3d	Kernel: T5887: update Linux Kernel to v6.6.52	2024-09-22 09:31:31 +02:00
Christian Breunig	53bd06d17b	T861: stripping Kernel modules would also remove module signatures ... As the VyOS Linux Kernel will be compiled with CONFIG_MODULE_SIG_FORCE all driver modules need to be cryptographically signed. This happens during build of the Kernel and it's 3rd party modules. Stripping the objects would remove said signature and the system will be unable to boot b/c of CONFIG_MODULE_SIG_FORCE.	2024-09-22 09:31:31 +02:00
Daniil Baturin	fa50a5073b	Merge pull request #769 from vyos/t6729-ethtool ... ethtool: T6729: upgrade to 6.10 to make use of more --json options	2024-09-21 19:51:47 +01:00
Christian Breunig	9e7dd13f52	ethtool: T6729: upgrade to 6.10 to make use of more --json options ... Same as T6078 but we now wan't to make use of ethtool --json eth0 to drop out own text based parsing of ethtool options in [1]. This is the base for moving to a better, machine readable interface 1: https://github.com/vyos/vyos-1x/blob/e47d4fd385631236da68/python/vyos/ethtool.py#L77-L105	2024-09-21 09:27:41 +02:00
Viacheslav Hletenko	3f57943971	Merge pull request #768 from dmbaturin/artifact-filtering ... build: T3664: add an option to specify artifact extensions	2024-09-20 20:40:18 +03:00
Daniil Baturin	25aeda5c4b	build: T3664: add an option to specify artifact extensions ... so that the manifest only contains files considered build artifacts, and those artifacts can be automatically picked up by CI jobs and the like	2024-09-20 16:07:00 +01:00
Daniil Baturin	8274a41894	Merge pull request #767 from dmbaturin/post_build_hook_improvements ... build: T3664: improve support for custom build hooks	2024-09-19 16:13:57 +01:00
Daniil Baturin	3fe55e7813	build: T3664: improve support for custom build hooks	2024-09-18 13:06:49 +01:00
Daniil Baturin	ead4cc2eba	Merge pull request #766 from dmbaturin/manifest-reuse-iso ... build: T6653: fix a manifest generation error when using --reuse-iso	2024-09-18 08:29:01 +01:00
Daniil Baturin	d991d8779b	build: T6653: fix a manifest generation error when using --reuse-iso	2024-09-17 22:20:33 +01:00
Simon	2a53f210ee	Merge pull request #765 from sarthurdev/tpm_luks	2024-09-17 20:04:04 +02:00
sarthurdev	983e4ffd97	build: T861: Add socat as needed by commit 7f23b57	2024-09-17 11:30:36 +02:00
sarthurdev	d60f5222c2	tpm: T4919: Fix TPM test for changes in 7f23b57	2024-09-17 11:30:36 +02:00
sarthurdev	e35345a446	tpm: T4919: Fix check for /dev/tpm0	2024-09-17 10:25:36 +02:00
Christian Breunig	be867edddc	Merge pull request #764 from c-po/secure-boot ... Kernel: T861: use find over ls when probing for Kernel signing public keys	2024-09-16 23:37:05 +02:00
Christian Breunig	5aaf98f57c	Kernel: T861: use find over ls when probing for Kernel signing public keys	2024-09-16 21:09:41 +02:00
Daniil Baturin	d5adf5b36c	Merge pull request #758 from HollyGurza/T6684 ... T6684: new Debian package repo snapshot logic	2024-09-16 16:51:14 +01:00
Viacheslav Hletenko	5255ad102a	Merge pull request #763 from c-po/secure-boot ... T861: add UEFI Secure Boot support	2024-09-16 12:27:21 +03:00
khramshinr	a26ef9e170	T6684: new Debian package repo snapshot logic ... patch live-build to save information about all installed packages and their source repo, including temporary packages	2024-09-16 14:23:59 +06:00
Christian Breunig	928c1f505b	Docker: T861: fix warning for UID_MIN/UID_MAC out of range ... Rise upper limit for UID when working in an Active Direcotry integrated environment. This solves the warning: vyos_bld's uid 1632000007 outside of the UID_MIN 1000 and UID_MAX 60000 range.	2024-09-14 23:14:19 +02:00
Christian Breunig	fd737172f1	T861: add UEFI Secure Boot support ... This adds support for UEFI Secure Boot. It adds the missing pieces to the Linux Kernel and enforces module signing. This results in an additional security layer where untrusted (unsigned) Kernel modules can no longer be loaded into the live system. NOTE: This commit will not work unless signing keys are present. Arbitrary keys can be generated using instructions found in: data/live-build-config/includes.chroot/var/lib/shim-signed/mok/README.md	2024-09-14 23:05:23 +02:00
Christian Breunig	beb3df0733	Kernel: T5887: cleanup Debian postinst files after package build	2024-09-14 20:58:44 +02:00
Christian Breunig	f523ae5cac	Kernel: T5887: update Linux Kernel to v6.6.51	2024-09-14 20:58:44 +02:00
Christian Breunig	e4a2e22ced	mellanox: T6231: execute build script with sudo	2024-09-14 20:58:44 +02:00
Christian Breunig	300674c144	Merge pull request #759 from sever-sever/T6674-netfilter ... T6674: Fix build package netfilter dependencies	2024-09-12 19:07:03 +02:00
Viacheslav Hletenko	21370c5c7d	T6674: Fix build package netfilter dependencies	2024-09-12 08:26:26 +00:00
Christian Breunig	55c17f9283	Merge pull request #755 from nvollmar/T6703 ... T6703: add support for amd pstate driver	2024-09-09 10:40:46 +02:00
Christian Breunig	fc3f8317e9	Merge pull request #754 from sever-sever/T6674 ... T6674: build-kernel: Get kernel version from the defatults	2024-09-09 10:38:59 +02:00