From 88ae8848debffc20d70f58cf4a74509beb81ba8c Mon Sep 17 00:00:00 2001 From: Disassembler Date: Tue, 2 Oct 2018 12:58:12 +0200 Subject: [PATCH] Add packaging script --- zz-extra/lxc-pack | 73 +++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 73 insertions(+) create mode 100755 zz-extra/lxc-pack diff --git a/zz-extra/lxc-pack b/zz-extra/lxc-pack new file mode 100755 index 0000000..41bd1ec --- /dev/null +++ b/zz-extra/lxc-pack @@ -0,0 +1,73 @@ +#!/usr/bin/python3 + +# How to create packaging key: +# openssl ecparam -genkey -name secp384r1 -out /root/buildroot/packages.key +# openssl ec -in /root/buildroot/packages.key -pubout -out /root/buildroot/packages.pub + +import hashlib +import json +import os +import subprocess +import sys + +BUILD_ROOT = '/root/buildroot' +LXC_ROOT = '/var/lib/lxc' + +def pack(meta_file): + # Prepare metadata + meta = {} + with open(meta_file) as fd: + for line in fd: + line = [l.strip() for l in line.split(':', 1)] + meta[line[0]] = line[1] + meta['deps'] = meta['deps'].split() + pkg_name = meta['pkg'] + del meta['pkg'] + + tar_path = os.path.join(BUILD_ROOT, '{}.tar'.format(pkg_name)) + xz_path = '{}.xz'.format(tar_path) + + # Remove old package + os.unlink(tar_path) + os.unlink(xz_path) + + # Create archive + print('Archiving', meta['lxcpath']) + subprocess.run(['tar', 'cpf', tar_path, meta['lxcpath']], cwd=LXC_ROOT) + if '/' not in meta['lxcpath']: + print('Archiving setup files') + cwd = os.path.dirname(os.path.abspath(meta_file)) + subprocess.run(['tar', 'rpf', tar_path, 'setup', 'setup.sh'], cwd=cwd) + print('Compressing', tar_path) + subprocess.run(['xz', '-9', tar_path]) + + # Register package + print('Registering package') + packages = {} + packages_file = os.path.join(BUILD_ROOT, 'packages') + if os.path.exists(packages_file): + with open(packages_file, 'r') as fd: + packages = json.load(fd) + packages[pkg_name] = meta + with open(packages_file, 'w') as fd: + json.dump(packages, fd, sort_keys=True, indent=4) + + # Sign packages + print('Signing packages') + subprocess.run(['openssl', 'dgst', '-sha512', '-sign', 'packages.key', '-out', 'packages.sha512', 'packages'], cwd=BUILD_ROOT) + +def hash_file(file_path): + sha512 = hashlib.sha512() + with open(file_path, 'rb') as fd: + while True: + data = fd.read(65536) + if not data: + break + sha512.update(data) + return sha512.hexdigest() + +if __name__ == '__main__': + if len(sys.argv) != 2: + print('Usage: lxc-pack ') + else: + pack(sys.argv[1])