Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/luleyleo/leos

atomic bluebuild bluebuild-image custom-image image-based immutable linux linux-custom-image oci oci-image operating-system

Last synced: 20 days ago
JSON representation

Host: GitHub
URL: https://github.com/luleyleo/leos
Owner: luleyleo
License: apache-2.0
Created: 2024-08-30T08:41:31.000Z (4 months ago)
Default Branch: main
Last Pushed: 2024-12-07T11:34:40.000Z (27 days ago)
Last Synced: 2024-12-07T12:21:46.161Z (27 days ago)
Topics: atomic, bluebuild, bluebuild-image, custom-image, image-based, immutable, linux, linux-custom-image, oci, oci-image, operating-system
Language: Shell
Size: 1.28 MB
Stars: 0
Watchers: 1
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE
- Codeowners: .github/CODEOWNERS

Awesome Lists containing this project

README

# leOS [![bluebuild build badge](https://github.com/luleyleo/leos/actions/workflows/build.yml/badge.svg)](https://github.com/luleyleo/leos/actions/workflows/build.yml)

This is my personal [BlueBuild](https://blue-build.org/learn/getting-started/) distro.

## Installation

> **Warning**
> [This is an experimental feature](https://www.fedoraproject.org/wiki/Changes/OstreeNativeContainerStable), try at your own discretion.

To rebase an existing atomic Fedora installation to the latest build:

- First rebase to the unsigned image, to get the proper signing keys and policies installed:

```
rpm-ostree rebase ostree-unverified-registry:ghcr.io/luleyleo/leos:latest
```

- Reboot to complete the rebase:

```
systemctl reboot
```

- Then rebase to the signed image, like so:

```
rpm-ostree rebase ostree-image-signed:docker://ghcr.io/luleyleo/leos:latest
```

- Reboot again to complete the installation

```
systemctl reboot
```

The `latest` tag will automatically point to the latest build. That build will still always use the Fedora version specified in `recipe.yml`, so you won't get accidentally updated to the next major version.

## ISO

If build on Fedora Atomic, you can generate an offline ISO with the instructions available [here](https://blue-build.org/learn/universal-blue/#fresh-install-from-an-iso). These ISOs cannot unfortunately be distributed on GitHub for free due to large sizes, so for public projects something else has to be used for hosting.

## Verification

These images are signed with [Sigstore](https://www.sigstore.dev/)'s [cosign](https://github.com/sigstore/cosign). You can verify the signature by downloading the `cosign.pub` file from this repo and running the following command:

```bash
cosign verify --key cosign.pub ghcr.io/luleyleo/leos
```