-
Notifications
You must be signed in to change notification settings - Fork 12
/
Copy pathcommon.yaml
151 lines (135 loc) · 4.26 KB
/
common.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
releasever: 41
automatic-version-prefix: "${releasever}.<date:%Y%m%d>"
mutate-os-release: "${releasever}"
# Default to `bash` in our container, the same as other containers we ship.
container-cmd:
- /usr/bin/bash
include:
# See: https://gitlab.com/fedora/ostree/sig/-/issues/1
- bootupd.yaml
# Dracut configuration for the initramfs
- initramfs.yaml
# Read only sysroot
- sysroot-ro.yaml
# systemd-pcrphase module fails on ppc64le:
# https://gitlab.com/fedora/ostree/sig/-/issues/44
arch-include:
x86_64:
- initramfs-tpm-luks.yaml
- qemu-user-static-x86_64.yaml
aarch64:
- initramfs-tpm-luks.yaml
- qemu-user-static-non-x86_64.yaml
ppc64le:
- qemu-user-static-non-x86_64.yaml
conditional-include:
# Manifests included only for classic ostree variants
- if: bootable_container == false
include:
- ostree-classic.yaml
# Manifests included only for the Bootable Container variants
- if: bootable_container == true
include:
- bootc.yaml
- dnf5.yaml
packages:
# Ensure that we have a kernel. Kernel packages are not in any comps group
- kernel
- kernel-modules
- kernel-modules-extra
# Do not include "full" Git as it brings in Perl
- git-core
# Required for compatibility with old bootloaders until we have bootupd
# See https://github.com/fedora-silverblue/issue-tracker/issues/120
- ostree-grub2
# Required until we've completed the move to systemd-sysusers
# See: https://github.com/fedora-silverblue/issue-tracker/issues/362
- nss-altfiles
# Container management
- buildah
- podman
- skopeo
- fuse-overlayfs
# See: https://github.com/fedora-silverblue/issue-tracker/issues/503
- systemd-container
# Provides terminal tools like clear, reset, tput, and tset
- ncurses
# Flatpak support
- flatpak
- xdg-desktop-portal
selinux: true
documentation: true
boot-location: modules
etc-group-members:
- wheel
tmp-is-dir: true
ignore-removed-users:
- root
ignore-removed-groups:
- root
check-passwd:
type: file
filename: passwd
check-groups:
type: file
filename: group
default_target: graphical.target
packages-aarch64:
- grub2-efi
- efibootmgr
- shim
packages-ppc64le:
- grub2
packages-x86_64:
- grub2-efi-ia32
- grub2-efi-x64
- grub2-pc
- efibootmgr
- shim-ia32
- shim-x64
# Make sure the following are not pulled in when Recommended by other packages
exclude-packages:
- PackageKit
# We can not include openh264. See https://fedoraproject.org/wiki/OpenH264
# - gstreamer1-plugin-openh264
# - mozilla-openh264
# - openh264
# Do not include dnf4. Classic ostree also exclude dnf5 in another manifest
- dnf
- dnf-plugins-core
# https://github.com/fedora-silverblue/issue-tracker/issues/517
- grubby
- sdubby
# Exclude Tk. We can not exclude Tcl as it is neeeded for usb_modeswitch
- tk
# Exclude QEMU. See: https://gitlab.com/fedora/ostree/sig/-/issues/58
- qemu-kvm
- qemu-kvm-core
- qemu-device-display-virtio-gpu
- qemu-device-display-virtio-vga
postprocess:
- |
#!/usr/bin/env bash
set -xeuo pipefail
# Work around https://bugzilla.redhat.com/show_bug.cgi?id=1265295
# From https://github.com/coreos/fedora-coreos-config/blob/testing-devel/overlay.d/05core/usr/lib/systemd/journald.conf.d/10-coreos-persistent.conf
install -dm0755 /usr/lib/systemd/journald.conf.d/
echo -e "[Journal]\nStorage=persistent" > /usr/lib/systemd/journald.conf.d/10-persistent.conf
# See: https://src.fedoraproject.org/rpms/glibc/pull-request/4
# Basically that program handles deleting old shared library directories
# mid-transaction, which never applies to rpm-ostree. This is structured as a
# loop/glob to avoid hardcoding (or trying to match) the architecture.
for x in /usr/sbin/glibc_post_upgrade.*; do
if test -f ${x}; then
ln -srf /usr/bin/true ${x}
fi
done
# Remove loader directory causing issues in Anaconda in unified core mode
# Will be obsolete once we start using bootupd
rm -rf /usr/lib/ostree-boot/loader
# Undo RPM scripts enabling units; we want the presets to be canonical
# https://github.com/projectatomic/rpm-ostree/issues/1803
rm -rf /etc/systemd/system/*
systemctl preset-all
rm -rf /etc/systemd/user/*
systemctl --user --global preset-all