Assemble templates using the new base setting
#3072
Conversation
|
This PR still needs some integration tests, but I wanted to create it before 2024 was over. 😄 |
jandubois
force-pushed
the
based-on
branch
3 times, most recently
from
757d8f3 to
4303fd9
Compare
jandubois
force-pushed
the
based-on
branch
4 times, most recently
from
b029e31 to
d1fe948
Compare
jandubois
changed the title
base setting
jandubois
force-pushed
the
based-on
branch
6 times, most recently
from
14b6902 to
4174183
Compare
|
@AkihiroSuda I believe I've addressed all your code review feedback so far, as well as all the implications from our discussion about digest support (the schema has been updated, but the digest computation/checking is left for a future PR). I've rebased this PR since you originally reviewed it, but any further changes are all in separate commits. I've not yet squashed them, in case it makes it easier for you to continue the review; but let me know if you prefer that I squash them now! |
|
I will briefly to turn this into Draft mode again because I think there is another condition in |
jandubois
force-pushed
the
based-on
branch
2 times, most recently
from
71b28dd to
af64433
Compare
|
I had to rebase the PR to resolve the merge conflict with recent changes to |
|
Let's merge, after another rebase to add the licensing boilerplate |
Rebased and copyright headers added... |
It allows a template to be constructed by merging values from one or more base templates together. This merge process will maintain all comments from both the template and the bases. The template is assembled before an instance is created, and only the combined template is stored as lima.yaml in the instance directory. There merging semantics are otherwise similar to how lima.yaml is combined with override.yaml, defaults.yaml, and the builtin default values. Signed-off-by: Jan Dubois <[email protected]>
Signed-off-by: Jan Dubois <[email protected]>
Signed-off-by: Jan Dubois <[email protected]>
Signed-off-by: Jan Dubois <[email protected]>
Signed-off-by: Jan Dubois <[email protected]>
The default `copy --embed` option will no longer embed template:// urls. Signed-off-by: Jan Dubois <[email protected]>
Instead of `base: template.yaml` the user can write: ```yaml base: - url: template.yaml digest: decafbad ``` Same thing for `file` properties of provisoning scripts and probes. The digest values are currently being ignored; verification will happen in a later PR. Signed-off-by: Jan Dubois <[email protected]>
Signed-off-by: Jan Dubois <[email protected]>
This is an integration test for the `base:` mechanism, and also updates the images used by `test-misc` to match the latest updates. Unrelated: also adds a test for setting the user shell Signed-off-by: Jan Dubois <[email protected]>
Signed-off-by: Jan Dubois <[email protected]>
because digest validation is not yet implemented.
Also adds missing unmarshalling for `base: {file: URL}` and related tests.
Signed-off-by: Jan Dubois <[email protected]>
Signed-off-by: Jan Dubois <[email protected]>
Signed-off-by: Jan Dubois <[email protected]>
Signed-off-by: Jan Dubois <[email protected]>
|
Created |
This PR creates initial support for multi-file templates, mostly based on the suggestions I gave in #2520 (reply in thread).
Instance create vs. start stages
The basic idea behind "template embedding" is that when an instance is created, the
lima.yamlthat is stored in the instance directory will embed settings from additionalbase template(s) and external scripts into a single composite document.
Once the instance is created, there are no longer external references and the instance can be started while offline, even if it was created from online template fragments.
Merging default settings from base templates
Merging of templates is controlled by the new
baseproperty, which takes the name ofa base template, e.g.
It is expected that in most instances only a single base template is needed, but it is possible to provide a list:
The base template can in turn have their own base templates. For example
my.yamlinstance may be based ontemplate://docker, which in turn could be based ontemplate://ubuntu.Merging is performed by copying every property from the base template that does not yet exist in the main template. For list properties the lists are appended. More details and exceptions are documented below.
Embedding of external provisioning scripts
Both provisioning scripts and probe scripts can now be located with the new
fileproperty specifying a template locator (details below). The file will be loaded and inlined under thescriptproperty. Thereforefileandscriptare mutually exclusive.Relative template locators
The values of the
baseandfileproperties are "template locators". They are the usual local filenames orfile://,https://, ortemplate://URLs.In addition they can also be relative locators: names that don't have a URL scheme and don't start with a
/. These names are resolved relative to the template in which they occur (similar to relativehrefproperties in HTML).If this template is loaded as
templates/main.yaml, then the referenced template files will be fetched fromtemplates/base.yamlandtemplates/script.sh.If the template is loaded as
template://main, then the files will betemplate://base.yamlandtemplate://script.sh.This means a template using relative locators will always fetch dependencies from the same (relative) location regardless of how it was loaded itself.
To make this work
template://base.yamlneeds to be equivalent totemplate://base. And it must be possible to use other file extensions, sotemplate://script.shloads the script and doesn't look forscript.sh.yaml.limactl template command
This PR adds new options to the
limactl template copysubcommand.--verbatimcopies a file exactly as is.--embedwill merge in all external base templates and shell scripts.--embed-allwill also merge in templates and files referenced bytemplate://URLs.--fillwill applyoverride.yaml,default.yaml, and builtin defaults.Without additional options the
copycommand will copy the file, but turn any relative locators into absolute locators. So the copy of the template will continue to reference the same base templates and scripts. Use the--verbatimoption if you intend to copy those files locally as well.Examples
Embedding a script
Merging in
template://defaultDetailed merging algorithm
Each template will recusively embed all dependencies in its base templates before merging them in.
Then each property, that does not exist in the main template will be copied over from the base template.
Properties that are lists are appended.
For
provisionandprobesthe order is reversed: the base entries are inserted before the main template entries, so that latter are executed last (see #2932 for discussion).Special rules
The
dnsentries are not merged. The entries from a base template are only copied when the main template list is empty.mountTypesSupportedwill have any duplicate entries removed.The
baseproperty is removed if the base template has been embedded.For
provisionandprobesthefileproperty is removed, and the actual content of the script is stored in the usualscriptproperty.For
minimumLimaVersionandvmOpts.qemy.minimumVersionthe values are compared. and the base version is only copied when it is greater than the main version.Combining list entries
Three list properties (
additionalDisks,mounts, andnetworks) use combining logic based on a unique key (disk name, mount point, and interface name, respectively).If a latter entry matches the key of an earlier entry, then any missing fields in the earlier entry are filled in from the latter entry, which is then deleted. This matches the logic already used for merging
override.yamlanddefault.yaml.There is a new wildcard feature now, where
*will match any existing key, so can be used to provide defaults for all entries. This is mostly in preparation to use this mechanism for the builtin defaults.For the combining list mechanism to work, all base templates must be merged (so all lists must contain the complete set of entries). Otherwise the key matching mechanism wouldn't work globally, but only for the parent template at each level.