-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Move brave-keyring rebuild to silverblue-shared-builder-brave
- Loading branch information
Thomas Wiest
committed
Jul 28, 2024
1 parent
63a66a6
commit 983596e
Showing
5 changed files
with
122 additions
and
21 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,21 @@ | ||
FROM fedora:40 as builder | ||
|
||
# Setup dnf | ||
RUN dnf install -y dnf-plugins-core && \ | ||
dnf config-manager --add-repo https://brave-browser-rpm-release.s3.brave.com/brave-browser.repo && \ | ||
rpm --import https://brave-browser-rpm-release.s3.brave.com/brave-core.asc && \ | ||
dnf clean metadata | ||
|
||
# Download the brave-keyring rpm | ||
RUN cd /root && \ | ||
dnf download brave-browser brave-keyring liberation-fonts && \ | ||
dnf -y install rpmrebuild && \ | ||
dnf clean metadata | ||
|
||
# Rebuild the brave-keyring rpm (needs to be rebuilt without %post to make it compatible with silverblue) | ||
RUN cd /root && \ | ||
rpmrebuild --package --change-files='echo > "$RPMREBUILD_TMPDIR/work/post.1"' -d ./new_pkg/ brave-keyring*.rpm && \ | ||
ls -la --color /root/new_pkg/noarch | ||
|
||
FROM scratch | ||
COPY --from=builder /root/new_pkg/noarch /rpms |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,24 @@ | ||
#!/bin/bash | ||
|
||
RED='\033[0;31m' | ||
NO_COLOR='\033[0m' | ||
|
||
set -eou pipefail | ||
|
||
|
||
err_report() { | ||
echo | ||
echo | ||
echo -e "${RED}Error $1 occured on line $2${NO_COLOR}" | ||
echo | ||
exit $1 | ||
} | ||
|
||
trap 'err_report $? $LINENO' ERR | ||
|
||
cd $(dirname $0) | ||
|
||
IMGNAME=$(basename $PWD) | ||
DATESTAMP=$(date +%Y-%m-%d) | ||
|
||
time podman build $@ . -t "${IMGNAME}:${DATESTAMP}" -t "${IMGNAME}:latest" -t "ghcr.io/twiest/${IMGNAME}:latest" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,48 @@ | ||
#!/bin/bash | ||
|
||
# Adapted / simplified for my use case from: | ||
# https://github.com/ublue-os/kernel-cache/tree/main | ||
|
||
set -euo pipefail | ||
|
||
mkdir /tmp/rpms | ||
cd /tmp/rpms | ||
|
||
arch=x86_64 | ||
kernel_release=$(skopeo inspect docker://quay.io/fedora/fedora-coreos:stable | jq -r '.Labels["ostree.linux"]') | ||
|
||
kernel_major=$(echo "$kernel_release" | cut -d '.' -f 1) | ||
kernel_minor=$(echo "$kernel_release" | cut -d '.' -f 2) | ||
kernel_patch=$(echo "$kernel_release" | cut -d '.' -f 3 | cut -d '-' -f 1) | ||
kernel_distro_magic=$(echo "$kernel_release" | cut -d '.' -f 3 | cut -d '-' -f 2) | ||
kernel_distro=$(echo "$kernel_release" | cut -d '.' -f 4) | ||
kernel_arch=$(echo "$kernel_release" | cut -d '.' -f 5) | ||
kernel_version=${kernel_major}.${kernel_minor}.${kernel_patch}-${kernel_distro_magic}.${kernel_distro}.${kernel_arch} | ||
|
||
if [ $# -gt 0 ] && [ "$1" == "--debug" ]; then | ||
echo kernel_major: $kernel_major | ||
echo kernel_minor: $kernel_minor | ||
echo kernel_patch: $kernel_patch | ||
echo kernel_distro_magic: $kernel_distro_magic | ||
echo kernel_distro: $kernel_distro | ||
echo kernel_arch: $kernel_arch | ||
echo kernel_version: $kernel_version | ||
fi | ||
|
||
|
||
kernel_pkg_base="https://kojipkgs.fedoraproject.org/packages/kernel/${kernel_major}.${kernel_minor}.${kernel_patch}/${kernel_distro_magic}.${kernel_distro}/${kernel_arch}" | ||
|
||
for pkg in kernel kernel-modules kernel-modules-core kernel-modules-extra kernel-devel kernel-devel-matched kernel-uki-virt; do | ||
echo "Running: dnf download -y ${kernel_pkg_base}/${pkg}-$kernel_version.rpm" | ||
dnf download -y "${kernel_pkg_base}/${pkg}-$kernel_version.rpm" | ||
echo | ||
done | ||
|
||
echo -------------------------------------------------------------------------------- | ||
echo | ||
echo Results: | ||
echo | ||
pwd | ||
ls -la --color | ||
echo | ||
echo -------------------------------------------------------------------------------- |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters