rpms/bubblewrap
7
0
Fork 0
Code Issues Pull Requests Releases Activity

Rebase to 0.6.3

Browse Source 
Resolves: RHEL-56797
This commit is contained in:
Joseph Marrero Corchado 2024-08-30 17:54:22 -04:00
parent 11b68f22e1
commit 04eed0d6d9
3 changed files with 24 additions and 21 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
.gitignore vendored
View File

@ -15,3 +15,4 @@
/bubblewrap-0.3.3.tar.xz /bubblewrap-0.3.3.tar.xz
/bubblewrap-0.4.0.tar.xz /bubblewrap-0.4.0.tar.xz
/bubblewrap-0.4.1.tar.xz /bubblewrap-0.4.1.tar.xz
/bubblewrap-0.6.3.tar.xz

42
bubblewrap.spec
View File

@ -1,23 +1,18 @@
Name: bubblewrap Name: bubblewrap
Version: 0.4.1 Version: 0.6.3
Release: 8%{?dist} Release: 1%{?dist}
Summary: Core execution tool for unprivileged containers Summary: Core execution tool for unprivileged containers
License: LGPLv2+ License: LGPL-2.0-or-later
#VCS: git:https://github.com/projectatomic/bubblewrap URL: https://github.com/containers/bubblewrap/
URL: https://github.com/projectatomic/bubblewrap Source0: https://github.com/containers/bubblewrap/releases/download/v%{version}/bubblewrap-%{version}.tar.xz
Source0: https://github.com/projectatomic/bubblewrap/releases/download/v%{version}/bubblewrap-%{version}.tar.xz
Patch0: 0001-Avoid-memory-leak-if-args-is-specified-multiple-time.patch
Patch1: 0001-Accept-EROFS-for-access-check-of-proc-entries.patch
Patch2: 0001-Add-bind-fd-and-ro-bind-fd-to-let-you-bind-a-O_PATH-.patch
BuildRequires: autoconf automake libtool
BuildRequires: gcc BuildRequires: gcc
BuildRequires: libcap-devel
BuildRequires: pkgconfig(libselinux)
BuildRequires: libxslt
BuildRequires: docbook-style-xsl BuildRequires: docbook-style-xsl
BuildRequires: make BuildRequires: meson
BuildRequires: pkgconfig(libcap)
BuildRequires: pkgconfig(libselinux)
BuildRequires: /usr/bin/xsltproc
%description %description
Bubblewrap (/usr/bin/bwrap) is a core execution engine for unprivileged Bubblewrap (/usr/bin/bwrap) is a core execution engine for unprivileged
@ -28,27 +23,34 @@ user namespaces.
%autosetup -p1 %autosetup -p1
%build %build
if ! test -x configure; then NOCONFIGURE=1 ./autogen.sh; fi %meson -Dman=enabled
%configure --disable-silent-rules --with-priv-mode=none %meson_build
%make_build
%install %install
%make_install INSTALL="install -p -c" %meson_install
find %{buildroot} -name '*.la' -delete -print
%files %files
%license COPYING %license COPYING
%doc README.md
%dir %{_datadir}/bash-completion %dir %{_datadir}/bash-completion
%dir %{_datadir}/bash-completion/completions %dir %{_datadir}/bash-completion/completions
%{_datadir}/bash-completion/completions/bwrap %{_datadir}/bash-completion/completions/bwrap
%dir %{_datadir}/zsh
%dir %{_datadir}/zsh/site-functions
%{_datadir}/zsh/site-functions/_bwrap
%if (0%{?rhel} != 0 && 0%{?rhel} <= 7) %if (0%{?rhel} != 0 && 0%{?rhel} <= 7)
%attr(0755,root,root) %caps(cap_sys_admin,cap_net_admin,cap_sys_chroot,cap_setuid,cap_setgid=ep) %{_bindir}/bwrap %attr(0755,root,root) %caps(cap_sys_admin,cap_net_admin,cap_sys_chroot,cap_setuid,cap_setgid=ep) %{_bindir}/bwrap
%else %else
%{_bindir}/bwrap %{_bindir}/bwrap
%endif %endif
%{_mandir}/man1/* %{_mandir}/man1/bwrap.1*
%changelog %changelog
* Fri Aug 30 2024 Joseph Marrero <jmarrero@redhat.com> - 0.6.3-1
- Rebase to 0.6.3 which is supported upstream
This release also includes the fix for CVE-2024-42472
Fixes: #RHEL-56797
* Fri Aug 30 2024 Kalev Lember <klember@redhat.com> - 0.4.1-8 * Fri Aug 30 2024 Kalev Lember <klember@redhat.com> - 0.4.1-8
- Backport upstream fix to help address CVE-2024-42472 in flatpak - Backport upstream fix to help address CVE-2024-42472 in flatpak

2
sources
View File

@ -1 +1 @@
SHA512 (bubblewrap-0.4.1.tar.xz) = 0ff46dc0fda2d0cffbb36cc52ff43951b30cbd835a42cc56806acbbbd827796bfadbb1cfafc84d6b47a72c031ca44abe1c377acc0cc25fe3b33e854f5f687d35 SHA512 (bubblewrap-0.6.3.tar.xz) = 88a06ff7025fdecba93c3084d78429f30d968fe6d2b26e9280c56781411b609a033eb1213b1180cf774adc41a0b8ecd427d656892144f4c7738c334c7d0e393e