rpm-ostree/doc/treefile.md

Treefile
--------

 * `ref`: string, mandatory: Holds a string which will be the name of
   the branch for the content.

 * `gpg_key` string, optional: Key ID for GPG signing; the secret key
   must be in the home directory of the building user.  Defaults to
   none.

 * `repos` array of strings, mandatory: Names of yum repositories to
   use, from `.repo` files in the same directory as the treefile.

 * `selinux`: boolean, optional: Defaults to `true`.  If `false`, then
   no SELinux labeling will be performed on the server side.

 * `boot_location`: string, optional: Historically, ostree put bootloader data
    in /boot.  However, this has a few flaws; it gets shadowed at boot time,
    and also makes dealing with Anaconda installation harder.  There are 3
    possible values:
    * "legacy": the default, data goes in /boot
    * "both": Kernel data in /boot and /usr/lib/ostree-boot
    * "new": Kernel data in /usr/lib/ostree-boot

 * `bootstrap_packages`: Array of strings, mandatory: The `glibc` and
   `nss-altfiles` packages (and ideally nothing else) must be in this
   set; rpm-ostree will modify the `/etc/nsswitch.conf` in the target
   root to ensure that `/usr/lib/passwd` is used.

 * `etc-group-members`: Array of strings, optional: Unix groups in this
   list will be stored in `/etc/group` instead of `/usr/lib/group`.  Use
   this option for groups for which humans should be a member.

 * `install-langs`: Array of strings, optional.  This sets the RPM
   _install_langs macro.  Set this to e.g. `["en_US", "fr_FR"]`.

 * `packages`: Array of strings, mandatory: Set of installed packages.
   Names prefixed with an `@` (e.g. `@core`) are taken to be the names
   of comps groups.

 * `units`: Array of strings, optional: Systemd units to enable by default

 * `default_target`: String, optional: Set the default systemd target

 * `initramfs-args`: Array of strings, optional.  Passed to the
    initramfs generation program (presently `dracut`).  An example use
    case for this with Dracut is `--filesystems xfs,ext4` to ensure
    specific filesystem drivers are included.

 * `remove-files`: Delete these files from the generated tree

 * `remove-from-packages`: Array, optional: Delete from specified packages
   files which match the provided array of regular expressions.
   This is safer than `remove-files` as it allows finer grained control
   with less risk of too-wide regular expressions.

   Each array element is an array, whose first member is a package name,
   and subsequent members are regular expressions (compatible with JavaScript).

   Example: `remove-from-packages: [["cpio", "/usr/share/.*"], ["dhclient", "/usr/lib/.*", "/usr/share/.*"]]`

   Note this does not alter the RPM database, so `rpm -V` will complain.

 * `preserve-passwd`: boolean, optional: Defaults to `true`.  If enabled,
   copy the `/etc/passwd` (and `/usr/lib/passwd`) files from the previous commit
   if they exist.  This helps ensure consistent uid/gid allocations across
   builds.  However, it does mean that removed users will exist in the `passwd`
   database forever.  It also does not help clients switch between unrelated
   trees.

 * `check-passwd`: Object, optional: Checks to run against the new passwd file
   before accepting the tree. All the entries specified should exist (unless
   ignored) and have the same values or the compose will fail. There are four
   types: none (for no checking), previous (to check against the passwd file in
   the previous commit), file (to check against another passwd file), and data
   to specify the relevant passwd data in the json itself.

   Example: `check-passwd: { "type": "none" }`
   Example: `check-passwd: { "type": "previous" }`
   Example: `check-passwd: { "type": "file", "filename": "local-passwd" }`
   Example: `check-passwd: { "type": "data", "entries": { "bin": 1, "adm": [3, 4] } }`
   See also: `ignore-remove-users`

 * `check-groups`: Object, optional: Checks to run against the new group file
   before accepting the tree. All the entries specified should exist (unless
   ignored) and have the same values or the compose will fail. There are four
   types: none (for no checking), previous (to check against the group file in
   the previous commit), file (to check against another group file), and data
   to specify the relevant group data in the json itself.

   Example: `check-groups: { "type": "none" }`
   Example: `check-groups: { "type": "previous" }`
   Example: `check-groups: { "type": "file", "filename": "local-group" }`
   Example: `check-groups: { "type": "data", "entries": { "bin": 1, "adm": 4 } }`
   See also: `ignore-remove-groups`

 * `ignore-remove-users`: Array, optional: Users to ignore if they are missing
   in the new passwd file. If an entry of `*` is specified then any user can be
   removed without failing the compose.

   Example: `ignore-remove-users: ["avahi-autoipd", "tss"]`

 * `ignore-remove-groups`: Array, optional: Groups to ignore if they are missing
   in the new group file. If an entry of `*` is specified then any group can be
   removed without failing the compose.

   Example: `ignore-remove-users: ["avahi"]`

 * `postprocess-script`: String, optional: Full filesystem path to a script
   that will be executed in the context of the target tree.  The script
   will be copied into the target into `/tmp`, and run as a container
   (a restricted chroot, with no network access).  After execution is
   complete, it will be deleted.

   It is *strongly recommended* to avoid using this except as a last resort.
   Having the system generated through RPMs allows administrators to understand
   the inputs to the system.  Any new files created through this mechanism will
   not have the versioning inherent in RPM.

   Only the script file will be copied in; thus if it has any dependencies,
   on data beyond what is in the target tree, you must embed them in the binary
   itself.

   An example use for this is working around bugs in the input RPMs that are
   hard to fix in stable releases.

   Note this does not alter the RPM database, so `rpm -V` will complain.

 * `include`: string, optional: Path to another treefile which will be
   used as an inheritance base.  The semantics for inheritance are:
   Non-array values in child values override parent values.  Array
   values are concatenated.  Filenames will be resolved relative to
   the including treefile.
doc: Restore treefile.md docs 2014-11-13 22:13:23 +03:00			`Treefile`
			`--------`

			* `ref`: string, mandatory: Holds a string which will be the name of
			`the branch for the content.`

			* `gpg_key` string, optional: Key ID for GPG signing; the secret key
			`must be in the home directory of the building user. Defaults to`
			`none.`

			* `repos` array of strings, mandatory: Names of yum repositories to
doc/treefile.md: The `repos` are not pulled from the system `/etc/yum.repos.d` 2014-11-17 22:11:42 +03:00			use, from `.repo` files in the same directory as the treefile.
doc: Restore treefile.md docs 2014-11-13 22:13:23 +03:00
			* `selinux`: boolean, optional: Defaults to `true`. If `false`, then
			`no SELinux labeling will be performed on the server side.`

			* `boot_location`: string, optional: Historically, ostree put bootloader data
			`in /boot. However, this has a few flaws; it gets shadowed at boot time,`
			`and also makes dealing with Anaconda installation harder. There are 3`
			`possible values:`
			`* "legacy": the default, data goes in /boot`
			`* "both": Kernel data in /boot and /usr/lib/ostree-boot`
			`* "new": Kernel data in /usr/lib/ostree-boot`

			* `bootstrap_packages`: Array of strings, mandatory: The `glibc` and
			`nss-altfiles` packages (and ideally nothing else) must be in this
			set; rpm-ostree will modify the `/etc/nsswitch.conf` in the target
			root to ensure that `/usr/lib/passwd` is used.

compose: Add 'etc-group-members' Currently adding human users to a system group such as 'wheel' does not work with shadow-utils as it exists now. This is admittedly a hack; basically we single out "wheel" as going in /etc/group, via: "etc-group-members": ["wheel"], A more comprehensive solution to this will be: https://github.com/projectatomic/rpm-ostree/issues/49 2014-11-17 19:52:20 +03:00			* `etc-group-members`: Array of strings, optional: Unix groups in this
			list will be stored in `/etc/group` instead of `/usr/lib/group`. Use
			`this option for groups for which humans should be a member.`

compose: Support 'install-langs' This should exist for the same reason the yum and RPM options do; some people want to construct more minimal systems. 2014-11-14 04:39:42 +03:00			* `install-langs`: Array of strings, optional. This sets the RPM
			_install_langs macro. Set this to e.g. `["en_US", "fr_FR"]`.

doc: Restore treefile.md docs 2014-11-13 22:13:23 +03:00			* `packages`: Array of strings, mandatory: Set of installed packages.
			Names prefixed with an `@` (e.g. `@core`) are taken to be the names
			`of comps groups.`

			* `units`: Array of strings, optional: Systemd units to enable by default

			* `default_target`: String, optional: Set the default systemd target

treecompose: Add initramfs-args to treefile We're building generic initramfs images on the server side, but dracut has logic to pick up some things from the host, like filesystems. In the absence of host-specific initramfs images, it needs to be up to the generating system what kernel modules end up in the initramfs. Provide a generic option to passthrough dracut arguments. 2014-12-03 01:06:06 +03:00			* `initramfs-args`: Array of strings, optional. Passed to the
			initramfs generation program (presently `dracut`). An example use
			case for this with Dracut is `--filesystems xfs,ext4` to ensure
			`specific filesystem drivers are included.`

doc/treefile.md: Document remove-files 2014-11-13 22:19:06 +03:00			* `remove-files`: Delete these files from the generated tree

compose: Support 'remove-from-packages' entry This is the equivalent of the 'removefrom' verb in Lorax's templating. It's a lot more robust than a generic "rm-rf" type thing, because most often you only want to remove files from particular packages. 2014-11-14 04:07:40 +03:00			* `remove-from-packages`: Array, optional: Delete from specified packages
			`files which match the provided array of regular expressions.`
			This is safer than `remove-files` as it allows finer grained control
			`with less risk of too-wide regular expressions.`

			`Each array element is an array, whose first member is a package name,`
			`and subsequent members are regular expressions (compatible with JavaScript).`

			Example: `remove-from-packages: [["cpio", "/usr/share/."], ["dhclient", "/usr/lib/.", "/usr/share/.*"]]`

			Note this does not alter the RPM database, so `rpm -V` will complain.

compose: Support "preserve-passwd" option (enabled by default) The checking code from #56 landed, and started triggering for me on the `dockerroot` user. It's nice to know it works. Then the issue is... "what now"? It turns out in the case of `dockerroot` it's actually unused, so we could fix this by deleting it. But in general we need to support dynamic uids/gids/. And we can't yet take a hard dep on #49. So this patch changes things so we take a copy of the passwd/group data from the previous commit. Any users subsequently added in the new commit will be additive. Closes: https://github.com/projectatomic/rpm-ostree/issues/78 2014-12-24 00:28:53 +03:00			* `preserve-passwd`: boolean, optional: Defaults to `true`. If enabled,
			copy the `/etc/passwd` (and `/usr/lib/passwd`) files from the previous commit
			`if they exist. This helps ensure consistent uid/gid allocations across`
			builds. However, it does mean that removed users will exist in the `passwd`
			`database forever. It also does not help clients switch between unrelated`
			`trees.`

compose: Add check-passwd/group JSON options, fails compose if uids/gids change Verify uid/gid on files, directories and symlinks Just output a msg when user/group is removed with no files json-parsing: Add functions for strictly dealing with ints passwd/json: Add simple scripts to convert passwd/group files to json data docs: Check-passwd/groups and ignore-remove-users/groups JSON config. entries 2014-11-20 17:40:35 +03:00			* `check-passwd`: Object, optional: Checks to run against the new passwd file
			`before accepting the tree. All the entries specified should exist (unless`
			`ignored) and have the same values or the compose will fail. There are four`
			`types: none (for no checking), previous (to check against the passwd file in`
			`the previous commit), file (to check against another passwd file), and data`
			`to specify the relevant passwd data in the json itself.`

			Example: `check-passwd: { "type": "none" }`
			Example: `check-passwd: { "type": "previous" }`
			Example: `check-passwd: { "type": "file", "filename": "local-passwd" }`
			Example: `check-passwd: { "type": "data", "entries": { "bin": 1, "adm": [3, 4] } }`
			See also: `ignore-remove-users`

			* `check-groups`: Object, optional: Checks to run against the new group file
			`before accepting the tree. All the entries specified should exist (unless`
			`ignored) and have the same values or the compose will fail. There are four`
			`types: none (for no checking), previous (to check against the group file in`
			`the previous commit), file (to check against another group file), and data`
			`to specify the relevant group data in the json itself.`

			Example: `check-groups: { "type": "none" }`
			Example: `check-groups: { "type": "previous" }`
			Example: `check-groups: { "type": "file", "filename": "local-group" }`
			Example: `check-groups: { "type": "data", "entries": { "bin": 1, "adm": 4 } }`
			See also: `ignore-remove-groups`

			* `ignore-remove-users`: Array, optional: Users to ignore if they are missing
			in the new passwd file. If an entry of `*` is specified then any user can be
			`removed without failing the compose.`

			Example: `ignore-remove-users: ["avahi-autoipd", "tss"]`

			* `ignore-remove-groups`: Array, optional: Groups to ignore if they are missing
			in the new group file. If an entry of `*` is specified then any group can be
			`removed without failing the compose.`

			Example: `ignore-remove-users: ["avahi"]`

compose: Support 'postprocess-script' This is obviously a total cop-out. However, without glibc fixes, we can't do better. See: https://bugzilla.redhat.com/show_bug.cgi?id=156477 2014-11-14 19:53:21 +03:00			* `postprocess-script`: String, optional: Full filesystem path to a script
			`that will be executed in the context of the target tree. The script`
			will be copied into the target into `/tmp`, and run as a container
			`(a restricted chroot, with no network access). After execution is`
			`complete, it will be deleted.`

			`It is strongly recommended to avoid using this except as a last resort.`
			`Having the system generated through RPMs allows administrators to understand`
			`the inputs to the system. Any new files created through this mechanism will`
			`not have the versioning inherent in RPM.`

			`Only the script file will be copied in; thus if it has any dependencies,`
			`on data beyond what is in the target tree, you must embed them in the binary`
			`itself.`

			`An example use for this is working around bugs in the input RPMs that are`
			`hard to fix in stable releases.`

			Note this does not alter the RPM database, so `rpm -V` will complain.

doc: Restore treefile.md docs 2014-11-13 22:13:23 +03:00			* `include`: string, optional: Path to another treefile which will be
			`used as an inheritance base. The semantics for inheritance are:`
			`Non-array values in child values override parent values. Array`
			`values are concatenated. Filenames will be resolved relative to`
			`the including treefile.`