 | This article has multiple issues. Please helpimprove it or discuss these issues on thetalk page.(Learn how and when to remove these messages) (Learn how and when to remove this message)
|
| cdist | |
|---|---|
 | |
| Original authors | Nico Schottelius, Steven Armstrong[1] |
| Initial release | 2010; 15 years ago (2010) |
| Stable release | |
| Repository | |
| Written in | Python,Bourne shell |
| Operating system | Linux,Unix-like,macOS[3] |
| Type | Software configuration management |
| License | GNU General Public License version 3 or later |
| Website | www |
cdist is afreesoftware configuration management tool forUnix-like systems. It managesnodes overSSH using theBourne Shell, and does not require any additional software to be installed on target nodes.
Cdist differentiates itself from competing configuration management systems by choosing the Bourne Shell as the primary language for writing configuration scripts and requiring effectively no dependencies on target nodes. Although cdist's core is written inPython, an interpreter is only required on the host machine, not target nodes.
Cdist wasforked in August 2022 asskonfig.[4]
cdist development started in 2010 atETH Zurich andis actively being developed[5] and is maintained primarily by Nico Schottelius andSteven Armstrong.[6]cdist is being used at various companies in Switzerland (such asETH Zurich[7] and The OMA Browser project),[8] the US, Germany and France.
cdist is a zero dependency configuration management system: It requires only ssh and a bourne-compatible shell on target hosts, which are provided by default on mostUnix-like machines.[9] Because of this, cdist can be used to bootstrap other configuration management systems.[10]
cdist is not typically installed as a package (like .deb or .rpm), but rather viagit.All commands are run from the created checkout.The entry point for any configuration is the shell script conf/manifest/init, which is called initial manifest in cdist terms.[11]
The main components of cdist are so called types, which bundle functionality.[12]The types essentially consists of a number of shell scripts to define which types a typereuses and which code is generated to be executed on the target host.
cdist is split into two components:
Cdist's core handles reading configuration and communicating with remote hosts. Like Ansible, cdist uses a "push" model to apply configuration changes: A cdist process on the "host" machine connects to any number of remote nodes via SSH and then performs configuration updates on those nodes. Cdist can configure multiple hosts in parallel to reduce the time spent configuring.[13]
The configuration scripts define how the targets shall be configured. They are typically written inBourne Shell and consists of
__file type can be turned into multiple "objects", each one representing the creation of a certain file. Ansible's "roles" are the equivalent of cdist's types. Types can have many components:__file type's ID is the absolute path to the file.__file type takes agroup parameter which specifies to which Unix group should own the file.__file type uses explorers to determine whether the file being created already exists. It sometimes uses this information to skip creation of the file.gencode-remote script is the main way to actually update the configuration of target nodes.gencode-remote runs on the local machine, but itsstandard output is sent to the remote machine and executed as a shell script. There is also a less frequently usedgencode-local script which outputs code to be run locally.Shell is thede facto language for writing cdist configuration scripts, but most of the scripts can be written in any language if they contain a suitableshebang line. Shell scripting is favored because of how simple it is to access environment variables, read files, and execute system commands.
All user configurable parts are contained in manifests or gencode-scripts, which are shell scripts.Shell scripts were chosen, because Unix System Administrators are usually proficient in readingand writing shell scripts. Furthermore, shell is also commonly available on potential target systems,thus avoiding the need to install additional software there ("zero dependencies").
cdist reads its configuration from the initial manifest (conf/manifest/init), in which hosts are mapped totypes:
case"$__target_host"inmyhostname)__packagezsh--statepresent__addifnosuchline/tmp/cdist-welcome--line"Welcome to cdist";;esac
When using the types in cdist, they are called like normal programs in manifests and can make use ofadvanced parameter parsing as well as reading from stdin:
# Provide a default file, but let the user change it__file/home/frodo/.bashrc--source"/etc/skel/.bashrc"\--stateexists\--ownerfrodo--mode0600# Take file content from stdin__file/tmp/whatever--ownerroot--grouproot--mode644--source-<< DONEHere goes the content for /tmp/whateverDONE
Dependencies are expressed by setting up therequire environment variable:
__directory /tmp/foobar require="__directory//tmp/foobar" __file /tmp/foobar/baz
Access to paths and files within types is given by environment variables like$__object.
Ansible, like cdist, uses an agentless push model to configure nodes.[9] However, Ansible requiresPython for some types of targets,[15] whereas cdist does not. Ansible makes a distinction between roles, written in a declarative YAML-based language, and modules, written in Python. Cdist only has "types" which serve the purposes of both modules and roles and are mostly written in Bourne Shell. Cdist's approach might be preferable because Shell is familiar to many system administrators who have never used a configuration management system before, but Ansible's declarative language is arguably more readable and appropriate.
The managed node (the machine that Ansible is managing) does not require Ansible to be installed, but requires Python 2.7, or Python 3.5 - 3.11 to run Ansible library code.