Presentation is loading. Please wait.

Presentation is loading. Please wait.

application into a Flatpak

Published byLionel Hart Modified over 6 years ago

Similar presentations

Presentation on theme: "application into a Flatpak"— Presentation transcript:

1 application into a Flatpak
How to make your application into a Flatpak Owen Taylor Red Hat Flock 2017 August 29, 2017

2 The Flatpak Model

3 OS Init System Display Server Kernel Libraries

4 OS Applications as OS packages Problems: Tied update cycles
Distribution specific packages No security Init System Display Server Kernel Libraries GIMP tuxkart

5 OS App App Init System Display Server Kernel GIMP Libraries tuxkart

6 OS App App Runtime Avoids duplication on disk and in memory
Init System Display Server Kernel GIMP Libraries tuxkart Libraries Libraries Runtime Libraries Avoids duplication on disk and in memory Security updates in one place

7 OS App App Runtime App App Runtime Init System Display Server Kernel
GIMP Libraries tuxkart Libraries Init System Display Server Kernel Runtime Libraries Libraries App App Scribus Libraries Chrome Libraries Runtime Libraries

8 Desktop Applications ✔LibreOffice ✔GIMP ✔tuxkart ✔Eclipse ✔Google Chrome ✗MariaDB ✗Wordpress ✗vi

9 Where do you get Flatpaks
From application creators Open source projects Companies Or from Linux distributors Decentralized

10 Where do you get Runtimes
“Upstream” runtimes org.freedesktop.Platform org.gnome.Platform org.kde.Platform Distribution runtimes org.fedoraproject.Platform

11 Distribution advantages
Packaging of older applications Existing build recipes Security updates mechanism

12 Security and Permissions

13 Application Environment

14 Permissions Application Environment Network Display Server (Wayland)

15 (not effectively sandboxed)
Application Environment (not effectively sandboxed) Network Display Server (X11) Filesystem access

16 Permissions Portals Application Environment Network Display Server
(Wayland) File Portal Print Portal Portals Filesystem access Printing system

17 Portals Simple, inherently secure system services (D-Bus)
Safe via user interaction Available portals File, Print, Show URI, Network Status, HTTP Proxy Config GNOME and KDE backends

18 Portal Demo

19 Flatpak Implementation
Each application has it’s own Filesystem namespace Runtime is available at /usr Application and bundled libraries at /app Other kernel security features PID and UID namespaces seccomp

20 OSTree “git for binaries” Deduplication On disk In memory
On the network Atomic updates

21 OCI Images Alternate way to distribute a Flatpak
From Open Container Initiative ( Evolution of the Docker format Advantages: avoids lots of small files allows distribution alongside server containers

22 OSTree Repository OSTree Repository Docker/OCI Registry Flatpak GNOME Software

23 Flatpaks from Fedora Packages

24 Why Flatpak if you can RPM?
Sandboxing Reliable upgrades without rebooting Ability to try out applications from newer/older Fedora Installation on top of Atomic Workstation

25 Flatpak = A module packaged into a container image

26 Flatpak = A (particular sort of) module packaged into a (particular sort of) container image

27 The big picture Modules: flatpak-runtime module
One module per Flatpak application Built into OCI Images by the Fedora Layered Image Build Service Distributed via registry.fedoraproject.org

28 Why modules Natural way to do rebuilds of packages with – prefix=/app
Increased packager flexibility Alignment with general modularity efforts No extra new infrastructure components

29 Fedora Infrastructure
Module Build Service (MBS) – manages module builds in Koji Product Definition Center (PDC) – stores information about module builds On Demand Compose Service (ODCS) – creates yum repositories for module builds Fedora Layered Image Build Service (FLIBS) – builds containers and now flatpaks registry.fedoraproject.org – stores containers and now flatpaks

30 An example Flatpak Eye of GNOME Image Viewer

31 eog.yaml Module metadata file Describes what packages should be built
And what those packages depend upon

32 eog.yaml document: modulemd version: 1 data:
summary: Eye of GNOME Application Module description: The Eye of GNOME image viewer (eog) is the official image viewer for the GNOME desktop [...] license: module: [ MIT ] dependencies: buildrequires: flatpak-runtime: f26 base-runtime: f26 perl: f26 common-build-dependencies: f26 shared-userspace: f26 requires: profiles: default: rpms: - eog eog.yaml

33 eog.yaml components: rpms: eog: rationale: Core application ref: f26
buildorder: 3 exempi: rationale: Dependency buildorder: 2 libexif: glade: rationale: Build dependency for libpeas buildorder: 1 libpeas: eog.yaml

34 Creating eog.yaml https://pagure.io/flatpak-module-tools
Future common module tools $ flatpak-module create-modulemd \ --from-package eog -o eog.yaml

35 flatpak.json Has flatpak-specific metadata
Describes the runtime environment

36 flatpak.json man flatpak-build-finish { "id": "org.gnome.eog",
"runtime": "org.fedoraproject.Platform", "runtime-version": "26", "command": "eog", "tags": ["Viewer"], "finish-args": ["--filesystem=host", "--share=ipc", "--socket=x11", "--socket=wayland", "--socket=session-bus", "--filesystem=~/.config/dconf:ro", "--filesystem=xdg-run/dconf", "--talk-name=ca.desrt.dconf", "--env=DCONF_USER_CONFIG_DIR=.config/dconf"] } flatpak.json man flatpak-build-finish

37 Local build $ mbs-build local
$ flatpak-module create-flatpak -l eog:f26 \ --module eog --info flatpak.json [ prints path to org.gnome.eog.flatpak ] $ flatpak-install --user <path_to_bundle> $ flatpak run org.gnome.eog

38 Koji Build (in progress)
$ fedpkg clone module/eog && cd eog $ mbs-build submit $ koji-containerbuild flatpak-build candidate \ git://pkgs.fedoraproject.org/module/eog#origin/master \ --git-branch=master –module=eog:master $ flatpak remote-add –registry \ fedora-candidate candidate-registry.fedoraproject.org $ flatpak install fedora-candidate org.gnome.eog $ flatpak run org.gnome.org

39 Project status Building modules with prefix=/app
Layered Image Build Service support for Flatpak atomic-reactor osbs-client koji-containerbuild OCI Support in docker registry (existing patch) Exporting browsing info from docker registry Installing flatpaks from a docker registry Working Working, unmerged Needs to be written

40 Questions? https://flatpak.org @FlatpakApps irc.freenode.net:#flatpak
aks @FlatpakApps irc.freenode.net:#flatpak irc.freenode.net:#fedora-workstation

Download ppt "application into a Flatpak"

Similar presentations

Microsoft Windows NT Embedded 4.0

Microsoft Windows NT Embedded 4.0
Linux Operating System Linux is a free open-source operating system based on Unix. Linux was originally created by Linus Torvalds with the assistance of.

Linux Operating System Linux is a free open-source operating system based on Unix. Linux was originally created by Linus Torvalds with the assistance of.
Fedora Linux Fedora: the (somewhat) new Linux distribution on the block. To switch or not to switch? Moreover, why use it at all? And, what is its target?

Fedora Linux Fedora: the (somewhat) new Linux distribution on the block. To switch or not to switch? Moreover, why use it at all? And, what is its target?
Overview Basic functions Features Installation: Windows host and Linux host.

Overview Basic functions Features Installation: Windows host and Linux host.
Downloading & Installing Software Chapter 13. Maintaining the System Yum Pirut BitTiorrent Rpm Keeping Software Up To Date Up2date Red Hat Network Wget.

Downloading & Installing Software Chapter 13. Maintaining the System Yum Pirut BitTiorrent Rpm Keeping Software Up To Date Up2date Red Hat Network Wget.
Linux GUI Chapter 5. Graphical User Interface GUI vs. CLI Easier and more intuitive More popular and advanced Needed for graphics, web browsing Linux.

Linux GUI Chapter 5. Graphical User Interface GUI vs. CLI Easier and more intuitive More popular and advanced Needed for graphics, web browsing Linux.
Linux Operations and Administration

Linux Operations and Administration
Introduction to the Atlas Platform Mobile & Pervasive Computing Laboratory Department of Computer and Information Sciences and Engineering University of.

Introduction to the Atlas Platform Mobile & Pervasive Computing Laboratory Department of Computer and Information Sciences and Engineering University of.
SUSE Linux Enterprise Server Administration (Course 3037) Chapter 4 Manage Software for SUSE Linux Enterprise Server.

SUSE Linux Enterprise Server Administration (Course 3037) Chapter 4 Manage Software for SUSE Linux Enterprise Server.
Model a Container Runtime environment on Your Mac with VMware AppCatalyst DevOps @ VMworld Fabio Rapposelli - @fabiorapposelli.

Model a Container Runtime environment on Your Mac with VMware AppCatalyst VMworld Fabio Rapposelli
Copyright © 2011 EMC Corporation. All Rights Reserved. MODULE – 6 VIRTUALIZED DATA CENTER – DESKTOP AND APPLICATION 1.

Copyright © 2011 EMC Corporation. All Rights Reserved. MODULE – 6 VIRTUALIZED DATA CENTER – DESKTOP AND APPLICATION 1.
October,18-22 2004 Scientific Linux INFN/Trieste B.Gobbo – Compass R.Gomezel - T.Macorini - L.Strizzolo INFN - Trieste.

October, Scientific Linux INFN/Trieste B.Gobbo – Compass R.Gomezel - T.Macorini - L.Strizzolo INFN - Trieste.
Introduction to Cloud Computing

Introduction to Cloud Computing
Working with Ubuntu Linux Track 2 Workshop June 2010 Pago Pago, American Samoa.

Working with Ubuntu Linux Track 2 Workshop June 2010 Pago Pago, American Samoa.
11 MANAGING AND DISTRIBUTING SOFTWARE BY USING GROUP POLICY Chapter 5.

11 MANAGING AND DISTRIBUTING SOFTWARE BY USING GROUP POLICY Chapter 5.
INFSOM-RI-1234567 Juelich, 10 June 2008 ETICS - Maven From competition, to collaboration.

INFSOM-RI Juelich, 10 June 2008 ETICS - Maven From competition, to collaboration.
Installation and Development Tools National Center for Supercomputing Applications University of Illinois at Urbana-Champaign The SEASR project and its.

Installation and Development Tools National Center for Supercomputing Applications University of Illinois at Urbana-Champaign The SEASR project and its.
Linux Introduction What is Linux? How do you use it?

Linux Introduction What is Linux? How do you use it?
Android Security Model that Provide a Base Operating System Presented: Hayder Abdulhameed.

Android Security Model that Provide a Base Operating System Presented: Hayder Abdulhameed.
IT320 OPERATING SYSTEM CONCEPTS Unit 3: Welcome to Linux June 2011 Kaplan University 1.

IT320 OPERATING SYSTEM CONCEPTS Unit 3: Welcome to Linux June 2011 Kaplan University 1.

Similar presentations

Ads by Google