diff options
Diffstat (limited to 'lib/Sbuild/ChrootSetup.pm')
| -rw-r--r-- | lib/Sbuild/ChrootSetup.pm | 252 |
1 files changed, 252 insertions, 0 deletions
diff --git a/lib/Sbuild/ChrootSetup.pm b/lib/Sbuild/ChrootSetup.pm new file mode 100644 index 0000000..223f273 --- /dev/null +++ b/lib/Sbuild/ChrootSetup.pm @@ -0,0 +1,252 @@ +# +# ChrootSetup.pm: chroot maintenance operations +# Copyright © 2005-2009 Roger Leigh <rleigh@debian.org +# +# This program is free software: you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation, either version 2 of the License, or +# (at your option) any later version. +# +# This program is distributed in the hope that it will be useful, but +# WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU +# General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program. If not, see +# <http://www.gnu.org/licenses/>. +# +####################################################################### + +package Sbuild::ChrootSetup; + +use strict; +use warnings; + +use File::Temp qw(tempfile); +use Sbuild qw($devnull shellescape); + +BEGIN { + use Exporter (); + our (@ISA, @EXPORT); + + @ISA = qw(Exporter); + + @EXPORT = qw(basesetup shell hold_packages unhold_packages + list_packages set_package_status); +} + +sub basesetup ($$); +sub shell ($$); +sub hold_packages ($$@); +sub unhold_packages ($$@); +sub list_packages ($$@); +sub set_package_status ($$$@); + +sub basesetup ($$) { + my $session = shift; + my $conf = shift; + + # Add sbuild group + $session->run_command( + { COMMAND => ['getent', 'group', 'sbuild'], + USER => 'root', + STREAMIN => $devnull, + STREAMOUT => $devnull, + DIR => '/' }); + if ($?) { + # This will require root privileges. However, this should + # only get run at initial chroot setup time. + if ($session->groupadd("--system", "sbuild")) { + print STDERR "E: Failed to create group sbuild\n"; + return $? + } + } + + # Add users + foreach my $user ('sbuild', $session->get_conf('BUILD_USER')) { + $session->run_command( + { COMMAND => ['getent', 'passwd', $user], + USER => 'root', + STREAMIN => $devnull, + STREAMOUT => $devnull, + DIR => '/' }); + if ($?) { + # This will require root privileges. However, this should + # only get run at initial chroot setup time. + if ($session->useradd("--system", + '--home-dir', '/var/lib/sbuild', '--no-create-home', + '--shell', '/bin/bash', '--gid', 'sbuild', + '--comment', 'Debian source builder,,,', $user)) { + print STDERR "E: Failed to create user $user\n"; + return $? + } + } + } + + my $build_path = '/build'; + if (defined($session->get_conf('BUILD_PATH')) && $session->get_conf('BUILD_PATH')) { + $build_path = $session->get_conf('BUILD_PATH'); + } + + $session->run_command( + { COMMAND => ['/bin/sh', '-c', + 'set -e; if [ ! -d ' . (shellescape $build_path) . ' ] ; then mkdir -p -m 0775 ' . (shellescape $build_path) . '; fi'], + USER => 'root', + DIR => '/' }); + if ($?) { + print STDERR "E: Failed to create build directory $build_path\n"; + return $? + } + + $session->run_command( + { COMMAND => ['chown', 'sbuild:sbuild', $build_path], + USER => 'root', + DIR => '/' }); + if ($?) { + print STDERR "E: Failed to set sbuild:sbuild ownership on $build_path\n"; + return $? + } + + $session->run_command( + { COMMAND => ['chmod', '02770', $build_path], + USER => 'root', + DIR => '/' }); + if ($?) { + print STDERR "E: Failed to set 0750 permissions on $build_path\n"; + return $? + } + + $session->run_command( + { COMMAND => ['/bin/sh', '-c', + 'set -e; if [ ! -d /var/lib/sbuild ] ; then mkdir -m 2775 /var/lib/sbuild; fi'], + USER => 'root', + DIR => '/' }); + if ($?) { + print STDERR "E: Failed to create build directory /var/lib/sbuild\n"; + return $? + } + + $session->run_command( + { COMMAND => ['/bin/sh', '-c', + 'set -e; if [ ! -d /var/lib/sbuild/srcdep-lock ] ; then mkdir -m 2770 /var/lib/sbuild/srcdep-lock; fi'], + USER => 'root', + DIR => '/' }); + if ($?) { + print STDERR "E: Failed to create sbuild directory /var/lib/sbuild/srcdep-lock\n"; + return $? + } + + $session->run_command( + { COMMAND => ['chown', '-R', 'sbuild:sbuild', '/var/lib/sbuild'], + USER => 'root', + DIR => '/' }); + if ($?) { + print STDERR "E: Failed to set sbuild:sbuild ownership on /var/lib/sbuild/\n"; + return $? + } + + $session->run_command( + { COMMAND => ['chmod', '02775', '/var/lib/sbuild'], + USER => 'root', + DIR => '/' }); + if ($?) { + print STDERR "E: Failed to set 02775 permissions on /var/lib/sbuild/\n"; + return $? + } + + # Set up debconf selections. + my $pipe = $session->pipe_command( + { COMMAND => ['/usr/bin/debconf-set-selections'], + PIPE => 'out', + USER => 'root', + PRIORITY => 0, + DIR => '/' }); + + if (!$pipe) { + warn "Cannot open pipe: $!\n"; + } else { + foreach my $selection ('man-db man-db/auto-update boolean false') { + print $pipe "$selection\n"; + } + close($pipe); + if ($?) { + print STDERR "E: debconf-set-selections failed\n"; + return $? + } + } + + return 0; +} + +sub shell ($$) { + my $session = shift; + my $conf = shift; + + $session->run_command( + { COMMAND => ['/bin/sh'], + PRIORITY => 1, + USER => $conf->get('BUILD_USER'), + STREAMIN => \*STDIN, + STREAMOUT => \*STDOUT, + STREAMERR => \*STDERR }); + return $? +} + +sub hold_packages ($$@) { + my $session = shift; + my $conf = shift; + + my $status = set_package_status($session, $conf, "hold", @_); + + return $status; +} + +sub unhold_packages ($$@) { + my $session = shift; + my $conf = shift; + + my $status = set_package_status($session, $conf, "install", @_); + + return $status; +} + +sub list_packages ($$@) { + my $session = shift; + my $conf = shift; + + $session->run_command( + {COMMAND => ['dpkg', '--list', @_], + USER => 'root', + PRIORITY => 0}); + return $?; +} + +sub set_package_status ($$$@) { + my $session = shift; + my $conf = shift; + my $status = shift; + + my $pipe = $session->pipe_command( + {COMMAND => ['dpkg', '--set-selections'], + PIPE => 'out', + USER => 'root', + PRIORITY => 0}); + + if (!$pipe) { + print STDERR "Can't run dpkg --set-selections in chroot\n"; + return 1; + } + + foreach (@_) { + print $pipe "$_ $status\n"; + } + + if (!close $pipe) { + print STDERR "Can't run dpkg --set-selections in chroot\n"; + } + + return $?; +} + +1; |