infra: apt.py annotate

annotate apt.py @ 203:3fd439ae1380

minor & some upgrades

author	drewp@bigasterisk.com
date	Fri, 30 Jun 2023 22:39:13 -0700
parents	ee6374edfc06
children	5b7cd39e6504

rev	line source
195 ee6374edfc06 pkgs and signatures drewp@bigasterisk.com parents: 188 diff changeset	1 from pathlib import Path
155 522f26c8f691 split apt.py from system.py drewp@bigasterisk.com parents: diff changeset	2 from pyinfra import host
522f26c8f691 split apt.py from system.py drewp@bigasterisk.com parents: diff changeset	3 from pyinfra.facts.files import FindFiles
522f26c8f691 split apt.py from system.py drewp@bigasterisk.com parents: diff changeset	4 from pyinfra.facts.server import Arch, LinuxDistribution
522f26c8f691 split apt.py from system.py drewp@bigasterisk.com parents: diff changeset	5 from pyinfra.operations import apt, files, server
522f26c8f691 split apt.py from system.py drewp@bigasterisk.com parents: diff changeset	6
522f26c8f691 split apt.py from system.py drewp@bigasterisk.com parents: diff changeset	7 TZ = 'America/Los_Angeles'
522f26c8f691 split apt.py from system.py drewp@bigasterisk.com parents: diff changeset	8
178 6ec7cd3615f0 another try at apt.key, but it doesn't completely work because prime drewp@bigasterisk.com parents: 155 diff changeset	9
155 522f26c8f691 split apt.py from system.py drewp@bigasterisk.com parents: diff changeset	10 def pkg_keys():
178 6ec7cd3615f0 another try at apt.key, but it doesn't completely work because prime drewp@bigasterisk.com parents: 155 diff changeset	11 files.directory(path='/etc/apt/keyrings/') # for raspi
6ec7cd3615f0 another try at apt.key, but it doesn't completely work because prime drewp@bigasterisk.com parents: 155 diff changeset	12 for url, name in [
6ec7cd3615f0 another try at apt.key, but it doesn't completely work because prime drewp@bigasterisk.com parents: 155 diff changeset	13 ('https://repo.steampowered.com/steam/archive/stable/steam.gpg', 'steam.gpg'),
6ec7cd3615f0 another try at apt.key, but it doesn't completely work because prime drewp@bigasterisk.com parents: 155 diff changeset	14 ]:
6ec7cd3615f0 another try at apt.key, but it doesn't completely work because prime drewp@bigasterisk.com parents: 155 diff changeset	15 files.download(src=url, dest=f'/etc/apt/keyrings/{name}')
203 3fd439ae1380 minor & some upgrades drewp@bigasterisk.com parents: 195 diff changeset	16
3fd439ae1380 minor & some upgrades drewp@bigasterisk.com parents: 195 diff changeset	17 # vscode keeps making this, but I fetch my own
3fd439ae1380 minor & some upgrades drewp@bigasterisk.com parents: 195 diff changeset	18 files.file(path='/etc/apt/trusted.gpg.d/microsoft.gpg', present=True)
3fd439ae1380 minor & some upgrades drewp@bigasterisk.com parents: 195 diff changeset	19
187 466108f0a509 redo pkg keys and future podman 4.3.1 version drewp@bigasterisk.com parents: 178 diff changeset	20 server.shell(commands=[
466108f0a509 redo pkg keys and future podman 4.3.1 version drewp@bigasterisk.com parents: 178 diff changeset	21 f"curl -fsSL {url} \| gpg --dearmor > /etc/apt/keyrings/{name}" for (url, name) in [
466108f0a509 redo pkg keys and future podman 4.3.1 version drewp@bigasterisk.com parents: 178 diff changeset	22 ('https://packages.microsoft.com/keys/microsoft.asc', 'ms.gpg'),
466108f0a509 redo pkg keys and future podman 4.3.1 version drewp@bigasterisk.com parents: 178 diff changeset	23 ('https://deb.nodesource.com/gpgkey/nodesource.gpg.key', 'nodesource.gpg'),
466108f0a509 redo pkg keys and future podman 4.3.1 version drewp@bigasterisk.com parents: 178 diff changeset	24 ('https://dl.google.com/linux/linux_signing_key.pub', 'chrome.gpg'),
195 ee6374edfc06 pkgs and signatures drewp@bigasterisk.com parents: 188 diff changeset	25 ('https://ftp-master.debian.org/keys/archive-key-11.asc', 'bullseye.gpg'),
ee6374edfc06 pkgs and signatures drewp@bigasterisk.com parents: 188 diff changeset	26 ('https://ftp-master.debian.org/keys/archive-key-11-security.asc', 'bullseye-security.gpg'),
187 466108f0a509 redo pkg keys and future podman 4.3.1 version drewp@bigasterisk.com parents: 178 diff changeset	27 ]
466108f0a509 redo pkg keys and future podman 4.3.1 version drewp@bigasterisk.com parents: 178 diff changeset	28 ])
195 ee6374edfc06 pkgs and signatures drewp@bigasterisk.com parents: 188 diff changeset	29 if host.get_fact(Arch) == 'armv7l' or host.name == 'bang': # I mean raspbian/debian
ee6374edfc06 pkgs and signatures drewp@bigasterisk.com parents: 188 diff changeset	30 # this contaminates the apt-update
ee6374edfc06 pkgs and signatures drewp@bigasterisk.com parents: 188 diff changeset	31 files.file(path="/etc/apt/trusted.gpg.d/podman.asc", present=False)
ee6374edfc06 pkgs and signatures drewp@bigasterisk.com parents: 188 diff changeset	32
ee6374edfc06 pkgs and signatures drewp@bigasterisk.com parents: 188 diff changeset	33
ee6374edfc06 pkgs and signatures drewp@bigasterisk.com parents: 188 diff changeset	34 dir = Path('/etc/apt/sources.list.d')
ee6374edfc06 pkgs and signatures drewp@bigasterisk.com parents: 188 diff changeset	35
ee6374edfc06 pkgs and signatures drewp@bigasterisk.com parents: 188 diff changeset	36
ee6374edfc06 pkgs and signatures drewp@bigasterisk.com parents: 188 diff changeset	37 def clear_known_sources_files(known=[dir / 'vscode.list']):
ee6374edfc06 pkgs and signatures drewp@bigasterisk.com parents: 188 diff changeset	38 found = map(Path, host.get_fact(FindFiles, dir, quote_path=True))
ee6374edfc06 pkgs and signatures drewp@bigasterisk.com parents: 188 diff changeset	39 if set(found) - set(known):
ee6374edfc06 pkgs and signatures drewp@bigasterisk.com parents: 188 diff changeset	40 raise SystemExit(f"new files in {host.name} /etc/apt/sources.list.d/ - please remove")
ee6374edfc06 pkgs and signatures drewp@bigasterisk.com parents: 188 diff changeset	41 for f in known:
ee6374edfc06 pkgs and signatures drewp@bigasterisk.com parents: 188 diff changeset	42 files.file(path=f, present=False)
155 522f26c8f691 split apt.py from system.py drewp@bigasterisk.com parents: diff changeset	43
522f26c8f691 split apt.py from system.py drewp@bigasterisk.com parents: diff changeset	44
522f26c8f691 split apt.py from system.py drewp@bigasterisk.com parents: diff changeset	45 def apt_sources():
522f26c8f691 split apt.py from system.py drewp@bigasterisk.com parents: diff changeset	46 if host.get_fact(Arch) == 'x86_64':
522f26c8f691 split apt.py from system.py drewp@bigasterisk.com parents: diff changeset	47 server.shell(commands=['dpkg --add-architecture i386'])
522f26c8f691 split apt.py from system.py drewp@bigasterisk.com parents: diff changeset	48
522f26c8f691 split apt.py from system.py drewp@bigasterisk.com parents: diff changeset	49 files.template(src='templates/sources.list.j2', dest='/etc/apt/sources.list')
195 ee6374edfc06 pkgs and signatures drewp@bigasterisk.com parents: 188 diff changeset	50
ee6374edfc06 pkgs and signatures drewp@bigasterisk.com parents: 188 diff changeset	51 clear_known_sources_files()
155 522f26c8f691 split apt.py from system.py drewp@bigasterisk.com parents: diff changeset	52 apt.packages(update=True,
187 466108f0a509 redo pkg keys and future podman 4.3.1 version drewp@bigasterisk.com parents: 178 diff changeset	53 cache_time=86400,
178 6ec7cd3615f0 another try at apt.key, but it doesn't completely work because prime drewp@bigasterisk.com parents: 155 diff changeset	54 packages=['tzdata'],
6ec7cd3615f0 another try at apt.key, but it doesn't completely work because prime drewp@bigasterisk.com parents: 155 diff changeset	55 force=True,
6ec7cd3615f0 another try at apt.key, but it doesn't completely work because prime drewp@bigasterisk.com parents: 155 diff changeset	56 _env={
6ec7cd3615f0 another try at apt.key, but it doesn't completely work because prime drewp@bigasterisk.com parents: 155 diff changeset	57 'TZ': TZ,
6ec7cd3615f0 another try at apt.key, but it doesn't completely work because prime drewp@bigasterisk.com parents: 155 diff changeset	58 'LANG': 'en_US.UTF-8',
6ec7cd3615f0 another try at apt.key, but it doesn't completely work because prime drewp@bigasterisk.com parents: 155 diff changeset	59 'DEBIAN_FRONTEND': 'noninteractive'
6ec7cd3615f0 another try at apt.key, but it doesn't completely work because prime drewp@bigasterisk.com parents: 155 diff changeset	60 })
6ec7cd3615f0 another try at apt.key, but it doesn't completely work because prime drewp@bigasterisk.com parents: 155 diff changeset	61
188 087b84e68765 comment drewp@bigasterisk.com parents: 187 diff changeset	62 # squib 1st setup seemed to need more updates for node(nodesource)
087b84e68765 comment drewp@bigasterisk.com parents: 187 diff changeset	63 # and steam-launcher
178 6ec7cd3615f0 another try at apt.key, but it doesn't completely work because prime drewp@bigasterisk.com parents: 155 diff changeset	64
195 ee6374edfc06 pkgs and signatures drewp@bigasterisk.com parents: 188 diff changeset	65
155 522f26c8f691 split apt.py from system.py drewp@bigasterisk.com parents: diff changeset	66 pkg_keys()
187 466108f0a509 redo pkg keys and future podman 4.3.1 version drewp@bigasterisk.com parents: 178 diff changeset	67 apt_sources()

Mercurial > code > home > repos > infra

annotate apt.py @ 203:3fd439ae1380