foreman-packaging/README.md @ 09718c9a
rpm packaging branches
The rpm/* branches contain RPM spec files for Foreman's dependencies and
related projects (mostly rubygems).
Requirements
If you're just submitting a fix, you don't need anything special.
If you're just submitting a patch which changes a source file, you will need:
However to release RPMs from this repo, you also require:
- koji client and an account (certificate) on koji.katello.org
- tito 0.5.6 or higher
HOWTO: checkout
Run:
git clone https://github.com/theforeman/foreman-packaging -b rpm/develop
git annex init
to set up this repo for using git annex./setup_sources.sh
to register git-annex file URLs
HOWTO: test a package
Before tagging a build, please test it. Using tito's --test flag, you can
generate test (S)RPMs by first committing your changes locally, then it will
use the SHA in the RPM version.
With mock
Configuration for mock is supplied in mock/ and can be used to build any of
the packages locally and quickly.
- Copy mock/site-defaults.cfg.basic to site-defaults.cfg, or look at other example configs for more options.
tito build --rpm --test --builder tito.builder.MockBuilder --arg mock_config_dir=mock/ --arg mock=el7-scl
The last argument is the name of the mock config in mock/, which includes SCL
and non-SCL variants.
With koji access
If you have a certificate for our Koji server (regular packagers can get them),
then you can use tito to build scratch packages on Koji, though it's slower
than mock (above).
Non-core packages in the main Foreman repo, with sources in git(-annex):
tito release koji-foreman --test --scratch
Packages in the plugins repo:
tito release koji-foreman-plugins --test --scratch
Core nightly Foreman packages:
- foreman:
tito release --scratch --arg jenkins_job=test_develop koji-foreman-nightly
- foreman-installer:
tito release --scratch --arg jenkins_job=packaging_trigger_installer_develop koji-foreman-nightly
- foreman-proxy:
tito release --scratch --arg jenkins_job=test_proxy_develop koji-foreman-nightly
- foreman-selinux:
tito release --scratch --arg jenkins_job=packaging_trigger_selinux_develop koji-foreman-nightly
- rubygem-hammer_cli:
tito release --scratch --arg jenkins_job=test_hammer_cli koji-foreman-nightly
- rubygem-hammer_cli_foreman:
tito release --scratch --arg jenkins_job=test_hammer_cli_foreman koji-foreman-nightly
Using a local git checkout, change source_dir
as appropriate:
- Core packages:
tito release --scratch --arg source_dir=~/foreman koji-foreman-nightly
- Plugins:
tito release --scratch --arg source_dir=~/foreman_bootdisk koji-foreman-plugins-nightly
Alternative method with koji access
lzap's sbu utility is
good for building test packages, especially with sources from elsewhere:
- sbu (defaults for EL6 with SCL)
- sbu katello fc19 foreman-nightly-fedora19
- sbu katello el6 foreman-nightly-nonscl-rhel6
Most packages should build for EL6 with SCL and Fedora 19.
To be able to build foreman core packages with sbu, one needs to create script
for each project name. It's purpose is to generate and copy source tarball to
SOURCES/ directory. Typical script looks like:
$ cat .git/sbu-sources/foreman-selinux
#!/bin/bash
DIR=$HOME/work/$(basename $0)
pushd $DIR
rake pkg:generate_source
popd
mv -v $DIR/pkg/*.tar.{bz2,gz} $HOME/rpmbuild/SOURCES/ 2>/dev/null
You'll also need an alias kojikat
to point to:
koji -c ~/.koji/katello-config build
HOWTO: create a new core package or dependency
- Check if it's available in Fedora:
- https://apps.fedoraproject.org/packages/NAME
- http://www.isitfedoraruby.com/fedorarpms/NAME
- If only building non-SCL and it's in both Fedora and EPEL, stop now
- If available in Fedora, copy the spec from the SCM link on the left
- Copy the template/ directory
- rename the spec file, don't use an SCL prefix
- update gem_name, version, ensure "Release" is 1
- empty the %changelog section
- express all gem dependencies as identical
Requires
in the spec file
- Download the source file (e.g. the .gem) into the spec directory and run
git annex add foo.gem
- Update rel-eng/tito.props
- If building for Fedora, add to the "foreman-nightly-fedora19" whitelist
- If building non-SCL only, add to the "foreman-nightly-rhel+" blacklist
- If building SCL EL6 only, no action required
- Update comps/comps-foreman-*.xml
- Run ./comps_doc.sh to automatically add docs
- Commit the changes
git add -A
git commit -m "Add NAME package"
- Follow the "test a package" section above until it builds for all targeted platforms and required SCL + non-SCL modes.
- Submit a pull request against
rpm/develop
HOWTO: update a package
git rm foo-old.gem
- Change the version in the spec, set "Release" to 1
- Run
gem compare -b foo 0.1 0.2
(needs gem-compare)- update
Requires
to match changes in runtime dependencies - add/remove entries in %files if required for new root files
- update
- Download the source file (e.g. the .gem) into the spec directory and run
git annex add foo.gem
- Commit the changes
git add -A
git commit -m "Update NAME to VERSION"
- Follow the "test a package" section above until it builds for all targeted platforms and required SCL + non-SCL modes.
- Submit a pull request against
rpm/develop
How does this repo work?
This repo contains a directory per source package and some tito configuration
and state (under rel-eng/). Each source package directory contains a spec
file and patches under version control plus references to the source files
(i.e. gems or tarballs).
These references are managed using git-annex, a git extension for tracking
large binary blobs outside of the git repo itself. This means we can
reference source files directly on rubygems.org etc, or perhaps set up a kind
of lookaside cache in the future. For now, we use the special web remote
with URLs to all of our source files available on the web.
tito's git-annex support will automatically (lazily) fetch files and cache
them in your local git checkout as and when you build packages.
tito works in two key stages: tagging and releasing. For every RPM build, a
tag needs to be created with tito (i.e. tito tag --keep-version
) and this
git tag is pushed to the central repository. tito helps by creating a
%changelog entry and tags in standard formats etc.
When a tag is present in the central repository for a version, tito lets you
build a SRPM and submit to koji, which builds the binary package (whereupon it
gets pulled into our yum repositories). This tagging strategy means we can
rebuild a package from any point in the repository's history, and since the
git-annex metadata is part of the tagged commit, even the binary content is
effectively under source control.
This repository is branched like Foreman itself, with rpm/1.x branches
for major releases.
To find tito build targets do this:
$ tito release -l
[koji-foreman]
[koji-foreman-nightly]
[koji-foreman-plugins]
To build a new release package for foreman project for example, do this:
$ tito release koji-foreman
License
Spec files are generally based on Fedora spec files, which means that unless a
spec file contains an explicit license attribution within it, it is available
under the MIT license.
TODO / ideas
Instead of using KojiReleaser, we should use KojiGitReleaser so Koji checks
out this repo from git and runs make srpm
, which could use tito to build
the SRPM. This has the nice benefit of not accepting random SRPMs as builds
in Koji, giving end to end safety + verification. The Makefile could be in a
common/ directory.