1 class buildd ($ensure=present) {
2 # Do nothing until we get the buildd user from ldap
3 if $::buildd_user_exists {
16 # sbuild configuration, including chroots
24 package { 'libsbuild-perl':
27 before => Package['sbuild']
29 file { '/etc/sbuild/sbuild.conf':
30 source => 'puppet:///modules/buildd/sbuild.conf',
31 require => Package['sbuild'],
34 concat::fragment { 'dsa-puppet-stuff--buildd-update-schroots':
35 target => '/etc/cron.d/dsa-puppet-stuff',
37 13 22 * * 0,3 root PATH=/sbin:/usr/sbin:/bin:/usr/bin:/usr/local/sbin:/usr/local/bin setup-all-dchroots buildd
41 exec { 'add-buildd-user-to-sbuild':
42 command => 'adduser buildd sbuild',
43 onlyif => "getent group sbuild > /dev/null && ! getent group sbuild | grep '\\<buildd\\>' > /dev/null"
48 # dupload configuration
53 file { '/etc/dupload.conf':
54 source => 'puppet:///modules/buildd/dupload.conf',
55 require => Package['dupload'],
57 include ferm::ftp_conntrack
63 package { 'python-psutil':
66 file { '/usr/local/sbin/buildd-schroot-aptitude-kill':
67 source => 'puppet:///modules/buildd/buildd-schroot-aptitude-kill',
71 concat::fragment { 'dsa-puppet-stuff--buildd-aptitude-killer':
72 target => '/etc/cron.d/dsa-puppet-stuff',
74 */5 * * * * root /usr/local/sbin/buildd-schroot-aptitude-kill
80 # GPG/SSH key generation
82 file { '/home/buildd/.gnupg':
88 file { '/home/buildd/.gnupg/gpg.conf':
89 content => "personal-digest-preferences SHA512\n",
95 exec { 'create-buildd-key':
96 command => '/bin/su - buildd -c \'mkdir -p -m 02700 .ssh && ssh-keygen -C "`whoami`@`hostname` (`date +%Y-%m-%d`)" -P "" -f .ssh/id_rsa -q\'',
97 onlyif => '/usr/bin/getent passwd buildd > /dev/null && ! [ -e /home/buildd/.ssh/id_rsa ]'
102 # buildd/pybuildd configuration
104 if $::hostname in [x86-bm-01,x86-grnet-01,zani] {
106 # pybuildd configuration
109 # We still rely on buildd for some features. Install the package
110 # but keep it disabled.
118 file { '/home/buildd/NO-DAEMON-PLEASE':
121 file { '/home/buildd/.forward':
122 content => "|/usr/bin/buildd-mail\n",
127 package { ['python3-retrying', 'python3-yaml']:
130 file { '/home/buildd/.profile':
132 export XDG_RUNTIME_DIR="/run/user/$(id -u)"
133 export DBUS_SESSION_BUS_ADDRESS="unix:path=${XDG_RUNTIME_DIR}/bus"
138 file { '/home/buildd/logs':
144 file { '/var/lib/systemd/linger':
148 file { "/var/lib/systemd/linger/buildd":
151 file { '/etc/systemd/journald.conf.d':
155 file { '/etc/systemd/journald.conf.d/persistency.conf':
156 source => 'puppet:///modules/systemd/persistency.conf',
160 # buildd configuration
162 file { '/home/buildd/build':
168 file { '/home/buildd/logs':
174 file { '/home/buildd/old-logs':
180 file { '/home/buildd/upload-security':
186 file { '/home/buildd/stats':
192 file { '/home/buildd/stats/graphs':
198 file { '/home/buildd/upload':
204 file { '/home/buildd/.forward':
205 content => "|/usr/bin/buildd-mail\n",
213 file { '/etc/buildd/buildd.conf':
214 source => 'puppet:///modules/buildd/buildd.conf',
215 require => Package['buildd'],
218 if (versioncmp($::lsbmajdistrelease, '9') >= 0) {
219 site::aptrepo { 'buildd.debian.org':
222 file { '/etc/apt/apt.conf.d/puppet-https-buildd':
226 site::aptrepo { 'buildd.debian.org':
227 key => 'puppet:///modules/buildd/buildd.debian.org.gpg',
228 url => 'https://apt.buildd.debian.org/',
230 components => 'main',
231 require => Package['apt-transport-https'],
233 file { '/etc/apt/apt.conf.d/puppet-https-buildd':
234 content => "Acquire::https::apt.buildd.debian.org::CaInfo \"/etc/ssl/ca-debian/ca-certificates.crt\";\n",
238 concat::fragment { 'dsa-puppet-stuff--buildd':
239 target => '/etc/cron.d/dsa-puppet-stuff',
240 source => 'puppet:///modules/buildd/cron.d-dsa-buildd',
241 require => Package['debian.org']
projects / mirror / dsa-puppet.git / blob