from mkosi.distributions import centos, join_mirror
from mkosi.installer.rpm import RpmRepository, find_rpm_gpgkey
from mkosi.log import die
+from mkosi.run import exists_in_sandbox, glob_in_sandbox
class Installer(centos.Installer):
if context.config.mirror:
return None
- p = Path("etc/rhsm/ca/redhat-uep.pem")
- if (context.sandbox_tree / p).exists():
- p = context.sandbox_tree / p
- elif (Path("/") / p).exists():
- p = Path("/") / p
- else:
- die("redhat-uep.pem certificate not found in host system or sandbox tree")
+ path = Path("/etc/rhsm/ca/redhat-uep.pem")
+ if not exists_in_sandbox(path, sandbox=context.sandbox()):
+ die(
+ f"redhat-uep.pem certificate not found in sandbox at {path}",
+ hint="Add the certificate to the sandbox with SandboxTrees= or mkosi.sandbox/",
+ )
- return p
+ return path
@staticmethod
def sslclientkey(context: Context) -> Optional[Path]:
if context.config.mirror:
return None
- pattern = "etc/pki/entitlement/*-key.pem"
-
- p = next((p for p in sorted(context.sandbox_tree.glob(pattern))), None)
- if not p:
- p = next((p for p in Path("/").glob(pattern)), None)
- if not p:
- die("Entitlement key not found in host system or sandbox tree")
+ glob = "/etc/pki/entitlement/*-key.pem"
+ paths = glob_in_sandbox(glob, sandbox=context.sandbox())
+ if not paths:
+ die(
+ f"No entitlement keys found at {glob} in sandbox",
+ hint="Add an entitlement key to the sandbox with SandboxTrees= or mkosi.sandbox/",
+ )
- return p
+ return paths[0]
@staticmethod
def sslclientcert(context: Context) -> Optional[Path]:
if context.config.mirror:
return None
- pattern = "etc/pki/entitlement/*.pem"
-
- p = next((p for p in sorted(context.sandbox_tree.glob(pattern)) if "key" not in p.name), None)
- if not p:
- p = next((p for p in sorted(Path("/").glob(pattern)) if "key" not in p.name), None)
- if not p:
- die("Entitlement certificate not found in host system or sandbox tree")
+ glob = "/etc/pki/entitlement/*.pem"
+ paths = [p for p in glob_in_sandbox(glob, sandbox=context.sandbox()) if "-key.pem" not in p.name]
+ if not paths:
+ die(
+ f"No entitlement certificates found at {glob} in sandbox",
+ hint="Add an entitlement certificate to the sandbox with SandboxTrees= or mkosi.sandbox/",
+ )
- return p
+ return paths[0]
@classmethod
def repository_variants(cls, context: Context, repo: str) -> Iterable[RpmRepository]:
# SPDX-License-Identifier: LGPL-2.1-or-later
import dataclasses
-import subprocess
import textwrap
from pathlib import Path
from typing import Literal, Optional, overload
from mkosi.context import Context
from mkosi.distributions import Distribution
from mkosi.log import die
-from mkosi.run import run
+from mkosi.run import glob_in_sandbox
from mkosi.util import PathString
) -> Optional[str]:
# We assume here that GPG keys will only ever be relative symlinks and never absolute symlinks.
- globs = [
+ paths = glob_in_sandbox(
f"/usr/share/distribution-gpg-keys/*/{key}*",
f"/etc/pki/rpm-gpg/{key}*",
- ]
-
- paths = (
- run(
- ["bash", "-c", rf"shopt -s nullglob && printf '%s\n' {' '.join(globs)} | xargs -r readlink -f"],
- sandbox=context.sandbox(),
- stdout=subprocess.PIPE,
- )
- .stdout.strip()
- .splitlines()
+ sandbox=context.sandbox(),
)
if paths:
return exe
return "python3"
+
+
+def glob_in_sandbox(
+ *globs: str,
+ sandbox: AbstractContextManager[Sequence[PathString]] = contextlib.nullcontext([]),
+) -> list[Path]:
+ return [
+ Path(s)
+ for s in run(
+ [
+ "bash",
+ "-c",
+ rf"shopt -s nullglob && printf '%s\n' {' '.join(globs)} | xargs -r readlink -f",
+ ],
+ sandbox=sandbox,
+ stdout=subprocess.PIPE,
+ )
+ .stdout.strip()
+ .splitlines()
+ ]
+
+
+def exists_in_sandbox(
+ path: PathString,
+ sandbox: AbstractContextManager[Sequence[PathString]] = contextlib.nullcontext([]),
+) -> bool:
+ return (
+ run(
+ ["bash", "-c", rf"test -e {path}"],
+ sandbox=sandbox,
+ check=False,
+ ).returncode
+ == 0
+ )
projects / thirdparty / mkosi.git / commitdiff
