general/occlum
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
a98ff93b0c
occlum/tools/installer/rpm/occlum.spec
Hui, Chunyang 5db07a2029 Fix installer for new release 
This commit fixed three errors:
(1) Fix Github action virtual enironment out of free disk space
(2) Add "init" binary which is recently added for encrypted image
(3) Bypass "Missing build-id" error when RPM packaging
2021-03-08 14:12:43 +08:00

110 lines
3.1 KiB
RPMSpec
Raw Blame History

%define centos_base_release 1
%define _unpackaged_files_terminate_build 0
%define sgxsdk_install_dir /opt/intel
# Ignore missing build id error (generated when packaging "init" binary)
%global _missing_build_ids_terminate_build 0
# Remove checking for python shebang error in sgx-gdb
%undefine __brp_mangle_shebangs
Name: occlum
Version: %{_version}
Release: %{centos_base_release}%{?dist}
Summary: Memory-safe, multi-process library OS (LibOS) for Intel SGX
Group: Development/Libraries
License: BSD License
URL: https://github.com/occlum/occlum
Source0: https://github.com/occlum/occlum/archive/%{_version}.tar.gz
Source10: occlum-pal.sh
Source11: occlum-filelist
Source12: occlum-pal-filelist
Source13: occlum-runtime-filelist
SOURCE14: occlum-runtime.sh
ExclusiveArch: x86_64
BuildRequires: autoconf
BuildRequires: automake
BuildRequires: cmake
BuildRequires: libtool
BuildRequires: ocaml
BuildRequires: ocaml-ocamlbuild
BuildRequires: python2
BuildRequires: openssl-devel
BuildRequires: libcurl-devel
BuildRequires: git
BuildRequires: fuse-devel
BuildRequires: fuse-libs
Requires: occlum-pal = %{_version}, occlum-runtime = %{_version}, occlum-sgx-tools = %{_version}, occlum-toolchains-gcc = %{_musl_version}
%description
Occlum is a memory-safe, multi-process library OS (LibOS) for Intel SGX.
As a LibOS, it enables legacy applications to run on SGX with little or even no modifications of source code,
thus protecting the confidentiality and integrity of user workloads transparently.
%package pal
Summary: Platform Abstraction Layer of Occlum enclave
%description pal
occlum-pal is the Platform Abstraction Layer of Occlum enclave.
It provides interfaces to execute trused applications inside enclave.
%package runtime
Summary: Necessary binaries for occlum run/exec
%description runtime
occlum-runtime contains command for occlum run/exec.
%package sgx-tools
Summary: minimum dependencies from Intel SGX SDK e.g. sgx-gdb, sgx_sign
%description sgx-tools
minimum dependencies from Intel SGX SDK e.g. sgx-gdb, sgx_sign
%prep
%setup -q -c -n %{name}-%{_version}
%build
# build occlum
cd %{?_builddir}/%{name}-%{_version}/occlum-%{_version}
make submodule
%install
# set sgxsdk env
source %{sgxsdk_install_dir}/sgxsdk/environment
cd occlum-%{_version}
OCCLUM_RELEASE_BUILD=1 make
OCCLUM_PREFIX=%{?buildroot}/opt/occlum make install
# install occlum-pal.sh
mkdir -p $RPM_BUILD_ROOT%{_sysconfdir}/profile.d
install -p -m 644 %{SOURCE10} $RPM_BUILD_ROOT%{_sysconfdir}/profile.d/
install -p -m 644 %{SOURCE14} $RPM_BUILD_ROOT%{_sysconfdir}/profile.d/
%files -f %{SOURCE11}
%files pal -f %{SOURCE12}
/etc/profile.d/occlum-pal.sh
%files runtime -f %{SOURCE13}
/etc/profile.d/occlum-runtime.sh
%files sgx-tools
/opt/occlum/sgxsdk-tools
%post pal
echo 'Please execute command "source /etc/profile" to validate envs immediately'
%post runtime
echo 'Please execute command "source /etc/profile" to validate envs immediately'
%changelog
* Mon Aug 03 2020 Chunyang Hui <sanqian.hcy@antfin.com> - 0.14.0-1
- Integrate with Occlum
- Remove sgxsdk installation
* Mon Jul 20 2020 Chunmei Xu <xuchunmei@linux.alibaba.com> - 0.14.0-0
- Initial commit
Reference in New Issue View Git Blame Copy Permalink