Kevin Veen-Birkenbach
386d8aa2f2
Some checks failed
CI / security-codeql (push) Has been cancelled
CI / test-unit (push) Has been cancelled
CI / test-integration (push) Has been cancelled
CI / test-env-virtual (push) Has been cancelled
CI / test-env-nix (push) Has been cancelled
CI / test-e2e (push) Has been cancelled
CI / test-virgin-user (push) Has been cancelled
CI / test-virgin-root (push) Has been cancelled
CI / lint-shell (push) Has been cancelled
CI / lint-python (push) Has been cancelled
CI / lint-docker (push) Has been cancelled
`su -` runs through pam_systemd on Manjaro/Arch, creating a new login session that conflicts with the outer sudo session and detaches the install from the controlling terminal — making `sudo make install` appear to end while it keeps running in the background. Replace `su` calls with `runuser`, which is designed for root-invoked scripts and skips PAM session management. Also flips init.sh's non-root branch from `exit 0` (silent success) to `exit 1` with a clear stderr message, so `make install` correctly fails when invoked without root. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
85 lines
2.4 KiB
Bash
Executable File
85 lines
2.4 KiB
Bash
Executable File
#!/usr/bin/env bash
|
||
set -euo pipefail
|
||
|
||
# ------------------------------------------------------------
|
||
# aur-builder-setup.sh
|
||
#
|
||
# Setup helper for an 'aur_builder' user and yay on Arch-based
|
||
# systems. Intended for host usage and can also be used in
|
||
# containers if desired.
|
||
# ------------------------------------------------------------
|
||
|
||
echo "[aur-builder-setup] Checking for pacman..."
|
||
if ! command -v pacman >/dev/null 2>&1; then
|
||
echo "[aur-builder-setup] pacman not found – this is not an Arch-based system. Skipping."
|
||
exit 0
|
||
fi
|
||
|
||
if [[ "${EUID:-0}" -ne 0 ]]; then
|
||
ROOT_CMD="sudo"
|
||
else
|
||
ROOT_CMD=""
|
||
fi
|
||
|
||
echo "[aur-builder-setup] Installing base-devel, git, sudo..."
|
||
${ROOT_CMD} pacman -Syu --noconfirm
|
||
${ROOT_CMD} pacman -S --needed --noconfirm base-devel git sudo
|
||
|
||
echo "[aur-builder-setup] Ensuring aur_builder group/user..."
|
||
if ! getent group aur_builder >/dev/null 2>&1; then
|
||
${ROOT_CMD} groupadd -r aur_builder
|
||
fi
|
||
|
||
if ! id -u aur_builder >/dev/null 2>&1; then
|
||
${ROOT_CMD} useradd -m -r -g aur_builder -s /bin/bash aur_builder
|
||
fi
|
||
|
||
echo "[aur-builder-setup] Configuring sudoers for aur_builder..."
|
||
${ROOT_CMD} bash -c "echo '%aur_builder ALL=(ALL) NOPASSWD: /usr/bin/pacman' > /etc/sudoers.d/aur_builder"
|
||
${ROOT_CMD} chmod 0440 /etc/sudoers.d/aur_builder
|
||
|
||
RUN_AS_AUR=(runuser -u aur_builder -- bash -c)
|
||
|
||
echo "[aur-builder-setup] Ensuring yay is installed for aur_builder..."
|
||
|
||
if ! "${RUN_AS_AUR[@]}" 'command -v yay >/dev/null 2>&1'; then
|
||
echo "[aur-builder-setup] yay not found – starting retry sequence for download..."
|
||
|
||
MAX_TIME=300
|
||
SLEEP_INTERVAL=20
|
||
ELAPSED=0
|
||
|
||
while true; do
|
||
if "${RUN_AS_AUR[@]}" '
|
||
set -euo pipefail
|
||
cd ~
|
||
rm -rf yay || true
|
||
git clone https://aur.archlinux.org/yay.git yay
|
||
'; then
|
||
echo "[aur-builder-setup] yay repository cloned successfully."
|
||
break
|
||
fi
|
||
|
||
echo "[aur-builder-setup] git clone failed (likely 504). Retrying in ${SLEEP_INTERVAL}s..."
|
||
sleep "${SLEEP_INTERVAL}"
|
||
ELAPSED=$((ELAPSED + SLEEP_INTERVAL))
|
||
|
||
if (( ELAPSED >= MAX_TIME )); then
|
||
echo "[aur-builder-setup] ERROR: Aborted after 5 minutes of retry attempts."
|
||
exit 1
|
||
fi
|
||
done
|
||
|
||
# Now build yay after successful clone
|
||
"${RUN_AS_AUR[@]}" '
|
||
set -euo pipefail
|
||
cd ~/yay
|
||
makepkg -si --noconfirm
|
||
'
|
||
|
||
else
|
||
echo "[aur-builder-setup] yay already installed."
|
||
fi
|
||
|
||
echo "[aur-builder-setup] Done."
|