[isar-cip-core,v2,0/4] Make /home partition optional

Message ID	20250303112342.851020-1-Quirin.Gylstorff@siemens.com (mailing list archive)
Headers	show Return-Path: <quirin.gylstorff@siemens.com> ip: 185.136.64.228, mailfrom: fm-51332-2025030311234316d0c0db6d92383862-th8gcz@rts-flowmailer.siemens.com) From: Quirin Gylstorff <Quirin.Gylstorff@siemens.com> To: cip-dev@lists.cip-project.org, jan.kiszka@siemens.com, felix.moessbauer@siemens.com, ludwig.nussel@siemens.com Subject: [cip-dev][isar-cip-core][PATCH v2 0/4] Make /home partition optional Date: Mon, 3 Mar 2025 12:21:44 +0100 Message-ID: <20250303112342.851020-1-Quirin.Gylstorff@siemens.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Feedback-ID: 519:519-51332:519-21489:flowmailer
Series	Make /home partition optional \| expand [isar-cip-core,v2,0/4] Make /home partition optional [isar-cip-core,v2,1/4] read-only-rootfs: Make IMMUTABLE_DATA_DIR configurable [isar-cip-core,v2,2/4] read-only-rootfs: add home partition with a variable [isar-cip-core,v2,3/4] add move-homedir-var package [isar-cip-core,v2,4/4] Move content of home to IMMUTABLE_DATA_DIR

Message ID

20250303112342.851020-1-Quirin.Gylstorff@siemens.com (mailing list archive)

Headers

From: Quirin Gylstorff <Quirin.Gylstorff@siemens.com>
To: cip-dev@lists.cip-project.org,
	jan.kiszka@siemens.com,
	felix.moessbauer@siemens.com,
	ludwig.nussel@siemens.com
Subject: [cip-dev][isar-cip-core][PATCH v2 0/4] Make /home partition optional
Date: Mon,  3 Mar 2025 12:21:44 +0100
Message-ID: <20250303112342.851020-1-Quirin.Gylstorff@siemens.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Feedback-ID: 519:519-51332:519-21489:flowmailer

Series

Make /home partition optional | expand

Message

Quirin Gylstorff March 3, 2025, 11:21 a.m. UTC

From: Quirin Gylstorff <quirin.gylstorff@siemens.com>

This series would move /home to the /var/home and provided an symbolic
link to /home. All home directories created during user generation are
stored in /usr/share and are copied via systemd.tmpfiles to the correct
partition.

This allows to delete all content of the /home directory if necessary.

This move could interfere with existing installation and is therefore
optional in isar-cip-core.

Changes v2:
 - make move of /home to /var opt-out
 - fix recipes versions
 - fix comments and typos
 - use WIC_HOME_PARTITION instead of HOME_PARTITION_CMD
 - remove postinst from move-homedir-var

Quirin Gylstorff (4):
  read-only-rootfs: Make IMMUTABLE_DATA_DIR configurable
  read-only-rootfs: add home partition with a variable
  add move-homedir-var package
  Move content of home to IMMUTABLE_DATA_DIR

 classes/read-only-rootfs.bbclass              | 22 ++++++++++++++++--
 kas/opt/encrypt-all.yml                       |  2 +-
 kas/opt/separate-home-partition.yml           | 21 +++++++++++++++++
 .../files/immutable-rootfs.tmpfiles           |  2 --
 .../files/immutable-rootfs.tmpfiles.tmpl      |  2 ++
 ...-rootfs_0.1.bb => immutable-rootfs_0.2.bb} |  6 ++++-
 .../files/move-homedir-var.tmpfiles.tmpl      |  3 +++
 .../move-homedir-var/move-homedir-var_0.1.bb  | 23 +++++++++++++++++++
 ...ook_0.6.bb => initramfs-crypt-hook_0.7.bb} |  2 +-
 wic/bbb-efibootguard.wks.in                   |  4 ++--
 wic/hihope-rzg2m-efibootguard.wks.in          |  5 ++--
 wic/qemu-arm64-efibootguard-secureboot.wks.in |  4 ++--
 wic/qemu-arm64-efibootguard.wks.in            |  4 ++--
 wic/qemu-riscv64-efibootguard.wks.in          |  4 ++--
 wic/x86-uefi-efibootguard-secureboot.wks.in   |  4 ++--
 wic/x86-uefi-efibootguard.wks.in              |  4 ++--
 16 files changed, 90 insertions(+), 22 deletions(-)
 create mode 100644 kas/opt/separate-home-partition.yml
 delete mode 100644 recipes-core/immutable-rootfs/files/immutable-rootfs.tmpfiles
 create mode 100644 recipes-core/immutable-rootfs/files/immutable-rootfs.tmpfiles.tmpl
 rename recipes-core/immutable-rootfs/{immutable-rootfs_0.1.bb => immutable-rootfs_0.2.bb} (73%)
 create mode 100644 recipes-core/move-homedir-var/files/move-homedir-var.tmpfiles.tmpl
 create mode 100644 recipes-core/move-homedir-var/move-homedir-var_0.1.bb
 rename recipes-initramfs/initramfs-crypt-hook/{initramfs-crypt-hook_0.6.bb => initramfs-crypt-hook_0.7.bb} (98%)