kairos/luet
1
0
Fork 0
mirror of https://github.com/mudler/luet.git synced 2025-09-08 02:29:38 +00:00
Code Issues Packages Projects Releases Wiki Activity

Begin implementation for catch config protect files

Browse Source
This commit is contained in:
Daniele Rondina
2020-06-02 09:04:40 +02:00
parent 990a5405cf
commit a2231749ab
2 changed files with 67 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
pkg/config/config.go
View File

@@ -200,9 +200,10 @@ type LuetConfig struct {
System LuetSystemConfig `mapstructure:"system"` System LuetSystemConfig `mapstructure:"system"`
Solver LuetSolverOptions `mapstructure:"solver"` Solver LuetSolverOptions `mapstructure:"solver"`
RepositoriesConfDir []string `mapstructure:"repos_confdir"` RepositoriesConfDir []string `mapstructure:"repos_confdir"`
CacheRepositories []LuetRepository `mapstructure:"repetitors"` ConfigProtectConfDir []string `mapstructure:"config_protect_confdir"`
SystemRepositories []LuetRepository `mapstructure:"repositories"` CacheRepositories []LuetRepository `mapstructure:"repetitors"`
SystemRepositories []LuetRepository `mapstructure:"repositories"`
} }
func NewLuetConfig(viper *v.Viper) *LuetConfig { func NewLuetConfig(viper *v.Viper) *LuetConfig {
@@ -244,6 +245,7 @@ func GenDefault(viper *v.Viper) {
viper.SetDefault("system.pkgs_cache_path", "packages") viper.SetDefault("system.pkgs_cache_path", "packages")
viper.SetDefault("repos_confdir", []string{"/etc/luet/repos.conf.d"}) viper.SetDefault("repos_confdir", []string{"/etc/luet/repos.conf.d"})
viper.SetDefault("config_protect_confdir", []string{"/etc/luet/config.protect.d"})
viper.SetDefault("cache_repositories", []string{}) viper.SetDefault("cache_repositories", []string{})
viper.SetDefault("system_repositories", []string{}) viper.SetDefault("system_repositories", []string{})

62
pkg/helpers/archive.go
View File

@@ -17,6 +17,7 @@ package helpers
import ( import (
"archive/tar" "archive/tar"
"errors"
"io" "io"
"os" "os"
"path/filepath" "path/filepath"
@@ -49,6 +50,67 @@ func Tar(src, dest string) error {
return err return err
} }
type TarModifierWrapperFunc func(path, dst string, header *tar.Header, content io.Reader) (*tar.Header, []byte, error)
type TarModifierWrapper struct {
DestinationPath string
Modifier TarModifierWrapperFunc
}
func NewTarModifierWrapper(dst string, modifier TarModifierWrapperFunc) *TarModifierWrapper {
return &TarModifierWrapper{
DestinationPath: dst,
Modifier: modifier,
}
}
func (m *TarModifierWrapper) GetModifier() archive.TarModifierFunc {
return func(path string, header *tar.Header, content io.Reader) (*tar.Header, []byte, error) {
return m.Modifier(m.DestinationPath, path, header, content)
}
}
func UntarProtect(src, dst string, sameOwner bool, protectedFiles []string, modifier *TarModifierWrapper) error {
var ans error
if len(protectedFiles) <= 0 {
return Untar(src, dst, sameOwner)
}
// POST: we have files to protect. I create a ReplaceFileTarWrapper
in, err := os.Open(src)
if err != nil {
return err
}
defer in.Close()
// Create modifier map
mods := make(map[string]archive.TarModifierFunc)
for _, file := range protectedFiles {
mods[file] = modifier.GetModifier()
}
replacerArchive := archive.ReplaceFileTarWrapper(in, mods)
if sameOwner {
// PRE: i have root privileged.
opts := &archive.TarOptions{
// NOTE: NoLchown boolean is used for chmod of the symlink
// Probably it's needed set this always to true.
NoLchown: true,
ExcludePatterns: []string{"dev/"}, // prevent 'operation not permitted'
ContinueOnError: true,
}
ans = archive.Untar(replacerArchive, dst, opts)
} else {
// TODO
ans = errors.New("Not implemented")
}
return ans
}
// Untar just a wrapper around the docker functions // Untar just a wrapper around the docker functions
func Untar(src, dest string, sameOwner bool) error { func Untar(src, dest string, sameOwner bool) error {
var ans error var ans error