d1efca8160
- Fix python packaging by setting the name to a fixed value OBS-URL: https://build.opensuse.org/request/show/1096707 OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libselinux?expand=0&rev=160
233 lines
8.0 KiB
RPMSpec
233 lines
8.0 KiB
RPMSpec
#
|
||
# spec file for package libselinux
|
||
#
|
||
# Copyright (c) 2023 SUSE LLC
|
||
#
|
||
# All modifications and additions to the file contributed by third parties
|
||
# remain the property of their copyright owners, unless otherwise agreed
|
||
# upon. The license for this file, and modifications and additions to the
|
||
# file, is the same license as for the pristine package itself (unless the
|
||
# license for the pristine package is not an Open Source License, in which
|
||
# case the license is the MIT License). An "Open Source License" is a
|
||
# license that conforms to the Open Source Definition (Version 1.9)
|
||
# published by the Open Source Initiative.
|
||
|
||
# Please submit bugfixes or comments via https://bugs.opensuse.org/
|
||
#
|
||
|
||
|
||
%{?sle15_python_module_pythons}
|
||
%define python_subpackage_only 1
|
||
%define libsepol_ver 3.5
|
||
Name: libselinux
|
||
Version: 3.5
|
||
Release: 0
|
||
Summary: SELinux runtime library and utilities
|
||
License: SUSE-Public-Domain
|
||
Group: Development/Libraries/C and C++
|
||
URL: https://github.com/SELinuxProject/selinux/wiki/Releases
|
||
Source0: https://github.com/SELinuxProject/selinux/releases/download/%{version}/%{name}-%{version}.tar.gz
|
||
Source1: https://github.com/SELinuxProject/selinux/releases/download/%{version}/%{name}-%{version}.tar.gz.asc
|
||
Source2: libselinux.keyring
|
||
Source3: selinux-ready
|
||
Source4: baselibs.conf
|
||
# PATCH-FIX-UPSTREAM Include <sys/uio.h> for readv prototype
|
||
Patch4: readv-proto.patch
|
||
Patch5: skip_cycles.patch
|
||
# PATCH-FIX-UPSTREAM python3.8-compat.patch mcepl@suse.com
|
||
# Make linking working even when default pkg-config doesn’t provide -lpython<ver>
|
||
Patch6: python3.8-compat.patch
|
||
Patch7: swig4_moduleimport.patch
|
||
BuildRequires: %{python_module devel}
|
||
BuildRequires: %{python_module pip}
|
||
BuildRequires: %{python_module setuptools}
|
||
BuildRequires: %{python_module wheel}
|
||
BuildRequires: fdupes
|
||
BuildRequires: libsepol-devel >= %{libsepol_ver}
|
||
BuildRequires: libsepol-devel-static >= %{libsepol_ver}
|
||
BuildRequires: pkgconfig
|
||
BuildRequires: python-rpm-macros
|
||
BuildRequires: ruby-devel
|
||
BuildRequires: swig
|
||
BuildRequires: pkgconfig(libpcre2-8)
|
||
%python_subpackages
|
||
|
||
%description
|
||
libselinux provides an interface to get and set process and file
|
||
security contexts and to obtain security policy decisions.
|
||
|
||
%package -n libselinux1
|
||
Summary: SELinux runtime library
|
||
Group: System/Libraries
|
||
|
||
%description -n libselinux1
|
||
libselinux provides an interface to get and set process and file
|
||
security contexts and to obtain security policy decisions.
|
||
|
||
(Security-enhanced Linux is a feature of the kernel and some
|
||
utilities that implement mandatory access control policies, such as
|
||
Type Enforcement, Role-based Access Control and Multi-Level
|
||
Security.)
|
||
|
||
%package -n selinux-tools
|
||
Summary: SELinux command-line utilities
|
||
Group: System/Base
|
||
Requires: libselinux1 = %{version}
|
||
Provides: libselinux-utils = %{version}-%{release}
|
||
|
||
%description -n selinux-tools
|
||
Security-enhanced Linux is a feature of the kernel and some
|
||
utilities that implement mandatory access control policies, such as
|
||
Type Enforcement, Role-based Access Control and Multi-Level
|
||
Security.
|
||
|
||
This subpackage contains utilities to inspect and administer the
|
||
system's SELinux state.
|
||
|
||
%package devel
|
||
Summary: Development files for the SELinux runtime library
|
||
Group: Development/Libraries/C and C++
|
||
Requires: glibc-devel
|
||
Requires: libselinux1 = %{version}
|
||
#Automatic dependency on libsepol-devel via pkgconfig
|
||
|
||
%description devel
|
||
libselinux provides an interface to get and set process and file
|
||
security contexts and to obtain security policy decisions.
|
||
|
||
This package contains the development files, which are
|
||
necessary to develop your own software using libselinux.
|
||
|
||
%package devel-static
|
||
Summary: Static archives for the SELinux runtime
|
||
Group: Development/Libraries/C and C++
|
||
Requires: libselinux-devel = %{version}
|
||
Requires: pkgconfig(libpcre2-8)
|
||
Requires: pkgconfig(libsepol)
|
||
|
||
%description devel-static
|
||
libselinux provides an interface to get and set process and file
|
||
security contexts and to obtain security policy decisions.
|
||
|
||
This package contains the static development files, which are
|
||
necessary to develop your own software using libselinux.
|
||
|
||
%package -n python-selinux
|
||
%define oldpython python
|
||
Summary: Python bindings for the SELinux runtime library
|
||
Group: Development/Libraries/Python
|
||
# Requires: %%{python_base_requirement}
|
||
Requires: libselinux1 = %{version}
|
||
Obsoletes: python-selinux < %{version}
|
||
Provides: python-selinux = %{version}
|
||
%ifpython2
|
||
Obsoletes: %{oldpython}-selinux < %{version}
|
||
Provides: %{oldpython}-selinux = %{version}
|
||
%endif
|
||
|
||
%description -n python-selinux
|
||
libselinux provides an interface to get and set process and file
|
||
security contexts and to obtain security policy decisions.
|
||
|
||
This subpackage contains Python extensions to use SELinux from that
|
||
language.
|
||
|
||
%package -n ruby-selinux
|
||
Summary: Ruby bindings for the SELinux runtime library
|
||
Group: Development/Languages/Ruby
|
||
Requires: libselinux1 = %{version}
|
||
Requires: ruby
|
||
|
||
%description -n ruby-selinux
|
||
libselinux provides an interface to get and set process and file
|
||
security contexts and to obtain security policy decisions.
|
||
|
||
This subpackage contains Ruby extensions to use SELinux from that
|
||
language.
|
||
|
||
%prep
|
||
%autosetup -p1 -n libselinux-%{version}
|
||
|
||
%build
|
||
%{python_expand :
|
||
%make_build LIBDIR="%{_libdir}" CC="gcc" CFLAGS="%{optflags} -fno-semantic-interposition -ffat-lto-objects" USE_PCRE2=y PYTHON=$python
|
||
%make_build LIBDIR="%{_libdir}" CFLAGS="%{optflags} -fno-semantic-interposition" swigify USE_PCRE2=y PYTHON=$python
|
||
%make_build LIBDIR="%{_libdir}" CFLAGS="%{optflags} -fno-semantic-interposition" pywrap USE_PCRE2=y PYTHON=$python
|
||
%make_build LIBDIR="%{_libdir}" CFLAGS="%{optflags} -fno-semantic-interposition" rubywrap USE_PCRE2=y PYTHON=$python
|
||
}
|
||
|
||
%install
|
||
mkdir -p %{buildroot}/%{_lib}
|
||
mkdir -p %{buildroot}%{_libdir}
|
||
mkdir -p %{buildroot}%{_includedir}
|
||
mkdir -p %{buildroot}%{_sbindir}
|
||
%{python_expand :
|
||
make DESTDIR=%{buildroot} LIBDIR="%{_libdir}" SHLIBDIR="%{_libdir}" PYTHON=$python BINDIR="%{_sbindir}" install
|
||
make DESTDIR=%{buildroot} LIBDIR="%{_libdir}" SHLIBDIR="/%{_lib}" PYTHON=$python LIBSEPOLA=%{_libdir}/libsepol.a install-pywrap V=1
|
||
make DESTDIR=%{buildroot} LIBDIR="%{_libdir}" SHLIBDIR="/%{_lib}" PYTHON=$python LIBSEPOLA=%{_libdir}/libsepol.a install-rubywrap V=1
|
||
}
|
||
|
||
mv %{buildroot}%{_sbindir}/getdefaultcon %{buildroot}%{_sbindir}/selinuxdefcon
|
||
mv %{buildroot}%{_sbindir}/getconlist %{buildroot}%{_sbindir}/selinuxconlist
|
||
install -m 0755 %{SOURCE3} %{buildroot}%{_sbindir}/selinux-ready
|
||
# Remove duplicate files
|
||
%fdupes -s %{buildroot}%{_mandir}
|
||
|
||
%post -n libselinux1 -p /sbin/ldconfig
|
||
%postun -n libselinux1 -p /sbin/ldconfig
|
||
|
||
%files -n selinux-tools
|
||
%{_sbindir}/avcstat
|
||
%{_sbindir}/getenforce
|
||
%{_sbindir}/getsebool
|
||
%{_sbindir}/matchpathcon
|
||
%{_sbindir}/selabel_digest
|
||
%{_sbindir}/selabel_lookup
|
||
%{_sbindir}/selinux_check_access
|
||
%{_sbindir}/selabel_lookup_best_match
|
||
%{_sbindir}/selabel_partial_match
|
||
%{_sbindir}/selinuxconlist
|
||
%{_sbindir}/selinuxdefcon
|
||
%{_sbindir}/selinuxenabled
|
||
%{_sbindir}/setenforce
|
||
%{_sbindir}/togglesebool
|
||
%{_sbindir}/selinux-ready
|
||
%{_sbindir}/selinuxexeccon
|
||
%{_sbindir}/sefcontext_compile
|
||
%{_sbindir}/compute_*
|
||
%{_sbindir}/getfilecon
|
||
%{_sbindir}/getpidcon
|
||
%{_sbindir}/policyvers
|
||
%{_sbindir}/setfilecon
|
||
%{_sbindir}/getseuser
|
||
%{_sbindir}/selinux_check_securetty_context
|
||
%{_sbindir}/selabel_get_digests_all_partial_matches
|
||
%{_sbindir}/validatetrans
|
||
%{_sbindir}/getpidprevcon
|
||
%{_mandir}/man5/*
|
||
%{_mandir}/ru/man5/*
|
||
%{_mandir}/man8/*
|
||
%{_mandir}/ru/man8/*
|
||
|
||
%files -n libselinux1
|
||
%{_libdir}/libselinux.so.*
|
||
|
||
%files devel
|
||
%{_libdir}/libselinux.so
|
||
%{_includedir}/selinux/
|
||
%{_mandir}/man3/*
|
||
%{_libdir}/pkgconfig/libselinux.pc
|
||
|
||
%files devel-static
|
||
%{_libdir}/libselinux.a
|
||
|
||
%files %{python_files selinux}
|
||
%{python_sitearch}/selinux
|
||
%{python_sitearch}/selinux-%{version}*-info
|
||
%{python_sitearch}/_selinux*
|
||
|
||
%files -n ruby-selinux
|
||
%{_libdir}/ruby/vendor_ruby/%{rb_ver}/%{rb_arch}/selinux.so
|
||
|
||
%changelog
|