mirror of
				https://github.com/containers/podman.git
				synced 2025-10-25 10:16:43 +08:00 
			
		
		
		
	
		
			
				
	
	
		
			309 lines
		
	
	
		
			9.0 KiB
		
	
	
	
		
			Bash
		
	
	
	
	
	
			
		
		
	
	
			309 lines
		
	
	
		
			9.0 KiB
		
	
	
	
		
			Bash
		
	
	
	
	
	
| 
 | |
| 
 | |
| # Library of common, shared utility functions.  This file is intended
 | |
| # to be sourced by other scripts, not called directly.
 | |
| 
 | |
| # Under some contexts these values are not set, make sure they are.
 | |
| USER="$(whoami)"
 | |
| HOME="$(getent passwd $USER | cut -d : -f 6)"
 | |
| if ! [[ "$PATH" =~ "/usr/local/bin" ]]
 | |
| then
 | |
|     export PATH="$PATH:/usr/local/bin"
 | |
| fi
 | |
| 
 | |
| # In ci/testing environment, ensure variables are always loaded
 | |
| if [[ -r "$HOME/$ENVLIB" ]] && [[ -n "$CI" ]]
 | |
| then
 | |
|     # Make sure this is always loaded
 | |
|     source "$HOME/$ENVLIB"
 | |
| fi
 | |
| 
 | |
| # Pass in a line delimited list of, space delimited name/value pairs
 | |
| # exit non-zero with helpful error message if any value is empty
 | |
| req_env_var() {
 | |
|     echo "$1" | while read NAME VALUE
 | |
|     do
 | |
|         if [[ -n "$NAME" ]] && [[ -z "$VALUE" ]]
 | |
|         then
 | |
|             echo "Required env. var. \$$NAME is not set"
 | |
|             exit 9
 | |
|         fi
 | |
|     done
 | |
| }
 | |
| 
 | |
| # Some env. vars may contain secrets.  Display values for known "safe"
 | |
| # and useful variables.
 | |
| # ref: https://cirrus-ci.org/guide/writing-tasks/#environment-variables
 | |
| show_env_vars() {
 | |
|     # This is almost always multi-line, print it separately
 | |
|     echo "export CIRRUS_CHANGE_MESSAGE=$CIRRUS_CHANGE_MESSAGE"
 | |
|     echo "
 | |
| BUILDTAGS $BUILDTAGS
 | |
| BUILT_IMAGE_SUFFIX $BUILT_IMAGE_SUFFIX
 | |
| CI $CI
 | |
| CIRRUS_CI $CIRRUS_CI
 | |
| CI_NODE_INDEX $CI_NODE_INDEX
 | |
| CI_NODE_TOTAL $CI_NODE_TOTAL
 | |
| CONTINUOUS_INTEGRATION $CONTINUOUS_INTEGRATION
 | |
| CIRRUS_BASE_BRANCH $CIRRUS_BASE_BRANCH
 | |
| CIRRUS_BASE_SHA $CIRRUS_BASE_SHA
 | |
| CIRRUS_BRANCH $CIRRUS_BRANCH
 | |
| CIRRUS_BUILD_ID $CIRRUS_BUILD_ID
 | |
| CIRRUS_CHANGE_IN_REPO $CIRRUS_CHANGE_IN_REPO
 | |
| CIRRUS_CLONE_DEPTH $CIRRUS_CLONE_DEPTH
 | |
| CIRRUS_DEFAULT_BRANCH $CIRRUS_DEFAULT_BRANCH
 | |
| CIRRUS_PR $CIRRUS_PR
 | |
| CIRRUS_TAG $CIRRUS_TAG
 | |
| CIRRUS_OS $CIRRUS_OS
 | |
| OS $OS
 | |
| CIRRUS_TASK_NAME $CIRRUS_TASK_NAME
 | |
| CIRRUS_TASK_ID $CIRRUS_TASK_ID
 | |
| CIRRUS_REPO_NAME $CIRRUS_REPO_NAME
 | |
| CIRRUS_REPO_OWNER $CIRRUS_REPO_OWNER
 | |
| CIRRUS_REPO_FULL_NAME $CIRRUS_REPO_FULL_NAME
 | |
| CIRRUS_REPO_CLONE_URL $CIRRUS_REPO_CLONE_URL
 | |
| CIRRUS_SHELL $CIRRUS_SHELL
 | |
| CIRRUS_USER_COLLABORATOR $CIRRUS_USER_COLLABORATOR
 | |
| CIRRUS_USER_PERMISSION $CIRRUS_USER_PERMISSION
 | |
| CIRRUS_WORKING_DIR $CIRRUS_WORKING_DIR
 | |
| CIRRUS_HTTP_CACHE_HOST $CIRRUS_HTTP_CACHE_HOST
 | |
| $(go env)
 | |
| PACKER_BUILDS $PACKER_BUILDS
 | |
|     " | while read NAME VALUE
 | |
|     do
 | |
|         [[ -z "$NAME" ]] || echo "export $NAME=\"$VALUE\""
 | |
|     done
 | |
| }
 | |
| 
 | |
| # Return a GCE image-name compatible string representation of distribution name
 | |
| os_release_id() {
 | |
|     eval "$(egrep -m 1 '^ID=' /etc/os-release | tr -d \' | tr -d \")"
 | |
|     echo "$ID"
 | |
| }
 | |
| 
 | |
| # Return a GCE image-name compatible string representation of distribution major version
 | |
| os_release_ver() {
 | |
|     eval "$(egrep -m 1 '^VERSION_ID=' /etc/os-release | tr -d \' | tr -d \")"
 | |
|     echo "$VERSION_ID" | cut -d '.' -f 1
 | |
| }
 | |
| 
 | |
| bad_os_id_ver() {
 | |
|     echo "Unknown/Unsupported distro. $OS_RELEASE_ID and/or version $OS_RELEASE_VER for $ARGS"
 | |
|     exit 42
 | |
| }
 | |
| 
 | |
| stub() {
 | |
|     echo "STUB: Pretending to do $1"
 | |
| }
 | |
| 
 | |
| ircmsg() {
 | |
|     req_env_var "
 | |
|         SCRIPT_BASE $SCRIPT_BASE
 | |
|         GOSRC $GOSRC
 | |
|         CIRRUS_TASK_ID $CIRRUS_TASK_ID
 | |
|         1 $1
 | |
|     "
 | |
|     SCRIPT="$GOSRC/$SCRIPT_BASE/podbot.py"
 | |
|     NICK="podbot_$CIRRUS_TASK_ID"
 | |
|     NICK="${NICK:0:15}"  # Any longer will break things
 | |
|     set +e
 | |
|     $SCRIPT $NICK $1
 | |
|     echo "Ignoring exit($?)"
 | |
|     set -e
 | |
| }
 | |
| 
 | |
| # Run sudo in directory with GOPATH set
 | |
| cdsudo() {
 | |
|     DIR="$1"
 | |
|     shift
 | |
|     CMD="cd $DIR && $@"
 | |
|     sudo --preserve-env=GOPATH --non-interactive bash -c "$CMD"
 | |
| }
 | |
| 
 | |
| # Skip a build if $1 does not match in the PR Title/Description with message $2
 | |
| require_regex() {
 | |
|     req_env_var "
 | |
|         CIRRUS_CHANGE_MESSAGE $CIRRUS_CHANGE_MESSAGE
 | |
|         1 $1
 | |
|         2 $2
 | |
|     "
 | |
|     regex="$1"
 | |
|     msg="$2"
 | |
|     if ! echo "$CIRRUS_CHANGE_MESSAGE" | egrep -q "$regex"
 | |
|     then
 | |
|         echo "***** The PR Title/Description did not match the regular expression: $MAGIC_RE"
 | |
|         echo "***** $msg"
 | |
|         exit 0
 | |
|     fi
 | |
| }
 | |
| 
 | |
| # Helper/wrapper script to only show stderr/stdout on non-zero exit
 | |
| install_ooe() {
 | |
|     req_env_var "SCRIPT_BASE $SCRIPT_BASE"
 | |
|     echo "Installing script to mask stdout/stderr unless non-zero exit."
 | |
|     sudo install -D -m 755 "/tmp/libpod/$SCRIPT_BASE/ooe.sh" /usr/local/bin/ooe.sh
 | |
| }
 | |
| 
 | |
| # Grab a newer version of git from software collections
 | |
| # https://www.softwarecollections.org/en/
 | |
| # and use it with a wrapper
 | |
| install_scl_git() {
 | |
|     echo "Installing SoftwareCollections updated 'git' version."
 | |
|     ooe.sh sudo yum -y install rh-git29
 | |
|     cat << "EOF" | sudo tee /usr/bin/git
 | |
| #!/bin/bash
 | |
| 
 | |
| scl enable rh-git29 -- git $@
 | |
| EOF
 | |
|     sudo chmod 755 /usr/bin/git
 | |
| }
 | |
| 
 | |
| install_cni_plugins() {
 | |
|     echo "Installing CNI Plugins from commit $CNI_COMMIT"
 | |
|     req_env_var "
 | |
|         GOPATH $GOPATH
 | |
|         CNI_COMMIT $CNI_COMMIT
 | |
|     "
 | |
|     DEST="$GOPATH/src/github.com/containernetworking/plugins"
 | |
|     rm -rf "$DEST"
 | |
|     ooe.sh git clone "https://github.com/containernetworking/plugins.git" "$DEST"
 | |
|     cd "$DEST"
 | |
|     ooe.sh git checkout -q "$CNI_COMMIT"
 | |
|     ooe.sh ./build.sh
 | |
|     sudo mkdir -p /usr/libexec/cni
 | |
|     sudo cp bin/* /usr/libexec/cni
 | |
| }
 | |
| 
 | |
| install_runc(){
 | |
|     OS_RELEASE_ID=$(os_release_id)
 | |
|     echo "Installing RunC from commit $RUNC_COMMIT"
 | |
|     echo "Platform is $OS_RELEASE_ID"
 | |
|     req_env_var "
 | |
|         GOPATH $GOPATH
 | |
|         RUNC_COMMIT $RUNC_COMMIT
 | |
|         OS_RELEASE_ID $OS_RELEASE_ID
 | |
|     "
 | |
|     if [[ "$OS_RELEASE_ID" =~ "ubuntu" ]]; then
 | |
|         echo "Running make install.libseccomp.sudo for ubuntu"
 | |
|         if ! [[ -d "/tmp/libpod" ]]
 | |
|         then
 | |
|             echo "Expecting a copy of libpod repository in /tmp/libpod"
 | |
|             exit 5
 | |
|         fi
 | |
|         mkdir -p "$GOPATH/src/github.com/containers/"
 | |
|         # Symlinks don't work with Go
 | |
|         cp -a /tmp/libpod "$GOPATH/src/github.com/containers/"
 | |
|         cd "$GOPATH/src/github.com/containers/libpod"
 | |
|         ooe.sh sudo make install.libseccomp.sudo
 | |
|     fi
 | |
|     DEST="$GOPATH/src/github.com/opencontainers/runc"
 | |
|     rm -rf "$DEST"
 | |
|     ooe.sh git clone https://github.com/opencontainers/runc.git "$DEST"
 | |
|     cd "$DEST"
 | |
|     ooe.sh git fetch origin --tags
 | |
|     ooe.sh git checkout -q "$RUNC_COMMIT"
 | |
|     ooe.sh make static BUILDTAGS="seccomp selinux"
 | |
|     sudo install -m 755 runc /usr/bin/runc
 | |
| }
 | |
| 
 | |
| install_buildah() {
 | |
|     echo "Installing buildah from latest upstream master"
 | |
|     req_env_var "GOPATH $GOPATH"
 | |
|     DEST="$GOPATH/src/github.com/containers/buildah"
 | |
|     rm -rf "$DEST"
 | |
|     ooe.sh git clone https://github.com/containers/buildah "$DEST"
 | |
|     cd "$DEST"
 | |
|     ooe.sh make
 | |
|     ooe.sh sudo make install
 | |
| }
 | |
| 
 | |
| # Requires $GOPATH and $CRIO_COMMIT to be set
 | |
| install_conmon(){
 | |
|     echo "Installing conmon from commit $CRIO_COMMIT"
 | |
|     req_env_var "
 | |
|         GOPATH $GOPATH
 | |
|         CRIO_COMMIT $CRIO_COMMIT
 | |
|     "
 | |
|     DEST="$GOPATH/src/github.com/kubernetes-sigs/cri-o.git"
 | |
|     rm -rf "$DEST"
 | |
|     ooe.sh git clone https://github.com/kubernetes-sigs/cri-o.git "$DEST"
 | |
|     cd "$DEST"
 | |
|     ooe.sh git fetch origin --tags
 | |
|     ooe.sh git checkout -q "$CRIO_COMMIT"
 | |
|     ooe.sh make
 | |
|     sudo install -D -m 755 bin/conmon /usr/libexec/podman/conmon
 | |
| }
 | |
| 
 | |
| install_criu(){
 | |
|     echo "Installing CRIU from commit $CRIU_COMMIT"
 | |
|     req_env_var "
 | |
|     CRIU_COMMIT $CRIU_COMMIT
 | |
|     "
 | |
|     DEST="/tmp/criu"
 | |
|     rm -rf "$DEST"
 | |
|     ooe.sh git clone https://github.com/checkpoint-restore/criu.git "$DEST"
 | |
|     cd $DEST
 | |
|     ooe.sh git fetch origin --tags
 | |
|     ooe.sh git checkout -q "$CRIU_COMMIT"
 | |
|     ooe.sh make
 | |
|     sudo install -D -m 755  criu/criu /usr/sbin/
 | |
| }
 | |
| 
 | |
| # Runs in testing VM, not image building
 | |
| install_testing_dependencies() {
 | |
|     echo "Installing ginkgo, gomega, and easyjson into \$GOPATH=$GOPATH"
 | |
|     req_env_var "
 | |
|         GOPATH $GOPATH
 | |
|         GOSRC $GOSRC
 | |
|     "
 | |
|     cd "$GOSRC"
 | |
|     ooe.sh go get -u github.com/onsi/ginkgo/ginkgo
 | |
|     ooe.sh install -D -m 755 "$GOPATH"/bin/ginkgo /usr/bin/
 | |
|     ooe.sh go get github.com/onsi/gomega/...
 | |
|     ooe.sh go get -u github.com/mailru/easyjson/...
 | |
|     sudo install -D -m 755 "$GOPATH"/bin/easyjson /usr/bin/
 | |
| }
 | |
| 
 | |
| install_packer_copied_files(){
 | |
|     # Install cni config, policy and registry config
 | |
|     sudo install -D -m 755 /tmp/libpod/cni/87-podman-bridge.conflist \
 | |
|                            /etc/cni/net.d/87-podman-bridge.conflist
 | |
|     sudo install -D -m 755 /tmp/libpod/test/policy.json \
 | |
|                            /etc/containers/policy.json
 | |
|     sudo install -D -m 755 /tmp/libpod/test/redhat_sigstore.yaml \
 | |
|                            /etc/containers/registries.d/registry.access.redhat.com.yaml
 | |
| }
 | |
| 
 | |
| install_varlink(){
 | |
|     echo "Installing varlink from the cheese-factory"
 | |
|     ooe.sh sudo -H pip3 install varlink
 | |
| }
 | |
| 
 | |
| _finalize(){
 | |
|     echo "Removing leftover giblets from cloud-init"
 | |
|     cd /
 | |
|     sudo rm -rf /var/lib/cloud/instance?
 | |
|     sudo rm -rf /root/.ssh/*
 | |
|     sudo rm -rf /home/*
 | |
| }
 | |
| 
 | |
| rh_finalize(){
 | |
|     # Allow root ssh-logins
 | |
|     if [[ -r /etc/cloud/cloud.cfg ]]
 | |
|     then
 | |
|         sudo sed -re 's/^disable_root:.*/disable_root: 0/g' -i /etc/cloud/cloud.cfg
 | |
|     fi
 | |
|     echo "Resetting to fresh-state for usage as cloud-image."
 | |
|     sudo $(type -P dnf || type -P yum) clean all
 | |
|     sudo rm -rf /var/cache/{yum,dnf}
 | |
|     sudo rm -f /etc/udev/rules.d/*-persistent-*.rules
 | |
|     sudo touch /.unconfigured  # force firstboot to run
 | |
|     _finalize
 | |
| }
 | |
| 
 | |
| ubuntu_finalize(){
 | |
|     echo "Resetting to fresh-state for usage as cloud-image."
 | |
|     sudo rm -rf /var/cache/apt
 | |
|     _finalize
 | |
| }
 | 
