use crate::{
api::artifact::ArtifactSystem::{Aarch64Darwin, Aarch64Linux, X8664Darwin, X8664Linux},
artifact::{get_env_key, linux_vorpal, ArtifactStep, ArtifactStepBuilder, ArtifactSystem},
context::ConfigContext,
};
use anyhow::{bail, Result};
use indoc::formatdoc;
pub fn bash(
context: &mut ConfigContext,
artifacts: Vec<String>,
environments: Vec<String>,
script: String,
systems: Vec<ArtifactSystem>,
) -> ArtifactStep {
let mut step_environments = vec![];
for environment in environments.iter() {
if environment.starts_with("PATH=") {
continue;
}
step_environments.push(environment.to_string());
}
let step_path_bins = artifacts
.iter()
.map(|a| format!("{}/bin", get_env_key(a)))
.collect::<Vec<String>>()
.join(":");
let step_path_default = "/usr/local/bin:/usr/bin:/usr/sbin:/bin:/sbin";
let mut step_path = format!("{step_path_bins}:{step_path_default}");
if let Some(path) = environments.iter().find(|x| x.starts_with("PATH=")) {
if let Some(path_value) = path.split('=').nth(1) {
step_path = format!("{path_value}:{step_path}");
}
}
step_environments.push(format!("PATH={}", step_path));
let step_script = formatdoc! {"
#!/bin/bash
set -euo pipefail
{script}
"};
ArtifactStepBuilder::new()
.with_artifacts(artifacts, systems.clone())
.with_entrypoint("bash", systems.clone())
.with_environments(step_environments, systems.clone())
.with_script(step_script, systems)
.build(context)
}
pub async fn bwrap(
context: &mut ConfigContext,
arguments: Vec<&str>,
artifacts: Vec<String>,
environments: Vec<String>,
rootfs: Option<String>,
script: String,
systems: Vec<ArtifactSystem>,
) -> Result<ArtifactStep> {
let mut step_arguments = vec![
"--unshare-all".to_string(),
"--share-net".to_string(),
"--clearenv".to_string(),
"--chdir".to_string(),
"$VORPAL_WORKSPACE".to_string(),
"--gid".to_string(),
"1000".to_string(),
"--uid".to_string(),
"1000".to_string(),
"--dev".to_string(),
"/dev".to_string(),
"--proc".to_string(),
"/proc".to_string(),
"--tmpfs".to_string(),
"/tmp".to_string(),
"--bind".to_string(),
"$VORPAL_OUTPUT".to_string(),
"$VORPAL_OUTPUT".to_string(),
"--bind".to_string(),
"$VORPAL_WORKSPACE".to_string(),
"$VORPAL_WORKSPACE".to_string(),
"--setenv".to_string(),
"VORPAL_OUTPUT".to_string(),
"$VORPAL_OUTPUT".to_string(),
"--setenv".to_string(),
"VORPAL_WORKSPACE".to_string(),
"$VORPAL_WORKSPACE".to_string(),
];
let mut step_artifacts = vec![];
if let Some(rootfs) = rootfs {
let rootfs_env = get_env_key(&rootfs);
let rootfs_bin = format!("{rootfs_env}/bin");
let rootfs_etc = format!("{rootfs_env}/etc");
let rootfs_lib = format!("{rootfs_env}/lib");
let rootfs_lib64 = format!("{rootfs_env}/lib64");
let rootfs_sbin = format!("{rootfs_env}/sbin");
let rootfs_usr = format!("{rootfs_env}/usr");
let rootfs_args = vec![
"--ro-bind".to_string(),
rootfs_bin,
"/bin".to_string(),
"--ro-bind".to_string(),
rootfs_etc,
"/etc".to_string(),
"--ro-bind".to_string(),
rootfs_lib,
"/lib".to_string(),
"--ro-bind-try".to_string(),
rootfs_lib64,
"/lib64".to_string(),
"--ro-bind".to_string(),
rootfs_sbin,
"/sbin".to_string(),
"--ro-bind".to_string(),
rootfs_usr,
"/usr".to_string(),
];
step_arguments.extend(rootfs_args);
step_artifacts.push(rootfs);
}
for artifact in artifacts.into_iter() {
step_artifacts.push(artifact);
}
for artifact in step_artifacts.iter() {
step_arguments.push("--ro-bind".to_string());
step_arguments.push(get_env_key(artifact));
step_arguments.push(get_env_key(artifact));
step_arguments.push("--setenv".to_string());
step_arguments.push(get_env_key(artifact).replace("$", ""));
step_arguments.push(get_env_key(artifact));
}
let step_path_bins = step_artifacts
.iter()
.map(|a| format!("{}/bin", get_env_key(a)))
.collect::<Vec<String>>()
.join(":");
let mut step_path = format!("{step_path_bins}:/usr/local/bin:/usr/bin:/usr/sbin:/bin:/sbin");
if let Some(path) = environments.iter().find(|x| x.starts_with("PATH=")) {
if let Some(path_value) = path.split('=').nth(1) {
step_path = format!("{}:{}", path_value, step_path);
}
}
step_arguments.push("--setenv".to_string());
step_arguments.push("PATH".to_string());
step_arguments.push(step_path);
for env in environments.iter() {
let key = env.split("=").next().unwrap();
let value = env.split("=").last().unwrap();
if key.starts_with("PATH") {
continue;
}
step_arguments.push("--setenv".to_string());
step_arguments.push(key.to_string());
step_arguments.push(value.to_string());
}
for argument in arguments.into_iter() {
step_arguments.push(argument.to_string());
}
let step_script = formatdoc! {"
#!/bin/bash
set -euo pipefail
{script}
"};
let step = ArtifactStepBuilder::new()
.with_arguments(
step_arguments.iter().map(|x| x.as_str()).collect(),
systems.clone(),
)
.with_artifacts(step_artifacts, systems.clone())
.with_entrypoint("bwrap", systems.clone())
.with_environments(
vec!["PATH=/usr/local/bin:/usr/bin:/usr/sbin:/bin:/sbin".to_string()],
systems.clone(),
)
.with_script(step_script, systems)
.build(context);
Ok(step)
}
pub async fn shell(
context: &mut ConfigContext,
artifacts: Vec<String>,
environments: Vec<String>,
script: String,
) -> Result<ArtifactStep> {
let step_system = context.get_system();
let step = match step_system {
Aarch64Darwin | X8664Darwin => bash(
context,
artifacts,
environments.clone(),
script.to_string(),
vec![Aarch64Darwin, X8664Darwin],
),
Aarch64Linux | X8664Linux => {
let linux_vorpal = linux_vorpal::build(context).await?;
bwrap(
context,
vec![],
artifacts,
environments,
Some(linux_vorpal),
script,
vec![Aarch64Linux, X8664Linux],
)
.await?
}
_ => bail!(
"unsupported shell step system: {}",
step_system.as_str_name()
),
};
Ok(step)
}
pub fn docker(
context: &mut ConfigContext,
arguments: Vec<&str>,
artifacts: Vec<String>,
systems: Vec<ArtifactSystem>,
) -> ArtifactStep {
ArtifactStepBuilder::new()
.with_arguments(arguments, systems.clone())
.with_artifacts(artifacts, systems.clone())
.with_entrypoint("docker", systems.clone())
.with_environments(
vec!["PATH=/usr/local/bin:/usr/bin:/usr/sbin:/bin:/sbin".to_string()],
systems.clone(),
)
.build(context)
}