augeasproviders_grub
Version information
This version is compatible with:
- Puppet Enterprise 2019.8.x, 2019.7.x, 2019.5.x, 2019.4.x, 2019.3.x, 2019.2.x, 2019.1.x, 2019.0.x, 2018.1.x, 2017.3.x
- Puppet >= 5.0.0 < 7.0.0
- , , , ,
Start using this module
Add this module to your Puppetfile:
mod 'herculesteam-augeasproviders_grub', '3.2.0'
Learn more about managing modules with a PuppetfileDocumentation
grub: type/provider for grub files for Puppet
This module provides a new type/provider for Puppet to read and modify grub config files using the Augeas configuration library.
The advantage of using Augeas over the default Puppet parsedfile
implementations is that Augeas will go to great lengths to preserve file
formatting and comments, while also failing safely when needed.
This provider will hide all of the Augeas commands etc., you don't need to know anything about Augeas to make use of it.
Requirements
Ensure both Augeas and ruby-augeas 0.3.0+ bindings are installed and working as normal.
See Puppet/Augeas pre-requisites.
Installing
On Puppet 2.7.14+, the module can be installed easily (documentation):
puppet module install herculesteam/augeasproviders_grub
You may see an error similar to this on Puppet 2.x (#13858):
Error 400 on SERVER: Puppet::Parser::AST::Resource failed with error ArgumentError: Invalid resource type `kernel_parameter` at ...
Ensure the module is present in your puppetmaster's own environment (it doesn't
have to use it) and that the master has pluginsync enabled. Run the agent on
the puppetmaster to cause the custom types to be synced to its local libdir
(puppet master --configprint libdir
) and then restart the puppetmaster so it
loads them.
Compatibility
Puppet versions
Minimum of Puppet 2.7.
Augeas versions
Augeas Versions | 0.10.0 | 1.0.0 | 1.1.0 | 1.2.0 |
---|---|---|---|---|
PROVIDERS | ||||
kernel_parameter (grub) | yes | yes | yes | yes |
kernel_parameter (grub2) | yes | yes | yes | yes |
grub_config (grub) | yes | yes | yes | yes |
grub_config (grub2) | yes | yes | yes | yes |
grub_menuentry (grub) | yes | yes | yes | yes |
grub_menuentry (grub2) | N/A | N/A | N/A | N/A |
grub_user (grub2) | N/A | N/A | N/A | N/A |
Note: grub_menuentry and grub_user for GRUB2 do not use Augeas at this time due to lack of available lenses.
Documentation and examples
Type documentation can be generated with puppet doc -r type
or viewed on the
Puppet Forge page.
kernel_parameter provider
This is a custom type and provider supplied by augeasproviders
. It supports
both GRUB Legacy (0.9x) and GRUB 2 configurations.
manage parameter without value
kernel_parameter { "quiet":
ensure => present,
}
manage parameter with value
kernel_parameter { "elevator":
ensure => present,
value => "deadline",
}
manage parameter with multiple values
kernel_parameter { "rd_LVM_LV":
ensure => present,
value => ["vg/lvroot", "vg/lvvar"],
}
manage parameter on certain boot types
Bootmode defaults to "all", so settings are applied for all boot types usually.
Apply only to the default boot:
kernel_parameter { "quiet":
ensure => present,
bootmode => "default",
}
Apply only to normal boots. In GRUB legacy, normal boots consist of the default boot plus non-recovery ones. In GRUB2, normal bootmode is just an alias for default.
kernel_parameter { "quiet":
ensure => present,
bootmode => "normal",
}
Only recovery mode boots (unsupported with GRUB 2):
kernel_parameter { "quiet":
ensure => present,
bootmode => "recovery",
}
delete entry
kernel_parameter { "rhgb":
ensure => absent,
}
manage parameter in another config location
kernel_parameter { "elevator":
ensure => present,
value => "deadline",
target => "/mnt/boot/grub/menu.lst",
}
grub_config provider
This custom type manages GRUB Legacy and GRUB2 global configuration parameters.
In GRUB Legacy, the global items at the top of the grub.conf
file are managed.
In GRUB2, the parameters in /etc/defaults/grub
are managed.
When using GRUB2, take care that you aren't conflicting with an option later
specified by grub_menuentry
. Also, be aware that, in GRUB2, any global items
here will not be referenced unless you reference them by variable name per Bash
semantics.
change the default legacy GRUB timeout
This will set the timeout
global value in the Legacy GRUB configuration.
grub_config { 'timeout':
value => '1'
}
change the default GRUB2 timeout
This will set the GRUB_TIMEOUT
global value in the GRUB2 configuration.
grub_config { 'GRUB_TIMEOUT':
value => '1'
}
grub_menuentry provider
This is a custom type to manage GRUB Legacy and GRUB2 menu entries.
The GRUB Legacy provider utlizes Augeas under the hood but GRUB2 did not have an available Lens and was written in Ruby.
This will not allow for modifying dynamically generated system entries. You will need to remove some of the native GRUB2 configuration scripts to be fully independent of the default system values.
The GRUB2 output of this provider will be saved, by default, in
/etc/grub.d/05_puppet_managed_<random_string>
where the random_string
is a
hash of the resource name
.
new entry preserving all existing values
This will create a new menu entry and copy over any default values if present. If the entry currently exists, it will preserve all values and not overwrite them with the default system values.
grub_menuentry { 'new_entry':
root => '(hd0,0)',
kernel => ':preserve:',
initrd => ':preserve:',
kernel_options => [':preserve:']
}
kernel option lines
There are many methods for identifying and manipulating kernel option lines and so a method was developed for handling the most common scenarios. You can, of course, simply denote every option, but this is cumbersome and prone to error over time.
The following format is supported for the new options:
':defaults:' => Copy defaults from the default GRUB entry
':preserve:' => Preserve all existing options (if present)
Note: ':defaults:' and ':preserve:' are mutually exclusive.
All of the options below supersede any items affected by the above
'entry(=.*)?' => Ensure that `entry` exists *as entered*; replaces all
other options with the same name
'!:entry(=.*)?' => Add this option to the end of the arguments
preserving any other options of the same name
'-:entry' => Ensure that all instances of `entry` do not exist
'-:entry=foo' => Ensure that only instances of `entry` with value `foo` do not exist
Note: Option removals and additions have higher precedence than preservation
grub_user provider
This type manages GRUB2 users and superusers.
The output of this provider is stored, by default, in /etc/grub.d/01_puppet_managed_users
.
Any plain text passwords are automatically converted into the appropriate GRUB PBKDF2 format.
Note: If no users are defined as superusers, then GRUB2 will not enforce user restrictions on your entries.
user with a plain text password
grub_user { 'test_user':
password => 'plain text password'
}
user with a pre-hashed password
grub_user { 'test_user':
password => 'grub.pbkdf2.sha512.10000.REALLY_LONG_STRING'
}
user that is a superuser with a plain text password and 20000 rounds
grub_user { 'test_user':
password => 'plain text password',
superuser => true,
rounds => '20000'
}
Issues
Please file any issues or suggestions on GitHub.
Changelog
3.2.0
- Support Puppet 6 (#42)
- Fix String value issues in grub_config (#46)
- Fix EFI code for grub_config and grub_menuentry (#48)
- Add BLS support to grub_menuentry (#50)
3.1.0
- Add back path for grub.cfg on Debian OS. (#36)
- Deprecate support for Puppet < 5
- Support Puppet 5 & 6
- Update supported OSes in metadata.json
3.0.1
- Fix generation of grub2 user entries
- Add support for OEL
3.0.0
- Added code to fix the EFI stack on Linux hosts
- Restricted the RHEL and CentOS support to only what can be tested
- Pinned supported puppet versions between 4.7.2 and 5.0.0
- This is the oldest Puppet, Inc. supported version and there are currently issues in 5.X
2.4.0
- Add support for global GRUB configuration
- Add support for grub_menuentry providing the ability to manage individual menu entries for both GRUB Legacy and GRUB2
- Add support for managing GRUB2 users
- The following custom types were created:
- grub_config : Manages global GRUB settings
- grub_menuentry : Manages GRUB menuentries
- grub_user : Manages GRUB2 users
- Confine GRUB providers to presence of menus, prefer GRUB 2 (#8)
- Fix build on Ruby 1.8
2.3.0
- Fix GRUB_CMDLINE_LINUX_DEFAULT (issue #14)
- Add grub.cfg location for UEFI systems (issue #16)
- Add two defaults in grub2 provider (issue #17)
2.2.0
- Add support for bootmode 'default' (issue #3)
2.1.0
- Set default to grub2 provider on el7 based systems (fix #9)
- Load lenses from lib/augeas/lenses in tests
- Add Puppet 4 to test matrix
2.0.1
- Fix metadata.json
- Various minor updates to Travis test configuration
2.0.0
- First release of split module.
Dependencies
- herculesteam/augeasproviders_core (>=2.4.0 < 3.0.0)
augeasproviders: alternative Augeas-based providers for Puppet Copyright (c) 2012-2016 Dominic Cleal and Raphaël Pinson Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0 Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.