forked from bottlerocket-os/bottlerocket
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathecs-agent.spec
303 lines (265 loc) · 12.2 KB
/
ecs-agent.spec
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
%global agent_goproject github.com/aws
%global agent_gorepo amazon-ecs-agent
%global agent_goimport %{agent_goproject}/%{agent_gorepo}
%global agent_gover 1.60.0
# git rev-parse --short=8
%global agent_gitrev f5ac255d
%global ecscni_goproject github.com/aws
%global ecscni_gorepo amazon-ecs-cni-plugins
%global ecscni_goimport %{ecscni_goproject}/%{ecscni_gorepo}
%global ecscni_gitrev 55b2ae77ee0bf22321b14f2d4ebbcc04f77322e1
%global vpccni_goproject github.com/aws
%global vpccni_gorepo amazon-vpc-cni-plugins
%global vpccni_goimport %{vpccni_goproject}/%{vpccni_gorepo}
%global vpccni_gitrev 199bfc65cced4951cbb6a38e6e828afa8c2b023c
%global vpccni_gover 1.2
# Construct reproducible tar archives
# See https://reproducible-builds.org/docs/archives/
%global source_date_epoch 1234567890
%global tar_cf tar --sort=name --mtime="@%{source_date_epoch}" --owner=0 --group=0 --numeric-owner -cf
Name: %{_cross_os}ecs-agent
Version: %{agent_gover}
Release: 1%{?dist}
Summary: Amazon Elastic Container Service agent
License: Apache-2.0
URL: https://%{agent_goimport}
Source0: https://%{agent_goimport}/archive/v%{agent_gover}/%{agent_gorepo}-v%{agent_gover}.tar.gz
Source1: https://%{ecscni_goimport}/archive/%{ecscni_gitrev}/%{ecscni_gorepo}.tar.gz
Source2: https://%{vpccni_goimport}/archive/%{vpccni_gitrev}/%{vpccni_gorepo}.tar.gz
Source101: ecs.service
Source102: ecs-tmpfiles.conf
Source103: ecs-sysctl.conf
Source104: ecs.config
Source105: pause-image-VERSION
Source106: pause-config.json
Source107: pause-manifest.json
Source108: pause-repositories
# Bottlerocket-specific - version data can be set with linker options
Source109: version.go
# Mount for writing ECS agent configuration
Source200: etc-ecs.mount
# Patches are numbered according to which source they apply to
# Patches 0000 - 0999 apply to Source0
# Patches 1000 - 1999 apply to Source1
# Patches 2000 - 2999 apply to Source2
# See the %prep section for the implementation of this logic
# Bottlerocket-specific - filesystem location of the pause image
Patch0001: 0001-bottlerocket-default-filesystem-locations.patch
# Bottlerocket-specific - remove unsupported capabilities
Patch0002: 0002-bottlerocket-remove-unsupported-capabilities.patch
# bind introspection to localhost
# https://github.com/aws/amazon-ecs-agent/pull/2588
Patch0003: 0003-bottlerocket-bind-introspection-to-localhost.patch
# Bottlerocket-specific - remove unsupported CNI plugins
Patch0004: 0004-bottlerocket-remove-unsupported-CNI-plugins.patch
# Bottlerocket-specific - fix procfs path for non-containerized ECS agent
Patch0005: 0005-bottlerocket-fix-procfs-path-on-host.patch
# Bottlerocket-specific - add duplicate +build directives to support Go 1.16
Patch0006: 0006-bottlerocket-Revert-removing-duplicate-build-tags.patch
Patch0007: 0007-bottlerocket-Revert-Updating-the-go-build-tags-as-pa.patch
Patch0008: 0008-bottlerocket-Add-missing-go-build-tags.patch
# Bottlerocket-specific - filesystem location for ECS CNI plugins
Patch1001: 1001-bottlerocket-default-filesystem-locations.patch
BuildRequires: %{_cross_os}glibc-devel
Requires: %{_cross_os}docker-engine
Requires: %{_cross_os}iptables
%description
%{summary}.
%prep
# After prep runs, the directory setup looks like this:
# %{_builddir} [root]
# └── %{name}-%{version} [created by setup]
# ├── amazon-ecs-agent-%{agent_gover} [top level of Source0]
# │ └── [unpacked sources]
# ├── amazon-ecs-cni-plugins-%{ecscni_gitrev} [top level of Source1]
# │ └── [unpacked sources]
# ├── amazon-vpc-cni-plugins-%{vpccni_gitrev} [top level of Source2]
# │ └── [unpacked sources]
# └── GOPATH
# └── src/github.com/aws
# ├── amazon-ecs-agent [symlink]
# ├── amazon-ecs-cni-plugins [symlink]
# └── amazon-vpc-cni-plugins [symlink]
# Extract Source0, which has a top-level directory of
# %{agent_gorepo}-%{agent_gover}
# -c: Create directory (%{name}-%{version})
# -q: Unpack quietly
%setup -c -q
# Change to the directory that we unpacked
cd %{agent_gorepo}-%{agent_gover}
# Set up git so we can apply patches
# This is included in autosetup, but not autopatch
%global __scm git
%__scm_setup_git
# Apply patches up to 0999
%autopatch -M 0999
# Replace upstream's version.go to support build-time values from ldflags. This
# avoids maintenance of patches that use always changing version-control tokens
# in its replacement.
cp %{S:109} "agent/version/version.go"
# Extract Source1, which has a top-level directory of
# %{ecscni_gorepo}-%{ecscni_gitrev}
# -T: Do not perform default archive unpack (i.e., skip Source0)
# -D: Do not delete directory before unpacking sources (i.e., don't delete
# unpacked Source0)
# -a: Unpack after changing into the directory
# -q: Unpack quietly
# See http://ftp.rpm.org/max-rpm/s1-rpm-inside-macros.html
%setup -T -D -a 1 -q
# Change to the directory that we unpacked
cd %{ecscni_gorepo}-%{ecscni_gitrev}
# Set up git so we can apply patches
# This is included in autosetup, but not autopatch
%__scm_setup_git
# Apply patches from 1000 to 1999
%autopatch -m 1000 -M 1999
# Extract Source2, which has a top-level directory of
# %{vpccni_gorepo}-%{vpccni_gitrev}
# -T: Do not perform default archive unpack (i.e., skip Source0)
# -D: Do not delete directory before unpacking sources (i.e., don't delete
# unpacked Source0)
# -a: Unpack after changing into the directory
# -q: Unpack quietly
# See http://ftp.rpm.org/max-rpm/s1-rpm-inside-macros.html
%setup -T -D -a 2 -q
# Change to the directory that we unpacked
cd %{vpccni_gorepo}-%{vpccni_gitrev}
# Set up git so we can apply patches
# This is included in autosetup, but not autopatch
%__scm_setup_git
# Apply patches from 2000 to 2999
%autopatch -m 2000 -M 2999
cd ../
# Symlink amazon-ecs-agent-%{agent_gover} to the GOPATH location
%cross_go_setup %{name}-%{version}/%{agent_gorepo}-%{agent_gover} %{agent_goproject} %{agent_goimport}
# Symlink amazon-ecs-cni-plugins-%{ecscni_gitrev} to the GOPATH location
%cross_go_setup %{name}-%{version}/%{ecscni_gorepo}-%{ecscni_gitrev} %{ecscni_goproject} %{ecscni_goimport}
# Symlink amazon-vpc-cni-plugins-%{vpccni_gitrev} to the GOPATH location
%cross_go_setup %{name}-%{version}/%{vpccni_gorepo}-%{vpccni_gitrev} %{vpccni_goproject} %{vpccni_goimport}
%build
BUILD_TOP=$(pwd -P)
# Build the agent
# cross_go_configure cd's to the correct GOPATH location
%cross_go_configure %{agent_goimport}
PAUSE_CONTAINER_IMAGE_NAME="amazon/amazon-ecs-pause"
PAUSE_CONTAINER_IMAGE_TAG="bottlerocket"
LD_PAUSE_CONTAINER_NAME="-X github.com/aws/amazon-ecs-agent/agent/config.DefaultPauseContainerImageName=${PAUSE_CONTAINER_IMAGE_NAME}"
LD_PAUSE_CONTAINER_TAG="-X github.com/aws/amazon-ecs-agent/agent/config.DefaultPauseContainerTag=${PAUSE_CONTAINER_IMAGE_TAG}"
LD_VERSION="-X github.com/aws/amazon-ecs-agent/agent/version.Version=%{agent_gover}"
LD_GIT_REV="-X github.com/aws/amazon-ecs-agent/agent/version.GitShortHash=%{agent_gitrev}"
go build -a \
-buildmode=pie \
-ldflags "${GOLDFLAGS} ${LD_PAUSE_CONTAINER_NAME} ${LD_PAUSE_CONTAINER_TAG} ${LD_VERSION} ${LD_GIT_REV}" \
-o amazon-ecs-agent \
./agent
# Build the pause container
(
set -x
cd misc/pause-container/
# Build static pause executable for container image.
mkdir -p rootfs/usr/bin
%{_cross_triple}-musl-gcc ${_cross_cflags} -static pause.c -o rootfs/usr/bin/pause
# Construct container image.
mkdir -p image/rootfs
%tar_cf image/rootfs/layer.tar -C rootfs .
DIGEST=$(sha256sum image/rootfs/layer.tar | sed -e 's/ .*//')
install -m 0644 %{S:105} image/rootfs/VERSION
install -m 0644 %{S:106} image/config.json
sed -i "s/~~digest~~/${DIGEST}/" image/config.json
install -m 0644 %{S:107} image/manifest.json
install -m 0644 %{S:108} image/repositories
%tar_cf ../../amazon-ecs-pause.tar -C image .
)
cd "${BUILD_TOP}"
# Build the ECS CNI plugins
# cross_go_configure cd's to the correct GOPATH location
%cross_go_configure %{ecscni_goimport}
LD_ECS_CNI_VERSION="-X github.com/aws/amazon-ecs-cni-plugins/pkg/version.Version=$(cat VERSION)"
ECS_CNI_HASH="%{ecscni_gitrev}"
LD_ECS_CNI_SHORT_HASH="-X github.com/aws/amazon-ecs-cni-plugins/pkg/version.GitShortHash=${ECS_CNI_HASH::8}"
LD_ECS_CNI_PORCELAIN="-X github.com/aws/amazon-ecs-cni-plugins/pkg/version.GitPorcelain=0"
go build -a \
-buildmode=pie \
-ldflags "${GOLDFLAGS} ${LD_ECS_CNI_VERSION} ${LD_ECS_CNI_SHORT_HASH} ${LD_ECS_CNI_PORCELAIN}" \
-o ecs-eni \
./plugins/eni
go build -a \
-buildmode=pie \
-ldflags "${GOLDFLAGS} ${LD_ECS_CNI_VERSION} ${LD_ECS_CNI_SHORT_HASH} ${LD_ECS_CNI_PORCELAIN}" \
-o ecs-ipam \
./plugins/ipam
go build -a \
-buildmode=pie \
-ldflags "${GOLDFLAGS} ${LD_ECS_CNI_VERSION} ${LD_ECS_CNI_SHORT_HASH} ${LD_ECS_CNI_PORCELAIN}" \
-o ecs-bridge \
./plugins/ecs-bridge
cd "${BUILD_TOP}"
# Build the VPC CNI plugins
# cross_go_configure cd's to the correct GOPATH location
%cross_go_configure %{vpccni_goimport}
LD_VPC_CNI_VERSION="-X github.com/aws/amazon-vpc-cni-plugins/version.Version=%{vpccni_gover}"
VPC_CNI_HASH="%{vpccni_gitrev}"
LD_VPC_CNI_SHORT_HASH="-X github.com/aws/amazon-vpc-cni-plugins/version.GitShortHash=${VPC_CNI_HASH::8}"
go build -a \
-buildmode=pie \
-ldflags "${GOLDFLAGS} ${LD_VPC_CNI_VERSION} ${LD_VPC_CNI_SHORT_HASH} ${LD_VPC_CNI_PORCELAIN}" \
-mod=vendor \
-o vpc-branch-eni \
./plugins/vpc-branch-eni
%install
install -D -p -m 0755 %{agent_gorepo}-%{agent_gover}/amazon-ecs-agent %{buildroot}%{_cross_bindir}/amazon-ecs-agent
install -D -p -m 0644 %{agent_gorepo}-%{agent_gover}/amazon-ecs-pause.tar %{buildroot}%{_cross_libdir}/amazon-ecs-agent/amazon-ecs-pause.tar
install -D -p -m 0755 %{ecscni_gorepo}-%{ecscni_gitrev}/ecs-bridge %{buildroot}%{_cross_libexecdir}/amazon-ecs-agent/ecs-bridge
install -D -p -m 0755 %{ecscni_gorepo}-%{ecscni_gitrev}/ecs-eni %{buildroot}%{_cross_libexecdir}/amazon-ecs-agent/ecs-eni
install -D -p -m 0755 %{ecscni_gorepo}-%{ecscni_gitrev}/ecs-ipam %{buildroot}%{_cross_libexecdir}/amazon-ecs-agent/ecs-ipam
install -D -p -m 0755 %{vpccni_gorepo}-%{vpccni_gitrev}/vpc-branch-eni %{buildroot}%{_cross_libexecdir}/amazon-ecs-agent/vpc-branch-eni
install -d %{buildroot}%{_cross_unitdir}
install -D -p -m 0644 %{S:101} %{S:200} %{buildroot}%{_cross_unitdir}
install -D -p -m 0644 %{S:102} %{buildroot}%{_cross_tmpfilesdir}/ecs.conf
install -D -p -m 0644 %{S:103} %{buildroot}%{_cross_sysctldir}/90-ecs.conf
install -D -p -m 0644 %{S:104} %{buildroot}%{_cross_templatedir}/ecs.config
# Prepare license and vendor information so it can be co-installable
mv %{ecscni_gorepo}-%{ecscni_gitrev}/LICENSE %{ecscni_gorepo}-%{ecscni_gitrev}/LICENSE.%{ecscni_gorepo}
mv %{vpccni_gorepo}-%{vpccni_gitrev}/LICENSE %{vpccni_gorepo}-%{vpccni_gitrev}/LICENSE.%{vpccni_gorepo}
# Move vendor folder into a single directory so cross_scan_attribution can run once
mkdir go-vendor
mv %{agent_gorepo}-%{agent_gover}/agent/vendor go-vendor/%{agent_gorepo}
mv %{ecscni_gorepo}-%{ecscni_gitrev}/vendor go-vendor/%{ecscni_gorepo}
mv %{vpccni_gorepo}-%{vpccni_gitrev}/vendor go-vendor/%{vpccni_gorepo}
%cross_scan_attribution go-vendor go-vendor
%files
# License and attribution files are installed into /usr/share/licenses with a
# directory structure as follows:
# /usr/share/licenses/ecs-agent/
# ├── attribution.txt
# ├── LICENSE
# ├── LICENSE.amazon-ecs-cni-plugins
# ├── LICENSE.amazon-vpc-cni-plugins
# ├── NOTICE
# ├── THIRD-PARTY
# └── vendor
# ├── amazon-ecs-agent
# │ └── ...
# ├── amazon-ecs-cni-plugins
# │ └── ...
# └── amazon-vpc-cni-plugins
# └── ...
%{_cross_attribution_file}
%{_cross_attribution_vendor_dir}
%license %{agent_gorepo}-%{agent_gover}/LICENSE
%license %{agent_gorepo}-%{agent_gover}/NOTICE
%license %{agent_gorepo}-%{agent_gover}/THIRD-PARTY
%license %{ecscni_gorepo}-%{ecscni_gitrev}/LICENSE.%{ecscni_gorepo}
%license %{vpccni_gorepo}-%{vpccni_gitrev}/LICENSE.%{vpccni_gorepo}
%{_cross_bindir}/amazon-ecs-agent
%{_cross_libexecdir}/amazon-ecs-agent/ecs-bridge
%{_cross_libexecdir}/amazon-ecs-agent/ecs-eni
%{_cross_libexecdir}/amazon-ecs-agent/ecs-ipam
%{_cross_libexecdir}/amazon-ecs-agent/vpc-branch-eni
%{_cross_unitdir}/ecs.service
%{_cross_unitdir}/etc-ecs.mount
%{_cross_tmpfilesdir}/ecs.conf
%{_cross_sysctldir}/90-ecs.conf
%{_cross_templatedir}/ecs.config
%{_cross_libdir}/amazon-ecs-agent/amazon-ecs-pause.tar
%changelog