Skip to content

Instantly share code, notes, and snippets.

@brianredbeard

brianredbeard/gentoo-stage3-aci.sh

Created March 7, 2016 18:58
Show Gist options
  • Star 2 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save brianredbeard/9bae454a1d42988aee82 to your computer and use it in GitHub Desktop.
Save brianredbeard/9bae454a1d42988aee82 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
gentoo-stage3-aci.sh
#!/usr/bin/env bash
set -e
# Set default values
: ${GENTOO_ARCH:=amd64}
: ${GENTOO_PROFILE:=""}
: ${GENTOO_PORTAGE:=no}
# Check for Gentoo profile, if there if a profile, add a "-"
if [ "${GENTOO_PROFILE}x" != "x" ]; then
GENTOO_PROFILE="-${GENTOO_PROFILE}"
fi
# Import the Gentoo signing keys
# Gentoo-keys team
gpg --recv-key '0x825533CBF6CD6C97'
# Gentoo automated weekly release key
gpg --recv-key '0xBB572E0E2D182910'
# Identify the current Gentoo version
GENTOO_CUR=`curl -s http://distfiles.gentoo.org/releases/${GENTOO_ARCH}/autobuilds/latest-stage3-${GENTOO_ARCH}${GENTOO_PROFILE}.txt | awk '/stage3/ {print $1}'`
GENTOO_BZIP=${GENTOO_CUR##*/}
GENTOO_TAR=${GENTOO_BZIP%%.bz2}
# Pull down the Gentoo stage3 image
if [ ! -e ${GENTOO_BZIP} ]; then
echo "Downloading Gentoo Stage 3 (${GENTOO_BZIP})"
curl -O http://distfiles.gentoo.org/releases/${GENTOO_ARCH}/autobuilds/current-stage3-${GENTOO_ARCH}${GENTOO_PROFILE}/${GENTOO_BZIP}
echo "Downloading Gentoo digests"
curl -O http://distfiles.gentoo.org/releases/${GENTOO_ARCH}/autobuilds/current-stage3-${GENTOO_ARCH}${GENTOO_PROFILE}/${GENTOO_BZIP}.DIGESTS
echo "Downloading Gentoo digests (detached signature)"
curl -O http://distfiles.gentoo.org/releases/${GENTOO_ARCH}/autobuilds/current-stage3-${GENTOO_ARCH}${GENTOO_PROFILE}/${GENTOO_BZIP}.DIGESTS.asc
gpg --verify ${GENTOO_BZIP}.DIGESTS.asc
EXIT_CODE=$?
if [ "${EXIT_CODE}" != "0" ]; then
echo "Digest file failed GPG validation (Exit code: ${EXIT_CODE})."
exit ${EXIT_CODE}
fi
# Check to ensure that the images were signed with the proper release key
echo "Validating hashes"
grep -A1 SHA512 ${GENTOO_BZIP}.DIGESTS.asc | awk "/${GENTOO_BZIP}$/ {print \$0}" | sha512sum -c -
EXIT_CODE=$?
if [ "${EXIT_CODE}" != "0" ]; then
echo "Payload file failed SHA512 validation (Exit code: ${EXIT_CODE})."
exit ${EXIT_CODE}
fi
fi
# If the rootfs does not exist, then explode the corresponding tarball
# and install the Gentoo portage tree into the correct location
if [ ! -d "rootfs" ]; then
echo "Creating rootfs"
mkdir -p rootfs
set +e
echo "Exploding stage3 to rootfs"
tar jxpf ${GENTOO_BZIP} -C rootfs --xattrs
set -e
mkdir -p rootfs/usr/portage
if [ "${GENTOO_PORTAGE}x" != "x" ]; then
echo "Performing rsync of portage tree"
rsync -az rsync://rsync.us.gentoo.org/gentoo-portage rootfs/usr/portage/
echo "Completed rsync of portage tree"
fi
fi
# Begin operations to finish packaging our assets into ACI format
echo "Writing ACI manifest"
echo "{\"acKind\":\"ImageManifest\",\"acVersion\":\"0.7.4\",\"name\":\"${GENTOO_TAR%%.tar}\",\"labels\":[{\"name\":\"os\",\"value\":\"linux\"},{\"name\":\"arch\",\"value\":\"${GENTOO_ARCH}\"}],\"app\":{\"exec\":[\"/bin/bash\"],\"user\":\"0\",\"group\":\"0\"}}" > manifest
echo "Building ACI image"
tar Jcpf ${GENTOO_TAR%%.tar}.aci --xattrs rootfs manifest
echo "Built Image ${GENTOO_TAR%%.tar}.aci"
# some common packages needed to build subsequent packages include:
# dev-vcs/git
# sys-devel/bc
# app-arch/cpio
@joeatwork
Copy link

It might be nice to be mirror-aware with this :)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment