#!/bin/sh # vim: set ts=4 sw=4 sts=4 et : ### prepare-chroot-builder : Create the build chroot instance of Archlinux ### (in which to build Qubes packages) echo "--> Alpine Linux prepare-chroot-builder" PLUGIN_DIR="$(dirname $0)" INSTALLDIR="$1" DISTRO="$2" SCRIPTSDIR=${ALPINELINUX_PLUGIN_DIR}scripts export INSTALLDIR SCRIPTSDIR # do not make volatile private key dir for the package builds themselves # this is interpreted by scripts/alpine-chroot SKIP_VOLATILE_SECRET_KEY_DIR=true export SKIP_VOLATILE_SECRET_KEY_DIR set -e [ "$VERBOSE" -ge 1 -o "$DEBUG" -gt 0 ] && echo " --> INSTALLDIR: '$INSTALLDIR'" [ "$VERBOSE" -ge 2 -o "$DEBUG" -gt 0 ] && set -x # /home/user will exist if we've completed the build previously if ! [ -d "${INSTALLDIR}/home/user" ]; then # It's non-existance means this is likely the initial run, so build it mkdir -p "$INSTALLDIR" echo " --> Installing alpine linux build root:" "${PLUGIN_DIR}/prepare-chroot-base" "$INSTALLDIR" "$DISTRO" echo " --> Configure system accounts..." [ -n "$SUDO_UID" ] && USER_OPTS="-u ${SUDO_UID}" [ -n "$USER_UID" ] && USER_OPTS="-u ${USER_UID}" if [ -n "$USER_GID" ]; then chroot "$INSTALLDIR" /bin/addgroup -g "$USER_GID" user elif [ -n "$SUDO_GID" ]; then chroot "$INSTALLDIR" /bin/addgroup -g "$SUDO_GID" user else chroot "$INSTALLDIR" /bin/addgroup user fi chroot "$INSTALLDIR" /bin/sh -c \ "useradd -g user -G wheel $USER_OPTS -m user; su -c 'mkdir qubes-src' - user" echo " --> Synchronize resolv.conf..." cp /etc/resolv.conf "${INSTALLDIR}/etc/resolv.conf" # Checking for free disk free space doesn't work in chroots # echo " --> Comment out CheckSpace in pacman.conf..." # sed 's/^ *CheckSpace/#CheckSpace/g' -i "${INSTALLDIR}/etc/pacman.conf" echo " --> Installing required makepkg dependencies..." pkgs="alpine-sdk" "${SCRIPTSDIR}/alpine-chroot" "$INSTALLDIR" /bin/sh -c \ "http_proxy='${REPO_PROXY}' apk add $pkgs" # makepkg internally calls sudo without '-E', so we need to add an # env_keep to honor proxy settings echo " --> Configure sudo..." cat > "${INSTALLDIR}/etc/sudoers.d/qubes-build-user" <> "${INSTALLDIR}/etc/pacman.conf" # if [ "0$USE_QUBES_REPO_TESTING" -gt 0 ]; then # cat "${ALPINELINUX_PLUGIN_DIR}repos/archlinux-qubes-repo-${USE_QUBES_REPO_VERSION}-current-testing.conf" \ # >> "${INSTALLDIR}/etc/pacman.conf" # fi # "${SCRIPTSDIR}/alpine-chroot" "$INSTALLDIR" pacman-key --add - < \ # "${ALPINELINUX_PLUGIN_DIR}keys/qubes-repo-archlinux-key.asc" # key_fpr=$(gpg --with-colons --show-key "${ALPINELINUX_PLUGIN_DIR}keys/qubes-repo-archlinux-key.asc" |\ # grep ^fpr: | cut -d : -f 10) #"${SCRIPTSDIR}/alpine-chroot" "$INSTALLDIR" pacman-key --lsign "$key_fpr" # fi fi