Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support dumping the treefile with exact package versions being. #1670

Closed
adityashah1212 opened this issue Nov 8, 2018 · 5 comments
Closed

Support dumping the treefile with exact package versions being. #1670

adityashah1212 opened this issue Nov 8, 2018 · 5 comments
Labels
kind/enhancement

Comments

@adityashah1212
Copy link

I know we can dump the treefile with by resolving the includes before building the tree. But it would be really useful to be able to dump the treefile replacing each package with its exact name if not already specified. Doing this we can version control the dumped treefile and then use the treefile with the corresponding versions of treecompose-post.sh and repo files to regenerate the exact same build.

This will be very useful to people maintaining their own custom trees. I think this would the first step for #122.
@cgwalters
Copy link
Member

Yeah, we can do this. There was recent discussion about this here:

https://mail.gnome.org/archives/ostree-list/2018-October/msg00005.html
(And then because mailman breaks threading across month boundaries, continues here: https://mail.gnome.org/archives/ostree-list/2018-November/msg00000.html )

@cgwalters cgwalters mentioned this issue Nov 9, 2018
Closed
@dustymabe
Copy link
Member

@cgwalters - would you say this is a medium difficulty task?

@miabbott
Copy link
Member

In addition to this, being able to know which repo the package came from as well would be useful.

@cgwalters
Copy link
Member

cgwalters commented Jan 16, 2019
edited
Loading

Strawman: A new compose tree --write-lockfile=manifest.lock argument, and a new compose tree --lockfile=manifest.lock to read it back for subsequent invocations. It outputs YAML of the form:

packages:
  - fedora:
    - ["glibc-2.28-26.fc29.x86_64", "11345a868e4501067929158e0ca5f91b83243cd65c85df92062b58cb7258b4bb"]
    ...
  - fedora-updates:
    - ["kernel-4.19.13-300.fc29.x86_64", "59fd74cef04f7369180573d00b794455fc994c501d52bb039e2b4fec2b334e80"]
    - ["systemd-239-7.git3bf819c.fc29.x86_64", "05909d0af94782c7d1a6e8da03e86178221f500935bcb541716e3a38966d58d1"]
    ...

Basically a list of repos, each of which contains an exact NEVRA plus the repodata sha256sum (not the rpm checksum).

When provided with --lockfile as input we pass that info to the depsolver; I am not sure if there's a way we can say to libsolv "give us the package with this repodata checksum" but at least we can verify it after.

Probably the sanest is that if --write-lockfile is specified it acts just like coreos-assembler fetch i.e. we don't actually do a compose, and support --touch-if-changed so higher level logic can react to that.

@cgwalters
Copy link
Member

(Also worthwhile to look at Rust's Cargo.toml and Cargo.lock for inspiration)

@r4f4 r4f4 mentioned this issue Jan 29, 2019
Closed
r4f4 added a commit to r4f4/rpm-ostree that referenced this issue May 30, 2019
@r4f4
Add lockfile for RPM versions
63e24ba 
Fixes coreos#1670

This patch introduces a new `compose tree
--write-lockfile-to=manifest.lock` argument and a new `compose tree
--lockfile=manifest.lock` to read it back for subsequent invocations.

Signed-off-by: Rafael Fonseca <r4f4rfs@gmail.com>
r4f4 added a commit to r4f4/rpm-ostree that referenced this issue May 31, 2019
@r4f4
Add lockfile for RPM versions
b5d27c4 
Fixes coreos#1670

This patch introduces a new `compose tree
--write-lockfile-to=manifest.lock` argument and a new `compose tree
--lockfile=manifest.lock` to read it back for subsequent invocations.

Signed-off-by: Rafael Fonseca <r4f4rfs@gmail.com>
r4f4 added a commit to r4f4/rpm-ostree that referenced this issue Jun 3, 2019
@r4f4
compose: Add --lockfile and --write-lockfile-to
2e237c3 
Fixes coreos#1670

This patch introduces a new `compose tree
--write-lockfile-to=manifest.lock` argument and a new `compose tree
--lockfile=manifest.lock` to read it back for subsequent invocations.

Signed-off-by: Rafael Fonseca <r4f4rfs@gmail.com>
rh-atomic-bot pushed a commit that referenced this issue Jun 3, 2019
@r4f4 @rh-atomic-bot
compose: Add --lockfile and --write-lockfile-to
8ff1c33 
Fixes #1670

This patch introduces a new `compose tree
--write-lockfile-to=manifest.lock` argument and a new `compose tree
--lockfile=manifest.lock` to read it back for subsequent invocations.

Signed-off-by: Rafael Fonseca <r4f4rfs@gmail.com>

Closes: #1745
Approved by: jlebon
r4f4 added a commit to r4f4/rpm-ostree that referenced this issue Jun 3, 2019
@r4f4
compose: Add --ex-lockfile and --ex-write-lockfile-to
213a84c 
Fixes coreos#1670

This patch introduces a new `compose tree
--ex-write-lockfile-to=manifest.lock` argument and a new `compose tree
--ex-lockfile=manifest.lock` to read it back for subsequent invocations.

Signed-off-by: Rafael Fonseca <r4f4rfs@gmail.com>
r4f4 added a commit to r4f4/rpm-ostree that referenced this issue Jun 4, 2019
@r4f4
compose: Add --ex-lockfile and --ex-write-lockfile-to
cd3e6c6 
Fixes coreos#1670

This patch introduces a new `compose tree
--ex-write-lockfile-to=manifest.lock` argument and a new `compose tree
--ex-lockfile=manifest.lock` to read it back for subsequent invocations.

Signed-off-by: Rafael Fonseca <r4f4rfs@gmail.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
kind/enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@cgwalters @dustymabe @miabbott @adityashah1212