Extend generate-update-metadata() to read from /usr

[HuijingHei]

Copy Cloin's comment from #938 (comment):
Now we have:
/usr/lib/ostree-boot -> /usr/lib/bootupd/updates/EFI

With this patch, will extend
/usr/lib/efi/<component> -> /usr/lib/bootupd/updates/EFI

See #926

[HuijingHei]

Ready for reviewing now.

I did testing under fedora-bootc container, and upgrade grub2-efi-x64 shim-x64 to new, remove the old /usr/lib/bootupd/updates/* and run generate-update-metadata to create metadata.

Build new version according to #926 (comment):
grub2:
https://koji.fedoraproject.org/koji/taskinfo?taskID=133336624
shim:
https://koji.fedoraproject.org/koji/taskinfo?taskID=133341841

Download and prepare the repo

# cat myrepo.repo
[myrepo]
name=My Custom Repository
baseurl=http://localhost:8080/bootloader/
enabled=1
gpgcheck=0

Build patch

# make && make install-all DESTDIR=/srv/bootupd-test/out

Run testing under fedora-bootc container

podman run --privileged -it -v ./:/opt -w /opt -v ./tmp/myrepo.repo:/etc/yum.repos.d/myrepo.repo --net host quay.io/fedora/fedora-bootc:42 bash


bash-5.2# dnf upgrade -y grub2-efi-x64 shim-x64 --repo myrepo

bash-5.2# rpm -ql grub2-efi-x64 shim-x64 | grep usr/lib/efi
/usr/lib/efi/grub2/2.12-34.fc43/EFI/fedora/grubx64.efi
/usr/lib/efi/shim/15.8-4/EFI/BOOT/BOOTX64.EFI
/usr/lib/efi/shim/15.8-4/EFI/BOOT/fbx64.efi
/usr/lib/efi/shim/15.8-4/EFI/fedora/BOOTX64.CSV
/usr/lib/efi/shim/15.8-4/EFI/fedora/mmx64.efi
/usr/lib/efi/shim/15.8-4/EFI/fedora/shim.efi
/usr/lib/efi/shim/15.8-4/EFI/fedora/shimx64.efi

(dnf reinstall -y grub2-efi-x64 shim-x64 --repo myrepo)
bash-5.2# cp -rav out/usr /
bash-5.2# rm -rf /usr/lib/bootupd/updates/*

bash-5.2# /usr/bin/bootupctl backend generate-update-metadata / -vvv
[TRACE bootupd] executing cli
[DEBUG bootupd::ostreeutil] Using dbpath "--dbpath=/usr/lib/sysimage/rpm"
Generated update layout for BIOS: grub2-tools-1:2.12-34.fc43.x86_64
[DEBUG bootupd::ostreeutil] Using dbpath "--dbpath=/usr/lib/sysimage/rpm"
Generated update layout for EFI: grub2-efi-x64-1:2.12-34.fc43.x86_64,shim-x64-15.8-4.x86_64
[DEBUG bootupd::efi] Unmounting

### check the result:
bash-5.2# cat /usr/lib/bootupd/updates/BIOS.json 
{"timestamp":"2025-05-30T03:39:14Z","version":"grub2-tools-1:2.12-34.fc43.x86_64"} 
bash-5.2# cat /usr/lib/bootupd/updates/EFI.json 
{"timestamp":"2025-05-30T06:29:19Z","version":"grub2-efi-x64-1:2.12-34.fc43.x86_64,shim-x64-15.8-4.x86_64"}

[cgwalters]

Overall looks sane to me, a variety of comments. I don't have anything blocking.

I think we should be testing this scenario in CI, I doubt we are? I am not up to date on things, does it require us pulling in a copr?

[cgwalters]

Do you know if this this specific to the new Fedora grub/shim packages? I suspect it is...we may want to somehow make this a build time or even runtime conditional so in theory it's more pluggable/controllable by others.

I'd at least factor it out into a const somewhere that explains where it came from.

Hmm actually, this topic also strongly relates to #766 right?

[HuijingHei]

Thank you so much for the reviewing!

Do you know if this this specific to the new Fedora grub/shim packages? I suspect it is...we may want to somehow make this a build time or even runtime conditional so in theory it's more pluggable/controllable by others.

Yes.

I'd at least factor it out into a const somewhere that explains where it came from.

SGTM.

Hmm actually, this topic also strongly relates to #766 right?

Actually this is related to issue #926 (comment), but we can extend it support #766 too.

[cgwalters]

Would it be cleaner perhaps if we checked first for ostreebootdir, and migrated it to usr/lib/efi if that doesn't exist? It should be an error if both exist.

Then we get closer to thinking of the ostreebootdir one as legacy.

[cgwalters]

I think we have an opportunity here to make usr/lib/efi the standard path actually if it exists, maybe we could make things as simple as the equivalent of ln -sr /usr/lib/efi /usr/lib/bootupd/updates/EFI?

EDIT: Ah I see it's not that simple based on find_all_efi_dirs.

Hmmm...but actually I like the idea of that layout, what if we tried to adopt that as the standard and migrate our current EFI layout to it? (It'd break updates for older bootupd though...without having dual layouts for a while, ug)

[HuijingHei]

Hmmm...but actually I like the idea of that layout, what if we tried to adopt that as the standard and migrate our current EFI layout to it? (It'd break updates for older bootupd though...without having dual layouts for a while, ug)

Yes, you are right, that will break old bootupd. The current EFI.json is like:

# cat EFI.json | jq
{
  "timestamp": "2025-03-27T10:27:15Z",
  "version": "grub2-efi-x64-1:2.12-28.fc42.x86_64,shim-x64-15.8-3.x86_64"
}

We only get /usr/lib/efi/grub2/2.12-34.fc43/EFI (-> grub2-2.12-34.fc43) and /usr/lib/efi/shim/15.8-4/EFI (-> shim-15.8-4) from the path without rpmdb, does this make sense? For silverblue we install both shim-ia32 and shim-x64, it only shows once, we do not care about this if we only concerns the version.

{
  "timestamp": "<now>",
  "version": "grub2-2.12-34.fc43,shim-15.8-4"
}

When we do the update, we sync all the files under /usr/lib/bootupd/updates/EFI to /boot/efi/EFI, means we only apply once, but if there are 2 or more directories, we need to sync each EFI directory, any good suggestion for this?

[cgwalters]

BTW looking at this layout, I think we can now avoid invoking rpm to query the file information for these which would be a huge side benefit.

So again I think this relates to #766 in that perhaps we make this layout our new "API" for adding content in the ESP?

Actually thinking about things here...you know, it probably wouldn't be terribly hard to change what rpm-ostree does to automatically do this instead (via an opt-in). That'd require some coordination but the powerful benefit is we'd effectively automatically "backport" support for /usr/lib/efi even for older OSes which seems like it'd help us a lot here.

[HuijingHei]

Want to clarify this, what we currently do in generate-update-metadata() is move files under legacy ostree /usr/lib/ostree-boot/efi/EFI to /usr/lib/bootupd/updates/EFI, then invoke rpm to query the file information (need to insert the /boot/efi/EFI to get the correct path) and create EFI.json to include the package info

What we want to change is: retrieve /usr/lib/efi and get EFI path, then add the package info from path and create EFI.json. The change might be easy.

What I am concern is for the installation and update, if there are 2 or more directories, we need to change the current logic to sync each EFI directory, instead of only /usr/lib/bootupd/updates/EFI. WDYT?

[cgwalters]

What we want to change is: retrieve /usr/lib/efi and get EFI path, then add the package info from path and create EFI.json. The change might be easy.

Yeah I think so.

What I am concern is for the installation and update, if there are 2 or more directories, we need to change the current logic to sync each EFI directory, instead of only /usr/lib/bootupd/updates/EFI. WDYT?

Yeah, I think that would make sense. However it would mean we need to bridge between the current list of files in bootupd-state.json vs the split directories.

Anyways in the short term what you're doing here (not changing the payload layout) is probably what we have to do in order to retain backwards compat (i.e. older clients can upgrade).

But after this work lands it'd probably be useful to try to start some work on making /usr/lib/efi style layout be supported; something like bootupctl backend install --format-version=2 as an opt in or so.

[HuijingHei]

start some work on making /usr/lib/efi style layout be supported;

SGTM.

[say-paul]

Can we have : const LIBDIRS: &[&str] = &["grub2", "shim","."];
So that we can keep in things in /usr/lib/efi/<version>/EFI/<files> , EFI.json metadata can contain the rpm details.

[HuijingHei]

Maybe can remove the limitation and scan all EFI directories like /usr/lib/efi/<name>/<version>/EFI/<files> ?

[say-paul]

That can be one method, we would only need to find a name for putting things to esp, which is trivial.

[travier]

Let's not consider files outside of a <name>/<version> directory here as we need to be able to know "where" they come from / attach they to a package/source, even if it's user specified.

[say-paul]

is reliance on <name>/<version> to remove dependency on rpm -qf which does not work when files are copied around?

[HuijingHei]

is reliance on <name>/<version> to remove dependency on rpm -qf which does not work when files are copied around?

Yes, I think it will not work. In future, will rely on that to get meta for package.

[HuijingHei]

Look at more about #938 (comment), to clarify:

• Firstly checks /usr/lib/efi/(shim|grub)/%{version}-%{release}/EFI/ EFI path exists, then add EFI.json about the "(shim|grub)/%{version}-%{release}"

• If the path /usr/lib/efi doesn’t exist, check the legacy OSTree location /usr/lib/ostree-boot/efi/EFI/, use rpm to query the files and translate them like /usr/lib/efi/(shim|grub)/%{version}-%{release}/EFI/, then add EFI.json about the "(shim|grub)/%{version}-%{release}"

• For the installed /boot/efi files, use rpm to query the files and translate them to /usr/lib/efi/(firmware)/%{version}-%{release}/EFI/boot/efi/*, also append EFI.json about "(firmware)/%{version}-%{release}", like:

{
  "timestamp": "2025-03-27T10:27:59Z",
  "version": "grub2-2.12-28.fc42,shim-15.8-3,bcm2711-firmware-20250319-1.80f23d4.fc42,bcm2835-firmware-20250319-1.80f23d4.fc42,bcm283x-firmware-20250319-1.80f23d4.fc42,bcm283x-overlays-20250319-1.80f23d4.fc42"
}
bash-5.2# dnf install -y bcm2711-firmware
Package                                                   Arch           Version                                                   Repository                            Size
Installing:
 bcm2711-firmware                                         aarch64        20250319-1.80f23d4.fc42                                   fedora                            10.3 MiB
Installing dependencies:
 bcm2835-firmware                                         aarch64        20250319-1.80f23d4.fc42                                   fedora                            12.1 MiB
 bcm283x-firmware                                         aarch64        20250319-1.80f23d4.fc42                                   fedora                            73.6 KiB
 bcm283x-overlays                                         aarch64        20250319-1.80f23d4.fc42                                   fedora                             1.0 MiB
...
bash-5.2# find /boot/efi/ -type f -exec rpm -qf {} \; 2>/dev/null | sort | uniq
bcm2711-firmware-20250319-1.80f23d4.fc42.aarch64
bcm2835-firmware-20250319-1.80f23d4.fc42.aarch64
bcm283x-firmware-20250319-1.80f23d4.fc42.aarch64
bcm283x-overlays-20250319-1.80f23d4.fc42.aarch64

Consequently, need to change the install to copy each directory to the destination "/boot/efi". WDYT?

[say-paul]

@HuijingHei thank you for thinking this through, looks pretty exhaustive and cover most of the use-cases.
Though I would also like to point one more use cases:
Its related to the peculiarities of how rpi boot function works:
It requires the uboot binary to be in esp which means:

[root@192 ~]# rpm -ql uboot-images-armv8 | grep rpi
/usr/share/uboot/rpi_arm64
/usr/share/uboot/rpi_arm64/u-boot.bin

u-boot.bin has to moved to /boot/efi .
Suggestion:
generate-update-metadata to accept any source_location(in this case:/usr/share/uboot/rpi_arm64)
and followed by your suggest method for /boot/efi files.

[HuijingHei]

generate-update-metadata to accept any source_location(in this case:/usr/share/uboot/rpi_arm64)

Not sure how to point the file /usr/share/uboot/rpi_arm64/u-boot.bin precisely, or we only care about it? I see there are many u-boot.bin under different directories.

[say-paul]

Not sure how to point the file

I see this in cli/bootupd.rs is restricted to / for now:

 pub(crate) fn run_generate_meta(opts: GenerateOpts) -> Result<()> {
        let sysroot = opts.sysroot.as_deref().unwrap_or("/");
        if sysroot != "/" {
            anyhow::bail!("Using a non-default sysroot is not supported: {}", sysroot);
        }
        bootupd::generate_update_metadata(sysroot).context("generating metadata failed")?;
        Ok(())
     }

I see there are many u-boot.bin under different directories.

The package installs the binary for all the boards, but rpi needs it be in /boot/efi

Also want to understand what will happen if: cp /usr/share/uboot/rpi_arm64/u-boot.bin /boot/efi/u-boot.bin is run before generate-update-metadata() is executed, as rpm -qf will show "not owned by any package", will it still be moved to /usr/lib/efi/firmware?

[HuijingHei]

The package installs the binary for all the boards, but rpi needs it be in /boot/efi

Also want to understand what will happen if: cp /usr/share/uboot/rpi_arm64/u-boot.bin /boot/efi/u-boot.bin is run before generate-update-metadata() is executed, as rpm -qf will show "not owned by any package", will it still be moved to /usr/lib/efi/firmware?

I think probably no, as it can not find the correct path.

[cgwalters]

One option is move the EFI content to /usr/lib/bootupd/updates and make bootupd works like before, and change in later PR teach bootupd to use new dir.

Yes per previous discussion it's a backwards incompatible change to use the new path - the old bootupd (before this PR) won't know what to do with data generated by bootupd after this PR.

Let's define some terms here:

Layouts:

/boot/efi/EFI

The default place for Fedora grub/shim RPM packages.

/usr/lib/ostree-boot

Where rpm-ostree moves the above to by default today and what bootupd consumes.

/usr/lib/bootupd/updates/EFI

This is content owned by bootupd.

/usr/lib/efi/<component>/<version>

What the proposed new Fedora layout uses (and we could try to champion cross-OS/distro).

---

So for now we need to go:

/usr/lib/ostree-boot -> /usr/lib/bootupd/updates/EFI
/usr/lib/efi/<component> -> /usr/lib/bootupd/updates/EFI

But ideally in a future PR we teach bootupd to also know how to directly check for updates in /usr/lib/efi/<component> for EFI. We'll need to ship the code that knows how to consume those long before people can switch the default though.

[HuijingHei]

But ideally in a future PR we teach bootupd to also know how to directly check for updates in /usr/lib/efi/ for EFI. We'll need to ship the code that knows how to consume those long before people can switch the default though.

Will do this in future PR.

[HuijingHei]

So for now we need to go:

/usr/lib/ostree-boot -> /usr/lib/bootupd/updates/EFI
/usr/lib/efi/ -> /usr/lib/bootupd/updates/EFI

Build new version according to #926 (comment):
grub2:
https://koji.fedoraproject.org/koji/taskinfo?taskID=134842651
shim:
https://koji.fedoraproject.org/koji/taskinfo?taskID=134842657

Do testing in fedora-bootc, failed with the new shim:

bash-5.2# bootupctl backend generate-update-metadata -vvv
[TRACE bootupd] executing cli
[DEBUG bootupd::ostreeutil] Using dbpath "--dbpath=/usr/lib/sysimage/rpm"
[src/packagesystem.rs:58:9] &arg = "/usr/sbin/grub2-install"
Generated update layout for BIOS: grub2-tools-1:2.12-32.fc42.x86_64
[DEBUG bootupd::ostreeutil] Using dbpath "--dbpath=/usr/lib/sysimage/rpm"
[src/packagesystem.rs:58:9] &arg = "/boot/efi/EFI//fedora/BOOTX64.CSV"
[src/packagesystem.rs:58:9] &arg = "/boot/efi/EFI//BOOT/BOOTX64.EFI"
[src/packagesystem.rs:58:9] &arg = "/boot/efi/EFI//fedora/mmx64.efi"
[src/packagesystem.rs:58:9] &arg = "/boot/efi/EFI//BOOT/fbx64.efi"
[src/packagesystem.rs:58:9] &arg = "/boot/efi/EFI//fedora/shim.efi"
[src/packagesystem.rs:58:9] &arg = "/boot/efi/EFI//fedora/shimx64.efi"
[DEBUG bootupd::efi] Unmounting
error: generating metadata failed: Failed to invoke rpm -qf

bash-5.2# rpm -qf /boot/efi/EFI//fedora/BOOTX64.CSV /boot/efi/EFI//BOOT/BOOTX64.EFI /boot/efi/EFI//fedora/mmx64.efi /boot/efi/EFI//BOOT/fbx64.efi /boot/efi/EFI//fedora/shim.efi /boot/efi/EFI//fedora/shimx64.efi
shim-x64-15.8-4.x86_64
file /boot/efi/EFI/BOOT/BOOTX64.EFI is not owned by any package
file /boot/efi/EFI/fedora/mmx64.efi is not owned by any package
file /boot/efi/EFI/BOOT/fbx64.efi is not owned by any package
shim-x64-15.8-4.x86_64
file /boot/efi/EFI/fedora/shimx64.efi is not owned by any package

bash-5.2# rpm -ql shim-x64-15.8-4.x86_64
/boot/efi/EFI/BOOT/*X64.EFI
/boot/efi/EFI/BOOT/*x64.efi
/boot/efi/EFI/fedora/*x64*.efi
/boot/efi/EFI/fedora/BOOTX64.CSV
/boot/efi/EFI/fedora/shim.efi
/etc/dnf/protected.d/shim.conf
/usr/lib/bootloader/install_bootloader
/usr/lib/efi/shim/15.8-4/EFI/BOOT/BOOTX64.EFI
/usr/lib/efi/shim/15.8-4/EFI/BOOT/fbx64.efi
/usr/lib/efi/shim/15.8-4/EFI/fedora/BOOTX64.CSV
/usr/lib/efi/shim/15.8-4/EFI/fedora/mmx64.efi
/usr/lib/efi/shim/15.8-4/EFI/fedora/shim.efi
/usr/lib/efi/shim/15.8-4/EFI/fedora/shimx64.efi

Edit:
The workaround maybe use the path to get info instead of invoke rpm.

[HuijingHei]

Updated to use path instead of rpm when testing using new shim & grub

podman run --privileged -it -v ./:/opt -w /opt -v ./tmp/myrepo.repo:/etc/yum.repos.d/myrepo.repo --net host quay.io/fedora/fedora-bootc:42 bash
bash-5.2# cp -rav /opt/bootupd-test/out/usr /
bash-5.2# rm -rf /usr/lib/bootupd/updates/*
bash-5.2# dnf upgrade -y grub2-efi-x64 shim-x64 --repo myrepo
bash-5.2# bootupctl backend generate-update-metadata -vvv
[TRACE bootupd] executing cli
[DEBUG bootupd::ostreeutil] Using dbpath "--dbpath=/usr/lib/sysimage/rpm"
Generated update layout for BIOS: grub2-tools-1:2.12-34.fc43.x86_64
Generated update layout for EFI: grub2-2.12-34.fc43,shim-15.8-4
[DEBUG bootupd::efi] Unmounting
bash-5.2# cat /usr/lib/bootupd/updates/BIOS.json
{"timestamp":"2025-07-15T13:57:09Z","version":"grub2-tools-1:2.12-34.fc43.x86_64"}
bash-5.2# cat /usr/lib/bootupd/updates/EFI.json
{"timestamp":"2025-07-16T07:22:20.290457693Z","version":"grub2-2.12-34.fc43,shim-15.8-4"}

See the EFI.json is a little different from before

bash-5.2# cat /usr/lib/bootupd/updates/EFI.json
{"timestamp":"2025-06-17T16:35:00Z","version":"grub2-efi-x64-1:2.12-32.fc42.x86_64,shim-x64-15.8-3.x86_64"}

[HuijingHei]

One issue about this PR is the old timestamp 1970-01-01T00:00:00Z, which might hit #933 when upgrade.

    "EFI": {
      "meta": {
        "timestamp": "1970-01-01T00:00:00Z",
        "version": "grub2-2.12-34.fc43,shim-15.8-4"
      },