Manually Recompile Packages, Embedding/Internalizing Remote Resources
Manually Recompile Packages, Embedding/Internalizing Remote Resources
What is it? Why?
Sometimes creating packages from scratch can be an involved process. Not all software installers are created equal (and not all are easily automated either)! Thankfully there is already a tremendous resource you can use to make the process of getting your software all packaged up even smoother.
On chocolatey.org, you will find packages with all of the install logic you need to automatically install your software. However, many of these publicly available packages also rely on software that is available from official distribution points because they are subject to software licensing and copyright law. Unless you’re granted the right to distribute the software via the license, you can’t redistribute it publicly. These laws do not apply when you use internal packages, and that is a good thing!
Why? Downloading software from the internet creates a failure point because it may not be available, the software vendor site could go down, etc. With internal packages, you don’t have to worry about any of that. You can create internal packages and embed the software directly in the package and/or use internal file shares.
This is where internalizing/recompiling existing community packages comes in. Internalizing a package lets you take an existing package and internalize all of the resources to embedded/internal resources so you can reuse the install logic without the hassle of downloading files from the internet. This guarantees complete control, trust, reliability, and repeatability of a package for organizations that have a low tolerance for production issues.
📝 NOTE: Internalizing a package is not the same thing as caching the nupkg files like Artifactory, Nexus, ProGet, etc can do.
Process of Internalization
Internalizing a Chocolatey package at a high level involves:
- Downloading and unpacking the existing package as a zip file.
- Downloading the resources the package has and putting them in the package or somewhere internal (UNC, internal Http repository, DFS, SCCM Distribution point, etc).
- Editing the install script to point to the internal/embedded software.
- Packaging it back up (recompiling).
- Pushing it to your internal server.
- And that’s it!
Recompiling is a great way to quickly get your organization up to speed on managing software with Chocolatey packages.
How to Internalize An Existing Package Automatically
- Have Chocolatey for Business (or Chocolatey for MSP).
- Call a command like the following:
choco download notepadplusplus.commandline --internalize
choco download git.install --internalize --resources-location \\unc\share
choco download nodejs.install --internalize --resources-location http://some/internal/url --internalize-all-urls.
- That's it! It does all of the manual steps below in a fraction of the time.
Package Internalizer can be hooked up to continuous integration automation or scheduled tasks to really reduce manual work.
How To Internalize/Recompile An Existing Package Manually
Chocolatey's community feed has quite a few packages but they are geared towards community and use the internet for downloading from official distribution sites due to copyright law and a publicly offered repository. However, they are attractive as they have everything necessary to install a piece of software on your machine. Through the internalization process, by which you take a community package and bring all of the bits internal and/or embed them into the pacakge, you can convert an existing package to be 100% offline and reliable and host it on an internal Chocolatey repository. This gives you complete control over a package and removes the aforementioned production trust and control issues.
To make the existing package local, use these steps.
Download the package from Chocolatey's community feed by going to the package page and clicking the download link.
Rename the downloaded file to end with
.zipand unpack the file as a regular archive.
packagefolders and the
[Content_Types].xmlfile. These are created during
choco packand should not be included, as they will be regenerated (and their existence leads to issues).
Install-ChocolateyZipPackage 'notepadplusplus.commandline' 'https://notepad-plus-plus.org/repository/6.x/6.8.7/npp.6.8.7.bin.zip' "$(Split-Path -parent $MyInvocation.MyCommand.Definition)"
Download the zip file and place it in the tools folder of the package.
If the file ends in
.exe, create an empty file called
*.exe.ignore, where the name is an exact match with the exe with
.ignoreappended at the end (e.g.
bob.exewould have a file next to it named
chocolateyInstall.ps1to point to this embedded file instead of reaching out to the internet (if the size of the file is over 100MB, you might want to put it on a file share somewhere internally for better performance).
$toolsDir = "$(Split-Path -parent $MyInvocation.MyCommand.Definition)" Install-ChocolateyZipPackage 'notepadplusplus.commandline' "$toolsDir\npp.6.8.7.bin.zip" "$toolsDir"
The double quotes allow for string interpolation (meaning variables get interpreted instead of taken literally).
Next, open the
*.nuspecfile to view its contents and make any necessary changes.
<?xml version="1.0"?> <package xmlns="http://schemas.microsoft.com/packaging/2010/07/nuspec.xsd"> <metadata> <id>notepadplusplus.commandline</id> <version>6.8.7</version> <title>Notepad++ (Portable, CommandLine)</title> <authors>Don Ho</authors> <owners>Rob Reynolds</owners> <projectUrl>https://notepad-plus-plus.org/</projectUrl> <iconUrl>https://cdn.statically.io/gh/ferventcoder/chocolatey-packages/02c21bebe5abb495a56747cbb9b4b5415c933fc0/icons/notepadplusplus.png</iconUrl> <requireLicenseAcceptance>false</requireLicenseAcceptance> <description>Notepad++ is a ... </description> <summary>Notepad++ is a free (as in "free speech" and also as in "free beer") source code editor and Notepad replacement that supports several languages. </summary> <tags>notepad notepadplusplus notepad-plus-plus</tags> </metadata> </package>
Some organizations will change the version field to denote this is an edited internal package, for example changing
22.214.171.12451202. For now, this is not necessary.
Now you can navigate via the command line to the folder with the
.nuspecfile (from a Windows machine unless you've installed Mono and built choco.exe from source) and use
choco pack. You can also be more specific and type
choco pack path\to\notepadplusplus.commandline.nuspec. The output should be similar to below.
Attempting to build package from 'notepadplusplus.commandline.nuspec'. Successfully created package 'notepadplusplus.commandline.6.8.7.nupkg'
Normally you test on a system to ensure that the package you just built is good prior to pushing the package (just the *.nupkg) to your internal repository. This can be done by using
choco.exeon a test system to install (
choco install notepadplusplus.commandline -source .) and uninstall (
choco uninstall notepadplusplus.commandline).
📝 NOTE Originally posted at https://puppet.com/blog/chocolatey-creating-recompiled-packages and https://docs.puppet.com/pe/latest/windows_modules.html