# Contributor: Jake Buchholz <tomalok@gmail.com>
# Maintainer: Jake Buchholz <tomalok@gmail.com>

pkgname=runc

# NOTE: using explicit post-1.0.0_rc6 commit, for CVE-2019-5736
# (https://nvd.nist.gov/vuln/detail/CVE-2019-5736).  This commit is more recent
# than the one specified by containerd
# (https://github.com/containerd/containerd/blob/v1.2.2/vendor.conf)
_commit=6635b4f0c6af3810594d2770f662f34ddc15b40d

pkgver=1.0.0_rc6
pkgrel=1
pkgdesc="CLI tool for spawning and running containers according to the OCI specification"
url="https://www.opencontainers.org"
arch="all"
license="Apache-2.0"
makedepends="go go-md2man libseccomp-dev libtool"
subpackages="$pkgname-doc"
source="runc-$_commit.tar.gz::https://github.com/opencontainers/runc/archive/$_commit.tar.gz"
builddir="$srcdir/src/github.com/opencontainers/runc"

# secfixes:
#   1.0.0_rc6-r1:
#     - CVE-2019-5736

build() {
	cd "$srcdir"
	export GOPATH="$PWD"
	mkdir -p $(dirname "$builddir")
	ln -s "$PWD/$pkgname-$_commit" "$builddir"
	cd "$builddir"
	make COMMIT="$_commit"
	make man
}

check() {
	cd "$builddir"
	./runc --version
}

package() {
	cd "$builddir"
	install -Dsm755 "$builddir"/runc "$pkgdir"/usr/bin/runc
	install -d "$pkgdir"/usr/share/man/man8/
	install -Dm644 "$builddir"/man/man8/* "$pkgdir"/usr/share/man/man8/
}

sha512sums="37bb09463df4742b0ea5b1f079f609642ab5621707674844ffef06f733703ec1d09b52a180ccb2d66c284c56ba242f7a1b70ba4c4c45722bf85fd2fd924bb9df  runc-6635b4f0c6af3810594d2770f662f34ddc15b40d.tar.gz"