projects / dev-env-setup.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
remove trailing spaces
[dev-env-setup.git] / mk-deb-chroot
1 #!/bin/bash
2 if [ "$EUID" -ne 0 ]
3 then echo "Please run as root"
4 exit
5 fi
6 if [ -z "$1" ]
7 then echo "Need arg $1 for chroot to make"
8 exit
9 fi
10 chrootdir="$1"
11
12 if [ -e /opt/chroot/$chrootdir ]; then
13 echo "/opt/chroot/$chrootdir already exists"
14 exit
15 fi
16
17
18 echo "Creating chroot dir '$chrootdir'"
19
20 # Create coriolis chroot dir in /opt
21 mkdir -p /opt/chroot/$chrootdir
22
23 # argh apt with broken proxies and unreliable ISPs, getting fed up with it
24 if [ -e /tmp/brokenproxy ]; then
25 echo "Temp file containing apt proxy fix configuration already exists, skipping!"
26 else
27 cat <<EOF >/tmp/brokenproxy
28 APT::Acquire::Retries "20";
29 APT::Get::Fix-Broken "true";
30 Acquire::http::Pipeline-Depth "0";
31 Acquire::http::No-Cache=True;
32 Acquire::BrokenProxy=true;
33 EOF
34 fi
35
36 if [ -e /etc/apt/apt.conf.d/80-retries ]; then
37 echo "Host system apt.conf.d already has 80-retries, skipping!"
38 else
39 cp /tmp/brokenproxy /etc/apt/apt.conf.d/80-retries
40 fi
41
42 # Install debootstrap and schroot
43 if [ -e /etc/debian_version ]; then
44 # Debian detected: use apt
45 REQUIRED_PKG="debootstrap"
46 PKG_OK=$(dpkg-query -W --showformat='${Status}\n'\
47 $REQUIRED_PKG|grep "install ok installed")
48 echo Checking for $REQUIRED_PKG: $PKG_OK
49 if [ "" = "$PKG_OK" ]; then
50 apt install -y debootstrap
51 fi
52
53 REQUIRED_PKG="schroot"
54 PKG_OK=$(dpkg-query -W --showformat='${Status}\n'\
55 $REQUIRED_PKG|grep "install ok installed")
56 echo Checking for $REQUIRED_PKG: $PKG_OK
57 if [ "" = "$PKG_OK" ]; then
58 apt install -y schroot
59 fi
60 elif [ -e /etc/arch-release ]; then
61 # Arch Linux detected: use pacman
62 pacman -S --needed debootstrap schroot
63 fi
64
65 # Install debian/buster chroot using debootstrap,
66 # any /etc/ config must be done after this point!
67 /usr/sbin/debootstrap buster /opt/chroot/$chrootdir \
68 http://ftp.uk.debian.org/debian
69 echo "$chrootdir" > /opt/chroot/$chrootdir/etc/debian_chroot
70
71 # make chroot profile
72 mkdir -p /etc/schroot/$chrootdir
73 cp /etc/schroot/default/copyfiles /etc/schroot/$chrootdir
74 touch /etc/schroot/$chrootdir/nssdatabases
75
76 # Copy over brokenproxy apt script to the new chroot environment
77 cp /tmp/brokenproxy /opt/chroot/$chrootdir/etc/apt/apt.conf.d/80-retries
78
79 # create special fstab not bind-mounting /home
80 schroot_fstab="
81 # <file system> <mount point> <type> <options> <dump> <pass>
82 /proc /proc none rw,bind 0 0
83 /sys /sys none rw,bind 0 0
84 /dev /dev none rw,bind 0 0
85 /dev/pts /dev/pts none rw,bind 0 0
86 /tmp /tmp none rw,bind 0 0
87 "
88
89 cat <<EOF >/etc/schroot/$chrootdir/fstab
90 $schroot_fstab
91 EOF
92
93 echo "Adding the following fstab mounts to /etc/schroot/$chrootdir/fstab:
94
95 $schroot_fstab
96
97 These rules are for the virtual filesystems used by linux in the chroot env
98 "
99
100 schroot_profile="
101 [$chrootdir]
102 description=Debian Buster for $chrootdir
103 directory=/opt/chroot/$chrootdir
104 groups=sbuild-security,$SUDO_USER,users
105 type=directory
106 profile=$chrootdir
107 "
108
109 if grep -x "\[$chrootdir\]" /etc/schroot/schroot.conf; then
110 echo "Found [$chrootdir] section in /etc/schroot/schroot.conf"
111 else
112 # Add chroot config to schroot.conf
113 cat <<EOF >>/etc/schroot/schroot.conf
114 $schroot_profile
115 EOF
116
117 echo "Adding the following $chrootdir section to /etc/schroot/schroot.conf:
118
119 $schroot_profile
120
121 This enables you to chroot into $chrootdir as an unprivileged user by running
122 'schroot -c $chrootdir /bin/bash'
123 "
124 fi
125
126 #!!! buster backports is needed for a lot of things
127 cat << EOF > /opt/chroot/$chrootdir/etc/apt/sources.list.d/buster_backports.list
128 deb http://deb.debian.org/debian buster-backports main
129 deb-src http://deb.debian.org/debian buster-backports main
130 EOF
131
132 # oooo annoying, pin preferences for buster-backports
133 # make it low pririty for reproduceability
134 cat << EOF > /opt/chroot/$chrootdir/etc/apt/preferences.d/99buster-backports
135 Package: *
136 Pin: release a=buster-backports
137 Pin-Priority: 100
138
139 Package: libcurl3-gnutls
140 Pin: version 7.64*
141 Pin-Priority: 1001
142 EOF
143
144 # Install apt dependencies in the chroot
145 cd /tmp
146 schroot -c $chrootdir /bin/bash --directory=/tmp << EOF
147 echo Installing necessary apt dependencies in the chroot
148 apt-get update -y
149 apt-get upgrade -y
150 apt-get install -y automake binutils-dev build-essential \
151 ccache cmake gcc git \
152 libtool \
153 sysvinit-core \
154 sysvinit-utils \
155 sudo \
156 python2.7 \
157 python3 python3-pip \
158 python3-setuptools python3-dev \
159 python3-setuptools-scm
160
161 # yeah systemd in a chroot? not very funny joke.
162 apt-get remove -y systemd
163
164 # add sudo no password
165 echo '$SUDO_USER ALL=NOPASSWD: ALL' >> /etc/sudoers.d/$chrootdir
166
167 # Create user with same UID in the chroot
168 useradd -m -p `python3 -c 'import crypt; print (crypt.crypt("1234","Fx"))'` \
169 -s /bin/bash $SUDO_USER -k /etc/skel
170 echo -e "
171 Added user ${SUDO_USER} with \e[1;91mpassword: 1234\e[0m"
172
173 # add deb-src to sources
174 echo deb-src http://ftp.debian.org/debian buster main > \
175 /etc/apt/sources.list.d/bustersrc.list
176
177 echo -e "
178 \e[1;91mPlease use command 'passwd ${SUDO_USER}' to change this immediately after this script is run for security purposes.\e[0m
179 "
180
181 # Add convenience variable to chroot user .bash_profile
182 echo -e 'export PATH=/usr/lib/ccache:"\044PATH"\nexport DISPLAY=:0.0\n' > /home/$SUDO_USER/.bash_profile
183 chown $SUDO_USER /home/$SUDO_USER/.bash_profile
184 chgrp $SUDO_USER /home/$SUDO_USER/.bash_profile
185
186 echo -e "Added 'export PATH=/usr/lib/ccache:\"\044PATH\"\nexport DISPLAY=:0.0' to /home/$SUDO_USER/.bash_profile to speed up rebuilds"
187 EOF
Development environment setup scripts