mirror/ nfpm
1
1
Fork 0
mirror of https://github.com/goreleaser/nfpm synced 2024-05-30 07:46:12 +02:00
Code Issues Releases Activity
nfpm/apk/apk.go

495 lines
12 KiB
Go
Raw Normal View History

feat: apk support (#207) * first attempt at apk, built from Issue #39 * inspector cleanups * read the contrib note, ran linter, fixes made. Noice! * linter went wonky * linter went wonky * fix some lint issues * fix some lint issues * lightweight file validation, while I try to refactor method into smaller chunks * refactorings to get `make ci` to pass. ain't pretty, but hopefully doesn't make things worse. * add ignore file to get workdir created in CI * try to get a successful test run on CI (file sizes differ on CI). * must remember to run liner (make ci) before pushing * Doh! Detect CI via correct env var name * tweak CI expected file sizes * blech. try to get a range of values for CI * better message if value fails conditions * better message if value fails conditions * initial impl of Package interface - just hoping I don't already have the arch mapping backwards. * missed non-altered arch case * ci failures * refactor io.File to Writer * add note about command to test apk install in docker * remove absolute paths from test (prep for replacement with info.Files). * rename test files folder * get ci file size ranges happy after path changes * get ci file size ranges happy after path changes * move COPY towards end, allowing more caching of layers - feedback from @tcurdt * remove Gz from function name * rename combine function * add skipVerify flag to preserve generated .apk file for use in dockerfile manual test. Thanks @tcurdt * make ci is my friend * remove useless comment * start conversion to nfpm.Info * use base64 encoded string for private signing key * remove old runit() method, as we can now test using Default.Package. add some tests lifted from deb_test.go. * duck and cover: register the apk packager * use the metadata from nfpm (does not handle scripts/pre/post, etc) * getting closer to removing size assertions, but not just yet * getting closer to removing size assertions, but not just yet * add niffty import for init - Blank identifier comes to the rescue. Thanks @tcurdt. add apk to overrides parse test. * I will very much enjoy deleting this assertion...soon, soon. * add PrivateKeyFile option, which is subordinate to PrivateKey * move PrivateKey configs to root config struct. expand PrivateKey configs from env vars if set. * provide the user a hint if privatekey config is missing for .apk packager * lovin' the linter now. learning language from linter loudness. didn't know switch could work like that. * add support for 'scripts' in control file * fix control metadata * make signing keyname configurable * goofy size fix * remove temporary test and related files * fix template copy/pasta error * remove old print statements * first take at integration tests. should remove need for --allow-untrusted in `apk add` command. * fix: merge issues, remove signature support Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com> * fix: tests Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com> * fix: lint issues Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com> * fix: tests Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com> * test: meta Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com> * fix: datahash seems unused Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com> * fix: improve test code Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com> * fix: unused params Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com> * fix: tests Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com> * test: changelog test Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com> * test: fix Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com> * fix: img Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com> * test: symlink Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com> * fix: uneeded deletes Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com> * feat: symlinks Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com> Co-authored-by: Dan Rollo <danrollo@gmail.com>
2020-08-17 22:28:38 +02:00
/*
Copyright 2019 Torsten Curdt
Permission is hereby granted, free of charge, to any person obtaining a copy
of this software and associated documentation files (the "Software"), to deal
in the Software without restriction, including without limitation the rights
to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
copies of the Software, and to permit persons to whom the Software is
furnished to do so, subject to the following conditions:
The above copyright notice and this permission notice shall be included in all
copies or substantial portions of the Software.
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
SOFTWARE.
*/
// Package apk (someday) implements nfpm.Packager providing .apk bindings.
package apk
// Initial implementation from https://gist.github.com/tcurdt/512beaac7e9c12dcf5b6b7603b09d0d8
import (
"archive/tar"
"bufio"
"bytes"
"compress/gzip"
"crypto/sha256"
"fmt"
"hash"
"io"
"io/ioutil"
"log"
"os"
"path/filepath"
"strings"
"sync/atomic"
"text/template"
"time"
"github.com/goreleaser/nfpm/internal/files"
"github.com/pkg/errors"
"github.com/goreleaser/nfpm"
)
// nolint: gochecknoinits
func init() {
nfpm.Register("apk", Default)
}
// nolint: gochecknoglobals
var archToAlpine = map[string]string{
"386": "x86",
"amd64": "x86_64",
"arm": "armhf",
"arm6": "armhf",
"arm7": "armhf",
"arm64": "aarch64",
// "s390x": "???",
}
// Default apk packager
// nolint: gochecknoglobals
var Default = &Apk{}
// Apk is a apk packager implementation.
type Apk struct{}
func (a *Apk) ConventionalFileName(info *nfpm.Info) string {
// TODO: verify this
return fmt.Sprintf("%s_%s_%s.apk", info.Name, info.Version, info.Arch)
}
// Package writes a new apk package to the given writer using the given info.
func (*Apk) Package(info *nfpm.Info, apk io.Writer) (err error) {
arch, ok := archToAlpine[info.Arch]
if ok {
info.Arch = arch
}
var bufData bytes.Buffer
size := int64(0)
// create the data tgz
_, err = createData(&bufData, info, &size)
if err != nil {
return err
}
// create the control tgz
var bufControl bytes.Buffer
if _, err = createControl(&bufControl, info, size); err != nil {
return err
}
// combine
return combineToApk(apk, &bufData, &bufControl)
}
type writerCounter struct {
io.Writer
count uint64
writer io.Writer
}
func newWriterCounter(w io.Writer) *writerCounter {
return &writerCounter{
writer: w,
}
}
func (counter *writerCounter) Write(buf []byte) (int, error) {
n, err := counter.writer.Write(buf)
atomic.AddUint64(&counter.count, uint64(n))
return n, err
}
func (counter *writerCounter) Count() uint64 {
return atomic.LoadUint64(&counter.count)
}
func writeFile(tw *tar.Writer, header *tar.Header, file io.Reader) error {
header.Format = tar.FormatUSTAR
header.ChangeTime = time.Time{}
header.AccessTime = time.Time{}
err := tw.WriteHeader(header)
if err != nil {
return err
}
_, err = io.Copy(tw, file)
if err != nil {
return err
}
return nil
}
type tarKind int
const (
tarFull tarKind = iota
tarCut
)
func writeTgz(w io.Writer, kind tarKind, builder func(tw *tar.Writer) error, digest hash.Hash) ([]byte, error) {
mw := io.MultiWriter(digest, w)
gw := gzip.NewWriter(mw)
cw := newWriterCounter(gw)
bw := bufio.NewWriterSize(cw, 4096)
tw := tar.NewWriter(bw)
err := builder(tw)
if err != nil {
return nil, err
}
// handle the cut vs full tars
if err = bw.Flush(); err != nil {
return nil, err
}
if err = tw.Close(); err != nil {
return nil, err
}
if kind == tarFull {
if err = bw.Flush(); err != nil {
return nil, err
}
}
size := cw.Count()
alignedSize := (size + 511) & ^uint64(511)
increase := alignedSize - size
if increase > 0 {
b := make([]byte, increase)
_, err = cw.Write(b)
if err != nil {
return nil, err
}
}
if err = gw.Close(); err != nil {
return nil, err
}
return digest.Sum(nil), nil
}
func createData(dataTgz io.Writer, info *nfpm.Info, sizep *int64) ([]byte, error) {
builderData := createBuilderData(info, sizep)
dataDigest, err := writeTgz(dataTgz, tarFull, builderData, sha256.New())
if err != nil {
return nil, err
}
return dataDigest, nil
}
func createControl(controlTgz io.Writer, info *nfpm.Info, size int64) ([]byte, error) {
builderControl := createBuilderControl(info, size)
controlDigest, err := writeTgz(controlTgz, tarCut, builderControl, sha256.New())
if err != nil {
return nil, err
}
return controlDigest, nil
}
func combineToApk(target io.Writer, dataTgz, controlTgz io.Reader) error {
for _, tgz := range []io.Reader{controlTgz, dataTgz} {
if _, err := io.Copy(target, tgz); err != nil {
return err
}
}
return nil
}
func createBuilderControl(info *nfpm.Info, size int64) func(tw *tar.Writer) error {
return func(tw *tar.Writer) error {
var infoBuf bytes.Buffer
if err := writeControl(&infoBuf, controlData{
Info: info,
InstalledSize: size,
}); err != nil {
return err
}
infoContent := infoBuf.String()
infoHeader := &tar.Header{
Name: ".PKGINFO",
Mode: 0600,
Size: int64(len(infoContent)),
}
if err := writeFile(tw, infoHeader, strings.NewReader(infoContent)); err != nil {
return err
}
// NOTE: Apk scripts tend to follow the pattern:
// #!/bin/sh
//
// bin/echo 'running preinstall.sh' // do stuff here
//
// exit 0
for script, dest := range map[string]string{
info.Scripts.PreInstall: ".pre-install",
info.Scripts.PostInstall: ".post-install",
info.Scripts.PreRemove: ".pre-deinstall",
info.Scripts.PostRemove: ".post-deinstall",
} {
if script != "" {
if err := newScriptInsideTarGz(tw, script, dest); err != nil {
return err
}
}
}
return nil
}
}
func newScriptInsideTarGz(out *tar.Writer, path, dest string) error {
file, err := os.Open(path) //nolint:gosec
if err != nil {
return err
}
content, err := ioutil.ReadAll(file)
if err != nil {
return err
}
return newItemInsideTarGz(out, content, &tar.Header{
Name: filepath.ToSlash(dest),
Size: int64(len(content)),
Mode: 0755,
ModTime: time.Now(),
Typeflag: tar.TypeReg,
Format: tar.FormatGNU,
})
}
func newItemInsideTarGz(out *tar.Writer, content []byte, header *tar.Header) error {
if err := out.WriteHeader(header); err != nil {
return errors.Wrapf(err, "cannot write header of %s file to control.tar.gz", header.Name)
}
if _, err := out.Write(content); err != nil {
return errors.Wrapf(err, "cannot write %s file to control.tar.gz", header.Name)
}
return nil
}
func createBuilderData(info *nfpm.Info, sizep *int64) func(tw *tar.Writer) error {
var created = map[string]bool{}
return func(tw *tar.Writer) error {
// handle empty folders
if err := createEmptyFoldersInsideTarGz(info, tw, created); err != nil {
return err
}
// handle Files and ConfigFiles
if err := createFilesInsideTarGz(info, tw, created, sizep); err != nil {
return err
}
return createSymlinksInsideTarGz(info, tw, created)
}
}
func createFilesInsideTarGz(info *nfpm.Info, tw *tar.Writer, created map[string]bool, sizep *int64) error {
filesToCopy, err := files.Expand(info.Files)
if err != nil {
return err
}
configFilesToCopy, err := files.Expand(info.ConfigFiles)
if err != nil {
return err
}
for _, file := range append(filesToCopy, configFilesToCopy...) {
if err = createTree(tw, file.Destination, created); err != nil {
return err
}
err := copyToTarAndDigest(file.Source, file.Destination, tw, sizep, created)
if err != nil {
return err
}
}
return nil
}
func createSymlinksInsideTarGz(info *nfpm.Info, out *tar.Writer, created map[string]bool) error {
for src, dst := range info.Symlinks {
if err := createTree(out, src, created); err != nil {
return err
}
err := newItemInsideTarGz(out, []byte{}, &tar.Header{
Name: strings.TrimLeft(src, "/"),
Linkname: dst,
Typeflag: tar.TypeSymlink,
ModTime: time.Now(),
Format: tar.FormatGNU,
})
if err != nil {
return err
}
}
return nil
}
func copyToTarAndDigest(src, dst string, tw *tar.Writer, sizep *int64, created map[string]bool) error {
file, err := os.OpenFile(src, os.O_RDONLY, 0600) //nolint:gosec
if err != nil {
return errors.Wrap(err, "could not add file to the archive")
}
// don't care if it errs while closing...
defer file.Close() // nolint: errcheck
info, err := file.Stat()
if err != nil {
return err
}
if info.IsDir() {
// TODO: this should probably return an error
return nil
}
header, err := tar.FileInfoHeader(info, src)
if err != nil {
log.Print(err)
return err
}
header.Name = filepath.ToSlash(dst[1:])
err = writeFile(tw, header, file)
if err != nil {
return err
}
*sizep += info.Size()
created[src] = true
return nil
}
func createEmptyFoldersInsideTarGz(info *nfpm.Info, out *tar.Writer, created map[string]bool) error {
for _, folder := range info.EmptyFolders {
// this .nope is actually not created, because createTree ignore the
// last part of the path, assuming it is a file.
// TODO: should probably refactor this
if err := createTree(out, filepath.Join(folder, ".nope"), created); err != nil {
return err
}
}
return nil
}
// this is needed because the data.tar.gz file should have the empty folders
// as well, so we walk through the dst and create all subfolders.
func createTree(tarw *tar.Writer, dst string, created map[string]bool) error {
for _, path := range pathsToCreate(dst) {
if created[path] {
// skipping dir that was previously created inside the archive
// (eg: usr/)
continue
}
if err := tarw.WriteHeader(&tar.Header{
Name: filepath.ToSlash(path + "/"),
Mode: 0755,
Typeflag: tar.TypeDir,
Format: tar.FormatGNU,
ModTime: time.Now(),
}); err != nil {
return errors.Wrap(err, "failed to create folder")
}
created[path] = true
}
return nil
}
func pathsToCreate(dst string) []string {
var paths []string
var base = dst[1:]
for {
base = filepath.Dir(base)
if base == "." {
break
}
paths = append(paths, base)
}
// we don't really need to create those things in order apparently, but,
// it looks really weird if we don't.
var result []string
for i := len(paths) - 1; i >= 0; i-- {
result = append(result, paths[i])
}
return result
}
// reference: https://wiki.adelielinux.org/wiki/APK_internals#.PKGINFO
const controlTemplate = `
{{- /* Mandatory fields */ -}}
pkgname = {{.Info.Name}}
pkgver = {{ if .Info.Epoch}}{{ .Info.Epoch }}:{{ end }}{{.Info.Version}}
{{- if .Info.Release}}-{{ .Info.Release }}{{- end }}
{{- if .Info.Prerelease}}~{{ .Info.Prerelease }}{{- end }}
{{- if .Info.Deb.VersionMetadata}}+{{ .Info.Deb.VersionMetadata }}{{- end }}
arch = {{.Info.Arch}}
size = {{.InstalledSize}}
pkgdesc = {{multiline .Info.Description}}
{{- if .Info.Homepage}}
url = {{.Info.Homepage}}
{{- end }}
{{- if .Info.Maintainer}}
maintainer = {{.Info.Maintainer}}
{{- end }}
{{- range $repl := .Info.Replaces}}
replaces = {{ $repl }}
{{- end }}
{{- range $prov := .Info.Provides}}
provides = {{ $prov }}
{{- end }}
{{- range $dep := .Info.Depends}}
depend = {{ $dep }}
{{- end }}
{{- if .Info.License}}
license = {{.Info.License}}
{{- end }}
`
type controlData struct {
Info *nfpm.Info
InstalledSize int64
}
func writeControl(w io.Writer, data controlData) error {
var tmpl = template.New("control")
tmpl.Funcs(template.FuncMap{
"multiline": func(strs string) string {
ret := strings.ReplaceAll(strs, "\n", "\n ")
return strings.Trim(ret, " \n")
},
})
return template.Must(tmpl.Parse(controlTemplate)).Execute(w, data)
}