Skip to content

Add bootc internals cfs #1477

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
cgwalters merged 9 commits into from
Aug 1, 2025
Merged

Add bootc internals cfs #1477

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
9 commits
Select commit Hold shift + click to select a range
ee5d36f
Cargo.toml: switch to a workspace
allisonkarlitskaya May 5, 2025
e2e3098
Allow passing absolute paths to initrd and vmlinuz
Johan-Liebert1 May 9, 2025
8051480
src: experimental http client support
allisonkarlitskaya Apr 24, 2025
3e08695
mount: clean up mount APIs
allisonkarlitskaya Jun 24, 2025
ae3b538
cfsctl: add insecure option
croissanne Jun 14, 2025
f06a96c
composefs-boot: support writing insecure composefs cmdline
croissanne Jun 18, 2025
b46b1f7
Move state to `/state/deploy`
Johan-Liebert1 Jun 25, 2025
1cff1b3
Add 'crates/lib/cfsctl/' from commit 'b46b1f781e0d963b9cd340f1bdda9ca…
cgwalters Jul 31, 2025
9d3ccd0
Add `bootc internals cfs`
cgwalters Jul 31, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
3 changes: 3 additions & 0 deletions Cargo.lock
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

3 changes: 3 additions & 0 deletions crates/lib/Cargo.toml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -23,6 +23,9 @@ bootc-mount = { path = "../mount" }
bootc-tmpfiles = { path = "../tmpfiles" }
bootc-sysusers = { path = "../sysusers" }
camino = { workspace = true, features = ["serde1"] }
composefs = { workspace = true }
composefs-boot = { workspace = true }
composefs-oci = { workspace = true }
ostree-ext = { path = "../ostree-ext", features = ["bootc"] }
chrono = { workspace = true, features = ["serde"] }
clap = { workspace = true, features = ["derive","cargo"] }
Expand Down
360 changes: 360 additions & 0 deletions crates/lib/src/cfsctl.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,360 @@
use std::{
ffi::OsString,
fs::create_dir_all,
path::{Path, PathBuf},
sync::Arc,
};

use anyhow::Result;
use clap::{Parser, Subcommand};

use rustix::fs::CWD;

use composefs_boot::{write_boot, BootOps};

use composefs::{
fsverity::{FsVerityHashValue, Sha512HashValue},
repository::Repository,
};

/// cfsctl
#[derive(Debug, Parser)]
#[clap(name = "cfsctl", version)]
pub struct App {
#[clap(long, group = "repopath")]
repo: Option<PathBuf>,
#[clap(long, group = "repopath")]
user: bool,
#[clap(long, group = "repopath")]
system: bool,

/// Sets the repository to insecure before running any operation and
/// prepend '?' to the composefs kernel command line when writing
/// boot entry.
#[clap(long)]
insecure: bool,

#[clap(subcommand)]
cmd: Command,
}

#[derive(Debug, Subcommand)]
enum OciCommand {
/// Stores a tar file as a splitstream in the repository.
ImportLayer {
sha256: String,
name: Option<String>,
},
/// Lists the contents of a tar stream
LsLayer {
/// the name of the stream
name: String,
},
Dump {
config_name: String,
config_verity: Option<String>,
},
Pull {
image: String,
name: Option<String>,
},
ComputeId {
config_name: String,
config_verity: Option<String>,
#[clap(long)]
bootable: bool,
},
CreateImage {
config_name: String,
config_verity: Option<String>,
#[clap(long)]
bootable: bool,
#[clap(long)]
image_name: Option<String>,
},
Seal {
config_name: String,
config_verity: Option<String>,
},
Mount {
name: String,
mountpoint: String,
},
PrepareBoot {
config_name: String,
config_verity: Option<String>,
#[clap(long, default_value = "/boot")]
bootdir: PathBuf,
#[clap(long)]
entry_id: Option<String>,
#[clap(long)]
cmdline: Vec<String>,
},
}

#[derive(Debug, Subcommand)]
enum Command {
/// Take a transaction lock on the repository.
/// This prevents garbage collection from occurring.
Transaction,
/// Reconstitutes a split stream and writes it to stdout
Cat {
/// the name of the stream to cat, either a sha256 digest or prefixed with 'ref/'
name: String,
},
/// Perform garbage collection
GC,
/// Imports a composefs image (unsafe!)
ImportImage {
reference: String,
},
/// Commands for dealing with OCI layers
Oci {
#[clap(subcommand)]
cmd: OciCommand,
},
/// Mounts a composefs, possibly enforcing fsverity of the image
Mount {
/// the name of the image to mount, either a sha256 digest or prefixed with 'ref/'
name: String,
/// the mountpoint
mountpoint: String,
},
CreateImage {
path: PathBuf,
#[clap(long)]
bootable: bool,
#[clap(long)]
stat_root: bool,
image_name: Option<String>,
},
ComputeId {
path: PathBuf,
#[clap(long)]
bootable: bool,
#[clap(long)]
stat_root: bool,
},
CreateDumpfile {
path: PathBuf,
#[clap(long)]
bootable: bool,
#[clap(long)]
stat_root: bool,
},
ImageObjects {
name: String,
},
}

fn verity_opt(opt: &Option<String>) -> Result<Option<Sha512HashValue>> {
Ok(opt
.as_ref()
.map(|value| FsVerityHashValue::from_hex(value))
.transpose()?)
}

pub(crate) async fn run_from_iter<I>(system_store: &crate::store::Storage, args: I) -> Result<()>
where
I: IntoIterator,
I::Item: Into<OsString> + Clone,
{
let args = App::parse_from(
std::iter::once(OsString::from("cfs")).chain(args.into_iter().map(Into::into)),
);

let repo = if let Some(path) = &args.repo {
let mut r = Repository::open_path(CWD, path)?;
r.set_insecure(args.insecure);
Arc::new(r)
} else if args.user {
let mut r = Repository::open_user()?;
r.set_insecure(args.insecure);
Arc::new(r)
} else {
if args.insecure {
anyhow::bail!("Cannot override insecure state for system repo");
}
system_store.get_ensure_composefs()?
};
let repo = &repo;

match args.cmd {
Command::Transaction => {
// just wait for ^C
loop {
std::thread::park();
}
}
Command::Cat { name } => {
repo.merge_splitstream(&name, None, &mut std::io::stdout())?;
}
Command::ImportImage { reference } => {
let image_id = repo.import_image(&reference, &mut std::io::stdin())?;
println!("{}", image_id.to_id());
}
Command::Oci { cmd: oci_cmd } => match oci_cmd {
OciCommand::ImportLayer { name, sha256 } => {
let object_id = composefs_oci::import_layer(
&repo,
&composefs::util::parse_sha256(sha256)?,
name.as_deref(),
&mut std::io::stdin(),
)?;
println!("{}", object_id.to_id());
}
OciCommand::LsLayer { name } => {
composefs_oci::ls_layer(&repo, &name)?;
}
OciCommand::Dump {
ref config_name,
ref config_verity,
} => {
let verity = verity_opt(config_verity)?;
let mut fs =
composefs_oci::image::create_filesystem(&repo, config_name, verity.as_ref())?;
fs.print_dumpfile()?;
}
OciCommand::ComputeId {
ref config_name,
ref config_verity,
bootable,
} => {
let verity = verity_opt(config_verity)?;
let mut fs =
composefs_oci::image::create_filesystem(&repo, config_name, verity.as_ref())?;
if bootable {
fs.transform_for_boot(&repo)?;
}
let id = fs.compute_image_id();
println!("{}", id.to_hex());
}
OciCommand::CreateImage {
ref config_name,
ref config_verity,
bootable,
ref image_name,
} => {
let verity = verity_opt(config_verity)?;
let mut fs =
composefs_oci::image::create_filesystem(&repo, config_name, verity.as_ref())?;
if bootable {
fs.transform_for_boot(&repo)?;
}
let image_id = fs.commit_image(&repo, image_name.as_deref())?;
println!("{}", image_id.to_id());
}
OciCommand::Pull { ref image, name } => {
let (sha256, verity) = composefs_oci::pull(&repo, image, name.as_deref()).await?;

println!("sha256 {}", hex::encode(sha256));
println!("verity {}", verity.to_hex());
}
OciCommand::Seal {
ref config_name,
ref config_verity,
} => {
let verity = verity_opt(config_verity)?;
let (sha256, verity) = composefs_oci::seal(&repo, config_name, verity.as_ref())?;
println!("sha256 {}", hex::encode(sha256));
println!("verity {}", verity.to_id());
}
OciCommand::Mount {
ref name,
ref mountpoint,
} => {
composefs_oci::mount(&repo, name, mountpoint, None)?;
}
OciCommand::PrepareBoot {
ref config_name,
ref config_verity,
ref bootdir,
ref entry_id,
ref cmdline,
} => {
let verity = verity_opt(config_verity)?;
let mut fs =
composefs_oci::image::create_filesystem(&repo, config_name, verity.as_ref())?;
let entries = fs.transform_for_boot(&repo)?;
let id = fs.commit_image(&repo, None)?;

let Some(entry) = entries.into_iter().next() else {
anyhow::bail!("No boot entries!");
};

let cmdline_refs: Vec<&str> = cmdline.iter().map(String::as_str).collect();
write_boot::write_boot_simple(
&repo,
entry,
&id,
args.insecure,
bootdir,
None,
entry_id.as_deref(),
&cmdline_refs,
)?;

let state = args
.repo
.as_ref()
.map(|p: &PathBuf| p.parent().unwrap_or(p))
.unwrap_or(Path::new("/sysroot"))
.join("state/deploy")
.join(id.to_hex());

create_dir_all(state.join("var"))?;
create_dir_all(state.join("etc/upper"))?;
create_dir_all(state.join("etc/work"))?;
}
},
Command::ComputeId {
ref path,
bootable,
stat_root,
} => {
let mut fs = composefs::fs::read_filesystem(CWD, path, Some(&repo), stat_root)?;
if bootable {
fs.transform_for_boot(&repo)?;
}
let id = fs.compute_image_id();
println!("{}", id.to_hex());
}
Command::CreateImage {
ref path,
bootable,
stat_root,
ref image_name,
} => {
let mut fs = composefs::fs::read_filesystem(CWD, path, Some(&repo), stat_root)?;
if bootable {
fs.transform_for_boot(&repo)?;
}
let id = fs.commit_image(&repo, image_name.as_deref())?;
println!("{}", id.to_id());
}
Command::CreateDumpfile {
ref path,
bootable,
stat_root,
} => {
let mut fs = composefs::fs::read_filesystem(CWD, path, Some(&repo), stat_root)?;
if bootable {
fs.transform_for_boot(&repo)?;
}
fs.print_dumpfile()?;
}
Command::Mount { name, mountpoint } => {
repo.mount_at(&name, &mountpoint)?;
}
Command::ImageObjects { name } => {
let objects = repo.objects_for_image(&name)?;
for object in objects {
println!("{}", object.to_id());
}
}
Command::GC => {
repo.gc()?;
}
}
Ok(())
}
Loading