bare-metal -> qemu images

Signed-off-by: bakhtin <a@bakhtin.net>

Author: bakhtin

.github/workflows/release.yml

@@ -78,7 +78,7 @@ jobs:
       - name: Generate SHA256 checksums
         run: |
           cd mkosi.output
-          sha256sum buildernet-*.{efi,tar.gz,vhd} | tee buildernet-${GITHUB_REF_NAME#buildernet-v}-${GITHUB_SHA::8}.sha256
+          sha256sum buildernet-*.{efi,tar.gz,vhd,qcow2} | tee buildernet-${GITHUB_REF_NAME#buildernet-v}-${GITHUB_SHA::8}.sha256
 
       - name: Sign artifacts
         env:
@@ -94,6 +94,6 @@ jobs:
       - name: Upload to R2
         run: |
           rclone copy -P --retries 3 --retries-sleep 20s --error-on-no-transfer \
-            --s3-upload-concurrency=8 --transfers=8 --include "buildernet-*.{efi,tar.gz,vhd,minisig,sha256}" \
+            --s3-upload-concurrency=8 --transfers=8 --include "buildernet-*.{efi,tar.gz,vhd,qcow2,minisig,sha256}" \
             mkosi.output r2-flashbots-public-artifacts:flashbots-public-artifacts/buildernet-images/${GITHUB_REF_NAME#buildernet-}/
 

README.md

@@ -13,11 +13,11 @@ mkosi -I buildernet.conf
 # What is this?
 This repository contains source code and configuration files for building Linux VM images for BuilderNet using [`mkosi`](https://github.com/systemd/mkosi).
 
-The configuration supports building multiple flavors of the image for different platforms: Azure, GCP, and bare metal (see `mkosi.images` directory).
+The configuration supports building multiple flavors of the image for different platforms: Azure, GCP, and QEMU (see `mkosi.images` directory).
 
 The entrypoint for the build is the main configuration file `buildernet.conf`. It defines basic parameters shared between the images. Each individual image may extend and override the main configuration (see [`mkosi` manual](https://github.com/systemd/mkosi/blob/main/mkosi/resources/man/mkosi.1.md#building-multiple-images)).
 
-Final images depend on the successful build of the intermediate images. All of Azure, GCP, and bare metal images depend on `buildernet` image which in turn depends on `base` image.
+Final images depend on the successful build of the intermediate images. All of Azure, GCP, and QEMU images depend on `buildernet` image which in turn depends on `base` image.
 
 BuilderNet images use Debian Trixie as a base. The images have low footprint and designed to be run fully in memory. One can still attach a persistent disk if needed (expected to mount at `/var/lib/persistent`).
 
@@ -28,7 +28,7 @@ We build a custom Linux kernel using Debian's source kernel package with a bunch
 ## Base image
 Located in `mkosi.images/base` is the base intermediate image that is shared between all downstream images.
 
-This image builds a custom Linux kernel with configuration and patches overrides. We build two flavors of the same kernel: for the cloud and bare-metal. It uses `linux-config` Debian package for the base kernel configuration: `config.amd64_none_cloud-amd64` for the cloud version and `config.amd64_none_amd64` for bare metal.
+This image builds a custom Linux kernel with configuration and patches overrides. The kernel uses `linux-config` Debian package for the base kernel configuration: (`config.amd64_none_cloud-amd64` configuration file)
 
 We further tweak the base config by disabling unnecessary modules/drivers (see `kernel/configs`). All the configuration fragments are merged and applied on top the default configuration.
 
@@ -41,8 +41,8 @@ If you want to produce a new fragment you can use the tools that come with the L
 ./scripts/kconfig/merge_config.sh -O . <path to config.amd64_none_cloud-amd64> <path to flashbots-images/mkosi.images/base/kernel/configs/*>
 ```
 This will produce a file `.config` that you can tweak using `menuconfig` (e.g., `make nconfig` for the ncurses menuconfig)
-5. After you're done with tweaking, save the config under the new name, e.g., `.config_new`
-6. Produce a fragment by diff'ing the configs
+1. After you're done with tweaking, save the config under the new name, e.g., `.config_new`
+2. Produce a fragment by diff'ing the configs
 ```
 ./scripts/diffconfig -m .config .config_new > <path to flashbots-images/mkosi.images/base/kernel/configs/new-fragment>
 ```

buildernet.conf

@@ -1,7 +1,7 @@
 [Config]
 Dependencies=buildernet-azure
-             buildernet-bare-metal
              buildernet-gcp
+             buildernet-qemu
 MinimumVersion=26~devel
 
 [Distribution]

mkosi.images/base/mkosi.build.d/11-kernel-make.sh.chroot

@@ -1,60 +1,51 @@
 #!/bin/bash
 set -eu -o pipefail
 
-# Define flavors to build
-FLAVORS=("cloud" "bare-metal")
+FLAVOR="cloud"
+KERNEL_CONFIG_FILE="config.amd64_none_cloud-amd64.xz"
+FLAVOR_BUILDDIR="$BUILDDIR/linux-kernel-$KERNEL_VERSION-$FLAVOR"
 
-for FLAVOR in "${FLAVORS[@]}"; do
-  echo "Building kernel flavor: $FLAVOR"
+mkdir -p "$FLAVOR_BUILDDIR"
 
-  if [[ "$FLAVOR" == "cloud" ]]; then
-    KERNEL_CONFIG_FILE="config.amd64_none_cloud-amd64.xz"
-  else
-    KERNEL_CONFIG_FILE="config.amd64_none_amd64.xz"
-  fi
+tar xaf "/usr/src/linux-source-${KERNEL_VERSION}.tar.xz" -C /tmp
+SOURCE_DIR="/tmp/linux-source-${KERNEL_VERSION}"
 
-  FLAVOR_BUILDDIR="$BUILDDIR/linux-kernel-$KERNEL_VERSION-$FLAVOR"
-  mkdir -p "$FLAVOR_BUILDDIR"
+cd "$SOURCE_DIR"
 
-  tar xaf "/usr/src/linux-source-${KERNEL_VERSION}.tar.xz" -C /tmp
-  SOURCE_DIR="/tmp/linux-source-${KERNEL_VERSION}"
-
-  cd "$SOURCE_DIR"
+# 1. Apply base/common patches
+# These are patches located in mkosi.images/base/kernel/patches/<version>/
+find "$SRCDIR/mkosi.images/base/kernel/patches/$KERNEL_VERSION" -maxdepth 1 -type f -name "*.patch" 2>/dev/null || true | sort | while read patch; do
+  echo "Applying base patch: $patch"
+  patch -p1 < "$patch"
+done
 
-  # 1. Apply base/common patches
-  # These are patches located in mkosi.images/base/kernel/patches/<version>/
-  find "$SRCDIR/mkosi.images/base/kernel/patches/$KERNEL_VERSION" -maxdepth 1 -type f -name "*.patch" 2>/dev/null || true | sort | while read patch; do
-    echo "Applying base patch: $patch"
-    patch -p1 < "$patch"
-  done
+# 2. Apply flavor-specific patches from ALL images
+# Looks for patches in: mkosi.images/*/kernel/patches/<version>/<flavor>/
+find "$SRCDIR/mkosi.images" -path "*/kernel/patches/$KERNEL_VERSION/$FLAVOR/*.patch" 2>/dev/null || true | sort | while read patch; do
+  echo "Applying $FLAVOR patch: $patch"
+  patch -p1 < "$patch"
+done
 
-  # 2. Apply flavor-specific patches from ALL images
-  # Looks for patches in: mkosi.images/*/kernel/patches/<version>/<flavor>/
-  find "$SRCDIR/mkosi.images" -path "*/kernel/patches/$KERNEL_VERSION/$FLAVOR/*.patch" 2>/dev/null || true | sort | while read patch; do
-    echo "Applying $FLAVOR patch: $patch"
-    patch -p1 < "$patch"
-  done
+echo "Using kernel config file: $KERNEL_CONFIG_FILE"
 
-  echo "Using kernel config file: $KERNEL_CONFIG_FILE"
+unxz "/usr/src/linux-config-${KERNEL_VERSION}/$KERNEL_CONFIG_FILE" -c > /tmp/kernel.config
+./scripts/kconfig/merge_config.sh -O "$FLAVOR_BUILDDIR" /tmp/kernel.config "$SRCDIR/mkosi.images/base/kernel/configs/"*
+rm /tmp/kernel.config
 
-  unxz "/usr/src/linux-config-${KERNEL_VERSION}/$KERNEL_CONFIG_FILE" -c > /tmp/kernel.config
-  ./scripts/kconfig/merge_config.sh -O "$FLAVOR_BUILDDIR" /tmp/kernel.config "$SRCDIR/mkosi.images/base/kernel/configs/"*
-  rm /tmp/kernel.config
+export DEB_BUILD_PROFILES='nodoc noudeb pkg.linux.nosource pkg.linux.notools pkg.linux.nokerneldbg pkg.linux.nokerneldbginfo pkg.linux.nometa'
+export MAKEFLAGS=-j$(nproc)
+export KBUILD_BUILD_TIMESTAMP="Fri Jun  5 15:58:00 CEST 1971"
+export KBUILD_BUILD_HOST="mkosi"
+export KBUILD_BUILD_USER="mkosi"
+export LOCALVERSION="${LOCALVERSION:-}-mkosi-$FLAVOR"
+rm -f "$FLAVOR_BUILDDIR/.version"
 
-  export DEB_BUILD_PROFILES='nodoc noudeb pkg.linux.nosource pkg.linux.notools pkg.linux.nokerneldbg pkg.linux.nokerneldbginfo pkg.linux.nometa'
-  export MAKEFLAGS=-j$(nproc)
-  export KBUILD_BUILD_TIMESTAMP="Fri Jun  5 15:58:00 CEST 1971"
-  export KBUILD_BUILD_HOST="mkosi"
-  export KBUILD_BUILD_USER="mkosi"
-  export LOCALVERSION="${LOCALVERSION:-}-mkosi-$FLAVOR"
-  rm -f "$FLAVOR_BUILDDIR/.version"
+make O="$FLAVOR_BUILDDIR" olddefconfig
+make O="$FLAVOR_BUILDDIR" bindeb-pkg
 
-  make O="$FLAVOR_BUILDDIR" olddefconfig
-  make O="$FLAVOR_BUILDDIR" bindeb-pkg
+find "$FLAVOR_BUILDDIR/.." -type f -name "linux-image-${KERNEL_VERSION}*.deb" -exec cp {} "$PACKAGEDIR/" \;
 
-  find "$FLAVOR_BUILDDIR/.." -type f -name "linux-image-${KERNEL_VERSION}*.deb" -exec cp {} "$PACKAGEDIR/" \;
+rm -rf "$FLAVOR_BUILDDIR/.."/*.buildinfo "$FLAVOR_BUILDDIR/.."/*.deb "$FLAVOR_BUILDDIR/.."/*.changes
+unset LOCALVERSION
 
-  rm -rf "$FLAVOR_BUILDDIR/.."/*.buildinfo "$FLAVOR_BUILDDIR/.."/*.deb "$FLAVOR_BUILDDIR/.."/*.changes
-  unset LOCALVERSION
-done
 #KDEB_PKGVERSION=someversion

mkosi.images/buildernet-bare-metal/README

@@ -2,7 +2,7 @@
 Dependencies=buildernet
 
 [Output]
-ImageId=buildernet-bare-metal
+ImageId=buildernet-qemu
 Format=uki
 
 [Content]
@@ -12,4 +12,4 @@ KernelCommandLine=ro
                   systemd.volatile=overlay
                   console=ttyS0,115200n8
                   systemd.firstboot=no
-VolatilePackages=linux-image-6.16.3-mkosi-bare-metal
+VolatilePackages=linux-image-6.16.3-mkosi-cloud

mkosi.images/buildernet-bare-metal/TODO

@@ -0,0 +1,24 @@
+#!/bin/bash
+
+set -eu -o pipefail
+
+export SOURCE_DATE_EPOCH=0 # not propagated from the main config, needed for mkfs.vfat
+export SYSTEMD_REPART_MKFS_OPTIONS_VFAT="-i 12345678"
+mkdir -p ${OUTPUTDIR}/esp/EFI/BOOT
+cp ${OUTPUTDIR}/${IMAGE_ID}_${IMAGE_VERSION}.efi ${OUTPUTDIR}/esp/EFI/BOOT/BOOTX64.EFI
+rm -f ${OUTPUTDIR}/${IMAGE_ID}_${IMAGE_VERSION}.raw
+
+systemd-repart --empty=create \
+  --size=auto \
+  --definitions=mkosi.images/buildernet/repart.d \
+  --copy-source=${OUTPUTDIR} \
+  --seed=630b5f72-a36a-4e83-b23d-6ef47c82fd9c \
+  --dry-run=no \
+  ${OUTPUTDIR}/${IMAGE_ID}_${IMAGE_VERSION}.raw
+sgdisk --disk-guid "12345678-1234-5678-1234-567812345678" ${OUTPUTDIR}/${IMAGE_ID}_${IMAGE_VERSION}.raw
+
+rm -rf ${OUTPUTDIR}/esp
+
+cd ${OUTPUTDIR}
+qemu-img convert -f raw -O qcow2 ${OUTPUTDIR}/${IMAGE_ID}_${IMAGE_VERSION}.raw ${OUTPUTDIR}/${IMAGE_ID}_${IMAGE_VERSION}.qcow2
+rm -f ${OUTPUTDIR}/${IMAGE_ID}_${IMAGE_VERSION}.raw