Skip to content

Commit

Permalink
refactor: improve support for ostree systems
Browse files Browse the repository at this point in the history
The dependency on `ansible.utils.update_fact` is causing issue with
some users who now must install that collection in order to run
the role, even if they do not care about ostree.

The fix is to stop trying to set `ansible_facts.pkg_mgr`, and instead
force the use of the ostree package manager with the `package:` module
`use:` option.  The strategy is - on ostree systems, set the flag
`__$ROLENAME_is_ostree` if the system is an ostree system.  The flag
will either be undefined or `false` on non-ostree systems.
Then, change every invocation of the `package:` module like this:

```yaml
- name: Ensure required packages are present
  package:
    name: "{{ __$ROLENAME_packages }}"
    state: present
    use: "{{ (__$ROLENAME_is_ostree | d(false)) |
      ternary('ansible.posix.rhel_rpm_ostree', omit) }}"
```

This should ensure that the `use:` parameter is not used if the system
is non-ostree.  The goal is to make the ostree support as unobtrusive
as possible for non-ostree systems.
The user can also set `__$ROLENAME_is_ostree: true` in the inventory or play
if the user knows that ostree is being used and wants to skip the check.
Or, the user is concerned about the performance hit for ostree detection
on non-ostree systems, and sets `__$ROLENAME_is_ostree: false` to skip
the check.
The flag `__$ROLENAME_is_ostree` can also be used in the role or tests to
include or exclude tasks from being run on ostree systems.

This fix also improves error reporting in the `get_ostree_data.sh` script
when included roles cannot be found.

Signed-off-by: Rich Megginson <[email protected]>
  • Loading branch information
richm committed Nov 29, 2023
1 parent 7c83449 commit 852bd29
Show file tree
Hide file tree
Showing 13 changed files with 47 additions and 27 deletions.
29 changes: 19 additions & 10 deletions .ostree/get_ostree_data.sh
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,6 @@

set -euo pipefail

role_collection_dir="${ROLE_COLLECTION_DIR:-fedora/linux_system_roles}"
ostree_dir="${OSTREE_DIR:-"$(dirname "$(realpath "$0")")"}"

if [ -z "${4:-}" ] || [ "${1:-}" = help ] || [ "${1:-}" = -h ]; then
Expand All @@ -29,7 +28,7 @@ if [ "$pkgtype" = testing ]; then
fi

get_rolepath() {
local ostree_dir role rolesdir roles_parent_dir
local ostree_dir role rolesdir roles_parent_dir coll_path pth
ostree_dir="$1"
role="$2"
roles_parent_dir="$(dirname "$(dirname "$ostree_dir")")"
Expand All @@ -47,16 +46,22 @@ get_rolepath() {
fi
done
# look elsewhere
if [ -n "${ANSIBLE_COLLECTIONS_PATHS:-}" ]; then
for pth in ${ANSIBLE_COLLECTIONS_PATHS//:/ }; do
rolesdir="$pth/ansible_collections/$role_collection_dir/roles/$role/.ostree"
if [ -d "$rolesdir" ]; then
echo "$rolesdir"
return 0
fi
coll_path="${ANSIBLE_COLLECTIONS_PATH:-}"
if [ -z "$coll_path" ]; then
coll_path="${ANSIBLE_COLLECTIONS_PATHS:-}"
fi
if [ -n "${coll_path}" ]; then
for pth in ${coll_path//:/ }; do
for rolesdir in "$pth"/ansible_collections/*/*_system_roles/roles/"$role"/.ostree; do
if [ -d "$rolesdir" ]; then
echo "$rolesdir"
return 0
fi
done
done
fi
return 1
1>&2 echo ERROR - could not find role "$role" - please use ANSIBLE_COLLECTIONS_PATH
exit 2
}

get_packages() {
Expand All @@ -75,6 +80,10 @@ get_packages() {
roles="$(cat "$rolefile")"
for role in $roles; do
rolepath="$(get_rolepath "$ostree_dir" "$role")"
if [ -z "$rolepath" ]; then
1>&2 echo ERROR - could not find role "$role" - please use ANSIBLE_COLLECTIONS_PATH
exit 2
fi
get_packages "$rolepath"
done
fi
Expand Down
1 change: 0 additions & 1 deletion meta/collection-requirements.yml
Original file line number Diff line number Diff line change
@@ -1,4 +1,3 @@
---
collections:
- name: ansible.posix
- name: ansible.utils
2 changes: 2 additions & 0 deletions tasks/enable_coprs.yml
Original file line number Diff line number Diff line change
Expand Up @@ -13,6 +13,8 @@
- name: Make sure COPR support packages are present
package:
name: "{{ _storage_copr_support_packages }}"
use: "{{ (__storage_is_ostree | d(false)) |
ternary('ansible.posix.rhel_rpm_ostree', omit) }}"
when: install_copr | d(false) | bool

- name: Enable COPRs
Expand Down
4 changes: 4 additions & 0 deletions tasks/main-blivet.yml
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,8 @@
package:
name: "{{ blivet_package_list }}"
state: present
use: "{{ (__storage_is_ostree | d(false)) |
ternary('ansible.posix.rhel_rpm_ostree', omit) }}"
when: storage_skip_checks is not defined or
not "blivet_available" in storage_skip_checks

Expand Down Expand Up @@ -40,6 +42,8 @@
package:
name: "{{ package_info.packages + extra_pkgs }}"
state: present
use: "{{ (__storage_is_ostree | d(false)) |
ternary('ansible.posix.rhel_rpm_ostree', omit) }}"
when: storage_skip_checks is not defined or
not "packages_installed" in storage_skip_checks
vars:
Expand Down
18 changes: 6 additions & 12 deletions tasks/set_vars.yml
Original file line number Diff line number Diff line change
Expand Up @@ -20,20 +20,14 @@
__vars_file: "{{ role_path }}/vars/{{ item }}"
when: __vars_file is file

- name: Ensure correct package manager for ostree systems
vars:
ostree_pkg_mgr: ansible.posix.rhel_rpm_ostree
ostree_booted_file: /run/ostree-booted
when: ansible_facts.pkg_mgr | d("") != ostree_pkg_mgr
- name: Determine if system is ostree and set flag
when: not __storage_is_ostree is defined
block:
- name: Check if system is ostree
stat:
path: "{{ ostree_booted_file }}"
path: /run/ostree-booted
register: __ostree_booted_stat

- name: Set package manager to use for ostree
ansible.utils.update_fact:
updates:
- path: ansible_facts.pkg_mgr
value: "{{ ostree_pkg_mgr }}"
when: __ostree_booted_stat.stat.exists
- name: Set flag to indicate system is ostree
set_fact:
__storage_is_ostree: "{{ __ostree_booted_stat.stat.exists }}"
2 changes: 2 additions & 0 deletions tests/get_unused_disk.yml
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,8 @@
package:
name: "{{ test_packages }}"
state: present
use: "{{ (__storage_is_ostree | d(false)) |
ternary('ansible.posix.rhel_rpm_ostree', omit) }}"
vars:
# util-linux needed for lsblk, findmnt, etc.
test_packages: "{{ ['util-linux-core']
Expand Down
2 changes: 2 additions & 0 deletions tests/test-verify-volume-encryption.yml
Original file line number Diff line number Diff line change
Expand Up @@ -11,6 +11,8 @@
package:
name: cryptsetup
state: present
use: "{{ (__storage_is_ostree | d(false)) |
ternary('ansible.posix.rhel_rpm_ostree', omit) }}"

- name: Collect LUKS info for this volume
command: cryptsetup luksDump {{ storage_test_volume._raw_device }}
Expand Down
3 changes: 1 addition & 2 deletions tests/test-verify-volume-mount.yml
Original file line number Diff line number Diff line change
Expand Up @@ -31,8 +31,7 @@
storage_test_volume.fs_type == 'swap' else 0 }}"
vars:
# assumes /opt which is /var/opt in ostree
mount_prefix: "{{ '/var'
if ansible_facts.pkg_mgr == 'ansible.posix.rhel_rpm_ostree'
mount_prefix: "{{ '/var' if __storage_is_ostree | d(false)
and storage_test_volume.mount_point
and storage_test_volume.mount_point.startswith('/opt') else '' }}"

Expand Down
2 changes: 2 additions & 0 deletions tests/tests_luks.yml
Original file line number Diff line number Diff line change
Expand Up @@ -36,6 +36,8 @@
package:
name: dracut-fips
state: present
use: "{{ (__storage_is_ostree | d(false)) |
ternary('ansible.posix.rhel_rpm_ostree', omit) }}"

- name: Configure boot for FIPS
changed_when: false
Expand Down
2 changes: 2 additions & 0 deletions tests/tests_luks_pool.yml
Original file line number Diff line number Diff line change
Expand Up @@ -39,6 +39,8 @@
package:
name: dracut-fips
state: present
use: "{{ (__storage_is_ostree | d(false)) |
ternary('ansible.posix.rhel_rpm_ostree', omit) }}"

- name: Configure boot for FIPS
changed_when: false
Expand Down
2 changes: 2 additions & 0 deletions tests/tests_lvm_auto_size_cap.yml
Original file line number Diff line number Diff line change
Expand Up @@ -39,6 +39,8 @@
package:
name: bc
state: present
use: "{{ (__storage_is_ostree | d(false)) |
ternary('ansible.posix.rhel_rpm_ostree', omit) }}"

- name: Run bc 2 * {{ test_disk_size }}
command:
Expand Down
5 changes: 3 additions & 2 deletions tests/tests_safe_mode_check.yml
Original file line number Diff line number Diff line change
Expand Up @@ -36,9 +36,10 @@
block:
- name: Install package
package:
name:
- nilfs-utils
name: nilfs-utils
state: present
use: "{{ (__storage_is_ostree | d(false)) |
ternary('ansible.posix.rhel_rpm_ostree', omit) }}"
rescue:
- name: Set skip rest true
set_fact:
Expand Down
2 changes: 2 additions & 0 deletions tests/verify-pool-member-encryption.yml
Original file line number Diff line number Diff line change
Expand Up @@ -13,6 +13,8 @@
package:
name: cryptsetup
state: present
use: "{{ (__storage_is_ostree | d(false)) |
ternary('ansible.posix.rhel_rpm_ostree', omit) }}"

- name: Collect LUKS info for this member
command: cryptsetup luksDump {{ _storage_test_member_backing_dev.stdout }}
Expand Down

0 comments on commit 852bd29

Please sign in to comment.