Merge pull request #224 from jacobweinstock/main

Add GHA manual vagrant box build:

Author: jacobweinstock

.github/workflows/pxe-box-release.yaml

@@ -0,0 +1,83 @@
+name: Build & publish tinkerbell/pxe box
+
+on:
+  workflow_dispatch:
+    inputs:
+      version:
+        description: "Version string written into metadata.json (e.g. 0.1.0)"
+        required: true
+        default: "0.1.0"
+        type: string
+
+permissions:
+  contents: write
+
+jobs:
+  build-and-release:
+    runs-on: ubuntu-latest
+    env:
+      RELEASE_TAG: pxe-box-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Install build dependencies
+        run: |
+          sudo apt-get update
+          sudo apt-get install -y --no-install-recommends \
+            dosfstools mtools qemu-utils gdisk uuid-runtime
+
+      - name: Compute BASE_URL
+        id: base
+        run: |
+          echo "url=https://github.com/${GITHUB_REPOSITORY}/releases/download/${RELEASE_TAG}" >> "$GITHUB_OUTPUT"
+
+      - name: Build all box artifacts
+        run: |
+          make -C stack/pxe-box \
+            NAME=tinkerbell/pxe \
+            VERSION='${{ inputs.version }}' \
+            BASE_URL='${{ steps.base.outputs.url }}'
+
+      - name: Show outputs
+        run: |
+          ls -lh stack/pxe-box/out/
+          echo "--- metadata.json ---"
+          cat stack/pxe-box/out/metadata.json
+
+      - name: Remove previous rolling release & tag
+        env:
+          GH_TOKEN: ${{ github.token }}
+        run: |
+          gh release delete "$RELEASE_TAG" \
+            --repo "$GITHUB_REPOSITORY" \
+            --cleanup-tag --yes || true
+
+      - name: Publish to rolling GitHub Release
+        uses: softprops/action-gh-release@v2
+        with:
+          tag_name: ${{ env.RELEASE_TAG }}
+          target_commitish: ${{ github.sha }}
+          name: "tinkerbell/pxe (rolling)"
+          make_latest: "false"
+          prerelease: false
+          draft: false
+          body: |
+            Rolling release of the `tinkerbell/pxe` Vagrant box.
+
+            - version in `metadata.json`: `${{ inputs.version }}`
+            - commit: `${{ github.sha }}`
+            - built by: ${{ github.workflow }} (${{ github.run_id }})
+
+            Use it from a `Vagrantfile`:
+
+            ```ruby
+            config.vm.box     = "tinkerbell/pxe"
+            config.vm.box_url = "https://github.com/${{ github.repository }}/releases/download/${{ env.RELEASE_TAG }}/metadata.json"
+            ```
+          files: |
+            stack/pxe-box/out/pxe-amd64-virtualbox.box
+            stack/pxe-box/out/pxe-arm64-virtualbox.box
+            stack/pxe-box/out/pxe-amd64-libvirt.box
+            stack/pxe-box/out/pxe-arm64-libvirt.box
+            stack/pxe-box/out/metadata.json

stack/pxe-box/.gitignore

@@ -0,0 +1 @@
+out/

stack/pxe-box/Makefile

@@ -0,0 +1,55 @@
+# Build minimal "PXE" Vagrant boxes (iPXE-on-disk) for
+# {virtualbox, libvirt} x {amd64, arm64}, plus a top-level Vagrant Cloud-style
+# metadata.json that maps a single box name to all four artifacts.
+#
+# Usage:
+#   make                # build everything into ./out
+#   make disks          # just the raw FAT32 + iPXE disk images
+#   make vbox libvirt   # provider-specific .box files
+#   make metadata       # top-level metadata.json
+#   make clean
+#
+# Required tools (macOS: brew install dosfstools mtools qemu coreutils gptfdisk):
+#   curl, dd, sgdisk, mkfs.vfat, mtools (mformat, mmd, mcopy), qemu-img, tar, uuidgen.
+# All steps are host-arch agnostic; a single linux/amd64 runner can build
+# every (provider x architecture) combination.
+
+SHELL := /usr/bin/env bash
+.SHELLFLAGS := -euo pipefail -c
+
+NAME     ?= tinkerbell/pxe
+VERSION  ?= 0.1.0
+BASE_URL ?= https://example.invalid/pxe
+ARCHES   ?= amd64 arm64
+OUT      := out
+
+DISKS   := $(addprefix $(OUT)/disk-,$(addsuffix .img,$(ARCHES)))
+VBOXES  := $(addprefix $(OUT)/pxe-,$(addsuffix -virtualbox.box,$(ARCHES)))
+LVBOXES := $(addprefix $(OUT)/pxe-,$(addsuffix -libvirt.box,$(ARCHES)))
+
+.PHONY: all clean disks vbox libvirt metadata
+all: vbox libvirt metadata
+
+clean:
+	rm -rf $(OUT)
+
+disks: $(DISKS)
+
+$(OUT)/disk-%.img: scripts/build-disk.sh
+	@mkdir -p $(OUT)
+	scripts/build-disk.sh $* $@
+
+vbox: $(VBOXES)
+
+$(OUT)/pxe-%-virtualbox.box: $(OUT)/disk-%.img scripts/pack-virtualbox.sh templates/box.ovf.tmpl templates/Vagrantfile.vbox
+	scripts/pack-virtualbox.sh $* $< $@
+
+libvirt: $(LVBOXES)
+
+$(OUT)/pxe-%-libvirt.box: $(OUT)/disk-%.img scripts/pack-libvirt.sh templates/Vagrantfile.libvirt
+	scripts/pack-libvirt.sh $* $< $@
+
+metadata: $(OUT)/metadata.json
+
+$(OUT)/metadata.json: $(VBOXES) $(LVBOXES) scripts/make-metadata.sh
+	BASE_URL=$(BASE_URL) scripts/make-metadata.sh $(NAME) $(VERSION) > $@

stack/pxe-box/README.md

@@ -0,0 +1,104 @@
+# pxe-box
+
+Builds a tiny "iPXE on disk" Vagrant box — the cross-arch / cross-provider
+replacement for [`jtyr/pxe`][jtyr]. Each artifact is a ~64 MB virtual disk
+whose only contents are an EFI system partition with iPXE as the default
+loader (`\EFI\BOOT\BOOTX64.EFI` on amd64, `\EFI\BOOT\BOOTAA64.EFI` on arm64).
+At boot the firmware launches iPXE, which DHCPs and chains to whatever
+PXE/HTTP infrastructure is on the network — for the playground that's Smee.
+
+Targets produced:
+
+| provider   | amd64 | arm64 |
+| ---------- | :---: | :---: |
+| virtualbox |  ✅   |  ✅   |
+| libvirt    |  ✅   |  ✅   |
+
+Plus a top-level Vagrant Cloud-style `metadata.json` that resolves a single
+box name (default `tinkerbell/pxe`) to the right artifact based on the host's
+provider and architecture.
+
+## Build
+
+Host requirements (macOS): `brew install dosfstools mtools qemu coreutils gptfdisk`.
+Linux distros generally ship these. No VirtualBox installation is required
+on the build host — `qemu-img` produces the VDI directly, so a single
+`linux/amd64` runner can build every `(provider x architecture)` combination.
+
+```sh
+make                                   # build everything into ./out
+make ARCHES=arm64 vbox                 # subset
+make BASE_URL=https://example.com/pxe metadata
+```
+
+Output:
+
+```
+out/
+├── disk-amd64.img
+├── disk-arm64.img
+├── pxe-amd64-virtualbox.box
+├── pxe-arm64-virtualbox.box
+├── pxe-amd64-libvirt.box
+├── pxe-arm64-libvirt.box
+└── metadata.json
+```
+
+## Local-only use (no server)
+
+You don't need to host the boxes anywhere. Build, then `vagrant box add` the
+single artifact you need by direct file path. The box name is whatever you
+pick at `add` time:
+
+```sh
+# 1. Build (only the artifact you need is fine).
+make ARCHES=arm64 vbox          # -> out/pxe-arm64-virtualbox.box
+
+# 2. Register it locally under a name of your choice.
+vagrant box add --provider virtualbox --architecture arm64 \
+    --name tinkerbell/pxe out/pxe-arm64-virtualbox.box
+
+# 3. Reference it like any other box. No box_url, no metadata.json.
+#    In a Vagrantfile:
+#      config.vm.box = "tinkerbell/pxe"
+```
+
+Repeat step 2 for additional `(provider, architecture)` combos as needed —
+Vagrant stores them under the same name and picks the right one based on the
+provider you use and the host's architecture.
+
+To remove or refresh a locally added box:
+
+```sh
+vagrant box list
+vagrant box remove tinkerbell/pxe --provider virtualbox --architecture arm64
+```
+
+## Publish (optional, multi-user setup)
+
+If you want one Vagrantfile to resolve to the right artifact for any
+contributor automatically, upload the four `.box` files and `metadata.json`
+to a static host (S3, GCS, GitHub Releases, ghcr.io OCI artifacts, anywhere
+with HTTP). The `url` fields in `metadata.json` must resolve to the box
+files.
+
+In a `Vagrantfile`:
+
+```ruby
+config.vm.box = "tinkerbell/pxe"
+config.vm.box_url = "https://your-host/path/metadata.json"
+```
+
+Vagrant picks the right `(provider, architecture)` automatically.
+
+## Caveats
+
+- The OVF template in `templates/box.ovf.tmpl` targets VirtualBox 7.1+.
+  If a future VBox release rejects it, regenerate by exporting a working
+  VM (`VBoxManage export <vm> -o ref.ovf`) and copying the structure back.
+- `qemu-img convert -O vdi` produces a sparse VDI from the 64 MB raw; the
+  resulting `.box` is a few MB compressed.
+- The arm64 box requires a host able to run arm64 VirtualBox VMs (Apple
+  Silicon with VirtualBox ≥ 7.1).
+
+[jtyr]: https://app.vagrantup.com/jtyr/boxes/pxe

stack/pxe-box/scripts/build-disk.sh

@@ -0,0 +1,58 @@
+#!/usr/bin/env bash
+# Build a 64MB GPT raw disk image with a single EFI System Partition whose
+# default UEFI loader is iPXE.
+#
+# Usage: build-disk.sh <amd64|arm64> <output.img>
+#
+# Requires: curl, dd, sgdisk (gdisk / gptfdisk), mtools >= 4.0 (mformat,mmd,mcopy
+#           with @@offset syntax).
+set -euo pipefail
+
+arch=${1:?arch (amd64|arm64) required}
+out=${2:?output path required}
+
+case "$arch" in
+amd64)
+	url="https://boot.ipxe.org/x86_64-efi/snponly.efi"
+	loader="BOOTX64.EFI"
+	;;
+arm64)
+	url="https://boot.ipxe.org/arm64-efi/snponly.efi"
+	loader="BOOTAA64.EFI"
+	;;
+*)
+	echo "unknown arch: $arch" >&2
+	exit 1
+	;;
+esac
+
+tmp=$(mktemp -d)
+trap 'rm -rf "$tmp"' EXIT
+
+echo "==> downloading iPXE EFI for $arch"
+curl -fsSL -o "$tmp/$loader" "$url"
+
+echo "==> creating 64MB raw image"
+dd if=/dev/zero of="$out" bs=1048576 count=64 status=none
+
+echo "==> writing GPT with single ESP (type EF00)"
+# Partition starts at sector 2048 (1MB) and runs to end-34 (sgdisk default).
+sgdisk --clear \
+	--new=1:2048:0 \
+	--typecode=1:EF00 \
+	--change-name=1:"EFI System Partition" \
+	"$out" >/dev/null
+
+# Byte offset of the ESP for mtools.
+offset=$((2048 * 512))
+
+echo "==> formatting ESP as FAT32 (offset=$offset)"
+# mformat needs a drive letter mapping; supply via -i image@@offset.
+# -F = FAT32, -v = label.
+mformat -i "$out@@${offset}" -F -v IPXE ::
+
+echo "==> populating \\EFI\\BOOT\\$loader"
+mmd -i "$out@@${offset}" ::/EFI ::/EFI/BOOT
+mcopy -i "$out@@${offset}" "$tmp/$loader" "::/EFI/BOOT/$loader"
+
+echo "==> done: $out"

stack/pxe-box/scripts/make-metadata.sh

@@ -0,0 +1,47 @@
+#!/usr/bin/env bash
+# Emit a Vagrant Cloud-style top-level metadata.json that maps a single box
+# name to all four (provider x architecture) artifacts.
+#
+# Usage: BASE_URL=https://host/path make-metadata.sh <name> <version>
+set -euo pipefail
+
+name=${1:?name required}
+version=${2:?version required}
+base_url=${BASE_URL:-https://example.invalid/pxe}
+
+cat <<JSON
+{
+  "name": "$name",
+  "versions": [
+    {
+      "version": "$version",
+      "providers": [
+        {
+          "name": "virtualbox",
+          "architecture": "amd64",
+          "default_architecture": true,
+          "url": "$base_url/$version/pxe-amd64-virtualbox.box"
+        },
+        {
+          "name": "virtualbox",
+          "architecture": "arm64",
+          "default_architecture": false,
+          "url": "$base_url/$version/pxe-arm64-virtualbox.box"
+        },
+        {
+          "name": "libvirt",
+          "architecture": "amd64",
+          "default_architecture": true,
+          "url": "$base_url/$version/pxe-amd64-libvirt.box"
+        },
+        {
+          "name": "libvirt",
+          "architecture": "arm64",
+          "default_architecture": false,
+          "url": "$base_url/$version/pxe-arm64-libvirt.box"
+        }
+      ]
+    }
+  ]
+}
+JSON

stack/pxe-box/scripts/pack-libvirt.sh

@@ -0,0 +1,34 @@
+#!/usr/bin/env bash
+# Pack a raw FAT32 disk image as a Vagrant libvirt .box for the given arch.
+#
+# Usage: pack-libvirt.sh <amd64|arm64> <input.img> <output.box>
+set -euo pipefail
+
+arch=${1:?arch required}
+raw=${2:?input img required}
+out=${3:?output .box required}
+here=$(cd "$(dirname "$0")/.." && pwd)
+
+work=$(mktemp -d)
+trap 'rm -rf "$work"' EXIT
+
+echo "==> converting raw -> qcow2"
+qemu-img convert -f raw -O qcow2 "$raw" "$work/box.img"
+
+# virtual_size is reported in GB; round up from raw byte size.
+disk_bytes=$(wc -c <"$raw" | tr -d ' ')
+virtual_size_gb=$(((disk_bytes + 1024 * 1024 * 1024 - 1) / (1024 * 1024 * 1024)))
+[[ $virtual_size_gb -lt 1 ]] && virtual_size_gb=1
+
+cp "$here/templates/Vagrantfile.libvirt" "$work/Vagrantfile"
+cat >"$work/metadata.json" <<JSON
+{
+  "provider": "libvirt",
+  "format": "qcow2",
+  "virtual_size": $virtual_size_gb
+}
+JSON
+
+echo "==> archiving $out"
+tar -C "$work" -czf "$out" box.img Vagrantfile metadata.json
+echo "==> done: $out"