From 2d3d8339def611d33357d4c5efd1d3dc2c770586eca65998eca945849f458d86 Mon Sep 17 00:00:00 2001 From: "Marc S. Weidner" Date: Fri, 22 Aug 2025 14:13:38 +0200 Subject: [PATCH] V8.13.008.2025.08.22 Signed-off-by: Marc S. Weidner --- .gitea/trigger/t_generate_PRIVATE_trixie.yaml | 2 +- .gitea/workflows/generate_PRIVATE_trixie.yaml | 23 ++++++++----------- 2 files changed, 10 insertions(+), 15 deletions(-) diff --git a/.gitea/trigger/t_generate_PRIVATE_trixie.yaml b/.gitea/trigger/t_generate_PRIVATE_trixie.yaml index b192b23..403d0b4 100644 --- a/.gitea/trigger/t_generate_PRIVATE_trixie.yaml +++ b/.gitea/trigger/t_generate_PRIVATE_trixie.yaml @@ -10,6 +10,6 @@ # SPDX-Security-Contact: security@coresecret.eu build: - counter: 1023 + counter: 1024 version: V8.13.008.2025.08.22 # vim: number et ts=2 sw=2 sts=2 ai tw=128 ft=yaml diff --git a/.gitea/workflows/generate_PRIVATE_trixie.yaml b/.gitea/workflows/generate_PRIVATE_trixie.yaml index 3a37e87..0ab1a0d 100644 --- a/.gitea/workflows/generate_PRIVATE_trixie.yaml +++ b/.gitea/workflows/generate_PRIVATE_trixie.yaml @@ -28,7 +28,7 @@ on: - '.gitea/trigger/t_generate_PRIVATE_trixie.yaml' jobs: - generate-private-ciss-debian-live-iso: + generate-private-cdlb-trixie: name: 🔐 Generating a Private Live ISO TRIXIE. runs-on: cdlb.trixie @@ -53,6 +53,14 @@ jobs: sudo \ util-linux + - name: Verify /work mount & space + run: | + set -euxo pipefail + command -v findmnt >/dev/null || { apt-get update -y && apt-get install -y --no-install-recommends util-linux; } + findmnt -no SOURCE,TARGET /work || true + df -h /work + mountpoint -q /work && echo "OK: /work is a mount" + - name: 🔎 Show workspace & mounts run: | set -euo pipefail @@ -158,7 +166,6 @@ jobs: git config gpg.format openpgp - name: ⚙️ Preparing the build environment. - shell: bash run: | set -euo pipefail mkdir -p /opt/config @@ -169,11 +176,8 @@ jobs: echo "${{ secrets.CISS_DLB_ROOT_SSH_PUBKEY }}" >| /opt/config/authorized_keys - name: 🛠️ Starting CISS.debian.live.builder. This may take a while ... - shell: bash run: | set -euo pipefail - export LB_PARENTDIR=/work - export LB_CACHE_DIR=/work/.cache chmod 0755 ciss_live_builder.sh timestamp=$(date -u +"%Y_%m_%dT%H_%M_%SZ") ### Change "--autobuild=" to the specific kernel version you need: '6.12.41+deb13-amd64'. @@ -192,7 +196,6 @@ jobs: --trixie - name: 📥 Checking Centurion Cloud for existing LIVE ISOs. - shell: bash env: NC_BASE: "https://cloud.e2ee.li" SHARE_TOKEN: "${{ secrets.CENTURION_CLOUD_UL_USER }}" @@ -230,7 +233,6 @@ jobs: fi - name: 🛠️ Upload the ISO file to the Centurion Cloud (cloud.e2ee.li) via WebDAV. - shell: bash env: NC_BASE: "https://cloud.e2ee.li" SHARE_TOKEN: "${{ secrets.CENTURION_CLOUD_UL_USER }}" @@ -256,7 +258,6 @@ jobs: fi - name: 🔑 Generating a sha512 Hash of ISO, signing with the 'CI PGP DEPLOY ONLY' key, generate a success message file. - shell: bash run: | if [[ $(ls /opt/livebuild/*.iso 2>/dev/null | wc -l) -ne 1 ]]; then echo "❌ There must be exactly one .iso file in the directory!" @@ -304,7 +305,6 @@ jobs: EOF - name: 🚧 Stash local changes (including untracked). - shell: bash env: GIT_SSH_COMMAND: "ssh -p 42842" run: | @@ -313,7 +313,6 @@ jobs: git stash push --include-untracked -m "ci-temp" || echo "✔️ Nothing to stash." - name: 🔄 Sync with remote before commit using merge strategy. - shell: bash env: GIT_SSH_COMMAND: "ssh -p 42842" run: | @@ -331,7 +330,6 @@ jobs: git log --oneline -n 5 - name: 🛠️ Restore stashed changes. - shell: bash env: GIT_SSH_COMMAND: "ssh -p 42842" run: | @@ -340,7 +338,6 @@ jobs: git stash pop || echo "✔️ Nothing to pop." - name: 📦 Stage generated files. - shell: bash env: GIT_SSH_COMMAND: "ssh -p 42842" run: | @@ -349,7 +346,6 @@ jobs: git add "${PRIVATE_FILE}" || echo "✔️ Nothing to add." - name: 🔑 Commit and sign changes with CI metadata. - shell: bash env: GIT_SSH_COMMAND: "ssh -p 42842" run: | @@ -385,7 +381,6 @@ jobs: fi - name: 🔁 Push back to repository. - shell: bash env: GIT_SSH_COMMAND: "ssh -p 42842" run: |