Skip to content
Snippets Groups Projects
Commit a7454739 authored by Markus Frosch's avatar Markus Frosch
Browse files

Add upload scripts

parent 13b70134
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
external/aptly-process-upload 0 → 100755
+ 255
0
View file @ a7454739
#!/usr/bin/env python
# Copyright (c) 2017-2018 Icinga Development Team <info@icinga.com>
# 2017-2018 Markus Frosch <markus.frosch@icinga.com>
#
# Replacement for "old" update-rpms.rb
#
# This should work on a fileformat that "update-rpms.rb" ignores (no dash in upload path)
#
import argparse
import os, sys
from os.path import join, basename, getmtime, exists, isfile, relpath
from time import time
from fnmatch import fnmatch
from subprocess import check_output
import re
import json
import shutil
import requests
from hashlib import sha1
parser = argparse.ArgumentParser(description='Processing RPM uploads from Aptly')
parser.add_argument('--upload', help='upload spool directory', default='/var/www/html/aptly/upload')
parser.add_argument('--public', help='Public repository base', default='/var/www/html/aptly/public')
parser.add_argument('--cleanup', help='cleanup stale directories', action='store_true')
parser.add_argument('--cleanup-grace-time', metavar='SECONDS', help='Time needed for dirs to be considered stale', type=int, default=300)
parser.add_argument('--force', action='store_true', help='Overwrite files in repository')
parser.add_argument('--api', help='APTLY API (local without auth)', default='http://127.0.0.1:8080/api')
parser.add_argument('--noop', action='store_true', help='No operating mode')
args = parser.parse_args()
REFRESH_REPOS = []
REMOVE_UPLOAD = []
def rpm_query(file, format):
cmd = ['rpm', '-qp', '--queryformat=' + format, file]
return check_output(cmd, stderr=sys.stderr)
def sha1_file(path):
h = sha1()
with open(path, 'rb') as f:
for chunk in iter(lambda: f.read(4096), b""):
h.update(chunk)
return h.hexdigest()
def sign_rpm(file):
if args.noop:
print "Would sign RPM %s" % file
else:
print "Signing RPM %s" % file
check_output(['/usr/local/bin/aptly-rpmsign', file])
def install_rpm(file, source, dest):
if not exists(dest) and not args.noop:
os.makedirs(dest)
source_file = join(source, file)
dest_file = join(dest, file)
# TODO: if checksums will be checked, file changes here!!
sign_rpm(source_file)
if exists(dest_file) and not args.force:
if not isfile(dest_file) or sha1_file(source_file) != sha1_file(dest_file):
raise StandardError, 'Target file already exists and is not identical to source: ' + dest_file
if args.noop:
print "Would copy %s to %s" % (source_file, dest_file)
else:
shutil.copyfile(source_file, dest_file)
def delete_upload(path):
if not path.startswith(args.upload):
raise StandardError, 'Path to be deleted is not below %s' % (args.upload)
if args.noop:
print "Would delete path " + path
else:
print "Deleting path " + path
for root, dirs, files in os.walk(path, topdown=False):
for name in files:
os.remove(join(root, name))
for name in dirs:
os.rmdir(join(root, name))
os.rmdir(path)
def createrepo(path):
if args.noop:
print "Would update repodata for %s" % (path)
else:
print "Updating repodata for %s" % (path)
check_output(['createrepo', path])
repo_xml = join(path, 'repodata', 'repomd.xml')
repo_signature = repo_xml + '.asc'
if args.noop:
print "Would sign repo metadata %s" % repo_xml
else:
if exists(repo_signature):
os.remove(repo_signature)
print "Signing repo metadata"
check_output(['gpg', '--detach-sign', '--armor', '--batch', '--no-tty', repo_xml])
def process_upload(path, files):
print 'Reading upload metadata from %s' % (basename(path))
with open(join(path, 'upload.json'), 'r') as f:
upload_meta = json.loads(f.read())
target = upload_meta['target']
release = upload_meta['release']
upload_type = upload_meta['type']
#checksums = upload_meta['checksums']
if upload_type == 'RPM':
return process_upload_rpm(path, files, target, release)
elif upload_type == 'DEB':
return process_upload_deb(path, files, target, release)
else:
raise StandardError, 'Unknown upload type "%s"!' % upload_type
def aptly_safe_string(string):
return re.sub('\W+', '-', string)
def process_upload_deb(path, files, target, release):
# remove icinga- prefix
release_short = re.sub('^icinga-', '', release)
aptly_repo = 'icinga-%s-%s' % (aptly_safe_string(target), aptly_safe_string(release_short))
aptly_target = re.sub('/', '_', re.sub('_', '__', target))
upload = basename(path)
print "Checking if repository '%s' exists" % aptly_repo
r = requests.get(args.api + '/repos/%s' % aptly_repo)
if r.status_code != requests.codes.ok:
raise StandardError, "Aptly repository '%s' does not exist on server!" % aptly_repo
if args.noop:
print "Would add upload '%s' to repo '%s'" % (upload, aptly_repo)
else:
print "Adding upload '%s' to repo '%s'" % (upload, aptly_repo)
r = requests.post(args.api + '/repos/%s/file/%s' % (aptly_repo, upload), data={})
if r.status_code != requests.codes.ok:
raise StandardError, "Adding upload to repo '%s' failed: %s" % (aptly_repo, r.content)
if args.noop:
print "Would publish repo '%s' to '%s'" % (aptly_repo, target)
else:
print "Publising repo '%s' to '%s'" % (aptly_repo, target)
r = requests.put(args.api + '/publish/%s/%s' % (aptly_target, release), data={})
if r.status_code == requests.codes.ok:
print "Publish successful!"
elif r.status_code == requests.codes.not_found:
if args.noop:
print "Would publish a new repository '%s' to '%s'" % (aptly_repo, target)
else:
print "Publishing a new repository '%s' to '%s'" % (aptly_repo, target)
payload = {}
payload['SourceKind'] = 'local'
payload['Sources'] = [{'Name': aptly_repo}]
payload['Architectures'] = ['i386','amd64','source']
payload['Distribution'] = release
r = requests.post(args.api + '/publish/%s' % (aptly_target), json=payload)
if r.status_code in [requests.codes.ok, requests.codes.created]:
print "Publish sucessful!"
else:
raise StandardError, "Publising repo '%s' failed: %s" % (aptly_repo, r.content)
else:
raise StandardError, "Publising repo '%s' failed: %s" % (aptly_repo, r.content)
delete_upload(path)
def process_upload_rpm(path, files, target, release):
source_rpm = None
rpms = []
# reading files from dir
for file in files:
if fnmatch(file, '*.src.rpm'):
if source_rpm:
raise StandardError, 'Found more than one source_rpm: %s %s' % (source_rpm, file)
source_rpm = file
elif fnmatch(file, '*.rpm'):
rpms.append(file)
else:
# ignore other files
pass
if not source_rpm:
raise StandardError, 'No source RPM found!'
# TODO: validate checksums?
source_name = rpm_query(join(path, source_rpm), '%{name}')
# the full path to install to
target_path = join(args.public, target, release)
repodata_path = join(target_path, 'repodata')
source_path = join(target_path, 'src', source_name)
# check this is an RPM repository...
if exists(target_path):
if not exists(repodata_path):
raise StandardError, 'Install location %s exists and is not an RPM repository!' % (target_path)
else:
# making it an empty RPM repository
# this will avoid errors in this check if we abort later
if args.noop:
print "Would create repository under %s" % repodata_path
else:
print "Would create repository under %s" % repodata_path
os.makedirs(repodata_path)
print "Installing source RPM %s into target %s" % (source_rpm, relpath(source_path, args.public))
install_rpm(source_rpm, path, source_path)
for rpm in rpms:
arch = rpm_query(join(path, source_rpm), '%{arch}')
binary_path = join(target_path, arch, source_name)
print "Installing RPM %s into target %s" % (rpm, relpath(binary_path, args.public))
install_rpm(rpm, path, binary_path)
# schedule repo for refreshing
global REFRESH_REPOS
if target_path not in REFRESH_REPOS:
REFRESH_REPOS.append(target_path)
# delete upload
delete_upload(path)
for root, dirs, files in os.walk(args.upload, topdown=False):
if root == args.upload:
continue
# cleanup old empty dirs
if args.cleanup and not dirs and not files and args.cleanup_grace_time > 0 and getmtime(root) < (time() - args.cleanup_grace_time):
if args.noop:
print "Would cleanup empty directory: %s" % root
else:
print "Cleanup empty directory: %s" % root
os.rmdir(root)
# only process directory that contain an upload file
if 'upload.json' not in files:
continue
try:
process_upload(root, files)
except StandardError, e:
print >> sys.stderr, "Encountered an error during processing upload %s: %s" % (basename(root), e.message)
for repo in REFRESH_REPOS:
createrepo(repo)
icinga-build-upload-aptly 0 → 100755
+ 152
0
View file @ a7454739
#!/usr/bin/env python
import sys, os
import argparse
import fnmatch
from hashlib import sha1
import requests
import json
import re
# internals
APTLY_SESSION = None
def scan_dir(path, pattern):
found = []
for root, dirs, files in os.walk(path):
for file in files:
if fnmatch.fnmatch(file, pattern):
found.append(os.path.join(root, file))
return found
def detect_rpm(path):
source = scan_dir(path, '*.src.rpm')
rpms = scan_dir(path, '*.rpm')
if len(source) == 0:
return []
elif len(source) != 1:
raise StandardError, 'There more than one source RPM in ' + path
if len(rpms) < 2:
raise StandardError, 'There should be at least 2 RPMS in ' + path
return rpms
def detect_deb(path):
source = scan_dir(path, '*.dsc')
tarballs = scan_dir(path, '*.tar*')
changes = scan_dir(path, '*.changes')
debs = scan_dir(path, '*.deb')
if len(source) == 0:
return []
elif len(source) != 1:
raise StandardError, 'There more than one source DSC in ' + path
files = source + tarballs + changes + debs
if len(files) < 2:
raise StandardError, 'There should be at least 2 files in ' + path
return files
def sha1_file(path):
h = sha1()
with open(path, 'rb') as f:
for chunk in iter(lambda: f.read(4096), b""):
h.update(chunk)
return h.hexdigest()
def upload_checksum(files):
files = sorted(files)
h = sha1()
d = dict()
for file in files:
d[file] = fh = sha1_file(file)
h.update(fh)
return (h.hexdigest(), d)
def aptly_session():
global APTLY_SESSION
if APTLY_SESSION is None:
APTLY_SESSION = s = requests.Session()
if args.username and args.password:
s.auth = (args.username, args.password)
if args.insecure:
s.verify = False
return APTLY_SESSION
def aptly_url(url):
return args.server + url
parser = argparse.ArgumentParser(description='Uploading build results to an Aptly server')
parser.add_argument('--server', help='APTLY API service to talk to (e.g. http://127.0.0.1:8080/api)',
default=os.environ.get('APTLY_SERVER'))
parser.add_argument('--username', help='APTLY API username',
default=os.environ.get('APTLY_USERNAME'))
parser.add_argument('--password', help='APTLY API password',
default=os.environ.get('APTLY_PASSWORD'))
parser.add_argument('--result', metavar='path',
default='build/', help='Build result to upload')
parser.add_argument('--target', metavar='target', required=True,
help='Repository to install the package to (e.g. stack/dev/epel or stack/dev/ubuntu)')
parser.add_argument('--release', metavar='release', required=True,
help='Version of the repository to install to (e.g. 7 or icinga-xenial)')
parser.add_argument('--insecure', action='store_true', help='Disable SSL verification')
args = parser.parse_args()
if not args.server:
raise StandardError, "Specifying an aptly server is required (--server or APTLY_SERVER)"
if not os.path.exists(args.result):
raise StandardError, "Result path '%s' does not exist!" % (args.result)
rpms = detect_rpm(args.result)
debs = detect_deb(args.result)
files = None
if rpms:
type = 'RPM'
files = rpms
elif debs:
type = 'DEB'
files = debs
if not files:
raise StandardError, 'No packages found in %s' % (args.result)
(checksum, checksums) = upload_checksum(files)
upload_prefix = re.sub('[/\-_]+', '_', args.target + '_' + args.release)
upload_name = '%s_%s' % (upload_prefix, checksum)
# ensure target is absent
r = aptly_session().delete(aptly_url('/files/' + upload_name))
if r.status_code == requests.codes.ok:
print "Deleted existing upload %s" % (upload_name)
elif r.status_code != requests.codes.not_found:
raise StandardError, 'Unexpected result code: %s' % (r.status_code)
# meta and upload file
upload_meta = {
'target': args.target,
'release': args.release,
'type': type,
'checksums': checksums,
}
# uploading files
upload_url = aptly_url('/files/' + upload_name)
print "Uploading %d files to %s" % (len(files), upload_name)
for file in files:
file_data = [('file', (file, open(file, 'rb')))]
r = aptly_session().post(upload_url, files=file_data)
if r.status_code == requests.codes.ok:
print "Upload successful: %s" % (file)
else:
raise StandardError, "Upload failed for %s - http status: %s - message:\n%s" % (upload_name, r.status_code, r.text[:30])
file_data = [('file', ('upload.json', json.dumps(upload_meta)))]
r = aptly_session().post(upload_url, files=file_data)
if r.status_code == requests.codes.ok:
print 'Metadata upload successful.'
else:
raise StandardError, "Upload metadata failed for %s - http status: %s - message:\n%s" % (upload_name, r.status_code, r.text[:30])
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment