From Fedora Project Wiki
 
(11 intermediate revisions by 2 users not shown)
Line 1: Line 1:
{{admon/important | Comments and Explanations | The page source contains comments providing guidance to fill out each section. They are invisible when viewing this page. To read it, choose the "view source" link.<br/> '''Copy the source to a ''new page'' before making changes!  DO NOT EDIT THIS TEMPLATE FOR YOUR CHANGE PROPOSAL.'''}}


<!-- Self Contained or System Wide Change Proposal?
<!-- Self Contained or System Wide Change Proposal?
Line 27: Line 26:


== Summary ==
== Summary ==
A variant of Fedora Workstation that uses OSTree to install and and update the OS
A variant of Fedora Workstation that uses OSTree to install and update the OS


== Owners ==
== Owners ==
Line 60: Line 59:


Status update from [[https://lists.fedoraproject.org/archives/list/desktop@lists.fedoraproject.org/thread/6N4VC2BXCVIRVB4UURO2L4MNQGKYJJKH/ | April 7]]
Status update from [[https://lists.fedoraproject.org/archives/list/desktop@lists.fedoraproject.org/thread/6N4VC2BXCVIRVB4UURO2L4MNQGKYJJKH/ | April 7]]
Status update from [[https://lists.fedoraproject.org/archives/list/desktop@lists.fedoraproject.org/thread/SPMFH74DXGOJRQ6JVDXKJSZRCQ44PN2S/ | May 17]]


== Detailed Description ==
== Detailed Description ==
Line 87: Line 88:
* '''Proposal owners:'''
* '''Proposal owners:'''
** Create rpm-ostree repositories with the workstation content (Done: David)
** Create rpm-ostree repositories with the workstation content (Done: David)
*** configs are here: https://pagure.io/atomic-workstation-config
*** configs are here: https://pagure.io/workstation-ostree-config/commits/master
*** temporary hosting for repos: http://209.132.179.147/repo
*** temporary hosting for repos: http://209.132.179.147/repo
** Provide a solution for the initial install of an ostree-based workstation (in progress: David)
** Provide a solution for the initial install of an ostree-based workstation (in progress: David)
Line 102: Line 103:
** xdg-app: Support appstream data in repositories (DONE)
** xdg-app: Support appstream data in repositories (DONE)
** xdg-app: Figure out ways to integrate with rel-eng infrastructure for containers and ostree repos
** xdg-app: Figure out ways to integrate with rel-eng infrastructure for containers and ostree repos
** Work with rel-eng team to enable building xdg-apps in koji (Owen)
*** Investigate producing oci bundles as primary artifacts (Alex)
*** Investigate producing oci bundles as primary artifacts (Alex)
*** Investigate skopeo to import oci bundles into ostree repos (Owen)
*** Investigate skopeo to import oci bundles into ostree repos (Owen)
Line 120: Line 122:
*** Update repository as updates appear in the yum repository they're based on (once-per-day is sufficient)
*** Update repository as updates appear in the yum repository they're based on (once-per-day is sufficient)
*** Build x86_64 installer iso's for major milestones (beta, ga)
*** Build x86_64 installer iso's for major milestones (beta, ga)
*** Ticket for this part: https://fedorahosted.org/rel-eng/ticket/6399
** xdg-app related deliverables:
** xdg-app related deliverables:
*** Tooling for building xdg-apps in Fedora: https://fedoraproject.org/wiki/Workstation/BuildingXdgApps
*** Tooling for building xdg-apps in Fedora: https://fedoraproject.org/wiki/Workstation/BuildingXdgApps
Line 142: Line 145:


== How To Test ==
== How To Test ==
<!-- This does not need to be a full-fledged document. Describe the dimensions of tests that this change implementation is expected to pass when it is done.  If it needs to be tested with different hardware or software configurations, indicate them.  The more specific you can be, the better the community testing can be.
Remember that you are writing this how to for interested testers to use to check out your change implementation - documenting what you do for testing is OK, but it's much better to document what *I* can do to test your change.


A good "how to test" should answer these four questions:
The content of the OSTree image is going to be basically identical to the 'traditional' workstation install, it is just installed and updated differently.
Therefore, the existing tests for the workstation will apply and ensure that the overall functionality of the OS, the desktop and the applications.


0. What special hardware / data / etc. is needed (if any)?
Testing for this particular to this change should focus on the areas of difference:
1. How do I prepare my system to test this change? What packages
need to be installed, config files edited, etc.?
2. What specific actions do I perform to check that the change is
working like it's supposed to?
3. What are the expected results of those actions?
-->


TBD
* Does the installer work ?
* Does gnome-initial setup come up on first boot, and does it work ?
* Can the installed system be updated from the ostree repo using the rpm-ostree commandline tool ?
* Can the installed system be updated using gnome-software ?
* Are system configuration changes preserved across updates ?
* Does gnome-software correctly reflect the fact that the system is readonly ?
* Does gnome-software offer to install and remove xdg-apps ?
* Can xdg-apps be updated 'live', without reboot ?


== User Experience ==
== User Experience ==
<!-- If this change proposal is noticeable by its target audience, how will their experiences change as a result?  Describe what they will see or notice. -->
 
<!-- REQUIRED FOR SYSTEM WIDE CHANGES -->
In an OStree-based installation, updates of the OS require a reboot (as offline updates do currently), but we no longer reboot twice, since the updated images can be downloaded and deployed while the system is running, and then we can directly reboot into the new image. Since the OS image is readonly, installing rpms does not work (at least not until rpm-ostree's layering capability is mature enough for production). Desktop application can be installed in the form of xdg-apps, which are independent from the OS image and can be updated 'live'.
N/A (not a System Wide Change)  


== Dependencies ==
== Dependencies ==
<!-- What other packages (RPMs) depend on this package?  Are there changes outside the developers' control on which completion of this change depends?  In other words, completion of another change owned by someone else and might cause you to not be able to finish on time or that you would need to coordinate?  Other upstream projects like the kernel (if this is not a kernel change)? -->


<!-- REQUIRED FOR SYSTEM WIDE CHANGES -->
This change depends on the rpm-ostree tooling and infrastructure that is developed as part of project Atomic, and on xdg-app tooling and infrastructure.
N/A (not a System Wide Change)


== Contingency Plan ==
== Contingency Plan ==

Latest revision as of 14:04, 20 October 2016



OSTree-based Workstation

Summary

A variant of Fedora Workstation that uses OSTree to install and update the OS

Owners

  • Name: Matthias Clasen, Owen Taylor, Alex Larsson, Richard Hughes, David King
  • Email: mclasen@redhat.com
  • Release notes owner:
  • Product: Fedora Workstation
  • Responsible WG: Workstation working group

Current status

  • Targeted release: Fedora 25
  • Last updated: 2016-10-20
  • Tracker bug: <will be assigned by the Wrangler>

Status update from [| April 1]

Status update from [| April 7]

Status update from [| May 17]

Detailed Description

The idea of an image-based workstation is to use the ideas of "Project Atomic" to have a core operating system for a workstation that updates atomically as a whole, and then layer extra software on top of that. This is as opposed to the traditional model, where the operating system is dynamically composed on the end users system out of individual packages.

For a longer discussion, see Workstation/AtomicWorkstation.

Benefit to Fedora

Updating the operating system via ostree has multiple advantages compared to traditional yum or dnf updates:

  • The update is offline, and there is no possibility of the running system being in a mixed state with some applications still using old versions and some using new versions. This has already been accomplished using PackageKit offline updates in recent Fedora.
  • The update is reliable and atomic - there is no complicated process of updating files piecemeal that can break in the middle, or be interrupted by power failure and leave the system in an inconsistent and broken state
  • The update can be rolled back if the new operating system is incompatible with the users hardware or applications

Advantages that we get beyond this come from improving the separation between the operating system and what the user has installed on top of it; if we package software as xdg-app bundles depending on a standard runtime or as Docker containers, then we expect them to have little ability to break the operation of the underlying system, and we expect them to also be insulated from changes in the underlying system, and not be dependent on specific versions of packages and libraries.

  • Currently, what we provide for each update or upgrade is a set of package metadata and an algorithm and we expect it to work for all combinations of packages a user might have installed, including potentially packages not even from Fedora's repositories. The dnf and yum algorithms are impressive, and *usually* they get this right. But sometimes they don't - often because there's no obvious right thing to do. And in these cases, the system requires an experienced sysadmin to debug. If we precisely define the operating system, there are not uncountable numbers of possible upgrades, instead there is precisely one upgrade between each set of Fedora versions.
  • We can potentially do a better job at functionality testing as well, because each Fedora Workstation user's system will be more alike and more like what is tested.
  • Because the operating system is precisely defined, we can remove components from it; currently we have no idea whether a package on the system is part of the operating system or something the user installed.
  • The components that are installed on top of the operating system are potentially more portable between different versions of Fedora and even between different distributions.

Note: Currently, many problems with an unbootable Fedora system are bootloader or initrd issues; bootloader configuration issues are still a potential problem with the Atomic model. The ostree handling of /etc, which allows arbitrary modification by the user, also means that there is a gap between the goal of an unbreakable system and the reality.

Scope

  • Other developers:
    • Create a fedora-release subpackage for this workstation variant
    • Support installing non xdg-app content using rpm-ostree
  • Policies and guidelines
    • The third-party software guidelines are needed
  • Trademark approval: N/A (not needed for this Change)

Upgrade/compatibility impact

This will be a separate variant of the Fedora workstation product, 'traditional' rpm-based installation will continue to be supported. Switching to the ostree variant will be an explicit decision for the user to make before installing. We will not support switching from one variant to the other during an upgrade.

How To Test

The content of the OSTree image is going to be basically identical to the 'traditional' workstation install, it is just installed and updated differently. Therefore, the existing tests for the workstation will apply and ensure that the overall functionality of the OS, the desktop and the applications.

Testing for this particular to this change should focus on the areas of difference:

  • Does the installer work ?
  • Does gnome-initial setup come up on first boot, and does it work ?
  • Can the installed system be updated from the ostree repo using the rpm-ostree commandline tool ?
  • Can the installed system be updated using gnome-software ?
  • Are system configuration changes preserved across updates ?
  • Does gnome-software correctly reflect the fact that the system is readonly ?
  • Does gnome-software offer to install and remove xdg-apps ?
  • Can xdg-apps be updated 'live', without reboot ?

User Experience

In an OStree-based installation, updates of the OS require a reboot (as offline updates do currently), but we no longer reboot twice, since the updated images can be downloaded and deployed while the system is running, and then we can directly reboot into the new image. Since the OS image is readonly, installing rpms does not work (at least not until rpm-ostree's layering capability is mature enough for production). Desktop application can be installed in the form of xdg-apps, which are independent from the OS image and can be updated 'live'.

Dependencies

This change depends on the rpm-ostree tooling and infrastructure that is developed as part of project Atomic, and on xdg-app tooling and infrastructure.

Contingency Plan

  • Contingency mechanism: This feature is about a new deliverable, so if we don't make it, we will just not add the new product variant to our portfolio for Fedora 25. This will affect the website and release announcement, but little else. The ostree support in gnome-software will just be inactive as it is on traditional installs, anyway.
  • Contingency deadline: Beta
  • Blocks release: No, the image-based installation will be experimental in Fedora 25, and it would not be appropriate for it to block the release.

Documentation

N/A (not a System Wide Change)

Release Notes

Retrieved from "https://fedoraproject.org/w/index.php?title=Changes/WorkstationOstree&oldid=477617"