internal scripts: use pinned, cached pkgs
Instead of setting up the script PATH via nix-shell, use
`nix shell` with inputs from the nix-bitcoin flake.
Advantages:
- Uses the nixpkgs version from the nix-bitcoin flake instead of
`<nixpkgs>` from the user env (NIX_PATH), so the script runtime
env is reproducible.
- The pkg derivations for the runtime env are cached, which greatly
increases script startup speed.
This commit was generated by running the following script inside the
repo root dir:
def transform(path, src)
if src =~ /#! *nix-shell +-i +bash +-p +(.*)/
pkgs = $1
if src =~ /^.*?(set -e.*?pipefail)\n/
set_statement = $1
src.sub!($&, '')
end
src.sub!(/\A.*?#! *nix-shell.*?\n/m, '')
parents = ([ '..' ] * (path.split('/').count - 1)).join('/')
[
'#!/usr/bin/env bash',
*set_statement,
%(. "${BASH_SOURCE[0]%/*}/#{parents}/helper/run-in-nix-env" "#{pkgs}" "$@"),
nil,
src
].join("\n")
end
end
Dir['**/*.sh'].each do |f|
src = File.read(f)
if new_src = transform(f, src)
puts "Changed file #{f}"
File.write(f, new_src)
end
end
2022-08-22 05:57:39 -07:00
|
|
|
#!/usr/bin/env bash
|
2022-03-29 12:48:56 -07:00
|
|
|
set -euo pipefail
|
internal scripts: use pinned, cached pkgs
Instead of setting up the script PATH via nix-shell, use
`nix shell` with inputs from the nix-bitcoin flake.
Advantages:
- Uses the nixpkgs version from the nix-bitcoin flake instead of
`<nixpkgs>` from the user env (NIX_PATH), so the script runtime
env is reproducible.
- The pkg derivations for the runtime env are cached, which greatly
increases script startup speed.
This commit was generated by running the following script inside the
repo root dir:
def transform(path, src)
if src =~ /#! *nix-shell +-i +bash +-p +(.*)/
pkgs = $1
if src =~ /^.*?(set -e.*?pipefail)\n/
set_statement = $1
src.sub!($&, '')
end
src.sub!(/\A.*?#! *nix-shell.*?\n/m, '')
parents = ([ '..' ] * (path.split('/').count - 1)).join('/')
[
'#!/usr/bin/env bash',
*set_statement,
%(. "${BASH_SOURCE[0]%/*}/#{parents}/helper/run-in-nix-env" "#{pkgs}" "$@"),
nil,
src
].join("\n")
end
end
Dir['**/*.sh'].each do |f|
src = File.read(f)
if new_src = transform(f, src)
puts "Changed file #{f}"
File.write(f, new_src)
end
end
2022-08-22 05:57:39 -07:00
|
|
|
. "${BASH_SOURCE[0]%/*}/../../helper/run-in-nix-env" "git gnupg curl jq" "$@"
|
2022-03-29 12:48:56 -07:00
|
|
|
|
2022-08-16 12:00:00 -07:00
|
|
|
TMPDIR=$(mktemp -d -p /tmp)
|
|
|
|
trap 'rm -rf $TMPDIR' EXIT
|
|
|
|
cd "$TMPDIR"
|
2022-03-29 12:48:56 -07:00
|
|
|
|
|
|
|
echo "Fetching latest release"
|
|
|
|
repo=lightninglabs/lndinit
|
2022-08-16 12:00:00 -07:00
|
|
|
latest=$(curl -fsS "https://api.github.com/repos/$repo/releases/latest" | jq -r .tag_name)
|
2022-03-29 12:48:56 -07:00
|
|
|
echo "Latest release is $latest"
|
2022-08-16 12:00:00 -07:00
|
|
|
git clone --depth 1 --branch "$latest" https://github.com/lightninglabs/lndinit 2>/dev/null
|
2022-03-29 12:48:56 -07:00
|
|
|
cd lndinit
|
|
|
|
|
|
|
|
# GPG verification
|
|
|
|
export GNUPGHOME=$TMPDIR
|
|
|
|
echo "Fetching Oliver Gugger's key"
|
|
|
|
gpg --keyserver hkps://keyserver.ubuntu.com --recv-keys F4FC70F07310028424EFC20A8E4256593F177720 2> /dev/null
|
|
|
|
echo "Verifying latest release"
|
2022-08-16 12:00:00 -07:00
|
|
|
git verify-tag "$latest"
|
2022-03-29 12:48:56 -07:00
|
|
|
|
|
|
|
echo "tag: $latest"
|
2022-08-16 12:00:00 -07:00
|
|
|
git checkout -q "tags/$latest"
|
2022-03-29 12:48:56 -07:00
|
|
|
rm -rf .git
|
|
|
|
nix hash path .
|