%global date 20240603
%global commit 80c15a419bdf953083e95e3a4ffcb0d0ec24576b
%global shortcommit %(c=%{commit}; echo ${c:0:7})

# libkrun tests require access to "/dev/kvm", which is usually not be available
# on build sandboxes.
%bcond_with check

%global forgeurl https://github.com/containers/libkrun
%global _version 1.9.1

Name:           libkrun
Version:        %{_version}.asahikrun^%{date}git%{shortcommit}
Release:        1%{?dist}
Summary:        Dynamic library providing Virtualization-based process isolation capabilities

License:        Apache-2.0
URL:            https://github.com/containers/libkrun
Source:         %{forgeurl}/archive/%{commit}/%{name}-%{commit}.tar.gz
# Remove references to unused deps so we don't need to install them for
# building this package
Patch0:         libkrun-remove-unused-deps.diff
# For aarch64, remove references to SEV deps which are only available on x86_64
Patch1:         libkrun-remove-sev-deps.diff

# libkrun only supports x86_64 and aarch64
ExclusiveArch:  x86_64 aarch64

# While this project is composed mostly of Rust code, this is not a
# conventional Rust crate. The root of the project is a workspace, there's a C
# file that also needs to be compiled, and the resulting binary a dynamic
# library providing a C-compatible ABI.
#
# As a result, we can't fully rely on rust-packaging for managing this package.
# Instead, we use some of its tasks (cargo_prep and cargo_test) and combine
# them with using the Makefile provided by the project. We also need to manage
# BuildRequires manually, as rust-packaging gets confused trying to generate
# them dynamically.
BuildRequires:  rust-packaging >= 21
BuildRequires:  glibc-static
BuildRequires:  patchelf
BuildRequires:  binutils
BuildRequires:  libkrunfw-devel >= 4.1.0~main^20240302git7ec4442
%ifarch x86_64
BuildRequires:  libkrunfw-sev-devel >= 4.1.0~main^20240302git7ec4442
%endif
%ifarch aarch64
BuildRequires:  libfdt-devel
%endif

# rutabaga_gfx dependencies
BuildRequires:  pkgconfig(epoxy)
BuildRequires:  pkgconfig(libdrm)
#BuildRequires:  pkgconfig(virglrenderer)
BuildRequires:  virglrenderer-devel >= 1.0.1.asahikrun

BuildRequires:  crate(libc/default) >= 0.2.39
BuildRequires:  (crate(vm-memory/backend-mmap) >= 0.14.0 with crate(vm-memory/backend-mmap) < 0.15.0~)
BuildRequires:  (crate(vm-memory/default) >= 0.14.0 with crate(vm-memory/default) < 0.15.0~)
BuildRequires:  crate(kvm-bindings/default) >= 0.7.0
BuildRequires:  crate(kvm-bindings/fam-wrappers) >= 0.7.0
BuildRequires:  crate(kvm-ioctls/default) >= 0.16.0
BuildRequires:  crate(vmm-sys-util/default) >= 0.12.0
BuildRequires:  crate(vm-fdt/default) >= 0.2.0
BuildRequires:  (crate(virtio-bindings/default) >= 0.2.0 with crate(virtio-bindings/default) < 0.3.0~)
BuildRequires:  (crate(bitflags/default) >= 1.2.0 with crate(bitflags/default) < 2.0.0~)
BuildRequires:  (crate(env_logger/default) >= 0.9.0 with crate(env_logger/default) < 0.10.0~)
BuildRequires:  (crate(log/default) >= 0.4.0 with crate(log/default) < 0.5.0~)
BuildRequires:  (crate(nix/default) >= 0.24.1 with crate(nix/default) < 0.25.0~)
BuildRequires:  (crate(rand/default) >= 0.8.5 with crate(rand/default) < 0.9.0~)
BuildRequires:  (crate(once_cell/default) >= 1.4.1 with crate(once_cell/default) < 2.0.0~)
BuildRequires:  (crate(crossbeam-channel/default) >= 0.5.0 with crate(crossbeam-channel/default) < 0.6.0~)

%ifarch x86_64
# SEV variant dependencies
BuildRequires:  (crate(codicon/default) >= 3.0.0 with crate(codicon/default) < 4.0.0~)
BuildRequires:  (crate(curl/default) >= 0.4.0 with crate(curl/default) < 0.5.0~)
BuildRequires:  (crate(kbs-types/default) >= 0.5.0 with crate(kbs-types/default) < 0.6.0~)
BuildRequires:  (crate(kbs-types/tee-sev) >= 0.5.0 with crate(kbs-types/tee-sev) < 0.6.0~)
BuildRequires:  (crate(kbs-types/tee-snp) >= 0.5.0 with crate(kbs-types/tee-snp) < 0.6.0~)
BuildRequires:  (crate(procfs/default) >= 0.12.0 with crate(procfs/default) < 0.13.0~)
BuildRequires:  (crate(sev/default) >= 1.0.0 with crate(sev/default) < 2.0.0~)
BuildRequires:  (crate(sev/openssl) >= 1.0.0 with crate(sev/openssl) < 2.0.0~)
BuildRequires:  (crate(serde/default) >= 1.0.0 with crate(serde/default) < 2.0.0~)
BuildRequires:  (crate(serde/derive) >= 1.0.0 with crate(serde/derive) < 2.0.0~)
BuildRequires:  (crate(serde_json/default) >= 1.0.0 with crate(serde_json/default) < 2.0.0~)
%endif

# gpu feature dependencies
BuildRequires:  (crate(thiserror/default) >= 1.0.23 with crate(thiserror/default) < 2.0.0~)
BuildRequires:  (crate(zerocopy/default) >= 0.6.3 with crate(zerocopy/default) < 0.7.0~)
BuildRequires:  (crate(zerocopy-derive/default) >= 0.6.3 with crate(zerocopy-derive/default) < 0.7.0~)

# rutabaga_gfx dependencies
BuildRequires:  (crate(cfg-if/default) >= 1.0.0 with crate(cfg-if/default) < 2.0.0~)
BuildRequires:  (crate(remain/default) >= 0.2.0 with crate(remain/default) < 0.3.0~)
BuildRequires:  (crate(nix/default) >= 0.26.1 with crate(nix/default) < 0.27.0~)
BuildRequires:  (crate(pkg-config/default) >= 0.3.0 with crate(pkg-config/default) < 0.4.0~)
BuildRequires:  (crate(anyhow/default) >= 1.0.57 with crate(anyhow/default) < 2.0.0~)

# snd feature dependencies
BuildRequires:  (crate(pipewire/default) >= 0.8.0 with crate(pipewire/default) < 0.9.0~)

# upstream uses a patched version of rutabaga_gfx
Provides:       bundled(crate(rutabaga_gfx/default)) = 0.1.2
Provides:       bundled(crate(rutabaga_gfx/virgl_renderer)) = 0.1.2
Provides:       bundled(crate(rutabaga_gfx/virgl_renderer_next)) = 0.1.2

%description
%{summary}.

%package devel
Summary: Header files and libraries for libkrun development
Requires:       %{name}%{?_isa} = %{version}-%{release}

%description devel
The libkrun-devel package contains the libraries and headers needed to
develop programs that use libkrun Virtualization-based process isolation
capabilities.

# SEV is a feature provided by AMD EPYC processors, so only it's only
# available on x86_64.
%ifarch x86_64
%package sev
Summary: Dynamic library providing Virtualization-based process isolation capabilities (SEV variant)
BuildRequires:  libkrunfw-sev-devel >= 3.6.0

%description sev
Dynamic library providing Virtualization-based process isolation
capabilities, with the ability to use AMD SEV to create a microVM-based
Trusted Execution Environment (TEE).

%package sev-devel
Summary: Header files and libraries for libkrun development
Requires:       %{name}-devel%{?_isa} = %{version}-%{release}
Requires:       %{name}-sev%{?_isa} = %{version}-%{release}

%description sev-devel
The libkrun-sev-devel package contains the libraries and headers needed to
develop programs that use libkrun-sev Virtualization-based process isolation
capabilities.
%endif

%prep
%setup -q -n %{name}-%{commit}
%patch -P 0 -p1
%ifnarch x86_64
%patch -P 1 -p1
%endif
%cargo_prep

%build
%make_build init/init
%make_build PREFIX=%{_prefix} libkrun.pc
%cargo_build -f blk,gpu,net,snd
patchelf --set-soname libkrun.so.1 --output target/release/libkrun.so.%{_version} target/release/libkrun.so
%ifarch x86_64
    rm init/init
    %make_build SEV=1 init/init
    %cargo_build -f amd-sev,blk,gpu,net,snd
    mv target/release/libkrun.so target/release/libkrun-sev.so
    patchelf --set-soname libkrun-sev.so.1 --output target/release/libkrun-sev.so.%{_version} target/release/libkrun-sev.so
%endif

%install
%make_install PREFIX=%{_prefix}
%ifarch x86_64
    %make_install SEV=1 PREFIX=%{_prefix}
%endif

%files
%license LICENSE
%doc README.md
%{_libdir}/libkrun.so.%{_version}
%{_libdir}/libkrun.so.1

%files devel
%{_libdir}/libkrun.so
%{_libdir}/pkgconfig/libkrun.pc
%{_includedir}/libkrun.h

%ifarch x86_64
%files sev
%license LICENSE
%doc README.md
%{_libdir}/libkrun-sev.so.%{_version}
%{_libdir}/libkrun-sev.so.1

%files sev-devel
%{_libdir}/libkrun-sev.so
%endif

%if %{with check}
%check
%cargo_test
%endif

%changelog
* Fri May 31 2024 Teoh Han Hui <teohhanhui@gmail.com> - 1.9.0-1
- Update to version 1.9.0
- Enable blk,gpu,net,snd features
- Fix prefix in libkrun.pc

* Thu Jan 25 2024 Fedora Release Engineering <releng@fedoraproject.org> - 1.7.2-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild

* Sun Jan 21 2024 Fedora Release Engineering <releng@fedoraproject.org> - 1.7.2-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild

* Thu Jan 11 2024 Sergio Lopez <slp@redhat.com> - 1.7.2-2
- Update versions of rust-vmm dependencies

* Sun Dec 24 2023 Sergio Lopez <slp@redhat.com> - 1.7.2-1
- Update to version 1.7.2

* Fri Dec 01 2023 Fabio Valentini <decathorpe@gmail.com> - 1.5.0-7
- Rebuild for openssl crate >= v0.10.60 (RUSTSEC-2023-0044, RUSTSEC-2023-0072)

* Tue Sep 19 2023 Fabio Valentini <decathorpe@gmail.com> - 1.5.0-6
- Rebuild for vm-memory v0.12.2 / CVE-2023-41051.

* Thu Jul 20 2023 Fedora Release Engineering <releng@fedoraproject.org> - 1.5.0-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild

* Wed Jul 19 2023 Sergio Lopez <slp@redhat.com> - 1.5.0-4
- Update license specification to conform SPDX format

* Wed Jul 19 2023 Sergio Lopez <slp@redhat.com> - 1.5.0-3
- Update vm-memory requirement to version 0.12.0
- Update kvm-ioctls requirement to version 0.14.0
- Add a temporary patch to accomodate an API change in kvm-ioctls

* Wed May 03 2023 Fabio Valentini <decathorpe@gmail.com> - 1.5.0-2
- Rebuild for openssl crate >= v0.10.48 (RUSTSEC-2023-{0022,0023,0024})

* Thu Feb 09 2023 Sergio Lopez <slp@redhat.com> - 1.5.0-1
- Update to version 1.5.0
- Update vm-memory, kvm-bindings, kvm-ioctls, vmm-sys-utils and sev
  dependencies
- Add a patch to update and relax vm-memory dependency

* Thu Jan 19 2023 Fedora Release Engineering <releng@fedoraproject.org> - 1.4.8-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild

* Tue Nov  8 2022 Sergio Lopez <slp@redhat.com> - 1.4.8-1
- Update to upstream version 1.4.8
- Add crossbeam-channel to the list of dependencies
- Update libkrun-remove-sev-deps.diff patch

* Fri Aug 26 2022 Cole Robinson <crobinso@redhat.com> - 1.4.2-2
- Allow building with rust-sev-0.3.0

* Wed Aug 17 2022 Sergio Lopez <slp@redhat.com> - 1.4.2-1
- Update to upstream version 1.4.2
- Add the libkrun-sev and libkrun-sev-devel subpackages with the SEV variant of
  the library.

* Thu Jul 21 2022 Fedora Release Engineering <releng@fedoraproject.org> - 1.2.2-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild

* Tue Jun 21 2022 Sergio Lopez <slp@redhat.com> - 1.2.2-1
- Initial package