%global with_debug 1 %global with_bundled 1 %if 0%{?with_debug} %global _dwz_low_mem_die_limit 0 %else %global debug_package %{nil} %endif %global provider github %global provider_tld com %global project projectatomic %global repo buildah # https://github.com/projectatomic/buildah %global provider_prefix %{provider}.%{provider_tld}/%{project}/%{repo} %global import_path %{provider_prefix} %global commit0 fbf46d33c4e01199281c7a69e68605ec7d611fd3 %global shortcommit0 %(c=%{commit0}; echo ${c:0:7}) Name: %{repo} Version: 1.1 Release: 1.git%{shortcommit0}%{?dist} Summary: A command line tool used for creating OCI Images License: ASL 2.0 URL: https://%{provider_prefix} Source: https://%{provider_prefix}/archive/%{commit0}/%{name}-%{shortcommit0}.tar.gz ExclusiveArch: x86_64 %{arm} aarch64 ppc64le s390x # If go_compiler is not set to 1, there is no virtual provide. Use golang instead. BuildRequires: %{?go_compiler:compiler(go-compiler)}%{!?go_compiler:golang} BuildRequires: git BuildRequires: glib2-devel BuildRequires: libseccomp-devel BuildRequires: ostree-devel BuildRequires: glibc-static BuildRequires: go-md2man BuildRequires: gpgme-devel BuildRequires: device-mapper-devel BuildRequires: btrfs-progs-devel BuildRequires: libassuan-devel BuildRequires: make Requires: runc >= 1.0.0-17 Requires: skopeo-containers >= 0.1.20-2 Requires: container-selinux Requires: ostree %description The %{name} package provides a command line tool which can be used to * create a working container from scratch or * create a working container from an image as a starting point * mount/umount a working container's root file system for manipulation * save container's root file system layer to create a new image * delete a working container or an image %prep %autosetup -Sgit -n %{name}-%{commit0} %build mkdir _build pushd _build mkdir -p src/%{provider}.%{provider_tld}/%{project} ln -s $(dirs +1 -l) src/%{import_path} popd mv vendor src export GOPATH=$(pwd)/_build:$(pwd):%{gopath} make all GIT_COMMIT=%{shortcommit0} %install export GOPATH=$(pwd)/_build:$(pwd):%{gopath} make DESTDIR=%{buildroot} PREFIX=%{_prefix} install install.completions #define license tag if not already defined %{!?_licensedir:%global license %doc} %files %license LICENSE %doc README.md %{_bindir}/%{name} %{_mandir}/man1/%{name}* %dir %{_datadir}/bash-completion %dir %{_datadir}/bash-completion/completions %{_datadir}/bash-completion/completions/%{name} %changelog * Sun Jun 10 2018 Dan Walsh 1.1-1 - Drop capabilities if running container processes as non root - Print Warning message if cmd will not be used based on entrypoint - Update 01-intro.md - Shouldn't add insecure registries to list of search registries - Report errors on bad transports specification when pushing images - Move parsing code out of common for namespaces and into pkg/parse.go - Add disable-content-trust noop flag to bud - Change freenode chan to buildah - runCopyStdio(): don't close stdin unless we saw POLLHUP - Add registry errors for pull - runCollectOutput(): just read until the pipes are closed on us - Run(): provide redirection for stdio - rmi, rm: add test - add mount test - Add parameter judgment for commands that do not require parameters - Add context dir to bud command in baseline test - run.bats: check that we can run with symlinks in the bundle path - Give better messages to users when image can not be found - use absolute path for bundlePath - Add environment variable to buildah --format - rm: add validation to args and all option - Accept json array input for config entrypoint - Run(): process RunOptions.Mounts, and its flags - Run(): only collect error output from stdio pipes if we created some - Add OnBuild support for Dockerfiles - Quick fix on demo readme - run: fix validate flags - buildah bud should require a context directory or URL - Touchup tutorial for run changes - Validate common bud and from flags - images: Error if the specified imagename does not exist - inspect: Increase err judgments to avoid panic - add test to inspect - buildah bud picks up ENV from base image - Extend the amount of time travis_wait should wait - Add a make target for Installing CNI plugins - Add tests for namespace control flags - copy.bats: check ownerships in the container - Fix SELinux test errors when SELinux is enabled - Add example CNI configurations - Run: set supplemental group IDs - Run: use a temporary mount namespace - Use CNI to configure container networks - add/secrets/commit: Use mappings when setting permissions on added content - Add CLI options for specifying namespace and cgroup setup - Always set mappings when using user namespaces - Run(): break out creation of stdio pipe descriptors - Read UID/GID mapping information from containers and images - Additional bud CI tests - Run integration tests under travis_wait in Travis - build-using-dockerfile: add --annotation - Implement --squash for build-using-dockerfile and commit - Vendor in latest container/storage for devicemapper support - add test to inspect - Vendor github.com/onsi/ginkgo and github.com/onsi/gomega - Test with Go 1.10, too - Add console syntax highlighting to troubleshooting page - bud.bats: print "$output" before checking its contents - Manage "Run" containers more closely - Break Builder.Run()'s "run runc" bits out - util.ResolveName(): handle completion for tagged/digested image names - Handle /etc/hosts and /etc/resolv.conf properly in container - Documentation fixes - Make it easier to parse our temporary directory as an image name - Makefile: list new pkg/ subdirectoris as dependencies for buildah - containerImageSource: return more-correct errors - API cleanup: PullPolicy and TerminalPolicy should be types - Make "run --terminal" and "run -t" aliases for "run --tty" - Vendor github.com/containernetworking/cni v0.6.0 - Update github.com/containers/storage - Update github.com/projectatomic/libpod - Add support for buildah bud --label - buildah push/from can push and pull images with no reference - Vendor in latest containers/image - Update gometalinter to fix install.tools error - Update troubleshooting with new run workaround - Added a bud demo and tidied up - Attempt to download file from url, if fails assume Dockerfile - Add buildah bud CI tests for ENV variables - Re-enable rpm .spec version check and new commit test - Update buildah scratch demo to support el7 - Added Docker compatibility demo - Update to F28 and new run format in baseline test - Touchup man page short options across man pages - Added demo dir and a demo. chged distrorlease - builder-inspect: fix format option - Add cpu-shares short flag (-c) and cpu-shares CI tests - Minor fixes to formatting in rpm spec changelog - Fix rpm .spec changelog formatting - CI tests and minor fix for cache related noop flags - buildah-from: add effective value to mount propagation * Sat Jun 09 2018 Lokesh Mandvekar (Bot) - 1.0-20.gitf449b28 - autobuilt f449b28 * Fri Jun 08 2018 Lokesh Mandvekar (Bot) - 1.0-19.gitc306342 - autobuilt c306342 * Wed Jun 06 2018 Lokesh Mandvekar (Bot) - 1.0-18.gitd3d097b - autobuilt d3d097b * Mon Jun 04 2018 Lokesh Mandvekar (Bot) - 1.0-17.gitf90b6c0 - autobuilt f90b6c0 * Sun Jun 03 2018 Lokesh Mandvekar (Bot) - 1.0-16.git70641ee - autobuilt 70641ee * Sat Jun 02 2018 Lokesh Mandvekar (Bot) - 1.0-15.git03686e5 - autobuilt 03686e5 * Fri Jun 01 2018 Lokesh Mandvekar (Bot) - 1.0-14.git73bfd79 - autobuilt 73bfd79 * Thu May 31 2018 Lokesh Mandvekar (Bot) - 1.0-13.git5595d4d - autobuilt 5595d4d * Wed May 30 2018 Lokesh Mandvekar (Bot) - 1.0-12.gitebb0d8e - autobuilt ebb0d8e * Tue May 29 2018 Lokesh Mandvekar (Bot) - 1.0-11.git88affbd - autobuilt 88affbd * Fri May 25 2018 Lokesh Mandvekar (Bot) - 1.0-10.git25f4e8e - autobuilt 25f4e8e * Thu May 17 2018 Lokesh Mandvekar (Bot) - 1.0-9.git2749191 - autobuilt 2749191 * Wed May 16 2018 Lokesh Mandvekar (Bot) - 1.0-8.git3e320b9 - autobuilt 3e320b9 * Tue May 15 2018 Lokesh Mandvekar (Bot) - 1.0-7.git8515867 - autobuilt 8515867 * Sun May 13 2018 Lokesh Mandvekar (Bot) - 1.0-6.gitce8d467 - autobuilt ce8d467 * Sat May 12 2018 Lokesh Mandvekar (Bot) - 1.0-5.gitb9a1041 - autobuilt b9a1041 * Fri May 11 2018 Lokesh Mandvekar (Bot) - 1.0-4.git2ea3e11 - autobuilt 2ea3e11 * Wed May 09 2018 Lokesh Mandvekar (Bot) - 1.0-3.gitfe204e4 - autobuilt fe204e4 * Tue May 08 2018 Lokesh Mandvekar (Bot) - 1.0-2.git906ee37 - autobuilt 906ee37 * Mon May 07 2018 Dan Walsh 1.0-1 - Remove buildah run cmd and entrypoint execution - Add Files section with registries.conf to pertinent man pages - Force "localhost" as a default registry - Add --compress, --rm, --squash flags as a noop for bud - Add FIPS mode secret to buildah run and bud - Add config --comment/--domainname/--history-comment/--hostname - Add support for --iidfile to bud and commit - Add /bin/sh -c to entrypoint in config - buildah images and podman images are listing different sizes - Remove tarball as an option from buildah push --help - Update entrypoint behaviour to match docker - Display imageId after commit - config: add support for StopSignal - Allow referencing stages as index and names - Add multi-stage builds support - Vendor in latest imagebuilder, to get mixed case AS support - Allow umount to have multi-containers - Update buildah push doc - buildah bud walks symlinks - Imagename is required for commit atm, update manpage * Mon May 07 2018 Lokesh Mandvekar (Bot) - 0.16-25.gitdd02e70 - autobuilt dd02e70 * Sat May 05 2018 Lokesh Mandvekar (Bot) - 0.16-24.git45772e8 - autobuilt 45772e8 * Fri May 04 2018 Lokesh Mandvekar (Bot) - 0.16-23.git6fe2b55 - autobuilt 6fe2b55 * Wed May 02 2018 Lokesh Mandvekar (Bot) - 0.16-22.gita4f5707 - autobuilt a4f5707 * Wed May 02 2018 Lokesh Mandvekar (Bot) - 0.16-21.gite130f2b - autobuilt commit e130f2b * Tue May 01 2018 Lokesh Mandvekar (Bot) - 0.16-20.gitadb8e6f - autobuilt commit adb8e6f * Sat Apr 28 2018 Lokesh Mandvekar (Bot) - 0.16-19.gitc50c287 - autobuilt commit c50c287 * Fri Apr 27 2018 Lokesh Mandvekar (Bot) - 0.16-18.gitca1704f - autobuilt commit ca1704f * Wed Apr 25 2018 Lokesh Mandvekar (Bot) - 0.16-17.git49abf82 - autobuilt commit 49abf82 * Tue Apr 24 2018 Lokesh Mandvekar (Bot) - 0.16-16.gitfdc3998 - autobuilt commit fdc3998 * Tue Apr 24 2018 Lokesh Mandvekar (Bot) - 0.16-15.gitb16a1ea - autobuilt commit b16a1ea * Fri Apr 20 2018 Lokesh Mandvekar (Bot) - 0.16-14.gitd84f05a - autobuilt commit d84f05a * Thu Apr 19 2018 Lokesh Mandvekar (Bot) - 0.16-13.gite008b73 - autobuilt commit e008b73 * Thu Apr 19 2018 Lokesh Mandvekar (Bot) - 0.16-12.git28a27a3 - autobuilt commit 28a27a3 * Tue Apr 17 2018 Lokesh Mandvekar (Bot) - 0.16-11.git45a4b81 - autobuilt commit 45a4b81 * Tue Apr 17 2018 Lokesh Mandvekar (Bot) - 0.16-10.git45a4b81 - autobuilt commit 45a4b81 * Mon Apr 16 2018 Lokesh Mandvekar (Bot) - 0.16-9.git6421399 - autobuilt commit 6421399 * Mon Apr 16 2018 Lokesh Mandvekar (Bot) - 0.16-8.git83d7d10 - autobuilt commit 83d7d10 * Mon Apr 16 2018 Lokesh Mandvekar (Bot) - 0.16-7.git83d7d10 - autobuilt commit 83d7d10 * Mon Apr 16 2018 Lokesh Mandvekar (Bot) - 0.16-6.git83d7d10 - autobuilt commit 83d7d10 * Mon Apr 09 2018 Lokesh Mandvekar (Bot) - 0.16-5.git4339223 - autobuilt commit 4339223 * Mon Apr 09 2018 Lokesh Mandvekar (Bot) - 0.16-4.git4339223 - autobuilt commit 4339223 * Mon Apr 09 2018 Lokesh Mandvekar - 0.16-3.git4339223 - autobuilt commit 4339223 * Sun Apr 08 2018 Lokesh Mandvekar - 0.16-2.git4743c2e - autobuilt commit 4743c2e * Wed Apr 4 2018 Dan Walsh 0.16-1 - Add support for shell - Vendor in latest containers/image - docker-archive generates docker legacy compatible images - Do not create $DiffID subdirectories for layers with no configs - Ensure the layer IDs in legacy docker/tarfile metadata are unique - docker-archive: repeated layers are symlinked in the tar file - sysregistries: remove all trailing slashes - Improve docker/* error messages - Fix failure to make auth directory - Create a new slice in Schema1.UpdateLayerInfos - Drop unused storageImageDestination.{image,systemContext} - Load a *storage.Image only once in storageImageSource - Support gzip for docker-archive files - Remove .tar extension from blob and config file names - ostree, src: support copy of compressed layers - ostree: re-pull layer if it misses uncompressed_digest|uncompressed_size - image: fix docker schema v1 -> OCI conversion - Add /etc/containers/certs.d as default certs directory - Change image time to locale, add troubleshooting.md, add logo to other mds - Allow --cmd parameter to have commands as values - Document the mounts.conf file - Fix man pages to format correctly - buildah from now supports pulling images using the following transports: - docker-archive, oci-archive, and dir. - If the user overrides the storage driver, the options should be dropped - Show Config/Manifest as JSON string in inspect when format is not set - Adds feature to pull compressed docker-archive files * Tue Feb 27 2018 Dan Walsh 0.15-1 - Fix handling of buildah run command options * Mon Feb 26 2018 Dan Walsh 0.14-1 - If commonOpts do not exist, we should return rather then segfault - Display full error string instead of just status - Implement --volume and --shm-size for bud and from - Fix secrets patch for buildah bud - Fixes the naming issue of blobs and config for the dir transport by removing the .tar extension * Sun Feb 25 2018 Peter Robinson 0.13-2 - Build on ARMv7 too (Fedora supports containers on that arch too) * Thu Feb 22 2018 Dan Walsh 0.13-1 - Vendor in latest containers/storage - This fixes a large SELinux bug. - run: do not open /etc/hosts if not needed - Add the following flags to buildah bud and from --add-host --cgroup-parent --cpu-period --cpu-quota --cpu-shares --cpuset-cpus --cpuset-mems --memory --memory-swap --security-opt --ulimit * Mon Feb 12 2018 Dan Walsh 0.12-1 - Added handing for simpler error message for Unknown Dockerfile instructions. - Change default certs directory to /etc/containers/certs.dir - Vendor in latest containers/image - Vendor in latest containers/storage - build-using-dockerfile: set the 'author' field for MAINTAINER - Return exit code 1 when buildah-rmi fails - Trim the image reference to just its name before calling getImageName - Touch up rmi -f usage statement - Add --format and --filter to buildah containers - Add --prune,-p option to rmi command - Add authfile param to commit - Fix --runtime-flag for buildah run and bud - format should override quiet for images - Allow all auth params to work with bud - Do not overwrite directory permissions on --chown - Unescape HTML characters output into the terminal - Fix: setting the container name to the image - Prompt for un/pwd if not supplied with --creds - Make bud be really quiet - Return a better error message when failed to resolve an image - Update auth tests and fix bud man page * Wed Feb 07 2018 Fedora Release Engineering - 0.11-3.git6bad262 - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild * Mon Feb 05 2018 Lokesh Mandvekar - 0.11-2 - Resolves: upstream gh#432 - enable debuginfo for non-fedora packages * Tue Jan 16 2018 Dan Walsh 0.11-1 - Add --all to remove containers - Add --all functionality to rmi - Show ctrid when doing rm -all - Ignore sequential duplicate layers when reading v2s1 - Lots of minor bug fixes - Vendor in latest containers/image and containers/storage * Tue Dec 26 2017 Dan Walsh 0.10-2 - Fix checkin * Sat Dec 23 2017 Dan Walsh 0.10-1 - Display Config and Manifest as strings - Bump containers/image - Use configured registries to resolve image names - Update to work with newer image library - Add --chown option to add/copy commands * Sat Dec 2 2017 Dan Walsh 0.9-1 - Allow push to use the image id - Make sure builtin volumes have the correct label * Thu Nov 16 2017 Dan Walsh 0.8-1 - Buildah bud was failing on SELinux machines, this fixes this - Block access to certain kernel file systems inside of the container * Thu Nov 16 2017 Dan Walsh 0.7-1 - Ignore errors when trying to read containers buildah.json for loading SELinux reservations - Use credentials from kpod login for buildah * Wed Nov 15 2017 Dan Walsh 0.6-1 - Adds support for converting manifest types when using the dir transport - Rework how we do UID resolution in images - Bump github.com/vbatts/tar-split - Set option.terminal appropriately in run * Wed Nov 08 2017 Dan Walsh 0.5-2 - Bump github.com/vbatts/tar-split - Fixes CVE That could allow a container image to cause a DOS * Tue Nov 07 2017 Dan Walsh 0.5-1 - Add secrets patch to buildah - Add proper SELinux labeling to buildah run - Add tls-verify to bud command - Make filtering by date use the image's date - images: don't list unnamed images twice - Fix timeout issue - Add further tty verbiage to buildah run - Make inspect try an image on failure if type not specified - Add support for `buildah run --hostname` - Tons of bug fixes and code cleanup * Fri Sep 22 2017 Dan Walsh 0.4-1.git9cbccf88c - Add default transport to push if not provided - Avoid trying to print a nil ImageReference - Add authentication to commit and push - Add information on buildah from man page on transports - Remove --transport flag - Run: do not complain about missing volume locations - Add credentials to buildah from - Remove export command - Run(): create the right working directory - Improve "from" behavior with unnamed references - Avoid parsing image metadata for dates and layers - Read the image's creation date from public API - Bump containers/storage and containers/image - Don't panic if an image's ID can't be parsed - Turn on --enable-gc when running gometalinter - rmi: handle truncated image IDs * Tue Aug 15 2017 Josh Boyer - 0.3-5.gitb9b2a8a - Build for s390x as well * Wed Aug 02 2017 Fedora Release Engineering - 0.3-4.gitb9b2a8a - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild * Wed Jul 26 2017 Fedora Release Engineering - 0.3-3.gitb9b2a8a - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild * Thu Jul 20 2017 Dan Walsh 0.3-2.gitb9b2a8a7e - Bump for inclusion of OCI 1.0 Runtime and Image Spec * Tue Jul 18 2017 Dan Walsh 0.2.0-1.gitac2aad6 - buildah run: Add support for -- ending options parsing - buildah Add/Copy support for glob syntax - buildah commit: Add flag to remove containers on commit - buildah push: Improve man page and help information - buildah run: add a way to disable PTY allocation - Buildah docs: clarify --runtime-flag of run command - Update to match newer storage and image-spec APIs - Update containers/storage and containers/image versions - buildah export: add support - buildah images: update commands - buildah images: Add JSON output option - buildah rmi: update commands - buildah containers: Add JSON output option - buildah version: add command - buildah run: Handle run without an explicit command correctly - Ensure volume points get created, and with perms - buildah containers: Add a -a/--all option * Wed Jun 14 2017 Dan Walsh 0.1.0-2.git597d2ab9 - Release Candidate 1 - All features have now been implemented. * Fri Apr 14 2017 Dan Walsh 0.0.1-1.git7a0a5333 - First package for Fedora