From 742923edc85b332331eb4b5ab3350052979475f8 Mon Sep 17 00:00:00 2001 From: Eriq Taing Date: Fri, 1 Aug 2025 20:20:23 -0400 Subject: [PATCH 1/3] Remove Nvidia related components --- .github/workflows/build-nvidia.yml | 30 -------------------- files/scripts/nvidia/installtoolkitpolicy.sh | 6 ---- files/scripts/nvidia/removeunusedrepos.sh | 10 ------- files/scripts/nvidia/setdrmvariables.sh | 16 ----------- files/scripts/nvidia/setearlyloading.sh | 7 ----- recipes/components/nvidia-module.yml | 16 ----------- recipes/recipe_nvidia.yml | 25 ---------------- 7 files changed, 110 deletions(-) delete mode 100644 .github/workflows/build-nvidia.yml delete mode 100644 files/scripts/nvidia/installtoolkitpolicy.sh delete mode 100644 files/scripts/nvidia/removeunusedrepos.sh delete mode 100644 files/scripts/nvidia/setdrmvariables.sh delete mode 100644 files/scripts/nvidia/setearlyloading.sh delete mode 100644 recipes/components/nvidia-module.yml delete mode 100644 recipes/recipe_nvidia.yml diff --git a/.github/workflows/build-nvidia.yml b/.github/workflows/build-nvidia.yml deleted file mode 100644 index 007140d..0000000 --- a/.github/workflows/build-nvidia.yml +++ /dev/null @@ -1,30 +0,0 @@ -name: bluebuild-nvidia -on: - workflow_dispatch: # allow manually triggering builds -jobs: - bluebuild: - name: Build Custom Image - runs-on: ubuntu-latest - permissions: - contents: read - packages: write - id-token: write - strategy: - fail-fast: false # stop GH from cancelling all matrix builds if one fails - matrix: - recipe: - # !! Add your recipes here - - recipe_nvidia.yml - steps: - # the build is fully handled by the reusable github action - - name: Build Custom Image - uses: blue-build/github-action@v1.8 - with: - recipe: ${{ matrix.recipe }} - cosign_private_key: ${{ secrets.SIGNING_SECRET }} - registry: 'git.hydrosaber.com' - registry_token: ${{ secrets.PACKAGE_BUILDER_TOKEN }} - pr_event_number: ${{ github.event.number }} - - # enabled by default, disable if your image is small and you want faster builds - maximize_build_space: true \ No newline at end of file diff --git a/files/scripts/nvidia/installtoolkitpolicy.sh b/files/scripts/nvidia/installtoolkitpolicy.sh deleted file mode 100644 index c55ff44..0000000 --- a/files/scripts/nvidia/installtoolkitpolicy.sh +++ /dev/null @@ -1,6 +0,0 @@ -#!/usr/bin/env bash - -# Tell build process to exit if there are any errors. -set -oue pipefail - -semodule --verbose --install /usr/share/selinux/packages/nvidia-container.pp \ No newline at end of file diff --git a/files/scripts/nvidia/removeunusedrepos.sh b/files/scripts/nvidia/removeunusedrepos.sh deleted file mode 100644 index 7693d6c..0000000 --- a/files/scripts/nvidia/removeunusedrepos.sh +++ /dev/null @@ -1,10 +0,0 @@ -#!/usr/bin/env bash - -# Tell build process to exit if there are any errors. -set -oue pipefail - -rm -f /etc/yum.repos.d/negativo17-fedora-nvidia.repo -rm -f /etc/yum.repos.d/negativo17-fedora-multimedia.repo -rm -f /etc/yum.repos.d/eyecantcu-supergfxctl.repo -rm -f /etc/yum.repos.d/_copr_ublue-os-akmods.repo -rm -f /etc/yum.repos.d/nvidia-container-toolkit.repo \ No newline at end of file diff --git a/files/scripts/nvidia/setdrmvariables.sh b/files/scripts/nvidia/setdrmvariables.sh deleted file mode 100644 index 617d940..0000000 --- a/files/scripts/nvidia/setdrmvariables.sh +++ /dev/null @@ -1,16 +0,0 @@ -#!/usr/bin/env bash - -# Tell build process to exit if there are any errors. -set -oue pipefail - - -echo ' - -# Nvidia modesetting support. Set to 0 or comment to disable kernel modesetting -# support. This must be disabled in case of SLI Mosaic. - -options nvidia-drm modeset=1 fbdev=1 - -' > /usr/lib/modprobe.d/nvidia-modeset.conf - -cp /usr/lib/modprobe.d/nvidia-modeset.conf /etc/modprobe.d/nvidia-modeset.conf \ No newline at end of file diff --git a/files/scripts/nvidia/setearlyloading.sh b/files/scripts/nvidia/setearlyloading.sh deleted file mode 100644 index 19ec951..0000000 --- a/files/scripts/nvidia/setearlyloading.sh +++ /dev/null @@ -1,7 +0,0 @@ -#!/usr/bin/env bash - -# Tell build process to exit if there are any errors. -set -oue pipefail - -sed -i 's@omit_drivers@force_drivers@g' /usr/lib/dracut/dracut.conf.d/99-nvidia.conf -sed -i 's@ nvidia @ i915 amdgpu nvidia @g' /usr/lib/dracut/dracut.conf.d/99-nvidia.conf diff --git a/recipes/components/nvidia-module.yml b/recipes/components/nvidia-module.yml deleted file mode 100644 index b561b75..0000000 --- a/recipes/components/nvidia-module.yml +++ /dev/null @@ -1,16 +0,0 @@ -modules: - - type: containerfile - snippets: - - COPY --from=ghcr.io/ublue-os/akmods-nvidia:main-42 /rpms/ /tmp/rpms - - RUN find /tmp/rpms - - RUN rpm-ostree install /tmp/rpms/ublue-os/ublue-os-nvidia*.rpm - - RUN sed -i '0,/enabled=0/{s/enabled=0/enabled=1/}' /etc/yum.repos.d/nvidia-container-toolkit.repo - - RUN sed -i '0,/enabled=0/{s/enabled=0/enabled=1\npriority=90/}' /etc/yum.repos.d/negativo17-fedora-nvidia.repo - - RUN rpm-ostree install /tmp/rpms/kmods/kmod-nvidia*.rpm libnvidia-fbc libva-nvidia-driver nvidia-driver nvidia-modprobe nvidia-persistenced nvidia-settings nvidia-container-toolkit - - - type: script - scripts: - - nvidia/installtoolkitpolicy.sh - - nvidia/removeunusedrepos.sh - - nvidia/setearlyloading.sh - - nvidia/setdrmvariables.sh \ No newline at end of file diff --git a/recipes/recipe_nvidia.yml b/recipes/recipe_nvidia.yml deleted file mode 100644 index bb4008e..0000000 --- a/recipes/recipe_nvidia.yml +++ /dev/null @@ -1,25 +0,0 @@ ---- -# yaml-language-server: $schema=https://schema.blue-build.org/recipe-v1.json -# image will be published to ghcr.io// -name: hydro-os-nvidia -# description will be included in the image's metadata -description: This is my personal OS image. - -# the base image to build on top of (FROM) and the version tag to use -base-image: quay.io/fedora-ostree-desktops/base-atomic -image-version: 42 # latest is also supported if you want new updates ASAP - -# module configuration, executed in order -# you can include multiple instances of the same module -modules: - - from-file: components/dnf-module.yml - - from-file: components/script-module.yml - - from-file: components/sys-files-module.yml - - from-file: components/systemd-module.yml - - from-file: components/nvidia-module.yml - - from-file: components/default-flatpak.yml - - from-file: components/chezmoi-module.yml - - type: initramfs - - - type: signing - -- 2.39.5 From f08ac5e7b8bbf7e219dbe2f5a8515976689f6dc8 Mon Sep 17 00:00:00 2001 From: Eriq Taing Date: Fri, 1 Aug 2025 20:21:09 -0400 Subject: [PATCH 2/3] Split build and pr test build to allow building with rechunk on github --- .github/workflows/build-pr-test.yml | 36 +++++++++++++++++++++++++++++ .github/workflows/build.yml | 10 ++++---- 2 files changed, 41 insertions(+), 5 deletions(-) create mode 100644 .github/workflows/build-pr-test.yml diff --git a/.github/workflows/build-pr-test.yml b/.github/workflows/build-pr-test.yml new file mode 100644 index 0000000..9b484e3 --- /dev/null +++ b/.github/workflows/build-pr-test.yml @@ -0,0 +1,36 @@ +name: bluebuild test pr +on: + pull_request: + workflow_dispatch: # allow manually triggering builds +concurrency: + # only run one build at a time + group: ${{ github.workflow }}-${{ github.ref || github.run_id }} + cancel-in-progress: true +jobs: + bluebuild: + name: Build Custom Image + runs-on: ubuntu-latest + permissions: + contents: read + packages: write + id-token: write + strategy: + fail-fast: false # stop GH from cancelling all matrix builds if one fails + matrix: + recipe: + # !! Add your recipes here + - recipe.yml + steps: + + # the build is fully handled by the reusable github action + - name: Build Custom Image + uses: blue-build/github-action@v1.8 + with: + recipe: ${{ matrix.recipe }} + cosign_private_key: ${{ secrets.SIGNING_SECRET }} + registry: 'git.hydrosaber.com' + registry_token: ${{ secrets.PACKAGE_BUILDER_TOKEN }} + pr_event_number: ${{ github.event.number }} + + # enabled by default, disable if your image is small and you want faster builds + maximize_build_space: true diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index f18f61a..9afd0f7 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -9,12 +9,11 @@ on: - main paths-ignore: # don't rebuild if only documentation has changed - "**.md" - - ".github/workflows/build-nvidia.yml" - - "files/scripts/nvidia/**" - - "recipes/components/nvidia-module.yml" - - "recipes/recipe_nvidia.yml" - pull_request: workflow_dispatch: # allow manually triggering builds +concurrency: + # only run one build at a time + group: ${{ github.workflow }}-${{ github.ref || github.run_id }} + cancel-in-progress: true jobs: bluebuild: name: Build Custom Image @@ -43,3 +42,4 @@ jobs: # enabled by default, disable if your image is small and you want faster builds maximize_build_space: true + rechunk: true -- 2.39.5 From 67c16b92f3a6c96094d2a680c1991a14892f6814 Mon Sep 17 00:00:00 2001 From: Eriq Taing Date: Fri, 1 Aug 2025 20:33:15 -0400 Subject: [PATCH 3/3] Replaced cosign.pub --- cosign.pub | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/cosign.pub b/cosign.pub index 1441be4..00560d1 100644 --- a/cosign.pub +++ b/cosign.pub @@ -1,4 +1,4 @@ -----BEGIN PUBLIC KEY----- -MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEzzK2nfqN5MlTqBitNsehDVnITGSF -r9FQRKI6dNDXRjlKgcMaa88Mb9FdfqFVHSPesN1mHz3/QfZIPG/s7mJAfw== +MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEDgbLqIZdNv3Lx7jEKq3l6UImgXi/ +MdQ51/79s4zfI2f4wQ8ran/sZO3y91hhsImytGqfSpNZmMV8T0rmOAAXkg== -----END PUBLIC KEY----- -- 2.39.5