horok/dpkg
1
0
Fork 0
Code Activity
dpkg/scripts/dpkg-buildpackage.pl
Daniel Baumann 1879661313
Adding upstream version 1.22.20. 
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
2025-06-20 21:21:00 +02:00

984 lines
30 KiB
Prolog
Executable file
Raw Permalink Blame History

#!/usr/bin/perl
#
# dpkg-buildpackage
#
# Copyright © 1996 Ian Jackson
# Copyright © 2000 Wichert Akkerman
# Copyright © 2006-2024 Guillem Jover <guillem@debian.org>
# Copyright © 2007 Frank Lichtenheld
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 2 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program. If not, see <https://www.gnu.org/licenses/>.
use strict;
use warnings;
use File::Path qw(remove_tree);
use File::Copy;
use File::Glob qw(bsd_glob GLOB_TILDE GLOB_NOCHECK);
use POSIX qw(:sys_wait_h);
use Dpkg ();
use Dpkg::Gettext;
use Dpkg::ErrorHandling;
use Dpkg::BuildTypes;
use Dpkg::BuildOptions;
use Dpkg::BuildProfiles qw(set_build_profiles);
use Dpkg::BuildDriver;
use Dpkg::Conf;
use Dpkg::Compression;
use Dpkg::Checksums;
use Dpkg::Package;
use Dpkg::Version;
use Dpkg::Control;
use Dpkg::Control::Info;
use Dpkg::Changelog::Parse;
use Dpkg::OpenPGP;
use Dpkg::OpenPGP::ErrorCodes;
use Dpkg::OpenPGP::KeyHandle;
use Dpkg::Path qw(find_command);
use Dpkg::IPC;
use Dpkg::Vendor qw(run_vendor_hook);
textdomain('dpkg-dev');
sub showversion {
printf g_("Debian %s version %s.\n"), $Dpkg::PROGNAME, $Dpkg::PROGVERSION;
print g_('
This is free software; see the GNU General Public License version 2 or
later for copying conditions. There is NO warranty.
');
}
sub usage {
printf g_(
'Usage: %s [<option>...] [--] [<filename.dsc>|<directory>]')
. "\n\n" . g_(
'Options:
--build=<type>[,...] specify the build <type>: full, source, binary,
any, all (default is \'full\').
-F, --build=full normal full build (source and binary; default).
-g, --build=source,all source and arch-indep build.
-G, --build=source,any source and arch-specific build.
-b, --build=binary binary-only, no source files.
-B, --build=any binary-only, only arch-specific files.
-A, --build=all binary-only, only arch-indep files.
-S, --build=source source-only, no binary files.
-nc, --no-pre-clean do not pre clean source tree (implies -b).
--pre-clean pre clean source tree (default).
--no-post-clean do not post clean source tree (default).
-tc, --post-clean post clean source tree.
--sanitize-env sanitize the build environment.
-D, --check-builddeps check build dependencies and conflicts (default).
-d, --no-check-builddeps do not check build dependencies and conflicts.
--ignore-builtin-builddeps
do not check builtin build dependencies.
-P, --build-profiles=<profiles>
assume comma-separated build <profiles> as active.
--rules-requires-root assume legacy Rules-Requires-Root field value.
-R, --rules-file=<rules> rules file to execute (default is debian/rules).
-T, --rules-target=<target> call debian/rules <target>.
--as-root ensure -T calls the target with root rights.
-j, --jobs[=<jobs>|auto] jobs to run simultaneously (passed to <rules>),
(default; default is auto, opt-in mode).
-J, --jobs-try[=<jobs>|auto]
alias for -j, --jobs.
--jobs-force[=<jobs>|auto]
jobs to run simultaneously (passed to <rules>),
(default is auto, forced mode).
-r, --root-command=<command>
command to gain root rights (default is fakeroot).
--check-command=<command>
command to check the .changes file (no default).
--check-option=<opt> pass <opt> to check <command>.
--hook-<name>=<command> set <command> as the hook <name>, known hooks:
preinit init preclean source build binary
buildinfo changes postclean check sign done
--buildinfo-file=<file> set the .buildinfo filename to generate.
--buildinfo-option=<opt>
pass option <opt> to dpkg-genbuildinfo.
--changes-file=<file> set the .changes filename to generate.
--sign-backend=<backend>
OpenPGP backend to use to sign
(default is auto).
-p, --sign-command=<command>
command to sign .dsc and/or .changes files
(default is gpg).
--sign-keyfile=<file> the key file to use for signing.
-k, --sign-keyid=<keyid> the key id to use for signing.
--sign-key=<keyid> alias for -k, --sign-keyid.
-ap, --sign-pause add pause before starting signature process.
-us, --unsigned-source unsigned source package.
-ui, --unsigned-buildinfo unsigned .buildinfo file.
-uc, --unsigned-changes unsigned .buildinfo and .changes file.
--no-sign do not sign any file.
--force-sign force signing the resulting files.
--admindir=<directory> change the administrative directory.
-?, --help show this help message.
--version show the version.')
. "\n\n" . g_(
'Options passed to dpkg-architecture:
-a, --host-arch <arch> set the host Debian architecture.
-t, --host-type <type> set the host GNU system type.
--target-arch <arch> set the target Debian architecture.
--target-type <type> set the target GNU system type.')
. "\n\n" . g_(
'Options passed to dpkg-genchanges:
-si source includes orig, if new upstream (default).
-sa source includes orig, always.
-sd source is diff and .dsc only.
-v<version> changes since version <version>.
-m, --source-by=<maint> maintainer for this source or build is <maint>.
--build-by=<maint> ditto.
-e, --release-by=<maint> maintainer for this change or release is <maint>.
--changed-by=<maint> ditto.
-C<descfile> changes are described in <descfile>.
--changes-option=<opt> pass option <opt> to dpkg-genchanges.')
. "\n\n" . g_(
'Options passed to dpkg-source:
-sn force Debian native source format.
-s[sAkurKUR] see dpkg-source for explanation.
-z, --compression-level=<level>
compression level to use for source.
-Z, --compression=<compressor>
compression to use for source (gz|xz|bzip2|lzma).
-i, --diff-ignore[=<regex>] ignore diffs of files matching <regex>.
-I, --tar-ignore[=<pattern>]
filter out files when building tarballs.
--source-option=<opt> pass option <opt> to dpkg-source.
'), $Dpkg::PROGNAME;
}
my $admindir;
my @debian_rules = ('debian/rules');
my @rootcommand = ();
my $signbackend;
my $signcommand;
my $preclean = 1;
my $postclean = 0;
my $sanitize_env = 0;
my $parallel;
my $parallel_force = 0;
my $checkbuilddep = 1;
my $check_builtin_builddep = 1;
my $source;
my $source_from_dsc = 0;
my @source_opts;
my $srcdir;
my $check_command = $ENV{DEB_CHECK_COMMAND};
my @check_opts;
my $signpause;
my $signkeyfile = $ENV{DEB_SIGN_KEYFILE};
my $signkeyid = $ENV{DEB_SIGN_KEYID};
my $signforce = 0;
my $signreleased = 1;
my $signsource = 1;
my $signbuildinfo = 1;
my $signchanges = 1;
my $buildtarget = 'build';
my $binarytarget = 'binary';
my $host_arch = '';
my $host_type = '';
my $target_arch = '';
my $target_type = '';
my @build_profiles = ();
my $rrr_override;
my @call_target = ();
my $call_target_as_root = 0;
my $since;
my $maint;
my $changedby;
my $desc;
my $buildinfo_file;
my @buildinfo_opts;
my $changes_file;
my @changes_opts;
my @hook_names = qw(
preinit
init
preclean
source
build
binary
buildinfo
changes
postclean
check
sign
done
);
my %hook;
$hook{$_} = undef foreach @hook_names;
my $conf = Dpkg::Conf->new();
$conf->load_config('buildpackage.conf');
# Inject config options for command-line parser.
unshift @ARGV, @{$conf};
my $build_opts = Dpkg::BuildOptions->new();
if ($build_opts->has('nocheck')) {
$check_command = undef;
} elsif (not find_command($check_command)) {
$check_command = undef;
}
while (@ARGV) {
$_ = shift @ARGV;
if (/^(?:--help|-\?)$/) {
usage;
exit 0;
} elsif (/^--version$/) {
showversion;
exit 0;
} elsif (/^--admindir$/) {
$admindir = shift @ARGV;
} elsif (/^--admindir=(.*)$/) {
$admindir = $1;
} elsif (/^--source-option=(.*)$/) {
push @source_opts, $1;
} elsif (/^--buildinfo-file=(.*)$/) {
$buildinfo_file = $1;
usageerr(g_('missing .buildinfo filename')) if not length $buildinfo_file;
} elsif (/^--buildinfo-option=(.*)$/) {
my $buildinfo_opt = $1;
if ($buildinfo_opt =~ m/^-O(.*)/) {
warning(g_('passing %s via %s is not supported; please use %s instead'),
'-O', '--buildinfo-option', '--buildinfo-file');
$buildinfo_file = $1;
} else {
push @buildinfo_opts, $buildinfo_opt;
}
} elsif (/^--changes-file=(.*)$/) {
$changes_file = $1;
usageerr(g_('missing .changes filename')) if not length $changes_file;
} elsif (/^--changes-option=(.*)$/) {
my $changes_opt = $1;
if ($changes_opt =~ m/^-O(.*)/) {
warning(g_('passing %s via %s is not supported; please use %s instead'),
'-O', '--changes-option', '--changes-file');
$changes_file = $1;
} else {
push @changes_opts, $changes_opt;
}
} elsif (/^--jobs(?:-try)?$/) {
$parallel = '';
$parallel_force = 0;
} elsif (/^(?:-[jJ]|--jobs(?:-try)?=)(\d*|auto)$/) {
$parallel = $1 || '';
$parallel_force = 0;
} elsif (/^--jobs-force(?:=(\d*|auto))?$/) {
$parallel = $1 || '';
$parallel_force = 1;
} elsif (/^(?:-r|--root-command=)(.*)$/) {
my $arg = $1;
@rootcommand = split ' ', $arg;
} elsif (/^--check-command=(.*)$/) {
$check_command = $1;
} elsif (/^--check-option=(.*)$/) {
push @check_opts, $1;
} elsif (/^--hook-([^=]+)=(.*)$/) {
my ($hook_name, $hook_cmd) = ($1, $2);
usageerr(g_('unknown hook name %s'), $hook_name)
if not exists $hook{$hook_name};
usageerr(g_('missing hook %s command'), $hook_name)
if not defined $hook_cmd;
$hook{$hook_name} = $hook_cmd;
} elsif (/^(--buildinfo-id)=.*$/) {
# Deprecated option
warning(g_('%s is deprecated; it is without effect'), $1);
} elsif (/^--sign-backend=(.*)$/) {
$signbackend = $1;
} elsif (/^(?:-p|--sign-command=)(.*)$/) {
$signcommand = $1;
} elsif (/^--sign-keyfile=(.*)$/) {
$signkeyfile = $1;
} elsif (/^(?:-k|--sign-keyid=|--sign-key=)(.*)$/) {
$signkeyid = $1;
} elsif (/^--(no-)?check-builddeps$/) {
$checkbuilddep = !(defined $1 and $1 eq 'no-');
} elsif (/^-([dD])$/) {
$checkbuilddep = ($1 eq 'D');
} elsif (/^--ignore-builtin-builddeps$/) {
$check_builtin_builddep = 0;
} elsif (/^-s(gpg|pgp)$/) {
# Deprecated option
warning(g_('-s%s is deprecated; always using gpg style interface'), $1);
} elsif (/^--force-sign$/) {
$signforce = 1;
} elsif (/^--no-sign$/) {
$signforce = 0;
$signsource = 0;
$signbuildinfo = 0;
$signchanges = 0;
} elsif (/^-us$/ or /^--unsigned-source$/) {
$signsource = 0;
} elsif (/^-ui$/ or /^--unsigned-buildinfo$/) {
$signbuildinfo = 0;
} elsif (/^-uc$/ or /^--unsigned-changes$/) {
$signbuildinfo = 0;
$signchanges = 0;
} elsif (/^-ap$/ or /^--sign-pausa$/) {
$signpause = 1;
} elsif (/^-a$/ or /^--host-arch$/) {
$host_arch = shift;
} elsif (/^-a(.*)$/ or /^--host-arch=(.*)$/) {
$host_arch = $1;
} elsif (/^-P(.*)$/ or /^--build-profiles=(.*)$/) {
my $arg = $1;
@build_profiles = split /,/, $arg;
} elsif (/^-s[iad]$/) {
push @changes_opts, $_;
} elsif (/^--(?:compression-level|compression)=.+$/) {
push @source_opts, $_;
} elsif (/^--(?:diff-ignore|tar-ignore)(?:=.+)?$/) {
push @source_opts, $_;
} elsif (/^-(?:s[nsAkurKUR]|[zZ].*|i.*|I.*)$/) {
push @source_opts, $_; # passed to dpkg-source
} elsif (/^-tc$/ or /^--post-clean$/) {
$postclean = 1;
} elsif (/^--no-post-clean$/) {
$postclean = 0;
} elsif (/^--sanitize-env$/) {
$sanitize_env = 1;
} elsif (/^-t$/ or /^--host-type$/) {
$host_type = shift; # Order DOES matter!
} elsif (/^-t(.*)$/ or /^--host-type=(.*)$/) {
$host_type = $1; # Order DOES matter!
} elsif (/^--target-arch$/) {
$target_arch = shift;
} elsif (/^--target-arch=(.*)$/) {
$target_arch = $1;
} elsif (/^--target-type$/) {
$target_type = shift;
} elsif (/^--target-type=(.*)$/) {
$target_type = $1;
} elsif (/^(?:--target|--rules-target|-T)$/) {
push @call_target, split /,/, shift @ARGV;
} elsif (/^(?:--target=|--rules-target=|-T)(.+)$/) {
my $arg = $1;
push @call_target, split /,/, $arg;
} elsif (/^--rules-requires-root$/) {
$rrr_override = 'binary-targets';
} elsif (/^--as-root$/) {
$call_target_as_root = 1;
} elsif (/^--pre-clean$/) {
$preclean = 1;
} elsif (/^-nc$/ or /^--no-pre-clean$/) {
$preclean = 0;
} elsif (/^--build=(.*)$/) {
set_build_type_from_options($1, $_);
} elsif (/^-b$/) {
set_build_type(BUILD_BINARY, $_);
} elsif (/^-B$/) {
set_build_type(BUILD_ARCH_DEP, $_);
} elsif (/^-A$/) {
set_build_type(BUILD_ARCH_INDEP, $_);
} elsif (/^-S$/) {
set_build_type(BUILD_SOURCE, $_);
} elsif (/^-G$/) {
set_build_type(BUILD_SOURCE | BUILD_ARCH_DEP, $_);
} elsif (/^-g$/) {
set_build_type(BUILD_SOURCE | BUILD_ARCH_INDEP, $_);
} elsif (/^-F$/) {
set_build_type(BUILD_FULL, $_);
} elsif (/^-v(.*)$/) {
$since = $1;
} elsif (/^-m(.*)$/ or /^--(?:source|build)-by=(.*)$/) {
$maint = $1;
} elsif (/^-e(.*)$/ or /^--(?:changed|release)-by=(.*)$/) {
$changedby = $1;
} elsif (/^-C(.*)$/) {
$desc = $1;
} elsif (m/^-[EW]$/) {
# Deprecated option
warning(g_('%s is deprecated; it is without effect'), $_);
} elsif (/^-R(.*)$/ or /^--rules-file=(.*)$/) {
my $arg = $1;
@debian_rules = split ' ', $arg;
} elsif ($_ eq '--') {
$source = shift @ARGV;
last;
} elsif (/^-/) {
usageerr(g_('unknown option or argument %s'), $_);
} else {
$source = $_;
last;
}
}
if (@call_target) {
my $targets = join ',', @call_target;
set_build_type_from_targets($targets, '--rules-target', nocheck => 1);
}
if (build_has_all(BUILD_BINARY)) {
$buildtarget = 'build';
$binarytarget = 'binary';
} elsif (build_has_any(BUILD_ARCH_DEP)) {
$buildtarget = 'build-arch';
$binarytarget = 'binary-arch';
} elsif (build_has_any(BUILD_ARCH_INDEP)) {
$buildtarget = 'build-indep';
$binarytarget = 'binary-indep';
}
if (not $preclean) {
# -nc without -b/-B/-A/-S/-F implies -b
set_build_type(BUILD_BINARY) if build_has_any(BUILD_DEFAULT);
# -nc with -S implies no dependency checks
$checkbuilddep = 0 if build_is(BUILD_SOURCE);
}
if ($call_target_as_root and @call_target == 0) {
error(g_('option %s is only meaningful with option %s'),
'--as-root', '--rules-target');
}
if ($check_command and not find_command($check_command)) {
error(g_("check-command '%s' not found"), $check_command);
}
if ($signcommand and not find_command($signcommand)) {
error(g_("sign-command '%s' not found"), $signcommand);
}
# Default to auto if none of parallel=N, -J or -j have been specified.
if (not defined $parallel and not $build_opts->has('parallel')) {
$parallel = 'auto';
}
#
# Prepare the environment.
#
run_hook('preinit');
if (defined $parallel) {
if ($parallel eq 'auto') {
# Most Unices.
$parallel = qx(getconf _NPROCESSORS_ONLN 2>/dev/null);
# Fallback for at least Irix.
$parallel = qx(getconf _NPROC_ONLN 2>/dev/null) if $?;
# Fallback to serial execution if cannot infer the number of online
# processors.
$parallel = '1' if $?;
chomp $parallel;
}
if ($parallel_force) {
$ENV{MAKEFLAGS} //= '';
$ENV{MAKEFLAGS} .= " -j$parallel";
}
$build_opts->set('parallel', $parallel);
$build_opts->export();
}
if ($build_opts->has('terse')) {
$ENV{MAKEFLAGS} //= '';
$ENV{MAKEFLAGS} .= ' --no-print-directory';
}
set_build_profiles(@build_profiles) if @build_profiles;
# Handle specified source trees.
if (defined $source) {
if (-d $source) {
chdir $source
or syserr(g_('cannot change directory to %s'), $source);
} elsif (-f $source) {
require Dpkg::Source::Package;
if (build_has_any(BUILD_SOURCE)) {
error(g_('building source package would overwrite input source %s'),
$source);
}
if ($source =~ m{/}) {
error(g_('source package %s is expected in the current directory'),
$source);
}
my $srcpkg = Dpkg::Source::Package->new(
filename => $source,
options => {
no_check => 0,
no_overwrite_dir => 1,
require_valid_signature => 0,
require_strong_checksums => 0,
},
);
$srcdir = $srcpkg->get_basedirname();
if (-e $srcdir) {
error(g_('source directory %s exists already, aborting'), $srcdir);
}
info(g_('extracting source package %s'), $source);
run_cmd('dpkg-source', @source_opts, '--extract', $source);
chdir $srcdir
or syserr(g_('cannot change directory to %s'), $srcdir);
# Track whether we extracted the source from a specified .dsc.
$source_from_dsc = 1;
}
}
my $changelog = changelog_parse();
my $ctrl = Dpkg::Control::Info->new();
my $pkg = mustsetvar($changelog->{source}, g_('source package'));
my $version = mustsetvar($changelog->{version}, g_('source version'));
my $v = Dpkg::Version->new($version);
my ($ok, $error) = version_check($v);
error($error) unless $ok;
my $sversion = $v->as_string(omit_epoch => 1);
my $uversion = $v->version();
my $distribution = mustsetvar($changelog->{distribution}, g_('source distribution'));
my $maintainer;
if ($changedby) {
$maintainer = $changedby;
} elsif ($maint) {
$maintainer = $maint;
} else {
$maintainer = mustsetvar($changelog->{maintainer}, g_('source changed by'));
}
# <https://reproducible-builds.org/specs/source-date-epoch/>
$ENV{SOURCE_DATE_EPOCH} ||= $changelog->{timestamp} || time;
my @arch_opts;
push @arch_opts, ('--host-arch', $host_arch) if $host_arch;
push @arch_opts, ('--host-type', $host_type) if $host_type;
push @arch_opts, ('--target-arch', $target_arch) if $target_arch;
push @arch_opts, ('--target-type', $target_type) if $target_type;
open my $arch_env, '-|', 'dpkg-architecture', '-f', @arch_opts
or subprocerr('dpkg-architecture');
while (<$arch_env>) {
chomp;
my ($key, $value) = split /=/, $_, 2;
$ENV{$key} = $value;
}
close $arch_env or subprocerr('dpkg-architecture');
my $arch;
if (build_has_any(BUILD_ARCH_DEP)) {
$arch = mustsetvar($ENV{DEB_HOST_ARCH}, g_('host architecture'));
} elsif (build_has_any(BUILD_ARCH_INDEP)) {
$arch = 'all';
} elsif (build_has_any(BUILD_SOURCE)) {
$arch = 'source';
}
my $pv = "${pkg}_$sversion";
my $pva = "${pkg}_${sversion}_$arch";
my $signkeytype;
my $signkeyhandle;
if (defined $signkeyfile) {
$signkeytype = 'keyfile';
$signkeyhandle = bsd_glob($signkeyfile, GLOB_TILDE | GLOB_NOCHECK);
} elsif (defined $signkeyid) {
$signkeytype = 'autoid';
$signkeyhandle = $signkeyid;
} else {
$signkeytype = 'userid';
$signkeyhandle = $maintainer;
}
my $signkey = Dpkg::OpenPGP::KeyHandle->new(
type => $signkeytype,
handle => $signkeyhandle,
);
signkey_validate();
my $openpgp = Dpkg::OpenPGP->new(
backend => $signbackend // 'auto',
cmd => $signcommand // 'auto',
needs => {
keystore => $signkey->needs_keystore(),
},
);
if (not $openpgp->can_use_secrets($signkey)) {
$signsource = 0;
$signbuildinfo = 0;
$signchanges = 0;
} elsif ($signforce) {
$signsource = 1;
$signbuildinfo = 1;
$signchanges = 1;
} elsif (($signsource or $signbuildinfo or $signchanges) and
$distribution eq 'UNRELEASED') {
$signreleased = 0;
$signsource = 0;
$signbuildinfo = 0;
$signchanges = 0;
}
if ($signsource && build_has_none(BUILD_SOURCE)) {
$signsource = 0;
}
# Sanitize build environment.
if ($sanitize_env) {
run_vendor_hook('sanitize-environment');
}
my $build_driver = Dpkg::BuildDriver->new(
ctrl => $ctrl,
debian_rules => \@debian_rules,
root_cmd => \@rootcommand,
as_root => $call_target_as_root,
rrr_override => $rrr_override,
);
#
# Preparation of environment stops here
#
run_hook('init');
$build_driver->pre_check();
if (scalar @call_target == 0) {
run_cmd('dpkg-source', @source_opts, '--before-build', '.');
}
if ($checkbuilddep) {
my @checkbuilddep_opts;
push @checkbuilddep_opts, '-A' if build_has_none(BUILD_ARCH_DEP);
push @checkbuilddep_opts, '-B' if build_has_none(BUILD_ARCH_INDEP);
push @checkbuilddep_opts, '-I' if not $check_builtin_builddep;
push @checkbuilddep_opts, "--admindir=$admindir" if $admindir;
system('dpkg-checkbuilddeps', @checkbuilddep_opts);
if (not WIFEXITED($?)) {
subprocerr('dpkg-checkbuilddeps');
} elsif (WEXITSTATUS($?)) {
errormsg(g_('build dependencies/conflicts unsatisfied; aborting'));
hint(g_('satisfy build dependencies with your package manager frontend'));
exit 3;
}
}
foreach my $call_target (@call_target) {
$build_driver->run_task($call_target);
}
exit 0 if scalar @call_target;
run_hook('preclean', {
enabled => $preclean,
});
if ($preclean) {
$build_driver->run_task('clean');
}
run_hook('source', {
enabled => build_has_any(BUILD_SOURCE),
env => {
DPKG_BUILDPACKAGE_HOOK_SOURCE_OPTIONS => join(' ', @source_opts),
},
});
if (build_has_any(BUILD_SOURCE)) {
warning(g_('building a source package without cleaning up as you asked; ' .
'it might contain undesired files')) if not $preclean;
run_cmd('dpkg-source', @source_opts, '-b', '.');
}
my $build_types = get_build_options_from_type();
my $need_buildtask = $build_driver->need_build_task($buildtarget, $binarytarget);
run_hook('build', {
enabled => build_has_any(BUILD_BINARY) && $need_buildtask,
env => {
DPKG_BUILDPACKAGE_HOOK_BUILD_TARGET => $buildtarget,
},
});
# If we are building rootless, there is no need to call the build target
# independently as non-root.
if (build_has_any(BUILD_BINARY) && $need_buildtask) {
$build_driver->run_build_task($buildtarget, $binarytarget);
}
if (build_has_any(BUILD_BINARY)) {
run_hook('binary', {
env => {
DPKG_BUILDPACKAGE_HOOK_BINARY_TARGET => $binarytarget,
},
});
$build_driver->run_task($binarytarget);
}
$buildinfo_file //= "../$pva.buildinfo";
if (build_has_none(BUILD_DEFAULT) || $source_from_dsc) {
my $buildinfo_buildtypes = $build_types;
# We can now let dpkg-genbuildinfo know that we can include the .dsc
# in the .buildinfo file as we handled it ourselves, and what we are
# building matches either the source we built or extracted it from.
$buildinfo_buildtypes .= ',source' if $source_from_dsc;
push @buildinfo_opts, "--build=$buildinfo_buildtypes";
}
push @buildinfo_opts, "--admindir=$admindir" if $admindir;
push @buildinfo_opts, "-O$buildinfo_file" if $buildinfo_file;
run_hook('buildinfo', {
env => {
DPKG_BUILDPACKAGE_HOOK_BUILDINFO_OPTIONS => join(' ', @buildinfo_opts),
},
});
run_cmd('dpkg-genbuildinfo', @buildinfo_opts);
$changes_file //= "../$pva.changes";
push @changes_opts, "--build=$build_types" if build_has_none(BUILD_DEFAULT);
push @changes_opts, "-m$maint" if defined $maint;
push @changes_opts, "-e$changedby" if defined $changedby;
push @changes_opts, "-v$since" if defined $since;
push @changes_opts, "-C$desc" if defined $desc;
push @changes_opts, "-O$changes_file";
my $changes = Dpkg::Control->new(type => CTRL_FILE_CHANGES);
run_hook('changes', {
env => {
DPKG_BUILDPACKAGE_HOOK_CHANGES_OPTIONS => join(' ', @changes_opts),
},
});
run_cmd('dpkg-genchanges', @changes_opts);
$changes->load($changes_file);
run_hook('postclean', {
enabled => $postclean,
});
if ($postclean) {
$build_driver->run_task('clean');
}
run_cmd('dpkg-source', @source_opts, '--after-build', '.');
info(describe_build($changes->{'Files'}));
run_hook('check', {
enabled => $check_command,
env => {
DPKG_BUILDPACKAGE_HOOK_CHECK_OPTIONS => join(' ', @check_opts),
},
});
if ($check_command) {
run_cmd($check_command, @check_opts, $changes_file);
}
if ($signpause && ($signsource || $signbuildinfo || $signchanges)) {
print g_("Press <enter> to start the signing process.\n");
getc();
}
run_hook('sign', {
enabled => $signsource || $signbuildinfo || $signchanges,
});
if ($signsource) {
signfile("$pv.dsc");
# Recompute the checksums as the .dsc has changed now.
my $buildinfo = Dpkg::Control->new(type => CTRL_FILE_BUILDINFO);
$buildinfo->load($buildinfo_file);
my $checksums = Dpkg::Checksums->new();
$checksums->add_from_control($buildinfo);
$checksums->add_from_file("../$pv.dsc", update => 1, key => "$pv.dsc");
$checksums->export_to_control($buildinfo);
$buildinfo->save($buildinfo_file);
}
if ($signbuildinfo) {
signfile("$pva.buildinfo");
}
if ($signsource or $signbuildinfo) {
# Recompute the checksums as the .dsc and/or .buildinfo have changed.
my $checksums = Dpkg::Checksums->new();
$checksums->add_from_control($changes);
$checksums->add_from_file("../$pv.dsc", update => 1, key => "$pv.dsc")
if $signsource;
$checksums->add_from_file($buildinfo_file, update => 1, key => "$pva.buildinfo");
$checksums->export_to_control($changes);
delete $changes->{'Checksums-Md5'};
update_files_field($changes, $checksums, "$pv.dsc")
if $signsource;
update_files_field($changes, $checksums, "$pva.buildinfo");
$changes->save($changes_file);
}
if ($signchanges) {
signfile("$pva.changes");
}
if (not $signreleased) {
warning(g_('not signing UNRELEASED build; use --force-sign to override'));
}
if ($source_from_dsc) {
info(g_('removing extracted source directory %s'), $srcdir);
chdir '..'
or syserr(g_('cannot change directory to %s'), '..');
remove_tree($srcdir);
}
run_hook('done');
sub mustsetvar {
my ($var, $text) = @_;
error(g_('unable to determine %s'), $text)
unless defined($var);
info("$text $var");
return $var;
}
sub run_cmd {
my @cmd = @_;
printcmd(@cmd);
system @cmd and subprocerr("@cmd");
}
sub run_hook {
my ($name, $opts) = @_;
my $cmd = $hook{$name};
$opts->{enabled} //= 1;
return if not $cmd;
info("running hook $name");
my %hook_vars = (
'%' => '%',
'a' => $opts->{enabled} ? 1 : 0,
'p' => $pkg // q{},
'v' => $version // q{},
's' => $sversion // q{},
'u' => $uversion // q{},
);
my $subst_hook_var = sub {
my $var = shift;
if (exists $hook_vars{$var}) {
return $hook_vars{$var};
} else {
warning(g_('unknown %% substitution in hook: %%%s'), $var);
return "\%$var";
}
};
$cmd =~ s/\%(.)/$subst_hook_var->($1)/eg;
$opts->{env}{DPKG_BUILDPACKAGE_HOOK_NAME} = $name;
# Set any environment variables for this hook invocation.
local @ENV{keys %{$opts->{env}}} = values %{$opts->{env}};
run_cmd($cmd);
}
sub update_files_field {
my ($ctrl, $checksums, $filename) = @_;
my $md5sum_regex = checksums_get_property('md5', 'regex');
my $md5sum = $checksums->get_checksum($filename, 'md5');
my $size = $checksums->get_size($filename);
my $file_regex = qr/$md5sum_regex\s+\d+\s+(\S+\s+\S+\s+\Q$filename\E)/;
$ctrl->{'Files'} =~ s/^$file_regex$/$md5sum $size $1/m;
}
sub signkey_validate {
return unless $signkey->type eq 'keyid';
if (length $signkey->handle <= 8) {
error(g_('short OpenPGP key IDs are broken; ' .
'please use key fingerprints in %s or %s instead'),
'-k', 'DEB_SIGN_KEYID');
} elsif (length $signkey->handle <= 16) {
warning(g_('long OpenPGP key IDs are strongly discouraged; ' .
'please use key fingerprints in %s or %s instead'),
'-k', 'DEB_SIGN_KEYID');
}
}
sub signfile {
my $file = shift;
my $signfile = "../$file";
printcmd("signfile $file");
my $status = $openpgp->inline_sign($signfile, "$signfile.asc", $signkey);
if ($status == OPENPGP_OK) {
move("$signfile.asc", $signfile)
or syserror(g_('cannot move %s to %s'), "$signfile.asc", $signfile);
} else {
error(g_('failed to sign %s file: %s'), $signfile,
openpgp_errorcode_to_string($status));
}
return $status
}
sub fileomitted {
my ($files, $regex) = @_;
return $files !~ m/$regex$/m
}
sub describe_build {
my $files = shift;
my $ext = compression_get_file_extension_regex();
if (fileomitted($files, qr/\.deb/)) {
# source-only upload
if (fileomitted($files, qr/\.diff\.$ext/) and
fileomitted($files, qr/\.debian\.tar\.$ext/)) {
return g_('source-only upload: Debian-native package');
} elsif (fileomitted($files, qr/\.orig\.tar\.$ext/)) {
return g_('source-only, diff-only upload (original source NOT included)');
} else {
return g_('source-only upload (original source is included)');
}
} elsif (fileomitted($files, qr/\.dsc/)) {
return g_('binary-only upload (no source included)');
} elsif (fileomitted($files, qr/\.diff\.$ext/) and
fileomitted($files, qr/\.debian\.tar\.$ext/)) {
return g_('full upload; Debian-native package (full source is included)');
} elsif (fileomitted($files, qr/\.orig\.tar\.$ext/)) {
return g_('binary and diff upload (original source NOT included)');
} else {
return g_('full upload (original source is included)');
}
}
View git blame Copy permalink