summaryrefslogtreecommitdiff
path: root/packages/scripts/pkg-dtail-openbsd.sh
blob: 1206927aaf940eba83da3bce3f8c4e22f221f411 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80

#!/bin/sh
# Build and sign an OpenBSD dtail package from pre-compiled binaries and config files.
# Run on an OpenBSD host (e.g. fishfinger). Called by the Makefile via SSH.
# The signed .tgz is left in /tmp/dtail-pkg/out/ for the Makefile to retrieve.
#
# Arguments:
#   $1 — version (e.g. 4.3.2)

set -e

VERSION="$1"
NAME="dtail"
COMMENT="Distributed log tail and grep tool"
DESC="DTail is a distributed DevOps tool for tailing, grepping, catting, and
mapping across many remote machines at once via SSH."

WORKDIR="/tmp/${NAME}-pkg"
doas rm -rf "$WORKDIR"
mkdir -p "$WORKDIR/stage/usr/local/bin"
mkdir -p "$WORKDIR/stage/etc/dserver"
mkdir -p "$WORKDIR/stage/etc/rc.d"
mkdir -p "$WORKDIR/out"

# Place the pre-compiled binaries
for bin in dserver dcat dgrep dmap dtail dtailhealth; do
    cp "/tmp/dtail-binaries/${bin}" "$WORKDIR/stage/usr/local/bin/${bin}"
    chmod 755 "$WORKDIR/stage/usr/local/bin/${bin}"
done

# Place the key cache helper script
cp "/tmp/dtail-binaries/dserver-update-key-cache.sh" \
    "$WORKDIR/stage/usr/local/bin/dserver-update-key-cache.sh"
chmod 500 "$WORKDIR/stage/usr/local/bin/dserver-update-key-cache.sh"

# Place the config file
cp "/tmp/dtail-binaries/dtail.json" "$WORKDIR/stage/etc/dserver/dtail.json"
chmod 644 "$WORKDIR/stage/etc/dserver/dtail.json"

# Place the rc script
cp "/tmp/dtail-binaries/dserver.rc" "$WORKDIR/stage/etc/rc.d/dserver"
chmod 755 "$WORKDIR/stage/etc/rc.d/dserver"

# Packing list — all files with absolute paths
cat > "$WORKDIR/plist" <<'PLIST'
usr/local/bin/dserver
usr/local/bin/dcat
usr/local/bin/dgrep
usr/local/bin/dmap
usr/local/bin/dtail
usr/local/bin/dtailhealth
usr/local/bin/dserver-update-key-cache.sh
etc/dserver/dtail.json
etc/rc.d/dserver
PLIST

# Description file
printf '%s\n' "$DESC" > "$WORKDIR/desc"

# Build the package
doas pkg_create \
    -D COMMENT="$COMMENT" \
    -d "$WORKDIR/desc" \
    -f "$WORKDIR/plist" \
    -B "$WORKDIR/stage" \
    -p / \
    "$WORKDIR/out/${NAME}-${VERSION}.tgz"

# Sign with signify if the key exists
if [ -f /etc/signify/custom-pkg.sec ]; then
    mkdir -p "$WORKDIR/signed"
    doas pkg_sign -s signify2 -s /etc/signify/custom-pkg.sec \
        -o "$WORKDIR/signed" "$WORKDIR/out/${NAME}-${VERSION}.tgz"
    mv "$WORKDIR/signed/${NAME}-${VERSION}.tgz" "$WORKDIR/out/${NAME}-${VERSION}.tgz"
    rm -rf "$WORKDIR/signed"
    echo "Package signed with signify"
else
    echo "Warning: /etc/signify/custom-pkg.sec not found, package is unsigned"
fi

echo "OpenBSD package ${NAME}-${VERSION} built in $WORKDIR/out/"
generated by cgit v1.2.3 (git 2.25.1) at 2026-06-08 09:22:44 +0000