Import stage3 directly
This commit is contained in:
parent
0ca32aa2ae
commit
8642162cb0
GPG Key ID:
0F1DEAB2D36AD112
@ -4,10 +4,11 @@
|
|||||||
# ===========================================================================
|
# ===========================================================================
|
||||||
# Update the source image.
|
# Update the source image.
|
||||||
# ===========================================================================
|
# ===========================================================================
|
||||||
FROM gentoo/stage3:amd64-nomultilib-systemd as bootstrap
|
|
||||||
# Migrate to a merged-usr form.
|
FROM scratch as bootstrap
|
||||||
RUN emerge --quiet-build=y --oneshot merge-usr
|
# Unpack the stage3 archive (which is downloaded and verifed externally).
|
||||||
RUN merge-usr
|
ADD latest-stage3.tar.xz /
|
||||||
|
# Set the profile.
|
||||||
RUN eselect profile set "default/linux/amd64/17.1/no-multilib/systemd/merged-usr"
|
RUN eselect profile set "default/linux/amd64/17.1/no-multilib/systemd/merged-usr"
|
||||||
# Replace /etc/portage/make.conf.
|
# Replace /etc/portage/make.conf.
|
||||||
RUN rm --one-file-system /etc/portage/make.conf
|
RUN rm --one-file-system /etc/portage/make.conf
|
||||||
|
|||||||
@ -47,7 +47,7 @@ PODMAN_BUILD_ARGS=(
|
|||||||
-t "latest"
|
-t "latest"
|
||||||
# Label the image.
|
# Label the image.
|
||||||
--label="gentoo-nfr-${IMAGE_TAG}"
|
--label="gentoo-nfr-${IMAGE_TAG}"
|
||||||
# Sign the image.
|
# sign the image.
|
||||||
#--sign-by="${GPG_SIGNING_KEY}"
|
#--sign-by="${GPG_SIGNING_KEY}"
|
||||||
# Rebuild everything w/o cache.
|
# Rebuild everything w/o cache.
|
||||||
--no-cache
|
--no-cache
|
||||||
@ -70,8 +70,21 @@ _mkdir "${DISTFILES}"
|
|||||||
_mkdir "${BINPKG}"
|
_mkdir "${BINPKG}"
|
||||||
_mkdir "${LOGDIR}"
|
_mkdir "${LOGDIR}"
|
||||||
|
|
||||||
# === Fetch the base image.
|
# === Fetch the stage3 file (and verify it).
|
||||||
podman pull gentoo/stage3:amd64-nomultilib-systemd || exit_err "Could not fetch the image."
|
SERVER="https://ftp-osl.osuosl.org/pub/gentoo/releases/${ARCH}/autobuilds"
|
||||||
|
MY_STAGE3="latest-stage3-amd64-nomultilib-systemd-mergedusr.txt"
|
||||||
|
LATEST_ARCHIVE="$(curl -sLC- ${SERVER}/${MY_STAGE3} | tail -n1 | cut -f1 -d' ')"
|
||||||
|
ARCHIVE_FILE_NAME="$(echo ${LATEST_ARCHIVE} | cut -f2 -d'/')"
|
||||||
|
|
||||||
|
### Fetch the stage3 archive and its signature.
|
||||||
|
curl -sLC- -O --output-dir "${DISTFILES}" "${SERVER}/${LATEST_ARCHIVE}" \
|
||||||
|
|| exit_err "Could not download the stage3 archive."
|
||||||
|
curl -sLC- -O --output-dir "${DISTFILES}" "${SERVER}/${LATEST_ARCHIVE}.asc" \
|
||||||
|
|| exit_err "Could not download the stage3 archive signature."
|
||||||
|
|
||||||
|
# Verify the signature.
|
||||||
|
gpg --verify "${DISTFILES}/${ARCHIVE_FILE_NAME}"{.asc,} \
|
||||||
|
|| exit_err "Could not verify the stage3 archive."
|
||||||
|
|
||||||
# === Remove the old tag 'latest'.
|
# === Remove the old tag 'latest'.
|
||||||
podman tag rm "${REGISTRY}:latest" # Do not exit_err here. At least on first run
|
podman tag rm "${REGISTRY}:latest" # Do not exit_err here. At least on first run
|
||||||
|
|||||||
Reference in New Issue
Block a user