[git-tools-moved-to-github.git] / update-archive / update-yum-archive.sh

#!/bin/sh
if [ "$(id -u)" != "0" -o $HOME != "/root" ]; then
  echo "This script must be run as root (not sudo) to perform package singning." 1>&2
  exit 1
fi

if test ! -f ~/.rpmmacros; then
  echo "$0: Make sure ~/.rpmmacros file exsits and contains macros from git-tools/update-archive/root-rpmmacros"
  exit 1
fi

if test ! -x /usr/bin/createrepo; then
  echo "$0: /usr/bin/createrepo missing. Install createrepo"
  exit 1
fi

if test ! -x /usr/bin/gpg; then
  echo "$0: /usr/bin/gpg missing. Install gpg"
  exit 1
fi

if test ! -x /usr/bin/expect; then
  echo "$0: /usr/bin/expect missing. Install expect"
  exit 1
fi

now=`date +%s`
# sign if newer than signage (86400=24 hrs)
signage=8000
#check if root has rpm macros
confdir=`pwd`
architectures="i386 x86_64"
dirs_to_upd=""
for vdist in centos/5.5 rhel/5.5 centos/6; do
  dist=`basename $vdist`
  vendor=`dirname $vdist`
  ftpdir=/home/ftp/pub/yum/$vendor/$dist
  if test ! -d $ftpdir; then
    echo "$ftpdir does not exist"
    exit 1
  fi
  cd $ftpdir    
  sections=""
  for section in main restricted; do
    # Prepare pool
    d=$section
    if test ! -d $d; then mkdir -p $d; fi
    if test ! -d $d/SRPMS; then mkdir -p $d/SRPMS; fi
    # Remove invalid symlinks (SRPMS, i386, x86_64,..)
    for l in $d/SRPMS/*; do
      if test -L "$l"; then
        if test ! -f "$l"; then
          rm $l
        fi
      fi
    done
    for arch in $architectures; do
      dirs_to_upd="${dirs_to_upd} ${ftpdir}/${d}/${arch}"
      for l in $d/$arch/Packages/*; do
        if test -L "$l"; then
          if test ! -f "$l"; then
            rm $l
          fi
        fi
      done
    done
    # Make symlinks from the regular FTP archive
    for pdir in /home/ftp/pub/*; do
      use=false
      if test -f $pdir/.htaccess -a $section != "main"; then
        use=true
      fi
      if test ! -f $pdir/.htaccess -a $section = "main"; then
        use=true
      fi
      if $use; then
        distdir=$pdir/redhat/$vendor/$dist
        if test -d $distdir; then
          if test -d $distdir/SRPMS; then
            for f in $distdir/SRPMS/*.src.rpm; do
              if test -f $f; then
                ln -sf $f $d/SRPMS/
              fi
            done
          fi
          for arch in $architectures; do
            mkdir -p $d/${arch}/Packages
            for f in $distdir/RPMS/${arch}/*.rpm $distdir/RPMS/noarch/*.rpm; do
              if test -f $f; then
                age=`stat --printf='%Y' $f`
                if expr $now - $age \< $signage >/dev/null; then
                  ln -sf $f $d/${arch}/Packages/
                  if rpm -K $f|grep -q ' gpg' >/dev/null; then
                    echo "Already signed $f"
                  else
                    expect << __EOF
                    spawn rpm --addsign $f
expect -exact "Enter pass phrase: "
send -- "\r"
expect eof
__EOF
                    chgrp staff $f
                    chmod g+w $f
                  fi
                fi
              fi
            done
          done
        fi
      fi
    done
  done
done
echo "Updating repository meta:"
for rdir in ${dirs_to_upd}; do
  echo "Section ${rdir}"
  if test -d $rdir && ls -A $rdir; then
        createrepo --update ${rdir}
        if test -f ${rdir}/repodata/repomd.xml.asc; then
                rm ${rdir}/repodata/repomd.xml.asc
        fi
        gpg --detach-sign -u "Index Data" --armor ${rdir}/repodata/repomd.xml
  else
        echo "Empty."
  fi
done
# Local Variables:
# mode:shell-script
# sh-indentation: 2
# sh-basic-offset: 8
# End: