Commit Graph

713 Commits

Author SHA1 Message Date
Brian C. Lane
9ac4508135 lorax-composer: Install selinux-policy-targeted in images
This is required to ensure that SELinux is configured properly while
building. It fixes the problem with building tar, and should be
installed in the other image types for consistency.

Resolves: rhbz#1645189
2018-11-29 11:06:27 -08:00
Javier Martinez Canillas
763ca83f9f Install grubby-deprecated package for ARMv7
Most bootloaders used in Fedora already have BootLoaderSpec but extlinux
doesn't yet. So when using extlinux the old grubby must to be installed.

Resolves: rhbz#1649778

Signed-off-by: Javier Martinez Canillas <javierm@redhat.com>
2018-11-26 10:06:00 -08:00
Brian C. Lane
8e749efbbf Fix make_appliance and the libvirt.tmpl
Apparently nobody has used these since the switch to py3, xrange is now
range and it needs to read the file in binary mode when generating the
sha256.
2018-11-12 11:13:37 -08:00
Marek Marczykowski-Górecki
fa2158c7a9 Drop non-determinism from default templates
Some files are created in non-reproducible way, including including
random data explicitly (/etc/machine-id), timestamps (fontconfig cache,
ldconfig aux-cache, certs cache), or entries in random order (groups,
systemd catalog, package list).
Fix this by either making the files reproducible, or removing them.
2018-10-19 14:43:29 -07:00
Vendula Poncova
aafa271608 Fix vhd images
Images don't work without these fixes:

* Enable Network Manager.
* Disable cloud-init.
* Add Hyper-V modules into initramfs.

Fixes specific for RHEL:

* Create ifcfg-eth0 required by waagent.
* Install python3 and net-tools required by waagent.

Recommended changes:

* Use recommended kernel boot args.
* Disable kdump.
2018-10-12 11:44:03 -07:00
Brian C. Lane
98f8b23129 Add an openstack image type
This is a qcow2 image with cloud-init in the template.
2018-10-09 10:17:14 -07:00
David Shea
ac9a2fdbc5 Add cloud-init to vhd images.
cloud-init can be used in Azure now
2018-10-09 11:33:53 -04:00
David Shea
6fab72d894 Replace /etc/machine-id with an empty file
Since these images can be used to create multiple machines, they should
not have a unique machine-id attached to them. Replace /etc/machine-id
with an empty file so that it will be regenerated at boot time.
2018-10-09 11:33:53 -04:00
Lars Karlitski
81d38b6445 Add and enable cloud-init for ami images
Images don't work at all on AWS without cloud-init.

Fixes #492
2018-10-05 11:24:45 -04:00
Brian C. Lane
8ed443ff58 Adjust the new templates for locked root
also remote the auth line so that it uses the defaults.

Related: rhbz#1628645
Related: rhbz#1628646
Related: rhbz#1628647
Related: rhbz#1628648
2018-10-02 14:32:59 -07:00
Brian C. Lane
f360ef9216 Lock the root account, except on live-iso
If we leave the root account w/o a password people will use it that way,
leading to insecure images. Also if we use a default password. So lock
the root account in the templates.

Users will need to do one of these things:
 1. Use [[customizations.user]] in their blueprint to configure root or
    another user.
 2. Use [[customizations.sshkey]] to set a key for root
 2. Install a package that configures a user at install time
 3. Install a package that sets up a user at boot time (eg. cloud-init)

This also drops the auth line from the kickstart templates, allowing it
to use the default password algoritm instead of md5.

Resolves: rhbz#1626122
2018-10-02 13:59:42 -07:00
David Shea
d5a1993640 Add virt guest agents to the qcow2 compose 2018-10-02 11:54:41 -04:00
David Shea
1056bfc25b Add a vmdk compose type.
This is similar to the AMI type, but also adds open-vm-tools and does not do
anything special to the partitioning
2018-10-02 11:54:41 -04:00
David Shea
e0c236ff36 Add a vhd compose type for Azure images
This does pretty much the same things as the AMI compose type, but also
replaces NetworkManager with the Azure linux agent.
2018-10-02 11:54:41 -04:00
David Shea
18188bf6cf Add an ami compose type for AWS images
This differs from lmc's --make-ami in that creates a full disk image instead of
an fsimage. Create a raw disk image with a / and /boot partitions, and enable
sshd, chronyd, and cockpit by default.
2018-10-02 11:54:38 -04:00
Brian C. Lane
3246c01443 Include python3-pyatspi on boot.iso (#1506595)
Including this makes it easier for dogtail tests to be run on the
various releases.
2018-09-19 09:04:29 -07:00
Akira TAGOH
ab85ad5c86 Replace CJK fonts with Google Noto CJK 2018-09-18 09:12:09 -07:00
Radek Vykydal
45e093241d Revert "Don't activate default auto connections after switchroot"
This reverts commit 044d7381a2.
2018-09-07 09:10:46 -07:00
Peter Robinson
8abf6be950 Add the create ISO component for ARMv7
The ostree compose process in pungi wants ISOs and it was the last part
of the ARMv7 components that weren't at parity with other architectures.
Add the missing functionality.

Signed-off-by: Peter Robinson <pbrobinson@gmail.com>
2018-09-06 09:10:02 -07:00
Radek Vykydal
044d7381a2 Don't activate default auto connections after switchroot
Resolves: rhbz#1555934

Add NetworkManager config file turning default auto connections off.
2018-09-04 12:04:57 -07:00
Peter Robinson
8b0d2648dd Minor package fixes for aarch64/ARMv7
The grub2-tools-efi is Mac specific, we still need uboot-tools in some corner cases.

Signed-off-by: Peter Robinson <pbrobinson@gmail.com>
2018-08-28 12:56:20 -07:00
Peter Robinson
94453ff94e Update Arm architectures for the latest requirements
ARMv7 will now support UEFI and grub2-efi so add those deps. We also don't
require uboot-tools as part of the install process so don't add that
explicitly, and drop grubby from the aarch64 explicit list as it's in the
general list, add grub2-tools-efi.

Signed-off-by: Peter Robinson <pbrobinson@gmail.com>
2018-08-16 15:34:19 -07:00
Radek Vykydal
b1daf6fcd3 Bring back import-state.service (#1615332)
The service is a part of initscripts package which is no more pulled in as a
transitive dependcy so we have to require it explicitly.
2018-08-13 14:34:28 -07:00
Brian C. Lane
c8283adc17 Move disklabel and UEFI support to compose.py
Currently we are making MBR disk images for qcow2 and partitioned disk,
so the UEFI packages aren't required at this point.

Move the clearpart command into compose.py so that in the futute it can
use clearpart --disklabel to create a GPT image, and add the required
packages to the package set.
2018-08-09 15:17:27 -07:00
Adam Williamson
7f805287ca Install 'hostname' in runtime-install (for iSCSI)
As explained in detail in the bug, 'hostname' must be installed
for the dracut 95iscsi module to work (and thus for key iscsi
modules to be included in the initramfs generated by lorax). Up
till recently, we got it as a dependency of initscripts, but
when network-scripts split from initscripts, the dependency went
with it. Now nothing else pulls it in as a dep, so let's just
pull it in explicitly here.

Resolves: rhbz#1593657

Signed-off-by: Adam Williamson <awilliam@redhat.com>
2018-06-21 14:28:06 -07:00
Brian C. Lane
6d9187d559 Add redhat.exec to s390 .treeinfo
Resolves: rhbz#1593657
2018-06-21 11:22:02 -07:00
Colin Walters
bb3d8edd06 templates: Stop using gconfset
We had only been indirectly pulling in GConf, and anyways
nothing was listening to these keys.

<kalev> I still think it's a fallout from 27a90d973f

Really in general, if we wanted to make changes like this
it'd probably be a lot simpler to do them on boot or so.

https://bugzilla.redhat.com/show_bug.cgi?id=1581838
2018-05-23 14:20:44 -07:00
Brian C. Lane
081da8859a Remove -boot-info-table from s390 boot.iso creation (#1478448)
It corrupts the kernel+initrd and isn't needed when booting on s390.

Related: rhbz#1478448
(cherry picked from commit df35857c9b)
2018-05-14 13:01:03 -07:00
Brian C. Lane
9eb35c364d Update composer templates for use with Fedora 2018-05-14 13:00:15 -07:00
Brian C. Lane
2fa1da0f5e Add lorax-composer and the composer kickstart templates 2018-05-14 13:00:15 -07:00
Dan Horák
1d32a0cb36 change installed packages on ppc
- drop kernel-bootwrapper as it was used with 32-bit ppc
- replace ppc64-utils meta-package (to be retired) with the real requirements
2018-04-23 10:34:34 -07:00
Dan Horák
d95cb93df0 drop support for 32-bit ppc 2018-04-23 10:34:34 -07:00
Dan Horák
2fd3174684 remove redundant mkdir 2018-04-23 10:34:34 -07:00
Martin Kolman
db9e2a1e41 Fix anaconda metapackage name
"anaconda-install-deps" was the original placeholder name
of the metapackage and it looks like I forgot to change it
to "anaconda-install-env-deps", which is the final name
we have decided sounds better.

Oops! (it's even correct in the commit message...)
2018-04-06 12:02:55 -07:00
Martin Kolman
106f330bb2 Include the anaconda-install-env-deps metapackage
Use the anaconda-install-env-deps metapackage to pull in the
Anaconda dependencies needed in the installation environment.

The anaconda-install-env-deps metapackage lists all install time
dependencies and makes it possible for packages such as
Initial Setup to depend on Anaconda without pulling all
the (mainly storage related) install time dependencies
to the installed system.

The same is applicable for dirinstall which also does
not require the install time dependencies as it is just
installing to a local folder.

Also drop the tmux and gdb dependencies from the template as
both have been added to the metapackage to make install time
dependency tracking more consistent.
2018-04-05 13:30:48 -07:00
Dusty Mabe
7a4be526cd
cleanup: don't remove libgstgl
It looks like gnome-helper grew a dependency on it so let's not remove
it. From today's pungi run we can see this error in the verify:

```
libgstgl-1.0.so.0, needed by /usr/bin/gnome-help, not found
```
2018-02-26 12:30:57 -05:00
Brian C. Lane
857dbff2ce Revert "add system-logos dependency for syslinux"
This reverts commit 13e234ae02.

system-logos is not needed in the runtime-install.tmpl because the
correct *-logos package is already installed by the _install_branding
code in treebuilder.py
2018-02-23 10:16:48 -08:00
Peter Robinson
13e234ae02 add system-logos dependency for syslinux
The x86.tmpl explicitly references the syslinux-splash provided in
the system-logos package and fails if it's not there so implicitly
install it on arches where syslinux is supported to ensure it's
there. Fixes rhbz #1529239

Signed-off-by: Peter Robinson <pbrobinson@gmail.com>
2018-02-22 17:01:55 -08:00
Adam Williamson
396cee89bf Really don't try to build EFI images on i386
The previous attempt to fix this failed because of operator
ordering, so we actually still tried to build EFI images on
i386, so i386 lives failed. This really fixes it. I tested. I
actually built a 32-bit live and it worked.

Resolves: rhbz#1539085

Signed-off-by: Adam Williamson <awilliam@redhat.com>
2018-02-22 16:48:03 -08:00
Peter Jones
6b0b624638 Don't try to build efi images for basearch=i386.
This shouldn't have been turned on when we switched to doing ia32-efi
images on x86_64; just having the file available isn't where we want
that policy decision to be.

Resolves: rhbz#1539085

Signed-off-by: Peter Jones <pjones@redhat.com>
2018-01-26 09:57:25 -08:00
Adam Williamson
4dc0fc8b39 Don't try and install kernel-PAE on i686 any more
kernel-PAE has been intentionally removed from Rawhide kernel
builds; Fedora 27 will be the last release with kernel-PAE for
i686. So we need to not try and install it in future. See
http://pkgs.fedoraproject.org/rpms/kernel/c/21e4b8338 (it's a
big commit, but the change is in there, it's the second change
in kernel.spec).

Signed-off-by: Adam Williamson <awilliam@redhat.com>
2018-01-02 10:08:51 -08:00
Vendula Poncova
179ef628d4 Add dependencies for SE/HMC
(cherry-picked from a commit d8aee3b)
2017-11-27 12:01:30 -08:00
Stephen Gallagher
5584b6ac56 Storaged re-merged with udisks2 upstream
Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
2017-10-24 11:09:13 -07:00
Vendula Poncova
78a4e96015 Add swaplabel command
It is required by libblockdev.
2017-10-09 11:45:56 -07:00
Brian C. Lane
ec3a9af378 s390 doesn't need to graft product.img and updates.img into /images (#1496461)
The /images directory is already grafted into the iso, so it doesn't
need a specific line for the .img files.
2017-09-27 09:50:11 -07:00
Dan Horák
acb503db9f update graft variable in s390 template 2017-09-27 09:43:10 -07:00
Brian C. Lane
3607a10986 Restore all of the grub2-tools on x86_64 and i386 (#1492197)
These can be useful during installation or rescue.
(They are already present on ppc64)
2017-09-15 12:10:39 -07:00
Adam Williamson
5ace9bdec4 x86.tmpl: initially define compressargs as empty string
pjones and I happened to notice this suspicious line in the
lmc log for a Fedora 27 live image compose:

2017-08-25 16:04:55,327 DEBUG pylorax.ltmpl: template line 25: installimg None usr/share/lorax//product/ images/product.img

That 'None' does not look right. I believe this is the problem.
The command is defined as `installimg ${compressargs} ...`, and
a few lines earlier, `compressargs` is initially assigned (in
Python) as `None`. `None`, in Python, stringifies to the string
'None'. So unless we're on i386 (where `compressargs` gets
defined to an actual string of arguments in a conditional), we
wind up passing in the string 'None' as the first arg to the
`installimg` command.

To fix this, `compressargs` should be initially set to the empty
string rather than `None`.
2017-08-25 13:24:24 -07:00
Adam Williamson
35f954531b x86.tmpl: ensure efiarch64 is defined
pjones missed an initial definition for this variable, so i686
composes are failing with 'referenced before assignment':

https://koji.fedoraproject.org/koji/taskinfo?taskID=21459938
2017-08-25 13:24:17 -07:00
Peter Jones
fc017a1654 Fix grub2-efi-ia32-cdboot and shim-ia32 bits.
These should be x86_64 only, because that's what the packages are.

Signed-off-by: Peter Jones <pjones@redhat.com>
2017-08-24 12:05:21 -07:00
Peter Jones
3a9808c49d Make 64-bit kernel on 32-bit firmware work for x86 efi machines
This enables Baytrail and similar atom CPUs that typically ship with a
32-bit firmware, but have a 64-bit capable CPU.

Signed-off-by: Peter Jones <pjones@redhat.com>
2017-08-24 09:27:04 -07:00
Adam Williamson
a67b45ab0d Don't install rdma bits on 32-bit ARM (#1483278)
Per dledford, RDMA fundamentally cannot work reliably on 32-bit
ARM arches, so as part of the re-organization of the relevant
packages, building them on 32-bit ARM has been disabled (for
F27+). Thus we should adjust lorax not to try and install them
on 32-bit ARM. Also change the package name, the 'rdma' package
is obsoleted by 'rdma-core'. This commit should not be applied
to branches for older distros.

Signed-off-by: Adam Williamson <awilliam@redhat.com>
2017-08-23 09:48:41 -07:00
Brian C. Lane
dc6b827d9d Add creation of a bootable s390 iso (#1478448)
Use mk-s390-cdboot to create a combined kernel+initrd and then build a
boot.iso using it.
2017-08-14 14:29:47 -07:00
Brian C. Lane
3382a24498 Fix systemctl command (#1478247)
When multiple units are passed to systemctl and one fails it doesn't
finish the others. Change the template command to call systemctl for
each unit individually.

This also removes the lvm2-activation-generator in runtime-cleanup.tmpl
2017-08-14 14:29:47 -07:00
Brian C. Lane
8154b3f7a3 Include the dracut fips module in the initrd (#1341280)
This will allow anaconda to fetch kickstarts using https when installing
with fips=1

Leave vmlinuz and .vmlinuz.hmac in /boot

dracut-fips module needs the vmlinuz.hmac file in order to boot.
2017-08-14 13:20:27 -07:00
Adam Williamson
2bb06be2f2 runtime-cleanup: preserve a couple more gstreamer libs
As of webkitgtk4-2.17.5-1.fc27 , it needs these two as well as
the others. This is breaking Rawhide composes at present.

Signed-off-by: Adam Williamson <awilliam@redhat.com>
2017-08-02 17:15:43 -07:00
Dennis Gilmore
ac971d1b1e perl is needed on all arches now
/usr/bin/rxe_cfg from libibverbs needs perl. so include it everywhere.

Signed-off-by: Dennis Gilmore <dennis@ausil.us>
2017-07-31 07:38:07 -07:00
Jonathan Lebon
698d8c5109 runtime-cleanup.tmpl: don't delete localedef
This is required in the future for anaconda to be able to inspect the
supported locales in Atomic Host installations. This is the same patch
as https://github.com/rhinstaller/lorax/pull/194 but for the master
branch.
2017-07-06 11:58:20 -07:00
Sinny Kumari
b2283fada2 Don't remove libmenu.so library during cleanup on PowerPC
Library libmenu.so is needed by lp_diag binary from ppc64-diag
package. It leads to incomplete finish of compose iso generation
on Power. Keeping libmenu.so on PowerPC should fix the problem.

Resolves: rhbz#1461775

Signed-off-by: Sinny Kumari <sinny@redhat.com>
2017-06-19 14:40:32 +05:30
Brian C. Lane
cd4d866e9f Remove filegraft from arm.tmpl (#1457906)
It isn't used at all, so remove it instead of crashing.
2017-06-01 08:06:57 -07:00
Brian C. Lane
f3d262c8f7 arm.tmpl import basename (#1457055) 2017-05-31 08:32:34 -07:00
Brian C. Lane
33308c227c Add support for aarch64 live images
This adds the aarch64 template, and the grub2-efi config file to the
live template directory.

Resolves: rhbz#1369014
2017-05-30 09:46:10 -07:00
Peter Robinson
5bbd05e620 Add ppc64-diag for Power64 platforms
As per RHBZ #1433859 ppc64-diag is needed for dynamic pci hotplug in
virtual guest.

Signed-off-by: Peter Robinson <pbrobinson@gmail.com>
2017-04-24 14:23:38 -07:00
Brian C. Lane
c91278a17d livemedia-creator: Add release license files to / of the iso
This used to be handled by a %post section of the kickstart, but that
won't work with lmc, so do it in the template instead.
2017-03-15 08:22:23 -07:00
Brian C. Lane
9fe59eed0b lorax: Add release license files to / of the iso 2017-03-15 08:22:23 -07:00
Dusty Mabe
d6b805ae09 add ostree to get installed in anaconda environment
rpm-ostree used to have a requirement on the ostree rpm. It no
longer has that dependency, but rather requires ostree-libs. However,
we call ostree directly in some cases so we need to have it installed.
2017-02-27 11:22:55 -08:00
Jiri Konecny
957e1af948 Add dependency for lvmdump -l command (#1255659)
This is required for pre installation logging feature in Anaconda.

The libpcap library is dependency for nmap-ncat which is dependency for
lvmdump -l.
2017-02-22 09:42:31 -08:00
Brian C. Lane
d95e69aa34 Create /dev/random and /dev/urandom before running rpm -qa (#1420523)
In order to run rpm inside the newly created image it now needs to
create a couple device nodes to satisfy nss, which is used by rpm.
2017-02-21 10:24:56 -08:00
Radek Vykydal
21076f08d9 Fix duplicate kernel messages in /tmp/syslog (#1382611)
Resolves: rhbz#1382611

The kernel messages will be read from journal so don't use additional imlkog
module to read them duplicitly.

Fixup of
commit 3eca8a0425
2017-02-16 10:36:02 +01:00
Dennis Gilmore
f1378dd443 Only cleanup libhistory from readline
with readline 7 libreadline.so moved to libdir as a result it is
currently removed in the cleanup phase, however it is needed

Signed-off-by: Dennis Gilmore <dennis@ausil.us>
Signed-off-by: Brian C. Lane <bcl@redhat.com>
2017-01-13 13:45:05 -08:00
Vit Ry
a9decdd6ed Do not install rsh to anaconda chroot
* `rsh` not used in anaconda now (can't find any mentions)
* `rsh` duplicates already existing ssh
* `rsh` not secure enough these days

Signed-off-by: Brian C. Lane <bcl@redhat.com>
2017-01-13 13:42:43 -08:00
Brian C. Lane
4ea20823bc runtime-postinstall: PYTHONDIR is no longer used.
Remove it.
2016-11-29 09:21:36 -08:00
Peter Robinson
685b2164fb add exception for lulzbot-marlin-firmware
The lulzbot-marlin-firmware pulls in cura-lulzbot and a bunch of other
deps that aren't needed for install so add it to the exceptions.

Signed-off-by: Peter Robinson <pbrobinson@gmail.com>
2016-11-22 09:00:34 -08:00
Peter Robinson
40a9f586f3 drop kexec arch conditional for aarch64
aarch64 now has support for kexec and the associated tools so we can drop
the arch conditional now.

Signed-off-by: Peter Robinson <pbrobinson@gmail.com>
2016-11-22 09:00:34 -08:00
Vendula Poncova
5dbc56bae9 Add missing fonts (#1370118)
Added fonts to support Tibetan, Khmer and Burmese.

Signed-off-by: Brian C. Lane <bcl@redhat.com>
2016-10-17 09:16:30 -07:00
Dan Horák
362e116cb5 drop ssh server key generation for s390(x) (#1383641)
Let the keys to be created during runtime as on other arches.

Signed-off-by: Brian C. Lane <bcl@redhat.com>
2016-10-12 09:08:28 -07:00
Jakub Jelen
2477d53098 Fix broken sshd.inst boot option (#1378378)
Follow-up of moving to sshd-keygen.target in anaconda-sshd.service
(#1331753)

 * Do not remove  /etc/ssh/moduli
 * slogin  symlink is already removed
 * Do not remove  sshd-keygen
2016-09-23 09:33:00 +02:00
Radek Vykydal
34940e7a49 Don't log dracut initrd regeneration messages into /tmp/syslog (#1369439)
Related: rhbz#1369439

Keep it same as in RHEL 7.2. They increase the size of the /tmp/syslog file
from ~280K to ~1M, and can be obtained from journal if needed.
2016-09-22 14:50:07 +02:00
Radek Vykydal
3eca8a0425 Use imjournal for rsyslogd instead of sharing /dev/log with journal (#1369439)
Resolves: rhbz#1369439

Rsyslogd used to read messages from /dev/log together with systemd-journald
which resulted in NetworkManager messages not being passed to syslog due to a
race condition during starting NetworkManager and rsyslogd service. So use
imjournal rsyslog plugin that picks messages from journald instead of using the
/dev/log socket. Same as regular RHEL 7 system.
2016-09-22 14:49:24 +02:00
Colin Walters
4f1f118cee templates: Enusre basic.target.wants dir exists for rngd
There's something racy here; in my Atomic Workstation CI/CD I'm seeing:

```
01:12:43   symlink /lib/systemd/system/rngd.service etc/systemd/system/basic.target.wants/rngd.service
01:12:43   FileNotFoundError: [Errno 2] No such file or directory: '/lib/systemd/system/rngd.service' -> '/var/tmp/lorax.7cgdtz1_/installtree/etc/systemd/system/basic.target.wants/rngd.service'
```

Rather than debug this right now, let's just make sure it exists,
like we do right above for `tmp.mount`.
2016-09-12 21:37:31 -04:00
Robert Marshall
9543a46dac Keep fsfreeze in install environment (#1315468)
The latest POWER platform allows a host machine to configure guests
running in a different endian mode. Guests configured in this way may
have their bootloader configuration file corrupted after installation if
the file was not fully written to disk. The host machine would read the
journal and try to finish writing the file in the wrong endian mode.

Issuing an fsfreeze and unfreeze gives more assurance that the
configuration file is properly written before a reboot; this patch adds
fsfreeze to the installer runtime environment.

Related: rhbz#1315468
2016-09-08 12:13:30 -07:00
Vratislav Podzimek
dafb3a95c6 Install storaged-iscsi to the runtime (#1347415)
Blivet now needs it to work with iSCSI (with the iSCSI support being optional in
Blivet).
2016-09-08 12:10:26 -07:00
pbrobinson@fedoraproject.org
477a8b292e as of Fedora 25 s390x now has docker
Signed-off-by: Peter Robinson <Peter Robinson pbrobinson@fedoraproject.org>
2016-08-12 13:14:46 -07:00
pbrobinson@fedoraproject.org
d387d3cb8d ppc64le doesn't have pcmciatools
Signed-off-by: Peter Robinson <Peter Robinson pbrobinson@fedoraproject.org>
2016-08-12 13:14:46 -07:00
pbrobinson@fedoraproject.org
41db63c1be add grub2-tools to aarch64, drop duplicate grubby
Signed-off-by: Peter Robinson <Peter Robinson pbrobinson@fedoraproject.org>
2016-08-12 13:14:46 -07:00
Vratislav Podzimek
f1df7685bd Don't install python3-dnf-langpacks
The package has been retired [1] and anaconda no longer needs it.

[1]
http://pkgs.fedoraproject.org/cgit/rpms/dnf-langpacks.git/commit/?id=51922797be2e6157582b86580b9898e146291245
2016-07-27 10:13:24 +02:00
Peter Robinson
15d13fdfd7 Fix aarch64 installs due to missing/unsupported packages
With commit fe17f97 changing the default from optional to required there's
a few packages that aren't currently supported on aarch64 that break the
compose. In particular aarch64 currently still doesn't have kexec, with luck
that might change in the F-25 cycle but until it does we need to have an
exception.

Signed-off-by: Peter Robinson <pbrobinson@fedoraproject.org>
2016-07-19 18:49:18 -07:00
Brian C. Lane
d7381949b8 Keep fb_sys_fops module needed for ast support (#1272658)
Ends up the drm_kms_helper module depends on fb_sys_fops so keep that as well.

Resolves: rhbz#1272658
2016-07-18 14:57:07 -07:00
Brian C. Lane
c4f65bda5d Installing *-firmware should be optional 2016-07-10 19:17:24 -07:00
Brian C. Lane
8bf144843a Keep all of the kernel drivers/target/ modules (#1348381)
The ib_srpt, and ib_isert modules depend on these.

Resolves: rhbz#1348381
2016-06-22 15:31:36 -07:00
Brian C. Lane
1a60afc4ff Keep the pci utilities for use in kickstarts (#1344926)
Resolves: rhbz#1344926
2016-06-21 16:24:33 -07:00
Dennis Gilmore
2ddbcfeb47 do not remove libutempter as tmux gained a dep on it
Signed-off-by: Dennis Gilmore <dennis@ausil.us>
2016-05-26 17:41:20 -05:00
Brian C. Lane
1e1e978dcf Add efi, product, and updates image paths to treeinfo
Include the information about efiboot.img, macboot.img, product.img, and
updates.img in .treeinfo.
2016-05-13 16:35:56 -07:00
Brian C. Lane
701ab02619 Copying same file shouldn't crash (#1269213)
When using the template install command copying the same file to itself
shouldn't crash. Just log the error and continue.

Also copy the s390 configuration files for use with livemedia-creator

Resolves: rhbz#1269213
2016-04-06 16:59:43 -07:00
Brian C. Lane
99e575e61b templates: On 32 bit systems limit the amount of memory xz uses
This uses --memlimit-compress=3700MiB on i386 and arm when building the
product and updates images.
2016-03-29 09:46:07 -07:00
Brian C. Lane
077167cdb2 templates: Fix runtime_img check
commit 66241f7cd7 added a check on
runtime_img to create UDF iso's. Ends up it is only in outroot for live,
so switch all the checks to look at it in inroot instead.
2016-03-24 09:45:23 -07:00
David Shea
8cf7f6d599 Remove gnome-icon-theme
The gnome-icon-theme packages are legacy packages that are now handled
by adwaita-icon-theme.
2016-03-22 13:25:01 -04:00
David Shea
d798497b5b Exclude unused firmware from package selection.
The sound, video and scanner firmware packages were removed during
cleanup. Instead, do not install them to begin with.

uhd-firmware is an addon package for a software radio tool and not
kernel firmware at all. Besides being 86MB on its own, it pulls in boost
and Tk, so leave all of that out.
2016-03-22 13:25:01 -04:00
David Shea
b8f53d8c74 Clean up /dev.
/dev ends up with the files "null" and "kmsg" from scriptlets
redirecting output to special files that do not exist. Remove this
output.
2016-03-22 13:25:01 -04:00
David Shea
9a244b69dd Remove /var/lib/dnf 2016-03-22 13:25:00 -04:00
David Shea
5da62800df Remove a bunch of stuff pulled in by webkitgtk
webkitgtk4, a dependency of yelp, links to a lot of things. A lot of the
libraries pulled in through the dependency avalanche will never be used,
especially those that are dependencies of gstreamer plugins, so try to
clean some of it up.
2016-03-22 13:25:00 -04:00
Brian C. Lane
66241f7cd7 Create UDF iso when stage2 is >= 4GiB (#1312158)
Some images are becoming REALLY large. When a file is >= 4GiB we need to
pass -allow-limited-size to mkisofs to tell it to make a UDF image. Note
that the manpage says that this may result in it not booting on all
systems.
2016-03-18 12:05:19 -07:00
Peter Robinson
c9181d06d5 Not all arches currently have docker
At the momenet some PPC and s390 arches don't have docker, in that case we get the following failure when running lorax.

DEBUG util.py:417:  2016-03-12 01:00:27,658:   dnf.exceptions.DepsolveError: nothing provides docker-utils needed by docker-anaconda-addon-0.2-1.fc24.noarch
DEBUG util.py:417:    dnf.exceptions.DepsolveError: nothing provides docker-utils needed by docker-anaconda-addon-0.2-1.fc24.noarch
DEBUG util.py:417:  Traceback (most recent call last):
DEBUG util.py:417:    File "/usr/sbin/lorax", line 353, in <module>
DEBUG util.py:417:      main(sys.argv)
DEBUG util.py:417:    File "/usr/sbin/lorax", line 209, in main
DEBUG util.py:417:      remove_temp=True, verify=opts.verify)
DEBUG util.py:417:    File "/usr/lib/python3.5/site-packages/pylorax/__init__.py", line 277, in run
DEBUG util.py:417:      rb.install()
DEBUG util.py:417:    File "/usr/lib/python3.5/site-packages/pylorax/treebuilder.py", line 119, in install
DEBUG util.py:417:      self._runner.run("runtime-install.tmpl")
DEBUG util.py:417:    File "/usr/lib/python3.5/site-packages/pylorax/ltmpl.py", line 219, in run
DEBUG util.py:417:      self._run(commands)
DEBUG util.py:417:    File "/usr/lib/python3.5/site-packages/pylorax/ltmpl.py", line 238, in _run
DEBUG util.py:417:      f(*args)
DEBUG util.py:417:    File "/usr/lib/python3.5/site-packages/pylorax/ltmpl.py", line 540, in run_pkg_transaction
DEBUG util.py:417:      self.dbo.resolve()
DEBUG util.py:417:    File "/usr/lib/python3.5/site-packages/dnf/base.py", line 547, in resolve
DEBUG util.py:417:      raise exc
DEBUG util.py:417:  dnf.exceptions.DepsolveError: nothing provides docker-utils needed by docker-anaconda-addon-0.2-1.fc24.noarch
DEBUG util.py:542:  Child return code was: 1

Signed-off-by: Peter Robinson <pbrobinson@fedoraproject.org>
2016-03-12 07:45:35 +00:00
David Shea
493ae32d54 Keep /usr/bin/xrdb (#1241724)
Some font parameters are set via Xresources, so keep the tool that does
that.
2016-03-09 16:40:23 -08:00
Vratislav Podzimek
c6b4cea40c Install the libblockdev-lvm-dbus plugin (#1264816)
This will allow blivet to make use of the LVM DBus PoC API.
2016-03-09 13:39:03 +01:00
Brian C. Lane
0f51bfba5b Add docker-anaconda-addon 2016-03-03 17:23:05 -08:00
David Shea
28fb511790 Add glibc-all-langpacks (#1312607)
glibc recently split all of its locale data into subpackages, so if we
install no langpacks we get no locales. Explicitly install all of the
langpacks.
2016-02-29 09:25:44 -05:00
Colin Walters
6fcdac5c88 templates: Reinstate gpgme-pthread.so for ostree
See https://github.com/GNOME/ostree/pull/190

Without this the installer ISO generation fails.
2016-02-24 10:27:54 -08:00
Brian C. Lane
83590af2be Include grub2-efi-modules on the boot.iso (#1277227)
Some users need to be able to run grub2-install from %pre

Resolves: rhbz#1277227
2016-02-24 07:50:23 -08:00
Brian C. Lane
2b66adb5ad Keep modules needed for ast video driver support (#1272658)
The ast module depends on:
drm,drm_kms_helper,ttm,syscopyarea,i2c-core,sysfillrect,sysimgblt,i2c-algo-bit

This retains the syscopyarea, sysfillrect, and sysimgblt modules.

Resolves: rhbz#1272658
2016-02-24 07:44:44 -08:00
Brian C. Lane
97d31cb8fe Put the NM loglevel config in the right place. 2016-02-19 17:34:14 -08:00
Radek Vykydal
51aa86e425 configure NetworkManager to loglevel=DEBUG (#1274647)
Resolves: rhbz#1274647
2016-02-19 16:52:36 -08:00
Brian C. Lane
690feba381 Add rng-tools and start rngd.service by default (#1258516)
This will help improve the entropy situation with non-x86 hardware. rngd
will add entropy from hardware rng sources.

Resolves: rhbz#1258516
2016-02-12 10:24:38 -08:00
Brian C. Lane
76bce910e0 Move templates to /usr/share/lorax/templates.d/99-generic 2016-02-10 17:14:11 -08:00
Dennis Gilmore
0be4096a94 Make arm .treeinfo match reality
since we no longer make the wrappend kernel and initrd for arm we need
to not put them in the .treeinfo file

Signed-off-by: Dennis Gilmore <dennis@ausil.us>
2016-01-12 08:13:47 -08:00
Brian C. Lane
ffe77cdad7 Also remove uboot from live arm.tmpl 2015-12-10 11:51:24 -08:00
Dennis Gilmore
b81414b8a7 no longer make u-boot wrapped kernels
We have been defaulting to using raw kernels and initrds for awhile
now. Lets not make the legacy version anymore. Anyone that needs one
should be able to make their own with the correct variables.

Signed-off-by: Dennis Gilmore <dennis@ausil.us>
2015-12-10 11:50:56 -08:00
Jiri Konecny
ceca1c6e32 Fix chronyd not working in the installation (#1288905)
Service chronyd not working on rhel7 now because it's missing command
flock.

Related: rhbz#1085013
(cherry picked from commit b2f6a9f129)
2015-12-07 15:04:41 -08:00
Brian C. Lane
4312ddf1a6 paste is needed by os-prober (#1275105)
Resolves: rhbz#1275105
2015-11-09 17:04:04 -08:00
David Shea
bb2dc62521 Enable gtk inspector.
Gtk turned off the inspector keybindings by default, because they were
interfering with applications that use a lot of complicated keyboard
shortcuts. This is not a concern for anaconda, and the inspector is
pretty handy, so turn it back on.
2015-11-02 14:35:50 -05:00
Brian C. Lane
0b8b74edda Keep libthread so that gdb will work correctly (#1269055)
Related: rhbz#1269055
2015-10-08 16:43:39 -07:00
David Shea
e3d8b01afa Do not let systemd-tmpfiles set up /etc on boot
The etc portion of systemd-tmpfiles creates a broken /etc/resolv.conf,
which breaks networking, and the rest of the stuff in the there is
already installed to the stage2.
2015-10-06 15:00:26 -07:00
Jiri Konecny
094ad38310 Add findmnt command
This is nice way how to show existing mounts.
2015-10-05 15:00:15 -07:00
Dan Horák
15d44ce562 rsa1 keys are not supported any more by our openssh 2015-10-01 13:30:37 -07:00
David Shea
fb19d7f509 Include gdb in the boot.iso
This way anaconda can generate a core file from itself when it crashes.
2015-09-24 16:52:20 -04:00
Brian C. Lane
dc663cd9bf Add a font that supports Urdu characters (#1004717) 2015-09-08 11:19:17 -07:00
Will Woods
52171ecf23 drop fedup-dracut and friends
This package will not exist soon. Don't bother trying to install it.
2015-08-31 16:24:39 -07:00
Will Woods
a3e1a275ff don't build upgrade.img anymore
fedup is deprecated and abandoned. Let's save time and disk by not
building `upgrade.img` when nothing is going to use it anymore.

For the record, performing upgrades using an initramfs from the new
system turns out to be fragile and hard to support:

* dracut initramfs isn't generic enough to handle booting all systems
  (e.g. missing vconsole.conf means you get keymaps wrong, so users
  can't unlock encrypted disks)

* The ABI differences between the two versions of plymouth, systemd,
  etc. requires nasty workarounds at best and causes nightmarish
  systemd crashes at worst

This patch removes all the code that built and installed `upgrade.img`.

For backwards compatibility, the API retains the `doupgrade` keyword
argument, and the `--noupgrade` flag is still accepted.
2015-08-31 16:24:39 -07:00
Chris Lumens
7c0f9cedc1 No longer offer a rescue boot menu option on liveinst (#1256061). 2015-08-27 13:35:26 -04:00
David Shea
88869fff66 Add enough of shadow-utils to create new user accounts.
Yes user accounts, some account management
2015-08-27 10:12:58 -04:00
Radek Vykydal
8ab53eb3b1 Add lldptool (#1085325)
Related: rhbz#1085325
(cherry picked from commit c124d8277d)
2015-08-12 09:36:28 -07:00
Peter Robinson
dc9bae9b68 some of the PowerPC utilities (powerpc-utils and fbset) need perl too
(cherry picked from commit 4794ba6a8e)
2015-08-07 16:52:00 -07:00
Brian C. Lane
57b7516857 Add a default vconsole.conf to the boot.iso (#1250260)
This is needed so that the initial console will use the correct font
(eurlatgr). See
https://fedoraproject.org//wiki/Changes/NewDefaultConsoleFont for more
detail.
2015-08-07 16:47:51 -07:00
David Shea
52b7c4dd06 Revert "Revert "Turn off ldconfig""
We really shouldn't need to run ldconfig on boot from read-only media,
unless someone messed up %post in a package. And the verify step will
catch that.

This reverts commit 3981ff5b79.
2015-07-20 16:18:20 -04:00
David Shea
89441cd675 Add back libraries needed by spice-vdagent
spice-vdagent, half of the thing that lets copy/paste work across a
spice connection, added sound support, I guess, so now we need
alsa-libs.
2015-07-20 16:18:20 -04:00
David Shea
1fa622e77c Remove some junk that didn't work anyway
systemd-nspawn is some kind of container thing, and cairo-sphinx, as far
as I can tell (go ahead, try to google it) is a cairo debugging tool.
Neither of these are particularly useful on installer media and both use
libraries that are removed during cleanup.
2015-07-20 16:18:20 -04:00
Brian C. Lane
d6584e1d77 Create an empty selinux config file (#1243168)
In order for selinux to properly label the system it needs to see that
the config file exists.

Also remove the old code trying to copy in a selinux config file, it
never worked -- the removepkg would remove it.
2015-07-20 11:32:31 -07:00
Radek Vykydal
c0516dd961 network: turn slaves autoconnection on
So we can activate master connection instead of searching for and activating
slave connections.

Makes turning bond/team device on in network spoke work.

Resolves: rhbz#1172751

It also causes a device configured in dracut to be properly reactivated as a slave
if it is configured so by kickstart.

Resolves: rhbz#1134090
2015-07-01 10:42:46 +02:00
Brian C. Lane
4342b8f40b Keep hyperv_fb driver in the image (#834791)
Hyper-V needs this.

Resolves: rhbz#834791
(cherry picked from commit b51ff60875)
2015-06-29 11:04:07 -07:00
Brian C. Lane
4c3595e797 Explicitly add kernel-modules and kernel-modules-extra
When it is left up to dnf to decide how to fulfill the kmod()
requirement from gfs2-utils it will pick kernel-debuginfo-* which adds
about 100M to the size of the iso.

Adding these packages first makes dnf choose them and the iso size is
back down around 450MB
2015-06-22 16:23:29 -07:00
Brian C. Lane
a4d350a177 Disable systemd-tmpfiles-clean (#1202545)
When the time changes dramatically it cleans up the files in /tmp/
causing problems with the installation.

Resolves: rhbz#1202545
2015-06-15 14:48:30 -07:00
David Shea
bbd1592f43 Remove some stale entires from runtime-install
iscsi-initator-utils and gobject-introspection actually are required via
anaconda rpm deps, so they aren't needed in runtime-install.tmpl.

Nothing seems to actually use python-imaging (i.e., python-pillow).

The executables for polkit, gnome-keyring and python-ethtool are removed
in runtime-cleanup, so if anything needs the libraries in these
packages, they can be pulled in through rpm dependencies. Among them,
only polkit is required.

For LUKS escrow stuff, keep the packages that provide the command-line
executables (volume_key, nss-tools), and remove the libraries. The
python2 libraries are no longer needed by blivet, and libblockdev will
install the C libraries it needs.

Install the dnf langpacks plugin instead of the yum one.

python-epdb is less useful now that anaconda is Python 3.
2015-06-10 16:32:29 -04:00
Brian C. Lane
da4456eda9 Stop moving sitecustomize into site-packages
Now that anaconda is python3 this is not needed.
2015-06-10 10:15:02 -07:00
Brian C. Lane
eb22c69f29 Additional python3 changes
Add a 'lower' filter to the templates to replace string.lower which no
longer exists. Fix udev_escape, the strings are already unicode, and
drop --chdir from runcmd. It wasn't ever used, and passing cwd to the
new runcmd isn't supported.
2015-05-15 17:11:20 -07:00
Brian C. Lane
d88cb00943 Make sure openssh-clients is installed (#1219398)
It used to be pulled in by a dependency, which went away. It should be
explicitly installed.
2015-05-07 16:49:18 -07:00
Dan Horák
a2c2a4be28 Add product.img support for s390 templates 2015-04-29 11:30:59 -07:00
Brian C. Lane
a810cad542 Include cryptsetup in the image (#1208214)
blivet dropped its requirement on cryptsetup, but fedup needs it in the
upgrade.img and it is useful for rescue mode so add it back.
2015-04-02 13:38:51 -07:00
Brian C. Lane
f130efdbc2 Include ld.so.conf (#1204031)
ldconfig runs at boot time, and some libraries apparently aren't setup
properly, so the config is needed to point to their directories.
2015-03-20 17:27:33 -07:00
Brian C. Lane
3981ff5b79 Revert "Turn off ldconfig"
This reverts commit c4c90e0b5e.

Appears to be causing rhbz#1201897
2015-03-20 17:26:32 -07:00
Colin Walters
67217f5642 Add ability for external templates to graft content into boot.iso
I originally added --add-template to support doing something similar
to pungi, which injects content into the system to be used by default.
However, this causes the content to be part of the squashfs, which
means PXE installations have to download significantly more data that
they may not need (if they actually want to pull the tree data from
the network, which is not an unusual case).

What I actually need is to be able to modify *both* the runtime image
and the arch-specific content.  For the runtime, I need to change
/usr/share/anaconda/interactive-defaults.ks to point to the new
content.  (Although, potentially we could patch Anaconda itself to
auto-detect an ostree repository configured in disk image, similar to
what it does for yum repositories)

For the arch-specfic image, I want to drop my content into the ISO
root.

So this patch adds --add-arch-template and --add-arch-template-var
in order to do the latter, while preserving the --add-template
to affect the runtime image.

Further, the templates will automatically graft in a directory named
"iso-graft/" from the working directory (if it exists).

(I suggest that external templates create a subdirectory named
 "content" to avoid clashes with any future lorax work)

Thus, this will be used by the Atomic Host lorax templates to inject
content/repo, but could be used by e.g. pungi to add content/rpms as
well.

I tried to avoid code deduplication by creating a new template for the
product.img bits and this, but that broke because the parent boot.iso
code needs access to the `${imggraft}` variable.  I think a real fix
here would involve turning the product.img, content/, *and* boot.iso
into a new template.
2015-03-19 16:48:16 -04:00