2013-04-21 09:55:33 +02:00
|
|
|
#!/bin/sh
|
|
|
|
#-
|
2015-01-19 15:07:53 +01:00
|
|
|
# Copyright (c) 2013-2015 Juan Romero Pardines.
|
2017-07-23 17:55:41 -07:00
|
|
|
# Copyright (c) 2017 Google
|
2013-04-21 09:55:33 +02:00
|
|
|
# All rights reserved.
|
|
|
|
#
|
|
|
|
# Redistribution and use in source and binary forms, with or without
|
|
|
|
# modification, are permitted provided that the following conditions
|
|
|
|
# are met:
|
|
|
|
# 1. Redistributions of source code must retain the above copyright
|
|
|
|
# notice, this list of conditions and the following disclaimer.
|
|
|
|
# 2. Redistributions in binary form must reproduce the above copyright
|
|
|
|
# notice, this list of conditions and the following disclaimer in the
|
|
|
|
# documentation and/or other materials provided with the distribution.
|
|
|
|
#
|
|
|
|
# THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
|
|
|
|
# IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
|
|
|
|
# OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
|
|
|
|
# IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
|
|
|
|
# INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
|
|
|
|
# NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
|
|
|
|
# DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
|
|
|
|
# THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
|
|
|
|
# (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
|
|
|
|
# THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
|
|
|
#-
|
|
|
|
|
2017-08-08 18:47:23 -07:00
|
|
|
readonly PROGNAME=$(basename "$0")
|
2013-04-21 09:55:33 +02:00
|
|
|
readonly ARCH=$(uname -m)
|
2017-08-11 00:41:06 -07:00
|
|
|
readonly REQTOOLS="xbps-install xbps-reconfigure tar xz"
|
2013-04-21 09:55:33 +02:00
|
|
|
|
2017-08-10 23:28:26 -07:00
|
|
|
# This source pulls in all the functions from lib.sh. This set of
|
|
|
|
# functions makes it much easier to work with chroots and abstracts
|
|
|
|
# away all the problems with running binaries with QEMU.
|
|
|
|
# shellcheck source=./lib.sh
|
|
|
|
. ./lib.sh
|
|
|
|
|
|
|
|
# Die is a function provided in lib.sh which handles the cleanup of
|
|
|
|
# the mounts and removal of temporary directories if the running
|
|
|
|
# program exists unexpectedly.
|
2013-11-12 16:48:59 +01:00
|
|
|
trap 'die "Interrupted! exiting..."' INT TERM HUP
|
2013-04-21 09:55:33 +02:00
|
|
|
|
2017-08-08 21:55:49 -07:00
|
|
|
# Even though we only support really one target for most of these
|
|
|
|
# architectures this lets us refer to these quickly and easily by
|
|
|
|
# XBPS_ARCH. This makes it a lot more obvious what is happening later
|
|
|
|
# in the script, and it makes it easier to consume the contents of
|
|
|
|
# these down the road in later scripts.
|
2013-04-21 09:55:33 +02:00
|
|
|
usage() {
|
2014-01-28 16:35:45 +01:00
|
|
|
cat <<_EOF
|
2017-08-08 21:55:49 -07:00
|
|
|
Usage: $PROGNAME [options] <arch>
|
2014-01-28 16:35:45 +01:00
|
|
|
|
2017-08-08 21:55:49 -07:00
|
|
|
Supported architectures: i686, i686-musl, x86_64, x86_64-musl,
|
|
|
|
armv5tel, armv5tel-musl, armv6l, armv6l-musl, armv7l, armv7l-musl
|
|
|
|
aarch64, aarch64-musl,
|
|
|
|
mipsel, mipsel-musl
|
2017-01-14 18:41:15 +01:00
|
|
|
|
2014-01-28 16:35:45 +01:00
|
|
|
|
|
|
|
Options
|
2014-06-01 12:29:55 +02:00
|
|
|
-b <syspkg> Set an alternative base-system package (defaults to base-system)
|
2015-06-12 10:09:48 +02:00
|
|
|
-c <dir> Set XBPS cache directory (defaults to \$PWD/xbps-cachedir-<arch>)
|
2014-01-28 16:35:45 +01:00
|
|
|
-C <file> Full path to the XBPS configuration file
|
|
|
|
-h Show this help
|
2014-06-01 12:29:55 +02:00
|
|
|
-r <repo> Set XBPS repository (may be set multiple times)
|
2017-08-21 00:04:17 -07:00
|
|
|
-x <num> Use <num> threads to compress the image (dynamic if unset)
|
2017-08-29 22:42:40 -07:00
|
|
|
-o <file> Filename to write the ROOTFS archive to
|
2014-01-28 16:35:45 +01:00
|
|
|
-V Show version
|
|
|
|
_EOF
|
2013-11-12 16:48:59 +01:00
|
|
|
}
|
|
|
|
|
2017-08-10 23:28:26 -07:00
|
|
|
# ########################################
|
|
|
|
# SCRIPT EXECUTION STARTS HERE
|
|
|
|
# ########################################
|
2017-08-09 20:58:32 -07:00
|
|
|
|
2017-08-10 23:28:26 -07:00
|
|
|
# Boilerplate option parsing. This script supports the bare minimum
|
|
|
|
# needed to build an image.
|
2017-08-29 22:42:40 -07:00
|
|
|
while getopts "C:c:h:r:x:o:V" opt; do
|
2013-04-21 09:55:33 +02:00
|
|
|
case $opt in
|
2014-01-22 10:36:24 +01:00
|
|
|
C) XBPS_CONFFILE="-C $OPTARG";;
|
2014-06-01 12:29:55 +02:00
|
|
|
c) XBPS_CACHEDIR="--cachedir=$OPTARG";;
|
2014-01-22 10:15:17 +01:00
|
|
|
h) usage; exit 0;;
|
2015-05-20 19:18:05 +02:00
|
|
|
r) XBPS_REPOSITORY="$XBPS_REPOSITORY --repository=$OPTARG";;
|
2017-08-21 00:04:17 -07:00
|
|
|
x) COMPRESSOR_THREADS="$OPTARG" ;;
|
2017-08-29 22:42:40 -07:00
|
|
|
o) FILENAME="$OPTARG" ;;
|
2013-08-11 12:16:29 +02:00
|
|
|
V) echo "$PROGNAME @@MKLIVE_VERSION@@"; exit 0;;
|
2013-04-21 09:55:33 +02:00
|
|
|
esac
|
|
|
|
done
|
2017-08-08 18:47:23 -07:00
|
|
|
shift $((OPTIND - 1))
|
2017-08-08 21:55:49 -07:00
|
|
|
XBPS_TARGET_ARCH="$1"
|
2013-04-21 09:55:33 +02:00
|
|
|
|
2017-08-12 20:06:20 -07:00
|
|
|
# Set the XBPS cache
|
|
|
|
set_cachedir
|
|
|
|
|
2017-08-08 21:55:49 -07:00
|
|
|
# This is an aweful hack since the script isn't using privesc
|
|
|
|
# mechanisms selectively. This is a TODO item.
|
|
|
|
if [ "$(id -u)" -ne 0 ]; then
|
|
|
|
die "need root perms to continue, exiting."
|
|
|
|
fi
|
2014-01-28 16:35:45 +01:00
|
|
|
|
2017-08-11 00:41:06 -07:00
|
|
|
# Before going any further, check that the tools that are needed are
|
|
|
|
# present. If we delayed this we could check for the QEMU binary, but
|
|
|
|
# its a reasonable tradeoff to just bail out now.
|
|
|
|
check_tools
|
|
|
|
|
2017-08-08 21:55:49 -07:00
|
|
|
# If the arch wasn't set let's bail out now, nothing else in this
|
|
|
|
# script will work without knowing what we're trying to build for.
|
|
|
|
if [ -z "$XBPS_TARGET_ARCH" ]; then
|
|
|
|
echo "$PROGNAME: arch was not set!"
|
2014-01-28 16:35:45 +01:00
|
|
|
usage; exit 1
|
|
|
|
fi
|
|
|
|
|
2017-08-08 21:55:49 -07:00
|
|
|
# We need to operate on a tempdir, if this fails to create, it is
|
|
|
|
# absolutely crucial to bail out so that we don't hose the system that
|
|
|
|
# is running the script.
|
2017-08-07 17:36:07 -07:00
|
|
|
ROOTFS=$(mktemp -d) || die "failed to create tempdir, exiting..."
|
2017-08-08 21:55:49 -07:00
|
|
|
|
|
|
|
# This maintains the chain of trust, the keys in the repo are known to
|
|
|
|
# be good and so we copy those. Why don't we just use the ones on the
|
|
|
|
# host system? That's a good point, but there's no promise that the
|
|
|
|
# system running the script is Void, or that those keys haven't been
|
|
|
|
# tampered with. Its much easier to use these since the will always
|
|
|
|
# exist.
|
2017-08-08 18:47:23 -07:00
|
|
|
mkdir -p "$ROOTFS/var/db/xbps/keys"
|
|
|
|
cp keys/*.plist "$ROOTFS/var/db/xbps/keys"
|
2014-01-21 23:13:26 +01:00
|
|
|
|
2017-08-08 21:55:49 -07:00
|
|
|
# This sets up files that are important for XBPS to work on the new
|
|
|
|
# filesystem. It does not actually install anything.
|
2017-08-07 17:36:07 -07:00
|
|
|
run_cmd_target "xbps-install -S $XBPS_CONFFILE $XBPS_CACHEDIR $XBPS_REPOSITORY -r $ROOTFS"
|
2013-04-21 09:55:33 +02:00
|
|
|
|
2017-08-08 21:55:49 -07:00
|
|
|
# Later scripts expect the permissions on / to be the canonical 755,
|
|
|
|
# so we set this here.
|
2017-08-08 18:47:23 -07:00
|
|
|
chmod 755 "$ROOTFS"
|
2013-04-21 09:55:33 +02:00
|
|
|
|
2017-08-08 21:55:49 -07:00
|
|
|
# The pseudofs mountpoints are needed for the qemu support in cases
|
|
|
|
# where we are running things that aren't natively executable.
|
2013-11-12 16:48:59 +01:00
|
|
|
mount_pseudofs
|
2017-08-08 21:55:49 -07:00
|
|
|
|
|
|
|
# With everything setup, we can now run the install to load the
|
|
|
|
# base-voidstrap package into the rootfs. This will not produce a
|
|
|
|
# bootable system but will instead produce a base component that can
|
|
|
|
# be quickly expanded to perform other actions on.
|
|
|
|
run_cmd_target "xbps-install -S $XBPS_CONFFILE $XBPS_CACHEDIR $XBPS_REPOSITORY -r $ROOTFS -y base-voidstrap"
|
2013-11-12 16:48:59 +01:00
|
|
|
|
2017-08-07 17:36:07 -07:00
|
|
|
# Enable en_US.UTF-8 locale and generate it into the target ROOTFS.
|
2017-08-08 21:55:49 -07:00
|
|
|
# This is a bit of a hack since some glibc stuff doesn't really work
|
|
|
|
# correctly without a locale being generated. While some could argue
|
|
|
|
# that this is an arbitrary or naive choice to enable the en_US
|
|
|
|
# locale, most people using Void are able to work with the English
|
|
|
|
# language at least enough to enable thier preferred locale. If this
|
|
|
|
# truly becomes an issue in the future this hack can be revisited.
|
2017-08-08 18:47:23 -07:00
|
|
|
if [ -e "$ROOTFS/etc/default/libc-locales" ]; then
|
2015-05-26 11:00:52 +02:00
|
|
|
LOCALE=en_US.UTF-8
|
2017-08-08 18:47:23 -07:00
|
|
|
sed -e "s/\#\(${LOCALE}.*\)/\1/g" -i "$ROOTFS/etc/default/libc-locales"
|
2015-05-26 11:00:52 +02:00
|
|
|
fi
|
2013-04-21 09:55:33 +02:00
|
|
|
|
2017-08-08 21:55:49 -07:00
|
|
|
# The reconfigure step needs to execute code that's been compiled for
|
|
|
|
# the target architecture. Since the target isn't garanteed to be the
|
|
|
|
# same as the host, this needs to be done via qemu.
|
|
|
|
info_msg "Reconfiguring packages for ${XBPS_TARGET_ARCH} ..."
|
2017-08-12 16:41:53 -07:00
|
|
|
|
|
|
|
# This step sets up enough of the base-files that the chroot will work
|
|
|
|
# and they can be reconfigured natively. Without this step there
|
|
|
|
# isn't enough configured for ld to work. This step runs as the host
|
2017-08-14 00:29:12 -07:00
|
|
|
# architecture, but on x86 some special extra steps have to be taken
|
|
|
|
# to make this work.
|
|
|
|
if [ -z "${XBPS_TARGET_ARCH##*86*}" ] && [ -z "${HOSTARCH##*86*}" ] ; then
|
|
|
|
run_cmd_target "xbps-reconfigure --rootdir $ROOTFS base-files"
|
|
|
|
else
|
|
|
|
run_cmd "xbps-reconfigure --rootdir $ROOTFS base-files"
|
|
|
|
fi
|
2017-08-12 16:41:53 -07:00
|
|
|
|
|
|
|
# Now running as the target system, this step reconfigures the
|
|
|
|
# base-files completely. Certain things just won't work in the first
|
|
|
|
# pass, so this cleans up any issues that linger.
|
|
|
|
run_cmd_chroot "$ROOTFS" "env -i xbps-reconfigure -f base-files"
|
|
|
|
|
|
|
|
# TODO: determine why these lines are here. What is the harm in
|
|
|
|
# having them and what do they remove. Do they interact adversely
|
|
|
|
# with the alien build support discussed above.
|
|
|
|
rmdir "$ROOTFS/usr/lib32" 2>/dev/null
|
|
|
|
rm -f "$ROOTFS/lib32" "$ROOTFS/lib64" "$ROOTFS/usr/lib64"
|
2013-04-21 09:55:33 +02:00
|
|
|
|
2017-08-08 21:55:49 -07:00
|
|
|
# Once base-files is configured and functional its possible to
|
|
|
|
# configure the rest of the system.
|
2017-08-09 20:58:32 -07:00
|
|
|
run_cmd_chroot "$ROOTFS" "xbps-reconfigure -a"
|
2017-08-08 21:55:49 -07:00
|
|
|
|
|
|
|
# Set the default password. Previous versions of this script used a
|
|
|
|
# chroot to do this, but that is unnecessary since chpasswd
|
|
|
|
# understands how to operate on chroots without actually needing to be
|
|
|
|
# chrooted. We also remove the lock file in this step to clean up the
|
|
|
|
# lock on the passwd database, lest it be left in the system and
|
|
|
|
# propogated to other points.
|
2017-08-10 23:38:30 -07:00
|
|
|
info_msg "Setting the default root password ('voidlinux')"
|
2017-08-13 17:45:22 -07:00
|
|
|
if [ ! -f "$ROOTFS/etc/shadow" ] ; then
|
|
|
|
run_cmd_chroot "$ROOTFS" pwconv
|
|
|
|
fi
|
2017-08-10 23:38:30 -07:00
|
|
|
echo root:voidlinux | run_cmd_chroot "$ROOTFS" "chpasswd -c SHA512" || die "Could not set default credentials"
|
2017-08-08 21:55:49 -07:00
|
|
|
rm -f "$ROOTFS/etc/.pwd.lock"
|
|
|
|
|
2017-08-10 23:38:30 -07:00
|
|
|
# At this point we're done running things in the chroot and we can
|
|
|
|
# clean up the shims. Failure to do this can result in things hanging
|
|
|
|
# when we try to delete the tmpdir.
|
|
|
|
cleanup_chroot
|
|
|
|
|
2017-08-08 21:55:49 -07:00
|
|
|
# The cache isn't that useful since by the time the ROOTFS will be
|
|
|
|
# used it is likely to be out of date. Rather than shipping it around
|
|
|
|
# only for it to be out of date, we remove it now.
|
2017-08-08 18:47:23 -07:00
|
|
|
rm -rf "$ROOTFS/var/cache/*" 2>/dev/null
|
2013-04-21 09:55:33 +02:00
|
|
|
|
2017-08-08 21:55:49 -07:00
|
|
|
# Finally we can compress the tarball, the name will include the
|
|
|
|
# architecture and the date on which the tarball was built.
|
2017-08-29 22:42:40 -07:00
|
|
|
tarball=${FILENAME-void-${XBPS_TARGET_ARCH}-ROOTFS-$(date '+%Y%m%d').tar.xz}
|
2017-08-21 00:04:17 -07:00
|
|
|
run_cmd "tar -cp --posix --xattrs -C $ROOTFS . | xz -T${COMPRESSOR_THREADS:-0} -9 > $tarball "
|
2014-12-05 07:06:39 +01:00
|
|
|
|
2017-08-08 21:55:49 -07:00
|
|
|
# Now that we have the tarball we don't need the rootfs anymore, so we
|
|
|
|
# can get rid of it.
|
2017-08-08 18:47:23 -07:00
|
|
|
rm -rf "$ROOTFS"
|
2013-04-21 09:55:33 +02:00
|
|
|
|
2017-08-08 21:55:49 -07:00
|
|
|
# Last thing to do before closing out is to let the user know that
|
|
|
|
# this succeeded. This also ensures that there's something visible
|
|
|
|
# that the user can look for at the end of the script, which can make
|
|
|
|
# it easier to see what's going on if something above failed.
|
|
|
|
info_msg "Successfully created $tarball ($XBPS_TARGET_ARCH)"
|