From 6f8c270b3fb7b5b3109d2553fef38f128b6137ac Mon Sep 17 00:00:00 2001 From: Laszlo Ersek Date: Thu, 2 Dec 2021 14:10:06 +0100 Subject: [PATCH] sysprep: remove system-local NetworkManager connection profiles (keyfiles) Add a simple (default) operation to remove /etc/NetworkManager/system-connections/*.nmconnection which arguably carry stale information after the initial creation of the system disk image. Note: no side effect callback is invoked. Before commit 576f1541a20c ("sysprep: Use customize module for customizing the guest after sysprepping.", 2014-03-25), the "delete" operation had been native to virt-sysprep ("sysprep/sysprep_operation_delete.ml"), and it didn't invoke side effects. In said commit, "delete" was delegated to virt-customize, and that was when "side_effects#created_file" was introduced (most likely) as a catch-all. (We still have the "XXX Did we?" comment today.) Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=1980922 Signed-off-by: Laszlo Ersek Message-Id: <20211202131006.12774-1-lersek@redhat.com> Acked-by: Richard W.M. Jones (cherry picked from commit 903819ecf480bcefec108bdbd7e9bdec1b3b5a49) --- sysprep/Makefile.am | 1 + sysprep/sysprep_operation_net_nmconn.ml | 43 +++++++++++++++++++++++++ 2 files changed, 44 insertions(+) create mode 100644 sysprep/sysprep_operation_net_nmconn.ml diff --git a/sysprep/Makefile.am b/sysprep/Makefile.am index d32ab20e..561a71ae 100644 --- a/sysprep/Makefile.am +++ b/sysprep/Makefile.am @@ -52,6 +52,7 @@ operations = \ mail_spool \ net_hostname \ net_hwaddr \ + net_nmconn \ pacct_log \ package_manager_cache \ pam_data \ diff --git a/sysprep/sysprep_operation_net_nmconn.ml b/sysprep/sysprep_operation_net_nmconn.ml new file mode 100644 index 00000000..2d8667f1 --- /dev/null +++ b/sysprep/sysprep_operation_net_nmconn.ml @@ -0,0 +1,43 @@ +(* virt-sysprep + * Copyright (C) 2012-2021 Red Hat Inc. + * + * This program is free software; you can redistribute it and/or modify + * it under the terms of the GNU General Public License as published by + * the Free Software Foundation; either version 2 of the License, or + * (at your option) any later version. + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU General Public License for more details. + * + * You should have received a copy of the GNU General Public License along + * with this program; if not, write to the Free Software Foundation, Inc., + * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. + *) + +open Common_gettext.Gettext +open Sysprep_operation + +let glob = "/etc/NetworkManager/system-connections/*.nmconnection" + +let net_nmconn_perform (g : Guestfs.guestfs) root side_effects = + let typ = g#inspect_get_type root in + let distro = g#inspect_get_distro root in + match typ, distro with + | "linux", ("fedora"|"rhel"|"centos"|"scientificlinux"|"oraclelinux"| + "redhat-based") -> Array.iter g#rm_f (g#glob_expand glob) + | _ -> () + +let op = { + defaults with + name = "net-nmconn"; + enabled_by_default = true; + heading = s_"Remove system-local NetworkManager connection profiles \ + (keyfiles)"; + pod_description = Some (s_"On Fedora and Red Hat Enterprise Linux, remove \ + the C<" ^ glob ^ "> files."); + perform_on_filesystems = Some net_nmconn_perform; +} + +let () = register_operation op -- 2.31.1