amaharaneko/guix-mirrors
1
1
Fork 0
mirror of https://codeberg.org/guix/guix.git synced 2025-10-02 02:15:12 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

pack: Factorize base tar options.

Browse source 
* guix/docker.scm (%tar-determinism-options): Move to a new module and rename
to `tar-base-options'.  Adjust references accordingly.
* guix/build/pack.scm: New file.
* Makefile.am (MODULES): Register it.
* guix/scripts/pack.scm (self-contained-tarball/builder): Use it.
This commit is contained in:
Maxim Cournoyer 2021-06-21 00:33:28 -04:00
parent 91e8372838
commit 7708c0b5e3
No known key found for this signature in database
GPG key ID: 1260E46482E63562
4 changed files with 85 additions and 65 deletions
Download patch file Download diff file Expand all files Collapse all files

1
Makefile.am
View file

@ -220,6 +220,7 @@ MODULES = \
guix/build/linux-module-build-system.scm \ guix/build/linux-module-build-system.scm \
guix/build/store-copy.scm \ guix/build/store-copy.scm \
guix/build/json.scm \ guix/build/json.scm \
guix/build/pack.scm \
guix/build/utils.scm \ guix/build/utils.scm \
guix/build/union.scm \ guix/build/union.scm \
guix/build/profiles.scm \ guix/build/profiles.scm \

52
guix/build/pack.scm Normal file
View file

@ -0,0 +1,52 @@
;;; GNU Guix --- Functional package management for GNU
;;; Copyright © 2021 Maxim Cournoyer <maxim.cournoyer@gmail.com>
;;;
;;; This file is part of GNU Guix.
;;;
;;; GNU Guix is free software; you can redistribute it and/or modify it
;;; under the terms of the GNU General Public License as published by
;;; the Free Software Foundation; either version 3 of the License, or (at
;;; your option) any later version.
;;;
;;; GNU Guix is distributed in the hope that it will be useful, but
;;; WITHOUT ANY WARRANTY; without even the implied warranty of
;;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
;;; GNU General Public License for more details.
;;;
;;; You should have received a copy of the GNU General Public License
;;; along with GNU Guix. If not, see <http://www.gnu.org/licenses/>.
(define-module (guix build pack)
#:use-module (guix build utils)
#:export (tar-base-options))
(define* (tar-base-options #:key tar compressor)
"Return the base GNU tar options required to produce deterministic archives
deterministically. When TAR, a GNU tar command file name, is provided, the
`--sort' option is used only if supported. When COMPRESSOR, a command such as
'(\"gzip\" \"-9n\"), is provided, the compressor is explicitly specified via
the `-I' option."
(define (tar-supports-sort? tar)
(zero? (system* tar "cf" "/dev/null" "--files-from=/dev/null"
"--sort=name")))
`(,@(if compressor
(list "-I" (string-join compressor))
'())
;; The --sort option was added to GNU tar in version 1.28, released
;; 2014-07-28. For testing, we use the bootstrap tar, which is older
;; and doesn't support it.
,@(if (and=> tar tar-supports-sort?)
'("--sort=name")
'())
;; Use GNU format so there's no file name length limitation.
"--format=gnu"
"--mtime=@1"
"--owner=root:0"
"--group=root:0"
;; The 'nlink' of the store item files leads tar to store hard links
;; instead of actual copies. However, the 'nlink' count depends on
;; deduplication in the store; it's an "implicit input" to the build
;; process. Use '--hard-dereference' to eliminate it.
"--hard-dereference"
"--check-links"))

20
guix/docker.scm
View file

@ -21,6 +21,7 @@
(define-module (guix docker) (define-module (guix docker)
#:use-module (gcrypt hash) #:use-module (gcrypt hash)
#:use-module (guix base16) #:use-module (guix base16)
#:use-module (guix build pack)
#:use-module ((guix build utils) #:use-module ((guix build utils)
#:select (mkdir-p #:select (mkdir-p
delete-file-recursively delete-file-recursively
@ -110,18 +111,6 @@ Return a version of TAG that follows these rules."
(rootfs . ((type . "layers") (rootfs . ((type . "layers")
(diff_ids . #(,(layer-diff-id layer))))))) (diff_ids . #(,(layer-diff-id layer)))))))
(define %tar-determinism-options
;; GNU tar options to produce archives deterministically.
'("--sort=name" "--mtime=@1"
"--owner=root:0" "--group=root:0"
;; When 'build-docker-image' is passed store items, the 'nlink' of the
;; files therein leads tar to store hard links instead of actual copies.
;; However, the 'nlink' count depends on deduplication in the store; it's
;; an "implicit input" to the build process. '--hard-dereference'
;; eliminates it.
"--hard-dereference"))
(define directive-file (define directive-file
;; Return the file or directory created by a 'evaluate-populate-directive' ;; Return the file or directory created by a 'evaluate-populate-directive'
;; directive. ;; directive.
@ -238,7 +227,7 @@ SRFI-19 time-utc object, as the creation time in metadata."
(apply invoke "tar" "-cf" "../layer.tar" (apply invoke "tar" "-cf" "../layer.tar"
`(,@transformation-options `(,@transformation-options
,@%tar-determinism-options ,@(tar-base-options)
,@paths ,@paths
,@(scandir "." ,@(scandir "."
(lambda (file) (lambda (file)
@ -273,9 +262,6 @@ SRFI-19 time-utc object, as the creation time in metadata."
(scm->json (repositories prefix id repository))))) (scm->json (repositories prefix id repository)))))
(apply invoke "tar" "-cf" image "-C" directory (apply invoke "tar" "-cf" image "-C" directory
`(,@%tar-determinism-options `(,@(tar-base-options #:compressor compressor)
,@(if compressor
(list "-I" (string-join compressor))
'())
".")) "."))
(delete-file-recursively directory))) (delete-file-recursively directory)))

49
guix/scripts/pack.scm
View file

@ -205,12 +205,14 @@ dependencies are registered."
(not (equal? '(guix store deduplication) module)))) (not (equal? '(guix store deduplication) module))))
(with-imported-modules (source-module-closure (with-imported-modules (source-module-closure
`((guix build utils) `((guix build pack)
(guix build utils)
(guix build union) (guix build union)
(gnu build install)) (gnu build install))
#:select? import-module?) #:select? import-module?)
#~(begin #~(begin
(use-modules (guix build utils) (use-modules (guix build pack)
(guix build utils)
((guix build union) #:select (relative-file-name)) ((guix build union) #:select (relative-file-name))
(gnu build install) (gnu build install)
(srfi srfi-1) (srfi srfi-1)
@ -240,19 +242,10 @@ dependencies are registered."
;; Fully-qualified symlinks. ;; Fully-qualified symlinks.
(append-map symlink->directives '#$symlinks)) (append-map symlink->directives '#$symlinks))
;; The --sort option was added to GNU tar in version 1.28, released
;; 2014-07-28. For testing, we use the bootstrap tar, which is
;; older and doesn't support it.
(define tar-supports-sort?
(zero? (system* (string-append #+archiver "/bin/tar")
"cf" "/dev/null" "--files-from=/dev/null"
"--sort=name")))
;; Make sure non-ASCII file names are properly handled. ;; Make sure non-ASCII file names are properly handled.
#+set-utf8-locale #+set-utf8-locale
;; Add 'tar' to the search path. (define tar #+(file-append archiver "/bin/tar"))
(setenv "PATH" #+(file-append archiver "/bin"))
;; Note: there is not much to gain here with deduplication and there ;; Note: there is not much to gain here with deduplication and there
;; is the overhead of the '.links' directory, so turn it off. ;; is the overhead of the '.links' directory, so turn it off.
@ -269,45 +262,33 @@ dependencies are registered."
(for-each (cut evaluate-populate-directive <> %root) (for-each (cut evaluate-populate-directive <> %root)
directives) directives)
;; Create the tarball. Use GNU format so there's no file name ;; Create the tarball.
;; length limitation.
(with-directory-excursion %root (with-directory-excursion %root
(apply invoke "tar" (apply invoke tar
#+@(if (compressor-command compressor) `(,@(tar-base-options
#~("-I" #:tar tar
(string-join #:compressor '#+(and=> compressor compressor-command))
'#+(compressor-command compressor))) "-cvf" ,#$output
#~())
"--format=gnu"
;; Avoid non-determinism in the archive.
;; Use mtime = 1, not zero, because that is what the daemon
;; does for files in the store (see the 'mtimeStore' constant
;; in local-store.cc.)
(if tar-supports-sort? "--sort=name" "--mtime=@1")
"--owner=root:0"
"--group=root:0"
"--check-links"
"-cvf" #$output
;; Avoid adding / and /var to the tarball, so ;; Avoid adding / and /var to the tarball, so
;; that the ownership and permissions of those ;; that the ownership and permissions of those
;; directories will not be overwritten when ;; directories will not be overwritten when
;; extracting the archive. Do not include /root ;; extracting the archive. Do not include /root
;; because the root account might have a ;; because the root account might have a
;; different home directory. ;; different home directory.
#$@(if localstatedir? ,#$@(if localstatedir?
'("./var/guix") '("./var/guix")
'()) '())
(string-append "." (%store-directory)) ,(string-append "." (%store-directory))
(delete-duplicates ,@(delete-duplicates
(filter-map (match-lambda (filter-map (match-lambda
(('directory directory) (('directory directory)
(string-append "." directory)) (string-append "." directory))
((source '-> _) ((source '-> _)
(string-append "." source)) (string-append "." source))
(_ #f)) (_ #f))
directives))))))) directives))))))))
(define* (self-contained-tarball name profile (define* (self-contained-tarball name profile
#:key target #:key target