1 class buildd ($ensure=present) {
9 package { 'libsbuild-perl':
12 before => Package['sbuild']
15 package { 'apt-transport-https':
18 if $ensure == present {
22 file { '/etc/dupload.conf':
23 source => 'puppet:///modules/buildd/dupload.conf',
24 require => Package['dupload'],
29 file { '/etc/buildd/buildd.conf':
30 source => 'puppet:///modules/buildd/buildd.conf',
31 require => Package['buildd'],
33 file { '/etc/sbuild/sbuild.conf':
34 source => 'puppet:///modules/buildd/sbuild.conf',
35 require => Package['sbuild'],
37 include ferm::ftp_conntrack
40 site::aptrepo { 'buildd':
44 $suite = $::lsbdistcodename ? {
45 wheezy => $::lsbdistcodename,
46 jessie => $::lsbdistcodename,
47 stretch => $::lsbdistcodename,
52 $buildd_apt_url = $::debarchitecture ? {
53 /^sparc$/ => 'http://buildd.debian.org/apt/',
54 default => 'https://buildd.debian.org/apt/',
57 site::aptrepo { 'buildd.debian.org':
58 key => 'puppet:///modules/buildd/buildd.debian.org.gpg',
59 url => $buildd_apt_url,
62 require => Package['apt-transport-https'],
65 $buildd_prop_ensure = $::hostname ? {
66 /^(alkman)$/ => 'present',
70 if ($::lsbmajdistrelease >= 8) {
71 file { '/etc/apt/apt.conf.d/puppet-https-buildd':
72 content => "Acquire::https::buildd.debian.org::CaInfo \"/etc/ssl/ca-debian/ca-certificates.crt\";\n",
75 file { '/etc/apt/apt.conf.d/puppet-https-buildd':
76 content => "Acquire::https::buildd.debian.org::CaInfo \"/etc/ssl/servicecerts/buildd.debian.org.crt\";\n",
79 site::aptrepo { 'buildd.debian.org-proposed':
80 ensure => $buildd_prop_ensure,
81 url => 'https://buildd.debian.org/apt/',
82 suite => "${suite}-proposed",
84 require => [ Package['apt-transport-https'],
85 File['/etc/apt/apt.conf.d/puppet-https-buildd'] ],
89 file { '/etc/apt/preferences.d/buildd.debian.org':
92 file { '/etc/apt/preferences.d/buildd':
95 file { '/etc/cron.d/dsa-buildd':
96 source => 'puppet:///modules/buildd/cron.d-dsa-buildd',
97 require => Package['debian.org']
100 if ($::kernel == 'Linux') {
101 package { 'python-psutil':
104 if ($::lsbmajdistrelease >= 8) {
105 file { '/usr/local/sbin/buildd-schroot-aptitude-kill':
106 source => 'puppet:///modules/buildd/buildd-schroot-aptitude-kill',
110 file { '/usr/local/sbin/buildd-schroot-aptitude-kill':
111 source => 'puppet:///modules/buildd/buildd-schroot-aptitude-kill.wheezy',
116 file { '/usr/local/sbin/buildd-schroot-aptitude-kill':
117 source => 'puppet:///modules/buildd/buildd-schroot-aptitude-kill.squeeze',
121 file { '/etc/cron.d/puppet-buildd-aptitude':
122 content => "*/5 * * * * root /usr/local/sbin/buildd-schroot-aptitude-kill\n",
126 file { '/etc/cron.d/puppet-update-buildd-schroots':
127 content => "13 21 * * 0,3 root PATH=/sbin:/usr/sbin:/bin:/usr/bin:/usr/local/sbin:/usr/local/bin setup-all-dchroots buildd\n",
131 file { '/home/buildd':
137 file { '/home/buildd/build':
143 file { '/home/buildd/logs':
149 file { '/home/buildd/old-logs':
155 file { '/home/buildd/upload-security':
161 file { '/home/buildd/stats':
167 file { '/home/buildd/stats/graphs':
173 file { '/home/buildd/upload':
179 file { '/home/buildd/.forward':
180 content => "|/usr/bin/buildd-mail\n",
184 file { '/home/buildd/.gnupg':
190 file { '/home/buildd/.gnupg/gpg.conf':
191 content => "personal-digest-preferences SHA512\n",
197 exec { 'create-buildd-key':
198 command => '/bin/su - buildd -c \'mkdir -p -m 02700 .ssh && ssh-keygen -C "`whoami`@`hostname` (`date +%Y-%m-%d`)" -P "" -f .ssh/id_rsa -q\'',
199 onlyif => '/usr/bin/getent passwd buildd > /dev/null && ! [ -e /home/buildd/.ssh/id_rsa ]'
204 if $::buildd_user_exists {
205 exec { 'add-buildd-user-to-sbuild':
206 command => 'adduser buildd sbuild',
207 onlyif => "getent group sbuild > /dev/null && ! getent group sbuild | grep '\\<buildd\\>' > /dev/null"