msw/CISS.debian.live.builder
SHA256
2
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 6 Wiki Activity

V8.13.008.2025.08.22
Some checks failed
🛡️ Shell Script Linting / 🛡️ Shell Script Linting (push) Successful in 1m15s
Details
🔐 Generating a Private Live ISO TRIXIE. / 🔐 Generating a Private Live ISO TRIXIE. (push) Failing after 38m23s
Details

Browse Source 
Signed-off-by: Marc S. Weidner <msw@coresecret.dev>
This commit is contained in:
Marc S. Weidner
2025-08-22 14:13:38 +02:00
parent c774974171
commit 2d3d8339de
2 changed files with 10 additions and 15 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
.gitea/trigger/t_generate_PRIVATE_trixie.yaml
View File

@@ -10,6 +10,6 @@
# SPDX-Security-Contact: security@coresecret.eu # SPDX-Security-Contact: security@coresecret.eu
build: build:
counter: 1023 counter: 1024
version: V8.13.008.2025.08.22 version: V8.13.008.2025.08.22
# vim: number et ts=2 sw=2 sts=2 ai tw=128 ft=yaml # vim: number et ts=2 sw=2 sts=2 ai tw=128 ft=yaml

23
.gitea/workflows/generate_PRIVATE_trixie.yaml
View File

@@ -28,7 +28,7 @@ on:
- '.gitea/trigger/t_generate_PRIVATE_trixie.yaml' - '.gitea/trigger/t_generate_PRIVATE_trixie.yaml'
jobs: jobs:
generate-private-ciss-debian-live-iso: generate-private-cdlb-trixie:
name: 🔐 Generating a Private Live ISO TRIXIE. name: 🔐 Generating a Private Live ISO TRIXIE.
runs-on: cdlb.trixie runs-on: cdlb.trixie
@@ -53,6 +53,14 @@ jobs:
sudo \ sudo \
util-linux util-linux
- name: Verify /work mount & space
run: |
set -euxo pipefail
command -v findmnt >/dev/null || { apt-get update -y && apt-get install -y --no-install-recommends util-linux; }
findmnt -no SOURCE,TARGET /work || true
df -h /work
mountpoint -q /work && echo "OK: /work is a mount"
- name: 🔎 Show workspace & mounts - name: 🔎 Show workspace & mounts
run: | run: |
set -euo pipefail set -euo pipefail
@@ -158,7 +166,6 @@ jobs:
git config gpg.format openpgp git config gpg.format openpgp
- name: ⚙️ Preparing the build environment. - name: ⚙️ Preparing the build environment.
shell: bash
run: | run: |
set -euo pipefail set -euo pipefail
mkdir -p /opt/config mkdir -p /opt/config
@@ -169,11 +176,8 @@ jobs:
echo "${{ secrets.CISS_DLB_ROOT_SSH_PUBKEY }}" >| /opt/config/authorized_keys echo "${{ secrets.CISS_DLB_ROOT_SSH_PUBKEY }}" >| /opt/config/authorized_keys
- name: 🛠️ Starting CISS.debian.live.builder. This may take a while ... - name: 🛠️ Starting CISS.debian.live.builder. This may take a while ...
shell: bash
run: | run: |
set -euo pipefail set -euo pipefail
export LB_PARENTDIR=/work
export LB_CACHE_DIR=/work/.cache
chmod 0755 ciss_live_builder.sh chmod 0755 ciss_live_builder.sh
timestamp=$(date -u +"%Y_%m_%dT%H_%M_%SZ") timestamp=$(date -u +"%Y_%m_%dT%H_%M_%SZ")
### Change "--autobuild=" to the specific kernel version you need: '6.12.41+deb13-amd64'. ### Change "--autobuild=" to the specific kernel version you need: '6.12.41+deb13-amd64'.
@@ -192,7 +196,6 @@ jobs:
--trixie --trixie
- name: 📥 Checking Centurion Cloud for existing LIVE ISOs. - name: 📥 Checking Centurion Cloud for existing LIVE ISOs.
shell: bash
env: env:
NC_BASE: "https://cloud.e2ee.li" NC_BASE: "https://cloud.e2ee.li"
SHARE_TOKEN: "${{ secrets.CENTURION_CLOUD_UL_USER }}" SHARE_TOKEN: "${{ secrets.CENTURION_CLOUD_UL_USER }}"
@@ -230,7 +233,6 @@ jobs:
fi fi
- name: 🛠️ Upload the ISO file to the Centurion Cloud (cloud.e2ee.li) via WebDAV. - name: 🛠️ Upload the ISO file to the Centurion Cloud (cloud.e2ee.li) via WebDAV.
shell: bash
env: env:
NC_BASE: "https://cloud.e2ee.li" NC_BASE: "https://cloud.e2ee.li"
SHARE_TOKEN: "${{ secrets.CENTURION_CLOUD_UL_USER }}" SHARE_TOKEN: "${{ secrets.CENTURION_CLOUD_UL_USER }}"
@@ -256,7 +258,6 @@ jobs:
fi fi
- name: 🔑 Generating a sha512 Hash of ISO, signing with the 'CI PGP DEPLOY ONLY' key, generate a success message file. - name: 🔑 Generating a sha512 Hash of ISO, signing with the 'CI PGP DEPLOY ONLY' key, generate a success message file.
shell: bash
run: | run: |
if [[ $(ls /opt/livebuild/*.iso 2>/dev/null | wc -l) -ne 1 ]]; then if [[ $(ls /opt/livebuild/*.iso 2>/dev/null | wc -l) -ne 1 ]]; then
echo "❌ There must be exactly one .iso file in the directory!" echo "❌ There must be exactly one .iso file in the directory!"
@@ -304,7 +305,6 @@ jobs:
EOF EOF
- name: 🚧 Stash local changes (including untracked). - name: 🚧 Stash local changes (including untracked).
shell: bash
env: env:
GIT_SSH_COMMAND: "ssh -p 42842" GIT_SSH_COMMAND: "ssh -p 42842"
run: | run: |
@@ -313,7 +313,6 @@ jobs:
git stash push --include-untracked -m "ci-temp" || echo "✔️ Nothing to stash." git stash push --include-untracked -m "ci-temp" || echo "✔️ Nothing to stash."
- name: 🔄 Sync with remote before commit using merge strategy. - name: 🔄 Sync with remote before commit using merge strategy.
shell: bash
env: env:
GIT_SSH_COMMAND: "ssh -p 42842" GIT_SSH_COMMAND: "ssh -p 42842"
run: | run: |
@@ -331,7 +330,6 @@ jobs:
git log --oneline -n 5 git log --oneline -n 5
- name: 🛠️ Restore stashed changes. - name: 🛠️ Restore stashed changes.
shell: bash
env: env:
GIT_SSH_COMMAND: "ssh -p 42842" GIT_SSH_COMMAND: "ssh -p 42842"
run: | run: |
@@ -340,7 +338,6 @@ jobs:
git stash pop || echo "✔️ Nothing to pop." git stash pop || echo "✔️ Nothing to pop."
- name: 📦 Stage generated files. - name: 📦 Stage generated files.
shell: bash
env: env:
GIT_SSH_COMMAND: "ssh -p 42842" GIT_SSH_COMMAND: "ssh -p 42842"
run: | run: |
@@ -349,7 +346,6 @@ jobs:
git add "${PRIVATE_FILE}" || echo "✔️ Nothing to add." git add "${PRIVATE_FILE}" || echo "✔️ Nothing to add."
- name: 🔑 Commit and sign changes with CI metadata. - name: 🔑 Commit and sign changes with CI metadata.
shell: bash
env: env:
GIT_SSH_COMMAND: "ssh -p 42842" GIT_SSH_COMMAND: "ssh -p 42842"
run: | run: |
@@ -385,7 +381,6 @@ jobs:
fi fi
- name: 🔁 Push back to repository. - name: 🔁 Push back to repository.
shell: bash
env: env:
GIT_SSH_COMMAND: "ssh -p 42842" GIT_SSH_COMMAND: "ssh -p 42842"
run: | run: |