QubesOS/qubes-linux-template-builder
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

debian: use real apt repo for qubes packages installation

Browse Source
This commit is contained in:
Marek Marczykowski-Górecki 2014-07-26 04:33:49 +02:00
parent 68b7313f8d
commit 290a8a65f8
4 changed files with 42 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

39
scripts_debian/04_install_qubes.sh
View File

@ -30,13 +30,38 @@ xen /proc/xen xenfs defaults 0 0
EOF EOF
echo "--> Installing qubes packages" echo "--> Installing qubes packages"
export CUSTOMREPO="$PWD/yum_repo_qubes/debian" export CUSTOMREPO="$PWD/yum_repo_qubes/$DIST/apt"
mkdir -p $INSTALLDIR/tmp/qubesdebs
find $CUSTOMREPO/apt -name '*.deb' -exec cp -t $INSTALLDIR/tmp/qubesdebs '{}' \; if ! [ -e $CACHEDIR/repo-secring.gpg ]; then
chroot $INSTALLDIR /bin/sh -c 'dpkg -i /tmp/qubesdebs/*.deb' mkdir -p $CACHEDIR
rm -rf $INSTALLDIR/tmp/qubesdebs gpg --gen-key --batch <<EOF
# Install dependencies for qubes packages Key-Type: RSA
chroot $INSTALLDIR apt-get -f -y install Key-Length: 1024
Key-Usage: sign
Name-Real: Qubes builder
Expire-Date: 0
%pubring $CACHEDIR/repo-pubring.gpg
%secring $CACHEDIR/repo-secring.gpg
%commit
EOF
fi
gpg -abs --no-default-keyring \
--secret-keyring $CACHEDIR/repo-secring.gpg \
--keyring $CACHEDIR/repo-pubring.gpg \
-o $CUSTOMREPO/dists/$DIST/Release.gpg \
$CUSTOMREPO/dists/$DIST/Release
mkdir -p $INSTALLDIR/tmp/qubes_repo
mount --bind $CUSTOMREPO $INSTALLDIR/tmp/qubes_repo
cat > $INSTALLDIR/etc/apt/sources.list.d/qubes-builder.list <<EOF
deb file:/tmp/qubes_repo $DEBIANVERSION main
EOF
cp $CACHEDIR/repo-pubring.gpg $INSTALLDIR/etc/apt/trusted.gpg.d/qubes-builder.gpg
chroot $INSTALLDIR apt-get update || { umount $INSTALLDIR/tmp/qubes_repo; exit 1; }
chroot $INSTALLDIR apt-get -y install `cat $SCRIPTSDIR/packages_qubes.list` || { umount $INSTALLDIR/tmp/qubes_repo; exit 1; }
umount $INSTALLDIR/tmp/qubes_repo
rm -f $INSTALLDIR/etc/apt/sources.list.d/qubes-builder.list
chroot $INSTALLDIR apt-get update || exit 1
# Remove temporary policy layer so services can start normally in the # Remove temporary policy layer so services can start normally in the
# deployed template. # deployed template.

3
scripts_debian/09_cleanup.sh
View File

@ -3,5 +3,8 @@
rm -f $INSTALLDIR/var/cache/apt/archives/* rm -f $INSTALLDIR/var/cache/apt/archives/*
rm -f $INSTALLDIR/etc/apt/sources.list.d/qubes-builder.list
rm -f $INSTALLDIR/etc/apt/trusted.gpg.d/qubes-builder.gpg
rm -rf buildchroot rm -rf buildchroot

2
scripts_debian/packages_qubes.list Normal file
View File

@ -0,0 +1,2 @@
qubes-core-agent
qubes-gui-agent

5
yum_repo_qubes/.gitignore vendored
View File

@ -1,2 +1,7 @@
fc* fc*
archlinux* archlinux*
jessie
wheezy
squeeze
sid