@@ -6,15 +6,15 @@ export DEBIAN_FRONTEND=noninteractive
66
77RUNNER_USER=" runner"
88RUNNER_DIR=" /home/${RUNNER_USER} "
9- RUNNER_VER=2.316.0
9+ RUNNER_VER=2.316.1
1010
1111HELM_VERSION=3.14.0
1212PULUMI_VERSION=3.114.0
1313
1414DOCKER_USER_UID=33333
1515DOCKER_GROUP_GID=33333
1616
17- DOCKER_VERSION=26.0.0
17+ DOCKER_VERSION=26.1.1
1818DOCKER_COMPOSE_VERSION=v2.26.0
1919DOCKER_BUILDX_VERSION=0.14.0
2020
@@ -163,7 +163,7 @@ echo "📝 Installing leeway..."
163163LEEWAY_MAX_PROVENANCE_BUNDLE_SIZE=8388608
164164LEEWAY_CACHE_DIR=/var/tmp/cache
165165LEEWAY_BUILD_DIR=/var/tmp/build
166- LEEWAY_VERSION=" 0.8.1 "
166+ LEEWAY_VERSION=" 0.8.3 "
167167
168168mkdir -p " ${LEEWAY_CACHE_DIR} " " ${LEEWAY_BUILD_DIR} "
169169chmod 777 -R /var/tmp/
@@ -244,35 +244,44 @@ apt-get autoremove --assume-yes --quiet
244244# situations, but by using the cluster autoscaler the node rotation removes any benefit.
245245SERVICES_TO_DISABLE=(
246246 secureboot-db.service
247- apport-autoreport.service
248- apport.service
249- apt-daily-upgrade.service
250- apt-daily-upgrade.timer
251- apt-daily.service
252- apt-daily.timer
253- atop.service
254- atopacct.service
255- bluetooth.target
256- console-setup.service
257- e2scrub_reap.service
258- fstrim.service
259- keyboard-setup
260- man-db.service
261- man-db.timer
262- motd-news.service
263- motd-news.timer
264- netplan-ovs-cleanup.service
265- systemd-journal-flush
266- systemd-pcrphase.service
267- systemd-udev-settle.service
268- ua-messaging.service
269- ua-messaging.timer
270- ua-reboot-cmds.service
271- ua-timer.service
272- ua-timer.timer
273- ubuntu-advantage.service
274- unattended-upgrades.service
247+ apport-autoreport.service
248+ apport.service
249+ apt-daily-upgrade.service
250+ apt-daily-upgrade.timer
251+ apt-daily.service
252+ apt-daily.timer
253+ atop.service
254+ atopacct.service
255+ autofs.service
256+ bluetooth.target
257+ console-setup.service
258+ crond.service
259+ e2scrub_reap.service
260+ fstrim.service
261+ keyboard-setup
262+ man-db.service
263+ man-db.timer
264+ motd-news.service
265+ motd-news.timer
266+ netplan-ovs-cleanup.service
267+ syslog.service
268+ systemd-journal-flush.service
269+ systemd-pcrphase.service
270+ ua-messaging.service
271+ ua-messaging.timer
272+ ua-reboot-cmds.service
273+ ua-timer.service
274+ ua-timer.timer
275+ ubuntu-advantage.service
276+ unattended-upgrades.service
277+ vgauth.service
278+ open-vm-tools.service
279+ wpa_supplicant.service
280+ lvm2-monitor.service
281+ ModemManager.service
282+ systemd-udev-settle.service
275283)
284+
276285# shellcheck disable=SC2048
277286for SERVICE in ${SERVICES_TO_DISABLE[*]} ; do
278287 systemctl stop " ${SERVICE} " || true
@@ -287,6 +296,10 @@ rm -rf /tmp/*
287296
288297echo " 📝 disabling the first boot fsck check..."
289298sed -i ' s/GRUB_CMDLINE_LINUX="\(.*\)"/GRUB_CMDLINE_LINUX="fsck.mode=skip \1"/g'
299+ sed -i ' s/GRUB_CMDLINE_LINUX="\(.*\)"/GRUB_CMDLINE_LINUX="quiet loglevel=3 systemd.show_status=false rd.udev.log_level=3 libahci.ignore_sss=1 \1"/g'
300+ sed -i ' s/GRUB_CMDLINE_LINUX="\(.*\)"/GRUB_CMDLINE_LINUX="audit=0 \1"/g'
301+ sed -i ' s/GRUB_CMDLINE_LINUX="\(.*\)"/GRUB_CMDLINE_LINUX="rd.lvm=0 rd.luks=0 rd.md=0 rd.dm=0 rd.multipath=0 rd.iscsi=0 rd.plymouth=0 rd.udev.log_priority=3 raid=noautodetect udev.children-max=255 rd.udev.children-max=255 rd.plymouth=0 plymouth.enable=0 \1"/g'
302+
290303update-grub
291304touch /fastboot
292305
@@ -297,4 +310,6 @@ journalctl --vacuum-time=1s
297310
298311echo " tmpfs /tmp tmpfs rw,nodev,nosuid,relatime 0 0" >> /etc/fstab
299312
313+ update-alternatives --set iptables /usr/sbin/iptables-legacy
314+
300315echo " done."
0 commit comments