forked from mirrored-repos/manjaro-tools
[mkchrootpkg] backport devtools changes
This commit is contained in:
udeved
Philip
parent
eca858eb04
commit
e44826a2e1
1 changed files with 52 additions and 109 deletions
|
|
@ -166,18 +166,17 @@ clean_temporary() {
|
|||
}
|
||||
|
||||
install_packages() {
|
||||
local pkgname
|
||||
local -a pkgnames
|
||||
local ret
|
||||
|
||||
for install_pkg in "${install_pkgs[@]}"; do
|
||||
pkgname="${install_pkg##*/}"
|
||||
cp "$install_pkg" "$copydir/$pkgname"
|
||||
pkgnames=("${install_pkgs[@]##*/}")
|
||||
|
||||
cp -- "${install_pkgs[@]}" "$copydir/root/"
|
||||
|
||||
chroot-run "$copydir" \
|
||||
pacman -U /$pkgname --noconfirm
|
||||
(( ret += !! $? ))
|
||||
|
||||
rm "$copydir/$pkgname"
|
||||
done
|
||||
pacman -U --noconfirm -- "${pkgnames[@]/#//root/}"
|
||||
ret=$?
|
||||
rm -- "${pkgnames[@]/#/$copydir/root/}"
|
||||
|
||||
# If there is no PKGBUILD we are done
|
||||
[[ -f PKGBUILD ]] || exit $ret
|
||||
|
|
@ -186,67 +185,40 @@ install_packages() {
|
|||
prepare_chroot() {
|
||||
$repack || rm -rf "$copydir/build"
|
||||
|
||||
mkdir -p "$copydir/build"
|
||||
if ! grep -q 'BUILDDIR="/build"' "$copydir/etc/makepkg.conf"; then
|
||||
echo 'BUILDDIR="/build"' >> "$copydir/etc/makepkg.conf"
|
||||
fi
|
||||
|
||||
# Read .makepkg.conf and .gnupg/pubring.gpg even if called via sudo
|
||||
if [[ -r $USER_HOME/.gnupg/pubring.kbx ]]; then
|
||||
install -D "$USER_HOME/.gnupg/pubring.kbx" "$copydir/build/.gnupg/pubring.kbx"
|
||||
fi
|
||||
if [[ -r $USER_HOME/.gnupg/pubring.gpg ]]; then
|
||||
install -D "$USER_HOME/.gnupg/pubring.gpg" "$copydir/build/.gnupg/pubring.gpg"
|
||||
fi
|
||||
|
||||
mkdir -p "$copydir/pkgdest"
|
||||
if ! grep -q 'PKGDEST="/pkgdest"' "$copydir/etc/makepkg.conf"; then
|
||||
echo 'PKGDEST="/pkgdest"' >> "$copydir/etc/makepkg.conf"
|
||||
fi
|
||||
|
||||
mkdir -p "$copydir/srcpkgdest"
|
||||
if ! grep -q 'SRCPKGDEST="/srcpkgdest"' "$copydir/etc/makepkg.conf"; then
|
||||
echo 'SRCPKGDEST="/srcpkgdest"' >> "$copydir/etc/makepkg.conf"
|
||||
fi
|
||||
|
||||
mkdir -p "$copydir/logdest"
|
||||
if ! grep -q 'LOGDEST="/logdest"' "$copydir/etc/makepkg.conf"; then
|
||||
echo 'LOGDEST="/logdest"' >> "$copydir/etc/makepkg.conf"
|
||||
fi
|
||||
|
||||
# These two get bind-mounted read-only
|
||||
# XXX: makepkg dislikes having these dirs read-only, so separate them
|
||||
mkdir -p "$copydir/startdir" "$copydir/startdir_host"
|
||||
mkdir -p "$copydir/srcdest" "$copydir/srcdest_host"
|
||||
if ! grep -q 'SRCDEST="/srcdest"' "$copydir/etc/makepkg.conf"; then
|
||||
echo 'SRCDEST="/srcdest"' >> "$copydir/etc/makepkg.conf"
|
||||
fi
|
||||
|
||||
builduser_uid=${SUDO_UID:-$UID}
|
||||
local builduser_uid="${SUDO_UID:-$UID}"
|
||||
local builduser_gid="$(id -g "$builduser_uid")"
|
||||
local install="install -o $builduser_uid -g $builduser_gid"
|
||||
local x
|
||||
|
||||
# We can't use useradd without chrooting, otherwise it invokes PAM modules
|
||||
# which we might not be able to load (i.e. when building i686 packages on
|
||||
# an x86_64 host).
|
||||
printf 'builduser:x:%d:100:builduser:/build:/bin/bash\n' "$builduser_uid" >>"$copydir/etc/passwd"
|
||||
chown -R "$builduser_uid" "$copydir"/{build,pkgdest,srcpkgdest,logdest,srcdest,startdir}
|
||||
sed -e '/^builduser:/d' -i "$copydir"/etc/{passwd,group}
|
||||
printf >>"$copydir/etc/group" 'builduser:x:%d:\n' $builduser_gid
|
||||
printf >>"$copydir/etc/passwd" 'builduser:x:%d:%d:builduser:/build:/bin/bash\n' $builduser_uid $builduser_gid
|
||||
|
||||
if [[ -n $MAKEFLAGS ]]; then
|
||||
sed -i '/^MAKEFLAGS=/d' "$copydir/etc/makepkg.conf"
|
||||
echo "MAKEFLAGS='${MAKEFLAGS}'" >> "$copydir/etc/makepkg.conf"
|
||||
fi
|
||||
info "copydir: %s" "$copydir"
|
||||
|
||||
if [[ -n $PACKAGER ]]; then
|
||||
sed -i '/^PACKAGER=/d' "$copydir/etc/makepkg.conf"
|
||||
echo "PACKAGER='${PACKAGER}'" >> "$copydir/etc/makepkg.conf"
|
||||
fi
|
||||
$install -d "$copydir"/{build,build/.gnupg,startdir,{pkg,srcpkg,src,log}dest}
|
||||
|
||||
for x in .gnupg/pubring.{kbx,gpg}; do
|
||||
[[ -r $USER_HOME/$x ]] || continue
|
||||
$install -m 644 "$USER_HOME/$x" "$copydir/build/$x"
|
||||
done
|
||||
|
||||
sed -e '/^MAKEFLAGS=/d' -e '/^PACKAGER=/d' -i "$copydir/etc/makepkg.conf"
|
||||
for x in BUILDDIR=/build PKGDEST=/pkgdest SRCPKGDEST=/srcpkgdest SRCDEST=/srcdest LOGDEST=/logdest \
|
||||
"MAKEFLAGS='$MAKEFLAGS'" "PACKAGER='$PACKAGER'"
|
||||
do
|
||||
grep -q "^$x" "$copydir/etc/makepkg.conf" && continue
|
||||
echo "$x" >>"$copydir/etc/makepkg.conf"
|
||||
done
|
||||
|
||||
if [[ ! -f $copydir/etc/sudoers.d/builduser-pacman ]]; then
|
||||
cat > "$copydir/etc/sudoers.d/builduser-pacman" <<EOF
|
||||
Defaults env_keep += "HOME"
|
||||
builduser ALL = NOPASSWD: /usr/bin/pacman
|
||||
EOF
|
||||
chmod 440 "$copydir/etc/sudoers.d/builduser-pacman"
|
||||
fi
|
||||
|
||||
# This is a little gross, but this way the script is recreated every time in the
|
||||
# working copy
|
||||
|
|
@ -258,18 +230,30 @@ EOF
|
|||
printf ' || exit\n'
|
||||
|
||||
if $run_namcap; then
|
||||
cat <<'EOF'
|
||||
pacman -S --needed --noconfirm namcap
|
||||
for pkgfile in /startdir/PKGBUILD /pkgdest/*; do
|
||||
echo "Checking ${pkgfile##*/}"
|
||||
sudo -u builduser namcap "$pkgfile" 2>&1 | tee "/logdest/${pkgfile##*/}-namcap.log"
|
||||
done
|
||||
EOF
|
||||
declare -f _chrootnamcap
|
||||
printf '_chrootnamcap || exit\n'
|
||||
fi
|
||||
} >"$copydir/chrootbuild"
|
||||
chmod +x "$copydir/chrootbuild"
|
||||
}
|
||||
|
||||
# These functions aren't run in makechrootpkg,
|
||||
# so no global variables
|
||||
_chrootbuild() {
|
||||
. /etc/profile
|
||||
export HOME=/build
|
||||
cd /startdir
|
||||
sudo -u builduser makepkg "$@"
|
||||
}
|
||||
|
||||
_chrootnamcap() {
|
||||
pacman -S --needed --noconfirm namcap
|
||||
for pkgfile in /startdir/PKGBUILD /pkgdest/*; do
|
||||
echo "Checking ${pkgfile##*/}"
|
||||
sudo -u builduser namcap "$pkgfile" 2>&1 | tee "/logdest/${pkgfile##*/}-namcap.log"
|
||||
done
|
||||
}
|
||||
|
||||
download_sources() {
|
||||
local builddir="$(mktemp -d)"
|
||||
chmod 1777 "$builddir"
|
||||
|
|
@ -289,47 +273,6 @@ download_sources() {
|
|||
rm -rf $builddir
|
||||
}
|
||||
|
||||
_chrootbuild() {
|
||||
# This function isn't run in makechrootpkg,
|
||||
# so no global variables
|
||||
|
||||
. /etc/profile
|
||||
export HOME=/build
|
||||
shopt -s nullglob
|
||||
|
||||
# XXX: Workaround makepkg disliking read-only dirs
|
||||
ln -sft /srcdest /srcdest_host/*
|
||||
ln -sft /startdir /startdir_host/*
|
||||
|
||||
# XXX: Keep bzr and svn sources writable
|
||||
# Since makepkg 4.1.1 they get checked out via cp -a, copying the symlink
|
||||
for dir in /srcdest /startdir; do
|
||||
for vcs in bzr svn; do
|
||||
cd "$dir"
|
||||
for vcsdir in */.$vcs; do
|
||||
rm "${vcsdir%/.$vcs}"
|
||||
cp -a "${dir}_host/${vcsdir%/.$vcs}" .
|
||||
chown -R builduser "${vcsdir%/.$vcs}"
|
||||
done
|
||||
done
|
||||
done
|
||||
|
||||
cd /startdir
|
||||
|
||||
# XXX: Keep PKGBUILD writable for pkgver()
|
||||
rm PKGBUILD*
|
||||
cp /startdir_host/PKGBUILD* .
|
||||
chown builduser PKGBUILD*
|
||||
|
||||
# Safety check
|
||||
if [[ ! -w PKGBUILD ]]; then
|
||||
echo "Can't write to PKGBUILD!"
|
||||
exit 1
|
||||
fi
|
||||
|
||||
sudo -u builduser makepkg "$@"
|
||||
}
|
||||
|
||||
move_products() {
|
||||
for pkgfile in "$copydir"/pkgdest/*; do
|
||||
chown "$src_owner" "$pkgfile"
|
||||
|
|
@ -374,7 +317,7 @@ download_sources
|
|||
|
||||
prepare_chroot
|
||||
|
||||
mountargs_ro="${PWD}:/startdir_host,${SRCDEST}:/srcdest_host"
|
||||
mountargs_rw="${PWD}:/startdir_host,${SRCDEST}:/srcdest_host"
|
||||
|
||||
if chroot-run -r "${mountargs_ro}" \
|
||||
-w "${mountargs_rw}" \
|
||||
|
|
|
|||
Loading…
Reference in a new issue