system-reinstall-bootc: fallback image from /usr/lib/os-release

[hone]

Add a fallback option when arguments are specified for an image. It works in this order:

1. BOOTC_REINSTALL_CONFIG env var to a YAML file
2. --image flag
3. reads /etc/os-release for BOOTC_IMAGE
4. reads /usr/lib/os-release for BOOTC_IMAGE

Fixes: #1300

[gemini-code-assist]

Code Review

This pull request introduces a fallback mechanism to retrieve the bootc image from os-release files when not specified via CLI or environment variables. The changes include a new parsing module, refactored argument handling, and updated CI scripts. Feedback suggests parsing CLI arguments earlier to support standard flags like --help, filtering empty strings during os-release lookups for better fallback reliability, and consolidating redundant CI steps.

[gemini-code-assist]

These two shell steps are redundant and inefficient. Both steps perform the same setup and run provision-packit.sh, which includes a time-consuming podman build operation. Since provision-packit.sh is already designed to handle both the explicit argument and the os-release fallback, you should combine these into a single step to avoid rebuilding the image and repeating the setup in CI.

    order: 97
    script:
      - mkdir -p bootc && cp /var/share/test-artifacts/*.src.rpm bootc
      - cd bootc && rpm2cpio *.src.rpm | cpio -idmv && rm -f *-vendor.tar.zstd && zstd -d *.tar.zstd && tar -xvf *.tar -C . --strip-components=1 && ls -al
      - pwd && ls -al && cd bootc/hack && ./provision-packit.sh
      - echo 'BOOTC_IMAGE=localhost/bootc' | tee -a /usr/lib/os-release
      - ./provision-packit.sh
    when: running_env != image_mode

[hone]

I thought it was easier to just build the image twice than try to do a cleanup step for testing the BOOTC_IMAGE path on reinstall.

[hone]

/gemini review

[gemini-code-assist]

Code Review

This pull request introduces the ability to automatically detect the bootc image from os-release files (/etc/os-release or /usr/lib/os-release) if not provided via the CLI. It also adds logic to automatically inherit host SSH keys when cloud-init is detected in the target image. Key changes include a new os_release module for parsing, updates to the CLI argument handling, and integration test adjustments. Feedback highlights a critical path error where a container-internal path is used as a host path for SSH key inheritance, potential inefficiencies and failures in the updated test plan, and an opportunity to refactor the image resolution logic for better maintainability.

[cgwalters]

Thanks so much for working on this!

[cgwalters]

Style nit, also could be let/else here and avoid further nesting

[cgwalters]

I think we can use shlex to parse this, it's already in the depchain

[cgwalters]

Generally avoid "error swallowing" like this. There's two different cases:

• The file doens't exist - this is normal, and we have https://docs.rs/cap-std-ext/latest/cap_std_ext/dirext/trait.CapStdExtDirExt.html#tymethod.open_optional for this reason
• All other errors (permission denied, failure to parse the file, etc.). I think for this we'd want at least to use

  bootc/crates/utils/src/result_ext.rs

  Line 4 in b1fe5d6

  fn log_err_or_else<F>(self, default: F) -> T

  )

[cgwalters]

In bootc-dev/bcvk#245 we're proposing to standardize labels on images that have Ignition, it could make sense to do the same for cloud-init.

Separate effort from this PR.

[hone]

Is there already an issue for that?

[hone]

How concerned should I be about these packit failures?

[jeckersb]

How concerned should I be about these packit failures?

The s390x build ones at least can be ignored for now, there's a known issue with those.

[jmarrero]

Thank you again for this. This needs another run of: cargo fmt which CI is complaining about and commits should be squashed. We tend to keep commits functionally grouped, if it's addressing reviews just add it to the main commit that touched that file.

[hone]

Thank you again for this. This needs another run of: cargo fmt which CI is complaining about and commits should be squashed. We tend to keep commits functionally grouped, if it's addressing reviews just add it to the main commit that touched that file.

@jmarrero happy to do that. Before I squash, should I split out the ssh authorized keys pieces or keep it in this PR?

[jmarrero]

Thank you again for this. This needs another run of: cargo fmt which CI is complaining about and commits should be squashed. We tend to keep commits functionally grouped, if it's addressing reviews just add it to the main commit that touched that file.

@jmarrero happy to do that. Before I squash, should I split out the ssh authorized keys pieces or keep it in this PR?

Yes, I would move the ssh stuff to it's own PR where we will have some additional discussions on it. The background here is that we are not 100% sure yet if we can assume the target image has cloud-init and we might want to support checking for ignition or/and cloud init on the distributions we maintain. There is some uncertainty of assuming this still. When the issue was created I think were more certain about cloud-init vs ignition.

[hone]

Yes, I would move the ssh stuff to it's own PR where we will have some additional discussions on it. The background here is that we are not 100% sure yet if we can assume the target image has cloud-init and we might want to support checking for ignition or/and cloud init on the distributions we maintain. There is some uncertainty of assuming this still. When the issue was created I think were more certain about cloud-init vs ignition.

Ok, I've squased the PR. I didn't squash 8a9b9d4 b/c it's not totally related to my PR, but something I needed to do to get CI to pass.

I've also moved the ssh authorized_keys + cloud-init commits into #2163 .

[jmarrero]

lgtm