This program is intended to be friendly to a Continuous Integration / Delivery build pipeline. It should be used after a versioned RPM repository has been produced in order to create reproducible machine images, suitable for use as Phoenix (immutable) servers. As much as possible, it allows one to capture configuration in source control. Where it can't be, it allows the use of scriptlets to generate it.
Discographer creates virtual machine images (disk images) based on a set of repositories. Machine settings are captured in source control and are defined using a mixture of RPM repositories, packages to install, local files to install and programs to generate files to install.
Please note: This README is dated and will be rewritten as soon as practicable.
The syntax ${variable} is used in this document to refer to variables. These refer to the values set when calling discographer:-
See discographer -h for more detailed help. For reference, the variables we refer to are:-
${configPath}, which is the location of all configuration (machines, etc)${cachePath}, which is the location of a cache, normally at${configPath}/cache${functionsPath}, which is the location of shared functions (lib), normally at${configPath}/functions${pathsPath}, which defines a configuration folder containing the paths to all binaries needed, normally at${configPath}/paths
The ${cachePath} should contain a .gitignore file with the value * in it, so that cached data is not accidentally checked in.
The variable ${machineName} is used to refer to a machine. The value is the machine's hostname (DNS label) without domain. We don't currently validate that it is DNS-valid.
The variable ${machineGroupName} is used to refer to a group of machines. This need not be a DNS label.
If a file /etc/discographer/configuration exists, then this is loaded by sourcing - the path variables listed above are replaced and need not be specified on the command line. If the file ~/.discographer exists, then this is sourced after any file /etc/discographer/configuration.
Many aspects of a machine's profile are common. To enable this, you can symlink most per-machine files to a common one. By convention, this common folder is at ${configPath}/machine=template, but it really doesn't matter what it's called, and you could conceivably have several.
Machines are defined in a folder at ${configPath}/${machineGroupName}/machines/${machineName}.
A machine is defined as a set of RPM packages. The packages to install are in a text file at ${configPath}/${machineGroupName}/machines/${machineName}/packages. They are listed one-per-line (LF line endings), without version numbers or architectures. For example, a file containing:-
bash
coreutils
Will install the packages bash and coreutils, and all their dependencies. The package setup is always installed regardless (Contents listed at http://pkgs.org/centos-6/centos-i386/setup-2.8.14-20.el6_4.1.noarch.rpm.html).
The packages file may be a symlink. The source of these packages is controlled by Yum and Repository Configuration (see below).
RPM packages are installed using yum. A special configuration is used per-machine, to ensure isolation from the build machine. This needs to exist either as a folder or a symlink to a folder at ${configPath}/${machineGroupName}/machines/${machineName}/yum. Conventionally, this is symlinked to ${configPath}/templates/machines/yum as it rarely changes per-machine. This folder contains contents as follows:-
yum.conf.template (file template)
repositories (folder)
plugins (folder, normally empty)
This file is a template yum.conf, which has variables marked ${machine_configPath} and ${machine_cachePath} substituted before it is used (standard $YUM0, etc variables don't work). There should not normally be any need to deviate from that supplied in ${configPath}/templates/machines/yum/yum.conf.template.
This folder contains yum repo configuration snippets (end .repo) (examples can be find in /etc/yum.repos.d on most RedHat-derived systems). It is recommended that these configuration snippets be changed from those supplied in ${configPath}/templates/machines/yum/repositories to point to a versioned repository produced by a Continuous Deployment / Integration build pipeline.
To start a machine, it needs to have an init script. This should be an executable file or symlink defined at ${configPath}/${machineGroupName}/machines/${machineName}/init. This file rarely changes, and is commonly symlinked to ${configPath}/templates/machines/init.
Additional files are installed after the RPM packages as overlays onto the image. There are two main kinds:-
- devices, and
- files, known as root-overlays
The reason for the split is that devices (specifically, block device files, character device files and FIFO files) can not be stored in Git and other source control systems.
Devices are stored for each machine in the file ${configPath}/${machineGroupName}/machines/${machineName}/devices. They are listed one-per-line (LF line endings) with a space-delimited format. For example:-
/dev/ram0 b 660 1 0
/dev/tty0 c 620 4 0
/dev/xconsole p 0755
The format is device path, device type, permissions, major and minor. The device type is as follows:-
ba block deviceca character devicepa FIFO
The major and minor are positive decimal integers and are zero-based. FIFO devices do not have a major and minor; specifying them will cause the machine image to fail to build.
The devices file may be a symlink.
Root overlays are hierarchal folders and files that will overlay in / in the build machine image.
Root overlays are folders or symlinks in ${configPath}/${machineGroupName}/machines/${machineName}/root-overlays
Due to the design of the discographer, any files starting with a period (.) (also known as hidden files) in the root of the overlay are not copied. This ensures things like .gitignore files are not copied in. Ordinarily, this shouldn't be an issue, because it is exceedingly rare for hidden files to exist in the root (/) of a Linux server.
Root overlay folders may be named anything, and are applied in alphanumeric order to the file system image. However, there are three conventional names:-
common, used as symlink to a folder say in${configPath}/templates/machines/root-overlays/common, to allow common, shared files to be installed that aren't packagedfixed, files that are checked into source control and applied without changesgenerated, a folder (which should contain a.gitignoreif using Git), in which generated files can be placed
File generation could be a process before discographer is invoked, or using generator-scriptlets (see below).
Please note that most source control systems do not preserve file owners or users or permissions, apart from execute. Please also note that files are installed as-is from root-overlays. That means symlinks will not be substituted (but kept as is; consequently, it is recommended that they be relative), and the behaviour of hard links is undefined.
Generator scriptlets are sniplets of bash code that discographer sources for each machine or machine-group and executes. They can be used to create hostname files, hosts, install SSH private keys, etc. They execute before the root overlays are applied. Conventionally, the output of the sniplets should be placed into the root-overlay ${configPath}/${machineGroupName}/machines/${machineName}/root-overlays/generated, but this isn't required; any folder in ${configPath}/${machineGroupName}/machines/${machineName}/root-overlays will do.
Generator scriptlets are run in the order they appear to bash globbing in the folder ${configPath}/${machineGroupName}/machines/${machineName}/generator-scriptlets. They may be either files or symlinks (conventionally, to files in ${configPath}/templates/machines/generator-scriptlets, but one can just symlink ${configPath}/templates/machines/generator-scriptlets to ${configPath}/${machineGroupName}/machines/${machineName}/generator-scriptlets and run all supplied).
When executing a machine-group generator-scriptlet, the following environment variables are available:-
${machine_group_configPath}- where to find any additional configuration${machine_group_cachePath}${configMachineGroupDevicesPath}- file or symlink to devices to install${machine_configGeneratorsPath}- generator scriptlets for machine group${machine_group_configOverlaysPath}- where to find all root overlays${generatedMachineGroupRootOverlaysPath}- where to put any generated files and folders for all machines
When executing a machine, in addition to the above, the following environment variables are available:-
${machine_configPath}${configMachineInitPath}- file or symlink to init script to install${configMachineDevicesPath}- file or symlink to devices to install${machine_configGeneratorsPath}- generator scriptlets for machine${machine_configOverlaysPath}- where to find all root overlays for machine${generatedMachineRootOverlaysPath}- where to put any generated files and folders for machine${yum_configYumConfTemplateFilePath}${machine_cachePath}${cacheMachineMinimalAppliancePath}${cacheMachineBuiltAppliancePath}${cacheMachineRpmInstallRootPath}
Output consists of machine images, intermediate files, cached package data and logs. All are stored in a cache at ${cachePath}/$[machineGroup}/${machineName}.
The folder ${cachePath}/$[machineGroup}/${machineName}/minimal-appliance contains intermediate files.
The folder ${cachePath}/$[machineGroup}/${machineName}/yum contains cached package data.
A yum log is contained in ${cachePath}/$[machineGroup}/${machineName}/yum/log.
- We aren't cleaning up the cache
- We aren't specifying capacity in OVF
- We aren't setting VMDK UUIDs
- native not supported for vmware, parallels
- http://tad-do.net/2012/01/30/converting-virtualbox-to-vmware-esxi/ VirtualBox to VMWare
- We are installing 32-bit (i686) packages
FIX THIS FIRST THING - check if || true still needed on yum install
-
- /sbin/new-kernel-pkg --package kernel --install 2.6.32-431.11.2.el6.x86_64
- awk: cmd. line:1: fatal: cannot open file `/etc/fstab' for reading (No such file or directory)
- Caused by /etc/fstab not existing when installing the kernel - so we'd need to run a generator before installation
- Implies that generators are also install programs, that need to run in a certain order
- /sbin/new-kernel-pkg --package kernel --install 2.6.32-431.11.2.el6.x86_64
- Mixed Resources
- Have a file detailing installer-kind, package / resource name, source URL (if remote), version (if any), arch (if any), size, crypto hashes, any keys / sigs
- linux-brew (like homebrew)
- RPM (rpm-url)
- RPM (yum-install)
- RPM (yum-localinstall)
- Deb (deb-url)
- Deb (deb-local)
- Deb (cdebootstrap)
- Deb (apt)
- Tarball (compression kind, configure/make/make install, not really all that straightforward, need a spec file or a script, need to specify installation kind)
- Each install kind is named to match (by convention) a folder in functions/installers
- Some how combine this with repos
- Have a file detailing installer-kind, package / resource name, source URL (if remote), version (if any), arch (if any), size, crypto hashes, any keys / sigs
- Documentation
- Fix the read me, it's really out-of-date
- Installation
- support deleting files
- extended attribute control
- chattr (append-only, immutable, compression)
- file capabilities (CAP commands)
- control timestamps of files (eg set a file's atime / mtime etc)
- users/groups
- install /etc/shadow et al
- a list of urls for RPMs with crypto hashes and signatures
- rpm supports download from a HTTP/FTP URL
- Integrate support for a proxy
- yum / rpm / download
- support other installs
- support deb / debootstrap
- support for install tar balls over root?
- gem installs?
- pip / easyinstall (python)?
- source ball installs - integrate with my lfs code
- support installation direct to mounted disk, NOT to generated overlay
- support yum plugins, such as versionlock - in yum.conf:-
- plugins Either '0' or '1'. Global switch to enable or disable yum plugins. Default is '0' (plugins disabled). See the PLUGINS section of the yum(8) man for more information on installing yum plugins.
- pluginpath A list of directories where yum should look for plugin modules. Default is '/usr/share/yum-plugins' and '/usr/lib/yum-plugins'.
- pluginconfpath A list of directories where yum should look for plugin configuration files. Default is '/etc/yum/pluginconf.d'.
- Metadata
- qemu-kvm needs boot order
- virtualbox and OVF need boot-order
- Support vmware VMX
- support vmware VMC
- support vmware teams
- Parallels machine creation
- Wiki
- Output build reports, etc as wiki mark-up suitable for use with git pages - allowing us to manage server estate details with git!
- Hypervisors
- Support KVM / RHEV
- Support Xen / AWS
- Support DigitalOcean
- Support Linode (Xen)
- Support pvgrub
- Support UEFI boot
- performance
- support parallel machine building (using bash background jobs) (note that there's a max of 10 loopback devices; we use several per machine)
- make yum installation faster
- baseline disk image with changes
- based on cryptographic hashes of packages, underlays?
- done per machine-group?
- shared cache
- challenge is that the repos can be different per machine
- shared downloaded rpms
- ? use yumdownloader to download rpms (and deps) to a shared local rpm folder?
- wget the CentOS, etc, repos?
- http://wiki.centos.org/HowTos/CreateLocalRepos
- baseline disk image with changes
- Disks
- Fully support XFS
- Fully support BTRFS
- Creation of LVM volume groups and logical volumes
- Creation of LUKS volumes
- Creation of RAID volumes
- support resizing file systems when using disk partitions
- support compressed vmdk images
- Can we support ZFS?
- Configuration
- Machine configuration_machine_operatingSystemId / configuration_machine_operatingSystemName / configuration_machine_uuid / configuration_machine_lastStateChangeTimestamp
- capture IP and DNS information
- open-ended extra machine and machine-group configuration for generators