2016-06-15 12:03:45 +02:00
|
|
|
#
|
|
|
|
|
# spec file for package flatpak
|
|
|
|
|
#
|
2024-03-08 08:51:51 +01:00
|
|
|
# Copyright (c) 2024 SUSE LLC
|
2016-06-15 12:03:45 +02:00
|
|
|
#
|
|
|
|
|
# All modifications and additions to the file contributed by third parties
|
|
|
|
|
# remain the property of their copyright owners, unless otherwise agreed
|
|
|
|
|
# upon. The license for this file, and modifications and additions to the
|
|
|
|
|
# file, is the same license as for the pristine package itself (unless the
|
|
|
|
|
# license for the pristine package is not an Open Source License, in which
|
|
|
|
|
# case the license is the MIT License). An "Open Source License" is a
|
|
|
|
|
# license that conforms to the Open Source Definition (Version 1.9)
|
|
|
|
|
# published by the Open Source Initiative.
|
|
|
|
|
|
2018-12-18 09:28:51 +01:00
|
|
|
# Please submit bugfixes or comments via https://bugs.opensuse.org/
|
2016-06-15 12:03:45 +02:00
|
|
|
#
|
|
|
|
|
|
2016-11-04 13:56:03 +01:00
|
|
|
|
2024-03-08 08:51:51 +01:00
|
|
|
%global selinuxtype targeted
|
2021-01-26 11:47:25 +01:00
|
|
|
%define libname libflatpak0
|
Accepting request 1126468 from GNOME:Next
- Update to version 1.15.6:
+ In distributions that compile Flatpak to use a separate
bubblewrap (bwrap) executable, version 0.8.0 is now required.
+ Enabling the optional Wayland security context feature requires
libwayland-client, wayland-scanner >= 1.15 and
wayland-protocols >= 1.32.
+ Add --device=input, for access to evdev devices in /dev/input
+ Update bundled copy of bubblewrap to version 0.8.0, and rely on
its features:
+ Improve error message if seccomp is disabled in kernel config
+ Security hardening: set user namespace limit to 0, to prevent
creation of nested user namespaces in a more robust way
+ For subsandboxes started by flatpak-portal, inherit
environment variables from the flatpak run that started the
original instance rather than from flatpak-portal, fixing
behaviour of FLATPAK_GL_DRIVERS and similar features
+ Stop http transfers if a download in progress becomes very slow
+ Make it easier to configure extra languages, by picking them up
from AccountsService if configured there
+ Add new flatpak_transaction_add_rebase_and_uninstall() API,
allowing end-of-life apps to be replaced by their intended
replacement more reliably
+ Create a private Wayland socket with the "security context"
extension if available, allowing the compositor to identify
connections from sandboxed apps as belonging to the sandbox
+ Update libglnx to 2023-08-29
+ Use features of newer GLib versions if available
+ Turn off system-level crash reporting infrastructure during
some unit tests that involve intentional assertion failures
+ Add anchors to link to sections of flatpak-metadata
documentation
+ Bug fixes:
- Avoid warnings processing symbolic links with GLib >= 2.77.0,
and with GLib 2.76.0 (GLib 2.76.1 or later silences these
warnings)
- Bypass page cache for backend requests in revokefs, fixing
installation errors with libostree 2023.4
- Show AppStream metadata in flatpak remote-info as intended
- Don't let Flatpak apps inherit VK_DRIVER_FILES or
VK_ICD_FILENAMES from the host system, which would be wrong
for the sandbox
- Fix build failure with prereleases of libappstream 0.17.x
- Forward-compatibility with libappstream 1.0
- Fix installation with Meson if configured with
-Dauto_sideloading=true
- Fix a memory leak
- Fix compiler warnings
- Make the tests fail more comprehensibly if a required tool is
missing
- Clean up /var/tmp/flatpak-cache-* directories on boot
- Don't force GIO_USE_VFS=local for programs launched via
flatpak-spawn
- Clarify documentation for D-Bus name ownership
+ Internal changes:
- Split up large source files into smaller modules, reducing
internal circular dependencies
- Re-synchronize code backported from GLib with the version in
GLib
- Clarify documentation for D-Bus name ownership
- Make the flags used to apply "extra data" clearer
- Use glnx_opendirat() where possible
+ Updated translations.
- Add pkgconfig(wayland-client), pkgconfig(wayland-scanner) and
pkgconfig(wayland-protocols) BuildRequires and pass
with-wayland-security-context=yes to configure: Enable the
optional Wayland security context.
OBS-URL: https://build.opensuse.org/request/show/1126468
OBS-URL: https://build.opensuse.org/package/show/GNOME:Factory/flatpak?expand=0&rev=187
2023-11-17 16:47:01 +01:00
|
|
|
%define bubblewrap_version 0.8.0
|
2023-01-13 10:05:23 +01:00
|
|
|
%define ostree_version 2020.8
|
|
|
|
|
%define xdg_dbus_proxy_version 0.1.0
|
|
|
|
|
|
2019-07-03 14:30:27 +02:00
|
|
|
# dbus only used config files in /etc until 1.9.18
|
|
|
|
|
%if %{pkg_vcmp dbus-1 < 1.9.18}
|
|
|
|
|
%define _dbusconfigdir %{_sysconfdir}/dbus-1/system.d
|
|
|
|
|
%else
|
|
|
|
|
%define _dbusconfigdir %{_datadir}/dbus-1/system.d
|
|
|
|
|
%endif
|
|
|
|
|
# systemd only supports environment generators since version 233
|
|
|
|
|
%if %{pkg_vcmp systemd < 233}
|
|
|
|
|
%define support_environment_generators 0
|
|
|
|
|
%else
|
|
|
|
|
%define support_environment_generators 1
|
|
|
|
|
%endif
|
2016-06-15 12:03:45 +02:00
|
|
|
Name: flatpak
|
2024-04-19 13:09:15 +02:00
|
|
|
Version: 1.15.8
|
2016-06-15 12:03:45 +02:00
|
|
|
Release: 0
|
2017-09-08 22:32:45 +02:00
|
|
|
Summary: OSTree based application bundles management
|
2018-03-05 17:14:34 +01:00
|
|
|
License: LGPL-2.1-or-later
|
2016-06-15 12:03:45 +02:00
|
|
|
Group: System/Packages
|
2018-03-05 17:14:51 +01:00
|
|
|
URL: https://flatpak.github.io/
|
2021-01-26 11:47:25 +01:00
|
|
|
Source0: https://github.com/flatpak/flatpak/releases/download/%{version}/%{name}-%{version}.tar.xz
|
2022-07-04 11:14:54 +02:00
|
|
|
Source1: update-system-flatpaks.service
|
|
|
|
|
Source2: update-system-flatpaks.timer
|
2023-09-12 04:21:23 +02:00
|
|
|
Source3: update-user-flatpaks.service
|
|
|
|
|
Source4: update-user-flatpaks.timer
|
|
|
|
|
Source5: https://flathub.org/repo/flathub.flatpakrepo
|
2023-02-28 10:04:25 +01:00
|
|
|
# PATCH-FEATURE-OPENSUSE polkit_rules_usability.patch -- Make the rules comply with openSUSE expectations
|
2018-07-28 12:59:58 +02:00
|
|
|
Patch0: polkit_rules_usability.patch
|
2024-04-19 13:09:15 +02:00
|
|
|
# PATCH-FIX-UPSTREAM libglnx.patch https://gitlab.gnome.org/GNOME/libglnx/-/merge_requests/57
|
|
|
|
|
Patch1: libglnx.patch
|
2023-02-28 10:04:25 +01:00
|
|
|
|
2018-05-17 16:41:22 +02:00
|
|
|
BuildRequires: bison
|
2023-01-13 10:05:23 +01:00
|
|
|
BuildRequires: bubblewrap >= %{bubblewrap_version}
|
2024-04-19 13:09:15 +02:00
|
|
|
BuildRequires: cmake
|
2016-06-15 12:03:45 +02:00
|
|
|
BuildRequires: docbook-xsl-stylesheets
|
2023-09-12 04:21:23 +02:00
|
|
|
BuildRequires: gtk-doc
|
2016-06-15 12:03:45 +02:00
|
|
|
BuildRequires: intltool >= 0.35.0
|
|
|
|
|
BuildRequires: libcap-devel
|
2020-07-20 10:48:34 +02:00
|
|
|
BuildRequires: libgpg-error-devel
|
2019-07-03 14:30:27 +02:00
|
|
|
BuildRequires: libgpgme-devel >= 1.1.8
|
2023-09-12 04:21:23 +02:00
|
|
|
BuildRequires: libtool
|
2024-04-19 13:09:15 +02:00
|
|
|
BuildRequires: malcontent-devel
|
|
|
|
|
BuildRequires: meson
|
2016-06-15 12:03:45 +02:00
|
|
|
BuildRequires: pkgconfig
|
2022-08-04 08:49:07 +02:00
|
|
|
BuildRequires: python3-pyparsing
|
2024-03-08 08:51:51 +01:00
|
|
|
BuildRequires: selinux-policy-devel
|
2024-04-19 13:09:15 +02:00
|
|
|
BuildRequires: socat
|
2022-07-04 11:14:54 +02:00
|
|
|
BuildRequires: systemd-rpm-macros
|
2019-07-09 08:29:01 +02:00
|
|
|
BuildRequires: sysuser-tools
|
2023-01-13 10:05:23 +01:00
|
|
|
BuildRequires: xdg-dbus-proxy >= %{xdg_dbus_proxy_version}
|
2023-09-12 04:21:23 +02:00
|
|
|
BuildRequires: xmlto
|
2016-06-15 12:03:45 +02:00
|
|
|
BuildRequires: xsltproc
|
2022-08-31 11:40:50 +02:00
|
|
|
BuildRequires: pkgconfig(appstream) >= 0.12.0
|
2020-07-20 10:48:34 +02:00
|
|
|
BuildRequires: pkgconfig(dconf) >= 0.26
|
2022-08-31 11:40:50 +02:00
|
|
|
BuildRequires: pkgconfig(fuse3) >= 3.1.1
|
|
|
|
|
BuildRequires: pkgconfig(gdk-pixbuf-2.0)
|
2016-06-15 12:03:45 +02:00
|
|
|
BuildRequires: pkgconfig(gio-2.0)
|
|
|
|
|
BuildRequires: pkgconfig(gio-unix-2.0)
|
2022-08-31 11:40:50 +02:00
|
|
|
BuildRequires: pkgconfig(glib-2.0) >= 2.46
|
2016-06-15 12:03:45 +02:00
|
|
|
BuildRequires: pkgconfig(gobject-introspection-1.0) >= 1.40.0
|
|
|
|
|
BuildRequires: pkgconfig(gobject-introspection-no-export-1.0) >= 1.40.0
|
|
|
|
|
BuildRequires: pkgconfig(json-glib-1.0)
|
2016-09-08 23:25:03 +02:00
|
|
|
BuildRequires: pkgconfig(libarchive) >= 2.8.0
|
2022-08-31 11:40:50 +02:00
|
|
|
BuildRequires: pkgconfig(libcurl) >= 7.29.0
|
2016-09-08 23:25:03 +02:00
|
|
|
BuildRequires: pkgconfig(libelf) >= 0.8.12
|
2016-06-15 12:03:45 +02:00
|
|
|
BuildRequires: pkgconfig(libseccomp)
|
2019-11-26 10:25:29 +01:00
|
|
|
BuildRequires: pkgconfig(libsystemd)
|
2022-09-13 09:32:39 +02:00
|
|
|
BuildRequires: pkgconfig(libxml-2.0) >= 2.4
|
2020-07-20 10:48:34 +02:00
|
|
|
BuildRequires: pkgconfig(libzstd) >= 0.8.1
|
2023-01-13 10:05:23 +01:00
|
|
|
BuildRequires: pkgconfig(ostree-1) >= %{ostree_version}
|
2016-06-15 12:03:45 +02:00
|
|
|
BuildRequires: pkgconfig(polkit-gobject-1)
|
2019-05-14 10:55:05 +02:00
|
|
|
BuildRequires: pkgconfig(systemd)
|
Accepting request 1126468 from GNOME:Next
- Update to version 1.15.6:
+ In distributions that compile Flatpak to use a separate
bubblewrap (bwrap) executable, version 0.8.0 is now required.
+ Enabling the optional Wayland security context feature requires
libwayland-client, wayland-scanner >= 1.15 and
wayland-protocols >= 1.32.
+ Add --device=input, for access to evdev devices in /dev/input
+ Update bundled copy of bubblewrap to version 0.8.0, and rely on
its features:
+ Improve error message if seccomp is disabled in kernel config
+ Security hardening: set user namespace limit to 0, to prevent
creation of nested user namespaces in a more robust way
+ For subsandboxes started by flatpak-portal, inherit
environment variables from the flatpak run that started the
original instance rather than from flatpak-portal, fixing
behaviour of FLATPAK_GL_DRIVERS and similar features
+ Stop http transfers if a download in progress becomes very slow
+ Make it easier to configure extra languages, by picking them up
from AccountsService if configured there
+ Add new flatpak_transaction_add_rebase_and_uninstall() API,
allowing end-of-life apps to be replaced by their intended
replacement more reliably
+ Create a private Wayland socket with the "security context"
extension if available, allowing the compositor to identify
connections from sandboxed apps as belonging to the sandbox
+ Update libglnx to 2023-08-29
+ Use features of newer GLib versions if available
+ Turn off system-level crash reporting infrastructure during
some unit tests that involve intentional assertion failures
+ Add anchors to link to sections of flatpak-metadata
documentation
+ Bug fixes:
- Avoid warnings processing symbolic links with GLib >= 2.77.0,
and with GLib 2.76.0 (GLib 2.76.1 or later silences these
warnings)
- Bypass page cache for backend requests in revokefs, fixing
installation errors with libostree 2023.4
- Show AppStream metadata in flatpak remote-info as intended
- Don't let Flatpak apps inherit VK_DRIVER_FILES or
VK_ICD_FILENAMES from the host system, which would be wrong
for the sandbox
- Fix build failure with prereleases of libappstream 0.17.x
- Forward-compatibility with libappstream 1.0
- Fix installation with Meson if configured with
-Dauto_sideloading=true
- Fix a memory leak
- Fix compiler warnings
- Make the tests fail more comprehensibly if a required tool is
missing
- Clean up /var/tmp/flatpak-cache-* directories on boot
- Don't force GIO_USE_VFS=local for programs launched via
flatpak-spawn
- Clarify documentation for D-Bus name ownership
+ Internal changes:
- Split up large source files into smaller modules, reducing
internal circular dependencies
- Re-synchronize code backported from GLib with the version in
GLib
- Clarify documentation for D-Bus name ownership
- Make the flags used to apply "extra data" clearer
- Use glnx_opendirat() where possible
+ Updated translations.
- Add pkgconfig(wayland-client), pkgconfig(wayland-scanner) and
pkgconfig(wayland-protocols) BuildRequires and pass
with-wayland-security-context=yes to configure: Enable the
optional Wayland security context.
OBS-URL: https://build.opensuse.org/request/show/1126468
OBS-URL: https://build.opensuse.org/package/show/GNOME:Factory/flatpak?expand=0&rev=187
2023-11-17 16:47:01 +01:00
|
|
|
BuildRequires: pkgconfig(wayland-client) >= 1.15
|
|
|
|
|
BuildRequires: pkgconfig(wayland-protocols) >= 1.32
|
|
|
|
|
BuildRequires: pkgconfig(wayland-scanner) >= 1.15
|
2016-06-15 12:03:45 +02:00
|
|
|
BuildRequires: pkgconfig(xau)
|
2018-06-18 01:29:01 +02:00
|
|
|
Requires: %{libname} = %{version}
|
2023-01-13 10:05:23 +01:00
|
|
|
Requires: bubblewrap >= %{bubblewrap_version}
|
|
|
|
|
Requires: ostree >= %{ostree_version}
|
|
|
|
|
Requires: xdg-dbus-proxy >= %{xdg_dbus_proxy_version}
|
2018-03-05 17:14:34 +01:00
|
|
|
Requires: xdg-desktop-portal >= 0.10
|
2024-03-08 08:51:51 +01:00
|
|
|
Requires: (flatpak-selinux = %{version} if selinux-policy-%{selinuxtype})
|
2019-07-09 08:29:01 +02:00
|
|
|
Requires: user(flatpak)
|
2016-06-15 12:03:45 +02:00
|
|
|
# Remove after openSUSE Leap 42 is out of scope
|
|
|
|
|
Provides: xdg-app = %{version}
|
2016-10-22 12:59:13 +02:00
|
|
|
Obsoletes: xdg-app < %{version}
|
2016-06-15 12:03:45 +02:00
|
|
|
|
|
|
|
|
%description
|
|
|
|
|
flatpak is a system for building, distributing and running sandboxed desktop
|
|
|
|
|
applications on Linux. See https://wiki.gnome.org/Projects/SandboxedApps for
|
|
|
|
|
more information.
|
|
|
|
|
|
2019-07-09 08:29:01 +02:00
|
|
|
%package -n system-user-flatpak
|
|
|
|
|
Summary: System user for the flatpak system helper
|
|
|
|
|
Group: System/Base
|
2022-07-04 11:14:54 +02:00
|
|
|
BuildArch: noarch
|
2019-07-09 08:29:01 +02:00
|
|
|
%sysusers_requires
|
|
|
|
|
|
|
|
|
|
%description -n system-user-flatpak
|
|
|
|
|
System user for the flatpak system helper.
|
|
|
|
|
|
2016-06-15 12:03:45 +02:00
|
|
|
%package -n %{libname}
|
2017-09-08 22:32:45 +02:00
|
|
|
Summary: OSTree based application bundle management library
|
2016-06-15 12:03:45 +02:00
|
|
|
Group: System/Libraries
|
|
|
|
|
|
|
|
|
|
%description -n %{libname}
|
|
|
|
|
flatpak is a system for building, distributing and running sandboxed desktop
|
|
|
|
|
applications on Linux. See https://wiki.gnome.org/Projects/SandboxedApps for
|
|
|
|
|
more information.
|
|
|
|
|
|
|
|
|
|
%package -n typelib-1_0-Flatpak-1_0
|
2017-09-08 22:32:45 +02:00
|
|
|
Summary: Introspection bindings for the flatpak library
|
2016-06-15 12:03:45 +02:00
|
|
|
Group: System/Libraries
|
|
|
|
|
|
|
|
|
|
%description -n typelib-1_0-Flatpak-1_0
|
|
|
|
|
flatpak is a system for building, distributing and running sandboxed desktop
|
|
|
|
|
applications on Linux. See https://wiki.gnome.org/Projects/SandboxedApps for
|
|
|
|
|
more information.
|
|
|
|
|
|
2018-06-18 01:29:01 +02:00
|
|
|
%package zsh-completion
|
|
|
|
|
Summary: Zsh tab-completion for flatpak
|
|
|
|
|
Group: System/Shells
|
2022-07-04 11:14:54 +02:00
|
|
|
Supplements: (%{name} and zsh)
|
|
|
|
|
BuildArch: noarch
|
2018-06-18 01:29:01 +02:00
|
|
|
|
|
|
|
|
%description zsh-completion
|
|
|
|
|
flatpak is a system for building, distributing and running sandboxed desktop
|
|
|
|
|
applications on Linux. See https://wiki.gnome.org/Projects/SandboxedApps for
|
|
|
|
|
more information.
|
|
|
|
|
|
|
|
|
|
This package provides zsh tab-completion for flatpak.
|
|
|
|
|
|
2016-06-15 12:03:45 +02:00
|
|
|
%package devel
|
2017-09-08 22:32:45 +02:00
|
|
|
Summary: Development files for the flatpak library
|
2016-06-15 12:03:45 +02:00
|
|
|
Group: Development/Languages/C and C++
|
|
|
|
|
Requires: %{libname} = %{version}
|
2016-11-04 13:56:03 +01:00
|
|
|
Requires: %{name} = %{version}
|
2016-06-15 12:03:45 +02:00
|
|
|
Requires: typelib-1_0-Flatpak-1_0 = %{version}
|
|
|
|
|
|
|
|
|
|
%description devel
|
|
|
|
|
flatpak is a system for building, distributing and running sandboxed desktop
|
|
|
|
|
applications on Linux. See https://wiki.gnome.org/Projects/SandboxedApps for
|
|
|
|
|
more information.
|
|
|
|
|
|
2022-11-21 12:43:56 +01:00
|
|
|
%package remote-flathub
|
|
|
|
|
Summary: Add Flathub repository to system flatpak
|
2023-02-23 10:56:00 +01:00
|
|
|
Group: System/Packages
|
2022-11-21 12:43:56 +01:00
|
|
|
Requires: flatpak
|
2024-04-19 13:09:15 +02:00
|
|
|
Requires(postun):flatpak
|
|
|
|
|
Requires(postun):sed
|
2024-03-19 09:35:46 +01:00
|
|
|
%if 0%{?suse_version} > 1600
|
2022-11-21 12:43:56 +01:00
|
|
|
Supplements: flatpak
|
2024-03-19 09:35:46 +01:00
|
|
|
%endif
|
2023-02-07 21:18:55 +01:00
|
|
|
BuildArch: noarch
|
2022-11-21 12:43:56 +01:00
|
|
|
|
|
|
|
|
%description remote-flathub
|
|
|
|
|
Flathub is a widely used repository for Flatpak applications. This package
|
|
|
|
|
adds the Flathub repository to the list of system flatpak remotes.
|
|
|
|
|
|
2024-03-08 08:51:51 +01:00
|
|
|
%package selinux
|
|
|
|
|
Summary: SELinux policy module for flatpak
|
|
|
|
|
Group: System Environment/Base
|
|
|
|
|
Requires: flatpak
|
|
|
|
|
BuildArch: noarch
|
|
|
|
|
%{?selinux_requires}
|
|
|
|
|
|
|
|
|
|
%description selinux
|
|
|
|
|
flatpak is a system for building, distributing and running sandboxed desktop
|
|
|
|
|
applications on Linux. See https://wiki.gnome.org/Projects/SandboxedApps for
|
|
|
|
|
more information.
|
|
|
|
|
|
|
|
|
|
This package provides the SELinux policy module for flatpak.
|
|
|
|
|
|
2022-11-21 12:43:56 +01:00
|
|
|
%postun remote-flathub
|
|
|
|
|
# upon uninstall
|
|
|
|
|
if [ $1 == 0 ]; then
|
|
|
|
|
# unregister the remote
|
|
|
|
|
flatpak remote-delete --system flathub
|
|
|
|
|
# and make sure it gets re-applied upon next install
|
|
|
|
|
sed -i "/^xa\.applied-remotes=/s/flathub[;]*//" %{_localstatedir}/lib/flatpak/repo/config
|
|
|
|
|
fi
|
|
|
|
|
|
2016-09-08 23:25:03 +02:00
|
|
|
%lang_package
|
|
|
|
|
|
2016-06-15 12:03:45 +02:00
|
|
|
%prep
|
2019-12-30 12:54:17 +01:00
|
|
|
%autosetup -p1
|
2018-10-19 15:18:08 +02:00
|
|
|
sed -i -e '1s,#!%{_bindir}/env python3,#!%{_bindir}/python3,' scripts/flatpak-*
|
2016-06-15 12:03:45 +02:00
|
|
|
|
|
|
|
|
%build
|
2024-04-19 13:09:15 +02:00
|
|
|
%meson \
|
|
|
|
|
-Dsystem_bubblewrap=bwrap \
|
|
|
|
|
-Dhttp_backend=curl \
|
|
|
|
|
-Ddbus_config_dir=%{_dbusconfigdir} \
|
|
|
|
|
-Dsystem_dbus_proxy=%{_bindir}/xdg-dbus-proxy \
|
2020-07-20 10:48:34 +02:00
|
|
|
%if !%{support_environment_generators}
|
2024-04-19 13:09:15 +02:00
|
|
|
-Dgdm_env_file=enabled \
|
2020-07-20 10:48:34 +02:00
|
|
|
%endif
|
2024-04-19 13:09:15 +02:00
|
|
|
-Dgtkdoc=enabled \
|
|
|
|
|
-Dwayland_security_context=enabled \
|
|
|
|
|
-Dselinux_module=enabled \
|
|
|
|
|
%{nil}
|
|
|
|
|
%meson_build
|
2021-06-25 10:36:23 +02:00
|
|
|
%sysusers_generate_pre system-helper/flatpak.conf system-user-flatpak flatpak.conf
|
2016-06-15 12:03:45 +02:00
|
|
|
|
|
|
|
|
%install
|
2024-04-19 13:09:15 +02:00
|
|
|
%meson_install
|
2016-06-15 12:03:45 +02:00
|
|
|
find %{buildroot} -type f -name "*.la" -delete -print
|
|
|
|
|
mkdir -p %{buildroot}%{_sbindir}
|
|
|
|
|
ln -s service %{buildroot}%{_sbindir}/rcflatpak-system-helper
|
2018-11-16 14:54:57 +01:00
|
|
|
# add a 60- prefix to the rules file, otherwise it is not effective, because
|
|
|
|
|
# /etc/polkit-1/rules.d/90-default-privs.rules is executed first and if no
|
|
|
|
|
# polkit-default-privs rule grants access then an explicit reject is the
|
|
|
|
|
# result. This should fix bsc#984817, granting members of group wheel access
|
|
|
|
|
# w/o password entry.
|
|
|
|
|
mv %{buildroot}/%{_datadir}/polkit-1/rules.d/{,60-}org.freedesktop.Flatpak.rules
|
2016-06-15 12:03:45 +02:00
|
|
|
|
2019-07-03 14:30:27 +02:00
|
|
|
%if !%{support_environment_generators}
|
2020-08-19 13:57:59 +02:00
|
|
|
rm -Rf %{buildroot}%{_systemd_user_env_generator_dir}
|
2021-01-18 14:16:26 +01:00
|
|
|
rm -Rf %{buildroot}%{_systemd_system_env_generator_dir}
|
2019-07-03 14:30:27 +02:00
|
|
|
%endif
|
|
|
|
|
|
2023-09-12 04:21:23 +02:00
|
|
|
# System update Systemd service and timer units
|
|
|
|
|
install -D -m 644 -t %{buildroot}%{_unitdir} %{SOURCE1}
|
|
|
|
|
install -D -m 644 -t %{buildroot}%{_unitdir} %{SOURCE2}
|
2022-07-04 11:14:54 +02:00
|
|
|
|
2023-09-12 04:21:23 +02:00
|
|
|
# User update Systemd service and timer units
|
|
|
|
|
install -D -m 644 -t %{buildroot}%{_userunitdir} %{SOURCE3}
|
|
|
|
|
install -D -m 644 -t %{buildroot}%{_userunitdir} %{SOURCE4}
|
|
|
|
|
|
|
|
|
|
# Flathub remote repository
|
|
|
|
|
install -D -m 644 -t %{buildroot}%{_sysconfdir}/flatpak/remotes.d %{SOURCE5}
|
2019-11-26 10:30:31 +01:00
|
|
|
|
2016-09-08 23:25:03 +02:00
|
|
|
%find_lang %{name}
|
|
|
|
|
|
2019-07-09 08:29:01 +02:00
|
|
|
%pre -n system-user-flatpak -f system-user-flatpak.pre
|
2016-06-15 12:03:45 +02:00
|
|
|
%post -n %{libname} -p /sbin/ldconfig
|
|
|
|
|
%postun -n %{libname} -p /sbin/ldconfig
|
2021-05-03 18:13:23 +02:00
|
|
|
|
2016-06-15 12:03:45 +02:00
|
|
|
%pre
|
|
|
|
|
%service_add_pre flatpak-system-helper.service
|
2022-07-04 11:14:54 +02:00
|
|
|
%service_add_pre update-system-flatpaks.service
|
|
|
|
|
%service_add_pre update-system-flatpaks.timer
|
2016-06-15 12:03:45 +02:00
|
|
|
|
|
|
|
|
%preun
|
|
|
|
|
%service_del_preun flatpak-system-helper.service
|
2022-07-04 11:14:54 +02:00
|
|
|
%service_del_preun update-system-flatpaks.service
|
|
|
|
|
%service_del_preun update-system-flatpaks.timer
|
2016-06-15 12:03:45 +02:00
|
|
|
|
|
|
|
|
%post
|
|
|
|
|
%service_add_post flatpak-system-helper.service
|
2022-07-04 11:14:54 +02:00
|
|
|
%service_add_post update-system-flatpaks.service
|
|
|
|
|
%service_add_post update-system-flatpaks.timer
|
2020-06-16 15:16:31 +02:00
|
|
|
# Remove any empty repo directory, which is seen as invalid by flatpak. After that, create a skeleton repository using "flatpak remotes".
|
|
|
|
|
if [ -e "%{_localstatedir}/lib/flatpak/repo" ] && [ -z "$(ls -A %{_localstatedir}/lib/flatpak/repo)" ]; then
|
|
|
|
|
rm -r %{_localstatedir}/lib/flatpak/repo
|
|
|
|
|
fi
|
|
|
|
|
%{_bindir}/flatpak remotes 1> /dev/null
|
Accepting request 1126468 from GNOME:Next
- Update to version 1.15.6:
+ In distributions that compile Flatpak to use a separate
bubblewrap (bwrap) executable, version 0.8.0 is now required.
+ Enabling the optional Wayland security context feature requires
libwayland-client, wayland-scanner >= 1.15 and
wayland-protocols >= 1.32.
+ Add --device=input, for access to evdev devices in /dev/input
+ Update bundled copy of bubblewrap to version 0.8.0, and rely on
its features:
+ Improve error message if seccomp is disabled in kernel config
+ Security hardening: set user namespace limit to 0, to prevent
creation of nested user namespaces in a more robust way
+ For subsandboxes started by flatpak-portal, inherit
environment variables from the flatpak run that started the
original instance rather than from flatpak-portal, fixing
behaviour of FLATPAK_GL_DRIVERS and similar features
+ Stop http transfers if a download in progress becomes very slow
+ Make it easier to configure extra languages, by picking them up
from AccountsService if configured there
+ Add new flatpak_transaction_add_rebase_and_uninstall() API,
allowing end-of-life apps to be replaced by their intended
replacement more reliably
+ Create a private Wayland socket with the "security context"
extension if available, allowing the compositor to identify
connections from sandboxed apps as belonging to the sandbox
+ Update libglnx to 2023-08-29
+ Use features of newer GLib versions if available
+ Turn off system-level crash reporting infrastructure during
some unit tests that involve intentional assertion failures
+ Add anchors to link to sections of flatpak-metadata
documentation
+ Bug fixes:
- Avoid warnings processing symbolic links with GLib >= 2.77.0,
and with GLib 2.76.0 (GLib 2.76.1 or later silences these
warnings)
- Bypass page cache for backend requests in revokefs, fixing
installation errors with libostree 2023.4
- Show AppStream metadata in flatpak remote-info as intended
- Don't let Flatpak apps inherit VK_DRIVER_FILES or
VK_ICD_FILENAMES from the host system, which would be wrong
for the sandbox
- Fix build failure with prereleases of libappstream 0.17.x
- Forward-compatibility with libappstream 1.0
- Fix installation with Meson if configured with
-Dauto_sideloading=true
- Fix a memory leak
- Fix compiler warnings
- Make the tests fail more comprehensibly if a required tool is
missing
- Clean up /var/tmp/flatpak-cache-* directories on boot
- Don't force GIO_USE_VFS=local for programs launched via
flatpak-spawn
- Clarify documentation for D-Bus name ownership
+ Internal changes:
- Split up large source files into smaller modules, reducing
internal circular dependencies
- Re-synchronize code backported from GLib with the version in
GLib
- Clarify documentation for D-Bus name ownership
- Make the flags used to apply "extra data" clearer
- Use glnx_opendirat() where possible
+ Updated translations.
- Add pkgconfig(wayland-client), pkgconfig(wayland-scanner) and
pkgconfig(wayland-protocols) BuildRequires and pass
with-wayland-security-context=yes to configure: Enable the
optional Wayland security context.
OBS-URL: https://build.opensuse.org/request/show/1126468
OBS-URL: https://build.opensuse.org/package/show/GNOME:Factory/flatpak?expand=0&rev=187
2023-11-17 16:47:01 +01:00
|
|
|
%tmpfiles_create %{_tmpfilesdir}/flatpak.conf
|
2016-06-15 12:03:45 +02:00
|
|
|
|
|
|
|
|
%postun
|
|
|
|
|
%service_del_postun flatpak-system-helper.service
|
2022-07-04 11:14:54 +02:00
|
|
|
%service_del_postun update-system-flatpaks.service
|
|
|
|
|
%service_del_postun update-system-flatpaks.timer
|
2016-06-15 12:03:45 +02:00
|
|
|
|
2024-03-08 08:51:51 +01:00
|
|
|
%pre selinux
|
|
|
|
|
%selinux_relabel_pre -s %{selinuxtype}
|
|
|
|
|
|
|
|
|
|
%post selinux
|
|
|
|
|
%selinux_modules_install -s %{selinuxtype} %{_datadir}/selinux/packages/flatpak.pp.bz2
|
|
|
|
|
|
|
|
|
|
%preun selinux
|
|
|
|
|
%selinux_relabel_pre -s %{selinuxtype}
|
|
|
|
|
|
|
|
|
|
%postun selinux
|
|
|
|
|
if [ $1 -eq 0 ]; then
|
|
|
|
|
%selinux_modules_uninstall -s %{selinuxtype} flatpak
|
|
|
|
|
%selinux_relabel_post -s %{selinuxtype}
|
|
|
|
|
fi;
|
|
|
|
|
|
|
|
|
|
%posttrans selinux
|
|
|
|
|
%selinux_relabel_post -s %{selinuxtype}
|
|
|
|
|
|
2016-09-08 23:25:03 +02:00
|
|
|
%files -f %{name}.lang
|
2018-03-05 17:14:51 +01:00
|
|
|
%license COPYING
|
2016-06-15 12:03:45 +02:00
|
|
|
%{_bindir}/flatpak
|
2018-05-17 16:41:22 +02:00
|
|
|
%{_libexecdir}/flatpak-portal
|
2016-06-15 12:03:45 +02:00
|
|
|
%{_libexecdir}/flatpak-session-helper
|
|
|
|
|
%{_libexecdir}/flatpak-system-helper
|
2019-02-07 15:06:26 +01:00
|
|
|
%{_libexecdir}/flatpak-validate-icon
|
2019-05-29 21:22:30 +02:00
|
|
|
%{_libexecdir}/revokefs-fuse
|
2016-06-15 12:03:45 +02:00
|
|
|
%{_datadir}/bash-completion/completions/flatpak
|
2020-07-20 10:48:34 +02:00
|
|
|
%dir %{_datadir}/fish
|
2022-08-31 11:40:50 +02:00
|
|
|
%dir %{_datadir}/fish/vendor_conf.d
|
|
|
|
|
%{_datadir}/fish/vendor_conf.d/flatpak.fish
|
2020-07-20 10:48:34 +02:00
|
|
|
%dir %{_datadir}/fish/vendor_completions.d
|
|
|
|
|
%{_datadir}/fish/vendor_completions.d/flatpak.fish
|
2016-06-15 12:03:45 +02:00
|
|
|
# # Own dirs so we don't have to depend on dbus for building.
|
|
|
|
|
%dir %{_datadir}/dbus-1
|
|
|
|
|
%dir %{_datadir}/dbus-1/interfaces
|
|
|
|
|
%dir %{_datadir}/dbus-1/services
|
|
|
|
|
%{_datadir}/dbus-1/interfaces/org.freedesktop.Flatpak.xml
|
2018-05-17 16:41:22 +02:00
|
|
|
%{_datadir}/dbus-1/interfaces/org.freedesktop.portal.Flatpak.xml
|
2016-06-15 12:03:45 +02:00
|
|
|
%{_datadir}/dbus-1/services/org.freedesktop.Flatpak.service
|
2018-05-17 16:41:22 +02:00
|
|
|
%{_datadir}/dbus-1/services/org.freedesktop.portal.Flatpak.service
|
2016-06-15 12:03:45 +02:00
|
|
|
%{_datadir}/dbus-1/system-services/org.freedesktop.Flatpak.SystemHelper.service
|
2019-07-03 14:30:27 +02:00
|
|
|
%{_dbusconfigdir}/org.freedesktop.Flatpak.SystemHelper.conf
|
2016-06-15 12:03:45 +02:00
|
|
|
# policykit rules
|
|
|
|
|
%{_datadir}/polkit-1/actions/org.freedesktop.Flatpak.policy
|
2018-11-16 14:54:57 +01:00
|
|
|
%{_datadir}/polkit-1/rules.d/60-org.freedesktop.Flatpak.rules
|
2021-01-26 11:47:25 +01:00
|
|
|
%{_mandir}/man1/%{name}*.1%{?ext_man}
|
|
|
|
|
%{_mandir}/man5/flatpak-metadata.5%{?ext_man}
|
|
|
|
|
%{_mandir}/man5/flatpak-flatpakref.5%{?ext_man}
|
2024-04-19 13:09:15 +02:00
|
|
|
%{_mandir}/man5/flatpakref.5%{?ext_man}
|
2021-01-26 11:47:25 +01:00
|
|
|
%{_mandir}/man5/flatpak-flatpakrepo.5%{?ext_man}
|
2024-04-19 13:09:15 +02:00
|
|
|
%{_mandir}/man5/flatpakrepo.5%{?ext_man}
|
2021-01-26 11:47:25 +01:00
|
|
|
%{_mandir}/man5/flatpak-installation.5%{?ext_man}
|
|
|
|
|
%{_mandir}/man5/flatpak-remote.5%{?ext_man}
|
2016-06-15 12:03:45 +02:00
|
|
|
%{_datadir}/%{name}/
|
2018-12-18 09:28:51 +01:00
|
|
|
%config %{_sysconfdir}/profile.d/flatpak.sh
|
2022-11-21 12:43:56 +01:00
|
|
|
%dir %{_sysconfdir}/flatpak
|
|
|
|
|
%dir %{_sysconfdir}/flatpak/remotes.d
|
2016-06-15 12:03:45 +02:00
|
|
|
%{_unitdir}/flatpak-system-helper.service
|
2023-09-12 04:21:23 +02:00
|
|
|
%{_unitdir}/update-system-flatpaks.{service,timer}
|
|
|
|
|
%{_userunitdir}/update-user-flatpaks.{service,timer}
|
2016-06-15 12:03:45 +02:00
|
|
|
%{_sbindir}/rcflatpak-system-helper
|
|
|
|
|
%{_userunitdir}/flatpak-session-helper.service
|
2018-05-17 16:41:22 +02:00
|
|
|
%{_userunitdir}/flatpak-portal.service
|
2020-06-16 15:16:31 +02:00
|
|
|
%ghost %dir %{_localstatedir}/lib/flatpak
|
2019-07-03 14:30:27 +02:00
|
|
|
%if %{support_environment_generators}
|
2020-08-19 13:57:59 +02:00
|
|
|
%dir %{_systemd_user_env_generator_dir}
|
|
|
|
|
%{_systemd_user_env_generator_dir}/60-flatpak
|
2021-01-18 14:16:26 +01:00
|
|
|
%{_systemd_system_env_generator_dir}/60-flatpak-system-only
|
2020-07-20 10:48:34 +02:00
|
|
|
%else
|
|
|
|
|
# Own dirs so we don't have to depend on gdm for building.
|
|
|
|
|
%dir %{_datadir}/gdm/
|
|
|
|
|
%dir %{_datadir}/gdm/env.d/
|
|
|
|
|
%{_datadir}/gdm/env.d/flatpak.env
|
2019-07-03 14:30:27 +02:00
|
|
|
%endif
|
2019-12-30 12:54:17 +01:00
|
|
|
%{_libexecdir}/flatpak-oci-authenticator
|
|
|
|
|
%{_userunitdir}/flatpak-oci-authenticator.service
|
|
|
|
|
%{_datadir}/dbus-1/interfaces/org.freedesktop.Flatpak.Authenticator.xml
|
|
|
|
|
%{_datadir}/dbus-1/services/org.flatpak.Authenticator.Oci.service
|
Accepting request 1126468 from GNOME:Next
- Update to version 1.15.6:
+ In distributions that compile Flatpak to use a separate
bubblewrap (bwrap) executable, version 0.8.0 is now required.
+ Enabling the optional Wayland security context feature requires
libwayland-client, wayland-scanner >= 1.15 and
wayland-protocols >= 1.32.
+ Add --device=input, for access to evdev devices in /dev/input
+ Update bundled copy of bubblewrap to version 0.8.0, and rely on
its features:
+ Improve error message if seccomp is disabled in kernel config
+ Security hardening: set user namespace limit to 0, to prevent
creation of nested user namespaces in a more robust way
+ For subsandboxes started by flatpak-portal, inherit
environment variables from the flatpak run that started the
original instance rather than from flatpak-portal, fixing
behaviour of FLATPAK_GL_DRIVERS and similar features
+ Stop http transfers if a download in progress becomes very slow
+ Make it easier to configure extra languages, by picking them up
from AccountsService if configured there
+ Add new flatpak_transaction_add_rebase_and_uninstall() API,
allowing end-of-life apps to be replaced by their intended
replacement more reliably
+ Create a private Wayland socket with the "security context"
extension if available, allowing the compositor to identify
connections from sandboxed apps as belonging to the sandbox
+ Update libglnx to 2023-08-29
+ Use features of newer GLib versions if available
+ Turn off system-level crash reporting infrastructure during
some unit tests that involve intentional assertion failures
+ Add anchors to link to sections of flatpak-metadata
documentation
+ Bug fixes:
- Avoid warnings processing symbolic links with GLib >= 2.77.0,
and with GLib 2.76.0 (GLib 2.76.1 or later silences these
warnings)
- Bypass page cache for backend requests in revokefs, fixing
installation errors with libostree 2023.4
- Show AppStream metadata in flatpak remote-info as intended
- Don't let Flatpak apps inherit VK_DRIVER_FILES or
VK_ICD_FILENAMES from the host system, which would be wrong
for the sandbox
- Fix build failure with prereleases of libappstream 0.17.x
- Forward-compatibility with libappstream 1.0
- Fix installation with Meson if configured with
-Dauto_sideloading=true
- Fix a memory leak
- Fix compiler warnings
- Make the tests fail more comprehensibly if a required tool is
missing
- Clean up /var/tmp/flatpak-cache-* directories on boot
- Don't force GIO_USE_VFS=local for programs launched via
flatpak-spawn
- Clarify documentation for D-Bus name ownership
+ Internal changes:
- Split up large source files into smaller modules, reducing
internal circular dependencies
- Re-synchronize code backported from GLib with the version in
GLib
- Clarify documentation for D-Bus name ownership
- Make the flags used to apply "extra data" clearer
- Use glnx_opendirat() where possible
+ Updated translations.
- Add pkgconfig(wayland-client), pkgconfig(wayland-scanner) and
pkgconfig(wayland-protocols) BuildRequires and pass
with-wayland-security-context=yes to configure: Enable the
optional Wayland security context.
OBS-URL: https://build.opensuse.org/request/show/1126468
OBS-URL: https://build.opensuse.org/package/show/GNOME:Factory/flatpak?expand=0&rev=187
2023-11-17 16:47:01 +01:00
|
|
|
%{_tmpfilesdir}/flatpak.conf
|
2016-06-15 12:03:45 +02:00
|
|
|
|
2019-07-09 08:29:01 +02:00
|
|
|
%files -n system-user-flatpak
|
2022-07-04 11:14:54 +02:00
|
|
|
%license COPYING
|
2020-07-20 10:48:34 +02:00
|
|
|
%{_sysusersdir}/flatpak.conf
|
2019-07-09 08:29:01 +02:00
|
|
|
|
2016-06-15 12:03:45 +02:00
|
|
|
%files -n %{libname}
|
2022-07-04 11:14:54 +02:00
|
|
|
%license COPYING
|
2016-06-15 12:03:45 +02:00
|
|
|
%{_libdir}/libflatpak.so.*
|
|
|
|
|
|
|
|
|
|
%files -n typelib-1_0-Flatpak-1_0
|
2022-07-04 11:14:54 +02:00
|
|
|
%license COPYING
|
2016-06-15 12:03:45 +02:00
|
|
|
%{_libdir}/girepository-1.0/Flatpak-1.0.typelib
|
|
|
|
|
|
2018-06-18 01:29:01 +02:00
|
|
|
%files zsh-completion
|
2022-07-04 11:14:54 +02:00
|
|
|
%license COPYING
|
2018-06-18 01:29:01 +02:00
|
|
|
%dir %{_datadir}/zsh/site-functions
|
|
|
|
|
%{_datadir}/zsh/site-functions/_flatpak
|
|
|
|
|
|
2016-06-15 12:03:45 +02:00
|
|
|
%files devel
|
2022-07-04 11:14:54 +02:00
|
|
|
%license COPYING
|
2022-11-21 12:43:56 +01:00
|
|
|
%doc %{_datadir}/gtk-doc/html/flatpak
|
2023-09-12 04:21:23 +02:00
|
|
|
%dir %{_datadir}/doc/flatpak
|
|
|
|
|
%doc %{_datadir}/doc/flatpak/docbook.css
|
|
|
|
|
%doc %{_datadir}/doc/flatpak/flatpak-docs.html
|
2020-12-30 20:23:40 +01:00
|
|
|
%{_bindir}/flatpak-bisect
|
|
|
|
|
%{_bindir}/flatpak-coredumpctl
|
2016-06-15 12:03:45 +02:00
|
|
|
%{_libdir}/pkgconfig/flatpak.pc
|
|
|
|
|
%{_includedir}/%{name}/
|
|
|
|
|
%{_libdir}/libflatpak.so
|
|
|
|
|
%{_datadir}/gir-1.0/Flatpak-1.0.gir
|
|
|
|
|
|
2022-11-21 12:43:56 +01:00
|
|
|
%files remote-flathub
|
2023-09-12 04:21:23 +02:00
|
|
|
%config %{_sysconfdir}/flatpak/remotes.d/flathub.flatpakrepo
|
2022-11-21 12:43:56 +01:00
|
|
|
|
2024-03-08 08:51:51 +01:00
|
|
|
%files selinux
|
|
|
|
|
%{_datadir}/selinux/devel/include/contrib/flatpak.if
|
|
|
|
|
%{_datadir}/selinux/packages/flatpak.pp.bz2
|
|
|
|
|
|
2016-06-15 12:03:45 +02:00
|
|
|
%changelog
|
