commit: 08bd18e22f5f1c864831770293596d0dcef36594 Author: Gerhard Bräunlich <g.braeunlich <AT> disroot <DOT> org> AuthorDate: Tue Feb 19 17:06:22 2019 +0000 Commit: Zac Medico <zmedico <AT> gentoo <DOT> org> CommitDate: Tue Feb 19 19:43:04 2019 +0000 URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=08bd18e2
app-emulation/libpod: Add rootless useflag Closes: https://github.com/gentoo/gentoo/pull/11107 Package-Manager: Portage-2.3.51, Repoman-2.3.11 Signed-off-by: Gerhard Bräunlich <g.braeunlich <AT> disroot.org> Signed-off-by: Zac Medico <zmedico <AT> gentoo.org> app-emulation/libpod/libpod-1.0.1-r1.ebuild | 139 ++++++++++++++++++++++++++++ app-emulation/libpod/metadata.xml | 3 + 2 files changed, 142 insertions(+) diff --git a/app-emulation/libpod/libpod-1.0.1-r1.ebuild b/app-emulation/libpod/libpod-1.0.1-r1.ebuild new file mode 100644 index 00000000000..a02406b1ca8 --- /dev/null +++ b/app-emulation/libpod/libpod-1.0.1-r1.ebuild @@ -0,0 +1,139 @@ +# Copyright 1999-2019 Gentoo Authors +# Distributed under the terms of the GNU General Public License v2 + +EAPI=6 + +EGIT_COMMIT="2c74edd0ac6509d6e533cb4e012e3e3f9e03434d" +EGO_PN="github.com/containers/${PN}" + +inherit golang-vcs-snapshot systemd + +DESCRIPTION="Library and podman tool for running OCI-based containers in Pods" +HOMEPAGE="https://github.com/containers/libpod/"; +SRC_URI="https://github.com/containers/libpod/archive/v${PV}.tar.gz -> ${P}.tar.gz" +LICENSE="Apache-2.0" +SLOT="0" + +KEYWORDS="~amd64" +IUSE="apparmor btrfs ostree +rootless selinux" +REQUIRED_USE="!selinux? ( !ostree )" +RESTRICT="test" + +COMMON_DEPEND=" + app-crypt/gpgme:= + >=app-emulation/cri-o-1.13.0 + >=app-emulation/runc-1.0.0_rc6 + dev-libs/libassuan:= + dev-libs/libgpg-error:= + sys-fs/lvm2 + sys-libs/libseccomp:= + + apparmor? ( sys-libs/libapparmor ) + btrfs? ( sys-fs/btrfs-progs ) + ostree? ( + dev-libs/glib:= + dev-util/ostree:= + ) + rootless? ( app-emulation/slirp4netns ) + selinux? ( sys-libs/libselinux:= ) +" +DEPEND=" + ${COMMON_DEPEND} + dev-go/go-md2man" +RDEPEND="${COMMON_DEPEND}" +S="${WORKDIR}/${P}/src/${EGO_PN}" + +src_prepare() { + default + + # Disable installation of python modules here, since those are + # installed by separate ebuilds. + sed -e '/^GIT_.*/d' \ + -e 's/$(GO) build/$(GO) build -v -work -x/' \ + -e 's/^\(install:.*\) install\.python$/\1/' \ + -i Makefile || die +} + +src_compile() { + [[ -f hack/apparmor_tag.sh ]] || die + if use apparmor; then + echo -e "#!/bin/sh\necho apparmor" > hack/apparmor_tag.sh || die + else + echo -e "#!/bin/sh\ntrue" > hack/apparmor_tag.sh || die + fi + + [[ -f hack/btrfs_installed_tag.sh ]] || die + if use btrfs; then + echo -e "#!/bin/sh\ntrue" > hack/btrfs_installed_tag.sh || die + else + echo -e "#!/bin/sh\necho exclude_graphdriver_btrfs" > \ + hack/btrfs_installed_tag.sh || die + fi + + [[ -f hack/ostree_tag.sh ]] || die + if use ostree; then + echo -e "#!/bin/sh\necho ostree" > hack/ostree_tag.sh || die + else + echo -e "#!/bin/sh\necho containers_image_ostree_stub" > hack/ostree_tag.sh || die + fi + + [[ -f hack/selinux_tag.sh ]] || die + if use selinux; then + echo -e "#!/bin/sh\necho selinux" > hack/selinux_tag.sh || die + else + echo -e "#!/bin/sh\ntrue" > hack/selinux_tag.sh || die + fi + + env -u LDFLAGS GOPATH="${WORKDIR}/${P}" GOBIN="${WORKDIR}/${P}/bin" \ + emake all \ + GIT_BRANCH=master \ + GIT_BRANCH_CLEAN=master \ + COMMIT_NO="${EGIT_COMMIT}" \ + GIT_COMMIT="${EGIT_COMMIT}" +} + +src_install() { + emake DESTDIR="${D}" PREFIX="${D}${EPREFIX}/usr" install + + insinto /etc/containers + newins test/registries.conf registries.conf.example + newins test/policy.json policy.json.example + + newinitd "${FILESDIR}"/podman.initd podman + + systemd_dounit "${S}"/contrib/varlink/*.service "${S}"/contrib/varlink/*.socket + + insinto /etc/logrotate.d + newins "${FILESDIR}/podman.logrotated" podman + + keepdir /var/lib/containers +} + +pkg_preinst() { + LIBPOD_ROOTLESS_UPGRADE=false + if use rootless; then + has_version 'app-emulation/libpod[rootless]' || LIBPOD_ROOTLESS_UPGRADE=true + fi +} + +pkg_postinst() { + local want_newline=false + if [[ ! ( -e ${EROOT%/*}/etc/containers/policy.json && -e ${EROOT%/*}/etc/containers/registries.conf ) ]]; then + elog "You need to create the following config files:" + elog "/etc/containers/registries.conf" + elog "/etc/containers/policy.json" + elog "To copy over default examples, use:" + elog "cp /etc/containers/registries.conf{.example,}" + elog "cp /etc/containers/policy.json{.example,}" + want_newline=true + fi + if [[ ${LIBPOD_ROOTLESS_UPGRADE} == true ]] ; then + ${want_newline} && elog "" + elog "For rootless operation, you need to configure subuid/subgid" + elog "for user running podman. In case subuid/subgid has only been" + elog "configured for root, run:" + elog "usermod --add-subuids 1065536-1131071 <user>" + elog "usermod --add-subgids 1065536-1131071 <user>" + want_newline=true + fi +} diff --git a/app-emulation/libpod/metadata.xml b/app-emulation/libpod/metadata.xml index 1c5655b32d7..b488c7d9282 100644 --- a/app-emulation/libpod/metadata.xml +++ b/app-emulation/libpod/metadata.xml @@ -22,6 +22,9 @@ <flag name="ostree"> Enables dependencies for handling of OSTree images. </flag> + <flag name="rootless"> + Enables dependencies for running in rootless mode. + </flag> </use> <upstream> <remote-id type="github">containers/libpod</remote-id>
