See the BlueBuild docs for quick setup instructions for setting up your own repository based on this template.
This custom image derives from Bazzite and is intended for everyday usage.
- Hardening for the OpenSSH daemon to only allow public key authentication and users in group
wheel. - Tweaks to the virtual memory management subsystem for more aggressive swapping of pages.
- A zram swap configuration with up to 16 GiB size using
LZ4and recompression withZstd. - A Network Time Security configuration for chrony to use a selection of European servers.
- A selection of packages incl. Libation is installed during build for convenience.
- Most Flatpaks I'm using are marked for installation during runtime.
- An adapted login script for German Rail Intercity (Express) trains.
[!WARNING] This is an experimental feature, try at your own discretion.
To rebase an existing atomic Fedora installation to the latest build:
- First rebase to the unsigned image, to get the proper signing keys and policies installed:
sudo bootc switch ghcr.io/omegasquad82/bazzite-stable-customized - Reboot to complete the rebase:
systemctl reboot - Then rebase to the signed image, like so:
sudo bootc switch --enforce-container-sigpolicy ghcr.io/omegasquad82/bazzite-stable-customized - Reboot again to complete the installation
systemctl reboot - Henceforth use bootc to update it
sudo bootc update
The latest tag will automatically point to the latest build. That build will still always use the Fedora version specified in recipe.yml, so you won't get accidentally updated to the next major version.
If build on Fedora Atomic, you can generate an offline ISO with the instructions available here. These ISOs cannot unfortunately be distributed on GitHub for free due to large sizes, so for public projects something else has to be used for hosting.
These images are signed with Sigstore's cosign. You can verify the signature by downloading the cosign.pub file from this repo and running the following command and if you want it to be pretty printed, use jq:
cosign verify --key cosign.pub ghcr.io/omegasquad82/bazzite-stable-customized | jq .