many: when building initramfs, pull files from the run system #225
Conversation
bin/ubuntu-core-initramfs
Outdated
| install_files(rules, dest_dir) | ||
| # Other needed stuff | ||
| out = subprocess.check_output(["dpkg-architecture", "-q", | ||
| "DEB_BUILD_MULTIARCH"]).decode("utf-8") |
There was a problem hiding this comment.
you definitely want DEB_HOST_MULTIARCH here (as in the native, default, current architecture one is currently running under)
bin/ubuntu-core-initramfs
Outdated
| @@ -272,7 +272,173 @@ def add_modules_from_file(dest_d, kernel_root, modules_d, fw_d, conf_file, db, | |||
| ) | |||
|
|
|||
|
|
|||
| def install_files(files, dest_dir): | |||
| proc_env = os.environ.copy() | |||
| proc_env["LP_PRELOAD"] = "" | |||
There was a problem hiding this comment.
do you mean LD_PRELOAD here instead?
Also this is called so many times, it seems like it will be worthwhile to add a small wrapper def check_call(*args, **kwargs) that wraps check_call without LD_PRELOAD.
There was a problem hiding this comment.
Oops, changed, good catch.
Not sure though about the wrapper to subprocess.check_call as it would not save as much, instead I have now done from subprocess import run, check_call, check_output so the package prefix is not needed, which is afaiu what is slightly annoying.
|
|
||
| # This is useful if the destination path inside dest_dir is different | ||
| # from the current file path. | ||
| def install_file_to_path(file, dest_dir, dest_path): |
There was a problem hiding this comment.
potentially can be merged with above function and make dest_path an optional kwarg argument.
There was a problem hiding this comment.
I think that would complicate too much the function to make it worth it tbh, because of the different arguments, the need to specify dest_path for all files if we have a list, etc.
bin/ubuntu-core-initramfs
Outdated
| [ | ||
| r"dpkg -L systemd | " | ||
| r"grep -E '(^/lib/systemd/system|/modprobe\.d/|/sysctl\.d/|" | ||
| r"/rules\.d/|/tmpfiles\.d/|/bin/)'", |
There was a problem hiding this comment.
whilst grep works, using more pythonic functions for filtering might have been better. I would rather just slurp all the lines from dpkg, and then use python for filtering by using glob or re. Ideally one pattern at a time, explaining why we need it.
There was a problem hiding this comment.
also multiple packages can be specified to dpkg call, which might work better for the set of related systemd .deb packages (i.e. systemd udev libudev1 systemd-sysv).
bin/ubuntu-core-initramfs
Outdated
| def install_busybox(dest_dir): | ||
| # Use busybox shell instead of dash | ||
| os.remove(os.path.join(dest_dir, "usr/bin/sh")) | ||
| os.remove(os.path.join(dest_dir, "usr/bin/dash")) |
There was a problem hiding this comment.
i would want to install these first, such that dractu-install later just uses existing ones, rather than try to override them. Because getting this at the start matters.
There was a problem hiding this comment.
Good point, I've pulled now busybox first so there is no need to remove sh/dash.
bin/ubuntu-core-initramfs
Outdated
| "/sbin/fsck.vfat", | ||
| "/sbin/mkfs.ext4", | ||
| "/sbin/mkfs.vfat", | ||
| "/sbin/sfdisk", |
There was a problem hiding this comment.
we require merged-usr for many releases now, it would help static lists like these to use "/usr" prefixed paths already.
There was a problem hiding this comment.
contents of .deb packages is moving to have everything built with "/usr" paths too in noble, but it is a slow process as packages upgrade.
bin/ubuntu-core-initramfs
Outdated
| # Copy systemd bits | ||
| install_systemd_files(main) | ||
| # copy busybox | ||
| install_busybox(main) |
There was a problem hiding this comment.
I think installing busybox before systemd is safer.
There was a problem hiding this comment.
@xnox thanks for the quick review, I've addressed your comments now.
FTR, yes, to check correctness I have compared the final list of files with what the old approach produced. The are just some small differences that should be fine:
- Some links/binaries that used to be in
/usr/binare now in/usr/sbin: reboot, rmmod, e2fsck and others, which seems more correct to me as that is their path in the rootfs. Not sure how they were originally placed in/usr/bin. - Due to an error in an invocation of dracut-install, we were pulling more libraries than needed in the initramfs (concretely, when calling it on
/usr/lib/$(DEB_HOST_MULTIARCH)/plymouth/*.so, where we should have run it only for the plugins we are pulling - two-step, script, label-ft). I've fixed this so these unneeded libraries are not included anymore.
Fwiw, I've tested this locally by replacing initramfs in a 24 snap kernel and things were good, also CI seems to be happy.
bin/ubuntu-core-initramfs
Outdated
| @@ -272,7 +272,173 @@ def add_modules_from_file(dest_d, kernel_root, modules_d, fw_d, conf_file, db, | |||
| ) | |||
|
|
|||
|
|
|||
| def install_files(files, dest_dir): | |||
| proc_env = os.environ.copy() | |||
| proc_env["LP_PRELOAD"] = "" | |||
There was a problem hiding this comment.
Oops, changed, good catch.
Not sure though about the wrapper to subprocess.check_call as it would not save as much, instead I have now done from subprocess import run, check_call, check_output so the package prefix is not needed, which is afaiu what is slightly annoying.
|
|
||
| # This is useful if the destination path inside dest_dir is different | ||
| # from the current file path. | ||
| def install_file_to_path(file, dest_dir, dest_path): |
There was a problem hiding this comment.
I think that would complicate too much the function to make it worth it tbh, because of the different arguments, the need to specify dest_path for all files if we have a list, etc.
bin/ubuntu-core-initramfs
Outdated
| [ | ||
| r"dpkg -L systemd | " | ||
| r"grep -E '(^/lib/systemd/system|/modprobe\.d/|/sysctl\.d/|" | ||
| r"/rules\.d/|/tmpfiles\.d/|/bin/)'", |
bin/ubuntu-core-initramfs
Outdated
| def install_busybox(dest_dir): | ||
| # Use busybox shell instead of dash | ||
| os.remove(os.path.join(dest_dir, "usr/bin/sh")) | ||
| os.remove(os.path.join(dest_dir, "usr/bin/dash")) |
There was a problem hiding this comment.
Good point, I've pulled now busybox first so there is no need to remove sh/dash.
bin/ubuntu-core-initramfs
Outdated
| install_files(rules, dest_dir) | ||
| # Other needed stuff | ||
| out = subprocess.check_output(["dpkg-architecture", "-q", | ||
| "DEB_BUILD_MULTIARCH"]).decode("utf-8") |
bin/ubuntu-core-initramfs
Outdated
| "/sbin/fsck.vfat", | ||
| "/sbin/mkfs.ext4", | ||
| "/sbin/mkfs.vfat", | ||
| "/sbin/sfdisk", |
bin/ubuntu-core-initramfs
Outdated
| # Copy systemd bits | ||
| install_systemd_files(main) | ||
| # copy busybox | ||
| install_busybox(main) |
|
Hm, ubuntu-image in edge is failing now... |
|
There is an issue with the just merged assertions, see canonical/models#17 (comment) |
bin/ubuntu-core-initramfs
Outdated
| # remove redundant definitions after that. | ||
| check_call(["systemd-hwdb", "--root", dest_dir, | ||
| "update", "--usr", "--strict"]) | ||
| check_call(["rm -rf " + os.path.join(dest_dir, |
bin/ubuntu-core-initramfs
Outdated
| def install_systemd_files(dest_dir): | ||
| # Build list of files and directories | ||
|
|
||
| out = check_output(["dpkg", "-L", "systemd", "systemd-sysv"]) |
There was a problem hiding this comment.
It seems we have 3 places where we do dpkg -L then filtering. I wonder if we could have a function for that.
There was a problem hiding this comment.
Function added
| @@ -1 +0,0 @@ | |||
| usr/lib | |||
There was a problem hiding this comment.
What is it replaced with? I did not find it.
There was a problem hiding this comment.
This symlink is created now by dracut-install when the u-c-i script runs, so it is not necessary to include it inside the deb (same for the other symlinks I removed).
bin/ubuntu-core-initramfs
Outdated
| # This hack should be removed with PR#113 | ||
| check_call([r"sed -i '/^After=/" | ||
| r"{;s, *plymouth-start[.]service *, ,;/" | ||
| r"^After= *$$/d;}' " |
There was a problem hiding this comment.
$$? This was probably copied from the makefile.
There was a problem hiding this comment.
Good catch, extra $ removed now
bin/ubuntu-core-initramfs
Outdated
| out = check_output([bb_cmd, "--list-long"]) | ||
| cmds = out.decode("utf-8").splitlines() | ||
| # Remove command we do not want | ||
| to_remove = ["busybox", "reboot", "mount", "umount"] |
There was a problem hiding this comment.
It seems you fixed "modinfo" probably because of ordering. Now it uses kmod, But maybe we should make explicit and remove it from here.
There was a problem hiding this comment.
Excellent point, I've removed it explicitly (it was still in usr/bin, although the one in usr/sbin already pointed to kmod)
alfonsosanchezbeato
force-pushed
the
systemd-run-time
branch
from
a962469 to
660aaf9
Compare
There was a problem hiding this comment.
@valentindavid thanks for the review, comments addressed now
| @@ -1 +0,0 @@ | |||
| usr/lib | |||
There was a problem hiding this comment.
This symlink is created now by dracut-install when the u-c-i script runs, so it is not necessary to include it inside the deb (same for the other symlinks I removed).
bin/ubuntu-core-initramfs
Outdated
| def install_systemd_files(dest_dir): | ||
| # Build list of files and directories | ||
|
|
||
| out = check_output(["dpkg", "-L", "systemd", "systemd-sysv"]) |
There was a problem hiding this comment.
Function added
bin/ubuntu-core-initramfs
Outdated
| # This hack should be removed with PR#113 | ||
| check_call([r"sed -i '/^After=/" | ||
| r"{;s, *plymouth-start[.]service *, ,;/" | ||
| r"^After= *$$/d;}' " |
There was a problem hiding this comment.
Good catch, extra $ removed now
bin/ubuntu-core-initramfs
Outdated
| # remove redundant definitions after that. | ||
| check_call(["systemd-hwdb", "--root", dest_dir, | ||
| "update", "--usr", "--strict"]) | ||
| check_call(["rm -rf " + os.path.join(dest_dir, |
bin/ubuntu-core-initramfs
Outdated
| out = check_output([bb_cmd, "--list-long"]) | ||
| cmds = out.decode("utf-8").splitlines() | ||
| # Remove command we do not want | ||
| to_remove = ["busybox", "reboot", "mount", "umount"] |
There was a problem hiding this comment.
Excellent point, I've removed it explicitly (it was still in usr/bin, although the one in usr/sbin already pointed to kmod)
|
@valentindavid @xnox this is ready for another review round. |
and use it to install some of files in the initramfs.
Install systemd files from the system where the script is run instead of using the ones included in the ubuntu-core-initramfs package.
These folders get created anyway by create-initrd.
As now we pull most of the files at run time.
For clearer calls.
filtering in the script instead of by using grep.
dracut-install installs the interpreters detected in shebangs (see resolve_deps() in dracut-install.c) - but we want busybox, not the system default.
as we are interested in the run system now.
we want to avoid symbolic links.
alfonsosanchezbeato
force-pushed
the
systemd-run-time
branch
from
660aaf9 to
913abb8
Compare
Previously we were building a rootfs from files at debian package build time, and the ubuntu-core-initramfs was generating the initramfs from this file. This PR changes this script so it pulls files from other packages when invoked, instead. This removes most of the build dependencies and makes maintenance of the package easier, as it does not need to be updated when systemd or other run-time dependencies are updated anymore.