%if 0%{?fedora} %global with_seccomp 1 %global with_static_init 1 %endif %if 0%{?rhel} >= 7 %ifarch %{ix86} x86_64 %{arm} aarch64 %global with_seccomp 1 %endif %endif Name: lxc Version: 4.0.10 Release: 5%{?dist} Summary: Linux Resource Containers License: LGPLv2+ and GPLv2 URL: https://linuxcontainers.org/lxc Source0: https://linuxcontainers.org/downloads/%{name}/%{name}-%{version}.tar.gz Source1: lxc-net Source2: https://git.shrug.pw/neilhanlon/lxc-templates/archive/v1.0.4.tar.gz Patch0: lxc-2.0.7-fix-init.patch Patch1: lxc-4.0.1-fix-lxc-net.patch BuildRequires: make BuildRequires: docbook2X BuildRequires: doxygen BuildRequires: kernel-headers BuildRequires: libselinux-devel %if 0%{?with_seccomp} BuildRequires: pkgconfig(libseccomp) %endif # with_seccomp BuildRequires: libcap-devel BuildRequires: pam-devel BuildRequires: openssl-devel BuildRequires: libtool BuildRequires: systemd BuildRequires: pkgconfig(bash-completion) %if 0%{?with_static_init} BuildRequires: libcap-static BuildRequires: glibc-static %endif # with_static_init # we are patching configure.ac BuildRequires: autoconf automake libtool # lxc-extra subpackage not needed anymore, lxc-ls has been rewriten in # C and does not depend on the Python3 binding anymore Provides: lxc-extra = %{version}-%{release} Obsoletes: lxc-extra < 1.1.5-3 %{!?_pkgdocdir: %global _pkgdocdir %{_docdir}/%{name}-%{version}} %description Linux Resource Containers provide process and resource isolation without the overhead of full virtualization. %package libs Summary: Runtime library files for %{name} # rsync is called in bdev.c, e.g. by lxc-clone Requires: rsync Requires(post): systemd Requires(preun): systemd Requires(postun): systemd Requires(post): /sbin/ldconfig Requires(postun): /sbin/ldconfig %description libs Linux Resource Containers provide process and resource isolation without the overhead of full virtualization. The %{name}-libs package contains libraries for running %{name} applications. %package templates Summary: Templates for %{name} Requires: %{name}-libs%{?_isa} = %{version}-%{release} # Note: Not all requirements for the template scripts (busybox, dpkg, # debootstrap, rsync, openssh-server, dhclient, apt, pacman, zypper, # ubuntu-cloudimg-query etc...) are explicitly mentioned here: their # presence varies wildly on supported Fedora/EPEL releases and archs, # and they are in most cases needed for a single template only. Also, # the templates normally fail graciously when such a tool is # missing. Moving each template to its own subpackage on the other # hand would be overkill. # # Add wget, used by the 'download' template (see also #1828032) Requires: wget %description templates Linux Resource Containers provide process and resource isolation without the overhead of full virtualization. The %{name}-templates package contains templates for creating containers. %package templates-extra Summary: Extra Templates for %{name} Requires: %{name}-templates%{?_isa} = %{version}-%{release} %description templates-extra Linux Resource Containers provide process and resource isolation without the overhead of full virtualization. The %{name}-templates-extra package contains extra templates for creating containers previously available in the lxc-templates package, but are now considered legacy. %package devel Summary: Development files for %{name} Requires: %{name}-libs%{?_isa} = %{version}-%{release} Requires: pkgconfig %description devel Linux Resource Containers provide process and resource isolation without the overhead of full virtualization. The %{name}-devel package contains libraries and header files for developing applications that use %{name}. %package doc Summary: Documentation for %{name} BuildArch: noarch %description doc This package contains documentation for %{name}. %prep %autosetup -p1 -n %{name}-%{version} %build autoreconf -vif %configure --with-distro=fedora \ --enable-doc \ --enable-api-docs \ --disable-silent-rules \ --docdir=%{_pkgdocdir} \ --disable-rpath \ --disable-static \ --disable-apparmor \ --enable-selinux \ --enable-capabilities \ --enable-pam \ --enable-openssl \ %if 0%{?with_seccomp} --enable-seccomp \ %endif # with_seccomp --with-init-script=systemd \ --disable-werror \ # intentionally blank line %{make_build} # build extra templates tar -xf %{SOURCE2} cd lxc-templates/ autoreconf -vif %configure %{make_build} %install %{make_install} mkdir -p %{buildroot}%{_sharedstatedir}/%{name} # docs mkdir -p %{buildroot}%{_pkgdocdir}/api cp -a AUTHORS README %{buildroot}%{_pkgdocdir} cp -a doc/api/html/* %{buildroot}%{_pkgdocdir}/api/ # cache dir mkdir -p %{buildroot}%{_localstatedir}/cache/%{name} # remove libtool .la file rm -rf %{buildroot}%{_libdir}/liblxc.la # lxc-net config file cp -a %{SOURCE1} %{buildroot}%{_sysconfdir}/sysconfig/%{name}-net # lxc-templates from github cd lxc-templates %{make_install} ls -v %check make check cd lxc-templates make check %post libs %{?ldconfig} %systemd_post %{name}-net.service %systemd_post %{name}.service %preun libs %systemd_preun %{name}-net.service %systemd_preun %{name}.service %postun libs %{?ldconfig} %systemd_postun %{name}-net.service %systemd_postun %{name}.service %files %{_bindir}/%{name}-* %{_mandir}/man1/%{name}* %{_mandir}/*/man1/%{name}* # in lxc-libs: %exclude %{_bindir}/%{name}-autostart %exclude %{_mandir}/man1/%{name}-autostart* %exclude %{_mandir}/*/man1/%{name}-autostart* %exclude %{_mandir}/man1/%{name}-user-nic* %exclude %{_mandir}/*/man1/%{name}-user-nic* %{_datadir}/%{name}/%{name}.functions %dir %{_datadir}/bash-completion %dir %{_datadir}/bash-completion/completions %{_datadir}/bash-completion/completions/%{name} %files libs %dir %{_datadir}/%{name} %dir %{_datadir}/%{name}/templates %dir %{_datadir}/%{name}/config %{_datadir}/%{name}/hooks %{_datadir}/%{name}/%{name}-patch.py* %{_datadir}/%{name}/selinux %{_libdir}/liblxc.so.* %{_libdir}/%{name} %{_libexecdir}/%{name} # fixme: should be in libexecdir? %{_sbindir}/init.%{name} %if 0%{?with_static_init} %{_sbindir}/init.%{name}.static %endif # with_static_init %{_bindir}/%{name}-autostart %{_sharedstatedir}/%{name} %dir %{_sysconfdir}/%{name} %config(noreplace) %{_sysconfdir}/%{name}/default.conf %config(noreplace) %{_sysconfdir}/sysconfig/%{name} %config(noreplace) %{_sysconfdir}/sysconfig/%{name}-net %{_mandir}/man1/%{name}-autostart* %{_mandir}/*/man1/%{name}-autostart* %{_mandir}/man1/%{name}-user-nic* %{_mandir}/*/man1/%{name}-user-nic* %{_mandir}/man5/%{name}* %{_mandir}/man7/%{name}* %{_mandir}/*/man5/%{name}* %{_mandir}/*/man7/%{name}* %{_mandir}/man8/pam_cgfs* %{_mandir}/*/man8/pam_cgfs* %dir %{_pkgdocdir} %{_pkgdocdir}/AUTHORS %{_pkgdocdir}/README %license COPYING %{_unitdir}/%{name}.service %{_unitdir}/%{name}@.service %{_unitdir}/%{name}-net.service %dir %{_localstatedir}/cache/%{name} /%{_lib}/security/pam_cgfs.so %files templates %{_datadir}/%{name}/templates/lxc-busybox %{_datadir}/%{name}/templates/lxc-download %{_datadir}/%{name}/templates/lxc-local %{_datadir}/%{name}/templates/lxc-oci %{_datadir}/%{name}/config/common* %{_datadir}/%{name}/config/userns.conf %{_datadir}/%{name}/config/nesting.conf %{_datadir}/%{name}/config/oci.common.conf %files templates-extra %exclude %{_datadir}/%{name}/templates/lxc-busybox %exclude %{_datadir}/%{name}/templates/lxc-download %exclude %{_datadir}/%{name}/templates/lxc-local %exclude %{_datadir}/%{name}/templates/lxc-oci %exclude %{_datadir}/%{name}/config/common* %exclude %{_datadir}/%{name}/config/userns.conf %exclude %{_datadir}/%{name}/config/nesting.conf %exclude %{_datadir}/%{name}/config/oci.common.conf %{_datadir}/%{name}/templates/lxc-* %{_datadir}/%{name}/config/* %files devel %{_libdir}/pkgconfig/%{name}.pc %{_includedir}/lxc %{_libdir}/liblxc.so %files doc %dir %{_pkgdocdir} # README, AUTHORS and COPYING intentionally duplicated because -doc # can be installed on its own. %{_pkgdocdir}/* %license COPYING %changelog * Thu Aug 04 2022 Neil Hanlon - 4.0.10-4 - fix rocky template patch * Thu Aug 04 2022 Neil Hanlon - 4.0.10-3 - add a rockylinux template * Thu May 19 2022 Neil Hanlon - 4.0.10-2 - build additional templates into a templates-extra package * Sat Sep 18 2021 Thomas Moschny - 4.0.10-1 - Update to 4.0.10. * Tue Sep 14 2021 Sahana Prasad - 4.0.9-3 - Rebuilt with OpenSSL 3.0.0 * Thu Jul 22 2021 Fedora Release Engineering - 4.0.9-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Sat May 8 2021 Thomas Moschny - 4.0.9-1 - Update to 4.0.9. * Sat May 1 2021 Thomas Moschny - 4.0.8-1 - Update to 4.0.8. * Tue Jan 26 2021 Fedora Release Engineering - 4.0.6-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Mon Jan 18 2021 Thomas Moschny - 4.0.6-1 - Update to 4.0.6. * Sat Nov 14 2020 Thomas Moschny - 4.0.5-1 - Update to 4.0.5. - Enable LXC bridge per default. - Add wget dependency for the templates subpackage. * Tue Jul 28 2020 Fedora Release Engineering - 3.2.1-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Sat May 30 2020 Timotheus Pokorra - 3.2.1-3 - reapplying patch to fix cgroups cpuset initialization (rhbz#1816949) * Wed Jan 29 2020 Fedora Release Engineering - 3.2.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild * Sun Dec 15 2019 Thomas Moschny - 3.2.1-1 - Update to 3.2.1. - Include pam_cgfs. - Use OpenSSL. * Mon Sep 9 2019 Thomas Moschny - 3.0.4-2 - Add patches to fix cgroups cpuset initialization (rhbz#1750031). * Fri Aug 16 2019 Thomas Moschny - 3.0.4-1 - Update to 3.0.4. * Thu Jul 25 2019 Fedora Release Engineering - 3.0.3-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild * Sun Apr 28 2019 Thomas Moschny - 3.0.3-3 - Add patch for CVE-2019-5736. - Build and include init.lxc.static where possible (rhbz#1654366). * Fri Feb 01 2019 Fedora Release Engineering - 3.0.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild * Fri Nov 23 2018 Thomas Moschny - 3.0.3-1 - Update to 3.0.3. * Fri Aug 17 2018 Thomas Moschny - 3.0.2-1 - Update to 3.0.2. * Fri Jul 13 2018 Fedora Release Engineering - 3.0.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild * Sat Jun 30 2018 Thomas Moschny - 3.0.1-1 - Update to 3.0.1. * Fri Apr 6 2018 Thomas Moschny - 3.0.0-1 - Update to 3.0.0. - Language bindings are separate projects now. - Update spec file and remove obsolete constructs. * Thu Feb 08 2018 Fedora Release Engineering - 2.0.9-1.1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild * Fri Oct 20 2017 Thomas Moschny - 2.0.9-1 - Update to 2.0.9. * Thu Aug 03 2017 Fedora Release Engineering - 2.0.8-2.2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild * Wed Jul 26 2017 Fedora Release Engineering - 2.0.8-2.1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild * Sat Jun 10 2017 Thomas Moschny - 2.0.8-2 - Fix for EL6 build failure. - Fix bash completion on epel6 (rhbz#1408173). * Tue Jun 6 2017 Thomas Moschny - 2.0.8-1 - Update to 2.0.8. * Thu Mar 9 2017 Thomas Moschny - 2.0.7-2 - Add fix for CVE-2017-5985. * Wed Feb 15 2017 Igor Gnatenko - 2.0.7-1.2 - Rebuild for brp-python-bytecompile * Fri Feb 10 2017 Fedora Release Engineering - 2.0.7-1.1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild * Sun Jan 29 2017 Thomas Moschny - 2.0.7-1 - Update to 2.0.7. * Mon Dec 19 2016 Miro Hrončok - 2.0.6-2.1 - Rebuild for Python 3.6 * Sun Dec 4 2016 Thomas Moschny - 2.0.6-2 - Enable python3 on epel7 builds. - Fix dependency on network-online.target for lxc-net.service. * Sat Dec 3 2016 Thomas Moschny - 2.0.6-1 - Update to 2.0.6. * Wed Oct 5 2016 Thomas Moschny - 2.0.5-1 - Update to 2.0.5. * Tue Aug 16 2016 Thomas Moschny - 2.0.4-1 - Update to 2.0.4. - Remove conditional for eol'ed Fedora releases. * Tue Jul 19 2016 Fedora Release Engineering - 2.0.3-1.1 - https://fedoraproject.org/wiki/Changes/Automatic_Provides_for_Python_RPM_Packages * Wed Jun 29 2016 Thomas Moschny - 2.0.3-1 - Update to 2.0.3. - Merge spec file cleanups by Thierry Vignaud (tvignaud@redhat.com). * Fri Jun 3 2016 Thomas Moschny - 2.0.1-1 - Update to 2.0.1. - Remove patch no longer needed. * Wed Apr 20 2016 Thomas Moschny - 2.0.0-1 - Update to 2.0.0. - Obsolete the -extra subpackage. - Move the completion file to %%{_datadir}. * Tue Mar 1 2016 Peter Robinson 1.1.5-2 - Power64 and s390(x) now have libseccomp support * Thu Feb 04 2016 Fedora Release Engineering - 1.1.5-1.1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild * Sun Nov 15 2015 Thomas Moschny - 1.1.5-1 - Update to 1.1.5. - Update patch. * Tue Nov 10 2015 Fedora Release Engineering - 1.1.4-2.1 - Rebuilt for https://fedoraproject.org/wiki/Changes/python3.5 * Wed Oct 21 2015 Thomas Moschny - 1.1.4-2 - Add patch to fix bootorder (rhbz#1263612). * Sat Oct 17 2015 Thomas Moschny - 1.1.4-1 - Update to 1.1.4. * Thu Oct 1 2015 Thomas Moschny - 1.1.3-2 - Add security fix, see rhbz#1267844. * Sat Aug 15 2015 Thomas Moschny - 1.1.3-1 - Update to 1.1.3. - Remove patches applied upstream. * Sun Aug 2 2015 Thomas Moschny - 1.1.2-2 - Add security fixes, see rhbz#1245939 and rhbz#1245941. * Wed Jun 17 2015 Fedora Release Engineering - 1.1.2-1.1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild * Mon Apr 20 2015 Thomas Moschny - 1.1.2-1 - Update to 1.1.2. - Add patch to fix building of the lua bindings. * Tue Mar 17 2015 Thomas Moschny - 1.1.1-2 - Use %%license only where possible. * Tue Mar 17 2015 Thomas Moschny - 1.1.1-1 - Update to 1.1.1. - Add dependency on rsync (rhbz#1177981). - Tag COPYING with %%licence. * Mon Feb 16 2015 Peter Robinson 1.1.0-3 - aarch64 now has seccomp support * Tue Feb 10 2015 Thomas Moschny - 1.1.0-2 - lxc-top no longer relies on the lua bindings. - lxc-device no longer relies on the python3 bindings. - Spec file cleanups. * Sun Feb 8 2015 Thomas Moschny - 1.1.0-1 - Update to 1.1.0. * Sat Aug 30 2014 Thomas Moschny - 1.1.0-0.3.alpha1 - Add missing dependency on lua-alt-getopt (rhbz#1131707). * Sun Aug 17 2014 Fedora Release Engineering - 1.1.0-0.2.alpha1.1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Mon Aug 11 2014 Jakub Čajka - 1.1.0-0.2.alpha1 - Fixed build dependencies on s390(x) and ppc(64(le)) * Sun Aug 10 2014 Thomas Moschny - 1.1.0-0.1.alpha1 - Update to 1.1.0.alpha1. * Fri Aug 8 2014 Thomas Moschny - 1.0.5-2 - Include sysvinit resp. systemd support for autostart of containers. - Do not list explicit requirements for templates. - Add missing dependency on lxc-lua for lxc-top. - Include apidocs. * Fri Aug 8 2014 Peter Robinson 1.0.5-1 - Update to 1.0.5 * Sat Jun 07 2014 Fedora Release Engineering - 1.0.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Wed Jun 4 2014 Thomas Moschny - 1.0.3-1 - Update to 1.0.3. - Remove obsolete patches. - Add systemd support. - Lua bindings are not optional (needed e.g. for lxc-top). * Wed May 28 2014 Kalev Lember - 0.9.0-4 - Rebuilt for https://fedoraproject.org/wiki/Changes/Python_3.4 * Thu Jan 30 2014 Marek Goldmann - 0.9.0-3 - There is still no Python 3 available in EPEL 7 * Wed Sep 4 2013 Thomas Moschny - 0.9.0-2 - Small fix to the included Fedora template. * Sun Sep 1 2013 Thomas Moschny - 0.9.0-1 - Update to 0.9.0. - Make the -libs subpackage installable on its own: - Move files needed by the libraries to the subpackage. - Let packages depend on -libs. - Add rsync as dependency to the templates package. - Add (optional) subpackages for Python3 and Lua bindings. - Add upstream patches for the Fedora template. - Define and use the _pkgdocdir macro, also fixing rhbz#1001235. - Update License tag. * Sat Aug 03 2013 Fedora Release Engineering - 0.8.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Sat Mar 2 2013 Thomas Moschny - 0.8.0-2 - Add upstream patch fixing the release url in the Fedora template. * Fri Feb 15 2013 Thomas Moschny - 0.8.0-1 - Update to 0.8.0. - Modernize spec file. - Include more templates. * Thu Feb 14 2013 Fedora Release Engineering - 0.7.5-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Thu Jul 19 2012 Fedora Release Engineering - 0.7.5-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Mon Mar 26 2012 Thomas Moschny - 0.7.5-1 - Update to upstream 0.7.5 - No need to run autogen.sh - Fix: kernel header asm/unistd.h was not found - Specfile cleanups * Fri Jan 13 2012 Fedora Release Engineering - 0.7.4.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild * Wed Jul 06 2011 Adam Miller - 0.7.4.2-1 - Update to upstream 0.7.4.2 * Fri Mar 25 2011 Silas Sewell - 0.7.4.1-1 - Update to 0.7.4.1 * Tue Feb 08 2011 Fedora Release Engineering - 0.7.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild * Mon Jul 26 2010 Silas Sewell - 0.7.2-1 - Update to 0.7.2 - Remove templates * Tue Jul 06 2010 Silas Sewell - 0.7.1-1 - Update to 0.7.1 * Wed Feb 17 2010 Silas Sewell - 0.6.5-1 - Update to latest release - Add /var/lib/lxc directory - Patch for sys/stat.h * Fri Nov 27 2009 Silas Sewell - 0.6.4-1 - Update to latest release - Add documentation sub-package * Mon Jul 27 2009 Silas Sewell - 0.6.3-2 - Apply patch for rawhide kernel * Sat Jul 25 2009 Silas Sewell - 0.6.3-1 - Initial package