Setup Debian package build chroots

a1c9d86d · Guido Gunther · cea663d5 · a1c9d86d · a1c9d86d
Commit a1c9d86d authored Jan 29, 2018 by Guido Gunther
--- a/install_jenkins.yml
+++ b/install_jenkins.yml
@@ -8,8 +8,6 @@
    img_build_pkgs:
        - build-essential
        - vmdebootstrap
-    pkg_build_pkgs:
-        - git-buildpackage
    kernel_build_pkgs:
        - gcc-arm-linux-gnueabihf
        - libssl-dev
@@ -33,6 +31,15 @@
      certbot_create_method: standalone
      certbot_create_standalone_stop_services:
        - nginx
+    - role: agx.gbp
+      gbp_cowbuilder_targets:
+        - dist: buster
+        - dist: stretch
+        - dist: buster
+          arch: armhf
+          foreign: true
+      tags:
+        - gbp
  tasks:
    - name: Configure Jenkins master-slave security
      copy:
@@ -74,13 +81,18 @@
         - "{{ base_pkgs }}"
         - "{{ dev_pkgs }}"
         - "{{ img_build_pkgs }}"
-         - "{{ pkg_build_pkgs }}"
         - "{{ kernel_build_pkgs }}"
    - name: Allow jenkins to execute certain commands with raised privs
      copy:
        content: |
          %jenkins ALL = (root) SETENV: NOPASSWD: /usr/sbin/debootstrap, /usr/sbin/chroot, /usr/sbin/pbuilder
        dest: /etc/sudoers.d/jenkins
+    - name: Ensure that jenkins can build packages
+      user:
+        name: jenkins
+        groups: pbuilder
+        append: yes
+      notify: Restart jenkins
  handlers:
    - name: Restart nginx
      systemd: name=nginx state=restarted

--- a/requirements.yml
+++ b/requirements.yml
@@ -5,3 +5,6 @@

 - src: geerlingguy.certbot
  version: 3.0.0
+
+- src: agx.gbp
+  version: 0.0.1