mk-deb-chroot

   1 #!/bin/bash
   2 if [ "$EUID" -ne 0 ]
   3   then echo "Please run as root"
   4   exit
   5 fi
   6 if [ -z "$1"  ]
   7   then echo "Need arg $1 for chroot to make"
   8   exit
   9 fi
  10 chrootdir="$1"
  11
  12 if [ -e /opt/chroot/$chrootdir ]; then
  13     echo "/opt/chroot/$chrootdir already exists"
  14     exit
  15 fi
  16
  17
  18 echo "Creating chroot dir '$chrootdir'"
  19
  20 # Create coriolis chroot dir in /opt
  21 mkdir /opt/chroot/$chrootdir
  22
  23 # argh apt with broken proxies and unreliable ISPs, getting fed up with it
  24 if [ -e /tmp/brokenproxy ]; then
  25     echo "Temp file containing apt proxy fix configuration already exists, skipping!"
  26 else
  27     cat <<EOF >/tmp/brokenproxy
  28 APT::Acquire::Retries "20";
  29 APT::Get::Fix-Broken "true";
  30 Acquire::http::Pipeline-Depth "0";
  31 Acquire::http::No-Cache=True;
  32 Acquire::BrokenProxy=true;
  33 EOF
  34 fi
  35
  36 if [ -e /etc/apt/apt.conf.d/80-retries ]; then
  37     echo "Host system apt.conf.d already has 80-retries, skipping!"
  38 else
  39     cp /tmp/brokenproxy /etc/apt/apt.conf.d/80-retries
  40 fi
  41
  42 # No need to check if exists, this script always runs with new chroot
  43 cp /tmp/brokenproxy /opt/chroot/$chrootdir/etc/apt/apt.conf.d/80-retries
  44
  45
  46 # Install debootstrap and schroot
  47 if [ -e /etc/debian_version ]; then
  48     # Debian detected: use apt
  49     apt install -y debootstrap schroot
  50 elif [ -e /etc/arch-release ]; then
  51     # Arch Linux detected: use pacman
  52     pacman -S --needed debootstrap schroot
  53 fi
  54
  55 # Install debian/buster chroot using debootstrap
  56 /usr/sbin/debootstrap buster /opt/chroot/$chrootdir \
  57                       http://ftp.uk.debian.org/debian
  58 echo "$chrootdir" > /opt/chroot/$chrootdir/etc/debian_chroot
  59
  60 # make chroot profile
  61 mkdir -p /etc/schroot/$chrootdir
  62 cp /etc/schroot/default/copyfiles /etc/schroot/$chrootdir
  63 touch /etc/schroot/$chrootdir/nssdatabases
  64
  65 # create special fstab not bind-mounting /home
  66 cat <<EOF >/etc/schroot/$chrootdir/fstab
  67 # <file system> <mount point>   <type>  <options>       <dump>  <pass>
  68 /proc           /proc           none    rw,bind         0       0
  69 /sys            /sys            none    rw,bind         0       0
  70 /dev            /dev            none    rw,bind         0       0
  71 /dev/pts        /dev/pts        none    rw,bind         0       0
  72 /tmp            /tmp            none    rw,bind         0       0
  73 EOF
  74
  75 if grep -x "\[$chrootdir\]" /etc/schroot/schroot.conf; then
  76     echo "Found [$chrootdir] section in /etc/schroot/schroot.conf"
  77 else
  78     # Add chroot config to schroot.conf
  79     cat <<EOF >>/etc/schroot/schroot.conf
  80 [$chrootdir]
  81 description=Debian Buster for $chrootdir
  82 directory=/opt/chroot/$chrootdir
  83 groups=sbuild-security,$SUDO_USER,users
  84 type=directory
  85 profile=$chrootdir
  86 EOF
  87
  88     echo "Adding the following $chrootdir section to /etc/schroot/schroot.conf:
  89
  90 [$chrootdir]
  91 description=Debian Buster for $chrootdir
  92 directory=/opt/chroot/$chrootdir
  93 groups=sbuild-security,$SUDO_USER,users
  94 type=directory
  95
  96 This enables you to chroot into $chrootdir as an unprivileged user by running
  97 'schroot -c $chrootdir /bin/bash'
  98 "
  99 fi
 100
 101 # Install apt dependencies in the chroot
 102 cd /tmp
 103 schroot -c $chrootdir /bin/bash << EOF
 104 echo Installing necessary apt dependencies in the chroot
 105 apt-get update -y
 106 apt-get upgrade -y
 107 apt-get install -y automake binutils-dev build-essential \
 108 ccache cmake gcc git \
 109 libtool \
 110 sysvinit-core \
 111 sysvinit-utils \
 112 sudo \
 113 python2.7 \
 114 python3 python3-pip \
 115 python3-setuptools python3-dev
 116
 117 # yeah systemd in a chroot? not very funny joke.
 118 apt-get remove -y systemd
 119
 120 # add sudo no password
 121 echo '$SUDO_USER ALL=NOPASSWD: ALL' >> /etc/sudoers.d/$chrootdir
 122
 123 # Create user with same UID in the chroot
 124 useradd -m -p `python3 -c 'import crypt; print (crypt.crypt("1234","Fx"))'` \
 125                 -s /bin/bash $SUDO_USER -k /etc/skel
 126 echo -e "
 127 Added user ${SUDO_USER} with \e[1;91mpassword: 1234\e[0m"
 128
 129 # add deb-src to sources
 130 echo deb-src http://ftp.debian.org/debian buster main > \
 131         /etc/apt/sources.list.d/bustersrc.list
 132
 133 echo -e "
 134 \e[1;91mPlease use command 'passwd ${SUDO_USER}' to change this immediately after this script is run for security purposes.\e[0m
 135 "
 136
 137 # Add convenience variable to chroot user .bash_profile
 138 echo -e 'export PATH=/usr/lib/ccache:"\044PATH"\nexport DISPLAY=:0.0\n' > /home/$SUDO_USER/.bash_profile
 139 chown $SUDO_USER /home/$SUDO_USER/.bash_profile
 140 chgrp $SUDO_USER /home/$SUDO_USER/.bash_profile
 141
 142 echo -e "Added 'export PATH=/usr/lib/ccache:\"\044PATH\"\nexport DISPLAY=:0.0' to /home/$SUDO_USER/.bash_profile to speed up rebuilds"
 143 EOF