Skip to content

feat: integrate APT pipeline and improve image customization #1

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
andrescera wants to merge 1 commit into
base: master
Choose a base branch
from
Open

feat: integrate APT pipeline and improve image customization #1

andrescera wants to merge 1 commit into from

Conversation

@andrescera
Copy link
Member

@andrescera andrescera commented Jan 15, 2026

Summary

This PR integrates the APT repository pipeline with the image building process and adds SRTLA bonding configuration.

Build workflow improvements

  • Add channel input (stable/beta) for package selection
  • Fetch .deb packages from R2 in CI mode, GitHub releases locally
  • Copy fetched packages to overlay for installation
  • Pass mTLS secrets for APT repository access

New fetch-debs.sh script

  • Detects CI vs local mode via R2_ACCESS_KEY_ID presence
  • Uses AWS CLI to sync from R2 bucket in CI mode
  • Uses gh CLI to download from GitHub releases locally
  • Supports channel and architecture parameters

Customize-image.sh enhancements

  • Config split: Modular config files in /etc/ceralive/conf.d/

    • srtla.conf - SRTLA bonding settings
    • streaming.conf - Encoder configuration
    • network.conf - Network/bonding behavior
    • hardware.conf - Hardware settings
    • modems.conf - Modem management

  • SRTLA source policy routing for proper bonding:

    • Routing tables for modems (100-107) and WiFi (110)
    • dhclient exit hook for USB modem interfaces
    • NetworkManager dispatcher for WiFi

  • Install pre-fetched .deb packages from /tmp/debs/

  • mTLS cert injection only in CI mode

  • GPG public key installation for APT verification

Test plan

  • Test fetch-debs.sh locally with gh CLI
  • Verify config files are created correctly
  • Test SRTLA routing scripts on device with modems

@andrescera
feat: integrate APT pipeline and improve image customization
a3c6ef5 
Build workflow improvements:
- Add channel input (stable/beta) for package selection
- Fetch .deb packages from R2 in CI mode, GitHub releases locally
- Copy fetched packages to overlay for installation
- Pass mTLS secrets for APT repository access

New fetch-debs.sh script:
- Detects CI vs local mode via R2_ACCESS_KEY_ID presence
- Uses AWS CLI to sync from R2 bucket in CI mode
- Uses gh CLI to download from GitHub releases locally
- Supports channel and architecture parameters

Customize-image.sh enhancements:
- Split config into /etc/ceralive/conf.d/ (srtla, streaming, network, hardware, modems)
- Add SRTLA source policy routing for proper bonding:
  - Routing tables for modems (100-107) and WiFi (110)
  - dhclient exit hook for USB modem interfaces
  - NetworkManager dispatcher for WiFi
- Install pre-fetched .deb packages from /tmp/debs/
- mTLS cert injection only in CI mode (when secrets available)
- GPG public key installation for APT verification
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@andrescera