diff --git a/modules.json b/modules.json index 66afaa8..b597ad2 100644 --- a/modules.json +++ b/modules.json @@ -10,6 +10,7 @@ "https://raw.githubusercontent.com/blue-build/modules/main/modules/gschema-overrides/module.yml", "https://raw.githubusercontent.com/blue-build/modules/main/modules/justfiles/module.yml", "https://raw.githubusercontent.com/blue-build/modules/main/modules/rpm-ostree/module.yml", + "https://raw.githubusercontent.com/blue-build/modules/main/modules/dnf/module.yml", "https://raw.githubusercontent.com/blue-build/modules/main/modules/initramfs/module.yml", "https://raw.githubusercontent.com/blue-build/modules/main/modules/script/module.yml", "https://raw.githubusercontent.com/blue-build/modules/main/modules/signing/module.yml", diff --git a/modules/dnf/README.md b/modules/dnf/README.md new file mode 100644 index 0000000..ad353a4 --- /dev/null +++ b/modules/dnf/README.md @@ -0,0 +1,70 @@ +# `dnf` + +The [`dnf`](https://docs.fedoraproject.org/en-US/quick-docs/dnf/) module offers pseudo-declarative package and repository management using `dnf`. + +The module first downloads the repository files from URLs declared under `repos:` into `/etc/yum.repos.d/`. The magic string `%OS_VERSION%` can be substituted with the current VERSION_ID (major Fedora version), which can be used, for example, for pulling correct versions of repositories which have fixed Fedora version in the URL. + +You can also add repository files directly into your git repository if URLs are not provided. For example: +```yml +repos: + - my-repository.repo # copies in .repo file from files/dnf/my-repository.repo to /etc/yum.repos.d/ +``` + +Specific COPR repositories can also be specified in `user/project` format in `copr:` array. + +If you use a repo that requires adding custom keys (eg. Brave Browser), you can import the keys by declaring the key URLs under `keys:`. The magic string acts the same as it does in `repos`. + +Then the module installs the packages declared under `install:` using `dnf -y install --refresh`, it removes the packages declared under `remove:` using `dnf -y remove`. If there are packages declared under both `install:` and `remove:` then removal is performed 1st & install 2nd. + +Installing RPM packages directly from a `http(s)` url that points to the RPM file is also supported, you can just put the URLs under `install:` and they'll be installed along with the other packages. The magic string `%OS_VERSION%` is substituted with the current VERSION_ID (major Fedora version) like with the `repos:` property. + +If an RPM is not available in a repository or as an URL, you can also install it directly from a file in your git repository. For example: +```yml +install: + - weird-package.rpm # tries to install files/dnf/weird-package.rpm +``` + +Additionally, the `dnf` module supports a fix for packages that install into `/opt/`. Installation for packages that install into folder names declared under `optfix:` are fixed using some symlinks. Directory path in `/opt/` for those packages should be provided in recipe, like in Example Configuration. + +There is an option to install & remove RPM groups if desired in `group-install:` & `group-remove:`. RPM groups removal & installation always run before packages removal & installation. To see the list of all available RPM groups, you can use `dnf group list` command. + +The module can also replace base RPM packages with packages from any repo. Under `replace:`, the module finds every pair of keys `- from-repo:` and `packages:`. (Multiple pairs are supported.) The module uses `- from-repo:` key to gather the repo for package replacement, then it replaces packages declared under `packages:` using the command `dnf -y distro-sync --refresh --repo "${repo}" "${packages}"`. The magic string `%OS_VERSION%` is substituted with the current VERSION_ID (major Fedora version) as already said above. You need to assure that you provided the repo in `repos:` before using replacement functionality. To gather the repo ID that you need to input, you can use `dnf repo list` command. + +:::note +[Removed packages are still present in the underlying ostree repository](https://coreos.github.io/rpm-ostree/administrator-handbook/#removing-a-base-package), what `remove` does is kind of like hiding them from the system, it doesn't free up storage space. +::: + +## `dnf` behavior options + +There are several options that can be enabled during the package/group install + removal & during package replace, which modify the behavior of the package manager during those operations. + +Those include: + +Install operation: + - `install-weak-dependencies` (`--setopt=install_weak_deps=True/False` flag) + - `skip-unavailable-packages` (`--skip-unavailable` flag) + - `skip-broken-packages` (`--skip-broken` flag) + - `allow-erasing-packages` (`--allowerasing` flag) + +Remove operation: + - `remove-unused-dependencies` (`--no-autoremove` flag) + + +### `dnf` install/replace behavior options + +#### `install-weak-dependencies` +`install-weak-dependencies` option is used to enable or disable installation of weak dependencies for every install & replace operation. By default, this option is true, which means that weak dependencies are installed by default. Which kind of dependencies are considered weak can be seen [here](https://docs.fedoraproject.org/en-US/packaging-guidelines/WeakDependencies/). + +#### `skip-unavailable-packages` +`skip-unavailable-packages` option is used to continue or abort install/replace operation if there are no packages available in the repo in install operation, or if they are not available in the system in replace operation. By default, this option is false, which means that install/replace operation aborts in case of unavailable packages. + +#### `skip-broken-packages` +`skip-broken-packages` option is used to continue or abort install/replace operation if there are broken packages in the system. By default, this option is false, which means that install/replace operation aborts in case of broken packages. + +#### `allow-erasing-packages` +`allow-erasing-packages` option is used to allow erasing/removing problematic packages if they cause issues in install/replace operation. By default, this option is false, which means that problematic packages won't be removed & operation will be aborted. + +### `dnf` package (non-group) removal behavior options + +#### `remove-unused-dependencies` +`remove-unused-dependencies` option is used to control the behavior of removing unused dependencies when some main packages are removed. By default, this option is true. Only compatible with removing packages, not compatible with removing RPM groups. \ No newline at end of file diff --git a/modules/dnf/dnf.sh b/modules/dnf/dnf.sh new file mode 100644 index 0000000..2cff5eb --- /dev/null +++ b/modules/dnf/dnf.sh @@ -0,0 +1,300 @@ +#!/usr/bin/env bash + +# Tell build process to exit if there are any errors. +set -euo pipefail + +# Fail the build if dnf5 isn't installed +if ! rpm -q dnf5 &>/dev/null; then + echo "ERROR: Main dependency 'dnf5' is not installed. Install 'dnf5' before using this module to solve this error." + exit 1 +fi + +# Pull in repos +get_json_array REPOS 'try .["repos"][]' "${1}" +if [[ ${#REPOS[@]} -gt 0 ]]; then + echo "Adding repositories" + # Substitute %OS_VERSION% & remove newlines/whitespaces from all repo entries + for i in "${!REPOS[@]}"; do + repo="${REPOS[$i]}" + repo="${repo//%OS_VERSION%/${OS_VERSION}}" + REPOS[$i]="${repo//[$'\t\r\n ']}" + done + # dnf config-manager doesn't support adding multiple repositories at once, hence why for/done loop is used + for repo in "${REPOS[@]}"; do + if [[ "${repo}" =~ ^https?:\/\/.* ]]; then + echo "Adding repository URL: '${repo}'" + dnf -y config-manager addrepo --from-repofile="${repo}" + elif [[ "${repo}" == *".repo" ]] && [[ -f "${CONFIG_DIRECTORY}/dnf/${repo}" ]]; then + echo "Adding repository file: '${repo##*/}'" + dnf -y config-manager addrepo --from-repofile="${CONFIG_DIRECTORY}/dnf/${repo}" + fi + done +fi + +# Pull in COPR repos +get_json_array COPR_REPOS 'try .["copr"][]' "${1}" +if [[ ${#COPR_REPOS[@]} -gt 0 ]]; then + echo "Adding COPR repositories" + for repo in "${COPR_REPOS[@]}"; do + if [[ "${repo}" == *"/"* ]]; then + echo "Adding COPR repository: '${repo}'" + dnf -y copr enable "${repo}" + else + echo "ERROR: You didn't provide COPR repository in proper format, it should be in 'user/project' format." + exit 1 + fi + done +fi + +# Install RPM keys if they are provided +get_json_array KEYS 'try .["keys"][]' "${1}" +if [[ ${#KEYS[@]} -gt 0 ]]; then + echo "Adding keys" + for KEY in "${KEYS[@]}"; do + KEY="${KEY//%OS_VERSION%/${OS_VERSION}}" + rpm --import "${KEY//[$'\t\r\n ']}" + done +fi + +# Create symlinks to fix packages that create directories in /opt +get_json_array OPTFIX 'try .["optfix"][]' "${1}" +if [[ ${#OPTFIX[@]} -gt 0 ]]; then + echo "Creating symlinks to fix packages that install to /opt" + # Create symlink for /opt to /var/opt since it is not created in the image yet + mkdir -p "/var/opt" + ln -snf "/var/opt" "/opt" + # Create symlinks for each directory specified in recipe.yml + for OPTPKG in "${OPTFIX[@]}"; do + OPTPKG="${OPTPKG%\"}" + OPTPKG="${OPTPKG#\"}" + mkdir -p "/usr/lib/opt/${OPTPKG}" + ln -s "../../usr/lib/opt/${OPTPKG}" "/var/opt/${OPTPKG}" + echo "Created symlinks for ${OPTPKG}" + done +fi + +# Install & remove group packages +get_json_array GROUP_INSTALL 'try .["group-install"].["packages"][]' "${1}" +get_json_array GROUP_REMOVE 'try .["group-remove"].["packages"][]' "${1}" + +# Get if 'install-weak-dependencies' is provided for group-install +WEAK_DEPENDENCIES=$(echo "${1}" | jq -r 'try .["group-install"].["install-weak-dependencies"]') + +if [[ -z "${WEAK_DEPENDENCIES}" ]] || [[ "${WEAK_DEPENDENCIES}" == "null" ]] || [[ "${WEAK_DEPENDENCIES}" == "true" ]]; then + WEAK_DEPS_FLAG="--setopt=install_weak_deps=True" +elif [[ "${WEAK_DEPENDENCIES}" == "false" ]]; then + WEAK_DEPS_FLAG="--setopt=install_weak_deps=False" +fi + +# Get if 'skip-unavailable-packages' is provided for group-install +SKIP_UNAVAILABLE=$(echo "${1}" | jq -r 'try .["group-install"].["skip-unavailable-packages"]') + +if [[ -z "${SKIP_UNAVAILABLE}" ]] || [[ "${SKIP_UNAVAILABLE}" == "null" ]] || [[ "${SKIP_UNAVAILABLE}" == "false" ]]; then + SKIP_UNAVAILABLE_FLAG="" +elif [[ "${SKIP_UNAVAILABLE}" == "true" ]]; then + SKIP_UNAVAILABLE_FLAG="--skip-unavailable" +fi + +# Get if 'skip-broken-packages' is provided for group-install +SKIP_BROKEN=$(echo "${1}" | jq -r 'try .["group-install"].["skip-broken-packages"]') + +if [[ -z "${SKIP_BROKEN}" ]] || [[ "${SKIP_BROKEN}" == "null" ]] || [[ "${SKIP_BROKEN}" == "false" ]]; then + SKIP_BROKEN_FLAG="" +elif [[ "${SKIP_BROKEN}" == "true" ]]; then + SKIP_BROKEN_FLAG="--skip-broken" +fi + +# Get if 'allow-erasing-packages' is provided for group-install +ALLOW_ERASING=$(echo "${1}" | jq -r 'try .["group-install"].["allow-erasing-packages"]') + +if [[ -z "${ALLOW_ERASING}" ]] || [[ "${ALLOW_ERASING}" == "null" ]] || [[ "${ALLOW_ERASING}" == "false" ]]; then + ALLOW_ERASING_FLAG="" +elif [[ "${ALLOW_ERASING}" == "true" ]]; then + ALLOW_ERASING_FLAG="--allowerasing" +fi + +if [[ ${#GROUP_INSTALL[@]} -gt 0 && ${#GROUP_REMOVE[@]} -gt 0 ]]; then + echo "Removing & Installing RPM groups" + echo "Removing: ${GROUP_REMOVE[*]}" + echo "Installing: ${GROUP_INSTALL[*]}" + dnf -y group remove "${GROUP_REMOVE[@]}" + dnf -y ${WEAK_DEPS_FLAG} group install --refresh ${SKIP_UNAVAILABLE_FLAG} ${SKIP_BROKEN_FLAG} ${ALLOW_ERASING_FLAG} "${GROUP_INSTALL[@]}" +elif [[ ${#GROUP_INSTALL[@]} -gt 0 ]]; then + echo "Installing RPM groups" + echo "Installing: ${GROUP_INSTALL[*]}" + dnf -y ${WEAK_DEPS_FLAG} group install --refresh ${SKIP_UNAVAILABLE_FLAG} ${SKIP_BROKEN_FLAG} ${ALLOW_ERASING_FLAG} "${GROUP_INSTALL[@]}" +elif [[ ${#GROUP_REMOVE[@]} -gt 0 ]]; then + echo "Removing RPM groups" + echo "Removing: ${GROUP_REMOVE[*]}" + dnf -y group remove "${GROUP_REMOVE[@]}" +fi + +get_json_array INSTALL_PKGS 'try .["install"].["packages"][]' "${1}" +get_json_array REMOVE_PKGS 'try .["remove"].["packages"][]' "${1}" + +# Get if 'install-weak-dependencies' is provided for package install +WEAK_DEPENDENCIES=$(echo "${1}" | jq -r 'try .["install"].["install-weak-dependencies"]') + +if [[ -z "${WEAK_DEPENDENCIES}" ]] || [[ "${WEAK_DEPENDENCIES}" == "null" ]] || [[ "${WEAK_DEPENDENCIES}" == "true" ]]; then + WEAK_DEPS_FLAG="--setopt=install_weak_deps=True" +elif [[ "${WEAK_DEPENDENCIES}" == "false" ]]; then + WEAK_DEPS_FLAG="--setopt=install_weak_deps=False" +fi + +# Get if 'skip-unavailable-packages' is provided for package install +SKIP_UNAVAILABLE=$(echo "${1}" | jq -r 'try .["install"].["skip-unavailable-packages"]') + +if [[ -z "${SKIP_UNAVAILABLE}" ]] || [[ "${SKIP_UNAVAILABLE}" == "null" ]] || [[ "${SKIP_UNAVAILABLE}" == "false" ]]; then + SKIP_UNAVAILABLE_FLAG="" +elif [[ "${SKIP_UNAVAILABLE}" == "true" ]]; then + SKIP_UNAVAILABLE_FLAG="--skip-unavailable" +fi + +# Get if 'skip-broken-packages' is provided for package install +SKIP_BROKEN=$(echo "${1}" | jq -r 'try .["install"].["skip-broken-packages"]') + +if [[ -z "${SKIP_BROKEN}" ]] || [[ "${SKIP_BROKEN}" == "null" ]] || [[ "${SKIP_BROKEN}" == "false" ]]; then + SKIP_BROKEN_FLAG="" +elif [[ "${SKIP_BROKEN}" == "true" ]]; then + SKIP_BROKEN_FLAG="--skip-broken" +fi + +# Get if 'allow-erasing-packages' is provided for package install +ALLOW_ERASING=$(echo "${1}" | jq -r 'try .["install"].["allow-erasing-packages"]') + +if [[ -z "${ALLOW_ERASING}" ]] || [[ "${ALLOW_ERASING}" == "null" ]] || [[ "${ALLOW_ERASING}" == "false" ]]; then + ALLOW_ERASING_FLAG="" +elif [[ "${ALLOW_ERASING}" == "true" ]]; then + ALLOW_ERASING_FLAG="--allowerasing" +fi + +# Get if 'remove-unused-dependencies' is provided for package removal +REMOVE_UNUSED_DEPS=$(echo "${1}" | jq -r 'try .["remove"].["remove-unused-dependencies"]') + +if [[ -z "${REMOVE_UNUSED_DEPS}" ]] || [[ "${REMOVE_UNUSED_DEPS}" == "null" ]] || [[ "${REMOVE_UNUSED_DEPS}" == "true" ]]; then + REMOVE_UNUSED_DEPS_FLAG="" +elif [[ "${REMOVE_UNUSED_DEPS}" == "false" ]]; then + REMOVE_UNUSED_DEPS_FLAG="--no-autoremove" +fi + +CLASSIC_INSTALL=false +HTTPS_INSTALL=false +LOCAL_INSTALL=false + +# Sort classic, URL & local install packages +if [[ ${#INSTALL_PKGS[@]} -gt 0 ]]; then + for i in "${!INSTALL_PKGS[@]}"; do + PKG="${INSTALL_PKGS[$i]}" + if [[ "${PKG}" =~ ^https?:\/\/.* ]]; then + INSTALL_PKGS[$i]="${PKG//%OS_VERSION%/${OS_VERSION}}" + HTTPS_INSTALL=true + HTTPS_PKGS+=("${INSTALL_PKGS[$i]}") + elif [[ ! "${PKG}" =~ ^https?:\/\/.* ]] && [[ -f "${CONFIG_DIRECTORY}/dnf/${PKG}" ]]; then + LOCAL_INSTALL=true + LOCAL_PKGS+=("${CONFIG_DIRECTORY}/dnf/${PKG}") + else + CLASSIC_INSTALL=true + CLASSIC_PKGS+=("${PKG}") + fi + done +fi + +# Function to inform the user about which type of packages is he installing +echo_rpm_install() { + if ${CLASSIC_INSTALL}; then + echo "Installing: ${CLASSIC_PKGS[*]}" + fi + if ${HTTPS_INSTALL}; then + echo "Installing package(s) directly from URL: ${HTTPS_PKGS[*]}" + fi + if ${LOCAL_INSTALL}; then + echo "Installing local package(s): ${LOCAL_PKGS[*]}" + fi +} + +# Remove & install RPM packages +if [[ ${#INSTALL_PKGS[@]} -gt 0 && ${#REMOVE_PKGS[@]} -gt 0 ]]; then + echo "Removing & Installing RPMs" + echo "Removing: ${REMOVE_PKGS[*]}" + echo_rpm_install + dnf -y remove ${REMOVE_UNUSED_DEPS_FLAG} "${REMOVE_PKGS[@]}" + dnf -y ${WEAK_DEPS_FLAG} install --refresh ${SKIP_UNAVAILABLE_FLAG} ${SKIP_BROKEN_FLAG} ${ALLOW_ERASING_FLAG} "${INSTALL_PKGS[@]}" +elif [[ ${#INSTALL_PKGS[@]} -gt 0 ]]; then + echo "Installing RPMs" + echo_rpm_install + dnf -y ${WEAK_DEPS_FLAG} install --refresh ${SKIP_UNAVAILABLE_FLAG} ${SKIP_BROKEN_FLAG} ${ALLOW_ERASING_FLAG} "${INSTALL_PKGS[@]}" +elif [[ ${#REMOVE_PKGS[@]} -gt 0 ]]; then + echo "Removing RPMs" + echo "Removing: ${REMOVE_PKGS[*]}" + dnf -y remove ${REMOVE_UNUSED_DEPS_FLAG} "${REMOVE_PKGS[@]}" +fi + +get_json_array REPLACE 'try .["replace"][]' "$1" + +# Replace RPM packages from any repository +if [[ ${#REPLACE[@]} -gt 0 ]]; then + for REPLACEMENT in "${REPLACE[@]}"; do + + # Get repository + REPO=$(echo "${REPLACEMENT}" | jq -r 'try .["from-repo"]') + REPO="${REPO//%OS_VERSION%/${OS_VERSION}}" + REPO="${REPO//[$'\t\r\n ']}" + + # Ensure repository is provided + if [[ "${REPO}" == "null" ]] || [[ -z "${REPO}" ]]; then + echo "ERROR: Key 'from-repo' was declared, but repository URL was not provided." + exit 1 + fi + + # Get packages to replace + get_json_array PACKAGES 'try .["packages"][]' "${REPLACEMENT}" + + # Ensure packages are provided + if [[ ${#PACKAGES[@]} -eq 0 ]]; then + echo "ERROR: No packages were provided for repository '${REPO}'." + exit 1 + fi + + # Get if 'install-weak-dependencies' is provided for package replace + WEAK_DEPENDENCIES=$(echo "${REPLACEMENT}" | jq -r 'try .["install-weak-dependencies"]') + + if [[ -z "${WEAK_DEPENDENCIES}" ]] || [[ "${WEAK_DEPENDENCIES}" == "null" ]] || [[ "${WEAK_DEPENDENCIES}" == "true" ]]; then + WEAK_DEPS_FLAG="--setopt=install_weak_deps=True" + elif [[ "${WEAK_DEPENDENCIES}" == "false" ]]; then + WEAK_DEPS_FLAG="--setopt=install_weak_deps=False" + fi + + # Get if 'skip-unavailable-packages' is provided for package replace + SKIP_UNAVAILABLE=$(echo "${REPLACEMENT}" | jq -r 'try .["skip-unavailable-packages"]') + + if [[ -z "${SKIP_UNAVAILABLE}" ]] || [[ "${SKIP_UNAVAILABLE}" == "null" ]] || [[ "${SKIP_UNAVAILABLE}" == "false" ]]; then + SKIP_UNAVAILABLE_FLAG="" + elif [[ "${SKIP_UNAVAILABLE}" == "true" ]]; then + SKIP_UNAVAILABLE_FLAG="--skip-unavailable" + fi + + # Get if 'skip-broken-packages' is provided for package replace + SKIP_BROKEN=$(echo "${REPLACEMENT}" | jq -r 'try .["skip-broken-packages"]') + + if [[ -z "${SKIP_BROKEN}" ]] || [[ "${SKIP_BROKEN}" == "null" ]] || [[ "${SKIP_BROKEN}" == "false" ]]; then + SKIP_BROKEN_FLAG="" + elif [[ "${SKIP_BROKEN}" == "true" ]]; then + SKIP_BROKEN_FLAG="--skip-broken" + fi + + # Get if 'allow-erasing-packages' is provided for package replace + ALLOW_ERASING=$(echo "${REPLACEMENT}" | jq -r 'try .["allow-erasing-packages"]') + + if [[ -z "${ALLOW_ERASING}" ]] || [[ "${ALLOW_ERASING}" == "null" ]] || [[ "${ALLOW_ERASING}" == "false" ]]; then + ALLOW_ERASING_FLAG="" + elif [[ "${ALLOW_ERASING}" == "true" ]]; then + ALLOW_ERASING_FLAG="--allowerasing" + fi + + echo "Replacing packages from repository: '${REPO}'" + echo "Replacing: ${PACKAGES[*]}" + + dnf -y ${WEAK_DEPS_FLAG} distro-sync --refresh ${SKIP_UNAVAILABLE_FLAG} ${SKIP_BROKEN_FLAG} ${ALLOW_ERASING_FLAG} --repo "${REPO}" "${PACKAGES[@]}" + + done +fi diff --git a/modules/dnf/dnf.tsp b/modules/dnf/dnf.tsp new file mode 100644 index 0000000..349cafc --- /dev/null +++ b/modules/dnf/dnf.tsp @@ -0,0 +1,80 @@ +import "@typespec/json-schema"; +using TypeSpec.JsonSchema; + +@jsonSchema("/modules/dnf.json") +model DnfModule { + /** The dnf module offers pseudo-declarative package and repository management using dnf. + * https://blue-build.org/reference/modules/dnf/ + */ + type: "dnf"; + + /** List of links to .repo files to download into /etc/yum.repos.d/. */ + repos?: Array; + + /** List of COPR project repos to download into /etc/yum.repos.d/. */ + copr?: Array; + + /** List of links to key files to import for installing from custom repositories. */ + keys?: Array; + + /** List of folder names under /opt/ to enable for installing into. */ + optfix?: Array; + + /** Configuration of RPM groups removal. */ + "group-remove"?: { + /** List of RPM groups to remove. */ + packages: Array; + }; + + /** Configuration of RPM groups install. */ + "group-install"?: { + /** List of RPM groups to install. */ + packages: Array, + /** Whether to install weak dependencies during the RPM group install or not. */ + "install-weak-dependencies"?: boolean = true, + /** Whether to continue with the RPM group install if there are no packages available in the repository. */ + "skip-unavailable-packages"?: boolean = false, + /** Whether to continue with the RPM group install if there are broken packages. */ + "skip-broken-packages"?: boolean = false, + /** Whether to allow erasing (removal) of packages in case of dependency problems during the RPM group install. */ + "allow-erasing-packages"?: boolean = false; + }; + + /** Configuration of RPM packages removal. */ + "remove"?: { + /** List of RPM packages to remove. */ + packages: Array, + /** Whether to remove unused dependencies during removal operation. */ + "remove-unused-dependencies"?: boolean = true; + }; + + /** Configuration of RPM packages install. */ + "install"?: { + /** List of RPM packages to install. */ + packages: Array, + /** Whether to install weak dependencies during the RPM package install or not. */ + "install-weak-dependencies"?: boolean = true, + /** Whether to continue with the RPM package install if there are no packages available in the repository. */ + "skip-unavailable-packages"?: boolean = false, + /** Whether to continue with the RPM package install if there are broken packages. */ + "skip-broken-packages"?: boolean = false, + /** Whether to allow erasing (removal) of packages in case of dependency problems during the RPM package install. */ + "allow-erasing-packages"?: boolean = false; + }; + + /** List of configurations for replacing packages from another repo. */ + replace?: Array<{ + /** URL to the source COPR repo for the new packages. */ + "from-repo": string, + /** List of packages to replace using packages from the defined repo. */ + packages: Array, + /** Whether to install weak dependencies during the replacement or not. */ + "install-weak-dependencies"?: boolean = true, + /** Whether to continue with the replacement if there are no packages available on the system to replace. */ + "skip-unavailable-packages"?: boolean = false, + /** Whether to continue with the replacement if there are broken packages in the system during the replacement. */ + "skip-broken-packages"?: boolean = false, + /** Whether to allow erasing (removal) of packages in case of dependency problems during the replacement. */ + "allow-erasing-packages"?: boolean = false; + }>; +} diff --git a/modules/dnf/module.yml b/modules/dnf/module.yml new file mode 100644 index 0000000..8b0957e --- /dev/null +++ b/modules/dnf/module.yml @@ -0,0 +1,36 @@ +name: dnf +shortdesc: The dnf module offers pseudo-declarative package and repository management using dnf. +example: | + type: dnf + repos: + - https://brave-browser-rpm-release.s3.brave.com/brave-browser.repo + copr: + - atim/starship + - trixieua/mutter-patched + keys: + - https://brave-browser-rpm-release.s3.brave.com/brave-core.asc + optfix: + - Tabby # needed because tabby installs into /opt/Tabby/ + - brave.com + group-install: + packages: + - cosmic-desktop + - cosmic-desktop-apps # Installs Cosmic desktop environment + - window-managers + install: + packages: + - starship + - brave-browser + - https://github.com/Eugeny/tabby/releases/download/v1.0.209/tabby-1.0.209-linux-x64.rpm + install-weak-dependencies: false # doesn't install weak dependencies for those packages + remove: + packages: + - firefox + - firefox-langpacks + replace: + - from-repo: copr:copr.fedorainfracloud.org:trixieua:mutter-patched + packages: + - mutter + - mutter-common + - gdm + skip-unavailable-packages: true # replacement will proceed even if 'mutter' or 'gdm' is not installed in the system \ No newline at end of file diff --git a/modules/rpm-ostree/rpm-ostree.sh b/modules/rpm-ostree/rpm-ostree.sh index 266814c..87318b7 100644 --- a/modules/rpm-ostree/rpm-ostree.sh +++ b/modules/rpm-ostree/rpm-ostree.sh @@ -45,7 +45,7 @@ if [[ ${#OPTFIX[@]} -gt 0 ]]; then echo "Creating symlinks to fix packages that install to /opt" # Create symlink for /opt to /var/opt since it is not created in the image yet mkdir -p "/var/opt" - ln -s "/var/opt" "/opt" + ln -snf "/var/opt" "/opt" # Create symlinks for each directory specified in recipe.yml for OPTPKG in "${OPTFIX[@]}"; do OPTPKG="${OPTPKG%\"}"