424 lines
14 KiB
RPMSpec
424 lines
14 KiB
RPMSpec
#
|
|
# This is the SPEC file for creating binary RPMs for the Dom0.
|
|
#
|
|
#
|
|
# The Qubes OS Project, http://www.qubes-os.org
|
|
#
|
|
# Copyright (C) 2010 Joanna Rutkowska <joanna@invisiblethingslab.com>
|
|
# Copyright (C) 2010 Rafal Wojtczuk <rafal@invisiblethingslab.com>
|
|
#
|
|
# This library is free software; you can redistribute it and/or
|
|
# modify it under the terms of the GNU Lesser General Public
|
|
# License as published by the Free Software Foundation; either
|
|
# version 2.1 of the License, or (at your option) any later version.
|
|
#
|
|
# This library is distributed in the hope that it will be useful,
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
# Lesser General Public License for more details.
|
|
#
|
|
# You should have received a copy of the GNU Lesser General Public
|
|
# License along with this library; if not, see <https://www.gnu.org/licenses/>.
|
|
#
|
|
#
|
|
|
|
%define _dracutmoddir /usr/lib/dracut/modules.d
|
|
%define backend_vmm @BACKEND_VMM@
|
|
|
|
Name: qubes-core-dom0
|
|
Version: @VERSION@
|
|
Release: 1%{dist}
|
|
Summary: The Qubes core files (Dom0-side)
|
|
|
|
Group: Qubes
|
|
Vendor: Invisible Things Lab
|
|
License: GPL
|
|
URL: http://www.qubes-os.org
|
|
|
|
# because we have "#!/usr/bin/env python" shebangs, RPM puts
|
|
# "Requires: $(which # python)" dependency, which, depending on $PATH order,
|
|
# may point to /usr/bin/python or /bin/python (because Fedora has this stupid
|
|
# /bin -> usr/bin symlink). python*.rpm provides only /usr/bin/python.
|
|
AutoReq: no
|
|
|
|
# FIXME: Enable this and disable debug_package
|
|
#BuildArch: noarch
|
|
|
|
BuildRequires: ImageMagick
|
|
BuildRequires: systemd-units
|
|
BuildRequires: systemd
|
|
BuildRequires: gcc
|
|
|
|
BuildRequires: python3-devel
|
|
|
|
# for building documentation
|
|
BuildRequires: python3-sphinx
|
|
BuildRequires: python3-lxml
|
|
BuildRequires: libvirt-python3
|
|
BuildRequires: python3-dbus
|
|
BuildRequires: python3-PyYAML
|
|
BuildRequires: python3-xen
|
|
|
|
Requires(post): systemd-units
|
|
Requires(preun): systemd-units
|
|
Requires(postun): systemd-units
|
|
|
|
Requires: python3
|
|
#Requires: python3-aiofiles
|
|
Requires: python3-docutils
|
|
Requires: python3-jinja2
|
|
Requires: python3-lxml
|
|
Requires: python3-qubesdb
|
|
Requires: python3-setuptools
|
|
Requires: python3-PyYAML
|
|
Requires: python3-xen
|
|
Requires: libvirt-python3
|
|
|
|
Requires: pciutils
|
|
Requires: qubes-core-dom0-linux >= 4.0.11
|
|
Requires: qubes-core-qrexec-dom0
|
|
Requires: qubes-db-dom0
|
|
# TODO: R: qubes-gui-dom0 >= 2.1.11
|
|
Conflicts: qubes-gui-dom0 < 1.1.13
|
|
%if x%{?backend_vmm} == xxen
|
|
Requires: xen-runtime
|
|
Requires: xen-hvm
|
|
Requires: xen-hvm-stubdom-linux >= 1.0.13
|
|
Requires: libvirt-daemon-xen >= 3.3.0-7
|
|
%endif
|
|
Requires: cronie
|
|
Requires: scrypt
|
|
# for qubes-hcl-report
|
|
Requires: dmidecode
|
|
|
|
# Required for qvm-console* tools
|
|
Requires: socat
|
|
|
|
%{?systemd_requires}
|
|
|
|
Obsoletes: qubes-core-dom0-doc <= 4.0
|
|
Provides: qubes-core-dom0-doc
|
|
|
|
# Prevent preupgrade from installation (it pretend to provide distribution upgrade)
|
|
Obsoletes: preupgrade < 2.0
|
|
Provides: preupgrade = 2.0
|
|
|
|
Source0: %{name}-%{version}.tar.gz
|
|
|
|
%description
|
|
The Qubes core files for installation on Dom0.
|
|
|
|
%prep
|
|
%setup -q
|
|
|
|
%build
|
|
|
|
make all
|
|
make -C doc PYTHON=%{__python3} SPHINXBUILD=sphinx-build-%{python3_version} man
|
|
|
|
%install
|
|
|
|
make install \
|
|
DESTDIR=$RPM_BUILD_ROOT \
|
|
BACKEND_VMM=%{backend_vmm} \
|
|
UNITDIR=%{_unitdir} \
|
|
PYTHON_SITEPATH=%{python3_sitelib} \
|
|
SYSCONFDIR=%{_sysconfdir}
|
|
|
|
make -C doc DESTDIR=$RPM_BUILD_ROOT \
|
|
PYTHON=%{__python3} SPHINXBUILD=sphinx-build-%{python3_version} \
|
|
install
|
|
|
|
mkdir -p $RPM_BUILD_ROOT/etc/qubes/backup
|
|
|
|
|
|
%post
|
|
%systemd_post qubes-core.service
|
|
%systemd_post qubes-qmemman.service
|
|
%systemd_post qubesd.service
|
|
|
|
sed '/^autoballoon=/d;/^lockfile=/d' -i /etc/xen/xl.conf
|
|
echo 'autoballoon=0' >> /etc/xen/xl.conf
|
|
echo 'lockfile="/var/run/qubes/xl-lock"' >> /etc/xen/xl.conf
|
|
|
|
if [ -e /etc/sysconfig/prelink ]; then
|
|
sed 's/^PRELINKING\s*=.*/PRELINKING=no/' -i /etc/sysconfig/prelink
|
|
fi
|
|
|
|
# Conflicts with libxl stack, so disable it
|
|
systemctl --no-reload disable xend.service >/dev/null 2>&1
|
|
systemctl --no-reload disable xendomains.service >/dev/null 2>&1
|
|
systemctl daemon-reload >/dev/null 2>&1 || :
|
|
|
|
if ! [ -e /var/lib/qubes/qubes.xml ]; then
|
|
# echo "Initializing Qubes DB..."
|
|
umask 007; sg qubes -c 'qubes-create --offline-mode'
|
|
fi
|
|
|
|
%clean
|
|
rm -rf $RPM_BUILD_ROOT
|
|
rm -f %{name}-%{version}
|
|
|
|
%pre
|
|
if ! grep -q ^qubes: /etc/group ; then
|
|
groupadd qubes
|
|
fi
|
|
|
|
%triggerin -- xen-runtime
|
|
/usr/lib/qubes/fix-dir-perms.sh
|
|
|
|
%preun
|
|
%systemd_preun qubes-core.service
|
|
%systemd_preun qubes-qmemman.service
|
|
%systemd_preun qubesd.service
|
|
|
|
if [ "$1" = 0 ] ; then
|
|
# no more packages left
|
|
service qubes_netvm stop
|
|
service qubes_core stop
|
|
fi
|
|
|
|
%postun
|
|
%systemd_postun qubes-core.service
|
|
%systemd_postun_with_restart qubes-qmemman.service
|
|
%systemd_postun_with_restart qubesd.service
|
|
|
|
if [ "$1" = 0 ] ; then
|
|
# no more packages left
|
|
chgrp root /etc/xen
|
|
chmod 700 /etc/xen
|
|
groupdel qubes
|
|
fi
|
|
|
|
%files
|
|
%defattr(-,root,root,-)
|
|
%config(noreplace) %attr(0664,root,qubes) %{_sysconfdir}/qubes/qmemman.conf
|
|
%config(noreplace) /etc/logrotate.d/qubes
|
|
%attr(770,root,qubes) %dir /etc/qubes/backup
|
|
/usr/bin/qvm-*
|
|
/usr/bin/qubes-*
|
|
/usr/bin/qmemmand
|
|
/usr/bin/qubesd*
|
|
|
|
%{_mandir}/man1/qubes*.1*
|
|
%{_mandir}/man1/qvm-*.1*
|
|
|
|
%dir %{python3_sitelib}/qubes-*.egg-info
|
|
%{python3_sitelib}/qubes-*.egg-info/*
|
|
|
|
%dir %{python3_sitelib}/qubes
|
|
%dir %{python3_sitelib}/qubes/__pycache__
|
|
%{python3_sitelib}/qubes/__pycache__/*
|
|
%{python3_sitelib}/qubes/__init__.py
|
|
%{python3_sitelib}/qubes/app.py
|
|
%{python3_sitelib}/qubes/backup.py
|
|
%{python3_sitelib}/qubes/config.py
|
|
%{python3_sitelib}/qubes/devices.py
|
|
%{python3_sitelib}/qubes/dochelpers.py
|
|
%{python3_sitelib}/qubes/events.py
|
|
%{python3_sitelib}/qubes/exc.py
|
|
%{python3_sitelib}/qubes/features.py
|
|
%{python3_sitelib}/qubes/firewall.py
|
|
%{python3_sitelib}/qubes/log.py
|
|
%{python3_sitelib}/qubes/rngdoc.py
|
|
%{python3_sitelib}/qubes/tarwriter.py
|
|
%{python3_sitelib}/qubes/utils.py
|
|
|
|
%dir %{python3_sitelib}/qubes/api
|
|
%dir %{python3_sitelib}/qubes/api/__pycache__
|
|
%{python3_sitelib}/qubes/api/__pycache__/*
|
|
%{python3_sitelib}/qubes/api/__init__.py
|
|
%{python3_sitelib}/qubes/api/admin.py
|
|
%{python3_sitelib}/qubes/api/internal.py
|
|
%{python3_sitelib}/qubes/api/misc.py
|
|
|
|
%dir %{python3_sitelib}/qubes/vm
|
|
%dir %{python3_sitelib}/qubes/vm/__pycache__
|
|
%{python3_sitelib}/qubes/vm/__pycache__/*
|
|
%{python3_sitelib}/qubes/vm/__init__.py
|
|
%{python3_sitelib}/qubes/vm/adminvm.py
|
|
%{python3_sitelib}/qubes/vm/appvm.py
|
|
%{python3_sitelib}/qubes/vm/dispvm.py
|
|
%{python3_sitelib}/qubes/vm/qubesvm.py
|
|
%{python3_sitelib}/qubes/vm/standalonevm.py
|
|
%{python3_sitelib}/qubes/vm/templatevm.py
|
|
|
|
%dir %{python3_sitelib}/qubes/vm/mix
|
|
%dir %{python3_sitelib}/qubes/vm/mix/__pycache__
|
|
%{python3_sitelib}/qubes/vm/mix/__pycache__/*
|
|
%{python3_sitelib}/qubes/vm/mix/__init__.py
|
|
%{python3_sitelib}/qubes/vm/mix/net.py
|
|
|
|
%dir %{python3_sitelib}/qubes/storage
|
|
%dir %{python3_sitelib}/qubes/storage/__pycache__
|
|
%{python3_sitelib}/qubes/storage/__pycache__/*
|
|
%{python3_sitelib}/qubes/storage/__init__.py
|
|
%{python3_sitelib}/qubes/storage/file.py
|
|
%{python3_sitelib}/qubes/storage/reflink.py
|
|
%{python3_sitelib}/qubes/storage/kernels.py
|
|
%{python3_sitelib}/qubes/storage/lvm.py
|
|
|
|
%dir %{python3_sitelib}/qubes/tools
|
|
%dir %{python3_sitelib}/qubes/tools/__pycache__
|
|
%{python3_sitelib}/qubes/tools/__pycache__/*
|
|
%{python3_sitelib}/qubes/tools/__init__.py
|
|
%{python3_sitelib}/qubes/tools/qmemmand.py
|
|
%{python3_sitelib}/qubes/tools/qubes_create.py
|
|
%{python3_sitelib}/qubes/tools/qubesd.py
|
|
%{python3_sitelib}/qubes/tools/qubesd_query.py
|
|
|
|
%dir %{python3_sitelib}/qubes/ext
|
|
%dir %{python3_sitelib}/qubes/ext/__pycache__
|
|
%{python3_sitelib}/qubes/ext/__pycache__/*
|
|
%{python3_sitelib}/qubes/ext/__init__.py
|
|
%{python3_sitelib}/qubes/ext/admin.py
|
|
%{python3_sitelib}/qubes/ext/block.py
|
|
%{python3_sitelib}/qubes/ext/core_features.py
|
|
%{python3_sitelib}/qubes/ext/gui.py
|
|
%{python3_sitelib}/qubes/ext/audio.py
|
|
%{python3_sitelib}/qubes/ext/pci.py
|
|
%{python3_sitelib}/qubes/ext/qubesmanager.py
|
|
%{python3_sitelib}/qubes/ext/r3compatibility.py
|
|
%{python3_sitelib}/qubes/ext/services.py
|
|
%{python3_sitelib}/qubes/ext/windows.py
|
|
|
|
%dir %{python3_sitelib}/qubes/tests
|
|
%dir %{python3_sitelib}/qubes/tests/__pycache__
|
|
%{python3_sitelib}/qubes/tests/__pycache__/*
|
|
%{python3_sitelib}/qubes/tests/__init__.py
|
|
%{python3_sitelib}/qubes/tests/run.py
|
|
%{python3_sitelib}/qubes/tests/extra.py
|
|
|
|
%{python3_sitelib}/qubes/tests/api.py
|
|
%{python3_sitelib}/qubes/tests/api_admin.py
|
|
%{python3_sitelib}/qubes/tests/api_internal.py
|
|
%{python3_sitelib}/qubes/tests/api_misc.py
|
|
%{python3_sitelib}/qubes/tests/app.py
|
|
%{python3_sitelib}/qubes/tests/devices.py
|
|
%{python3_sitelib}/qubes/tests/devices_block.py
|
|
%{python3_sitelib}/qubes/tests/events.py
|
|
%{python3_sitelib}/qubes/tests/ext.py
|
|
%{python3_sitelib}/qubes/tests/firewall.py
|
|
%{python3_sitelib}/qubes/tests/init.py
|
|
%{python3_sitelib}/qubes/tests/rpc_import.py
|
|
%{python3_sitelib}/qubes/tests/storage.py
|
|
%{python3_sitelib}/qubes/tests/storage_file.py
|
|
%{python3_sitelib}/qubes/tests/storage_reflink.py
|
|
%{python3_sitelib}/qubes/tests/storage_kernels.py
|
|
%{python3_sitelib}/qubes/tests/storage_lvm.py
|
|
%{python3_sitelib}/qubes/tests/tarwriter.py
|
|
|
|
%dir %{python3_sitelib}/qubes/tests/vm
|
|
%dir %{python3_sitelib}/qubes/tests/vm/__pycache__
|
|
%{python3_sitelib}/qubes/tests/vm/__pycache__/*
|
|
%{python3_sitelib}/qubes/tests/vm/__init__.py
|
|
%{python3_sitelib}/qubes/tests/vm/init.py
|
|
%{python3_sitelib}/qubes/tests/vm/adminvm.py
|
|
%{python3_sitelib}/qubes/tests/vm/appvm.py
|
|
%{python3_sitelib}/qubes/tests/vm/dispvm.py
|
|
%{python3_sitelib}/qubes/tests/vm/qubesvm.py
|
|
|
|
%dir %{python3_sitelib}/qubes/tests/vm/mix
|
|
%dir %{python3_sitelib}/qubes/tests/vm/mix/__pycache__
|
|
%{python3_sitelib}/qubes/tests/vm/mix/__pycache__/*
|
|
%{python3_sitelib}/qubes/tests/vm/mix/__init__.py
|
|
%{python3_sitelib}/qubes/tests/vm/mix/net.py
|
|
|
|
%dir %{python3_sitelib}/qubes/tests/tools
|
|
%dir %{python3_sitelib}/qubes/tests/tools/__pycache__
|
|
%{python3_sitelib}/qubes/tests/tools/__pycache__/*
|
|
%{python3_sitelib}/qubes/tests/tools/__init__.py
|
|
|
|
%dir %{python3_sitelib}/qubes/tests/integ
|
|
%dir %{python3_sitelib}/qubes/tests/integ/__pycache__
|
|
%{python3_sitelib}/qubes/tests/integ/__pycache__/*
|
|
%{python3_sitelib}/qubes/tests/integ/__init__.py
|
|
%{python3_sitelib}/qubes/tests/integ/backup.py
|
|
%{python3_sitelib}/qubes/tests/integ/backupcompatibility.py
|
|
%{python3_sitelib}/qubes/tests/integ/basic.py
|
|
%{python3_sitelib}/qubes/tests/integ/devices_block.py
|
|
%{python3_sitelib}/qubes/tests/integ/devices_pci.py
|
|
%{python3_sitelib}/qubes/tests/integ/dispvm.py
|
|
%{python3_sitelib}/qubes/tests/integ/dom0_update.py
|
|
%{python3_sitelib}/qubes/tests/integ/mime.py
|
|
%{python3_sitelib}/qubes/tests/integ/network.py
|
|
%{python3_sitelib}/qubes/tests/integ/grub.py
|
|
%{python3_sitelib}/qubes/tests/integ/salt.py
|
|
%{python3_sitelib}/qubes/tests/integ/storage.py
|
|
%{python3_sitelib}/qubes/tests/integ/vm_qrexec_gui.py
|
|
|
|
%dir %{python3_sitelib}/qubes/tests/integ/tools
|
|
%dir %{python3_sitelib}/qubes/tests/integ/tools/__pycache__
|
|
%{python3_sitelib}/qubes/tests/integ/tools/__pycache__/*
|
|
%{python3_sitelib}/qubes/tests/integ/tools/__init__.py
|
|
%{python3_sitelib}/qubes/tests/integ/tools/qubes_create.py
|
|
|
|
%dir %{python3_sitelib}/qubes/qmemman
|
|
%dir %{python3_sitelib}/qubes/qmemman/__pycache__
|
|
%{python3_sitelib}/qubes/qmemman/__pycache__/*
|
|
%{python3_sitelib}/qubes/qmemman/__init__.py
|
|
%{python3_sitelib}/qubes/qmemman/algo.py
|
|
%{python3_sitelib}/qubes/qmemman/client.py
|
|
|
|
/usr/lib/qubes/cleanup-dispvms
|
|
/usr/lib/qubes/fix-dir-perms.sh
|
|
/usr/lib/qubes/startup-misc.sh
|
|
/usr/libexec/qubes/qubesd-query-fast
|
|
%{_unitdir}/lvm2-pvscan@.service.d/30_qubes.conf
|
|
%{_unitdir}/qubes-core.service
|
|
%{_unitdir}/qubes-qmemman.service
|
|
%{_unitdir}/qubes-vm@.service
|
|
%{_unitdir}/qubesd.service
|
|
%attr(2770,root,qubes) %dir /var/lib/qubes
|
|
%attr(2770,root,qubes) %dir /var/lib/qubes/vm-templates
|
|
%attr(2770,root,qubes) %dir /var/lib/qubes/appvms
|
|
%attr(2770,root,qubes) %dir /var/lib/qubes/servicevms
|
|
%attr(2770,root,qubes) %dir /var/lib/qubes/backup
|
|
%attr(2770,root,qubes) %dir /var/lib/qubes/dvmdata
|
|
%attr(2770,root,qubes) %dir /var/lib/qubes/vm-kernels
|
|
/usr/share/qubes/templates/libvirt/xen.xml
|
|
/usr/share/qubes/templates/libvirt/devices/block.xml
|
|
/usr/share/qubes/templates/libvirt/devices/pci.xml
|
|
/usr/share/qubes/templates/libvirt/devices/net.xml
|
|
/usr/lib/tmpfiles.d/qubes.conf
|
|
/etc/xen/scripts/block-snapshot
|
|
/etc/xen/scripts/block-origin
|
|
/etc/xen/scripts/vif-route-qubes
|
|
%attr(2775,root,qubes) %dir /etc/qubes-rpc/policy
|
|
%attr(0664,root,qubes) %config(noreplace) /etc/qubes-rpc/policy/admin.*
|
|
%attr(0664,root,qubes) %config(noreplace) /etc/qubes-rpc/policy/include/admin-local-ro
|
|
%attr(0664,root,qubes) %config(noreplace) /etc/qubes-rpc/policy/include/admin-local-rwx
|
|
%attr(0664,root,qubes) %config(noreplace) /etc/qubes-rpc/policy/include/admin-global-ro
|
|
%attr(0664,root,qubes) %config(noreplace) /etc/qubes-rpc/policy/include/admin-global-rwx
|
|
%attr(0664,root,qubes) %config(noreplace) /etc/qubes-rpc/policy/qubes.ConnectTCP
|
|
%attr(0664,root,qubes) %config(noreplace) /etc/qubes-rpc/policy/qubes.FeaturesRequest
|
|
%attr(0664,root,qubes) %config(noreplace) /etc/qubes-rpc/policy/qubes.Filecopy
|
|
%attr(0664,root,qubes) %config(noreplace) /etc/qubes-rpc/policy/qubes.GetImageRGBA
|
|
%attr(0664,root,qubes) %config(noreplace) /etc/qubes-rpc/policy/qubes.GetRandomizedTime
|
|
%attr(0664,root,qubes) %config(noreplace) /etc/qubes-rpc/policy/qubes.NotifyTools
|
|
%attr(0664,root,qubes) %config(noreplace) /etc/qubes-rpc/policy/qubes.NotifyUpdates
|
|
%attr(0664,root,qubes) %config(noreplace) /etc/qubes-rpc/policy/qubes.OpenInVM
|
|
%attr(0664,root,qubes) %config(noreplace) /etc/qubes-rpc/policy/qubes.OpenURL
|
|
%attr(0664,root,qubes) %config(noreplace) /etc/qubes-rpc/policy/qubes.StartApp
|
|
%attr(0664,root,qubes) %config(noreplace) /etc/qubes-rpc/policy/qubes.VMShell
|
|
%attr(0664,root,qubes) %config(noreplace) /etc/qubes-rpc/policy/qubes.VMRootShell
|
|
%attr(0664,root,qubes) %config(noreplace) /etc/qubes-rpc/policy/qubes.VMExec
|
|
%attr(0664,root,qubes) %config(noreplace) /etc/qubes-rpc/policy/qubes.VMExecGUI
|
|
%attr(0664,root,qubes) %config(noreplace) /etc/qubes-rpc/policy/qubes.UpdatesProxy
|
|
%attr(0664,root,qubes) %config(noreplace) /etc/qubes-rpc/policy/qubes.GetDate
|
|
%attr(0664,root,qubes) %config(noreplace) /etc/qubes-rpc/policy/policy.RegisterArgument
|
|
/etc/qubes-rpc/admin.*
|
|
/etc/qubes-rpc/qubes.FeaturesRequest
|
|
/etc/qubes-rpc/qubes.GetDate
|
|
/etc/qubes-rpc/qubes.GetRandomizedTime
|
|
/etc/qubes-rpc/qubes.NotifyTools
|
|
/etc/qubes-rpc/qubes.NotifyUpdates
|
|
/etc/qubes-rpc/qubes.ConnectTCP
|
|
%attr(2770,root,qubes) %dir /var/log/qubes
|
|
%attr(0770,root,qubes) %dir /var/run/qubes
|
|
|
|
/usr/share/doc/qubes/relaxng/*.rng
|
|
|
|
%changelog
|
|
@CHANGELOG@
|