Maksytka/kind
1
0
Fork 0
mirror of https://github.com/kubernetes-sigs/kind.git synced 2025-11-30 23:16:04 +07:00
Code Issues Packages Projects Releases Wiki Activity
Files
main
kind/images/local-path-helper/stage-binary-and-deps.sh
Benjamin Elder 507ff70b63 fix querying symlinks
2022-05-12 14:36:17 -07:00

94 lines
3.2 KiB
Bash
Executable File
Raw Permalink Blame History

#!/bin/bash
# Copyright 2021 The Kubernetes Authors.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
# USAGE: stage-binary-and-deps.sh haproxy /opt/stage
#
# Stages $1 and it's dependencies + their copyright files to $2
#
# This is intended to be used in a multi-stage docker build with a distroless/base
# or distroless/cc image.
set -o errexit
set -o nounset
set -o pipefail
# file_to_package identifies the debian package that provided the file $1
file_to_package() {
# `dpkg-query --search $file-pattern` outputs lines with the format: "$package: $file-path"
# where $file-path belongs to $package
# https://manpages.debian.org/jessie/dpkg/dpkg-query.1.en.html
dpkg-query --search "$(realpath "${1}")" | cut -d':' -f1
}
# package_to_copyright gives the path to the copyright file for the package $1
package_to_copyright() {
echo "/usr/share/doc/${1}/copyright"
}
# stage_file stages the filepath $1 to $2, following symlinks
# and staging copyrights
stage_file() {
cp -a --parents "${1}" "${2}"
# recursively follow symlinks
if [[ -L "${1}" ]]; then
stage_file "$(cd "$(dirname "${1}")"; realpath -s "$(readlink "${1}")")" "${2}"
fi
# get the package so we can stage package metadata as well
package="$(file_to_package "${1}")"
# stage the copyright for the file
cp -a --parents "$(package_to_copyright "${package}")" "${2}"
# stage the package status mimicking bazel
# https://github.com/bazelbuild/rules_docker/commit/f5432b813e0a11491cf2bf83ff1a923706b36420
# instead of parsing the control file, we can just get the actual package status with dpkg
dpkg -s "${package}" >> "${2}/var/lib/dpkg/status.d/${package}"
}
# binary_to_libraries identifies the library files needed by the binary $1 with ldd
binary_to_libraries() {
# see: https://man7.org/linux/man-pages/man1/ldd.1.html
ldd "${1}" \
`# strip the leading '${name} => ' if any so only '/lib-foo.so (0xf00)' remains` \
| sed -E 's#.* => /#/#' \
`# we want only the path remaining, not the (0x${LOCATION})` \
| awk '{print $1}' \
`# linux-vdso.so.1 is a special virtual shared object from the kernel` \
`# see: http://man7.org/linux/man-pages/man7/vdso.7.html` \
| grep -v 'linux-vdso.so.1'
}
# main script logic
main(){
local BINARY=$1
local STAGE_DIR="${2}/"
# locate the path to the binary
local binary_path
binary_path="$(which "${BINARY}")"
# ensure package metadata dir
mkdir -p "${STAGE_DIR}"/var/lib/dpkg/status.d/
# stage the binary itself
stage_file "${binary_path}" "${STAGE_DIR}"
# stage the dependencies of the binary
while IFS= read -r c_dep; do
stage_file "${c_dep}" "${STAGE_DIR}"
done < <(binary_to_libraries "${binary_path}")
}
main "$@"
Reference in New Issue View Git Blame Copy Permalink